Fedora EPEL 6 updates-testing report
by updates@fedoraproject.org
The following Fedora EPEL 6 Security updates need testing:
Age URL
140 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6
123 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
117 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
48 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8148 optipng-0.7.5-5.el6
48 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
36 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-68a2c2db36 python-pymongo-3.0.3-1.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-ba19b1c7eb php-horde-horde-5.2.8-1.el6 php-horde-imp-6.2.11-1.el6 php-horde-ingo-3.2.7-1.el6 php-horde-passwd-5.0.4-1.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-22dfcb9feb drupal7-7.41-1.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-cb0897945f lxc-1.0.7-4.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-28606b6d1d perl-HTML-Scrubber-0.15-1.el6.1
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-5d63583df0 metis-5.1.0-7.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e195439195 drupal7-jquery_update-2.7-1.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-967595b7c1 wildmagic5-5.13-12.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8fc6f35cc9 MUMPS-5.0.1-4.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-d47ae2d16b owncloud-7.0.11-1.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-a7d37297d4 telegram-cli-1.3.1-7.20150730git2052f4.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-0ae4daf2d6 tubo-5.0.15-3.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
carbon-c-relay-0.45-1.el6
dpm-dsi-1.9.5-12.el6
dpm-dsi-1.9.5-9.el6
gfal2-2.10.2-1.el6
globus-gridftp-server-8.9-1.el6
globus-gridftp-server-9.1-1.el6
globus-xio-5.10-1.el6
globus-xio-udt-driver-1.19-1.el6
golang-github-collectd-go-collectd-0-0.1.git9fc824c.el6
golang-github-fatih-pool-0-0.1.gitcba550e.el6
golang-github-peterh-liner-0-0.1.git941195f.el6
golang-github-pmezard-go-difflib-0-0.1.gitf78a839.el6
nordugrid-arc-nagios-plugins-1.8.4-3.el6
nwchem-6.6.27746-22.el6
php-kukulich-fshl-2.1.0-2.el6
python-appstream-0.8-1.el6
telegram-cli-1.3.1-7.20150730git2052f4.el6
tubo-5.0.15-3.el6
xsd-4.0.0-10.el6
Details about builds:
================================================================================
carbon-c-relay-0.45-1.el6 (FEDORA-EPEL-2015-0e97fca624)
Enhanced C implementation of Carbon relay, aggregator and rewriter
--------------------------------------------------------------------------------
Update Information:
Update to new version
--------------------------------------------------------------------------------
================================================================================
dpm-dsi-1.9.5-12.el6 (FEDORA-EPEL-2015-b806a2f4e9)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
globus-gridftp-server-9.1-1 - fix for thread race crash between sequential
transfers - fix for partial stat punting when passed a single entry - fix for
double free on transfer failure race dpm-dsi-1.9.5-12 - Rebuilt for globus-
gridftp-server 9.1
--------------------------------------------------------------------------------
================================================================================
dpm-dsi-1.9.5-9.el6 (FEDORA-EPEL-2015-783ae1c4ae)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el6 - Clarify documentation for timeouts - Remove NET+OS
fragments globus-xio-udt-driver-1.19-1.el6 - GT6 update (Ignore other end's
attempts at ipv6 negotiation)
--------------------------------------------------------------------------------
================================================================================
gfal2-2.10.2-1.el6 (FEDORA-EPEL-2015-9c7eff4d7a)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Update for upstream release 2.10.2
--------------------------------------------------------------------------------
================================================================================
globus-gridftp-server-8.9-1.el6 (FEDORA-EPEL-2015-783ae1c4ae)
Globus Toolkit - Globus GridFTP Server
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el6 - Clarify documentation for timeouts - Remove NET+OS
fragments globus-xio-udt-driver-1.19-1.el6 - GT6 update (Ignore other end's
attempts at ipv6 negotiation)
--------------------------------------------------------------------------------
================================================================================
globus-gridftp-server-9.1-1.el6 (FEDORA-EPEL-2015-b806a2f4e9)
Globus Toolkit - Globus GridFTP Server
--------------------------------------------------------------------------------
Update Information:
globus-gridftp-server-9.1-1 - fix for thread race crash between sequential
transfers - fix for partial stat punting when passed a single entry - fix for
double free on transfer failure race dpm-dsi-1.9.5-12 - Rebuilt for globus-
gridftp-server 9.1
--------------------------------------------------------------------------------
================================================================================
globus-xio-5.10-1.el6 (FEDORA-EPEL-2015-783ae1c4ae)
Globus Toolkit - Globus XIO Framework
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el6 - Clarify documentation for timeouts - Remove NET+OS
fragments globus-xio-udt-driver-1.19-1.el6 - GT6 update (Ignore other end's
attempts at ipv6 negotiation)
--------------------------------------------------------------------------------
================================================================================
globus-xio-udt-driver-1.19-1.el6 (FEDORA-EPEL-2015-783ae1c4ae)
Globus Toolkit - Globus XIO UDT Driver
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el6 - Clarify documentation for timeouts - Remove NET+OS
fragments globus-xio-udt-driver-1.19-1.el6 - GT6 update (Ignore other end's
attempts at ipv6 negotiation)
--------------------------------------------------------------------------------
================================================================================
golang-github-collectd-go-collectd-0-0.1.git9fc824c.el6 (FEDORA-EPEL-2015-c7e60306f7)
Utilities for using collectd together with Golang
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277119 - Review Request: golang-github-collectd-go-collectd - Utilities for using collectd together with Golang
https://bugzilla.redhat.com/show_bug.cgi?id=1277119
--------------------------------------------------------------------------------
================================================================================
golang-github-fatih-pool-0-0.1.gitcba550e.el6 (FEDORA-EPEL-2015-2528f5831c)
Connection pool for Go's net.Conn interface
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277111 - Review Request: golang-github-fatih-pool - Connection pool for Go's net.Conn interface
https://bugzilla.redhat.com/show_bug.cgi?id=1277111
--------------------------------------------------------------------------------
================================================================================
golang-github-peterh-liner-0-0.1.git941195f.el6 (FEDORA-EPEL-2015-7cb155d9f8)
Pure Go line editor with history, inspired by linenoise
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1278801 - Review Request: golang-github-peterh-liner - Pure Go line editor with history, inspired by linenoise
https://bugzilla.redhat.com/show_bug.cgi?id=1278801
--------------------------------------------------------------------------------
================================================================================
golang-github-pmezard-go-difflib-0-0.1.gitf78a839.el6 (FEDORA-EPEL-2015-945669363b)
Partial port of Python difflib package to Go
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1272174 - Review Request: golang-github-pmezard-go-difflib - Partial port of Python difflib package to Go
https://bugzilla.redhat.com/show_bug.cgi?id=1272174
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-nagios-plugins-1.8.4-3.el6 (FEDORA-EPEL-2015-f8d24e72ba)
Nagios plugins for ARC
--------------------------------------------------------------------------------
Update Information:
Nagios plugins for ARC.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1274493 - Review Request: nordugrid-arc-nagios-plugins - Nagios plugins for ARC
https://bugzilla.redhat.com/show_bug.cgi?id=1274493
--------------------------------------------------------------------------------
================================================================================
nwchem-6.6.27746-22.el6 (FEDORA-EPEL-2015-565a21c265)
Delivering High-Performance Computational Chemistry to Science
--------------------------------------------------------------------------------
Update Information:
upstream update
--------------------------------------------------------------------------------
================================================================================
php-kukulich-fshl-2.1.0-2.el6 (FEDORA-EPEL-2015-3eca48bc1e)
FSHL: fast syntax highlighter
--------------------------------------------------------------------------------
Update Information:
FSHL is a free, open source, universal, fast syntax highlighter written in PHP.
A very fast parser performs syntax highlighting for few languages and produces a
HTML output. To use this library, you just have to add, in your project:
require_once '/usr/share/php/FSHL/autoload.php';
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277487 - Review Request: php-kukulich-fshl - FSHL: fast syntax highlighter
https://bugzilla.redhat.com/show_bug.cgi?id=1277487
--------------------------------------------------------------------------------
================================================================================
python-appstream-0.8-1.el6 (FEDORA-EPEL-2015-1211b6095b)
Parse AppStream files when you don't have libappstream-glib
--------------------------------------------------------------------------------
Update Information:
Initial packaging.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1275057 - Review Request: python-appstream - Parse AppStream files when you don't have libappstream-glib
https://bugzilla.redhat.com/show_bug.cgi?id=1275057
--------------------------------------------------------------------------------
================================================================================
telegram-cli-1.3.1-7.20150730git2052f4.el6 (FEDORA-EPEL-2015-a7d37297d4)
Linux Command-line interface for Telegram
--------------------------------------------------------------------------------
Update Information:
telegram-cli-1.3.1-7.20150730git2052f4.fc22 - Hardened builds on <F23
telegram-cli-1.3.1-7.20150730git2052f4.fc23 - Hardened builds on <F23
telegram-cli-1.3.1-7.20150730git2052f4.el7 - Hardened builds on <F23
telegram-cli-1.3.1-7.20150730git2052f4.el6 - Hardened builds on <F23
--------------------------------------------------------------------------------
================================================================================
tubo-5.0.15-3.el6 (FEDORA-EPEL-2015-0ae4daf2d6)
Library to thread process std-in/std-err/std-out from fork() child
--------------------------------------------------------------------------------
Update Information:
tubo-5.0.15-3.el6 - Hardened builds on <F23 tubo-5.0.15-3.fc23 - Hardened
builds on <F23 tubo-5.0.15-3.fc22 - Hardened builds on <F23
tubo-5.0.15-3.fc21 - Hardened builds on <F23 tubo-5.0.15-3.el6 - Hardened
builds on <F23
--------------------------------------------------------------------------------
================================================================================
xsd-4.0.0-10.el6 (FEDORA-EPEL-2015-8a5a451bda)
W3C XML schema to C++ data binding compiler
--------------------------------------------------------------------------------
Update Information:
xsd-4.0.0-10.fc23 - Add patch to fix bug in C++/Parser Expat Support in EPEL
builds xsd-4.0.0-10.fc21 - Add patch to fix bug in C++/Parser Expat Support
in EPEL builds xsd-4.0.0-10.fc22 - Add patch to fix bug in C++/Parser Expat
Support in EPEL builds xsd-4.0.0-10.el6 - Add patch to fix bug in C++/Parser
Expat Support in EPEL builds xsd-4.0.0-10.el7 - Add patch to fix bug in
C++/Parser Expat Support in EPEL builds
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1098622 - Request build for epel7
https://bugzilla.redhat.com/show_bug.cgi?id=1098622
[ 2 ] Bug #1270346 - XSD Additional review
https://bugzilla.redhat.com/show_bug.cgi?id=1270346
--------------------------------------------------------------------------------
8 years, 4 months
Fedora EPEL 5 updates-testing report
by updates@fedoraproject.org
The following Fedora EPEL 5 Security updates need testing:
Age URL
750 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2013-11893 libguestfs-1.20.12-1.el5
514 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-1626 puppet-2.7.26-1.el5
364 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849 sblim-sfcb-1.3.8-2.el5
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-07f3c26175 drupal7-7.41-1.el5
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-edbea40516 mcollective-2.8.4-1.el5
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1cb7f30ae9 perl-HTML-Scrubber-0.15-1.el5.1
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-10d919912b git-1.8.2.1-2.el5
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-4a0a62b289 drupal7-jquery_update-2.7-1.el5
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-38c5cc1eab libsndfile-1.0.17-7.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
dpm-dsi-1.9.5-12.el5
dpm-dsi-1.9.5-9.el5
gfal2-2.10.2-1.el5
globus-gridftp-server-8.9-1.el5
globus-gridftp-server-9.1-1.el5
globus-xio-5.10-1.el5
libsndfile-1.0.17-7.el5
nordugrid-arc-nagios-plugins-1.8.4-3.el5
Details about builds:
================================================================================
dpm-dsi-1.9.5-12.el5 (FEDORA-EPEL-2015-bf6cd4a204)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
globus-gridftp-server-9.1-1 - fix for thread race crash between sequential
transfers - fix for partial stat punting when passed a single entry - fix for
double free on transfer failure race dpm-dsi-1.9.5-12 - Rebuilt for globus-
gridftp-server 9.1
--------------------------------------------------------------------------------
================================================================================
dpm-dsi-1.9.5-9.el5 (FEDORA-EPEL-2015-e63795f6f6)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el5 - Clarify documentation for timeouts - Remove NET+OS
fragments
--------------------------------------------------------------------------------
================================================================================
gfal2-2.10.2-1.el5 (FEDORA-EPEL-2015-f38b4cfd5c)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Update for upstream release 2.10.2
--------------------------------------------------------------------------------
================================================================================
globus-gridftp-server-8.9-1.el5 (FEDORA-EPEL-2015-e63795f6f6)
Globus Toolkit - Globus GridFTP Server
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el5 - Clarify documentation for timeouts - Remove NET+OS
fragments
--------------------------------------------------------------------------------
================================================================================
globus-gridftp-server-9.1-1.el5 (FEDORA-EPEL-2015-bf6cd4a204)
Globus Toolkit - Globus GridFTP Server
--------------------------------------------------------------------------------
Update Information:
globus-gridftp-server-9.1-1 - fix for thread race crash between sequential
transfers - fix for partial stat punting when passed a single entry - fix for
double free on transfer failure race dpm-dsi-1.9.5-12 - Rebuilt for globus-
gridftp-server 9.1
--------------------------------------------------------------------------------
================================================================================
globus-xio-5.10-1.el5 (FEDORA-EPEL-2015-e63795f6f6)
Globus Toolkit - Globus XIO Framework
--------------------------------------------------------------------------------
Update Information:
globus-xio-5.10-1.el5 - Clarify documentation for timeouts - Remove NET+OS
fragments
--------------------------------------------------------------------------------
================================================================================
libsndfile-1.0.17-7.el5 (FEDORA-EPEL-2015-38c5cc1eab)
Library for reading and writing sound files
--------------------------------------------------------------------------------
Update Information:
libsndfile-1.0.17-7.el5 - fix CVE-2015-7805: Heap overflow vulnerability when
parsing specially crafted AIFF header
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277897 - CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header
https://bugzilla.redhat.com/show_bug.cgi?id=1277897
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-nagios-plugins-1.8.4-3.el5 (FEDORA-EPEL-2015-7d2142aa41)
Nagios plugins for ARC
--------------------------------------------------------------------------------
Update Information:
Nagios plugins for ARC.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1274493 - Review Request: nordugrid-arc-nagios-plugins - Nagios plugins for ARC
https://bugzilla.redhat.com/show_bug.cgi?id=1274493
--------------------------------------------------------------------------------
8 years, 4 months
Fedora EPEL 7 updates-testing report
by updates@fedoraproject.org
The following Fedora EPEL 7 Security updates need testing:
Age URL
243 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7
139 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6813 chicken-4.9.0.1-4.el7
47 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8155 nagios-4.0.8-1.el7
35 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-925e9374c9 python-pymongo-3.0.3-1.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-234553a060 mediawiki123-1.23.11-1.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-b3471305ee php-horde-horde-5.2.8-1.el7 php-horde-imp-6.2.11-1.el7 php-horde-ingo-3.2.7-1.el7 php-horde-passwd-5.0.4-1.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-02bd65205b drupal7-7.41-1.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-ad1b660a4d php-ZendFramework-1.12.16-1.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-3cdbf28493 lxc-1.0.7-4.el7
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-97e247eb19 perl-HTML-Scrubber-0.15-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-22f9be240b qemu-2.0.0-1.el7.6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-f5273e10c1 rabbitmq-server-3.3.5-12.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-f75cdd1774 metis-5.1.0-7.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-4b33ee7c84 wildmagic5-5.13-12.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-d6eaf22c8d MUMPS-5.0.1-4.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e1379fc854 owncloud-8.0.9-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
MUMPS-5.0.1-4.el7
darktable-1.6.9-2.el7
dpm-dsi-1.9.5-11.el7
drupal7-jquery_update-2.7-1.el7
fontawesome-fonts-4.4.0-2.el7
gajim-0.16.4-3.el7
globus-common-16.0-1.el7
globus-gridftp-server-9.0-2.el7
layla-fonts-1.6-2.el7
metis-5.1.0-7.el7
owncloud-8.0.9-1.el7
perl-Canary-Stability-2006-1.el7
php-composer-installers-1.0.22-1.el7
php-composer-semver-1.1.0-1.el7
php-deepend-Mockery-0.9.3-1.el7
php-guzzlehttp-psr7-1.2.1-1.el7
php-hamcrest-1.2.2-1.el7
php-nette-tester-1.6.1-1.el7
php-tecnickcom-tc-lib-barcode-1.5.0-1.el7
php-tecnickcom-tc-lib-color-1.6.2-1.el7
python-nbxmpp-0.5.3-1.el7
statscache-0.0.4-1.el7
wildmagic5-5.13-12.el7
yad-0.31.2-1.el7
yad-0.31.3-1.el7
Details about builds:
================================================================================
MUMPS-5.0.1-4.el7 (FEDORA-EPEL-2015-d6eaf22c8d)
A MUltifrontal Massively Parallel sparse direct Solver
--------------------------------------------------------------------------------
Update Information:
MUMPS-5.0.1-4.fc23 - Hardened builds on <F23 MUMPS-5.0.1-4.fc21 - Hardened
builds on <F23 MUMPS-5.0.1-4.fc22 - Hardened builds on <F23
MUMPS-5.0.1-4.el6 - Hardened builds on <F23 MUMPS-5.0.1-4.el7 - Hardened
builds on <F23
--------------------------------------------------------------------------------
================================================================================
darktable-1.6.9-2.el7 (FEDORA-EPEL-2015-ce329433be)
Utility to organize and develop raw images
--------------------------------------------------------------------------------
Update Information:
darktable-1.6.9-2.el7 - Rework bundled opencl-headers handling in %prep
(RHBZ#1264933). ---- darktable-1.6.9-1.el7 - Update to 1.6.9
--------------------------------------------------------------------------------
================================================================================
dpm-dsi-1.9.5-11.el7 (FEDORA-EPEL-2015-74142a285a)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
globus-common-16.0-1.el7 - GT6 update (add globus_extension_get_module_version)
globus-gridftp-server-9.0-2.el7 - GT6 update (Home directory fixes) - GT6
update (add SITE STORATTR command and associated DSI api) dpm-dsi-1.9.5-11.el7
- Rebuilt for globus-gridftp-server 9.0
--------------------------------------------------------------------------------
================================================================================
drupal7-jquery_update-2.7-1.el7 (FEDORA-EPEL-2015-3f473f60ea)
Upgrades the version of jQuery in Drupal core to a newer version of jQuery
--------------------------------------------------------------------------------
Update Information:
Upgrades the version of jQuery in Drupal core to a newer version of jQuery.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1273670 - drupal7-jquery_update-2.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1273670
--------------------------------------------------------------------------------
================================================================================
fontawesome-fonts-4.4.0-2.el7 (FEDORA-EPEL-2015-23c4eb81d6)
Iconic font set
--------------------------------------------------------------------------------
Update Information:
This update ships version 4.4.0 with many more new icons and additionally
includes Embedded OpenType font files as an option for use on the web.
--------------------------------------------------------------------------------
================================================================================
gajim-0.16.4-3.el7 (FEDORA-EPEL-2015-006703c52f)
Jabber client written in PyGTK
--------------------------------------------------------------------------------
Update Information:
Gajim 0.16.4 is an upstream bugfix release. To see the changelog and the list of
fixed bugs, visit http://gajim.org/.
--------------------------------------------------------------------------------
================================================================================
globus-common-16.0-1.el7 (FEDORA-EPEL-2015-74142a285a)
Globus Toolkit - Common Library
--------------------------------------------------------------------------------
Update Information:
globus-common-16.0-1.el7 - GT6 update (add globus_extension_get_module_version)
globus-gridftp-server-9.0-2.el7 - GT6 update (Home directory fixes) - GT6
update (add SITE STORATTR command and associated DSI api) dpm-dsi-1.9.5-11.el7
- Rebuilt for globus-gridftp-server 9.0
--------------------------------------------------------------------------------
================================================================================
globus-gridftp-server-9.0-2.el7 (FEDORA-EPEL-2015-74142a285a)
Globus Toolkit - Globus GridFTP Server
--------------------------------------------------------------------------------
Update Information:
globus-common-16.0-1.el7 - GT6 update (add globus_extension_get_module_version)
globus-gridftp-server-9.0-2.el7 - GT6 update (Home directory fixes) - GT6
update (add SITE STORATTR command and associated DSI api) dpm-dsi-1.9.5-11.el7
- Rebuilt for globus-gridftp-server 9.0
--------------------------------------------------------------------------------
================================================================================
layla-fonts-1.6-2.el7 (FEDORA-EPEL-2015-72ad87a355)
A collection of traditional Arabic fonts
--------------------------------------------------------------------------------
Update Information:
Added Digital font
--------------------------------------------------------------------------------
================================================================================
metis-5.1.0-7.el7 (FEDORA-EPEL-2015-f75cdd1774)
Serial Graph Partitioning and Fill-reducing Matrix Ordering
--------------------------------------------------------------------------------
Update Information:
metis-5.1.0-7.el7 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.fc22 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.fc21 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.el6 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.fc23 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
--------------------------------------------------------------------------------
================================================================================
owncloud-8.0.9-1.el7 (FEDORA-EPEL-2015-e1379fc854)
Private file sync and share server
--------------------------------------------------------------------------------
Update Information:
This update provides the latest upstream release of ownCloud in the current
minor series - 8.0.9 for all releases but EPEL 6, 7.0.11 for EPEL 6. These
releases come with unspecified "security improvements", so updating quickly is
recommended. As usual, a minor update should apply smoothly, but we advise you
back up user data, configuration, and database contents before applying the
update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1278121 - owncloud: Unspecified security issues fixed in owncloud 7.0.11, 8.0.9 and 8.1.4
https://bugzilla.redhat.com/show_bug.cgi?id=1278121
--------------------------------------------------------------------------------
================================================================================
perl-Canary-Stability-2006-1.el7 (FEDORA-EPEL-2015-f4b121591f)
Canary to check perl compatibility for Schmorp's modules
--------------------------------------------------------------------------------
Update Information:
Canary to check perl compatibility for Schmorp's modules.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277708 - Please build perl-Canary-Stability for EPEL 5-7 and Fedora 22
https://bugzilla.redhat.com/show_bug.cgi?id=1277708
--------------------------------------------------------------------------------
================================================================================
php-composer-installers-1.0.22-1.el7 (FEDORA-EPEL-2015-0b869ef1bf)
A multi-framework Composer library installer
--------------------------------------------------------------------------------
Update Information:
1.0.21 to 1.0.22 diff:
https://github.com/composer/installers/compare/v1.0.21...v1.0.22
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1276816 - php-composer-installers-v1.0.22 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1276816
--------------------------------------------------------------------------------
================================================================================
php-composer-semver-1.1.0-1.el7 (FEDORA-EPEL-2015-2b9cff6c5f)
Semver library that offers utilities, version constraint parsing and validation
--------------------------------------------------------------------------------
Update Information:
**Version 1.1.0** * Changed: dropped redundant test namespace. * Changed:
minor adjustment in datetime parsing normalization. * Changed:
ConstraintInterface relaxed, setPrettyString is not required anymore. *
Changed: AbstractConstraint marked deprecated, will be removed in 2.0. *
Changed: Constraint is now extensible.
--------------------------------------------------------------------------------
================================================================================
php-deepend-Mockery-0.9.3-1.el7 (FEDORA-EPEL-2015-81a7616b44)
Mockery is a simple but flexible PHP mock object framework
--------------------------------------------------------------------------------
Update Information:
**Version 0.9.3** (2014-12-22) * Added a basic spy implementation * Added
Mockery\Adapter\Phpunit\MockeryTestCase for more reliable PHPUnit integration
**Version 0.9.2** (2014-09-03) * Some workarounds for the serilisation
problems created by changes to PHP in 5.5.13, 5.4.29, 5.6. * Demeter chains
attempt to reuse doubles as they see fit, so for foo->bar and foo->baz, we'll
attempt to use the same foo Package changelog: - Update to 0.9.3 - add
autoloader using symfony/class-loader - add dependency on hamcrest/hamcrest-php
- run test suite - use github archive from commit reference - add explicit spec
license header
--------------------------------------------------------------------------------
================================================================================
php-guzzlehttp-psr7-1.2.1-1.el7 (FEDORA-EPEL-2015-d0a343e535)
PSR-7 message implementation
--------------------------------------------------------------------------------
Update Information:
### 1.2.1 - 2015-11-02 * Now supporting negative offsets when seeking to
SEEK_END.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277467 - php-guzzlehttp-psr7-1.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1277467
--------------------------------------------------------------------------------
================================================================================
php-hamcrest-1.2.2-1.el7 (FEDORA-EPEL-2015-ded644582e)
PHP port of Hamcrest Matchers
--------------------------------------------------------------------------------
Update Information:
Hamcrest is a matching library originally written for Java, but subsequently
ported to many other languages. php-hamcrest is the official PHP port of
Hamcrest and essentially follows a literal translation of the original Java API
for Hamcrest, with a few Exceptions, mostly down to PHP language barriers. To
use this library, you just have to add, in your project: require_once
'/usr/share/php/Hamcrest/autoload.php';
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1271954 - Review Request: php-hamcrest - PHP port of Hamcrest Matchers
https://bugzilla.redhat.com/show_bug.cgi?id=1271954
--------------------------------------------------------------------------------
================================================================================
php-nette-tester-1.6.1-1.el7 (FEDORA-EPEL-2015-4068975659)
An easy-to-use PHP unit testing framework
--------------------------------------------------------------------------------
Update Information:
Nette Tester is a productive and enjoyable unit testing framework. It's used by
the Nette Framework and is capable of testing any PHP code.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277375 - Review Request: php-nette-tester - An easy-to-use PHP unit testing framework
https://bugzilla.redhat.com/show_bug.cgi?id=1277375
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-barcode-1.5.0-1.el7 (FEDORA-EPEL-2015-d9d8f67b05)
PHP library to generate linear and bidimensional barcodes
--------------------------------------------------------------------------------
Update Information:
* SVG export now uses CSS2 HEX colors
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-color-1.6.2-1.el7 (FEDORA-EPEL-2015-d9d8f67b05)
PHP library to manipulate various color representations
--------------------------------------------------------------------------------
Update Information:
* SVG export now uses CSS2 HEX colors
--------------------------------------------------------------------------------
================================================================================
python-nbxmpp-0.5.3-1.el7 (FEDORA-EPEL-2015-006703c52f)
Python library for non-blocking use of Jabber/XMPP
--------------------------------------------------------------------------------
Update Information:
Gajim 0.16.4 is an upstream bugfix release. To see the changelog and the list of
fixed bugs, visit http://gajim.org/.
--------------------------------------------------------------------------------
================================================================================
statscache-0.0.4-1.el7 (FEDORA-EPEL-2015-b08d398c45)
A daemon to build and keep fedmsg statistics
--------------------------------------------------------------------------------
Update Information:
Latest upstream. ---- Latest upstream. https://github.com/fedora-
infra/statscache/blob/develop/CHANGELOG.rst ---- Move requirements to the
statscache-common subpackage.
--------------------------------------------------------------------------------
================================================================================
wildmagic5-5.13-12.el7 (FEDORA-EPEL-2015-4b33ee7c84)
Wild Magic libraries
--------------------------------------------------------------------------------
Update Information:
wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.el7 - Rebuild with -fPIC - Hardened builds on <F23
--------------------------------------------------------------------------------
================================================================================
yad-0.31.2-1.el7 (FEDORA-EPEL-2015-bfda267ac9)
Display graphical dialogs from shell scripts or command line
--------------------------------------------------------------------------------
Update Information:
yad-0.31.2-1.el7 - Update to 0.31.2
--------------------------------------------------------------------------------
================================================================================
yad-0.31.3-1.el7 (FEDORA-EPEL-2015-0959a7d66e)
Display graphical dialogs from shell scripts or command line
--------------------------------------------------------------------------------
Update Information:
yad-0.31.3-1.el7 - Update to 0.31.3 yad-0.31.3-1.fc23 - Update to 0.31.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1276895 - yad-0.31.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1276895
--------------------------------------------------------------------------------
8 years, 4 months
Fedora EPEL 6 updates-testing report
by updates@fedoraproject.org
The following Fedora EPEL 6 Security updates need testing:
Age URL
139 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6
121 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
115 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
47 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8148 optipng-0.7.5-5.el6
47 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
35 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-68a2c2db36 python-pymongo-3.0.3-1.el6
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-ba19b1c7eb php-horde-horde-5.2.8-1.el6 php-horde-imp-6.2.11-1.el6 php-horde-ingo-3.2.7-1.el6 php-horde-passwd-5.0.4-1.el6
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-22dfcb9feb drupal7-7.41-1.el6
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-cb0897945f lxc-1.0.7-4.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-28606b6d1d perl-HTML-Scrubber-0.15-1.el6.1
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-5d63583df0 metis-5.1.0-7.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e195439195 drupal7-jquery_update-2.7-1.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-967595b7c1 wildmagic5-5.13-12.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8fc6f35cc9 MUMPS-5.0.1-4.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-d47ae2d16b owncloud-7.0.11-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
MUMPS-5.0.1-4.el6
dpm-dsi-1.9.5-11.el6
drupal7-jquery_update-2.7-1.el6
dssp-2.2.1-6.el6
globus-common-16.0-1.el6
globus-gridftp-server-9.0-2.el6
layla-fonts-1.6-2.el6
metis-5.1.0-7.el6
owncloud-7.0.11-1.el6
perl-Canary-Stability-2006-1.el6
php-hamcrest-1.2.2-1.el6
php-nette-tester-1.6.1-1.el6
php-tecnickcom-tc-lib-barcode-1.5.0-1.el6
php-tecnickcom-tc-lib-color-1.6.2-1.el6
rubygem-sequel-4.27.0-2.el6
socket_wrapper-1.1.5-1.el6
wildmagic5-5.13-12.el6
Details about builds:
================================================================================
MUMPS-5.0.1-4.el6 (FEDORA-EPEL-2015-8fc6f35cc9)
A MUltifrontal Massively Parallel sparse direct Solver
--------------------------------------------------------------------------------
Update Information:
MUMPS-5.0.1-4.fc23 - Hardened builds on <F23 MUMPS-5.0.1-4.fc21 - Hardened
builds on <F23 MUMPS-5.0.1-4.fc22 - Hardened builds on <F23
MUMPS-5.0.1-4.el6 - Hardened builds on <F23 MUMPS-5.0.1-4.el7 - Hardened
builds on <F23
--------------------------------------------------------------------------------
================================================================================
dpm-dsi-1.9.5-11.el6 (FEDORA-EPEL-2015-50bdd6df66)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
globus-common-16.0-1.el6 - GT6 update (add globus_extension_get_module_version)
globus-gridftp-server-9.0-2.el6 - GT6 update (Home directory fixes) - GT6
update (add SITE STORATTR command and associated DSI api) dpm-dsi-1.9.5-11.el6
- Rebuilt for globus-gridftp-server 9.0
--------------------------------------------------------------------------------
================================================================================
drupal7-jquery_update-2.7-1.el6 (FEDORA-EPEL-2015-e195439195)
Upgrades the version of jQuery in Drupal core to a newer version of jQuery
--------------------------------------------------------------------------------
Update Information:
See [jQuery Update - Less Critical - Open Redirect - SA-
CONTRIB-2015-158](https://www.drupal.org/node/2598426)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1273670 - drupal7-jquery_update-2.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1273670
--------------------------------------------------------------------------------
================================================================================
dssp-2.2.1-6.el6 (FEDORA-EPEL-2015-d51ab8cf60)
Protein secondary structure assignment
--------------------------------------------------------------------------------
Update Information:
Use __global_ldflags and Boost paths unconditionally per review
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1203749 - Review Request: dssp - Protein secondary structure assignment
https://bugzilla.redhat.com/show_bug.cgi?id=1203749
--------------------------------------------------------------------------------
================================================================================
globus-common-16.0-1.el6 (FEDORA-EPEL-2015-50bdd6df66)
Globus Toolkit - Common Library
--------------------------------------------------------------------------------
Update Information:
globus-common-16.0-1.el6 - GT6 update (add globus_extension_get_module_version)
globus-gridftp-server-9.0-2.el6 - GT6 update (Home directory fixes) - GT6
update (add SITE STORATTR command and associated DSI api) dpm-dsi-1.9.5-11.el6
- Rebuilt for globus-gridftp-server 9.0
--------------------------------------------------------------------------------
================================================================================
globus-gridftp-server-9.0-2.el6 (FEDORA-EPEL-2015-50bdd6df66)
Globus Toolkit - Globus GridFTP Server
--------------------------------------------------------------------------------
Update Information:
globus-common-16.0-1.el6 - GT6 update (add globus_extension_get_module_version)
globus-gridftp-server-9.0-2.el6 - GT6 update (Home directory fixes) - GT6
update (add SITE STORATTR command and associated DSI api) dpm-dsi-1.9.5-11.el6
- Rebuilt for globus-gridftp-server 9.0
--------------------------------------------------------------------------------
================================================================================
layla-fonts-1.6-2.el6 (FEDORA-EPEL-2015-f9f9712538)
A collection of traditional Arabic fonts
--------------------------------------------------------------------------------
Update Information:
Added Digital font
--------------------------------------------------------------------------------
================================================================================
metis-5.1.0-7.el6 (FEDORA-EPEL-2015-5d63583df0)
Serial Graph Partitioning and Fill-reducing Matrix Ordering
--------------------------------------------------------------------------------
Update Information:
metis-5.1.0-7.el7 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.fc22 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.fc21 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.el6 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
metis-5.1.0-7.fc23 - Rebuild for cmake 3.4.0 - Hardened builds on <F23
--------------------------------------------------------------------------------
================================================================================
owncloud-7.0.11-1.el6 (FEDORA-EPEL-2015-d47ae2d16b)
Private file sync and share server
--------------------------------------------------------------------------------
Update Information:
This update provides the latest upstream release of ownCloud in the current
minor series - 8.0.9 for all releases but EPEL 6, 7.0.11 for EPEL 6. These
releases come with unspecified "security improvements", so updating quickly is
recommended. As usual, a minor update should apply smoothly, but we advise you
back up user data, configuration, and database contents before applying the
update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1278121 - owncloud: Unspecified security issues fixed in owncloud 7.0.11, 8.0.9 and 8.1.4
https://bugzilla.redhat.com/show_bug.cgi?id=1278121
--------------------------------------------------------------------------------
================================================================================
perl-Canary-Stability-2006-1.el6 (FEDORA-EPEL-2015-fef73dac9e)
Canary to check perl compatibility for Schmorp's modules
--------------------------------------------------------------------------------
Update Information:
Canary to check perl compatibility for Schmorp's modules.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277708 - Please build perl-Canary-Stability for EPEL 5-7 and Fedora 22
https://bugzilla.redhat.com/show_bug.cgi?id=1277708
--------------------------------------------------------------------------------
================================================================================
php-hamcrest-1.2.2-1.el6 (FEDORA-EPEL-2015-921e8b56f5)
PHP port of Hamcrest Matchers
--------------------------------------------------------------------------------
Update Information:
Hamcrest is a matching library originally written for Java, but subsequently
ported to many other languages. php-hamcrest is the official PHP port of
Hamcrest and essentially follows a literal translation of the original Java API
for Hamcrest, with a few Exceptions, mostly down to PHP language barriers. To
use this library, you just have to add, in your project: require_once
'/usr/share/php/Hamcrest/autoload.php';
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1271954 - Review Request: php-hamcrest - PHP port of Hamcrest Matchers
https://bugzilla.redhat.com/show_bug.cgi?id=1271954
--------------------------------------------------------------------------------
================================================================================
php-nette-tester-1.6.1-1.el6 (FEDORA-EPEL-2015-0bdfcb4827)
An easy-to-use PHP unit testing framework
--------------------------------------------------------------------------------
Update Information:
Nette Tester is a productive and enjoyable unit testing framework. It's used by
the Nette Framework and is capable of testing any PHP code.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277375 - Review Request: php-nette-tester - An easy-to-use PHP unit testing framework
https://bugzilla.redhat.com/show_bug.cgi?id=1277375
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-barcode-1.5.0-1.el6 (FEDORA-EPEL-2015-e106ba5289)
PHP library to generate linear and bidimensional barcodes
--------------------------------------------------------------------------------
Update Information:
* SVG export now uses CSS2 HEX colors
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-color-1.6.2-1.el6 (FEDORA-EPEL-2015-e106ba5289)
PHP library to manipulate various color representations
--------------------------------------------------------------------------------
Update Information:
* SVG export now uses CSS2 HEX colors
--------------------------------------------------------------------------------
================================================================================
rubygem-sequel-4.27.0-2.el6 (FEDORA-EPEL-2015-9f02afac9c)
The Database Toolkit for Ruby
--------------------------------------------------------------------------------
Update Information:
Update to sequel 4.27.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1238506 - rubygem-sequel-4.28.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1238506
--------------------------------------------------------------------------------
================================================================================
socket_wrapper-1.1.5-1.el6 (FEDORA-EPEL-2015-98f7b8d3ff)
A library passing all socket communications through Unix sockets
--------------------------------------------------------------------------------
Update Information:
Update to version 1.1.5
--------------------------------------------------------------------------------
================================================================================
wildmagic5-5.13-12.el6 (FEDORA-EPEL-2015-967595b7c1)
Wild Magic libraries
--------------------------------------------------------------------------------
Update Information:
wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.el7 - Rebuild with -fPIC - Hardened builds on <F23
--------------------------------------------------------------------------------
8 years, 4 months
I need a copy of mod_security-2.5.12-2.el6.x86_64
by Harriman, Chad (SAA)
I have the repo for EPEL synced on my satellite server and the upgrade to 2.7 broke. I need to downgrade but I do not have the mod_security-2.5.12-2.el6.x86_64 package.
How do I obtain a copy to downgrade?
Chad Harriman
Principal Systems Engineer
U.S. Senate Sergeant At Arms
chad_harriman(a)saa.senate.gov
(w) 202-224-1592
(c) 202-213-6413
8 years, 4 months
Re: [EPEL-devel] epel-devel Digest, Vol 31, Issue 11
by Harriman, Chad (SAA)
Thanks!
Chad
On 11/6/15, 1:19 PM, "epel-devel-bounces(a)lists.fedoraproject.org on behalf of epel-devel-request(a)lists.fedoraproject.org" <epel-devel-bounces(a)lists.fedoraproject.org on behalf of epel-devel-request(a)lists.fedoraproject.org> wrote:
>Send epel-devel mailing list submissions to
> epel-devel(a)lists.fedoraproject.org
>
>To subscribe or unsubscribe via the World Wide Web, visit
> https://admin.fedoraproject.org/mailman/listinfo/epel-devel
>or, via email, send a message with subject or body 'help' to
> epel-devel-request(a)lists.fedoraproject.org
>
>You can reach the person managing the list at
> epel-devel-owner(a)lists.fedoraproject.org
>
>When replying, please edit your Subject line so it is more specific
>than "Re: Contents of epel-devel digest..."
>
>
>Today's Topics:
>
> 1. Re: mod_passenger missing from EPEL 6 (Orion Poplawski)
> 2. I need a copy of mod_security-2.5.12-2.el6.x86_64
> (Harriman, Chad (SAA))
> 3. Re: I need a copy of mod_security-2.5.12-2.el6.x86_64
> (Athmane Madjoudj)
> 4. Re: mod_passenger missing from EPEL 6 (Rob Nelson)
> 5. Re: I need a copy of mod_security-2.5.12-2.el6.x86_64
> (Ken Dreyer)
>
>
>----------------------------------------------------------------------
>
>Message: 1
>Date: Fri, 6 Nov 2015 08:10:36 -0700
>From: Orion Poplawski <orion(a)cora.nwra.com>
>To: EPEL Development List <epel-devel(a)lists.fedoraproject.org>
>Subject: Re: [EPEL-devel] mod_passenger missing from EPEL 6
>Message-ID: <563CC2EC.5030406(a)cora.nwra.com>
>Content-Type: text/plain; charset=utf-8; format=flowed
>
>On 11/05/2015 11:30 PM, Rob Nelson wrote:
>> Hello,
>>
>> I have previously installed mod_passenger from EPEL 6:
>>
>> server1$ yum list mod_passenger
>> Loaded plugins: fastestmirror
>> Loading mirror speeds from cached hostfile
>> * base: centos.den.host-engine.com <http://centos.den.host-engine.com>
>> * epel: mirror.steadfast.net <http://mirror.steadfast.net>
>> * extras: mirror.unl.edu <http://mirror.unl.edu>
>> * updates: centos.host-engine.com <http://centos.host-engine.com>
>> Installed Packages
>> mod_passenger.x86_64
>> 3.0.21-11.el6 @epel
>>
>> However, it no longer exists in EPEL:
>>
>> server2$ yum list mod_passenger
>> Loaded plugins: fastestmirror
>> Loading mirror speeds from cached hostfile
>> * base: mirror.cs.uwp.edu <http://mirror.cs.uwp.edu>
>> * extras: mirror.steadfast.net <http://mirror.steadfast.net>
>> * updates: mirror.acsnet.com <http://mirror.acsnet.com>
>> Error: No matching Packages to list
>>
>> I cannot find any notice of this being an orphaned or removed RPM in the
>> mail list archives since ~April when server1 above was provisioned. Did
>> I miss something obvious, or is there a notice of this change somewhere
>> else?
>>
>> Thank you,
>>
>> Rob Nelson
>
>Not sure there was an announcement, although it would have been good if
>there was. As for the reason:
>
>http://pkgs.fedoraproject.org/cgit/rubygem-passenger.git/tree/dead.packag...
>
>--
>Orion Poplawski
>Technical Manager 303-415-9701 x222
>NWRA/CoRA Division FAX: 303-415-9702
>3380 Mitchell Lane orion(a)cora.nwra.com
>Boulder, CO 80301 http://www.cora.nwra.com
>
>
>------------------------------
>
>Message: 2
>Date: Fri, 6 Nov 2015 12:25:59 +0000
>From: "Harriman, Chad (SAA)" <Chad_Harriman(a)saa.senate.gov>
>To: "epel-devel(a)lists.fedoraproject.org"
> <epel-devel(a)lists.fedoraproject.org>
>Subject: [EPEL-devel] I need a copy of
> mod_security-2.5.12-2.el6.x86_64
>Message-ID: <559048E5-567D-41AD-BA64-B596868BD32F(a)saa.senate.gov>
>Content-Type: text/plain; charset="utf-8"
>
>I have the repo for EPEL synced on my satellite server and the upgrade to 2.7 broke. I need to downgrade but I do not have the mod_security-2.5.12-2.el6.x86_64 package.
>How do I obtain a copy to downgrade?
>Chad Harriman
>Principal Systems Engineer
>U.S. Senate Sergeant At Arms
>chad_harriman(a)saa.senate.gov
>(w) 202-224-1592
>(c) 202-213-6413
>
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: <http://lists.fedoraproject.org/pipermail/epel-devel/attachments/20151106/...>
>
>------------------------------
>
>Message: 3
>Date: Fri, 6 Nov 2015 17:02:11 +0100
>From: Athmane Madjoudj <athmane(a)fedoraproject.org>
>To: EPEL Development List <epel-devel(a)lists.fedoraproject.org>
>Subject: Re: [EPEL-devel] I need a copy of
> mod_security-2.5.12-2.el6.x86_64
>Message-ID:
> <CAOV0wtM1AvmgcHt2xgHAuzKCm0Y6s5M3Uw=ufV5DRogBaLvm+g(a)mail.gmail.com>
>Content-Type: text/plain; charset="utf-8"
>
>Hi,
>
>On Fri, Nov 6, 2015 at 1:25 PM, Harriman, Chad (SAA) <
>Chad_Harriman(a)saa.senate.gov> wrote:
>
>> I have the repo for EPEL synced on my satellite server and the upgrade to
>> 2.7 broke. I need to downgrade but I do not have
>> the mod_security-2.5.12-2.el6.x86_64 package.
>> How do I obtain a copy to downgrade?
>>
>
>I guess, you could rebuild EL5 package (it's 2.6.8 + security pacthes),
>rules for 2.5 should run fine with 2.6.x.
>
>AFAIK, we don't keep the old version of the package in the repo.
>
>
>Best regards.
>
>-- Athmane
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: <http://lists.fedoraproject.org/pipermail/epel-devel/attachments/20151106/...>
>
>------------------------------
>
>Message: 4
>Date: Fri, 6 Nov 2015 12:59:26 -0500
>From: Rob Nelson <rnelson0(a)gmail.com>
>To: EPEL Development List <epel-devel(a)lists.fedoraproject.org>
>Subject: Re: [EPEL-devel] mod_passenger missing from EPEL 6
>Message-ID:
> <CAC76iT-46iakBMQiBqnyDcCn_3cC5qWnY6E3=W10JqFnPAOt6w(a)mail.gmail.com>
>Content-Type: text/plain; charset="utf-8"
>
>That explains it. Thank you!
>
>
>Rob Nelson
>rnelson0(a)gmail.com
>
>On Fri, Nov 6, 2015 at 10:10 AM, Orion Poplawski <orion(a)cora.nwra.com>
>wrote:
>
>> On 11/05/2015 11:30 PM, Rob Nelson wrote:
>>
>>> Hello,
>>>
>>> I have previously installed mod_passenger from EPEL 6:
>>>
>>> server1$ yum list mod_passenger
>>> Loaded plugins: fastestmirror
>>> Loading mirror speeds from cached hostfile
>>> * base: centos.den.host-engine.com <http://centos.den.host-engine.com>
>>> * epel: mirror.steadfast.net <http://mirror.steadfast.net>
>>> * extras: mirror.unl.edu <http://mirror.unl.edu>
>>> * updates: centos.host-engine.com <http://centos.host-engine.com>
>>> Installed Packages
>>> mod_passenger.x86_64
>>> 3.0.21-11.el6 @epel
>>>
>>> However, it no longer exists in EPEL:
>>>
>>> server2$ yum list mod_passenger
>>> Loaded plugins: fastestmirror
>>> Loading mirror speeds from cached hostfile
>>> * base: mirror.cs.uwp.edu <http://mirror.cs.uwp.edu>
>>> * extras: mirror.steadfast.net <http://mirror.steadfast.net>
>>> * updates: mirror.acsnet.com <http://mirror.acsnet.com>
>>> Error: No matching Packages to list
>>>
>>> I cannot find any notice of this being an orphaned or removed RPM in the
>>> mail list archives since ~April when server1 above was provisioned. Did
>>> I miss something obvious, or is there a notice of this change somewhere
>>> else?
>>>
>>> Thank you,
>>>
>>> Rob Nelson
>>>
>>
>> Not sure there was an announcement, although it would have been good if
>> there was. As for the reason:
>>
>>
>> http://pkgs.fedoraproject.org/cgit/rubygem-passenger.git/tree/dead.packag...
>>
>> --
>> Orion Poplawski
>> Technical Manager 303-415-9701 x222
>> NWRA/CoRA Division FAX: 303-415-9702
>> 3380 Mitchell Lane orion(a)cora.nwra.com
>> Boulder, CO 80301 http://www.cora.nwra.com
>> _______________________________________________
>> epel-devel mailing list
>> epel-devel(a)lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/epel-devel
>>
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: <http://lists.fedoraproject.org/pipermail/epel-devel/attachments/20151106/...>
>
>------------------------------
>
>Message: 5
>Date: Fri, 6 Nov 2015 11:19:53 -0700
>From: Ken Dreyer <ktdreyer(a)ktdreyer.com>
>To: EPEL Development List <epel-devel(a)lists.fedoraproject.org>
>Subject: Re: [EPEL-devel] I need a copy of
> mod_security-2.5.12-2.el6.x86_64
>Message-ID:
> <CAD3FbMWCjnR=J=O3=B1Pvk-eP+oVxX+84xFUfbMr0BRqKp-3yw(a)mail.gmail.com>
>Content-Type: text/plain; charset=UTF-8
>
>Yeah, the Koji build has been deleted as well:
>http://koji.fedoraproject.org/koji/buildinfo?buildID=242226
>
>It would be a good idea to update your rules for 2.7. That
>mod_security-2.5.12-2.el6 build is over four years old and subject to
>several CVEs...
>
>CVE-2013-5705
>apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote
>attackers to bypass rules by using chunked transfer coding with a
>capitalized Chunked value in the Transfer-Encoding HTTP header.
>
>CVE-2013-2765
>The ModSecurity module before 2.7.4 for the Apache HTTP Server allows
>remote attackers to cause a denial of service (NULL pointer
>dereference, process crash, and disk consumption) via a POST request
>with a large body and a crafted Content-Type header.
>
>CVE-2013-1915
>ModSecurity before 2.7.3 allows remote attackers to read arbitrary
>files, send HTTP requests to intranet servers, or cause a denial of
>service (CPU and memory consumption) via an XML external entity
>declaration in conjunction with an entity reference, aka an XML
>External Entity (XXE) vulnerability.
>
>CVE-2012-4528
>The mod_security2 module before 2.7.0 for the Apache HTTP Server
>allows remote attackers to bypass rules, and deliver arbitrary POST
>data to a PHP application, via a multipart request in which an invalid
>part precedes the crafted data.
>
>CVE-2012-2751
>ModSecurity before 2.6.6, when used with PHP, does not properly handle
>single quotes not at the beginning of a request parameter value in the
>Content-Disposition field of a request with a multipart/form-data
>Content-Type header, which allows remote attackers to bypass filtering
>rules and perform other attacks such as cross-site scripting (XSS)
>attacks. NOTE: this vulnerability exists because of an incomplete fix
>for CVE-2009-5031.
>
>- Ken
>
>On Fri, Nov 6, 2015 at 9:02 AM, Athmane Madjoudj
><athmane(a)fedoraproject.org> wrote:
>> Hi,
>>
>> On Fri, Nov 6, 2015 at 1:25 PM, Harriman, Chad (SAA)
>> <Chad_Harriman(a)saa.senate.gov> wrote:
>>>
>>> I have the repo for EPEL synced on my satellite server and the upgrade to
>>> 2.7 broke. I need to downgrade but I do not have the
>>> mod_security-2.5.12-2.el6.x86_64 package.
>>> How do I obtain a copy to downgrade?
>>
>>
>> I guess, you could rebuild EL5 package (it's 2.6.8 + security pacthes),
>> rules for 2.5 should run fine with 2.6.x.
>>
>> AFAIK, we don't keep the old version of the package in the repo.
>>
>>
>> Best regards.
>>
>> -- Athmane
>>
>> _______________________________________________
>> epel-devel mailing list
>> epel-devel(a)lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/epel-devel
>>
>
>
>------------------------------
>
>_______________________________________________
>epel-devel mailing list
>epel-devel(a)lists.fedoraproject.org
>https://admin.fedoraproject.org/mailman/listinfo/epel-devel
>
>
>End of epel-devel Digest, Vol 31, Issue 11
>******************************************
8 years, 4 months
mod_passenger missing from EPEL 6
by Rob Nelson
Hello,
I have previously installed mod_passenger from EPEL 6:
server1$ yum list mod_passenger
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: centos.den.host-engine.com
* epel: mirror.steadfast.net
* extras: mirror.unl.edu
* updates: centos.host-engine.com
Installed Packages
mod_passenger.x86_64
3.0.21-11.el6 @epel
However, it no longer exists in EPEL:
server2$ yum list mod_passenger
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirror.cs.uwp.edu
* extras: mirror.steadfast.net
* updates: mirror.acsnet.com
Error: No matching Packages to list
I cannot find any notice of this being an orphaned or removed RPM in the
mail list archives since ~April when server1 above was provisioned. Did I
miss something obvious, or is there a notice of this change somewhere else?
Thank you,
Rob Nelson
rnelson0(a)gmail.com
8 years, 4 months
latest python-debian in EPEL7 breaks spacewalk
by Burns, Tyler
python-debian-0.1.27-2.el7.noarch in EPEL7 breaks spacewalk. It is the only version in the EPEL7 repo. The work around in the spacewalk bug report (https://bugzilla.redhat.com/show_bug.cgi?id=1277623) is to downgrade to the old version, python-debian-0.1.21-10.el7.noarch, which is no longer in the EPEL7 repository. Will someone please put python-debian-0.1.21-10.el7.noarch back into EPEL7 until the spacewalk developers can fix the problem with the newer version?
Thanks,
Tyler Burns
8 years, 4 months