The following Fedora EPEL 6 Security updates need testing:
Age URL
308 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-4008 cross-binutils-2.23.51.0.3-1.el6.1
88 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6
70 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
64 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
34 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7634 zabbix20-2.0.15-1.el6
15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7875 onionshare-0.7.1-1.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7917 moodle-2.6.11-1.el6
10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7940 nrpe-2.15-6.el6
10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7961 php-doctrine-cache-1.4.2-1.el6
10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7963 php-doctrine-annotations-1.2.7-1.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7994 seamonkey-2.28-7.ESR_31.8.0.el6
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8027 php-extras-5.3.3-4.el6
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8044 golang-1.5.1-0.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8091 zabbix22-2.2.10-1.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8102 wordpress-4.3.1-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
dar-2.4.18-1.el6
golang-github-AdRoll-goamz-0-0.1.gitf8c4952.el6
golang-github-Azure-azure-sdk-for-go-1.2-0.1.git97d9593.el6
golang-github-denverdino-aliyungo-0-0.1.git0e0f322.el6
golang-github-go-fsnotify-fsnotify-1.2.0-0.1.git96c060f.el6
golang-github-gorilla-handlers-0-0.1.git60c7bfd.el6
golang-github-ncw-swift-0-0.1.git22c8fa9.el6
golang-github-noahdesu-go-ceph-0.3.0-0.1.gitb15639c.el6
golang-github-stevvooe-resumable-0-0.1.git51ad441.el6
libmaxminddb-1.1.1-5.el6
reposurgeon-3.29-1.el6
wordpress-4.3.1-1.el6
Details about builds:
================================================================================
dar-2.4.18-1.el6 (FEDORA-EPEL-2015-8096)
Software for making/restoring incremental CD/DVD backups
--------------------------------------------------------------------------------
Update Information:
New upstream version dar-2.4.18-1.fc23 - New upstream version
dar-2.4.18-1.el7 - new upstream version dar-2.4.18-1.el6 - new upstream
version dar-2.4.18-1.el5 - new upstream version dar-2.4.18-1.fc22 - New
upstream version dar-2.4.18-1.fc21 - new upstream version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1258281 - dar-2.4.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1258281
--------------------------------------------------------------------------------
================================================================================
golang-github-AdRoll-goamz-0-0.1.gitf8c4952.el6 (FEDORA-EPEL-2015-8106)
Fork of the GOAMZ with additional functionality with DynamoDB
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262714 - Review Request: golang-github-AdRoll-goamz - Fork of the GOAMZ with additional functionality with DynamoDB
https://bugzilla.redhat.com/show_bug.cgi?id=1262714
--------------------------------------------------------------------------------
================================================================================
golang-github-Azure-azure-sdk-for-go-1.2-0.1.git97d9593.el6 (FEDORA-EPEL-2015-8105)
Microsoft Azure SDK for Go
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262716 - Review Request: golang-github-Azure-azure-sdk-for-go - Microsoft Azure SDK for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1262716
--------------------------------------------------------------------------------
================================================================================
golang-github-denverdino-aliyungo-0-0.1.git0e0f322.el6 (FEDORA-EPEL-2015-8109)
Go SDK for Aliyun Services
--------------------------------------------------------------------------------
Update Information:
needed by docker/distribution
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262704 - Review Request: golang-github-denverdino-aliyungo - Go SDK for Aliyun Services
https://bugzilla.redhat.com/show_bug.cgi?id=1262704
--------------------------------------------------------------------------------
================================================================================
golang-github-go-fsnotify-fsnotify-1.2.0-0.1.git96c060f.el6 (FEDORA-EPEL-2015-8103)
File system notifications for Go
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262426 - Review Request: golang-github-go-fsnotify-fsnotify - File system notifications for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1262426
--------------------------------------------------------------------------------
================================================================================
golang-github-gorilla-handlers-0-0.1.git60c7bfd.el6 (FEDORA-EPEL-2015-8108)
A collection of useful handlers for Go's net/http package
--------------------------------------------------------------------------------
Update Information:
needed by docker/distribution
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262705 - Review Request: golang-github-gorilla-handlers - A collection of useful handlers for Go's net/http package
https://bugzilla.redhat.com/show_bug.cgi?id=1262705
--------------------------------------------------------------------------------
================================================================================
golang-github-ncw-swift-0-0.1.git22c8fa9.el6 (FEDORA-EPEL-2015-8107)
Go language interface to Swift
--------------------------------------------------------------------------------
Update Information:
needed by docker/distribution
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262710 - Review Request: golang-github-ncw-swift - Go language interface to Swift
https://bugzilla.redhat.com/show_bug.cgi?id=1262710
--------------------------------------------------------------------------------
================================================================================
golang-github-noahdesu-go-ceph-0.3.0-0.1.gitb15639c.el6 (FEDORA-EPEL-2015-8104)
Go bindings for RADOS, RBD, and CephFS
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262711 - Review Request: golang-github-noahdesu-go-ceph - Go bindings for RADOS, RBD, and CephFS
https://bugzilla.redhat.com/show_bug.cgi?id=1262711
--------------------------------------------------------------------------------
================================================================================
golang-github-stevvooe-resumable-0-0.1.git51ad441.el6 (FEDORA-EPEL-2015-8110)
Subset of the Go `crypto` Package with a Resumable Hash Interface
--------------------------------------------------------------------------------
Update Information:
needed by docker/distribution
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262709 - Review Request: golang-github-stevvooe-resumable - Subset of the Go `crypto` Package with a Resumable Hash Interface
https://bugzilla.redhat.com/show_bug.cgi?id=1262709
--------------------------------------------------------------------------------
================================================================================
libmaxminddb-1.1.1-5.el6 (FEDORA-EPEL-2015-8095)
C library for the MaxMind DB file format
--------------------------------------------------------------------------------
Update Information:
C library for the MaxMind DB file format
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1258874 - Review Request: libmaxminddb - C library for the MaxMind DB file format
https://bugzilla.redhat.com/show_bug.cgi?id=1258874
--------------------------------------------------------------------------------
================================================================================
reposurgeon-3.29-1.el6 (FEDORA-EPEL-2015-8112)
SCM Repository Manipulation Tool
--------------------------------------------------------------------------------
Update Information:
# 3.29: 2015-09-02 * Now included: git aliases that allow git to work with
action stamps. * **The new `repomapper` tool helps prepare contributor maps.** *
Use of branchify/branchify_map is now less likely to produce invalid resets. *
`branchify_map` has been changed to handle subdirectories better. `branchify_map
reset` actually works now. * Prevent a crash on empty SVN comments produced by
dumpfiltering. * `assign` command with no selection set or arguments lists
assignments. * New `--user-ignores` option on Subversion reads passes through
.gitignores. * `repotool initialize` now generates an easier-to-read conversion
makefile (Fedora: Used to be conversion.mk in /usr/share/doc/reposurgeon).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1259536 - reposurgeon-3.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1259536
--------------------------------------------------------------------------------
================================================================================
wordpress-4.3.1-1.el6 (FEDORA-EPEL-2015-8102)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
**WordPress 4.3.1 Security and Maintenance Release** [Upstream
announcement](https://wordpress.org/news/2015/09/wordpress-4-3-1/): WordPress
4.3.1 is now available. This is a security release for all previous versions and
we strongly encourage you to update your sites immediately. This release
addresses three issues, including two cross-site scripting vulnerabilities and a
potential privilege escalation. * WordPress versions 4.3 and earlier are
vulnerable to a cross-site scripting vulnerability when processing shortcode
tags (CVE-2015-5714). Reported by Shahar Tal and Netanel Rubin of Check Point. *
A separate cross-site scripting vulnerability was found in the user list table.
Reported by Ben Bidner of the WordPress security team. * Finally, in certain
cases, users without proper permissions could publish private posts and make
them sticky (CVE-2015-5715). Reported by Shahar Tal and Netanel Rubin of Check
Point. WordPress 4.3.1 also fixes twenty-six bugs. For more information, see
the [release notes](https://codex.wordpress.org/Version_4.3.1) or consult the
[list of changes](https://core.trac.wordpress.org/log/branches/4.3/?rev=34199&st
op_rev=33647).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1263657 - CVE-2015-5714 CVE-2015-5715 wordpress: XSS and permission issue fixed in wordpress 4.3.1
https://bugzilla.redhat.com/show_bug.cgi?id=1263657
--------------------------------------------------------------------------------
The following Fedora EPEL 5 Security updates need testing:
Age URL
697 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2013-11893 libguestfs-1.20.12-1.el5
462 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-1626 puppet-2.7.26-1.el5
311 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849 sblim-sfcb-1.3.8-2.el5
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8101 wordpress-4.3.1-1.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
dar-2.4.18-1.el5
davix-0.5.0-1.el5
wordpress-4.3.1-1.el5
Details about builds:
================================================================================
dar-2.4.18-1.el5 (FEDORA-EPEL-2015-8097)
Software for making/restoring incremental CD/DVD backups
--------------------------------------------------------------------------------
Update Information:
New upstream version dar-2.4.18-1.fc23 - New upstream version
dar-2.4.18-1.el7 - new upstream version dar-2.4.18-1.el6 - new upstream
version dar-2.4.18-1.el5 - new upstream version dar-2.4.18-1.fc22 - New
upstream version dar-2.4.18-1.fc21 - new upstream version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1258281 - dar-2.4.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1258281
--------------------------------------------------------------------------------
================================================================================
davix-0.5.0-1.el5 (FEDORA-EPEL-2015-8083)
Toolkit for Http-based file management
--------------------------------------------------------------------------------
Update Information:
Update to davix 0.5.0, see release note for details
--------------------------------------------------------------------------------
================================================================================
wordpress-4.3.1-1.el5 (FEDORA-EPEL-2015-8101)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
**WordPress 4.3.1 Security and Maintenance Release** [Upstream
announcement](https://wordpress.org/news/2015/09/wordpress-4-3-1/): WordPress
4.3.1 is now available. This is a security release for all previous versions and
we strongly encourage you to update your sites immediately. This release
addresses three issues, including two cross-site scripting vulnerabilities and a
potential privilege escalation. * WordPress versions 4.3 and earlier are
vulnerable to a cross-site scripting vulnerability when processing shortcode
tags (CVE-2015-5714). Reported by Shahar Tal and Netanel Rubin of Check Point. *
A separate cross-site scripting vulnerability was found in the user list table.
Reported by Ben Bidner of the WordPress security team. * Finally, in certain
cases, users without proper permissions could publish private posts and make
them sticky (CVE-2015-5715). Reported by Shahar Tal and Netanel Rubin of Check
Point. WordPress 4.3.1 also fixes twenty-six bugs. For more information, see
the [release notes](https://codex.wordpress.org/Version_4.3.1) or consult the
[list of changes](https://core.trac.wordpress.org/log/branches/4.3/?rev=34199&st
op_rev=33647).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1263657 - CVE-2015-5714 CVE-2015-5715 wordpress: XSS and permission issue fixed in wordpress 4.3.1
https://bugzilla.redhat.com/show_bug.cgi?id=1263657
--------------------------------------------------------------------------------
The following Fedora EPEL 7 Security updates need testing:
Age URL
306 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3989 cross-binutils-2.23.88.0.1-2.el7.1
190 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7
86 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6813 chicken-4.9.0.1-4.el7
32 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7613 zabbix20-2.0.15-1.el7
19 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7800 python-django-1.6.11-3.el7
14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7874 onionshare-0.7.1-1.el7
10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7909 pdns-3.4.6-1.el7
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7960 php-doctrine-cache-1.4.2-1.el7
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7962 php-doctrine-annotations-1.2.7-1.el7
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7964 php-doctrine-doctrine-bundle-1.5.2-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
libfabric-1.1.0-1.el7
pbzip2-1.1.12-1.el7
php-Monolog-1.17.1-1.el7
php-tecnickcom-tc-lib-barcode-1.4.3-1.el7
php-tecnickcom-tc-lib-color-1.5.2-1.el7
python-XStatic-roboto-fontface-0.4.3.2-3.el7
python-django-babel-0.4.0-2.el7
xvkbd-3.7-1.el7
Details about builds:
================================================================================
libfabric-1.1.0-1.el7 (FEDORA-EPEL-2015-8068)
Open Fabric Interfaces
--------------------------------------------------------------------------------
Update Information:
OpenFabrics Interfaces (OFI) is a framework focused on exporting fabric
communication services to applications. OFI is best described as a collection
of libraries and applications used to export fabric services. The key
components of OFI are: application interfaces, provider libraries, kernel
services, daemons, and test applications. Libfabric is a core component of OFI.
It is the library that defines and exports the user-space API of OFI, and is
typically the only software that applications deal with directly. It works in
conjunction with provider libraries, which are often integrated directly into
libfabric.
--------------------------------------------------------------------------------
================================================================================
pbzip2-1.1.12-1.el7 (FEDORA-EPEL-2015-8074)
Parallel implementation of bzip2
--------------------------------------------------------------------------------
Update Information:
Update pbzip2 to 1.1.12 release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1144161 - Please include pbzip2 into EPEL for CentOS 7
https://bugzilla.redhat.com/show_bug.cgi?id=1144161
--------------------------------------------------------------------------------
================================================================================
php-Monolog-1.17.1-1.el7 (FEDORA-EPEL-2015-8066)
Sends your logs to files, sockets, inboxes, databases and various web services
--------------------------------------------------------------------------------
Update Information:
### 1.17.1 (2015-08-31) * Fixed RollbarHandler triggering PHP notices ###
1.17.0 (2015-08-30) * Added support for `checksum` and `release`
context/extra values in RavenHandler * Added better support for exceptions in
RollbarHandler * Added UidProcessor::getUid * Added support for showing the
resource type in NormalizedFormatter * Fixed IntrospectionProcessor triggering
PHP notices
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1258230 - php-Monolog-1.17.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1258230
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-barcode-1.4.3-1.el7 (FEDORA-EPEL-2015-8071)
PHP library to generate linear and bidimensional barcodes
--------------------------------------------------------------------------------
Update Information:
Provides tc-lib-barcode: PHP classes to generate linear and bidimensional
barcodes: CODE 39, ANSI MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2
of 5, Interleaved 2 of 5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extension,
EAN 8, EAN 13, UPC-A, UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state
Customer Code), CBC (Customer Bar Code), KIX (Klant index - Customer index),
Intelligent Mail Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE,
PHARMACODE TWO-TRACKS, Datamatrix ECC200, QR-Code, PDF417. ---- Provides tc-
lib-color: PHP library to manipulate various color representations (GRAY, RGB,
HSL, CMYK) and parse Web colors.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252918 - Review Request: php-tecnickcom-tc-lib-color - PHP library to manipulate various color representations
https://bugzilla.redhat.com/show_bug.cgi?id=1252918
[ 2 ] Bug #1252924 - Review Request: php-tecnickcom-tc-lib-barcode - PHP library to generate linear and bidimensional barcodes
https://bugzilla.redhat.com/show_bug.cgi?id=1252924
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-color-1.5.2-1.el7 (FEDORA-EPEL-2015-8071)
PHP library to manipulate various color representations
--------------------------------------------------------------------------------
Update Information:
Provides tc-lib-barcode: PHP classes to generate linear and bidimensional
barcodes: CODE 39, ANSI MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2
of 5, Interleaved 2 of 5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extension,
EAN 8, EAN 13, UPC-A, UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state
Customer Code), CBC (Customer Bar Code), KIX (Klant index - Customer index),
Intelligent Mail Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE,
PHARMACODE TWO-TRACKS, Datamatrix ECC200, QR-Code, PDF417. ---- Provides tc-
lib-color: PHP library to manipulate various color representations (GRAY, RGB,
HSL, CMYK) and parse Web colors.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252918 - Review Request: php-tecnickcom-tc-lib-color - PHP library to manipulate various color representations
https://bugzilla.redhat.com/show_bug.cgi?id=1252918
[ 2 ] Bug #1252924 - Review Request: php-tecnickcom-tc-lib-barcode - PHP library to generate linear and bidimensional barcodes
https://bugzilla.redhat.com/show_bug.cgi?id=1252924
--------------------------------------------------------------------------------
================================================================================
python-XStatic-roboto-fontface-0.4.3.2-3.el7 (FEDORA-EPEL-2015-8069)
roboto-fontface (XStatic packaging standard)
--------------------------------------------------------------------------------
Update Information:
Fixed shebang rpmlint issue in .svg files
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1260290 - Review Request: python-XStatic-roboto-fontface - roboto-fontface 0.4.3 (XStatic packaging standard)
https://bugzilla.redhat.com/show_bug.cgi?id=1260290
--------------------------------------------------------------------------------
================================================================================
python-django-babel-0.4.0-2.el7 (FEDORA-EPEL-2015-8075)
Utilities for using Babel in Django
--------------------------------------------------------------------------------
Update Information:
spec fixes, move docs creation to build (rhbz#1261042)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1261042 - Review Request: python-django-babel - Utilities for using Babel in Django
https://bugzilla.redhat.com/show_bug.cgi?id=1261042
--------------------------------------------------------------------------------
================================================================================
xvkbd-3.7-1.el7 (FEDORA-EPEL-2015-8076)
Virtual Keyboard for X Window System
--------------------------------------------------------------------------------
Update Information:
# Version 3.7 (2015-09-12) [ New (2015-09-12) ] * Right click capability was
broken in the recent releases. This bug is now fixed.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262539 - xvkbd-3.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1262539
--------------------------------------------------------------------------------
The following Fedora EPEL 5 Security updates need testing:
Age URL
695 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2013-11893 libguestfs-1.20.12-1.el5
460 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-1626 puppet-2.7.26-1.el5
309 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849 sblim-sfcb-1.3.8-2.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
pbzip2-1.1.12-1.el5
Details about builds:
================================================================================
pbzip2-1.1.12-1.el5 (FEDORA-EPEL-2015-8072)
Parallel implementation of bzip2
--------------------------------------------------------------------------------
Update Information:
Update pbzip2 to 1.1.12 release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1144161 - Please include pbzip2 into EPEL for CentOS 7
https://bugzilla.redhat.com/show_bug.cgi?id=1144161
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
306 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-4008 cross-binutils-2.23.51.0.3-1.el6.1
86 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6
68 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
62 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
32 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7634 zabbix20-2.0.15-1.el6
14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7875 onionshare-0.7.1-1.el6
10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7917 moodle-2.6.11-1.el6
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7940 nrpe-2.15-6.el6
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7961 php-doctrine-cache-1.4.2-1.el6
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7963 php-doctrine-annotations-1.2.7-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7994 seamonkey-2.28-7.ESR_31.8.0.el6
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8027 php-extras-5.3.3-4.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8044 golang-1.5.1-0.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
libfabric-1.1.0-1.el6
pbzip2-1.1.12-1.el6
php-Monolog-1.17.1-1.el6
php-tecnickcom-tc-lib-barcode-1.4.3-1.el6
php-tecnickcom-tc-lib-color-1.5.2-1.el6
Details about builds:
================================================================================
libfabric-1.1.0-1.el6 (FEDORA-EPEL-2015-8067)
Open Fabric Interfaces
--------------------------------------------------------------------------------
Update Information:
OpenFabrics Interfaces (OFI) is a framework focused on exporting fabric
communication services to applications. OFI is best described as a collection
of libraries and applications used to export fabric services. The key
components of OFI are: application interfaces, provider libraries, kernel
services, daemons, and test applications. Libfabric is a core component of OFI.
It is the library that defines and exports the user-space API of OFI, and is
typically the only software that applications deal with directly. It works in
conjunction with provider libraries, which are often integrated directly into
libfabric.
--------------------------------------------------------------------------------
================================================================================
pbzip2-1.1.12-1.el6 (FEDORA-EPEL-2015-8073)
Parallel implementation of bzip2
--------------------------------------------------------------------------------
Update Information:
Update pbzip2 to 1.1.12 release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1144161 - Please include pbzip2 into EPEL for CentOS 7
https://bugzilla.redhat.com/show_bug.cgi?id=1144161
--------------------------------------------------------------------------------
================================================================================
php-Monolog-1.17.1-1.el6 (FEDORA-EPEL-2015-8065)
Sends your logs to files, sockets, inboxes, databases and various web services
--------------------------------------------------------------------------------
Update Information:
### 1.17.1 (2015-08-31) * Fixed RollbarHandler triggering PHP notices ###
1.17.0 (2015-08-30) * Added support for `checksum` and `release`
context/extra values in RavenHandler * Added better support for exceptions in
RollbarHandler * Added UidProcessor::getUid * Added support for showing the
resource type in NormalizedFormatter * Fixed IntrospectionProcessor triggering
PHP notices
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1258230 - php-Monolog-1.17.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1258230
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-barcode-1.4.3-1.el6 (FEDORA-EPEL-2015-8070)
PHP library to generate linear and bidimensional barcodes
--------------------------------------------------------------------------------
Update Information:
PHP classes to generate linear and bidimensional barcodes: CODE 39, ANSI
MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2 of 5, Interleaved 2 of
5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extension, EAN 8, EAN 13, UPC-A,
UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state Customer Code), CBC
(Customer Bar Code), KIX (Klant index - Customer index), Intelligent Mail
Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE, PHARMACODE TWO-
TRACKS, Datamatrix ECC200, QR-Code, PDF417. ---- Provides tc-lib-color: PHP
library to manipulate various color representations (GRAY, RGB, HSL, CMYK) and
parse Web colors.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252924 - Review Request: php-tecnickcom-tc-lib-barcode - PHP library to generate linear and bidimensional barcodes
https://bugzilla.redhat.com/show_bug.cgi?id=1252924
[ 2 ] Bug #1252918 - Review Request: php-tecnickcom-tc-lib-color - PHP library to manipulate various color representations
https://bugzilla.redhat.com/show_bug.cgi?id=1252918
--------------------------------------------------------------------------------
================================================================================
php-tecnickcom-tc-lib-color-1.5.2-1.el6 (FEDORA-EPEL-2015-8070)
PHP library to manipulate various color representations
--------------------------------------------------------------------------------
Update Information:
PHP classes to generate linear and bidimensional barcodes: CODE 39, ANSI
MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2 of 5, Interleaved 2 of
5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extension, EAN 8, EAN 13, UPC-A,
UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state Customer Code), CBC
(Customer Bar Code), KIX (Klant index - Customer index), Intelligent Mail
Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE, PHARMACODE TWO-
TRACKS, Datamatrix ECC200, QR-Code, PDF417. ---- Provides tc-lib-color: PHP
library to manipulate various color representations (GRAY, RGB, HSL, CMYK) and
parse Web colors.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252924 - Review Request: php-tecnickcom-tc-lib-barcode - PHP library to generate linear and bidimensional barcodes
https://bugzilla.redhat.com/show_bug.cgi?id=1252924
[ 2 ] Bug #1252918 - Review Request: php-tecnickcom-tc-lib-color - PHP library to manipulate various color representations
https://bugzilla.redhat.com/show_bug.cgi?id=1252918
--------------------------------------------------------------------------------
Hi!
As a dependency for celery, update of python-kombu is required in EPEL 7.
The package builds just fine but I've been told to ask this ML if it's
ok to update 2.5 currently in EPEL7 to 3.0.
Please if your package depends on python-kombu, test with the following
build:
https://copr.fedoraproject.org/coprs/rmarko/python-kombu/
If interested in python-celery build:
https://copr.fedoraproject.org/coprs/rmarko/python-celery/
Cheers,
--
Richard
ABRT DevQA
irc: impure_hate #fedora-devel, #abrt, #fedora-cs
The following Fedora EPEL 7 Security updates need testing:
Age URL
305 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3989 cross-binutils-2.23.88.0.1-2.el7.1
189 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7
85 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6813 chicken-4.9.0.1-4.el7
31 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7613 zabbix20-2.0.15-1.el7
18 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7800 python-django-1.6.11-3.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7874 onionshare-0.7.1-1.el7
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7909 pdns-3.4.6-1.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7960 php-doctrine-cache-1.4.2-1.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7962 php-doctrine-annotations-1.2.7-1.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7964 php-doctrine-doctrine-bundle-1.5.2-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
calligra-2.9.7-1.el7
calligra-l10n-2.9.7-1.el7
dd_rescue-1.99-1.el7
fail2ban-0.9.3-1.el7
gilmsg-0.1.2-1.el7
jpype-0.6.1-1.el7
jwhois-4.0-43.el7
kmymoney-4.6.6-2.el7
monit-5.14-1.el7
nagios-plugins-2.0.3-3.el7
php-pimple-3.0.2-1.el7
php-twig-1.21.2-1.el7
Details about builds:
================================================================================
calligra-2.9.7-1.el7 (FEDORA-EPEL-2015-8063)
An integrated office suite
--------------------------------------------------------------------------------
Update Information:
New stable bugfix upstream release, see also
https://www.calligra.org/news/calligra-2-9-7-released/
--------------------------------------------------------------------------------
================================================================================
calligra-l10n-2.9.7-1.el7 (FEDORA-EPEL-2015-8063)
Language files for calligra
--------------------------------------------------------------------------------
Update Information:
New stable bugfix upstream release, see also
https://www.calligra.org/news/calligra-2-9-7-released/
--------------------------------------------------------------------------------
================================================================================
dd_rescue-1.99-1.el7 (FEDORA-EPEL-2015-8056)
Fault tolerant "dd" utility for rescuing data from bad media
--------------------------------------------------------------------------------
Update Information:
bump to latest upstream release 1.99
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1261675 - dd_rescue-1.99 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1261675
--------------------------------------------------------------------------------
================================================================================
fail2ban-0.9.3-1.el7 (FEDORA-EPEL-2015-8057)
Daemon to ban hosts that cause multiple authentication errors
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.3 ============ IMPORTANT incompatible changes
---------------------------------------------- * filter.d/roundcube-auth.conf
- Changed logpath to 'errors' log (was 'userlogins') * action.d/iptables-
common.conf - All calls to iptables command now use -w switch introduced in
iptables 1.4.20 (some distribution could have patched their earlier base
version as well) to provide this locking mechanism useful under heavy
load to avoid contesting on iptables calls. If you need to disable,
define 'action.d/iptables-common.local' with empty value for 'lockingopt'
in `[Init]` section. * mail-whois-lines, sendmail-geoip-lines and sendmail-
whois-lines actions now include by default only the first 1000 log lines in
the emails. Adjust <grepopts> to augment the behavior. Fixes ------ *
reload in interactive mode appends all the jails twice (gh-825) * reload
server/jail failed if database used (but was not changed) and some jail
active (gh-1072) * filter.d/dovecot.conf - also match unknown user in passwd-
file. Thanks Anton Shestakov * Fix fail2ban-regex not parsing
journalmatch correctly from filter config * filter.d/asterisk.conf - fix
security log support for Asterisk 12+ * filter.d/roundcube-auth.conf -
Updated regex to work with 'errors' log (1.0.5 and 1.1.1) - Added regex to
work with 'userlogins' log * action.d/sendmail*.conf - use LC_ALL
(superseeding LC_TIME) to override locale on systems with customized LC_ALL
* performance fix: minimizes connection overhead, close socket only at
communication end (gh-1099) * unbanip always deletes ip from database
(independent of bantime, also if currently not banned or persistent) *
guarantee order of dbfile to be before dbpurgeage (gh-1048) * always set
'dbfile' before other database options (gh-1050) * kill the entire process
group of the child process upon timeout (gh-1129). Otherwise could lead to
resource exhaustion due to hanging whois processes. * resolve
/var/run/fail2ban path in setup.py to help installation on platforms with
/var/run -> /run symlink (gh-1142) New Features ------------------ * RETURN
iptables target is now a variable: <returntype> * New type of operation:
pass2allow, use fail2ban for "knocking", opening a closed port by swapping
blocktype and returntype * New filters: - froxlor-auth - Thanks Joern
Muehlencord - apache-pass - filter Apache access log for successful
authentication * New actions: - shorewall-ipset-proto6 - using proto
feature of the Shorewall. Still requires manual pre-configuration of the
shorewall. See the action file for detail. * New jails: - pass2allow-ftp
- allows FTP traffic after successful HTTP authentication Enhancements
------------------- * action.d/cloudflare.conf - improved documentation on
how to allow multiple CF accounts, and jail.conf got new compound action
definition action_cf_mwl to submit cloudflare report. * Check access to
socket for more detailed logging on error (gh-595) * fail2ban-testcases man
page * filter.d/apache-badbots.conf, filter.d/nginx-botsearch.conf - add
HEAD method verb * Revamp of Travis and coverage automated testing * Added
a space between IP address and the following colon in notification emails
for easier text selection * Character detection heuristics for whois output
via optional setting in mail-whois*.conf. Thanks Thomas Mayer. Not
enabled by default, if _whois_command is set to be
%(_whois_convert_charset)s (e.g. in action.d/mail-whois-common.local), it
- detects character set of whois output (which is undefined by RFC 3912)
via heuristics of the file command - converts whois data to UTF-8 character
set with iconv - sends the whois output in UTF-8 character set to mail
program - avoids that heirloom mailx creates binary attachment for input
with unknown character set
--------------------------------------------------------------------------------
================================================================================
gilmsg-0.1.2-1.el7 (FEDORA-EPEL-2015-8045)
A reliability layer on top of fedmsg
--------------------------------------------------------------------------------
Update Information:
Initial packaging.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1261547 - Review Request: gilmsg - A reliability layer on top of fedmsg
https://bugzilla.redhat.com/show_bug.cgi?id=1261547
--------------------------------------------------------------------------------
================================================================================
jpype-0.6.1-1.el7 (FEDORA-EPEL-2015-8052)
Full access for Python programs to Java class libraries
--------------------------------------------------------------------------------
Update Information:
Initial package (rhbz#1234905)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1234905 - Review Request: jpype - Full access for Python programs to Java class libraries
https://bugzilla.redhat.com/show_bug.cgi?id=1234905
--------------------------------------------------------------------------------
================================================================================
jwhois-4.0-43.el7 (FEDORA-EPEL-2015-8048)
Internet whois/nicname client
--------------------------------------------------------------------------------
Update Information:
- Update jwhois.conf from GitHub - Fixed IDNA 2008 support by running autoreconf
--------------------------------------------------------------------------------
================================================================================
kmymoney-4.6.6-2.el7 (FEDORA-EPEL-2015-8062)
Personal finance
--------------------------------------------------------------------------------
Update Information:
Rebuild for newer kdchart libraries and fix dependencies.
--------------------------------------------------------------------------------
================================================================================
monit-5.14-1.el7 (FEDORA-EPEL-2015-8054)
Manages and monitors processes, files, directories and devices
--------------------------------------------------------------------------------
Update Information:
monit-5.14-1.el7 - Upgrading to new upstream release 5.14.0
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-2.0.3-3.el7 (FEDORA-EPEL-2015-8046)
Host/service/network monitoring program plugins for Nagios
--------------------------------------------------------------------------------
Update Information:
nagios-plugins-2.0.3-3.fc21 - Fix issue where check_mysql was looking in
wrong place for my.cnf - Fixes bug #1256731 nagios-plugins-2.0.3-3.fc22 - Fix
issue where check_mysql was looking in wrong place for my.cnf - Fixes bug
#1256731 nagios-plugins-2.0.3-3.el6 - Fix issue where check_mysql was looking
in wrong place for my.cnf - Fixes bug #1256731 nagios-plugins-2.0.3-3.el7 -
Fix issue where check_mysql was looking in wrong place for my.cnf - Fixes bug
#1256731 nagios-plugins-2.0.3-3.fc23 - Fix issue where check_mysql was
looking in wrong place for my.cnf - Fixes bug #1256731 ---- Add obsoletes for
nagios-plugin-linux_raid < 1.4.3-11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1256731 - /usr/lib64/nagios/plugins/check_mysql looks in the wrong place for .my.cnf
https://bugzilla.redhat.com/show_bug.cgi?id=1256731
[ 2 ] Bug #1256682 - Can't install update
https://bugzilla.redhat.com/show_bug.cgi?id=1256682
--------------------------------------------------------------------------------
================================================================================
php-pimple-3.0.2-1.el7 (FEDORA-EPEL-2015-8051)
A simple dependency injection container for PHP (extension)
--------------------------------------------------------------------------------
Update Information:
### 3.0.2 (2015-09-11) * refactored the C extension * minor non-significant
changes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262507 - php-pimple-v3.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1262507
--------------------------------------------------------------------------------
================================================================================
php-twig-1.21.2-1.el7 (FEDORA-EPEL-2015-8049)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
### 1.21.2 (2015-09-09) * fixed variable names for the deprecation triggering
code * fixed escaping strategy detection based on filename * added Traversable
support for replace, merge, and sort * deprecated support for character by
character replacement for the "replace" filter ### 1.21.1 (2015-08-26) * fixed
regression when using the deprecated Twig_Test_* classes ### 1.21.0
(2015-08-24) * added deprecation notices for deprecated features * added a
deprecation "framework" for filters/functions/tests and test fixtures
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1256767 - php-twig-v1.21.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1256767
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
305 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-4008 cross-binutils-2.23.51.0.3-1.el6.1
85 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6
67 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
61 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
31 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7634 zabbix20-2.0.15-1.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7875 onionshare-0.7.1-1.el6
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7917 moodle-2.6.11-1.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7940 nrpe-2.15-6.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7961 php-doctrine-cache-1.4.2-1.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7963 php-doctrine-annotations-1.2.7-1.el6
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7994 seamonkey-2.28-7.ESR_31.8.0.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8027 php-extras-5.3.3-4.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8044 golang-1.5.1-0.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
fail2ban-0.9.3-1.el6
golang-1.5.1-0.el6
golang-github-boltdb-bolt-1.0-0.3.git90fef38.el6
golang-github-golang-sys-0-0.1.git9c60d1c.el6
golang-github-rakyll-pb-0-0.1.gitdc507ad.el6
golang-github-xiang90-probing-0-0.1.git6a0cc1a.el6
libhtp-0.5.17-1.el6
monit-5.14-1.el6
nagios-plugins-2.0.3-3.el6
php-twig-1.21.2-1.el6
Details about builds:
================================================================================
fail2ban-0.9.3-1.el6 (FEDORA-EPEL-2015-8058)
Ban IPs that make too many password failures
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.3 ============ IMPORTANT incompatible changes
---------------------------------------------- * filter.d/roundcube-auth.conf
- Changed logpath to 'errors' log (was 'userlogins') * action.d/iptables-
common.conf - All calls to iptables command now use -w switch introduced in
iptables 1.4.20 (some distribution could have patched their earlier base
version as well) to provide this locking mechanism useful under heavy
load to avoid contesting on iptables calls. If you need to disable,
define 'action.d/iptables-common.local' with empty value for 'lockingopt'
in `[Init]` section. * mail-whois-lines, sendmail-geoip-lines and sendmail-
whois-lines actions now include by default only the first 1000 log lines in
the emails. Adjust <grepopts> to augment the behavior. Fixes ------ *
reload in interactive mode appends all the jails twice (gh-825) * reload
server/jail failed if database used (but was not changed) and some jail
active (gh-1072) * filter.d/dovecot.conf - also match unknown user in passwd-
file. Thanks Anton Shestakov * Fix fail2ban-regex not parsing
journalmatch correctly from filter config * filter.d/asterisk.conf - fix
security log support for Asterisk 12+ * filter.d/roundcube-auth.conf -
Updated regex to work with 'errors' log (1.0.5 and 1.1.1) - Added regex to
work with 'userlogins' log * action.d/sendmail*.conf - use LC_ALL
(superseeding LC_TIME) to override locale on systems with customized LC_ALL
* performance fix: minimizes connection overhead, close socket only at
communication end (gh-1099) * unbanip always deletes ip from database
(independent of bantime, also if currently not banned or persistent) *
guarantee order of dbfile to be before dbpurgeage (gh-1048) * always set
'dbfile' before other database options (gh-1050) * kill the entire process
group of the child process upon timeout (gh-1129). Otherwise could lead to
resource exhaustion due to hanging whois processes. * resolve
/var/run/fail2ban path in setup.py to help installation on platforms with
/var/run -> /run symlink (gh-1142) New Features ------------------ * RETURN
iptables target is now a variable: <returntype> * New type of operation:
pass2allow, use fail2ban for "knocking", opening a closed port by swapping
blocktype and returntype * New filters: - froxlor-auth - Thanks Joern
Muehlencord - apache-pass - filter Apache access log for successful
authentication * New actions: - shorewall-ipset-proto6 - using proto
feature of the Shorewall. Still requires manual pre-configuration of the
shorewall. See the action file for detail. * New jails: - pass2allow-ftp
- allows FTP traffic after successful HTTP authentication Enhancements
------------------- * action.d/cloudflare.conf - improved documentation on
how to allow multiple CF accounts, and jail.conf got new compound action
definition action_cf_mwl to submit cloudflare report. * Check access to
socket for more detailed logging on error (gh-595) * fail2ban-testcases man
page * filter.d/apache-badbots.conf, filter.d/nginx-botsearch.conf - add
HEAD method verb * Revamp of Travis and coverage automated testing * Added
a space between IP address and the following colon in notification emails
for easier text selection * Character detection heuristics for whois output
via optional setting in mail-whois*.conf. Thanks Thomas Mayer. Not
enabled by default, if _whois_command is set to be
%(_whois_convert_charset)s (e.g. in action.d/mail-whois-common.local), it
- detects character set of whois output (which is undefined by RFC 3912)
via heuristics of the file command - converts whois data to UTF-8 character
set with iconv - sends the whois output in UTF-8 character set to mail
program - avoids that heirloom mailx creates binary attachment for input
with unknown character set
--------------------------------------------------------------------------------
================================================================================
golang-1.5.1-0.el6 (FEDORA-EPEL-2015-8044)
The Go Programming Language
--------------------------------------------------------------------------------
Update Information:
golang-1.5.1-0.fc21 - update to go1.5.1 golang-1.5.1-0.fc22 - update to
go1.5.1 golang-1.5.1-0.el6 - update to go1.5.1 golang-1.5.1-0.fc23 -
update to go1.5.1 ---- update to go1.5; shared objects for x86_64; gdb fixes;
full http smuggle fix; fixes for tests ---- security fixes for net/http
smuggling
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250352 - CVE-2015-5739 CVE-2015-5740 CVE-2015-5741 golang: HTTP request smuggling in net/http library
https://bugzilla.redhat.com/show_bug.cgi?id=1250352
--------------------------------------------------------------------------------
================================================================================
golang-github-boltdb-bolt-1.0-0.3.git90fef38.el6 (FEDORA-EPEL-2015-8064)
A low-level key/value database for Go
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 90fef389f98027ca55594edd7dbd6e7f3926fdad ---- Update of spec
file to spec-2.0 Bump to upstream 980670afcebfd86727505b3061d8667195234816
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1246207 - Tracker for golang-github-boltdb-bolt
https://bugzilla.redhat.com/show_bug.cgi?id=1246207
--------------------------------------------------------------------------------
================================================================================
golang-github-golang-sys-0-0.1.git9c60d1c.el6 (FEDORA-EPEL-2015-8060)
Go packages for low-level interaction with the operating system
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1246277 - Review Request: golang-github-golang-sys - Go packages for low-level interaction with the operating system
https://bugzilla.redhat.com/show_bug.cgi?id=1246277
--------------------------------------------------------------------------------
================================================================================
golang-github-rakyll-pb-0-0.1.gitdc507ad.el6 (FEDORA-EPEL-2015-8061)
Console progress bar for Golang
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262350 - Review Request: golang-github-rakyll-pb - Console progress bar for Golang
https://bugzilla.redhat.com/show_bug.cgi?id=1262350
--------------------------------------------------------------------------------
================================================================================
golang-github-xiang90-probing-0-0.1.git6a0cc1a.el6 (FEDORA-EPEL-2015-8059)
Golang project for probing
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262351 - Review Request: golang-github-xiang90-probing - Golang project for probing
https://bugzilla.redhat.com/show_bug.cgi?id=1262351
--------------------------------------------------------------------------------
================================================================================
libhtp-0.5.17-1.el6 (FEDORA-EPEL-2015-8055)
Security-aware parser for the HTTP protocol and the related bits and pieces
--------------------------------------------------------------------------------
Update Information:
This is a minor bug-fix release: * Fix URI parsing for non-std 'space' chars *
Fixing buffer overrun that was failing clang `-fsanitize=address` checks *
Replace `strcat/sprintf` by `strlcat/snprintf` * Fix `autogen` on CentOS 5.11 *
Fix dereferencing type-punned pointer on CentOS 5.11 * Fix warning on OpenBSD
--------------------------------------------------------------------------------
================================================================================
monit-5.14-1.el6 (FEDORA-EPEL-2015-8053)
Manages and monitors processes, files, directories and devices
--------------------------------------------------------------------------------
Update Information:
monit-5.14-1.el6 - Upgrading to new upstream release 5.14.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #857965 - Update el6 monit to 5.3.1
https://bugzilla.redhat.com/show_bug.cgi?id=857965
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-2.0.3-3.el6 (FEDORA-EPEL-2015-8047)
Host/service/network monitoring program plugins for Nagios
--------------------------------------------------------------------------------
Update Information:
nagios-plugins-2.0.3-3.fc21 - Fix issue where check_mysql was looking in
wrong place for my.cnf - Fixes bug #1256731 nagios-plugins-2.0.3-3.fc22 - Fix
issue where check_mysql was looking in wrong place for my.cnf - Fixes bug
#1256731 nagios-plugins-2.0.3-3.el6 - Fix issue where check_mysql was looking
in wrong place for my.cnf - Fixes bug #1256731 nagios-plugins-2.0.3-3.el7 -
Fix issue where check_mysql was looking in wrong place for my.cnf - Fixes bug
#1256731 nagios-plugins-2.0.3-3.fc23 - Fix issue where check_mysql was
looking in wrong place for my.cnf - Fixes bug #1256731 ---- Add obsoletes for
nagios-plugin-linux_raid < 1.4.3-11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1256731 - /usr/lib64/nagios/plugins/check_mysql looks in the wrong place for .my.cnf
https://bugzilla.redhat.com/show_bug.cgi?id=1256731
[ 2 ] Bug #1256682 - Can't install update
https://bugzilla.redhat.com/show_bug.cgi?id=1256682
--------------------------------------------------------------------------------
================================================================================
php-twig-1.21.2-1.el6 (FEDORA-EPEL-2015-8050)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
### 1.21.2 (2015-09-09) * fixed variable names for the deprecation triggering
code * fixed escaping strategy detection based on filename * added Traversable
support for replace, merge, and sort * deprecated support for character by
character replacement for the "replace" filter ### 1.21.1 (2015-08-26) * fixed
regression when using the deprecated Twig_Test_* classes ### 1.21.0
(2015-08-24) * added deprecation notices for deprecated features * added a
deprecation "framework" for filters/functions/tests and test fixtures
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1256767 - php-twig-v1.21.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1256767
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
303 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-4008 cross-binutils-2.23.51.0.3-1.el6.1
83 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6
65 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
59 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
29 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7634 zabbix20-2.0.15-1.el6
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7875 onionshare-0.7.1-1.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7917 moodle-2.6.11-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7940 nrpe-2.15-6.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7961 php-doctrine-cache-1.4.2-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7963 php-doctrine-annotations-1.2.7-1.el6
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7994 seamonkey-2.28-7.ESR_31.8.0.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8027 php-extras-5.3.3-4.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
cppformat-1.1.0-2.el6
csvcat-0.1-1.20141205git858edfe.el6
docker-io-1.7.1-4.el6
enca-1.16-1.el6
gambit-c-4.7.9-1.el6.1
golang-github-bgentry-speakeasy-0-0.2.git36e9cfd.el6
golang-github-coreos-go-systemd-3-2.el6
golang-github-coreos-pkg-0-0.2.git42a8c3b.el6
golang-github-ugorji-go-0-0.2.git5abd4e9.el6
lua-argparse-0.4.1-2.el6
php-extras-5.3.3-4.el6
proftpd-1.3.3g-6.el6
Details about builds:
================================================================================
cppformat-1.1.0-2.el6 (FEDORA-EPEL-2015-8034)
Small, safe and fast formatting library for C++
--------------------------------------------------------------------------------
Update Information:
Adding cppformat 1.1.0 (fixed tests on PowerPC). ---- Adding cppformat 1.1.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1260340 - cppformat tests fail on PowerPC
https://bugzilla.redhat.com/show_bug.cgi?id=1260340
[ 2 ] Bug #1216279 - Review Request: cppformat - Small, safe and fast formating library for C++
https://bugzilla.redhat.com/show_bug.cgi?id=1216279
--------------------------------------------------------------------------------
================================================================================
csvcat-0.1-1.20141205git858edfe.el6 (FEDORA-EPEL-2015-8030)
Efficiently concatenate CSVs or other tabular text files
--------------------------------------------------------------------------------
Update Information:
csvcat-0.1-1.20141205git858edfe.el6 - Add a manpage
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 10 2015 Fedora <williamjmorenor(a)gmail.com> - 0.1-20141205git858edfe.2
- Add a manpage
--------------------------------------------------------------------------------
================================================================================
docker-io-1.7.1-4.el6 (FEDORA-EPEL-2015-8039)
Automates deployment of containerized applications
--------------------------------------------------------------------------------
Update Information:
Make /etc/init.d/docker aware of ${DOCKER_STORAGE_OPTIONS} and properly source
the config files. ---- Make /etc/init.d/docker aware of
${DOCKER_STORAGE_OPTIONS}
--------------------------------------------------------------------------------
================================================================================
enca-1.16-1.el6 (FEDORA-EPEL-2015-8026)
Character set analyzer and detector
--------------------------------------------------------------------------------
Update Information:
Update to 1.16
--------------------------------------------------------------------------------
================================================================================
gambit-c-4.7.9-1.el6.1 (FEDORA-EPEL-2015-7971)
Scheme programming system
--------------------------------------------------------------------------------
Update Information:
gambit-c-4.7.9-1 - Update to 4.7.9 - Update home page link - Adjust to new
Emacs packaging guidelines, no longer shipping separate packages - Further
reduce expensive optimizations on resource-limited arches
gambit-c-4.7.9-1.el6.1 - Restore old Emacs subpackages; new guidelines do not
apply to el6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1190392 - gambit-c-v4.7.8-bootstrap is available
https://bugzilla.redhat.com/show_bug.cgi?id=1190392
--------------------------------------------------------------------------------
================================================================================
golang-github-bgentry-speakeasy-0-0.2.git36e9cfd.el6 (FEDORA-EPEL-2015-8040)
Golang helpers for reading password input without cgo
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 36e9cfdd690967f4f690c6edcc9ffacd006014a0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250454 - Tracker for golang-github-bgentry-speakeasy
https://bugzilla.redhat.com/show_bug.cgi?id=1250454
--------------------------------------------------------------------------------
================================================================================
golang-github-coreos-go-systemd-3-2.el6 (FEDORA-EPEL-2015-8042)
Go bindings to systemd socket activation, journal and D-BUS APIs
--------------------------------------------------------------------------------
Update Information:
Bump to upstream cea488b4e6855fee89b6c22a811e3c5baca861b6 ---- Bump to
upstream be94bc700879ae8217780e9d141789a2defa302b
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1248722 - Tracker for golang-github-coreos-go-systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1248722
--------------------------------------------------------------------------------
================================================================================
golang-github-coreos-pkg-0-0.2.git42a8c3b.el6 (FEDORA-EPEL-2015-8041)
A collection of go utility packages
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 42a8c3b1a6f917bb8346ef738f32712a7ca0ede7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1245958 - Review Request: golang-github-coreos-pkg - A collection of go utility packages
https://bugzilla.redhat.com/show_bug.cgi?id=1245958
--------------------------------------------------------------------------------
================================================================================
golang-github-ugorji-go-0-0.2.git5abd4e9.el6 (FEDORA-EPEL-2015-8043)
Idiomatic codec and rpc lib for msgpack, cbor, json, etc
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 5abd4e96a45c386928ed2ca2a7ef63e2533e18ec
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250516 - Tracker for golang-github-ugorji-go
https://bugzilla.redhat.com/show_bug.cgi?id=1250516
--------------------------------------------------------------------------------
================================================================================
lua-argparse-0.4.1-2.el6 (FEDORA-EPEL-2015-8031)
Feature-rich command line parser for Lua
--------------------------------------------------------------------------------
Update Information:
lua-argparse-0.4.1-2.el6 - Fixed build issue on EPEL lua-
argparse-0.4.1-2.el7 - Fixed build issue on EPEL
--------------------------------------------------------------------------------
================================================================================
php-extras-5.3.3-4.el6 (FEDORA-EPEL-2015-8027)
Additional PHP modules from the standard PHP distribution
--------------------------------------------------------------------------------
Update Information:
Backport mcrypt upstream security fix from EPEL7
--------------------------------------------------------------------------------
================================================================================
proftpd-1.3.3g-6.el6 (FEDORA-EPEL-2015-7979)
Flexible, stable and highly-configurable FTP server
--------------------------------------------------------------------------------
Update Information:
This update adds a proftpd-utils sub-package containing some utilities that may
be useful for some proftpd users: * ftpasswd: generate passwd(5) files for use
with AuthUserFile * ftpcount: show the current number of connections per
server/virtualhost * ftpmail: monitor transfer log and send email when files
uploaded * ftpquota: manipulate quota tables * ftptop: show the current status
of FTP sessions * ftpwho: show the current process information for each FTP
session Note that ftpcount, ftptop and ftpwho were previously included in the
main proftpd package, and the other tools have not previously been packaged for
EPEL-6. Splitting out a proftpd-utils sub-package results in the main proftpd
package having no dependency on perl, as per the current Fedora proftpd package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1258440 - Missing ftpasswd tool into the proftpd RPM
https://bugzilla.redhat.com/show_bug.cgi?id=1258440
--------------------------------------------------------------------------------