The following Fedora EPEL 7 Security updates need testing:
Age URL
577 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7
339 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7
57 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c redis-3.2.3-1.el7
56 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-4b8dd3488d knot-1.6.8-1.el7
41 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3 chicken-4.11.0-3.el7
14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-49577d864a mongodb-2.6.12-3.el7
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-aca1572ceb mingw-gnutls-3.3.24-1.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-28ad6782b3 php-adodb-5.20.6-2.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-208f62faa6 links-2.13-1.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-452534ff97 php-ZendFramework-1.12.20-1.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-39560a2353 mingw-c-ares-1.12.0-1.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-60045af95e mingw-libidn-1.33-1.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-0890ae6d2d nsd-4.1.13-1.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-387d58ef27 chromium-53.0.2785.143-1.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-03fb3c1531 banshee-2.6.2-11.el7 dbus-sharp-0.7.0-15.el7 dbus-sharp-glib-0.5.0-13.el7 gdata-sharp-1.4.0.2-18.el7 gio-sharp-0.3-14.el7 gkeyfile-sharp-0.1-19.el7 gnome-sharp-2.24.2-12.el7 gtk-sharp-beans-2.14.0-17.el7 gtk-sharp2-2.12.26-3.el7 gtk-sharp3-2.99.3-16.el7 gudev-sharp-0.1-18.el7 libappindicator-12.10.0-11.el7 libgpod-0.8.3-8.el7 mono-4.2.4-7.el7 mono-addins-1.1-3.el7 mono-cecil-0.9.6-6.el7 mono-zeroconf-0.9.0-16.el7 notify-sharp-0.4.0-0.26.20100411svn.el7 notify-sharp3-3.0.3-2.el7 nunit-3.5-1.el7 nunit2-2.6.4-14.el7 pinta-1.6-5.el7 taglib-sharp-2.1.0.0-3.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
OpenColorIO-1.0.9-4.el7
OpenImageIO-1.5.24-3.el7
banshee-2.6.2-11.el7
bodhi-2.2.4-1.el7
dbus-sharp-0.7.0-15.el7
dbus-sharp-glib-0.5.0-13.el7
dpm-xrootd-3.6.1-2.el7
fts-3.4.3-3.el7
gdata-sharp-1.4.0.2-18.el7
gfal2-2.12.2-2.el7
gio-sharp-0.3-14.el7
gkeyfile-sharp-0.1-19.el7
gnome-sharp-2.24.2-12.el7
gtk-sharp-beans-2.14.0-17.el7
gtk-sharp2-2.12.26-3.el7
gtk-sharp3-2.99.3-16.el7
gudev-sharp-0.1-18.el7
libappindicator-12.10.0-11.el7
libgpod-0.8.3-8.el7
libmediainfo-0.7.89-1.el7
mediainfo-0.7.89-1.el7
mkvtoolnix-7.4.0-3.el7
mono-4.2.4-7.el7
mono-addins-1.1-3.el7
mono-cecil-0.9.6-6.el7
mono-zeroconf-0.9.0-16.el7
notify-sharp-0.4.0-0.26.20100411svn.el7
notify-sharp3-3.0.3-2.el7
nunit-3.5-1.el7
nunit2-2.6.4-14.el7
perl-Messaging-Message-1.6.1-1.el7
perl-No-Worries-1.3-1.el7
php-webmozart-assert-1.1.0-1.el7
php-webmozart-path-util-2.3.0-1.el7
pinta-1.6-5.el7
pugixml-1.7-3.el7
python-asciitree-0.3.3-3.el7
taglib-sharp-2.1.0.0-3.el7
xrootd-4.4.1-1.el7
zabbix22-2.2.15-1.el7
Details about builds:
================================================================================
OpenColorIO-1.0.9-4.el7 (FEDORA-EPEL-2016-dce60c46e0)
Enables color transforms and image display across graphics apps
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version for new package review and rebuild
dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
OpenImageIO-1.5.24-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
Library for reading and writing images
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version for new package review and rebuild
dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
banshee-2.6.2-11.el7 (FEDORA-EPEL-2016-03fb3c1531)
Easily import, manage, and play selections from your music collection
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
bodhi-2.2.4-1.el7 (FEDORA-EPEL-2016-3081a94111)
A modular framework that facilitates publishing software updates
--------------------------------------------------------------------------------
Update Information:
Update to 2.2.4. Release notes available at https://github.com/fedora-
infra/bodhi/releases/tag/2.2.4 ---- Update to 2.2.3. Release notes at
https://github.com/fedora-infra/bodhi/releases/tag/2.2.3 ---- Update to 2.2.2.
Release notes at https://github.com/fedora-infra/bodhi/releases/tag/2.2.2 ----
Update to 2.2.1. Release notes at https://github.com/fedora-
infra/bodhi/releases/tag/2.2.1 ---- Backport two patches to correct module
paths from the devel branch upstream. ---- Update to 2.2.0. Release notes
available at https://github.com/fedora-
infra/bodhi/blob/2.2.0/docs/release_notes.rst ---- Updated to work better
against bodhi2 with the latest python-fedora bindings.
--------------------------------------------------------------------------------
================================================================================
dbus-sharp-0.7.0-15.el7 (FEDORA-EPEL-2016-03fb3c1531)
C# bindings for D-Bus
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
dbus-sharp-glib-0.5.0-13.el7 (FEDORA-EPEL-2016-03fb3c1531)
C# bindings for D-Bus glib main loop integration
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
dpm-xrootd-3.6.1-2.el7 (FEDORA-EPEL-2016-352b0d13a1)
XROOT interface to the Disk Pool Manager (DPM)
--------------------------------------------------------------------------------
Update Information:
- fix wrong dependency to dmlite ---- * new upstream release
--------------------------------------------------------------------------------
================================================================================
fts-3.4.3-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
File Transfer Service V3
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version for new package review and rebuild
dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
gdata-sharp-1.4.0.2-18.el7 (FEDORA-EPEL-2016-03fb3c1531)
.NET library for the Google Data API
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gfal2-2.12.2-2.el7 (FEDORA-EPEL-2016-dce60c46e0)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version for new package review and rebuild
dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
gio-sharp-0.3-14.el7 (FEDORA-EPEL-2016-03fb3c1531)
C# bindings for gio
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gkeyfile-sharp-0.1-19.el7 (FEDORA-EPEL-2016-03fb3c1531)
C# bindings for glib2's keyfile implementation
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gnome-sharp-2.24.2-12.el7 (FEDORA-EPEL-2016-03fb3c1531)
GTK+ and GNOME bindings for Mono
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gtk-sharp-beans-2.14.0-17.el7 (FEDORA-EPEL-2016-03fb3c1531)
C# bindings for GTK+ API not included in GTK#
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gtk-sharp2-2.12.26-3.el7 (FEDORA-EPEL-2016-03fb3c1531)
GTK+ and GNOME bindings for Mono
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gtk-sharp3-2.99.3-16.el7 (FEDORA-EPEL-2016-03fb3c1531)
GTK+ 3 and GNOME 3 bindings for Mono
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
gudev-sharp-0.1-18.el7 (FEDORA-EPEL-2016-03fb3c1531)
C# bindings for gudev
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
libappindicator-12.10.0-11.el7 (FEDORA-EPEL-2016-03fb3c1531)
Application indicators library
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
libgpod-0.8.3-8.el7 (FEDORA-EPEL-2016-03fb3c1531)
Library to access the contents of an iPod
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
libmediainfo-0.7.89-1.el7 (FEDORA-EPEL-2016-5368eba6f5)
Library for supplies technical and tag information about a video or audio file
--------------------------------------------------------------------------------
Update Information:
Update to 0.7.89.
--------------------------------------------------------------------------------
================================================================================
mediainfo-0.7.89-1.el7 (FEDORA-EPEL-2016-5368eba6f5)
Supplies technical and tag information about a video or audio file (CLI)
--------------------------------------------------------------------------------
Update Information:
Update to 0.7.89.
--------------------------------------------------------------------------------
================================================================================
mkvtoolnix-7.4.0-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
Matroska container manipulation utilities
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version for new package review and rebuild
dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
mono-4.2.4-7.el7 (FEDORA-EPEL-2016-03fb3c1531)
Cross-platform, Open Source, .NET development framework
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
mono-addins-1.1-3.el7 (FEDORA-EPEL-2016-03fb3c1531)
Addins for mono
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
mono-cecil-0.9.6-6.el7 (FEDORA-EPEL-2016-03fb3c1531)
Library to generate and inspect programs and libraries in the ECMA CIL form
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
mono-zeroconf-0.9.0-16.el7 (FEDORA-EPEL-2016-03fb3c1531)
Mono.Zeroconf networking library
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
notify-sharp-0.4.0-0.26.20100411svn.el7 (FEDORA-EPEL-2016-03fb3c1531)
A C# implementation for Desktop Notifications
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
notify-sharp3-3.0.3-2.el7 (FEDORA-EPEL-2016-03fb3c1531)
A C# implementation for Desktop Notifications
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
nunit-3.5-1.el7 (FEDORA-EPEL-2016-03fb3c1531)
Unit test framework for CLI
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
nunit2-2.6.4-14.el7 (FEDORA-EPEL-2016-03fb3c1531)
Unit test framework for CLI
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
perl-Messaging-Message-1.6.1-1.el7 (FEDORA-EPEL-2016-e0c457ca86)
Abstraction of a message
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.6.1 upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1381897 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1381897
--------------------------------------------------------------------------------
================================================================================
perl-No-Worries-1.3-1.el7 (FEDORA-EPEL-2016-882f5ebe77)
Perl coding without worries
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.3 upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1381896 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1381896
--------------------------------------------------------------------------------
================================================================================
php-webmozart-assert-1.1.0-1.el7 (FEDORA-EPEL-2016-218a53a120)
Assertions to validate method input/output with nice error messages
--------------------------------------------------------------------------------
Update Information:
## php-webmozart-assert This library contains efficient assertions to test the
input and output of your methods. With these assertions, you can greatly reduce
the amount of coding needed to write a safe implementation. All assertions in
the Assert class throw an \InvalidArgumentException if they fail. ## php-
webmozart-path-util This package provides robust, cross-platform utility
functions for normalizing, comparing and modifying file paths and URLs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380155 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380155
[ 2 ] Bug #1380156 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380156
--------------------------------------------------------------------------------
================================================================================
php-webmozart-path-util-2.3.0-1.el7 (FEDORA-EPEL-2016-218a53a120)
Cross-platform utilities for file paths
--------------------------------------------------------------------------------
Update Information:
## php-webmozart-assert This library contains efficient assertions to test the
input and output of your methods. With these assertions, you can greatly reduce
the amount of coding needed to write a safe implementation. All assertions in
the Assert class throw an \InvalidArgumentException if they fail. ## php-
webmozart-path-util This package provides robust, cross-platform utility
functions for normalizing, comparing and modifying file paths and URLs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380155 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380155
[ 2 ] Bug #1380156 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380156
--------------------------------------------------------------------------------
================================================================================
pinta-1.6-5.el7 (FEDORA-EPEL-2016-03fb3c1531)
An easy to use drawing and image editing program
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
pugixml-1.7-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
A light-weight C++ XML processing library
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version for new package review and rebuild
dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
python-asciitree-0.3.3-3.el7 (FEDORA-EPEL-2016-dad9403bad)
Draws ASCII trees
--------------------------------------------------------------------------------
Update Information:
Initial packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1375735 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1375735
--------------------------------------------------------------------------------
================================================================================
taglib-sharp-2.1.0.0-3.el7 (FEDORA-EPEL-2016-03fb3c1531)
Provides tag reading and writing for Banshee and other Mono apps
--------------------------------------------------------------------------------
Update Information:
Upgrade to Mono 4 in Epel7. mono-data-postgresql should now be properly
obsoleted. adding notify-sharp3 to the update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1220138 - EPEL's version of Mono is horrendously outdated with lots of vulns. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1220138
--------------------------------------------------------------------------------
================================================================================
xrootd-4.4.1-1.el7 (FEDORA-EPEL-2016-7bdb6fdc24)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
Version 4.4.1 ------------- **Major bug fixes** * **[XrdCl]** Use posix
semaphores for fedora >= 22. * **[XrdCl]** Disable omit-frame-pointer for gcc
>= 4.9.3 (only if custom semaphores are being used). * **[XrdCl]** Fix
deadlock in XrdCl::PollerBuiltIn during finalize.
--------------------------------------------------------------------------------
================================================================================
zabbix22-2.2.15-1.el7 (FEDORA-EPEL-2016-5692d0d692)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
https://www.zabbix.com/documentation/3.0/manual/introduction/whatsnew305http://www.zabbix.com/rn3.0.5.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1367113 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1367113
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
454 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
448 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
379 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
338 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6
310 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6
195 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-30a8346813 vtun-3.0.1-10.el6
55 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-a1450d7fe0 knot-1.6.8-1.el6
40 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53 chicken-4.11.0-3.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-edda50420f mongodb-2.4.14-4.el6
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-25e30f6dc3 jansson-2.9-1.el6
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8602185c5 links-2.13-1.el6
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-1117d3c7f6 golang-1.7.1-1.el6
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-efb0141e9c php-ZendFramework-1.12.20-1.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-63189174a4 nsd-4.1.13-1.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3428efd3c php-symfony-2.3.42-1.el6
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-c4b3ba1af6 nodejs-0.10.47-2.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
dpm-dsi-1.9.9-1.el6
epel-rpm-macros-6-14
php-phpseclib-2.0.4-1.el6
php-twig-1.26.0-1.el6
python-bitarray-0.8.1-4.el6
zstd-1.1.0-1.el6
Details about builds:
================================================================================
dpm-dsi-1.9.9-1.el6 (FEDORA-EPEL-2016-10cba13cb8)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
================================================================================
epel-rpm-macros-6-14 (FEDORA-EPEL-2016-a3fbbc03f0)
Extra Packages for Enterprise Linux RPM macros
--------------------------------------------------------------------------------
Update Information:
Drop %py3_* stub macros.
--------------------------------------------------------------------------------
================================================================================
php-phpseclib-2.0.4-1.el6 (FEDORA-EPEL-2016-6c9a1e102b)
PHP Secure Communications Library
--------------------------------------------------------------------------------
Update Information:
**Version 2.0.4** - 2016-08-18 * fix E_DEPRECATED errors on PHP 7.1 (#1041)
* SFTP: speed up downloads (#945) * SFTP: fix infinite loop when uploading
empty file (#995) * ASN1: fix possible infinite loop in decode (#1027) ----
**Version 2.0.3** - 2016-08-18 - BigInteger/RSA: don't compare openssl versions
> 1.0 (#946) - RSA: don't attempt to use the CRT when zero value components
exist (#980) - RSA: zero salt length RSA signatures don't work (#1002) - ASN1:
fix PHP Warning on PHP 7.1 (#1013) - X509: set parameter fields to null for
CSR's / RSA (#914) - CRL optimizations (#1000) - SSH2: fix "Expected
SSH_FXP_STATUS or ..." error (#999) - SSH2: use stream_get_* instead of fread()
/ fgets() (#967) - SFTP: make symlinks support relative target's (#1004) - SFTP:
fix sending stream resulting in zero byte file (#995)
--------------------------------------------------------------------------------
================================================================================
php-twig-1.26.0-1.el6 (FEDORA-EPEL-2016-b589985da2)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
**Twig 1.26.0** (2016-10-02) * added template cache invalidation based on more
environment options * added a missing deprecation notice * fixed template
paths when a template is stored in a PHAR file * allowed
filters/functions/tests implementation to use a different class than the
extension they belong to * deprecated Twig_ExtensionInterface::getName() ----
**Twig 1.25.0** (2016-09-21) * changed the way we store template source in
template classes * removed usage of realpath in cache keys * fixed Twig cache
sharing when used with different versions of PHP * removed embed parent
workaround for simple use cases * deprecated the ability to store non Node
instances in Node::$nodes * deprecated Twig_Environment::getLexer(),
Twig_Environment::getParser(), Twig_Environment::getCompiler() * deprecated
Twig_Compiler::getFilename()
--------------------------------------------------------------------------------
================================================================================
python-bitarray-0.8.1-4.el6 (FEDORA-EPEL-2016-7a82823df2)
Efficient Array of Booleans --C Extensions
--------------------------------------------------------------------------------
Update Information:
Add support to epel 7 and 6, disable python3 in el6
--------------------------------------------------------------------------------
================================================================================
zstd-1.1.0-1.el6 (FEDORA-EPEL-2016-ebb17c7dc5)
Zstd compression library
--------------------------------------------------------------------------------
Update Information:
Initial release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1373218 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1373218
--------------------------------------------------------------------------------
Dear all,
You are kindly invited to the meeting:
EPSCO meeting on 2016-10-05 from 18:00:00 to 19:00:00 GMT
At fedora-meeting(a)irc.freenode.net
The meeting will be about:
Extra Packages for Enterprise Linux Steering COmmittee (EPSCO) has a weekly meeting to go over concerns and problems in the EPEL distribution.
You are kindly invited to come and meet with us
Source: https://apps.fedoraproject.org/calendar/meeting/4639/
The following Fedora EPEL 7 Security updates need testing:
Age URL
575 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7
337 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7
56 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c redis-3.2.3-1.el7
54 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-4b8dd3488d knot-1.6.8-1.el7
40 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3 chicken-4.11.0-3.el7
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-03fb3c1531 banshee-2.6.2-11.el7 dbus-sharp-0.7.0-15.el7 dbus-sharp-glib-0.5.0-13.el7 gdata-sharp-1.4.0.2-18.el7 gio-sharp-0.3-14.el7 gkeyfile-sharp-0.1-19.el7 gnome-sharp-2.24.2-12.el7 gtk-sharp-beans-2.14.0-17.el7 gtk-sharp2-2.12.26-3.el7 gtk-sharp3-2.99.3-16.el7 gudev-sharp-0.1-18.el7 libappindicator-12.10.0-11.el7 libgpod-0.8.3-8.el7 mono-4.2.4-7.el7 mono-addins-1.1-3.el7 mono-cecil-0.9.6-6.el7 mono-zeroconf-0.9.0-16.el7 notify-sharp-0.4.0-0.26.20100411svn.el7 notify-sharp3-3.0.3-2.el7 nunit-3.4.1-2.el7 nunit2-2.6.4-14.el7 pinta-1.6-5.el7 taglib-sharp-2.1.0.0-3.el7
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-49577d864a mongodb-2.6.12-3.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-aca1572ceb mingw-gnutls-3.3.24-1.el7
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8f6ed4db26 libuv-1.9.1-1.el7 nodejs-6.7.0-107.el7
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-28ad6782b3 php-adodb-5.20.6-2.el7
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-208f62faa6 links-2.13-1.el7
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-452534ff97 php-ZendFramework-1.12.20-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-39560a2353 mingw-c-ares-1.12.0-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-60045af95e mingw-libidn-1.33-1.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-0890ae6d2d nsd-4.1.13-1.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-387d58ef27 chromium-53.0.2785.143-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
OpenImageIO-1.5.24-3.el7
SDL2_mixer-2.0.1-2.el7
check-mk-1.2.8p11-2.el7
chromium-53.0.2785.143-1.el7
dpm-dsi-1.9.9-1.el7
fail2ban-0.9.5-3.el7
fluidsynth-1.1.6-7.el7
fts-3.4.3-3.el7
gfal2-2.12.2-2.el7
lash-0.5.4-26.el7
lumina-desktop-1.0.0-5.p2.Lbc08e90.el7
mingw-cmocka-1.1.0-2.el7
mkvtoolnix-7.4.0-3.el7
php-bartlett-php-compatinfo-db-1.13.0-1.el7
php-phpseclib-2.0.4-1.el7
php-symfony-2.8.12-2.el7
php-twig-1.26.0-1.el7
php-udan11-sql-parser-3.4.10-1.el7
plasma-oxygen-5.8.0-2.el7
pugixml-1.7-3.el7
python-bitarray-0.8.1-4.el7
python-jcconv-0.2.4-2.el7
sddm-0.14.0-3.el7
sks-1.1.6-1.el7
zstd-1.1.0-1.el7
Details about builds:
================================================================================
OpenImageIO-1.5.24-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
Library for reading and writing images
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
SDL2_mixer-2.0.1-2.el7 (FEDORA-EPEL-2016-653039c60a)
Simple DirectMedia Layer - Sample Mixer Library
--------------------------------------------------------------------------------
Update Information:
Initial SD2_mixer build for EPEL 7.
--------------------------------------------------------------------------------
================================================================================
check-mk-1.2.8p11-2.el7 (FEDORA-EPEL-2016-c760babd41)
A new general purpose Nagios-plugin for retrieving data
--------------------------------------------------------------------------------
Update Information:
Dist tag fix for mod_python to be a require on EL6 only. ---- New upstream
release.
--------------------------------------------------------------------------------
================================================================================
chromium-53.0.2785.143-1.el7 (FEDORA-EPEL-2016-387d58ef27)
A WebKit (Blink) powered web browser
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-5177, CVE-2016-5178
https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for-
desktop_29.html ---- Update to 53.0.2785.116. https://chromium.googlesource.c
om/chromium/src/+log/53.0.2785.113..53.0.2785.116?pretty=fuller&n=10000 ----
Update to 53.0.2785.113 Security fix for CVE-2016-5170, CVE-2016-5171,
CVE-2016-5172, CVE-2016-5173, CVE-2016-5174, CVE-2016-5175 ---- Stable update
to 53.0.2785.101. Security fix for CVE-2016-5147, CVE-2016-5148, CVE-2016-5149,
CVE-2016-5150, CVE-2016-5151, CVE-2016-5152, CVE-2016-5153, CVE-2016-5154,
CVE-2016-5155, CVE-2016-5156, CVE-2016-5157, CVE-2016-5158, CVE-2016-5159,
CVE-2016-5161, CVE-2016-5162, CVE-2016-5163, CVE-2016-5164, CVE-2016-5165,
CVE-2016-5166, CVE-2016-5160, CVE-2016-5167 Also applies fix for chrome-remote-
desktop where HOME env variable was not properly set via systemd service. ----
Remove fedora only Requires, use bundled harfbuzz because el7 system lib is too
old. ---- Disabled hidpi option in Chromium. Cleanup widevine handling so that
third party addon package can exist. Add Requires(post) for selinux deps. Fix
provides/requires to not include private libs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380632 - CVE-2016-5178 chromium-browser: various fixes from internal audits
https://bugzilla.redhat.com/show_bug.cgi?id=1380632
[ 2 ] Bug #1380631 - CVE-2016-5177 chromium-browser: use after free in v8
https://bugzilla.redhat.com/show_bug.cgi?id=1380631
[ 3 ] Bug #1375868 - CVE-2016-5175 chromium-browser: various fixes from internal audits
https://bugzilla.redhat.com/show_bug.cgi?id=1375868
[ 4 ] Bug #1375867 - CVE-2016-5174 chromium-browser: popup not correctly suppressed
https://bugzilla.redhat.com/show_bug.cgi?id=1375867
[ 5 ] Bug #1375866 - CVE-2016-5173 chromium-browser: extension resource access
https://bugzilla.redhat.com/show_bug.cgi?id=1375866
[ 6 ] Bug #1375865 - CVE-2016-5172 chromium-browser: arbitrary memory read in v8
https://bugzilla.redhat.com/show_bug.cgi?id=1375865
[ 7 ] Bug #1375864 - CVE-2016-5171 chromium-browser: use after free in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1375864
[ 8 ] Bug #1375863 - CVE-2016-5170 chromium-browser: use after free in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1375863
[ 9 ] Bug #1372229 - CVE-2016-5167 chromium-browser: various fixes from internal audits
https://bugzilla.redhat.com/show_bug.cgi?id=1372229
[ 10 ] Bug #1372228 - CVE-2016-5160 chromium-browser: extensions web accessible resources bypass
https://bugzilla.redhat.com/show_bug.cgi?id=1372228
[ 11 ] Bug #1372227 - CVE-2016-5166 chromium-browser: smb relay attack via save page as
https://bugzilla.redhat.com/show_bug.cgi?id=1372227
[ 12 ] Bug #1372225 - CVE-2016-5165 chromium-browser: script injection in devtools
https://bugzilla.redhat.com/show_bug.cgi?id=1372225
[ 13 ] Bug #1372224 - CVE-2016-5164 chromium-browser: universal xss using devtools
https://bugzilla.redhat.com/show_bug.cgi?id=1372224
[ 14 ] Bug #1372223 - CVE-2016-5163 chromium-browser: address bar spoofing
https://bugzilla.redhat.com/show_bug.cgi?id=1372223
[ 15 ] Bug #1372222 - CVE-2016-5162 chromium-browser: extensions web accessible resources bypass
https://bugzilla.redhat.com/show_bug.cgi?id=1372222
[ 16 ] Bug #1372221 - CVE-2016-5161 chromium-browser: type confusion in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1372221
[ 17 ] Bug #1372220 - CVE-2016-5159 chromium-browser: heap overflow in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1372220
[ 18 ] Bug #1372219 - CVE-2016-5158 chromium-browser: heap overflow in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1372219
[ 19 ] Bug #1372218 - CVE-2016-5157 chromium-browser: heap overflow in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1372218
[ 20 ] Bug #1372217 - CVE-2016-5156 chromium-browser: use after free in event bindings
https://bugzilla.redhat.com/show_bug.cgi?id=1372217
[ 21 ] Bug #1372216 - CVE-2016-5155 chromium-browser: address bar spoofing
https://bugzilla.redhat.com/show_bug.cgi?id=1372216
[ 22 ] Bug #1372215 - CVE-2016-5154 chromium-browser: heap overflow in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1372215
[ 23 ] Bug #1372214 - CVE-2016-5153 chromium-browser: use after destruction in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1372214
[ 24 ] Bug #1372213 - CVE-2016-5152 chromium-browser: heap overflow in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1372213
[ 25 ] Bug #1372212 - CVE-2016-5151 chromium-browser: use after free in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1372212
[ 26 ] Bug #1372210 - CVE-2016-5150 chromium-browser: use after free in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1372210
[ 27 ] Bug #1372209 - CVE-2016-5149 chromium-browser: script injection in extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1372209
[ 28 ] Bug #1372208 - CVE-2016-5148 chromium-browser: universal xss in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1372208
[ 29 ] Bug #1372207 - CVE-2016-5147 chromium-browser: universal xss in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1372207
--------------------------------------------------------------------------------
================================================================================
dpm-dsi-1.9.9-1.el7 (FEDORA-EPEL-2016-f15492ebff)
Disk Pool Manager (DPM) plugin for the Globus GridFTP server
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
================================================================================
fail2ban-0.9.5-3.el7 (FEDORA-EPEL-2016-73eab6c7c7)
Daemon to ban hosts that cause multiple authentication errors
--------------------------------------------------------------------------------
Update Information:
- Update to 0.9.5 - see https://github.com/fail2ban/fail2ban/releases/tag/0.9.5
- Give up being PartOf iptables to allow firewalld restarts to work (bug
#1379141) - Add journalmatch entries for sendmail (bug #1329919) ---- Update
to 0.9.4: Fixes: roundcube-auth jail typo for logpath Fix
dnsToIp resolver for fqdn with large list of IPs (gh-1164) filter.d
/apache-badbots.conf Updated useragent string regex adding escape
for + filter.d/mysqld-auth.conf Updated "Access denied ..."
regex for MySQL 5.6 and later (gh-1211, gh-1332) filter.d/sshd.conf
Updated "Auth fail" regex for OpenSSH 5.9 and later Treat failed and
killed execution of commands identically (only different log messages), which
addresses different behavior on different exit codes of dash and bash (gh-1155)
Fix jail.conf.5 man's section (gh-1226) Fixed default banaction for
allports jails like pam-generic, recidive, etc with new default variable
banaction_allports (gh-1216) Fixed fail2ban-regex stops working on
invalid (wrong encoded) character for python version < 3.x (gh-1248) Use
postfix_log logpath for postfix-rbl jail filters.d/postfix.conf - add
'Sender address rejected: Domain not found' failregex use fail2ban_agent
as user-agent in actions badips, blocklist_de, etc (gh-1271) Fix
ignoring the sender option by action_mw, action_mwl and action_c_mwl
Changed filter.d/asterisk regex for "Call from ..." (few vulnerable now)
Removed compression and rotation count from logrotate (inherit them from the
global logrotate config) New Features: New interpolation feature
for definition config readers - <known/parameter> (means last known init
definition of filters or actions with name parameter). This interpolation makes
possible to extend a parameters of stock filter or action directly in jail
inside jail.local file, without creating a separately filter.d/*.local file. As
extension to interpolation %(known/parameter)s, that does not works for filter
and action init parameters New actions: nftables-multiport
and nftables-allports - filtering using nftables framework. Note: it requires a
pre-existing chain for the filtering rule. New filters:
openhab - domotic software authentication failure with the rest api and web
interface (gh-1223) nginx-limit-req - ban hosts, that were failed
through nginx by limit request processing rate (ngx_http_limit_req_module)
murmur - ban hosts that repeatedly attempt to connect to murmur/mumble-server
with an invalid server password or certificate. haproxy-http-auth -
filter to match failed HTTP Authentications against a HAProxy server New
jails: murmur - bans TCP and UDP from the bad host on the default
murmur port. sshd filter got new failregex to match "maximum
authentication attempts exceeded" (introduced in openssh 6.8) Added
filter for Mac OS screen sharing (VNC) daemon Enhancements: Do not
rotate empty log files Added new date pattern with year after day (e.g.
Sun Jan 23 2005 21:59:59) http://bugs.debian.org/798923 Added openSUSE
path configuration (Thanks Johannes Weberhofer) Allow to split ignoreip
entries by ',' as well as by ' ' (gh-1197) Added a timeout (3 sec) to
urlopen within badips.py action (Thanks M. Maraun) Added check against
atacker's Googlebot PTR fake records (Thanks Pablo Rodriguez Fernandez)
Enhance filter against atacker's Googlebot PTR fake records (gh-1226)
Nginx log paths extended (prefixed with "*" wildcard) (gh-1237) Added
filter for openhab domotic software authentication failure with the rest api and
web interface (gh-1223) Add *_backend options for services to allow
distros to set the default backend per service, set default to systemd for
Fedora as appropriate Performance improvements while monitoring large
number of files (gh-1265). Use associative array (dict) for monitored log files
to speed up lookup operations. Thanks @kshetragia Specified that
fail2ban is PartOf iptables.service firewalld.service in .service file -- would
reload fail2ban if those services are restarted Provides new default
fail2ban_version and interpolation variable fail2ban_agent in jail.conf
Enhance filter 'postfix' to ban incoming SMTP client with no fqdn hostname, and
to support multiple instances of postfix having varying suffix (gh-1331) (Thanks
Tom Hendrikx) files/gentoo-initd to use start-stop-daemon to robustify
restarting the service
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1321460 - asterisk regex needs to be more liberal
https://bugzilla.redhat.com/show_bug.cgi?id=1321460
--------------------------------------------------------------------------------
================================================================================
fluidsynth-1.1.6-7.el7 (FEDORA-EPEL-2016-653039c60a)
Real-time software synthesizer
--------------------------------------------------------------------------------
Update Information:
Initial SD2_mixer build for EPEL 7.
--------------------------------------------------------------------------------
================================================================================
fts-3.4.3-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
File Transfer Service V3
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
gfal2-2.12.2-2.el7 (FEDORA-EPEL-2016-dce60c46e0)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
lash-0.5.4-26.el7 (FEDORA-EPEL-2016-653039c60a)
LASH Audio Session Handler
--------------------------------------------------------------------------------
Update Information:
Initial SD2_mixer build for EPEL 7.
--------------------------------------------------------------------------------
================================================================================
lumina-desktop-1.0.0-5.p2.Lbc08e90.el7 (FEDORA-EPEL-2016-8ef6597c75)
A lightweight, portable desktop environment
--------------------------------------------------------------------------------
Update Information:
Initial package, rhbz#1357064
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357064 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1357064
[ 2 ] Bug #1381197 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1381197
--------------------------------------------------------------------------------
================================================================================
mingw-cmocka-1.1.0-2.el7 (FEDORA-EPEL-2016-8e0d13ce58)
MinGW Lightweight library to simplify and generalize unit tests for C
--------------------------------------------------------------------------------
Update Information:
Corrected package names
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1373782 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1373782
--------------------------------------------------------------------------------
================================================================================
mkvtoolnix-7.4.0-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
Matroska container manipulation utilities
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
php-bartlett-php-compatinfo-db-1.13.0-1.el7 (FEDORA-EPEL-2016-b46055471e)
Reference Database to be used with php-compatinfo library
--------------------------------------------------------------------------------
Update Information:
**Version 1.13.0** - 2016-10-03 - Support to PHP 7.0.11 - Support to PHP 5.6.26
- Fixed: curl reference with libCurl dependency, see
[#7](https://github.com/llaville/php-compatinfo-db/issues/7) **Version 1.12.0**
- 2016-09-26 - Support to PHP 7.0.10 - Support to PHP 5.6.25
--------------------------------------------------------------------------------
================================================================================
php-phpseclib-2.0.4-1.el7 (FEDORA-EPEL-2016-73b3103b74)
PHP Secure Communications Library
--------------------------------------------------------------------------------
Update Information:
**Version 2.0.4** - 2016-08-18 * fix E_DEPRECATED errors on PHP 7.1 (#1041)
* SFTP: speed up downloads (#945) * SFTP: fix infinite loop when uploading
empty file (#995) * ASN1: fix possible infinite loop in decode (#1027) ----
**Version 2.0.3** - 2016-08-18 - BigInteger/RSA: don't compare openssl versions
> 1.0 (#946) - RSA: don't attempt to use the CRT when zero value components
exist (#980) - RSA: zero salt length RSA signatures don't work (#1002) - ASN1:
fix PHP Warning on PHP 7.1 (#1013) - X509: set parameter fields to null for
CSR's / RSA (#914) - CRL optimizations (#1000) - SSH2: fix "Expected
SSH_FXP_STATUS or ..." error (#999) - SSH2: use stream_get_* instead of fread()
/ fgets() (#967) - SFTP: make symlinks support relative target's (#1004) - SFTP:
fix sending stream resulting in zero byte file (#995)
--------------------------------------------------------------------------------
================================================================================
php-symfony-2.8.12-2.el7 (FEDORA-EPEL-2016-c5b86c9ec1)
PHP framework for web projects
--------------------------------------------------------------------------------
Update Information:
**Twig 1.26.0** (2016-10-02) * added template cache invalidation based on more
environment options * added a missing deprecation notice * fixed template
paths when a template is stored in a PHAR file * allowed
filters/functions/tests implementation to use a different class than the
extension they belong to * deprecated Twig_ExtensionInterface::getName() ----
**Twig 1.25.0** (2016-09-21) * changed the way we store template source in
template classes * removed usage of realpath in cache keys * fixed Twig cache
sharing when used with different versions of PHP * removed embed parent
workaround for simple use cases * deprecated the ability to store non Node
instances in Node::$nodes * deprecated Twig_Environment::getLexer(),
Twig_Environment::getParser(), Twig_Environment::getCompiler() * deprecated
Twig_Compiler::getFilename() ---- **Symfony 2.8.12** (2016-10-03) * bug
#20102 [Validator] Url validator not validating hosts ending in a number
(gwkunze) * bug #20132 Use "more entropy" option for uniqid() (javiereguiluz)
* bug #20122 [Validator] Reset constraint options (ro0NL) * bug #20116 fixed
AddConstraintValidatorsPass config (fabpot) * bug #20078 Fix #19943 Make sure
to process each interface metadata only once (lemoinem) * bug #20080 [Form]
compound forms without children should be considered rendered implicitly
(backbone87) * bug #20087 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) *
bug #20086 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) * bug #20077
[Process] silent file operation to avoid open basedir issues (xabbuh) * bug
#20079 fixed Twig support for 1.26 and 2.0 (fabpot) * bug #20051 Fix indexBy
type extraction (lemoinem) * bug #19951 [Finder] Trim trailing directory slash
in ExcludeDirectoryFilterIterator (ro0NL) * bug #20018 [VarDumper] Fix test
(nicolas-grekas) * bug #20011 Use UUID for error codes for Form validator.
(Koc) * bug #20010 [DX] Fixed regression when exception message swallowed when
logging it. (Koc) * bug #19983 [TwigBridge] removed Twig null nodes (deprecated
as of Twig 1.25) (fabpot) * bug #19946 [Console] Fix parsing optionnal options
with empty value in argv (chalasr) * bug #19636 [Finder] no PHP warning on
empty directory iteration (ggottwald) * bug #19923 [bugfix] [Console] Set
`Input::$interactive` to `false` when command is executed with `--quiet` as
verbosity level (phansys) * bug #19811 Fixed the nullable support for php 7.1
and below (2.7, 2.8, 3.0) (iltar) * bug #19853 [PropertyInfo] Make
ReflectionExtractor compatible with ReflectionType changes in PHP 7.1
(teohhanhui) * bug #19904 [Form] Fixed collapsed ChoiceType options attributes
(HeahDude) * bug #19908 [Config] Handle open_basedir restrictions in
FileLocator (Nicofuma) * bug #19924 [DoctrineBridge][PropertyInfo] Treat
Doctrine decimal type as string (teohhanhui) * bug #19932 Fixed bad merge
(GrahamCampbell) * bug #19922 [Yaml][TwigBridge] Use JSON_UNESCAPED_SLASHES for
lint commands output (chalasr) * bug #19928 [Validator] Update IpValidatorTest
data set with a valid reserved IP (jakzal) * bug #19813 [Console] fixed PHP7
Errors are now handled and converted to Exceptions (fonsecas72) * bug #19879
[Form] Incorrect timezone with DateTimeLocalizedStringTransformer (mbeccati) *
bug #19878 Fix translation:update command count (tgalopin)
--------------------------------------------------------------------------------
================================================================================
php-twig-1.26.0-1.el7 (FEDORA-EPEL-2016-c5b86c9ec1)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
**Twig 1.26.0** (2016-10-02) * added template cache invalidation based on more
environment options * added a missing deprecation notice * fixed template
paths when a template is stored in a PHAR file * allowed
filters/functions/tests implementation to use a different class than the
extension they belong to * deprecated Twig_ExtensionInterface::getName() ----
**Twig 1.25.0** (2016-09-21) * changed the way we store template source in
template classes * removed usage of realpath in cache keys * fixed Twig cache
sharing when used with different versions of PHP * removed embed parent
workaround for simple use cases * deprecated the ability to store non Node
instances in Node::$nodes * deprecated Twig_Environment::getLexer(),
Twig_Environment::getParser(), Twig_Environment::getCompiler() * deprecated
Twig_Compiler::getFilename() ---- **Symfony 2.8.12** (2016-10-03) * bug
#20102 [Validator] Url validator not validating hosts ending in a number
(gwkunze) * bug #20132 Use "more entropy" option for uniqid() (javiereguiluz)
* bug #20122 [Validator] Reset constraint options (ro0NL) * bug #20116 fixed
AddConstraintValidatorsPass config (fabpot) * bug #20078 Fix #19943 Make sure
to process each interface metadata only once (lemoinem) * bug #20080 [Form]
compound forms without children should be considered rendered implicitly
(backbone87) * bug #20087 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) *
bug #20086 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) * bug #20077
[Process] silent file operation to avoid open basedir issues (xabbuh) * bug
#20079 fixed Twig support for 1.26 and 2.0 (fabpot) * bug #20051 Fix indexBy
type extraction (lemoinem) * bug #19951 [Finder] Trim trailing directory slash
in ExcludeDirectoryFilterIterator (ro0NL) * bug #20018 [VarDumper] Fix test
(nicolas-grekas) * bug #20011 Use UUID for error codes for Form validator.
(Koc) * bug #20010 [DX] Fixed regression when exception message swallowed when
logging it. (Koc) * bug #19983 [TwigBridge] removed Twig null nodes (deprecated
as of Twig 1.25) (fabpot) * bug #19946 [Console] Fix parsing optionnal options
with empty value in argv (chalasr) * bug #19636 [Finder] no PHP warning on
empty directory iteration (ggottwald) * bug #19923 [bugfix] [Console] Set
`Input::$interactive` to `false` when command is executed with `--quiet` as
verbosity level (phansys) * bug #19811 Fixed the nullable support for php 7.1
and below (2.7, 2.8, 3.0) (iltar) * bug #19853 [PropertyInfo] Make
ReflectionExtractor compatible with ReflectionType changes in PHP 7.1
(teohhanhui) * bug #19904 [Form] Fixed collapsed ChoiceType options attributes
(HeahDude) * bug #19908 [Config] Handle open_basedir restrictions in
FileLocator (Nicofuma) * bug #19924 [DoctrineBridge][PropertyInfo] Treat
Doctrine decimal type as string (teohhanhui) * bug #19932 Fixed bad merge
(GrahamCampbell) * bug #19922 [Yaml][TwigBridge] Use JSON_UNESCAPED_SLASHES for
lint commands output (chalasr) * bug #19928 [Validator] Update IpValidatorTest
data set with a valid reserved IP (jakzal) * bug #19813 [Console] fixed PHP7
Errors are now handled and converted to Exceptions (fonsecas72) * bug #19879
[Form] Incorrect timezone with DateTimeLocalizedStringTransformer (mbeccati) *
bug #19878 Fix translation:update command count (tgalopin)
--------------------------------------------------------------------------------
================================================================================
php-udan11-sql-parser-3.4.10-1.el7 (FEDORA-EPEL-2016-dee865ea7e)
A validating SQL lexer and parser with a focus on MySQL dialect
--------------------------------------------------------------------------------
Update Information:
**Version 3.4.10** - 2016-10-03 * Fixed API regression on DELETE statement ---
**Version 3.4.9** - 2016-10-03 * Added support for CASE expressions * Support
for parsing and building DELETE statement * Support for parsing subqueries in
FROM clause --- **Version 3.4.8** - 2016-09-22 * No change release to sync
GitHub releases with Packagist ---- **Version 3.4.7** - 2016-09-20 * Fix
parsing of DEFINER without backquotes * Fixed escaping HTML entities in HTML
formatter * Fixed escaping of control chars in CLI formatter ---- **Version
3.4.6** - 2016-09-13 * Fix parsing of REPLACE INTO ... * Fix parsing of INSERT
... ON DUPLICATE KEY UPDATE ... * Extended testsuite * Re-enabled PHP 5.3
support --- **Version 3.4.5** - 2016-09-13 * Fix parsing of INSERT...SELECT
and INSERT...SET syntax * Fix parsing of CREATE TABLE ... PARTITION * Fix
parsing of SET CHARACTER SET, CHARSET, NAMES * Add Support for 'CREATE TABLE
`table_copy` LIKE `table`
--------------------------------------------------------------------------------
================================================================================
plasma-oxygen-5.8.0-2.el7 (FEDORA-EPEL-2016-9aca50b652)
Plasma and Qt widget style and window decorations for Plasma 5 and KDE 4
--------------------------------------------------------------------------------
Update Information:
Provide qt5-style-oxygen for epel7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1381197 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1381197
--------------------------------------------------------------------------------
================================================================================
pugixml-1.7-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
A light-weight C++ XML processing library
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
python-bitarray-0.8.1-4.el7 (FEDORA-EPEL-2016-299648f46c)
Efficient Array of Booleans --C Extensions
--------------------------------------------------------------------------------
Update Information:
Add support to epel 7 and 6, disable python3 in el6
--------------------------------------------------------------------------------
================================================================================
python-jcconv-0.2.4-2.el7 (FEDORA-EPEL-2016-5b597e47b6)
JapaneseCharacterCONVerter
--------------------------------------------------------------------------------
Update Information:
Initial rpm-release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380671 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380671
--------------------------------------------------------------------------------
================================================================================
sddm-0.14.0-3.el7 (FEDORA-EPEL-2016-07c8e8befc)
QML based X11 desktop manager
--------------------------------------------------------------------------------
Update Information:
Provide sddm for epel7
--------------------------------------------------------------------------------
================================================================================
sks-1.1.6-1.el7 (FEDORA-EPEL-2016-2ce3494a09)
Synchronizing Key Server
--------------------------------------------------------------------------------
Update Information:
Update to latest version of sks
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1304429 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1304429
[ 2 ] Bug #1365236 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1365236
--------------------------------------------------------------------------------
================================================================================
zstd-1.1.0-1.el7 (FEDORA-EPEL-2016-df3c15fb8a)
Zstd compression library
--------------------------------------------------------------------------------
Update Information:
Initial release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1373218 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1373218
--------------------------------------------------------------------------------