The following Fedora EPEL 7 Security updates need testing:
Age URL
574 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7
336 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7
55 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c redis-3.2.3-1.el7
53 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-4b8dd3488d knot-1.6.8-1.el7
38 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3 chicken-4.11.0-3.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-03fb3c1531 banshee-2.6.2-11.el7 dbus-sharp-0.7.0-15.el7 dbus-sharp-glib-0.5.0-13.el7 gdata-sharp-1.4.0.2-18.el7 gio-sharp-0.3-14.el7 gkeyfile-sharp-0.1-19.el7 gnome-sharp-2.24.2-12.el7 gtk-sharp-beans-2.14.0-17.el7 gtk-sharp2-2.12.26-3.el7 gtk-sharp3-2.99.3-16.el7 gudev-sharp-0.1-18.el7 libappindicator-12.10.0-11.el7 libgpod-0.8.3-8.el7 mono-4.2.4-7.el7 mono-addins-1.1-3.el7 mono-cecil-0.9.6-6.el7 mono-zeroconf-0.9.0-16.el7 notify-sharp-0.4.0-0.26.20100411svn.el7 notify-sharp3-3.0.3-2.el7 nunit-3.4.1-2.el7 nunit2-2.6.4-14.el7 pinta-1.6-5.el7 taglib-sharp-2.1.0.0-3.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-49577d864a mongodb-2.6.12-3.el7
6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-aca1572ceb mingw-gnutls-3.3.24-1.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8f6ed4db26 libuv-1.9.1-1.el7 nodejs-6.7.0-107.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-28ad6782b3 php-adodb-5.20.6-2.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-bf5b9b3332 chromium-53.0.2785.116-1.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-208f62faa6 links-2.13-1.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-452534ff97 php-ZendFramework-1.12.20-1.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-39560a2353 mingw-c-ares-1.12.0-1.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-60045af95e mingw-libidn-1.33-1.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-0890ae6d2d nsd-4.1.13-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
awscli-1.11.0-1.el7
checksec-1.7.4-2.el7
cmap-resources-2016.09.04-2.el7
kstars-16.08.1-1.el7
libguess-1.2-3.el7
nsd-4.1.13-1.el7
pgcenter-0.3.0-1.el7
php-doctrine-dbal-2.5.5-1.el7
python-botocore-1.4.58-1.el7
python-pdfrw-0.2-5.el7
python-s3transfer-0.1.5-1.el7
rst2pdf-0.93-8.el7
rubberband-1.8.1-8.el7
snapraid-10.0-1.el7
tor-0.2.8.8-1.el7
uchardet-0.0.5-4.el7
Details about builds:
================================================================================
awscli-1.11.0-1.el7 (FEDORA-EPEL-2016-6893e04314)
Universal Command Line Environment for AWS
--------------------------------------------------------------------------------
Update Information:
update and fix for 1380536 ---- Update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380536 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380536
[ 2 ] Bug #1374532 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1374532
--------------------------------------------------------------------------------
================================================================================
checksec-1.7.4-2.el7 (FEDORA-EPEL-2016-dd8839bb33)
Tool to check system for binary-hardening
--------------------------------------------------------------------------------
Update Information:
###Update to 1.7.4 - Update to forked version - Add missing runtime-dependencies
- Add manpage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1240391 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1240391
[ 2 ] Bug #1380950 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380950
--------------------------------------------------------------------------------
================================================================================
cmap-resources-2016.09.04-2.el7 (FEDORA-EPEL-2016-fbae88a5a8)
CMap Resources for Adobe's public character collections
--------------------------------------------------------------------------------
Update Information:
Remove bogus isa dep in cns1-6 on main package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1379521 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1379521
--------------------------------------------------------------------------------
================================================================================
kstars-16.08.1-1.el7 (FEDORA-EPEL-2016-387c91e6a0)
Desktop Planetarium
--------------------------------------------------------------------------------
Update Information:
Update to 16.08.1
--------------------------------------------------------------------------------
================================================================================
libguess-1.2-3.el7 (FEDORA-EPEL-2016-0333109759)
High-speed character set detection library
--------------------------------------------------------------------------------
Update Information:
New packages.
--------------------------------------------------------------------------------
================================================================================
nsd-4.1.13-1.el7 (FEDORA-EPEL-2016-0890ae6d2d)
Fast and lean authoritative DNS Name Server
--------------------------------------------------------------------------------
Update Information:
Updated to 4.1.13 (CVE-2016-6173, OPENPGPKEY support)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1353577 - CVE-2016-6173 nsd: Improper restriction of zone size limit [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1353577
--------------------------------------------------------------------------------
================================================================================
pgcenter-0.3.0-1.el7 (FEDORA-EPEL-2016-bf2cfd3c17)
Top-like PostgreSQL statistics viewer
--------------------------------------------------------------------------------
Update Information:
Update by mail author request to version 0.3.0. ---- Initiall add pgcenter
into Fedora/Epel
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1302053 - Review Request: pgcenter - Top-like PostgreSQL statistics viewer
https://bugzilla.redhat.com/show_bug.cgi?id=1302053
--------------------------------------------------------------------------------
================================================================================
php-doctrine-dbal-2.5.5-1.el7 (FEDORA-EPEL-2016-15a35fe11e)
Doctrine Database Abstraction Layer (DBAL)
--------------------------------------------------------------------------------
Update Information:
### v2.5.5 * 842: Fixed incorrect handling of single quotes in SQL-Strings *
856: MySQL getListTableForeignKeysSQL: use current database if null passed *
861: Check for foreign table name on removed tables foreign key * 862: Quote
table and constraint names in drop foreign key / drop constraint SQL * 863:
Strip leading slash of databasename from URL * 925: Fixing the command when
option is CURRENT_SCHEMA * 1054: DBAL-1114: Problem with drop database on
PostgreSQL * 1106: DBAL-1164: Creating SQLite Connections via a URL Does Not
Work * 1151: DBAL-1205: getPlaceholderPositions finds placeholders which are
actually no placeholder if string contains single quotes * 1183: DBAL-1234:
Additional slash in dbname when providing settings as URL without scheme * 2182:
DBAL-939: schema update doesnt detect boolean type correctly * 2261: OCI8 -
bindValue overwrite previous values * 2262: Issue #2261 - OCI8 Driver PHP 7 -
Fix bindValue overwriting other params. * 2267: Pass "path" to pdo-sqlite
drivers from DriverManager instead of "dbname" * 2270: SqlitePlatform does not
escape table name on truncate * 2275: Quote reserved keywords in TRUNCATE TABLE
SQL * 2277: [DBAL-939] Fix reverse engineering boolean type columns on DB2 *
2279: Stop using template1 as default database for postgres drivers * 2286: Fix
list foreign keys SQL database parameter evaluation * 2287: Fix parsing
schemeless connection URLs * 2288: Preserve quotation of old column name in
ColumnDiff * 2291: The QueryBuilder::getSQLForSelect() always appends a FROM
clause for select queries * 2292: Do not generate FROM clause in QueryBuilder if
no tables specified * 2302: when use \Doctrine\DBAL\Schema\Comparator to compare
two table schema, has a problem * 2303: Fix another primary key alteration with
autoincrement column case on MySQL * 2310: [DB2] Move row number to the end of
the field list in query limit/offset modification * 2318: [Oracle] Fix list
table columns when using external or OS authentication with Oracle * 2384:
Fluent methods in QueryBuilder are now documented as returning $this * 2386: Fix
oci driver bindValue overwrite with php7 * 2390: Catch Throwable in
Connection::transactional() * 2403: fix grammar in DBALException messages *
2428: Modify Limit Query on SQLServer2012 with newline before ORDER BY * 2434:
Keep references to bound parameter values in oci8 driver * 2436:
MySqlPlatform::getListTableColumnsSQL() is not escaping names * 2440: No
parameters passed to logger when executing statement using bindParam * 2442:
Escape identifiers in metadata SQL properly when used as string literal * 2443:
Track the Values & Types Passed to Statement::bindParam * 2484: Allow usage of
symfony/console ^3.0 in dev dependencies * 2497: ResultStatement::fetch()
returns null instead of false with mysqli * 2500: Making sure that fetch returns
false if nothing is found
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1374891 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1374891
--------------------------------------------------------------------------------
================================================================================
python-botocore-1.4.58-1.el7 (FEDORA-EPEL-2016-6893e04314)
Low-level, data-driven core of boto 3
--------------------------------------------------------------------------------
Update Information:
update and fix for 1380536 ---- Update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380536 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380536
[ 2 ] Bug #1374532 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1374532
--------------------------------------------------------------------------------
================================================================================
python-pdfrw-0.2-5.el7 (FEDORA-EPEL-2016-0333109759)
Python library to read and write PDF files
--------------------------------------------------------------------------------
Update Information:
New packages.
--------------------------------------------------------------------------------
================================================================================
python-s3transfer-0.1.5-1.el7 (FEDORA-EPEL-2016-6893e04314)
An Amazon S3 Transfer Manager
--------------------------------------------------------------------------------
Update Information:
update and fix for 1380536 ---- Update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380536 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380536
[ 2 ] Bug #1374532 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1374532
--------------------------------------------------------------------------------
================================================================================
rst2pdf-0.93-8.el7 (FEDORA-EPEL-2016-0333109759)
Tool for transforming reStructuredText to PDF
--------------------------------------------------------------------------------
Update Information:
New packages.
--------------------------------------------------------------------------------
================================================================================
rubberband-1.8.1-8.el7 (FEDORA-EPEL-2016-0333109759)
Audio time-stretching and pitch-shifting library
--------------------------------------------------------------------------------
Update Information:
New packages.
--------------------------------------------------------------------------------
================================================================================
snapraid-10.0-1.el7 (FEDORA-EPEL-2016-ee195f47c9)
Disk array backup for many large rarely-changed files
--------------------------------------------------------------------------------
Update Information:
Updated to latest upstream. Bug fixes. Performance improvement for snapraid sync
using multiple threads.
--------------------------------------------------------------------------------
================================================================================
tor-0.2.8.8-1.el7 (FEDORA-EPEL-2016-69f1c1433b)
Anonymizing overlay network for TCP
--------------------------------------------------------------------------------
Update Information:
update to upstream release 0.2.8.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1375369 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1375369
[ 2 ] Bug #1380682 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380682
--------------------------------------------------------------------------------
================================================================================
uchardet-0.0.5-4.el7 (FEDORA-EPEL-2016-0333109759)
An encoding detector library ported from Mozilla
--------------------------------------------------------------------------------
Update Information:
New packages.
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
450 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6
444 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6
376 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
334 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6
306 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6
192 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-30a8346813 vtun-3.0.1-10.el6
90 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-d0e444c5f2 pypy-5.0.1-4.el6
51 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-a1450d7fe0 knot-1.6.8-1.el6
36 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53 chicken-4.11.0-3.el6
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-edda50420f mongodb-2.4.14-4.el6
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-25e30f6dc3 jansson-2.9-1.el6
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8602185c5 links-2.13-1.el6
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-1117d3c7f6 golang-1.7.1-1.el6
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-efb0141e9c php-ZendFramework-1.12.20-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
ansible-2.1.2.0-1.el6
armadillo-7.300.1-1.el6
bitstream-1.1-2.el6
lighttpd-1.4.41-2.el6
mlpack-1.0.8-7.el6
speexdsp-1.2-0.9.rc3.el6
Details about builds:
================================================================================
ansible-2.1.2.0-1.el6 (FEDORA-EPEL-2016-b01a9377cb)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
See https://github.com/ansible/ansible/blob/stable-2.1/CHANGELOG.md for a full
list of changes and bugfixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1372018 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1372018
--------------------------------------------------------------------------------
================================================================================
armadillo-7.300.1-1.el6 (FEDORA-EPEL-2016-f5aca833e6)
Fast C++ matrix library with interfaces to LAPACK and ATLAS
--------------------------------------------------------------------------------
Update Information:
update to 7.300.1 (finally)
--------------------------------------------------------------------------------
================================================================================
bitstream-1.1-2.el6 (FEDORA-EPEL-2016-c18d5a7fd0)
Simpler access to binary structures such as specified by MPEG, DVB, IETF
--------------------------------------------------------------------------------
Update Information:
libdvbpsi converts binary structures to C structures. Lists are implemented with
chained lists of C structures. biTStream is lower level, and more efficient:
fewer memory allocations, fewer memory copies. It also features a better
separation between layers and specifications.
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.41-2.el6 (FEDORA-EPEL-2016-e62a847e5c)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Directory and permissions fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1201056 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1201056
--------------------------------------------------------------------------------
================================================================================
mlpack-1.0.8-7.el6 (FEDORA-EPEL-2016-f5aca833e6)
Scalable, fast C++ machine learning library
--------------------------------------------------------------------------------
Update Information:
update to 7.300.1 (finally)
--------------------------------------------------------------------------------
================================================================================
speexdsp-1.2-0.9.rc3.el6 (FEDORA-EPEL-2016-70edfd442b)
A voice compression format (DSP)
--------------------------------------------------------------------------------
Update Information:
Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
--------------------------------------------------------------------------------