The following Fedora EPEL 6 Security updates need testing:
Age URL
563
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gri...
375
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
76
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect...
69
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0...
33
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0823/openstack-k...
21
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5413/php-geshi-1...
16
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5451/bcfg2-1.3.0...
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5492/php-twig-Tw...
8
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5539/owncloud-4....
5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5562/python-pip-...
3
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5612/phpMyAdmin-...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5649/mediawiki11...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5643/php-sabreda...
The following builds have been pushed to Fedora EPEL 6 updates-testing
drupal6-votingapi-2.3-8.el6
mediawiki119-1.19.6-1.el6
mozilla-https-everywhere-3.2-1.el6
pcsc-cyberjack-3.99.5final.SP03-13.el6
php-sabredav-Sabre_DAV-1.6.5-5.el6
rubygem-sequel-3.46.0-1.el6
Details about builds:
================================================================================
drupal6-votingapi-2.3-8.el6 (FEDORA-EPEL-2013-5650)
Voting API module for Drupal6
--------------------------------------------------------------------------------
Update Information:
RPM-only update. Added "drupal6(votingapi)" virtual provide.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 1 2013 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 2.3-8
- Added virtual provide
- Updated description
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.3-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.3-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
mediawiki119-1.19.6-1.el6 (FEDORA-EPEL-2013-5649)
A wiki engine
--------------------------------------------------------------------------------
Update Information:
Security update
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 1 2013 Patrick Uiterwijk <puiterwijk(a)gmail.com> - 1.19.6-1
- Update to upstream 1.1.9.6 security update
* Fri Apr 19 2013 Patrick Uiterwijk <puiterwijk(a)gmail.com> - 1.19.5-2
- Updated README.RPM to reference to mw-config instead of config
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #958303 - CVE-2013-2031 CVE-2013-2032 mediawiki: security releases 1.20.5 and
1.19.6
https://bugzilla.redhat.com/show_bug.cgi?id=958303
--------------------------------------------------------------------------------
================================================================================
mozilla-https-everywhere-3.2-1.el6 (FEDORA-EPEL-2013-5644)
HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey
--------------------------------------------------------------------------------
Update Information:
- Related trac bugs for this release:
https://eff.org/r.b9Qc
- New: MoinMoin
- Fixes: Adobe, Bahn.de, Cloudfront, Dell, Droplr, FBI, Google Maps,
Joomla, Juno Download, Lenovo, New York Times, SEC, Soundcloud,
Tweakers.net, Univ Strasbourg, Vkontakte, Zend
- Disable broken: AirAsia, Netvibes, Newgrounds, Pirate Bay, Russia Today, SVT,
Wolfram Alpha
- Maybe fixed: Quantcast/Tumblr:
https://trac.torproject.org/projects/tor/ticket/8406 (maybe fixed)
- Sync languages and translations from the master branch.
- New languages: Finnish, Norwegian (Bokmål), Slovak, Bulgarian.
- All HTTPS Everywhere users will be now prompted about using the
SSL Observatory.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 1 2013 Russell Golden <niveusluna(a)niveusluna.org> - 3.2-1
- Related trac bugs for this release:
https://eff.org/r.b9Qc
- New: MoinMoin
- Fixes: Adobe, Bahn.de, Cloudfront, Dell, Droplr, FBI, Google Maps,
Joomla, Juno Download, Lenovo, New York Times, SEC, Soundcloud,
Tweakers.net, Univ Strasbourg, Vkontakte, Zend
- Disable broken: AirAsia, Netvibes, Newgrounds, Pirate Bay, Russia Today, SVT,
Wolfram Alpha
- Maybe fixed: Quantcast/Tumblr:
https://trac.torproject.org/projects/tor/ticket/8406 (maybe fixed)
- Sync languages and translations from the master branch.
- New languages: Finnish, Norwegian (Bokmål), Slovak, Bulgarian.
- All HTTPS Everywhere users will be now prompted about using the
SSL Observatory.
--------------------------------------------------------------------------------
================================================================================
pcsc-cyberjack-3.99.5final.SP03-13.el6 (FEDORA-EPEL-2013-5646)
PC/SC driver for REINER SCT cyberjack USB chip card reader
--------------------------------------------------------------------------------
Update Information:
REINER SCT cyberJack USB chip card reader user space driver.
This package includes the IFD driver for the cyberJack non-contact (RFID) and contact USB
chip card reader.
For more information regarding installation under Linux see the README.txt in the
documentation directory, esp. regarding compatibility with host controllers.
For more information about the reader, software updates and a shop see
http://www.reiner-sct.com/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #901764 - Please rebuild pcsc-cyberjack for EPEL 6
https://bugzilla.redhat.com/show_bug.cgi?id=901764
--------------------------------------------------------------------------------
================================================================================
php-sabredav-Sabre_DAV-1.6.5-5.el6 (FEDORA-EPEL-2013-5643)
Sabre_DAV is a WebDAV framework for PHP
--------------------------------------------------------------------------------
Update Information:
Fixes archives/files problem
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
This update patches the problem in the browser plugin for sabredav.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 1 2013 Joseph Marrero <jmarrero(a)fedoraproject.org> - 1.6.5-5
- Fix problem with checksum whitout braking the files installed
* Sun Apr 28 2013 Joseph Marrero <jmarrero(a)fedoraproject.org> - 1.6.5-4
- added security patch that fixes bugs 951568 951569 951562
- added --ignore-erros flag to pear install macro to accept the patch
* Sat Mar 2 2013 Joseph Marrero <jmarrero(a)fedoraproject.org> - 1.6.5-3
- Fix cleanup in rhel6 and f19
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.6.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #951562 - CVE-2013-1939 php-sabredav-Sabre_DAV: Local file exposure due
improper icons / images path checking in the HTML Browser plug-in
https://bugzilla.redhat.com/show_bug.cgi?id=951562
--------------------------------------------------------------------------------
================================================================================
rubygem-sequel-3.46.0-1.el6 (FEDORA-EPEL-2013-5648)
The Database Toolkit for Ruby
--------------------------------------------------------------------------------
Update Information:
update to sequel 3.46.0
Update to sequel 3.45.0
--------------------------------------------------------------------------------