The following Fedora EPEL 5 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-3762/couchdb-1.0...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4907/bugzilla-3....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-5125/torque-2.5....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4674/awstats-6.9...
The following builds have been pushed to Fedora EPEL 5 updates-testing
json_diff-1.1.0-1.el5
sloccount-2.26-11.el5
torque-2.5.7-6.el5
Details about builds:
================================================================================
json_diff-1.1.0-1.el5 (FEDORA-EPEL-2011-5126)
Generates diff between two JSON files
--------------------------------------------------------------------------------
Update Information:
New upstream release (ignore appeneded keys option)
New upstream release fixing issues during the testing
New package in Fedora.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #755602 - Review Request: json_diff - Generates diff between two JSON files
https://bugzilla.redhat.com/show_bug.cgi?id=755602
--------------------------------------------------------------------------------
================================================================================
sloccount-2.26-11.el5 (FEDORA-EPEL-2011-5127)
Measures source lines of code (SLOC) in programs
--------------------------------------------------------------------------------
Update Information:
Package sloccount for EPEL.
--------------------------------------------------------------------------------
================================================================================
torque-2.5.7-6.el5 (FEDORA-EPEL-2011-5125)
Tera-scale Open-source Resource and QUEue manager
--------------------------------------------------------------------------------
Update Information:
This torque update corrects a security vulnerability whereby a user connecting to the
torque pbs_server could impersonate another user present within the torque batch system.
In addition a memory leak is fixed, previously memory used for sending and receiving data
was not being released.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 21 2011 Steve Traylen <steve.traylen(a)cern.ch> - 2.5.7-6
- Add torque-rhbz#758740-r5258-dis-close.patch and
torque-rhbz#758740-r5270-dis-array.patch
* Mon Nov 21 2011 Steve Traylen <steve.traylen(a)cern.ch> - 2.5.7-5
- Add torque-fix-munge-rhbz#752079-PTII.patch
* Thu Nov 17 2011 Steve Traylen <steve.traylen(a)cern.ch> - 2.5.7-4
- Empty release for release mistake.
* Thu Nov 17 2011 Steve Traylen <steve.traylen(a)cern.ch> - 2.5.7-3
- Add torque-fix-munge-rhbz#752079.patch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #752079 - Torque and Munge impersonation vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=752079
[ 2 ] Bug #758740 - torque 2.5.7 memory leak.
https://bugzilla.redhat.com/show_bug.cgi?id=758740
--------------------------------------------------------------------------------