The following Fedora EPEL 7 Security updates need testing:
Age URL
56
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-2c81054303
remctl-3.14-1.el7
18
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-8b8dc96235
nodejs-deep-extend-0.5.1-1.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-860176245e
gifsicle-1.91-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-48b823c3dc
strongswan-5.6.2-6.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-90002f509e
pdns-recursor-4.1.3-2.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-74ee3ae47e
phpMyAdmin-4.4.15.10-3.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-65614e9fc9
thunderbird-enigmail-2.0.6-1.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-bbdc0ecf38
cobbler-2.8.3-2.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-297fb7f6c0
chromium-66.0.3359.181-3.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-7155fb2e51
prosody-0.10.2-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
clamav-0.100.0-2.el7
mate-themes-3.22.17-1.el7
xfce4-dict-0.8.1-1.el7
Details about builds:
================================================================================
clamav-0.100.0-2.el7 (FEDORA-EPEL-2018-7d6dc8227a)
End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:
Try to mitigate bug #1583599 ---- ClamAV 0.100.0 ============== ClamAV
0.100.0 is a feature release which includes many code submissions from the
ClamAV community. Some of the more prominent submissions include: *
Interfaces to the Prelude SIEM open source package for collecting ClamAV virus
events. * Support for Visual Studio 2015 for Windows builds. Please note that
we have deprecated support for Windows XP, and while Vista may still work, we no
longer test ClamAV on Windows XP or Vista. * Support libmspack internal code
or as a shared object library. The internal library is the default and includes
modifications to enable parsing of CAB files that do not entirely adhere to the
CAB file format. * Linking with OpenSSL 1.1.0. * Deprecation of the
AllowSupplementaryGroups parameter statement in clamd, clamav-milter, and
freshclam. Use of supplementary is now in effect by default. * Numerous bug
fixes, typo corrections, and compiler warning fixes. Additionally, upstream
introduced important changes and new features in ClamAV 0.100, including but not
limited to: * Deprecating internal LLVM code support. The configure script
has changed to search the system for an installed instance of the LLVM
development libraries, and to otherwise use the bytecode interpreter for ClamAV
bytecode signatures. To use the LLVM Just-In-Time compiler for executing
bytecode signatures, please ensure that the LLVM development package at version
3.6 or lower is installed. Using the deprecated LLVM code is possible with the
command: `./configure --with-system-llvm=no`, but it no longer compiles on all
platforms. * Compute and check PE import table hash (a.k.a. "imphash")
signatures. * Support file property collection and analysis for MHTML files.
* Raw scanning of PostScript files. * Fix clamsubmit to use the new virus and
false positive submission web interface. * Optionally, flag files with the
virus "Heuristic.Limits.Exceeded" when size limitations are exceeded. *
Improved decoders for PDF files. * Reduced number of compile time warnings.
* Improved support for C++11. * Improved detection of system installed
libraries. * Fixes to ClamAV's Container system and the introduction of
Intermediates for more descriptive signatures. * Improvements to clamd's On-
Access scanning capabilities for Linux.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jun 3 2018 S��rgio Basto <sergio(a)serjux.com> - 0.100.0-2
- Try to mitigate bug #1583599
- Move comments one line (to read before starting the scriptlet)
- clamav-milter could work without clamd and without sendmail (#1583599)
- Get rid of provides/requires with updateuser, virusgroup, scanuser and
milteruser and just simply require clamav-filesystem
* Mon May 28 2018 Robert Scheck <robert(a)fedoraproject.org> - 0.100.0-1
- Upgrade to 0.100.0 (#1565381)
* Wed Mar 21 2018 S��rgio Basto <sergio(a)serjux.com> - 0.99.4-3
- Fix data-empty sub-package (ghost the correct files)
- Add Obsoletes systemd sub-packages
* Mon Mar 12 2018 S��rgio Basto <sergio(a)serjux.com> - 0.99.4-2
- Revert fix for llvm, build using -std=gnu++98 (#1307378)
- Revert CFLAG assignment in commmit a4a6d252 (made in 2006)
- BR systemd-devel to fix detection in configure.
- Disable llvm in ppc64 (#1534071)
- "Disable llvm will use the internal bytecode interpreter rather than the llvm
jit", so drop bytecode build condition and use condional on enable or disable
llvm.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1583599 - 0.100.0-1 re-packaging stops and disables services
https://bugzilla.redhat.com/show_bug.cgi?id=1583599
[ 2 ] Bug #1526628 - please backport OnAccessExcludeRootUID from clamav-master
https://bugzilla.redhat.com/show_bug.cgi?id=1526628
[ 3 ] Bug #1565381 - clamav-0.100.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1565381
[ 4 ] Bug #1579829 - clamav-0.100.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1579829
[ 5 ] Bug #1540113 - Database format inconsistency cvd vs cld
https://bugzilla.redhat.com/show_bug.cgi?id=1540113
--------------------------------------------------------------------------------
================================================================================
mate-themes-3.22.17-1.el7 (FEDORA-EPEL-2018-412df5f488)
MATE Desktop themes
--------------------------------------------------------------------------------
Update Information:
- update to 3.22.17
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jun 3 2018 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 3.22.17-1
- update to 3.22.17 release
--------------------------------------------------------------------------------
================================================================================
xfce4-dict-0.8.1-1.el7 (FEDORA-EPEL-2018-18afd037ef)
A Dictionary Client for the Xfce desktop environment
--------------------------------------------------------------------------------
Update Information:
bugfix update to 0.8.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jun 2 2018 Mukundan Ragavan <nonamedotc(a)fedoraproject.org> - 0.8.1-1
- Update to 0.8.1
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.0-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Aug 3 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.8.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri May 5 2017 Filipe Rosset <rosset.filipe(a)gmail.com> - 0.8.0-1
- Rebuilt to new upstream release 0.8.0 + spec clean up
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.7.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Mon Apr 25 2016 Kevin Fenzi <kevin(a)scrye.com> - 0.7.2-1
- Update to 0.7.2. Translation updates.
--------------------------------------------------------------------------------