The following Fedora EPEL 6 Security updates need testing:
Age URL
989
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
208
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1616/puppet-2.7....
79
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3434/pylint-1.3....
54
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binut...
42
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4242/facter-1.6....
31
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4485/python-torn...
22
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4669/libhtp-0.5....
18
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4766/mediawiki11...
14
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4624/xrdp-0.6.1-...
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4884/mapserver-6...
10
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4918/dokuwiki-0-...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0094/docker-io-1...
The following builds have been pushed to Fedora EPEL 6 updates-testing
R-qtl-1.35.3-1.el6
copr-cli-1.42-1.el6
docker-io-1.4.1-1.el6
eigen3-3.2.3-1.el6
golang-github-dgnorton-goback-0-0.1.gita49ca3c.el6
golang-github-fsouza-go-dockerclient-0.2.1-3.gitb523834.el6
golang-github-influxdb-influxdb-0.8.5-0.1.git9485e99.el6
golang-github-kimor79-gollectd-0-0.1.git1d0fc88.el6
golang-github-rakyll-statik-0-0.1.gitf19d7c2.el6
hash-slinger-2.6-1.el6
php-doctrine-lexer-1.0.1-1.el6
php-egulias-email-validator-1.2.7-1.el6
php-horde-Horde-Core-2.18.1-1.el6
waffle-1.5.0-3.el6
Details about builds:
================================================================================
R-qtl-1.35.3-1.el6 (FEDORA-EPEL-2015-0107)
Tools for analyzing QTL experiments
--------------------------------------------------------------------------------
Update Information:
See
http://rqtl.org/STATUS.txt for details.\r\n
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 4 2015 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 1.35.3-1
- Update to 1.35.3
--------------------------------------------------------------------------------
================================================================================
copr-cli-1.42-1.el6 (FEDORA-EPEL-2015-0109)
Command line interface for COPR
--------------------------------------------------------------------------------
Update Information:
new commands auto_createrepo, download-build, now users python-copr
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 5 2015 Valentin Gologuzov <vgologuz(a)redhat.com> 1.42-1
- updated man page
- compatibility with Python 2.6 ( due to Epel 6)
* Mon Dec 15 2014 Valentin Gologuzov <vgologuz(a)redhat.com> 1.41-1
- control auto_createrepo property of project through API
and copr-cli; new command supported by cli: **modify**
* Fri Nov 21 2014 Valentin Gologuzov <vgologuz(a)redhat.com> 1.40-1
- updated to use newer version of python-copr
- minor changes in commands output
- print debug logs only when user provides "--debug" option
* Mon Oct 20 2014 Miroslav Suchý <msuchy(a)redhat.com> 1.39-1
- add man page for copr(1)
- [cli] [RHBZ: #1149889] RFE: download command in copr-cli
- A few fixes for CI
* Tue Oct 7 2014 Valentin Gologuzov <vgologuz(a)redhat.com> 1.38-1
- [cli] Added symlink for executable: copr -> copr-cli
- [cli] removed epydoc documentation
- [python-copr, cli] test coverage
- [python-copr, cli] updating copr-cli to use python-copr
* Thu Sep 18 2014 Miroslav Suchý <msuchy(a)redhat.com> 1.37-1
- [python-copr] Renamed package: python-copr-client -> python-copr
- [cli] In case of missing config show proper message, hide traceback.
- [python-client] added a few unittest, changed package layout, updated .spec
to run tests during %check. [copr-cli] reflected changes in python-client
- [python-copr,copr-cli] fixing, cleanup
- [python-copr,copr-cli] Copr-cli now uses python-copr-cli package. [copr-cli]
updated .spec to reflect usage of python-copr-client
* Tue Jul 22 2014 Miroslav Suchý <msuchy(a)redhat.com> 1.36-1
- use correct name of variable
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1149889 - RFE: download command in copr-cli
https://bugzilla.redhat.com/show_bug.cgi?id=1149889
--------------------------------------------------------------------------------
================================================================================
docker-io-1.4.1-1.el6 (FEDORA-EPEL-2015-0094)
Automates deployment of containerized applications
--------------------------------------------------------------------------------
Update Information:
Resolves: rhbz#1175144 - update to 1.4.1\nResolves: rhbz#1173950 remove min version
requirements on device-mapper-libs\nSecurity fix for CVE-2014-9357, CVE-2014-9358,
CVE-2014-9356
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 5 2015 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.4.1-1
- Resolves: rhbz#1175144 - update to 1.4.1
- patch to make 'docker exec' work
via Vincent Batts <vbatts(a)fedoraproject.org>
https://github.com/docker/libcontainer/issues/309
- subpackages for fish, zsh completion, vim highlighting and logrotate cron
job
* Mon Dec 15 2014 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.4.0-2
- Resolves: rhbz#1173950 remove min version requirements on device-mapper-libs
* Thu Dec 11 2014 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 1.4.0-1
- Resolves: rhbz#1173325
- Resolves: rhbz#1172761 - CVE-2014-9356
- Resolves: rhbz#1172782 - CVE-2014-9357
- Resolves: rhbz#1172787 - CVE-2014-9358
- update to upstream v1.4.0
- override DOCKER_CERT_PATH in sysconfig instead of patching the source
- update metaprovides
- define PR_SET_CHILD_SUBREAPER as per newer kernel-headers
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1172761 - CVE-2014-9356 docker: Path traversal during processing of absolute
symlinks
https://bugzilla.redhat.com/show_bug.cgi?id=1172761
[ 2 ] Bug #1172782 - CVE-2014-9357 docker: Escalation of privileges during decompression
of LZMA archives
https://bugzilla.redhat.com/show_bug.cgi?id=1172782
[ 3 ] Bug #1172787 - CVE-2014-9358 docker: Path traversal and spoofing opportunities
presented through image identifiers
https://bugzilla.redhat.com/show_bug.cgi?id=1172787
--------------------------------------------------------------------------------
================================================================================
eigen3-3.2.3-1.el6 (FEDORA-EPEL-2015-0119)
A lightweight C++ template library for vector and matrix math
--------------------------------------------------------------------------------
Update Information:
Update to release 3.2.3
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 4 2015 Rich Mattes <richmattes(a)gmail.com> - 3.2.3-1
- Update to release 3.2.3
- Backport upstream Rotation2D fix
- Remove upstreamed patches
* Sun Dec 14 2014 Rich Mattes <richmattes(a)gmail.com> - 3.2.2-1
- Update to release 3.2.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1165279 - Update eigen3 to 3.2.2
https://bugzilla.redhat.com/show_bug.cgi?id=1165279
--------------------------------------------------------------------------------
================================================================================
golang-github-dgnorton-goback-0-0.1.gita49ca3c.el6 (FEDORA-EPEL-2015-0114)
A simple non-database related transaction library
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1162103 - Review Request: golang-github-dgnorton-goback - A simple
non-database related transaction library
https://bugzilla.redhat.com/show_bug.cgi?id=1162103
--------------------------------------------------------------------------------
================================================================================
golang-github-fsouza-go-dockerclient-0.2.1-3.gitb523834.el6 (FEDORA-EPEL-2015-0111)
Client for the Docker remote API
--------------------------------------------------------------------------------
Update Information:
Bump to b52383442df766febf51f9f858ee311f69a2f264
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 24 2014 jchaloup <jchaloup(a)redhat.com> - 0.2.1-3.git15d2c6e
- Bump to b52383442df766febf51f9f858ee311f69a2f264
related: #1085840
* Thu Oct 16 2014 lsm5(a)riseup.net - 0.2.1-2.git15d2c6e
- update to latest upstream commit
* Mon Sep 29 2014 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 0.2.1-1.git0236a64
- update to upstream commit 0236a64c6c4bd563ec277ba00e370cc753e1677c
- don't own dirs owned by golang, don't redefine gopath
- preserve timestamps of copied files
* Tue Jul 22 2014 Colin Walters <walters(a)redhat.com>
- Update to newer version for Kubernetes work
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0-0.2.gitd639515
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1085840 - Review Request: golang-github-fsouza-go-dockerclient - Go Client
for the Docker remote API
https://bugzilla.redhat.com/show_bug.cgi?id=1085840
--------------------------------------------------------------------------------
================================================================================
golang-github-influxdb-influxdb-0.8.5-0.1.git9485e99.el6 (FEDORA-EPEL-2015-0117)
Scalable datastore for metrics, events, and real-time analytics
--------------------------------------------------------------------------------
Update Information:
Update to 0.8.5
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 6 2015 jchaloup <jchaloup(a)redhat.com> - 0.8.5-0.1.git9485e99
- Update to 0.8.5
resolves: #1161618
* Sun Nov 9 2014 jchaloup <jchaloup(a)redhat.com> - 0.8.0-0.5.rc4.git67f9869
- Choose the correct architecture
related: #1141892
- Bump to upstream b611d020cd78886232cfa6c2ea0606b49d307ed2
resolves: #1161618
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1161618 - influxdb: please update to 0.8.5
https://bugzilla.redhat.com/show_bug.cgi?id=1161618
--------------------------------------------------------------------------------
================================================================================
golang-github-kimor79-gollectd-0-0.1.git1d0fc88.el6 (FEDORA-EPEL-2015-0100)
A go parser for the collectd binary protocol
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1162106 - Review Request: golang-github-kimor79-gollectd - A go parser for
the collectd binary protocol
https://bugzilla.redhat.com/show_bug.cgi?id=1162106
--------------------------------------------------------------------------------
================================================================================
golang-github-rakyll-statik-0-0.1.gitf19d7c2.el6 (FEDORA-EPEL-2015-0110)
Embed static files into a Go executable
--------------------------------------------------------------------------------
Update Information:
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1162091 - Review Request: golang-github-rakyll-statik - Embed static files
into a Go executable
https://bugzilla.redhat.com/show_bug.cgi?id=1162091
--------------------------------------------------------------------------------
================================================================================
hash-slinger-2.6-1.el6 (FEDORA-EPEL-2015-0105)
Generate various DNS records such as RFC-4255 SSHFP and RFC-698 TLSA
--------------------------------------------------------------------------------
Update Information:
Updated to 2.6. Adds ipseckey, bugfixes for sshfp and openpgpkey
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 6 2015 Paul Wouters <pwouters(a)redhat.com> - 2.6-1
- Updated to 2.6. Adds ipseckey, bugfixes for sshfp and openpgpkey
--------------------------------------------------------------------------------
================================================================================
php-doctrine-lexer-1.0.1-1.el6 (FEDORA-EPEL-2015-0097)
Base library for a lexer that can be used in top-down, recursive descent parsers
--------------------------------------------------------------------------------
Update Information:
Same code/commit but tagged version instead of snapshot
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 5 2015 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 1.0.1-1
- Updated to 1.0.1 (same commit but tagged version instead of snapshot; BZ #1178808)
- %license usage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1178808 - php-doctrine-lexer-1.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1178808
--------------------------------------------------------------------------------
================================================================================
php-egulias-email-validator-1.2.7-1.el6 (FEDORA-EPEL-2015-0120)
A library for validating emails
--------------------------------------------------------------------------------
Update Information:
## 1.2.7\r\n\r\n* Fixed dependency for doctrine/lexer to ~1.0, thanks @Ocramius for
tagging.\r\n* Fixed bug on test(a)fo;o.com like emails.\r\n* Minor fixes on documentation.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 5 2015 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 1.2.7-1
- Updated to 1.2.7 (BZ #1178809)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1178809 - php-egulias-email-validator-1.2.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1178809
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Core-2.18.1-1.el6 (FEDORA-EPEL-2015-0096)
Horde Core Framework libraries
--------------------------------------------------------------------------------
Update Information:
Horde_Core 2.18.1\r\n* [mjr] Improve/fix support for handling OOF messages in ActiveSync
(Bug #13719).\r\n* [mms] Upgrade jQuery to v1.11.2.\r\n
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 6 2015 Remi Collet <remi(a)fedoraproject.org> - 2.18.1-1
- Update to 2.18.1
* Mon Dec 29 2014 Remi Collet <remi(a)fedoraproject.org> - 2.18.0-1
- Update to 2.18.0
--------------------------------------------------------------------------------
================================================================================
waffle-1.5.0-3.el6 (FEDORA-EPEL-2015-0121)
Platform independent GL API layer
--------------------------------------------------------------------------------
Update Information:
Upgrade to the upstream version 1.5.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1171149 - New version 1.4.2
https://bugzilla.redhat.com/show_bug.cgi?id=1171149
--------------------------------------------------------------------------------