The following Fedora EPEL 6 Security updates need testing:
Age URL
485
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
479
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
410
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
369
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
340
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
226
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-30a8346813
vtun-3.0.1-10.el6
71
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53
chicken-4.11.0-3.el6
43
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-25e30f6dc3
jansson-2.9-1.el6
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2f6f1435ed
tor-0.2.8.9-1.el6
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-a886ace670
tomcat-7.0.72-1.el6
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-cb5398893b
nodejs-0.10.48-3.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e69bdefcde
pdns-3.3.3-2.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-775a03185e
ansible-2.2.0.0-2.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
MUMPS-5.0.2-4.el6
R-3.3.2-2.el6
ansible-2.2.0.0-2.el6
drupal7-chosen-2.0-1.el6
drupal7-ctools-1.11-1.el6
drupal7-field_permissions-1.0-1.el6
drupal7-i18n-1.14-1.el6
drupal7-panels-3.8-2.el6
engauge-digitizer-9.5-1.el6
jupp-29-1.el6
lighttpd-1.4.43-2.el6
munin-2.0.27-1.el6
nginx-1.10.2-1.el6
nordugrid-arc-5.2.0-1.el6
nordugrid-arc-doc-2.0.11-1.el6
ntfs-3g-2016.2.22-3.el6
open-vm-tools-10.0.5-1.el6
open-vm-tools-10.0.5-2.el6
openvpn-2.3.13-1.el6
pdns-3.3.3-2.el6
php-horde-Horde-Core-2.27.1-1.el6
php-horde-Horde-Imap-Client-2.29.10-1.el6
php-horde-Horde-Nls-2.2.1-1.el6
php-horde-Horde-Service-Weather-2.4.1-1.el6
php-horde-turba-4.2.17-1.el6
python3-Cython-0.23.5-1.el6
python3-decorator-4.0.10-2.el6
python3-pytest-2.8.5-3.el6
python3-six-1.10.0-1.el6
python3-suds-0.6-1.el6
rubygem-sequel-4.40.0-1.el6
suitesparse-3.4.0-0.9.el6
the_silver_searcher-0.33.0-1.el6
tito-0.6.8-1.el6
zstd-1.1.1-1.el6
Details about builds:
================================================================================
MUMPS-5.0.2-4.el6 (FEDORA-EPEL-2016-c69c2beaff)
A MUltifrontal Massively Parallel sparse direct Solver
--------------------------------------------------------------------------------
Update Information:
- Build on s390
--------------------------------------------------------------------------------
================================================================================
R-3.3.2-2.el6 (FEDORA-EPEL-2016-a1e9b3e561)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
Update to R 3.3.2. Fix EL5/EL6 builds to not generate "crazy dependencies" for
libRmath. Please note: With this update of R, we switch to using openBLAS on
all architectures where it is supported, because it is significantly faster. The
reference BLAS implementation included in R is still built, it is just renamed
to libRrefblas.so. If you wish to use that, just delete the openBLAS symlink,
then rename libRrefblas.so to libRblas.so.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1389715 - libRmath has crazy dependencies
https://bugzilla.redhat.com/show_bug.cgi?id=1389715
[ 2 ] Bug #1389724 - please use OpenBLAS
https://bugzilla.redhat.com/show_bug.cgi?id=1389724
[ 3 ] Bug #1354226 - rpy-2.8.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1354226
[ 4 ] Bug #1390181 - R-3.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1390181
--------------------------------------------------------------------------------
================================================================================
ansible-2.2.0.0-2.el6 (FEDORA-EPEL-2016-775a03185e)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Update to new ansible 2.2 version. For full changes see:
https://github.com/ansible/ansible/blob/stable-2.2/CHANGELOG.md
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1390564 - ansible-2.2.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1390564
[ 2 ] Bug #1380753 - The task of adding/updating an host on zabbix via ansible, the
result always changed.
https://bugzilla.redhat.com/show_bug.cgi?id=1380753
[ 3 ] Bug #1390652 - CVE-2016-8614 ansible: Improper verification of key fingerprints in
apt_key module [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1390652
[ 4 ] Bug #1390648 - CVE-2016-8628 ansible: Command injection by compromised server via
ansible_ssh_executable or ssh_args [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1390648
--------------------------------------------------------------------------------
================================================================================
drupal7-chosen-2.0-1.el6 (FEDORA-EPEL-2016-7e9baeb21a)
Makes select elements more user-friendly using Chosen
--------------------------------------------------------------------------------
Update Information:
[
7.x-2.0](https://www.drupal.org/project/chosen/releases/7.x-2.0)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1385607 - drupal7-chosen-2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385607
--------------------------------------------------------------------------------
================================================================================
drupal7-ctools-1.11-1.el6 (FEDORA-EPEL-2016-656d051d48)
Primarily a set of APIs and tools to improve the developer experience
--------------------------------------------------------------------------------
Update Information:
### drupal7-ctools -
[
7.x-3.8](https://www.drupal.org/project/panels/releases/7.x-3.8) ###
drupal7-panels -
[
7.x-1.11](https://www.drupal.org/project/ctools/releases/7.x-1.11)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1385610 - drupal7-panels-3.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385610
[ 2 ] Bug #1385608 - drupal7-ctools-1.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385608
--------------------------------------------------------------------------------
================================================================================
drupal7-field_permissions-1.0-1.el6 (FEDORA-EPEL-2016-e234bb3d2a)
Set field-level permissions to create, update or view fields
--------------------------------------------------------------------------------
Update Information:
[
7.x-1.0](https://www.drupal.org/project/field_permissions/releases/7.x-1.0)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1385609 - drupal7-field_permissions-1.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385609
--------------------------------------------------------------------------------
================================================================================
drupal7-i18n-1.14-1.el6 (FEDORA-EPEL-2016-35cb382105)
Enables multilingual content
--------------------------------------------------------------------------------
Update Information:
[
7.x-1.14](https://www.drupal.org/project/i18n/releases/7.x-1.14)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1387880 - drupal7-i18n-1.14 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1387880
--------------------------------------------------------------------------------
================================================================================
drupal7-panels-3.8-2.el6 (FEDORA-EPEL-2016-656d051d48)
Allows a site administrator to create customized layouts
--------------------------------------------------------------------------------
Update Information:
### drupal7-ctools -
[
7.x-3.8](https://www.drupal.org/project/panels/releases/7.x-3.8) ###
drupal7-panels -
[
7.x-1.11](https://www.drupal.org/project/ctools/releases/7.x-1.11)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1385610 - drupal7-panels-3.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385610
[ 2 ] Bug #1385608 - drupal7-ctools-1.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385608
--------------------------------------------------------------------------------
================================================================================
engauge-digitizer-9.5-1.el6 (FEDORA-EPEL-2016-e4326aaef5)
Convert graphs or map files into numbers
--------------------------------------------------------------------------------
Update Information:
- Update to 9.5
--------------------------------------------------------------------------------
================================================================================
jupp-29-1.el6 (FEDORA-EPEL-2016-276177b8ca)
Compact and feature-rich WordStar-compatible editor
--------------------------------------------------------------------------------
Update Information:
Changes for jupp 29 =================== * Document tab completion bugs, GPL
library exceptions * Update internationalisation data to Unicode 9.0.0 *
Bind execmd in jstarrc to have it available in all flavours * Fix some
pathnames in the manpage * Switch PDF manpage from A4 to PA4 paper size,
allowing printing without scaling/cropping on both DIN ISO A4 and USA ���letter���
paper * jupprc: ^Q= searches for merge conflict markers (CVS, git) * Add
syntax file for tex (LaTeX; *.cls *.sty *.tex) * Make syntax highlighting code
use UTF-8 by individual octets * ^Q] now also works for ASCII quotation marks
(jupp, jstar) * ^Q[ is distinct from ^Q] when ambiguous (jupp, jstar) *
Unbreak tab-completing filenames with spaces * Fix filenames with backslashes
* configure --enable-sysconfjoesubdir to also get the manual page * Apply
fixes from lintian, thank you! * Only look in JOERC/termcap if its path does
not include a delimiter * Allow overriding the name of the built-in *jupprc
(to *jupp32rc, so the jupp32 build can use the pristine source) * Add win32
self-relocation, no hardcoded JOERC any more, optional (used in the jupp32
portable build but NOT for the Cygwin package!) * Fix generating the manpage,
now done by the Makefile
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.43-2.el6 (FEDORA-EPEL-2016-161f74f3f6)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Fix MySQL dependencies. ---- 1.4.43 ---- Split out mysql and gssapi authn
modules. ---- 1.4.42, now with upstream mod_geoip.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1385640 - lighttpd-1.4.42 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1385640
--------------------------------------------------------------------------------
================================================================================
munin-2.0.27-1.el6 (FEDORA-EPEL-2016-464c047938)
Network-wide graphing framework (grapher/gatherer)
--------------------------------------------------------------------------------
Update Information:
Upstream released 2.0.27 ---- Upstream released 2.0.26
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1383219 - Unresolved dependency in munin-cgi and reference to nginx user in
systemd service file
https://bugzilla.redhat.com/show_bug.cgi?id=1383219
[ 2 ] Bug #1339122 - hddtemp_smartctl fails to parse temperature from output
https://bugzilla.redhat.com/show_bug.cgi?id=1339122
--------------------------------------------------------------------------------
================================================================================
nginx-1.10.2-1.el6 (FEDORA-EPEL-2016-1765cf191f)
A high performance web server and reverse proxy server
--------------------------------------------------------------------------------
Update Information:
update to upstream release 1.10.2
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-5.2.0-1.el6 (FEDORA-EPEL-2016-7a526f3d37)
Advanced Resource Connector Grid Middleware
--------------------------------------------------------------------------------
Update Information:
ARC 5.2.0
http://www.nordugrid.org/arc/releases/15.03u10/release_notes_15.03u10.html
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-doc-2.0.11-1.el6 (FEDORA-EPEL-2016-7a526f3d37)
Advanced Resource Connector Documentation
--------------------------------------------------------------------------------
Update Information:
ARC 5.2.0
http://www.nordugrid.org/arc/releases/15.03u10/release_notes_15.03u10.html
--------------------------------------------------------------------------------
================================================================================
ntfs-3g-2016.2.22-3.el6 (FEDORA-EPEL-2016-a1436d04f5)
Linux NTFS userspace driver
--------------------------------------------------------------------------------
Update Information:
Add support for Xattr mappings, POSIX acls.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1391164 - RFE: Add support for XattrMapping
https://bugzilla.redhat.com/show_bug.cgi?id=1391164
--------------------------------------------------------------------------------
================================================================================
open-vm-tools-10.0.5-1.el6 (FEDORA-EPEL-2016-f8947fe91b)
Open Virtual Machine Tools for virtual machines hosted on VMware
--------------------------------------------------------------------------------
Update Information:
Rebase to 10.0.5, as in RHEL 7.3. Add Perl dependency for the DeployPkg plugin,
otherwise guest customizations would fail. The Perl invocation is triggered from
VCenter, is not present in the sources. The dependency is enforced on
proprietary VMWare tools.
--------------------------------------------------------------------------------
================================================================================
open-vm-tools-10.0.5-2.el6 (FEDORA-EPEL-2016-5eb450afa8)
Open Virtual Machine Tools for virtual machines hosted on VMware
--------------------------------------------------------------------------------
Update Information:
Update to 10.0.5, integrating changes from RHEL 7.3 package.
--------------------------------------------------------------------------------
================================================================================
openvpn-2.3.13-1.el6 (FEDORA-EPEL-2016-9acb5d996f)
A full-featured SSL VPN solution
--------------------------------------------------------------------------------
Update Information:
https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1391481 - openvpn-2.3.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1391481
--------------------------------------------------------------------------------
================================================================================
pdns-3.3.3-2.el6 (FEDORA-EPEL-2016-e69bdefcde)
A modern, advanced and high performance authoritative-only nameserver
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2016-5426, CVE-2016-5427 and CVE-2016-6172
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1353567 - CVE-2016-6172 pdns: Improper restriction of zone size limit
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1353567
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Core-2.27.1-1.el6 (FEDORA-EPEL-2016-01eaed38c3)
Horde Core Framework libraries
--------------------------------------------------------------------------------
Update Information:
**Horde_Core 2.27.1** * [jan] Allow administrators to log in if preference
backend is not available. * [mjr] Log message headers on error when sending
email via ActiveSync. * [jan] Fix warning if an old locale is longer than 255
characters (Bug #14489). * [jan] Fix abbreviated Norwegian month names in
JavaScript to include trailing dot (Bug #14488). * [jan] Fix reading session
data from the command line with PHP 7.
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Imap-Client-2.29.10-1.el6 (FEDORA-EPEL-2016-fadcfaed88)
Horde IMAP abstraction interface
--------------------------------------------------------------------------------
Update Information:
**Horde_Imap_Client 2.29.10** * [jan] Fix parsing GETACL responses from RFC
4314 capable IMAP servers (Bug #14466).
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Nls-2.2.1-1.el6 (FEDORA-EPEL-2016-c8a08e279d)
Native Language Support (NLS)
--------------------------------------------------------------------------------
Update Information:
**Horde_Nls 2.2.1** * [jan] Update country list.
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Service-Weather-2.4.1-1.el6 (FEDORA-EPEL-2016-d2cfd1c734)
Horde Weather Provider
--------------------------------------------------------------------------------
Update Information:
** Horde_Service_Weather 2.4.1** * [jan] Update location of METAR stations.
--------------------------------------------------------------------------------
================================================================================
php-horde-turba-4.2.17-1.el6 (FEDORA-EPEL-2016-76d96c7180)
A web based address book
--------------------------------------------------------------------------------
Update Information:
**turba 4.2.17** * [mjr] Fix regression in sorting contacts by a name field
(Bug #14471). * [mjr] Fix regression in saving tags (Bug #14463).
--------------------------------------------------------------------------------
================================================================================
python3-Cython-0.23.5-1.el6 (FEDORA-EPEL-2016-a30833ee10)
A language for writing Python 3 extension modules
--------------------------------------------------------------------------------
Update Information:
This is a development version of Pyrex, a language for writing Python 3
extension modules.
--------------------------------------------------------------------------------
================================================================================
python3-decorator-4.0.10-2.el6 (FEDORA-EPEL-2016-2cbe7d2486)
Module to simplify usage of decorators
--------------------------------------------------------------------------------
Update Information:
The aim of the decorator module is to simplify the usage of decorators for the
average programmer, and to popularize decorators usage giving examples of useful
decorators, such as memoize, tracing, redirecting_stdout, locked, etc. The core
of this module is a decorator factory called decorator.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1384729 - Review Request: python3-decorator - Module to simplify usage of
decorators
https://bugzilla.redhat.com/show_bug.cgi?id=1384729
--------------------------------------------------------------------------------
================================================================================
python3-pytest-2.8.5-3.el6 (FEDORA-EPEL-2016-85766b1a6d)
Simple powerful testing with Python
--------------------------------------------------------------------------------
Update Information:
py.test provides simple, yet powerful testing for Python.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380586 - Please enable epel6 branch
https://bugzilla.redhat.com/show_bug.cgi?id=1380586
--------------------------------------------------------------------------------
================================================================================
python3-six-1.10.0-1.el6 (FEDORA-EPEL-2016-3a16b218e3)
Python 2 and 3 compatibility utilities
--------------------------------------------------------------------------------
Update Information:
python3-six provides simple utilities for wrapping over differences between
Python 2 and Python 3.
--------------------------------------------------------------------------------
================================================================================
python3-suds-0.6-1.el6 (FEDORA-EPEL-2016-2a38594e5c)
A python SOAP client
--------------------------------------------------------------------------------
Update Information:
The suds project is a python soap web services client lib. Suds leverages
python meta programming to provide an intuitive API for consuming web services.
Objectification of types defined in the WSDL is provided without class
generation. Programmers rarely need to read the WSDL since services and WSDL
based objects can be easily inspected.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1384133 - Review Request: python3-suds - A python SOAP client
https://bugzilla.redhat.com/show_bug.cgi?id=1384133
--------------------------------------------------------------------------------
================================================================================
rubygem-sequel-4.40.0-1.el6 (FEDORA-EPEL-2016-9cab2cbf38)
The Database Toolkit for Ruby
--------------------------------------------------------------------------------
Update Information:
Upgrade to sequel 4.40.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1389916 - rubygem-sequel-4.40.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1389916
--------------------------------------------------------------------------------
================================================================================
suitesparse-3.4.0-0.9.el6 (FEDORA-EPEL-2016-83be20029a)
A collection of sparse matrix libraries
--------------------------------------------------------------------------------
Update Information:
Revive for ppc64 only.
--------------------------------------------------------------------------------
================================================================================
the_silver_searcher-0.33.0-1.el6 (FEDORA-EPEL-2016-608a9b5662)
Super-fast text searching tool (ag)
--------------------------------------------------------------------------------
Update Information:
update to 0.33.0 ---- Fixed bz#1377596
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1377596 - license not listed with %license
https://bugzilla.redhat.com/show_bug.cgi?id=1377596
--------------------------------------------------------------------------------
================================================================================
tito-0.6.8-1.el6 (FEDORA-EPEL-2016-8b3470cb06)
A tool for managing rpm based git projects
--------------------------------------------------------------------------------
Update Information:
Moved logic for --use-version tagging into main base VersionTagger class.
--------------------------------------------------------------------------------
================================================================================
zstd-1.1.1-1.el6 (FEDORA-EPEL-2016-e6a16e4c25)
Zstd compression library
--------------------------------------------------------------------------------
Update Information:
Latest upstream. Also include parallel pzstd utility.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1391024 - zstd-v1.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1391024
--------------------------------------------------------------------------------