The following Fedora EPEL 5 Security updates need testing:
Age URL
837
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849
sblim-sfcb-1.3.8-2.el5
480
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-edbea40516
mcollective-2.8.4-1.el5
451
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-582c8075e6
thttpd-2.25b-24.el5
62
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-ce45574ab6
libbsd-0.8.3-2.el5
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-28a8a9acad
phpMyAdmin4-4.0.10.19-1.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
hylafax+-5.5.9-1.el5
nordugrid-arc-5.2.2-2.el5
phpMyAdmin4-4.0.10.19-1.el5
Details about builds:
================================================================================
hylafax+-5.5.9-1.el5 (FEDORA-EPEL-2017-0c4452f823)
An enterprise-strength fax server
--------------------------------------------------------------------------------
Update Information:
update to 5.5.9 (unreleased SVN checkout) to fix gcc v7 build problem with
5.5.8-2 on f26
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1423726 - hylafax+: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1423726
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-5.2.2-2.el5 (FEDORA-EPEL-2017-2eea2a7d74)
Advanced Resource Connector Grid Middleware
--------------------------------------------------------------------------------
Update Information:
Don't use pylint for EPEL builds (retired)
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin4-4.0.10.19-1.el5 (FEDORA-EPEL-2017-28a8a9acad)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
phpMyAdmin 4.0.10.19 (2017-01-23) ================================= This
release includes many security fixes of various levels of severity. For full
information on the vulnerabilities fixed and mitigation factors for users who
are unable to upgrade, refer to the ChangeLog file included with this release
and the security announcements at
https://www.phpmyadmin.net/security/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1416000 - phpMyAdmin: DOS in replication status
https://bugzilla.redhat.com/show_bug.cgi?id=1416000
[ 2 ] Bug #1415999 - phpMyAdmin: SSRF in replication
https://bugzilla.redhat.com/show_bug.cgi?id=1415999
[ 3 ] Bug #1415998 - phpMyAdmin: Cookie attribute injection attack
https://bugzilla.redhat.com/show_bug.cgi?id=1415998
[ 4 ] Bug #1415997 - phpMyAdmin: CSS injection in themes
https://bugzilla.redhat.com/show_bug.cgi?id=1415997
[ 5 ] Bug #1415996 - phpMyAdmin: DOS vulnerabiltiy in table editing
https://bugzilla.redhat.com/show_bug.cgi?id=1415996
[ 6 ] Bug #1415995 - phpMyAdmin: Open redirect
https://bugzilla.redhat.com/show_bug.cgi?id=1415995
--------------------------------------------------------------------------------