The following Fedora EPEL 7 Security updates need testing:
Age URL
78
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1f259a45ef
openjpeg2-2.3.1-11.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1405677543
putty-0.76-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
httpie-1.0.3-1.el7
lua-sec-1.0.2-1.el7
Details about builds:
================================================================================
httpie-1.0.3-1.el7 (FEDORA-EPEL-2021-0383a9978e)
A Curl-like tool for humans
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2019-10751
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 9 2021 Mikel Olasagasti <mikel(a)olasagasti.info> - 1.0.3-1
- Update to latest possible version for EPEL7
- Remove Fedora bits
- Remove python2 bits
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1751042 - CVE-2019-10751 httpie: url redirection vulnerability allows
attacker to write arbitrary file [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1751042
--------------------------------------------------------------------------------
================================================================================
lua-sec-1.0.2-1.el7 (FEDORA-EPEL-2021-e34f0453dc)
Lua binding for OpenSSL library
--------------------------------------------------------------------------------
Update Information:
LuaSec 1.0.2 ============ * Fix handle `SSL_send` SYSCALL error without
`errno` * Fix off by one in `cert:validat(notafter)` * Fix
`meth_get_{sinagure => signature}_name` function name * Fix update the Lua
state reference on the selected SSL context after SNI * Fix ignore
`SSL_OP_BIT(n)` macro and update `option.c`
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 15 2021 Robert Scheck <robert(a)fedoraproject.org> 1.0.2-1
- Upgrade to 1.0.2 (#1993641)
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.0.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1993641 - lua-sec-1.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1993641
--------------------------------------------------------------------------------