The following Fedora EPEL 6 Security updates need testing:
Age URL
843
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
190
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0440/fwsnort-1.6...
175
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0590/oath-toolki...
62
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1616/puppet-2.7....
52
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1693/perl-Email-...
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2084/drupal7-dat...
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2088/tor-0.2.4.2...
11
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2099/v8-3.14.5.1...
5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2123/ReviewBoard...
5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2117/ansible-1.7...
5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2144/mediawiki11...
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2162/wordpress-3...
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2159/iodine-0.7....
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2158/drupal7-7.3...
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2148/drupal6-6.3...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2185/sks-1.1.5-2...
The following builds have been pushed to Fedora EPEL 6 updates-testing
chicken-4.9.0.1-1.el6
dar-2.4.14-1.el6
davix-0.3.6-2.el6
dropbear-2014.65-1.el6
gfal2-2.6.8-3.el6
golang-googlecode-tools-0-0.7.hg17c8fe23290a.el6
inxi-2.1.90-1.el6
libykneomgr-0.1.3-1.el6
mongodb-2.4.6-5.el6
php-horde-Horde-Imap-Client-2.24.2-1.el6
php-horde-Horde-Util-2.5.0-1.el6
php-theseer-autoload-1.15.0-1.el6
python-django-stopforumspam-1.4.2-2.el6
python-fedmsg-meta-fedora-infrastructure-0.2.18-2.el6
python-pam-0.1.4-2.el6
salt-2014.1.10-4.el6
sks-1.1.5-2.el6
znc-infobot-1.4-1.el6
Details about builds:
================================================================================
chicken-4.9.0.1-1.el6 (FEDORA-EPEL-2014-2195)
A practical and portable Scheme system
--------------------------------------------------------------------------------
Update Information:
Latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 7 2014 Ricky Elrod <relrod(a)redhat.com> - 4.9.0.1-4
- Latest upstream release.
* Sat Jun 7 2014 Ricky Elrod <relrod(a)redhat.com> - 4.9.0-4
- Rebuild from previous bootstrap.
* Sat Jun 7 2014 Ricky Elrod <relrod(a)redhat.com> - 4.9.0-3
- Bootstrap for el7.
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
4.9.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed Jun 4 2014 Ricky Elrod <codeblock(a)fedoraproject.org> - 4.9.0-1
- Latest upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1104019 - chicken-4.9.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1104019
--------------------------------------------------------------------------------
================================================================================
dar-2.4.14-1.el6 (FEDORA-EPEL-2014-2183)
Software for making/restoring incremental CD/DVD backups
--------------------------------------------------------------------------------
Update Information:
Software for making/restoring incremental CD/DVD backups
--------------------------------------------------------------------------------
ChangeLog:
* Sat Aug 9 2014 Luis Bazan <lbazan(a)fedoraproject.org> - 2.4.14-1
- new upstream version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1114281 - dar-2.4.14 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1114281
--------------------------------------------------------------------------------
================================================================================
davix-0.3.6-2.el6 (FEDORA-EPEL-2014-2186)
Toolkit for Http-based file management
--------------------------------------------------------------------------------
Update Information:
davix 0.3.6 release, see RELEASE-NOTES for changes
Update to release 0.3.4
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 12 2014 Adrien Devresse <adevress at cern.ch> - 0.3.6-2
- davix 0.3.6 release, see RELEASE-NOTES for changes
* Tue Jul 22 2014 Adrien Devresse <adevress at cern.ch> - 0.3.4-1
- Update to release 0.3.4
--------------------------------------------------------------------------------
================================================================================
dropbear-2014.65-1.el6 (FEDORA-EPEL-2014-2193)
SSH2 server and client
--------------------------------------------------------------------------------
Update Information:
2014.65 - Friday 8 August 2014
- Fix 2014.64 regression, server session hang on exit with scp (and probably others).
- Fix 2014.64 regression, clock_gettime() error handling which broke on older Linux
kernels.
- Fix 2014.64 regression, writev() could occassionally fail with EAGAIN which wasn't
caught.
- Avoid error message when trying to set QoS on proxycommand or multihop pipes.
- Use /usr/bin/xauth.
- Don't exit the client if the local user entry can't be found.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 8 2014 Christopher Meng <rpm(a)cicku.me> - 2014.65-1
- Update to 2014.65
* Mon Jul 28 2014 Christopher Meng <rpm(a)cicku.me> - 2014.64-1
- Update to 2014.64
--------------------------------------------------------------------------------
================================================================================
gfal2-2.6.8-3.el6 (FEDORA-EPEL-2014-2064)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Update to gfal2 2.6.8
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 11 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.6.8-3
- Disable GridFTP session reuse by default (see LCGUTIL-448)
* Fri Aug 8 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.6.8-2
- Patch for symbol that dissapeared in Davix
* Mon Jul 28 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.6.8-1
- Release 2.6.8 of GFAL2
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.5.5-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-tools-0-0.7.hg17c8fe23290a.el6 (FEDORA-EPEL-2014-2188)
Supplementary tools and packages for Go
--------------------------------------------------------------------------------
Update Information:
fix bz1129281 and cleanup file ownership
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 12 2014 Vincent Batts <vbatts(a)redhat.com> 0-0.7.hg17c8fe23290a
- fix bz1129281 and cleanup file ownership
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0-0.6.hg17c8fe23290a
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Thu Jan 16 2014 Vincent Batts <vbatts(a)redhat.com> 0-0.5.hg17c8fe23290a
- working on the arch dependencies
- clean up file ownership
* Thu Dec 5 2013 Vincent Batts <vbatts(a)redhat.com> 0-0.4.hg17c8fe23290a
- golang-godoc to obsolete the package from golang 1.1.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1129281 - `go tools cover` is not resolved
https://bugzilla.redhat.com/show_bug.cgi?id=1129281
--------------------------------------------------------------------------------
================================================================================
inxi-2.1.90-1.el6 (FEDORA-EPEL-2014-2178)
A full featured system information script
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.90
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 12 2014 Vasiliy N. Glazov <vascom2(a)gmail.com> 2.1.90-1
- Update to 2.1.90
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.1.28-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
libykneomgr-0.1.3-1.el6 (FEDORA-EPEL-2014-2192)
YubiKey NEO Manager C Library
--------------------------------------------------------------------------------
Update Information:
Update to 0.1.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 11 2014 Nick Bebout <nb(a)fedoraproject.org> - 0.1.3-1
- Update to 0.1.3
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.1.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
mongodb-2.4.6-5.el6 (FEDORA-EPEL-2014-2191)
High-performance, schema-free document-oriented database
--------------------------------------------------------------------------------
Update Information:
- Reinstate/Update mongodb
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 7 2014 Jan Pacner <jpacner(a)redhat.com> - 2.4.6-5
- Related: #1027157 (mongo segfaults with an older version of v8; allow higher
versions of v8 - assume API compatibility)
* Tue Feb 4 2014 Jan Pacner <jpacner(a)redhat.com> - 2.4.6-4
- Related: #1022476 (.sysconf not respected; fix issue from comment #2)
- Related: #1027157 (mongo segfaults with an older version of v8; fix Requires:
specification)
* Mon Jan 6 2014 Jan Pacner <jpacner(a)redhat.com> - 2.4.6-3
- Resolves: #1027157 (mongo shell sefgaults when using arbitrary v8 version)
* Fri Oct 25 2013 Jan Pacner <jpacner(a)redhat.com> - 2.4.6-2
- fix #1022476 (sysconf options not respected)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1022476 - mongodb init script does not respect sysconfig options
https://bugzilla.redhat.com/show_bug.cgi?id=1022476
[ 2 ] Bug #1027157 - mongo segfaults with an older version of v8
https://bugzilla.redhat.com/show_bug.cgi?id=1027157
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Imap-Client-2.24.2-1.el6 (FEDORA-EPEL-2014-2113)
Horde IMAP abstraction interface
--------------------------------------------------------------------------------
Update Information:
Horde_Imap_Client 2.24.2
* [mms] Fix typo in Horde_Imap_Client_Data_Sync (Bug #13430; Jasper Olbrich).
Horde_Imap_Client 2.24.1
* [mms] Fix regression in reporting capabilities (Bug #13421).
Horde_Imap_Client 2.24.0
* [mms] Correctly expire internal cache in POP3 when messages are deleted.
* [mms] Improved determination of a pseudo-UIDNEXT value for POP3 servers.
* [mms] Fix sorting of POP3 IDs.
* [mms] Added the 'url' property to Horde_Imap_Client_Base.
* [mms] Fix thread sort order when using the client-side ordered subject algorithm and
there are messages with identical dates.
* [mms] Allow multiple live IMAP/POP3 tests to be run in a single PHPUnit instance.
* [mms] Add support for the IMAP UTF-8 extension (RFC 6855).
* [mms] Querying of valid search charsets is now handled by the
Horde_Imap_Client_Data_SearchCharset object.
* [mms] IMAP extension enabled information is now stored within the capability object.
* [mms] Fix regression where authetication was attempted with a non-null, empty string
password.
* [mms] Improved debug logging during connection failures and authentication attempts.
* [mms] Fix debug logging for certain IMAP authentication actions.
* [mms] Internally handle capability querying via the new
Horde_Imap_Client_Data_Capability object.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 12 2014 Remi Collet <remi(a)fedoraproject.org> - 2.24.2-1
- Update to 2.24.2
* Mon Aug 11 2014 Remi Collet <remi(a)fedoraproject.org> - 2.24.1-1
- Update to 2.24.1
* Tue Aug 5 2014 Remi Collet <remi(a)fedoraproject.org> - 2.24.0-1
- Update to 2.24.0
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Util-2.5.0-1.el6 (FEDORA-EPEL-2014-2189)
Horde Utility Libraries
--------------------------------------------------------------------------------
Update Information:
Horde_Util 2.5.0
* [mms] Fix regression in Horde_String_Transliterate for PHP 5.3 (Bug #13419).
* [mms] Added Horde_String::ipos() and Horde_String::ripos().
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 11 2014 Remi Collet <remi(a)fedoraproject.org> - 2.5.0-1
- Update to 2.5.0
--------------------------------------------------------------------------------
================================================================================
php-theseer-autoload-1.15.0-1.el6 (FEDORA-EPEL-2014-2194)
A tool and library to generate autoload code
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog:
Release 1.15.0
* Added support for composer.json parsing
* Added (optional) caching
* Added explicit wildcard support for directory name matching
* Changed error messages on unit redeclarations
* Some code cleanup and refactoring of internals
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 12 2014 Remi Collet <remi(a)fedoraproject.org> - 1.15.0-1
- Update to 1.15.0
--------------------------------------------------------------------------------
================================================================================
python-django-stopforumspam-1.4.2-2.el6 (FEDORA-EPEL-2014-2181)
Django middleware for blocking IPs listed in
stopforumspam.com
--------------------------------------------------------------------------------
Update Information:
* Update to latest release
--------------------------------------------------------------------------------
================================================================================
python-fedmsg-meta-fedora-infrastructure-0.2.18-2.el6 (FEDORA-EPEL-2014-2190)
Metadata providers for Fedora Infrastructure's fedmsg deployment
--------------------------------------------------------------------------------
Update Information:
Fixes to jenkins messages.
New Fedora-College processor.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 10 2014 Ralph Bean <rbean(a)redhat.com> - 0.2.18-2
- Patch out time-sensitive test.
* Sat Aug 9 2014 Ralph Bean <rbean(a)redhat.com> - 0.2.18-1
- Fix test suite.
* Sat Aug 9 2014 Ralph Bean <rbean(a)redhat.com> - 0.2.17-1
- Bugfixes to jenkins messages.
* Sat Aug 9 2014 Ralph Bean <rbean(a)redhat.com> - 0.2.16-1
- Remove patch.
- Handle fedora college messages.
--------------------------------------------------------------------------------
================================================================================
python-pam-0.1.4-2.el6 (FEDORA-EPEL-2014-2177)
Pure Python interface to the Pluggable Authentication Modules system on Linux
--------------------------------------------------------------------------------
Update Information:
Add support for EPEL6.
--------------------------------------------------------------------------------
================================================================================
salt-2014.1.10-4.el6 (FEDORA-EPEL-2014-2180)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Fix incorrect conditional
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 10 2014 Erik Johnson <erik(a)saltstack.com> - 2014.1.10-4
- Fix incorrect conditional
* Tue Aug 5 2014 Erik Johnson <erik(a)saltstack.com> - 2014.1.10-2
- Deploy cachedir with package
* Mon Aug 4 2014 Erik Johnson <erik(a)saltstack.com> - 2014.1.10-1
- Update to bugfix release 2014.1.10
--------------------------------------------------------------------------------
================================================================================
sks-1.1.5-2.el6 (FEDORA-EPEL-2014-2185)
Synchronizing Key Server
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.1.5
Fix CVE
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 11 2014 Nick Bebout <nb(a)fedoraproject.org> - 1.1.5-2
- Fix init scripts
* Mon Aug 11 2014 Nick Bebout <nb(a)fedoraproject.org> - 1.1.5-1
- Upgrade to 1.1.5
* Sun Jun 8 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.1.4-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.1.4-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1093562 - CVE-2014-3207 sks: reflected cross-site scripting flaw
https://bugzilla.redhat.com/show_bug.cgi?id=1093562
--------------------------------------------------------------------------------
================================================================================
znc-infobot-1.4-1.el6 (FEDORA-EPEL-2014-2187)
infobot module for ZNC IRC Bouncer
--------------------------------------------------------------------------------
Update Information:
Fix broken dep
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 11 2014 Yaakov Selkowitz <yselkowi(a)redhat.com> - 1.4-1
- Rebuild for znc 1.4 (#1106709)
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1099578 - znc-infobot needs update on epel6 because of znc-1.4
https://bugzilla.redhat.com/show_bug.cgi?id=1099578
--------------------------------------------------------------------------------