The following Fedora EPEL 6 Security updates need testing: Age URL 843 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.1... 190 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0440/fwsnort-1.6.4-... 175 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0590/oath-toolkit-2... 62 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1616/puppet-2.7.26-... 52 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1693/perl-Email-Add... 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2084/drupal7-date-2... 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2088/tor-0.2.4.23-1... 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2099/v8-3.14.5.10-1... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2123/ReviewBoard-1.... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2117/ansible-1.7-1.... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2144/mediawiki119-1... 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2162/wordpress-3.9.... 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2159/iodine-0.7.0-1... 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2158/drupal7-7.31-1... 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2148/drupal6-6.33-1... 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2185/sks-1.1.5-2.el...
The following builds have been pushed to Fedora EPEL 6 updates-testing
chicken-4.9.0.1-1.el6 dar-2.4.14-1.el6 davix-0.3.6-2.el6 dropbear-2014.65-1.el6 gfal2-2.6.8-3.el6 golang-googlecode-tools-0-0.7.hg17c8fe23290a.el6 inxi-2.1.90-1.el6 libykneomgr-0.1.3-1.el6 mongodb-2.4.6-5.el6 php-horde-Horde-Imap-Client-2.24.2-1.el6 php-horde-Horde-Util-2.5.0-1.el6 php-theseer-autoload-1.15.0-1.el6 python-django-stopforumspam-1.4.2-2.el6 python-fedmsg-meta-fedora-infrastructure-0.2.18-2.el6 python-pam-0.1.4-2.el6 salt-2014.1.10-4.el6 sks-1.1.5-2.el6 znc-infobot-1.4-1.el6
Details about builds:
================================================================================ chicken-4.9.0.1-1.el6 (FEDORA-EPEL-2014-2195) A practical and portable Scheme system -------------------------------------------------------------------------------- Update Information:
Latest upstream release. -------------------------------------------------------------------------------- ChangeLog:
* Thu Aug 7 2014 Ricky Elrod relrod@redhat.com - 4.9.0.1-4 - Latest upstream release. * Sat Jun 7 2014 Ricky Elrod relrod@redhat.com - 4.9.0-4 - Rebuild from previous bootstrap. * Sat Jun 7 2014 Ricky Elrod relrod@redhat.com - 4.9.0-3 - Bootstrap for el7. * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 4.9.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed Jun 4 2014 Ricky Elrod codeblock@fedoraproject.org - 4.9.0-1 - Latest upstream release. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1104019 - chicken-4.9.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1104019 --------------------------------------------------------------------------------
================================================================================ dar-2.4.14-1.el6 (FEDORA-EPEL-2014-2183) Software for making/restoring incremental CD/DVD backups -------------------------------------------------------------------------------- Update Information:
Software for making/restoring incremental CD/DVD backups -------------------------------------------------------------------------------- ChangeLog:
* Sat Aug 9 2014 Luis Bazan lbazan@fedoraproject.org - 2.4.14-1 - new upstream version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1114281 - dar-2.4.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1114281 --------------------------------------------------------------------------------
================================================================================ davix-0.3.6-2.el6 (FEDORA-EPEL-2014-2186) Toolkit for Http-based file management -------------------------------------------------------------------------------- Update Information:
davix 0.3.6 release, see RELEASE-NOTES for changes Update to release 0.3.4 -------------------------------------------------------------------------------- ChangeLog:
* Tue Aug 12 2014 Adrien Devresse <adevress at cern.ch> - 0.3.6-2 - davix 0.3.6 release, see RELEASE-NOTES for changes * Tue Jul 22 2014 Adrien Devresse <adevress at cern.ch> - 0.3.4-1 - Update to release 0.3.4 --------------------------------------------------------------------------------
================================================================================ dropbear-2014.65-1.el6 (FEDORA-EPEL-2014-2193) SSH2 server and client -------------------------------------------------------------------------------- Update Information:
2014.65 - Friday 8 August 2014
- Fix 2014.64 regression, server session hang on exit with scp (and probably others). - Fix 2014.64 regression, clock_gettime() error handling which broke on older Linux kernels. - Fix 2014.64 regression, writev() could occassionally fail with EAGAIN which wasn't caught. - Avoid error message when trying to set QoS on proxycommand or multihop pipes. - Use /usr/bin/xauth. - Don't exit the client if the local user entry can't be found. -------------------------------------------------------------------------------- ChangeLog:
* Fri Aug 8 2014 Christopher Meng rpm@cicku.me - 2014.65-1 - Update to 2014.65 * Mon Jul 28 2014 Christopher Meng rpm@cicku.me - 2014.64-1 - Update to 2014.64 --------------------------------------------------------------------------------
================================================================================ gfal2-2.6.8-3.el6 (FEDORA-EPEL-2014-2064) Grid file access library 2.0 -------------------------------------------------------------------------------- Update Information:
Update to gfal2 2.6.8
-------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 11 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.6.8-3 - Disable GridFTP session reuse by default (see LCGUTIL-448) * Fri Aug 8 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.6.8-2 - Patch for symbol that dissapeared in Davix * Mon Jul 28 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.6.8-1 - Release 2.6.8 of GFAL2 * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2.5.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ golang-googlecode-tools-0-0.7.hg17c8fe23290a.el6 (FEDORA-EPEL-2014-2188) Supplementary tools and packages for Go -------------------------------------------------------------------------------- Update Information:
fix bz1129281 and cleanup file ownership -------------------------------------------------------------------------------- ChangeLog:
* Tue Aug 12 2014 Vincent Batts vbatts@redhat.com 0-0.7.hg17c8fe23290a - fix bz1129281 and cleanup file ownership * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0-0.6.hg17c8fe23290a - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Jan 16 2014 Vincent Batts vbatts@redhat.com 0-0.5.hg17c8fe23290a - working on the arch dependencies - clean up file ownership * Thu Dec 5 2013 Vincent Batts vbatts@redhat.com 0-0.4.hg17c8fe23290a - golang-godoc to obsolete the package from golang 1.1.2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1129281 - `go tools cover` is not resolved https://bugzilla.redhat.com/show_bug.cgi?id=1129281 --------------------------------------------------------------------------------
================================================================================ inxi-2.1.90-1.el6 (FEDORA-EPEL-2014-2178) A full featured system information script -------------------------------------------------------------------------------- Update Information:
Update to 2.1.90 -------------------------------------------------------------------------------- ChangeLog:
* Tue Aug 12 2014 Vasiliy N. Glazov vascom2@gmail.com 2.1.90-1 - Update to 2.1.90 * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2.1.28-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ libykneomgr-0.1.3-1.el6 (FEDORA-EPEL-2014-2192) YubiKey NEO Manager C Library -------------------------------------------------------------------------------- Update Information:
Update to 0.1.3 -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 11 2014 Nick Bebout nb@fedoraproject.org - 0.1.3-1 - Update to 0.1.3 * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ mongodb-2.4.6-5.el6 (FEDORA-EPEL-2014-2191) High-performance, schema-free document-oriented database -------------------------------------------------------------------------------- Update Information:
- Reinstate/Update mongodb -------------------------------------------------------------------------------- ChangeLog:
* Fri Feb 7 2014 Jan Pacner jpacner@redhat.com - 2.4.6-5 - Related: #1027157 (mongo segfaults with an older version of v8; allow higher versions of v8 - assume API compatibility) * Tue Feb 4 2014 Jan Pacner jpacner@redhat.com - 2.4.6-4 - Related: #1022476 (.sysconf not respected; fix issue from comment #2) - Related: #1027157 (mongo segfaults with an older version of v8; fix Requires: specification) * Mon Jan 6 2014 Jan Pacner jpacner@redhat.com - 2.4.6-3 - Resolves: #1027157 (mongo shell sefgaults when using arbitrary v8 version) * Fri Oct 25 2013 Jan Pacner jpacner@redhat.com - 2.4.6-2 - fix #1022476 (sysconf options not respected) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1022476 - mongodb init script does not respect sysconfig options https://bugzilla.redhat.com/show_bug.cgi?id=1022476 [ 2 ] Bug #1027157 - mongo segfaults with an older version of v8 https://bugzilla.redhat.com/show_bug.cgi?id=1027157 --------------------------------------------------------------------------------
================================================================================ php-horde-Horde-Imap-Client-2.24.2-1.el6 (FEDORA-EPEL-2014-2113) Horde IMAP abstraction interface -------------------------------------------------------------------------------- Update Information:
Horde_Imap_Client 2.24.2 * [mms] Fix typo in Horde_Imap_Client_Data_Sync (Bug #13430; Jasper Olbrich).
Horde_Imap_Client 2.24.1 * [mms] Fix regression in reporting capabilities (Bug #13421).
Horde_Imap_Client 2.24.0 * [mms] Correctly expire internal cache in POP3 when messages are deleted. * [mms] Improved determination of a pseudo-UIDNEXT value for POP3 servers. * [mms] Fix sorting of POP3 IDs. * [mms] Added the 'url' property to Horde_Imap_Client_Base. * [mms] Fix thread sort order when using the client-side ordered subject algorithm and there are messages with identical dates. * [mms] Allow multiple live IMAP/POP3 tests to be run in a single PHPUnit instance. * [mms] Add support for the IMAP UTF-8 extension (RFC 6855). * [mms] Querying of valid search charsets is now handled by the Horde_Imap_Client_Data_SearchCharset object. * [mms] IMAP extension enabled information is now stored within the capability object. * [mms] Fix regression where authetication was attempted with a non-null, empty string password. * [mms] Improved debug logging during connection failures and authentication attempts. * [mms] Fix debug logging for certain IMAP authentication actions. * [mms] Internally handle capability querying via the new Horde_Imap_Client_Data_Capability object.
-------------------------------------------------------------------------------- ChangeLog:
* Tue Aug 12 2014 Remi Collet remi@fedoraproject.org - 2.24.2-1 - Update to 2.24.2 * Mon Aug 11 2014 Remi Collet remi@fedoraproject.org - 2.24.1-1 - Update to 2.24.1 * Tue Aug 5 2014 Remi Collet remi@fedoraproject.org - 2.24.0-1 - Update to 2.24.0 --------------------------------------------------------------------------------
================================================================================ php-horde-Horde-Util-2.5.0-1.el6 (FEDORA-EPEL-2014-2189) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information:
Horde_Util 2.5.0 * [mms] Fix regression in Horde_String_Transliterate for PHP 5.3 (Bug #13419). * [mms] Added Horde_String::ipos() and Horde_String::ripos().
-------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 11 2014 Remi Collet remi@fedoraproject.org - 2.5.0-1 - Update to 2.5.0 --------------------------------------------------------------------------------
================================================================================ php-theseer-autoload-1.15.0-1.el6 (FEDORA-EPEL-2014-2194) A tool and library to generate autoload code -------------------------------------------------------------------------------- Update Information:
Upstream Changelog:
Release 1.15.0 * Added support for composer.json parsing * Added (optional) caching * Added explicit wildcard support for directory name matching * Changed error messages on unit redeclarations * Some code cleanup and refactoring of internals
-------------------------------------------------------------------------------- ChangeLog:
* Tue Aug 12 2014 Remi Collet remi@fedoraproject.org - 1.15.0-1 - Update to 1.15.0 --------------------------------------------------------------------------------
================================================================================ python-django-stopforumspam-1.4.2-2.el6 (FEDORA-EPEL-2014-2181) Django middleware for blocking IPs listed in stopforumspam.com -------------------------------------------------------------------------------- Update Information:
* Update to latest release --------------------------------------------------------------------------------
================================================================================ python-fedmsg-meta-fedora-infrastructure-0.2.18-2.el6 (FEDORA-EPEL-2014-2190) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information:
Fixes to jenkins messages. New Fedora-College processor. -------------------------------------------------------------------------------- ChangeLog:
* Sun Aug 10 2014 Ralph Bean rbean@redhat.com - 0.2.18-2 - Patch out time-sensitive test. * Sat Aug 9 2014 Ralph Bean rbean@redhat.com - 0.2.18-1 - Fix test suite. * Sat Aug 9 2014 Ralph Bean rbean@redhat.com - 0.2.17-1 - Bugfixes to jenkins messages. * Sat Aug 9 2014 Ralph Bean rbean@redhat.com - 0.2.16-1 - Remove patch. - Handle fedora college messages. --------------------------------------------------------------------------------
================================================================================ python-pam-0.1.4-2.el6 (FEDORA-EPEL-2014-2177) Pure Python interface to the Pluggable Authentication Modules system on Linux -------------------------------------------------------------------------------- Update Information:
Add support for EPEL6. --------------------------------------------------------------------------------
================================================================================ salt-2014.1.10-4.el6 (FEDORA-EPEL-2014-2180) A parallel remote execution system -------------------------------------------------------------------------------- Update Information:
Fix incorrect conditional -------------------------------------------------------------------------------- ChangeLog:
* Sun Aug 10 2014 Erik Johnson erik@saltstack.com - 2014.1.10-4 - Fix incorrect conditional * Tue Aug 5 2014 Erik Johnson erik@saltstack.com - 2014.1.10-2 - Deploy cachedir with package * Mon Aug 4 2014 Erik Johnson erik@saltstack.com - 2014.1.10-1 - Update to bugfix release 2014.1.10 --------------------------------------------------------------------------------
================================================================================ sks-1.1.5-2.el6 (FEDORA-EPEL-2014-2185) Synchronizing Key Server -------------------------------------------------------------------------------- Update Information:
Upgrade to 1.1.5 Fix CVE -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 11 2014 Nick Bebout nb@fedoraproject.org - 1.1.5-2 - Fix init scripts * Mon Aug 11 2014 Nick Bebout nb@fedoraproject.org - 1.1.5-1 - Upgrade to 1.1.5 * Sun Jun 8 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.1.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Aug 4 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1093562 - CVE-2014-3207 sks: reflected cross-site scripting flaw https://bugzilla.redhat.com/show_bug.cgi?id=1093562 --------------------------------------------------------------------------------
================================================================================ znc-infobot-1.4-1.el6 (FEDORA-EPEL-2014-2187) infobot module for ZNC IRC Bouncer -------------------------------------------------------------------------------- Update Information:
Fix broken dep -------------------------------------------------------------------------------- ChangeLog:
* Wed Jun 11 2014 Yaakov Selkowitz yselkowi@redhat.com - 1.4-1 - Rebuild for znc 1.4 (#1106709) * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1099578 - znc-infobot needs update on epel6 because of znc-1.4 https://bugzilla.redhat.com/show_bug.cgi?id=1099578 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org