The following Fedora EPEL 7 Security updates need testing: Age URL 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-01179f6b9f suricata-4.1.9-1.el7 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-e6c7b4cbec tcpreplay-4.3.3-3.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-284f18e5de lout-3.40-18.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fd6ec50fa5 fastd-21-2.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-3b167ec2fa pngcheck-2.3.0-3.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-3157c3d291 chromium-86.0.4240.111-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
containerd-1.2.14-1.el7 gsi-openssh-7.4p1-6.el7 haproxy18-1.8.23-2.el7 perl-Carp-Assert-More-1.24-1.el7.1 python-regex-2020.10.28-1.el7
Details about builds:
================================================================================ containerd-1.2.14-1.el7 (FEDORA-EPEL-2020-e816cf1fbc) An industry-standard container runtime -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2020-15157 -------------------------------------------------------------------------------- ChangeLog:
* Thu Oct 29 2020 Olivier Lemasle o.lemasle@gmail.com - 1.2.14-1 - Latest upstream - Fix CVE-2020-15157 (#1890620) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1888248 - CVE-2020-15157 containerd: credentials leak during image pull https://bugzilla.redhat.com/show_bug.cgi?id=1888248 --------------------------------------------------------------------------------
================================================================================ gsi-openssh-7.4p1-6.el7 (FEDORA-EPEL-2020-7e2b65b63e) An implementation of the SSH protocol with GSI authentication and HPN features -------------------------------------------------------------------------------- Update Information:
Add HPN patch -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 23 2020 Frank Scheiner scheiner@hlrs.de - 7.4p1-6 - Add HPN patch --------------------------------------------------------------------------------
================================================================================ haproxy18-1.8.23-2.el7 (FEDORA-EPEL-2020-0d6230d04e) HAProxy reverse proxy for high availability environments -------------------------------------------------------------------------------- Update Information:
HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments. Indeed, it can: - route HTTP requests depending on statically assigned cookies - spread load among several servers while assuring server persistence through the use of HTTP cookies - switch to backup servers in the event a main one fails - accept connections to special ports dedicated to service monitoring - stop accepting connections without breaking existing ones - add, modify, and delete HTTP headers in both directions - block requests matching particular patterns - report detailed status to authenticated users from a URI intercepted from the application The haproxy18 package is a backport of the regular haproxy RPM package from RHEL/CentOS 8 modified to be installable along with the regular haproxy RPM package from RHEL/CentOS 7, but linked against the libraries in the openssl11-libs RPM package from EPEL 7 for TLSv1.3 support. -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1885415 - Review Request: haproxy18 - HAProxy reverse proxy for high availability environments https://bugzilla.redhat.com/show_bug.cgi?id=1885415 --------------------------------------------------------------------------------
================================================================================ perl-Carp-Assert-More-1.24-1.el7.1 (FEDORA-EPEL-2020-e31afd4d97) Convenience wrappers around Carp::Assert -------------------------------------------------------------------------------- Update Information:
First EPEL 7 build -------------------------------------------------------------------------------- ChangeLog:
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1829996 - perl-Carp-Assert-More for EL7 https://bugzilla.redhat.com/show_bug.cgi?id=1829996 --------------------------------------------------------------------------------
================================================================================ python-regex-2020.10.28-1.el7 (FEDORA-EPEL-2020-2c973c7348) Alternative regular expression module, to replace re -------------------------------------------------------------------------------- Update Information:
Update python-regex to the latest release. -------------------------------------------------------------------------------- ChangeLog:
* Thu Oct 29 2020 Thomas Moschny thomas.moschny@gmx.de - 2020.10.28-1 - Update to 2020.10.28. * Wed Oct 28 2020 Thomas Moschny thomas.moschny@gmx.de - 2020.10.23-1 - Update to 2020.10.23. --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org