The following Fedora EPEL 7 Security updates need testing:
Age URL
47
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-2c81054303
remctl-3.14-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-8b8dc96235
nodejs-deep-extend-0.5.1-1.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3a39b00b77
thunderbird-enigmail-2.0.4-1.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-860176245e
gifsicle-1.91-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-20c3b6be2a
SDL2-2.0.8-5.el7 SDL2_gfx-1.0.3-1.el7 SDL2_image-2.0.3-1.el7 SDL2_mixer-2.0.2-2.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
strongswan-5.6.2-6.el7
Details about builds:
================================================================================
strongswan-5.6.2-6.el7 (FEDORA-EPEL-2018-48b823c3dc)
An OpenSource IPsec-based VPN and TNC solution
--------------------------------------------------------------------------------
Update Information:
Resolves rhbz#1581868 CVE-2018-5388 strongswan: buffer underflow in
stroke_socket.c
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 24 2018 Paul Wouters <pwouters(a)redhat.com> - 5.6.2-6
- Resolves rhbz#1581868 CVE-2018-5388 strongswan: buffer underflow in stroke_socket.c
* Thu May 24 2018 Paul Wouters <pwouters(a)redhat.com> - 5.6.2-5
- Resolves rhbz#1574939 IKEv2 VPN connections fail to use DNS servers provided by the
server
- Resolves rhbz#1449875 Strongswan on epel built without the sql plugin but with the
sqlite plugin
* Sun May 20 2018 Mikhail Zabaluev <mikhail.zabaluev(a)gmail.com> - 5.6.2-3
- Move eap-radius, sqlite, and pkcs7 plugins out of tnc-imcvs, added package
sqlite (#1579945)
* Tue Mar 6 2018 Bj��rn Esser <besser82(a)fedoraproject.org> - 5.6.2-2
- Rebuilt for libjson-c.so.4 (json-c v0.13.1)
* Wed Feb 21 2018 Lubomir Rintel <lkundrak(a)v3.sk> - 5.6.2-1
- Updated to 5.6.2 (Dropped libnm-glib use in charon-nm)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1581868 - CVE-2018-5388 strongswan: buffer underflow in stroke_socket.c
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1581868
--------------------------------------------------------------------------------