The following Fedora EPEL 7 Security updates need testing:
Age URL
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-2413c1a726
seamonkey-2.53.10-2.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
R-littler-0.3.15-1.el7
isync-1.3.6-1.el7
nordugrid-arc6-6.14.0-1.el7
pspg-5.5.1-1.el7
rust-1.57.0-1.el7
Details about builds:
================================================================================
R-littler-0.3.15-1.el7 (FEDORA-EPEL-2021-e111f18a26)
littler: R at the Command-Line via 'r'
--------------------------------------------------------------------------------
Update Information:
littler 0.3.15
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 0.3.15-1
- New upstream release 0.3.15
--------------------------------------------------------------------------------
================================================================================
isync-1.3.6-1.el7 (FEDORA-EPEL-2021-d5e825b208)
Tool to synchronize IMAP4 and Maildir mailboxes
--------------------------------------------------------------------------------
Update Information:
Update to fix CVE-2021-3578 and CVE-2021-3657
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Neal Gompa <ngompa(a)fedoraproject.org> - 1.3.6-1
- New upstream release 1.3.6
- Fixes CVE-2021-3657
- Fixes CVE-2021-3578
* Wed Feb 3 2021 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.3.4-1
- Update to latest upstream release 1.3.4 (#1924724)
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Thu Aug 6 2020 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.3.3-1
- Update to latest upstream release 1.3.3 (#1865992)
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri Jul 10 2020 Fabian Affolter <mail(a)fabian-affolter.ch> - 1.3.2-1
- Update to latest upstream release 1.3.2 (#1854842)
* Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.3.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1968627 - CVE-2021-3578 isync: unchecked pointer cast may lead to remote code
execution [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1968627
[ 2 ] Bug #2028934 - CVE-2021-3657 isync: buffer overflows due to inadequate handling of
extremely large IMAP literals [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2028934
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc6-6.14.0-1.el7 (FEDORA-EPEL-2021-d242384962)
Advanced Resource Connector Middleware
--------------------------------------------------------------------------------
Update Information:
ARC 6.14
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.14.0-1
- Update to version 6.14.0
--------------------------------------------------------------------------------
================================================================================
pspg-5.5.1-1.el7 (FEDORA-EPEL-2021-4018a66a73)
A unix pager optimized for psql
--------------------------------------------------------------------------------
Update Information:
new upstream release, per release notes
https://github.com/okbob/pspg/releases/tag/5.5.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 4 2021 Pavel Raiskup <praiskup(a)redhat.com> - 5.5.1-1
- new upstream release, per release notes:
https://github.com/okbob/pspg/releases/tag/5.5.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2013560 - pspg-5.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2013560
--------------------------------------------------------------------------------
================================================================================
rust-1.57.0-1.el7 (FEDORA-EPEL-2021-c267556268)
The Rust Programming Language
--------------------------------------------------------------------------------
Update Information:
Update to Rust 1.57.0: - `panic!` in const contexts - Cargo support for custom
profiles - Fallible allocation - Stabilized APIs See the [blog
post](https://blog.rust-lang.org/2021/12/02/Rust-1.57.0.html) and [release
notes](https://github.com/rust-
lang/rust/blob/master/RELEASES.md#version-1570-2021-12-02) for more details.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 2 2021 Josh Stone <jistone(a)redhat.com> - 1.57.0-1
- Update to 1.57.0, fixes rhbz#2028675.
- Backport rust#91070, fixes rhbz#1990657
- Add rust-std-static-wasm32-wasi
* Sun Nov 28 2021 Igor Raits <ignatenkobrain(a)fedoraproject.org> - 1.56.1-3
- De-bootstrap (libgit2)
* Sun Nov 28 2021 Igor Raits <ignatenkobrain(a)fedoraproject.org> - 1.56.1-2
- Rebuild for libgit2 1.3.x
--------------------------------------------------------------------------------