The following Fedora EPEL 7 Security updates need testing:
Age URL
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-b2c46a790d
radare2-5.6.4-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
cobbler-2.8.5-4.el7
Details about builds:
================================================================================
cobbler-2.8.5-4.el7 (FEDORA-EPEL-2022-1f3ec359c3)
Boot server configurator
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2021-45082, CVE-2021-45083
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 3 2022 Orion Poplawski <orion(a)nwra.com> - 2.8.5-4
- Fix apache group
* Thu Mar 3 2022 Orion Poplawski <orion(a)nwra.com> - 2.8.5-3
- Apply fixes for CVE-2021-45082/3
- Drop EL6 support
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2056392 - CVE-2021-45082 cobbler: incomplete template sanitization
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2056392
[ 2 ] Bug #2056393 - CVE-2021-45083 cobbler: unsafe permissions on sensitive files in
/etc/cobbler [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2056393
--------------------------------------------------------------------------------