The following Fedora EPEL 7 Security updates need testing:
Age URL
1036
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
799
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
381
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
278
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe
mod_cluster-1.3.3-10.el7
110
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e27758bd23
libmspack-0.6-0.1.alpha.el7
48
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e64eeb6ece
nagios-4.3.4-5.el7
36
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d704442ae7
qpid-cpp-1.37.0-1.el7
17
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-957aa05f33
heketi-5.0.1-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8d57a2487b
monit-5.25.1-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-753e392fc4
xrdp-0.9.5-1.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-2e2d08b1ff
awstats-7.6-4.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-49ca8440a1
gifsicle-1.90-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
composer-1.6.2-1.el7
debootstrap-1.0.93-1.el7
dh-make-2.201701-1.el7
ocserv-0.11.10-1.el7
php-composer-spdx-licenses-1.2.0-1.el7
python-www-authenticate-0.9.2-3.el7
shorewall-5.1.10.2-1.el7
Details about builds:
================================================================================
composer-1.6.2-1.el7 (FEDORA-EPEL-2018-a6e741d0c1)
Dependency Manager for PHP
--------------------------------------------------------------------------------
Update Information:
**composer 1.6.2** - 2018-01-05 * Fixed more autoloader regressions * Fixed
support for updating dist refs in gitlab URLs --- **composer 1.6.1** -
2018-01-04 * Fixed upgrade regression due to some autoloader cleanups *
Fixed some overly loose version constraints ---- **composer 1.6.0** -
2018-01-04 * Added support for SPDX license identifiers v3.0, deprecates
GPL/LGPL/AGPL identifiers, which should now have a `-only` or `-or-later` suffix
added. * Added support for COMPOSER_MEMORY_LIMIT env var to make Composer set
the PHP memory limit explicitly * Added support for simple strings for the
`bin` * Fixed `check-platform-reqs` bug in version checking --- **composer
1.6.0RC** - 2017-12-19 * Improved performance of installs and updates from
git clones when checking out known commits * Added `check-platform-reqs`
command that checks that your PHP and extensions versions match the platform
requirements of the installed packages * Added `--with-all-dependencies` to
the `update` and `require` commands which updates all dependencies of the listed
packages, including those that are direct root requirements * Added `scripts-
descriptions` key to composer.json to customize the description and document
your custom commands * Added support for the uppercase NO_PROXY env var *
Added support for COMPOSER_DEFAULT_{AUTHOR,LICENSE,EMAIL,VENDOR} env vars to
pre-populate init command values * Added support for local fossil repositories
* Added suggestions for alternative spellings when entering packages in `init`
and `require` commands and nothing can be found * Fixed installed.json data to
be sorted alphabetically by package name * Fixed compatibility with Symfony
4.x components that Composer uses --- **spdx-licenses 1.2.0** - 2018-01-03
* Added: deprecation status for all licenses and a
`SpdxLicenses::isDeprecatedByIdentifier` method. * Changed: updated licenses
list to SPDX 3.0.
--------------------------------------------------------------------------------
================================================================================
debootstrap-1.0.93-1.el7 (FEDORA-EPEL-2018-082cb9794e)
Debian GNU/Linux bootstrapper
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.93 (#1523424)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1523424 - debootstrap-1.0.93 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1523424
--------------------------------------------------------------------------------
================================================================================
dh-make-2.201701-1.el7 (FEDORA-EPEL-2018-f7eb7c1747)
Tool that converts source archives into Debian package source
--------------------------------------------------------------------------------
Update Information:
Update to 2.201701 (#1527706)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1527706 - dh-make-2.201701 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1527706
--------------------------------------------------------------------------------
================================================================================
ocserv-0.11.10-1.el7 (FEDORA-EPEL-2018-79a28d694f)
OpenConnect SSL VPN server
--------------------------------------------------------------------------------
Update Information:
- Update to upstream 0.11.10 release
--------------------------------------------------------------------------------
================================================================================
php-composer-spdx-licenses-1.2.0-1.el7 (FEDORA-EPEL-2018-a6e741d0c1)
SPDX licenses list and validation library
--------------------------------------------------------------------------------
Update Information:
**composer 1.6.2** - 2018-01-05 * Fixed more autoloader regressions * Fixed
support for updating dist refs in gitlab URLs --- **composer 1.6.1** -
2018-01-04 * Fixed upgrade regression due to some autoloader cleanups *
Fixed some overly loose version constraints ---- **composer 1.6.0** -
2018-01-04 * Added support for SPDX license identifiers v3.0, deprecates
GPL/LGPL/AGPL identifiers, which should now have a `-only` or `-or-later` suffix
added. * Added support for COMPOSER_MEMORY_LIMIT env var to make Composer set
the PHP memory limit explicitly * Added support for simple strings for the
`bin` * Fixed `check-platform-reqs` bug in version checking --- **composer
1.6.0RC** - 2017-12-19 * Improved performance of installs and updates from
git clones when checking out known commits * Added `check-platform-reqs`
command that checks that your PHP and extensions versions match the platform
requirements of the installed packages * Added `--with-all-dependencies` to
the `update` and `require` commands which updates all dependencies of the listed
packages, including those that are direct root requirements * Added `scripts-
descriptions` key to composer.json to customize the description and document
your custom commands * Added support for the uppercase NO_PROXY env var *
Added support for COMPOSER_DEFAULT_{AUTHOR,LICENSE,EMAIL,VENDOR} env vars to
pre-populate init command values * Added support for local fossil repositories
* Added suggestions for alternative spellings when entering packages in `init`
and `require` commands and nothing can be found * Fixed installed.json data to
be sorted alphabetically by package name * Fixed compatibility with Symfony
4.x components that Composer uses --- **spdx-licenses 1.2.0** - 2018-01-03
* Added: deprecation status for all licenses and a
`SpdxLicenses::isDeprecatedByIdentifier` method. * Changed: updated licenses
list to SPDX 3.0.
--------------------------------------------------------------------------------
================================================================================
python-www-authenticate-0.9.2-3.el7 (FEDORA-EPEL-2018-f71d518c58)
Python library for parsing WWW-Authenticate HTTP header values
--------------------------------------------------------------------------------
Update Information:
Parsing WWW-Authenticate headers is difficult. Let this tiny library do all the
hard work for you.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1530413 - No EPEL 7 Build
https://bugzilla.redhat.com/show_bug.cgi?id=1530413
--------------------------------------------------------------------------------
================================================================================
shorewall-5.1.10.2-1.el7 (FEDORA-EPEL-2017-d833f44e88)
An iptables front end for firewall configuration
--------------------------------------------------------------------------------
Update Information:
New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1401739 - shorewall-5.1.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1401739
[ 2 ] Bug #1513472 - Needs update
https://bugzilla.redhat.com/show_bug.cgi?id=1513472
[ 3 ] Bug #1498461 - Perl script incompatibility
https://bugzilla.redhat.com/show_bug.cgi?id=1498461
[ 4 ] Bug #1476138 - Accounting is broken in shorewall-5.0.14.1-2.el7
https://bugzilla.redhat.com/show_bug.cgi?id=1476138
--------------------------------------------------------------------------------