The following Fedora EPEL 6 Security updates need testing:
Age URL
26
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b6c663378c
unrtf-0.21.9-8.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-98ff28b9d0
drupal7-backup_migrate-3.5-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
transifex-client-0.13.4-1.el6
wordpress-4.9.7-1.el6
Details about builds:
================================================================================
transifex-client-0.13.4-1.el6 (FEDORA-EPEL-2018-ce9840f415)
Command line tool for Transifex translation management
--------------------------------------------------------------------------------
Update Information:
New Upstream version
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 6 2018 Luis Bazan <lbazan(a)fedoraproject.org> - 0.13.4-1
- New upstream version
--------------------------------------------------------------------------------
================================================================================
wordpress-4.9.7-1.el6 (FEDORA-EPEL-2018-8c4ebc0d2d)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
Update to 4.9.7 security release.
https://wordpress.org/news/2018/07/wordpress-4-9-7-security-and-maintenance-
release/
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jul 5 2018 Kevin Fenzi <kevin(a)scrye.com> - 4.9.7-1
- Update to 4.9.7 security update. Fixes bug #1598612
- Fixes CVE-2018-12895 bugs #1595584 and #1595585
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1595585 - CVE-2018-12895 wordpress: Author users can execute arbitrary code
by leveraging directory traversal on the wp-admin/post.php thumb parameter [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1595585
[ 2 ] Bug #1598612 - wordpress-4.9.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1598612
--------------------------------------------------------------------------------