The following Fedora EPEL 6 Security updates need testing: Age URL 298 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828 chicken-4.9.0.1-4.el6 280 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6 274 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 206 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6 164 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 136 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 34 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-44de0606ef python-tgcaptcha2-0.3.1-1.el6 29 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8fbd838843 dropbear-2016.72-1.el6 29 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-7640e3144a proftpd-1.3.3g-9.el6 22 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-30a8346813 vtun-3.0.1-10.el6 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-55f139473e latex2rtf-2.3.10-1.el6.1 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e912272569 libsrtp-1.5.4-3.el6 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-9e3b8fecbf qpid-proton-0.12.1-1.el6 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-0fc5375dc7 optipng-0.7.6-1.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-628be2e77a drupal7-block_class-2.3-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
drupal7-block_class-2.3-1.el6 drupal7-ckeditor-1.17-1.el6 drupal7-language_cookie-2.0-1.el6 drupal7-taxonomy_access_fix-2.3-1.el6 drupal7-views-3.13-1.el6 wordpress-4.5-1.el6
Details about builds:
================================================================================ drupal7-block_class-2.3-1.el6 (FEDORA-EPEL-2016-628be2e77a) Allows users to add classes via block configuration interface -------------------------------------------------------------------------------- Update Information:
### 7.x-2.3 * The security update 2.2 broke very common class names, see [#2636548: upgrade to 2.2 converts class underscore to dash](https://www.drupal.org/node/2636548). ### 7.x-2.2 * Fixes [Block Class- Critical - Cross Site Scripting (XSS) - SA- CONTRIB-2015-175](https://www.drupal.org/node/2636502) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1292632 - drupal7-block_class-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1292632 --------------------------------------------------------------------------------
================================================================================ drupal7-ckeditor-1.17-1.el6 (FEDORA-EPEL-2016-c628f245fb) Enables the usage of CKEditor (WYSIWYG) instead of plain text fields -------------------------------------------------------------------------------- Update Information:
### 7.x-1.17 Major change: Media integration has been removed in 7.x-1.17, please use https://www.drupal.org/project/media_ckeditor for that plugin. Changes since 7.x-1.16: * #2550535 by jcisio, donquixote: $plugin_settings['active'] is messing with features * #2574253 by karenann: User specific "Default state" setting is not obeyed * #2514938 by themic8, jcisio: Use the latest version from CDN * #2542566 by bneil, srjosh, jcisio: Remove Media integration * #2437749 by Perignon, david.gil, jcisio: Infinite loop in some cases in ckeditor_file_download * #2463461 by Luukyb: Cleanup .gitignore file from git * #1154730 by Sutharsan: CKEditor not following body rows setting * #2292575 by Angry Dan: Naming of mediaembed plugin is confusing * #2323149 by kaare: ckeditor.admin.css: url() for tick.png and delete.png must point to ../images/ * #2159403 by das-peter, aDarkling, Devin Carlson, wwalc, Angry Dan, brantwynn, agoradesign, micbar, joelpittet, brockfanning, iKb: Make CKEditor plugin system modular and clean * #2324383 by eugene.ilyin: Toolbar in Ckeditor profile is not saved: incompatibility with jQuery 1.10 * #2367913 by yched: Fixed ckeditor_help() issues one uncached locale query on each page . -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1294109 - drupal7-ckeditor-1.17 is available https://bugzilla.redhat.com/show_bug.cgi?id=1294109 --------------------------------------------------------------------------------
================================================================================ drupal7-language_cookie-2.0-1.el6 (FEDORA-EPEL-2016-4243888bdc) Allows usage of cookies to remember the user's last language -------------------------------------------------------------------------------- Update Information:
### 7.x-2.0 Changes since 2.0-rc2: * #2595127: Hardcoded path.inc makes it impossible to replace with redis or memache path.inc ### 7.x-2.0-rc2 Changes since 2.0-rc1: * #2463727: Language cookie can poison module implementation cache, breaking hooks for other modules * #2462895: Variable mismatch on settings page The first issue is critical, so all 1.x users are recommended to upgrade to 1.8 or above and 2.x users are recommended to upgrade to 2.0-rc2 or above. ### 7.x-2.0-rc1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1279833 - drupal7-language_cookie-2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1279833 --------------------------------------------------------------------------------
================================================================================ drupal7-taxonomy_access_fix-2.3-1.el6 (FEDORA-EPEL-2016-4ddcc407dc) Fixes the crooked access checks for Taxonomy pages -------------------------------------------------------------------------------- Update Information:
* #2497111: Term 'edit' permission check on vocabulary term listing does not apply -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1280514 - drupal7-taxonomy_access_fix-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1280514 --------------------------------------------------------------------------------
================================================================================ drupal7-views-3.13-1.el6 (FEDORA-EPEL-2016-0c639e156b) Create customized lists and queries from your database -------------------------------------------------------------------------------- Update Information:
### 7.x-3.13 Changes since 7.x-3.12: * Revert "Issue #2204257 by ezra-g, andyg5000: Update Views Content access filter per core performance improvements" ### 7.x-3.12 Changes since 7.x-3.11: * #1751424 by Ken Ficara, jwilson3: Undefined index: current_user * #1337894 by fengtan: Views RSS feeds have validation issues * #1154830 by heddn, hass, dunix: Schema mismatch after upgrade D6 to D7 * #2204257 by ezra-g, andyg5000: Update Views Content access filter per core performance improvements * #2450447: Drupal QA is broken for Views 7.x-3.x * #2579819 by skyredwang: Deprecating PHP4 style constructors * #1940212 by jweowu: "Content translation: Translations" relationship incorrectly specifying translation source * #2559839 by hexabinaer: [Backport] Expand display "Comment" trim from 10 to 80 characters * Revert "Issue #2559839 by hexabinaer: [Backport] Expand display "Comment" trim from 10 to 80 characters" * #1248716 by milesw, ndf, stefan.r: Views strings not translatable when loaded from a feature * #1547924 by rbp: Document field_math feature previous value * Merge branch '7.x-3.x' of git.drupal.org:project/views into 7.x-3.x * #1771140 by imclean, das-peter, GuGuss: view_menu_alter() adding to existing "access arguments" causes user_access() error * #1491082 by drzraf, dawehner, colan: Set a default template if there is no theme definition. * #2376607 by rrfegade, dakku: Fix some typos in comments. * #339384 by colan: Added help text to keep the exposed filter terms list unset to keep unfiltered "Any" option default. * #2115269 by lalweil, anrikun: Check for entity in views_handler_field_field->get_value() before accessing it. * #1802438 by andrewbelcher, vasike: get_result_entities() Doesn't support revisions * #2211253 by sandipmkhairnar: Incorrect array index given in example for hook_views_ajax_data_alter() * #1484208 by tedfordgif: Undefined index options_form() * #2188165 by dww, jesss, tim.plunkett: Issue tag 'is/not empty' and 'not one of' operators do not work * #1809958 by joelpittet, steve.stotter, alesr, klaasvw: Views with exposed filter (ajax enabled) inside modal window (ctools) * #2284593 by jhedstrom, Lendude: Fatal error: Call to a member function ensure_my_table() on a non-object * #2408939 by shashikant_chauhan: Views Plugins documentation topic lists incorrect number of plugin types * #1036962 by acbramley, dsnopek, grahamC, mr.york, das-peter, wiifm: Edit link destination incorrect when using AJAX-enabled views * #1819538 by azinck: More link disappears when time-based views cache is enabled * #2473959 by fizk: Typo * #1959594 by chrisjlee: typo 'lenght' in view_trim_views() * #1976836 by Dean Reilly: Views locale edit link field uses the old D6 path * #1831162 by dcmouyard, Valentine94: Tables generated by Views need better semantics * #2480753 by dawehner, jibran, das-peter: Make it easier to subclass views_handler_area_view -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1279841 - drupal7-views-3.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=1279841 --------------------------------------------------------------------------------
================================================================================ wordpress-4.5-1.el6 (FEDORA-EPEL-2016-839501159a) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information:
Version 4.5 of WordPress, named ���Coleman��� in honor of jazz saxophonist Coleman Hawkins, is available. See [Release announcement](https://wordpress.org/news/2016/04/coleman/) --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org