The following Fedora EPEL 5 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6072/lighttpd-1....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6223/gajim-0.12....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6229/mosh-1.2.2-...
The following builds have been pushed to Fedora EPEL 5 updates-testing
NetworkManager-openconnect-0.8.6.0-2.el5
gajim-0.12.5-1.el5.2
jna-3.4.0-4.el5
lis-1.2.66-1.el5
mosh-1.2.2-1.el5
myproxy-5.8-1.el5
openconnect-4.00-3.el5
pcp-3.6.3-1.el5.2
python-httplib2-0.7.4-4.el5
salt-0.10.1-1.el5
Details about builds:
================================================================================
NetworkManager-openconnect-0.8.6.0-2.el5 (FEDORA-EPEL-2012-6231)
NetworkManager VPN integration for openconnect
--------------------------------------------------------------------------------
Update Information:
This new package adds support for the Cisco AnyConnect VPN protocol in NetworkManager.
Note that due to bug #489114 you will need to reboot before NetworkManager will see the
new plugin.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #821514 - Package NetworkManager-openconnect for epel 6
https://bugzilla.redhat.com/show_bug.cgi?id=821514
--------------------------------------------------------------------------------
================================================================================
gajim-0.12.5-1.el5.2 (FEDORA-EPEL-2012-6223)
Jabber client written in PyGTK
--------------------------------------------------------------------------------
Update Information:
Fixes two security bugs. Avoids a third bug by disabling the latex plugin.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 20 2012 Michal Schmidt <mschmidt(a)redhat.com> 0.12.5-1.el5.2
- Two security fixes picked from el6:
- CVE-2012-2085
- CVE-2012-2086
- disabled latex plugin to avoid CVE-2012-2093
* Tue Oct 27 2009 Michal Schmidt <mschmidt(a)redhat.com> 0.12.5-1.el5.1
- Fix NetworkManager feature (+ gajim-dbus-python-0.7-compat.diff)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #833483 - CVE-2012-2085 gajim: Execute command helper improperly sanitizing
'command' argument, leading to remote code execution
https://bugzilla.redhat.com/show_bug.cgi?id=833483
[ 2 ] Bug #833484 - CVE-2012-2086 gajim: SQL injection due improper sanitization of
conversation logs
https://bugzilla.redhat.com/show_bug.cgi?id=833484
--------------------------------------------------------------------------------
================================================================================
jna-3.4.0-4.el5 (FEDORA-EPEL-2012-6222)
Pure Java access to native libraries
--------------------------------------------------------------------------------
Update Information:
maven bugfix
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 20 2012 Levente Farkas <lfarkas(a)lfarkas.org> - 3.4.0-4
- fix #833786 by Mary Ellen Foster
* Wed Mar 14 2012 Juan Hernandez <juan.hernandez(a)redhat.com> - 3.4.0-3
- Generate correctly the maven dependencies map (#)
* Sun Mar 11 2012 Ville Skyttä <ville.skytta(a)iki.fi> - 3.4.0-2
- Don't strip binaries too early, build with $RPM_LD_FLAGS (#802020).
* Wed Mar 7 2012 Levente Farkas <lfarkas(a)lfarkas.org> - 3.4.0-1
- Update to 3.4.0
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.2.7-13
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.2.7-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Thu Dec 9 2010 Ville Skyttä <ville.skytta(a)iki.fi> - 3.2.7-11
- Drop dependency on main package from -javadoc.
- Add license to -javadoc, and OTHERS and TODO to main package docs.
- Install javadocs and jars unversioned.
- Fix release-notes.html permissions.
- Make -javadoc and -contrib noarch where available.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #833786 - Update maven depmap usage (patch included)
https://bugzilla.redhat.com/show_bug.cgi?id=833786
--------------------------------------------------------------------------------
================================================================================
lis-1.2.66-1.el5 (FEDORA-EPEL-2012-6227)
A library for solving linear equations and eigenvalue problems
--------------------------------------------------------------------------------
Update Information:
Update to 1.2.66.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 20 2012 Jussi Lehtola <jussilehtola(a)fedoraproject.org> - 1.2.66-1
- Update to 1.2.66.
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.58-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Nov 22 2011 Jussi Lehtola <jussilehtola(a)fedoraproject.org> - 1.2.58-1
- Update to 1.2.58.
* Tue Nov 8 2011 Jussi Lehtola <jussilehtola(a)fedoraproject.org> - 1.2.56-1
- Update to 1.2.56.
* Wed Nov 2 2011 Jussi Lehtola <jussilehtola(a)fedoraproject.org> - 1.2.54-1
- Update to 1.2.54.
--------------------------------------------------------------------------------
================================================================================
mosh-1.2.2-1.el5 (FEDORA-EPEL-2012-6229)
Mobile shell that supports roaming and intelligent local echo
--------------------------------------------------------------------------------
Update Information:
Update to mosh 1.2.2
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 13 2012 Alexander Chernyakhovsky <achernya(a)mit.edu> - 1.2.2-1
- Update to mosh 1.2.2
* Sat Apr 28 2012 Alexander Chernyakhovsky <achernya(a)mit.edu> - 1.2-2
- Add -g and -O2 CFLAGS
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #823943 - CVE-2012-2385 mosh: mosh server DoS (long loop) due improper parsing
of terminal parameters in terminal dispatcher
https://bugzilla.redhat.com/show_bug.cgi?id=823943
--------------------------------------------------------------------------------
================================================================================
myproxy-5.8-1.el5 (FEDORA-EPEL-2012-6208)
Manage X.509 Public Key Infrastructure (PKI) security credentials
--------------------------------------------------------------------------------
Update Information:
Version 5.8:
* fixes for myproxy-server VOMS attribute support: API updates for libvomsapi, fixes for
FQAN regex matching
* fix for myproxy-server "Failed to load sub-CA certs from file" error when
using certificate_issuer_subca_certfile
(
https://bugzilla.mcs.anl.gov/globus/show_bug.cgi?id=7259)
* update $GLOBUS_LOCATION paths for GT 5.2 in etc.init.d.myproxy
Version 5.7:
* add IPv6 support (
https://bugzilla.mcs.anl.gov/globus/show_bug.cgi?id=7252)
* update configure script for platforms where pidfile_open is defined in libbsd
* support limited proxy certificates in myproxy-logon -voms by passing -limited option to
voms-proxy-init as needed (
https://bugzilla.mcs.anl.gov/globus/show_bug.cgi?id=7250)
* add support for TLS 1.1 and TLS 1.2 using OpenSSL 1.0.1 and later
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 21 2012 Steve Traylen <steve.traylen(a)cern.ch> - 5.8-1
- Update to 5.8, source tar ball name change, drop
myproxy-ssl1-tls.patch and myproxy-ssl1-2048bits.patch
since upstream now.
* Tue May 15 2012 Steve Traylen <steve.traylen(a)cern.ch> - 5.6-4
- Add myproxy-ssl1-tls.patch and myproxy-ssl1-2048bits.patch.
--------------------------------------------------------------------------------
================================================================================
openconnect-4.00-3.el5 (FEDORA-EPEL-2012-6220)
Open client for Cisco AnyConnect VPN
--------------------------------------------------------------------------------
Update Information:
OpenConnect is a Linux cient for the Cisco Anyconnect VPN
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #821512 - Package openconnect for epel6
https://bugzilla.redhat.com/show_bug.cgi?id=821512
--------------------------------------------------------------------------------
================================================================================
pcp-3.6.3-1.el5.2 (FEDORA-EPEL-2012-6207)
System-level performance monitoring and performance management
--------------------------------------------------------------------------------
Update Information:
Remove pcp-import-sheet2pcp subpackage due to missing dependencies and fix build for
s390x.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 21 2012 Mark Goodwin <mgoodwin(a)redhat.com>
- remove pcp-import-sheet2pcp subpackage due to missing deps (BZ 830923) - 3.6.3-1.2
* Fri May 18 2012 Dan Horák <dan[at]danny.cz> - 3.6.3-1.1
- fix build on s390x
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #754678 - f16 pcp-import-sheet2pcp requires perl(Spreadsheet::Read)
https://bugzilla.redhat.com/show_bug.cgi?id=754678
--------------------------------------------------------------------------------
================================================================================
python-httplib2-0.7.4-4.el5 (FEDORA-EPEL-2012-6221)
A comprehensive HTTP client library
--------------------------------------------------------------------------------
Update Information:
Fixed:
+ Bug 804879 - python-httplib2 0.7.0 should switch to use system cacerts
+ Bug 832344 - Certification validation fails due to multiple 'dns' entries in
subjectAltName (which is also google issue 208)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jun 22 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-4
- Unify the spec file between EPEL and Fedora.
* Thu Jun 21 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-3
- Applied patch suggested by richardfearn(a)gmail.com regarding issue 208
- Fixed: Bug 832344 - Certification validation fails due to multiple 'dns' entries
in subjectAltName
* Fri Jun 1 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-2
- Upstream update for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #804879 - python-httplib2 0.7.0 should switch to use system cacerts
https://bugzilla.redhat.com/show_bug.cgi?id=804879
[ 2 ] Bug #832344 - Certification validation fails due to multiple 'dns' entries
in subjectAltName
https://bugzilla.redhat.com/show_bug.cgi?id=832344
--------------------------------------------------------------------------------
================================================================================
salt-0.10.1-1.el5 (FEDORA-EPEL-2012-6226)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to 0.10.1
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jun 16 2012 Clint Savage <herlo1(a)gmail.com> - 0.10.1-1
- Moved to upstream release 0.10.1
--------------------------------------------------------------------------------