The following Fedora EPEL 7 Security updates need testing:
Age URL
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-f005e1b879
debmirror-2.35-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-2f9b2cf4af
ckeditor-4.16.2-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-d179a438bc
libspf2-1.2.11-1.20210922git4915c308.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
golang-github-prometheus-2.26.1-1.el7
hw-probe-1.6-1.el7
php-getid3-1.9.21-1.el7
Details about builds:
================================================================================
golang-github-prometheus-2.26.1-1.el7 (FEDORA-EPEL-2021-37f81a6244)
Prometheus monitoring system and time series database
--------------------------------------------------------------------------------
Update Information:
Update to 2.26.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 20 2021 Robert-Andr�� Mauchin <zebob.m(a)gmail.com> - 2.26.1-1
- Update to 2.26.1
- Add additional variable to pass options to the service
- Security fix for CVE-2021-29622
- Close: rhbz#1928323, rhbz#2005296, rhbz#1962720, rhbz#1962718
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1962718 - CVE-2021-29622 prometheus: open redirect under the /new endpoint
https://bugzilla.redhat.com/show_bug.cgi?id=1962718
--------------------------------------------------------------------------------
================================================================================
hw-probe-1.6-1.el7 (FEDORA-EPEL-2021-8e6d10c62e)
Check operability of computer hardware and find drivers
--------------------------------------------------------------------------------
Update Information:
Update to 1.6
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 22 2021 Andrey Ponomarenko <andrewponomarenko(a)yandex.ru> - 1.6-1
- Update to 1.6
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Tue Jan 26 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Jul 28 2020 Adam Jackson <ajax(a)redhat.com> - 1.5-4
- Recommend edid-decode xdpyinfo xinput xrandr xvinfo, not xorg-x11-utils
* Tue Jul 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Wed Jan 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
php-getid3-1.9.21-1.el7 (FEDORA-EPEL-2021-0be42e4fec)
The PHP media file parser
--------------------------------------------------------------------------------
Update Information:
**Version 1.9.21**: [2021-09-22] James Heinrich :: 1.9.21-202109171300 * add
support for RIFF.guan * add ID3v1 genres 148-191 * torrent files easy access key
* bugfix #342 demo.mysqli.php XSS * bugfix #340 default
quicktime.ReturnAtomData=false * bugfix #338 improved transliterated tag
merging * bugfix #337 PHP 8.1 compatibility * bugfix #335 PHP 8.1
compatibility * bugfix #330 QuicktimeContentRatingLookup 'rtng' * bugfix
#328 throw exception if a resource seek fails * bugfix #326 improved
temporary path detection * bugfix #325 INF/NAN constants instead of
float/string * bugfix #324 Nikon-specific atoms in QuickTime * bugfix #321
prevent errors on corrupt JPEGs * bugfix #319 prevent error in ZIP contents
MIME detect * bugfix #315 ID3v2 USLT check for data length * bugfix #308
silence libxml deprecation warning * bugfix #304 undefined index: comments *
bugfix #299 decbin type error in PHP8 * bugfix #298 error scanning WAV via
file pointer * bugfix #294 replace IMG_JPG with IMAGETYPE_JPEG * bugfix
#292 PDFs take long time to parse * bugfix #291 divzero QuickTime with no
playable content * bugfix #290 detect ID3v1 on minimal example files *
bugfix #289 avoid crash on invalid TIFF * bugfix #287 mp3 CBR detected as VBR
* bugfix #286 corrupt mp3 can cause slow scanning * bugfix #284 allow "0"
as a value in tags * bugfix #283 array offset on value of type int *
bugfix #277 ID3v2 add new Turkish Lira TRY * bugfix #270 demo.mysqli.php
LONGBLOB * bugfix #266 fix possible endless loop on PNG * bugfix #257
undefined variables * bugfix #207 improved LAME version string parsing
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 23 2021 Remi Collet <remi(a)remirepo.net> - 1.9.21-1
- update to 1.9.21
--------------------------------------------------------------------------------