The following Fedora EPEL 6 Security updates need testing:
Age URL
318
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-4008
cross-binutils-2.23.51.0.3-1.el6.1
98
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828
chicken-4.9.0.1-4.el6
80
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
74
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
17
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7994
seamonkey-2.28-7.ESR_31.8.0.el6
15
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8027
php-extras-5.3.3-4.el6
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8044 golang-1.5.1-0.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8091
zabbix22-2.2.10-1.el6
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8102
wordpress-4.3.1-1.el6
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7902
owncloud-7.0.10-1.el6
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8144 nrpe-2.15-7.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8148 optipng-0.7.5-5.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
gccxml-0.9.0-0.27.20150423.git3afa8ba.el6
libhtp-0.5.18-1.el6
php-horde-Horde-Core-2.22.0-1.el6
php-udan11-sql-parser-1.0.0-2.el6
root-5.34.32-3.el6
Details about builds:
================================================================================
gccxml-0.9.0-0.27.20150423.git3afa8ba.el6 (FEDORA-EPEL-2015-902075f61d)
XML output extension to GCC
--------------------------------------------------------------------------------
Update Information:
Minor fixes to support files.
--------------------------------------------------------------------------------
================================================================================
libhtp-0.5.18-1.el6 (FEDORA-EPEL-2015-ce4eebeaaf)
Security-aware parser for the HTTP protocol and the related bits and pieces
--------------------------------------------------------------------------------
Update Information:
This is a minor bug-fix release: * Fixed
[#120](https://github.com/OISF/libhtp/pull/120) Trigger request line parsing on
incomplete request [Victor Julien] * Fixed
[#119](https://github.com/OISF/libhtp/pull/119) Fix uninitialized
`htp_tx_t::is_last` value in `htp_tx_res_process_body_data_ex()` [Fedor
Sakharov] * Fixed [#118](https://github.com/OISF/libhtp/pull/118) Coverity-
identified missing `break` in `switch` [Sam Baskinger] * Fixed
[#117](https://github.com/OISF/libhtp/pull/117) Coverity-identified issue of not
checking `malloc()` return value [Sam Baskinger] * Fixed
[#116](https://github.com/OISF/libhtp/pull/116) Fix coverity-identified leaked
file descriptors in unit test [Sam Baskinger] * Fixed
[#113](https://github.com/OISF/libhtp/pull/113) fix pkgconfig include dir [Eric
Leblond] * Fixed [#111](https://github.com/OISF/libhtp/pull/111) Connect plain
http [Victor Julien] * Fixed [#105](https://github.com/OISF/libhtp/pull/105) Do
not invoke callbacks in `htp_req_run_hook_body_data()` when there is no tx
running. [Sam Baskinger] * Fixed [#104](https://github.com/OISF/libhtp/pull/104)
Modifiying HTTP methods to be rfc3253 compliant [Andreas Moe] * Fixed
[#103](https://github.com/OISF/libhtp/pull/103) Fixes [Victor Julien] * Fixed
[#101](https://github.com/OISF/libhtp/pull/101) Make including the autoconf
config header safer [Brian Rectanus] ---- This is a minor bug-fix release: *
Fix URI parsing for non-std 'space' chars * Fixing buffer overrun that was
failing clang `-fsanitize=address` checks * Replace `strcat/sprintf` by
`strlcat/snprintf` * Fix `autogen` on CentOS 5.11 * Fix dereferencing type-
punned pointer on CentOS 5.11 * Fix warning on OpenBSD
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1266639 - libhtp-0.5.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1266639
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Core-2.22.0-1.el6 (FEDORA-EPEL-2015-1d7167f5d9)
Horde Core Framework libraries
--------------------------------------------------------------------------------
Update Information:
**Horde_Core 2.22.0** * [mjr] ActiveSync logging improvements. * [mjr] Add
support for OpenWeatherMap layers in Horde_Map. * [mjr] Fix edge-case issue with
ActiveSync folder list generation when installed application contains no user
writable sources.
--------------------------------------------------------------------------------
================================================================================
php-udan11-sql-parser-1.0.0-2.el6 (FEDORA-EPEL-2015-8186)
A validating SQL lexer and parser with a focus on MySQL dialect
--------------------------------------------------------------------------------
Update Information:
A validating SQL lexer and parser with a focus on MySQL dialect. This library
was originally developed for phpMyAdmin during the Google Summer of Code 2015.
To use this library, you just have to add, in your project: require_once
'/usr/share/php/SqlParser/autoload.php';
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262807 - Review Request: php-udan11-sql-parser - A validating SQL lexer and
parser with a focus on MySQL dialect
https://bugzilla.redhat.com/show_bug.cgi?id=1262807
--------------------------------------------------------------------------------
================================================================================
root-5.34.32-3.el6 (FEDORA-EPEL-2015-fe4826eeab)
Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:
- Add versioned dependencies between packages - Reenable hadoop/hdfs support for
F23+
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1241558 - sub-components should have a dependency on main package
https://bugzilla.redhat.com/show_bug.cgi?id=1241558
--------------------------------------------------------------------------------