The following Fedora EPEL 5 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-3762/couchdb-1.0.2-... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4907/bugzilla-3.2.1... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-5125/torque-2.5.7-6... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4674/awstats-6.95-3...
The following builds have been pushed to Fedora EPEL 5 updates-testing
json_diff-1.1.0-1.el5 sloccount-2.26-11.el5 torque-2.5.7-6.el5
Details about builds:
================================================================================ json_diff-1.1.0-1.el5 (FEDORA-EPEL-2011-5126) Generates diff between two JSON files -------------------------------------------------------------------------------- Update Information:
New upstream release (ignore appeneded keys option) New upstream release fixing issues during the testing New package in Fedora. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #755602 - Review Request: json_diff - Generates diff between two JSON files https://bugzilla.redhat.com/show_bug.cgi?id=755602 --------------------------------------------------------------------------------
================================================================================ sloccount-2.26-11.el5 (FEDORA-EPEL-2011-5127) Measures source lines of code (SLOC) in programs -------------------------------------------------------------------------------- Update Information:
Package sloccount for EPEL. --------------------------------------------------------------------------------
================================================================================ torque-2.5.7-6.el5 (FEDORA-EPEL-2011-5125) Tera-scale Open-source Resource and QUEue manager -------------------------------------------------------------------------------- Update Information:
This torque update corrects a security vulnerability whereby a user connecting to the torque pbs_server could impersonate another user present within the torque batch system.
In addition a memory leak is fixed, previously memory used for sending and receiving data was not being released.
-------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 21 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-6 - Add torque-rhbz#758740-r5258-dis-close.patch and torque-rhbz#758740-r5270-dis-array.patch * Mon Nov 21 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-5 - Add torque-fix-munge-rhbz#752079-PTII.patch * Thu Nov 17 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-4 - Empty release for release mistake. * Thu Nov 17 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-3 - Add torque-fix-munge-rhbz#752079.patch -------------------------------------------------------------------------------- References:
[ 1 ] Bug #752079 - Torque and Munge impersonation vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=752079 [ 2 ] Bug #758740 - torque 2.5.7 memory leak. https://bugzilla.redhat.com/show_bug.cgi?id=758740 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org