The following Fedora EPEL 7 Security updates need testing:
Age URL
780
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
543
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
245
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3
chicken-4.11.0-3.el7
125
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
23
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe
mod_cluster-1.3.3-10.el7
21
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4
tnef-1.4.14-1.el7
20
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378
python-XStatic-jquery-ui-1.12.0.1-1.el7
16
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b9db4ff3ec
proftpd-1.3.5e-1.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-323bfce094
yara-3.5.0-7.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e4d67c8654
collectd-5.7.1-2.el7
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-fdcd61a2be
pcre2-10.21-18.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e2fae7fb04
squirrelmail-1.4.22-16.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
cryptacular-1.1.0-2.el7
getmail-4.54.0-1.el7
glassfish-saaj-1.3.19-12.el7
jackson-annotations-2.7.6-4.el7
mimepull-1.9.6-4.el7
nrpe-3.1.0-2.el7
nsd-4.1.16-1.el7
python-nose_fixes-1.3-1.el7
python-xml2rfc-2.5.2-2.el7
squirrelmail-1.4.22-16.el7
tcpreplay-4.2.4-1.el7
Details about builds:
================================================================================
cryptacular-1.1.0-2.el7 (FEDORA-EPEL-2017-4358167466)
Java Library that complement to the Bouncy Castle crypto API
--------------------------------------------------------------------------------
Update Information:
This is required for wildfly-related packages
--------------------------------------------------------------------------------
================================================================================
getmail-4.54.0-1.el7 (FEDORA-EPEL-2017-8610f6a292)
POP3, IMAP4 and SDPS mail retriever with Maildir delivery
--------------------------------------------------------------------------------
Update Information:
update to 4.54.0
--------------------------------------------------------------------------------
================================================================================
glassfish-saaj-1.3.19-12.el7 (FEDORA-EPEL-2017-5c266dcbcf)
JSR-67 implementation
--------------------------------------------------------------------------------
Update Information:
New build
--------------------------------------------------------------------------------
================================================================================
jackson-annotations-2.7.6-4.el7 (FEDORA-EPEL-2017-73c45f643a)
Core annotations for Jackson data processor
--------------------------------------------------------------------------------
Update Information:
This is eventually for glassfish-saaj
--------------------------------------------------------------------------------
================================================================================
mimepull-1.9.6-4.el7 (FEDORA-EPEL-2017-68ede6122e)
Streaming API to access attachments from a MIME message
--------------------------------------------------------------------------------
Update Information:
This is for glassfish-saaj
--------------------------------------------------------------------------------
================================================================================
nrpe-3.1.0-2.el7 (FEDORA-EPEL-2017-2c0b443f54)
Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:
Move to using original nirik nrpe service file for systemd. It worked and the
others dont ---- update to 3.1.0 ---- Fix npre pid. Fix systemd ----
Update to 3.0.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1190708 - nrpe.service does not support reload for systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1190708
[ 2 ] Bug #1275870 - NRPE initscript does not read PID file when calling
status/killproc
https://bugzilla.redhat.com/show_bug.cgi?id=1275870
[ 3 ] Bug #1411705 - allowed_hosts doesn't work, if one of the hostnames can't
be resolved by dns
https://bugzilla.redhat.com/show_bug.cgi?id=1411705
--------------------------------------------------------------------------------
================================================================================
nsd-4.1.16-1.el7 (FEDORA-EPEL-2017-360a58c9ca)
Fast and lean authoritative DNS Name Server
--------------------------------------------------------------------------------
Update Information:
Updated to 4.1.16 (minimum response option)
--------------------------------------------------------------------------------
================================================================================
python-nose_fixes-1.3-1.el7 (FEDORA-EPEL-2017-44df7bb4ab)
Plugin to make nose behave better
--------------------------------------------------------------------------------
Update Information:
* Initial import
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1445822 - Review Request: python-nose_fixes - Plugin to make nose behave
better
https://bugzilla.redhat.com/show_bug.cgi?id=1445822
--------------------------------------------------------------------------------
================================================================================
python-xml2rfc-2.5.2-2.el7 (FEDORA-EPEL-2017-40d0027325)
Convert IETF RFC-2629 XML into txt format
--------------------------------------------------------------------------------
Update Information:
Resolves: rhbz#1444858 xml2rfc: no xml2rfc executable is present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1444858 - xml2rfc: no xml2rfc executable is present
https://bugzilla.redhat.com/show_bug.cgi?id=1444858
--------------------------------------------------------------------------------
================================================================================
squirrelmail-1.4.22-16.el7 (FEDORA-EPEL-2017-e2fae7fb04)
webmail client written in php
--------------------------------------------------------------------------------
Update Information:
fix insufficient escaping of user-supplied data (CVE-2017-7692)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1445165 - CVE-2017-7692 squirrelmail: Insufficient escaping of user-supplied
data
https://bugzilla.redhat.com/show_bug.cgi?id=1445165
--------------------------------------------------------------------------------
================================================================================
tcpreplay-4.2.4-1.el7 (FEDORA-EPEL-2017-a0f16223c9)
Replay captured network traffic
--------------------------------------------------------------------------------
Update Information:
Bug fixes. 4.2.4: - Fix spelling mistakes discovered by Lintian (#362) 4.2.3:
- Archive (remove) QuickTX until maintainer found (#357) - Ubuntu precise
32bit_build (#356) 4.2.2: - Missing symbol pcap_version on macOS 10.12.4
(#353)
--------------------------------------------------------------------------------