The following Fedora EPEL 6 Security updates need testing:
Age URL
596
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
590
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
480
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
451
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
182
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53
chicken-4.11.0-3.el6
62
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac
libbsd-0.8.3-2.el6
46
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8c6c7bf06e
dbus-sharp-0.7.0-16.el6 dbus-sharp-glib-0.5.0-14.el6 mono-4.2.4-9.el6
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-acd2c2af0d
nagios-4.2.4-4.el6
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-2f218dd2b9
python-cjson-1.1.0-9.el6
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c3b112eb9e
tomcat-7.0.75-1.el6
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-148092c401
cacti-1.0.3-2.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4e715bd3df
phpMyAdmin-4.0.10.19-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
hylafax+-5.5.9-1.el6
mrbs-1.6.0-1.el6
nordugrid-arc-5.2.2-2.el6
perl-SOAP-WSDL-3.003-6.el6
phpMyAdmin-4.0.10.19-1.el6
python-pathlib-1.0.1-1.el6
python3-cffi-1.9.1-1.el6
Details about builds:
================================================================================
hylafax+-5.5.9-1.el6 (FEDORA-EPEL-2017-f6c4de3b89)
An enterprise-strength fax server
--------------------------------------------------------------------------------
Update Information:
update to 5.5.9 (unreleased SVN checkout) to fix gcc v7 build problem with
5.5.8-2 on f26
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1423726 - hylafax+: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1423726
--------------------------------------------------------------------------------
================================================================================
mrbs-1.6.0-1.el6 (FEDORA-EPEL-2017-2a5c4ca659)
Meeting Room Booking System
--------------------------------------------------------------------------------
Update Information:
Update to mrbs 1.6.0. ---- Update to mrbs 1.5.0 and fix the php-mysql(i)
broken dependency.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293103 - MRBS 1.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1293103
[ 2 ] Bug #1111837 - mrbs-1.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1111837
[ 3 ] Bug #1421397 - mrbs-1.6.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1421397
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-5.2.2-2.el6 (FEDORA-EPEL-2017-de49e9ec4f)
Advanced Resource Connector Grid Middleware
--------------------------------------------------------------------------------
Update Information:
Don't use pylint for EPEL builds (retired)
--------------------------------------------------------------------------------
================================================================================
perl-SOAP-WSDL-3.003-6.el6 (FEDORA-EPEL-2017-d1dfba9c55)
Perl module for SOAP with WSDL support
--------------------------------------------------------------------------------
Update Information:
New package. Lots of buildrequires for the perl test. Needed to break into
subpackages due to Apache server dependencies in part of the module, which
conflicts with nginx.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1418310 - Review Request: perl-SOAP-WSDL - Perl module for SOAP with WSDL
support
https://bugzilla.redhat.com/show_bug.cgi?id=1418310
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-4.0.10.19-1.el6 (FEDORA-EPEL-2017-4e715bd3df)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
phpMyAdmin 4.0.10.19 (2017-01-23) ================================= This
release includes many security fixes of various levels of severity. For full
information on the vulnerabilities fixed and mitigation factors for users who
are unable to upgrade, refer to the ChangeLog file included with this release
and the security announcements at
https://www.phpmyadmin.net/security/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1416000 - phpMyAdmin: DOS in replication status
https://bugzilla.redhat.com/show_bug.cgi?id=1416000
[ 2 ] Bug #1415999 - phpMyAdmin: SSRF in replication
https://bugzilla.redhat.com/show_bug.cgi?id=1415999
[ 3 ] Bug #1415998 - phpMyAdmin: Cookie attribute injection attack
https://bugzilla.redhat.com/show_bug.cgi?id=1415998
[ 4 ] Bug #1415997 - phpMyAdmin: CSS injection in themes
https://bugzilla.redhat.com/show_bug.cgi?id=1415997
[ 5 ] Bug #1415996 - phpMyAdmin: DOS vulnerabiltiy in table editing
https://bugzilla.redhat.com/show_bug.cgi?id=1415996
[ 6 ] Bug #1415995 - phpMyAdmin: Open redirect
https://bugzilla.redhat.com/show_bug.cgi?id=1415995
--------------------------------------------------------------------------------
================================================================================
python-pathlib-1.0.1-1.el6 (FEDORA-EPEL-2017-3410c9f74a)
Object-oriented filesystem paths
--------------------------------------------------------------------------------
Update Information:
rebuild epel7 package for epel6
--------------------------------------------------------------------------------
================================================================================
python3-cffi-1.9.1-1.el6 (FEDORA-EPEL-2017-a5260da300)
Foreign Function Interface for Python to call C code
--------------------------------------------------------------------------------
Update Information:
Foreign Function Interface for Python, providing a convenient and reliable way
of calling existing C code from Python. The interface is based on LuaJIT���s FFI.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410953 - Review Request: python3-cffi - Foreign Function Interface for
Python to call C code
https://bugzilla.redhat.com/show_bug.cgi?id=1410953
--------------------------------------------------------------------------------