The following Fedora EPEL 5 Security updates need testing:
https://admin.fedoraproject.org/updates/bugzilla-3.2.10-1.el5
https://admin.fedoraproject.org/updates/xml-security-c-1.5.1-2.el5
https://admin.fedoraproject.org/updates/couchdb-1.0.2-8.el5,erlang-ibrows...
https://admin.fedoraproject.org/updates/dokuwiki-0-0.10.20110525.a.el5
https://admin.fedoraproject.org/updates/libsndfile-1.0.17-5.el5
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
bugzilla-3.2.10-1.el5
dkim-milter-2.8.3-8.el5
drbdlinks-1.19-2.el5
drupal6-features-1.1-3.el5
duplicity-0.6.14-1.el5
nntpgrab-0.6.92-1.el5
perl-Sys-Hostname-Long-1.4-5.el5
python-celery-2.2.7-3.el5
python-importlib-1.0.2-1.el5
python-migrate0.5-0.5.4-1.el5
python-sqlalchemy0.5-0.5.8-8.el5
python26-boto-2.0-1.el5
xml-security-c-1.5.1-2.el5
xrootd-3.0.4-2.el5.1
Details about builds:
================================================================================
bugzilla-3.2.10-1.el5 (FEDORA-EPEL-2011-3873)
Bug tracking system
--------------------------------------------------------------------------------
Update Information:
Security update for CVE-2010-4411, CVE-2010-4567, CVE-2010-4568, CVE-2010-4569,
CVE-2010-4570, CVE-2010-4572, CVE-2011-0046, CVE-2011-0048
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 3 2011 Xavier Bachelot <xavier(a)bachelot.org> - 3.2.10-1
- Update to 3.2.10 for CVE-2010-4411, CVE-2010-4567, CVE-2010-4568,
CVE-2010-4569, CVE-2010-4570, CVE-2010-4572, CVE-2011-0046, CVE-2011-0048)
* Tue Feb 2 2010 Emmanuel Seyman <emmanuel.seyman(a)club-internet.fr> - 3.2.6-2
- Use Linux requirements, not Windows'
* Mon Feb 1 2010 Emmanuel Seyman <emmanuel.seyman(a)club-internet.fr> - 3.2.6-1
- Update to 3.2.6 (CVE-2009-3989, CVE-2009-3387)
- Specify Perl module versions in the Requires (fixes #524309)
- Add an alias to make $webdotdir a working path (fixes #458848)
* Fri Sep 11 2009 Emmanuel Seyman <emmanuel.seyman(a)club-internet.fr> - 3.2.5-1
- Update to 3.2.5 (CVE-2009-3125, CVE-2009-3165 and CVE-2009-3166)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #672856 - bugzilla: multiple security issues [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=672856
--------------------------------------------------------------------------------
================================================================================
dkim-milter-2.8.3-8.el5 (FEDORA-EPEL-2011-3854)
DomainKeys Identified Mail sender authentication sendmail milter
--------------------------------------------------------------------------------
Update Information:
Backport fixes from el6 for postfix and keeping the initscript from overriding the socket
from the config file
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 16 2010 Jim Radford <radford(a)blackbean.org> - 2.8.3-8
- Install unformatted man pages
* Mon Mar 15 2010 Jim Radford <radford(a)blackbean.org> - 2.8.3-7
- Better support postfix by making the defailt UMask 002.
This should by ok, as we run with our own user and group.
* Mon Mar 15 2010 Jim Radford <radford(a)blackbean.org> - 2.8.3-6
- set Socket in the conf file rather than the initscript to allow the
user to change the default in the obvious place, but support it
being set in in the sysconfig file or not set at all for backwards
compatability with older config files.
* Fri Feb 19 2010 Jim Radford <radford(a)blackbean.org> - 2.8.3-5
- libdkim uses resolver(3) and so should link with -lresolv, #565017
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #722624 - there is hardcoded command line option in /etc/init.d/dkim-milter
startup script, which overrides some conf file parameters
https://bugzilla.redhat.com/show_bug.cgi?id=722624
--------------------------------------------------------------------------------
================================================================================
drbdlinks-1.19-2.el5 (FEDORA-EPEL-2011-3839)
A program for managing links into a DRBD shared partition
--------------------------------------------------------------------------------
Update Information:
- Handle visible SELinux range label if mcstrans is not used
- Added configuration file for tmpfiles handling (#656578)
- Added logrotate configuration to ignore possible *.drbdlinks
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 17 2011 Robert Scheck <robert(a)fedoraproject.org> 1.19-2
- Handle visible SELinux range label if mcstrans is not used
- Added configuration file for tmpfiles handling (#656578)
- Added logrotate configuration to ignore possible *.drbdlinks
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #656578 - Please Update Spec File to use %ghost on files in /var/run and
/var/lock
https://bugzilla.redhat.com/show_bug.cgi?id=656578
--------------------------------------------------------------------------------
================================================================================
drupal6-features-1.1-3.el5 (FEDORA-EPEL-2011-3842)
Provides feature management for Drupal
--------------------------------------------------------------------------------
Update Information:
Update to upstream 1.1 fixes false override report if permissions were created in a
different order.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 18 2011 Paul W. Frields <stickster(a)gmail.com> - 1.1-3
- Update to upstream 1.1
--------------------------------------------------------------------------------
================================================================================
duplicity-0.6.14-1.el5 (FEDORA-EPEL-2011-3872)
Encrypted bandwidth-efficient backup using rsync algorithm
--------------------------------------------------------------------------------
Update Information:
New in v0.6.14 (2011/06/18)
----------------------------
Enhancements:
* Provide Ubuntu One integration
Bugs closed in this release:
* AttributeError: FileobjHooked instance has no attribute 'name'
* Restore fails with "Invalid data - SHA1 hash mismatch"
* Cygwin: Full Backup fails with "IOError: [Errno 13] Permission denied"
* --exclude-filelist-stdin and gpg error with/without PASSPHRASE
* Endless retype passphrase when typo
* "include-filelist-stdin" not implemented on version 0.6.11
* [PATCH] Local backend should always try renaming instead of copying
* cannot import name S3ResponseError
* Difference found: File X has permissions 666, expected 666
* collection-status asking for passphrase
* ncftpls file delete fails in ftpbackend.py
* create tomporary files with sftp
* duplicity sftp backend should ignore removing a file which is not there
* Webdav(s) url scheme lacks port support
* create tomporary files with sftp
* sftp backend cannot create new subdirs on new backup
* Timeout on sftp command 'ls -1'
* Duplicity ignores some FatalErrors
* Allow to pass different passwords for --sign-key and --encrypt-key
New in v0.6.13 (2011/04/02)
----------------------------
Enhancements added this release:
* New manual test to make Ctrl-C issues easier to replicate.
* Use python-virtualenv to make testing multiple Python versions easier.
* In boto backend check for existing bucket before trying to create.
Bugs closed in this release:
* Assertion error "time not moving forward at appropriate pace"
* silent data corruption with checkpoint/restore
* File "/usr/bin/duplicity", error after upgrade from 6.11 to 6.12
New in v0.6.12 (2011/03/08)
----------------------------
Enhancements added this release:
* ftps support using lftp (ftpsbackend)
Bugs closed in this release:
* Only full backups done on webdav
* Use log codes for common backend errors
* Inverted "Current directory" "Previous directory" in error
message
* OSError: [Errno 2] No such file or directory
* sslerror: The read operation timed out with cf
* boto backend uses Python 2.5 conditional
* symbolic link ownership not preserved
* Cygwin: TypeError: basis_file must be a (true) file ...
* Duplicity 0.6.11 aborts if RSYNC_RSH not set
* Backup fails silently when target is full (sftp, verbosity=4)
* Exception in log module
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 17 2011 Robert Scheck <robert(a)fedoraproject.org> 0.6.14-1
- Upgrade to 0.6.14 (#720589, #697222)
- Backported optparse 1.5a2 from RHEL 5 for RHEL 4 (#717133)
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.6.11-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #720589 - duplicity 0.6.13 out
https://bugzilla.redhat.com/show_bug.cgi?id=720589
[ 2 ] Bug #697222 - Duplicity with rsync fails if RSYNC_RSH is not set
https://bugzilla.redhat.com/show_bug.cgi?id=697222
[ 3 ] Bug #717133 - Duplicity on EL4 (From epel) doesn't even work
https://bugzilla.redhat.com/show_bug.cgi?id=717133
--------------------------------------------------------------------------------
================================================================================
nntpgrab-0.6.92-1.el5 (FEDORA-EPEL-2011-3850)
Download files from the usenet
--------------------------------------------------------------------------------
Update Information:
Update to 0.6.92 (0.7 beta 3). For the complete list of changes see
http://nntpgrab.nl/projects/nntpgrab/wiki/Version_history
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 20 2011 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 0.6.92-1
- Update to 0.6.92 (0.7 Beta 3)
- Build against gtk3 on Fedora 15 and rawhide
- Dropped upstreamed NetworkManager 0.9 patch
* Sun Mar 27 2011 Christopher Aillon <caillon(a)redhat.com> - 0.6.91-4
- Rebuild against NetworkManager 0.9
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.6.91-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Dec 20 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.91-2
- Really disable the gobject-introspection bits on Fedora 14 as they
cause a compile failure
* Mon Dec 20 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.91-1
- Update to 0.6.91
- Drop upstreamed patch
- Build against gnutls instead of nss/nss_compat_ossl
- Don't build the Qt frontend on EL-6 as not all dependencies are available yet
- Only bundle the gobject-introspection files on Fedora >= 15
- Use parallel make while building the Qt frontend
- Dropped F-12 pieces as it's EOL
- Dropped old obsoletes
- Simplified the commands executed in the %install phase
* Sun Sep 26 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.90-6
- Own %{_datadir}/gtk-doc instead of %{_datadir}/gtk-doc/html/NNTPGrab to comply with rhbz
#604169
* Sat Sep 11 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.90-5
- Force the use of Qt >= 4.6 on Fedora 12 to avoid a segfault when using Qt 4.5
* Sat Sep 11 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.90-4
- Force the use of libsoup >= 2.28.2 on Fedora 12 for gzip content-encoding support
* Mon Sep 6 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.90-3
- Fixed a plugin dependency resolving issue
* Sat Aug 21 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.90-2
- Dropped the Requires: nntpgrab-gui-base from the server-qt subpackage
- Dropped some unneeded BR's
- Added support for EL6
* Sat Aug 21 2010 Erik van Pienbroek <info(a)nntpgrab.nl> - 0.6.90-1
- Update to 0.6.90 (0.7 Beta 1)
- Added nntpgrab-qt subpackage which contains a Qt frontend
- Disable gtk3 support for now
- Bundle the gtk-doc API documentation with the devel subpackage
--------------------------------------------------------------------------------
================================================================================
perl-Sys-Hostname-Long-1.4-5.el5 (FEDORA-EPEL-2011-3875)
Try every conceivable way to get full hostname
--------------------------------------------------------------------------------
Update Information:
New package. Perl module that tries every conceivable way to get full hostname.
--------------------------------------------------------------------------------
================================================================================
python-celery-2.2.7-3.el5 (FEDORA-EPEL-2011-3853)
Distributed Task Queue
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #722444 - Review Request: python-celery - Distributed Task Queue
https://bugzilla.redhat.com/show_bug.cgi?id=722444
--------------------------------------------------------------------------------
================================================================================
python-importlib-1.0.2-1.el5 (FEDORA-EPEL-2011-3845)
Backport of importlib.import_module() from Python 2.7
--------------------------------------------------------------------------------
Update Information:
Initial packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #722427 - Review Request: python-importlib - Backport of
importlib.import_module() from Python 2.7
https://bugzilla.redhat.com/show_bug.cgi?id=722427
--------------------------------------------------------------------------------
================================================================================
python-migrate0.5-0.5.4-1.el5 (FEDORA-EPEL-2011-3856)
Schema migration tools for SQLAlchemy
--------------------------------------------------------------------------------
Update Information:
Minor upstream bugfix
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 15 2011 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.5.4-1
- Update to new upstream bugfix release
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.3-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Thu Jan 13 2011 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.5.3-8
- Fix Requires on sqlalchemy0.5 -- no need for the compat version of
SQLAlchemy on epel.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #722665 - python-migrate0.5-0.5.4.tar.gz">sqlalchemy-migrate-0.5.4 is
available
https://bugzilla.redhat.com/show_bug.cgi?id=722665
--------------------------------------------------------------------------------
================================================================================
python-sqlalchemy0.5-0.5.8-8.el5 (FEDORA-EPEL-2011-3836)
Modular and flexible ORM library for python
--------------------------------------------------------------------------------
Update Information:
Update to upstream 0.5.8 bugfix release.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 16 2011 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.5.8-8
- Add a patch for building on rhel5
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.8-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Dec 7 2010 Martin Bacovsky <mbacovsk(a)redhat.com> - 0.5.8-6
- fixed another python2.7 issues in tests
* Fri Nov 26 2010 Martin Bacovsky <mbacovsk(a)redhat.com> - 0.5.8-5
- fixed install as egg
* Thu Nov 25 2010 Martin Bacovsky <mbacovsk(a)redhat.com> - 0.5.8-4
- rebuild as python-sqlalchemy0.5
- fixed python2.7 issues in tests
* Tue Feb 2 2010 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.5.8-3
- One last cleanup
* Tue Feb 2 2010 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.5.8-2
- just some cleanups to older styles of building packages.
* Mon Feb 1 2010 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.5.8-1
- Upstream bugfix release 0.5.8
--------------------------------------------------------------------------------
================================================================================
python26-boto-2.0-1.el5 (FEDORA-EPEL-2011-3869)
A simple lightweight interface to Amazon Web Services
--------------------------------------------------------------------------------
Update Information:
Update to the Boto 2.0 final release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 18 2011 Garrett Holmstrom <gholms(a)fedoraproject.org> - 2.0-1
- Updated to 2.0 final
- Added an explicit python dependency
--------------------------------------------------------------------------------
================================================================================
xml-security-c-1.5.1-2.el5 (FEDORA-EPEL-2011-3867)
C++ Implementation of W3C security standards for XML
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2011-2516: Apache Santuario XML Security for C++
contains buffer overflows signing or verifying with large keys.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 8 2011 Antti Andreimann <Antti.Andreimann(a)mail.ee> - 1.5.1-2
- Backported a patch to fix CVE-2011-2516 (#719698)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #719698 - CVE-2011-2516 xml-security-c: Stack-based buffer overflows when
creating or verifying XML Signatures with RSA keys of sizes >= 8192 bits
https://bugzilla.redhat.com/show_bug.cgi?id=719698
--------------------------------------------------------------------------------
================================================================================
xrootd-3.0.4-2.el5.1 (FEDORA-EPEL-2011-3866)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
This update is a rebuild for the new gridsite library.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 18 2011 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 1:3.0.4-2.1
- Rebuild for new gridsite (EPEL 5 only)
--------------------------------------------------------------------------------