The following Fedora EPEL 6 Security updates need testing: Age URL 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-244e8468f8 t1utils-1.41-1.el6 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-b3dc1811a1 rssh-2.3.4-15.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
golang-1.13.3-1.el6 php-horde-Horde-Core-2.31.11-1.el6 php-horde-Horde-Util-2.5.9-1.el6 proftpd-1.3.3g-12.el6 putty-0.73-1.el6 python-productmd-1.23-1.el6
Details about builds:
================================================================================ golang-1.13.3-1.el6 (FEDORA-EPEL-2019-755c983846) The Go Programming Language -------------------------------------------------------------------------------- Update Information:
* Rebase to 1.13.3 * Security fix for CVE-2019-17596 -------------------------------------------------------------------------------- ChangeLog:
* Wed Oct 30 2019 Jakub ��ajka jcajka@redhat.com - 1.13.3-1 - Rebase to go1.13.3 - Fix for CVE-2019-17596 - Resolves: BZ#1763311 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1763310 - CVE-2019-17596 golang: invalid public key causes panic in dsa.Verify https://bugzilla.redhat.com/show_bug.cgi?id=1763310 --------------------------------------------------------------------------------
================================================================================ php-horde-Horde-Core-2.31.11-1.el6 (FEDORA-EPEL-2019-0f5f42db23) Horde Core Framework libraries -------------------------------------------------------------------------------- Update Information:
**Horde_Core 2.31.11** * [mjr] Fix UTF-8 encoding of ActiveSync SmartReply requests (Bug #14957). -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 4 2019 Remi Collet remi@remirepo.net - 2.31.11-1 - update to 2.31.11 --------------------------------------------------------------------------------
================================================================================ php-horde-Horde-Util-2.5.9-1.el6 (FEDORA-EPEL-2019-e726736d47) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information:
**Horde_Util 2.5.9** * [mjr] PHP 7.4 compatibility fixes (Remi Collet , PR #2). * [jan] Fix wrapping if the wrapping break adds indention. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 4 2019 Remi Collet remi@remirepo.net - 2.5.9-1 - update to 2.5.9 --------------------------------------------------------------------------------
================================================================================ proftpd-1.3.3g-12.el6 (FEDORA-EPEL-2019-c4ac108f8d) Flexible, stable and highly-configurable FTP server -------------------------------------------------------------------------------- Update Information:
This update includes a back-ported fix from upstream to support rebuilding the package to work with MySQL version 8. Note that this updated build is not linked with MySQL 8 itself but will work with the existing MySQL version in the base operating system, i.e. will not work out of the box with MySQL 8. -------------------------------------------------------------------------------- ChangeLog:
* Wed Oct 23 2019 Paul Howarth paul@city-fan.org - 1.3.3g-12 - Fix build compatibility with MySQL 8 (#1764401) https://github.com/proftpd/proftpd/issues/824 https://github.com/proftpd/proftpd/pull/825 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1764401 - Please build an EPEL7 build of proftpd version 1.3.6b https://bugzilla.redhat.com/show_bug.cgi?id=1764401 --------------------------------------------------------------------------------
================================================================================ putty-0.73-1.el6 (FEDORA-EPEL-2019-cd52ee3c1e) SSH, Telnet and Rlogin client -------------------------------------------------------------------------------- Update Information:
This is new version fixing multiple vulnerabilities. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 4 2019 Jaroslav ��karvada jskarvad@redhat.com - 0.73-1 - New version Resolves: rhbz#1767986 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1767984 - putty: multiple vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=1767984 --------------------------------------------------------------------------------
================================================================================ python-productmd-1.23-1.el6 (FEDORA-EPEL-2019-1b18651034) Library providing parsers for metadata related to OS installation -------------------------------------------------------------------------------- Update Information:
New upstream version with support for metadata about extra files. -------------------------------------------------------------------------------- ChangeLog:
* Fri Nov 1 2019 Lubom��r Sedl���� lsedlar@redhat.com - 1.23-1 - Add class for representing extra files in the compose (lsedlar@redhat.com) - Add tests for multiple variants in one .treeinfo (riehecky@fnal.gov) --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org