The following Fedora EPEL 6 Security updates need testing:
Age URL
659
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
653
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
543
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
514
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
245
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53
chicken-4.11.0-3.el6
125
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac
libbsd-0.8.3-2.el6
75
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-acd2c2af0d
nagios-4.2.4-4.el6
21
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f
tnef-1.4.14-1.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7c22614b28
collectd-4.10.9-4.el6
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-58105a4f7f
pcre2-10.21-18.el6
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a8c6a87d20
ansible-2.3.0.0-3.el6
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-fc964c5731
roundcubemail-1.0.9-3.el6
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b56d84e139
mod_security-2.7.3-5.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4efdb40c89
squirrelmail-1.4.22-5.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
getmail-4.54.0-1.el6
nrpe-3.1.0-2.el6
nsd-4.1.16-1.el6
squirrelmail-1.4.22-5.el6
tcpreplay-4.2.4-1.el6
Details about builds:
================================================================================
getmail-4.54.0-1.el6 (FEDORA-EPEL-2017-b8b11fe5e4)
POP3, IMAP4 and SDPS mail retriever with Maildir delivery
--------------------------------------------------------------------------------
Update Information:
update to 4.54.0
--------------------------------------------------------------------------------
================================================================================
nrpe-3.1.0-2.el6 (FEDORA-EPEL-2017-d67b84547b)
Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:
Move to using original nirik nrpe service file for systemd. It worked and the
others dont ---- update to 3.1.0 ---- Fixed pid location ---- Update to
3.0.1. Major update but upstream is no longer supporting old code.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1190708 - nrpe.service does not support reload for systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1190708
[ 2 ] Bug #1275870 - NRPE initscript does not read PID file when calling
status/killproc
https://bugzilla.redhat.com/show_bug.cgi?id=1275870
[ 3 ] Bug #1411705 - allowed_hosts doesn't work, if one of the hostnames can't
be resolved by dns
https://bugzilla.redhat.com/show_bug.cgi?id=1411705
--------------------------------------------------------------------------------
================================================================================
nsd-4.1.16-1.el6 (FEDORA-EPEL-2017-5eefcdeee7)
Fast and lean authoritative DNS Name Server
--------------------------------------------------------------------------------
Update Information:
Updated to 4.1.16 (minimum response option)
--------------------------------------------------------------------------------
================================================================================
squirrelmail-1.4.22-5.el6 (FEDORA-EPEL-2017-4efdb40c89)
webmail client written in php
--------------------------------------------------------------------------------
Update Information:
fix insufficient escaping of user-supplied data (CVE-2017-7692)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1445165 - CVE-2017-7692 squirrelmail: Insufficient escaping of user-supplied
data
https://bugzilla.redhat.com/show_bug.cgi?id=1445165
--------------------------------------------------------------------------------
================================================================================
tcpreplay-4.2.4-1.el6 (FEDORA-EPEL-2017-054e46de02)
Replay captured network traffic
--------------------------------------------------------------------------------
Update Information:
Bug fixes. 4.2.4: - Fix spelling mistakes discovered by Lintian (#362) 4.2.3:
- Archive (remove) QuickTX until maintainer found (#357) - Ubuntu precise
32bit_build (#356) 4.2.2: - Missing symbol pcap_version on macOS 10.12.4
(#353)
--------------------------------------------------------------------------------