The following Fedora EPEL 7 Security updates need testing:
Age URL
916
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
678
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
260
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
158
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe
mod_cluster-1.3.3-10.el7
156
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4
tnef-1.4.14-1.el7
155
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378
python-XStatic-jquery-ui-1.12.0.1-1.el7
58
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-47be021843
heimdal-7.4.0-1.el7
22
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-17b77b3268
botan-1.10.16-1.el7
20
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a8c25bd6d7
exim-4.89-2.el7
17
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-fc1436acf8
dnsdist-1.2.0-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-40114bdc74
mbedtls-2.6.0-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8f80d01c29
chromium-60.0.3112.113-2.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9c2a089ab4
libidn2-2.0.4-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f159ad2ec9
mingw-libidn2-2.0.4-1.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-29c9f4e49e
freexl-1.0.0i-1.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-dadbc43983
mimedefang-2.81-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-2e4b6b7b5c
lightdm-1.18.3-5.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-59c79d3a8a
google-api-python-client-1.6.3-1.el7 python-httplib2-0.9.2-0.1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
avogadro2-1.90.0-6.el7
google-api-python-client-1.6.3-1.el7
nodejs-6.11.3-1.el7
open62541-0.2-1.el7
php-akamai-open-edgegrid-auth-1.0.1-1.el7
php-codeception-specify-0.4.6-2.el7
php-masterminds-html5-2.3.0-1.el7
php-robrichards-xmlseclibs3-3.0.1-1.el7
python-httplib2-0.9.2-0.1.el7
Details about builds:
================================================================================
avogadro2-1.90.0-6.el7 (FEDORA-EPEL-2017-ede5a36123)
Advanced molecular editor
--------------------------------------------------------------------------------
Update Information:
- Require openbabel
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1489749 - Avogadro2 does not show the drawn molecule.
https://bugzilla.redhat.com/show_bug.cgi?id=1489749
--------------------------------------------------------------------------------
================================================================================
google-api-python-client-1.6.3-1.el7 (FEDORA-EPEL-2017-59c79d3a8a)
Google APIs Client Library for Python
--------------------------------------------------------------------------------
Update Information:
Update for new version of python-httplib2 in RHEL7 Extras. Remove google-api-
python-client patch that allowed 0.9.1 python-httplib2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #958642 - CVE-2013-2037 Python httplib2: ssl cert incorrect error handling
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=958642
[ 2 ] Bug #1486503 - google-api-python-client-1.6.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1486503
--------------------------------------------------------------------------------
================================================================================
nodejs-6.11.3-1.el7 (FEDORA-EPEL-2017-1788cd6310)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
# ! There are known issues on CentOS ! This bugfix version of Node.js requires
OpenSSL 1.0.2 and http-parser from the RHEL 7.4 repositories. Unfortunately, the
official CentOS 7.4 builds of RHEL 7.4 are not available at the time of this
writing, but hopefully will be once this goes to stable. In the meantime, those
builds are available via the [CentOS Continuous Release
Repository](https://wiki.centos.org/AdditionalResources/Repositories/CR).
Please do not give negative karma on this if your issue is with CentOS missing
http-parser or OpenSSL 1.0.2. See
https://github.com/nodejs/node/blob/v6.11.3/doc/changelogs/CHANGELOG_V6.md for
details on the minor updates.
--------------------------------------------------------------------------------
================================================================================
open62541-0.2-1.el7 (FEDORA-EPEL-2017-8abf261781)
OPC UA implementation
--------------------------------------------------------------------------------
Update Information:
Initial version of the package
--------------------------------------------------------------------------------
================================================================================
php-akamai-open-edgegrid-auth-1.0.1-1.el7 (FEDORA-EPEL-2017-32487f2cbb)
Implements the Akamai {OPEN} EdgeGrid Authentication
--------------------------------------------------------------------------------
Update Information:
## 1.0.1 [01 Sep, 2017] * Fixed an issue with handling trailing whitespace in
credentials (see: #3)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1487623 - php-akamai-open-edgegrid-auth-1.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1487623
--------------------------------------------------------------------------------
================================================================================
php-codeception-specify-0.4.6-2.el7 (FEDORA-EPEL-2017-47fc6fad80)
BDD code blocks for PHPUnit and Codeception
--------------------------------------------------------------------------------
Update Information:
BDD style code blocks for PHPUnit / Codeception Specify allows you to write
your tests in more readable BDD style, the same way you might have experienced
with Jasmine. Inspired by MiniTest of Ruby now you combine BDD and classical TDD
style in one test. Autoloader:
`/usr/share/php/Codeception/Specify/autoload.php`
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1483373 - Review Request: php-codeception-specify - BDD code blocks for
PHPUnit and Codeception
https://bugzilla.redhat.com/show_bug.cgi?id=1483373
--------------------------------------------------------------------------------
================================================================================
php-masterminds-html5-2.3.0-1.el7 (FEDORA-EPEL-2017-c615959238)
An HTML5 parser and serializer
--------------------------------------------------------------------------------
Update Information:
## 2.3.0 * \#129: image within inline svg breaks system (fixed by #133) *
\#131: �� does not work (fixed by #132) * \#134: Improve tokenizer performance by
20% (alternative version of #130 thanks to @MichaelHeerklotz) * \#135: Raw & in
attributes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1488271 - php-masterminds-html5-2.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1488271
--------------------------------------------------------------------------------
================================================================================
php-robrichards-xmlseclibs3-3.0.1-1.el7 (FEDORA-EPEL-2017-35358e1996)
A PHP library for XML Security (version 3)
--------------------------------------------------------------------------------
Update Information:
** Version 3** xmlseclibs is a library written in PHP for working with XML
Encryption and Signatures. Autoloader:
`/usr/share/php/RobRichards/XMLSecLibs3/autoload.php`
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1487196 - php-robrichards-xmlseclibs3-3.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1487196
--------------------------------------------------------------------------------
================================================================================
python-httplib2-0.9.2-0.1.el7 (FEDORA-EPEL-2017-59c79d3a8a)
A comprehensive HTTP client library
--------------------------------------------------------------------------------
Update Information:
Update for new version of python-httplib2 in RHEL7 Extras. Remove google-api-
python-client patch that allowed 0.9.1 python-httplib2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #958642 - CVE-2013-2037 Python httplib2: ssl cert incorrect error handling
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=958642
[ 2 ] Bug #1486503 - google-api-python-client-1.6.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1486503
--------------------------------------------------------------------------------