The following Fedora EPEL 7 Security updates need testing:
Age URL
711
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
474
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
192
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c
redis-3.2.3-1.el7
176
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3
chicken-4.11.0-3.el7
56
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f3297a19b
nagios-4.2.4-2.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e2cea1c22d
python-cjson-1.1.0-9.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-920059d2ed
mingw-wavpack-5.1.0-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d1c56cd592
xrdp-0.9.1-3.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d5fe44714a
cacti-1.0.3-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8e1a030633
suricata-3.2.1-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
cacti-1.0.3-1.el7
irc-otr-1.0.2-2.el7
mate-power-manager-1.16.2-1.el7
nagios-plugins-2.1.4-7.el7
proftpd-1.3.5d-2.el7
python-openqa_client-1.3.0-1.el7
shigofumi-0.8-1.el7
suricata-3.2.1-1.el7
xrootd-4.6.0-4.el7
youtube-dl-2017.02.16-1.el7
Details about builds:
================================================================================
cacti-1.0.3-1.el7 (FEDORA-EPEL-2017-d5fe44714a)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.0.3 Release notes:
http://www.cacti.net/release_notes_1_0_0.php
http://www.cacti.net/release_notes_1_0_1.php
http://www.cacti.net/release_notes_1_0_2.php
http://www.cacti.net/release_notes_1_0_3.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1400364 - Graph export tree view is broken
https://bugzilla.redhat.com/show_bug.cgi?id=1400364
[ 2 ] Bug #1417494 - cacti-1.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1417494
[ 3 ] Bug #1417605 - CVE-2014-4000 cacti: Multiple issues fixed in 1.0.0 version
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1417605
[ 4 ] Bug #1422854 - cacti-1.0.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1422854
--------------------------------------------------------------------------------
================================================================================
irc-otr-1.0.2-2.el7 (FEDORA-EPEL-2017-aa2ce809c2)
Off-The-Record Messaging plugin for irssi
--------------------------------------------------------------------------------
Update Information:
Initial EL7 release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1419328 - Please build an EL7 release
https://bugzilla.redhat.com/show_bug.cgi?id=1419328
--------------------------------------------------------------------------------
================================================================================
mate-power-manager-1.16.2-1.el7 (FEDORA-EPEL-2017-cd0b18e402)
MATE power management service
--------------------------------------------------------------------------------
Update Information:
- update to 1.16.2 ---- - update to 1.16.1 release
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-2.1.4-7.el7 (FEDORA-EPEL-2017-d35ac726be)
Host/service/network monitoring program plugins for Nagios
--------------------------------------------------------------------------------
Update Information:
Got feedback on bz 1422993. Put in fix from github ---- Start collecting and
fixing bugzilla reports. This one fixes ipv6 for check_snmp ---- Grab other
fixes from git maintenance branch to fix other check_ problems ---- Put in
patch to fix check_file_age
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1422993 - check_snmp missing support for IPv6
https://bugzilla.redhat.com/show_bug.cgi?id=1422993
[ 2 ] Bug #1159891 - When trying to install nagios-plugins-all (with OSP5 enabled) it
fails due to dependency issue
https://bugzilla.redhat.com/show_bug.cgi?id=1159891
[ 3 ] Bug #1298766 - check_dhcp segfaults while parsing arguments
https://bugzilla.redhat.com/show_bug.cgi?id=1298766
[ 4 ] Bug #1409932 - nagios-plugins-dns-2.1.4-2.el7.x86_64 broke reverse lookup (PTR)
checks
https://bugzilla.redhat.com/show_bug.cgi?id=1409932
[ 5 ] Bug #1410324 - nagios-plugins 2.1.4: check_dns lost MX priority on output
https://bugzilla.redhat.com/show_bug.cgi?id=1410324
[ 6 ] Bug #1417259 - nagios-plugins-2.1.4-stable check_snmp rate calculation expects
strange path
https://bugzilla.redhat.com/show_bug.cgi?id=1417259
[ 7 ] Bug #1410039 - check_file_age is broken in recent update
https://bugzilla.redhat.com/show_bug.cgi?id=1410039
--------------------------------------------------------------------------------
================================================================================
proftpd-1.3.5d-2.el7 (FEDORA-EPEL-2017-68cac04c59)
Flexible, stable and highly-configurable FTP server
--------------------------------------------------------------------------------
Update Information:
This update is an attempt to fix segfaults when using mod_sftp. *
http://bugs.proftpd.org/show_bug.cgi?id=4287 *
https://github.com/proftpd/proftpd/issues/408
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1420365 - ProFTPD 1.3.5d on CentOS7 segfault soon after sftp connection
https://bugzilla.redhat.com/show_bug.cgi?id=1420365
--------------------------------------------------------------------------------
================================================================================
python-openqa_client-1.3.0-1.el7 (FEDORA-EPEL-2017-a53219e6d6)
Python client library for openQA API
--------------------------------------------------------------------------------
Update Information:
This update introduces a new package containing the [Python client
library](https://github.com/os-autoinst/openQA-python-client) for the
[openQA](http://open.qa) web API. It handles authentication for administrative
requests, and provides a couple of convenience functions for job queries. This
library is already used for scheduling jobs, forwarding results to
[
Wikitcms](https://fedoraproject.org/wiki/Wikitcms) and
[
ResultsDB](https://fedoraproject.org/wiki/ResultsDB) and generating the
'compose check report' emails and [nightly compose finder
page](https://www.happyassassin.net/nightlies.html), but had not formerly been
packaged.
--------------------------------------------------------------------------------
================================================================================
shigofumi-0.8-1.el7 (FEDORA-EPEL-2017-8f1058b17f)
Command line client for accessing the Czech Data Boxes
--------------------------------------------------------------------------------
Update Information:
This release fixes a check for an empty password when changing the password. It
fixes build script. It updates documentation and it enables support for storing
and retrieving file types from file extended attributes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1423056 - shigofumi-0.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1423056
--------------------------------------------------------------------------------
================================================================================
suricata-3.2.1-1.el7 (FEDORA-EPEL-2017-8e1a030633)
Intrusion Detection System
--------------------------------------------------------------------------------
Update Information:
This is a new upstream feature and security release. Improvements include:
bypass; pre-filter -- fast packet keywords; TLS improvements; ICS protocol
additions: DNP3 CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction;
NIC offloading disabled by default; unix socket enabled by default; and App
Layer stats. Documentation:
http://suricata.readthedocs.io/en/suricata-3.2/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1396150 - Fix ownership of /run/suricata
https://bugzilla.redhat.com/show_bug.cgi?id=1396150
[ 2 ] Bug #1396151 - Rotate /var/log/suricata/eve.json
https://bugzilla.redhat.com/show_bug.cgi?id=1396151
--------------------------------------------------------------------------------
================================================================================
xrootd-4.6.0-4.el7 (FEDORA-EPEL-2017-9b2cd39ee3)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
New version 4.6.0, release notes are here:
https://github.com/xrootd/xrootd/blob/v4.6.0/docs/ReleaseNotes.txt
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2017.02.16-1.el7 (FEDORA-EPEL-2017-9aec471979)
A small command-line program to download online videos
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1420965 - youtube-dl cannot find pycrypto, even though it is installed
https://bugzilla.redhat.com/show_bug.cgi?id=1420965
[ 2 ] Bug #1418496 - youtube-dl-2017.02.16 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1418496
--------------------------------------------------------------------------------