The following Fedora EPEL 7 Security updates need testing:
Age URL
715
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
455
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bc0182548b
bubblewrap-0.3.3-2.el7
164
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fa8a2e97c6
python-waitress-1.4.3-1.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-192ef0b5e1
hostapd-2.9-3.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-3d8bba637d
clamav-0.102.4-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-2c80eb66b5
libASL-0.1.7-6.el7 matio-1.5.17-3.el7 openmeeg-2.4-0.4.rc4.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-489c36a241
snmptt-1.4.2-1.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-90cbb3a9ff
golang-1.13.14-1.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-452d014b82
java-latest-openjdk-14.0.2.12-1.rolling.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-c9e7aa6a08
chromium-84.0.4147.89-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
bullet-2.82-3.el7
cekit-3.7.0-1.el7
ceres-solver-1.12.0-5.el7
dmlite-1.14.0-3.el7
fail2ban-0.11.1-9.el7.2
python-colcon-cmake-0.2.24-1.el7
python34-3.4.10-6.el7
Details about builds:
================================================================================
bullet-2.82-3.el7 (FEDORA-EPEL-2020-8af9097046)
3D Collision Detection and Rigid Body Dynamics Library
--------------------------------------------------------------------------------
Update Information:
Apply upstream patch for compiler warnings (rhbz#1856910)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 29 2020 Rich Mattes <richmattes(a)gmail.com> - 2.82-3
- Apply upstream patch for compiler warnings (rhbz#1856910)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1856910 - Please update bullet in EPEL 7
https://bugzilla.redhat.com/show_bug.cgi?id=1856910
--------------------------------------------------------------------------------
================================================================================
cekit-3.7.0-1.el7 (FEDORA-EPEL-2020-1e7ebbaa0e)
Container image creation tool
--------------------------------------------------------------------------------
Update Information:
Release 3.7.0
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 29 2020 Marek Goldmann <mgoldman(a)redhat.com> - 3.7.0-1
- Release 3.7.0
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.6.0-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 3.6.0-3
- Rebuilt for Python 3.9
* Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.6.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
ceres-solver-1.12.0-5.el7 (FEDORA-EPEL-2020-8acc2111eb)
A non-linear least squares minimizer
--------------------------------------------------------------------------------
Update Information:
Rebuild for eigen3-3.3.7
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 29 2020 Rich Mattes <richmattes(a)gmail.com> - 1.12.0-5
- Rebuild for eigen3-3.3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1861564 - Please rebuild ceres-solver for Eigen3
https://bugzilla.redhat.com/show_bug.cgi?id=1861564
--------------------------------------------------------------------------------
================================================================================
dmlite-1.14.0-3.el7 (FEDORA-EPEL-2020-3d7350a059)
Lcgdm grid data management and storage framework
--------------------------------------------------------------------------------
Update Information:
dmlite 1.14.0
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 28 2020 Oliver Keeble <oliver.keeble(a)cern.ch> - 1.14.0-3
- New upstream release 1.14.0
--------------------------------------------------------------------------------
================================================================================
fail2ban-0.11.1-9.el7.2 (FEDORA-EPEL-2020-ed5493877c)
Daemon to ban hosts that cause multiple authentication errors
--------------------------------------------------------------------------------
Update Information:
Update EPEL 7 to the latest release, 0.11.1.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 28 2020 Richard Shaw <hobbes1069(a)gmail.com> - 0.11.1-9.2
- Fix python2 requires for EPEL 7.
* Mon Jul 27 2020 Richard Shaw <hobbes1069(a)gmail.com> - 0.11.1-9
- Add conditonals back for EL 7 as it's being brought up to date.
- Add patch to deal with nftables not accepting ":" as a port separator.
* Mon Jul 27 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.11.1-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 0.11.1-7
- Rebuilt for Python 3.9
* Thu Apr 16 2020 Richard Shaw <hobbes1069(a)gmail.com> - 0.11.1-6
- Change default firewalld backend from ipset to rich-rules as ipset causes
firewalld to use legacy iptables. Fixes RHBZ#1823746.
- Remove conditionals for EL versions less than 7.
* Thu Mar 19 2020 Richard Shaw <hobbes1069(a)gmail.com> - 0.11.1-5
- Update for Python 3.9.
* Wed Feb 26 2020 Orion Poplawski <orion(a)nwra.com> - 0.11.1-4
- Add SELinux policy
* Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.11.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1850816 - Manual entries are not persistant
https://bugzilla.redhat.com/show_bug.cgi?id=1850816
--------------------------------------------------------------------------------
================================================================================
python-colcon-cmake-0.2.24-1.el7 (FEDORA-EPEL-2020-3a34135212)
Extension for colcon to support CMake packages
--------------------------------------------------------------------------------
Update Information:
Update to the latest `colcon-cmake` release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 29 2020 Scott K Logan <logans(a)cottsay.net> - 0.2.24-1
- Update to 0.2.24 (rhbz#1860172)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1860172 - python-colcon-cmake-0.2.24 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1860172
--------------------------------------------------------------------------------
================================================================================
python34-3.4.10-6.el7 (FEDORA-EPEL-2020-2a93add193)
Version 3 of the Python programming language aka Python 3000
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2020-14422 and CVE-2019-20907 - CVE-2020-14422: DoS via inefficiency in
IPv{4,6}Interface classes - CVE-2019-20907: infinite loop in the tarfile module
via crafted TAR archive
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 29 2020 Petr Viktorin <pviktori(a)redhat.com> - 3.4.10-6
- Fix CVE-2020-14422 and CVE-2019-20907
Resolves: rhbz#1854926
Resolves: rhbz#1856481
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1854930 - CVE-2020-14422 python34: python: DoS via inefficiency in
IPv{4,6}Interface classes [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1854930
[ 2 ] Bug #1856483 - CVE-2019-20907 python34: python: infinite loop in the tarfile
module via crafted TAR archive [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1856483
--------------------------------------------------------------------------------