The following Fedora EPEL 6 Security updates need testing:
Age URL
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-afbb452d62
proftpd-1.3.3g-13.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-3c9eacae67
python-rfc3986-1.3.0-1.el6 python3-requests-2.14.2-2.el6_10
python3-urllib3-1.25.1-1.el6_10
The following builds have been pushed to Fedora EPEL 6 updates-testing
gfal2-2.17.1-1.el6_10
wordpress-5.1.4-1.el6_10
Details about builds:
================================================================================
gfal2-2.17.1-1.el6_10 (FEDORA-EPEL-2019-86399ca68e)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Upgraded to upstream release 2.17.1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 13 2019 Georgios Bitzes <georgios.bitzes at cern.ch> - 2.17.1-1
- Upgraded to upstream release 2.17.1
--------------------------------------------------------------------------------
================================================================================
wordpress-5.1.4-1.el6_10 (FEDORA-EPEL-2019-bdf81699f7)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
**Version 5.1.4** **Four security issues** affect WordPress versions 5.1.3 and
earlier; version 5.1.4 fixes them, so you���ll want to upgrade. * Props to
Daniel Bachhuber for finding an issue where an unprivileged user could make a
post sticky via the REST API. * Props to Simon Scannell of RIPS Technologies
for finding and disclosing an issue where cross-site scripting (XSS) could be
stored in well-crafted links. * Props to the
WordPress.org Security Team for
hardening wp_kses_bad_protocol() to ensure that it is aware of the named colon
attribute. * Props to Nguyen The Duc for discovering a stored XSS
vulnerability using block editor content.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 13 2019 Remi Collet <remi(a)remirepo.net> - 5.1.4-1
- WordPress 5.1.4 Security Release
--------------------------------------------------------------------------------