The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0423/fail2ban-0.8.4-28.el6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0728/libpng10-1.0.58-1.el6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0349/bugzilla-3.4.14-1.el6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
emacs-color-theme-6.6.0-5.el6
gccxml-0.9.0-0.10.20120309.el6
libpng10-1.0.58-1.el6
muParser-2.2.2-1.el6
php-pecl-gmagick-1.1.0-0.2.RC2.el6
racoon2-20100526a-17.el6
Details about builds:
================================================================================
emacs-color-theme-6.6.0-5.el6 (FEDORA-EPEL-2012-0731)
Color themes for Emacs
--------------------------------------------------------------------------------
Update Information:
emacs-color-theme doesn't need emacs-X11
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 21 2012 Arun SAG <saga...@gmail.com> - 6.6.0-5
- Fix Bug rhbz#783003: emacs-color-theme requires emacs-x11 won't settle for
emacs-nox
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #783003 - emacs-color-them requires emacs, won't settle for
emacs-nox
https://bugzilla.redhat.com/show_bug.cgi?id=783003
--------------------------------------------------------------------------------
================================================================================
gccxml-0.9.0-0.10.20120309.el6 (FEDORA-EPEL-2012-0730)
XML output extension to GCC
--------------------------------------------------------------------------------
Update Information:
Update to new cvs snapshot. Adds support files fro gcc 4.7.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 10 2012 Mattias Ellert <mattias.ell...@fysast.uu.se> -
0.9.0-0.10.20120309
- Updated cvs snapshot
- Now contains support files for gcc 4.7
* Tue Feb 28 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.9.0-0.9.20111218
- Rebuilt for c++ ABI breakage
* Fri Jan 13 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.9.0-0.8.20111218
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
libpng10-1.0.58-1.el6 (FEDORA-EPEL-2012-0728)
Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:
A type conversion flaw leading to an out-of-bounds heap buffer read was found
in the way libpng10, a library of functions for manipulation PNG image format
files, performed expansion of certain iCCP, iTXt, and zTXt PNG image file
chunks.
A remote attacker could provide a specially-crafted Portable Network Graphics
(PNG) image file, which once opened in an application, linked against libpng10,
could lead to denial of service or in some cases, execution of arbitrary code
without permission of the user running such an application.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 9 2012 Paul Howarth <p...@city-fan.org> 1.0.58-1
- update to 1.0.58
- fix bug with png_handle_hIST with odd chunk length
- fix incorrect type (int copy should be png_size_t copy) in png_inflate()
(CVE-2011-3045)
- fix off-by-one bug in png_handle_sCAL() when using fixed point arithmetic,
causing out-of-bounds read in png_set_sCAL() because of failure to copy
the string terminators
- remove the png_free() of unused png_ptr->current_text from pngread.c
- remove all of the assembler code from pnggccrd.c and just "return 2;"
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799000 - CVE-2011-3045 libpng: buffer overflow in png_inflate
caused by invalid type conversions
https://bugzilla.redhat.com/show_bug.cgi?id=799000
--------------------------------------------------------------------------------
================================================================================
muParser-2.2.2-1.el6 (FEDORA-EPEL-2012-0729)
A fast math parser library
--------------------------------------------------------------------------------
Update Information:
Updated muParser to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 9 2012 Eric Smith <e...@brouhaha.com> - 2.2.2-1
- Update to 2.2.2
- Upstream source distribution is now a .zip file
- Upstream version number policy is now that the release version matches
the .so versioning
- Clean up spec to modern standards (no clean section or BuildRoot tag, etc.)
--------------------------------------------------------------------------------
================================================================================
php-pecl-gmagick-1.1.0-0.2.RC2.el6 (FEDORA-EPEL-2012-0734)
Provides a wrapper to the GraphicsMagick library
--------------------------------------------------------------------------------
Update Information:
Update to 1.1.0RC2 by request bz#751376
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 10 2012 Pavel Alexeev <pa...@hubbitus.info> - 1.1.0-0.2.RC2
- Skip %check on epel5.
* Sat Mar 10 2012 Pavel Alexeev <pa...@hubbitus.info> - 1.1.0-0.1.RC2
- Update to 1.1.0RC2 by request bz#751376
* Thu Jan 19 2012 Remi Collet <r...@fedoraproject.org> - 1.0.10-0.1.b1
- update to 1.0.10b1 for php 5.4
- add filter to avoid private-shared-object-provides
* Sat Jan 14 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 1.0.7b1-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Sep 12 2011 Pavel Alexeev <pa...@hubbitus.info> - 1.0.7b1-9
- Fix FBFS f16-17. Bz#716217
* Wed Feb 9 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 1.0.7b1-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Aug 10 2010 Pavel Alexeev <pa...@hubbitus.info> - 1.0.7b1-7
- Update to 1.0.7b1 version due to previous mentioned bug.
* Tue Aug 10 2010 Pavel Alexeev <pa...@hubbitus.info> - 1.0.5b1-6
- Add simple %check section by suggestion from Remi Collet
(http://pecl.php.net/bugs/17991).
* Mon Jul 26 2010 Pavel Alexeev <pa...@hubbitus.info> - 1.0.5b1-5
- Update to 1.0.5b1
- Add Conflicts: php-pecl-imagick - BZ#559675
* Sun Jan 31 2010 Pavel Alexeev <pa...@hubbitus.info> - 1.0.3b3-4
- Update to 1.0.3b3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #751376 - magick/semaphore.c:525: LockSemaphoreInfo: Assertion
`semaphore_info != (SemaphoreInfo *)
https://bugzilla.redhat.com/show_bug.cgi?id=751376
--------------------------------------------------------------------------------
================================================================================
racoon2-20100526a-17.el6 (FEDORA-EPEL-2012-0735)
An implementation of key management system for IPsec
--------------------------------------------------------------------------------
Update Information:
Fix conflict with ike package.
An implementation of IKEv1 and IKEv2 for IPsec
Racoon2 now uses only one initscript.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #797810 - racoon2 : Conflicts with ike
https://bugzilla.redhat.com/show_bug.cgi?id=797810
[ 2 ] Bug #752223 - Review Request: racoon2 - an implementation of key
management system for IPsec
https://bugzilla.redhat.com/show_bug.cgi?id=752223
--------------------------------------------------------------------------------
_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
