The following Fedora EPEL 5 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6477/dropbear-0.55-1.el5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6530/nsd-3.2.13-1.el5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6441/puppet-2.6.17-2.el5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6554/perl-RT-Authen-ExternalAuth-0.08-2.el5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6514/moodle-1.9.19-1.el5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6519/bacula-2.4.4-7.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
drupal6-date-2.8-1.el5.1
dsniff-2.4-0.14.b1.el5
is-interface-1.13.0-0.el5
libyuv-0-0.12.20120727svn312.el5
perl-RT-Authen-ExternalAuth-0.08-2.el5
phpMyAdmin3-3.5.2-1.el5
salt-0.10.2-1.el5
srm-ifce-1.13.0-0.el5
Details about builds:
================================================================================
drupal6-date-2.8-1.el5.1 (FEDORA-EPEL-2012-6555)
This package contains both the Date module and a Date API module
--------------------------------------------------------------------------------
Update Information:
Fix for php deps.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2012 Jon Ciesla <limburg...@gmail.com> - 2.8-1.1
- Needs php > 5.2, so using php53.
--------------------------------------------------------------------------------
================================================================================
dsniff-2.4-0.14.b1.el5 (FEDORA-EPEL-2012-6565)
Tools for network auditing and penetration testing
--------------------------------------------------------------------------------
Update Information:
- Added a patch which adds further link layer offsets
- Avoid opportunity for DoS in tabular data stream protocol handler
- Added a memset in msgsnarf to correctly 0 out the C struct
- Patched urlsnarf to use timestamps from pcap file if available
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2012 Robert Scheck <rob...@fedoraproject.org> 2.4-0.14.b1
- Added a patch which adds further link layer offsets
- Avoid opportunity for DoS in tabular data stream protocol handler
- Added a memset in msgsnarf to correctly 0 out the C struct
- Patched urlsnarf to use timestamps from pcap file if available
* Wed Jul 18 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2.4-0.13.b1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Fri Mar 30 2012 Jon Ciesla <limburg...@gmail.com> - 2.4-0.12.b1
- libnet rebuild
* Fri Jan 13 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2.4-0.11.b1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Feb 8 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2.4-0.10.b1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
is-interface-1.13.0-0.el5 (FEDORA-EPEL-2012-6566)
Information service library for the lcg bdii system
--------------------------------------------------------------------------------
Update Information:
update 1.13.0, synchronised with EMI 2 Update
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 20 2012 Adrien Devresse <adevress at cern.ch> - 1.13.0-0
- crash fix related to get_details
- wildcard support in INFOSYS
- minor bug fix
- synchronisation with EMI 2 update
--------------------------------------------------------------------------------
================================================================================
libyuv-0-0.12.20120727svn312.el5 (FEDORA-EPEL-2012-6556)
YUV conversion and scaling functionality library
--------------------------------------------------------------------------------
Update Information:
* SVN snapshot 312
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2012 Peter Lemenkov <lemen...@gmail.com> - 0-0.12.20120727svn312
- Next svn snapshot - ver. 312
* Thu Jul 19 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0-0.11.20120627svn296
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu Jul 5 2012 Peter Lemenkov <lemen...@gmail.com> - 0-0.10.20120627svn296
- Next svn snapshot - ver. 296
- Dropped patch3 (header conflict) - fixed upstream
* Thu Jun 14 2012 Tom Callaway <s...@fedoraproject.org> - 0-0.9.20120518svn268
- resolve header conflict with duplicate definition in scale*.h
--------------------------------------------------------------------------------
================================================================================
perl-RT-Authen-ExternalAuth-0.08-2.el5 (FEDORA-EPEL-2012-6554)
RT Authentication using External Sources
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2012-2770
RT::Authen::ExternalAuth: RSS feed URL session hijacking
perl-RT-Authen-ExternalAuth for RequestTracker 3.6, as available in EL5.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #844454 - CVE-2012-2770 RT::Authen::ExternalAuth: RSS feed URL
session hijacking
https://bugzilla.redhat.com/show_bug.cgi?id=844454
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin3-3.5.2-1.el5 (FEDORA-EPEL-2012-6568)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
Changes for 3.5.2.0 (2012-07-07):
- [interface] JS error when editing index
- [core] Call to undefined function __()
- [edit] NOW() function incorrectly selected
- [GUI] Invalid HTML code on transformation_overview.php
- [browse] Missing validation in Ajax mode
- [other] Fix popup message on build SQL of import
- [core] Make X-WebKit-CSP work better
- [other] replace Highcharts with jqplot for query profiling, zoom search
- [interface] No form validation in change password dialog
- [interface] Broken password validation in copy user form
- [unterface] Add user form prints JSON when user presses enter
- [config] duplicate line in config.sample.inc.php
- bug #3534311 [interface] Grid editing incorrectly parses ENUM/SET values
- bug #3510196 [core] More clever URL rewriting with ForceSSL
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 30 2012 Robert Scheck <rob...@fedoraproject.org> 3.5.2-1
- Upgrade to 3.5.2 (#838310)
* Sat Jul 21 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 3.5.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #838310 - phpMyAdmin-3.5.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=838310
--------------------------------------------------------------------------------
================================================================================
salt-0.10.2-1.el5 (FEDORA-EPEL-2012-6560)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to 0.10.2
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2012 Clint Savage <her...@gmail.com> - 0.10.1-1
- Moved to upstream release 0.10.2
- Removed PyXML as a dependency
--------------------------------------------------------------------------------
================================================================================
srm-ifce-1.13.0-0.el5 (FEDORA-EPEL-2012-6553)
SRM client side library
--------------------------------------------------------------------------------
Update Information:
update 1.13.0, synchronised with EMI 2 Update
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 20 2012 Adrien Devresse <adevress at cern.ch> - 1.13.0-0
- Synchronise with EMI 2 Update 13
- introduction of operation timeout
- buffer overflow and memory corruption corrections
- minor warning corrections
--------------------------------------------------------------------------------
_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
