The following Fedora EPEL 5 Security updates need testing:
Age URL
485
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
380
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11138/hylafax+-5.5.4-1.el5
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11174/libzrtpcpp-3.2.1-3.el5
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11165/cacti-0.8.8b-1.el5
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11144/chrony-1.25-3.el5
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11276/ssmtp-2.61-21.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
ssmtp-2.61-21.el5
unbound-1.4.20-2.el5
Details about builds:
================================================================================
ssmtp-2.61-21.el5 (FEDORA-EPEL-2013-11276)
Extremely simple MTA to get mail off the system to a Mailhub
--------------------------------------------------------------------------------
Update Information:
Use a corrected patch to validate server certificates
Removes world read access from the configuration file thus prohibiting reading
of password stored inside it.
Removes world read access from the configuration file thus prohibiting reading
of password stored inside it.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 20 2013 Manuel "lonely wolf" Wolfshant <[email protected]> -
2.61-21
- replace TLS patch with a corrected one. thanks Till Maas for the fix
* Tue Jun 4 2013 Manuel "lonely wolf" Wolfshant <[email protected]> -
2.61-20
- remove world readable permissions of the config file (#962988)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #864894 - ssmtp: Does not validate server certificates when using
TLS connection
https://bugzilla.redhat.com/show_bug.cgi?id=864894
--------------------------------------------------------------------------------
================================================================================
unbound-1.4.20-2.el5 (FEDORA-EPEL-2013-11275)
Validating, recursive, and caching DNS(SEC) resolver
--------------------------------------------------------------------------------
Update Information:
New version 1.4.20
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 20 2013 Tomas Hozza <[email protected]> - 1.4.20-2
- Remove merged and unused patches
- Resolve build failure
- Build streamtcp
- Fix (python) libunbound.i because of old swig
* Sun Aug 11 2013 Paul Wouters <[email protected]> - 1.4.20-1
- Updatged to 1.4.20
* Wed Dec 12 2012 Paul Wouters <[email protected]> - 1.4.18-2
- rebuilt for newer python
* Thu Aug 23 2012 Paul Wouters <[email protected]> - 1.4.18-1
- Updated to 1.4.18
- Removed merged in patch
- Added comment in root.key
- Add proper links to man pages
- Split man pages in proper unbound/unbound-devel package
- Added --disable-ecdsa since it requires ECC which is not available
- Added --disable-static
- Updated unbound.conf with comments for added options
* Tue Feb 28 2012 Paul Wouters <[email protected]> - 1.4.16-2
- Change initscript "reload" to call "restart" rhbz#489278
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/epel-devel
