The following Fedora EPEL 6 Security updates need testing:
Age URL
730
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
77
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0440/fwsnort-1.6.4-1.el6
72
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0483/boinc-client-7.2.33-3.git1994cc8.el6
62
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0590/oath-toolkit-2.0.2-4.el6
22
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1011/php-ZendFramework-1.12.5-1.el6
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1073/cacti-0.8.8b-5.el6
6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1102/wordpress-3.8.3-1.el6
6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1132/check-mk-1.2.4p2-1.el6
6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1122/knot-1.4.5-1.el6
6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1137/znc-1.2-3.el6
6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1144/strongswan-5.1.3-1.el6
5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1160/drupal7-7.27-1.el6,drupal6-6.31-1.el6
3
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1169/ansible-1.5.5-1.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1206/Django14-1.4.11-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
Django14-1.4.11-1.el6
cobbler-2.4.4-1.el6
libsvm-3.18-1.el6
perl-CSS-Minifier-0.01-15.el6
perl-Lingua-EN-Sentence-0.25-1.el6
perl-Text-Patch-1.8-7.el6
php-PhpCollection-0.4.0-1.el6
php-guzzle-Guzzle-3.8.1-1.el6
php-pecl-judy-1.0.2-2.el6
php-scssphp-0.0.10-1.el6
php-theseer-autoload-1.14.1-1.el6
Details about builds:
================================================================================
Django14-1.4.11-1.el6 (FEDORA-EPEL-2014-1206)
A high-level Python Web framework
--------------------------------------------------------------------------------
Update Information:
update to 1.4.11 fixing CVE-2014-0473 and CVE-2014-0474
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 22 2014 Matthias Runge <[email protected]> - 1.4.11-1
- update to 1.4.11 fixing CVE-2014-0473 and CVE-2014-0474
--------------------------------------------------------------------------------
================================================================================
cobbler-2.4.4-1.el6 (FEDORA-EPEL-2014-1214)
Boot server configurator
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.4:
- Add a distro_signature for Ubuntu 14.04
- Add an option to always write DHCP entries regardless of netboot setting
- Improve support for running inside chroot() and/or containers
- Improve performance of the "cobbler sync" operation
- Fix infinite loop in get_file_device_path() in chroot environment
- Fixed an Exception in Koans get_insert_script() function
- Update to 2.4.3
- Add patch to fix bug #1047350
- Use updated systemd macros (bug #850061)
- Update to 2.4.3
- Add patch to fix bug #1047350
- Use updated systemd macros (bug #850061)
- Update to 2.4.3
- Add patch to fix bug #1047350
- Add requires python-simplejson and virt-install for EL5 (bug #852422)
- Use updated systemd macros (bug #850061)
- Require python-ctypes on EL5 (bug #838884)
- Update to 2.4.3:
- Add patch to fix bug #1047350
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 22 2014 Orion Poplawski <[email protected]> - 2.4.4-1
- Update to 2.4.4
- Drop koan patch applied upstream
* Mon Apr 21 2014 Orion Poplawski <[email protected]> - 2.4.3-1
- Update to 2.4.3
- Add patch to fix bug #1047350
- Add requires python-simplejson and virt-install for EL5 (bug #852422)
- Use updated systemd macros (bug #850061)
- Require python-ctypes on EL5 (bug #838884)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1028828 - cobbler import --path /mnt/dvd --name=fedora19
--arch=x86_64 throws exception for fedora19-x64
https://bugzilla.redhat.com/show_bug.cgi?id=1028828
[ 2 ] Bug #1021047 - [patch] Koan does not work on Fedora 19 (cannot find
module virtinst)
https://bugzilla.redhat.com/show_bug.cgi?id=1021047
[ 3 ] Bug #998221 - Cobbler: python2.7 exception in cobbler/utils.py on
import of RHEL 6.4 DVD
https://bugzilla.redhat.com/show_bug.cgi?id=998221
[ 4 ] Bug #977071 - cobbler missing manpage (applies to koan too)
https://bugzilla.redhat.com/show_bug.cgi?id=977071
[ 5 ] Bug #977070 - koan missing manpage (applies to cobbler too)
https://bugzilla.redhat.com/show_bug.cgi?id=977070
[ 6 ] Bug #852422 - koan should require python-simplejson
https://bugzilla.redhat.com/show_bug.cgi?id=852422
[ 7 ] Bug #838884 - Cobbler does not require python-ctypes package when it
should.
https://bugzilla.redhat.com/show_bug.cgi?id=838884
[ 8 ] Bug #839009 - koan does not respect virt_auto_boot setting on cobbler
server
https://bugzilla.redhat.com/show_bug.cgi?id=839009
[ 9 ] Bug #540998 - Python traceback when provisioning Xen FV guest on RHEL
5.4
https://bugzilla.redhat.com/show_bug.cgi?id=540998
[ 10 ] Bug #1067271 - bump cobbler to 2.4.2 in epel6
https://bugzilla.redhat.com/show_bug.cgi?id=1067271
[ 11 ] Bug #1047350 - koan 2.4 has a broken API
https://bugzilla.redhat.com/show_bug.cgi?id=1047350
--------------------------------------------------------------------------------
================================================================================
libsvm-3.18-1.el6 (FEDORA-EPEL-2014-1204)
A Library for Support Vector Machines
--------------------------------------------------------------------------------
Update Information:
Upstream update to 3.18
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 22 2014 Ding-Yi Chen <[email protected]> - 3.18-1
- Upstream update to 3.18
- svm.cpp and svm-scale.c: check return values of fscanf
- matlab interface: Makefile no longer handles octave
because make.m should be used
* Fri Mar 28 2014 Michael Simacek <[email protected]> - 3.17-4
- Use Requires: java-headless rebuild (#1067528)
* Sat Aug 3 2013 Fedora Release Engineering <[email protected]>
- 3.17-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Apr 25 2013 Jon Ciesla <[email protected]> - 3.17-2
- Drop desktop vendor tag.
--------------------------------------------------------------------------------
================================================================================
perl-CSS-Minifier-0.01-15.el6 (FEDORA-EPEL-2014-1208)
Remove unnecessary whitespace from CSS files
--------------------------------------------------------------------------------
Update Information:
First EPEL 6 build.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1087903 - perl-CSS-Minifier for EPEL 6 and 7
https://bugzilla.redhat.com/show_bug.cgi?id=1087903
--------------------------------------------------------------------------------
================================================================================
perl-Lingua-EN-Sentence-0.25-1.el6 (FEDORA-EPEL-2014-1209)
Module for splitting text into sentences
--------------------------------------------------------------------------------
Update Information:
First EPEL release.
--------------------------------------------------------------------------------
================================================================================
perl-Text-Patch-1.8-7.el6 (FEDORA-EPEL-2014-1213)
Patches text with given patch
--------------------------------------------------------------------------------
Update Information:
First EPEL 6 build.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1087904 - perl-Text-Patch for EPEL 6 and 7
https://bugzilla.redhat.com/show_bug.cgi?id=1087904
--------------------------------------------------------------------------------
================================================================================
php-PhpCollection-0.4.0-1.el6 (FEDORA-EPEL-2014-1207)
General purpose collection library for PHP
--------------------------------------------------------------------------------
Update Information:
Updated to 0.4.0
Minor enhancements:
* adds exists() method
* makes PHP doc comments compatible with IDEs
https://github.com/schmittjoh/php-collection/releases/tag/0.4.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 21 2014 Shawn Iwinski <[email protected]> - 0.4.0-1
- Updated to 0.4.0 (BZ #1078754)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1078754 - php-PhpCollection-0.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1078754
--------------------------------------------------------------------------------
================================================================================
php-guzzle-Guzzle-3.8.1-1.el6 (FEDORA-EPEL-2014-1216)
PHP HTTP client library and framework for building RESTful web service clients
--------------------------------------------------------------------------------
Update Information:
3.8.1 (2014-01-28)
------------------
* Bug: Always using GET requests when redirecting from a 303 response
* Bug: CURLOPT_SSL_VERIFYHOST is now correctly set to false when setting
`$certificateAuthority` to false in
`Guzzle\Http\ClientInterface::setSslVerification()`
* Bug: RedirectPlugin now uses strict RFC 3986 compliance when combining a base
URL with a relative URL
* Bug: The body of a request can now be set to `"0"`
* Sending PHP stream requests no longer forces `HTTP/1.0`
* Adding more information to ExceptionCollection exceptions so that users have
more context, including a stack trace of each sub-exception
* Updated the `$ref` attribute in service descriptions to merge over any
existing parameters of a schema (rather than clobbering everything).
* Merging URLs will now use the query string object from the relative URL (thus
allowing custom query aggregators)
* Query strings are now parsed in a way that they do no convert empty keys with
no value to have a dangling `=`. For example `foo&bar=baz` is now correctly
parsed and recognized as `foo&bar=baz` rather than `foo=&bar=baz`.
* Now properly escaping the regular expression delimiter when matching Cookie
domains.
* Network access is now disabled when loading XML documents
https://github.com/guzzle/guzzle/releases/tag/v3.8.1
3.8.0 (2013-12-05)
------------------
* Added the ability to define a POST name for a file
* JSON response parsing now properly walks additionalProperties
* cURL error code 18 is now retried automatically in the BackoffPlugin
* Fixed a cURL error when URLs contain fragments
* Fixed an issue in the BackoffPlugin retry event where it was trying to access
all exceptions as if they were CurlExceptions
* CURLOPT_PROGRESS function fix for PHP 5.5 (69fcc1e)
* Added the ability for Guzzle to work with older versions of cURL that do not
support `CURLOPT_TIMEOUT_MS`
* Fixed a bug that was encountered when parsing empty header parameters
* UriTemplate now has a `setRegex()` method to match the docs
* The `debug` request parameter now checks if it is truthy rather than if it
exists
* Setting the `debug` request parameter to true shows verbose cURL output
instead of using the LogPlugin
* Added the ability to combine URLs using strict RFC 3986 compliance
* Command objects can now return the validation errors encountered by the
command
* Various fixes to cache revalidation (#437 and 29797e5)
* Various fixes to the AsyncPlugin
* Cleaned up build scripts
https://github.com/guzzle/guzzle/releases/tag/v3.8.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 21 2014 Shawn Iwinski <[email protected]> - 3.8.1-1
- Updated to 3.8.1 (BZ #1039260)
* Sun Feb 23 2014 Shawn Iwinski <[email protected]> - 3.7.4-3
- Fixed unbundled cacert issue (Guzzle/Http/Client::preparePharCacert())
- Added test to ensure unbundled cacert is referenced
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1039260 - php-guzzle-Guzzle-3.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1039260
--------------------------------------------------------------------------------
================================================================================
php-pecl-judy-1.0.2-2.el6 (FEDORA-EPEL-2014-1210)
PHP Judy implements sparse dynamic arrays
--------------------------------------------------------------------------------
Update Information:
PHP Judy implements sparse dynamic arrays (aka Judy Arrays). This extension is
based on the Judy C library. A Judy array consumes memory only when it is
populated, yet can grow to take advantage of all available memory if desired.
Judy's key benefits are scalability, high performance, and memory efficiency.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1076807 - Review Request: php-pecl-judy - PHP Judy implements
sparse dynamic arrays
https://bugzilla.redhat.com/show_bug.cgi?id=1076807
--------------------------------------------------------------------------------
================================================================================
php-scssphp-0.0.10-1.el6 (FEDORA-EPEL-2014-1212)
A compiler for SCSS written in PHP
--------------------------------------------------------------------------------
Update Information:
Updated to 0.0.10
Bug Fixes
* media query merging
* lib_if() should treat null as false
Maintenance
* optimizing toHSL() (7% faster) favoring integer operations and comparison
https://github.com/leafo/scssphp/releases/tag/v0.0.10
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 21 2014 Shawn Iwinski <[email protected]> - 0.0.10-1
- Updated to 0.0.10 (BZ #1087738)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1087738 - php-scssphp-0.0.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1087738
--------------------------------------------------------------------------------
================================================================================
php-theseer-autoload-1.14.1-1.el6 (FEDORA-EPEL-2014-1205)
A tool and library to generate autoload code
--------------------------------------------------------------------------------
Update Information:
The PHP AutoloadBuilder CLI tool phpab is a command line application to
automate the process of generating an autoload require file with the option of
creating static require lists as well as phar archives.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1084777 - Review Request: php-theseer-autoload - A tool and
library to generate autoload code
https://bugzilla.redhat.com/show_bug.cgi?id=1084777
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/epel-devel
