The following Fedora EPEL 6 Security updates need testing:
Age URL
740
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
87
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0440/fwsnort-1.6.4-1.el6
82
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0483/boinc-client-7.2.33-3.git1994cc8.el6
72
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0590/oath-toolkit-2.0.2-4.el6
31
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1011/php-ZendFramework-1.12.5-1.el6
23
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1073/cacti-0.8.8b-5.el6
16
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1102/wordpress-3.8.3-1.el6
16
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1137/znc-1.2-3.el6
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1169/ansible-1.5.5-1.el6
9
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1206/Django14-1.4.11-1.el6
8
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1226/ndjbdns-1.06-1.el6
6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1236/prosody-0.8.2-7.el6
5
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1254/qt5-qtbase-5.2.1-8.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1275/mediawiki119-1.19.15-1.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1282/dmlite-0.6.2-2.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1292/nrpe-2.15-2.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1304/rxvt-unicode-9.20-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
clipit-1.4.2-6.el6
datagrepper-0.4.1-1.el6
fedwatch-0.4-2.el6
perl-RPC-XML-0.69-4.el6.1
python-django15-1.5.6-1.el6
python-libturpial-1.7.0-1.el6
rxvt-unicode-9.20-1.el6
utf8cpp-2.3.4-4.el6
Details about builds:
================================================================================
clipit-1.4.2-6.el6 (FEDORA-EPEL-2014-1311)
A lightweight, fully featured GTK+ clipboard manager
--------------------------------------------------------------------------------
Update Information:
Add EPEL support
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1080225 - May we please have a clipit for EPEL
https://bugzilla.redhat.com/show_bug.cgi?id=1080225
--------------------------------------------------------------------------------
================================================================================
datagrepper-0.4.1-1.el6 (FEDORA-EPEL-2014-1305)
A webapp to query fedmsg history
--------------------------------------------------------------------------------
Update Information:
Websockets and autoscrolling.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 2 2014 Ralph Bean <[email protected]> - 0.4.1-1
- Websockets and autoscrolling.
- Remove pygments patch.
* Wed Mar 19 2014 Ralph Bean <[email protected]> - 0.4.0-3
- Start running the test suite.
--------------------------------------------------------------------------------
================================================================================
fedwatch-0.4-2.el6 (FEDORA-EPEL-2014-1307)
Tool for watching fedmsg messages and running arbitrary scripts
--------------------------------------------------------------------------------
Update Information:
Tool for watching fedwatch messages and running arbitrary scripts
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1079967 - Review Request: fedwatch - Tool for watching fedmsg
messages and running arbitrary scripts
https://bugzilla.redhat.com/show_bug.cgi?id=1079967
--------------------------------------------------------------------------------
================================================================================
perl-RPC-XML-0.69-4.el6.1 (FEDORA-EPEL-2014-1308)
Set of classes for core data, message and XML handling
--------------------------------------------------------------------------------
Update Information:
First EPEL 6 release. The RPC::XML package is an implementation of XML-RPC. The
module provides classes for sample client and server implementations, a server
designed as an Apache location-handler, and a suite of data-manipulation
classes that are used by them.
--------------------------------------------------------------------------------
================================================================================
python-django15-1.5.6-1.el6 (FEDORA-EPEL-2014-1306)
A high-level Python Web framework
--------------------------------------------------------------------------------
Update Information:
update to 1.5.6 fixing CVE-2014-0473 and CVE-2014-0474
--------------------------------------------------------------------------------
================================================================================
python-libturpial-1.7.0-1.el6 (FEDORA-EPEL-2014-1309)
Micro blogging python library, needed for turpial (twitter client)
--------------------------------------------------------------------------------
Update Information:
Version 1.7.0 of libturpial
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 1 2014 Richzendy <[email protected]> - 1.7.0-1
- Version 1.7.0 of libturpial
* Sat Jan 18 2014 Richzendy <[email protected]> - 1.5.9-1
- New update, complete changelog in
https://github.com/satanas/libturpial/blob/1.5.9/ChangeLog
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1092167 - Unable to access my direct messages and turpial settings
https://bugzilla.redhat.com/show_bug.cgi?id=1092167
[ 2 ] Bug #1051949 - [abrt] turpial: worker.py:509:get_window_size:KeyError:
'Window'
https://bugzilla.redhat.com/show_bug.cgi?id=1051949
--------------------------------------------------------------------------------
================================================================================
rxvt-unicode-9.20-1.el6 (FEDORA-EPEL-2014-1304)
Unicode version of rxvt
--------------------------------------------------------------------------------
Update Information:
* Update to 9.20: http://cvs.schmorp.de/rxvt-unicode/Changes
* Fix CVE-2014-3121: user-assisted arbitrary commands execution
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 1 2014 Jamie Nguyen <[email protected]> - 9.20-1
- update to upstream release 9.20, which includes a fix for security bug
CVE-2014-3121 (#1093287, #1093288, #1093289)
- include man pages for new extension (selection-to-clipboard)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1093287 - CVE-2014-3121 rxvt-unicode: user-assisted arbitrary
commands execution
https://bugzilla.redhat.com/show_bug.cgi?id=1093287
--------------------------------------------------------------------------------
================================================================================
utf8cpp-2.3.4-4.el6 (FEDORA-EPEL-2014-1310)
A simple, portable and lightweight library for handling UTF-8 encoded strings
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1091636 - Review Request: utf8cpp - A simple, portable and
lightweight library for handling UTF-8 encoded strings
https://bugzilla.redhat.com/show_bug.cgi?id=1091636
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/epel-devel
