[EPEL-devel] Fedora EPEL 6 updates-testing report

updates Thu, 20 Nov 2014 02:46:55 -0800

The following Fedora EPEL 6 Security updates need testing:
 Age  URL
 942  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
 161  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1616/puppet-2.7.26-1.el6
  32  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3434/pylint-1.3.1-1.el6,python-astroid-1.2.1-2.el6,python-logilab-common-0.62.1-2.el6
  28  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3527/asterisk-1.8.31.1-1.el6
  22  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3623/Pound-2.6-2.el6.1
  18  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3748/tnftp-20141031-1.el6
  15  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3790/facter-1.6.18-7.el6
  10  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3851/python-requests-kerberos-0.6-1.el6
   9  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3927/drupal7-ckeditor-1.16-2.el6
   7  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3962/oath-toolkit-2.0.2-5.el6
   7  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4005/nginx-1.0.15-11.el6
   7  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binutils-2.23.51.0.3-1.el6.1
   7  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3975/polarssl-1.3.2-3.el6
   7  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2069/php-channel-phpseclib-1.3-1.el6,php-sabredav-Sabre_VObject-2.1.4-2.el6,php-sabredav-Sabre_HTTP-1.7.11-1.el6,php-sabredav-Sabre_DAVACL-1.7.9-1.el6,php-sabredav-Sabre_DAV-1.7.13-1.el6,php-sabredav-Sabre_CardDAV-1.7.9-2.el6,php-sabredav-Sabre_CalDAV-1.7.9-1.el6,php-irodsphp-3.3.0-0.4.beta1.el6,php-phpseclib-net-ssh2-0.3.9-1.el6,php-phpseclib-net-sftp-0.3.9-1.el6,php-phpseclib-crypt-twofish-0.3.9-2.el6,php-phpseclib-crypt-tripledes-0.3.9-2.el6,php-phpseclib-crypt-rsa-0.3.9-1.el6,php-phpseclib-crypt-rijndael-0.3.9-2.el6,php-phpseclib-crypt-rc4-0.3.9-2.el6,php-phpseclib-crypt-random-0.3.9-1.el6,php-phpseclib-crypt-hash-0.3.9-1.el6,php-phpseclib-crypt-des-0.3.9-2.el6,php-phpseclib-crypt-blowfish-0.3.9-2.el6,php-phpseclib-crypt-aes-0.3.9-1.el6,php-phpseclib-math-biginteger-0.3.9-1.el6,php-phpseclib-crypt-base-0.3.9-1.el6,owncloud-6.0.5-4.el6
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4057/moodle-2.5.9-1.el6
   1  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4151/lsyncd-2.1.4-4.el6.1.1
   1  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4144/nodejs-0.10.33-1.el6,libuv-0.10.29-1.el6
   0  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4165/python-eyed3-0.7.4-5.el6
   0  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4176/clamav-0.98.5-1.el6



The following builds have been pushed to Fedora EPEL 6 updates-testing

    clamav-0.98.5-1.el6
    golang-github-coreos-go-systemd-2-2.el6
    gtk-gnutella-1.1.1-1.el6
    myproxy-6.1.6-1.el6
    ntfs-3g-2014.2.15-8.el6
    php-EasyRdf-0.8.0-5.el6
    php-solarium-3.3.0-1.el6
    python-eyed3-0.7.4-5.el6
    python-pyroute2-0.3.2-1.el6
    qpdfview-0.4.13-1.el6
    qpid-dispatch-0.2-8.el6
    qpid-proton-0.8-1.el6
    rubygem-qpid_proton-0.8-1.el6

Details about builds:


================================================================================
 clamav-0.98.5-1.el6 (FEDORA-EPEL-2014-4176)
 Anti-virus software
--------------------------------------------------------------------------------
Update Information:

ClamAV 0.98.5
=============


ClamAV 0.98.5 also includes these new features and bug fixes:

  * Support for the XDP file format and extracting, decoding, and scanning PDF 
files within XDP files. Addition of shared library support for LLVM versions 
3.1 - 3.5 for the purpose of just-in-time(JIT) compilation of ClamAV bytecode 
signatures. Andreas Cadhalpun submitted the patch implementing this support.
  * Enhancements to the clambc command line utility to assist ClamAV bytecode 
signature authors by providing introspection into compiled bytecode programs.
  * Resolution of many of the warning messages from ClamAV compilation.
  * Improved detection of malicious PE files.
  * Security fix for ClamAV crash when using 'clamscan -a'. This issue was 
identified by Kurt Siefried of Red Hat. 
  * Security fix for ClamAV crash when scanning maliciously crafted yoda's 
crypter files. This issue, as well as several other bugs fixed in this release, 
were identified by Damien Millescamp of Oppida.
  * ClamAV 0.98.5 now works with OpenSSL in FIPS compliant mode. Thanks to 
Reinhard Max for supplying the patch.
  * Bug fixes and other feature enhancements.

Please see the ChangeLog file or GIT log for further details.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 Robert Scheck <rob...@fedoraproject.org> - 0.98.5-1
- Upgrade to 0.98.5 and updated daily.cvd (#1138101)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1138101 - CVE-2013-6497 ClamAV: -a segmentation fault when 
processing files
        https://bugzilla.redhat.com/show_bug.cgi?id=1138101
--------------------------------------------------------------------------------


================================================================================
 golang-github-coreos-go-systemd-2-2.el6 (FEDORA-EPEL-2014-4184)
 Go bindings to systemd socket activation, journal and D-BUS APIs
--------------------------------------------------------------------------------
Update Information:

Update to a606a1e936df81b70d85448221c7b1c6d8a74ef1 commit
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 jchaloup <jchal...@redhat.com> - 2-2
- Update to a606a1e936df81b70d85448221c7b1c6d8a74ef1 commit
  resolves: #1165688
- remove gopath and add golang >= 1.2.1-3
- add Requires on github.com/godbus/dbus
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1165688 - Review Request: flannel - Flannel is an etcd backed 
network fabric for containers
        https://bugzilla.redhat.com/show_bug.cgi?id=1165688
--------------------------------------------------------------------------------


================================================================================
 gtk-gnutella-1.1.1-1.el6 (FEDORA-EPEL-2014-4161)
 GUI based Gnutella Client
--------------------------------------------------------------------------------
Update Information:

Upgrade to 1.1.1
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 Dmitry Butskoy <dmi...@butskoy.name> - 1.1.1-1
- Upgrade to 1.1.1
--------------------------------------------------------------------------------


================================================================================
 myproxy-6.1.6-1.el6 (FEDORA-EPEL-2014-4167)
 Manage X.509 Public Key Infrastructure (PKI) security credentials
--------------------------------------------------------------------------------
Update Information:

MyProxy 6.1.6

* Allow TLS (no longer force SSLv3)
* VOMS support now in a separate package (myproxy-voms)

--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 Mattias Ellert <mattias.ell...@fysast.uu.se> - 6.1.6-1
- Update to 6.1.6
- Drop patch myproxy-deps.patch (fixed upstream)
- Upstream source moved from sourceforge to the Globus Toolkit github repo
- Use source tarball published by Globus
- Use upstream's init scripts and systemd unit files
- New binary package myproxy-voms (voms support split out as a plugin)
--------------------------------------------------------------------------------


================================================================================
 ntfs-3g-2014.2.15-8.el6 (FEDORA-EPEL-2014-4178)
 Linux NTFS userspace driver
--------------------------------------------------------------------------------
Update Information:

Apply upstream patch for old kernels (RHEL 6 or older) to properly fallback to 
the right fuse level. Resolves I/O errors on accessing mounted ntfs-3g 
filesystems on RHEL 6.
Fix ntfs-3g/ntfsprogs builds for EL-6 (and older, should we ever be so brave as 
to go into that snake pit). Add back hal file for ancient nautilus support.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 Tom Callaway <s...@fedoraproject.org> - 2:2014.2.15-8
- apply upstream patch to properly use fuse on older kernels
* Mon Nov 17 2014 Tom Callaway <s...@fedoraproject.org> - 2:2014.2.15-7
- old rhel (< 7) needs old pathing and hal file. CONDITIONALIZE ALL THE THINGS!
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1164757 - cannot mount ntfs partitions from Nautilus
        https://bugzilla.redhat.com/show_bug.cgi?id=1164757
  [ 2 ] Bug #1043236 - Update ntfs-3g/ntfsprogs packages in EPEL
        https://bugzilla.redhat.com/show_bug.cgi?id=1043236
  [ 3 ] Bug #1164565 - Can not mount external USB HDD
        https://bugzilla.redhat.com/show_bug.cgi?id=1164565
--------------------------------------------------------------------------------


================================================================================
 php-EasyRdf-0.8.0-5.el6 (FEDORA-EPEL-2014-4164)
 A PHP library designed to make it easy to consume and produce RDF
--------------------------------------------------------------------------------
Update Information:

RPM-only release

* php-redland is now an optional dependency
* Added php-composer(easyrdf/easyrdf) virtual provide
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 18 2014 Shawn Iwinski <shawn.iwin...@gmail.com> - 0.8.0-5
- Modified raptor and redland logic
* Fri Nov 14 2014 Shawn Iwinski <shawn.iwin...@gmail.com> - 0.8.0-4
- No raptor or redland for el7
* Thu Nov 13 2014 Shawn Iwinski <shawn.iwin...@gmail.com> - 0.8.0-3
- Added php-composer(easyrdf/easyrdf) virtual provide
- Added option to build without tests ("--without tests")
- Reduce PHP min version from 5.3.3 to 5.2.8 (per composer.json)
- %license usage
* Sat Jun  7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 0.8.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 php-solarium-3.3.0-1.el6 (FEDORA-EPEL-2014-4169)
 Solarium PHP Solr client library
--------------------------------------------------------------------------------
Update Information:

See https://github.com/basdenooijer/solarium/issues/294

--------------------------------------------------------------------------------
ChangeLog:

* Mon Nov 17 2014 Remi Collet <r...@fedoraproject.org> - 3.3.0-1
- update to 3.3.0
- provide php-composer(solarium/solarium)
- fix license handling
- don't run test suite with php 5.3 (EL-6)
--------------------------------------------------------------------------------


================================================================================
 python-eyed3-0.7.4-5.el6 (FEDORA-EPEL-2014-4165)
 Python audio data toolkit (ID3 and MP3)
--------------------------------------------------------------------------------
Update Information:

- Fixed CVE-2014-1934.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 pjp <p...@fedoraproject.org> - 0.7.4-5
- fixed __python macros, added python-argparse as build dependency.
* Wed Nov 19 2014 Mr Niranjan <mrniran...@fedoraproject.org> - 0.7.4-4
- Fixed CVE-2014-1934, patch from Travis Shirk.
* Sat Jun  7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 0.7.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Fri Jan 10 2014 Christopher Meng <r...@cicku.me> - 0.7.4-2
- Dependencies cleanup.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1063671 - CVE-2014-1934 python-eyed3: insecure temporary file 
creation
        https://bugzilla.redhat.com/show_bug.cgi?id=1063671
--------------------------------------------------------------------------------


================================================================================
 python-pyroute2-0.3.2-1.el6 (FEDORA-EPEL-2014-4162)
 Pure Python netlink library
--------------------------------------------------------------------------------
Update Information:

Update to 0.3.2
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 18 2014 Peter V. Saveliev <pe...@svinota.eu> 0.3.2-1
- Update to 0.3.2
* Sat Jun  7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 0.2.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 qpdfview-0.4.13-1.el6 (FEDORA-EPEL-2014-4187)
 Tabbed PDF Viewer
--------------------------------------------------------------------------------
Update Information:

Version bump
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 18 2014 TI_Eugene <ti.eug...@gmail.com> 0.4.13-1
- Version bump
--------------------------------------------------------------------------------


================================================================================
 qpid-dispatch-0.2-8.el6 (FEDORA-EPEL-2014-4158)
 Dispatch router for Qpid
--------------------------------------------------------------------------------
Update Information:

DISPATCH-75 - Removed reference to qdstat.conf from qdstat manpage.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.2-8
- DISPATCH-75 - Removed reference to qdstat.conf from qdstat manpage.
- Include systemd service file for EPEL7 packages.
- Brought systemd support up to current Fedora packaging guidelines.
- Resolves: BZ#1165691
- Resolves: BZ#1165681
* Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 0.2-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1165691 - Man page for qdstat.conf is missing
        https://bugzilla.redhat.com/show_bug.cgi?id=1165691
  [ 2 ] Bug #1165681 - RPMs do not provide a systemd service unit file
        https://bugzilla.redhat.com/show_bug.cgi?id=1165681
--------------------------------------------------------------------------------


================================================================================
 qpid-proton-0.8-1.el6 (FEDORA-EPEL-2014-4183)
 A high performance, lightweight messaging library
--------------------------------------------------------------------------------
Update Information:

Rebased on Proton 0.8.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 18 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.8-1
- Rebased on Proton 0.8.
* Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 0.7-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 rubygem-qpid_proton-0.8-1.el6 (FEDORA-EPEL-2014-4171)
 Ruby language bindings for the Qpid Proton messaging framework
--------------------------------------------------------------------------------
Update Information:

Rebased on Proton 0.8.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 19 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.8-1
- Rebased on Proton 0.8.
* Mon Aug 18 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 0.7-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
--------------------------------------------------------------------------------

_______________________________________________
epel-devel mailing list
epel-devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/epel-devel

[EPEL-devel] Fedora EPEL 6 updates-testing report

Reply via email to