The following Fedora EPEL 6 Security updates need testing:
Age URL
1009
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
99
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3434/pylint-1.3.1-1.el6,python-astroid-1.2.1-2.el6,python-logilab-common-0.62.1-2.el6
74
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binutils-2.23.51.0.3-1.el6.1
62
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4242/facter-1.6.18-8.el6
51
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4485/python-tornado-2.2.1-7.el6
33
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4884/mapserver-6.0.4-1.el6
31
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4918/dokuwiki-0-0.23.20140929b.el6
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0232/chicken-4.9.0.1-2.el6
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0278/Django14-1.4.18-1.el6
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0279/drupal7-context-3.6-1.el6
10
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0315/docker-io-1.4.1-3.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0363/polarssl-1.3.2-4.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0368/puppetlabs-stdlib-4.5.1-1.20150121git7a91f20.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0407/seamonkey-2.28-3.ESR_31.4.0.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0436/privoxy-3.0.23-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
bats-0.4.0-1.20141016git3b33a5a.el6
golang-github-vaughan0-go-ini-0-0.3.gita98ad7e.el6
golang-googlecode-gcfg-0-0.4.gitc2d3050.el6
golang-googlecode-google-api-client-0-0.4.gitfc402b0.el6
golang-googlecode-goprotobuf-0-0.10.git7f07925.el6
irclog2html-2.14.0-1.el6
lcov-1.10-4.el6
nodejs-nsp-audit-shrinkwrap-1.0.2-1.el6
perl-Date-Easter-1.22-1.el6
perl-Statistics-Basic-1.6611-3.el6
php-sebastian-recursion-context-1.0.0-1.el6
pkgwat-0.11-1.el6
privoxy-3.0.23-1.el6
python-dogpile-cache-0.5.5-1.el6
python-msgpack-0.4.4-2.el6
python-requests-oauthlib-0.4.0-7.el6
python-urllib2_kerberos-0.1.6-16.el6
smemstat-0.01.11-1.el6
uid_wrapper-1.1.0-1.el6
Details about builds:
================================================================================
bats-0.4.0-1.20141016git3b33a5a.el6 (FEDORA-EPEL-2015-0435)
Bash Automated Testing System
--------------------------------------------------------------------------------
Update Information:
First package version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1184472 - Review Request: bats - Bash Automated Testing System
https://bugzilla.redhat.com/show_bug.cgi?id=1184472
--------------------------------------------------------------------------------
================================================================================
golang-github-vaughan0-go-ini-0-0.3.gita98ad7e.el6 (FEDORA-EPEL-2015-0441)
INI parsing library for Go
--------------------------------------------------------------------------------
Update Information:
Choose the correct architecture
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1142398 - Review Request: golang-github-vaughan0-go-ini - INI
parsing library for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1142398
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-gcfg-0-0.4.gitc2d3050.el6 (FEDORA-EPEL-2015-0462)
Gcfg reads INI-style configuration files into Go structs
--------------------------------------------------------------------------------
Update Information:
Choose the correct architecture
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1141880 - Review Request: golang-googlecode-gcfg - Gcfg reads
INI-style configuration files into Go structs
https://bugzilla.redhat.com/show_bug.cgi?id=1141880
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-google-api-client-0-0.4.gitfc402b0.el6
(FEDORA-EPEL-2015-0448)
Go libraries for "new style" Google APIs
--------------------------------------------------------------------------------
Update Information:
update to fc402b0d6f2a46ba7dcf0a4606031f45fb82a728
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1141841 - Review Request: golang-googlecode-google-api-client - Go
libraries for "new style" Google APIs
https://bugzilla.redhat.com/show_bug.cgi?id=1141841
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-goprotobuf-0-0.10.git7f07925.el6 (FEDORA-EPEL-2015-0443)
Go support for Google protocol buffers
--------------------------------------------------------------------------------
Update Information:
Bump to 7f07925444bb51fa4cf9dfe6f7661876f8852275
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 26 2015 jchaloup <[email protected]> - 0-0.10.git7f07925
- Bump to 7f07925444bb51fa4cf9dfe6f7661876f8852275
related: #1018057
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018057 - Review Request: golang-googlecode-goprotobuf - Go
support for Google protocol buffers
https://bugzilla.redhat.com/show_bug.cgi?id=1018057
--------------------------------------------------------------------------------
================================================================================
irclog2html-2.14.0-1.el6 (FEDORA-EPEL-2015-0468)
A script to convert IRC logs to HTML and other formats
--------------------------------------------------------------------------------
Update Information:
Update to new upstream version 2.14.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Fabian Affolter <[email protected]> - 2.14.0-1
- Update to new upstream version 2.14.0
--------------------------------------------------------------------------------
================================================================================
lcov-1.10-4.el6 (FEDORA-EPEL-2015-0442)
LTP GCOV extension code coverage tool
--------------------------------------------------------------------------------
Update Information:
Rebuilt for RHEL-6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1156413 - Please provide EPEL-7 branch
https://bugzilla.redhat.com/show_bug.cgi?id=1156413
--------------------------------------------------------------------------------
================================================================================
nodejs-nsp-audit-shrinkwrap-1.0.2-1.el6 (FEDORA-EPEL-2015-0425)
Audits a shrinkwrap file against the NSP module vulnerability database
--------------------------------------------------------------------------------
Update Information:
update to 1.0.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Parag Nemade <pnemade AT redhat DOT com> - 1.0.2-1
- update to 1.0.2
--------------------------------------------------------------------------------
================================================================================
perl-Date-Easter-1.22-1.el6 (FEDORA-EPEL-2015-0450)
Calculates Easter for any given year
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.22
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 24 2015 David Dick <[email protected]> - 1.22-1
- Upgrade to 1.22
* Tue Aug 26 2014 Jitka Plesnikova <[email protected]> - 1.21-2
- Perl 5.20 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1184825 - perl-Date-Easter-1.22 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1184825
--------------------------------------------------------------------------------
================================================================================
perl-Statistics-Basic-1.6611-3.el6 (FEDORA-EPEL-2015-0467)
A collection of very basic statistics modules
--------------------------------------------------------------------------------
Update Information:
Fixes for EPEL6 and EPEL7 branches
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #672246 - Review Request: perl-Statistics-Basic - A collection of
very basic statistics modules
https://bugzilla.redhat.com/show_bug.cgi?id=672246
--------------------------------------------------------------------------------
================================================================================
php-sebastian-recursion-context-1.0.0-1.el6 (FEDORA-EPEL-2015-0426)
Recursively process PHP variables
--------------------------------------------------------------------------------
Update Information:
Provides functionality to recursively process PHP variables.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185606 - Review Request: php-sebastian-recursion-context -
Recursively process PHP variables
https://bugzilla.redhat.com/show_bug.cgi?id=1185606
--------------------------------------------------------------------------------
================================================================================
pkgwat-0.11-1.el6 (FEDORA-EPEL-2015-0432)
CLI tool for querying the fedora packages webapp
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Ralph Bean <[email protected]> - 0.11-1
- Latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1112119 - [abrt] pkgwat: subcommands.py:340:take_action:KeyError:
'version'
https://bugzilla.redhat.com/show_bug.cgi?id=1112119
--------------------------------------------------------------------------------
================================================================================
privoxy-3.0.23-1.el6 (FEDORA-EPEL-2015-0436)
Privacy enhancing proxy
--------------------------------------------------------------------------------
Update Information:
It was reported [1] that Privoxy 3.0.23 contains fixes for the following
security issues:
- Fixed a DoS issue in case of client requests with incorrect
chunk-encoded body. When compiled with assertions enabled
(the default) they could previously cause Privoxy to abort().
Reported by Matthew Daley.
http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/jcc.c?r1=1.433&r2=1.434
- Fixed multiple segmentation faults and memory leaks in the
pcrs code. This fix also increases the chances that an invalid
pcrs command is rejected as such. Previously some invalid commands
would be loaded without error. Note that Privoxy's pcrs sources
(action and filter files) are considered trustworthy input and
should not be writable by untrusted third-parties.
http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/pcrs.c?r1=1.46&r2=1.47
- Fixed an 'invalid read' bug which could at least theoretically
cause Privoxy to crash.
http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/parsers.c?r1=1.297&r2=1.298
[1]: http://seclists.org/oss-sec/2015/q1/259
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 26 2015 Jon Ciesla <[email protected]> - 3.0.23-1
- Update to 3.0.23, BZ 1185926.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185926 - privoxy: security fixes in 3.0.23 [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1185926
[ 2 ] Bug #1185925 - privoxy: security fixes in 3.0.23 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1185925
--------------------------------------------------------------------------------
================================================================================
python-dogpile-cache-0.5.5-1.el6 (FEDORA-EPEL-2015-0438)
A caching front-end based on the Dogpile lock
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
http://dogpilecache.readthedocs.org/en/latest/changelog.html#change-0.5.5
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 22 2015 Ralph Bean <[email protected]> - 0.5.5-1
- new version
--------------------------------------------------------------------------------
================================================================================
python-msgpack-0.4.4-2.el6 (FEDORA-EPEL-2015-0457)
A Python MessagePack (de)serializer
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release. See the [upstream
changelog](https://github.com/msgpack/msgpack-python/blob/master/ChangeLog.rst#044)
for more details.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Ken Dreyer <[email protected]> - 0.4.4-2
- Patch test suite for EL6 and EL7 compatibility (RHBZ #1182808)
- Add python2 macros for EL6 compatibility (RHBZ #1182808)
* Thu Jan 15 2015 Ken Dreyer <[email protected]> - 0.4.4-1
- Update to latest upstream version 0.4.4 (RHBZ #1180507)
- Add tests in %check
* Wed Sep 10 2014 Nejc Saje <[email protected]> - 0.4.2-4
- Introduce python3- subpackage
* Sun Aug 17 2014 Fedora Release Engineering <[email protected]>
- 0.4.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <[email protected]>
- 0.4.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed Mar 26 2014 Fabian Affolter <[email protected]> - 0.4.2-1
- Update to latest upstream version 0.4.2
* Wed Feb 26 2014 Fabian Affolter <[email protected]> - 0.4.1-1
- Update to latest upstream version 0.4.1
* Tue Jan 7 2014 Fabian Affolter <[email protected]> - 0.4.0-1
- Update to latest upstream version 0.4.0
* Mon Jan 6 2014 Fabian Affolter <[email protected]> - 0.1.13-5
- Update spec file and python macros
* Sun Aug 4 2013 Fedora Release Engineering <[email protected]>
- 0.1.13-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1182808 - Update python-msgpack in EPEL 6 and 7
https://bugzilla.redhat.com/show_bug.cgi?id=1182808
--------------------------------------------------------------------------------
================================================================================
python-requests-oauthlib-0.4.0-7.el6 (FEDORA-EPEL-2015-0446)
OAuthlib authentication support for Requests.
--------------------------------------------------------------------------------
Update Information:
Un-pin python-requests.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Ralph Bean <[email protected]> - 0.4.0-7
- Alter egg requirements for epel.
* Sat Jun 7 2014 Fedora Release Engineering <[email protected]>
- 0.4.0-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed May 14 2014 Bohuslav Kabrda <[email protected]> - 0.4.0-5
- Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4
--------------------------------------------------------------------------------
================================================================================
python-urllib2_kerberos-0.1.6-16.el6 (FEDORA-EPEL-2015-0440)
Kerberos over HTTP Negotiate/SPNEGO support for urllib2
--------------------------------------------------------------------------------
Update Information:
Don’t change debugging level ... RHBZ #1185370
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Matej Cepl <[email protected]> - 0.1.6-15
- Don’t change debugging level ... RHBZ #1185370
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185370 - hardcoded loglevel DEBUG
https://bugzilla.redhat.com/show_bug.cgi?id=1185370
--------------------------------------------------------------------------------
================================================================================
smemstat-0.01.11-1.el6 (FEDORA-EPEL-2015-0452)
Shared memory usage monitoring tool
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor changes.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 22 2015 Eduardo Mayorga Téllez <[email protected]> - 0.01.11-1
- Update to 0.01.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1176979 - smemstat-0.01.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1176979
--------------------------------------------------------------------------------
================================================================================
uid_wrapper-1.1.0-1.el6 (FEDORA-EPEL-2015-0466)
A wrapper for privilege separation
--------------------------------------------------------------------------------
Update Information:
Update to version 1.1.0
Fix format errors in changelog and depencies.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 21 2015 Andreas Schneider <[email protected]> - 1.1.0-1
- Update to version 1.1.0
* Mon Dec 15 2014 Michael Adam <[email protected]> - 1.0.2-4
- Fix format errors in changelog.
- Require cmake.
- Don't own _libdir/pkgconfig, and require pkgconfig instead.
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/epel-devel
