[EPEL-devel] Fedora EPEL 7 updates-testing report

[updates]

The following Fedora EPEL 7 Security updates need testing:
 Age  URL
 214  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d   
condor-8.6.11-1.el7
  85  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b43fdd19c3   
vcftools-0.1.16-1.el7
  22  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f8311ec8a2   
tor-0.3.5.8-1.el7
  16  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-9c2c40e3df   
guacamole-server-1.0.0-1.el7
   3  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-3817296b2f   
tcpreplay-4.3.2-1.el7
   3  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-a0b449d1cb   
wordpress-5.1.1-1.el7


The following builds have been pushed to Fedora EPEL 7 updates-testing

    apache-commons-discovery-0.5-23.el7
    mxml-3.0-1.el7
    nordugrid-arc-5.4.4-1.el7
    zchunk-1.0.4-1.el7

Details about builds:


================================================================================
 apache-commons-discovery-0.5-23.el7 (FEDORA-EPEL-2019-3fa59c110f)
 Apache Commons Discovery
--------------------------------------------------------------------------------
Update Information:

Fixes failure to build from source on EL7.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 16 2019 Mat Booth <mat.bo...@redhat.com> - 2:0.5-23
- Fix javadoc generation
* Thu Feb  7 2019 Mat Booth <mat.bo...@redhat.com> - 2:0.5-22
- Rebuild to regenerate OSGi metadata
* Thu Jan 31 2019 Fedora Release Engineering <rel...@fedoraproject.org> - 
2:0.5-21
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Jul 12 2018 Fedora Release Engineering <rel...@fedoraproject.org> - 
2:0.5-20
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb  7 2018 Fedora Release Engineering <rel...@fedoraproject.org> - 
2:0.5-19
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <rel...@fedoraproject.org> - 
2:0.5-18
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Feb 10 2017 Fedora Release Engineering <rel...@fedoraproject.org> - 
2:0.5-17
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Wed Jun 15 2016 Mikolaj Izdebski <mizde...@redhat.com> - 2:0.5-16
- Add missing build-requires
* Wed Feb  3 2016 Fedora Release Engineering <rel...@fedoraproject.org> - 
2:0.5-15
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Wed Jun 17 2015 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 2:0.5-14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Tue Oct 14 2014 Mikolaj Izdebski <mizde...@redhat.com> - 2:0.5-13
- Remove legacy Obsoletes/Provides for jakarta-commons
* Sat Jun  7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> 
- 2:0.5-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Mon May 26 2014 Mikolaj Izdebski <mizde...@redhat.com> - 2:0.5-11
- Remove BuildRequires on maven-surefire-provider-junit4
* Tue Mar  4 2014 Stanislav Ochotnicky <sochotni...@redhat.com> - 2:0.5-10
- Use Requires: java-headless rebuild (#1067528)
--------------------------------------------------------------------------------


================================================================================
 mxml-3.0-1.el7 (FEDORA-EPEL-2019-7e4233c554)
 Miniature XML development library
--------------------------------------------------------------------------------
Update Information:

Update to 3.0. License changes to ASL 2.0 + exception.  See
https://github.com/michaelrsweet/mxml/releases/tag/v3.0 for more details.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  6 2019 Kevin Fenzi <ke...@scrye.com> - 3.0-1
- Upgrade to 3.0. Fixes bug #1684794
- CVE-2018-20004 CVE-2018-20592 CVE-2018-20593
* Fri Feb  1 2019 Fedora Release Engineering <rel...@fedoraproject.org> - 2.11-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 20 2018 Kevin Fenzi <ke...@scrye.com> - 2.11-4
- Fix FTBFS bug #1604905.
* Fri Jul 13 2018 Fedora Release Engineering <rel...@fedoraproject.org> - 2.11-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Feb  8 2018 Fedora Release Engineering <rel...@fedoraproject.org> - 2.11-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Sat Nov  4 2017 Kevin Fenzi <ke...@scrye.com> - 2.11-1
- Update to 2.11. Fixes bug #1459753
* Thu Aug  3 2017 Fedora Release Engineering <rel...@fedoraproject.org> - 2.9-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <rel...@fedoraproject.org> - 2.9-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Feb 10 2017 Fedora Release Engineering <rel...@fedoraproject.org> - 2.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1662713 - CVE-2018-20592 mxml: Use-after-free in the mxmlAdd 
function of the mxml-node.c [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=1662713
  [ 2 ] Bug #1662710 - CVE-2018-20593 mxml: Stack-based buffer overflow in the 
scan_file function in mxmldoc.c. [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=1662710
  [ 3 ] Bug #1660485 - CVE-2018-20004 CVE-2018-20005 mxml: Multiple 
vulnerabilities [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=1660485
  [ 4 ] Bug #1684794 - mxml-3.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1684794
--------------------------------------------------------------------------------


================================================================================
 nordugrid-arc-5.4.4-1.el7 (FEDORA-EPEL-2019-985fe18982)
 Advanced Resource Connector Grid Middleware
--------------------------------------------------------------------------------
Update Information:

ARC 5.4.4
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 16 2019 Mattias Ellert <mattias.ell...@physics.uu.se> - 5.4.4-1
- 5.4.4 Final Release
- Drop previously backported patches
* Thu Mar  7 2019 Troy Dawson <tdaw...@redhat.com> - 5.4.3-2
- Rebuilt to change main python from 3.4 to 3.6
* Sun Feb  3 2019 Mattias Ellert <mattias.ell...@physics.uu.se> - 5.4.3-4
- Fix compilation with gcc 9 (Fedora 30+)
* Fri Feb  1 2019 Fedora Release Engineering <rel...@fedoraproject.org> - 
5.4.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Mon Nov 26 2018 Mattias Ellert <mattias.ell...@physics.uu.se> - 5.4.3-2
- Fix for changed default initialization options in OpenSSL 1.1.1
--------------------------------------------------------------------------------


================================================================================
 zchunk-1.0.4-1.el7 (FEDORA-EPEL-2019-89762ff5fc)
 Compressed file format that allows easy deltas
--------------------------------------------------------------------------------
Update Information:

This fixes a bug when downloading a zchunk file from a lighttpd server.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 16 2019 Jonathan Dieter <jdie...@gmail.com> - 1.0.4-1
- Fix multipart boundary bug when dealing with lighttpd servers
* Sun Feb  3 2019 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.0.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
--------------------------------------------------------------------------------

_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org