The following Fedora EPEL 7 Security updates need testing:
Age URL
78 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1f259a45ef
openjpeg2-2.3.1-11.el7
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1405677543
putty-0.76-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
httpie-1.0.3-1.el7
lua-sec-1.0.2-1.el7
Details about builds:
================================================================================
httpie-1.0.3-1.el7 (FEDORA-EPEL-2021-0383a9978e)
A Curl-like tool for humans
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2019-10751
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 9 2021 Mikel Olasagasti <[email protected]> - 1.0.3-1
- Update to latest possible version for EPEL7
- Remove Fedora bits
- Remove python2 bits
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1751042 - CVE-2019-10751 httpie: url redirection vulnerability
allows attacker to write arbitrary file [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1751042
--------------------------------------------------------------------------------
================================================================================
lua-sec-1.0.2-1.el7 (FEDORA-EPEL-2021-e34f0453dc)
Lua binding for OpenSSL library
--------------------------------------------------------------------------------
Update Information:
LuaSec 1.0.2 ============ * Fix handle `SSL_send` SYSCALL error without
`errno` * Fix off by one in `cert:validat(notafter)` * Fix
`meth_get_{sinagure => signature}_name` function name * Fix update the Lua
state reference on the selected SSL context after SNI * Fix ignore
`SSL_OP_BIT(n)` macro and update `option.c`
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 15 2021 Robert Scheck <[email protected]> 1.0.2-1
- Upgrade to 1.0.2 (#1993641)
* Thu Jul 22 2021 Fedora Release Engineering <[email protected]> -
1.0.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1993641 - lua-sec-1.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1993641
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
