The following Fedora EPEL 6 Security updates need testing:
Age URL
211
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13499/weechat-0.3.8-4.el6
37
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13155/cobbler-2.4.0-beta2.el6
14
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13222/xlockmore-5.40-4.el6
7
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13442/roundup-1.4.20-1.el6
35
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13172/ssmtp-2.61-19.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13492/sticky-notes-0.3.09062012.4-10.el6
1
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13495/cgit-0.9.1-2.el6
35
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13176/icecast-2.3.3-1.el6
134
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6
3
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13478/mod_security-2.7.1-3.el6,mod_security_crs-2.2.6-3.el6
399
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
collectd-4.10.8-1.el6
flexiport-2.0.0-2.20120701git1b6103d.el6
jemalloc-3.2.0-1.el6
nickle-2.77-2.el6
pgadmin3-1.16.0-1.el6
php-Monolog-1.2.1-1.el6
php-lessphp-0.3.8-3.el6
php-phpunit-FinderFacade-1.0.5-1.el6
php-theseer-fDOMDocument-1.3.2-1.el6
phpMyAdmin-3.5.4-1.el6
python-fixtures-0.3.9-4.el6
weechat-0.3.8-4.el6
zeroinstall-injector-1.13-1.el6
Details about builds:
================================================================================
collectd-4.10.8-1.el6 (FEDORA-EPEL-2012-13502)
Statistics collection daemon for filling RRD files
--------------------------------------------------------------------------------
Update Information:
Update to 4.10.8 upstream bugfix release. See
https://github.com/collectd/collectd/blob/collectd-4.10/ChangeLog for details
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 18 2012 Kevin Fenzi <[email protected]> 4.10.8-1
- Update to 4.10.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #877720 - 4.10.8 update for EPEL6
https://bugzilla.redhat.com/show_bug.cgi?id=877720
--------------------------------------------------------------------------------
================================================================================
flexiport-2.0.0-2.20120701git1b6103d.el6 (FEDORA-EPEL-2012-13508)
Flexible communications library
--------------------------------------------------------------------------------
Update Information:
Flexiport: Flexible communications library
Flexiport provides a consistent interface for communicating over a range of
data port types. Currently serial (including serial-over-USB), TCP and UDP
ports are supported. Logging is supported which allows communications sessions
to be played back at a later date without the original hardware present.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #877910 - hokuyoaist-3.0.1-1.20120729git69df78b.el6 is missing both
build and runtime dependencies
https://bugzilla.redhat.com/show_bug.cgi?id=877910
--------------------------------------------------------------------------------
================================================================================
jemalloc-3.2.0-1.el6 (FEDORA-EPEL-2012-13512)
General-purpose scalable concurrent malloc implementation
--------------------------------------------------------------------------------
Update Information:
New upstream release. See http://www.canonware.com/jemalloc/ChangeLog.html for
details
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 19 2012 Ingavr Hagelund <[email protected]> - 3.2.0-1
- New upstream release
--------------------------------------------------------------------------------
================================================================================
nickle-2.77-2.el6 (FEDORA-EPEL-2012-13501)
A programming language-based prototyping environment
--------------------------------------------------------------------------------
Update Information:
- Handle OpFarJump in CompileReachable
- Now includes tutorial PDF
--------------------------------------------------------------------------------
ChangeLog:
* Sat Nov 10 2012 Michel Salim <[email protected]> - 2.77-2
- Build and package tutorial PDF
* Fri Nov 9 2012 Michel Salim <[email protected]> - 2.77-1
- Update to 2.77
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #873995 - nickle-2.77 is available
https://bugzilla.redhat.com/show_bug.cgi?id=873995
--------------------------------------------------------------------------------
================================================================================
pgadmin3-1.16.0-1.el6 (FEDORA-EPEL-2012-13503)
Graphical client for PostgreSQL
--------------------------------------------------------------------------------
Update Information:
Update to 1.16.0 for new features and bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 29 2012 Devrim GUNDUZ <[email protected]> 1.16.0-1
- Update licence, per bz #871183.
- Update to 1.16.0
--------------------------------------------------------------------------------
================================================================================
php-Monolog-1.2.1-1.el6 (FEDORA-EPEL-2012-13505)
Logging for PHP 5.3
--------------------------------------------------------------------------------
Update Information:
Logging for PHP 5.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #842199 - Review Request: php-Monolog - Logging for PHP 5.3
https://bugzilla.redhat.com/show_bug.cgi?id=842199
--------------------------------------------------------------------------------
================================================================================
php-lessphp-0.3.8-3.el6 (FEDORA-EPEL-2012-13511)
A compiler for LESS written in PHP
--------------------------------------------------------------------------------
Update Information:
lessphp is a compiler that generates CSS from a superset language which
adds a collection of convenient features often seen in other languages.
All CSS is compatible with LESS, so you can start using new features
with your existing CSS.
It is designed to be compatible with less.js (http://lesscss.org/), and
suitable as a drop in replacement for PHP projects.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #840109 - Review Request: php-lessphp - A compiler for LESS written
in PHP
https://bugzilla.redhat.com/show_bug.cgi?id=840109
--------------------------------------------------------------------------------
================================================================================
php-phpunit-FinderFacade-1.0.5-1.el6 (FEDORA-EPEL-2012-13500)
Wrapper for Symfony Finder component
--------------------------------------------------------------------------------
Update Information:
Convenience wrapper for Symfony's Finder component.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #866463 - Review Request: php-phpunit-FinderFacade - Wrapper for
Symfony's Finder component
https://bugzilla.redhat.com/show_bug.cgi?id=866463
--------------------------------------------------------------------------------
================================================================================
php-theseer-fDOMDocument-1.3.2-1.el6 (FEDORA-EPEL-2012-13504)
An Extension to PHP standard DOM
--------------------------------------------------------------------------------
Update Information:
An Extension to PHP's standard DOM to add various convinience methods and
exceptions by default
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #866428 - Review Request: php-theseer-fDOMDocument - An Extension
to PHP standard DOM
https://bugzilla.redhat.com/show_bug.cgi?id=866428
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-3.5.4-1.el6 (FEDORA-EPEL-2012-13506)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
phpMyAdmin 3.5.4.0 (2012-11-16)
===============================
- [edit] uuid_short() is a no-arguments function
- [edit] Add routine parameter headers not valid for "function"
- [search] Various search operators not working as expected
- [search] Invalid select query generated for tables with ENUM fields
- [display] Incorrect imagejpeg Syntax Breaks Image Transformation
- [search] Editing SQL not possible when no records found
- [interface] Display chart and number of rows to plot
- [core] Wrong redirect url caused cookies error with ForceSSL
--------------------------------------------------------------------------------
ChangeLog:
* Sun Nov 18 2012 Robert Scheck <[email protected]> 3.5.4-1
- Upgrade to 3.5.4 (#877727)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #877727 - phpMyAdmin-3.5.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=877727
--------------------------------------------------------------------------------
================================================================================
python-fixtures-0.3.9-4.el6 (FEDORA-EPEL-2012-13507)
Fixtures, reusable state for writing clean tests and more
--------------------------------------------------------------------------------
Update Information:
- Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #876645 - Review Request: python-fixtures - Fixtures, reusable
state for writing clean tests and more
https://bugzilla.redhat.com/show_bug.cgi?id=876645
--------------------------------------------------------------------------------
================================================================================
weechat-0.3.8-4.el6 (FEDORA-EPEL-2012-13499)
Portable, fast, light and extensible IRC client
--------------------------------------------------------------------------------
Update Information:
Fix arbitrary code execution due to call of shell when executing command within
hook_process
Fix the security bug in the linked Bugzilla.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 19 2012 Paul P. Komkoff Jr <[email protected]> - 0.3.8-4
- fix bz#878025
* Fri Nov 9 2012 Paul P. Komkoff Jr <[email protected]> - 0.3.8-3
- fix bz#875181
* Sun Jul 22 2012 Fedora Release Engineering <[email protected]>
- 0.3.8-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #878025 - weechat (scripts / plug-ins): Arbitrary code execution
due to call of shell when executing command within hook_process
https://bugzilla.redhat.com/show_bug.cgi?id=878025
[ 2 ] Bug #875181 - CVE-2012-5854 weechat: Heap-based buffer overflow when
decoding IRC colors
https://bugzilla.redhat.com/show_bug.cgi?id=875181
--------------------------------------------------------------------------------
================================================================================
zeroinstall-injector-1.13-1.el6 (FEDORA-EPEL-2012-13498)
The Zero Install Injector (0launch)
--------------------------------------------------------------------------------
Update Information:
1.13:
- hugely improved diagnostics when a solve fails (or fails to select the
expected version)
- feed elements can be restricted to specified 0install versions
- new escaping scheme for site-local packages
- user-specified implementation cache directories are now aggregated with the
administrator's list
- app versions recalculated if configuration changes
- bug fixes
1.12:
- Some long-deprecated APIs now produce deprecation warnings if used
- Added <requires os='...'> attribute
- Added --manifest and --digest options to "0install digest"
- Added "0install man" command
- Allow dependencies for <package-implementation>
- bug fixes
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 19 2012 Michel Salim <[email protected]> - 1.13-1
- Update to 1.13
--------------------------------------------------------------------------------
_______________________________________________
epel-devel-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/epel-devel-list
