The following Fedora EPEL 6 Security updates need testing:
Age URL
228
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13636/weechat-0.3.9.2-2.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13671/bogofilter-1.2.3-1.el6
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13537/claws-mail-3.9.0-1.el6,claws-mail-plugins-3.9.0-2.el6
54
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13155/cobbler-2.4.0-beta2.el6
11
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13552/seamonkey-2.14-1.el6
15
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13525/pcp-3.6.10-1.el6
51
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13172/ssmtp-2.61-19.el6
51
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13176/icecast-2.3.3-1.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13629/openstack-keystone-2012.2.1-1.el6
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13642/php-symfony2-HttpFoundation-2.1.4-1.el6
150
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6
20
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13478/mod_security-2.7.1-3.el6,mod_security_crs-2.2.6-3.el6
416
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6
7
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13575/php-symfony-symfony-1.4.20-2.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
abi-compliance-checker-1.98.6-1.el6
armadillo-3.4.4-1.el6
bogofilter-1.2.3-1.el6
facter-1.6.16-1.el6
mongodb-2.2.2-1.el6
nagios-3.4.3-1.el6
opendkim-2.7.3-2.el6
openstack-quantum-2012.2.1-1.el6
pam_url-0.3.2-1.el6
perl-CDB_File-0.97-1.el6
php-pluf-1.0-3.gitb1fed2e.el6
python-moksha-hub-1.0.9-1.el6
python-moksha-hub-1.1.0-1.el6
python-quantumclient-2.1.10-1.el6
python-txzmq-0.6.1-3.el6
Details about builds:
================================================================================
abi-compliance-checker-1.98.6-1.el6 (FEDORA-EPEL-2012-13674)
An ABI Compliance Checker
--------------------------------------------------------------------------------
Update Information:
Version 1.98.6 (December 04, 2012)
Improvements
Extended -extra-info and -extra-dump options
Bug Fixes
Corrected processing of input XML descriptor
Corrected "Parameter_Default_Value_Removed" rule
Other fixes
Version 1.98.5 (November 30, 2012)
This is a bug-fix release with a few new features.
Improvements
Added "throw" and "weak" attributes of methods to ABI dump
New Options
-extra-info
-extra-dump
-force
Bug Fixes
Corrected order of user-defined include paths
Corrected internal C++ mangler
Removed false positives of the "Parameter_Type_Format" rule
Other fixes
Other
Extended test suite
Code cleaning
Docs cleaning
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2012 Richard Shaw <[email protected]> - 1.98.6-1
- Update to latest upstream release.
--------------------------------------------------------------------------------
================================================================================
armadillo-3.4.4-1.el6 (FEDORA-EPEL-2012-13683)
Fast C++ matrix library with interfaces to LAPACK and ATLAS
--------------------------------------------------------------------------------
Update Information:
Update Armadillo to latest stable version.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 3 2012 José Matos <[email protected]> - 3.4.4-1
- Update to latest stable release
- Clean the spec files (documentation has a special treatment with rpm)
* Wed Jul 25 2012 José Matos <[email protected]> - 3.2.4-1
- Update to version 3.2.4
* Wed Jul 18 2012 Fedora Release Engineering <[email protected]>
- 2.2.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu Jan 12 2012 Fedora Release Engineering <[email protected]>
- 2.2.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
bogofilter-1.2.3-1.el6 (FEDORA-EPEL-2012-13671)
Fast anti-spam filtering by Bayesian statistical analysis
--------------------------------------------------------------------------------
Update Information:
updated to 1.2.3 (fixes #883358, CVE-2012-5468)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2012 Adrian Reber <[email protected]> - 1.2.3-1
- updated to 1.2.3 (fixes #883358, CVE-2012-5468)
* Thu Jul 26 2012 Adrian Reber <[email protected]> - 1.2.2-5
- add new libdb4 include path to configure options
* Wed Jul 18 2012 Fedora Release Engineering <[email protected]>
- 1.2.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu Jan 12 2012 Fedora Release Engineering <[email protected]>
- 1.2.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Feb 7 2011 Fedora Release Engineering <[email protected]>
- 1.2.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #883358 - CVE-2012-5468 bogofilter: Heap-based buffer overflow by
decoding invalid base64 code (that decodes to incomplete multibyte characters)
https://bugzilla.redhat.com/show_bug.cgi?id=883358
--------------------------------------------------------------------------------
================================================================================
facter-1.6.16-1.el6 (FEDORA-EPEL-2012-13676)
Command and ruby library for gathering system information
--------------------------------------------------------------------------------
Update Information:
Update from upstream with fixes for edge cases around ec2 facts.
Rebase to 1.6.15 and fix issue found in bz #871211
This is a rebase to the upstream of 1.6.15. This should be a backward
compatible release with what is currently in Fedora/EPEL. The known
issue of openstack/ec2 fact exception handling has been resolved in
1.6.15.
This commit also adds the .asc file back as it used by facter
maintainers during package creation.
Moves facter to newest version. This is a fully compatible version from 1.6.6
which is in stable. It also has bug fixes and a few enhancements.
Moves facter to newest version. This is a fully compatible version from 1.6.6
which is in stable. It also has bug fixes and a few enhancements.
Rebase to 1.6.15 and fix issue found in bz #871211
This is a rebase to the upstream of 1.6.15. This should be a backward
compatible release with what is currently in Fedora/EPEL. The known
issue of openstack/ec2 fact exception handling has been resolved in
1.6.15.
This commit also adds the .asc file back as it used by facter
maintainers during package creation.
Moves facter to newest version. This is a fully compatible version from 1.6.6
which is in stable. It also has bug fixes and a few enhancements.
Moves facter to newest version. This is a fully compatible version from 1.6.6
which is in stable. It also has bug fixes and a few enhancements.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2012 Michael Stahnke <[email protected]> - 1.6.16-1
- Update to 1.6.16
* Wed Nov 28 2012 Michael Stahnke <[email protected]> - 1.6.15-1
- Rebase to 1.6.15
- Put asc file back as Source1
* Fri Nov 9 2012 Michael Stahnke <[email protected]> - 1.6.13-2
- Add patch for ec2 fix
- Rebase to 1.6.14 via bz 871211
* Mon Oct 29 2012 Michael Stahnke <[email protected]> - 1.6.13-1
- Rebase to 1.6.13
* Thu Jul 19 2012 Fedora Release Engineering <[email protected]>
- 1.6.6-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #871211 - Please update facter to the latest upstream (patch
included)
https://bugzilla.redhat.com/show_bug.cgi?id=871211
--------------------------------------------------------------------------------
================================================================================
mongodb-2.2.2-1.el6 (FEDORA-EPEL-2012-13684)
High-performance, schema-free document-oriented database
--------------------------------------------------------------------------------
Update Information:
Update to 2.2.2
Built with ssl support, minor bugfixes
Update to 2.2.1, a bugfix only release
Update to 2.2.0
Update init script to use a pidfile
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2012 Troy Dawson <[email protected]> - 2.2.2-1
- Updated to version 2.2.2
* Tue Nov 27 2012 Troy Dawson <[email protected]> - 2.2.1-3
- Add ssl build option
- Using the reserved mongod UID for the useradd
- mongod man page in server package (#880351)
- added optional MONGODB_OPTIONS to init script
* Wed Oct 31 2012 Nathaniel McCallum <[email protected]> - 2.2.1-2
- Make sure build and install flags are the same
- Actually remove the js patch file
* Wed Oct 31 2012 Nathaniel McCallum <[email protected]> - 2.2.1-1
- Remove fork fix patch (fixed upstream)
- Remove pcre patch (fixed upstream)
- Remove mozjs patch (now using v8 upstream)
- Update to 2.2.1
* Tue Oct 2 2012 Troy Dawson <[email protected]> - 2.2.0-6
- full flag patch to get 32 bit builds to work
* Tue Oct 2 2012 Troy Dawson <[email protected]> - 2.2.0-5
- shared libraries patch
- Fix up minor %files issues
* Fri Sep 28 2012 Troy Dawson <[email protected]> - 2.2.0-4
- Fix spec files problems
* Fri Sep 28 2012 Troy Dawson <[email protected]> - 2.2.0-3
- Updated patch to use system libraries
- Update init script to use a pidfile
* Thu Sep 27 2012 Troy Dawson <[email protected]> - 2.2.0-2
- Added patch to use system libraries
* Wed Sep 19 2012 Troy Dawson <[email protected]> - 2.2.0-1
- Updated to 2.2.0
- Updated patches that were still needed
- use v8 instead of spider_monkey due to bundled library issues
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #880351 - mongod man page is in mongodb package instead of
mongodb-server package
https://bugzilla.redhat.com/show_bug.cgi?id=880351
--------------------------------------------------------------------------------
================================================================================
nagios-3.4.3-1.el6 (FEDORA-EPEL-2012-13686)
Nagios monitors hosts and services and yells if somethings breaks
--------------------------------------------------------------------------------
Update Information:
Upgrade to 3.4.3
Update to 3.4.2
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.3-1
- Upgrade to 3.4.3
* Sat Nov 10 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.2-1
- Upgrade to 3.4.2
* Fri Jul 20 2012 Fedora Release Engineering <[email protected]>
- 3.4.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
opendkim-2.7.3-2.el6 (FEDORA-EPEL-2012-13681)
A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail
--------------------------------------------------------------------------------
Update Information:
Changed default permissions of /etc/opendkim/keys based on suggestion by
Patrick at puzzled.xs4all.nl.
Update to upstream release 2.7.3, which fixes the following bugs:
Log DB error string in dkimf_add_signrequest(), and fix a DSN handling error in
dkimf_db_strerror(). Problem noted by Simone Caruso.
LIBOPENDKIM: Ignore entries in the oversign header field name list that are
empty, and an oversign header field name list that is present but empty.
Problem noted by Alec Peterson.
LIBOPENDKIM: Allow header field lists to be empty, flushing any that were
previously defined. Problem noted by Alec Peterson.
BUILD: Improve tests for including <strl.h>. Based on a patch from Eray Aslan.
REPUTATION: Use lowercase for keywords in REPUTE query generation and handling.
STATS: Clean up a dead link in opendkim-genstats. Patch from Andreas Schulze.
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Update to upstream release 2.7.3, which fixes the following bugs:
Log DB error string in dkimf_add_signrequest(), and fix a DSN handling error in
dkimf_db_strerror(). Problem noted by Simone Caruso.
LIBOPENDKIM: Ignore entries in the oversign header field name list that are
empty, and an oversign header field name list that is present but empty.
Problem noted by Alec Peterson.
LIBOPENDKIM: Allow header field lists to be empty, flushing any that were
previously defined. Problem noted by Alec Peterson.
BUILD: Improve tests for including <strl.h>. Based on a patch from Eray Aslan.
REPUTATION: Use lowercase for keywords in REPUTE query generation and handling.
STATS: Clean up a dead link in opendkim-genstats. Patch from Andreas Schulze.
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Update to upstream release 2.7.3, which fixes the following bugs:
Log DB error string in dkimf_add_signrequest(), and fix a DSN handling error in
dkimf_db_strerror(). Problem noted by Simone Caruso.
LIBOPENDKIM: Ignore entries in the oversign header field name list that are
empty, and an oversign header field name list that is present but empty.
Problem noted by Alec Peterson.
LIBOPENDKIM: Allow header field lists to be empty, flushing any that were
previously defined. Problem noted by Alec Peterson.
BUILD: Improve tests for including <strl.h>. Based on a patch from Eray Aslan.
REPUTATION: Use lowercase for keywords in REPUTE query generation and handling.
STATS: Clean up a dead link in opendkim-genstats. Patch from Andreas Schulze.
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Update to upstream release 2.7.3, which fixes the following bugs:
Log DB error string in dkimf_add_signrequest(), and fix a DSN handling error in
dkimf_db_strerror(). Problem noted by Simone Caruso.
LIBOPENDKIM: Ignore entries in the oversign header field name list that are
empty, and an oversign header field name list that is present but empty.
Problem noted by Alec Peterson.
LIBOPENDKIM: Allow header field lists to be empty, flushing any that were
previously defined. Problem noted by Alec Peterson.
BUILD: Improve tests for including <strl.h>. Based on a patch from Eray Aslan.
REPUTATION: Use lowercase for keywords in REPUTE query generation and handling.
STATS: Clean up a dead link in opendkim-genstats. Patch from Andreas Schulze.
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Update to upstream release 2.7.3, which fixes the following bugs:
Log DB error string in dkimf_add_signrequest(), and fix a DSN handling error in
dkimf_db_strerror(). Problem noted by Simone Caruso.
LIBOPENDKIM: Ignore entries in the oversign header field name list that are
empty, and an oversign header field name list that is present but empty.
Problem noted by Alec Peterson.
LIBOPENDKIM: Allow header field lists to be empty, flushing any that were
previously defined. Problem noted by Alec Peterson.
BUILD: Improve tests for including <strl.h>. Based on a patch from Eray Aslan.
REPUTATION: Use lowercase for keywords in REPUTE query generation and handling.
STATS: Clean up a dead link in opendkim-genstats. Patch from Andreas Schulze.
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
Updating to newer 2.7.2 source.
Source release notes available here:
http://sourceforge.net/projects/opendkim/files/RELEASE_NOTES/view
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2012 Steve Jenkins <steve stevejenkins com> 2.7.3-2
- Set /etc/opendkim/keys default permissions to 750 (Thanks patrick at
puzzled.xs4al.nl)
* Thu Nov 29 2012 Steve Jenkins <steve stevejenkins com> 2.7.3-1
- Updated to use newer upstream 2.7.3 source code
* Mon Nov 19 2012 Steve Jenkins <steve stevejenkins com> 2.7.2-1
- Updated to use newer upstream 2.7.2 source code
--------------------------------------------------------------------------------
================================================================================
openstack-quantum-2012.2.1-1.el6 (FEDORA-EPEL-2012-13680)
Virtual network service for OpenStack (quantum)
--------------------------------------------------------------------------------
Update Information:
Update to folsom stable 2012.2.1 release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 3 2012 Robert Kukura <[email protected]> - 2012.2.1-1
- Update to folsom stable 2012.2.1
- Add upstream patch: Fix rpc control_exchange regression.
- Remove workaround for missing l3_agent.ini
--------------------------------------------------------------------------------
================================================================================
pam_url-0.3.2-1.el6 (FEDORA-EPEL-2012-13685)
PAM module to authenticate with HTTP servers
--------------------------------------------------------------------------------
Update Information:
Upstream 0.3.2 with fixes for pam stacking.
Initial release.
Initial release.
Initial release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #880842 - Review Request: pam_url - PAM module to authenticate with
HTTP servers
https://bugzilla.redhat.com/show_bug.cgi?id=880842
--------------------------------------------------------------------------------
================================================================================
perl-CDB_File-0.97-1.el6 (FEDORA-EPEL-2012-13687)
Perl extension for access to cdb databases
--------------------------------------------------------------------------------
Update Information:
upgrade to 0.97
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2012 Mark McKinstry <[email protected]> - 0.97-1
- upgrade to 0.97
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #882869 - perl-CDB_File-0.97 is available
https://bugzilla.redhat.com/show_bug.cgi?id=882869
--------------------------------------------------------------------------------
================================================================================
php-pluf-1.0-3.gitb1fed2e.el6 (FEDORA-EPEL-2012-13672)
PHP WebApp Framework
--------------------------------------------------------------------------------
Update Information:
Upgrade from GIT to satisfy Indefero dependency.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
python-moksha-hub-1.0.9-1.el6 (FEDORA-EPEL-2012-13679)
Hub components for Moksha
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2012 Ralph Bean <[email protected]> - 1.0.9-1
- Latest upstream.
- Fixed check conditional for rhel6.
--------------------------------------------------------------------------------
================================================================================
python-moksha-hub-1.1.0-1.el6 (FEDORA-EPEL-2012-13678)
Hub components for Moksha
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 4 2012 Ralph Bean <[email protected]> - 1.1.0-1
- Latest upstream with support for zmq_tcp_keepalive.
* Tue Dec 4 2012 Ralph Bean <[email protected]> - 1.0.9-1
- Latest upstream.
- Fixed check conditional for rhel6.
--------------------------------------------------------------------------------
================================================================================
python-quantumclient-2.1.10-1.el6 (FEDORA-EPEL-2012-13682)
Python API and CLI for OpenStack Quantum
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release with bug fixes and enhancements
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 3 2012 Robert Kukura <[email protected]> - 1:2.1.10-1
- Update to 2.1.10
- Add pyparsing dependency
- Deal with hash in tarball name
- Install /etc/bash_completion.d/quantum.bash_completion
--------------------------------------------------------------------------------
================================================================================
python-txzmq-0.6.1-3.el6 (FEDORA-EPEL-2012-13688)
Twisted bindings for ZeroMQ
--------------------------------------------------------------------------------
Update Information:
Add support for zmq_tcp_keepalive.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 5 2012 Ralph Bean <[email protected]> - 0.6.1-3
- Patch to add support for tcp keepalives with zeromq3.
- Fixed "bad" rhel conditional.
--------------------------------------------------------------------------------
_______________________________________________
epel-devel-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/epel-devel-list
