The following Fedora EPEL 6 Security updates need testing: Age URL 582 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 394 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 94 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 52 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0823/openstack-keystone-2012.2.3-5.el6 18 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5643/php-sabredav-Sabre_DAV-1.6.5-5.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5713/openvpn-2.3.1-1.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5789/gallery3-3.0.7-1.el6 6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5801/python-virtualenv-1.9.1-1.el6 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5853/owncloud-4.5.11-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5862/python-backports-ssl_match_hostname-3.2-0.3.a3.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5865/moodle-2.2.10-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing aggregate-1.6-3.el6 drupal7-feeds-2.0-0.7.alpha8.el6 imapsync-1.542-1.el6 libopkele-2.0.4-4.el6 mediawiki119-1.19.6-3.el6 milter-greylist-4.5.1-1.el6 moodle-2.2.10-1.el6 php-tcpdf-6.0.017-2.el6 python-backports-ssl_match_hostname-3.2-0.3.a3.el6 rkhunter-1.4.0-2.el6 soci-3.2.1-1.el6 Details about builds: ================================================================================ aggregate-1.6-3.el6 (FEDORA-EPEL-2013-5869) IPv4 CIDR prefix aggregator -------------------------------------------------------------------------------- Update Information: IPv4 CIDR prefix aggregator -------------------------------------------------------------------------------- ================================================================================ drupal7-feeds-2.0-0.7.alpha8.el6 (FEDORA-EPEL-2013-5867) An import and aggregation framework for Drupal -------------------------------------------------------------------------------- Update Information: Fix slight problem with versioning Update to upstream alpha8 release for bug fixes, see http://drupal.org/node/1978108 for list of fixed bugs -------------------------------------------------------------------------------- ChangeLog: * Sun May 19 2013 Jared Smith <jsm...@fedoraproject.org> - 2.0-0.7.alpha8 - Fix versioning to be newer than alpha7 release * Tue Apr 23 2013 Jared Smith <jsm...@fedoraproject.org> - 2.0-0.1.alpha8 - Update to upstream alpha8 bug fix release - Upstream changelog for the bug fixes in this release is at http://drupal.org/node/1977140 * Wed Feb 13 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 2.0-0.7.alpha7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #955516 - drupal7-feeds-2.0-alpha8 is available https://bugzilla.redhat.com/show_bug.cgi?id=955516 -------------------------------------------------------------------------------- ================================================================================ imapsync-1.542-1.el6 (FEDORA-EPEL-2013-5864) Tool to migrate email between IMAP servers -------------------------------------------------------------------------------- Update Information: Update to 1.542 -------------------------------------------------------------------------------- ChangeLog: * Mon May 20 2013 Nick Bebout <n...@fedoraproject.org> - 1.542-1 - Upgrade to 1.542 -------------------------------------------------------------------------------- ================================================================================ libopkele-2.0.4-4.el6 (FEDORA-EPEL-2013-5871) C++ implementation of the OpenID decentralized identity system -------------------------------------------------------------------------------- Update Information: Initial version of package for epel. -------------------------------------------------------------------------------- References: [ 1 ] Bug #825333 - Review Request: libopkele - A C++ implementation of the OpenID decentralized identity system https://bugzilla.redhat.com/show_bug.cgi?id=825333 -------------------------------------------------------------------------------- ================================================================================ mediawiki119-1.19.6-3.el6 (FEDORA-EPEL-2013-5870) A wiki engine -------------------------------------------------------------------------------- Update Information: Add obsoletes for mediawiki116 -------------------------------------------------------------------------------- ChangeLog: * Wed May 8 2013 Patrick Uiterwijk <puiterw...@gmail.com> - 1.19.6-3 - Obsolete/provide mediawiki116 * Fri May 3 2013 Patrick Uiterwijk <puiterw...@gmail.com> - 1.19.6-2 - Update the alias order in the example configuration -------------------------------------------------------------------------------- References: [ 1 ] Bug #953470 - http config file suggests incorrect order of aliases https://bugzilla.redhat.com/show_bug.cgi?id=953470 -------------------------------------------------------------------------------- ================================================================================ milter-greylist-4.5.1-1.el6 (FEDORA-EPEL-2013-5866) Milter for greylisting, the next step in the spam control war -------------------------------------------------------------------------------- Update Information: This is the first milter-greylist release for EPEL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #958011 - Introduce milter-greylist package to EPEL https://bugzilla.redhat.com/show_bug.cgi?id=958011 -------------------------------------------------------------------------------- ================================================================================ moodle-2.2.10-1.el6 (FEDORA-EPEL-2013-5865) A Course Management System -------------------------------------------------------------------------------- Update Information: Moodle upstream has released upstream 2.4.4, 2.3.7, and 2.2.10 versions: http://docs.moodle.org/dev/Moodle_2.2.10_release_notes http://docs.moodle.org/dev/Moodle_2.3.7_release_notes http://docs.moodle.org/dev/Moodle_2.4.4_release_notes These releases contain unspecified security fixes, the nature of which will be public next week; as per the upstream announcements: "A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version." -------------------------------------------------------------------------------- ChangeLog: * Mon May 20 2013 Jon Ciesla <limburg...@gmail.com> - 2.2.10-1 - Latest upstream, patch for multiple CVEs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #964322 - moodle: upstream 2.4.4, 2.3.7, and 2.2.10 fixes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=964322 [ 2 ] Bug #964324 - moodle: upstream 2.4.4, 2.3.7, and 2.2.10 fixes [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=964324 -------------------------------------------------------------------------------- ================================================================================ php-tcpdf-6.0.017-2.el6 (FEDORA-EPEL-2013-5874) PHP class for generating PDF documents -------------------------------------------------------------------------------- Update Information: PHP class for generating PDF documents. * no external libraries are required for the basic functions; * all standard page formats, custom page formats, custom margins and units of measure; * UTF-8 Unicode and Right-To-Left languages; * TrueTypeUnicode, OpenTypeUnicode, TrueType, OpenType, Type1 and CID-0 fonts; * font subsetting; * methods to publish some XHTML + CSS code, Javascript and Forms; * images, graphic (geometric figures) and transformation methods; * supports JPEG, PNG and SVG images natively, all images supported by GD (GD, GD2, GD2PART, GIF, JPEG, PNG, BMP, XBM, XPM) and all images supported via ImagMagick (http: www.imagemagick.org/www/formats.html) * 1D and 2D barcodes: CODE 39, ANSI MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2 of 5, Interleaved 2 of 5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extention, EAN 8, EAN 13, UPC-A, UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state Customer Code), CBC (Customer Bar Code), KIX (Klant index - Customer index), Intelligent Mail Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE, PHARMACODE TWO-TRACKS, Datamatrix ECC200, QR-Code, PDF417; * ICC Color Profiles, Grayscale, RGB, CMYK, Spot Colors and Transparencies; * automatic page header and footer management; * document encryption up to 256 bit and digital signature certifications; * transactions to UNDO commands; * PDF annotations, including links, text and file attachments; * text rendering modes (fill, stroke and clipping); * multiple columns mode; * no-write page regions; * bookmarks and table of content; * text hyphenation; * text stretching and spacing (tracking/kerning); * automatic page break, line break and text alignments including justification; * automatic page numbering and page groups; * move and delete pages; * page compression (requires php-zlib extension); * XOBject templates; * PDF/A-1b (ISO 19005-1:2005) support. By default, TCPDF uses the GD library which is know as slower than ImageMagick solution. You can optionally install php-pecl-imagick; TCPDF will use it. -------------------------------------------------------------------------------- References: [ 1 ] Bug #964412 - Review Request: php-tcpdf - PHP class for generating PDF documents https://bugzilla.redhat.com/show_bug.cgi?id=964412 -------------------------------------------------------------------------------- ================================================================================ python-backports-ssl_match_hostname-3.2-0.3.a3.el6 (FEDORA-EPEL-2013-5862) The ssl.match_hostname() function from Python 3.2 -------------------------------------------------------------------------------- Update Information: Fixes CVE-2013-2098 -- Denial of Service with SSL certificates which have specially crafted wildcard patterns. -------------------------------------------------------------------------------- ChangeLog: * Mon May 20 2013 Toshio Kuratomi <tos...@fedoraproject.org> - 3.2-0.3.a3 - Add patch for CVE 2013-2099 https://bugzilla.redhat.com/show_bug.cgi?id=963260 -------------------------------------------------------------------------------- References: [ 1 ] Bug #963186 - python-backports-ssl_match_hostname: Denial of service when matching certificate with many '*' wildcard characters https://bugzilla.redhat.com/show_bug.cgi?id=963186 -------------------------------------------------------------------------------- ================================================================================ rkhunter-1.4.0-2.el6 (FEDORA-EPEL-2013-5873) A host-based tool to scan for rootkits, backdoors and local exploits -------------------------------------------------------------------------------- Update Information: Add /dev/md/autorebuild.pid to ALLOWDEVFILE. Fixes bug #962809 -------------------------------------------------------------------------------- ChangeLog: * Mon May 20 2013 Kevin Fenzi <ke...@scrye.com> 1.4.0-2 - Add /dev/md/autorebuild.pid to ALLOWDEVFILE. Fixes bug #962809 -------------------------------------------------------------------------------- References: [ 1 ] Bug #962809 - rkhunter complains about /dev/md/autorebuild.pid https://bugzilla.redhat.com/show_bug.cgi?id=962809 -------------------------------------------------------------------------------- ================================================================================ soci-3.2.1-1.el6 (FEDORA-EPEL-2013-5872) The database access library for C++ programmers -------------------------------------------------------------------------------- Update Information: Upstream update -------------------------------------------------------------------------------- ChangeLog: * Mon May 20 2013 Denis Arnaud <denis.arnaud_fed...@m4x.org> 3.2.1-1 - Upstream integration * Fri Feb 15 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 3.1.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 3.1.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Feb 28 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 3.1.0-3 - Rebuilt for c++ ABI breakage * Sat Jan 14 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 3.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list epel-devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/epel-devel