The following Fedora EPEL 6 Security updates need testing:
Age URL
605
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
119
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11274/ssmtp-2.61-21.el6
61
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11865/quassel-0.9.1-1.el6
34
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12079/bip-0.8.9-1.el6
20
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12222/drupal6-6.29-1.el6
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12301/zabbix-1.8.18-2.el6
9
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12324/munin-2.0.19-1.el6
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12361/libreswan-3.7-1.el6
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12386/v8-3.14.5.10-3.el6
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12403/djvulibre-3.5.25.3-11.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
d52-3.4.1-2.el6
djvulibre-3.5.25.3-11.el6
glite-lbjp-common-server-bones-2.3.9-1.el6
kobo-0.4.2-1.el6
mozilla-https-everywhere-3.4.3-1.el6
mysql-connector-python-1.1.4-1.el6
pdns-3.3.1-1.el6
python-arrow-0.4.2-2.el6
python-tahrir-0.5.0-1.el6
python-tahrir-api-0.5.0-4.el6
qpid-proton-0.5-2.el6
stompclt-1.0-1.el6
Details about builds:
================================================================================
d52-3.4.1-2.el6 (FEDORA-EPEL-2013-12397)
Disassemblers for 8051, 8048, and Z80 families
--------------------------------------------------------------------------------
Update Information:
The d52 package provides disassemblers for 8051, 8048, and Z80 families.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1033970 - Review Request: d52 - Disassemblers for 8051, 8048, and
Z80 families
https://bugzilla.redhat.com/show_bug.cgi?id=1033970
--------------------------------------------------------------------------------
================================================================================
djvulibre-3.5.25.3-11.el6 (FEDORA-EPEL-2013-12403)
DjVu viewers, encoders, and utilities
--------------------------------------------------------------------------------
Update Information:
Move to version 3.5.25.3 to fix CVE-2012-6535
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Jonathan Underwood <jonathan.underw...@gmail.com> -
3.5.25.3-11
- Only call autoreconf for Fedora 19 and higher, and not RHEL
* Sat Aug 3 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 3.5.25.3-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu May 23 2013 François Cami <fc...@fedoraproject.org> - - 3.5.25.3-9
- Fix #729469 again.
* Thu May 23 2013 François Cami <fc...@fedoraproject.org> - - 3.5.25.3-8
- Add autoreconf to BuildRequires.
* Thu May 23 2013 François Cami <fc...@fedoraproject.org> - - 3.5.25.3-7
- Call autoreconf in %build
LANG=C
export LANG
unset DISPLAY
(#925264).
* Wed Feb 13 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 3.5.25.3-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Thu Jan 31 2013 François Cami <fc...@fedoraproject.org> - 3.5.25.3-5
- fix source URL (#905953).
* Fri Jan 18 2013 Adam Tkac <atkac redhat com> - 3.5.25.3-4
- rebuild due to "jpeg8-ABI" feature drop
* Fri Dec 21 2012 Adam Tkac <atkac redhat com> - 3.5.25.3-3
- rebuild against new libjpeg
* Tue Oct 9 2012 Ville Skyttä <ville.sky...@iki.fi> - 3.5.25.3-2
- Build with $RPM_OPT_FLAGS (#729469).
* Wed Oct 3 2012 Jonathan G. Underwood <jonathan.underw...@gmail.com> -
3.5.25.3-1
- Update to version 3.5.25.3
- Add BuildRequires for inkscape
* Wed Jul 18 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 3.5.24-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1043821 - CVE-2012-6535 djvulibre: DoS or arbitrary code execution
via specially crafted DjVu file
https://bugzilla.redhat.com/show_bug.cgi?id=1043821
--------------------------------------------------------------------------------
================================================================================
glite-lbjp-common-server-bones-2.3.9-1.el6 (FEDORA-EPEL-2013-12408)
Skeleton of multi-process network server
--------------------------------------------------------------------------------
Update Information:
The multi-process network server. A server listening on multiple ports, passing
inbound requests to slaves and maintaining connections to specific slaves if
possible. The library provides callback handles on connection initialization,
incoming request, etc.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1003322 - Review Request: glite-lbjp-common-server-bones -
Skeleton of multi-process network server
https://bugzilla.redhat.com/show_bug.cgi?id=1003322
--------------------------------------------------------------------------------
================================================================================
kobo-0.4.2-1.el6 (FEDORA-EPEL-2013-12409)
Python modules for tools development
--------------------------------------------------------------------------------
Update Information:
Bump to 0.4.2
Bump version to 0.4.1.
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
New upstream release
Bump version to 0.4.1.
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
New upstream release
Bump version to 0.4.1.
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
New upstream release
Bump version to 0.4.1.
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Daniel Mach <dm...@redhat.com> - 0.4.2-1
- Revamp make_nvr() and make_nvra(), make them public (add to __all__), add
tests. (Daniel Mach)
- Fix: display subtasks in task's detail view (Tomas Tomecek)
- Fix JSONField (load and dump) (Tomas Tomecek)
- Fix CSRF exemption in XML-RPC handler factory (Tomas Tomecek)
- View simplifications (Tomas Kopecek)
- Translate everything in templates (Tomas Kopecek)
- Additional fields visible in admin, searching/filtering (Tomas Kopecek)
- Use more proper class-based style for generic forms (Tomas Kopecek)
- Refactored generic views. (Tomas Kopecek)
- Fix rtf content type test for py2.4. (Daniel Mach)
- Add FileCache.items() to export items() and also fix py3. (Daniel Mach)
- Remove slots from most places. (Daniel Mach)
- Improve shortcuts.parse_checksum_line() to support escaped checksum lines.
(Daniel Mach)
- Add 'executable' argument to shortcuts.run(). (Daniel Mach)
* Mon Oct 14 2013 Daniel Mach <dm...@redhat.com> - 0.4.1-1
- Return 'nosrc' arch when RPMTAG_NOPATCH RPM header is set. (Daniel Mach)
- Fix 'ImproperlyConfigured: The SECRET_KEY setting must not be empty.'
exception in test_types.py. (Daniel Mach)
- Fix setup script to install additional package data. (Daniel Mach)
- Fix reading RPMTAG_NOSOURCE and RPMTAG_NOPATCH headers from 'nosrc' RPMs.
(Daniel Mach)
* Mon Jul 29 2013 Daniel Mach <dm...@redhat.com> - 0.4.0-2
- Drop admin subpackage on rhel <= 5
- Drop admin, django and hub subpackages on epel 6
* Thu Jul 25 2013 Daniel Mach <dm...@redhat.com> - 0.4.0-1
- Drop django and hub subpackages on rhel <= 5
- Set filename to be real name of a downloaded file. (Tomas Tomecek)
- Fix logwatcher to scroll to latest logs. (Tomas Tomecek)
- Remove obsolete function kobo.django.views.generic._object_list(). (Tomas
Kopecek)
- Updated README for 0.4.0 release (Tomas Kopecek)
- Revamp setup.py and related files. (Daniel Mach)
- LongnameUser table has auth_user db table name for easier upgrade. (Tomas
Kopecek)
- Add checksum_type to SimpleRpmWrapper. (Tomas Kopecek)
- Add kobo.threads.run_in_threads() helper. (Tomas Kopecek)
- Django 1.5 rebase. (Tomas Kopecek)
- Remove unnecessary slots from pkgset.FileCache. (Daniel Mach)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #997735 - Error in packaging default.conf
https://bugzilla.redhat.com/show_bug.cgi?id=997735
[ 2 ] Bug #990016 - "make bkradd" is failing as kobo-client does not provide
default.conf
https://bugzilla.redhat.com/show_bug.cgi?id=990016
--------------------------------------------------------------------------------
================================================================================
mozilla-https-everywhere-3.4.3-1.el6 (FEDORA-EPEL-2013-12402)
HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey
--------------------------------------------------------------------------------
Update Information:
* Fixes: Cloudfront / Amazon MP3 player, Cornell/Arxiv, FlickR,
AmazonAWS/spiegel.tv
* Disable broken: Barns and Noble, Behance, Boards.ie, Elsevier, Kohls,
OpenDNS, Spin.de, Svenskakyrkan
* Deprecate the ContentPolicy API, fixing a crash bug
lurking since Firefox 20:
https://bugzilla.mozilla.org/show_bug.cgi?id=939180
* Fix really silly Observatory UI bug that would leave the Observatory off
for non-Tor users after they turned it on
* Update Observatory blacklist
* Bump maxVersion from Firefox 25 to 28.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Russell Golden <niveusl...@niveusluna.org> - 3.4.3-1
- Fixes: Cloudfront / Amazon MP3 player, Cornell/Arxiv, FlickR,
-- AmazonAWS/spiegel.tv
- Disable broken: Barns and Noble, Behance, Boards.ie, Elsevier, Kohls,
-- OpenDNS, Spin.de, Svenskakyrkan
- Deprecate the ContentPolicy API, fixing a crash bug
-- lurking since Firefox 20:
-- https://bugzilla.mozilla.org/show_bug.cgi?id=939180
- Fix really silly Observatory UI bug that would leave the Observatory off
-- for non-Tor users after they turned it on
- Update Observatory blacklist
- Bump maxVersion from Firefox 25 to 28.
--------------------------------------------------------------------------------
================================================================================
mysql-connector-python-1.1.4-1.el6 (FEDORA-EPEL-2013-12411)
MySQL Connector for Python 2
--------------------------------------------------------------------------------
Update Information:
MySQL Connector/Python 1.1.4 is a new version of the pure Python database
driver for MySQL. This is the first GA (General Availability) version of
Connector/Python 1.1.
MySQL Connector/Python version 1.1 is compatible with MySQL Server versions 5.5
and greater, but should work with earlier versions greater than 4.1. Python 2.6
and greater as well as Python 3.1 and greater are supported. Python 2.4 and 2.5
are not supported.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Remi Collet <r...@fedoraproject.org> - 1.1.4-1
- version 1.1.4 GA
http://dev.mysql.com/doc/relnotes/connector-python/en/news-1-1.html
- add link to documentation in package description
- raise dependency on python 2.6
--------------------------------------------------------------------------------
================================================================================
pdns-3.3.1-1.el6 (FEDORA-EPEL-2013-12407)
A modern, advanced and high performance authoritative-only nameserver
--------------------------------------------------------------------------------
Update Information:
- Update to latest upstream release 3.3.1
- Some more DNSSEC improvements
- Several bugs fixed since 3.1
- Add extra tools package for pdns
- Add Remote backend
- Add LUA backend
- Enable remotebackend-http
- Add extra tools package for pdns
- Add polarssl-devel as build dependency
- Fix bogus date in changelog
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Morten Stevens <mstev...@imt-systems.com> - 3.3.1-1
- Update to latest upstream release 3.3.1
- Some more DNSSEC improvements
- Several bugs fixed since 3.1
- Add extra tools package for pdns
- Add Remote backend
- Add LUA backend
- Enable remotebackend-http
- Add extra tools package for pdns
- Add polarssl-devel as build dependency
- Fix bogus date in changelog
--------------------------------------------------------------------------------
================================================================================
python-arrow-0.4.2-2.el6 (FEDORA-EPEL-2013-12399)
Better dates and times for Python
--------------------------------------------------------------------------------
Update Information:
Add requires to python-dateutil and python-six
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Pierre-Yves Chibon <pin...@pingoured.fr> - 0.4.2-1
- Add python-six and python-dateutil as Requires
--------------------------------------------------------------------------------
================================================================================
python-tahrir-0.5.0-1.el6 (FEDORA-EPEL-2013-12410)
A pyramid app for issuing your own Open Badges
--------------------------------------------------------------------------------
Update Information:
Authorization, delegation, and prettified invitations.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Ralph Bean <rb...@redhat.com> - 0.5.0-1
- Latest upstream with authz delegation.
- FOAF metadata included via RDFa.
- UTC timezone used everywhere.
- Enhanced view for invitations.
--------------------------------------------------------------------------------
================================================================================
python-tahrir-api-0.5.0-4.el6 (FEDORA-EPEL-2013-12398)
An API for interacting with the Tahrir database
--------------------------------------------------------------------------------
Update Information:
New authorization table and invitation manipulation.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Ralph Bean <rb...@redhat.com> - 0.5.0-4
- Convert awk to sed to fight weirdness.
* Tue Dec 17 2013 Ralph Bean <rb...@redhat.com> - 0.5.0-3
- Adjust setuptools line in prep section.
* Tue Dec 17 2013 Ralph Bean <rb...@redhat.com> - 0.5.0-2
- Add temporary requires to get around broken python-arrow.
* Tue Dec 17 2013 Ralph Bean <rb...@redhat.com> - 0.5.0-1
- Latest upstream with new authorization table.
- Use UTC time everywhere.
- New invitation manipulation API methods.
- New dep on python-arrow
--------------------------------------------------------------------------------
================================================================================
qpid-proton-0.5-2.el6 (FEDORA-EPEL-2013-12400)
A high performance, lightweight messaging library
--------------------------------------------------------------------------------
Update Information:
Rebased on Proton 0.5.
Fixed the Obsoletes and Provides for subpackages.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 6 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.5-2
- Made python-qpid-proton-doc a noarch package.
- Resolves: BZ#1005058
* Wed Aug 28 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.5-1
- Rebased on Proton 0.5.
- Resolves: BZ#1000620
* Mon Aug 26 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.4-5
- Created the qpid-proton-c-devel-doc subpackage.
- Resolves: BZ#1000615
* Sun Aug 4 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.4-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 24 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.4-3
- Provide examples for qpid-proton-c
- Resolves: BZ#975723
* Thu Apr 4 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.4-2.2
- Added Obsoletes and Provides for packages whose names changed.
- Resolves: BZ#948784
* Mon Apr 1 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.4-2.1
- Fixed the dependencies for qpid-proton-devel and python-qpid-proton.
* Thu Mar 28 2013 Darryl L. Pierce <dpie...@redhat.com> - 0.4-2
- Moved all C libraries to the new qpid-proton-c subpackage.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #948784 - The packages for qpid-proton-c 0.4-2.1 do not properly
obsolete and provide the previous qpid-proton packages they've replaced.
https://bugzilla.redhat.com/show_bug.cgi?id=948784
--------------------------------------------------------------------------------
================================================================================
stompclt-1.0-1.el6 (FEDORA-EPEL-2013-12404)
Versatile STOMP client
--------------------------------------------------------------------------------
Update Information:
Update to upstream version, rhbz #1043784.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 17 2013 Massimo Paladin <massimo.pala...@gmail.com> 1.0-1
- Update to upstream, rhbz #1043784.
* Sun Aug 4 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.9-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 17 2013 Petr Pisar <ppi...@redhat.com> - 0.9-2
- Perl 5.18 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1043784 - Upgrade to new upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=1043784
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list
epel-devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/epel-devel
