The following Fedora EPEL 5 Security updates need testing: Age URL 629 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 143 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11276/ssmtp-2.61-21.el5 119 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11560/fail2ban-0.8.10-4.el5 83 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11893/libguestfs-1.20.12-1.el5 58 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12091/bip-0.8.9-1.el5 48 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12159/389-ds-base-1.2.11.25-1.el5 48 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-12169/gc-7.1-6.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0132/graphviz-2.12-10.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0112/drupal7-entity-1.3-1.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing cmake-fedora-1.2.3-1.el5 drupal7-cck-3.0-0.1.alpha3.el5 drupal7-crumbs-2.0-0.6.beta13.el5 drupal7-date-2.7-1.el5 gfal2-2.4.8-1.el5 graphviz-2.12-10.el5 Details about builds: ================================================================================ cmake-fedora-1.2.3-1.el5 (FEDORA-EPEL-2014-0129) CMake helper modules for fedora developers -------------------------------------------------------------------------------- Update Information: - Resolves Bug 1040333 - RFE: Suiport .gitignore file as source of CPACK_SOURCE_IGNORE_FILES - Resolves Bug 1046213 - RFE: RPM ChangeLog should be generated by newest build from koji - Enhancement: + ChangeLog.prev is no longer required. + RPM-ChangeLog.prev is provide by koji now. + cmake-fedora-koji: - new subcommand: newest-build and newest-changelog. + cmake-fedora-changelog: new script. + New targets: - tag_push: Push to git. + ManageFile: - Add absolute file support - MANAGE_FILE_INSTALL: Add TARGETS support. - MANAGE_FILE_INSTALL: Add RENAME support. - GIT_GLOB_TO_CMAKE_REGEX: Convert git glob to cmake regex + ManageArchive: - PACK_SOURCE_CPACK: Pack with CPack - PACK_SOURCE_ARCHIVE: Now can specify OUTPUT_FILE. - SOURCE_ARCHIVE_CONTENTS_ADD: Add file to source archive. - SOURCE_ARCHIVE_CONTENTS_ADD_NO_CHECK: Add file to source archive without checking. + ManageDependency: Manage dependencies. + ManageRPM: - PACK_RPM: New options: SPEC_IN and SPEC. - RPM_SPEC_STRING_ADD: Add a string to SPEC string. - RPM_SPEC_STRING_ADD_DIRECTIVE: Add a directive to SPEC string. - RPM_SPEC_STRING_ADD_TAG: Add a string to SPEC string. + ManageString: - STRING_APPEND: Append a string to a variable. - STRING_PADDING: Padding the string to specified length - STRING_PREPEND: Prepend a string to a variable. + ManageTranslation: - MANAGE_GETTEXT: + Can specify MSGFMT_OPTIONS and MSGMERGE_OPTIONS + Add gettext-devel to BUILD_REQUIRES. + ManageVariable: - VARIABLE_TO_ARGN: Merge the variable and options to the form of ARGN. + Cached variables: - RPM_SPEC_CMAKE_FLAG: cmake flags in rpm build. - RPM_SPEC_MAKE_FLAG: make flags in rpm build. - Changed Modules: + ManageArchive: - PACK_SOURCE_ARCHIVE: Can now pass either empty, outputDir, or source File. + ManageGConf2: Fixed. + ManageString: STRING_SPLIT: New Option: ALLOW_EMPTY + ManageRPM - Add support of pre, post, and preun + ManageVariable: - VARIABLE_PARSE_ARGN can now handle multiple-appeared options. - Changed: + CMake policy no longer enforced by default. + ManageString: STRING_SPLIT is changed from macro to function, so no need to put excessive backslashes. - Removed: + Target after_release_commit and related are no longer required and thus removed. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 9 2014 Ding-Yi Chen <dchen at redhat.com> - 1.2.3-1 - Resolves Bug 1040333 - RFE: Suiport .gitignore file as source of CPACK_SOURCE_IGNORE_FILES - Resolves Bug 1046213 - RFE: RPM ChangeLog should be generated by newest build from koji - Enhancement: + ChangeLog.prev is no longer required. + RPM-ChangeLog.prev is provide by koji now. + cmake-fedora-koji: - new subcommand: newest-build and newest-changelog. + cmake-fedora-changelog: new script. + New targets: - tag_push: Push to git. + ManageFile: - Add absolute file support - MANAGE_FILE_INSTALL: Add TARGETS support. - MANAGE_FILE_INSTALL: Add RENAME support. - GIT_GLOB_TO_CMAKE_REGEX: Convert git glob to cmake regex + ManageArchive: - PACK_SOURCE_CPACK: Pack with CPack - PACK_SOURCE_ARCHIVE: Now can specify OUTPUT_FILE. - SOURCE_ARCHIVE_CONTENTS_ADD: Add file to source archive. - SOURCE_ARCHIVE_CONTENTS_ADD_NO_CHECK: Add file to source archive without checking. + ManageDependency: Manage dependencies. + ManageRPM: - PACK_RPM: New options: SPEC_IN and SPEC. - RPM_SPEC_STRING_ADD: Add a string to SPEC string. - RPM_SPEC_STRING_ADD_DIRECTIVE: Add a directive to SPEC string. - RPM_SPEC_STRING_ADD_TAG: Add a string to SPEC string. + ManageString: - STRING_APPEND: Append a string to a variable. - STRING_PADDING: Padding the string to specified length - STRING_PREPEND: Prepend a string to a variable. + ManageTranslation: - MANAGE_GETTEXT: + Can specify MSGFMT_OPTIONS and MSGMERGE_OPTIONS + Add gettext-devel to BUILD_REQUIRES. + ManageVariable: - VARIABLE_TO_ARGN: Merge the variable and options to the form of ARGN. + Cached variables: - RPM_SPEC_CMAKE_FLAG: cmake flags in rpm build. - RPM_SPEC_MAKE_FLAG: make flags in rpm build. - Changed Modules: + ManageArchive: - PACK_SOURCE_ARCHIVE: Can now pass either empty, outputDir, or source File. + ManageGConf2: Fixed. + ManageString: STRING_SPLIT: New Option: ALLOW_EMPTY + ManageRPM - Add support of pre, post, and preun + ManageVariable: - VARIABLE_PARSE_ARGN can now handle multiple-appeared options. - Changed: + CMake policy no longer enforced by default. + ManageString: STRING_SPLIT is changed from macro to function, so no need to put excessive backslashes. - Removed: + Target after_release_commit and related are no longer required and thus removed. -------------------------------------------------------------------------------- ================================================================================ drupal7-cck-3.0-0.1.alpha3.el5 (FEDORA-EPEL-2014-0122) Miscellaneous field functions not handled by core -------------------------------------------------------------------------------- Update Information: Updated to 3.0-alpha3 Release notes: * 3.0-alpha3: https://drupal.org/node/2155617 * 3.0-alpha2: https://drupal.org/node/2154759 * 3.0-alpha1: https://drupal.org/node/2154721 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043059 - drupal7-cck-3.x-dev is available https://bugzilla.redhat.com/show_bug.cgi?id=1043059 -------------------------------------------------------------------------------- ================================================================================ drupal7-crumbs-2.0-0.6.beta13.el5 (FEDORA-EPEL-2014-0124) The ultimate breadcrumbs module -------------------------------------------------------------------------------- Update Information: - Update to upstream 2.0-beta13 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2167279 -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 10 2014 Peter Borsa <peter.bo...@gmail.com> 2.0-0.6.beta13 - Update to upstream 2.0-beta13 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2167279 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047189 - drupal7-crumbs-2.0-beta13 is available https://bugzilla.redhat.com/show_bug.cgi?id=1047189 -------------------------------------------------------------------------------- ================================================================================ drupal7-date-2.7-1.el5 (FEDORA-EPEL-2014-0118) This package contains both the Date module and a Date API module -------------------------------------------------------------------------------- Update Information: - Update to upstream 2.7 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2161141 -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 10 2014 Peter Borsa <peter.bo...@gmail.com> 2.7-1 - Update to upstream 2.7 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2161141 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1045893 - drupal7-date-2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1045893 -------------------------------------------------------------------------------- ================================================================================ gfal2-2.4.8-1.el5 (FEDORA-EPEL-2014-0120) Grid file access library 2.0 -------------------------------------------------------------------------------- Update Information: Update to release 2.4.8 of GFAL 2.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 5 2013 Alejandro Alvarez <aalvarez at cern.ch> - 2.4.8-1 - Release 2.4.8 of GFAL2 * Mon Dec 2 2013 Alejandro Alvarez <aalvarez at cern.ch> - 2.4.7-1 - Release 2.4.7 of GFAL2 * Thu Nov 7 2013 Alejandro Alvarez <aalvarez at cern.ch> - 2.4.6-1 - Release 2.4.6 of GFAL 2 * Wed Oct 23 2013 Alejandro Alvarez <aalvarez at cern.ch> - 2.4.5-3 - Release 2.4.5 of GFAL 2 -------------------------------------------------------------------------------- ================================================================================ graphviz-2.12-10.el5 (FEDORA-EPEL-2014-0132) Graph Visualization Tools -------------------------------------------------------------------------------- Update Information: This is an update that fixes CVE-2014-1235 and CVE-2014-1236. This is an update that fixes overflow in yyerror. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1050871 - CVE-2014-1235 graphviz: buffer overflow in yyerror() due to improper fix for CVE-2014-0978 https://bugzilla.redhat.com/show_bug.cgi?id=1050871 [ 2 ] Bug #1050872 - CVE-2014-1236 graphviz: buffer overflow vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=1050872 [ 3 ] Bug #1049165 - CVE-2014-0978 graphviz: stack-based buffer overflow in yyerror() https://bugzilla.redhat.com/show_bug.cgi?id=1049165 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list epel-devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/epel-devel