The following Fedora EPEL 5 Security updates need testing: Age URL 887 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 341 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11893/libguestfs-1.20.12-1.el5 106 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1626/puppet-2.7.26-1.el5 49 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2150/drupal7-7.31-1.el5 19 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2424/389-ds-base-1.2.11.32-1.el5 14 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2558/qmmp-0.2.3-3.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2669/check-mk-1.2.4p5-1.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2694/TeXmacs-1.0.7.2-3.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2686/putty-0.63-3.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2728/phpMyAdmin4-4.0.10.3-2.el5 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2853/mediawiki119-1.19.18-1.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-2895/libvncserver-0.9.10-0.6.20140718git9453be42.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing dkms-2.2.0.3-29.el5 dmlite-0.7.0-2.el5 drupal7-crumbs-2.1-1.el5 drupal7-metatag-1.1-1.el5 erfa-1.1.1-1.el5.1 lcgdm-dav-0.15.0-1.el5 libvncserver-0.9.10-0.6.20140718git9453be42.el5 php-pear-Net-Sieve-1.3.3-1.el5 Details about builds: ================================================================================ dkms-2.2.0.3-29.el5 (FEDORA-EPEL-2014-2900) Dynamic Kernel Module Support Framework -------------------------------------------------------------------------------- Update Information: Revert all latest ZFS patches enabling dependency logic as they are not compatible with the old RHEL 5 bash. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 23 2014 Simone Caronni <negativ...@gmail.com> - 2.2.0.3-29 - Do not use latest upstream sources for RHEL 5. * Tue Sep 23 2014 Simone Caronni <negativ...@gmail.com> - 2.2.0.3-28.git.7c3e7c5 - Update to latest git, all patches merged upstream. * Tue Sep 23 2014 Simone Caronni <negativ...@gmail.com> - 2.2.0.3-27.git.2238e7b - Update to latest git, 99% of the patches merged upstream. - Simplify SPEC file. - Fix inter-module dependencies (#1140812). Thanks Bruno Faccini. * Mon Sep 8 2014 Simone Caronni <negativ...@gmail.com> - 2.2.0.3-26 - Further syntax fix (#1139006). Thanks Goffredo Baroncelli. -------------------------------------------------------------------------------- ================================================================================ dmlite-0.7.0-2.el5 (FEDORA-EPEL-2014-2890) Lcgdm grid data management and storage framework -------------------------------------------------------------------------------- Update Information: Push on Fedora/EPEL for 0.7.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 25 2014 Adrien Devresse <adevress at cern.ch> - 0.7.0-2 - Push on Fedora/EPEL for 0.7.0 - Fix ppc EPEL5 compilation issue * Sat Aug 16 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.6.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.6.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 23 2014 Petr Machata <pmach...@redhat.com> - 0.6.2-3 - Rebuild for boost 1.55.0 -------------------------------------------------------------------------------- ================================================================================ drupal7-crumbs-2.1-1.el5 (FEDORA-EPEL-2014-2891) The ultimate breadcrumbs module -------------------------------------------------------------------------------- Update Information: ## [7.x-2.1](https://www.drupal.org/node/2337145) * Fix #2337069: Failure due to __DIR__ being undefined (again) ## [7.x-2.0](https://www.drupal.org/node/2336409) * Stable release created from 7.x-2.0-beta20 ## [7.x-2.0-beta20](https://www.drupal.org/node/2335759) * New debug tool on admin/structure/crumbs/debug/devel -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 24 2014 Shawn Iwinski <shawn.iwin...@gmail.com> - 2.1-1 - Updated to 2.1 (BZ #1140107) - %license usage -------------------------------------------------------------------------------- References: [ 1 ] Bug #1140107 - drupal7-crumbs-2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1140107 -------------------------------------------------------------------------------- ================================================================================ drupal7-metatag-1.1-1.el5 (FEDORA-EPEL-2014-2892) Adds support and an API to implement meta tags -------------------------------------------------------------------------------- Update Information: ## [7.x-1.1](https://www.drupal.org/node/2341013) * This resolves two major bugs in 1.0 and puts the G+ Author tag back again. * 2340639 by agoradesign: Additional check needed in hook_requirements to avoid breaking installation profiles. * 2340337 by DamienMcKenna: Config system updated for the new language-based data handling. * 2330823 by DamienMcKenna: REVERT: Remove the deprecated G+ Author meta tag. ## [7.x-1.0](https://www.drupal.org/node/2340229) * 2319389 by DamienMcKenna: Additional Open Graph meta tags, for videos. * 2169575 by gvorbeck: Workbench Moderation v2 doesn't need any hackery, so removed the message in hook_requirements(). * 2140189 by ttkaminski, DamienMcKenna: Added an index to {metatag} table for the 'type' and 'revision_id' fields. * 1391554 by DamienMcKenna: Handle scenarios where the legacy "metatags" module had been installed. * 2325459 by DamienMcKenna: Used JSHint to correct some minor JS bugs. * 2326197 by Dave Reid: metatag_generate_entity_metatags() cache can be bypassed. * By DamienMcKenna: Updated the og:image size guidelines. * By DamienMcKenna: Remove the redundant metatag_taxonomy_term_view_alter(). * By DamienMcKenna: Support Twitter Cards fieldset in Metatag:Context. * 1778286 by alberto56: Removed the deprecated metatag_ui module. * 2331677 by othermachines: Updates 7025 and 7027 attempted to update the wrong tables. * 2330823 by othermachines: Remove the deprecated G+ Author meta tag. * 2186155 by DamienMcKenna, grahamC, JeroenT: Resolved problems when saving an entity directly rather than via entity form. * By DamienMcKenna: Corrected the namespace prefix for OG video meta tags. * 2186155 by DamienMcKenna: Follow-up to fix a number of scenarios. -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 24 2014 Shawn Iwinski <shawn.iwin...@gmail.com> - 1.1-1 - Updated to 1.1 (BZ #1144307; release notes https://www.drupal.org/node/2341013) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1144307 - drupal7-metatag-1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1144307 -------------------------------------------------------------------------------- ================================================================================ erfa-1.1.1-1.el5.1 (FEDORA-EPEL-2014-2898) Essential Routines for Fundamental Astronomy -------------------------------------------------------------------------------- Update Information: Bugfix release, see https://github.com/liberfa/erfa for details -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 25 2014 Sergio Pascual <sergiopr at fedoraproject.org> - 1.1.1-1.1 - Minor bump to add the upstream tarball * Thu Sep 25 2014 Sergio Pascual <sergiopr at fedoraproject.org> - 1.1.1-1 - New upstream version (1.1.1) -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.15.0-1.el5 (FEDORA-EPEL-2014-2877) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 26 2014 Alejandro Alvarez Ayllon <aalva...@cern.ch> - 0.15.0-1 - New upstream release * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.14.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Jul 25 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 0.14.1-6 - Patch for building against json-c-0.12-2 * Fri Jul 25 2014 Adrien Devresse <adevress at cern.ch> - 0.14.1-5 - Rebuilt for libjson update * Mon Jul 14 2014 Alejandro Alvarez Ayllon <aalva...@cern.ch> - 0.14.1-3 - Rebuilt for gsoap 2.8.17 * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.14.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libvncserver-0.9.10-0.6.20140718git9453be42.el5 (FEDORA-EPEL-2014-2895) Library to make writing a vnc server easy -------------------------------------------------------------------------------- Update Information: Various security fixes, including CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1144287 - CVE-2014-6051 libvncserver: integer overflow flaw, leading to a heap-based buffer overflow in screen size handling https://bugzilla.redhat.com/show_bug.cgi?id=1144287 [ 2 ] Bug #1144288 - CVE-2014-6052 libvncserver: NULL pointer dereference flaw in framebuffer setup https://bugzilla.redhat.com/show_bug.cgi?id=1144288 [ 3 ] Bug #1144289 - CVE-2014-6053 CVE-2010-5304 vnc and libvncserver: server NULL pointer dereference flaw in ClientCutText message handling https://bugzilla.redhat.com/show_bug.cgi?id=1144289 [ 4 ] Bug #1144291 - CVE-2014-6054 libvncserver: server divide-by-zero flaw in scaling factor handling https://bugzilla.redhat.com/show_bug.cgi?id=1144291 [ 5 ] Bug #1144293 - CVE-2014-6055 libvncserver: server stacked-based buffer overflow flaws in file transfer handling https://bugzilla.redhat.com/show_bug.cgi?id=1144293 -------------------------------------------------------------------------------- ================================================================================ php-pear-Net-Sieve-1.3.3-1.el5 (FEDORA-EPEL-2014-2872) Handles talking to a sieve server -------------------------------------------------------------------------------- Update Information: Upstream changelog: * Fix notices from non-static calling of PEAR methods. * Fix reading OK responses with string literal messages. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 26 2014 Remi Collet <r...@fedoraproject.org> - 1.3.3-1 - Version 1.3.3 (stable) - API 1.3.0 (stable) -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list epel-devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/epel-devel