[EPEL-devel] Fedora EPEL 7 updates-testing report

[updates]

The following Fedora EPEL 7 Security updates need testing:
 Age  URL
 169  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3989/cross-binutils-2.23.88.0.1-2.el7.1
  53  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1087/dokuwiki-0-0.24.20140929c.el7
  53  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0952/qpid-qmf-0.28-27.el7,qpid-cpp-0.30-12.el7
  36  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1421/quassel-0.11.0-2.el7
  30  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1545/strongswan-5.3.0-1.el7
  14  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5832/mingw-gnutls-3.3.14-1.el7,mingw-libtasn1-4.4-1.el7,mingw-p11-kit-0.20.7-1.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5973/mingw-libtiff-4.0.3-6.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6006/dpkg-1.16.16-5.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5991/mingw-libgcrypt-1.6.3-1.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5995/mingw-qt-4.8.6-8.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5960/testdisk-7.0-3.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5987/mingw-openssl-1.0.2a-1.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5994/mingw-qt5-qtbase-5.4.1-2.el7
   5  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5971/mingw-curl-7.42.0-1.el7
   3  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6030/proftpd-1.3.5-5.el7
   3  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5937/wordpress-4.2.1-1.el7
   1  
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6078/clamav-0.98.7-1.el7


The following builds have been pushed to Fedora EPEL 7 updates-testing

    R-3.2.0-1.el7
    fail2ban-0.9.2-1.el7
    fedfind-1.1.5-1.el7
    fetch-crl-3.0.16-1.el7
    iscan-firmware-20130319-1.el7
    libcec-2.2.0-1.el7
    mash-0.6.15-1.el7
    mozilla-requestpolicy-1.0-0.4.20150430gitf4e92d.el7
    perl-MIME-Base32-1.02a-13.el7
    python-cached_property-1.2.0-1.el7

Details about builds:


================================================================================
 R-3.2.0-1.el7 (FEDORA-EPEL-2015-6096)
 A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:

Update to R 3.2.0, rebuild rpy and rkward to reflect the change.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Apr 26 2015 Tom Callaway <s...@fedoraproject.org> - 3.2.0-1
- update to 3.2.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1212462 - R-3.2.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1212462
--------------------------------------------------------------------------------


================================================================================
 fail2ban-0.9.2-1.el7 (FEDORA-EPEL-2015-6094)
 Daemon to ban hosts that cause multiple authentication errors
--------------------------------------------------------------------------------
Update Information:

ver. 0.9.2 (2015/04/29) - better-quick-now-than-later
----------

- Fixes:
   * Fix ufw action commands
   * infinite busy loop on _escapedTags match in substituteRecursiveTags 
gh-907. Thanks TonyThompson
   * port[s] typo in jail.conf/nginx-http-auth gh-913. Thanks Frederik Wagner 
(fnerdwq)
   * $ typo in jail.conf. Thanks Skibbi. Debian bug #767255
   * grep'ing for IP in *mail-whois-lines.conf should now match also at the 
beginning and EOL.  Thanks Dean Lee
   * jail.conf
     - php-url-fopen: separate logpath entries by newline
   * failregex declared direct in jail was joined to single line (specifying of 
multiple expressions was not possible).
   * filters.d/exim.conf - cover different settings of exim logs
     details. Thanks bes.internal
   * filter.d/postfix-sasl.conf - failregex is now case insensitive
   * filters.d/postfix.conf - add 'Client host rejected error message' failregex
   * fail2ban/__init__.py - add strptime thread safety hack-around
   * recidive uses iptables-allports banaction by default now.
     Avoids problems with iptables versions not understanding 'all' for 
protocols and ports
   * filter.d/dovecot.conf
     - match pam_authenticate line from EL7
     - match unknown user line from EL7
   * Use use_poll=True for Python 2.7 and >=3.4 to overcome "Bad file
     descriptor" msgs issue (gh-161)
   * filter.d/postfix-sasl.conf - tweak failregex and add ignoreregex to ignore 
system authentication issues
   * fail2ban-regex reads filter file(s) completely, incl. '.local' file etc. 
(gh-954)
   * firewallcmd-* actions: split output into separate lines for grepping 
(gh-908)
   * Guard unicode encode/decode issues while storing records in the database.
     Fixes "binding parameter error (unsupported type)" (gh-973), thanks to kot 
for reporting
   * filter.d/sshd added regex for matching openSUSE ssh authentication failure
   * filter.d/asterisk.conf:
     - Dropped "Sending fake auth rejection" failregex since it incorrectly 
targets the asterisk server itself
     - match "hacking attempt detected" logs

- New Features:
   - New filters:
     - postfix-rbl  Thanks Lee Clemens
     - apache-fakegooglebot.conf  Thanks Lee Clemens
     - nginx-botsearch  Thanks Frantisek Sumsal
     - drupal-auth  Thanks Lee Clemens
   - New recursive embedded substitution feature added:
     - `<<PREF>HOST>` becomes `<IPV4HOST>` for PREF=`IPV4`;
     - `<<PREF>HOST>` becomes `1.2.3.4` for PREF=`IPV4` and IPV4HOST=`1.2.3.4`;
   - New interpolation feature for config readers - `%(known/parameter)s`. 
(means last known option with name `parameter`). This interpolation makes 
possible to extend a stock filter or jail regexp in .local file (opposite to 
simply set failregex/ignoreregex that overwrites it), see gh-867.
   - Monit config for fail2ban in files/monit/
   - New actions:
     - action.d/firewallcmd-multiport and action.d/firewallcmd-allports Thanks 
Donald Yandt
     - action.d/sendmail-geoip-lines.conf
     - action.d/nsupdate to update DNSBL. Thanks Andrew St. Jean
   - New status argument for fail2ban-client -- flavor:
     fail2ban-client status <jail> [flavor]
     - empty or "basic" works as-is
     - "cymru" additionally prints (ASN, Country RIR) per banned IP (requires 
dnspython or dnspython3)
   - Flush log at USR1 signal

- Enhancements:
   * Enable multiport for firewallcmd-new action.  Closes gh-834
   * files/debian-initd migrated from the debian branch and should be suitable 
for manual installations now (thanks Juan Karlo de Guzman)
   * Define empty ignoreregex in filters which didn't have it to avoid warnings 
(gh-934)
   * action.d/{sendmail-*,xarf-login-attack}.conf - report local
     timezone not UTC time/zone. Closes gh-911
   * Conditionally log Ignore IP with reason (dns, ip, command). Closes gh-916
   * Absorbed DNSUtils.cidr into addr2bin in filter.py, added unittests
   * Added syslogsocket configuration to fail2ban.conf
   * Note in the jail.conf for the recidive jail to increase dbpurgeage (gh-964)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 30 2015 Orion Poplawski <or...@cora.nwra.com> - 0.9.2-1
- Update to 0.9.2
--------------------------------------------------------------------------------


================================================================================
 fedfind-1.1.5-1.el7 (FEDORA-EPEL-2015-5963)
 Fedora Finder finds Fedora
--------------------------------------------------------------------------------
Update Information:

This update introduces fedfind to the official Fedora repositories. fedfind is 
a tool for finding Fedora images. See https://www.happyassassin.net/fedfind
--------------------------------------------------------------------------------


================================================================================
 fetch-crl-3.0.16-1.el7 (FEDORA-EPEL-2015-6093)
 Downloads Certificate Revocation Lists
--------------------------------------------------------------------------------
Update Information:

Changes in 3.0.16-1
----------------------
* Added cache state freshness constraints (default maxcachetime set to 96hrs)
* Re-set cache expiry of state data if CRL nextUpdate is within or beyond 7 hrs 
(config "expirestolerance") claimed URL Expiry or Cache-control max-age

Changes in 3.0.15-1
----------------------
* Fixed issues resulting in undefined attribute values to be returned for CRL


https://dist.eugridpma.info/distribution/util/fetch-crl/CHANGES


--------------------------------------------------------------------------------
ChangeLog:

* Fri May  1 2015 Steve Traylen <steve.tra...@cern.ch> - 3.0.16-1
- New version 3.0.16.
--------------------------------------------------------------------------------


================================================================================
 iscan-firmware-20130319-1.el7 (FEDORA-EPEL-2015-6099)
 Firmware for Epson flatbed scanners
--------------------------------------------------------------------------------
Update Information:

Add Epson Perfection V550 Photo firmware.
--------------------------------------------------------------------------------
ChangeLog:

* Fri May  1 2015 Simone Caronni <negativ...@gmail.com> - 20130319-1
- Add Perfection V550 firmware (#1212545).
- Add license macro.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1212545 - Enhancement - add support for Perfection V550 scanner 
firmware
        https://bugzilla.redhat.com/show_bug.cgi?id=1212545
--------------------------------------------------------------------------------


================================================================================
 libcec-2.2.0-1.el7 (FEDORA-EPEL-2015-6098)
 Library and utilities for HDMI-CEC device control
--------------------------------------------------------------------------------
Update Information:

Update to 2.2.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1184147 - EPEL7 package request - libcec
        https://bugzilla.redhat.com/show_bug.cgi?id=1184147
--------------------------------------------------------------------------------


================================================================================
 mash-0.6.15-1.el7 (FEDORA-EPEL-2015-6084)
 Koji buildsystem to yum repository converter
--------------------------------------------------------------------------------
Update Information:

blacklist php and httpd from being multilib rhbz#1217168 (dennis)
Make blacklist/whitelist into config values. based on patch from Ralph Bean in 
rhbz#1082832 (dennis)
Pass the config object into the multilib method objects. (rbean)
Add configs for stg. (rbean)
update the mash configs for rawhide (dennis)
--------------------------------------------------------------------------------
ChangeLog:

* Fri May  1 2015 Dennis Gilmore <den...@ausil.us> - 0.6.15-1
- Save a reference to the config. (rbean)
- add script for making changelogs from git for rpm (dennis)
* Wed Apr 29 2015 Dennis Gilmore <den...@ausil.us> - 0.6.14-1
- blacklist php and httpd from being multilib rhbz#1217168 (dennis)
- Make blacklist/whitelist into config values. based on patch from Ralph Bean
  in rhbz#1082832 (dennis)
- Pass the config object into the multilib method objects. (rbean)
- Add configs for stg. (rbean)
- update the mash configs for rawhide (dennis)
* Tue Feb 10 2015 Dennis Gilmore <den...@ausil.us> - 0.6.13-2
- add patch moving rawhide to f23
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1217168 - httpd and php should not be multilib
        https://bugzilla.redhat.com/show_bug.cgi?id=1217168
  [ 2 ] Bug #1082832 - RFE: make whitelist and blacklist config options instead 
of hard coded
        https://bugzilla.redhat.com/show_bug.cgi?id=1082832
--------------------------------------------------------------------------------


================================================================================
 mozilla-requestpolicy-1.0-0.4.20150430gitf4e92d.el7 (FEDORA-EPEL-2015-6101)
 Firefox and Seamonkey extension that gives you control over cross-site requests
--------------------------------------------------------------------------------
Update Information:

- **Update to Beta9.1**
- **Changed upstream URL**
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 30 2015 Antonio Trande <sagitterATfedoraproject.org> - 
1.0-0.4.20150430gitf4e92d
- Update to Beta9.1
- Changed upstream URL
--------------------------------------------------------------------------------


================================================================================
 perl-MIME-Base32-1.02a-13.el7 (FEDORA-EPEL-2015-6107)
 Base32 encoder / decoder
--------------------------------------------------------------------------------
Update Information:

Initial build for EPEL7
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1205746 - Please branch perl-MIME-Base32 for EPEL7
        https://bugzilla.redhat.com/show_bug.cgi?id=1205746
--------------------------------------------------------------------------------


================================================================================
 python-cached_property-1.2.0-1.el7 (FEDORA-EPEL-2015-6104)
 A cached-property for decorating methods in Python classes
--------------------------------------------------------------------------------
Update Information:

This update provides the latest release of cached_property, with several 
improvements upstream. All changes should remain backward-compatible. See 
upstream changes here:

https://github.com/pydanny/cached-property/blob/1.2.0/HISTORY.rst
This update provides the latest upstream release, which is a minor update with 
no API changes.
This update provides the latest upstream release, which is a minor update with 
no API changes.
This update provides the latest upstream release, which is a minor update with 
no API changes.
This update provides the latest upstream release, which is a minor update with 
no API changes.
This update provides the latest upstream release, which is a minor update with 
no API changes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 29 2015 Adam Williamson <awill...@redhat.com> - 1.2.0-1
- new upstream release 1.2.0 (refactoring, bug fixes)
- patch out non-ASCII characters in HISTORY.rst (breaks py3 build in koji)
* Thu Apr 16 2015 Adam Williamson <awill...@redhat.com> - 1.1.0-1
- new upstream release 1.1.0 (insignificant changes)
--------------------------------------------------------------------------------

_______________________________________________
epel-devel mailing list
epel-devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/epel-devel