The following Fedora EPEL 6 Security updates need testing:
Age URL
761 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
755 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
645 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
617 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
227 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac
libbsd-0.8.3-2.el6
123 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f
tnef-1.4.14-1.el6
25 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e8124f23c8
heimdal-7.4.0-1.el6
15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-515cca9a02
GraphicsMagick-1.3.26-3.el6
15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-99fb0d61b0
chicken-4.12.0-3.el6
15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-ab5ed7f894
python-tablib-0.11.5-1.el6
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-70562ba4d2
python-django-ckeditor-5.3.0-1.el6
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f4a2132f26
seamonkey-2.48-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b1d8b4aed9
globus-ftp-client-8.36-1.el6 globus-ftp-control-7.8-1.el6
globus-gass-cache-program-6.7-1.el6 globus-gass-copy-9.27-1.el6
globus-gram-client-13.19-1.el6 globus-gram-job-manager-14.36-1.el6
globus-gram-job-manager-condor-2.6-5.el6 globus-gridftp-server-12.2-1.el6
globus-gridftp-server-control-5.1-1.el6 globus-gssapi-gsi-12.17-3.el6
globus-io-11.9-1.el6 globus-net-manager-0.17-1.el6 globus-xio-5.16-1.el6
globus-xio-gsi-driver-3.11-1.el6 globus-xio-pipe-driver-3.10-1.el6
globus-xio-udt-driver-1.28-1.el6 myproxy-6.1.28-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-72e0f4a914
php-horde-Horde-Core-2.30.0-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-2a557f0b9c
php-horde-Horde-Form-2.0.18-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3e60244bf3
php-horde-Horde-Url-2.2.6-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4340a6e0a8
php-horde-horde-5.2.16-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4654acd4ee
php-horde-kronolith-4.2.22-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-19c0b8ff89
php-horde-nag-4.2.15-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5b8e6e0279
php-horde-turba-4.2.20-1.el6
5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d015ef3016
gsoap-2.7.16-5.el6
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-87be2d4d20
potrace-1.15-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
fusioninventory-agent-2.3.21-1.el6
potrace-1.15-1.el6
qpdf-5.1.1-4.el6
Details about builds:
================================================================================
fusioninventory-agent-2.3.21-1.el6 (FEDORA-EPEL-2017-a10b4719f7)
FusionInventory agent
--------------------------------------------------------------------------------
Update Information:
Last upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1477175 - fusioninventory-agent-2.3.21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1477175
--------------------------------------------------------------------------------
================================================================================
potrace-1.15-1.el6 (FEDORA-EPEL-2017-87be2d4d20)
Transform bitmaps into vector graphics
--------------------------------------------------------------------------------
Update Information:
This release consists of bugfixes and minor portability improvements. Some
potential buffer overflows and arithmetic overflows were fixed, including
CVE-2017-12067. A bug triggered by very large bitmaps has been fixed.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1477104 - CVE-2017-12067 potrace: heap-based buffer over-read in
the interpolate_cubic function [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1477104
[ 2 ] Bug #1385513 - CVE-2016-8685 CVE-2016-8686 CVE-2016-8694 CVE-2016-8695
CVE-2016-8696 CVE-2016-8697 CVE-2016-8698 CVE-2016-8699 CVE-2016-8700
CVE-2016-8701 CVE-2016-8702 CVE-2016-8703 CVE-2017-7263 potrace: Multiple
security issues [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1385513
[ 3 ] Bug #1477105 - CVE-2017-12067 potrace: heap-based buffer over-read in
the interpolate_cubic function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1477105
[ 4 ] Bug #1385512 - CVE-2016-8685 CVE-2016-8686 CVE-2016-8694 CVE-2016-8695
CVE-2016-8696 CVE-2016-8697 CVE-2016-8698 CVE-2016-8699 CVE-2016-8700
CVE-2016-8701 CVE-2016-8702 CVE-2016-8703 CVE-2017-7263 potrace: Multiple
security issues [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1385512
--------------------------------------------------------------------------------
================================================================================
qpdf-5.1.1-4.el6 (FEDORA-EPEL-2017-d0ebce885c)
Command-line tools and library for transforming PDF files
--------------------------------------------------------------------------------
Update Information:
revert previous commit
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
