The following Fedora EPEL 7 Security updates need testing:
Age URL
890 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
653 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
235 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
133 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe
mod_cluster-1.3.3-10.el7
131 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4
tnef-1.4.14-1.el7
130 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378
python-XStatic-jquery-ui-1.12.0.1-1.el7
33 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-47be021843
heimdal-7.4.0-1.el7
32 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a8886eb42e
cross-binutils-2.27-9.el7.1 cross-gcc-4.8.5-16.el7.1
23 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c4e53cc90d
chicken-4.12.0-3.el7
15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-017fbc40e8
supervisor-3.1.4-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-52b6bc17c1
globus-ftp-client-8.36-1.el7 globus-ftp-control-7.8-1.el7
globus-gass-cache-program-6.7-1.el7 globus-gass-copy-9.27-1.el7
globus-gram-client-13.19-1.el7 globus-gram-job-manager-14.36-1.el7
globus-gram-job-manager-condor-2.6-5.el7 globus-gridftp-server-12.2-1.el7
globus-gridftp-server-control-5.1-1.el7 globus-gssapi-gsi-12.17-3.el7
globus-io-11.9-1.el7 globus-net-manager-0.17-1.el7 globus-xio-5.16-1.el7
globus-xio-gsi-driver-3.11-1.el7 globus-xio-pipe-driver-3.10-1.el7
globus-xio-udt-driver-1.28-1.el7 myproxy-6.1.28-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-37e736147d
knot-2.5.3-2.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-94c168d702
php-horde-Horde-Core-2.30.0-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7d6b89ab36
php-horde-Horde-Form-2.0.18-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-359039e1f1
php-horde-Horde-Url-2.2.6-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-aebd466ffa
php-horde-horde-5.2.16-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-531b8ee43e
php-horde-kronolith-4.2.22-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-055fdcdee7
php-horde-nag-4.2.15-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-bad0726ae5
php-horde-turba-4.2.20-1.el7
13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-886e003d48
gsoap-2.8.16-9.el7
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8683c5e591
potrace-1.15-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-816da4b59a
ReviewBoard-2.5.15-1.el7 python-djblets-0.9.9-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b69fde3111
mingw-libsoup-2.56.1-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a1d2b25c25
php-PHPMailer-5.2.24-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9bf7bf3989
mingw-gdk-pixbuf-2.36.8-1.el7
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d600d0059a
chromium-60.0.3112.90-3.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
alpine-2.21-3.el7
anjuta-3.22.0-2.el7
chromium-60.0.3112.90-3.el7
fcitx-qt5-1.1.0-6.el7
gnome-shell-extension-freon-27-1.el7
guacamole-server-0.9.13-1.el7
kf5-frameworkintegration-5.36.0-2.el7
kf5-kdeclarative-5.36.0-2.el7
libaec-1.0.1-4.el7
mediaconch-17.07-1.el7
python-httplib2-0.9.1-0.3.el7
qt5-qtquick1-5.6.2-1.64faeb0git.el7
qt5-qtquickcontrols2-5.6.2-1.el7
qt5-qtstyleplugins-5.0.0-15.el7
qt5-qtwebkit-5.6.2-1.el7
qt5ct-0.31-2.el7
warzone2100-3.2.3-4.el7
Details about builds:
================================================================================
alpine-2.21-3.el7 (FEDORA-EPEL-2017-31ae6299cb)
powerful, easy to use console email client
--------------------------------------------------------------------------------
Update Information:
alpine 2.21, update URL, .spec cosmetics
--------------------------------------------------------------------------------
================================================================================
anjuta-3.22.0-2.el7 (FEDORA-EPEL-2017-a284572848)
GNOME IDE for various programming languages (including C/C++, Python, Vala and
JavaScript)
--------------------------------------------------------------------------------
Update Information:
anjuta 3.22.0 release, matching with the GNOME 3.22 rebase in RHEL 7.4. For
details, see https://mail.gnome.org/archives/ftp-release-
list/2016-September/msg00104.html
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1481651 - Rebuild because of rhel-7.4
https://bugzilla.redhat.com/show_bug.cgi?id=1481651
--------------------------------------------------------------------------------
================================================================================
chromium-60.0.3112.90-3.el7 (FEDORA-EPEL-2017-d600d0059a)
A WebKit (Blink) powered web browser
--------------------------------------------------------------------------------
Update Information:
Chromium 60. Security fix for CVE-2017-5091, CVE-2017-5092, CVE-2017-5093,
CVE-2017-5094, CVE-2017-5095, CVE-2017-5096, CVE-2017-5097, CVE-2017-5098,
CVE-2017-5099, CVE-2017-5100, CVE-2017-5101, CVE-2017-5102, CVE-2017-5103,
CVE-2017-5104, CVE-2017-7000, CVE-2017-5105, CVE-2017-5106, CVE-2017-5107,
CVE-2017-5108, CVE-2017-5109, CVE-2017-5110. New subpackage -headless.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1475213 - CVE-2017-5110 chromium-browser: ui spoofing in payments
dialog
https://bugzilla.redhat.com/show_bug.cgi?id=1475213
[ 2 ] Bug #1475212 - CVE-2017-5109 chromium-browser: ui spoofing in browser
https://bugzilla.redhat.com/show_bug.cgi?id=1475212
[ 3 ] Bug #1475211 - CVE-2017-5108 chromium-browser: type confusion in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1475211
[ 4 ] Bug #1475210 - CVE-2017-5107 chromium-browser: user information leak
via svg
https://bugzilla.redhat.com/show_bug.cgi?id=1475210
[ 5 ] Bug #1475209 - CVE-2017-5106 chromium-browser: url spoofing in omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1475209
[ 6 ] Bug #1475208 - CVE-2017-5105 chromium-browser: url spoofing in omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1475208
[ 7 ] Bug #1475207 - CVE-2017-7000 chromium-browser: pointer disclosure in
sqlite
https://bugzilla.redhat.com/show_bug.cgi?id=1475207
[ 8 ] Bug #1475206 - CVE-2017-5104 chromium-browser: ui spoofing in browser
https://bugzilla.redhat.com/show_bug.cgi?id=1475206
[ 9 ] Bug #1475205 - CVE-2017-5103 chromium-browser: uninitialized use in skia
https://bugzilla.redhat.com/show_bug.cgi?id=1475205
[ 10 ] Bug #1475204 - CVE-2017-5102 chromium-browser: uninitialized use in
skia
https://bugzilla.redhat.com/show_bug.cgi?id=1475204
[ 11 ] Bug #1475203 - CVE-2017-5101 chromium-browser: url spoofing in omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1475203
[ 12 ] Bug #1475202 - CVE-2017-5100 chromium-browser: use after free in
chrome apps
https://bugzilla.redhat.com/show_bug.cgi?id=1475202
[ 13 ] Bug #1475201 - CVE-2017-5099 chromium-browser: out-of-bounds write in
ppapi
https://bugzilla.redhat.com/show_bug.cgi?id=1475201
[ 14 ] Bug #1475200 - CVE-2017-5098 chromium-browser: use after free in v8
https://bugzilla.redhat.com/show_bug.cgi?id=1475200
[ 15 ] Bug #1475199 - CVE-2017-5097 chromium-browser: out-of-bounds read in
skia
https://bugzilla.redhat.com/show_bug.cgi?id=1475199
[ 16 ] Bug #1475198 - CVE-2017-5096 chromium-browser: user information leak
via android intents
https://bugzilla.redhat.com/show_bug.cgi?id=1475198
[ 17 ] Bug #1475197 - CVE-2017-5095 chromium-browser: out-of-bounds write in
pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1475197
[ 18 ] Bug #1475196 - CVE-2017-5094 chromium-browser: type confusion in
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1475196
[ 19 ] Bug #1475195 - CVE-2017-5093 chromium-browser: ui spoofing in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1475195
[ 20 ] Bug #1475194 - CVE-2017-5092 chromium-browser: use after free in ppapi
https://bugzilla.redhat.com/show_bug.cgi?id=1475194
[ 21 ] Bug #1475193 - CVE-2017-5091 chromium-browser: use after free in
indexeddb
https://bugzilla.redhat.com/show_bug.cgi?id=1475193
--------------------------------------------------------------------------------
================================================================================
fcitx-qt5-1.1.0-6.el7 (FEDORA-EPEL-2017-240a99e52b)
Fcitx IM module for Qt5
--------------------------------------------------------------------------------
Update Information:
Rebuild for RHEL 7.4 (qt5-qtbase-5.6.2)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1481240 - Rebuild package for qt5-qtbase-5.6.2-1.el7
https://bugzilla.redhat.com/show_bug.cgi?id=1481240
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-freon-27-1.el7 (FEDORA-EPEL-2017-c5c8f8608c)
GNOME Shell extension to display system temperature, voltage, and fan speed
--------------------------------------------------------------------------------
Update Information:
Bump to upstream version 27, which fixes Nvidia GPU label detection. ---- Bump
to upstream version 26, which adds support for multiple simultaneous graphics
cards. ---- Bump to upstream version 25, which adds German localization.
--------------------------------------------------------------------------------
================================================================================
guacamole-server-0.9.13-1.el7 (FEDORA-EPEL-2017-226a17024a)
Server-side native components that form the Guacamole proxy
--------------------------------------------------------------------------------
Update Information:
Update to official 0.9.13.
--------------------------------------------------------------------------------
================================================================================
kf5-frameworkintegration-5.36.0-2.el7 (FEDORA-EPEL-2017-3d57d65852)
KDE Frameworks 5 Tier 4 workspace and cross-framework integration plugins
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
================================================================================
kf5-kdeclarative-5.36.0-2.el7 (FEDORA-EPEL-2017-3d57d65852)
KDE Frameworks 5 Tier 3 addon for Qt declarative
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
================================================================================
libaec-1.0.1-4.el7 (FEDORA-EPEL-2017-fb600d5f60)
Adaptive Entropy Coding library
--------------------------------------------------------------------------------
Update Information:
Initial import
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1462443 - Review Request: libaec - Adaptive Entropy Coding library
https://bugzilla.redhat.com/show_bug.cgi?id=1462443
--------------------------------------------------------------------------------
================================================================================
mediaconch-17.07-1.el7 (FEDORA-EPEL-2017-66498bf216)
Most relevant technical and tag data for video and audio files (CLI)
--------------------------------------------------------------------------------
Update Information:
Update to 17.07
--------------------------------------------------------------------------------
================================================================================
python-httplib2-0.9.1-0.3.el7 (FEDORA-EPEL-2017-c39ceb51a5)
A comprehensive HTTP client library
--------------------------------------------------------------------------------
Update Information:
Build for EPEL for other arches that are not in RHEL7 Extras
--------------------------------------------------------------------------------
================================================================================
qt5-qtquick1-5.6.2-1.64faeb0git.el7 (FEDORA-EPEL-2017-41c6892a24)
A declarative language for describing user interfaces in Qt5
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1478131 - qt5-qtwebkit package dependencies broken after RHEL 7.4
update
https://bugzilla.redhat.com/show_bug.cgi?id=1478131
--------------------------------------------------------------------------------
================================================================================
qt5-qtquickcontrols2-5.6.2-1.el7 (FEDORA-EPEL-2017-41c6892a24)
Qt5 - module with set of QtQuick controls for embedded
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1478131 - qt5-qtwebkit package dependencies broken after RHEL 7.4
update
https://bugzilla.redhat.com/show_bug.cgi?id=1478131
--------------------------------------------------------------------------------
================================================================================
qt5-qtstyleplugins-5.0.0-15.el7 (FEDORA-EPEL-2017-41c6892a24)
Classic Qt widget styles
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1478131 - qt5-qtwebkit package dependencies broken after RHEL 7.4
update
https://bugzilla.redhat.com/show_bug.cgi?id=1478131
--------------------------------------------------------------------------------
================================================================================
qt5-qtwebkit-5.6.2-1.el7 (FEDORA-EPEL-2017-41c6892a24)
Qt5 - QtWebKit components
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1478131 - qt5-qtwebkit package dependencies broken after RHEL 7.4
update
https://bugzilla.redhat.com/show_bug.cgi?id=1478131
--------------------------------------------------------------------------------
================================================================================
qt5ct-0.31-2.el7 (FEDORA-EPEL-2017-5688b1bd0e)
Qt5 Configuration Tool
--------------------------------------------------------------------------------
Update Information:
Rebuild for qt5-5.6.2 included in rhel7.4
--------------------------------------------------------------------------------
================================================================================
warzone2100-3.2.3-4.el7 (FEDORA-EPEL-2017-b3c66c82bd)
Innovative 3D real-time strategy
--------------------------------------------------------------------------------
Update Information:
Update to 3.2.3
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
