The following Fedora EPEL 6 Security updates need testing:
Age URL
11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-42e4c7d470
mbedtls-2.7.13-1.el6
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-dd6b868b6d
pam_radius-1.4.0-4.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
monitorix-3.12.0-1.el6
proftpd-1.3.3g-14.el6
Details about builds:
================================================================================
monitorix-3.12.0-1.el6 (FEDORA-EPEL-2020-aec2bab316)
A free, open source, lightweight system monitoring tool
--------------------------------------------------------------------------------
Update Information:
This new version introduces two new modules: the phpfpm.pm and the unbound.pm.
The first one will allow to collect PHP-FPM statistics and monitor unlimited
number of sites, while the unbound.pm module will collect a lot of statistics of
the Unbound running in your local server. There is not possibility to collect
Unbound statistics from remote servers. In all, both modules come with a fairly
complete statistic graphs. Besides these two new modules, this version includes
some interesting new features. It has been finally fixed the bind.pm module to
support newer versions of BIND. Now this module relies on Perl XML::LibXML to
parse the output of BIND (instead of using Perl XML::Simple). Also, the
gensens.pm module includes Battery as its third sensor, and there has been some
improvements in the NFS graph for FreeBSD systems. The fail2ban.pm module has
also changed the way how the values are shown. From now on, you can choose
between absolute and rate values, being the former the default one. The ZFS
graph has also changed the way how are shown the Operations and Bandwidth
graphs. The rest of new features, changes and bugs fixed are, as always,
reflected in the Changes file. Please, check the monitorix.conf(5) man page for
all the details. NOTICE: The configuration file monitorix.conf has been extended
with important changes. All users still using older versions are encouraged to
upgrade to this version.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 21 2020 Jordi Sanfeliu <jo...@fibranet.cat> - 3.12.0-1
- Updated to 3.12.0.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1805689 - monitorix-3.12.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1805689
--------------------------------------------------------------------------------
================================================================================
proftpd-1.3.3g-14.el6 (FEDORA-EPEL-2020-91512b5eee)
Flexible, stable and highly-configurable FTP server
--------------------------------------------------------------------------------
Update Information:
This update addresses a use-after-free vulnerability (CVE-2020-9273): successful
exploitation of this vulnerability could allow a remote attacker to execute
arbitrary code on the affected system.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 20 2020 Paul Howarth <p...@city-fan.org> - 1.3.3g-14
- Fix use-after-free vulnerability in memory pools during data transfer
(CVE-2020-9273, https://github.com/proftpd/proftpd/issues/903)
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
