Fedora EPEL 7 updates-testing report
by updates@fedoraproject.org
The following Fedora EPEL 7 Security updates need testing:
Age URL
173 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3835d39d1a unrtf-0.21.9-8.el7
124 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-f9d6ff695a bibutils-6.6-1.el7 ghc-hs-bibutils-6.6.0.0-1.el7 pandoc-citeproc-0.3.0.1-4.el7
107 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d condor-8.6.11-1.el7
29 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-bdb21ebc3f drupal7-7.60-2.el7
21 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-9051b49e75 suricata-4.0.6-1.el7
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a09ace87bb php-PHPMailer-5.2.27-1.el7
12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-0e73364530 python-paramiko-2.1.1-0.9.el7
9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-c25e48ded1 bird-1.6.4-2.el7
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-2206653eb9 python-django-1.11.13-4.el7 python-django16-1.6.11.7-5.el7
8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3f65916e08 moodle-3.1.15-1.el7
7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-cf66ab47c5 dnsdist-1.3.3-1.el7
3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a4f72b6533 cobbler-2.8.4-4.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
bird2-2.0.2-6.el7
did-0.11-3.el7
lighttpd-1.4.52-1.el7
pdns-recursor-4.1.8-1.el7
php-composer-xdebug-handler-1.3.1-1.el7
Details about builds:
================================================================================
bird2-2.0.2-6.el7 (FEDORA-EPEL-2018-317f0bdd38)
BIRD Internet Routing Daemon
--------------------------------------------------------------------------------
Update Information:
BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border
Gateway Protocol (BGPv4), Routing Information Protocol (RIPv2, RIPng), Open
Shortest Path First protocol (OSPFv2, OSPFv3), Babel Routing Protocol (Babel),
Bidirectional Forwarding Detection (BFD), IPv6 router advertisements, static
routes, inter-table protocol, command-line interface allowing on-line control
and inspection of the status of the daemon, soft reconfiguration as well as a
powerful language for route filtering.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1653088 - Review Request: bird2 - BIRD Internet Routing Daemon
https://bugzilla.redhat.com/show_bug.cgi?id=1653088
--------------------------------------------------------------------------------
================================================================================
did-0.11-3.el7 (FEDORA-EPEL-2018-d576cc22af)
What did you do last week, month, year?
--------------------------------------------------------------------------------
Update Information:
Update dependencies: python-gssapi and python-nitrate ---- Fix python-gssapi
dependency for epel ---- Pagure, Sentry, Redmine, gssapi, packaging...
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 29 2018 Petr ��pl��chal <psplicha(a)redhat.com> 0.11-3
- Update dependencies: python-gssapi and python-nitrate
* Mon Nov 26 2018 Petr ��pl��chal <psplicha(a)redhat.com> 0.11-1
- Validate plugin types in config [fix #148]
- Use email for searching Jira issues [fix #122]
- Handle authentication errors in the Jira plugin
- Update shebang to explicitly use python2
- Add a new section Questions to docs [fix #155]
- Raise error on unsuccessful request [fix #154]
- New plugin for Pagure stats [fix #153]
- Use requests-gssapi for Jira stats
- Fix problems with the Sentry plugin
- Merge configurable ssl verify for gitlab [#136]
- Merge the improved gitlab search [#137]
- Merge the new redmine plugin [#135]
- Some minor adjustments for the redmine plugin
- GitHub stats about reviewed PRs [#127]
- Remove zero-fill from Jira issues [fix #149]
- Add oauth2client to docs requirements [fix #152]
- Adjust until limit of the sentry plugin [fix #151]
- Update test data for the sentry & google plugins
- Update Python macros to new packaging standards
- Port to python-gssapi
- Fixed issue with failing tests
- Remove the idonethis plugin
- Merge the new sentry plugin
- Add basic Redmine support
- Add basic GitLab support
- Add search for subscribed bugs
- Add did.spec to MANIFEST.in
- Merge fix for bugs patched when created [#109]
- Merge the new Bugzilla query syntax [#111]
- Fetch only needed stats during GitHub testing
- Merge support for pull request separation [#114]
- Show month name / week number by default [#106]
* Wed Jan 11 2017 Martin Frodl <mfrodl(a)redhat.com> 0.10-1
- New plugin for Google Apps
- Document how to generate documentation locally
- Mock C modules while building documentation
- Make all make versions happy
- Add requirements.txt to fix docs building
- Properly handle GitHub issues with Unicode names
- Add login key to github section in example config
- Update install docs with fresh Fedora instructions
- Update coveralls links in README
- List install dependencies for Debian-based systems
- Use another Trac instance in plugin test
- Move kerberos to extra requires
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1264876 - did-0.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1264876
[ 2 ] Bug #1634529 - [abrt] did: main(): cli.py:209:main:AttributeError: 'GSSError' object has no attribute 'gen_msg'
https://bugzilla.redhat.com/show_bug.cgi?id=1634529
[ 3 ] Bug #1635156 - [abrt] did: do_open(): urllib2.py:1200:do_open:URLError: <urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:726)>
https://bugzilla.redhat.com/show_bug.cgi?id=1635156
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.52-1.el7 (FEDORA-EPEL-2018-b094d9dc7f)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
1.4.52 https://www.lighttpd.net/2018/11/28/1.4.52/
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 29 2018 Gwyn Ciesla <limburgher(a)gmail.com> - 1.4.52-1
- 1.4.52.
--------------------------------------------------------------------------------
================================================================================
pdns-recursor-4.1.8-1.el7 (FEDORA-EPEL-2018-bffc0108f2)
Modern, advanced and high performance recursing/non authoritative name server
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2018-16855 (Crafted query can cause a denial of service) ---- New
upstream release with security fixes for CVE-2018-10851, CVE-2018-14626 and
CVE-2018-14644
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 28 2018 Ruben Kerkhof <ruben(a)rubenkerkhof.com> - 4.1.8-1
- Update to new upstream
- Fixes CVE-2018-16855
* Tue Nov 13 2018 Sander Hoentjen <sander(a)hoentjen.eu> - 4.1.7-1
- Update to new upstream
- Fixes CVE-2018-10851, CVE-2018-14626 and CVE-2018-14644
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1649028 - CVE-2018-14626 pdns: Packet cache pollution via crafted query
https://bugzilla.redhat.com/show_bug.cgi?id=1649028
--------------------------------------------------------------------------------
================================================================================
php-composer-xdebug-handler-1.3.1-1.el7 (FEDORA-EPEL-2018-f7541d4dd8)
Restarts a process without xdebug
--------------------------------------------------------------------------------
Update Information:
**Version 1.3.1** - 2018-11-29 * Fixed: fail restart if `passthru` has been
disabled in `disable_functions`. * Fixed: fail restart if an ini file cannot
be opened, otherwise settings will be missing.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 29 2018 Remi Collet <remi(a)remirepo.net> - 1.3.1-1
- update to 1.3.1
--------------------------------------------------------------------------------