EPEL Fedora 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Tue May 14 17:47:01 UTC 2013 

The following Fedora EPEL 5 Security updates need testing:
 Age  URL
 387  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
 282  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5
  87  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5
  21  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5517/git-1.8.2.1-1.el5
  14  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5620/phpMyAdmin3-3.5.8.1-1.el5
   6  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5711/openvpn-2.3.1-1.el5
   0  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5799/python-virtualenv-1.9.1-1.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    pcp-3.8.0-1.el5
    python-virtualenv-1.9.1-1.el5

Details about builds:


================================================================================
 pcp-3.8.0-1.el5 (FEDORA-EPEL-2013-5796)
 System-level performance monitoring and performance management
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 14 2013 Nathan Scott <nathans at redhat.com> - 3.8.0-1
- Update to latest PCP sources.
- Validate metric names passed into pmiAddMetric (BZ 958019)
- Install log directories with correct ownership (BZ 960858)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #958019 - pmiAddMetric accepts out of bounds characters
        https://bugzilla.redhat.com/show_bug.cgi?id=958019
  [ 2 ] Bug #960858 - Incorrect directory owners in pcp
        https://bugzilla.redhat.com/show_bug.cgi?id=960858
--------------------------------------------------------------------------------


================================================================================
 python-virtualenv-1.9.1-1.el5 (FEDORA-EPEL-2013-5799)
 Tool to create isolated Python environments
--------------------------------------------------------------------------------
Update Information:

* Fixes two security issues with the bundled copy of pip:
  - Insecure tempdir usage CVE-2013-1888
  - Uses http:// to download packages instead of https://
See changelog at: http://pypi.python.org/pypi/virtualenv#id2
Multiple bugfixes. See http://pypi.python.org/pypi/virtualenv/1.7.1.2 for information.
Multiple bugfixes. See http://pypi.python.org/pypi/virtualenv/1.7.1.2 for information.
See changelog at: http://pypi.python.org/pypi/virtualenv#id2
Multiple bugfixes. See http://pypi.python.org/pypi/virtualenv/1.7.1.2 for information.
Multiple bugfixes. See http://pypi.python.org/pypi/virtualenv/1.7.1.2 for information.
See changelog at: http://pypi.python.org/pypi/virtualenv#id2
Multiple bugfixes. See http://pypi.python.org/pypi/virtualenv/1.7.1.2 for information.
Multiple bugfixes. See http://pypi.python.org/pypi/virtualenv/1.7.1.2 for information.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 14 2013 Toshio Kuratomi <toshio at fedoraproject.org> - 1.9.1-1
- Update to upstream 1.9.1 because of security issues with the bundled
  python-pip in older releases.  This is just a quick fix until a
  python-virtualenv maintainer can unbundle the python-pip package
  see: https://bugzilla.redhat.com/show_bug.cgi?id=749378
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Tue Aug 14 2012 Steve Milner <me at stevemilner.org> - 1.7.2-1
- Update for upstream bug fixes.
- Added path for versioned binary.
- Patch no longer required.
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7.1.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Wed Mar 14 2012 Steve 'Ashcrow' Milner <me at stevemilner.org> - 1.7.1.2-1
- Update for upstream bug fixes.
- Added patch for sphinx building
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #923974 - CVE-2013-1888 python-pip: insecure temporary directory usage
        https://bugzilla.redhat.com/show_bug.cgi?id=923974
--------------------------------------------------------------------------------

More information about the epel-devel mailing list