[EPEL-devel] Fedora EPEL 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Tue Dec 23 08:05:08 UTC 2014 

The following Fedora EPEL 5 Security updates need testing:
 Age  URL
 975  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
 429  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11893/libguestfs-1.20.12-1.el5
 194  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1626/puppet-2.7.26-1.el5
  48  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3784/mantis-1.2.17-3.el5
  43  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3849/sblim-sfcb-1.3.8-2.el5
  12  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4620/pywebdav-0.9.4.1-1.el5
  12  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4520/firebird-2.1.5.18496.0-5.el5
  10  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4430/phpMyAdmin4-4.0.10.7-2.el5
   8  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4674/denyhosts-2.6-5.el5.1
   6  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4743/ettercap-0.7.3-22.el5
   3  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4803/libssh-0.5.5-3.el5
   0  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4527/xrdp-0.6.1-2.el5
   0  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4867/glpi-0.83.9.1-5.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    drupal7-context-3.5-1.el5
    glpi-0.83.9.1-5.el5
    root-5.34.24-1.el5
    shogun-data-0.8.1-0.22.git20141217.ab44087.el5
    wordpress-4.1-1.el5
    xrdp-0.6.1-2.el5
    yadifa-2.0.4-1.el5

Details about builds:


================================================================================
 drupal7-context-3.5-1.el5 (FEDORA-EPEL-2014-4843)
 Allows contextual conditions and reactions management
--------------------------------------------------------------------------------
Update Information:

## [7.x-3.5 ](https://www.drupal.org/node/2392055)\r\n\r\nThis fixes possible DB consistency problems in 3.4.\r\n\r\n* 1cd84d0 Revert "Revert "Issue #835090: Context Reaction: Set menu trail by Karsa, Deciphered, nedjo, fearlsgroove, Dane Powell, Angry Dan, mgifford, Jibus, Bußmeyer, tomb, c4rl | rjacobs: Set context reaction menu trail.""\r\n* e5aae41 Issue #2358313: Angle bracket in menu names double checkplained: Remove double check_plain on mlid 0 items\r\n\r\n## [7.x-3.4](https://www.drupal.org/node/2391965)\r\n\r\n* 4eab91e Issue #1018834: Default context condition that applies when no other non-sitewide context is active by tekante: Further clarification in the main context README file about the inline editor\r\n* f3e501b Revert "Issue #835090: Context Reaction: Set menu trail by Karsa, Deciphered, nedjo, fearlsgroove, Dane Powell, Angry Dan, mgifford, Jibus, Bußmeyer, tomb, c4rl | rjacobs: Set context reaction menu trail."
--------------------------------------------------------------------------------
ChangeLog:

* Sat Dec 20 2014 Shawn Iwinski <shawn.iwinski at gmail.com> - 3.5-1
- Updated to 3.5 (BZ #1175146)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1175146 - drupal7-context-3.5 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1175146
--------------------------------------------------------------------------------


================================================================================
 glpi-0.83.9.1-5.el5 (FEDORA-EPEL-2014-4867)
 Free IT asset management software
--------------------------------------------------------------------------------
Update Information:

fix SQL injection
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 22 2014 Remi Collet <remi at fedoraproject.org> - 0.83.9.1-5
- fix SQL Injection CVE-2014-9258
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1176166 - CVE-2014-9258 glpi: ajax/getDropdownValue.php SQL injection
        https://bugzilla.redhat.com/show_bug.cgi?id=1176166
--------------------------------------------------------------------------------


================================================================================
 root-5.34.24-1.el5 (FEDORA-EPEL-2014-4852)
 Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:

http://root.cern.ch/drupal/content/root-version-v5-34-00-patch-release-notes
--------------------------------------------------------------------------------
ChangeLog:

* Fri Dec 19 2014 Mattias Ellert <mattias.ellert at fysast.uu.se> - 5.34.24-1
- Update to 5.34.24
- Drop patch root-bsd-misc.patch
--------------------------------------------------------------------------------


================================================================================
 shogun-data-0.8.1-0.22.git20141217.ab44087.el5 (FEDORA-EPEL-2014-4845)
 Data-files for the SHOGUN machine learning toolbox
--------------------------------------------------------------------------------
Update Information:

updated to new snapshot git20141217.ab44087e1a3c5ec05c1c64ebd691fdc5f56b2e81
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 22 2014 Björn Esser <bjoern.esser at gmail.com> - 0.8.1-0.22.git20141217.ab44087
- updated to new snapshot git20141217.ab44087e1a3c5ec05c1c64ebd691fdc5f56b2e81
* Wed Dec 10 2014 Björn Esser <bjoern.esser at gmail.com> - 0.8.1-0.21.git20141208.9a2f2be
- updated to new snapshot git20141208.9a2f2bee48755c632a959244d7522654efc2e58c
* Mon Dec  8 2014 Björn Esser <bjoern.esser at gmail.com> - 0.8.1-0.20.git20141204.6b9f893
- updated to new snapshot git20141204.6b9f893fa5044eab38e19803838a42132269185d
--------------------------------------------------------------------------------


================================================================================
 wordpress-4.1-1.el5 (FEDORA-EPEL-2014-4855)
 Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:

WordPress 4.1 “Dinah”\r\n\r\nUpstream announcement: https://wordpress.org/news/2014/12/dinah/
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 22 2014 Remi Collet <remi at fedoraproject.org> - 4.1-1
- WordPress 4.1 “Dinah”
--------------------------------------------------------------------------------


================================================================================
 xrdp-0.6.1-2.el5 (FEDORA-EPEL-2014-4527)
 Open source remote desktop protocol (RDP) server
--------------------------------------------------------------------------------
Update Information:

Close a security vulnerability in 0.5.0 and update to a known working release, 0.6.1. Add a delay loop for VNC back end.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 22 2014 Bojan Smojver <bojan at rexursive.com> - 0.6.1-2
- add a delay loop when connecting to VNC back end
* Wed Dec 10 2014 Bojan Smojver <bojan at rexursive.com> - 0.6.1-1
- try a bump to official 0.6.1
- provide format for syslog() call
- fix memset() call
- fix implicit declarations
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #782621 - xrdp: predictable temporary files may lead to arbitrary file overwrite [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=782621
--------------------------------------------------------------------------------


================================================================================
 yadifa-2.0.4-1.el5 (FEDORA-EPEL-2014-4837)
 Lightweight authoritative Name Server with DNSSEC capabilities
--------------------------------------------------------------------------------
Update Information:

Update to 2.0.4 release
--------------------------------------------------------------------------------
ChangeLog:

* Sun Dec 21 2014 Denis Fateyev <denis at fateyev.com> - 2.0.4-1
- Update to 2.0.4 release
* Sat Oct 18 2014 Denis Fateyev <denis at fateyev.com> - 2.0.0-1
- Update to 2.0.0 release
- New program features added
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1176685 - yadifa: 2.0.4 upstream release available
        https://bugzilla.redhat.com/show_bug.cgi?id=1176685
--------------------------------------------------------------------------------

More information about the epel-devel mailing list