epel-devel October 2017

epel-devel@lists.fedoraproject.org

16 participants
61 discussions

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 07 Oct '17

07 Oct '17

The following Fedora EPEL 7 Security updates need testing: Age URL 943 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 706 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 288 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 186 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe mod_cluster-1.3.3-10.el7 184 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4 tnef-1.4.14-1.el7 183 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378 python-XStatic-jquery-ui-1.12.0.1-1.el7 17 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e27758bd23 libmspack-0.6-0.1.alpha.el7 15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-52b8147c68 openvpn-auth-ldap-2.0.3-15.el7 14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e3436f7a95 libbson-1.3.5-4.el7 14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9179bc1cf5 chromium-61.0.3163.100-1.el7 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3dcce634cb MySQL-zrm-3.0-17.el7 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-afdcf119f4 freexl-1.0.4-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4826761f5d openvpn-2.4.4-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-abe6f98ebf tor-0.2.9.12-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f92580f68 yadifa-2.2.6-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-17b77b3268 botan-1.10.17-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3c06a7eecf nagios-4.3.4-3.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing R-Rcpp-0.12.13-1.el7 libp11-0.4.7-1.el7 libpreludedb-4.0.0-1.el7 python-msrest-0.4.16-1.el7 python-msrestazure-0.4.14-1.el7 xrdp-0.9.4-1.el7 Details about builds: ================================================================================ R-Rcpp-0.12.13-1.el7 (FEDORA-EPEL-2017-c4e5aefb90) Seamless R and C++ Integration -------------------------------------------------------------------------------- Update Information: https://cran.r-project.org/web/packages/Rcpp/news.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498375 - Version 0.12.13 was released https://bugzilla.redhat.com/show_bug.cgi?id=1498375 -------------------------------------------------------------------------------- ================================================================================ libp11-0.4.7-1.el7 (FEDORA-EPEL-2017-ee04aec0f4) Library for using PKCS#11 modules -------------------------------------------------------------------------------- Update Information: - Update to upstream 0.4.7 release -------------------------------------------------------------------------------- ================================================================================ libpreludedb-4.0.0-1.el7 (FEDORA-EPEL-2017-d8961baa1e) Framework for easy access to the IDMEF database -------------------------------------------------------------------------------- Update Information: Bump version 4.0.0 -------------------------------------------------------------------------------- ================================================================================ python-msrest-0.4.16-1.el7 (FEDORA-EPEL-2017-bdbd060c1c) AutoRest swagger generator Python client runtime -------------------------------------------------------------------------------- Update Information: These updates provides the latest versions of msrest and msrestazure libraries for Python. ## msrestazure 0.4.14 ###Features * Add Managed Service Integrated (MSI) authentication ###Bug fix * Fix AdalError handling in some scenarios ([#44](https://github.com/Azure/msrestazure-for-python/pull/44)) ## msrest 0.4.16 ###Bug fix * Fix regression: accept "set" as a valid "[str]" ([#60](https://github.com/Azure/msrest-for-python/pull/60)) ## msrest 0.4.15 ###Bugfixes * Always log response body ([#16](https://github.com/Azure/msrest- for-python/issues/16)) * Improved exception message if error JSON is Odata v4 ([#55](https://github.com/Azure/msrest-for-python/pull/55)) * Refuse "str" as a valid "[str]" type ([#41](https://github.com/Azure/msrest-for-python/issues/41)) * Better exception handling if input from server is not JSON valid ###Features * Add Configuration.session_configuration_callback to customize the requests.Session if necessary ([#52](https://github.com/Azure/msrest-for- python/pull/52)) * Add a flag to Serializer to disable client-side-validation ([#51](https://github.com/Azure/msrest-for-python/issues/51)) * Remove "import requests" from "exceptions.py" for apps that require fast loading time ([#23](https://github.com/Azure/msrest-for-python/issues/23)) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497873 - python-msrest-v0.4.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497873 -------------------------------------------------------------------------------- ================================================================================ python-msrestazure-0.4.14-1.el7 (FEDORA-EPEL-2017-bdbd060c1c) AutoRest swagger generator Python client runtime (Azure-specific module) -------------------------------------------------------------------------------- Update Information: These updates provides the latest versions of msrest and msrestazure libraries for Python. ## msrestazure 0.4.14 ###Features * Add Managed Service Integrated (MSI) authentication ###Bug fix * Fix AdalError handling in some scenarios ([#44](https://github.com/Azure/msrestazure-for-python/pull/44)) ## msrest 0.4.16 ###Bug fix * Fix regression: accept "set" as a valid "[str]" ([#60](https://github.com/Azure/msrest-for-python/pull/60)) ## msrest 0.4.15 ###Bugfixes * Always log response body ([#16](https://github.com/Azure/msrest- for-python/issues/16)) * Improved exception message if error JSON is Odata v4 ([#55](https://github.com/Azure/msrest-for-python/pull/55)) * Refuse "str" as a valid "[str]" type ([#41](https://github.com/Azure/msrest-for-python/issues/41)) * Better exception handling if input from server is not JSON valid ###Features * Add Configuration.session_configuration_callback to customize the requests.Session if necessary ([#52](https://github.com/Azure/msrest-for- python/pull/52)) * Add a flag to Serializer to disable client-side-validation ([#51](https://github.com/Azure/msrest-for-python/issues/51)) * Remove "import requests" from "exceptions.py" for apps that require fast loading time ([#23](https://github.com/Azure/msrest-for-python/issues/23)) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497873 - python-msrest-v0.4.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497873 -------------------------------------------------------------------------------- ================================================================================ xrdp-0.9.4-1.el7 (FEDORA-EPEL-2017-562e76e218) Open source remote desktop protocol (RDP) server -------------------------------------------------------------------------------- Update Information: New features - Accept prefill credentials in base64 form #153 #811 - Indroduce AAC encoder to audio redirection (requires Windows 10 client) Bugfixes - Fix ocasional SEGV in drive redirection #838 - Fix client's IP addresses in xrdp-sesman.log are always logged as 0.0.0.0 #878 #882 - Fix ls_background_image didn't accept full path #776 #853 - Fix misuse of hidelogwindow #414 #876 - Fix WTSVirtualChannelWrite return code #859 - Fix no longer needed socket files remained in the socket dir #812 #831 - Make creating socket path a bit more robust #823 Other changes - Add Belgian keyboard #858 - Add a PAM file for FreeBSD #824 - Several refactorings and cosmetic changes Known issues - Windows 10 (1703) shows black blank screen in RemoteFX mode -- This issue is already fixed at Insider Preview build 16273 --------------------------------------------------------------------------------

1 0

ansible retired in epel7
by Kevin Fenzi 07 Oct '17

07 Oct '17

Greetings. Just a note for anyone looking for ansible in epel7. It's been retired there because with the release of RHEL 7.4 it's now int the rhel-extras channel. https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht… Accordingly, you can get ansible now from rhel extras channel, or CentOS extras repo. You can also get ansible rpms now from http://releases.ansible.com/ansible/rpm/ Note that ansible continues to be available from epel6. kevin

3 6

Fedora EPEL 6 updates-testing report
by updates＠fedoraproject.org 06 Oct '17

06 Oct '17

The following Fedora EPEL 6 Security updates need testing: Age URL 821 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6 815 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 705 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 676 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 287 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac libbsd-0.8.3-2.el6 183 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f tnef-1.4.14-1.el6 16 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4c76ddcc92 libmspack-0.6-0.1.alpha.el6 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-be95216c3a MySQL-zrm-3.0-6.el6.2 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-ad63a060a6 freexl-1.0.4-1.el6 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a437fba22e openvpn-2.4.4-1.el6 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e4d447e97c tor-0.2.9.12-1.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-1f4bfd5d1d botan-1.8.15-2.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-164cc614ff nagios-4.3.4-4.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing R-Rcpp-0.12.13-1.el6 rubygem-sequel-5.1.0-1.el6 Details about builds: ================================================================================ R-Rcpp-0.12.13-1.el6 (FEDORA-EPEL-2017-be4871888e) Seamless R and C++ Integration -------------------------------------------------------------------------------- Update Information: https://cran.r-project.org/web/packages/Rcpp/news.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498375 - Version 0.12.13 was released https://bugzilla.redhat.com/show_bug.cgi?id=1498375 -------------------------------------------------------------------------------- ================================================================================ rubygem-sequel-5.1.0-1.el6 (FEDORA-EPEL-2017-783fec4ab8) The Database Toolkit for Ruby -------------------------------------------------------------------------------- Update Information: Update to Sequel 5.1.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1447161 - None https://bugzilla.redhat.com/show_bug.cgi?id=1447161 --------------------------------------------------------------------------------

1 0

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 05 Oct '17

05 Oct '17

The following Fedora EPEL 7 Security updates need testing: Age URL 942 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 704 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 286 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 184 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe mod_cluster-1.3.3-10.el7 182 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4 tnef-1.4.14-1.el7 181 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378 python-XStatic-jquery-ui-1.12.0.1-1.el7 16 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e27758bd23 libmspack-0.6-0.1.alpha.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8da6477f0a moodle-3.1.8-1.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3a2abe4898 php-horde-passwd-5.0.7-1.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a3ae700da7 php-horde-wicked-2.0.8-1.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d49c1ef800 php-horde-nag-4.2.17-1.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-52b8147c68 openvpn-auth-ldap-2.0.3-15.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e3436f7a95 libbson-1.3.5-4.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9179bc1cf5 chromium-61.0.3163.100-1.el7 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3dcce634cb MySQL-zrm-3.0-17.el7 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-afdcf119f4 freexl-1.0.4-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4826761f5d openvpn-2.4.4-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-abe6f98ebf tor-0.2.9.12-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f92580f68 yadifa-2.2.6-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-17b77b3268 botan-1.10.17-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3c06a7eecf nagios-4.3.4-3.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing bitlbee-facebook-1.1.2-2.el7 botan-1.10.17-1.el7 caddy-0.10.9-6.el7 clustershell-1.7.82-1.el7 cobbler-2.8.2-1.el7 epel-release-7-11 fuse-encfs-1.9.2-4.el7 gnuradio-3.7.11-6.el7 golang-github-xeipuuv-gojsonschema-0-0.5.20171003git6b67b3f.el7 gr-fcdproplus-0-0.8.20140920git1edbe523.el7 gr-iqbal-0.37.2-4.el7 gr-osmosdr-0.1.4-6.20170221git2a2236cc.el7 inxi-2.3.40-1.el7 koji-1.14.0-1.el7 module-build-service-1.3.31-1.el7 nagios-4.3.4-3.el7 odcs-0.0.8-1.el7 php-bartlett-php-compatinfo-db-1.24.0-1.el7 php-justinrainbow-json-schema5-5.2.2-1.el7 php-justinrainbow-json-schema5-5.2.4-1.el7 prosody-0.10.0-1.el7 pypolicyd-spf-1.3.2-2.el7 python-colorclass-2.2.0-2.el7 python-datanommer-models-0.8.2-1.el7 python-easygui-0.96-19.el7 python-olefile-0.44-4.el7 python-pymssql-2.1.3-2.el7 python-resultsdb_api-2.0.0-1.el7 python-sync2jira-1.5-1.el7 python2-lxc-0.1-1.el7 python3-cryptography-1.7.2-2.el7 python3-cryptography-vectors-1.7.2-3.el7 rakudo-XML-0.0.3-0.1.20170930git420bf9c.el7 rho-0.0.28-2.el7 uhd-3.10.1.0-1.el7 Details about builds: ================================================================================ bitlbee-facebook-1.1.2-2.el7 (FEDORA-EPEL-2017-dc778209ef) Facebook protocol plugin for BitlBee -------------------------------------------------------------------------------- Update Information: The Facebook protocol plugin for BitlBee. This plugin uses the Facebook Mobile API. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1290235 - Review Request: bitlbee-facebook - Facebook protocol plugin for BitlBee https://bugzilla.redhat.com/show_bug.cgi?id=1290235 -------------------------------------------------------------------------------- ================================================================================ botan-1.10.17-1.el7 (FEDORA-EPEL-2017-17b77b3268) Crypto library written in C++ -------------------------------------------------------------------------------- Update Information: #### Version 1.10.17, 2017-10-02 #### * Address a side channel affecting modular exponentiation. An attacker capable of a local or cross-VM cache analysis attack may be able to recover bits of secret exponents as used in RSA, DH, etc. (CVE-2017-14737) * Workaround a miscompilation bug in GCC 7 on x86-32 affecting GOST-34.11 hash function. [GH #1192](https://github.com/randombit/botan/issues/1192) [GH #1148](https://github.com/randombit/botan/issues/1148) [GH #882](https://github.com/randombit/botan/issues/882) * Add SecureVector::data() function which returns the start of the buffer. This makes it slightly simpler to support both 1.10 and 2.x APIs in the same codebase. * When compiled by a C++11 (or later) compiler, a template typedef of SecureVector, secure_vector, is added. In 2.x this class is a std::vector with a custom allocator, so has a somewhat different interface than SecureVector in 1.10. But this makes it slightly simpler to support both 1.10 and 2.x APIs in the same codebase. * Fix a bug that prevented `configure.py` from running under Python3 * Botan 1.10.x does not support the OpenSSL 1.1 API. Now the build will #error if OpenSSL 1.1 is detected. Avoid ��with-openssl if compiling against 1.1 or later. [GH #753](https://github.com/randombit/botan/issues/753) * Import patches from Debian adding basic support for building on aarch64, ppc64le, or1k, and mipsn32 platforms. #### Version 1.10.16, 2017-04-04 #### * Fix a bug in X509 DN string comparisons that could result in out of bound reads. This could result in information leakage, denial of service, or potentially incorrect certificate validation results. (CVE-2017-2801) * Avoid throwing during a destructor since this is undefined in C++11 and rarely a good idea. [GH #930](https://github.com/randombit/botan/issues/930) #### Version 1.10.15, 2017-01-12 #### * Fix a bug causing modular exponentiations done modulo even numbers to almost always be incorrect, unless the values were small. This bug is not known to affect any cryptographic operation in Botan. [GH #754](https://github.com/randombit/botan/issues/754) * Avoid use of C++11 std::to_string in some code added in 1.10.14 [GH #747](https://github.com/randombit/botan/issues/747) [GH #834](https://github.com/randombit/botan/issues/834) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441126 - CVE-2017-2801 botan: Incorrect comparison in X.509 DN strings https://bugzilla.redhat.com/show_bug.cgi?id=1441126 [ 2 ] Bug #1496368 - CVE-2017-14737 botan: cryptographic cache-based side channel in the RSA implementation https://bugzilla.redhat.com/show_bug.cgi?id=1496368 -------------------------------------------------------------------------------- ================================================================================ caddy-0.10.9-6.el7 (FEDORA-EPEL-2017-6d88207b14) HTTP/2 web server with automatic HTTPS -------------------------------------------------------------------------------- Update Information: This is a new package. -------------------------------------------------------------------------------- ================================================================================ clustershell-1.7.82-1.el7 (FEDORA-EPEL-2017-9a96933904) Python framework for efficient cluster administration -------------------------------------------------------------------------------- Update Information: ClusterShell 1.8 beta2 targeted for updates-testing only. ---- ClusterShell 1.8 beta1 targeted for updates-testing only. Release #4 removes the vim- clustershell subpackage as it was confusing for the users. VIM extensions are just provided by the main clustershell subpackage, which now requires vim- filesystem instead of vim-common if available (only not on el6). ---- ClusterShell 1.8 beta1 targeted for updates-testing only. ---- ClusterShell 1.8 beta1 targeted for updates-testing only. Release 3 should fix some packaging issues reported by taskotron. ---- ClusterShell 1.8 beta1 targeted for updates-testing only. This is release 2 with added Python 3 support. -------------------------------------------------------------------------------- ================================================================================ cobbler-2.8.2-1.el7 (FEDORA-EPEL-2017-d5c900bee2) Boot server configurator -------------------------------------------------------------------------------- Update Information: Update to 2.8.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1492440 - cobbler-2.8.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1492440 -------------------------------------------------------------------------------- ================================================================================ epel-release-7-11 (FEDORA-EPEL-2017-6667e7ab29) Extra Packages for Enterprise Linux repository configuration -------------------------------------------------------------------------------- Update Information: Add Conflicts on fedora-release to prevent people from installing on Fedora systems. Fixes bug #1497702 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497702 - RFE: add "Conflicts: fedora-release" https://bugzilla.redhat.com/show_bug.cgi?id=1497702 -------------------------------------------------------------------------------- ================================================================================ fuse-encfs-1.9.2-4.el7 (FEDORA-EPEL-2017-0932640627) Encrypted pass-thru filesystem in userspace -------------------------------------------------------------------------------- Update Information: Bugfix RHBZ #1487354. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1487354 - fuse-encfs-1.9.2-3.el7 causes trouble with dovecot: ... UNIX perms appear ok (ACL/MAC wrong?)) https://bugzilla.redhat.com/show_bug.cgi?id=1487354 -------------------------------------------------------------------------------- ================================================================================ gnuradio-3.7.11-6.el7 (FEDORA-EPEL-2017-35dac674cf) Software defined radio framework -------------------------------------------------------------------------------- Update Information: This is an update for EPEL-7. The purpose of this update is to bring back accidentally retired packages and update them a bit. -------------------------------------------------------------------------------- ================================================================================ golang-github-xeipuuv-gojsonschema-0-0.5.20171003git6b67b3f.el7 (FEDORA-EPEL-2017-87465bd33a) An implementation of JSON Schema, draft v4 -------------------------------------------------------------------------------- Update Information: Bump to upstream 6b67b3fab74d992bd07f72550006ab2c6907c416 ---- First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1493960 - Please update the package to a more recent version https://bugzilla.redhat.com/show_bug.cgi?id=1493960 [ 2 ] Bug #1498057 - Tracker for golang-github-xeipuuv-gojsonschema https://bugzilla.redhat.com/show_bug.cgi?id=1498057 [ 3 ] Bug #1405074 - Review Request: golang-github-xeipuuv-gojsonschema - An implementation of JSON Schema, draft v4 https://bugzilla.redhat.com/show_bug.cgi?id=1405074 -------------------------------------------------------------------------------- ================================================================================ gr-fcdproplus-0-0.8.20140920git1edbe523.el7 (FEDORA-EPEL-2017-35dac674cf) GNURadio support for FUNcube Dongle Pro+ -------------------------------------------------------------------------------- Update Information: This is an update for EPEL-7. The purpose of this update is to bring back accidentally retired packages and update them a bit. -------------------------------------------------------------------------------- ================================================================================ gr-iqbal-0.37.2-4.el7 (FEDORA-EPEL-2017-35dac674cf) GNURadio block for suppressing IQ imbalance -------------------------------------------------------------------------------- Update Information: This is an update for EPEL-7. The purpose of this update is to bring back accidentally retired packages and update them a bit. -------------------------------------------------------------------------------- ================================================================================ gr-osmosdr-0.1.4-6.20170221git2a2236cc.el7 (FEDORA-EPEL-2017-35dac674cf) Common software API for various radio hardware -------------------------------------------------------------------------------- Update Information: This is an update for EPEL-7. The purpose of this update is to bring back accidentally retired packages and update them a bit. -------------------------------------------------------------------------------- ================================================================================ inxi-2.3.40-1.el7 (FEDORA-EPEL-2017-7a021211a6) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to 2.3.40. -------------------------------------------------------------------------------- ================================================================================ koji-1.14.0-1.el7 (FEDORA-EPEL-2017-50ffc9c9e0) Build system tools -------------------------------------------------------------------------------- Update Information: update to upstream 1.14.0 -------------------------------------------------------------------------------- ================================================================================ module-build-service-1.3.31-1.el7 (FEDORA-EPEL-2017-ff716597a5) The Module Build Service for Modularity -------------------------------------------------------------------------------- Update Information: Update to 1.3.31 -------------------------------------------------------------------------------- ================================================================================ nagios-4.3.4-3.el7 (FEDORA-EPEL-2017-3c06a7eecf) Host/service/network monitoring program -------------------------------------------------------------------------------- Update Information: Try to fix error on update with systemctl -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490860 - CVE-2017-14312 nagios: Incorrect file permissions leading to possible privilege escalation [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1490860 -------------------------------------------------------------------------------- ================================================================================ odcs-0.0.8-1.el7 (FEDORA-EPEL-2017-ea416e6376) The On Demand Compose Service -------------------------------------------------------------------------------- Update Information: Latest upstream. ---- Now with fedmsg support. ---- Fixes from @puiterwijk's security audit. -------------------------------------------------------------------------------- ================================================================================ php-bartlett-php-compatinfo-db-1.24.0-1.el7 (FEDORA-EPEL-2017-1519f0c656) Reference Database to be used with php-compatinfo library -------------------------------------------------------------------------------- Update Information: **Version 1.24.0** - 2017-10-02 - Support to PHP 7.1.10 - Support to PHP 7.0.24 - Xdebug reference updated to version 2.5.5 (stable) -------------------------------------------------------------------------------- ================================================================================ php-justinrainbow-json-schema5-5.2.2-1.el7 (FEDORA-EPEL-2017-26b5cecdb8) A library to validate a json schema -------------------------------------------------------------------------------- Update Information: **Version 5.2.2** * 431 Backports for 5.2.2 (Part 1) * 425 (bugfix for #424 - make uri splitting reversable) * 429 (adjust hhvm platform for Travis, remove phpdocumentor dependency) * 432 Added property name in draft-3 required error * 433 Backports for 5.2.2 (Part 2) * 432 (fix missing property in boolean required error) * 450 Backports for 5.2.2 (Part 3) * 449 (Update config for php-cs-fixer & travis) * 448 (add proper recursive handling for $ref - fixes #447) -------------------------------------------------------------------------------- ================================================================================ php-justinrainbow-json-schema5-5.2.4-1.el7 (FEDORA-EPEL-2017-5255309f5d) A library to validate a json schema -------------------------------------------------------------------------------- Update Information: **Version 5.2.4** * Fresh tag to rectify 5.2.3 mistag. ----- **Version 5.2.3** * 453 Backports for 5.2.3 * 452 (bugfix for id double-resolution introduced in 5.2.2) -------------------------------------------------------------------------------- ================================================================================ prosody-0.10.0-1.el7 (FEDORA-EPEL-2017-7a3c587a6a) Flexible communications server for Jabber/XMPP -------------------------------------------------------------------------------- Update Information: Prosody 0.10.0 ============== See upstream's blog post at https://blog.prosody.im/prosody-0-10-0-released/ for a full overview of the release features. * Rewritten SQL storage module with archive support * SCRAM-SHA-1-PLUS * prosodyctl check * Statistics * Improved TLS configuration * Lua 5.2 support * mod_blocklist (XEP-0191) * mod_carbons (XEP-0280) * Pluggable connection timeout handling * mod_websocket (RFC 7395) * mod_mam (XEP-0313) Please also read the upgrade notes at https://prosody.im/doc/release/0.10.0#upgrade_notes for some specific corner cases. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497877 - prosody-0.10.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497877 -------------------------------------------------------------------------------- ================================================================================ pypolicyd-spf-1.3.2-2.el7 (FEDORA-EPEL-2017-e98381dfe0) SPF Policy Server for Postfix (Python implementation) -------------------------------------------------------------------------------- Update Information: Try to use ipaddress instead of ipaddr in EPEL7 as well. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497362 - Improper use of python's ipaddress https://bugzilla.redhat.com/show_bug.cgi?id=1497362 -------------------------------------------------------------------------------- ================================================================================ python-colorclass-2.2.0-2.el7 (FEDORA-EPEL-2017-9c469d54da) Yet another ANSI color text library for Python -------------------------------------------------------------------------------- Update Information: Added spec file conditionals to build for EPEL 7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498629 - Please build python-colorclass for EPEL 7 https://bugzilla.redhat.com/show_bug.cgi?id=1498629 -------------------------------------------------------------------------------- ================================================================================ python-datanommer-models-0.8.2-1.el7 (FEDORA-EPEL-2017-d814e1caf3) SQLAlchemy models for datanommer -------------------------------------------------------------------------------- Update Information: One change: - https://github.com/fedora-infra/datanommer/pull/96 -------------------------------------------------------------------------------- ================================================================================ python-easygui-0.96-19.el7 (FEDORA-EPEL-2017-d8aff10d56) Very simple, very easy GUI programming in Python -------------------------------------------------------------------------------- Update Information: First EL-7 build. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498637 - Please build python-easygui for EPEL 7 https://bugzilla.redhat.com/show_bug.cgi?id=1498637 -------------------------------------------------------------------------------- ================================================================================ python-olefile-0.44-4.el7 (FEDORA-EPEL-2017-b46d99c6cd) Python package to parse, read and write Microsoft OLE2 files -------------------------------------------------------------------------------- Update Information: olefile is a Python package to parse, read and write Microsoft OLE2 files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), such as Microsoft Office 97-2003 documents, vbaProject.bin in MS Office 2007+ files, Image Composer and FlashPix files, Outlook messages, StickyNotes, several Microscopy file formats, McAfee antivirus quarantine files, etc. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498616 - Please build python-olefile for EPEL 7 https://bugzilla.redhat.com/show_bug.cgi?id=1498616 -------------------------------------------------------------------------------- ================================================================================ python-pymssql-2.1.3-2.el7 (FEDORA-EPEL-2017-32a200b928) DB-API interface to Microsoft SQL Server -------------------------------------------------------------------------------- Update Information: This package provides a simple database interface for Python that builds on top of FreeTDS to provide a Python DB-API interface to Microsoft SQL Server. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498472 - Review Request: python-pymssql - DB-API interface to Microsoft SQL Server https://bugzilla.redhat.com/show_bug.cgi?id=1498472 -------------------------------------------------------------------------------- ================================================================================ python-resultsdb_api-2.0.0-1.el7 (FEDORA-EPEL-2017-a114abab9a) Interface api to ResultsDB -------------------------------------------------------------------------------- Update Information: This build updates EPEL7 to the newer API for resultsdb -------------------------------------------------------------------------------- References: [ 1 ] Bug #1496476 - Update to v2.0.0 https://bugzilla.redhat.com/show_bug.cgi?id=1496476 -------------------------------------------------------------------------------- ================================================================================ python-sync2jira-1.5-1.el7 (FEDORA-EPEL-2017-db26467e2b) Sync pagure and github issues to jira, via fedmsg -------------------------------------------------------------------------------- Update Information: Now with support for filtering by labels... ---- Now with support for spaces! ---- Latest upstream. Supports labels. Thanks @pingou! -------------------------------------------------------------------------------- ================================================================================ python2-lxc-0.1-1.el7 (FEDORA-EPEL-2017-398ac1373c) Python2 bindings for LXC -------------------------------------------------------------------------------- Update Information: This package provides Python 2.7 binding for liblxc (similar to the official python3) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498775 - Review Request: python2-lxc - Python2 bindings for LXC https://bugzilla.redhat.com/show_bug.cgi?id=1498775 -------------------------------------------------------------------------------- ================================================================================ python3-cryptography-1.7.2-2.el7 (FEDORA-EPEL-2017-5cdc22eda7) PyCA's cryptography library -------------------------------------------------------------------------------- Update Information: Python 3.4 version of the python-cryptography library -------------------------------------------------------------------------------- References: [ 1 ] Bug #1482577 - Review Request: python3-cryptography - PyCA's cryptography library https://bugzilla.redhat.com/show_bug.cgi?id=1482577 -------------------------------------------------------------------------------- ================================================================================ python3-cryptography-vectors-1.7.2-3.el7 (FEDORA-EPEL-2017-5cdc22eda7) Test vectors for the cryptography package -------------------------------------------------------------------------------- Update Information: Python 3.4 version of the python-cryptography library -------------------------------------------------------------------------------- References: [ 1 ] Bug #1482577 - Review Request: python3-cryptography - PyCA's cryptography library https://bugzilla.redhat.com/show_bug.cgi?id=1482577 -------------------------------------------------------------------------------- ================================================================================ rakudo-XML-0.0.3-0.1.20170930git420bf9c.el7 (FEDORA-EPEL-2017-98d08b215e) An Object-Oriented XML Library for Perl 6 -------------------------------------------------------------------------------- Update Information: initial commit for f27 -------------------------------------------------------------------------------- ================================================================================ rho-0.0.28-2.el7 (FEDORA-EPEL-2017-921e048810) An SSH system profiler -------------------------------------------------------------------------------- Update Information: # Testing Rho To set up Rho, you create profiles that control how to run each scan. - Authentication profiles contain user credentials for a user with sufficient authority to complete the scan (for example, a root user or one with root-level access obtained through -sudo privilege escalation). - Network profiles contain network identifiers (for example, a hostname, IP address, or range of IP addresses) and the authentication profiles to be used for a scan. Complete the following steps, repeating them as necessary to access all parts of your environment that you want to scan: 1. Create at least one authentication profile with root-level access to Rho: ``` rho auth add --name auth_name --username root_name(--sshkeyfile key_file | --password) ``` a. At the Rho vault password prompt, create a new Rho vault password. This password is required to access the encrypted Rho data, such as authentication and network profiles, scan data, and other information. b. If you did not use the sshkeyfile option to provide an SSH key for the username value, enter the password of the user with root-level access at the connection password prompt. For example, for an authentication profile where the authentication profile name is roothost1, the user with root-level access is root, and the SSH key for the user is in the path ~/.ssh/id_rsa, you would enter the following command: ``` rho auth add --name roothost1 --username root --sshkeyfile ~/.ssh/id_rsa ``` You can also use the sudo-password option to create an authentication profile for a user with root-level access who requires a password to obtain this privilege. You can use the sudo-password option with either the sshkeyfile or the password option. For example, for an authentication profile where the authentication profile name is sudouser1, the user with root-level access is sysadmin, and the access is obtained through the password option, you would enter the following command: ``` rho auth add --name sudouser1 --username sysadmin --password --sudo-password ``` After you enter this command, you are prompted to enter two passwords. First, you would enter the connection password for the username user, and then you would enter the password for the sudo command. 2. Create at least one network profile that specifies one or more network identifiers, such as a host name, an IP address, a list of IP addresses, or an IP range, and one or more authentication profiles to be used for the scan: ``` rho profile add --name profile_name --hosts host_name_or_file --auth auth_name ``` For example, for a network profile where the name of the network profile is mynetwork, the network to be scanned is the 192.0.2.0/24 subnet, and the authentication profiles that are used to run the scan are roothost1 and roothost2, you would enter the following command: ``` rho profile add --name mynetwork --hosts 192.0.2.[1:254] --auth roothost1 roothost2 ``` You can also use a file to pass in the network identifiers. If you use a file to enter multiple network identifiers, such as multiple individual IP addresses, enter each on a single line. For example, for a network profile where the path to this file is /home/user1/hosts_file, you would enter the following command: ``` rho profile add --name mynetwork --hosts /home/user1/hosts_file --auth roothost1 roothost2 ``` # Running a scan Run the scan by using the scan command, specifying a network profile for the profile option and a location to store the output as a file in the comma-separated variables (CSV) format for the reportfile option: ``` rho scan --profile profile_name --reportfile filename.csv ``` For example, if you want to use the network profile mynetwork and save the report as mynetwork_scan1.csv, you would enter the following command: ``` rho scan --profile mynetwork --reportfile mynetwork_scan1.csv ``` -------------------------------------------------------------------------------- ================================================================================ uhd-3.10.1.0-1.el7 (FEDORA-EPEL-2017-35dac674cf) Universal Hardware Driver for Ettus Research products -------------------------------------------------------------------------------- Update Information: This is an update for EPEL-7. The purpose of this update is to bring back accidentally retired packages and update them a bit. --------------------------------------------------------------------------------

1 0

Fedora EPEL 6 updates-testing report
by updates＠fedoraproject.org 05 Oct '17

05 Oct '17

The following Fedora EPEL 6 Security updates need testing: Age URL 820 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6 814 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 704 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 676 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 286 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac libbsd-0.8.3-2.el6 182 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f tnef-1.4.14-1.el6 16 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4c76ddcc92 libmspack-0.6-0.1.alpha.el6 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5b8684c487 php-horde-passwd-5.0.7-1.el6 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e6c88309c0 php-horde-wicked-2.0.8-1.el6 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a981889220 php-horde-nag-4.2.17-1.el6 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-be95216c3a MySQL-zrm-3.0-6.el6.2 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-ad63a060a6 freexl-1.0.4-1.el6 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a437fba22e openvpn-2.4.4-1.el6 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e4d447e97c tor-0.2.9.12-1.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-170150faa2 nagios-4.3.4-3.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-1f4bfd5d1d botan-1.8.15-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing bitlbee-facebook-1.1.2-2.el6 botan-1.8.15-2.el6 clustershell-1.7.82-1.el6 golang-github-xeipuuv-gojsonschema-0-0.5.20171003git6b67b3f.el6 inxi-2.3.40-1.el6 koji-1.14.0-1.el6 nagios-4.3.4-3.el6 nagios-4.3.4-4.el6 prosody-0.10.0-1.el6 rho-0.0.28-2.el6 Details about builds: ================================================================================ bitlbee-facebook-1.1.2-2.el6 (FEDORA-EPEL-2017-8fc2ba4a15) Facebook protocol plugin for BitlBee -------------------------------------------------------------------------------- Update Information: The Facebook protocol plugin for BitlBee. This plugin uses the Facebook Mobile API. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1290235 - Review Request: bitlbee-facebook - Facebook protocol plugin for BitlBee https://bugzilla.redhat.com/show_bug.cgi?id=1290235 -------------------------------------------------------------------------------- ================================================================================ botan-1.8.15-2.el6 (FEDORA-EPEL-2017-1f4bfd5d1d) Crypto library written in C++ -------------------------------------------------------------------------------- Update Information: Fix a bug in X509 DN string comparisons that could result in out of bound reads. This could result in information leakage, denial of service, or potentially incorrect certificate validation results. (CVE-2017-2801) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441126 - CVE-2017-2801 botan: Incorrect comparison in X.509 DN strings https://bugzilla.redhat.com/show_bug.cgi?id=1441126 -------------------------------------------------------------------------------- ================================================================================ clustershell-1.7.82-1.el6 (FEDORA-EPEL-2017-99d9805c54) Python framework for efficient cluster administration -------------------------------------------------------------------------------- Update Information: ClusterShell 1.8 beta2 targeted for updates-testing only. ---- ClusterShell 1.8 beta1 targeted for updates-testing only. Release #4 removes the vim- clustershell subpackage as it was confusing for the users. VIM extensions are just provided by the main clustershell subpackage, which now requires vim- filesystem instead of vim-common if available (only not on el6). ---- ClusterShell 1.8 beta1 targeted for updates-testing only. ---- ClusterShell 1.8 beta1 targeted for updates-testing only. Release 3 should fix some packaging issues reported by taskotron. ---- ClusterShell 1.8 beta1 targeted for updates-testing only. This is release 2 with added Python 3 support. -------------------------------------------------------------------------------- ================================================================================ golang-github-xeipuuv-gojsonschema-0-0.5.20171003git6b67b3f.el6 (FEDORA-EPEL-2017-798b4d509c) An implementation of JSON Schema, draft v4 -------------------------------------------------------------------------------- Update Information: Bump to upstream 6b67b3fab74d992bd07f72550006ab2c6907c416 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1493960 - Please update the package to a more recent version https://bugzilla.redhat.com/show_bug.cgi?id=1493960 [ 2 ] Bug #1498057 - Tracker for golang-github-xeipuuv-gojsonschema https://bugzilla.redhat.com/show_bug.cgi?id=1498057 -------------------------------------------------------------------------------- ================================================================================ inxi-2.3.40-1.el6 (FEDORA-EPEL-2017-6c9bb1b4bd) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to 2.3.40. -------------------------------------------------------------------------------- ================================================================================ koji-1.14.0-1.el6 (FEDORA-EPEL-2017-c4528f8770) Build system tools -------------------------------------------------------------------------------- Update Information: update to upstream 1.14.0 -------------------------------------------------------------------------------- ================================================================================ nagios-4.3.4-3.el6 (FEDORA-EPEL-2017-170150faa2) Host/service/network monitoring program -------------------------------------------------------------------------------- Update Information: Try to fix error on update with systemctl ---- Fix a service problem again. Lost patch ---- Fix fix ---- Fix RHBZ#1475447 ---- Fix the systemd service file reload and other issues ---- Update initd patch to move mktemp from /tmp to /var/log/nagios where it has permission to write -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490860 - CVE-2017-14312 nagios: Incorrect file permissions leading to possible privilege escalation [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1490860 [ 2 ] Bug #1475447 - SELinux Policy module won't install. https://bugzilla.redhat.com/show_bug.cgi?id=1475447 -------------------------------------------------------------------------------- ================================================================================ nagios-4.3.4-4.el6 (FEDORA-EPEL-2017-164cc614ff) Host/service/network monitoring program -------------------------------------------------------------------------------- Update Information: Fix nagios su lines to work on rhel6 -------------------------------------------------------------------------------- ================================================================================ prosody-0.10.0-1.el6 (FEDORA-EPEL-2017-ac625d9dfe) Flexible communications server for Jabber/XMPP -------------------------------------------------------------------------------- Update Information: Prosody 0.10.0 ============== See upstream's blog post at https://blog.prosody.im/prosody-0-10-0-released/ for a full overview of the release features. * Rewritten SQL storage module with archive support * SCRAM-SHA-1-PLUS * prosodyctl check * Statistics * Improved TLS configuration * Lua 5.2 support * mod_blocklist (XEP-0191) * mod_carbons (XEP-0280) * Pluggable connection timeout handling * mod_websocket (RFC 7395) * mod_mam (XEP-0313) Please also read the upgrade notes at https://prosody.im/doc/release/0.10.0#upgrade_notes for some specific corner cases. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497877 - prosody-0.10.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497877 -------------------------------------------------------------------------------- ================================================================================ rho-0.0.28-2.el6 (FEDORA-EPEL-2017-889421226b) An SSH system profiler -------------------------------------------------------------------------------- Update Information: # Testing Rho To set up Rho, you create profiles that control how to run each scan. - Authentication profiles contain user credentials for a user with sufficient authority to complete the scan (for example, a root user or one with root-level access obtained through -sudo privilege escalation). - Network profiles contain network identifiers (for example, a hostname, IP address, or range of IP addresses) and the authentication profiles to be used for a scan. Complete the following steps, repeating them as necessary to access all parts of your environment that you want to scan: 1. Create at least one authentication profile with root-level access to Rho: ``` rho auth add --name auth_name --username root_name(--sshkeyfile key_file | --password) ``` a. At the Rho vault password prompt, create a new Rho vault password. This password is required to access the encrypted Rho data, such as authentication and network profiles, scan data, and other information. b. If you did not use the sshkeyfile option to provide an SSH key for the username value, enter the password of the user with root-level access at the connection password prompt. For example, for an authentication profile where the authentication profile name is roothost1, the user with root-level access is root, and the SSH key for the user is in the path ~/.ssh/id_rsa, you would enter the following command: ``` rho auth add --name roothost1 --username root --sshkeyfile ~/.ssh/id_rsa ``` You can also use the sudo-password option to create an authentication profile for a user with root-level access who requires a password to obtain this privilege. You can use the sudo-password option with either the sshkeyfile or the password option. For example, for an authentication profile where the authentication profile name is sudouser1, the user with root-level access is sysadmin, and the access is obtained through the password option, you would enter the following command: ``` rho auth add --name sudouser1 --username sysadmin --password --sudo-password ``` After you enter this command, you are prompted to enter two passwords. First, you would enter the connection password for the username user, and then you would enter the password for the sudo command. 2. Create at least one network profile that specifies one or more network identifiers, such as a host name, an IP address, a list of IP addresses, or an IP range, and one or more authentication profiles to be used for the scan: ``` rho profile add --name profile_name --hosts host_name_or_file --auth auth_name ``` For example, for a network profile where the name of the network profile is mynetwork, the network to be scanned is the 192.0.2.0/24 subnet, and the authentication profiles that are used to run the scan are roothost1 and roothost2, you would enter the following command: ``` rho profile add --name mynetwork --hosts 192.0.2.[1:254] --auth roothost1 roothost2 ``` You can also use a file to pass in the network identifiers. If you use a file to enter multiple network identifiers, such as multiple individual IP addresses, enter each on a single line. For example, for a network profile where the path to this file is /home/user1/hosts_file, you would enter the following command: ``` rho profile add --name mynetwork --hosts /home/user1/hosts_file --auth roothost1 roothost2 ``` # Running a scan Run the scan by using the scan command, specifying a network profile for the profile option and a location to store the output as a file in the comma-separated variables (CSV) format for the reportfile option: ``` rho scan --profile profile_name --reportfile filename.csv ``` For example, if you want to use the network profile mynetwork and save the report as mynetwork_scan1.csv, you would enter the following command: ``` rho scan --profile mynetwork --reportfile mynetwork_scan1.csv ``` --------------------------------------------------------------------------------

1 0

Adding a new RPM to EPEL
by Digimer 05 Oct '17

05 Oct '17

Hi all, Pardon if this is the wrong place to ask, or if there is a FAQ for this (I checked https://fedoraproject.org/wiki/EPEL#How_can_I_contribute.3F) I've created a new RPM for the perl module Log::Journald, which makes writing to journald a lot easier and faster than using 'logger' at the shell. I built in for our internal repo, but I did so using EPEL RPMs to meet dependencies, so I would expect it should be compatible. Is there any interest in adding this RPM to the repo? If so, what is the process? I'm fairly new to packaging so I would want someone to check the SRPM to make sure it's up to snuff. Here's the SRPM, if you're curious; https://www.alteeve.com/an-repo/el7/SRPMS/perl-Log-Journald-0.20-1.el7.src.… Cheers, and thanks for your collective work on EPEL either way. Sorting out the dependencies and trying to "do it right" has given me a new respect for the hard work needed to make something like EPEL hum so smoothly. :) -- Digimer Papers and Projects: https://alteeve.com/w/ "I am, somehow, less interested in the weight and convolutions of Einstein’s brain than in the near certainty that people of equal talent have lived and died in cotton fields and sweatshops." - Stephen Jay Gould

2 1

Fedora EPEL 6 updates-testing report
by updates＠fedoraproject.org 04 Oct '17

04 Oct '17

The following Fedora EPEL 6 Security updates need testing: Age URL 819 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6 813 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 703 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 675 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 285 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac libbsd-0.8.3-2.el6 181 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f tnef-1.4.14-1.el6 15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4c76ddcc92 libmspack-0.6-0.1.alpha.el6 14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e563119ec9 php-horde-Horde-Image-2.5.2-1.el6 14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-bfeae1e322 wordpress-4.8.2-1.el6 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5b8684c487 php-horde-passwd-5.0.7-1.el6 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e6c88309c0 php-horde-wicked-2.0.8-1.el6 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a981889220 php-horde-nag-4.2.17-1.el6 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-be95216c3a MySQL-zrm-3.0-6.el6.2 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-ad63a060a6 freexl-1.0.4-1.el6 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a437fba22e openvpn-2.4.4-1.el6 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e4d447e97c tor-0.2.9.12-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing lua-bitop-1.0.2-3.el6 rho-0.0.28-1.el6 tio-1.24-2.el6 youtube-dl-2017.10.01-1.el6 Details about builds: ================================================================================ lua-bitop-1.0.2-3.el6 (FEDORA-EPEL-2017-aad8d9b4fb) C extension module for Lua which adds bitwise operations on numbers -------------------------------------------------------------------------------- Update Information: Lua BitOp is a C extension module for Lua 5.1/5.2 which adds bitwise operations on numbers. -------------------------------------------------------------------------------- ================================================================================ rho-0.0.28-1.el6 (FEDORA-EPEL-2017-f3590f603b) An SSH system profiler -------------------------------------------------------------------------------- Update Information: # Testing Rho To set up Rho, you create profiles that control how to run each scan. - Authentication profiles contain user credentials for a user with sufficient authority to complete the scan (for example, a root user or one with root-level access obtained through -sudo privilege escalation). - Network profiles contain network identifiers (for example, a hostname, IP address, or range of IP addresses) and the authentication profiles to be used for a scan. Complete the following steps, repeating them as necessary to access all parts of your environment that you want to scan: 1. Create at least one authentication profile with root-level access to Rho: ``` rho auth add --name auth_name --username root_name(--sshkeyfile key_file | --password) ``` a. At the Rho vault password prompt, create a new Rho vault password. This password is required to access the encrypted Rho data, such as authentication and network profiles, scan data, and other information. b. If you did not use the sshkeyfile option to provide an SSH key for the username value, enter the password of the user with root-level access at the connection password prompt. For example, for an authentication profile where the authentication profile name is roothost1, the user with root-level access is root, and the SSH key for the user is in the path ~/.ssh/id_rsa, you would enter the following command: ``` rho auth add --name roothost1 --username root --sshkeyfile ~/.ssh/id_rsa ``` You can also use the sudo-password option to create an authentication profile for a user with root-level access who requires a password to obtain this privilege. You can use the sudo-password option with either the sshkeyfile or the password option. For example, for an authentication profile where the authentication profile name is sudouser1, the user with root-level access is sysadmin, and the access is obtained through the password option, you would enter the following command: ``` rho auth add --name sudouser1 --username sysadmin --password --sudo-password ``` After you enter this command, you are prompted to enter two passwords. First, you would enter the connection password for the username user, and then you would enter the password for the sudo command. 2. Create at least one network profile that specifies one or more network identifiers, such as a host name, an IP address, a list of IP addresses, or an IP range, and one or more authentication profiles to be used for the scan: ``` rho profile add --name profile_name --hosts host_name_or_file --auth auth_name ``` For example, for a network profile where the name of the network profile is mynetwork, the network to be scanned is the 192.0.2.0/24 subnet, and the authentication profiles that are used to run the scan are roothost1 and roothost2, you would enter the following command: ``` rho profile add --name mynetwork --hosts 192.0.2.[1:254] --auth roothost1 roothost2 ``` You can also use a file to pass in the network identifiers. If you use a file to enter multiple network identifiers, such as multiple individual IP addresses, enter each on a single line. For example, for a network profile where the path to this file is /home/user1/hosts_file, you would enter the following command: ``` rho profile add --name mynetwork --hosts /home/user1/hosts_file --auth roothost1 roothost2 ``` # Running a scan Run the scan by using the scan command, specifying a network profile for the profile option and a location to store the output as a file in the comma-separated variables (CSV) format for the reportfile option: ``` rho scan --profile profile_name --reportfile filename.csv ``` For example, if you want to use the network profile mynetwork and save the report as mynetwork_scan1.csv, you would enter the following command: ``` rho scan --profile mynetwork --reportfile mynetwork_scan1.csv ``` -------------------------------------------------------------------------------- ================================================================================ tio-1.24-2.el6 (FEDORA-EPEL-2017-6700053853) Simple TTY terminal I/O application -------------------------------------------------------------------------------- Update Information: Tio is a simple TTY terminal application which features a straightforward commandline interface to easily connect to TTY devices for basic input/output. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497549 - Review Request: tio - Simple TTY terminal I/O application https://bugzilla.redhat.com/show_bug.cgi?id=1497549 -------------------------------------------------------------------------------- ================================================================================ youtube-dl-2017.10.01-1.el6 (FEDORA-EPEL-2017-bd4524fb55) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information: Update to latest release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494888 - youtube-dl-2017.10.01 is available https://bugzilla.redhat.com/show_bug.cgi?id=1494888 --------------------------------------------------------------------------------

1 0

[Fedocal] Reminder meeting : EPEL Steering Committee
by smooge＠gmail.com 03 Oct '17

03 Oct '17

Dear all, You are kindly invited to the meeting: EPEL Steering Committee on 2017-10-04 from 18:00:00 to 19:00:00 GMT At fedora-meeting(a)irc.freenode.net The meeting will be about: There is a weekly EPEL Steering Committee Meeting to go over events, ideas, and tickets about EPEL. More information available at: [https://pagure.io/epel/blob/master/f/docs/source/EPEL-meeting-process.rst](… Source: https://apps.fedoraproject.org/calendar/meeting/6592/

1 0

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 02 Oct '17

02 Oct '17

The following Fedora EPEL 7 Security updates need testing: Age URL 939 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 701 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 283 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 181 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe mod_cluster-1.3.3-10.el7 179 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4 tnef-1.4.14-1.el7 178 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378 python-XStatic-jquery-ui-1.12.0.1-1.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9f88067c22 mpg123-1.25.6-1.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e27758bd23 libmspack-0.6-0.1.alpha.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-2795d59fcc python3-numpy-1.10.4-5.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-30a9c74908 php-horde-Horde-Image-2.5.2-1.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5b07cc6958 wordpress-4.8.2-1.el7 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8da6477f0a moodle-3.1.8-1.el7 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3a2abe4898 php-horde-passwd-5.0.7-1.el7 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a3ae700da7 php-horde-wicked-2.0.8-1.el7 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d49c1ef800 php-horde-nag-4.2.17-1.el7 10 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-52b8147c68 openvpn-auth-ldap-2.0.3-15.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e3436f7a95 libbson-1.3.5-4.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9179bc1cf5 chromium-61.0.3163.100-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3dcce634cb MySQL-zrm-3.0-17.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-afdcf119f4 freexl-1.0.4-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4826761f5d openvpn-2.4.4-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-abe6f98ebf tor-0.2.9.12-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f92580f68 yadifa-2.2.6-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing cfitsio-3.370-10.el7 php-cs-fixer-2.2.8-1.el7 pungi-4.1.19-2.el7 python-fedmsg-meta-fedora-infrastructure-0.22.0-1.el7 rho-0.0.28-1.el7 tio-1.24-2.el7 youtube-dl-2017.10.01-1.el7 Details about builds: ================================================================================ cfitsio-3.370-10.el7 (FEDORA-EPEL-2017-4a85df68b3) Library for manipulating FITS data files -------------------------------------------------------------------------------- Update Information: Bugfix update to fix a crash with hcompress, backported fix from current cfitsio release. Cannot upgrade to newer release due to ABI changes. -------------------------------------------------------------------------------- ================================================================================ php-cs-fixer-2.2.8-1.el7 (FEDORA-EPEL-2017-f8b6d6683b) A tool to automatically fix PHP code style -------------------------------------------------------------------------------- Update Information: Changelog for v2.2.8 -------------------- * bug #3052 Fix false positive warning about paths overridden by provided as command arguments (kubawerlos) * bug #3058 IsNullFixer - fix whitespace handling (roukmoute) * bug #3072 IsNullFixer - fix non_yoda_style edge case (keradus) * bug #3088 Drop dedicated Phar stub (keradus) * bug #3100 NativeFunctionInvocationFixer - Fix test if previous token is already namespace separator (SpacePossum) * bug #3104 DoctrineAnnotationIndentationFixer - Fix str_repeat() error (julienfalque) * minor #3038 Support PHP 7.2 (SpacePossum, keradus) * minor #3064 Fix couple of typos (KKSzymanowski) * minor #3078 ConfigurationResolver - hide context while including config file (keradus) * minor #3080 Direct function call instead of by string (kubawerlos) * minor #3085 CiIntegrationTest - skip when no git is available (keradus) * minor #3087 phar-stub.php - allow PHP 7.2 (keradus) -------------------------------------------------------------------------------- ================================================================================ pungi-4.1.19-2.el7 (FEDORA-EPEL-2017-c2a0cf8dbd) Distribution compose tool -------------------------------------------------------------------------------- Update Information: Update to latest upstream version. New executable `pungi-koji` is provided, which is used for composing in Fedora infrastructure. -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.22.0-1.el7 (FEDORA-EPEL-2017-253b563ea2) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Update to 0.22.0 Changelog available at: https://github.com/fedora-infra/fedmsg _meta_fedora_infrastructure/blob/dcf6ee2ea004f7106a3b851bf2e05e11de2e4d30/CHANGE LOG.rst#0220 ---- Update to 0.20.0 Change log at : https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/blob/develop/CHANGELOG.rst#0200 ---- Update to 0.19.0 Release note at: https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/blob/develop/CHANGELOG.rst#0190 -------------------------------------------------------------------------------- ================================================================================ rho-0.0.28-1.el7 (FEDORA-EPEL-2017-f5559dd398) An SSH system profiler -------------------------------------------------------------------------------- Update Information: # Testing Rho To set up Rho, you create profiles that control how to run each scan. - Authentication profiles contain user credentials for a user with sufficient authority to complete the scan (for example, a root user or one with root-level access obtained through -sudo privilege escalation). - Network profiles contain network identifiers (for example, a hostname, IP address, or range of IP addresses) and the authentication profiles to be used for a scan. Complete the following steps, repeating them as necessary to access all parts of your environment that you want to scan: 1. Create at least one authentication profile with root-level access to Rho: ``` rho auth add --name auth_name --username root_name(--sshkeyfile key_file | --password) ``` a. At the Rho vault password prompt, create a new Rho vault password. This password is required to access the encrypted Rho data, such as authentication and network profiles, scan data, and other information. b. If you did not use the sshkeyfile option to provide an SSH key for the username value, enter the password of the user with root-level access at the connection password prompt. For example, for an authentication profile where the authentication profile name is roothost1, the user with root-level access is root, and the SSH key for the user is in the path ~/.ssh/id_rsa, you would enter the following command: ``` rho auth add --name roothost1 --username root --sshkeyfile ~/.ssh/id_rsa ``` You can also use the sudo-password option to create an authentication profile for a user with root-level access who requires a password to obtain this privilege. You can use the sudo-password option with either the sshkeyfile or the password option. For example, for an authentication profile where the authentication profile name is sudouser1, the user with root-level access is sysadmin, and the access is obtained through the password option, you would enter the following command: ``` rho auth add --name sudouser1 --username sysadmin --password --sudo-password ``` After you enter this command, you are prompted to enter two passwords. First, you would enter the connection password for the username user, and then you would enter the password for the sudo command. 2. Create at least one network profile that specifies one or more network identifiers, such as a host name, an IP address, a list of IP addresses, or an IP range, and one or more authentication profiles to be used for the scan: ``` rho profile add --name profile_name --hosts host_name_or_file --auth auth_name ``` For example, for a network profile where the name of the network profile is mynetwork, the network to be scanned is the 192.0.2.0/24 subnet, and the authentication profiles that are used to run the scan are roothost1 and roothost2, you would enter the following command: ``` rho profile add --name mynetwork --hosts 192.0.2.[1:254] --auth roothost1 roothost2 ``` You can also use a file to pass in the network identifiers. If you use a file to enter multiple network identifiers, such as multiple individual IP addresses, enter each on a single line. For example, for a network profile where the path to this file is /home/user1/hosts_file, you would enter the following command: ``` rho profile add --name mynetwork --hosts /home/user1/hosts_file --auth roothost1 roothost2 ``` # Running a scan Run the scan by using the scan command, specifying a network profile for the profile option and a location to store the output as a file in the comma-separated variables (CSV) format for the reportfile option: ``` rho scan --profile profile_name --reportfile filename.csv ``` For example, if you want to use the network profile mynetwork and save the report as mynetwork_scan1.csv, you would enter the following command: ``` rho scan --profile mynetwork --reportfile mynetwork_scan1.csv ``` -------------------------------------------------------------------------------- ================================================================================ tio-1.24-2.el7 (FEDORA-EPEL-2017-42c65d7f26) Simple TTY terminal I/O application -------------------------------------------------------------------------------- Update Information: Tio is a simple TTY terminal application which features a straightforward commandline interface to easily connect to TTY devices for basic input/output. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497549 - Review Request: tio - Simple TTY terminal I/O application https://bugzilla.redhat.com/show_bug.cgi?id=1497549 -------------------------------------------------------------------------------- ================================================================================ youtube-dl-2017.10.01-1.el7 (FEDORA-EPEL-2017-687b2c949c) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information: Update to latest release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494888 - youtube-dl-2017.10.01 is available https://bugzilla.redhat.com/show_bug.cgi?id=1494888 --------------------------------------------------------------------------------

1 0

Fedora EPEL 7 updates-testing report
by updates＠fedoraproject.org 01 Oct '17

01 Oct '17

The following Fedora EPEL 7 Security updates need testing: Age URL 938 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 700 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 282 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 180 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe mod_cluster-1.3.3-10.el7 178 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4 tnef-1.4.14-1.el7 177 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378 python-XStatic-jquery-ui-1.12.0.1-1.el7 44 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-17b77b3268 botan-1.10.16-1.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9f88067c22 mpg123-1.25.6-1.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e27758bd23 libmspack-0.6-0.1.alpha.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-2795d59fcc python3-numpy-1.10.4-5.el7 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-30a9c74908 php-horde-Horde-Image-2.5.2-1.el7 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5b07cc6958 wordpress-4.8.2-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8da6477f0a moodle-3.1.8-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3a2abe4898 php-horde-passwd-5.0.7-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a3ae700da7 php-horde-wicked-2.0.8-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d49c1ef800 php-horde-nag-4.2.17-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-52b8147c68 openvpn-auth-ldap-2.0.3-15.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e3436f7a95 libbson-1.3.5-4.el7 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9179bc1cf5 chromium-61.0.3163.100-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-3dcce634cb MySQL-zrm-3.0-17.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-afdcf119f4 freexl-1.0.4-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4826761f5d openvpn-2.4.4-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-abe6f98ebf tor-0.2.9.12-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f92580f68 yadifa-2.2.6-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing bgpq3-0.1.31-1.el7 fedmsg-1.0.1-4.el7 fedora-easy-karma-0-0.32.20170930git0c81432c.el7 nova-agent-2.1.6-1.el7 odcs-0.0.7-1.el7 openboardview-7.3-5.el7 openscap-daemon-0.1.8-1.el7 opensmtpd-6.0.2p1-6.el7 openvpn-2.4.4-1.el7 petsc-3.7.7-1.el7 php-phpmyadmin-sql-parser-4.2.2-1.el7 python-sync2jira-1.4-1.el7 sysbench-1.0.9-2.el7 tor-0.2.9.12-1.el7 tsung-1.7.0-1.el7 yadifa-2.2.6-1.el7 Details about builds: ================================================================================ bgpq3-0.1.31-1.el7 (FEDORA-EPEL-2017-666fc07261) Automate BGP filter generation based on routing database information -------------------------------------------------------------------------------- Update Information: Initial package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1495004 - Review Request: bgpq3 - Automate BGP filter generation based on routing database information https://bugzilla.redhat.com/show_bug.cgi?id=1495004 -------------------------------------------------------------------------------- ================================================================================ fedmsg-1.0.1-4.el7 (FEDORA-EPEL-2017-57b6bb1261) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information: * Refactor subpackages so that python2-fedmsg contains everything * Update to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ fedora-easy-karma-0-0.32.20170930git0c81432c.el7 (FEDORA-EPEL-2017-35e7efea31) Fedora update feedback made easy -------------------------------------------------------------------------------- Update Information: Add support for new bodhi client bindings and add hard dependencies for yum or python2-dnf -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494644 - fedora.client.bodhi.BodhiClientException: You must provide a captcha_key https://bugzilla.redhat.com/show_bug.cgi?id=1494644 [ 2 ] Bug #1270600 - fedora-easy-karma can not execute without yum or python2-dnf (missing dependency) https://bugzilla.redhat.com/show_bug.cgi?id=1270600 -------------------------------------------------------------------------------- ================================================================================ nova-agent-2.1.6-1.el7 (FEDORA-EPEL-2017-3fb011c248) Agent for setting up clean servers on Xen -------------------------------------------------------------------------------- Update Information: This is a new package. -------------------------------------------------------------------------------- ================================================================================ odcs-0.0.7-1.el7 (FEDORA-EPEL-2017-45f7d47d2a) The On Demand Compose Service -------------------------------------------------------------------------------- Update Information: Now with fedmsg support. ---- Fixes from @puiterwijk's security audit. -------------------------------------------------------------------------------- ================================================================================ openboardview-7.3-5.el7 (FEDORA-EPEL-2017-dced3e892c) Viewer for PCB layouts -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- ================================================================================ openscap-daemon-0.1.8-1.el7 (FEDORA-EPEL-2017-f033be17d0) Manages continuous SCAP scans of your infrastructure -------------------------------------------------------------------------------- Update Information: upgrade to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ opensmtpd-6.0.2p1-6.el7 (FEDORA-EPEL-2017-8f47a3c83f) Free implementation of the server-side SMTP protocol as defined by RFC 5321 -------------------------------------------------------------------------------- Update Information: Fixing HAVE_REALLOCARRAY in portable -------------------------------------------------------------------------------- References: [ 1 ] Bug #1480303 - opensmptd: Accidentally interposes reallocarray https://bugzilla.redhat.com/show_bug.cgi?id=1480303 -------------------------------------------------------------------------------- ================================================================================ openvpn-2.4.4-1.el7 (FEDORA-EPEL-2017-4826761f5d) A full-featured SSL VPN solution -------------------------------------------------------------------------------- Update Information: Maintenance release with several minor upstream bugfixes and a security fix related to legacy configurations deploying the deprecated `key-method 1` configuration option ([CVE-2017-12166](https://community.openvpn.net/openvpn/wiki/CVE-2017-12166)) From this update of, OpenVPN will use the lz4 compression library from Fedora EPEL instead of the upstream bundled library. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497109 - CVE-2017-12166 openvpn: Incorrect bounds check in read_key() with 'key-method 1' https://bugzilla.redhat.com/show_bug.cgi?id=1497109 -------------------------------------------------------------------------------- ================================================================================ petsc-3.7.7-1.el7 (FEDORA-EPEL-2017-95cf1c696b) Portable Extensible Toolkit for Scientific Computation -------------------------------------------------------------------------------- Update Information: - Update to 3.7.7 - Move petscvariables/petscrules under a private directory of libdir -------------------------------------------------------------------------------- ================================================================================ php-phpmyadmin-sql-parser-4.2.2-1.el7 (FEDORA-EPEL-2017-3a8700adef) A validating SQL lexer and parser with a focus on MySQL dialect -------------------------------------------------------------------------------- Update Information: **Version 4.2.2** - 2017-09-28 * Added support for binding parameters. -------------------------------------------------------------------------------- ================================================================================ python-sync2jira-1.4-1.el7 (FEDORA-EPEL-2017-b1ccb3cb7a) Sync pagure and github issues to jira, via fedmsg -------------------------------------------------------------------------------- Update Information: Now with support for spaces! ---- Latest upstream. Supports labels. Thanks @pingou! -------------------------------------------------------------------------------- ================================================================================ sysbench-1.0.9-2.el7 (FEDORA-EPEL-2017-b96ffec815) System performance benchmark -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1488694 - sysbench-1.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1488694 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.9.12-1.el7 (FEDORA-EPEL-2017-abe6f98ebf) Anonymizing overlay network for TCP -------------------------------------------------------------------------------- Update Information: update to upstream release 0.2.9.12 (SECURITY) (#1494860) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494860 - tor-0.2.9.10-1.el7.x86_64 is unsecure and out of date https://bugzilla.redhat.com/show_bug.cgi?id=1494860 [ 2 ] Bug #1493512 - CVE-2017-0380 tor: Stack disclosure in hidden services logs when SafeLogging disabled [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1493512 [ 3 ] Bug #1493513 - CVE-2017-0380 tor: Stack disclosure in hidden services logs when SafeLogging disabled [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1493513 -------------------------------------------------------------------------------- ================================================================================ tsung-1.7.0-1.el7 (FEDORA-EPEL-2017-6cf6da0e9a) A distributed multi-protocol load testing tool -------------------------------------------------------------------------------- Update Information: Update to 1.7.0 (#1486744) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1486744 - tsung-1.7.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1486744 -------------------------------------------------------------------------------- ================================================================================ yadifa-2.2.6-1.el7 (FEDORA-EPEL-2017-0f92580f68) Lightweight authoritative Name Server with DNSSEC capabilities -------------------------------------------------------------------------------- Update Information: 20170912: YADIFA 2.2.6 --- Fixes an issue where a maliciously crafted message may block the server. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494005 - CVE-2017-14339 yadifa: Infinite loop due to insufficient checks in the DNS packet parser https://bugzilla.redhat.com/show_bug.cgi?id=1494005 --------------------------------------------------------------------------------

1 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

epel-devel October 2017