The following Fedora EPEL 7 Security updates need testing:
Age URL
68
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1f259a45ef
openjpeg2-2.3.1-11.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-edab6b43f2
seamonkey-2.53.8.1-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1405677543
putty-0.76-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
CFR-0.151-3.el7
oval-graph-1.2.8-1.el7
prosody-0.11.10-1.el7
Details about builds:
================================================================================
CFR-0.151-3.el7 (FEDORA-EPEL-2021-3a82f02dd3)
CFR - Another Java Decompiler
--------------------------------------------------------------------------------
Update Information:
Initial release
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
oval-graph-1.2.8-1.el7 (FEDORA-EPEL-2021-3f874a390a)
Tool for visualization of SCAP rule evaluation results
--------------------------------------------------------------------------------
Update Information:
1.2.8 (Jan Rodak)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 2 2021 Packit Service <user-cont-team+packit-service(a)redhat.com> -
1.2.8-1
- 1.2.8 (Jan Rodak)
- Changes name of test functions (Jan Rodak)
- Changes output of test_commands (Jan Rodak)
- Changes how are loaded path (Jan Rodak)
- Removes an unnecessary method (Jan Rodak)
- Improves naming of metodes (Jan Rodak)
- Reworks completion of message (Jan Rodak)
- Creates global namespaces for parsing XML (Jan Rodak)
- Renames parsers classes (Jan Rodak)
- Changes methods to static methods in the parser for comments (Jan Rodak)
- Reduces the number of parameters in the method (Jan Rodak)
- Moves the creation of the test node and the extended definition node to separate methods
(Jan Rodak)
- Changes method to static method in the parser for oval scan definitions (Jan Rodak)
- Uses global dictionary for conversion bool values (Jan Rodak)
- Simplify the method (Jan Rodak)
- Changes methods to static methods in the parser for test info (Jan Rodak)
- Improves code formatting (Jan Rodak)
- Removes an unnecessary method (Jan Rodak)
- Improves search in oval system characteristics (Jan Rodak)
- Changes tests for new arf xml parser (Jan Rodak)
- Changes clinet for new arf xml parser (Jan Rodak)
- Improves raise error (Jan Rodak)
- Removes unnecessary variables (Jan Rodak)
- Improves xml validation (Jan Rodak)
- Reworks loading rules form profile (Jan Rodak)
- Changes formatting in a benchmark for ARF XML parser (Jan Rodak)
- Moves XML parser part to separate directory (Jan Rodak)
- Reworks check for the generated HTML (Jan Rodak)
- Reworks generating HTML (Jan Rodak)
- Reworks opening web browser with a report (Jan Rodak)
- Fixes tests after change verbose output (Jan Rodak)
- Removes unnecessary function parameter (Jan Rodak)
- Rework verbose output (Jan Rodak)
- Renemes class (Jan Rodak)
- Creates sub modul for creating HTML (Jan Rodak)
- Updates tests (Jan Rodak)
- Implements new OVAL gate evaluation to OVAL tree (Jan Rodak)
- Reworks OVAL gate evaluation (Jan Rodak)
* Mon Aug 2 2021 Jan Rodak <jrodak(a)redhat.com> - 1.2.8-1
- release 1.2.8
--------------------------------------------------------------------------------
================================================================================
prosody-0.11.10-1.el7 (FEDORA-EPEL-2021-b740c86692)
Flexible communications server for Jabber/XMPP
--------------------------------------------------------------------------------
Update Information:
Prosody 0.11.10 =============== Upstream is pleased to announce a new minor
release from their stable branch. This release primarily fixes CVE-2021-37601,
a remote information disclosure vulnerability. See the previously released
advisory for details. Upstream recommends that all deployments upgrade if they
have not yet applied the mitigation described in the advisory. Security
-------- * MUC: Fix logic for access to affiliation lists CVE-2021-37601:
https://prosody.im/security/advisory_20210722/ Minor changes ------------- *
prosodyctl: Add `limits` to known globals to warn about misplacing it *
util.ip: Fix netmask for link-local address range * mod_pep: Remove obsolete
node restoration code * util.pubsub: Fix traceback if node data not
initialized
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 3 2021 Robert Scheck <robert(a)fedoraproject.org> 0.11.10-1
- Upgrade to 0.11.10 (#1989535)
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.11.9-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Thu May 20 2021 Pete Walter <pwalter(a)fedoraproject.org> - 0.11.9-3
- Rebuild for ICU 69
* Wed May 19 2021 Pete Walter <pwalter(a)fedoraproject.org> - 0.11.9-2
- Rebuild for ICU 69
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1989535 - prosody-0.11.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1989535
--------------------------------------------------------------------------------