The following Fedora EPEL 7 Security updates need testing:
Age URL
238
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
46
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f8311ec8a2
tor-0.3.5.8-1.el7
40
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-9c2c40e3df
guacamole-server-1.0.0-1.el7
19
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-317c9a2f81
drupal7-7.65-1.el7
15
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-114610bd18
golang-googlecode-go-crypto-0-0.15.20190324gitb7391e9.el7
14
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-d2c1368294
cinnamon-3.6.7-5.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f1efad2982
aria2-1.34.0-4.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-7bae341677
chromium-73.0.3683.86-2.el7
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-c9cd2d9a6c
ntfs-3g-2017.3.23-11.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-50a6a1ddfd
afflib-3.7.18-2.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-c739f0a89d
openjpeg2-2.3.1-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-77190f3ef7
python34-3.4.10-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f8395a0247
transmission-2.94-6.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
bdii-5.2.25-2.el7
dnsperf-2.2.1-3.el7
kronosnet-1.8-1.el7
pagure-5.5-1.el7
pspg-1.6.5-1.el7
python-catkin_pkg-0.4.11-1.el7
python-impacket-0.9.19-1.el7
python-pymssql-2.1.4-1.el7
python3-pyparsing-2.4.0-1.el7
znc-1.7.3-1.el7
Details about builds:
================================================================================
bdii-5.2.25-2.el7 (FEDORA-EPEL-2019-83a42ffdb7)
The Berkeley Database Information Index (BDII)
--------------------------------------------------------------------------------
Update Information:
bdii 5.2.25
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 9 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 5.2.25-2
- Define __python2 if undefined
* Tue Apr 9 2019 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 5.2.25-1
- Version 5.2.25
- Upstream project moved to github
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2.23-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Tue Nov 13 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 5.2.23-11
- Don't use /usr/bin/python shebang
- Remove EPEL 5 conditionals
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2.23-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Iryna Shcherbina <ishcherb(a)redhat.com> - 5.2.23-9
- Update Python 2 dependency declarations to new packaging standards
(See
https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3)
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2.23-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2.23-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2.23-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Mon Aug 15 2016 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 5.2.23-5
- Convert to systemd unit files (Fedora 25+)
* Wed Feb 3 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.2.23-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Sun Jul 26 2015 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.2.23-3
- Adapt to new policycoreutils packaging (Fedora 23+)
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
5.2.23-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
dnsperf-2.2.1-3.el7 (FEDORA-EPEL-2019-dbca455024)
Benchmarking authorative and recursing DNS servers
--------------------------------------------------------------------------------
Update Information:
New dnsperf package with latest upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1305888 - dnsperf for epel7
https://bugzilla.redhat.com/show_bug.cgi?id=1305888
--------------------------------------------------------------------------------
================================================================================
kronosnet-1.8-1.el7 (FEDORA-EPEL-2019-4780c5a01a)
Multipoint-to-Multipoint VPN daemon
--------------------------------------------------------------------------------
Update Information:
Updated to upstream release v1.8. ---- Updated to upstream release v1.5. ----
Updated to upstream release v1.4. ---- First commit of the new kronosnet
package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1507103 - Review Request: kronosnet - Multipoint-to-Multipoint network
abstraction layer for High Availability applications
https://bugzilla.redhat.com/show_bug.cgi?id=1507103
--------------------------------------------------------------------------------
================================================================================
pagure-5.5-1.el7 (FEDORA-EPEL-2019-90a52d5033)
A git-centered forge
--------------------------------------------------------------------------------
Update Information:
Update to Pagure 5.5
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 9 2019 Neal Gompa <ngompa13(a)gmail.com> - 5.5-1
- Update to 5.5
- Backport fix for pull mirroring feature
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1697306 - pagure-5.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1697306
--------------------------------------------------------------------------------
================================================================================
pspg-1.6.5-1.el7 (FEDORA-EPEL-2019-747c307ac5)
A unix pager optimized for psql
--------------------------------------------------------------------------------
Update Information:
new upstream release, per release notes:
https://github.com/okbob/pspg/releases/tag/1.6.5
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 9 2019 Pavel Raiskup <praiskup(a)redhat.com> - 1.6.5-1
- new upstream release, per release notes:
https://github.com/okbob/pspg/releases/tag/1.6.5
* Thu Mar 21 2019 Pavel Raiskup <praiskup(a)redhat.com> - 1.6.4-1
- new upstream release, per release notes:
https://github.com/okbob/pspg/releases/tag/1.6.4
* Thu Feb 28 2019 Pavel Raiskup <praiskup(a)redhat.com> - 1.6.3-4
- rebuild for libreadline.so.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1697260 - pspg-1.6.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1697260
--------------------------------------------------------------------------------
================================================================================
python-catkin_pkg-0.4.11-1.el7 (FEDORA-EPEL-2019-10ea691013)
Library for retrieving information about catkin packages
--------------------------------------------------------------------------------
Update Information:
Update from a very old version and introduce a python 3 subpackage.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 9 2019 Scott K Logan <logans(a)cottsay.net> - 0.4.11-1
- Update to 0.4.11
- Switch to Python 3 Sphinx
- Merge spec format with master
--------------------------------------------------------------------------------
================================================================================
python-impacket-0.9.19-1.el7 (FEDORA-EPEL-2019-bcc77f8390)
Collection of Python classes providing access to network packets
--------------------------------------------------------------------------------
Update Information:
Bump to upstream release version 0.9.19
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 4 2019 Michal Ambroz <rebus _AT seznam.cz> - 0.9.19-1
- bump to version 0.9.19
--------------------------------------------------------------------------------
================================================================================
python-pymssql-2.1.4-1.el7 (FEDORA-EPEL-2019-1919ff7389)
DB-API interface to Microsoft SQL Server
--------------------------------------------------------------------------------
Update Information:
General ------- - Allow linkage against FreeTDS (by dropping usage of
deprecated ``DBVERSION_80`` symbol.) (GH-432) - Stop using 7.1 as default
value for the TDS protocol version used in connections. This is a backward
incompatible change and affects connections using both `pymssql` and `_mssql`.
Now you need to specify a TDS protocol version explicitly by using any of the
supported mechanisms (in descending order of precedence): * Using the
``tds_version`` paramenter of ``pymssql.connect()`` and ``_mssql.connect()``
* A ``TDSVER`` enviromnent variable (see FreeTDS documentation) * A
``freetds.conf`` file (see FreeTDS documentation) - Drop support for versions
of FreeTDS older than 0.91. - Accept 7.3 as TDS protocol version when
establishing a connection. - Add Python 3.7 support - Drop Python 3.3 support
Features -------- - Support for new in SQL Server 2008 ``DATE``, ``TIME`` and
``DATETIME2`` data types (GH-156). The following conditions need to be
additionally met so values of these column types can be returned from the
database as their native corresponding Python data types instead of as
strings: * Underlying FreeTDS must be 0.95 or newer. * TDS protocol version
in use must be 7.3 or newer. Thanks Ed Avis for the implementation. (GH-331)
Bug fixes --------- - Finish implementation of TDS protocol version 7.3 support
by actually accepting ``"7.3"`` as TDS protocol version when establishing a
connection. (GH-455) - Fixed and expanded Python data types that can be used
to pass ``VARBINARY``, ``BINARY`` and ``IMAGE`` SQL Server Stored Procedures
input parameters. (GH-425). Thanks Bill Adams for the fix. - Fix
``tds_version`` ``_mssql`` connection property value for TDS version. 7.1 is
actually 7.1 and not 8.0.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 9 2019 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 2.1.4-1
- Update to 2.1.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1697543 - python-pymssql-2.1.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1697543
--------------------------------------------------------------------------------
================================================================================
python3-pyparsing-2.4.0-1.el7 (FEDORA-EPEL-2019-d9014162de)
Python package with an object-oriented approach to text processing
--------------------------------------------------------------------------------
Update Information:
Introduce Python3-only Pyparsing package for EPEL7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1697567 - Review Request: python3-pyparsing - Python package with an
object-oriented approach to text processing
https://bugzilla.redhat.com/show_bug.cgi?id=1697567
--------------------------------------------------------------------------------
================================================================================
znc-1.7.3-1.el7 (FEDORA-EPEL-2019-e36ad19201)
An advanced IRC bouncer
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2019-9917
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 9 2019 Nick Bebout <nb(a)fedoraproject.org> - 1.7.3-1
- Update to 1.7.3
* Wed Mar 27 2019 Nick Bebout <nb(a)fedoraproject.org> - 1.7.3-0.1
- Update to 1.7.3-rc1 to fix CVE-2019-9917
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1692771 - CVE-2019-9917 znc: crash on invalid encoding [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1692771
[ 2 ] Bug #1692770 - CVE-2019-9917 znc: crash on invalid encoding [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1692770
[ 3 ] Bug #1691613 - znc-1.7.3-rc1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1691613
--------------------------------------------------------------------------------