The following Fedora EPEL 7 Security updates need testing:
Age URL
648
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
390
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-c499781e80
python-gnupg-0.4.4-1.el7
388
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bc0182548b
bubblewrap-0.3.3-2.el7
97
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fa8a2e97c6
python-waitress-1.4.3-1.el7
37
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-19d171a465
python34-3.4.10-5.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-e6847d3b59
perl-Mojolicious-7.94-3.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ff94ccbdec
openssl11-1.1.1c-2.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-624f38e579
qbittorrent-3.3.16-2.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-235a51a239
clamav-0.102.3-1.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ae83e43288
log4net-2.0.8-10.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-134c471656
json-c12-0.12.1-4.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-567eda5296
exim-4.93-3.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ff11142989
netdata-1.22.1-3.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-e7814b7723
transmission-2.94-9.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-19de895038
knot-resolver-5.1.1-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ed6bc3c8d4
golang-1.13.11-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
opensmtpd-6.7.1p1-1.el7
rdiff-backup-2.0.3-1.el7
tracer-0.7.3-2.el7
xrootd-4.12.1-1.el7
Details about builds:
================================================================================
opensmtpd-6.7.1p1-1.el7 (FEDORA-EPEL-2020-c8b359dff8)
Free implementation of the server-side SMTP protocol as defined by RFC 5321
--------------------------------------------------------------------------------
Update Information:
OpenSMTPD 6.7.1p1 (May 21, 2020) --- - a packaging issue causing asr.h to be
installed on the host system - a possible crash when the MTA establishes an IPv6
connection OpenSMTPD 6.7.0p1 (May 21, 2020) --- New Features: - Allowed use of
the smtpd(8) session username in built-in filters when available. - Introduced a
bypass keyword to smtpd(8) so that built-in filters can bypass processing when a
condition is met. - Allowed use of 'auth' as an origin in smtpd.conf(5). -
Allowed use of mail-from and rctp-to as for and from parameters in
smtpd.conf(5). Bug fixes: - Ensured legacy ssl(8) session ID is persistent
during a client TLS session, fixing an issue using TLSv1.3 with
smtp.mail.yahoo.com. - Fixed security vulnerabilities in smtpd(8). Corrected an
out-of-bounds read in smtpd allowing an attacker to inject arbitrary commands
into the envelope file to be executed as root, and ensured privilege revocation
in smtpctl(8) to prevent arbitrary commands from being run with the _smtpq
group. - Allowed mail.local(8) to be run as non-root, opening a pipe to
lockspool(1) for file locking. - Fixed a security vulnerability in smtpd(8)
which could lead to a privilege escalation on mbox deliveries and unprivileged
code execution on lmtp deliveries. - Added support for CIDR in a: spf atoms in
smtpd(8). - Fixed a possible crash in smtpd(8) when combining "from rdns" with
nested virtual aliases under a particular configuration. Experimental Features:
- Introduced smtp-out event reporting. - Improved filtering protocol.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2020 Denis Fateyev <denis(a)fateyev.com> - 6.7.1p1-1
- Update to 6.7.1p1 release
- Remove deprecated "legacy_common_support" build option
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1835478 - opensmtpd-6.7.1p1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1835478
--------------------------------------------------------------------------------
================================================================================
rdiff-backup-2.0.3-1.el7 (FEDORA-EPEL-2020-150c0a4ed4)
Convenient and transparent local/remote incremental mirror/backup
--------------------------------------------------------------------------------
Update Information:
Version 2.0.3 - Bugfix release
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 23 2020 Frank Crawford <frank(a)crawford.emu.id.au> 2.0.3-1
- Version 2.0.3 - Bugfix release
--------------------------------------------------------------------------------
================================================================================
tracer-0.7.3-2.el7 (FEDORA-EPEL-2020-d7757e6460)
Finds outdated running applications in your system
--------------------------------------------------------------------------------
Update Information:
- Use DNF on RHEL (jturel(a)gmail.com) - Use PackageManager to determine kernel
version (jturel(a)gmail.com) - Use subprocess to check process path arguments
(jturel(a)gmail.com) - Ignore debug kernels when checking if kernel has been
updated (jturel(a)gmail.com) - Fix build dependencies for EL7, EL8, F30
(jturel(a)gmail.com) - Do not build python2 package for Fedora anymore
(frostyx(a)email.cz)
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 23 2020 Jakub Kadl����k <jkadlcik(a)redhat.com> - 0.7.3-2
- We lost release dist macro somewhere
* Fri May 22 2020 Jonathon Turel <jturel(a)gmail.com> 0.7.3-1
- Stub dbus calls in tests (jturel(a)gmail.com)
* Thu May 21 2020 Jonathon Turel <jturel(a)gmail.com> 0.7.2-3
- Update tito releaser branches (frostyx(a)email.cz)
- Not build for python2 package for Fedora anymore (frostyx(a)email.cz)
* Thu May 21 2020 Jonathon Turel <jturel(a)gmail.com> 0.7.2-2
- Fix build dependencies for EL7, EL8, F30 (jturel(a)gmail.com)
* Thu May 21 2020 Jonathon Turel <jturel(a)gmail.com> 0.7.2-1
- Use DNF on RHEL (jturel(a)gmail.com)
- Use PackageManager to determine kernel version (jturel(a)gmail.com)
- Use subprocess to check process path arguments (jturel(a)gmail.com)
- Find the right lxml version for Python 3.4 (jturel(a)gmail.com)
- Update Vagrantfile to use Fedora 30 (jturel(a)gmail.com)
- Ignore debug kernels when checking if kernel has been updated
(jturel(a)gmail.com)
- Add build dependency for nosetests (frostyx(a)email.cz)
- Run tests within the %check phase (frostyx(a)email.cz)
- Update fedora branches (frostyx(a)email.cz)
--------------------------------------------------------------------------------
================================================================================
xrootd-4.12.1-1.el7 (FEDORA-EPEL-2020-8583f8d850)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
xrootd 4.12.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 21 2020 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.12.1-1
- Update to version 4.12.1
- Fix broken man page
--------------------------------------------------------------------------------