The following Fedora EPEL 7 Security updates need testing:
Age URL
345
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
107
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-a65d7ed780
python-pymongo-2.5.2-4.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-638137e4de
wordpress-4.4.2-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-c8f005b596
mingw-curl-7.47.0-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-a140bf655b
mingw-libpng-1.6.21-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-6a9bb3d488
mingw-libxml2-2.9.3-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-6d2a530b12
mingw-pcre-8.38-1.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2d8fa2e036
firebird-2.5.5.26952.0-2.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23f4cb12a2
php-horde-horde-5.2.9-1.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-50304d1e1f
nodejs-0.10.42-4.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-bc557a5441
nghttp2-1.7.1-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-287d763bcd
GraphicsMagick-1.3.23-4.el7 gdl-0.9.5-3.el7 octave-3.8.2-19.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-5748740371
qt-creator-3.5.1-2.el7 botan-1.10.12-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
ansible1.9-1.9.4-2.el7
bash-completion-extras-2.1-8.el7
botan-1.10.12-1.el7
canl-java-2.1.2-1.el7
dmlite-plugins-s3-0.7.0-3.el7
dnsenum-1.2.4.2-4.el7
htop-2.0.0-2.el7
libbson-1.3.3-1.el7
nodejs-bluebird-2.3.11-1.el7
perl-Pod-Snippets-0.14-6.el7
php-nette-tester-1.7.0-1.el7
php-pecl-radius-1.3.0-1.el7
python-msgpack-0.4.7-3.el7
python-sh-1.11-1.el7
qt-creator-3.5.1-2.el7
retrace-server-1.14-1.el7
task-2.5.1-0.1.beta1.el7
texlive-extension-2012-5.el7
voms-api-java-3.1.0-1.el7
youtube-dl-2016.02.13-1.el7
zvbi-0.2.35-1.el7
Details about builds:
================================================================================
ansible1.9-1.9.4-2.el7 (FEDORA-EPEL-2016-8bc3669ae5)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
New compat package to provide ansible 1.x for people transitioning from older
ansible to the ansible-2.0 package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1306407 - Review Request: ansible1.9 - SSH-based configuration management,
deployment, and task execution system
https://bugzilla.redhat.com/show_bug.cgi?id=1306407
--------------------------------------------------------------------------------
================================================================================
bash-completion-extras-2.1-8.el7 (FEDORA-EPEL-2016-ca3637fb80)
Additional programmable completions for Bash
--------------------------------------------------------------------------------
Update Information:
initial package creation
--------------------------------------------------------------------------------
================================================================================
botan-1.10.12-1.el7 (FEDORA-EPEL-2016-5748740371)
Crypto library written in C++
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-2194, CVE-2016-2195, CVE-2016-2196 ---- fix the
build failure on ppc64le
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1305439 - CVE-2016-2196 CVE-2016-2195 CVE-2016-2194 botan: various flaws
fixed in 1.11.27 and 1.10.11
https://bugzilla.redhat.com/show_bug.cgi?id=1305439
--------------------------------------------------------------------------------
================================================================================
canl-java-2.1.2-1.el7 (FEDORA-EPEL-2016-6b7aac7995)
EMI Common Authentication library - bindings for Java
--------------------------------------------------------------------------------
Update Information:
New upstream releases.
--------------------------------------------------------------------------------
================================================================================
dmlite-plugins-s3-0.7.0-3.el7 (FEDORA-EPEL-2016-7ab6d0137c)
S3 plugin for dmlite
--------------------------------------------------------------------------------
Update Information:
- fix build on F24 - fix build with cmake 2.8 - adapted to dmlite 0.7.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1307427 - dmlite-plugins-s3: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1307427
--------------------------------------------------------------------------------
================================================================================
dnsenum-1.2.4.2-4.el7 (FEDORA-EPEL-2016-b7da494d03)
A tool to enumerate DNS info about domains
--------------------------------------------------------------------------------
Update Information:
Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
htop-2.0.0-2.el7 (FEDORA-EPEL-2016-c9171bbc89)
Interactive process viewer
--------------------------------------------------------------------------------
Update Information:
- Update to 2.0.0 - Fix buffer reuse (#1308359) - Fix crash when emptying column
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1308359 - [abrt] htop: setCommand(): htop killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1308359
--------------------------------------------------------------------------------
================================================================================
libbson-1.3.3-1.el7 (FEDORA-EPEL-2016-fb7f0eb1b4)
Building, parsing, and iterating BSON documents
--------------------------------------------------------------------------------
Update Information:
This package provides a library for serializing and deserializing BSON
documents.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1208101 - Review Request: libbson - Building, parsing, and iterating BSON
documents
https://bugzilla.redhat.com/show_bug.cgi?id=1208101
--------------------------------------------------------------------------------
================================================================================
nodejs-bluebird-2.3.11-1.el7 (FEDORA-EPEL-2016-9b67518519)
Full featured Promises/A+ implementation
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1307137 - nodejs-bluebird RPM content does not match NPM module
https://bugzilla.redhat.com/show_bug.cgi?id=1307137
--------------------------------------------------------------------------------
================================================================================
perl-Pod-Snippets-0.14-6.el7 (FEDORA-EPEL-2016-f5a4a1c44d)
Extract and reformat snippets of POD
--------------------------------------------------------------------------------
Update Information:
0.14 Wed Oct 12 19:06:00 CEST 2007 - Added "require 5.006;" as suggested by
CPAN testers 0.12 Wed Oct 10 22:27:12 CEST 2007 - Suppressed dependency on
File::Slurp to placate CPANTS 0.11 Wed Oct 10 20:16:12 CEST 2007 - First
version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1305178 - perl-Pod-Snippets: please provide epel build
https://bugzilla.redhat.com/show_bug.cgi?id=1305178
--------------------------------------------------------------------------------
================================================================================
php-nette-tester-1.7.0-1.el7 (FEDORA-EPEL-2016-18f19bc6c5)
An easy-to-use PHP unit testing framework
--------------------------------------------------------------------------------
Update Information:
**Released version 1.7.0** * HtmlGenerator: not evaluated sources are counted
as not covered #248 * TestCase * data provider can return Traversable #272
* error handler is registered only once #268 * data provider file may
start by dot * Dumper * print object hash #277 * fixed dumping INF
in PHP 7.0.2 * toLine() improved empty array dump *
dumpException() prints source line where Assert is called * Added support for
PHPDBG SAPI #258 * CodeCoverage: added support for PHPDBG collector as Xdebug
alternative * DataProvider: added support for .php provider #280 *
Environment: variable term=xterm-256color enables colors * FileMock: added
unlink()
--------------------------------------------------------------------------------
================================================================================
php-pecl-radius-1.3.0-1.el7 (FEDORA-EPEL-2016-f14d11d5f1)
Radius client library
--------------------------------------------------------------------------------
Update Information:
**Version 1.3.0** - Fixed bug #65156 (Please provide LICENSE file). (Adam) -
Fixed bug #65378 (radius.c:706: error: too many arguments to function
���rad_salt_value���). (Adam) - Fixed bug #65599 (Fix compiling for VC11 x64). (Jan
Ehrhardt) **Version 1.3.0b1** This release adds several new features: -
Support for CoA and disconnect packets. - Support for tagged attributes. -
Support for salt-encrypted attributes. - Support for Juniper vendor specific
attributes. These features are based on code written by Gabriel Blanchard in
his fork of PECL radius:
https://github.com/gblanchard/pecl-radius. Three new
functions have been added to handle these features: -
radius_get_tagged_attr_data(string attr) This function returns the data from a
tagged attribute. - radius_get_tagged_attr_tag(string attr) This function
returns the tag from a tagged attribute. - radius_salt_encrypt_attr(resource
radius_handle, string attr) This function salt-encrypts the given attribute.
This shouldn't normally need to be called manually, but is available for unusual
use cases. Salt encryption is generally achieved through the use of the new
RADIUS_OPTION_SALT option. All put functions have been extended to accept an
optional options bitfield and an optional tag value, which will be used to tag
an attribute if the RADIUS_OPTION_TAGGED option is set. There should be no
backward compatibility breaks with this release.
--------------------------------------------------------------------------------
================================================================================
python-msgpack-0.4.7-3.el7 (FEDORA-EPEL-2016-bf6f33ddfc)
A Python MessagePack (de)serializer
--------------------------------------------------------------------------------
Update Information:
Added epel7 py3 (python34) compatibility
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290393 - python34-msgpack: please provide python3 build in epel7
https://bugzilla.redhat.com/show_bug.cgi?id=1290393
[ 2 ] Bug #1301415 - python-msgpack-0.4.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1301415
--------------------------------------------------------------------------------
================================================================================
python-sh-1.11-1.el7 (FEDORA-EPEL-2016-a4dafd6b9f)
Python module to simplify calling shell commands
--------------------------------------------------------------------------------
Update Information:
Updated to upstream version 1.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1306405 - Kill the entire process group when a command times out
https://bugzilla.redhat.com/show_bug.cgi?id=1306405
--------------------------------------------------------------------------------
================================================================================
qt-creator-3.5.1-2.el7 (FEDORA-EPEL-2016-5748740371)
Cross-platform IDE for Qt
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-2194, CVE-2016-2195, CVE-2016-2196 ---- fix the
build failure on ppc64le
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1305439 - CVE-2016-2196 CVE-2016-2195 CVE-2016-2194 botan: various flaws
fixed in 1.11.27 and 1.10.11
https://bugzilla.redhat.com/show_bug.cgi?id=1305439
--------------------------------------------------------------------------------
================================================================================
retrace-server-1.14-1.el7 (FEDORA-EPEL-2016-fd8e63fccd)
Application for remote coredump analysis
--------------------------------------------------------------------------------
Update Information:
New upstream release 1.14 that fixes build & packaging issues.
--------------------------------------------------------------------------------
================================================================================
task-2.5.1-0.1.beta1.el7 (FEDORA-EPEL-2016-d743df84d0)
Taskwarrior - a command-line TODO list manager
--------------------------------------------------------------------------------
Update Information:
Latest beta from upstream.
https://git.tasktools.org/projects/TM/repos/task/bro
wse/ChangeLog?at=refs%2Fheads%2F2.5.1
--------------------------------------------------------------------------------
================================================================================
texlive-extension-2012-5.el7 (FEDORA-EPEL-2016-448db6feef)
TeX formatting system
--------------------------------------------------------------------------------
Update Information:
add missing styles: a4wide, moreverb. comment ---- texlive-extension include
texlive extensions which are dropped in RHEL7. This update has langcyrillic
support.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289897 - Missing Latex style files
https://bugzilla.redhat.com/show_bug.cgi?id=1289897
--------------------------------------------------------------------------------
================================================================================
voms-api-java-3.1.0-1.el7 (FEDORA-EPEL-2016-6b7aac7995)
Virtual Organization Membership Service Java API
--------------------------------------------------------------------------------
Update Information:
New upstream releases.
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2016.02.13-1.el7 (FEDORA-EPEL-2016-0ef5e7ce16)
A small command-line program to download online videos
--------------------------------------------------------------------------------
Update Information:
Update to latest release. ---- Update to latest release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1296781 - youtube-dl-2016.02.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1296781
[ 2 ] Bug #1270444 - [abrt] youtube-dl: ssl.py:621:read:SSLError: ('The read
operation timed out',)
https://bugzilla.redhat.com/show_bug.cgi?id=1270444
[ 3 ] Bug #1279072 - [abrt] youtube-dl: ssl.py:271:match_hostname:CertificateError:
hostname u'www.youtube.com' doesn't match either of '*.opendns.com',
'opendns.com'
https://bugzilla.redhat.com/show_bug.cgi?id=1279072
--------------------------------------------------------------------------------
================================================================================
zvbi-0.2.35-1.el7 (FEDORA-EPEL-2016-7691119a3a)
Raw VBI, Teletext and Closed Caption decoding library
--------------------------------------------------------------------------------
Update Information:
Update to 0.2.35
--------------------------------------------------------------------------------