The following Fedora EPEL 6 Security updates need testing:
Age URL
709
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
703
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
593
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
564
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
175
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac
libbsd-0.8.3-2.el6
71
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f
tnef-1.4.14-1.el6
34
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-6ee18d1c7b
openvpn-2.4.2-1.el6
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5279a157d2
ansible-2.3.1.0-1.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f70a51bd19
tomcat-7.0.78-1.el6
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-23f4cb5d02
lxc-1.0.10-2.el6
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-16880697fe
nagios-4.3.2-3.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-6489eec271
golang-1.7.6-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
MySQL-zrm-3.0-6.el6.1
golang-1.7.6-1.el6
pcre2-10.21-19.el6
purple-facebook-0.9.4-3.c9b74a765767.el6
smbldap-tools-0.9.6-4.el6
Details about builds:
================================================================================
MySQL-zrm-3.0-6.el6.1 (FEDORA-EPEL-2017-e06c2b4baa)
MySQL backup manager
--------------------------------------------------------------------------------
Update Information:
- Check exit status of all commands in pipes (bug #1151623) - Do not use --same-
order with -c for tar (bug #1458038)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1151623 - mysql-zrm doesn't check the exitcode of all the commands in the
pipeline
https://bugzilla.redhat.com/show_bug.cgi?id=1151623
--------------------------------------------------------------------------------
================================================================================
golang-1.7.6-1.el6 (FEDORA-EPEL-2017-6489eec271)
The Go Programming Language
--------------------------------------------------------------------------------
Update Information:
* Security fix for CVE-2017-8932 * Bump to 1.7.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1455190 - CVE-2017-8932 golang: Elliptic curvers carry propagation issue in
x86-64 P-256 [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=1455190
--------------------------------------------------------------------------------
================================================================================
pcre2-10.21-19.el6 (FEDORA-EPEL-2017-4ca9845bf5)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes DFA matching a lookbehind assertion that has a zero-length
branch and returned offsets from regexec() when REG_STARTEND is used with
starting offset greater than zero.
--------------------------------------------------------------------------------
================================================================================
purple-facebook-0.9.4-3.c9b74a765767.el6 (FEDORA-EPEL-2017-af37f58a1f)
Facebook protocol plugin for purple2
--------------------------------------------------------------------------------
Update Information:
* Filter provides from plugins on el6, too * Properly run %%filter_setup ----
* New upstream release * Filter provides from plugins
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1460505 - purple-facebook-0.9.4-c9b74a765767 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1460505
[ 2 ] Bug #1448596 - undefined symbol: purple_notify_user_info_add_pair_plaintext
https://bugzilla.redhat.com/show_bug.cgi?id=1448596
--------------------------------------------------------------------------------
================================================================================
smbldap-tools-0.9.6-4.el6 (FEDORA-EPEL-2017-97c2545a37)
User and group administration tools for Samba/OpenLDAP
--------------------------------------------------------------------------------
Update Information:
This update addresses a corner case in which there are computer and user
accounts with the same name in the database. The update ensures that the user
account is chosen when acting on user entries, e.g. when using `smbldap-passwd`.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1456783 - smbldap-passwd - wrong search scope for get_user_dn
https://bugzilla.redhat.com/show_bug.cgi?id=1456783
--------------------------------------------------------------------------------