The following Fedora EPEL 6 Security updates need testing:
Age URL
304
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2...
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect...
81
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ct...
227
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3...
492
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gri...
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki11...
29
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-...
11
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubema...
7
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3...
The following builds have been pushed to Fedora EPEL 6 updates-testing
bitlbee-3.2-1.el6
libupnp-1.6.18-2.el6
mozilla-adblockplus-2.2.3-1.el6
ovirt-engine-cli-3.2.0.10-1.el6
ovirt-engine-sdk-3.2.0.9-1.el6
python-testtools-0.9.29-1.el6
re2-20130115-2.el6
Details about builds:
================================================================================
bitlbee-3.2-1.el6 (FEDORA-EPEL-2013-0405)
IRC to other chat networks gateway
--------------------------------------------------------------------------------
Update Information:
BitlBee 3.2
===========
* By far the most important change, a thorough update to the Twitter module:
* Now using Twitter API 1.1,
* which means it's now using JSON instead of XML,
* which means access to the streaming API (Twitter only, other Twitter API services
don't seem to have it). No more 60-second polls, #twitter looks even more like real
IRC now!
* Also, the streaming API means nice things like receiving DMs.
* show_ids, already enabled by default for a while, now uses hexadecimal numbers,
which means a 256-entry backlog instead of just 100.
* Added a mode=strict setting which requires everything to be a command. The
"post" command should then be used to post a Tweet.
* Jabber module bugfix that fixes connection issues with at least Google Talk but
reportedly some other servers (OpenFire?) as well.
* SSL modules improved a little bit. GnuTLS module now supports SNI and session caching.
Shouldn't change much, but hopefully reduces latency and bandwidth usage a little
bit.
* A bunch of other fixes/improvements here and there.
BitlBee 3.0.6
=============
* Updated MSN module to speak MSNP18:
* Biggest change is that this brings MPOP support (you can sign in to one account from
multiple locations).
* Restored support for *sending* offline messages.
* Some support for federated (i.e. Yahoo!) contacts. (Only messages might work, you
won't see them online.)
* Twitter:
* Work-around for stalls that are still happening sometimes.
* Added "favourite" command.
* "show_ids" enabled by default.
* Handle see-other-host Jabber messages which should fix support for MSN-XMPP.
* Misc. fixes and improvements.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2013 Robert Scheck <robert(a)fedoraproject.org> 3.2-1
- Upgrade to 3.2 (#912675, thanks to Eike Hein and Rex Dieter)
- Use the new systemd macros (#850048, thanks to Václav Pavlín)
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.0.5-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Tue Jul 24 2012 Matej Cepl <mcepl(a)redhat.com> - 3.0.5-4
- The last version of SSL/NSS patch for the upstream #714
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.0.5-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu Jun 21 2012 Matej Cepl <mcepl(a)redhat.com> - 3.0.5-2
- Add more error handling to lib/ssl_nss.c
- Checking patches for compatibility with the current state of the word
and updating comments.
- Improve otr conditional
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #912675 - Package BitlBee 3.2 (current package will break with Twitter on
2013-03-05 due to new API)
https://bugzilla.redhat.com/show_bug.cgi?id=912675
[ 2 ] Bug #805302 - CVE-2012-1187 bitlbee: does not drop extra group privileges
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=805302
--------------------------------------------------------------------------------
================================================================================
libupnp-1.6.18-2.el6 (FEDORA-EPEL-2013-0404)
Universal Plug and Play (UPnP) SDK
--------------------------------------------------------------------------------
Update Information:
Update to 1.6.18 to support upgrading mediatomb.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 29 2013 Adam Jackson <ajax(a)redhat.com> 1.6.18-1
- libupnp 1.6.18 (#905577)
* Tue Oct 16 2012 Adam Jackson <ajax(a)redhat.com> 1.6.17-1
- libupnp 1.6.17
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.6.13-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.6.13-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Sat Jul 30 2011 Matěj Cepl <mcepl(a)redhat.com> - 1.6.13-2
- Rebuilt against new libraries.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #912823 - Please update to 1.6.18 in rawhide and EL-6
https://bugzilla.redhat.com/show_bug.cgi?id=912823
--------------------------------------------------------------------------------
================================================================================
mozilla-adblockplus-2.2.3-1.el6 (FEDORA-EPEL-2013-0401)
Adblocking extension for Mozilla Firefox, Thunderbird, and Seamonkey
--------------------------------------------------------------------------------
Update Information:
Update to upstream 2.2.3. Minor bug fixes only.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 14 2013 Russell Golden <niveusluna(a)niveusluna.org> - 2.2.3-1
- (Does not apply to Linux) Worked around AVG Security Toolbar
14.0.3.* breaking Adblock Plus among other things.
- Made sure that first-run page always opens is the current browser
window (bug 819561).
--------------------------------------------------------------------------------
================================================================================
ovirt-engine-cli-3.2.0.10-1.el6 (FEDORA-EPEL-2013-0406)
oVirt Engine Command Line Interface
--------------------------------------------------------------------------------
Update Information:
Update to upstream 3.2.0.10
Update to upstream 3.2.0.9 in order to fix bug 905359
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2013 Juan <juan.hernandez(a)redhat.com> - 3.2.0.10-4
- Update to upstream 3.2.0.10
- Revert upstream change to use pexpect-u instead of pexpect, as the
former is not available in el6 distributions
* Wed Jan 30 2013 Juan Hernandez <juan.hernandez(a)redhat.com> - 3.2.0.9-1
- Update to upstream 3.2.0.9
- Fix for #905359
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #905359 - ovirt-cli quits with DistributionNotFound exception on fedora18
https://bugzilla.redhat.com/show_bug.cgi?id=905359
--------------------------------------------------------------------------------
================================================================================
ovirt-engine-sdk-3.2.0.9-1.el6 (FEDORA-EPEL-2013-0399)
oVirt Engine Software Development Kit
--------------------------------------------------------------------------------
Update Information:
Update to upstream 3.2.0.3
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2013 Juan <juan.hernandez(a)redhat.com> - 3.2.0.9-1
- Update to upstream 3.2.0.9
--------------------------------------------------------------------------------
================================================================================
python-testtools-0.9.29-1.el6 (FEDORA-EPEL-2013-0402)
Extensions to the Python unit testing framework
--------------------------------------------------------------------------------
Update Information:
- Update to 0.9.29
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 7 2013 Pádraig Brady <pbrady(a)redhat.com> - 0.9.29-1
- Update to 0.9.29
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #913101 - update to 0.9.29 to support subunit
https://bugzilla.redhat.com/show_bug.cgi?id=913101
--------------------------------------------------------------------------------
================================================================================
re2-20130115-2.el6 (FEDORA-EPEL-2013-0398)
C++ fast alternative to backtracking RE engines
--------------------------------------------------------------------------------
Update Information:
C++ fast alternative to backtracking RE engines
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #868578 - Review Request: re2 - C++ fast alternative to backtracking RE
engines
https://bugzilla.redhat.com/show_bug.cgi?id=868578
--------------------------------------------------------------------------------