The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6302/clamav-0.97...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6267/php-ZendFra...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gri...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6181/openstack-n...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6039/rt3-3.8.13-...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5965/python-virt...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6125/viewvc-1.1....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6203/gallery3-3....
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6070/strongswan-...
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6224/sticky-note...
The following builds have been pushed to Fedora EPEL 6 updates-testing
R-2.15.1-1.el6
clamav-0.97.5-1.el6
ghc-Diff-0.1.3-1.el6
nagios-3.4.1-2.el6
nagios-plugins-1.4.15-7.el6
nickle-2.76-1.el6
perl-Net-SSH2-0.45-1.el6
php-symfony2-Form-2.0.15-4.el6
php-symfony2-Routing-2.0.15-3.el6
php-symfony2-Security-2.0.15-3.el6
php-symfony2-Validator-2.0.15-4.el6
python-application-1.3.1-1.el6
Details about builds:
================================================================================
R-2.15.1-1.el6 (FEDORA-EPEL-2012-6300)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
Update to R 2.15.1. Rebuild rpy and rkward for new R (update rpy to 2.2.6). Fix dependency
issue with tex.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 2 2012 Tom Callaway <spot(a)fedoraproject.org> - 2.15.1-1
- update to 2.15.1
* Mon Jul 2 2012 Jindrich Novy <jnovy(a)redhat.com> - 2.15.0-4
- fix LaTeX and dvips dependencies (#836817)
* Mon May 7 2012 Tom Callaway <spot(a)fedoraproject.org> - 2.15.0-3
- rebuild for new libtiff
* Tue Apr 24 2012 Tom Callaway <spot(a)fedoraproject.org> - 2.15.0-2
- rebuild for new icu
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #836817 - R-core depends on texlive-latex
https://bugzilla.redhat.com/show_bug.cgi?id=836817
--------------------------------------------------------------------------------
================================================================================
clamav-0.97.5-1.el6 (FEDORA-EPEL-2012-6302)
Anti-virus software
--------------------------------------------------------------------------------
Update Information:
- Upgrade to 0.97.5
- Fix CVE-2012-1419 clamav: specially-crafted POSIX tar files evade detection
- Fix CVE-2012-1457 clamav: overly long length field in tar files evade detection
- Fix CVE-2012-1443 clamav: specially-crafted RAR files evade detection
- Fix CVE-2012-1458 clamav: specially-crafted CHM files evade detection
- Fix CVE-2012-1459 clamav: specially-crafted length field in tar files evade detection
- Ship local copy of virus database; it was removed by accident from 0.97.5 tarball
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 20 2012 Nick Bebout <nb(a)fedoraproject.org> - 0.97.5-1
- Upgrade to 0.97.5
- Fix CVE-2012-1419 clamav: specially-crafted POSIX tar files evade detection
- Fix CVE-2012-1457 clamav: overly long length field in tar files evade detection
- Fix CVE-2012-1443 clamav: specially-crafted RAR files evade detection
- Fix CVE-2012-1458 clamav: specially-crafted CHM files evade detection
- Fix CVE-2012-1459 clamav: specially-crafted length field in tar files evade detection
- Ship local copy of virus database; it was removed by accident from 0.97.5 tarball
* Thu Jan 19 2012 Nick Bebout <nb(a)fedoraproject.org> - 0.97.3-4
- Split files out into SCM instead of in the spec
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806092 - CVE-2012-1419 clamav: specially-crafted POSIX tar files evade
detection
https://bugzilla.redhat.com/show_bug.cgi?id=806092
[ 2 ] Bug #806094 - CVE-2012-1457 clamav: overly long length field in tar files evade
detection
https://bugzilla.redhat.com/show_bug.cgi?id=806094
[ 3 ] Bug #806097 - CVE-2012-1443 clamav: specially-crafted RAR files evade detection
https://bugzilla.redhat.com/show_bug.cgi?id=806097
[ 4 ] Bug #806100 - CVE-2012-1458 clamav: specially-crafted CHM files evade detection
https://bugzilla.redhat.com/show_bug.cgi?id=806100
[ 5 ] Bug #806101 - CVE-2012-1459 clamav: specially-crafted length field in tar files
evade detection
https://bugzilla.redhat.com/show_bug.cgi?id=806101
--------------------------------------------------------------------------------
================================================================================
ghc-Diff-0.1.3-1.el6 (FEDORA-EPEL-2012-6296)
A O(ND) diff algorithm in Haskell
--------------------------------------------------------------------------------
Update Information:
ghc-Diff is a O(ND) diff algorithm in Haskell
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #664151 - Review Request: ghc-Diff - A O(ND) diff algorithm in Haskell
https://bugzilla.redhat.com/show_bug.cgi?id=664151
--------------------------------------------------------------------------------
================================================================================
nagios-3.4.1-2.el6 (FEDORA-EPEL-2012-6308)
Nagios monitors hosts and services and yells if somethings breaks
--------------------------------------------------------------------------------
Update Information:
Update to 3.4.1.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 28 2012 Petr Pisar <ppisar(a)redhat.com> - 3.4.1-2
- Perl 5.16 rebuild
* Mon Jun 25 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.4.1-1
- Upgrade to 3.4.1 (#835047)
- Dropped nagios-0012-Fixed-html-rss-install-files.patch
* Fri Jun 15 2012 Petr Pisar <ppisar(a)redhat.com> - 3.3.1-4
- Perl 5.16 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #835047 - Update nagios to 3.4.1
https://bugzilla.redhat.com/show_bug.cgi?id=835047
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-1.4.15-7.el6 (FEDORA-EPEL-2012-6310)
Host/service/network monitoring program plugins for Nagios
--------------------------------------------------------------------------------
Update Information:
The directory /usr/lib{,64}/nagios/plugins is now owned by nagios-common.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jun 26 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 1.4.15-7
- glibc 2.16 no longer defines gets for ISO C11, ISO C++11, and _GNU_SOURCE
(#835621): nagios-plugins-0007-undef-gets-and-glibc-2.16.patch
* Tue Jun 26 2012 Jose Pedro Oliveira <jpo at di.uminho.pt> - 1.4.15-6
- The nagios-plugins RPM no longer needs to own the /usr/lib{,64}/nagios/plugins
directory; this directory is now owned by nagios-common (#835621)
- Small updates (clarification) to the file nagios-plugins.README.Fedora
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.4.15-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Wed Mar 23 2011 Dan Horák <dan(a)danny.cz> - 1.4.15-4
- rebuilt for mysql 5.5.10 (soname bump in libmysqlclient)
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.4.15-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #835621 - nagios-common has a file conflict with nagios-plugins in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=835621
--------------------------------------------------------------------------------
================================================================================
nickle-2.76-1.el6 (FEDORA-EPEL-2012-6305)
A programming language-based prototyping environment
--------------------------------------------------------------------------------
Update Information:
* Don't crash when using initializer with forward ref type
* Fix crashes when MemCollect occurs during Twixt execution
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 2 2012 Michel Salim <salimma(a)fedoraproject.org> - 2.76-1
- Update to 2.76
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #831189 - nickle-2.76 is available
https://bugzilla.redhat.com/show_bug.cgi?id=831189
--------------------------------------------------------------------------------
================================================================================
perl-Net-SSH2-0.45-1.el6 (FEDORA-EPEL-2012-6299)
Support for the SSH 2 protocol via libSSH2
--------------------------------------------------------------------------------
Update Information:
Net::SSH2 is a perl interface to the libssh2 (
http://www.libssh2.org) library. It supports
the SSH2 protocol (there is no support for SSH1) with all of the key exchanges, ciphers,
and compression of libssh2.
--------------------------------------------------------------------------------
================================================================================
php-symfony2-Form-2.0.15-4.el6 (FEDORA-EPEL-2012-6304)
Symfony2 Form Component
--------------------------------------------------------------------------------
Update Information:
Symfony2 Form Component
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #823071 - Review Request: php-symfony2-Form - Symfony2 Form Component
https://bugzilla.redhat.com/show_bug.cgi?id=823071
--------------------------------------------------------------------------------
================================================================================
php-symfony2-Routing-2.0.15-3.el6 (FEDORA-EPEL-2012-6309)
Symfony2 Routing Component
--------------------------------------------------------------------------------
Update Information:
The Routing Component maps an HTTP request to a set of configuration variables.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #823060 - Review Request: php-symfony2-Routing - Symfony2 Routing Component
https://bugzilla.redhat.com/show_bug.cgi?id=823060
--------------------------------------------------------------------------------
================================================================================
php-symfony2-Security-2.0.15-3.el6 (FEDORA-EPEL-2012-6301)
Symfony2 Security Component
--------------------------------------------------------------------------------
Update Information:
Security provides an infrastructure for sophisticated authorization systems,
which makes it possible to easily separate the actual authorization logic from
so called user providers that hold the users credentials. It is inspired by
the Java Spring framework.
Optional dependencies: DoctrineCommon and DoctrineDBAL
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #823075 - Review Request: php-symfony2-Security - Symfony2 Security Component
https://bugzilla.redhat.com/show_bug.cgi?id=823075
--------------------------------------------------------------------------------
================================================================================
php-symfony2-Validator-2.0.15-4.el6 (FEDORA-EPEL-2012-6297)
Symfony2 Validator Component
--------------------------------------------------------------------------------
Update Information:
Symfony2 Validator Component
Optional dependency: APC
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #823066 - Review Request: php-symfony2-Validator - Symfony2 Validator
Component
https://bugzilla.redhat.com/show_bug.cgi?id=823066
--------------------------------------------------------------------------------
================================================================================
python-application-1.3.1-1.el6 (FEDORA-EPEL-2012-6307)
Basic building blocks for python applications
--------------------------------------------------------------------------------
Update Information:
* Added workaround for logging unicode and string objects
* Don't apply str over log records diverted from Twisted
* Fixed the wrapper's default arguments when preserving function signatures
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jul 2 2012 Michel Salim <salimma(a)fedoraproject.org> - 1.3.1-1
- Update to 1.3.1
- Drop unneeded %{python_sitelib} declaration
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #830697 - python-application-1.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=830697
--------------------------------------------------------------------------------