The following Fedora EPEL 7 Security updates need testing:
Age URL
708
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
470
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
188
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c
redis-3.2.3-1.el7
172
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3
chicken-4.11.0-3.el7
52
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-cf95057959
viewvc-1.1.26-1.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f3297a19b
nagios-4.2.4-2.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e2cea1c22d
python-cjson-1.1.0-9.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-920059d2ed
mingw-wavpack-5.1.0-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d5fe44714a
cacti-1.0.2-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
ShellCheck-0.3.5-1.el7
bitlbee-steam-1.4.2-1.el7
borgbackup-1.0.10-1.el7
cacti-1.0.2-1.el7
createrepo_c-0.10.0-6.el7
dsniff-2.4-0.23.b1.el7
gnokii-0.6.31-17.el7
imaptest-20140711-1.el7
libebur128-1.2.2-1.el7
libslz-1.1.0-2.el7
perl-File-FcntlLock-0.22-6.el7
perl-Geography-Countries-2009041301-17.el7
perl-Mail-Box-2.120-2.el7
perl-Mail-Transport-Dbx-0.07-28.el7
perl-Object-Realize-Later-0.19-6.el7
perl-User-Identity-0.96-1.el7
php-horde-Horde-Timezone-1.1.0-1.el7
php-swiftmailer-5.4.6-1.el7
python-networkmanager-1.2.1-7.el7
python-sync2jira-1.0-1.el7
suricata-3.2-1.el7
Details about builds:
================================================================================
ShellCheck-0.3.5-1.el7 (FEDORA-EPEL-2017-294039bd18)
Tool for checking common errors in POSIX shell scripts
--------------------------------------------------------------------------------
Update Information:
Shell script checking tool
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1323763 - ShellCheck Package Missing From EPEL/RHEL
https://bugzilla.redhat.com/show_bug.cgi?id=1323763
--------------------------------------------------------------------------------
================================================================================
bitlbee-steam-1.4.2-1.el7 (FEDORA-EPEL-2017-bcc2712ec1)
Steam protocol plugin for BitlBee
--------------------------------------------------------------------------------
Update Information:
This update introduces the Steam chat plugin for BitlBee.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411467 - Review Request: bitlbee-steam - Steam protocol plugin for BitlBee
https://bugzilla.redhat.com/show_bug.cgi?id=1411467
--------------------------------------------------------------------------------
================================================================================
borgbackup-1.0.10-1.el7 (FEDORA-EPEL-2017-0e889ce651)
A deduplicating backup program with compression and authenticated encryption
--------------------------------------------------------------------------------
Update Information:
upstream version 1.0.10 (BZ#1421660)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1421660 - borgbackup 1.0.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1421660
--------------------------------------------------------------------------------
================================================================================
cacti-1.0.2-1.el7 (FEDORA-EPEL-2017-d5fe44714a)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.0.2 Release notes:
http://www.cacti.net/release_notes_1_0_0.php
http://www.cacti.net/release_notes_1_0_1.php
http://www.cacti.net/release_notes_1_0_2.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1400364 - Graph export tree view is broken
https://bugzilla.redhat.com/show_bug.cgi?id=1400364
[ 2 ] Bug #1417494 - cacti-1.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1417494
[ 3 ] Bug #1417605 - CVE-2014-4000 cacti: Multiple issues fixed in 1.0.0 version
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1417605
--------------------------------------------------------------------------------
================================================================================
createrepo_c-0.10.0-6.el7 (FEDORA-EPEL-2017-94499a3eb7)
Creates a common metadata repository
--------------------------------------------------------------------------------
Update Information:
backport patches for double-free in --ignore-lock (rhbz#1355720)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1355720 - crash: double-free with --ignore-lock
https://bugzilla.redhat.com/show_bug.cgi?id=1355720
--------------------------------------------------------------------------------
================================================================================
dsniff-2.4-0.23.b1.el7 (FEDORA-EPEL-2017-28f9fe279f)
Tools for network auditing and penetration testing
--------------------------------------------------------------------------------
Update Information:
- Added patch to allow building dsniff with OpenSSL >= 1.1.0 - Added patch to
correct a typo related to the -remote option
--------------------------------------------------------------------------------
================================================================================
gnokii-0.6.31-17.el7 (FEDORA-EPEL-2017-3539be20cb)
Linux/Unix tool suite for various mobile phones
--------------------------------------------------------------------------------
Update Information:
- Added patch to make rebuilding with GCC 7 working - Allow passing arguments to
gnokii-smsd via sysconfig (#1112292)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1112292 - Cannot pass arguments to gnokii-smsd
https://bugzilla.redhat.com/show_bug.cgi?id=1112292
--------------------------------------------------------------------------------
================================================================================
imaptest-20140711-1.el7 (FEDORA-EPEL-2017-deffcf9851)
A generic IMAP server compliancy tester
--------------------------------------------------------------------------------
Update Information:
ImapTest is a generic IMAP server compliancy tester that works with all IMAP
servers. It supports stress testing with state tracking, scripted testing and
benchmarking. When stress testing with state tracking ImapTest sends random
commands to the server and verifies that server's output looks correct. Using
the scripted testing ImapTest runs a list of predefined scripted tests and
verifies that server returns expected output. Examples and details are provided
online at:
http://www.imapwiki.org/ImapTest
--------------------------------------------------------------------------------
================================================================================
libebur128-1.2.2-1.el7 (FEDORA-EPEL-2017-b2caa1f58a)
A library that implements the EBU R 128 standard for loudness normalization
--------------------------------------------------------------------------------
Update Information:
Update to 1.2.2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1421128 - libebur128-v1.2.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1421128
--------------------------------------------------------------------------------
================================================================================
libslz-1.1.0-2.el7 (FEDORA-EPEL-2017-ba2ede3701)
StateLess Zip
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1379165 - Review Request: libslz - StateLess Zip
https://bugzilla.redhat.com/show_bug.cgi?id=1379165
--------------------------------------------------------------------------------
================================================================================
perl-File-FcntlLock-0.22-6.el7 (FEDORA-EPEL-2017-73abc671aa)
Perl module for file locking with fcntl
--------------------------------------------------------------------------------
Update Information:
perl packages to support deb packages like debconf and debhelper, these
packages are needed to build perl-Mail-Box which is used on po-debconf
--------------------------------------------------------------------------------
================================================================================
perl-Geography-Countries-2009041301-17.el7 (FEDORA-EPEL-2017-73abc671aa)
2-letter, 3-letter, and numerical codes for countries
--------------------------------------------------------------------------------
Update Information:
perl packages to support deb packages like debconf and debhelper, these
packages are needed to build perl-Mail-Box which is used on po-debconf
--------------------------------------------------------------------------------
================================================================================
perl-Mail-Box-2.120-2.el7 (FEDORA-EPEL-2017-73abc671aa)
Manage a mailbox, a folder with messages
--------------------------------------------------------------------------------
Update Information:
perl packages to support deb packages like debconf and debhelper, these
packages are needed to build perl-Mail-Box which is used on po-debconf
--------------------------------------------------------------------------------
================================================================================
perl-Mail-Transport-Dbx-0.07-28.el7 (FEDORA-EPEL-2017-73abc671aa)
Parse Outlook Express mailboxes
--------------------------------------------------------------------------------
Update Information:
perl packages to support deb packages like debconf and debhelper, these
packages are needed to build perl-Mail-Box which is used on po-debconf
--------------------------------------------------------------------------------
================================================================================
perl-Object-Realize-Later-0.19-6.el7 (FEDORA-EPEL-2017-73abc671aa)
Delayed creation of objects
--------------------------------------------------------------------------------
Update Information:
perl packages to support deb packages like debconf and debhelper, these
packages are needed to build perl-Mail-Box which is used on po-debconf
--------------------------------------------------------------------------------
================================================================================
perl-User-Identity-0.96-1.el7 (FEDORA-EPEL-2017-73abc671aa)
Maintains info about a physical person
--------------------------------------------------------------------------------
Update Information:
perl packages to support deb packages like debconf and debhelper, these
packages are needed to build perl-Mail-Box which is used on po-debconf
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Timezone-1.1.0-1.el7 (FEDORA-EPEL-2017-053074fd76)
Timezone library
--------------------------------------------------------------------------------
Update Information:
**Horde_Timezone 1.1.0** * [jan] Fix generating TZOFFSETFROM attributes for
certain rules. * [jan] Add parameters to Horde_Timezone_Zone#toVtimezone() to
limit the generated STANDARD and DAYLIGHT sections.
--------------------------------------------------------------------------------
================================================================================
php-swiftmailer-5.4.6-1.el7 (FEDORA-EPEL-2017-01858794a0)
Free Feature-rich PHP Mailer
--------------------------------------------------------------------------------
Update Information:
**Version 5.4.6** (2017-02-13) * removed exceptions thrown in destructors as
they lead to fatal errors * switched to use sha256 by default in DKIM as per
the RFC * fixed an 'Undefined variable: pipes' PHP notice * fixed long To
headers when using the mail transport * fixed NTLMAuthenticator when no domain
is passed with the username * prevented fatal error during unserialization of a
message * fixed a PHP warning when sending a message that has a length of a
multiple of 8192
--------------------------------------------------------------------------------
================================================================================
python-networkmanager-1.2.1-7.el7 (FEDORA-EPEL-2017-9e514f6254)
Easy communication with NetworkManager
--------------------------------------------------------------------------------
Update Information:
Correct typo ---- Initial packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412801 - Review Request: python-networkmanager - Easy communication with
NetworkManager
https://bugzilla.redhat.com/show_bug.cgi?id=1412801
--------------------------------------------------------------------------------
================================================================================
python-sync2jira-1.0-1.el7 (FEDORA-EPEL-2017-7de23c3af0)
Sync pagure and github issues to jira, via fedmsg
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
--------------------------------------------------------------------------------
================================================================================
suricata-3.2-1.el7 (FEDORA-EPEL-2017-272ded2e71)
Intrusion Detection System
--------------------------------------------------------------------------------
Update Information:
This is a new upstream feature release. Improvements include: bypass; pre-filter
-- fast packet keywords; TLS improvements; ICS protocol additions: DNP3
CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction; NIC offloading
disabled by default; unix socket enabled by default; and App Layer stats.
Documentation:
http://suricata.readthedocs.io/en/suricata-3.2/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1396151 - Rotate /var/log/suricata/eve.json
https://bugzilla.redhat.com/show_bug.cgi?id=1396151
[ 2 ] Bug #1396150 - Fix ownership of /run/suricata
https://bugzilla.redhat.com/show_bug.cgi?id=1396150
--------------------------------------------------------------------------------