The following Fedora EPEL 7 Security updates need testing:
Age URL
633
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
375
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-c499781e80
python-gnupg-0.4.4-1.el7
373
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bc0182548b
bubblewrap-0.3.3-2.el7
82
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fa8a2e97c6
python-waitress-1.4.3-1.el7
22
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-19d171a465
python34-3.4.10-5.el7
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-320cd2c3b5
java-latest-openjdk-14.0.1.7-2.rolling.el7
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-12ba1ceddb
wordpress-5.1.5-1.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-76347da426
seamonkey-2.53.2-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ec788c8a86
viewvc-1.1.28-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-c9c5ded31b
pure-ftpd-1.0.47-4.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
airinv-1.00.2-1.el7
airrac-1.00.3-2.el7
airtsp-1.01.2-2.el7
chromium-81.0.4044.138-1.el7
clamav-0.102.2-9.el7
nagios-plugins-check-updates-1.7.10-2.el7
nohang-0.1-29.20200506git4cf9810.el7
openhantek-3.1.0-1.el7
python-lockfile-0.11.0-17.el7
python-pcodedmp-1.2.6-1.el7
rmol-1.00.3-2.el7
sevmgr-1.00.2-2.el7
simcrs-1.01.1-4.el7
simfqt-1.00.1-2.el7
sleuthkit-4.9.0-1.el7
stdair-1.00.8-2.el7
trademgen-1.00.2-2.el7
travelccm-1.00.2-2.el7
xrootd-4.12.0-1.el7
Details about builds:
================================================================================
airinv-1.00.2-1.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulated Airline Inventory Management System library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.2-1
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
airrac-1.00.3-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulated Revenue Accounting (RAC) System Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.3-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
airtsp-1.01.2-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulated Airline Travel Solution Provider Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.01.2-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
chromium-81.0.4044.138-1.el7 (FEDORA-EPEL-2020-cd30b5b1cf)
A WebKit (Blink) powered web browser
--------------------------------------------------------------------------------
Update Information:
This update fixes the following security vulnerabilities: * CVE-2020-6464 *
CVE-2020-6461 * CVE-2020-6462 ---- Will Chromium stop releasing updates long
enough for one to make it to EPEL stable? Probably not. This one fixes:
CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 ---- Fix dependency issue introduced
when switching from a "shared" build to a "static" build. ---- A new
major
version of Chromium without any security bugs! Just kidding. Here's the CVE
list: CVE-2020-6454 CVE-2020-6423 CVE-2020-6455 CVE-2020-6430 CVE-2020-6456
CVE-2020-6431 CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436
CVE-2020-6437 CVE-2020-6438 CVE-2020-6439 CVE-2020-6440 CVE-2020-6441
CVE-2020-6442 CVE-2020-6443 CVE-2020-6444 CVE-2020-6445 CVE-2020-6446
CVE-2020-6447 CVE-2020-6448 CVE-2020-6432 CVE-2020-6457 Oh, and this build
switches over to a static build, so the chromium-libs and chromium-libs-media
subpackages are now obsolete, but it should be slightly better for performance.
---- Bugfix release from Google for 80.0.3987.162. ---- Update to
80.0.3987.162. Fixes the following CVEs: * CVE-2020-6450 * CVE-2020-6451 ���
CVE-2020-6452 ---- Update to 80.0.3987.149. Upstream says it fixes "13"
security issues, but only lists these CVEs: * CVE-2020-6422: Use after free in
WebGL * CVE-2020-6424: Use after free in media * CVE-2020-6425: Insufficient
policy enforcement in extensions. * CVE-2020-6426: Inappropriate implementation
in V8 * CVE-2020-6427: Use after free in audio * CVE-2020-6428: Use after free
in audio * CVE-2020-6429: Use after free in audio. * CVE-2019-20503: Out of
bounds read in usersctplib. * CVE-2020-6449: Use after free in audio
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 7 2020 Tom Callaway <spot(a)fedoraproject.org> - 81.0.4044.138-1
- update to 81.0.4044.138
* Tue May 5 2020 Tom Callaway <spot(a)fedoraproject.org> - 81.0.4044.129-1
- update to 81.0.4044.129
* Thu Apr 23 2020 Tom Callaway <spot(a)fedoraproject.org> - 81.0.4044.122-1
- update to 81.0.4044.122
* Tue Apr 21 2020 Tom Callaway <spot(a)fedoraproject.org> - 81.0.4044.113-2
- add explicit Requires: chromium-common
* Thu Apr 16 2020 Tom Callaway <spot(a)fedoraproject.org> - 81.0.4044.113-1
- update to 81.0.4044.113
* Mon Apr 13 2020 Tom Callaway <spot(a)fedoraproject.org> - 81.0.4044.92-1
- update to 81.0.4044.92
- squelch the selinux output in the post scriptlet
- add Provides/Obsoletes in case we're build with shared set to 0
- add ulimit -n 4096 (needed for static builds, probably not harmful for shared builds
either)
- do static build
* Sat Apr 4 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.163-1
- update to 80.0.3987.163
* Wed Apr 1 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.162-1
- update to 80.0.3987.162
* Wed Mar 18 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.149-1
- update to 80.0.3987.149
* Thu Feb 27 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.132-1
- update to 80.0.3987.132
- disable C++17 changes (this means f32+ will no longer build, but it segfaulted
immediately)
* Thu Feb 27 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.122-1
- update to 80.0.3987.122
* Mon Feb 17 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.106-1
- update to 80.0.3987.106
* Wed Feb 5 2020 Tom Callaway <spot(a)fedoraproject.org> - 80.0.3987.87-1
- update to 80.0.3987.87
* Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
79.0.3945.130-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1815241 - CVE-2020-6424 chromium-browser: Use after free in media
https://bugzilla.redhat.com/show_bug.cgi?id=1815241
[ 2 ] Bug #1815242 - CVE-2020-6425 chromium-browser: Insufficient policy enforcement in
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1815242
[ 3 ] Bug #1815243 - CVE-2020-6426 chromium-browser: Inappropriate implementation in V8
https://bugzilla.redhat.com/show_bug.cgi?id=1815243
[ 4 ] Bug #1815244 - CVE-2020-6427 chromium-browser: Use after free in audio
https://bugzilla.redhat.com/show_bug.cgi?id=1815244
[ 5 ] Bug #1815245 - CVE-2020-6428 chromium-browser: Use after free in audio
https://bugzilla.redhat.com/show_bug.cgi?id=1815245
[ 6 ] Bug #1815247 - CVE-2020-6429 chromium-browser: Use after free in audio
https://bugzilla.redhat.com/show_bug.cgi?id=1815247
[ 7 ] Bug #1815248 - CVE-2020-6449 chromium-browser: Use after free in audio
https://bugzilla.redhat.com/show_bug.cgi?id=1815248
[ 8 ] Bug #1815259 - CVE-2020-6422 chromium-browser: Use after free in WebGL
https://bugzilla.redhat.com/show_bug.cgi?id=1815259
[ 9 ] Bug #1820155 - CVE-2020-6450 chromium-browser: Use after free in WebAudio
https://bugzilla.redhat.com/show_bug.cgi?id=1820155
[ 10 ] Bug #1820156 - CVE-2020-6451 chromium-browser: Use after free in WebAudio
https://bugzilla.redhat.com/show_bug.cgi?id=1820156
[ 11 ] Bug #1820157 - CVE-2020-6452 chromium-browser: Heap buffer overflow in media
https://bugzilla.redhat.com/show_bug.cgi?id=1820157
[ 12 ] Bug #1822604 - CVE-2020-6454 chromium-browser: Use after free in extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1822604
[ 13 ] Bug #1822605 - CVE-2020-6423 chromium-browser: Use after free in audio
https://bugzilla.redhat.com/show_bug.cgi?id=1822605
[ 14 ] Bug #1822606 - CVE-2020-6455 chromium-browser: Out of bounds read in WebSQL
https://bugzilla.redhat.com/show_bug.cgi?id=1822606
[ 15 ] Bug #1822607 - CVE-2020-6430 chromium-browser: Type Confusion in V8
https://bugzilla.redhat.com/show_bug.cgi?id=1822607
[ 16 ] Bug #1822608 - CVE-2020-6456 chromium-browser: Insufficient validation of
untrusted input in clipboard
https://bugzilla.redhat.com/show_bug.cgi?id=1822608
[ 17 ] Bug #1822609 - CVE-2020-6431 chromium-browser: Insufficient policy enforcement in
full screen
https://bugzilla.redhat.com/show_bug.cgi?id=1822609
[ 18 ] Bug #1822610 - CVE-2020-6433 chromium-browser: Insufficient policy enforcement in
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1822610
[ 19 ] Bug #1822611 - CVE-2020-6434 chromium-browser: Use after free in devtools
https://bugzilla.redhat.com/show_bug.cgi?id=1822611
[ 20 ] Bug #1822612 - CVE-2020-6435 chromium-browser: Insufficient policy enforcement in
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1822612
[ 21 ] Bug #1822613 - CVE-2020-6436 chromium-browser: Use after free in window
management
https://bugzilla.redhat.com/show_bug.cgi?id=1822613
[ 22 ] Bug #1822614 - CVE-2020-6437 chromium-browser: Inappropriate implementation in
WebView
https://bugzilla.redhat.com/show_bug.cgi?id=1822614
[ 23 ] Bug #1822615 - CVE-2020-6438 chromium-browser: Insufficient policy enforcement in
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1822615
[ 24 ] Bug #1822616 - CVE-2020-6439 chromium-browser: Insufficient policy enforcement in
navigations
https://bugzilla.redhat.com/show_bug.cgi?id=1822616
[ 25 ] Bug #1822617 - CVE-2020-6440 chromium-browser: Inappropriate implementation in
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1822617
[ 26 ] Bug #1822618 - CVE-2020-6441 chromium-browser: Insufficient policy enforcement in
omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1822618
[ 27 ] Bug #1822619 - CVE-2020-6442 chromium-browser: Inappropriate implementation in
cache
https://bugzilla.redhat.com/show_bug.cgi?id=1822619
[ 28 ] Bug #1822620 - CVE-2020-6443 chromium-browser: Insufficient data validation in
developer tools
https://bugzilla.redhat.com/show_bug.cgi?id=1822620
[ 29 ] Bug #1822621 - CVE-2020-6444 chromium-browser: Uninitialized use in WebRTC
https://bugzilla.redhat.com/show_bug.cgi?id=1822621
[ 30 ] Bug #1822622 - CVE-2020-6445 chromium-browser: Insufficient policy enforcement in
trusted types
https://bugzilla.redhat.com/show_bug.cgi?id=1822622
[ 31 ] Bug #1822623 - CVE-2020-6446 chromium-browser: Insufficient policy enforcement in
trusted types
https://bugzilla.redhat.com/show_bug.cgi?id=1822623
[ 32 ] Bug #1822624 - CVE-2020-6447 chromium-browser: Inappropriate implementation in
developer tools
https://bugzilla.redhat.com/show_bug.cgi?id=1822624
[ 33 ] Bug #1822625 - CVE-2020-6448 chromium-browser: Use after free in V8
https://bugzilla.redhat.com/show_bug.cgi?id=1822625
[ 34 ] Bug #1824949 - CVE-2020-6457 chromium-browser: Use after free in speech
recognizer
https://bugzilla.redhat.com/show_bug.cgi?id=1824949
[ 35 ] Bug #1827379 - CVE-2020-6459 chromium-browser: Use after free in payments
https://bugzilla.redhat.com/show_bug.cgi?id=1827379
[ 36 ] Bug #1827380 - CVE-2020-6460 chromium-browser: Insufficient data validation in
URL formatting
https://bugzilla.redhat.com/show_bug.cgi?id=1827380
[ 37 ] Bug #1827381 - CVE-2020-6458 chromium-browser: Out of bounds read and write in
PDFium
https://bugzilla.redhat.com/show_bug.cgi?id=1827381
[ 38 ] Bug #1828859 - CVE-2020-6462 chromium-browser: Use after free in task scheduling
https://bugzilla.redhat.com/show_bug.cgi?id=1828859
[ 39 ] Bug #1828860 - CVE-2020-6461 chromium-browser: Use after free in storage
https://bugzilla.redhat.com/show_bug.cgi?id=1828860
[ 40 ] Bug #1832488 - CVE-2020-6464 chromium-browser: Type Confusion in Blink
https://bugzilla.redhat.com/show_bug.cgi?id=1832488
--------------------------------------------------------------------------------
================================================================================
clamav-0.102.2-9.el7 (FEDORA-EPEL-2020-6d1d2497d0)
End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:
- Add upstream patch to fix "Attempt to allocate 0 bytes" errors while scanning
certain PDFs - Do not log freshclam output to syslog by default - creates
double entries in the journal (bz#1822012) - (#1820069) add try-restart
clamav-freshclam.service on logrotate - Enable prelude support (bz#1829726) -
Move /etc/clamd.d/scan.conf to clamav-filesystem - Add patch to build with EL7
libcurl - re-enable on-access scanning (bz#1820395)
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 2 2020 Orion Poplawski <orion(a)nwra.com> - 0.102.2-9
- Add upstream patch to fix "Attempt to allocate 0 bytes" errors while scanning
certain PDFs
* Thu Apr 30 2020 Orion Poplawski <orion(a)nwra.com> - 0.102.2-8
- Enable prelude support (bz#1829726)
* Wed Apr 29 2020 Orion Poplawski <orion(a)nwra.com> - 0.102.2-7
- Move /etc/clamd.d/scan.conf to clamav-filesystem
- Add patch to build with EL7 libcurl - re-enable on-access scanning
(bz#1820395)
- Add clamonacc.service
* Tue Apr 21 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 0.102.2-6
- Rebuild (json-c)
* Wed Apr 8 2020 Orion Poplawski <orion(a)nwra.com> - 0.102.2-5
- Do not log freshclam output to syslog by default - creates double entries
in the journal (bz#1822012)
- (#1820069) add try-restart clamav-freshclam.service on logrotate
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1820069 - freshclam's logrotate settings incorrect because daemon is not
restarted/nofitifed
https://bugzilla.redhat.com/show_bug.cgi?id=1820069
[ 2 ] Bug #1820395 - Clamav OnAccessScanning disabled
https://bugzilla.redhat.com/show_bug.cgi?id=1820395
[ 3 ] Bug #1822012 - When using the clamav-freshclam.service all log messages are
logged twice
https://bugzilla.redhat.com/show_bug.cgi?id=1822012
[ 4 ] Bug #1829726 - ClamAV: Enable Prelude support
https://bugzilla.redhat.com/show_bug.cgi?id=1829726
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-check-updates-1.7.10-2.el7 (FEDORA-EPEL-2020-d8e434b89f)
A Nagios plugin to check if Red Hat or Fedora system is up-to-date
--------------------------------------------------------------------------------
Update Information:
New version
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 7 2020 Martin Jackson <mhjacks(a)swbell.net> - 1.7.10-2
- Fix date
* Thu May 7 2020 Martin Jackson <mhjacks(a)swbell.net> - 1.7.10-1
- Remove bundled libs
- New version
--------------------------------------------------------------------------------
================================================================================
nohang-0.1-29.20200506git4cf9810.el7 (FEDORA-EPEL-2020-e580801282)
Sophisticated low memory handler for Linux
--------------------------------------------------------------------------------
Update Information:
Update to latest version
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 6 2020 Artem Polishchuk <ego.cordatus(a)gmail.com> -
0.1-29.20200506git4cf9810
- Update to latest git snapshot
--------------------------------------------------------------------------------
================================================================================
openhantek-3.1.0-1.el7 (FEDORA-EPEL-2020-08d38d1123)
Hantek and compatible USB digital signal oscilloscope
--------------------------------------------------------------------------------
Update Information:
Update to 3.0.1 with dummy mode.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Vasiliy N. Glazov <vascom2(a)gmail.com> - 3.1.0-1
- Update to 3.1.0
--------------------------------------------------------------------------------
================================================================================
python-lockfile-0.11.0-17.el7 (FEDORA-EPEL-2020-86ab8ce55c)
Platform-independent file locking module
--------------------------------------------------------------------------------
Update Information:
Update to 0.11.0 and build for both python2 and python3.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Xavier Bachelot <xavier(a)bachelot.org> - 1:0.11.0-17
- Add py2 sub-package back.
- Conditionalize py2/py3 build.
* Tue Sep 3 2019 Fabio Valentini <decathorpe(a)gmail.com> - 1:0.11.0-16
- Drop python2 sub-package. See:
https://fedoraproject.org/wiki/Changes/F31_Mass_Python_2_Package_Removal
- Refresh packaging for 2019, move docs to a sub-package.
* Fri Aug 16 2019 Miro Hron��ok <mhroncok(a)redhat.com> - 1:0.11.0-15
- Rebuilt for Python 3.8
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-13
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Sun Jun 17 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 1:0.11.0-11
- Rebuilt for Python 3.7
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jan 25 2018 Iryna Shcherbina <ishcherb(a)redhat.com> - 1:0.11.0-9
- Update Python 2 dependency declarations to new packaging standards
(See
https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3)
* Sat Aug 19 2017 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1:0.11.0-8
- Python 2 binary package renamed to python2-lockfile
See
https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Mon Dec 19 2016 Miro Hron��ok <mhroncok(a)redhat.com> - 1:0.11.0-5
- Rebuild for Python 3.6
* Tue Jul 19 2016 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1:0.11.0-4
-
https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_...
* Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:0.11.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Wed Nov 18 2015 Slavek Kabrda <bkabrda(a)redhat.com> - 1:0.11.0-2
- Remove runtime dependency on pbr
Resolves: rhbz#1282571
* Fri Nov 13 2015 Slavek Kabrda <bkabrda(a)redhat.com> - 1:0.11.0-1
- Update to 0.11.0
* Tue Nov 10 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1:0.10.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Changes/python3.5
* Thu Jun 18 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1:0.10.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Tue Dec 9 2014 Slavek Kabrda <bkabrda(a)redhat.com> - 1:0.10.2-1
- Update to 0.10.2
- Drop patches merged upstream
- Update URL and Source to point to new upstream
* Fri Jun 20 2014 Bohuslav Kabrda <bkabrda(a)redhat.com> - 1:0.9.1-8
- Properly list files for python3-lockfile subpackage.
* Fri Jun 20 2014 Bohuslav Kabrda <bkabrda(a)redhat.com> - 1:0.9.1-7
- Added python3-lockfile subpackage.
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1:0.9.1-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1:0.9.1-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-pcodedmp-1.2.6-1.el7 (FEDORA-EPEL-2020-4e70fac79f)
VBA p-code disassembler
--------------------------------------------------------------------------------
Update Information:
Macros written in VBA (Visual Basic for Applications; the macro programming
language used in Microsoft Office) exist in three different executable forms,
each of which can be what is actually executed at run time, depending on the
circumstances: Source code, p-code and execodes. Since most of the time it is
the p-code that determines what exactly a macro would do (even if neither source
code, nor execodes are present), pcodedmp is a Python library and command line
tool to display it.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1832610 - Review Request: python-pcodedmp - VBA p-code disassembler
https://bugzilla.redhat.com/show_bug.cgi?id=1832610
--------------------------------------------------------------------------------
================================================================================
rmol-1.00.3-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ library of Revenue Management and Optimisation classes and functions
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.3-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
sevmgr-1.00.2-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulation-Oriented Discrete Event Management Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.2-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
simcrs-1.01.1-4.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulated Travel-Oriented Distribution System library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.01.1-4
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
simfqt-1.00.1-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulated Fare Quote System Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.1-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
sleuthkit-4.9.0-1.el7 (FEDORA-EPEL-2020-32b3a77f8c)
The Sleuth Kit (TSK)
--------------------------------------------------------------------------------
Update Information:
Update to 4.9.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Nicolas Chauvet <kwizart(a)gmail.com> - 4.9.0-1
- Update to 4.9.0
* Tue Jan 28 2020 Nicolas Chauvet <kwizart(a)gmail.com> - 4.8.0-1
- Update to 4.8.0
* Thu Dec 19 2019 Nicolas Chauvet <kwizart(a)gmail.com> - 4.7.0-1
- Update to 4.7.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1752018 - CVE-2019-14532 sleuthkit: sleuth: off-by-one overwrite due to
underflow in tools/hashtools/hfind.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1752018
[ 2 ] Bug #1752019 - CVE-2019-14532 sleuthkit: sleuth: off-by-one overwrite due to
underflow in tools/hashtools/hfind.cpp [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1752019
[ 3 ] Bug #1795752 - sleuthkit-4.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1795752
[ 4 ] Bug #1811819 - CVE-2020-10232 sleuthkit: Stack buffer overflow vulnerability in
yaffsfs_istat() in fs/yaffs.c. [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1811819
[ 5 ] Bug #1811820 - CVE-2020-10232 sleuthkit: Stack buffer overflow vulnerability in
yaffsfs_istat() in fs/yaffs.c. [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1811820
[ 6 ] Bug #1811823 - CVE-2020-10233 sleuthkit: Heap based buffer overead in in
ntfs_dinode_lookup() in fs/ntfs.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1811823
[ 7 ] Bug #1811824 - CVE-2020-10233 sleuthkit: Heap based buffer overead in in
ntfs_dinode_lookup() in fs/ntfs.c [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1811824
--------------------------------------------------------------------------------
================================================================================
stdair-1.00.8-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Standard Airline IT Object Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.8-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
trademgen-1.00.2-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Simulated Travel Demand Generation Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.2-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
travelccm-1.00.2-2.el7 (FEDORA-EPEL-2020-05b91ebd2e)
C++ Travel Customer Choice Model (CCM) Library
--------------------------------------------------------------------------------
Update Information:
Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Denis Arnaud <denis.arnaud_fedora(a)m4x.org> - 1.00.2-2
- Rebuild for SOCI 4.0.0
--------------------------------------------------------------------------------
================================================================================
xrootd-4.12.0-1.el7 (FEDORA-EPEL-2020-023fd5f547)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
xrootd 4.12.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 8 2020 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.12.0-1
- Update to version 4.12.0
- Fix empty xrdmapc manpage
* Tue Apr 21 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 1:4.11.3-2
- Rebuild (json-c)
--------------------------------------------------------------------------------