The following Fedora EPEL 6 Security updates need testing:
Age URL
1009
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
99
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3434/pylint-1.3....
74
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binut...
62
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4242/facter-1.6....
51
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4485/python-torn...
33
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4884/mapserver-6...
31
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4918/dokuwiki-0-...
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0232/chicken-4.9...
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0278/Django14-1....
12
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0279/drupal7-con...
10
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0315/docker-io-1...
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0363/polarssl-1....
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0368/puppetlabs-...
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0407/seamonkey-2...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0436/privoxy-3.0...
The following builds have been pushed to Fedora EPEL 6 updates-testing
bats-0.4.0-1.20141016git3b33a5a.el6
golang-github-vaughan0-go-ini-0-0.3.gita98ad7e.el6
golang-googlecode-gcfg-0-0.4.gitc2d3050.el6
golang-googlecode-google-api-client-0-0.4.gitfc402b0.el6
golang-googlecode-goprotobuf-0-0.10.git7f07925.el6
irclog2html-2.14.0-1.el6
lcov-1.10-4.el6
nodejs-nsp-audit-shrinkwrap-1.0.2-1.el6
perl-Date-Easter-1.22-1.el6
perl-Statistics-Basic-1.6611-3.el6
php-sebastian-recursion-context-1.0.0-1.el6
pkgwat-0.11-1.el6
privoxy-3.0.23-1.el6
python-dogpile-cache-0.5.5-1.el6
python-msgpack-0.4.4-2.el6
python-requests-oauthlib-0.4.0-7.el6
python-urllib2_kerberos-0.1.6-16.el6
smemstat-0.01.11-1.el6
uid_wrapper-1.1.0-1.el6
Details about builds:
================================================================================
bats-0.4.0-1.20141016git3b33a5a.el6 (FEDORA-EPEL-2015-0435)
Bash Automated Testing System
--------------------------------------------------------------------------------
Update Information:
First package version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1184472 - Review Request: bats - Bash Automated Testing System
https://bugzilla.redhat.com/show_bug.cgi?id=1184472
--------------------------------------------------------------------------------
================================================================================
golang-github-vaughan0-go-ini-0-0.3.gita98ad7e.el6 (FEDORA-EPEL-2015-0441)
INI parsing library for Go
--------------------------------------------------------------------------------
Update Information:
Choose the correct architecture
First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1142398 - Review Request: golang-github-vaughan0-go-ini - INI parsing library
for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1142398
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-gcfg-0-0.4.gitc2d3050.el6 (FEDORA-EPEL-2015-0462)
Gcfg reads INI-style configuration files into Go structs
--------------------------------------------------------------------------------
Update Information:
Choose the correct architecture
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1141880 - Review Request: golang-googlecode-gcfg - Gcfg reads INI-style
configuration files into Go structs
https://bugzilla.redhat.com/show_bug.cgi?id=1141880
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-google-api-client-0-0.4.gitfc402b0.el6 (FEDORA-EPEL-2015-0448)
Go libraries for "new style" Google APIs
--------------------------------------------------------------------------------
Update Information:
update to fc402b0d6f2a46ba7dcf0a4606031f45fb82a728
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1141841 - Review Request: golang-googlecode-google-api-client - Go libraries
for "new style" Google APIs
https://bugzilla.redhat.com/show_bug.cgi?id=1141841
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-goprotobuf-0-0.10.git7f07925.el6 (FEDORA-EPEL-2015-0443)
Go support for Google protocol buffers
--------------------------------------------------------------------------------
Update Information:
Bump to 7f07925444bb51fa4cf9dfe6f7661876f8852275
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 26 2015 jchaloup <jchaloup(a)redhat.com> - 0-0.10.git7f07925
- Bump to 7f07925444bb51fa4cf9dfe6f7661876f8852275
related: #1018057
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018057 - Review Request: golang-googlecode-goprotobuf - Go support for
Google protocol buffers
https://bugzilla.redhat.com/show_bug.cgi?id=1018057
--------------------------------------------------------------------------------
================================================================================
irclog2html-2.14.0-1.el6 (FEDORA-EPEL-2015-0468)
A script to convert IRC logs to HTML and other formats
--------------------------------------------------------------------------------
Update Information:
Update to new upstream version 2.14.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Fabian Affolter <mail(a)fabian-affolter.ch> - 2.14.0-1
- Update to new upstream version 2.14.0
--------------------------------------------------------------------------------
================================================================================
lcov-1.10-4.el6 (FEDORA-EPEL-2015-0442)
LTP GCOV extension code coverage tool
--------------------------------------------------------------------------------
Update Information:
Rebuilt for RHEL-6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1156413 - Please provide EPEL-7 branch
https://bugzilla.redhat.com/show_bug.cgi?id=1156413
--------------------------------------------------------------------------------
================================================================================
nodejs-nsp-audit-shrinkwrap-1.0.2-1.el6 (FEDORA-EPEL-2015-0425)
Audits a shrinkwrap file against the NSP module vulnerability database
--------------------------------------------------------------------------------
Update Information:
update to 1.0.2
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Parag Nemade <pnemade AT redhat DOT com> - 1.0.2-1
- update to 1.0.2
--------------------------------------------------------------------------------
================================================================================
perl-Date-Easter-1.22-1.el6 (FEDORA-EPEL-2015-0450)
Calculates Easter for any given year
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.22
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 24 2015 David Dick <ddick(a)cpan.org> - 1.22-1
- Upgrade to 1.22
* Tue Aug 26 2014 Jitka Plesnikova <jplesnik(a)redhat.com> - 1.21-2
- Perl 5.20 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1184825 - perl-Date-Easter-1.22 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1184825
--------------------------------------------------------------------------------
================================================================================
perl-Statistics-Basic-1.6611-3.el6 (FEDORA-EPEL-2015-0467)
A collection of very basic statistics modules
--------------------------------------------------------------------------------
Update Information:
Fixes for EPEL6 and EPEL7 branches
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #672246 - Review Request: perl-Statistics-Basic - A collection of very basic
statistics modules
https://bugzilla.redhat.com/show_bug.cgi?id=672246
--------------------------------------------------------------------------------
================================================================================
php-sebastian-recursion-context-1.0.0-1.el6 (FEDORA-EPEL-2015-0426)
Recursively process PHP variables
--------------------------------------------------------------------------------
Update Information:
Provides functionality to recursively process PHP variables.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185606 - Review Request: php-sebastian-recursion-context - Recursively
process PHP variables
https://bugzilla.redhat.com/show_bug.cgi?id=1185606
--------------------------------------------------------------------------------
================================================================================
pkgwat-0.11-1.el6 (FEDORA-EPEL-2015-0432)
CLI tool for querying the fedora packages webapp
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Ralph Bean <rbean(a)redhat.com> - 0.11-1
- Latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1112119 - [abrt] pkgwat: subcommands.py:340:take_action:KeyError:
'version'
https://bugzilla.redhat.com/show_bug.cgi?id=1112119
--------------------------------------------------------------------------------
================================================================================
privoxy-3.0.23-1.el6 (FEDORA-EPEL-2015-0436)
Privacy enhancing proxy
--------------------------------------------------------------------------------
Update Information:
It was reported [1] that Privoxy 3.0.23 contains fixes for the following security
issues:
- Fixed a DoS issue in case of client requests with incorrect
chunk-encoded body. When compiled with assertions enabled
(the default) they could previously cause Privoxy to abort().
Reported by Matthew Daley.
http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/jcc.c?r1=1.433&am...
- Fixed multiple segmentation faults and memory leaks in the
pcrs code. This fix also increases the chances that an invalid
pcrs command is rejected as such. Previously some invalid commands
would be loaded without error. Note that Privoxy's pcrs sources
(action and filter files) are considered trustworthy input and
should not be writable by untrusted third-parties.
http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/pcrs.c?r1=1.46&am...
- Fixed an 'invalid read' bug which could at least theoretically
cause Privoxy to crash.
http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/parsers.c?r1=1.29...
[1]:
http://seclists.org/oss-sec/2015/q1/259
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 26 2015 Jon Ciesla <limburgher(a)gmail.com> - 3.0.23-1
- Update to 3.0.23, BZ 1185926.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185926 - privoxy: security fixes in 3.0.23 [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1185926
[ 2 ] Bug #1185925 - privoxy: security fixes in 3.0.23 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1185925
--------------------------------------------------------------------------------
================================================================================
python-dogpile-cache-0.5.5-1.el6 (FEDORA-EPEL-2015-0438)
A caching front-end based on the Dogpile lock
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
http://dogpilecache.readthedocs.org/en/latest/changelog.html#change-0.5.5
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 22 2015 Ralph Bean <rbean(a)redhat.com> - 0.5.5-1
- new version
--------------------------------------------------------------------------------
================================================================================
python-msgpack-0.4.4-2.el6 (FEDORA-EPEL-2015-0457)
A Python MessagePack (de)serializer
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release. See the [upstream
changelog](https://github.com/msgpack/msgpack-python/blob/master/ChangeLo... for
more details.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Ken Dreyer <ktdreyer(a)ktdreyer.com> - 0.4.4-2
- Patch test suite for EL6 and EL7 compatibility (RHBZ #1182808)
- Add python2 macros for EL6 compatibility (RHBZ #1182808)
* Thu Jan 15 2015 Ken Dreyer <ktdreyer(a)ktdreyer.com> - 0.4.4-1
- Update to latest upstream version 0.4.4 (RHBZ #1180507)
- Add tests in %check
* Wed Sep 10 2014 Nejc Saje <nsaje(a)redhat.com> - 0.4.2-4
- Introduce python3- subpackage
* Sun Aug 17 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.4.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.4.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed Mar 26 2014 Fabian Affolter <mail(a)fabian-affolter.ch> - 0.4.2-1
- Update to latest upstream version 0.4.2
* Wed Feb 26 2014 Fabian Affolter <mail(a)fabian-affolter.ch> - 0.4.1-1
- Update to latest upstream version 0.4.1
* Tue Jan 7 2014 Fabian Affolter <mail(a)fabian-affolter.ch> - 0.4.0-1
- Update to latest upstream version 0.4.0
* Mon Jan 6 2014 Fabian Affolter <mail(a)fabian-affolter.ch> - 0.1.13-5
- Update spec file and python macros
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.1.13-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1182808 - Update python-msgpack in EPEL 6 and 7
https://bugzilla.redhat.com/show_bug.cgi?id=1182808
--------------------------------------------------------------------------------
================================================================================
python-requests-oauthlib-0.4.0-7.el6 (FEDORA-EPEL-2015-0446)
OAuthlib authentication support for Requests.
--------------------------------------------------------------------------------
Update Information:
Un-pin python-requests.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Ralph Bean <rbean(a)redhat.com> - 0.4.0-7
- Alter egg requirements for epel.
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.4.0-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed May 14 2014 Bohuslav Kabrda <bkabrda(a)redhat.com> - 0.4.0-5
- Rebuilt for
https://fedoraproject.org/wiki/Changes/Python_3.4
--------------------------------------------------------------------------------
================================================================================
python-urllib2_kerberos-0.1.6-16.el6 (FEDORA-EPEL-2015-0440)
Kerberos over HTTP Negotiate/SPNEGO support for urllib2
--------------------------------------------------------------------------------
Update Information:
Don’t change debugging level ... RHBZ #1185370
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 23 2015 Matej Cepl <mcepl(a)redhat.com> - 0.1.6-15
- Don’t change debugging level ... RHBZ #1185370
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185370 - hardcoded loglevel DEBUG
https://bugzilla.redhat.com/show_bug.cgi?id=1185370
--------------------------------------------------------------------------------
================================================================================
smemstat-0.01.11-1.el6 (FEDORA-EPEL-2015-0452)
Shared memory usage monitoring tool
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor changes.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 22 2015 Eduardo Mayorga Téllez <mayorga(a)fedoraproject.org> - 0.01.11-1
- Update to 0.01.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1176979 - smemstat-0.01.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1176979
--------------------------------------------------------------------------------
================================================================================
uid_wrapper-1.1.0-1.el6 (FEDORA-EPEL-2015-0466)
A wrapper for privilege separation
--------------------------------------------------------------------------------
Update Information:
Update to version 1.1.0
Fix format errors in changelog and depencies.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 21 2015 Andreas Schneider <asn(a)redhat.com> - 1.1.0-1
- Update to version 1.1.0
* Mon Dec 15 2014 Michael Adam <madam(a)redhat.com> - 1.0.2-4
- Fix format errors in changelog.
- Require cmake.
- Don't own _libdir/pkgconfig, and require pkgconfig instead.
--------------------------------------------------------------------------------