The following Fedora EPEL 6 Security updates need testing:
Age URL
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-db3d7a1399
exim-4.92.3-2.el6
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-d5bbc97415
json-c12-0.12.1-4.el6
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fe619e5492
golang-1.13.11-1.el6
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ffaa79c364
sympa-6.2.56-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
gfal2-2.17.3-1.el6
mbedtls-2.7.15-1.el6
Details about builds:
================================================================================
gfal2-2.17.3-1.el6 (FEDORA-EPEL-2020-5a0250992c)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Upgrade to upstream release 2.17.3
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 15 2020 Michal Simon <michal.simon(a)cern.ch> - 2.17.3-1
- Upgrade to upstream release 2.17.3
* Tue Apr 21 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 2.17.2-2
- Rebuild (json-c)
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.7.15-1.el6 (FEDORA-EPEL-2020-989ca5d300)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- Update to 2.7.15 Release notes:
https://tls.mbed.org/tech-
updates/releases/mbedtls-2.16.6-and-2.7.15-released Security Advisory:
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-
advisory-2020-04
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 27 2020 Morten Stevens <mstevens(a)fedoraproject.org> - 2.7.15-1
- Update to 2.7.15
- Security Advisory 2020-04 (CVE-2020-10932)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1838550 - CVE-2020-10932 mbedtls: side channel attack possibly leading to
information disclosure
https://bugzilla.redhat.com/show_bug.cgi?id=1838550
--------------------------------------------------------------------------------