The following Fedora EPEL 6 Security updates need testing:
Age URL
667
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
661
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
551
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
522
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
253
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53
chicken-4.11.0-3.el6
133
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac
libbsd-0.8.3-2.el6
83
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-acd2c2af0d
nagios-4.2.4-4.el6
29
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f
tnef-1.4.14-1.el6
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b56d84e139
mod_security-2.7.3-5.el6
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4efdb40c89
squirrelmail-1.4.22-5.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-59f87a9740
php-horde-ingo-3.2.15-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0868b62cfe
lynis-2.5.0-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9c983665aa
roundcubemail-1.0.9-4.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
hypre-2.11.2-1.el6
nrpe-3.1.0-3.el6
php-fedora-autoloader-1.0.0-1.el6
php-horde-Horde-Cli-2.2.2-1.el6
roundcubemail-1.0.9-4.el6
Details about builds:
================================================================================
hypre-2.11.2-1.el6 (FEDORA-EPEL-2017-b46cfd794f)
High performance matrix preconditioners
--------------------------------------------------------------------------------
Update Information:
Bugfix release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1431888 - hypre-2.12.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1431888
--------------------------------------------------------------------------------
================================================================================
nrpe-3.1.0-3.el6 (FEDORA-EPEL-2017-928f1e8448)
Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:
Grab updates from upstream to see why nrpe fails on fedora but not rhel ----
Move to using original nirik nrpe service file for systemd. It worked and the
others dont ---- update to 3.1.0 ---- Fixed pid location ---- Update to
3.0.1. Major update but upstream is no longer supporting old code.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1190708 - nrpe.service does not support reload for systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1190708
[ 2 ] Bug #1275870 - NRPE initscript does not read PID file when calling
status/killproc
https://bugzilla.redhat.com/show_bug.cgi?id=1275870
[ 3 ] Bug #1411705 - allowed_hosts doesn't work, if one of the hostnames can't
be resolved by dns
https://bugzilla.redhat.com/show_bug.cgi?id=1411705
--------------------------------------------------------------------------------
================================================================================
php-fedora-autoloader-1.0.0-1.el6 (FEDORA-EPEL-2017-ab70d91780)
Fedora Autoloader
--------------------------------------------------------------------------------
Update Information:
## 1.0.0 (2017-05-04) First stable release. No changes since 1.0.0-rc1. May
the 4th be with you!
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Cli-2.2.2-1.el6 (FEDORA-EPEL-2017-ee5f5ada62)
Horde Command Line Interface API
--------------------------------------------------------------------------------
Update Information:
**Horde_Cli 2.2.2** * [jan] Really silence errors from tput and stty (Bug
#14632). ---- **Horde_Cli 2.2.1** * [jan] Silence errors from tput and stty
(Bug #14632).
--------------------------------------------------------------------------------
================================================================================
roundcubemail-1.0.9-4.el6 (FEDORA-EPEL-2017-9c983665aa)
Round Cube Webmail is a browser-based multilingual IMAP client
--------------------------------------------------------------------------------
Update Information:
CVE-2017-8114 ---- Fix for CVE-2017-6820.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1448401 - CVE-2017-8114 roundcubemail: CVE-2017-8114 [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=1448401
--------------------------------------------------------------------------------