The following Fedora EPEL 7 Security updates need testing:
Age URL
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-fe3075d537
wordpress-5.1.9-1.el7
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-044df87bd4
rust-1.51.0-3.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-3c8a5a400b
p7zip-16.02-20.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-a46e72f139
radare2-5.2.1-1.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-3370d4396b
ansible-2.9.20-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-255f12d77d
zarafa-7.1.14-5.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-b6ffea264a
perl-Image-ExifTool-12.16-3.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
java-latest-openjdk-16.0.1.0.9-1.rolling.el7
mock-2.10-1.el7
mock-core-configs-34.3-1.el7
netdata-1.30.1-2.el7
python-yara-4.1.0-1.el7
yara-4.1.0-1.el7
Details about builds:
================================================================================
java-latest-openjdk-16.0.1.0.9-1.rolling.el7 (FEDORA-EPEL-2021-9cfa4ffd25)
OpenJDK 16 Runtime Environment
--------------------------------------------------------------------------------
Update Information:
April CPU 2021 update
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 25 2021 Petra Alice Mikova <pmikova(a)redhat.com> - 1:16.0.1.0.9-1.rolling
- update to 16.0.1+9 april cpu tag
- dropped jdk8259949-allow_cf-protection_on_x86.patch
--------------------------------------------------------------------------------
================================================================================
mock-2.10-1.el7 (FEDORA-EPEL-2021-7c9d9cf44e)
Builds packages inside chroots
--------------------------------------------------------------------------------
Update Information:
mock - do not allocate tty for podman (msuchy(a)redhat.com) - work-around bug
setting propagation for recursive bind-mounts (david.ward(a)ll.mit.edu) - fix
handling of essential mountpoints (david.ward(a)ll.mit.edu) - pre-create the dest
directory in _copy_config mock-core-configs - Add Oracle Linux 8
(ngompa13(a)gmail.com) - Add Oracle Linux 7 (ngompa13(a)gmail.com) - Add openSUSE
Leap 15.3 (ngompa13(a)gmail.com) - openSUSE Leap 15.1 is EOL (ngompa13(a)gmail.com)
- Add openSUSE Tumbleweed s390x config (ngompa13(a)gmail.com) - Add AlmaLinux 8
configs (ngompa13(a)gmail.com) - Remove make from default ELN buildroot
(miro(a)hroncok.cz)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 27 2021 Pavel Raiskup <praiskup(a)redhat.com> 2.10-1
- do not allocate tty for podman (msuchy(a)redhat.com)
- work-around bug setting propagation for recursive bind-mounts (david.ward(a)ll.mit.edu)
- fix handling of essential mountpoints (david.ward(a)ll.mit.edu)
- pre-create the dest directory in _copy_config
--------------------------------------------------------------------------------
================================================================================
mock-core-configs-34.3-1.el7 (FEDORA-EPEL-2021-7c9d9cf44e)
Mock core config files basic chroots
--------------------------------------------------------------------------------
Update Information:
mock - do not allocate tty for podman (msuchy(a)redhat.com) - work-around bug
setting propagation for recursive bind-mounts (david.ward(a)ll.mit.edu) - fix
handling of essential mountpoints (david.ward(a)ll.mit.edu) - pre-create the dest
directory in _copy_config mock-core-configs - Add Oracle Linux 8
(ngompa13(a)gmail.com) - Add Oracle Linux 7 (ngompa13(a)gmail.com) - Add openSUSE
Leap 15.3 (ngompa13(a)gmail.com) - openSUSE Leap 15.1 is EOL (ngompa13(a)gmail.com)
- Add openSUSE Tumbleweed s390x config (ngompa13(a)gmail.com) - Add AlmaLinux 8
configs (ngompa13(a)gmail.com) - Remove make from default ELN buildroot
(miro(a)hroncok.cz)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 27 2021 Pavel Raiskup <praiskup(a)redhat.com> 34.3-1
- Add Oracle Linux 8 (ngompa13(a)gmail.com)
- Add Oracle Linux 7 (ngompa13(a)gmail.com)
- Add openSUSE Leap 15.3 (ngompa13(a)gmail.com)
- openSUSE Leap 15.1 is EOL (ngompa13(a)gmail.com)
- Add openSUSE Tumbleweed s390x config (ngompa13(a)gmail.com)
- Add AlmaLinux 8 configs (ngompa13(a)gmail.com)
- Remove make from default ELN buildroot (miro(a)hroncok.cz)
--------------------------------------------------------------------------------
================================================================================
netdata-1.30.1-2.el7 (FEDORA-EPEL-2021-20689d29d7)
Real-time performance monitoring
--------------------------------------------------------------------------------
Update Information:
Fix pre script ---- Update from upstream ---- Update from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 27 2021 Didier Fabert <didier.fabert(a)gmail.com> 1.30.1-2
- Fix pre script, must be run before installing netdata-data package
* Wed Apr 14 2021 Didier Fabert <didier.fabert(a)gmail.com> 1.30.1-1
- Update from upstream
* Thu Apr 1 2021 Didier Fabert <didier.fabert(a)gmail.com> 1.30.0-1
- Update from upstream
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1.29.3-2
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1918443 - Web UI says, "Access to file is not permitted:
/usr/share/netdata/web/index.html"
https://bugzilla.redhat.com/show_bug.cgi?id=1918443
[ 2 ] Bug #1945409 - netdata-1.30.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1945409
[ 3 ] Bug #1948880 - netdata-1.30.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1948880
--------------------------------------------------------------------------------
================================================================================
python-yara-4.1.0-1.el7 (FEDORA-EPEL-2021-9cf47c841c)
Python binding for the YARA pattern matching tool
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 4.1.0 Security fix for CVE-2017-9438, CVE-2021-3402,
CVE-2019-19648, CVE-2017-9438
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 27 2021 Michal Ambroz <rebus at, seznam.cz> - 4.1.0-1
- bump the python-yara as well to 4.1.0
* Tue Apr 27 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.5-3
- rebuild for new version of yara 4.1.0
* Sun Apr 25 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.5-2
- rebuild for epel
* Sat Mar 13 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.5-1
- bump to version 4.0.5
* Wed Feb 10 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.4-1
- bump to version 4.0.4
* Thu Feb 4 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.3-1
- bump to version 4.0.3
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.0.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 4.0.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Thu Jul 16 2020 Michal Ambroz <rebus at, seznam.cz> - 4.0.2-1
- bump to version 4.0.2
* Sat Jun 6 2020 Michal Ambroz <rebus at, seznam.cz> - 4.0.1-1
- bump to version 4.0.1
* Tue May 26 2020 Miro Hron��ok <mhroncok(a)redhat.com> - 4.0.0-2
- Rebuilt for Python 3.9
* Tue May 12 2020 Michal Ambroz <rebus at, seznam.cz> - 4.0.0-1
- bump to version 4.0.0
* Thu Jan 30 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.11.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1459012 - CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled
in the _ur_re_emit function
https://bugzilla.redhat.com/show_bug.cgi?id=1459012
[ 2 ] Bug #1930175 - CVE-2021-3402 libyara: Integer overflow in
libyara/modules/macho/macho.c via a malicious Mach-O file
https://bugzilla.redhat.com/show_bug.cgi?id=1930175
--------------------------------------------------------------------------------
================================================================================
yara-4.1.0-1.el7 (FEDORA-EPEL-2021-9cf47c841c)
Pattern matching Swiss knife for malware researchers
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 4.1.0 Security fix for CVE-2017-9438, CVE-2021-3402,
CVE-2019-19648, CVE-2017-9438
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 26 2021 Michal Ambroz <rebus at, seznam.cz> - 4.1.0-1
- bump to 4.1.0
* Sun Apr 25 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.5-2
- rebuild for epel
* Fri Feb 5 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.5-1
- bump to yara bugfix 4.0.5 release
* Wed Feb 3 2021 Michal Ambroz <rebus at, seznam.cz> - 4.0.4-1
- bump to yara bugfix 4.0.4 release
* Thu Jul 16 2020 Michal Ambroz <rebus at, seznam.cz> - 4.0.2-1
- bump to yara bugfix 4.0.2 release
- fix build on epel7
* Sun Jun 14 2020 Adrian Reber <adrian(a)lisas.de> - 4.0.1-2
- Rebuilt for protobuf 3.12
* Tue Jun 2 2020 Michal Ambroz <rebus at, seznam.cz> - 4.0.1-1
- bump to yara bugfix 4.0.1 release
* Tue Apr 28 2020 Michal Ambroz <rebus at, seznam.cz> - 4.0.0-1
- bump to yara 4.0.0 release
* Fri Jan 31 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.11.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1459012 - CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled
in the _ur_re_emit function
https://bugzilla.redhat.com/show_bug.cgi?id=1459012
[ 2 ] Bug #1930175 - CVE-2021-3402 libyara: Integer overflow in
libyara/modules/macho/macho.c via a malicious Mach-O file
https://bugzilla.redhat.com/show_bug.cgi?id=1930175
--------------------------------------------------------------------------------