The following Fedora EPEL 6 Security updates need testing:
Age URL
217
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828
chicken-4.9.0.1-4.el6
199
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
193
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
125
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8148 optipng-0.7.5-5.el6
125
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
83
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
55
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
15
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-819f6356ea
tomcat-7.0.65-1.el6
15
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-550132e830
flite-1.3-24.el6
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-7601108cdf
keepassx-0.4.4-1.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2b26e78b1e
owncloud-7.0.12-1.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-75614c9a4f
mbedtls-2.2.1-1.el6
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-7aa48cd8b9
python-rsa-3.3-2.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-5a818bd0c6
cgit-0.12-1.el6
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-a0881ad244
gsi-openssh-5.3p1-12.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2fac4bfaba
privoxy-3.0.23-2.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
elk-3.3.17-16.el6
globus-gram-job-manager-pbs-2.5-1.el6
mup-6.4.1-1.el6
privoxy-3.0.23-2.el6
python-mwclient-0.8.0-1.el6
python-raven-5.10.1-1.el6
python-rpm-macros-3-6.el6
quantum-espresso-5.3.0-5.el6
salt-2015.5.9-1.el6
scotch-6.0.4-9.el6
Details about builds:
================================================================================
elk-3.3.17-16.el6 (FEDORA-EPEL-2016-9deccc7896)
FP-LAPW Code
--------------------------------------------------------------------------------
Update Information:
upstream update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1299110 - elk-3.3.15 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1299110
--------------------------------------------------------------------------------
================================================================================
globus-gram-job-manager-pbs-2.5-1.el6 (FEDORA-EPEL-2016-b94c16260e)
Globus Toolkit - PBS Job Manager Support
--------------------------------------------------------------------------------
Update Information:
Fix issue parsing torque v5.1.2 logs in SEG.
--------------------------------------------------------------------------------
================================================================================
mup-6.4.1-1.el6 (FEDORA-EPEL-2016-b64b73e85c)
A music notation program that can also generate MIDI files
--------------------------------------------------------------------------------
Update Information:
Update to 6.4.1
--------------------------------------------------------------------------------
================================================================================
privoxy-3.0.23-2.el6 (FEDORA-EPEL-2016-2fac4bfaba)
Privacy enhancing proxy
--------------------------------------------------------------------------------
Update Information:
Patches for CVE-2016-1982,3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1300975 - CVE-2016-1983 privoxy: invalid read via empty host header in client
request [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1300975
[ 2 ] Bug #1300974 - CVE-2016-1983 privoxy: invalid read via empty host header in client
request [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=1300974
[ 3 ] Bug #1300969 - CVE-2016-1982 privoxy: invalid reads in case of corrupt
chunk-encoded content [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1300969
[ 4 ] Bug #1300968 - CVE-2016-1982 privoxy: invalid reads in case of corrupt
chunk-encoded content [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=1300968
[ 5 ] Bug #1300973 - CVE-2016-1983 privoxy: invalid read via empty host header in client
request [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1300973
[ 6 ] Bug #1300967 - CVE-2016-1982 privoxy: invalid reads in case of corrupt
chunk-encoded content [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1300967
--------------------------------------------------------------------------------
================================================================================
python-mwclient-0.8.0-1.el6 (FEDORA-EPEL-2016-7e09252542)
Mwclient is a client to the MediaWiki API
--------------------------------------------------------------------------------
Update Information:
This update provides the new release of python-mwclient. The major new feature
in this release is Python 3 compatibility, so a python3-mwclient subpackage is
added for Fedora releases (not yet for EPEL, as I'm waiting for the whole
question of how we're going to do Python 3 on EPEL to be nailed down). python-
mwclient is renamed to python2-mwclient, with appropriate Provides and
Obsoletes. There is one minor backwards compatibility break; `Page.save()`'s
behaviour has changed slightly, in that if you previously passed a section
number to `Page.text()`, it will not be used for a subsequent `Page.save()`
call. This change should not affect either of Fedora's packaged consumers
(parley and python-wikitcms). More details on this and the other changes in the
new release can be found in `RELEASE-NOTES.md`.
--------------------------------------------------------------------------------
================================================================================
python-raven-5.10.1-1.el6 (FEDORA-EPEL-2016-d49bd53f65)
Python client for Sentry
--------------------------------------------------------------------------------
Update Information:
First EPEL release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1234950 - Package python-raven in EPEL
https://bugzilla.redhat.com/show_bug.cgi?id=1234950
--------------------------------------------------------------------------------
================================================================================
python-rpm-macros-3-6.el6 (FEDORA-EPEL-2016-9fa2974e48)
The unversioned Python RPM macros
--------------------------------------------------------------------------------
Update Information:
Various python rpm macros.
--------------------------------------------------------------------------------
================================================================================
quantum-espresso-5.3.0-5.el6 (FEDORA-EPEL-2016-ddb5c45a81)
A suite for electronic-structure calculations and materials modeling
--------------------------------------------------------------------------------
Update Information:
upsteam update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1282893 - Review Request: quantum-espresso - A suite for electronic-structure
calculations and materials modeling
https://bugzilla.redhat.com/show_bug.cgi?id=1282893
--------------------------------------------------------------------------------
================================================================================
salt-2015.5.9-1.el6 (FEDORA-EPEL-2016-64b4e54a3c)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 2015.5.9, patched with proper dnf support
--------------------------------------------------------------------------------
================================================================================
scotch-6.0.4-9.el6 (FEDORA-EPEL-2016-6bb5492c23)
Graph, mesh and hypergraph partitioning library
--------------------------------------------------------------------------------
Update Information:
This update puts the parmetis.h header in a separate package to help avoiding
conflicts with the original parmetis package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1299107 - [RFE] provide or separate parmetis
https://bugzilla.redhat.com/show_bug.cgi?id=1299107
--------------------------------------------------------------------------------