The following Fedora EPEL 6 Security updates need testing:
Age URL
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-2e91626690
php-horde-horde-5.2.22-1.el6
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ed97a34306
qt5-qtbase-5.6.1-6.el6
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-7f0712e439
pxz-4.999.9-19.beta.20200421git.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
amavisd-milter-1.7.0-1.el6
openvpn-2.4.9-1.el6
tomcat-7.0.103-1.el6
twa-1.9.1-1.el6
Details about builds:
================================================================================
amavisd-milter-1.7.0-1.el6 (FEDORA-EPEL-2020-0556fe68cc)
Sendmail milter for amavisd-new using the AM.PDP protocol
--------------------------------------------------------------------------------
Update Information:
# amavisd-milter amavisd-milter has been moved from SourceForge to to GitHub.
## New features - Fork after initializing milter socket - Use `client_name`
if available instead of hostname passed to `xxfi_connect` - Generate `amavisd-
milter.8` from `AMAVISD-MILTER.md` # Bug and compatibility fixes - Fixed
compiler warnings - Converted indentation to spaces only - Removed obsoleted
file `amavisd-milter.spec`
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 22 2020 Robert Scheck <robert(a)fedoraproject.org> 1.7.0-1
- Upgrade to 1.7.0 (#1824332)
* Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Wed Jul 24 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.6.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1824332 - amavisd-milter 1.7.0 available
https://bugzilla.redhat.com/show_bug.cgi?id=1824332
--------------------------------------------------------------------------------
================================================================================
openvpn-2.4.9-1.el6 (FEDORA-EPEL-2020-aa01e58571)
A full-featured SSL VPN solution
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream OpenVPN 2.4.9 release. It contains a security fix for
CVE-2020-11810. This security issue is quite hard to abuse, requiring a fairly
precise timing attack combined with guessing a just assigned peer-id reference.
If successful, only a single client just initiating a new connection will
experience a denial of service situation. This wi why the severity is rated
low.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 19 2020 David Sommerseth <dazo(a)eurephia.org> - 2.4.9-1
- Update to upstream OpenVPN 2.4.9
--------------------------------------------------------------------------------
================================================================================
tomcat-7.0.103-1.el6 (FEDORA-EPEL-2020-fe1499f83d)
Apache Servlet/JSP Engine, RI for Servlet 3.0/JSP 2.2 API
--------------------------------------------------------------------------------
Update Information:
Update to tomcat 7.0.103.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 22 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:7.0.103-1
- Update to 7.0.103
--------------------------------------------------------------------------------
================================================================================
twa-1.9.1-1.el6 (FEDORA-EPEL-2020-42b39c075f)
Tiny web auditor with strong opinions
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release (v.1.9.1)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 24 2020 Artur Iwicki <fedora(a)svgames.pl> - 1.9.1-1
- Update to latest upstream release
--------------------------------------------------------------------------------