The following Fedora EPEL 7 Security updates need testing:
Age URL
321
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
83
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
46
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-f82c6fc04a
p7zip-15.09-4.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-43613cf75a
keepassx-0.4.4-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e34ffdd692
prosody-0.9.9-2.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-273a82f7db
owncloud-8.0.10-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-551b68b67a
moodle-3.0.2-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8da165e1bb
mbedtls-2.2.1-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-6f526f521d
python-rsa-3.3-2.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-043f77342d
cgit-0.12-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-418a480529
gsi-openssh-6.6.1p1-3.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-fb26e5cd3c
privoxy-3.0.23-3.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
diskimage-builder-1.8.0-2.el7
fldigi-3.23.07-1.el7
flrig-1.3.24-1.el7
globus-gram-job-manager-pbs-2.5-1.el7
gnome-shell-extension-openweather-1-0.16.20160123git35e912a.el7
grive2-0.5.0-1.20160114gitae06ecc.el7
letsencrypt-0.2.0-3.el7
lua-fun-0.1.3-1.el7
matio-1.5.3-1.el7
mup-6.4.1-1.el7
nethogs-0.8.2-2.20160101snap.el7
orafce-3.1.2-3.el7
perl-Test-TCP-2.14-1.el7
php-pear-Console-Table-1.3.0-1.el7
php-phpseclib-2.0.1-1.el7
privoxy-3.0.23-3.el7
python-acme-0.2.0-1.el7
python-colorama-0.3.2-3.el7
python-configargparse-0.10.0-1.el7
python-mimerender-0.5.5-1.el7
python-mwclient-0.8.0-1.el7
python-raven-5.10.1-1.el7
python-rpm-macros-3-6.el7
python-usbtmc-0.7-1.el7
salt-2015.5.9-1.el7
scotch-6.0.4-9.el7
Details about builds:
================================================================================
diskimage-builder-1.8.0-2.el7 (FEDORA-EPEL-2016-0e0c39f36f)
Image building tools for OpenStack
--------------------------------------------------------------------------------
Update Information:
New upstream release 1.8.0
--------------------------------------------------------------------------------
================================================================================
fldigi-3.23.07-1.el7 (FEDORA-EPEL-2016-6411d25115)
Digital modem program for Linux
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release.
--------------------------------------------------------------------------------
================================================================================
flrig-1.3.24-1.el7 (FEDORA-EPEL-2016-6411d25115)
Transceiver control program
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release.
--------------------------------------------------------------------------------
================================================================================
globus-gram-job-manager-pbs-2.5-1.el7 (FEDORA-EPEL-2016-3103b9bb6b)
Globus Toolkit - PBS Job Manager Support
--------------------------------------------------------------------------------
Update Information:
Fix issue parsing torque v5.1.2 logs in SEG.
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-openweather-1-0.16.20160123git35e912a.el7
(FEDORA-EPEL-2016-2a47f7f16e)
Display weather information from many locations in the world
--------------------------------------------------------------------------------
Update Information:
Update russian, spain, italian and french translation.
--------------------------------------------------------------------------------
================================================================================
grive2-0.5.0-1.20160114gitae06ecc.el7 (FEDORA-EPEL-2016-443f86a860)
Google Drive client
--------------------------------------------------------------------------------
Update Information:
Updated to grive2 which adds some nice features
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1298917 - grive2-0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1298917
--------------------------------------------------------------------------------
================================================================================
letsencrypt-0.2.0-3.el7 (FEDORA-EPEL-2016-4826773e90)
A free, automated certificate authority client
--------------------------------------------------------------------------------
Update Information:
Upgrade to 0.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289345 - Build epel7 branch
https://bugzilla.redhat.com/show_bug.cgi?id=1289345
[ 2 ] Bug #1288743 - This is a tracking bug for letsencrypt in EPEL7
https://bugzilla.redhat.com/show_bug.cgi?id=1288743
--------------------------------------------------------------------------------
================================================================================
lua-fun-0.1.3-1.el7 (FEDORA-EPEL-2016-913bb8547c)
Functional programming library for Lua
--------------------------------------------------------------------------------
Update Information:
A new package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295209 - Review Request: lua-fun - functional programming library for Lua
and LuaJIT
https://bugzilla.redhat.com/show_bug.cgi?id=1295209
--------------------------------------------------------------------------------
================================================================================
matio-1.5.3-1.el7 (FEDORA-EPEL-2016-503cc19fca)
Library for reading/writing Matlab MAT files
--------------------------------------------------------------------------------
Update Information:
Update to 1.5.3
--------------------------------------------------------------------------------
================================================================================
mup-6.4.1-1.el7 (FEDORA-EPEL-2016-0ed2c7ad02)
A music notation program that can also generate MIDI files
--------------------------------------------------------------------------------
Update Information:
Update to 6.4.1
--------------------------------------------------------------------------------
================================================================================
nethogs-0.8.2-2.20160101snap.el7 (FEDORA-EPEL-2016-75915b8111)
A tool resembling top for network traffic
--------------------------------------------------------------------------------
Update Information:
BZ#1297770 - Adding CXXFLAGS to spec file ---- fixing package versioning,
upstream code, fix changelog dates ---- Update Source URL, Update from
upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1297770 - nethogs: build ignores $RPM_OPT_FLAGS
https://bugzilla.redhat.com/show_bug.cgi?id=1297770
[ 2 ] Bug #1294363 - nethogs fails with "creating socket failed while establishing
local IP - are you root?"
https://bugzilla.redhat.com/show_bug.cgi?id=1294363
[ 3 ] Bug #1294322 - nethog fails to establish socket as in debian bug #808433
https://bugzilla.redhat.com/show_bug.cgi?id=1294322
--------------------------------------------------------------------------------
================================================================================
orafce-3.1.2-3.el7 (FEDORA-EPEL-2016-4a61145af1)
Implementation of some Oracle functions into PostgreSQL
--------------------------------------------------------------------------------
Update Information:
removed MODULE COMPAT macro as is not available postgresql el7 package ----
Rebuild for PostgreSQL 9.5 (rhbz#1296584)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1296584 - New PostgreSQL major release 9.5
https://bugzilla.redhat.com/show_bug.cgi?id=1296584
--------------------------------------------------------------------------------
================================================================================
perl-Test-TCP-2.14-1.el7 (FEDORA-EPEL-2016-7b8e0d9cc4)
Testing TCP program
--------------------------------------------------------------------------------
Update Information:
Upstream update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1282828 - Bump perl-Test-TCP version in epel7
https://bugzilla.redhat.com/show_bug.cgi?id=1282828
--------------------------------------------------------------------------------
================================================================================
php-pear-Console-Table-1.3.0-1.el7 (FEDORA-EPEL-2016-23bb674f3f)
Class that makes it easy to build console style tables
--------------------------------------------------------------------------------
Update Information:
* Fix warning with PHP 7 and bump required PHP version to 5.2.0 (Pieter Frenssen
PR #13)
--------------------------------------------------------------------------------
================================================================================
php-phpseclib-2.0.1-1.el7 (FEDORA-EPEL-2016-80ba99faad)
PHP Secure Communications Library
--------------------------------------------------------------------------------
Update Information:
**Version 2.0.1** * RSA: fix regression in PSS mode (#769) * RSA: fix issue
loading PKCS8 specific keys (#861) * X509: add getOID() method (#789) * X509:
improve base64-encoded detection rules (#855) * SFTP: fix quirky behavior with
put() (#830) * SFTP: fix E_NOTICE (#883) * SFTP/Stream: fix issue with filenames
with hashes (#901) * SSH2: add isAuthenticated() method (#897) * SSH/Agent: fix
possible PHP warning (#923) * BigInteger: add __debugInfo() magic method (#881)
* BigInteger: fix issue with doing bitwise not on 0 * add getBlockLength()
method to symmetric ciphers
--------------------------------------------------------------------------------
================================================================================
privoxy-3.0.23-3.el7 (FEDORA-EPEL-2016-fb26e5cd3c)
Privacy enhancing proxy
--------------------------------------------------------------------------------
Update Information:
Patches for CVE-2016-1982,3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1300975 - CVE-2016-1983 privoxy: invalid read via empty host header in client
request [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1300975
[ 2 ] Bug #1300974 - CVE-2016-1983 privoxy: invalid read via empty host header in client
request [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=1300974
[ 3 ] Bug #1300969 - CVE-2016-1982 privoxy: invalid reads in case of corrupt
chunk-encoded content [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1300969
[ 4 ] Bug #1300968 - CVE-2016-1982 privoxy: invalid reads in case of corrupt
chunk-encoded content [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=1300968
[ 5 ] Bug #1300973 - CVE-2016-1983 privoxy: invalid read via empty host header in client
request [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1300973
[ 6 ] Bug #1300967 - CVE-2016-1982 privoxy: invalid reads in case of corrupt
chunk-encoded content [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1300967
--------------------------------------------------------------------------------
================================================================================
python-acme-0.2.0-1.el7 (FEDORA-EPEL-2016-4826773e90)
Python library for the ACME protocol
--------------------------------------------------------------------------------
Update Information:
Upgrade to 0.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289345 - Build epel7 branch
https://bugzilla.redhat.com/show_bug.cgi?id=1289345
[ 2 ] Bug #1288743 - This is a tracking bug for letsencrypt in EPEL7
https://bugzilla.redhat.com/show_bug.cgi?id=1288743
--------------------------------------------------------------------------------
================================================================================
python-colorama-0.3.2-3.el7 (FEDORA-EPEL-2016-35ad0ab2a4)
Cross-platform colored terminal text
--------------------------------------------------------------------------------
Update Information:
Port it to EL7
--------------------------------------------------------------------------------
================================================================================
python-configargparse-0.10.0-1.el7 (FEDORA-EPEL-2016-4826773e90)
A Python module with support for argparse, config files, and env variables
--------------------------------------------------------------------------------
Update Information:
Upgrade to 0.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289345 - Build epel7 branch
https://bugzilla.redhat.com/show_bug.cgi?id=1289345
[ 2 ] Bug #1288743 - This is a tracking bug for letsencrypt in EPEL7
https://bugzilla.redhat.com/show_bug.cgi?id=1288743
--------------------------------------------------------------------------------
================================================================================
python-mimerender-0.5.5-1.el7 (FEDORA-EPEL-2016-833182bee7)
RESTful HTTP Content Negotiation for Flask, Bottle, etc.
--------------------------------------------------------------------------------
Update Information:
This update introduces the 'mimerender' python module, which provides a
convenience decorator for python webapp development. Newer versions of python-
flask-restless require it.
--------------------------------------------------------------------------------
================================================================================
python-mwclient-0.8.0-1.el7 (FEDORA-EPEL-2016-da7c871350)
Mwclient is a client to the MediaWiki API
--------------------------------------------------------------------------------
Update Information:
This update provides the new release of python-mwclient. The major new feature
in this release is Python 3 compatibility, so a python3-mwclient subpackage is
added for Fedora releases (not yet for EPEL, as I'm waiting for the whole
question of how we're going to do Python 3 on EPEL to be nailed down). python-
mwclient is renamed to python2-mwclient, with appropriate Provides and
Obsoletes. There is one minor backwards compatibility break; `Page.save()`'s
behaviour has changed slightly, in that if you previously passed a section
number to `Page.text()`, it will not be used for a subsequent `Page.save()`
call. This change should not affect either of Fedora's packaged consumers
(parley and python-wikitcms). More details on this and the other changes in the
new release can be found in `RELEASE-NOTES.md`.
--------------------------------------------------------------------------------
================================================================================
python-raven-5.10.1-1.el7 (FEDORA-EPEL-2016-9e58f36b76)
Python client for Sentry
--------------------------------------------------------------------------------
Update Information:
First EPEL release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1234950 - Package python-raven in EPEL
https://bugzilla.redhat.com/show_bug.cgi?id=1234950
--------------------------------------------------------------------------------
================================================================================
python-rpm-macros-3-6.el7 (FEDORA-EPEL-2016-48b10969dc)
The unversioned Python RPM macros
--------------------------------------------------------------------------------
Update Information:
Various python rpm macros.
--------------------------------------------------------------------------------
================================================================================
python-usbtmc-0.7-1.el7 (FEDORA-EPEL-2016-8126256965)
Python implementation of the USBTMC protocol
--------------------------------------------------------------------------------
Update Information:
- New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294278 - Review Request: python-usbtmc - Python implementation of the USBTMC
protocol
https://bugzilla.redhat.com/show_bug.cgi?id=1294278
--------------------------------------------------------------------------------
================================================================================
salt-2015.5.9-1.el7 (FEDORA-EPEL-2016-8ae4d12534)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 2015.5.9, patched with proper dnf support
--------------------------------------------------------------------------------
================================================================================
scotch-6.0.4-9.el7 (FEDORA-EPEL-2016-14df2fe585)
Graph, mesh and hypergraph partitioning library
--------------------------------------------------------------------------------
Update Information:
This update puts the parmetis.h header in a separate package to help avoiding
conflicts with the original parmetis package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1299107 - [RFE] provide or separate parmetis
https://bugzilla.redhat.com/show_bug.cgi?id=1299107
--------------------------------------------------------------------------------