The following Fedora EPEL 6 Security updates need testing:
Age URL
143
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b6c663378c
unrtf-0.21.9-8.el6
34
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-6bc3a525a2
libmad-0.15.1b-26.el6
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-791c4cceb9
clamav-0.100.2-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
drupal7-7.60-2.el6
jglobus-2.1.0-6.el6
php-pear-CAS-1.3.6-1.el6
Details about builds:
================================================================================
drupal7-7.60-2.el6 (FEDORA-EPEL-2018-4b684248e8)
An open-source content-management platform
--------------------------------------------------------------------------------
Update Information:
*
https://www.drupal.org/project/drupal/releases/7.60 * [SA-
CORE-2018-006](https://www.drupal.org/SA-CORE-2018-006)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 28 2018 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 7.60-2
- Explicit python dependencies
- Explicit python2 except el5
- See
https://koji.fedoraproject.org/koji/buildinfo?buildID=1156502
* Sat Oct 27 2018 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 7.60-1
- Update to 7.60 (RHBZ #1643121 / RHBZ #1643122 / RHBZ #1643124 / SA-CORE-2018-006)
- Remove patch drupal-7.14-CVE-2012-2922 (see
https://groups.drupal.org/node/230373)
* Thu Jul 12 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 7.59-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1643121 - drupal: Multiple Vulnerabilities - SA-CORE-2018-006
https://bugzilla.redhat.com/show_bug.cgi?id=1643121
--------------------------------------------------------------------------------
================================================================================
jglobus-2.1.0-6.el6 (FEDORA-EPEL-2018-9a6db2915d)
Globus Java client libraries
--------------------------------------------------------------------------------
Update Information:
Apply patches from OSG/WLCG.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 30 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 2.1.0-6
- Apply patches from OSG/WLCG
--------------------------------------------------------------------------------
================================================================================
php-pear-CAS-1.3.6-1.el6 (FEDORA-EPEL-2018-d6940a3da3)
Central Authentication Service client library in php
--------------------------------------------------------------------------------
Update Information:
**Version 1.3.6** **Security Fixes:** * Fix XSS in proxy mode [#271]
(Joachim Fritschi) **Bug Fixes:** * Fix bad condition [#252] (Brice
Vercoustre) * Hash ticket strings to generate valid-length session-ids [#224,
#244, #248] (Adam Franco) * Fix "phpCAS" class capitalization in code [#273,
#277] (phy25) **Improvement:** * Remove fallback for __autoload [#247]
(marinaglancy) * More robust check for Windows OS in File.php [#275]
(xamount) * Fix continue statement within switch/case for php 7.3
compatibility [#278] (stonk7)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 26 2018 Remi Collet <remi(a)remirepo.net> - 1.3.6-1
- update to 1.3.6
- new github and packagist owner
--------------------------------------------------------------------------------