The following Fedora EPEL 7 Security updates need testing:
Age URL
733
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
495
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
214
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c
redis-3.2.3-1.el7
198
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3
chicken-4.11.0-3.el7
77
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
16
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-759dd56b65
firebird-2.5.7.27050.0-1.el7
12
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-cf89632a6e
canl-c-2.1.8-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d5fe44714a
cacti-1.0.4-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0e81fa293f
drupal7-metatag-1.21-1.el7
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f1dce07331
drupal7-views-3.15-1.el7
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f99defddc3
munin-2.0.30-5.el7
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-18d82f816f
breeze-icon-theme-5.31.0-1.el7 extra-cmake-modules-5.31.0-3.el7 kf5-5.31.0-1.el7
kf5-attica-5.31.0-1.el7 kf5-baloo-5.31.0-1.el7 kf5-bluez-qt-5.31.0-1.el7
kf5-frameworkintegration-5.31.0-1.el7 kf5-kactivities-5.31.0-1.el7
kf5-kactivities-stats-5.31.0-1.el7 kf5-kapidox-5.31.0-1.el7 kf5-karchive-5.31.0-1.el7
kf5-kauth-5.31.0-1.el7 kf5-kbookmarks-5.31.0-1.el7 kf5-kcmutils-5.31.0-1.el7
kf5-kcodecs-5.31.0-1.el7 kf5-kcompletion-5.31.0-1.el7 kf5-kconfig-5.31.0-1.el7
kf5-kconfigwidgets-5.31.0-1.el7 kf5-kcoreaddons-5.31.0-1.el7 kf5-kcrash-5.31.0-1.el7
kf5-kdbusaddons-5.31.0-1.el7 kf5-kdeclarative-5.31.0-1.el7 kf5-kded-5.31.0-1.el7
kf5-kdelibs4support-5.31.0-1.el7 kf5-kdesignerplugin-5.31.0-1.el7 kf5-kdesu-5.31.0-1.el7
kf5-kdewebkit-5.31.0-1.el7 kf5-kdnssd-5.31.0-1.el7 kf5-kdoctools-5.31.0-1.el7
kf5-kemoticons-5.31.0-1.el7 kf5-kfilemetadata-5.31.0-1.el7 kf5-kglobalaccel-5.31.0-1.el7
kf5-kguiaddons-5.31.0-1.el7 kf5-khtml
-5.31.0-1.el7 kf5-ki18n-5.31.0-1.el7 kf5-kiconthemes-5.31.0-1.el7
kf5-kidletime-5.31.0-1.el7 kf5-kimageformats-5.31.0-1.el7 kf5-kinit-5.31.0-1.el7
kf5-kio-5.31.0-2.el7 kf5-kitemmodels-5.31.0-1.el7 kf5-kitemviews-5.31.0-1.el7
kf5-kjobwidgets-5.31.0-1.el7 kf5-kjs-5.31.0-1.el7 kf5-kjsembed-5.31.0-1.el7
kf5-kmediaplayer-5.31.0-1.el7 kf5-knewstuff-5.31.0-1.el7 kf5-knotifications-5.31.0-1.el7
kf5-knotifyconfig-5.31.0-1.el7 kf5-kpackage-5.31.0-1.el7 kf5-kparts-5.31.0-1.el7
kf5-kpeople-5.31.0-1.el7 kf5-kplotting-5.31.0-1.el7 kf5-kpty-5.31.0-1.el7
kf5-kross-5.31.0-1.el7 kf5-krunner-5.31.0-1.el7 kf5-kservice-5.31.0-1.el7
kf5-ktexteditor-5.31.0-2.el7 kf5-ktextwidgets-5.31.0-1.el7
kf5-kunitconversion-5.31.0-1.el7 kf5-kwallet-5.31.0-1.el7 kf5-kwidgetsaddons-5.31.0-1.el7
kf5-kwindowsystem-5.31.0-1.el7 kf5-kxmlgui-5.31.0-1.el7 kf5-kxmlrpcclient-5.31.0-1.el7
kf5-modemmanager-qt-5.31.0-1.el7 kf5-networkmanager-qt-5.31.0-1.el7
kf5-plasma-5.31.0-1.el7 kf5-solid-5.31.0-1.el7 kf5-sonnet-5.31.0-1.el7 kf5
-syntax-highlighting-5.31.0-1.el7 kf5-threadweaver-5.31.0-1.el7
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4c01d41d83
php-pear-PHP-CodeSniffer-2.8.1-1.el7
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9701d0e0dd
GraphicsMagick-1.3.25-6.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d2049ca0d4
tor-0.2.9.10-1.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-19578898e6
w3m-0.5.3-30.git20170102.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c73452ca27
tcpreplay-4.1.2-3.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-769c60931f
wordpress-4.7.3-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-cb10c8b69d
php-onelogin-php-saml-2.10.4-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-6950a0884d R-3.3.3-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
R-3.3.3-1.el7
auter-0.9-1.el7
batctl-2017.0-1.el7
composer-1.4.1-1.el7
conakry-fonts-20070829-14.el7
drupal7-entity_translation-1.0-0.11.beta6.el7
exim-4.89-1.el7
flr-0.0.3-1.el7
fpaste-0.3.7.4.1-1.el7
globus-gssapi-gsi-12.13-3.el7
golang-googlecode-gogoprotobuf-0.4-0.1.gitf6b4bb7.el7
jcodings-1.0.9-11.el7
libjaylink-0.1.0-3.el7
libmediainfo-0.7.93-1.el7
lugaru-1.2-2.el7
mediainfo-0.7.93-1.el7
nagios-plugins-2.2.0-6.el7
nodejs-6.10.0-1.el7
perl-IPTables-Parse-1.6.1-4.el7
php-onelogin-php-saml-2.10.4-1.el7
prelude-correlator-3.1.0-2.el7
python-cornice-1.1.0-3.el7
python-isort-4.2.5-8.el7
python-lazy-object-proxy-1.2.2-1.el7
python-pamela-0.3.0-1.el7
python-pytest-runner-2.9-4.el7
python-rpm-macros-3-17.el7
root-6.08.06-1.el7
rootfs-resize-2.0-4.el7
roundcubemail-1.1.8-1.el7
rubygem-review-2.2.0-2.el7
shellinabox-2.20-1.el7
Details about builds:
================================================================================
R-3.3.3-1.el7 (FEDORA-EPEL-2017-6950a0884d)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
Update to 3.3.3. Fix CVE-2016-8714.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1431171 - CVE-2016-8714 R: Buffer overflow in the LoadEncoding functionality
https://bugzilla.redhat.com/show_bug.cgi?id=1431171
--------------------------------------------------------------------------------
================================================================================
auter-0.9-1.el7 (FEDORA-EPEL-2017-aca62b85b4)
Prepare and apply updates
--------------------------------------------------------------------------------
Update Information:
Capture package manager output
--------------------------------------------------------------------------------
================================================================================
batctl-2017.0-1.el7 (FEDORA-EPEL-2017-1f0a8336ef)
B.A.T.M.A.N. advanced control and management tool
--------------------------------------------------------------------------------
Update Information:
Update to 2017.0
--------------------------------------------------------------------------------
================================================================================
composer-1.4.1-1.el7 (FEDORA-EPEL-2017-eac37e3820)
Dependency Manager for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 1.4.1** - 2017-03-10 * Fixed `apcu-autoloader` config option being
ignored in `dump-autoload` command * Fixed json validation not allowing
boolean for trunk-path, branches-path and tags-path in svn repos * Fixed json
validation not allowing repository URLs without scheme ---- **Version
1.4.0** - 2017-03-08 * Improved memory usage of dependency solver * Added
`--format json` option to the `outdated` and `show` command to get machine
readable package listings * Added `--ignore-filters` flag to `archive` command
to bypass the .gitignore and co * Added support for `outdated` output without
ansi colors * Added support for Bitbucket API v2 * Changed the require
command to follow minimum-stability / prefer-stable values when picking a
version * Fixed regression when using composer in a Mercurial repository ----
**Version 1.3.3** * Improved baseline psr-4 autoloader performance for
projects with many nested namespaces configured * Fixed issues with gitlab
API access when the token had insufficient permissions * Fixed some HHVM
strict type issues * Fixed version guessing of headless git checkouts in some
conditions * Fixed compatibility with subversion 1.8 * Fixed version
guessing not working with svn/hg * Fixed script/exec errors not being output
correctly * Fixed PEAR repository bug with
pear.php.net
--------------------------------------------------------------------------------
================================================================================
conakry-fonts-20070829-14.el7 (FEDORA-EPEL-2017-b458fe2420)
N'Ko font by Michael Everson
--------------------------------------------------------------------------------
Update Information:
Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
drupal7-entity_translation-1.0-0.11.beta6.el7 (FEDORA-EPEL-2017-1fed610179)
Allows entities to be translated into different languages
--------------------------------------------------------------------------------
Update Information:
- [
7.x-1.0-beta6](https://www.drupal.org/project/entity_translation/releases...
-1.0-beta6)
--------------------------------------------------------------------------------
================================================================================
exim-4.89-1.el7 (FEDORA-EPEL-2017-99e2d3c1ad)
The exim mail transfer agent
--------------------------------------------------------------------------------
Update Information:
This is an update fixing multiple bugs and especially problems with DKIM.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1428141 - Exim 4.88 (epel) segmentation fault
https://bugzilla.redhat.com/show_bug.cgi?id=1428141
--------------------------------------------------------------------------------
================================================================================
flr-0.0.3-1.el7 (FEDORA-EPEL-2017-57d2535dcb)
Fedora Releng python libraries and command line tools
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream. Adds flr-koji command and library for rebuilding
container images. ---- Update to latest upstream ---- First release of flr
for Fedora.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411502 - Review Request: flr - Fedora RelEng python libraries and command
line tools
https://bugzilla.redhat.com/show_bug.cgi?id=1411502
--------------------------------------------------------------------------------
================================================================================
fpaste-0.3.7.4.1-1.el7 (FEDORA-EPEL-2017-3cb5844b5a)
A simple tool for pasting info onto sticky notes instances
--------------------------------------------------------------------------------
Update Information:
* use py2 version with HTTPS
--------------------------------------------------------------------------------
================================================================================
globus-gssapi-gsi-12.13-3.el7 (FEDORA-EPEL-2017-6286391434)
Globus Toolkit - GSSAPI library
--------------------------------------------------------------------------------
Update Information:
Don't unlock unlocked mutex.
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-gogoprotobuf-0.4-0.1.gitf6b4bb7.el7 (FEDORA-EPEL-2017-9477522625)
A fork of goprotobuf with several extra features
--------------------------------------------------------------------------------
Update Information:
Bump to upstream f6b4bb7b2dde1736b809b3da996ed72f278e9be9 ---- Bump to
upstream d7788ac7ca647999a3775cb756e449ab177dd138
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1428951 - packaged version too old for syncthing
https://bugzilla.redhat.com/show_bug.cgi?id=1428951
[ 2 ] Bug #1246215 - Tracker for golang-googlecode-gogoprotobuf
https://bugzilla.redhat.com/show_bug.cgi?id=1246215
--------------------------------------------------------------------------------
================================================================================
jcodings-1.0.9-11.el7 (FEDORA-EPEL-2017-bc6b57454a)
Java-based codings helper classes for Joni and JRuby
--------------------------------------------------------------------------------
Update Information:
Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
libjaylink-0.1.0-3.el7 (FEDORA-EPEL-2017-6a02df15b6)
Library for SEGGER J-Link and compatible devices
--------------------------------------------------------------------------------
Update Information:
fixed %post and %postun scriptlets ---- fixed BuildRequires
--------------------------------------------------------------------------------
================================================================================
libmediainfo-0.7.93-1.el7 (FEDORA-EPEL-2017-54a5504e3b)
Library for supplies technical and tag information about a video or audio file
--------------------------------------------------------------------------------
Update Information:
Update to 0.7.93.
--------------------------------------------------------------------------------
================================================================================
lugaru-1.2-2.el7 (FEDORA-EPEL-2017-6e19537ce2)
Ninja rabbit fighting game
--------------------------------------------------------------------------------
Update Information:
Add OARS data to appdata/metainfo file via backport from upstream ---- Upgrade
to v1.2 (#1421396)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1421396 - lugaru-1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1421396
--------------------------------------------------------------------------------
================================================================================
mediainfo-0.7.93-1.el7 (FEDORA-EPEL-2017-54a5504e3b)
Supplies technical and tag information about a video or audio file (CLI)
--------------------------------------------------------------------------------
Update Information:
Update to 0.7.93.
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-2.2.0-6.el7 (FEDORA-EPEL-2017-212f3ef76e)
Host/service/network monitoring program plugins for Nagios
--------------------------------------------------------------------------------
Update Information:
Consolidate the patches from patrick and git ---- OK so it turns out writing
to a non initialized pointer is bad. mmmkay. ---- Try to put in a logic fix
for http. It gives answer expected but may not work for upstream ---- Got
feedback on bz 1422993. Put in fix from github ---- Start collecting and
fixing bugzilla reports. This one fixes ipv6 for check_snmp ---- Grab other
fixes from git maintenance branch to fix other check_ problems ---- Put in
patch to fix check_file_age
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410324 - nagios-plugins 2.1.4: check_dns lost MX priority on output
https://bugzilla.redhat.com/show_bug.cgi?id=1410324
[ 2 ] Bug #1426817 - check_http behavior changed from 2.1.4 to 2.2.0 in case option -e
is used
https://bugzilla.redhat.com/show_bug.cgi?id=1426817
[ 3 ] Bug #1422993 - check_snmp missing support for IPv6
https://bugzilla.redhat.com/show_bug.cgi?id=1422993
[ 4 ] Bug #1159891 - When trying to install nagios-plugins-all (with OSP5 enabled) it
fails due to dependency issue
https://bugzilla.redhat.com/show_bug.cgi?id=1159891
[ 5 ] Bug #1298766 - check_dhcp segfaults while parsing arguments
https://bugzilla.redhat.com/show_bug.cgi?id=1298766
[ 6 ] Bug #1409932 - nagios-plugins-dns-2.1.4-2.el7.x86_64 broke reverse lookup (PTR)
checks
https://bugzilla.redhat.com/show_bug.cgi?id=1409932
[ 7 ] Bug #1417259 - nagios-plugins-2.1.4-stable check_snmp rate calculation expects
strange path
https://bugzilla.redhat.com/show_bug.cgi?id=1417259
[ 8 ] Bug #1410039 - check_file_age is broken in recent update
https://bugzilla.redhat.com/show_bug.cgi?id=1410039
--------------------------------------------------------------------------------
================================================================================
nodejs-6.10.0-1.el7 (FEDORA-EPEL-2017-14361c9d54)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md...
2-21-version-6100-boron-lts-mylesborins ---- Update to v6.9.5(security)
--------------------------------------------------------------------------------
================================================================================
perl-IPTables-Parse-1.6.1-4.el7 (FEDORA-EPEL-2017-d125927bad)
Perl extension for parsing iptables firewall rulesets
--------------------------------------------------------------------------------
Update Information:
First build for EPEL7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1389060 - EPEL7 branch missing (required for psad)
https://bugzilla.redhat.com/show_bug.cgi?id=1389060
--------------------------------------------------------------------------------
================================================================================
php-onelogin-php-saml-2.10.4-1.el7 (FEDORA-EPEL-2017-cb10c8b69d)
SAML support for PHP
--------------------------------------------------------------------------------
Update Information:
Update to 2.10.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1429267 - php-onelogin-php-saml-v2.10.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1429267
--------------------------------------------------------------------------------
================================================================================
prelude-correlator-3.1.0-2.el7 (FEDORA-EPEL-2017-b42ee5f4fd)
Real time correlator of events received by Prelude Manager
--------------------------------------------------------------------------------
Update Information:
Fix python3 dependencies
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1431103 - prelude-correlator invalid python3 dependencies in epel7
https://bugzilla.redhat.com/show_bug.cgi?id=1431103
--------------------------------------------------------------------------------
================================================================================
python-cornice-1.1.0-3.el7 (FEDORA-EPEL-2017-dab7ea7d6f)
Define Web Services in Pyramid
--------------------------------------------------------------------------------
Update Information:
Update to 1.1.0.
https://raw.githubusercontent.com/Cornices/cornice/master/CHANGES.txt
--------------------------------------------------------------------------------
================================================================================
python-isort-4.2.5-8.el7 (FEDORA-EPEL-2017-5347e64e57)
Python utility / library to sort Python imports
--------------------------------------------------------------------------------
Update Information:
Python utility / library to sort Python imports.
--------------------------------------------------------------------------------
================================================================================
python-lazy-object-proxy-1.2.2-1.el7 (FEDORA-EPEL-2017-a136236621)
A fast and thorough lazy object proxy
--------------------------------------------------------------------------------
Update Information:
A fast and thorough lazy object proxy.
--------------------------------------------------------------------------------
================================================================================
python-pamela-0.3.0-1.el7 (FEDORA-EPEL-2017-55fcaa54b5)
Python PAM interface
--------------------------------------------------------------------------------
Update Information:
Yet another Python wrapper for PAM.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1430131 - Review Request: python-pamela - Python PAM interface
https://bugzilla.redhat.com/show_bug.cgi?id=1430131
--------------------------------------------------------------------------------
================================================================================
python-pytest-runner-2.9-4.el7 (FEDORA-EPEL-2017-ada29f419e)
Invoke py.test as distutils command with dependency resolution
--------------------------------------------------------------------------------
Update Information:
Setup scripts can use pytest-runner to add setup.py test support for pytest
runner.
--------------------------------------------------------------------------------
================================================================================
python-rpm-macros-3-17.el7 (FEDORA-EPEL-2017-d13257eccf)
The unversioned Python RPM macros
--------------------------------------------------------------------------------
Update Information:
- Add %py_build_egg/wheel and %py_install_egg/wheel macros - Make expaned macros
start on the same line as the macro - Add missing sleeps to other build macros
--------------------------------------------------------------------------------
================================================================================
root-6.08.06-1.el7 (FEDORA-EPEL-2017-593821d07b)
Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:
https://root.cern.ch/doc/v608/release-notes.html#release-6.0806
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1428713 - root-config:: command not found quite late during the build
https://bugzilla.redhat.com/show_bug.cgi?id=1428713
--------------------------------------------------------------------------------
================================================================================
rootfs-resize-2.0-4.el7 (FEDORA-EPEL-2017-5ce249bdcf)
Root partition re-sizing service (typically for SD cards)
--------------------------------------------------------------------------------
Update Information:
rootfs-resize is a root partition and file system re-sizing service typically
used on systems running from SD cards.
--------------------------------------------------------------------------------
================================================================================
roundcubemail-1.1.8-1.el7 (FEDORA-EPEL-2017-12fe739fe6)
Round Cube Webmail is a browser-based multilingual IMAP client
--------------------------------------------------------------------------------
Update Information:
**RELEASE 1.1.8** - Fix bug where mail content frame couldn't be reset in some
corner cases (#5608) - Fix regression where groups with email address were
resolved to its members' addresses - Fix so group/addressbook selection is
retained on page refresh - Fix bug where signature couldn't be added above the
quote in Firefox 51 (#5628) - Fix so microseconds macro (u) in log_date_format
works (#1490446) - Fix XSS issue in handling of a style tag inside of an svg
element
--------------------------------------------------------------------------------
================================================================================
rubygem-review-2.2.0-2.el7 (FEDORA-EPEL-2017-62760f6a5b)
Flexible document format/conversion system
--------------------------------------------------------------------------------
Update Information:
- Update to 2.2.0 (bz#1430524) - Include LPPL license
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1430524 - rubygem-review-2.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1430524
--------------------------------------------------------------------------------
================================================================================
shellinabox-2.20-1.el7 (FEDORA-EPEL-2017-58f877a9ec)
Web based AJAX terminal emulator
--------------------------------------------------------------------------------
Update Information:
Update to 2.20
--------------------------------------------------------------------------------