The following Fedora EPEL 7 Security updates need testing:
Age URL
572
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
334
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
53
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c
redis-3.2.3-1.el7
51
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-4b8dd3488d
knot-1.6.8-1.el7
36
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3
chicken-4.11.0-3.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-03fb3c1531
banshee-2.6.2-11.el7 dbus-sharp-0.7.0-15.el7 dbus-sharp-glib-0.5.0-13.el7
gdata-sharp-1.4.0.2-18.el7 gio-sharp-0.3-14.el7 gkeyfile-sharp-0.1-19.el7
gnome-sharp-2.24.2-12.el7 gtk-sharp-beans-2.14.0-17.el7 gtk-sharp2-2.12.26-3.el7
gtk-sharp3-2.99.3-16.el7 gudev-sharp-0.1-18.el7 libappindicator-12.10.0-11.el7
libgpod-0.8.3-8.el7 mono-4.2.4-7.el7 mono-addins-1.1-3.el7 mono-cecil-0.9.6-6.el7
mono-zeroconf-0.9.0-16.el7 notify-sharp-0.4.0-0.26.20100411svn.el7
notify-sharp3-3.0.3-2.el7 nunit-3.4.1-2.el7 nunit2-2.6.4-14.el7 pinta-1.6-5.el7
taglib-sharp-2.1.0.0-3.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-49577d864a
mongodb-2.6.12-3.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-aca1572ceb
mingw-gnutls-3.3.24-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8f6ed4db26
libuv-1.9.1-1.el7 nodejs-6.7.0-107.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-28ad6782b3
php-adodb-5.20.6-2.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-bf5b9b3332
chromium-53.0.2785.116-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-208f62faa6
links-2.13-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-452534ff97
php-ZendFramework-1.12.20-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-39560a2353
mingw-c-ares-1.12.0-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-60045af95e
mingw-libidn-1.33-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
ansible-2.1.2.0-1.el7
ansible-lint-3.3.3-1.el7
bitstream-1.1-2.el7
fts-3.4.3-3.el7
gfal2-2.12.2-2.el7
kompose-0.1.0-0.1.git8227684.el7
lighttpd-1.4.41-2.el7
mingw-c-ares-1.12.0-1.el7
mingw-libidn-1.33-1.el7
mingw-nsis-2.50-1.el7
mkvtoolnix-7.4.0-3.el7
pugixml-1.7-3.el7
python-epi-0.1-3.el7
rubygem-activeresource-4.0.0-9.el7
speexdsp-1.2-0.9.rc3.el7
texlive-extension-2012-41.el7
xsp-4.2-2.el7
Details about builds:
================================================================================
ansible-2.1.2.0-1.el7 (FEDORA-EPEL-2016-aa11ff7124)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
See
https://github.com/ansible/ansible/blob/stable-2.1/CHANGELOG.md for a full
list of changes and bugfixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1372018 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1372018
--------------------------------------------------------------------------------
================================================================================
ansible-lint-3.3.3-1.el7 (FEDORA-EPEL-2016-b9ba4a545a)
Best practices checker for Ansible
--------------------------------------------------------------------------------
Update Information:
Update to 3.3.3
--------------------------------------------------------------------------------
================================================================================
bitstream-1.1-2.el7 (FEDORA-EPEL-2016-ca3dd4d1fa)
Simpler access to binary structures such as specified by MPEG, DVB, IETF
--------------------------------------------------------------------------------
Update Information:
libdvbpsi converts binary structures to C structures. Lists are implemented with
chained lists of C structures. biTStream is lower level, and more efficient:
fewer memory allocations, fewer memory copies. It also features a better
separation between layers and specifications.
--------------------------------------------------------------------------------
================================================================================
fts-3.4.3-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
File Transfer Service V3
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
gfal2-2.12.2-2.el7 (FEDORA-EPEL-2016-dce60c46e0)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
kompose-0.1.0-0.1.git8227684.el7 (FEDORA-EPEL-2016-ea607db870)
Tool to move from `docker-compose` to Kubernetes
--------------------------------------------------------------------------------
Update Information:
First package for EPEL 7
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.41-2.el7 (FEDORA-EPEL-2016-1fee8eee35)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Directory and permissions fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1201056 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1201056
--------------------------------------------------------------------------------
================================================================================
mingw-c-ares-1.12.0-1.el7 (FEDORA-EPEL-2016-39560a2353)
Library that performs asynchronous DNS operations
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-5180
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380463 - CVE-2016-5180 c-ares: Single byte out of buffer write
https://bugzilla.redhat.com/show_bug.cgi?id=1380463
--------------------------------------------------------------------------------
================================================================================
mingw-libidn-1.33-1.el7 (FEDORA-EPEL-2016-60045af95e)
MinGW Windows Internationalized Domain Name support library
--------------------------------------------------------------------------------
Update Information:
Update to 1.33 (#1374902,#1359147,#1359148)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1359145 - CVE-2016-6263 libidn: Crash when given invalid UTF-8 data on input
https://bugzilla.redhat.com/show_bug.cgi?id=1359145
[ 2 ] Bug #1359141 - CVE-2015-8948 libidn: Out-of-bounds read due to use of fgets with
fixed-size buffer
https://bugzilla.redhat.com/show_bug.cgi?id=1359141
[ 3 ] Bug #1359138 - CVE-2016-6262 libidn: Out-of-bounds read when reading zero byte as
input
https://bugzilla.redhat.com/show_bug.cgi?id=1359138
[ 4 ] Bug #1359134 - CVE-2016-6261 libidn: Out of bounds stack read in idna_to_ascii_4i
https://bugzilla.redhat.com/show_bug.cgi?id=1359134
--------------------------------------------------------------------------------
================================================================================
mingw-nsis-2.50-1.el7 (FEDORA-EPEL-2016-234f774ebb)
Nullsoft Scriptable Install System
--------------------------------------------------------------------------------
Update Information:
New upstream version 2.50.
--------------------------------------------------------------------------------
================================================================================
mkvtoolnix-7.4.0-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
Matroska container manipulation utilities
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
pugixml-1.7-3.el7 (FEDORA-EPEL-2016-dce60c46e0)
A light-weight C++ XML processing library
--------------------------------------------------------------------------------
Update Information:
Update pugixml to latest version and rebuild dependencies. ---- New upstream
release 2.12.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1347390 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1347390
--------------------------------------------------------------------------------
================================================================================
python-epi-0.1-3.el7 (FEDORA-EPEL-2016-9032512284)
Tool for looking at the entry point plugins on a system
--------------------------------------------------------------------------------
Update Information:
Fixed source macro in prep section
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1379709 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1379709
--------------------------------------------------------------------------------
================================================================================
rubygem-activeresource-4.0.0-9.el7 (FEDORA-EPEL-2016-c8fcbdebb6)
REST modeling framework (part of Rails)
--------------------------------------------------------------------------------
Update Information:
Added provides for EPEL7
--------------------------------------------------------------------------------
================================================================================
speexdsp-1.2-0.9.rc3.el7 (FEDORA-EPEL-2016-5ceeaaa626)
A voice compression format (DSP)
--------------------------------------------------------------------------------
Update Information:
Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
texlive-extension-2012-41.el7 (FEDORA-EPEL-2016-bffb0da33d)
TeX formatting system
--------------------------------------------------------------------------------
Update Information:
add missing xypic, pst-tools, cbfonts amd amstex
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1200172 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1200172
--------------------------------------------------------------------------------
================================================================================
xsp-4.2-2.el7 (FEDORA-EPEL-2016-b216895076)
A small web server that hosts
ASP.NET
--------------------------------------------------------------------------------
Update Information:
xsp with Mono4
--------------------------------------------------------------------------------