The following Fedora EPEL 5 Security updates need testing:
Age URL
501
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3....
16
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11276/ssmtp-2.61...
14
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11300/drupal7-th...
10
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11336/lighttpd-1...
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11396/cacti-0.8....
2
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11418/graphite-w...
1
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11448/perl-Crypt...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11460/python-pyr...
The following builds have been pushed to Fedora EPEL 5 updates-testing
packagedb-cli-1.5.1-1.el5
plowshare-0.9.4-0.44.20130901git.el5
python-dns-1.11.1-1.el5
python-fedora-0.3.29-3.el5
python-pyrad-1.1-3.el5
Details about builds:
================================================================================
packagedb-cli-1.5.1-1.el5 (FEDORA-EPEL-2013-11464)
A CLI for pkgdb
--------------------------------------------------------------------------------
Update Information:
Update to 1.5.1 which fixes a bug in the log-in mechanism
Update to 1.5.0
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 5 2013 Pierre-Yves Chibon <pingou(a)pingoured.fr> - 1.5.1-1
- Update to 1.5.1
- Fixes RHBZ#995430 and RHBZ#970120
* Thu May 23 2013 Pierre-Yves Chibon <pingou(a)pingoured.fr> - 1.5.0-1
- Update to 1.5.0
- Fixes RHBZ#966196
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #966196 - pkgdb-cli gives incorrect error messages
https://bugzilla.redhat.com/show_bug.cgi?id=966196
--------------------------------------------------------------------------------
================================================================================
plowshare-0.9.4-0.44.20130901git.el5 (FEDORA-EPEL-2013-11457)
Download and upload files from file-sharing websites
--------------------------------------------------------------------------------
Update Information:
New upstream snapshot.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 4 2013 Elder Marco <eldermarco(a)fedoraproject.org> -
0.9.4-0.44.20130901git
- New upstream snapshot
--------------------------------------------------------------------------------
================================================================================
python-dns-1.11.1-1.el5 (FEDORA-EPEL-2013-11467)
DNS toolkit for Python
--------------------------------------------------------------------------------
Update Information:
New since 1.11.0:
Nothing
Bugs fixed since 1.11.1:
dns.resolver.Resolver erroneously referred to 'retry_servfail'
instead of 'self.retry_servfail'.
dns.tsigkeyring.to_text() would fail trying to convert the
keyname to text.
Multi-message TSIGs were broken for algorithms other than
HMAC-MD5 because we weren't passing the right digest module to
the HMAC code.
dns.dnssec._find_candidate_keys() tried to extract the key
from the wrong variable name.
$GENERATE tests were not backward compatible with python 2.4.
APL RR trailing zero suppression didn't work due to insufficient
python 3 porting. [dnspython3 only]
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 5 2013 Jeffrey C. Ollie <jeff(a)ocjtech.us> - 1.11.1-1
- New since 1.11.0:
-
- Nothing
-
- Bugs fixed since 1.11.1:
-
- dns.resolver.Resolver erroneously referred to 'retry_servfail'
- instead of 'self.retry_servfail'.
-
- dns.tsigkeyring.to_text() would fail trying to convert the
- keyname to text.
-
- Multi-message TSIGs were broken for algorithms other than
- HMAC-MD5 because we weren't passing the right digest module to
- the HMAC code.
-
- dns.dnssec._find_candidate_keys() tried to extract the key
- from the wrong variable name.
-
- $GENERATE tests were not backward compatible with python 2.4.
-
- APL RR trailing zero suppression didn't work due to insufficient
- python 3 porting. [dnspython3 only]
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.11.0-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Sun Jul 7 2013 Jeffrey C. Ollie <jeff(a)ocjtech.us> - 1.11.0-2
- Integrate Python 2.6 packaging, EPEL5, EPEL6 support
* Sun Jul 7 2013 Jeffrey C. Ollie <jeff(a)ocjtech.us> - 1.11.0-1
- New since 1.10.0:
-
- $GENERATE support
-
- TLSA RR support
-
- Added set_flags() method to dns.resolver.Resolver
-
- Bugs fixed since 1.10.0:
-
- Names with offsets >= 2^14 are no longer added to the
- compression table.
-
- The "::" syntax is not used to shorten a single 16-bit section
- of the text form an IPv6 address.
-
- Caches are now locked.
-
- YXDOMAIN is raised if seen by the resolver.
-
- Empty rdatasets are not printed.
-
- DNSKEY key tags are no longer assumed to be unique.
* Sat Feb 16 2013 Jamie Nguyen <jamielinux(a)fedoraproject.org> - 1.10.0-3
- add python3-dns subpackage (rhbz#911933)
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.10.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-fedora-0.3.29-3.el5 (FEDORA-EPEL-2013-11459)
Python modules for talking to Fedora Infrastructure Services
--------------------------------------------------------------------------------
Update Information:
* Drops the python-fedora-django subpackage as django is no longer available in epel5.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 4 2013 Toshio Kuratomi <toshio(a)fedoraproject.org> - 0.3.29-3
- Remove the django subpackage on EPEL5 as Django is no longer available there.
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.3.29-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-pyrad-1.1-3.el5 (FEDORA-EPEL-2013-11460)
Python RADIUS client
--------------------------------------------------------------------------------
Update Information:
* Better random number generator
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #911682 - CVE-2013-0294 python-pyrad: poor randomness leads to predictable
password hashing and RADIUS IDs
https://bugzilla.redhat.com/show_bug.cgi?id=911682
--------------------------------------------------------------------------------