The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.1... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5944/python-tornado... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5854/perl-Config-In... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribbl... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5877/moodle-2.1.5-3...
The following builds have been pushed to Fedora EPEL 6 updates-testing
ATpy-0.9.6-1.el6 erlang-rebar-2-9.20120514git635d1a9.el6 gitolite-2.3.1-1.el6 gitolite3-3.02-1.el6 mcollective-2.0.0-3.el6 mozilla-https-everywhere-2.0.5-1.el6 nagios-plugins-check_sip-1.3-1.el6 nagios-plugins-check_sip-1.3-2.el6 php-channel-digitalsandwich-1.3-2.el6 php-channel-phpqatools-1.3-3.el6 python-httplib2-0.7.4-1.el6 python-tornado-2.2.1-1.el6 python-txzmq-0.5.0-1.el6 python-urllib2_kerberos-0.1.6-4.el6
Details about builds:
================================================================================ ATpy-0.9.6-1.el6 (FEDORA-EPEL-2012-5937) Astronomical Tables in Python -------------------------------------------------------------------------------- Update Information:
New upstream source -------------------------------------------------------------------------------- ChangeLog:
* Mon May 21 2012 Sergio Pascual <sergiopr at fedoraproject.org> - 0.9.6-1 - New upstream release. --------------------------------------------------------------------------------
================================================================================ erlang-rebar-2-9.20120514git635d1a9.el6 (FEDORA-EPEL-2012-5936) Erlang Build Tools -------------------------------------------------------------------------------- Update Information:
* Fixed dependencies (erl_interface) * Update to the latest git tag * Update to the latest git tag * Update to the latest git tag -------------------------------------------------------------------------------- ChangeLog:
* Tue May 22 2012 Peter Lemenkov lemenkov@gmail.com - 2-9.20120514git635d1a9 - Fix building in EL6 and Fedora * Mon May 21 2012 Peter Lemenkov lemenkov@gmail.com - 2-8.20120514git635d1a9 - Explicitly list erlang-erl_interface as a dependency - Fixed EPEL5 dependencies * Sun May 20 2012 Peter Lemenkov lemenkov@gmail.com - 2-7.20120514git635d1a9 - Enable building on EL5 (remove erlydtl-related stuff on el5) - Remove abnfc-related stff until we package it * Wed May 16 2012 Peter Lemenkov lemenkov@gmail.com - 2-6.20120514git635d1a9 - Updated to the latest git snapshot * Fri Jan 13 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2-5.20101120git90058c7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Feb 8 2011 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2-4.20101120git90058c7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ gitolite-2.3.1-1.el6 (FEDORA-EPEL-2012-5939) Highly flexible server for git directory version tracker -------------------------------------------------------------------------------- Update Information:
Latest upstream. -------------------------------------------------------------------------------- ChangeLog:
* Mon May 21 2012 Jon Ciesla limburgher@gmail.com - 2.3.1-1 - 2.3.1. - configgen patch upstreamed. --------------------------------------------------------------------------------
================================================================================ gitolite3-3.02-1.el6 (FEDORA-EPEL-2012-5951) Highly flexible server for git directory version tracker -------------------------------------------------------------------------------- Update Information:
New upstream. New package for gitolite 3.01. New package for gitolite 3.01. New package for gitolite 3.01. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #821838 - Review Request: gitolite3 - Highly flexible server for git directory version tracker https://bugzilla.redhat.com/show_bug.cgi?id=821838 --------------------------------------------------------------------------------
================================================================================ mcollective-2.0.0-3.el6 (FEDORA-EPEL-2012-5948) A framework to build server orchestration or parallel job execution systems -------------------------------------------------------------------------------- Update Information:
Drops lsb requirement from SysV init files. -------------------------------------------------------------------------------- ChangeLog:
* Tue May 22 2012 Steve Traylen steve.traylen@cern.ch - 2.0.0-3 - Drop 0001-get-rid-of-vendor-libraries.patch and 0002-Don-t-enable-services-by-default.patch. vendor load falls back to system path. * Mon May 21 2012 Steve Traylen steve.traylen@cern.ch - 2.0.0-2 - Fix ExecReload in systemd file. - Use alternate SysV start up file dropping lsb requires. --------------------------------------------------------------------------------
================================================================================ mozilla-https-everywhere-2.0.5-1.el6 (FEDORA-EPEL-2012-5935) HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey -------------------------------------------------------------------------------- Update Information:
* Fix for compatibility with some other Firefox extensions: https://trac.torproject.org/projects/tor/ticket/5682 * Fixes: Wordpress stylesheets, USENIX, Mozilla, Opera, Indymedia https://trac.torproject.org/projects/tor/ticket/5905 https://mail1.eff.org/pipermail/https-everywhere-rules/2012-April/001105.htm... * Disable broken: Pandora, Miranda IM, Pastebin.ca, PaidContent https://trac.torproject.org/projects/tor/ticket/5804 https://trac.torproject.org/projects/tor/ticket/5776 -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ nagios-plugins-check_sip-1.3-1.el6 (FEDORA-EPEL-2012-5788) A Nagios plugin to check SIP servers and devices -------------------------------------------------------------------------------- Update Information:
* Ver. 1.3 (small enhancements) --------------------------------------------------------------------------------
================================================================================ nagios-plugins-check_sip-1.3-2.el6 (FEDORA-EPEL-2012-5931) A Nagios plugin to check SIP servers and devices -------------------------------------------------------------------------------- Update Information:
* Fixed typo (see rhbz #823859) -------------------------------------------------------------------------------- ChangeLog:
* Tue May 22 2012 Peter Lemenkov lemenkov@gmail.com - 1.3-2 - Fixed typo (see rhbz #823859) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #823859 - nagios-plugins-check_sip x86_64 broken, reason: typo /usr/lib6464/nagios/plugins https://bugzilla.redhat.com/show_bug.cgi?id=823859 --------------------------------------------------------------------------------
================================================================================ php-channel-digitalsandwich-1.3-2.el6 (FEDORA-EPEL-2012-5949) Adds digitalsandwich channel to PEAR -------------------------------------------------------------------------------- Update Information:
new package --------------------------------------------------------------------------------
================================================================================ php-channel-phpqatools-1.3-3.el6 (FEDORA-EPEL-2012-5940) Adds phpqatools channel to PEAR -------------------------------------------------------------------------------- Update Information:
new package --------------------------------------------------------------------------------
================================================================================ python-httplib2-0.7.4-1.el6 (FEDORA-EPEL-2012-5942) A comprehensive HTTP client library -------------------------------------------------------------------------------- Update Information:
Upstream update to 0.7.4
- Applied patch suggested in issue 208
-------------------------------------------------------------------------------- ChangeLog:
* Thu May 3 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-1 - Upstream update to 0.7.4 - Applied patch suggested in issue 208 --------------------------------------------------------------------------------
================================================================================ python-tornado-2.2.1-1.el6 (FEDORA-EPEL-2012-5944) Scalable, non-blocking web server and tools -------------------------------------------------------------------------------- Update Information:
Update to 2.2.1 which fixes an HTTP header injection vulnerability. -------------------------------------------------------------------------------- ChangeLog:
* Sun May 20 2012 Thomas Spura tomspur@fedoraproject.org - 2.2.1-1 - update to upstream release 2.2.1 (fixes CVE-2012-2374) - fix typo for epel6 macro bug #822972 (Florian La Roche) * Thu Feb 9 2012 Ionuț C. Arțăriși mapleoin@fedoraproject.org - 2.2-1 - upgrade to upstream release 2.2 * Thu Feb 9 2012 Ionuț C. Arțăriși mapleoin@fedoraproject.org - 2.1.1-4 - remove python3-simplejson dependency * Fri Jan 27 2012 Thomas Spura tomspur@fedoraproject.org - 2.1.1-3 - build python3 package * Sat Jan 14 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2.1.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #823213 - python-tornado: HTTP header injection vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=823213 [ 2 ] Bug #822852 - CVE-2012-2374 python-tornado: Tornado v2.2.1 tornado.web.RequestHandler.set_header() fix to prevent header injection https://bugzilla.redhat.com/show_bug.cgi?id=822852 --------------------------------------------------------------------------------
================================================================================ python-txzmq-0.5.0-1.el6 (FEDORA-EPEL-2012-5934) Twisted bindings for ZeroMQ -------------------------------------------------------------------------------- Update Information:
Latest version Initial packaging of txzmq. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #810382 - Review Request: python-txzmq - Twisted bindings for ZeroMQ https://bugzilla.redhat.com/show_bug.cgi?id=810382 --------------------------------------------------------------------------------
================================================================================ python-urllib2_kerberos-0.1.6-4.el6 (FEDORA-EPEL-2012-5938) Kerberos over HTTP Negotiate/SPNEGO support for urllib2 -------------------------------------------------------------------------------- Update Information:
Kerberos over HTTP Negotiate/SPNEGO support for urllib2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #505623 - Review Request: python-urllib2_kerberos - Kerberos over HTTP Negotiate/SPNEGO support for urllib2 https://bugzilla.redhat.com/show_bug.cgi?id=505623 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org
-
updates@fedoraproject.org