The following Fedora EPEL 6 Security updates need testing:
Age URL
644
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
638
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
528
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
500
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
231
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8594ed3a53
chicken-4.11.0-3.el6
111
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac
libbsd-0.8.3-2.el6
60
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-acd2c2af0d
nagios-4.2.4-4.el6
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-68aef427a4
php-horde-Horde-Crypt-2.7.6-1.el6
8
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-def12f5099
libupnp-1.6.21-1.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f
tnef-1.4.14-1.el6
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-0f5b6c547b
php-pear-CAS-1.3.5-1.el6.1
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-fb8532fb2d
tomcat-7.0.77-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-00e2a9cc71
ansible-2.3.0.0-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
ansible-2.3.0.0-1.el6
mozilla-https-everywhere-5.2.14-1.el6
Details about builds:
================================================================================
ansible-2.3.0.0-1.el6 (FEDORA-EPEL-2017-00e2a9cc71)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Many bugfixes and improvements. See
https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of
changes. rst and html docs have been split out into a ansible-docs subpackage.
Includes fix for CVE-2017-7466 ---- Update to upstream 2.2.2.0 release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1441357 - CVE-2017-7466 ansible: Arbitrary code execution on control node
(incomplete fix for CVE-2016-9587) [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1441357
[ 2 ] Bug #1436461 - ansible-2.2.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1436461
--------------------------------------------------------------------------------
================================================================================
mozilla-https-everywhere-5.2.14-1.el6 (FEDORA-EPEL-2017-dd37cb807b)
HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey
--------------------------------------------------------------------------------
Update Information:
More bugfixes. Upstream isn't putting the specific bugfixes in the changelogs
anymore. Did you know that you're supposed to turn the car off when you go into
a restaurant? I hear it helps prevent carjacking.
--------------------------------------------------------------------------------