The following Fedora EPEL 6 Security updates need testing:
Age URL
192
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b6c663378c
unrtf-0.21.9-8.el6
17
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-61fe7c6e70
nagios-4.4.2-3.el6
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-48a1d47098
mbedtls-2.7.8-1.el6
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-de932e5ff8
wordpress-5.0.1-1.el6
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-b7556983e8
tomcat-7.0.92-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
game-music-emu-0.6.2-1.el6
holland-1.1.9-1.el6
php-phpseclib-2.0.13-1.el6
python-regex-2018.11.22-1.el6
Details about builds:
================================================================================
game-music-emu-0.6.2-1.el6 (FEDORA-EPEL-2018-a0ddb153b8)
Video game music file emulation/playback library
--------------------------------------------------------------------------------
Update Information:
New release 0.6.2 - Security fix for CVE-2017-17446
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 18 2018 Karel Voln�� <kvolny(a)redhat.com> 0.6.2-1
- New release 0.6.2
- Fixes CVE-2017-17446 (rhbz#1524563)
- Update tarball url
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1524561 - CVE-2017-17446 game-music-emu: The Mem_File_Reader::read_avail
function does not ensure a non-negative size
https://bugzilla.redhat.com/show_bug.cgi?id=1524561
--------------------------------------------------------------------------------
================================================================================
holland-1.1.9-1.el6 (FEDORA-EPEL-2018-f58f21f044)
Pluggable Backup Framework
--------------------------------------------------------------------------------
Update Information:
- Latest upstream - Add mariabackup subpackage rhbz#1651820
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 18 2018 Carl George <carl(a)george.computer> - 1.1.9-1
- Latest upstream
- Add mariabackup subpackage rhbz#1651820
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1651820 - Ship holland-mariabackup in CentOS 6/7
https://bugzilla.redhat.com/show_bug.cgi?id=1651820
--------------------------------------------------------------------------------
================================================================================
php-phpseclib-2.0.13-1.el6 (FEDORA-EPEL-2018-88465b80a3)
PHP Secure Communications Library
--------------------------------------------------------------------------------
Update Information:
**Version 2.0.13** * SSH2: fix order of user_error() / bitmap reset (#1314)
* SSH2: setTimeout(0) didn't work as intended (#1116) * Agent: add support
for rsa-sha2-256 / rsa-sha2-512 (#1319) * Agent: add parameter to constructor
(#1319) * X509: fix errors with validateDate (#1318)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 18 2018 Remi Collet <remi(a)remirepo.net> - 2.0.13-1
- update to 2.0.13
--------------------------------------------------------------------------------
================================================================================
python-regex-2018.11.22-1.el6 (FEDORA-EPEL-2018-b251b7e135)
Alternative regular expression module, to replace re
--------------------------------------------------------------------------------
Update Information:
Update to the latest released version.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 18 2018 Thomas Moschny <thomas.moschny(a)gmx.de> - 2018.11.22-1
- Update to 2018.11.22.
--------------------------------------------------------------------------------