The following Fedora EPEL 6 Security updates need testing:
Age URL
202
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828
chicken-4.9.0.1-4.el6
185
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
179
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
110
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8148 optipng-0.7.5-5.el6
110
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
98
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-68a2c2db36
python-pymongo-3.0.3-1.el6
69
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
40
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-d47aefe0b2
roundcubemail-1.0.8-1.el6
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-b94af2e025
seamonkey-2.39-1.el6
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-6284ed5bb5
lighttpd-1.4.39-1.el6
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-9514f006a5
mono-2.10.8-5.el6
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-b654a785a7
openvpn-2.3.10-1.el6
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-83e43636a6
nodejs-ws-1.0.1-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-819f6356ea
tomcat-7.0.65-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-77ee2edf04
wordpress-4.4.1-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-550132e830
flite-1.3-24.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-570414d664
prosody-0.9.9-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
MUMPS-5.0.1-10.el6
orafce-3.1.2-2.el6
perl-Spreadsheet-XLSX-0.15-1.el6
prosody-0.9.9-1.el6
python-prompt_toolkit-0.57-1.el6
python-wcwidth-0.1.6-1.el6
tito-0.6.3-1.el6
Details about builds:
================================================================================
MUMPS-5.0.1-10.el6 (FEDORA-EPEL-2016-e8d63d5fb9)
A MUltifrontal Massively Parallel sparse direct Solver
--------------------------------------------------------------------------------
Update Information:
- Built MPICH libraries on EPEL (bz#1296387) - Exclude OpenMPI on s390 arches -
Exclude MPICH on PPC arches - Built MPICH libraries (bz#1296387) - Removed
useless Requires packages
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1296387 - Build for mpich, drop requires environment-modules
https://bugzilla.redhat.com/show_bug.cgi?id=1296387
--------------------------------------------------------------------------------
================================================================================
orafce-3.1.2-2.el6 (FEDORA-EPEL-2016-d5e2d70fd8)
Implementation of some Oracle functions into PostgreSQL
--------------------------------------------------------------------------------
Update Information:
Rebuild for PostgreSQL 9.5 (rhbz#1296584)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1296584 - New PostgreSQL major release 9.5
https://bugzilla.redhat.com/show_bug.cgi?id=1296584
--------------------------------------------------------------------------------
================================================================================
perl-Spreadsheet-XLSX-0.15-1.el6 (FEDORA-EPEL-2016-24edca27ca)
Perl extension for reading Microsoft Excel 2007 files
--------------------------------------------------------------------------------
Update Information:
Spreadsheet::XLSX 0.15 ====================== * Revert a numeric formatting
change which caused isssues with Spreadsheet::Read. Spreadsheet::XLSX 0.14
====================== * Change default date format to yyyy-mm-dd. This
matches Spreadsheet::ParseExcel. * Handle xml tag attributes in varying order
(RT #86667, et.al.)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1285437 - Upgrade perl-Spreadsheet-XLSX to 0.15
https://bugzilla.redhat.com/show_bug.cgi?id=1285437
--------------------------------------------------------------------------------
================================================================================
prosody-0.9.9-1.el6 (FEDORA-EPEL-2016-570414d664)
Flexible communications server for Jabber/XMPP
--------------------------------------------------------------------------------
Update Information:
Prosody 0.9.9 ============= A summary of changes: Security fixes
-------------- * Fix path traversal vulnerability in mod_http_files
(CVE-2016-1231) * Fix use of weak PRNG in generation of dialback secrets
(CVE-2016-1232) Bugs ---- * Improve handling of CNAME records in DNS * Fix
traceback when deleting a user in some configurations (issue #496) * MUC:
restrict_room_creation could prevent users from joining rooms (issue #458) *
MUC: fix occasional dropping of iq stanzas sent privately between occupants *
Fix a potential memory leak in mod_pep Additions --------- * Add http:list()
command to telnet to view active HTTP services * Simplify IPv4/v6 address
selection code for outgoing s2s * Add support for importing SCRAM hashes from
ejabberd
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1296984 - CVE-2016-1232 prosody: Use of weak PRNG in generation of dialback
secrets
https://bugzilla.redhat.com/show_bug.cgi?id=1296984
[ 2 ] Bug #1296983 - CVE-2016-1231 prosody: Path traversal vulnerability in
mod_http_files
https://bugzilla.redhat.com/show_bug.cgi?id=1296983
--------------------------------------------------------------------------------
================================================================================
python-prompt_toolkit-0.57-1.el6 (FEDORA-EPEL-2016-41f6e461a2)
Library for building powerful interactive command lines in Python
--------------------------------------------------------------------------------
Update Information:
Align to upstream ---- New package!
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295154 - Review Request: python-prompt_toolkit - Library for building
powerful interactive command lines in Python
https://bugzilla.redhat.com/show_bug.cgi?id=1295154
--------------------------------------------------------------------------------
================================================================================
python-wcwidth-0.1.6-1.el6 (FEDORA-EPEL-2016-6d0124d555)
Measures number of Terminal column cells of wide-character codes
--------------------------------------------------------------------------------
Update Information:
Upstream update ---- New package to enjoy :)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295152 - Review Request: python-wcwidth - Measures number of Terminal column
cells of wide-character codes
https://bugzilla.redhat.com/show_bug.cgi?id=1295152
--------------------------------------------------------------------------------
================================================================================
tito-0.6.3-1.el6 (FEDORA-EPEL-2016-3d8b2938f8)
A tool for managing rpm based git projects
--------------------------------------------------------------------------------
Update Information:
Added ability to pass extra copr-cli build options to the copr releaser.
(twiest(a)redhat.com) Fix changelog format function name (araszka(a)redhat.com)
fix mock link (glen(a)delfi.ee) Set non-zero exit code when copr-cli fails
(frostyx(a)email.cz) Add possibility to upload SRPM directly to Copr
(frostyx(a)email.cz) Determine correct package manager DNF is now prefered on
Fedora, but it is not installed on EL6 or EL7 (frostyx(a)email.cz) Ask user to
run DNF instead of YUM (frostyx(a)email.cz) Add tito tag --use-version argument
to man page (dcleal(a)redhat.com) Fix upstream/distribution builder failure to
copy spec. (dgoodwin(a)redhat.com) Allow a user specific Copr remote SRPM URL.
(awood(a)redhat.com)
--------------------------------------------------------------------------------