The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4744 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4743 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4728 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4741
The following builds have been pushed to Fedora EPEL 6 updates-testing
abattis-cantarell-fonts-0.0.7-1.el6 airrac-0.2.1-1.el6 cherokee-1.2.101-1.el6 clamav-0.97.3-1.el6 facter-1.6.2-1.el6 findthatword-0.1-3.el6 flashrom-0.9.4-2.svn1455.el6 mod_auth_cas-1.0.8.1-3.el6 moodle-2.1.2-1.el6 netdisco-1.1-1.el6 perl-CGI-Compile-0.15-1.el6 perl-SNMP-Info-2.06-1.el6 rubygem-rhc-0.79.5-1.el6 stdair-0.43.1-1.el6 travelccm-0.5.1-1.el6 znc-infobot-0.202-1.el6
Details about builds:
================================================================================ abattis-cantarell-fonts-0.0.7-1.el6 (FEDORA-EPEL-2011-4735) Cantarell, a Humanist sans-serif font family -------------------------------------------------------------------------------- Update Information:
Just an upgrade to the latest upstream. New branch for the existing package. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #743958 - Please, create EL6 branch in EPEL https://bugzilla.redhat.com/show_bug.cgi?id=743958 --------------------------------------------------------------------------------
================================================================================ airrac-0.2.1-1.el6 (FEDORA-EPEL-2011-4713) C++ Simulated Revenue Accounting (RAC) System Library -------------------------------------------------------------------------------- Update Information:
Upstream update
StdAir has been rebuilt on EPEL6 because ZeroMQ has bumped the soname of its library (from libzmq.so.0 to libzmq.so.1). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #702987 - Review Request: stdair - C++ Standard Airline IT Library https://bugzilla.redhat.com/show_bug.cgi?id=702987 --------------------------------------------------------------------------------
================================================================================ cherokee-1.2.101-1.el6 (FEDORA-EPEL-2011-4741) Flexible and Fast Webserver -------------------------------------------------------------------------------- Update Information:
Latest 1.2.x upstream release Resolves bz 746532 - put some deps back: GeoIP-devel openldap-devel Latest 1.2.x upstream release .spec corrections for optional build for systemd Resolves bz 710474 Resolves bz 713307 Resolves bz 680691 -------------------------------------------------------------------------------- ChangeLog:
* Wed Oct 19 2011 Pavel Lisý pali@fedoraproject.org - 1.2.101-1 - Latest 1.2.x upstream release * Tue Oct 18 2011 Pavel Lisý pali@fedoraproject.org - 1.2.100-2 - Resolves bz 746532 - put some deps back: GeoIP-devel openldap-devel * Mon Oct 10 2011 Pavel Lisý pali@fedoraproject.org - 1.2.100-1 - Latest 1.2.x upstream release - .spec corrections for optional build for systemd - Resolves bz 710474 - Resolves bz 713307 - Resolves bz 680691 * Wed Sep 14 2011 Pavel Lisý pali@fedoraproject.org - 1.2.99-2 - .spec corrections for EL4 build -------------------------------------------------------------------------------- References:
[ 1 ] Bug #746532 - Cherokee 1.2.100 RPMs built without LDAP, GeoIP support https://bugzilla.redhat.com/show_bug.cgi?id=746532 [ 2 ] Bug #710474 - cherokee: A weakness in Cherokee’s administrative interface random administrator password generation [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=710474 [ 3 ] Bug #713307 - CVE-2011-2190 CVE-2011-2191 cherokee: multiple vulnerabilities [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=713307 [ 4 ] Bug #680691 - cherokee uses libssl from openssl >1.0, when opensssl <1.0 is current in repository https://bugzilla.redhat.com/show_bug.cgi?id=680691 --------------------------------------------------------------------------------
================================================================================ clamav-0.97.3-1.el6 (FEDORA-EPEL-2011-4743) Anti-virus software -------------------------------------------------------------------------------- Update Information:
CVE-2011-3627 clamav: Recursion level crash fixed in v0.97.3 -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 18 2011 Nick Bebout nb@fedoraproject.org - 0.97.3-1 - Update to 0.97.3 - Fix CVE-2011-3627 clamav: Recursion level crash fixed in v0.97.3 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #725694 - CVE-2011-2721 Clam AntiVirus: Off-by-one error by scanning message hashes https://bugzilla.redhat.com/show_bug.cgi?id=725694 [ 2 ] Bug #746984 - CVE-2011-3627 clamav: Recursion level crash fixed in v0.97.3 https://bugzilla.redhat.com/show_bug.cgi?id=746984 --------------------------------------------------------------------------------
================================================================================ facter-1.6.2-1.el6 (FEDORA-EPEL-2011-4730) Ruby module for collecting simple facts about a host operating system -------------------------------------------------------------------------------- Update Information:
This is an upstream bugfix release. One new addition that is of interest is the osfamily fact. For details on the fixes refer to the upstream release announcement:
http://groups.google.com/group/puppet-users/msg/9856678279f498a5 -------------------------------------------------------------------------------- ChangeLog:
* Sat Oct 15 2011 Todd Zullinger tmz@pobox.com - 1.6.2-1 - Update to 1.6.2 - Update source URL --------------------------------------------------------------------------------
================================================================================ findthatword-0.1-3.el6 (FEDORA-EPEL-2011-4716) A word search maker -------------------------------------------------------------------------------- Update Information:
New package. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #746520 - Review Request: findthatword - A word search maker https://bugzilla.redhat.com/show_bug.cgi?id=746520 --------------------------------------------------------------------------------
================================================================================ flashrom-0.9.4-2.svn1455.el6 (FEDORA-EPEL-2011-4736) Simple program for reading/writing BIOS chips content -------------------------------------------------------------------------------- Update Information:
- Updated to latest svn ver. 1455 (post-release snapshot for 0.9.4) - Added lots of new boards and several chipsets and flashchips - Lots of other cleanups and enhancements -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 21 2011 Peter Lemenkov lemenkov@gmail.com - 0.9.4-2.svn1455 - Updated to latest svn ver. 1455 (post-release snapshot for 0.9.4) - Added lots of new boards and several chipsets and flashchips - Lots of other cleanups and enhancements --------------------------------------------------------------------------------
================================================================================ mod_auth_cas-1.0.8.1-3.el6 (FEDORA-EPEL-2011-4731) Apache 2.0/2.2 compliant module that supports the CASv1 and CASv2 protocols -------------------------------------------------------------------------------- Update Information:
This update fixes a configuration issue with httpd module loading with RHEL 6.1 -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 18 2011 Adam Miller maxamillion@fedoraproject.org - 1.0.8.1-3 - Fixed auth_cas.conf as per BZ# 708550 (Thanks to Jimmy Ngo) for the patch -------------------------------------------------------------------------------- References:
[ 1 ] Bug #708550 - mod_auth_cas cannot be loaded after update to RHEL 6.1 https://bugzilla.redhat.com/show_bug.cgi?id=708550 --------------------------------------------------------------------------------
================================================================================ moodle-2.1.2-1.el6 (FEDORA-EPEL-2011-4744) A Course Management System -------------------------------------------------------------------------------- Update Information:
Multiple security fixes. -------------------------------------------------------------------------------- ChangeLog:
* Fri Oct 21 2011 Jon Ciesla limb@jcomserv.net - 2.1.2-1 - New upstream, BZ 747445. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #747445 - moodle: Multiple security fixes in 2.1.2, 2.0.5, and 1.9.14 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=747445 [ 2 ] Bug #747446 - moodle: Multiple security fixes in 2.1.2, 2.0.5, and 1.9.14 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=747446 --------------------------------------------------------------------------------
================================================================================ netdisco-1.1-1.el6 (FEDORA-EPEL-2011-4742) A web-based network management tool -------------------------------------------------------------------------------- Update Information:
Update to version 1.1 --------------------------------------------------------------------------------
================================================================================ perl-CGI-Compile-0.15-1.el6 (FEDORA-EPEL-2011-4737) Compile .cgi scripts to a code reference like ModPerl::Registry -------------------------------------------------------------------------------- Update Information:
Update to 0.15 -------------------------------------------------------------------------------- ChangeLog:
* Sun Oct 2 2011 Iain Arnell iarnell@gmail.com 0.15-1 - update to latest upstream version - clean up spec for modern rpmbuild * Fri Jun 24 2011 Marcela Mašláňová mmaslano@redhat.com - 0.11-5 - Perl mass rebuild --------------------------------------------------------------------------------
================================================================================ perl-SNMP-Info-2.06-1.el6 (FEDORA-EPEL-2011-4740) Object Oriented Perl5 Interface to Network devices and MIBs through SNMP -------------------------------------------------------------------------------- Update Information:
Update to version 2.06 --------------------------------------------------------------------------------
================================================================================ rubygem-rhc-0.79.5-1.el6 (FEDORA-EPEL-2011-4747) OpenShift Express Client Tools -------------------------------------------------------------------------------- Update Information:
Updated version 0.79.5 -------------------------------------------------------------------------------- ChangeLog:
* Wed Oct 19 2011 Guillermo Gómez gomix@fedoraproject.org - 0.79.5-1 - Update to version 0.79.5 * Tue Aug 23 2011 Guillermo Gómez gomix@fedoraproject.org - 0.75.9-1 - Update to version 0.75.9 --------------------------------------------------------------------------------
================================================================================ stdair-0.43.1-1.el6 (FEDORA-EPEL-2011-4713) C++ Standard Airline IT Object Library -------------------------------------------------------------------------------- Update Information:
Upstream update
StdAir has been rebuilt on EPEL6 because ZeroMQ has bumped the soname of its library (from libzmq.so.0 to libzmq.so.1). -------------------------------------------------------------------------------- ChangeLog:
* Tue Oct 18 2011 Denis Arnaud denis.arnaud_fedora@m4x.org 0.43.1-1 - Upstream update - Improved a little the package descriptions - The build framework is now compatible with CMake 2.6 (the exclusive dependency on CMake 2.8 has been removed). * Sat Oct 15 2011 Denis Arnaud denis.arnaud_fedora@m4x.org 0.38.0-2 - Rebuild for ZeroMQ soname bump (from libzmq.so.0 to libzmq.so.1) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #702987 - Review Request: stdair - C++ Standard Airline IT Library https://bugzilla.redhat.com/show_bug.cgi?id=702987 --------------------------------------------------------------------------------
================================================================================ travelccm-0.5.1-1.el6 (FEDORA-EPEL-2011-4713) C++ Travel Customer Choice Model (CCM) Library -------------------------------------------------------------------------------- Update Information:
Upstream update
StdAir has been rebuilt on EPEL6 because ZeroMQ has bumped the soname of its library (from libzmq.so.0 to libzmq.so.1). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #702987 - Review Request: stdair - C++ Standard Airline IT Library https://bugzilla.redhat.com/show_bug.cgi?id=702987 --------------------------------------------------------------------------------
================================================================================ znc-infobot-0.202-1.el6 (FEDORA-EPEL-2011-4738) infobot module for ZNC IRC Bouncer -------------------------------------------------------------------------------- Update Information:
Build znc-infobot against 0.202 Initial Package Build Initial Package Build Initial Package for F14. Initial Package build for F15 ZNC-Infobot initial package built --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org
-
updates@fedoraproject.org