The following Fedora EPEL 6 Security updates need testing:
Age URL
377
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-6828
chicken-4.9.0.1-4.el6
360
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031
python-virtualenv-12.0.7-1.el6
354
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168
rubygem-crack-0.3.2-2.el6
285
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6
244
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb
mcollective-2.8.4-1.el6
215
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9
thttpd-2.25b-24.el6
108
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8fbd838843
dropbear-2016.72-1.el6
101
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-30a8346813
vtun-3.0.1-10.el6
15
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2dcebb06db
drupal7-7.44-1.el6
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e7c7e5786e
squidGuard-1.4-10.el6
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-4e40dfc9a6
wordpress-4.5.3-1.el6
7
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-9975965208
phpMyAdmin-4.0.10.16-1.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-db7e78fac7
php-PHPMailer-5.2.16-2.el6
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-ac941fa710
gsi-openssh-5.3p1-13.el6
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2d1cb7dbdf
nodejs-ws-1.1.1-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-64ef6809b4
mbedtls-2.3.0-1.el6
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-d0e444c5f2
pypy-5.0.1-4.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
389-admin-console-1.1.11-1.el6
copr-cli-1.53-1.el6
dynafed-1.2.2-2.el6
mbedtls-2.3.0-1.el6
mp-3.1.0-3.el6
php-nette-forms-2.3.10-1.el6
pypy-5.0.1-4.el6
python-copr-1.72-1.el6
retrace-server-1.16-2.el6
singularity-2.0-9.el6
Details about builds:
================================================================================
389-admin-console-1.1.11-1.el6 (FEDORA-EPEL-2016-45d9ee24b6)
389 Admin Server Management Console
--------------------------------------------------------------------------------
Update Information:
Release 1.1.11
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #723126 - None
https://bugzilla.redhat.com/show_bug.cgi?id=723126
[ 2 ] Bug #1022104 - idm-console-framework: remove versioned jars from %{_javadir}
https://bugzilla.redhat.com/show_bug.cgi?id=1022104
[ 3 ] Bug #1234441 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1234441
--------------------------------------------------------------------------------
================================================================================
copr-cli-1.53-1.el6 (FEDORA-EPEL-2016-2c82f93c94)
Command line interface for COPR
--------------------------------------------------------------------------------
Update Information:
This version of copr-cli and python-copr is backwards compatible (in contrast to
python-copr 1.70 and copr-cli 1.51) with old copr-frontends (1.92 and older),
which means that the standard copr-cli build command works for frontends of
these versions (no "got unknown parameter 'source_type' error). Note,
however,
that these versions (1.72 + 1.53) are incompatible with frontend-1.93 (and only
this one). Please, if you employ COPR, do not use frontend-1.93. Additionally,
this release fixes building error of python-copr 1.71 and copr-cli 1.52 on el7
and el6 distros caused by added pylint checks. ---- This release mainly fixes
bug Bug 1340650 - SRPM builds submitted from CLI fail: "invalid request". ----
Support for package manipulation as a main new feature.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1346945 - Project List filled with automated builds
https://bugzilla.redhat.com/show_bug.cgi?id=1346945
[ 2 ] Bug #1335236 - Internet access during builds flag needed in CLI create/modify
commands
https://bugzilla.redhat.com/show_bug.cgi?id=1335236
[ 3 ] Bug #1335237 - copr create command missing --disable_createrepo
https://bugzilla.redhat.com/show_bug.cgi?id=1335237
[ 4 ] Bug #1335163 - Add fork subcommand to Copr CLI
https://bugzilla.redhat.com/show_bug.cgi?id=1335163
[ 5 ] Bug #1340650 - SRPM builds submitted from CLI fail: "invalid request"
https://bugzilla.redhat.com/show_bug.cgi?id=1340650
--------------------------------------------------------------------------------
================================================================================
dynafed-1.2.2-2.el6 (FEDORA-EPEL-2016-fe03b0cd0b)
Ultra-scalable dynamic system for federating HTTP-based storage resources
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
================================================================================
mbedtls-2.3.0-1.el6 (FEDORA-EPEL-2016-64ef6809b4)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- Update to 2.3.0
https://tls.mbed.org/tech-
updates/releases/mbedtls-2.3.0-2.1.5-and-1.3.17-released
--------------------------------------------------------------------------------
================================================================================
mp-3.1.0-3.el6 (FEDORA-EPEL-2016-e6743342c4)
An open-source library for mathematical programming
--------------------------------------------------------------------------------
Update Information:
- New builds for EPEL - Fix cmake version for EPEL - libmp installed in a
private lib directory on epel6 - Pached to remove gtest - Set to disable tests
on EPEL6
--------------------------------------------------------------------------------
================================================================================
php-nette-forms-2.3.10-1.el6 (FEDORA-EPEL-2016-1eea9e9e5a)
Nette Forms: greatly facilitates web forms
--------------------------------------------------------------------------------
Update Information:
**Released version 2.3.10** * BaseControl::setValue() marked as internal
#114 * Container: calls validate() only for IControl & Container #86 *
Rename Html:add() to Html:addHtml() to follow nette/utils#111 (#120) *
netteForms.js: validates fucking HTML5 type 'number'
--------------------------------------------------------------------------------
================================================================================
pypy-5.0.1-4.el6 (FEDORA-EPEL-2016-d0e444c5f2)
Python implementation with a Just-In-Time compiler
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-5699, CVE-2016-0772 ---- Make build scripts Python
2.6 compatible, fix compilation error, pypy issue #2265
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303647 - CVE-2016-0772 python: smtplib StartTLS stripping attack
https://bugzilla.redhat.com/show_bug.cgi?id=1303647
[ 2 ] Bug #1303699 - CVE-2016-5699 python: http protocol steam injection attack
https://bugzilla.redhat.com/show_bug.cgi?id=1303699
--------------------------------------------------------------------------------
================================================================================
python-copr-1.72-1.el6 (FEDORA-EPEL-2016-2c82f93c94)
Python interface for Copr
--------------------------------------------------------------------------------
Update Information:
This version of copr-cli and python-copr is backwards compatible (in contrast to
python-copr 1.70 and copr-cli 1.51) with old copr-frontends (1.92 and older),
which means that the standard copr-cli build command works for frontends of
these versions (no "got unknown parameter 'source_type' error). Note,
however,
that these versions (1.72 + 1.53) are incompatible with frontend-1.93 (and only
this one). Please, if you employ COPR, do not use frontend-1.93. Additionally,
this release fixes building error of python-copr 1.71 and copr-cli 1.52 on el7
and el6 distros caused by added pylint checks. ---- This release mainly fixes
bug Bug 1340650 - SRPM builds submitted from CLI fail: "invalid request". ----
Support for package manipulation as a main new feature.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1346945 - Project List filled with automated builds
https://bugzilla.redhat.com/show_bug.cgi?id=1346945
[ 2 ] Bug #1335236 - Internet access during builds flag needed in CLI create/modify
commands
https://bugzilla.redhat.com/show_bug.cgi?id=1335236
[ 3 ] Bug #1335237 - copr create command missing --disable_createrepo
https://bugzilla.redhat.com/show_bug.cgi?id=1335237
[ 4 ] Bug #1335163 - Add fork subcommand to Copr CLI
https://bugzilla.redhat.com/show_bug.cgi?id=1335163
[ 5 ] Bug #1340650 - SRPM builds submitted from CLI fail: "invalid request"
https://bugzilla.redhat.com/show_bug.cgi?id=1340650
--------------------------------------------------------------------------------
================================================================================
retrace-server-1.16-2.el6 (FEDORA-EPEL-2016-4cd8a3c0e5)
Application for remote coredump analysis
--------------------------------------------------------------------------------
Update Information:
New upstream release 1.16 which fixes bugs listed and adds: - Logging of tasks
failed to start - Graceful handling of the worker errors - Correction to eu-
unstrip parser if FILE is '-'
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1124462 - do not display all ftp files on web UI by default - manager page is
slow and/or may hang or crash browser if there's a lot of ftp files
https://bugzilla.redhat.com/show_bug.cgi?id=1124462
[ 2 ] Bug #1340158 - email notifications no longer working
https://bugzilla.redhat.com/show_bug.cgi?id=1340158
--------------------------------------------------------------------------------
================================================================================
singularity-2.0-9.el6 (FEDORA-EPEL-2016-9ad1b969a2)
Enabling "Mobility of Compute" with container based applications
--------------------------------------------------------------------------------
Update Information:
Licence fix, patches ---- New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1331818 - Review Request: singularity - Portable application stack packaging
and runtime utility
https://bugzilla.redhat.com/show_bug.cgi?id=1331818
--------------------------------------------------------------------------------