The following Fedora EPEL 7 Security updates need testing:
Age URL
75
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3835d39d1a
unrtf-0.21.9-8.el7
69
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-15b7dc35af
pass-1.7.2-1.el7
43
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-d2e0971e9b
uwsgi-2.0.17.1-1.el7
26
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-f9d6ff695a
bibutils-6.6-1.el7 ghc-hs-bibutils-6.6.0.0-1.el7 pandoc-citeproc-0.3.0.1-4.el7
25
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-5346e2123a
dpkg-1.18.25-1.el7
16
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-0be0127779
libgit2-0.26.6-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-33f460bd9c
moodle-3.1.13-2.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-dce803ff0d
lighttpd-1.4.50-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-69993b3f45
sleuthkit-4.6.2-1.el7
9
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-6f182ddbf7
python34-3.4.9-1.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-8e10f21fa8
yubico-piv-tool-1.6.1-1.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3a3c72c5e5
chromium-68.0.3440.106-3.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
copr-cli-1.72-1.el7
discount-2.2.4-1.el7
exim-4.91-1.el7
lammps-20180822-1.el7
python-copr-1.90-1.el7
swatch-3.2.3-22.el7
Details about builds:
================================================================================
copr-cli-1.72-1.el7 (FEDORA-EPEL-2018-6932e8381b)
Command line interface for COPR
--------------------------------------------------------------------------------
Update Information:
- generate new webhook secret functionality in copr-cli - packaging: Python 2/3,
RHEL/Fedora fixes
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 23 2018 clime <clime(a)redhat.com> 1.72-1
- generate new webhook secret functionality in copr-cli
- packaging: Python 2/3, RHEL/Fedora fixes
* Mon Aug 6 2018 clime <clime(a)redhat.com> 1.71-1
- %{python_sitelib} ��� %{python2_sitelib}
--------------------------------------------------------------------------------
================================================================================
discount-2.2.4-1.el7 (FEDORA-EPEL-2018-cde256f1e4)
A command-line utility for converting Markdown files into HTML
--------------------------------------------------------------------------------
Update Information:
Upstream version 2.2.4
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 23 2018 Greg Hellings <greg.hellings(a)gmail.com> - 2.2.4-1
- Upstream version 2.2.4
- Addresses multiple serious bugs
* Wed Jul 25 2018 Greg Hellings <greg.hellings(a)gmail.com> - 2.2.3-1
- Upstream version 2.2.3
- Added BR for gcc to build with F29
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.2-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Fri Feb 2 2018 Fabio Valentini <decathorpe(a)gmail.com> - 2.2.2-4
- Enable building and installing pkg-config file.
* Wed Aug 2 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.2.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Wed Apr 12 2017 Greg Hellings <greg.hellings(a)gmail.com> - 2.2.2-1
- Upstream version 2.2.2
* Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.8-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Wed Feb 3 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.1.8-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1582640 - CVE-2018-11468 discount: heap-based buffer over-read
__mkd_trim_line function in mkdio.c
https://bugzilla.redhat.com/show_bug.cgi?id=1582640
[ 2 ] Bug #1583001 - CVE-2018-11503 discount: Heap-based buffer-overflow in
markdown.c:isfootnote() allows for denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1583001
[ 3 ] Bug #1583005 - CVE-2018-11504 discount: Heap-based buffer-overflow in
markdown.c:islist() allows for denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1583005
[ 4 ] Bug #1592866 - CVE-2018-12495 discount: heap-based buffer over-read via a crafted
file
https://bugzilla.redhat.com/show_bug.cgi?id=1592866
--------------------------------------------------------------------------------
================================================================================
exim-4.91-1.el7 (FEDORA-EPEL-2018-7e345c64c3)
The exim mail transfer agent
--------------------------------------------------------------------------------
Update Information:
This is new version of exim fixing many bugs, for list see upstream changelog.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 20 2018 Jaroslav ��karvada <jskarvad(a)redhat.com> - 4.91-1
- New version
Resolves: rhbz#1615158
- Dropped dynlookup-config patch (merged into config patch)
- Dropped dec64table-read-fix patch (already upstream)
- De-fuzzified patches
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1615158 - Exim TLS error
https://bugzilla.redhat.com/show_bug.cgi?id=1615158
--------------------------------------------------------------------------------
================================================================================
lammps-20180822-1.el7 (FEDORA-EPEL-2018-99b748f6f4)
Molecular Dynamics Simulator
--------------------------------------------------------------------------------
Update Information:
Update to 20180822
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 22 2018 Christoph Junghans <junghans(a)votca.org> - 20180822-1
- Bump version to 20180822
- Dropped 979.patch got merged upstream
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
20180316-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Mon Jul 2 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 20180316-3
- Rebuilt for Python 3.7
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 20180316-2
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
================================================================================
python-copr-1.90-1.el7 (FEDORA-EPEL-2018-d8522004a4)
Python interface for Copr
--------------------------------------------------------------------------------
Update Information:
- generate new webhook secret functionality in copr-cli - allow to edit
devel_mode on a project - update copyright for the documentation - packaging:
Python 2/3, RHEL/Fedora fixes - fix "File 'setup.py' not found" error
in
readthedocs.org - use readthedocs theme if it is installed
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 23 2018 clime <clime(a)redhat.com> 1.90-1
- generate new webhook secret functionality in copr-cli
- allow to edit devel_mode on a project
- update copyright for the documentation
- packaging: Python 2/3, RHEL/Fedora fixes
- fix "File 'setup.py' not found" error in
readthedocs.org
- use readthedocs theme if it is installed
* Mon Aug 6 2018 clime <clime(a)redhat.com> 1.89-1
- apiv3
- change %{python_sitelib} to %{python2_sitelib}
- for py3 use unittest.mock, otherwise mock from python2-mock
* Thu Apr 26 2018 Dominik Turecek <dturecek(a)redhat.com> 1.88-1
- rpkg deployment into COPR - containers + releng continuation
--------------------------------------------------------------------------------
================================================================================
swatch-3.2.3-22.el7 (FEDORA-EPEL-2018-d9a76fb156)
Tool for actively monitoring log files
--------------------------------------------------------------------------------
Update Information:
Fix issue with zombie processes. Thanks to John Horne.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 23 2018 Tom Callaway <spot(a)fedoraproject.org> - 3.2.3-22
- apply fix to exec to prevent zombie processes (bz1621238)
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.3-21
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Jun 28 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 3.2.3-20
- Perl 5.28 rebuild
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.3-19
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.3-18
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sun Jun 4 2017 Jitka Plesnikova <jplesnik(a)redhat.com> - 3.2.3-17
- Perl 5.26 rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.3-16
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Sun May 15 2016 Jitka Plesnikova <jplesnik(a)redhat.com> - 3.2.3-15
- Perl 5.24 rebuild
* Fri Feb 5 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.2.3-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Fri Jun 19 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.2.3-13
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Fri Jun 5 2015 Jitka Plesnikova <jplesnik(a)redhat.com> - 3.2.3-12
- Perl 5.22 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1621238 - Using exec causes zombie processes to be left behind
https://bugzilla.redhat.com/show_bug.cgi?id=1621238
--------------------------------------------------------------------------------