The following Fedora EPEL 7 Security updates need testing:
Age URL
79
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3835d39d1a
unrtf-0.21.9-8.el7
73
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-15b7dc35af
pass-1.7.2-1.el7
47
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-d2e0971e9b
uwsgi-2.0.17.1-1.el7
30
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-f9d6ff695a
bibutils-6.6-1.el7 ghc-hs-bibutils-6.6.0.0-1.el7 pandoc-citeproc-0.3.0.1-4.el7
29
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-5346e2123a
dpkg-1.18.25-1.el7
20
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-0be0127779
libgit2-0.26.6-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-dce803ff0d
lighttpd-1.4.50-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-69993b3f45
sleuthkit-4.6.2-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-6f182ddbf7
python34-3.4.9-1.el7
6
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-8e10f21fa8
yubico-piv-tool-1.6.1-1.el7
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3a3c72c5e5
chromium-68.0.3440.106-3.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-cde256f1e4
discount-2.2.4-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
duplicity-0.7.18.1-1.el7
globus-gsi-proxy-core-8.6-8.el7
globus-gssapi-gsi-13.8-3.el7
globus-proxy-utils-6.19-8.el7
myproxy-6.1.30-3.el7
nordugrid-arc-5.4.2-9.el7
pstoedit-3.73-1.el7
python-dns-lexicon-2.7.0-2.el7
python-msgpack-0.5.6-4.el7
root-6.14.04-1.el7
yara-3.8.1-1.el7
Details about builds:
================================================================================
duplicity-0.7.18.1-1.el7 (FEDORA-EPEL-2018-75d6ae16e3)
Encrypted bandwidth-efficient backup using rsync algorithm
--------------------------------------------------------------------------------
Update Information:
https://launchpad.net/duplicity/+announcement/15047
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 27 2018 Gwyn Ciesla <limburgher(a)gmail.com> - 0.7.18.1-1
- 0.7.18.1.
* Wed Aug 22 2018 Gwyn Ciesla <limburgher(a)gmail.com> - 0.7.18-1
- 0.7.18.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1622232 - New crash with 0.7.18
https://bugzilla.redhat.com/show_bug.cgi?id=1622232
--------------------------------------------------------------------------------
================================================================================
globus-gsi-proxy-core-8.6-8.el7 (FEDORA-EPEL-2018-4f23223148)
Globus Toolkit - Globus GSI Proxy Core Library
--------------------------------------------------------------------------------
Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi-
gsi - needs porting.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 26 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 8.6-8
- Increase default proxy key size to 2048 bits
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.6-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.6-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Aug 2 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.6-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.6-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Mon Mar 27 2017 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 8.6-3
- EPEL 5 End-Of-Life specfile clean-up
- Remove Group and BuildRoot tags
- Remove _pkgdocdir macro definition
- Drop redundant Requires corresponding to autogenerated pkgconfig Requires
- Don't clear the buildroot in the install section
- Remove the clean section
- Drop the globus-gsi-proxy-core-openssl098.patch
* Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 8.6-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
globus-gssapi-gsi-13.8-3.el7 (FEDORA-EPEL-2018-4f23223148)
Globus Toolkit - GSSAPI library
--------------------------------------------------------------------------------
Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi-
gsi - needs porting.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 26 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 13.8-3
- Avoid TLS 1.3 - needs porting
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 13.8-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
globus-proxy-utils-6.19-8.el7 (FEDORA-EPEL-2018-4f23223148)
Globus Toolkit - Globus GSI Proxy Utility Programs
--------------------------------------------------------------------------------
Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi-
gsi - needs porting.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 26 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.19-8
- Increase default proxy key size to 2048 bits
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.19-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.19-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Aug 2 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.19-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.19-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Mon Mar 27 2017 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.19-3
- EPEL 5 End-Of-Life specfile clean-up
- Remove Group and BuildRoot tags
- Remove _pkgdocdir macro definition
- Don't clear the buildroot in the install section
- Remove the clean section
- Drop the globus-proxy-utils-openssl098.patch
* Fri Feb 10 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.19-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
myproxy-6.1.30-3.el7 (FEDORA-EPEL-2018-4f23223148)
Manage X.509 Public Key Infrastructure (PKI) security credentials
--------------------------------------------------------------------------------
Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi-
gsi - needs porting.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 26 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.1.30-3
- Use 2048 bit CA key for myproxy tests
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.1.30-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-5.4.2-9.el7 (FEDORA-EPEL-2018-b178668a15)
Advanced Resource Connector Grid Middleware
--------------------------------------------------------------------------------
Update Information:
Backported bugfixes from upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 24 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 5.4.2-9
- Various bugfixes from upstream
- Respect s3 port number (nordugrid bugz 3701)
- Adding support for RTE arguments in xRSL (nordugrid bugz 3705)
- Small fix for Perl warnings (nordugrid bugz 3074)
- Add empty Default-Start LSB keyword to avoid warnings
- Fix shebangs to request python2
- Use consistent 'unused' python shebangs
- Handle twisted API change in v18.4 (nordugrid bugz 3733)
- Run sub-process with the same python executable as main process
- Relax FQDN demands in condor history file (GGUS #134645)
- Fix -h processing in options parser (nordugrid bugz 3725)
* Mon Jul 16 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 5.4.2-8
- Explicitly request --with-python=python2
- Fix pylint error with new pylint
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.4.2-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 5.4.2-6
- Rebuilt for Python 3.7
--------------------------------------------------------------------------------
================================================================================
pstoedit-3.73-1.el7 (FEDORA-EPEL-2018-9877d4efe3)
Translates PostScript and PDF graphics into other vector formats
--------------------------------------------------------------------------------
Update Information:
Provide pstoedit for epel7.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1397342 - provide a pstoedit version for epel 7
https://bugzilla.redhat.com/show_bug.cgi?id=1397342
--------------------------------------------------------------------------------
================================================================================
python-dns-lexicon-2.7.0-2.el7 (FEDORA-EPEL-2018-7e1a6e235a)
Manipulate DNS records on various DNS providers in a standardized/agnostic way
--------------------------------------------------------------------------------
Update Information:
Add missing dependency on python-cryptography.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 27 2018 Eli Young <elyscape(a)gmail.com> - 2.7.0-2
- Add dependency on python-cryptography (#1622418)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1622418 - python-dns-lexicon should require python-cryptography
https://bugzilla.redhat.com/show_bug.cgi?id=1622418
--------------------------------------------------------------------------------
================================================================================
python-msgpack-0.5.6-4.el7 (FEDORA-EPEL-2018-65bdd9ec8c)
A Python MessagePack (de)serializer
--------------------------------------------------------------------------------
Update Information:
Enable Cython implementation for python34 (rhbz#1599068) ---- restore Python 3
version for EPEL (rhbz#1599068)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 26 2018 Benjamin Pereto <bpereto(a)fedoraproject.org> - 0.5.6-4
- Enable Cython implementation for python34 (rhbz#1599068)
* Fri Aug 10 2018 Felix Schwarz <fschwarz(a)fedoraproject.org> - 0.5.6-3
- restore Python 3 version for EPEL (rhbz#1599068)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1599068 - python34-msgpack removed from EPEL 7, breaks borgbackup
https://bugzilla.redhat.com/show_bug.cgi?id=1599068
--------------------------------------------------------------------------------
================================================================================
root-6.14.04-1.el7 (FEDORA-EPEL-2018-68d8f4ca74)
Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:
Root version 6.14.04.
https://root.cern.ch/doc/v614/release-
notes.html#release-6.1404
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 24 2018 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.14.04-1
- Update to 6.14.04
- Drop patch accepted upstream: root-python-3.7.patch
* Thu Aug 23 2018 Nicolas Chauvet <kwizart(a)gmail.com> - 6.14.02-2
- Rebuilt for glew 2.1.0
--------------------------------------------------------------------------------
================================================================================
yara-3.8.1-1.el7 (FEDORA-EPEL-2018-215cdde88c)
Pattern matching Swiss knife for malware researchers
--------------------------------------------------------------------------------
Update Information:
bump to 3.8.1, fix CVE-2018-12034 and CVE-2018-12035
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 27 2018 Michal Ambroz <rebus at, seznam.cz> - 3.8.1-1
- bump to 3.8.1 release (#1613093)
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.7.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 3.7.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1591947 - CVE-2018-12034 yara: out of bounds read in yr_execute_code in
libyara/exec.c. [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1591947
[ 2 ] Bug #1591946 - CVE-2018-12035 yara: out of bounds write in yr_execute_code in
libyara/exec.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1591946
[ 3 ] Bug #1591948 - CVE-2018-12034 yara: out of bounds read in yr_execute_code in
libyara/exec.c. [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1591948
[ 4 ] Bug #1591945 - CVE-2018-12035 yara: out of bounds write in yr_execute_code in
libyara/exec.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1591945
[ 5 ] Bug #1613093 - yara-3.8.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1613093
--------------------------------------------------------------------------------