The following Fedora EPEL 6 Security updates need testing:
Age URL
530
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gri...
342
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3....
264
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3...
42
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect...
35
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0...
35
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0423/nginx-1.0.1...
13
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0686/mimetex-1.7...
10
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0707/darkserver-...
10
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0698/darkserver-...
8
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0741/drupal7-vie...
8
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0720/puppet-2.6....
7
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0692/v8-3.14.5.8...
4
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0800/moodle-2.2....
3
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0809/py-bcrypt-0...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0822/roundcubema...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0836/drupal7-rul...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0823/openstack-k...
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0830/ngircd-20.2...
The following builds have been pushed to Fedora EPEL 6 updates-testing
drupal7-mediawiki_api-1.0-0.7.beta2.el6
drupal7-rules-2.3-1.el6
drupal7-theme-adaptivetheme-3.1-1.el6
gitolite3-3.5.1-1.el6
ngircd-20.2-1.el6
openstack-keystone-2012.2.3-5.el6
php-horde-Horde-Crypt-2.1.3-1.el6
privoxy-3.0.21-2.el6
python-django-flash-1.8-4.el6
python-django-tastypie-0.9.12-1.el6
python-glanceclient-0.8.0-2.el6
python-moksha-hub-1.2.0-1.el6
qpdfview-0.4.1-1.el6
roundcubemail-0.8.6-1.el6
tudu-0.8.2-1.el6
Details about builds:
================================================================================
drupal7-mediawiki_api-1.0-0.7.beta2.el6 (FEDORA-EPEL-2013-0833)
Provides a MediaWiki syntax to html conversion input filter
--------------------------------------------------------------------------------
Update Information:
New upstream version,
http://drupal.org/node/1954400.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 28 2013 Peter Borsa <peter.borsa(a)gmail.com> - 1.0-0.7.beta2
- New upstream version.
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.0-0.6.beta1
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.0-0.5.beta1
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #928693 - drupal7-mediawiki_api-1.0-beta2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=928693
--------------------------------------------------------------------------------
================================================================================
drupal7-rules-2.3-1.el6 (FEDORA-EPEL-2013-0836)
It allows site administrators to define conditionally executed actions
--------------------------------------------------------------------------------
Update Information:
New upstream version,
http://drupal.org/node/1954508 and
http://drupal.org/node/1954592.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 28 2013 Peter Borsa <peter.borsa(a)gmail.com> - 2.3-1
- New upstream version
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #928694 - drupal7-rules-2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=928694
--------------------------------------------------------------------------------
================================================================================
drupal7-theme-adaptivetheme-3.1-1.el6 (FEDORA-EPEL-2013-0820)
Adaptivetheme is a powerful theme framework
--------------------------------------------------------------------------------
Update Information:
New upstream version,
http://drupal.org/node/1761946.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 28 2013 Peter Borsa <peter.borsa(a)gmail.com> - 3.1-1
- Updated to 3.1
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #928430 - please update package
https://bugzilla.redhat.com/show_bug.cgi?id=928430
--------------------------------------------------------------------------------
================================================================================
gitolite3-3.5.1-1.el6 (FEDORA-EPEL-2013-0841)
Highly flexible server for git directory version tracker
--------------------------------------------------------------------------------
Update Information:
Minor for for gitweb.
Latest upstream.
Latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 28 2013 Jon Ciesla <limburgher(a)gmail.com> - 1:3.5.1-1
- Latest upstream.
\* Mon Mar 25 2013 Jon Ciesla <limburgher(a)gmail.com> - 1:3.5-1
- Latest upstream.
--------------------------------------------------------------------------------
================================================================================
ngircd-20.2-1.el6 (FEDORA-EPEL-2013-0830)
Next Generation IRC Daemon
--------------------------------------------------------------------------------
Update Information:
New upstream 20.2 release that fixes a crasher bug.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 29 2013 Kevin Fenzi <kevin(a)scrye.com> 20.2-1
- Update to 20.2.
- Fix for CVE-2013-1747
* Thu Mar 7 2013 Tomáš Mráz <tmraz(a)redhat.com> 20.1-2
- Rebuilt with new GnuTLS
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #929168 - CVE-2013-1747 ngircd: DoS (assertion failure, crash) via a KICK
command for a user who is not on the associated channel
https://bugzilla.redhat.com/show_bug.cgi?id=929168
--------------------------------------------------------------------------------
================================================================================
openstack-keystone-2012.2.3-5.el6 (FEDORA-EPEL-2013-0823)
OpenStack Identity Service
--------------------------------------------------------------------------------
Update Information:
Fix online revocation check for PKI tokens CVE-2013-1865
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 29 2013 Alan Pevec <apevec(a)redhat.com> 2012.2.3-5
- Fix online revocation check for PKI tokens CVE-2013-1865
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #922230 - CVE-2013-1865 OpenStack keystone: online validation of Keystone PKI
tokens bypasses revocation check
https://bugzilla.redhat.com/show_bug.cgi?id=922230
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Crypt-2.1.3-1.el6 (FEDORA-EPEL-2013-0825)
Horde Cryptography API
--------------------------------------------------------------------------------
Update Information:
The Horde_Crypt package class provides an API for various cryptographic systems.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #909907 - Review Request: php-horde-Horde-Crypt - Horde Cryptography API
https://bugzilla.redhat.com/show_bug.cgi?id=909907
--------------------------------------------------------------------------------
================================================================================
privoxy-3.0.21-2.el6 (FEDORA-EPEL-2013-0832)
Privacy enhancing proxy
--------------------------------------------------------------------------------
Update Information:
Ad user.filter only if missing.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 27 2013 Jon Ciesla <limburgher(a)gmail.com> - 3.0.21-2
- Create user.filter if it doesn't exist, BZ 926019.
- Add user.filter, BZ 896753.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #926019 - fails to start
https://bugzilla.redhat.com/show_bug.cgi?id=926019
--------------------------------------------------------------------------------
================================================================================
python-django-flash-1.8-4.el6 (FEDORA-EPEL-2013-0838)
A Django extension to provide support for Rails-like flash
--------------------------------------------------------------------------------
Update Information:
A Django extension to provide support for Rails-like flash
--------------------------------------------------------------------------------
================================================================================
python-django-tastypie-0.9.12-1.el6 (FEDORA-EPEL-2013-0824)
A flexible and capable API layer for Django
--------------------------------------------------------------------------------
Update Information:
Update to upstream 0.9.12
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 25 2013 Cédric OLIVIER <cedric.olivier(a)free.fr> 0.9.12-1
- Updated to upstream 0.9.12
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.9.12-0.2.alpha
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-glanceclient-0.8.0-2.el6 (FEDORA-EPEL-2013-0828)
Python API and CLI for OpenStack Glance
--------------------------------------------------------------------------------
Update Information:
- Add a dependency on pyOpenSSL
Update to 0.8.0 and use pypi sources.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 27 2013 Pádraig Brady <P(a)draigBrady.com> - 1:0.8.0-2
- Add a dependency on pyOpenSSL
* Mon Mar 11 2013 Jakub Ruzicka <jruzicka(a)redhat.com> - 1:0.8.0-1
- Update to 0.8.0.
- Switch from
tarballs.openstack.org to pypi sources.
--------------------------------------------------------------------------------
================================================================================
python-moksha-hub-1.2.0-1.el6 (FEDORA-EPEL-2013-0839)
Hub components for Moksha
--------------------------------------------------------------------------------
Update Information:
Latest upstream with cleaning and reorganization.
Update to latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 26 2013 Ralph Bean <rbean(a)redhat.com> - 1.2.0-1
- Latest upstream.
- Removed websocket tests until this review is complete:
https://bugzilla.redhat.com/show_bug.cgi?id=909644
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.1.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
qpdfview-0.4.1-1.el6 (FEDORA-EPEL-2013-0840)
Tabbed PDF Viewer
--------------------------------------------------------------------------------
Update Information:
Qt-based PDF viewer.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #926062 - Review Request: qpdfview - Qt-based PDF viewer
https://bugzilla.redhat.com/show_bug.cgi?id=926062
--------------------------------------------------------------------------------
================================================================================
roundcubemail-0.8.6-1.el6 (FEDORA-EPEL-2013-0822)
Round Cube Webmail is a browser-based multilingual IMAP client
--------------------------------------------------------------------------------
Update Information:
Fix for local file inclusion via web UI modification of certain config options.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 28 2013 Jon Ciesla <limburgher(a)gmail.com> - 0.8.6-1
- Latest upstream, fixes local file inclusion via web UI
- modification of certain config options.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #928836 - CVE-2013-1904 roundcubemail: Local file inclusion via web UI
modification of certain config options [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=928836
[ 2 ] Bug #928837 - CVE-2013-1904 roundcubemail: Local file inclusion via web UI
modification of certain config options [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=928837
--------------------------------------------------------------------------------
================================================================================
tudu-0.8.2-1.el6 (FEDORA-EPEL-2013-0835)
A simple, command line interface to do list application
--------------------------------------------------------------------------------
Update Information:
* Updated to version 0.8.2
* Adds a configuration variable 'tudu_file' to set the path to the XML file.
* Improves the category editor.
* Doesn't check configuration files when invoked with '-h' and '-v'.
* Fixes a segfault on the scroll help page when the resolution is high.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 28 2013 Eric "Sparks" Christensen <sparks(a)fedoraproject.org> -
0.8.2-1
- Updated to version 0.8.2
- Adds a configuration variable 'tudu_file' to set the path to the XML file.
- Improves the category editor.
- Doesn't check configuration files when invoked with '-h' and '-v'.
- Fixes a segfault on the scroll help page when the resolution is high.
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.8.1-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Sun Jul 22 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.8.1-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.8.1-2
- Rebuilt for c++ ABI breakage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #828280 - tudu-0.8.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=828280
--------------------------------------------------------------------------------