The following Fedora EPEL 6 Security updates need testing: Age URL 450 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.1... 46 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-6034/heat-jeos-9-1.... 40 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-6090/ssmtp-2.61-20.... 22 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-10586/rubygem-passe... 18 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-10623/ReviewBoard-1... 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-10750/zeroinstall-i... 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-10754/ansible-1.2.2... 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-10756/gallery3-3.0.... 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-10644/nodejs-callsi...

The following builds have been pushed to Fedora EPEL 6 updates-testing

Ray-2.1.0-6.el6 lbzip2-utils-1.0-1.el6 libssh-0.5.4-4.el6 pdfedit-0.4.5-8.el6 pyfits-2.4.0-1.el6 python-fedbadges-0.2.2-1.el6 python-tahrir-0.2.3-1.el6 python-tahrir-api-0.2.6-1.el6 strongswan-5.0.4-4.el6 xournal-0.4.7-2.el6 youtube-dl-2013.07.12-1.el6

Details about builds:

================================================================================ Ray-2.1.0-6.el6 (FEDORA-EPEL-2013-10855) Parallel genome assemblies for parallel DNA sequencing -------------------------------------------------------------------------------- Update Information:

Ray - Parallel genome assemblies for parallel DNA sequencing -------------------------------------------------------------------------------- References:

[ 1 ] Bug #872783 - Review Request: Ray - Parallel genome assemblies for parallel DNA sequencing https://bugzilla.redhat.com/show_bug.cgi?id=872783 --------------------------------------------------------------------------------

================================================================================ lbzip2-utils-1.0-1.el6 (FEDORA-EPEL-2013-10857) Utilities for working with bzip2 compressed files -------------------------------------------------------------------------------- Update Information:

This update introduces lbzip2 utilities -- a collection of tools to work with compressed files in bz2 format. --------------------------------------------------------------------------------

================================================================================ libssh-0.5.4-4.el6 (FEDORA-EPEL-2013-10860) A library implementing the SSH2 protocol (0xbadc0de version) -------------------------------------------------------------------------------- Update Information:

Upstream patch backported to libssh 0.5.4 to fix a Remmina crash. -------------------------------------------------------------------------------- ChangeLog:

* Tue Jul 16 2013 Simone Caronni negativo17@gmail.com - 0.5.4-4 - Add patch for #982685. --------------------------------------------------------------------------------

================================================================================ pdfedit-0.4.5-8.el6 (FEDORA-EPEL-2013-10859) A complete pdf document editing solution -------------------------------------------------------------------------------- Update Information:

Free pdf editing using PdfEdit. Complete editing of pdf documents is made possible with PDFedit. You can change either raw pdf objects (for advanced users) or use predefined gui functions. Functions can be easily added as everything is based on a script.

--------------------------------------------------------------------------------

================================================================================ pyfits-2.4.0-1.el6 (FEDORA-EPEL-2013-10863) Python interface to FITS -------------------------------------------------------------------------------- Update Information:

Update to the last version in series 2.x -------------------------------------------------------------------------------- ChangeLog:

* Tue Jul 16 2013 Sergio Pascual sergiopr@fedoraproject.org - 2.4.0-1 - Updated to 2.4.0 (bz #984693) -------------------------------------------------------------------------------- References:

[ 1 ] Bug #984693 - Update pyfits in EPEL6 https://bugzilla.redhat.com/show_bug.cgi?id=984693 --------------------------------------------------------------------------------

================================================================================ python-fedbadges-0.2.2-1.el6 (FEDORA-EPEL-2013-10862) fedmsg consumer for awarding open badges -------------------------------------------------------------------------------- Update Information:

transaction support. -------------------------------------------------------------------------------- ChangeLog:

--------------------------------------------------------------------------------

================================================================================ python-tahrir-0.2.3-1.el6 (FEDORA-EPEL-2013-10865) A pyramid app for issuing your own Open Badges -------------------------------------------------------------------------------- Update Information:

More facelifting. More cosmetic surgery. Facelift marathon. Massive facelift. Use forward compat sqlalchemy. -------------------------------------------------------------------------------- ChangeLog:

* Tue Jul 16 2013 Ralph Bean rbean@redhat.com - 0.2.3-1 - Latest upstream with more botox. * Thu Jul 11 2013 Ralph Bean rbean@redhat.com - 0.2.2-2 - Added requirement for python-dogpile-cache * Wed Jul 10 2013 Ralph Bean rbean@redhat.com - 0.2.2-1 - Latest upstream with more cosmetic surgery. * Wed Jul 3 2013 Ralph Bean rbean@redhat.com - 0.2.1-1 - Remove old patch (shipped with upstream now). - More facelift stuff in progress. * Mon Jul 1 2013 Ralph Bean rbean@redhat.com - 0.2.0-2 - Add requirement on python-qrcode. * Wed Jun 26 2013 Ralph Bean rbean@redhat.com - 0.2.0-1 - Massive facelift. * Thu Jun 13 2013 Ralph Bean rbean@redhat.com - 0.1.9-3 - Conditionalize sqlalchemy forward compat package for epel6. --------------------------------------------------------------------------------

================================================================================ python-tahrir-api-0.2.6-1.el6 (FEDORA-EPEL-2013-10864) An API for interacting with the Tahrir database -------------------------------------------------------------------------------- Update Information:

Stop session leaking; more API additions. Uniquify the nickname field. New API methods. Improved model. Stop leaking sqlalchemy sessions. Expanded user query api. Latest upstream with API enhancements. Fix deps with forward compat packages. Use forward compat sqlalchemy. New features, bugfixes, and relicense to GPLv3+. Add alembic scripts. -------------------------------------------------------------------------------- ChangeLog:

* Tue Jul 16 2013 Ralph Bean rbean@redhat.com - 0.2.6-1 - Latest upstream, more enhancements. * Wed Jul 10 2013 Ralph Bean rbean@redhat.com - 0.2.5-1 - Latest upstream, uniquifies the nickname field. * Wed Jul 3 2013 Ralph Bean rbean@redhat.com - 0.2.4-1 - Latest upstream with some new get_all_... methods. * Wed Jun 26 2013 Ralph Bean rbean@redhat.com - 0.2.3-2 - Remove old patch. * Wed Jun 26 2013 Ralph Bean rbean@redhat.com - 0.2.3-1 - Latest upstream with fixes to the model. * Sun Jun 23 2013 Ralph Bean rbean@redhat.com - 0.2.2-1 - Add alembic upgrade scripts. - Add check section with tests. * Sun Jun 23 2013 Ralph Bean rbean@redhat.com - 0.2.1-1 - Bugfix - stop leaking sqlalchemy sessions. - API enhancement - can query for user by username, id, or email now. * Thu Jun 20 2013 Ralph Bean rbean@redhat.com - 0.2.0-1 - API enhancements. * Thu Jun 13 2013 Ralph Bean rbean@redhat.com - 0.1.8-6 - Use paste-deploy1.5 forward compat package. - Use zope-interface4 forward compat package. * Thu Jun 13 2013 Ralph Bean rbean@redhat.com - 0.1.8-5 - Added dep on zope.interface. * Thu Jun 13 2013 Ralph Bean rbean@redhat.com - 0.1.8-4 - Conditional mako0.4 requirement for epel6. * Thu Jun 13 2013 Ralph Bean rbean@redhat.com - 0.1.8-3 - More epel6 fixes. * Thu Jun 13 2013 Ralph Bean rbean@redhat.com - 0.1.8-2 - Conditionalize sqlalchemy forward compat package for epel6. * Fri Jun 7 2013 Ralph Bean rbean@redhat.com - 0.1.8-1 - New Invitations API. - Bugfixes to other API functions. - Relicense to GPLv3+ --------------------------------------------------------------------------------

================================================================================ strongswan-5.0.4-4.el6 (FEDORA-EPEL-2013-10866) An OpenSource IPsec-based VPN Solution -------------------------------------------------------------------------------- Update Information:

This is an update to the latest upstream release 5.0.4. Upstreamhave fixed many bugs, which can be seen in the upstream changelog: http://wiki.strongswan.org/projects/strongswan/wiki/Changelog50 . This update also addresses several packaging bugs. Fixed variable susbstitution in systemd unit.

The new major upstream release 5.0.0 with a single IKEv1/IKEv2 daemon. Its configuration is backwards compatible. For more details see http://wiki.strongswan.org/projects/strongswan/wiki/CharonPlutoIKEv1. Built with openssl plugin enabled. -------------------------------------------------------------------------------- ChangeLog:

* Mon Jul 15 2013 Jamie Nguyen jamielinux@fedoraproject.org - 5.0.4-4 - %files tries to package some of the shared objects as directories (#984437) - fix broken systemd unit file (#984300) - fix rpmlint error: description-line-too-long - fix rpmlint error: macro-in-comment - fix rpmlint error: spelling-error Summary(en_US) fuctionality - depend on 'systemd' instead of 'systemd-units' - use new systemd scriptlet macros - NetworkManager subpackage should have a copy of the license (#984490) - enable hardened_build as this package meets the PIE criteria (#984429) - invocation of "ipsec _updown iptables" is broken as ipsec is renamed to strongswan in this package (#948306) - invocation of "ipsec scepclient" is broken as ipsec is renamed to strongswan in this package - add /etc/strongswan/ipsec.d and missing subdirectories - conditionalize building of strongswan-NetworkManager subpackage as the version of NetworkManager in EL6 is too old (#984497) * Fri Jun 28 2013 Avesh Agarwal avagarwa@redhat.com - 5.0.4-3 - Patch to fix a major crash issue when Freeradius loads attestatiom-imv and does not initialize libstrongswan which causes crash due to calls to PTS algorithms probing APIs. So this patch fixes the order of initialization. This issues does not occur with charon because libstrongswan gets initialized earlier. - Patch that allows to outputs errors when there are permission issues when accessing strongswan.conf. - Patch to make loading of modules configurable when libimcv is used in stand alone mode without charon with freeradius and wpa_supplicant. * Tue Jun 11 2013 Avesh Agarwal avagarwa@redhat.com - 5.0.4-2 - Enabled TNCCS 1.1 protocol - Fixed libxm2-devel build dependency - Patch to fix the issue with loading of plugins * Wed May 1 2013 Avesh Agarwal avagarwa@redhat.com - 5.0.4-1 - New upstream release - Fixes for CVE-2013-2944 - Enabled support for OS IMV/IMC - Created and applied a patch to disable ECP in fedora, because Openssl in Fedora does not allow ECP_256 and ECP_384. It makes it non-compliant to TCG's PTS standard, but there is no choice right now. see redhat bz # 319901. - Enabled Trousers support for TPM based operations. * Sat Apr 20 2013 Pavel Šimerda psimerda@redhat.com - 5.0.3-2 - Rebuilt for a single specfile for rawhide/f19/f18/el6 * Fri Apr 19 2013 Avesh Agarwal avagarwa@redhat.com - 5.0.3-1 - New upstream release - Enabled curl and eap-identity plugins - Enabled support for eap-radius plugin. * Thu Apr 18 2013 Pavel Šimerda psimerda@redhat.com - 5.0.2-3 - Add gettext-devel to BuildRequires because of epel6 - Remove unnecessary comments * Tue Mar 19 2013 Avesh Agarwal avagarwa@redhat.com - 5.0.2-2 - Enabled support for eap-radius plugin. * Mon Mar 11 2013 Avesh Agarwal avagarwa@redhat.com - 5.0.2-1 - Update to upstream release 5.0.2 - Created sub package strongswan-tnc-imcvs that provides trusted network connect's IMC and IMV funtionality. Specifically it includes PTS based IMC/IMV for TPM based remote attestation and scanner and test IMCs and IMVs. The Strongswan's IMC/IMV dynamic libraries can be used by any third party TNC Client/Server implementation possessing a standard IF-IMC/IMV interface. * Fri Feb 15 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 5.0.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Oct 4 2012 Pavel Šimerda psimerda@redhat.com - 5.0.1-1 - Update to release 5.0.1 * Thu Oct 4 2012 Pavel Šimerda psimerda@redhat.com - 5.0.0-4.git20120619 - Add plugins to interoperate with Windows 7 and Android (#862472) (contributed by Haim Gelfenbeyn) * Sat Jul 21 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 5.0.0-3.git20120619 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sun Jul 8 2012 Pavel Šimerda pavlix@pavlix.net - 5.0.0-2.git20120619 - Fix configure substitutions in initscripts * Wed Jul 4 2012 Pavel Šimerda psimerda@redhat.com - 5.0.0-1.git20120619 - Update to current upstream release - Comment out all stuff that is only needed for git builds - Remove renaming patch from git - Improve init patch used for EPEL * Thu Jun 21 2012 Pavel Šimerda psimerda@redhat.com - 5.0.0-0.3.git20120619 - Build with openssl plugin enabled * Wed Jun 20 2012 Pavel Šimerda psimerda@redhat.com - 5.0.0-0.2.git20120619 - Add README.Fedora with link to 4.6 to 5.0 migration information * Tue Jun 19 2012 Pavel Šimerda - 5.0.0-0.1.git20120619 - Snapshot of upcoming major release - Move patches and renaming upstream http://wiki.strongswan.org/issues/194 http://wiki.strongswan.org/issues/195 - Notified upstream about manpage issues * Tue Jun 19 2012 Pavel Šimerda - 4.6.4-2 - Make initscript patch more distro-neutral - Add links to bugreports for patches -------------------------------------------------------------------------------- References:

[ 1 ] Bug #984437 - %files tnc-imcvs section tries to package shared object files as directories https://bugzilla.redhat.com/show_bug.cgi?id=984437 [ 2 ] Bug #984300 - strongswan.service systemd unit file is broken https://bugzilla.redhat.com/show_bug.cgi?id=984300 [ 3 ] Bug #984490 - strongswan-NetworkManager subpackage should have a copy of COPYING https://bugzilla.redhat.com/show_bug.cgi?id=984490 [ 4 ] Bug #984429 - strongswan should have %global hardened_build 1 https://bugzilla.redhat.com/show_bug.cgi?id=984429 [ 5 ] Bug #948306 - Default updown script name https://bugzilla.redhat.com/show_bug.cgi?id=948306 [ 6 ] Bug #984497 - strongswan doesn't compile on el6 due to too old NM version (0.8.1) https://bugzilla.redhat.com/show_bug.cgi?id=984497 --------------------------------------------------------------------------------

================================================================================ xournal-0.4.7-2.el6 (FEDORA-EPEL-2013-10856) Notetaking, sketching, PDF annotation and general journal -------------------------------------------------------------------------------- Update Information:

Xournal is an application for notetaking, sketching, keeping a journal and annotating PDFs. Xournal aims to provide superior graphical quality (subpixel resolution) and overall functionality. --------------------------------------------------------------------------------

================================================================================ youtube-dl-2013.07.12-1.el6 (FEDORA-EPEL-2013-10861) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information:

New version. -------------------------------------------------------------------------------- ChangeLog:

* Tue Jul 16 2013 Christopher Meng rpm@cicku.me - 2013.07.12-1 - Update to new release. * Tue Jul 2 2013 Christopher Meng rpm@cicku.me - 2013.07.02-1 - Update to new release. - SPEC cleanup. -------------------------------------------------------------------------------- References:

[ 1 ] Bug #984672 - youtube-dl-2013.07.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=984672 --------------------------------------------------------------------------------