Fedora EPEL 5 Update: firehol-1.273-5.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0523
2009-09-26 00:45:27
--------------------------------------------------------------------------------
Name : firehol
Product : Fedora EPEL 5
Version : 1.273
Release : 5.el5
URL : http://firehol.sourceforge.net
Summary : A powerful yet easy to use iptables frontend
Description :
FireHOL is a generic firewall generator, meaning that you can design any kind
of local or routing stateful packet filtering firewalls with ease. Install
FireHOL if you want an easy way to configure stateful packet filtering
firewalls on Linux hosts and routers.
FireHOL uses an extremely simple but powerful way to define firewall rules
which it turns into complete stateful iptables firewalls.
You can run FireHOL with the 'helpme' argument, to get a configuration file for
the system run, which you can modify according to your needs. The default
configuration file will allow only client traffic on all interfaces.
--------------------------------------------------------------------------------
Update Information:
First release in Fedora.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #465636 - Review Request: FireHOL - a Linux iptables packet filtering firewall builder for humans
https://bugzilla.redhat.com/show_bug.cgi?id=465636
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update firehol' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
Fedora EPEL 5 Update: libtar-1.2.11-11.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0540
2009-09-28 17:50:19
--------------------------------------------------------------------------------
Name : libtar
Product : Fedora EPEL 5
Version : 1.2.11
Release : 11.el5
URL : http://www.feep.net/libtar/
Summary : Tar file manipulation API
Description :
libtar is a C library for manipulating tar archives. It supports both
the strict POSIX tar format and many of the commonly-used GNU
extensions.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update libtar' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
[SECURITY] Fedora EPEL 4 Update: Django-1.1.1-1.el4
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0617
2009-10-10 20:11:56
--------------------------------------------------------------------------------
Name : Django
Product : Fedora EPEL 4
Version : 1.1.1
Release : 1.el4
URL : http://www.djangoproject.com/
Summary : A high-level Python Web framework
Description :
Django is a high-level Python Web framework that encourages rapid
development and a clean, pragmatic design. It focuses on automating as
much as possible and adhering to the DRY (Don't Repeat Yourself)
principle.
--------------------------------------------------------------------------------
Update Information:
http://www.djangoproject.com/weblog/2009/oct/09/security/ Description of
vulnerability ============================ Django's forms library included
field types which perform regular-expression-based validation of email addresses
and URLs. Certain addresses/URLs could trigger a pathological performance case
in this regular expression, resulting in the server process/thread becoming
unresponsive, and consuming excessive CPU over an extended period of time. If
deliberately triggered, this could result in an effective denial-of-service
attack.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #528246 - Django's forms DOS in 1.1/1.0
https://bugzilla.redhat.com/show_bug.cgi?id=528246
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update Django' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
Fedora EPEL 5 Update: fastback-0.2-3.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0457
2009-09-17 01:57:38
--------------------------------------------------------------------------------
Name : fastback
Product : Fedora EPEL 5
Version : 0.2
Release : 3.el5
URL : http://fedorahosted.org/fastback
Summary : File uploader, configureable file uploader
Description :
Fastback is a command line tool to upload files to a ticketing system, or
other configurable URL (FTP,SCP,...).
--------------------------------------------------------------------------------
Update Information:
initial commit
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update fastback' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
Fedora EPEL 5 Update: dbus-cxx-0.5.0-1.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0572
2009-10-02 04:43:47
--------------------------------------------------------------------------------
Name : dbus-cxx
Product : Fedora EPEL 5
Version : 0.5.0
Release : 1.el5
URL : http://dbus-cxx.sourceforge.net/
Summary : C++ bindings for the DBus library
Description :
C++ wrapper for the DBus C reference implementation.
--------------------------------------------------------------------------------
Update Information:
This is the first release of dbus-cxx for EL-5. dbus-cxx is a C++ wrapper for
dbus. It exposes the C API to allow direct manipulation and relies on sigc++ to
provide an OO interface. Also included is dbus-cxx-xml2cpp to generate proxy and
adapter interfaces from DBus XML introspection-like documents.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update dbus-cxx' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
[SECURITY] Fedora EPEL 5 Update: unbound-1.3.4-1.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0625
2009-10-10 20:12:17.235297
--------------------------------------------------------------------------------
Name : unbound
Product : Fedora EPEL 5
Version : 1.3.4
Release : 1.el5
URL : http://www.nlnetlabs.nl/unbound/
Summary : Validating, recursive, and caching DNS(SEC) resolver
Description :
Unbound is a validating, recursive, and caching DNS(SEC) resolver.
The C implementation of Unbound is developed and maintained by NLnet
Labs. It is based on ideas and algorithms taken from a java prototype
developed by Verisign labs, Nominet, Kirei and ep.net.
Unbound is designed as a set of modular components, so that also
DNSSEC (secure DNS) validation and stub-resolvers (that do not run
as a server, but are linked into an application) are easily possible.
--------------------------------------------------------------------------------
Update Information:
Fixes a bug in NSEC3 validation handling code: Under specific circumstances
checks of signatures over NSEC3 records are not done. As a result carefully
crafted delegation responses (created through exploiting general DNS
vulnerabilities such as DNS packet spoofing) can be used to downgrade an
existing secure delegation to insecure.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update unbound' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
Fedora EPEL 4 Update: pg_top-3.6.2-8.el4
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0544
2009-09-28 17:50:27
--------------------------------------------------------------------------------
Name : pg_top
Product : Fedora EPEL 4
Version : 3.6.2
Release : 8.el4
URL : http://pgfoundry.org/projects/ptop
Summary : 'top' for PostgreSQL process
Description :
pg_top is 'top' for PostgreSQL processes. See running queries,
query plans, issued locks, and table and index statistics.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #525763 - cumulative statistics is constantly growing on redraws
https://bugzilla.redhat.com/show_bug.cgi?id=525763
[ 2 ] Bug #525782 - Build for EPEL
https://bugzilla.redhat.com/show_bug.cgi?id=525782
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update pg_top' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
Fedora EPEL 5 Update: vrq-1.0.58-3.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0468
2009-09-17 01:58:07
--------------------------------------------------------------------------------
Name : vrq
Product : Fedora EPEL 5
Version : 1.0.58
Release : 3.el5
URL : http://vrq.sourceforge.net/
Summary : Verilog tool framework with plugins for manipulating source code
Description :
VRQ is modular verilog parser that supports plugin tools to process verilog.
Multiple tools may be invoked in a pipeline fashion within a single execution
of vrq. It is a generic front-end parser with support for plugin backend
customizable tools.
--------------------------------------------------------------------------------
Update Information:
Verilog tool framework with plugins for manipulating source code.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #521458 - Review Request: vrq - Verilog tool framework with plugins for manipulating source code
https://bugzilla.redhat.com/show_bug.cgi?id=521458
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update vrq' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
Fedora EPEL 5 Update: libguestfs-1.0.72-1.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0510
2009-09-23 18:19:29
--------------------------------------------------------------------------------
Name : libguestfs
Product : Fedora EPEL 5
Version : 1.0.72
Release : 1.el5
URL : http://libguestfs.org/
Summary : Access and modify virtual machine disk images
Description :
Libguestfs is a library for accessing and modifying guest disk images.
Amongst the things this is good for: making batch configuration
changes to guests, getting disk used/free statistics (see also:
virt-df), migrating between virtualization systems (see also:
virt-p2v), performing partial backups, performing partial guest
clones, cloning guests and changing registry/UUID/hostname info, and
much else besides.
Libguestfs uses Linux kernel and qemu code, and can access any type of
guest filesystem that Linux and qemu can, including but not limited
to: ext2/3/4, btrfs, FAT and NTFS, LVM, many different disk partition
schemes, qcow, qcow2, vmdk.
Libguestfs provides ways to enumerate guest storage (eg. partitions,
LVs, what filesystem is in each LV, etc.). It can also run commands
in the context of the guest. Also you can access filesystems over FTP.
Libguestfs is a library that can be linked with C and C++ management
programs.
See also the 'guestfish' package for shell scripting and command line
access.
For Perl bindings, see 'perl-libguestfs'.
For OCaml bindings, see 'ocaml-libguestfs-devel'.
For Python bindings, see 'python-libguestfs'.
For Ruby bindings, see 'ruby-libguestfs'.
For Java bindings, see 'libguestfs-java-devel'.
--------------------------------------------------------------------------------
Update Information:
New upstream version 1.0.72.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update libguestfs' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months
[SECURITY] Fedora EPEL 5 Update: deltarpm-3.4-8.el5.1
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0586
2009-10-08 17:37:57
--------------------------------------------------------------------------------
Name : deltarpm
Product : Fedora EPEL 5
Version : 3.4
Release : 8.el5.1
URL : http://www.novell.com/products/linuxpackages/professional/deltarpm.html
Summary : Create deltas between rpms
Description :
A deltarpm contains the difference between an old
and a new version of a rpm, which makes it possible
to recreate the new rpm from the deltarpm and the old
one. You don't have to have a copy of the old rpm,
deltarpms can also work with installed rpms.
--------------------------------------------------------------------------------
Update Information:
deltarpm prior to the current build ships with a bundled copy of zlib. This
version of zlib has a known vulnerability with CVE identifier: CAN-2005-1849
This build of deltarpm patches the program to use the system zlib (which was
fixed when the vulnerability was first discovered) instead of the bundled copy.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #526432 - deltarpm contains an own, modified copy of zlib
https://bugzilla.redhat.com/show_bug.cgi?id=526432
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update deltarpm' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 8 months