--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-58192634a4
2018-02-15 16:18:16.212174
--------------------------------------------------------------------------------
Name : spectre-meltdown-checker
Product : Fedora EPEL 6
Version : 0.33
Release : 1.el6
URL : https://github.com/speed47/spectre-meltdown-checker
Summary : Spectre & Meltdown vulnerability/mitigation checker for Linux
Description :
Spectre & Meltdown vulnerability/mitigation checker for Linux.
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update spectre-meltdown-checker' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-c2fc0cf003
2018-02-14 17:01:43.077857
--------------------------------------------------------------------------------
Name : ovirt-guest-agent
Product : Fedora EPEL 6
Version : 1.0.13
Release : 2.el6
URL : http://wiki.ovirt.org/wiki/Category:Ovirt_guest_agent
Summary : The oVirt Guest Agent
Description :
This is the oVirt management agent running inside the guest. The agent
interfaces with the oVirt manager, supplying heart-beat info as well as
run-time data from within the guest itself. The agent also accepts
control commands to be run executed within the OS (like: shutdown and
restart).
--------------------------------------------------------------------------------
Update Information:
Add extension for future channel name
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update ovirt-guest-agent' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-580a31cb75
2018-02-14 17:01:43.077834
--------------------------------------------------------------------------------
Name : epel-rpm-macros
Product : Fedora EPEL 6
Version : 6
Release : 17
URL : http://download.fedoraproject.org/pub/epel
Summary : Extra Packages for Enterprise Linux RPM macros
Description :
This package contains some RPM macros which minimize the differences in the
packaging process between Fedora and EPEL.
--------------------------------------------------------------------------------
Update Information:
Add macros.ldconfig * `%ldconfig_scriptlets` * `%ldconfig_post` *
`%ldconfig_postun` * `%ldconfig`
https://fedoraproject.org/wiki/Changes/Removing_ldconfig_scriptlets
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update epel-rpm-macros' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-b96ae423cd
2018-02-14 17:01:43.077813
--------------------------------------------------------------------------------
Name : ncdu
Product : Fedora EPEL 6
Version : 1.13
Release : 1.el6
URL : http://dev.yorhel.nl/ncdu/
Summary : Text-based disk usage viewer
Description :
ncdu (NCurses Disk Usage) is a curses-based version of the well-known 'du',
and provides a fast way to see what directories are using your disk space.
--------------------------------------------------------------------------------
Update Information:
Update to 1.13. Changes in this version: * Add "extended information" mode and
`-e` flag * Add file mode, modification time and uid/gid to info window with
`-e` * Add experimental color support and `--color` flag * Add `-rr` option to
disable shell spawning * Remove directory nesting limit on file import * Fix
handling of interrupts during file import * Fix undefined behavior that
triggered crash on OS X
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1539676 - ncdu-1.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1539676
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update ncdu' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-55ad61ac2a
2018-02-14 17:01:43.077791
--------------------------------------------------------------------------------
Name : R-Rcpp
Product : Fedora EPEL 6
Version : 0.12.15
Release : 1.el6
URL : https://cran.r-project.org/web/packages/Rcpp/
Summary : Seamless R and C++ Integration
Description :
The Rcpp package provides R functions as well as C++ classes which
offer a seamless integration of R and C++. Many R data types and
objects can be mapped back and forth to C++ equivalents which
facilitates both writing of new code as well as easier integration of
third-party libraries.
Documentation about Rcpp is provided by several vignettes included in
this package, via the Rcpp Gallery site at http://gallery.rcpp.org,
the paper by Eddelbuettel and Francois (2011, JSS), and the book by
Eddelbuettel (2013, Springer).
See citation("Rcpp") for details on the last two.
--------------------------------------------------------------------------------
Update Information:
Rcpp 0.12.15.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1536947 - Version 0.12.15 was released
https://bugzilla.redhat.com/show_bug.cgi?id=1536947
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update R-Rcpp' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-1bf44f4449
2018-02-14 17:01:43.077770
--------------------------------------------------------------------------------
Name : php-horde-Horde-Ldap
Product : Fedora EPEL 6
Version : 2.4.1
Release : 1.el6
URL : http://pear.horde.org
Summary : Horde LDAP libraries
Description :
A set of classes for connecting to LDAP servers and working with directory
objects.
--------------------------------------------------------------------------------
Update Information:
**Horde_Ldap 2.4.1** * [jan] Avoid unnecessary binds.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update php-horde-Horde-Ldap' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-5775ef92b5
2018-02-14 17:01:43.077748
--------------------------------------------------------------------------------
Name : php-horde-Horde-Socket-Client
Product : Fedora EPEL 6
Version : 2.1.2
Release : 1.el6
URL : http://pear.horde.org
Summary : Horde Socket Client
Description :
Provides abstract class for use in creating PHP network socket clients.
--------------------------------------------------------------------------------
Update Information:
**Horde_Socket_Client 2.1.2** * [mjr] Fix issues when retrying a failed
connection (PR #1, Antoine Desch��nes).
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update php-horde-Horde-Socket-Client' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-41888d4ac2
2018-02-14 17:01:43.077727
--------------------------------------------------------------------------------
Name : youtube-dl
Product : Fedora EPEL 6
Version : 2018.01.21
Release : 1.el6
URL : https://yt-dl.org
Summary : A small command-line program to download online videos
Description :
Small command-line program to download videos from YouTube and other sites.
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1529821 - youtube-dl-2018.01.21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1529821
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update youtube-dl' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-a79242a0ec
2018-02-14 17:01:43.077705
--------------------------------------------------------------------------------
Name : fedfind
Product : Fedora EPEL 6
Version : 4.0.0
Release : 1.el6
URL : https://pagure.io/fedora-qa/fedfind
Summary : Fedora compose and image finder
Description :
Fedora Finder finds Fedora. For now, that means it finds Fedora images
- for stable releases, milestone pre-releases, candidate composes, and
nightly composes. The fedfind package provides a simple CLI for showing
image URLs.
--------------------------------------------------------------------------------
Update Information:
This update provides a new major release of fedfind. It is going out to stable
releases as fedfind is used quite extensively in Fedora QA infrastructure, and
we prefer to keep all those deployments on the latest code. The new release also
provides some significant enhancements in correctness checking that will be
useful in these cases. See [the upstream changelog](https://pagure.io/fedora-
qa/fedfind/blob/5713f806517a358a5761aaaff9cfd276f8aeb862/f/CHANGELOG.md) for
more details on the specific changes in this release. Most uses of fedfind (both
CLI and as a Python library) should continue to work unchanged, or with only
minimal changes (mainly because `get_release` can raise some different
exceptions now).
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update fedfind' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-1049ca4872
2018-02-14 17:01:43.077684
--------------------------------------------------------------------------------
Name : GraphicsMagick
Product : Fedora EPEL 6
Version : 1.3.28
Release : 1.el6
URL : http://www.graphicsmagick.org/
Summary : An ImageMagick fork, offering faster image generation and better quality
Description :
GraphicsMagick is a comprehensive image processing package which is initially
based on ImageMagick 5.5.2, but which has undergone significant re-work by
the GraphicsMagick Group to significantly improve the quality and performance
of the software.
--------------------------------------------------------------------------------
Update Information:
Latest stable release, includes many bug and security fixes. See also
http://www.graphicsmagick.org/NEWS.html#january-20-2017
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1473729 - CVE-2017-11102 GraphicsMagick: Input validation failure in ReadOneJNGImage function may cause denial of service [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473729
[ 2 ] Bug #1473741 - CVE-2017-11139 GraphicsMagick: double free vulnerabilities in the [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473741
[ 3 ] Bug #1473752 - CVE-2017-11140 GraphicsMagick: Resource exhaustion denial of service in ReadJPEGImage function [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473752
[ 4 ] Bug #1475454 - CVE-2017-11637 GraphicsMagick: NULL pointer dereference in WritePCLImage() in coders/pcl.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475454
[ 5 ] Bug #1475458 - CVE-2017-11636 GraphicsMagick: Heap based buffer over-write in WriteRGBImage in coders/rgb.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475458
[ 6 ] Bug #1475490 - CVE-2017-11641 GraphicsMagick: Memory Leak in the PersistCache in magick/pixel_cache.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475490
[ 7 ] Bug #1475498 - CVE-2017-11643 GraphicsMagick: Heap based over-write in WriteCMYKImagefunction in coders/cmyk.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475498
[ 8 ] Bug #1484483 - CVE-2017-13147 GraphicsMagick: Allocation failure in ReadMNGImage function in coders/png.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1484483
[ 9 ] Bug #1512038 - CVE-2017-16669 GraphicsMagick: Heap buffer over-write in AcquireCacheNexus function in magick/pixel_cache.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1512038
[ 10 ] Bug #1512049 - CVE-2017-16353 GraphicsMagick: ImageMagick, GraphicsMagick: memory information disclosure in DescribeImage function in magick/describe.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1512049
[ 11 ] Bug #1528037 - CVE-2017-17782 GraphicsMagick: heap-based buffer over-read in ReadOneJNGImage function in coders/png.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1528037
[ 12 ] Bug #1528051 - CVE-2017-17783 GraphicsMagick: heap based buffer over-read in ReadPALMImage in coders/palm.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1528051
[ 13 ] Bug #1529535 - CVE-2017-17915 GraphicsMagick: Memory leak in the function ReadMNGImage in coders/png.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1529535
[ 14 ] Bug #1529557 - CVE-2017-17913 GraphicsMagick: stack-based buffer over-read in WriteWEBPImage in coders/webp.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1529557
[ 15 ] Bug #1529580 - CVE-2017-17912 GraphicsMagick: GraphicsMagick: heap-based buffer over-read in ReadNewsProfile in coders/tiff.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1529580
[ 16 ] Bug #1536951 - CVE-2018-5685 GraphicsMagick: Infinite loop and application hang in coders/bmp.c:ReadBMPImage [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1536951
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update GraphicsMagick' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/ht…
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------