[SECURITY] Fedora EPEL 6 Update: tor-0.2.9.15-1.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-4bcfff2d5e
2018-03-24 03:08:19.168085
--------------------------------------------------------------------------------
Name : tor
Product : Fedora EPEL 6
Version : 0.2.9.15
Release : 1.el6
URL : https://www.torproject.org
Summary : Anonymizing overlay network for TCP
Description :
The Tor network is a group of volunteer-operated servers that allows people to
improve their privacy and security on the Internet. Tor's users employ this
network by connecting through a series of virtual tunnels rather than making a
direct connection, thus allowing both organizations and individuals to share
information over public networks without compromising their privacy. Along the
same line, Tor is an effective censorship circumvention tool, allowing its
users to reach otherwise blocked destinations or content. Tor can also be used
as a building block for software developers to create new communication tools
with built-in privacy features.
This package contains the Tor software that can act as either a server on the
Tor network, or as a client to connect to the Tor network.
--------------------------------------------------------------------------------
Update Information:
Update to latest version. Security-Fixes TROVE-2018-001, TROVE-2018-002,
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1553355 - CVE-2018-0490 tor: NULL pointer dereference via a misformatted relay descriptor
https://bugzilla.redhat.com/show_bug.cgi?id=1553355
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update tor' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora EPEL 7 Update: gpaste-3.22.6-1.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-2a0f117f18
2018-03-23 18:22:52.073547
--------------------------------------------------------------------------------
Name : gpaste
Product : Fedora EPEL 7
Version : 3.22.6
Release : 1.el7
URL : https://github.com/Keruspe/GPaste
Summary : Clipboard management system
Description :
GPaste is a clipboard management system.
This package provides the D-Bus service and the command-line client.
--------------------------------------------------------------------------------
Update Information:
* fix regression in gnome-shell extension * fix memory leaks in images support *
silence a warnings in the gnome-shell extension
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1552961 - gpaste-3.26.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1552961
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update gpaste' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora EPEL 6 Update: perl-Image-ExifTool-10.80-1.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-00e0248288
2018-03-22 16:42:11.904837
--------------------------------------------------------------------------------
Name : perl-Image-ExifTool
Product : Fedora EPEL 6
Version : 10.80
Release : 1.el6
URL : http://www.sno.phy.queensu.ca/%7Ephil/exiftool/
Summary : Utility for reading and writing image meta info
Description :
ExifTool is a Perl module with an included command-line application for
reading and writing meta information in image, audio, and video files.
It reads EXIF, GPS, IPTC, XMP, JFIF, MakerNotes, GeoTIFF, ICC Profile,
Photoshop IRB, FlashPix, AFCP, and ID3 meta information from JPG, JP2,
TIFF, GIF, PNG, MNG, JNG, MIFF, EPS, PS, AI, PDF, PSD, BMP, THM, CRW,
CR2, MRW, NEF, PEF, ORF, DNG, and many other types of images. ExifTool
also extracts information from the maker notes of many digital cameras
by various manufacturers including Canon, Casio, FujiFilm, GE, HP,
JVC/Victor, Kodak, Leaf, Minolta/Konica-Minolta, Nikon, Olympus/Epson,
Panasonic/Leica, Pentax/Asahi, Reconyx, Ricoh, Samsung, Sanyo,
Sigma/Foveon, and Sony.
--------------------------------------------------------------------------------
Update Information:
Update to 10.80 (latest stable).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1550526 - Upgrade perl-Image-ExifTool to 10.80
https://bugzilla.redhat.com/show_bug.cgi?id=1550526
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update perl-Image-ExifTool' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
[SECURITY] Fedora EPEL 6 Update: rootsh-1.5.3-17.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-752a7c9ad4
2018-03-22 16:42:11.904782
--------------------------------------------------------------------------------
Name : rootsh
Product : Fedora EPEL 6
Version : 1.5.3
Release : 17.el6
URL : http://sourceforge.net/projects/rootsh
Summary : Shell wrapper for auditing
Description :
Rootsh is a wrapper for shells which logs all echoed keystrokes and
terminal output to a file and/or to syslog. Its main purpose is the
auditing of users who need a shell with root privileges. They start
rootsh through the sudo mechanism.
--------------------------------------------------------------------------------
Update Information:
Fix permissions on rootsh log directory to limit it to root.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1526255 - rootsh log directory is world readable
https://bugzilla.redhat.com/show_bug.cgi?id=1526255
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update rootsh' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora EPEL 7 Update: knot-resolver-2.1.1-1.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-e9a6e2deb9
2018-03-22 16:36:23.653577
--------------------------------------------------------------------------------
Name : knot-resolver
Product : Fedora EPEL 7
Version : 2.1.1
Release : 1.el7
URL : https://www.knot-resolver.cz/
Summary : Caching full DNS Resolver
Description :
The Knot DNS Resolver is a caching full resolver implementation written in C
and LuaJIT, including both a resolver library and a daemon. Modular
architecture of the library keeps the core tiny and efficient, and provides
a state-machine like API for extensions.
The package is pre-configured as local caching resolver.
To start using it, start a single kresd instance:
If you run into issues with activation of the service or its sockets, either
update your selinux-policy package or turn off selinux (setenforce 0).
https://bugzilla.redhat.com/show_bug.cgi?id=1366968
https://bugzilla.redhat.com/show_bug.cgi?id=1543049
--------------------------------------------------------------------------------
Update Information:
Knot Resolver 2.1.1 (2018-02-23) ================================ Bugfixes
-------- - when iterating, avoid unnecessary queries for NS in insecure parent.
This problem worsened in 2.0.0. (#246) - prevent UDP packet leaks when using TLS
forwarding - fix the hints module also on some other systems, e.g. Gentoo.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update knot-resolver' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora EPEL 7 Update: perl-Image-ExifTool-10.80-1.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-97782e8897
2018-03-22 16:36:23.653535
--------------------------------------------------------------------------------
Name : perl-Image-ExifTool
Product : Fedora EPEL 7
Version : 10.80
Release : 1.el7
URL : http://www.sno.phy.queensu.ca/%7Ephil/exiftool/
Summary : Utility for reading and writing image meta info
Description :
ExifTool is a Perl module with an included command-line application for
reading and writing meta information in image, audio, and video files.
It reads EXIF, GPS, IPTC, XMP, JFIF, MakerNotes, GeoTIFF, ICC Profile,
Photoshop IRB, FlashPix, AFCP, and ID3 meta information from JPG, JP2,
TIFF, GIF, PNG, MNG, JNG, MIFF, EPS, PS, AI, PDF, PSD, BMP, THM, CRW,
CR2, MRW, NEF, PEF, ORF, DNG, and many other types of images. ExifTool
also extracts information from the maker notes of many digital cameras
by various manufacturers including Canon, Casio, FujiFilm, GE, HP,
JVC/Victor, Kodak, Leaf, Minolta/Konica-Minolta, Nikon, Olympus/Epson,
Panasonic/Leica, Pentax/Asahi, Reconyx, Ricoh, Samsung, Sanyo,
Sigma/Foveon, and Sony.
--------------------------------------------------------------------------------
Update Information:
Update to 10.80 (latest stable).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1550526 - Upgrade perl-Image-ExifTool to 10.80
https://bugzilla.redhat.com/show_bug.cgi?id=1550526
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update perl-Image-ExifTool' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora EPEL 7 Update: srecord-1.64-14.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-33a5097bf2
2018-03-22 16:36:23.653492
--------------------------------------------------------------------------------
Name : srecord
Product : Fedora EPEL 7
Version : 1.64
Release : 14.el7
URL : http://srecord.sourceforge.net/
Summary : Manipulate EPROM load files
Description :
The SRecord package is a collection of powerful tools for manipulating
EPROM load files.
- The SRecord package understands a number of file formats: Motorola
S-Record, Intel, Tektronix, Binary. These file formats may be read
and written. Also C array definitions, for output only.
- The SRecord package has a number of tools: srec_cat for copying and
and converting files, srec_cmp for comparing files and srec_info for
printing summaries.
- The SRecord package has a number for filters: checksum to add checksums
to the data, crop to keep address ranges, exclude to remove address
ranges, fill to plug holes in the data, length to insert the data
length, maximum to insert the data address maximum, minimum to insert
the data address minimum, offset to adjust addresses, and split for
wide data buses and memory striping.
More than one filter may be applied to each input file. Different filters
may be applied to each input file. All filters may be applied to all
file formats.
--------------------------------------------------------------------------------
Update Information:
Build for EPEL7.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update srecord' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
[SECURITY] Fedora EPEL 7 Update: rootsh-1.5.3-17.el7
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-73ee944e65
2018-03-22 16:36:23.653396
--------------------------------------------------------------------------------
Name : rootsh
Product : Fedora EPEL 7
Version : 1.5.3
Release : 17.el7
URL : http://sourceforge.net/projects/rootsh
Summary : Shell wrapper for auditing
Description :
Rootsh is a wrapper for shells which logs all echoed keystrokes and
terminal output to a file and/or to syslog. Its main purpose is the
auditing of users who need a shell with root privileges. They start
rootsh through the sudo mechanism.
--------------------------------------------------------------------------------
Update Information:
Fix permissions on rootsh log directory to limit it to root.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1526255 - rootsh log directory is world readable
https://bugzilla.redhat.com/show_bug.cgi?id=1526255
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update rootsh' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora EPEL 6 Update: python-copr-1.87-1.el6
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-39bbb44ff0
2018-03-21 16:52:32.339729
--------------------------------------------------------------------------------
Name : python-copr
Product : Fedora EPEL 6
Version : 1.87
Release : 1.el6
URL : https://pagure.io/copr/copr
Summary : Python interface for Copr
Description :
COPR is lightweight build system. It allows you to create new project in WebUI,
and submit new builds and COPR will create yum repository from latest builds.
This package contains python interface to access Copr service. Mostly useful
for developers only.
--------------------------------------------------------------------------------
Update Information:
- add missing frontend states to clientv2 ---- - remove Group tag - build
python2-copr package conditionally - Remove unnecessary shebang sed in copr-
cli.spec and python-copr.spec - fix deps in spec - new custom source method -
use username from config if nothing is explicitly specified - remove outdated
modularity code - require to specify project when building module
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update python-copr' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month