EPEL Fedora 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Wed Apr 2 18:23:13 UTC 2014


The following Fedora EPEL 5 Security updates need testing:
 Age  URL
 710  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
 165  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11893/libguestfs-1.20.12-1.el5
  45  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0581/augeas-1.2.0-1.el5
  17  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0840/mediawiki119-1.19.13-1.el5
  11  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0918/php-pecl-Fileinfo-1.0.4-3.el5,php-pecl-zip-1.8.10-3.el5,php-extras-5.1.6-6.el5
   3  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0984/munin-2.0.20-1.el5
   3  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-0988/libyaml-0.1.2-7.el5
   0  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1041/mod_security-2.6.8-5.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    duply-1.7.1-1.el5
    iperf3-3.0.3-2.el5
    mod_security-2.6.8-5.el5

Details about builds:


================================================================================
 duply-1.7.1-1.el5 (FEDORA-EPEL-2014-0931)
 Wrapper for duplicity
--------------------------------------------------------------------------------
Update Information:

Update to the latest released version.

Changes in version 1.7.0:
- disabled gpg key id plausibility check, too many valid possibilities
- featreq 7 "Halt if precondition fails": added and(+), or(-) batch command(separator) support
- featreq 26 "pre/post script with shebang line": if a script is flagged executable it's executed in a subshell now as opposed to sourced to bash, which is the default
- bugfix: do not check if dpbx, swift credentials are set anymore
- bugfix: properly escape profile name, archdir if used as arguments
- add DUPL_PRECMD conf setting for use with e.g. trickle

Changes in version 1.7.1:
- bugfix: purge-* commands renamed to purgeFull, purgeIncr due to  incompatibility with new minus batch separator
--------------------------------------------------------------------------------
ChangeLog:

* Tue Apr  1 2014 Thomas Moschny <thomas.moschny at gmx.de> - 1.7.1-1
- Update to 1.7.1
- Update %description.
* Fri Mar 21 2014 Thomas Moschny <thomas.moschny at gmx.de> - 1.7.0-1
- Update to 1.7.0.
--------------------------------------------------------------------------------


================================================================================
 iperf3-3.0.3-2.el5 (FEDORA-EPEL-2014-1036)
 Measurement tool for TCP/UDP bandwidth performance
--------------------------------------------------------------------------------
Update Information:

Moved static library to devel section
Update to 3.0.3 and added devel rpm support
Update to 3.0.3 and added devel rpm support
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr  2 2014 Susant Sahani <ssahani at redhat.com> 3.0.3-2
- Moved static library to devel section only .
* Sun Mar 30 2014 Susant Sahani <ssahani at redhat.com> 3.0.3-1
- Update to 3.0.3 and added devel rpm support
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1081486 - iperf3-3.0.3 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1081486
--------------------------------------------------------------------------------


================================================================================
 mod_security-2.6.8-5.el5 (FEDORA-EPEL-2014-1041)
 Security module for the Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:

Fix Chunked string case sensitive issue (CVE-2013-5705, RHBZ #1082904 #1082905 #1082906)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Apr  1 2014 Athmane Madjoudj <athmane at fedoraproject.org>  2.6.8-5
- Fix Chunked string case sensitive issue (CVE-2013-5705, RHBZ #1082904 #1082905 #1082906)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1082904 - CVE-2013-5705 mod_security: bypass of intended rules via chunked requests
        https://bugzilla.redhat.com/show_bug.cgi?id=1082904
--------------------------------------------------------------------------------



More information about the epel-devel mailing list