[EPEL-devel] Fedora EPEL 6 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Sun Apr 26 19:37:59 UTC 2015
The following Fedora EPEL 6 Security updates need testing:
Age URL
1099 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
164 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binutils-2.23.51.0.3-1.el6.1
59 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0864/nodejs-0.10.36-3.el6,libuv-0.10.34-1.el6,v8-3.14.5.10-17.el6
25 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1501/strongswan-5.3.0-1.el6
16 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5745/yourls-1.7-3.20150410gitabc7d6c.el6
16 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5742/asterisk-1.8.32.3-1.el6
14 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5759/tor-0.2.5.12-1.el6
11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5801/seamonkey-2.28-5.ESR_31.6.0.el6
11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5690/php-pecl-zendopcache-7.0.5-1.el6
9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5859/cherokee-1.2.103-6.el6
9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5836/mod_proxy_fcgi-2.4.10-1.20150415gitd45a11f.el6
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5964/ikiwiki-3.20150329-1.el6
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6009/dpkg-1.16.16-5.el6
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5933/wordpress-4.1.3-1.el6
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5985/python-crypto2.1-2.1.0-4.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
dpkg-1.16.16-5.el6
drupal7-drush_language-1.5-1.el6
php-patchwork-jsqueeze-2.0.2-1.el6
Details about builds:
================================================================================
dpkg-1.16.16-5.el6 (FEDORA-EPEL-2015-6009)
Package maintenance system for Debian Linux
--------------------------------------------------------------------------------
Update Information:
Fix build for all versions, previous try wasn't correct and back with dpkg-perl-libexecdir.patch
Security update to 1.16.16
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 26 2015 Sérgio Basto <sergio at serjux.com> - 1.16.16-5
- Fix build for all versions, previous try wasn't correct and back with
dpkg-perl-libexecdir.patch .
- Added dpkg-perl-libexecdir.epel6.patch just for fix epel <= 6 .
- Cleaned some trailing whitespaces.
- Use _localstatedir instead /var .
* Sat Apr 25 2015 Sérgio Basto <sergio at serjux.com> - 1.16.16-4
- Revert location of dpkg/parsechangelog .
- Fix build for all versions, including epel-6 .
* Tue Apr 21 2015 Sérgio Basto <sergio at serjux.com> - 1.16.16-3
- Better upstream URL .
* Tue Apr 21 2015 Sérgio Basto <sergio at serjux.com> - 1.16.16-2
- Some fixes and added support for epel-6 .
- Removed Patch0: dpkg-perl-libexecdir.patch .
- move /usr/lib64/dpkg/parsechangelog to archable package .
* Sun Apr 19 2015 Sérgio Basto <sergio at serjux.com> - 1.16.16-1
- Security update to 1.16.16
* Sat Aug 16 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.16.15-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Mon Jun 23 2014 Sérgio Basto <sergio at serjux.com> - 1.16.15-1
- Update to 1.16.15, fixes: CVE-2014-3864, CVE-2014-3865 , rhbz #1103026
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.16.14-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat May 10 2014 Sérgio Basto <sergio at serjux.com> - 1.16.14-1
- Update to 1.16.14, fixes CVE-2014-0471, rhbz #1092210 .
* Wed Oct 16 2013 Sérgio Basto <sergio at serjux.com> - 1.16.12-1
- Update to 1.16.12
- added /etc/dpkg/origins/... , by Oron Peled, rhbz #973832
- fix few files listed twice.
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.16.10-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 17 2013 Petr Pisar <ppisar at redhat.com> - 1.16.10-7
- Perl 5.18 rebuild
* Mon Jul 1 2013 Sérgio Basto <sergio at serjux.com> - 1.16.10-6
- add support to logrotate, by Oron Peled, rhbz #979378
- added some new %doc and debian/copyright, by Oron Peled, rhbz #979378
- rpmlint cleanups, by Oron Peled, rhbz #979378
* Sun Jun 30 2013 Sérgio Basto <sergio at serjux.com> - 1.16.10-5
- rhbz #979378
- Obsolete the old dpkg-devel.noarch (replaced by dpkg-dev)
(Obsoletes: dpkg-devel < 1.16)
- Readd to dpkg-perl: Requires: dpkg = <version>-<release>
- Patchset Signed-off-by: Oron Peled
- [PATCH 1/4] move dpkg.cfg from /etc to /etc/dpkg
- [PATCH 2/4] fix some pkgdatadir, pkgconfdir file locations
- [PATCH 3/4] move "dpkg-dev.mo" files to dpkg-perl
- [PATCH 4/4] minor fix to dpkg-perl ownerships
- move from dpkg to dpkg-dev, rhbz #979378
- dpkg-mergechangelogs and its man-pages
- dpkg-buildflags and its man-pages
- remove man pages dups, also rhbz #979378
dpkg-architecture.1.gz
dpkg-buildflags.1.gz
dpkg-buildpackage.1.gz
dpkg-checkbuilddeps.1.gz
dpkg-distaddfile.1.gz
dpkg-genchanges.1.gz
dpkg-gencontrol.1.gz
dpkg-gensymbols.1.gz
dpkg-mergechangelogs.1.gz
dpkg-name.1.gz
dpkg-parsechangelog.1.gz
dpkg-scanpackages.1.gz
dpkg-scansources.1.gz
dpkg-shlibdeps.1.gz
dpkg-source.1.gz
dpkg-vendor.1.gz
* Sun Jun 2 2013 Sérgio Basto <sergio at serjux.com> - 1.16.10-4
- provided virtual -static package rhbz #967215
* Tue May 21 2013 Sérgio Basto <sergio at serjux.com> - 1.16.10-3
- Copied from dpkg-1.16.10/debian/dpkg.postinst, on post install, runs create_database, create_logfile.
- Based on dpkg.install and dselect.install
created some missing directories in /var/lib/dpkg and in /etc/dpkg .
- Drop Requirement dpkg of dpkg-perl.
- Fix a FIXME , all perls moved to dpkg-perl.
- TODO: set logrotates, see debian/dpkg.logrotate.
* Fri May 17 2013 Sérgio Basto <sergio at serjux.com> - 1.16.10-2
- apply fix by Oron Peled bug #648384, adds dpkg-perl as noarch
* Thu May 16 2013 Sérgio Basto <sergio at serjux.com> - 1.16.10-1
- Add BR perl-podlators for pod2man in F19 development or just BR perl
- Add some other importants BR: doxygen flex xz-devel po4a dotconf-devel
- Fix packages names which are debianized, so packages will be: dpkg-perl
and dpkg-dev (and dpkg-devel for headers of dpkg).
- Some clean ups.
- dpkg-perl must be arched.
* Sat May 4 2013 Oron Peled <oron at actcom.co.il>
- Bump version to Debian/wheezy
- Call autoreconf: make sure we don't reuse Debian packaged
stuff (config.guess, etc.)
- CVE patches not needed -- is already fixed upstream
- Removed dpkg-change-libdir.patch:
- Patching Makefile.in is wrong (can patch Makefile.am with autoreconf)
- Less patch churn for non-critical paths
- Accept /usr/lib/dpkg/parsechangelog
- Accept /usr/lib/dpkg/methods
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.15.5.6-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.15.5.6-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.15.5.6-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.15.5.6-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1162166 - CVE-2014-8625 dpkg: format string vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1162166
[ 2 ] Bug #1092210 - CVE-2014-0471 dpkg: path traversal when unpacking a source package
https://bugzilla.redhat.com/show_bug.cgi?id=1092210
[ 3 ] Bug #1103026 - CVE-2014-3864 CVE-2014-3865 dpkg: multiple directory traversal flaws in dpkg-source
https://bugzilla.redhat.com/show_bug.cgi?id=1103026
[ 4 ] Bug #1210748 - CVE-2015-0840 dpkg: source package integrity verification bypass
https://bugzilla.redhat.com/show_bug.cgi?id=1210748
--------------------------------------------------------------------------------
================================================================================
drupal7-drush_language-1.5-1.el6 (FEDORA-EPEL-2015-6011)
Drush language commands
--------------------------------------------------------------------------------
Update Information:
## 7.x-1.5
* Issue #2477163 by freekvr, g.oechsler, nielsdefeyter: Add refresh strings command.
* Issue #2477181 by nielsdefeyter, lendude: Refactor module to eliminate translations interface inconsistencies
## 7.x-1.4
* Issue #2463107 by derhasi: Support for filter and sort export
* Issue #2476523 by nielsdefeyter: Test if group parameter is valid before importing
* Issue #2383223 by nielsdefeyter: export all text-group in separate po files
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 25 2015 Shawn Iwinski <shawn.iwinski at gmail.com> - 1.5-1
- Updated to 1.5 (BZ #1215292)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1215292 - drupal7-drush_language-1.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1215292
--------------------------------------------------------------------------------
================================================================================
php-patchwork-jsqueeze-2.0.2-1.el6 (FEDORA-EPEL-2015-6008)
Efficient JavaScript minification
--------------------------------------------------------------------------------
Update Information:
This update provides the latest upstream release of jsqueeze, with a single bug fix (to case statement parsing) which was not in the previous build.
--------------------------------------------------------------------------------
More information about the epel-devel
mailing list