[EPEL-devel] Fedora EPEL 6 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Tue May 26 21:32:08 UTC 2015
The following Fedora EPEL 6 Security updates need testing:
Age URL
1130 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6
194 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binutils-2.23.51.0.3-1.el6.1
55 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1501/strongswan-5.3.0-1.el6
46 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5742/asterisk-1.8.32.3-1.el6
26 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6089/drupal7-views-3.11-1.el6
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6299/zarafa-7.1.12-2.el6
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6361/torque-4.2.10-3.el6
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6294/hostapd-2.0-6.el6
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6400/ntfs-3g-2015.3.14-2.el6
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6421/php-ZendFramework-1.12.13-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
csdiff-1.2.3-1.el6
csmock-1.8.1-1.el6
getdns-0.2.0-1.el6
libtorrent-0.13.4-3.el6
mozilla-requestpolicy-1.0-0.6.20150522git631b52.el6
nfs-ganesha-2.2.0-2.el6
ntfs-3g-2015.3.14-2.el6
php-ZendFramework-1.12.13-1.el6
php-google-apiclient-1.1.4-1.el6
php-horde-Horde-Crypt-Blowfish-1.1.0-1.el6
php-horde-Horde-Date-2.1.0-1.el6
php-horde-Horde-Mime-2.9.1-1.el6
php-horde-Horde-Share-2.0.7-1.el6
php-pimple1-1.1.1-4.el6
php-znerol-php-stringprep-0-0.1.20150519git804b0d5.el6
python-bugzilla-1.2.1-1.el6
python-regex-2015.05.10-1.el6
python-salttesting-2015.5.8-4.el6
rc-1.7.4-1.el6
tor-0.2.6.8-1.el6
Details about builds:
================================================================================
csdiff-1.2.3-1.el6 (FEDORA-EPEL-2015-6398)
Non-interactive tools for processing code scan results in plain-text
--------------------------------------------------------------------------------
Update Information:
- update to latest upstream bugfix release (1.2.3)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 26 2015 Kamil Dudka <kdudka at redhat.com> 1.2.3-1
- update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
csmock-1.8.1-1.el6 (FEDORA-EPEL-2015-6409)
A mock wrapper for Static Analysis tools
--------------------------------------------------------------------------------
Update Information:
- update to latest upstream bugfix release (1.8.1)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 26 2015 Kamil Dudka <kdudka at redhat.com> 1.8.1-1
- update to latest upstream
--------------------------------------------------------------------------------
================================================================================
getdns-0.2.0-1.el6 (FEDORA-EPEL-2015-6423)
Modern asynchronous API to the DNS
--------------------------------------------------------------------------------
Update Information:
Updated to 0.2.0 which includes full DNS over TLS support
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 25 2015 Paul Wouters <pwouters at redhat.com> - 0.2.0-1
- Updated to 0.2.0 which includes full DNS over TLS support
- Updated spurious execute bit fixes
- Added explicit --with-* lines to make dependancies clear
--------------------------------------------------------------------------------
================================================================================
libtorrent-0.13.4-3.el6 (FEDORA-EPEL-2015-6383)
BitTorrent library with a focus on high performance & good code
--------------------------------------------------------------------------------
Update Information:
Rebuild for rtorrent update
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 24 2015 Adam Huffman <bloch at verdurin.com> - 0.13.4-3
- Rebuild for rtorrent update
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.13.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun May 25 2014 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.13.4-1
- Update to 0.13.4
- Drop patch - no longer needed
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.13.3-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Sat Mar 23 2013 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.13.3-4
- Bad patch name. Paste error
* Sat Mar 23 2013 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.13.3-3
- Add patch to support ARM 64 support
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.13.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Thu Oct 25 2012 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.13.3-1
- Update to latest upstream version
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.13.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Mon Apr 23 2012 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.13.2-1
- Update to 0.13.2
* Tue Apr 3 2012 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.13.1-1
- Update to 0.13.1
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.13.0-3
- Rebuilt for c++ ABI breakage
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.13.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Sun Dec 18 2011 Conrad Meyer <konrad at tylerc.org> - 0.13.0-1
- Bump to latest upstream release
* Sat Jul 2 2011 Conrad Meyer <konrad at tylerc.org> - 0.12.9-1
- Bump to latest upstream release
* Thu May 26 2011 Conrad Meyer <konrad at tylerc.org> - 0.12.8-1
- Bump to latest upstream release
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.12.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Wed Oct 27 2010 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 0.12.7-1
- update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
mozilla-requestpolicy-1.0-0.6.20150522git631b52.el6 (FEDORA-EPEL-2015-6412)
Firefox and Seamonkey extension that gives you control over cross-site requests
--------------------------------------------------------------------------------
Update Information:
- **Update to Beta9.3**
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Antonio Trande <sagitterATfedoraproject.org> - 1.0-0.6.20150522git631b52
- Update to Beta9.3
* Thu May 7 2015 Antonio Trande <sagitterATfedoraproject.org> - 1.0-0.5.20150507git5bff8c
- Update to Beta9.2
--------------------------------------------------------------------------------
================================================================================
nfs-ganesha-2.2.0-2.el6 (FEDORA-EPEL-2015-6422)
NFS-Ganesha is a NFS Server running in user space
--------------------------------------------------------------------------------
Update Information:
GA, %license
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 15 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-2
- %license
* Tue Apr 21 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-1
- 2.2.0 GA
* Mon Apr 20 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.12rc-final
- 2.2.0-0.12rc-final
* Mon Apr 13 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.11rc8
- 2.2.0-0.11rc8
* Mon Apr 6 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.10rc7
- 2.2.0-0.10rc7
* Mon Mar 30 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.9rc6
- 2.2.0-0.9rc6
* Sun Mar 22 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.8rc5
- 2.2.0-0.8rc5
* Tue Mar 17 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.7rc4
- ntirpc-1.2.1.tar.gz
* Tue Mar 17 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.6rc4
- updated ntirpc-1.2.0.tar.gz
* Sun Mar 15 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.5rc4
- 2.2.0-0.5rc4
* Mon Feb 23 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.4rc3
- 2.2.0-0.4rc3
* Mon Feb 16 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.3rc2
- subpackage Requires: nfs-ganesha = %{version}-%{release}
* Mon Feb 16 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.2rc2
- 2.2.0-0.2rc2
* Fri Feb 13 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.2.0-0.1rc1
- 2.2.0-0.1rc1
- nfs-ganesha.spec based on upstream
* Thu Feb 12 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.1.0-14
- Fedora 23/rawhide build fixes
- Ceph restored in EPEL
* Mon Jan 19 2015 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.1.0-13
- Ceph retired from EPEL 7
* Thu Nov 6 2014 Kaleb S. KEITHLEY <kkeithle at redhat.com> 2.1.0-12
- rebuild after libnfsidmap symbol version revert
--------------------------------------------------------------------------------
================================================================================
ntfs-3g-2015.3.14-2.el6 (FEDORA-EPEL-2015-6400)
Linux NTFS userspace driver
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2015-3202
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Tom Callaway <spot at fedoraproject.org> 2:2015.3.14-2
- fix CVE-2015-3202
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1224103 - CVE-2015-3202 fuse: incorrect filtering of environment variables leading to privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=1224103
--------------------------------------------------------------------------------
================================================================================
php-ZendFramework-1.12.13-1.el6 (FEDORA-EPEL-2015-6421)
Leading open-source PHP framework
--------------------------------------------------------------------------------
Update Information:
**Zend Framework 1.12.13**
* 567: Cast int and float to string when creating headers
**Zend Framework 1.12.12**
* 493: PHPUnit not being installed
* 511: Add PATCH to the list of allowed methods in Zend_Controller_Request_HttpTestCase
* 513: Save time and space when cloning PHPUnit
* 515: !IE conditional comments bug
* 516: Zend_Locale does not honor parentLocale configuration
* 518: Run travis build also on PHP 7 builds
* 534: Failing unit test: Zend_Validate_EmailAddressTest::testIdnHostnameInEmaillAddress
* 536: Zend_Measure_Number convert some decimal numbers to roman with space char
* 537: Extend view renderer controller fix (#440)
* 540: Fix PHP 7 BC breaks in Zend_XmlRpc/Amf_Server
* 541: Fixed errors in tests on PHP7
* 542: Correctly reset the sub-path when processing routes
* 545: Fixed path delimeters being stripped by chain routes affecting later routes
* 546: TravisCI: Skip memcache(d) on PHP 5.2
* 547: Session Validators throw 'general' Session Exception during Session start
* 550: Notice "Undefined index: browser_version"
* 557: doc: Zend Framework Dependencies table unreadable
* 559: Fixes a typo in Zend_Validate messages for SK
* 561: Zend_Date not expected year
* 564: Zend_Application tries to load ZendX_Application_Resource_FrontController during instantiation
**Security**
* **ZF2015-04**: Zend_Mail and Zend_Http were both susceptible to CRLF Injection Attack vectors (for HTTP, this is often referred to as HTTP Response Splitting). Both components were updated to perform header value validations to ensure no values contain characters not detailed in their corresponding specifications, and will raise exceptions on detection. Each also provides new facilities for both validating and filtering header values prior to injecting them into header classes. If you use either Zend_Mail or Zend_Http, we recommend upgrading immediately.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 20 2015 Remi Collet <RPMS at FamilleCollet.com> - 1.12.13-1
- update to 1.12.13
- add composer provides
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1215712 - CVE-2015-3154 php-ZendFramework2: ZF2015-04: Potential header and mail injection vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1215712
--------------------------------------------------------------------------------
================================================================================
php-google-apiclient-1.1.4-1.el6 (FEDORA-EPEL-2015-6432)
Client library for Google APIs
--------------------------------------------------------------------------------
Update Information:
## 1.1.4
Small update to use the base path from a service class if provided.
## 1.1.3
Rollup release to pull in latest generated service classes and community contributions.
Library changes include:
* exponential backoff and retry support
* support for new format service accounts
* autoloading improvements
* support for raw media responses
* compute engine auth support
* many tidy ups and code style fixes
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Shawn Iwinski <shawn.iwinski at gmail.com> - 1.1.4-1
- Updated to 1.1.4 (BZ #1222260)
- Added spec license header
- Removed autoload patch
- Added option to build without tests
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1222260 - php-google-apiclient-1.1.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1222260
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Crypt-Blowfish-1.1.0-1.el6 (FEDORA-EPEL-2015-6417)
Blowfish Encryption Library
--------------------------------------------------------------------------------
Update Information:
**Horde_Crypt_Blowfish 1.1.0**
* [mms] Add Horde_Crypt_Blowfish_Pbkdf2.
**Horde_Date 2.1.0**
* [jan] Support monthly recurrence by last weekday (Request #1922).
* [jan] Support negative occurrences in Horde_Date#setNthWeekday().
* [jan] Add Galician translation.
**Horde_Mime 2.9.1**
* [mms] Correctly output MIME headers when generating multipart/digest parts (RFC 2047 [5.1.5]).
**Horde_Share 2.0.7**
* [jan] Fix returning user and group permissions for system shares using the SQLNG driver.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Remi Collet <remi at fedoraproject.org> - 1.1.0-1
- Update to 1.1.0
- add provides php-composer(horde/horde-crypt-blowfish)
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Date-2.1.0-1.el6 (FEDORA-EPEL-2015-6417)
Horde Date package
--------------------------------------------------------------------------------
Update Information:
**Horde_Crypt_Blowfish 1.1.0**
* [mms] Add Horde_Crypt_Blowfish_Pbkdf2.
**Horde_Date 2.1.0**
* [jan] Support monthly recurrence by last weekday (Request #1922).
* [jan] Support negative occurrences in Horde_Date#setNthWeekday().
* [jan] Add Galician translation.
**Horde_Mime 2.9.1**
* [mms] Correctly output MIME headers when generating multipart/digest parts (RFC 2047 [5.1.5]).
**Horde_Share 2.0.7**
* [jan] Fix returning user and group permissions for system shares using the SQLNG driver.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Remi Collet <remi at fedoraproject.org> - 2.1.0-1
- Update to 2.1.0
- add provides php-composer(horde/horde-date)
- raise dependency on Horde_Translation 2.2.0
- enable test suite
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Mime-2.9.1-1.el6 (FEDORA-EPEL-2015-6417)
Horde MIME Library
--------------------------------------------------------------------------------
Update Information:
**Horde_Crypt_Blowfish 1.1.0**
* [mms] Add Horde_Crypt_Blowfish_Pbkdf2.
**Horde_Date 2.1.0**
* [jan] Support monthly recurrence by last weekday (Request #1922).
* [jan] Support negative occurrences in Horde_Date#setNthWeekday().
* [jan] Add Galician translation.
**Horde_Mime 2.9.1**
* [mms] Correctly output MIME headers when generating multipart/digest parts (RFC 2047 [5.1.5]).
**Horde_Share 2.0.7**
* [jan] Fix returning user and group permissions for system shares using the SQLNG driver.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Remi Collet <remi at fedoraproject.org> - 2.9.1-1
- Update to 2.9.1
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Share-2.0.7-1.el6 (FEDORA-EPEL-2015-6417)
Horde Shared Permissions System
--------------------------------------------------------------------------------
Update Information:
**Horde_Crypt_Blowfish 1.1.0**
* [mms] Add Horde_Crypt_Blowfish_Pbkdf2.
**Horde_Date 2.1.0**
* [jan] Support monthly recurrence by last weekday (Request #1922).
* [jan] Support negative occurrences in Horde_Date#setNthWeekday().
* [jan] Add Galician translation.
**Horde_Mime 2.9.1**
* [mms] Correctly output MIME headers when generating multipart/digest parts (RFC 2047 [5.1.5]).
**Horde_Share 2.0.7**
* [jan] Fix returning user and group permissions for system shares using the SQLNG driver.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Remi Collet <remi at fedoraproject.org> - 2.0.7-1
- Update to 2.0.7
- add provides php-composer(horde/horde-share)
- raise dependency on Horde_Translation 2.2.0
--------------------------------------------------------------------------------
================================================================================
php-pimple1-1.1.1-4.el6 (FEDORA-EPEL-2015-6406)
A simple dependency injection container for PHP
--------------------------------------------------------------------------------
Update Information:
Pimple is a small dependency injection container for PHP that consists of
just one file and one class.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1222272 - Review Request: php-pimple1 - A simple dependency injection container for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1222272
--------------------------------------------------------------------------------
================================================================================
php-znerol-php-stringprep-0-0.1.20150519git804b0d5.el6 (FEDORA-EPEL-2015-6384)
Implementation of RFC 3454 Preparation of Internationalized Strings
--------------------------------------------------------------------------------
Update Information:
Implementation of RFC 3454 Preparation of Internationalized Strings.
See: http://tools.ietf.org/html/rfc3454
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1222794 - Review Request: php-znerol-php-stringprep - Implementation of RFC 3454 Preparation of Internationalized Strings
https://bugzilla.redhat.com/show_bug.cgi?id=1222794
--------------------------------------------------------------------------------
================================================================================
python-bugzilla-1.2.1-1.el6 (FEDORA-EPEL-2015-6429)
A python library and tool for interacting with Bugzilla
--------------------------------------------------------------------------------
Update Information:
* Rebased to version 1.2.1
* bin/bugzilla: Add --ensure-logged-in option
* Fix get_products with bugzilla.redhat.com
* A few other minor improvements
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 22 2015 Cole Robinson <crobinso at redhat.com> - 1.2.1-1
- Rebased to version 1.2.1
- bin/bugzilla: Add --ensure-logged-in option
- Fix get_products with bugzilla.redhat.com
- A few other minor improvements
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1214661 - component owners inaccessible due to 'Product.get_products' was not found
https://bugzilla.redhat.com/show_bug.cgi?id=1214661
--------------------------------------------------------------------------------
================================================================================
python-regex-2015.05.10-1.el6 (FEDORA-EPEL-2015-6407)
Alternative regular expression module, to replace re
--------------------------------------------------------------------------------
Update Information:
Update to the latest stable version 2015.05.10.
--------------------------------------------------------------------------------
ChangeLog:
* Sat May 23 2015 Thomas Moschny <thomas.moschny at gmx.de> - 2015.05.10-1
- Update to 2015.05.10.
--------------------------------------------------------------------------------
================================================================================
python-salttesting-2015.5.8-4.el6 (FEDORA-EPEL-2015-6387)
Testing library for SaltStack projects
--------------------------------------------------------------------------------
Update Information:
Added missing runtime deps
--------------------------------------------------------------------------------
================================================================================
rc-1.7.4-1.el6 (FEDORA-EPEL-2015-6413)
Re-implementation for Unix of the Plan 9 shell
--------------------------------------------------------------------------------
Update Information:
rc 1.7.4
========
* Licensing: due to GPL compatibility concerns, the license is changed again to the "zlib" license. (N.B. This license change was agreed and approved by Byron Rakitzis, who is the copyright holder.)
* Testing: swap arguments to mktemp to be kinder to NetBSD (thanks Piotr Meyer).
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 13 2015 Robert Scheck <robert at fedoraproject.org> 1.7.4-1
- Upgrade to 1.7.4
--------------------------------------------------------------------------------
================================================================================
tor-0.2.6.8-1.el6 (FEDORA-EPEL-2015-6399)
Anonymizing overlay network for TCP (The onion router)
--------------------------------------------------------------------------------
Update Information:
update to upstream release 0.2.6.8
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 21 2015 Jamie Nguyen <jamielinux at fedoraproject.org> - 0.2.6.8-1
- update to upstream release 0.2.6.8
--------------------------------------------------------------------------------
More information about the epel-devel
mailing list