[EPEL-devel] Fedora EPEL 5 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Mon Oct 12 17:47:52 UTC 2015
The following Fedora EPEL 5 Security updates need testing:
Age URL
722 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2013-11893 libguestfs-1.20.12-1.el5
487 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-1626 puppet-2.7.26-1.el5
337 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849 sblim-sfcb-1.3.8-2.el5
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-210591c284 drupal7-jquery_update-2.6-1.el5
0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-fdf8e54f23 mbedtls-1.3.14-1.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
drupal7-date-2.9-1.el5
drupal7-jquery_update-2.6-1.el5
drupal7-pathauto-1.3-2.el5
mbedtls-1.3.14-1.el5
Details about builds:
================================================================================
drupal7-date-2.9-1.el5 (FEDORA-EPEL-2015-f0b035c943)
This package contains both the Date module and a Date API module
--------------------------------------------------------------------------------
Update Information:
Updated to upstream 2.9 Release notes: *
[7.x-2.9](https://www.drupal.org/node/2565073) *
[7.x-2.9-rc1](https://www.drupal.org/node/2460727) *
[7.x-2.9-beta2](https://www.drupal.org/node/2387349) *
[7.x-2.9-beta1](https://www.drupal.org/node/2371799) *
[7.x-2.9-alpha2](https://www.drupal.org/node/2344525) *
[7.x-2.9-alpha1](https://www.drupal.org/node/2313405) *
[7.x-2.8](https://www.drupal.org/node/2311887) *
[7.x-2.8-beta2](https://www.drupal.org/node/2309917) *
[7.x-2.8-beta1](https://www.drupal.org/node/2290333) *
[7.x-2.7](https://www.drupal.org/node/2161141) *
[7.x-2.6](https://www.drupal.org/node/1727916) *
[7.x-2.5](https://www.drupal.org/node/1539362)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1261221 - drupal7-date-2.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1261221
--------------------------------------------------------------------------------
================================================================================
drupal7-jquery_update-2.6-1.el5 (FEDORA-EPEL-2015-210591c284)
Upgrades the version of jQuery in Drupal core to a newer version of jQuery
--------------------------------------------------------------------------------
Update Information:
See [jQuery Update - Less Critical - Open Redirect - SA-
CONTRIB-2015-123](https://www.drupal.org/node/2507729) Changes since 7.x-2.5 (3
commits): * Updating overlay code to match core * Issue #2466329 by hanoii:
Update 1.7 to 1.7.2 * Issue #1546668 by sergey.semashko, RobLoach: Update to
jQuery 1.8.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1222725 - drupal7-jquery_update-3.0-alpha2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1222725
--------------------------------------------------------------------------------
================================================================================
drupal7-pathauto-1.3-2.el5 (FEDORA-EPEL-2015-87d1dc5092)
Automatically generates URL/path aliases for various kinds of content
--------------------------------------------------------------------------------
Update Information:
Changes since 7.x-1.2: * Issue #936222 by mvc, quicksketch, joelpittet, Dave
Reid, sammarks15, brianV, RoloDMonkey, bvanmeurs, effulgentsia, jucallme,
ponies, Island Usurper, Pancho, iamEAP, pinoniq, bibishani, Gábor Hojtsy,
emanaton, populist, mrmikedewolf, klonos, dsnopek, Fabianx, MiroslavBanov,
JamesOakley, acbramley, jstoller, DamienMcKenna, mattlt, rv0: Merged in
pathauto_persist module functionality to prevent losing manual aliases when
calling node_save(). * Issue #1909400 by Dave Reid: Removed the hacky
pathauto_module_implements_alter() and moved core implementations to
pathauto.module. * Issue #2423077 by Dave Reid, TuWebO: Fixed wrong parameters
passed to truncate_utf8() from pathauto_alias_uniquify(). * Issue #897310 by
gordon, Dave Reid: Added features integration for exporting pathauto patterns
along with node types and taxonomy vocabularies. * Issue #2434675 by mtift:
Clarify when hook_pathauto_pattern_alter() is called. * Issue #1128870 by
mikeryan, badrange, EclipseGc, Dave Reid: Added Migrate module integration. *
Issue #2372101 by mfb: Fixed mb_eregi_replace() called without first calling
mb_regex_encoding() and setting encoding to UTF-8. * Issue #1430898 by Dave
Reid: Fixed pathauto_install() should not overwrite any existing pattern
variables. * Issue #2067191 by bneil, Martijn Houtman, stefan.r, rv0,
DamienMcKenna, Dave Reid: Fixed path_pathauto_is_alias_reserved() does not
handle language-neutral aliases correctly, possibly resulting in duplicate
aliases. * Issue #2114323 by alberto56, jarkkotuunanen, ollii, frakke: Switched
using taxonomy_get_tree() to taxonomy_get_children() which fixes field tokens
not generated for any child aliases, and improves performance. * Fixed docs in
pathauto.inc. * Fixed _pathauto_alias_exists(). * Issue #2351205 by
basvanderheijden: Fixed Drupal.behaviors.pathFieldsetSummaries did not use
context. * Issue #2511988 by rrfegade: Fixed documentation spelling errors. *
Issue #1784874 by Dave Reid, aaronbauman: Converted admin UI to use the token
dialog. * Issue #801702 by IceCreamYou, Dave Reid, m4olivei, mojzis: Updated API
documentation. * Fixed error in hook_pathauto_pattern_alter() example code. *
Issue #2272871 by Dave Reid, Elijah Lynn: Fixed "Do nothing. Leave old alias
intact" update action should hide the Pathauto checkbox on existing content. *
Issue #2272871 by Elijah Lynn, Dave Reid: Fixed "Do nothing. Leave old alias
intact" does not uncheck "Generate automatic URL alias" checkbox on first edit
of existing content, but does on subsequent edits. * Fixed example
hook_pathauto_pattern_alter(). * Simplify invocations of pathauto_cleanstring()
by both accepting $options['langauge'] and $options['langcode']. Fixed the array
:join-path token did not pass options into pathauto_cleanstring(). * Small
optimization to pathauto_clean_token_values(). * Issue #1574700 by jgSnell,
fletchgqc: Clarified transliteration help text means US-ASCII instead of
ASCII-96. * Issue #1586172 by jaydub: Fixed link to Redirect module settings
page from Pathauto settings page. * Issue #2174603: Added support for an
$options['force'] parameter in pathauto_*_update_alias() callbacks that ignores
the $object->path['pathauto'] value and will always perform aliasing. * Issue
#1834666 by greggles: Update README.txt maintainers * Issue #1988226: Fixed
@todo link in _pathauto_path_is_callback to correct core issue. * Revert "Issue
#1988226: Fixed @todo link in _pathauto_path_is_callback to correct core issue."
* Issue #1909370: Added documentation for hook_pathauto_is_alias_reserved(). *
Issue #1565850: Added hook_pathauto_pattern_alter(). * Issue #1909370: Added a
hook_pathauto_is_alias_reserved(). * Issue #1003490: Renamed 'Bulk update' tab
to 'Bulk generate' to better reflect actual functionality. * Issue Follow-up
#1781302: Added return value to the pathauto_blog_update_alias() function. *
Issue #1781302: Added return values to the pathauto_*_update_alias() functions.
* Issue #1899806: Fixed URL segments with empty tokens inbetween separator
resulted in duplicated backslashes in Pathauto alias. * Issue #973908: Fix
pathauto_cleanstring() lacks language context. * Issue #1796920: Fixed
pathauto_action_info() did not define the required 'triggers' property for each
action.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1270073 - drupal7-pathauto-1.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1270073
--------------------------------------------------------------------------------
================================================================================
mbedtls-1.3.14-1.el5 (FEDORA-EPEL-2015-fdf8e54f23)
Light-weight cryptographic and SSL/TLS library
--------------------------------------------------------------------------------
Update Information:
- Update to 1.3.14 - CVE-2015-5291 Release notes: https://tls.mbed.org/tech-
updates/releases/mbedtls-2.1.2-and-1.3.14-and-polarssl-1.2.17-released Security
notes: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-
advisory-2015-01
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1270170 - CVE-2015-5291 polarssl: mbedtls: crash or remote code execution on clients using session tickets or SNI
https://bugzilla.redhat.com/show_bug.cgi?id=1270170
--------------------------------------------------------------------------------
More information about the epel-devel
mailing list