The following Fedora EPEL 7 Security updates need testing: Age URL 717 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 480 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 198 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c redis-3.2.3-1.el7 182 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3 chicken-4.11.0-3.el7 62 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e2cea1c22d python-cjson-1.1.0-9.el7 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-920059d2ed mingw-wavpack-5.1.0-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d5fe44714a cacti-1.0.3-3.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-759dd56b65 firebird-2.5.7.27050.0-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-af1e2c321c phpMyAdmin-4.4.15.10-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
debian-keyring-2014.3-4.el7 hylafax+-5.5.9-1.el7 jetring-0.25-2.el7 keyrings-filesystem-1-6.el7 mrbs-1.6.0-1.el7 nordugrid-arc-5.2.2-2.el7 phpMyAdmin-4.4.15.10-1.el7 prelude-correlator-3.1.0-1.el7 prewikka-3.1.0-1.el7 python-collada-0.4-15.el7 python-onionbalance-0.1.7-1.el7 python3-cffi-1.9.1-1.el7 ratpoison-1.4.8-6.el7 staxmapper-1.2.0-2.el7
Details about builds:
================================================================================ debian-keyring-2014.3-4.el7 (FEDORA-EPEL-2017-788760d644) GnuPG archive keys of the Debian archive -------------------------------------------------------------------------------- Update Information:
debian-keyring on epel7 --------------------------------------------------------------------------------
================================================================================ hylafax+-5.5.9-1.el7 (FEDORA-EPEL-2017-103c0c1b47) An enterprise-strength fax server -------------------------------------------------------------------------------- Update Information:
update to 5.5.9 (unreleased SVN checkout) to fix gcc v7 build problem with 5.5.8-2 on f26 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1423726 - hylafax+: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1423726 --------------------------------------------------------------------------------
================================================================================ jetring-0.25-2.el7 (FEDORA-EPEL-2017-788760d644) GPG keyring maintenance using changesets -------------------------------------------------------------------------------- Update Information:
debian-keyring on epel7 --------------------------------------------------------------------------------
================================================================================ keyrings-filesystem-1-6.el7 (FEDORA-EPEL-2017-788760d644) Keyrings filesystem layout -------------------------------------------------------------------------------- Update Information:
debian-keyring on epel7 --------------------------------------------------------------------------------
================================================================================ mrbs-1.6.0-1.el7 (FEDORA-EPEL-2017-1126f9948f) Meeting Room Booking System -------------------------------------------------------------------------------- Update Information:
Update to mrbs 1.6.0. ---- Update to mrbs 1.5.0 and fix the php-mysql(i) broken dependency. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1293103 - MRBS 1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1293103 [ 2 ] Bug #1111837 - mrbs-1.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1111837 [ 3 ] Bug #1421397 - mrbs-1.6.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1421397 --------------------------------------------------------------------------------
================================================================================ nordugrid-arc-5.2.2-2.el7 (FEDORA-EPEL-2017-6b5c7ee941) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information:
Don't use pylint for EPEL builds (retired) --------------------------------------------------------------------------------
================================================================================ phpMyAdmin-4.4.15.10-1.el7 (FEDORA-EPEL-2017-af1e2c321c) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information:
phpMyAdmin 4.4.15.10 (2017-01-23) ================================= This release includes many security fixes of various levels of severity. For full information on the vulnerabilities fixed and mitigation factors for users who are unable to upgrade, refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/ -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1415996 - phpMyAdmin: DOS vulnerabiltiy in table editing https://bugzilla.redhat.com/show_bug.cgi?id=1415996 [ 2 ] Bug #1416000 - phpMyAdmin: DOS in replication status https://bugzilla.redhat.com/show_bug.cgi?id=1416000 [ 3 ] Bug #1415999 - phpMyAdmin: SSRF in replication https://bugzilla.redhat.com/show_bug.cgi?id=1415999 [ 4 ] Bug #1415998 - phpMyAdmin: Cookie attribute injection attack https://bugzilla.redhat.com/show_bug.cgi?id=1415998 [ 5 ] Bug #1415997 - phpMyAdmin: CSS injection in themes https://bugzilla.redhat.com/show_bug.cgi?id=1415997 [ 6 ] Bug #1415995 - phpMyAdmin: Open redirect https://bugzilla.redhat.com/show_bug.cgi?id=1415995 --------------------------------------------------------------------------------
================================================================================ prelude-correlator-3.1.0-1.el7 (FEDORA-EPEL-2017-fafb6a6624) Real time correlator of events received by Prelude Manager -------------------------------------------------------------------------------- Update Information:
Bump version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1419226 - Review Request: prelude-correlator https://bugzilla.redhat.com/show_bug.cgi?id=1419226 --------------------------------------------------------------------------------
================================================================================ prewikka-3.1.0-1.el7 (FEDORA-EPEL-2017-298e644db4) Graphical front-end analysis console for IDMEF -------------------------------------------------------------------------------- Update Information:
Bump version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1423390 - Review Request: prewikka https://bugzilla.redhat.com/show_bug.cgi?id=1423390 --------------------------------------------------------------------------------
================================================================================ python-collada-0.4-15.el7 (FEDORA-EPEL-2017-23dc57cee7) A python module for creating, editing and loading COLLADA -------------------------------------------------------------------------------- Update Information:
Provides proper python34 package. --------------------------------------------------------------------------------
================================================================================ python-onionbalance-0.1.7-1.el7 (FEDORA-EPEL-2017-8dc1265b3b) Load-balancing for Tor onion services -------------------------------------------------------------------------------- Update Information:
latest upstream release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1425640 - python-onionbalance-0.1.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1425640 --------------------------------------------------------------------------------
================================================================================ python3-cffi-1.9.1-1.el7 (FEDORA-EPEL-2017-9ae5757844) Foreign Function Interface for Python to call C code -------------------------------------------------------------------------------- Update Information:
Foreign Function Interface for Python, providing a convenient and reliable way of calling existing C code from Python. The interface is based on LuaJIT���s FFI. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1410953 - Review Request: python3-cffi - Foreign Function Interface for Python to call C code https://bugzilla.redhat.com/show_bug.cgi?id=1410953 --------------------------------------------------------------------------------
================================================================================ ratpoison-1.4.8-6.el7 (FEDORA-EPEL-2017-ae192732a1) Minimalistic window manager -------------------------------------------------------------------------------- Update Information:
Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ staxmapper-1.2.0-2.el7 (FEDORA-EPEL-2017-39bea4625d) StAX Mapper -------------------------------------------------------------------------------- Update Information:
Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild --------------------------------------------------------------------------------