The following Fedora EPEL 5 Security updates need testing: Age URL 357 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.1... 252 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2... 57 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.... 25 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0711/git-1.8.1.4-2.... 15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0819/libarchive-2.8... 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0898/drupal7-ctools... 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0897/wordpress-plug... 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0942/mod_security-2... 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5410/php-geshi-1.0.... 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5432/phpMyAdmin3-3....
The following builds have been pushed to Fedora EPEL 5 updates-testing
collectd-4.10.9-1.el5 hylafax+-5.5.3-4.el5 libsvm-3.17-1.el5 phpMyAdmin3-3.5.8-1.el5 x11vnc-0.9.13-8.el5
Details about builds:
================================================================================ collectd-4.10.9-1.el5 (FEDORA-EPEL-2013-5429) Statistics collection daemon for filling RRD files -------------------------------------------------------------------------------- Update Information:
Update to 4.10.9. See https://github.com/collectd/collectd/blob/collectd-4.10/ChangeLog for changes. -------------------------------------------------------------------------------- ChangeLog:
* Sun Apr 14 2013 Ruben Kerkhof ruben@rubenkerkhof.com 4.10.9-1 - Update to 4.10.9 - IPtables module broke again on EL5 - Build with python2.6 on EL5 --------------------------------------------------------------------------------
================================================================================ hylafax+-5.5.3-4.el5 (FEDORA-EPEL-2013-5435) An enterprise-strength fax server -------------------------------------------------------------------------------- Update Information:
- Ship hylafax+ initscript only in base, not in both packages - Obsolete hylafax-client packages in favor of hylafax+-client - Added option to disable daily faxcron like in other hylafax - Added %%{_sysconfdir}/sysconfig/hylafax+ also for RHEL 5 & 6 - Use $HFAXD_OPTIONS in hylafax+ initscript on RHEL 5 and 6 - Added $FAXQ_OPTIONS to hylafax+ initscript for RHEL 5 and 6 -------------------------------------------------------------------------------- ChangeLog:
* Sun Apr 14 2013 Robert Scheck robert@fedoraproject.org 5.5.3-4 - ship hylafax+ initscript only in base, not in both packages * Sat Apr 13 2013 Robert Scheck robert@fedoraproject.org 5.5.3-3 - ensure that hylafax+-client has same architecture like base - obsolete hylafax-client packages in favor of hylafax+-client - added option to disable daily faxcron like in other hylafax - added %{_sysconfdir}/sysconfig/hylafax+ also for RHEL 5 & 6 - use $HFAXD_OPTIONS in hylafax+ initscript on RHEL 5 and 6 - added $FAXQ_OPTIONS to hylafax+ initscript for RHEL 5 and 6 --------------------------------------------------------------------------------
================================================================================ libsvm-3.17-1.el5 (FEDORA-EPEL-2013-5433) A Library for Support Vector Machines -------------------------------------------------------------------------------- Update Information:
Upstream update to 3.17 -------------------------------------------------------------------------------- ChangeLog:
* Sat Apr 13 2013 Ding-Yi Chen dchen@redhat.com - 3.17-1 - Upstream update from 3.13 to 3.17 svm.c and svm.h: add sv_indices in model structure, so users can know which training instances are SVs two library funs svm_get_sv_indices and svm_get_nr_sv are added max_iter warning moved to stderr so -q won't disable it svm-train.c: usage modified to stress that multiclass is supported svm-predict.c: add -q for svm-predict svm-scale.c: issue a warning if feature indices do not start from 1 issue a warning for inconsistency between scaling-factor file and input file tools: subset.py is written to be much faster fix the bug of not freeing sv_indices tools/grid.py: -null option: allow the search on C or g only -resume option: resume tasks from an earlier run can be called as a python module python interface: local package searched first libsvm options can be str or list param.show() becomes print(param) tools/: easy.py fails in 3.15. Fix it by modifying grid.py svm.cpp: if class labels are 1 and -1, ensure labels[0] = 1 and labels[1] = -1 initialize model->sv_indices as null in svm_load_model if nr_fold > # data, change nr_fold to be # data and ro leave-one-out cv matlab interface: handle the problem where output variables are not specified * Thu Feb 14 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.12-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.12-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ phpMyAdmin3-3.5.8-1.el5 (FEDORA-EPEL-2013-5432) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information:
phpMyAdmin 3.5.8.0 (2013-04-08) ===============================
- [bug] MariaDB reported as MySQL - [bug] Incorrect header for Safari 6.0 - [bug] Attempt to open trigger for edit gives NULL - [change] Use HTML5 DOCTYPE - [security] Self-XSS on GIS visualisation page, reported by Janek Vind - [bug] Incorrect keyhandler behaviour #2 -------------------------------------------------------------------------------- ChangeLog:
* Sat Apr 13 2013 Robert Scheck robert@fedoraproject.org 3.5.8-1 - Upgrade to 3.5.8 (#949868) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #950102 - CVE-2013-1937 phpMyAdmin: XSS flaw when displaying GIS Visualization(s) https://bugzilla.redhat.com/show_bug.cgi?id=950102 --------------------------------------------------------------------------------
================================================================================ x11vnc-0.9.13-8.el5 (FEDORA-EPEL-2013-5427) VNC server for the current X11 session -------------------------------------------------------------------------------- Update Information:
Add tk as requirement to run gui -------------------------------------------------------------------------------- ChangeLog:
* Sun Apr 14 2013 Pavel Alexeev Pahan@Hubbitus.info - 0.9.13-8 - Add requires to tk (bz#920554). * Fri Feb 15 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.9.13-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Mon Jan 21 2013 Adam Tkac <atkac redhat com> - 0.9.13-6 - rebuild due to "jpeg8-ABI" feature drop * Fri Dec 21 2012 Adam Tkac <atkac redhat com> - 0.9.13-5 - rebuild against new libjpeg * Sun Jul 22 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.9.13-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Feb 17 2012 Deepak Bhole dbhole@redhat.com 0.9.13-3 - Resolves rhbz#794475 - Patch from Omair Majid omajid@redhat.com to remove explicit Java 6 req. * Sat Jan 14 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.9.13-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #920554 - env: wish: No such file or directory. Missing dependency on tk? https://bugzilla.redhat.com/show_bug.cgi?id=920554 --------------------------------------------------------------------------------