The following Fedora EPEL 7 Security updates need testing: Age URL 454 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d condor-8.6.11-1.el7 196 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-c499781e80 python-gnupg-0.4.4-1.el7 194 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bc0182548b bubblewrap-0.3.3-2.el7 13 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-19535181a5 java-latest-openjdk-13.0.1.9-2.rolling.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-458a052bdb rssh-2.3.4-15.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0d0c37fcca hostapd-2.9-2.el7 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-50f0062140 golang-1.13.3-1.el7 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-1946200e23 putty-0.73-1.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-2d77bb9597 python3-requests-2.14.2-1.el7 python3-urllib3-1.25.1-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-72f653ef17 php-robrichards-xmlseclibs3-3.0.4-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-927a9446df php-robrichards-xmlseclibs-2.1.1-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-ba474a8841 freetds-1.1.20-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-8af470ea11 chromium-78.0.3904.87-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-25eb663796 libmp4v2-2.1.0-0.19.trunkREV507.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-540c6a4e1d djvulibre-3.5.25.3-18.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-136fa99185 limnoria-20191109-2.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
fotoxx-19.19-1.el7 python-oletools-0.54.2-2.el7 recap-2.1.0-4.el7 thunderbird-enigmail-2.0.12-1.el7
Details about builds:
================================================================================ fotoxx-19.19-1.el7 (FEDORA-EPEL-2019-c0e7f5a0fc) Photo editor -------------------------------------------------------------------------------- Update Information:
19.19 -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 11 2019 Gwyn Ciesla gwync@protonmail.com - 19.19-1 - 19.19 --------------------------------------------------------------------------------
================================================================================ python-oletools-0.54.2-2.el7 (FEDORA-EPEL-2019-45239ba07c) Tools to analyze Microsoft OLE2 files -------------------------------------------------------------------------------- Update Information:
update python-oletools to bugfix release -------------------------------------------------------------------------------- ChangeLog:
* Sun Nov 10 2019 Michal Ambroz <rebus AT_ seznam.cz> - 0.54.2-2 - use the msoffcrypto bundling only for python2 subpackage - use python3-msoffcrypto for python3 package * Fri Nov 8 2019 Michal Ambroz <rebus AT_ seznam.cz> - 0.54.2-1 - bump to release 0.54.2 - stop building the python2 for fc32+ epel8+ - add missing msoffcrypto python module - fix python36 dependencies for EPEL7 * Thu Oct 3 2019 Miro Hron��ok mhroncok@redhat.com - 0.51-10 - Rebuilt for Python 3.8.0rc1 (#1748018) * Mon Aug 19 2019 Miro Hron��ok mhroncok@redhat.com - 0.51-9 - Rebuilt for Python 3.8 * Fri Jul 26 2019 Fedora Release Engineering releng@fedoraproject.org - 0.51-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1547316 - python-oletools-0.54.2b is available https://bugzilla.redhat.com/show_bug.cgi?id=1547316 --------------------------------------------------------------------------------
================================================================================ recap-2.1.0-4.el7 (FEDORA-EPEL-2019-4c25b4f56a) Generates reports of various system information -------------------------------------------------------------------------------- Update Information:
Adds obsolete for rs-sysmon package -------------------------------------------------------------------------------- ChangeLog:
* Thu Oct 17 2019 Pete Travis immanetize@fedoraproject.org - 2.1.0-4 - Add obsoletes and provides for 'rs-sysmon', upstream predecessor of recap --------------------------------------------------------------------------------
================================================================================ thunderbird-enigmail-2.0.12-1.el7 (FEDORA-EPEL-2019-64506a311b) Authentication and encryption extension for Mozilla Thunderbird -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2019-14664 and CVE-2019-12269. -------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 11 2019 Felix Schwarz fschwarz@fedoraproject.org - 2.0.12-1 - update to 2.0.12 (fixes CVE-2019-12269, CVE-2019-14664) - enable GPG-based source file verification - package license file -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1749213 - CVE-2019-14664 thunderbird-enigmail: information leak in response to encrypted mail [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1749213 [ 2 ] Bug #1712724 - CVE-2019-12269 thunderbird-enigmail: signature spoofing in inline PGP message [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1712724 [ 3 ] Bug #1660479 - thunderbird-enigmail: HTTP authentication dialog may be triggered [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1660479 --------------------------------------------------------------------------------