The following Fedora EPEL 6 Security updates need testing: Age URL 918 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 808 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 780 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 390 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac libbsd-0.8.3-2.el6 120 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4c76ddcc92 libmspack-0.6-0.1.alpha.el6 39 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-6aaee32b7e optipng-0.7.6-6.el6 21 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-6e4ce19598 monit-5.25.1-1.el6 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-8c9006d462 heimdal-7.5.0-1.el6 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-fde8252ab7 python-bottle-0.12.13-1.el6 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-752a7c9ad4 rootsh-1.5.3-17.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-2ba6bfc5d8 wordpress-4.9.2-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
fluxcapacitor-0-4.20180114git0b6a11b.el6 python-productmd-1.10-1.el6 wordpress-4.9.2-1.el6
Details about builds:
================================================================================ fluxcapacitor-0-4.20180114git0b6a11b.el6 (FEDORA-EPEL-2018-ea3af33607) Run programs without blocking on syscalls -------------------------------------------------------------------------------- Update Information:
Patch the program to compile properly with the old gcc and python2 versions used by EPEL6 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1534137 - Review Request: fluxcapacitor - run programs without blocking on syscalls https://bugzilla.redhat.com/show_bug.cgi?id=1534137 --------------------------------------------------------------------------------
================================================================================ python-productmd-1.10-1.el6 (FEDORA-EPEL-2018-732448efe8) Library providing parsers for metadata related to OS installation -------------------------------------------------------------------------------- Update Information:
Relax validations for release type. The hardcoded list is now only used to help parsing release IDs. --------------------------------------------------------------------------------
================================================================================ wordpress-4.9.2-1.el6 (FEDORA-EPEL-2018-2ba6bfc5d8) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information:
Upstream announcement: **WordPress 4.9.2** is now available. This is a security and maintenance release for all versions since WordPress 3.7���. We strongly encourage you to update your sites immediately. An XSS vulnerability was discovered in the Flash fallback files in MediaElement, a library that is included with WordPress. Because the Flash files are no longer needed for most use cases, they have been removed from WordPress. MediaElement has released a new version that contains a fix for the bug, and a WordPress plugin containing the fixed files is available in the plugin repository. Thank you to the reporters of this issue for practicing responsible security disclosure: Enguerran Gillier and Widiz���. 21 other bugs were fixed in WordPress 4.9.2. Particularly of note were: * JavaScript errors that prevented saving posts in Firefox have been fixed. * The previous taxonomy-agnostic behavior of get_category_link() and category_description() was restored. * Switching themes will now attempt to restore previous widget assignments, even when there are no sidebars to map. The Codex [has more information about all of the issues fixed in 4.9.2](https://codex.wordpress.org/Version_4.9.2), if you'd like to learn more. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1528765 - wordpress - bundles file with non-free license https://bugzilla.redhat.com/show_bug.cgi?id=1528765 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org