The following Fedora EPEL 6 Security updates need testing:
Age URL
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-55ba7663e0
yara-3.11.0-1.el6
10
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-be9b8a3985
wordpress-5.1.3-1.el6
5
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-5dfb2dbe75
proftpd-1.3.3g-11.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
lua-sec-0.7.2-1.el6
munin-2.0.51-1.el6
netdata-1.18.1-1.el6
perl-Convert-UUlib-1.6-1.el6
singularity-3.4.2-1.1.el6
sshguard-2.4.0-11.el6
Details about builds:
================================================================================
lua-sec-0.7.2-1.el6 (FEDORA-EPEL-2019-dc7b073cd3)
Lua binding for OpenSSL library
--------------------------------------------------------------------------------
Update Information:
LuaSec 0.7.2 ============ * Fix unexported 'ssl.config' table
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 23 2019 Robert Scheck <robert(a)fedoraproject.org> 0.7.2-1
- Upgrade to 0.7.2 (#1760499)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1760499 - lua-sec-0.8.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1760499
--------------------------------------------------------------------------------
================================================================================
munin-2.0.51-1.el6 (FEDORA-EPEL-2019-590eb135e5)
Network-wide resource monitoring tool
--------------------------------------------------------------------------------
Update Information:
Upstream update to 2.0.51. Improves f.ex. munin-limits and some plugins.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 19 2019 Kim B. Heino <b(a)bbbs.net> - 2.0.51-1
- Upgrade to 2.0.51
* Thu Oct 17 2019 Kim B. Heino <b(a)bbbs.net> - 2.0.50-2
- Revert 290650ee2c as it breaks munin-limits on rhel
* Thu Oct 17 2019 Kim B. Heino <b(a)bbbs.net> - 2.0.50-1
- Upgrade to 2.0.50
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.0.49-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
netdata-1.18.1-1.el6 (FEDORA-EPEL-2019-78e6eab521)
Real-time performance monitoring
--------------------------------------------------------------------------------
Update Information:
Update from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 20 2019 Didier Fabert <didier.fabert(a)gmail.com> 1.18.1-1
- Update from upstream
* Thu Oct 17 2019 Didier Fabert <didier.fabert(a)gmail.com> 1.18.0-1
- Update from upstream
--------------------------------------------------------------------------------
================================================================================
perl-Convert-UUlib-1.6-1.el6 (FEDORA-EPEL-2019-7537404e9e)
Perl interface to the uulib library
--------------------------------------------------------------------------------
Update Information:
Convert::UUlib 1.6 ================== * fix heap overflow (testcase by Noel
Duffy, reported by Robert Scheck). The defense-in-depth mechanism based on mmap
should make this unexploitable for other than denial of service, on systems
supporting mmap/mprotect.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 24 2019 Robert Scheck <robert(a)fedoraproject.org> 2:1.6-1
- Upgrade to 1.6 (#1711098)
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-14
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Fri May 31 2019 Jitka Plesnikova <jplesnik(a)redhat.com> - 2:1.5-13
- Perl 5.30 rebuild
* Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Jun 28 2018 Jitka Plesnikova <jplesnik(a)redhat.com> - 2:1.5-10
- Perl 5.28 rebuild
* Fri Feb 9 2018 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 2:1.5-9
- Escape macros in %changelog
* Thu Feb 8 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Aug 3 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sun Jun 4 2017 Jitka Plesnikova <jplesnik(a)redhat.com> - 2:1.5-5
- Perl 5.26 rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Sun May 15 2016 Jitka Plesnikova <jplesnik(a)redhat.com> - 2:1.5-3
- Perl 5.24 rebuild
* Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 2:1.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1711098 - Segmentation Fault in UUlib.so (ScanData) used in
perl-Convert-UUlib
https://bugzilla.redhat.com/show_bug.cgi?id=1711098
--------------------------------------------------------------------------------
================================================================================
singularity-3.4.2-1.1.el6 (FEDORA-EPEL-2019-4529acbb6e)
Application and environment virtualization
--------------------------------------------------------------------------------
Update Information:
Upgrade to upstream 3.4.2.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 21 2019 Dave Dykstra <dwd(a)fedoraproject.org> - 3.4.2-1.1
- Upgrade to upstream 3.4.2. Remove PR #4522, no longer needed.
Still contains config fakeroot cli PR #4346.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1761005 - singularity-3.4.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1761005
--------------------------------------------------------------------------------
================================================================================
sshguard-2.4.0-11.el6 (FEDORA-EPEL-2019-bde49c72a7)
Protects hosts from brute-force attacks against SSH and other services
--------------------------------------------------------------------------------
Update Information:
Sshguard protects hosts from brute-force attacks against SSH and other services.
It aggregates system logs and blocks repeat offenders using one of several
firewall backends. Sshguard can read log messages from standard input or
monitor one or more log files. Log messages are parsed, line-by-line, for
recognized patterns. If an attack, such as several login failures within a few
seconds, is detected, the offending IP is blocked. Offenders are unblocked after
a set interval, but can be semi-permanently banned using the blacklist option.
First release to EPEL repositories - see the changelog in sshguard.spec for past
changes.
--------------------------------------------------------------------------------