The following Fedora EPEL 7 Security updates need testing:
Age URL
613
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d
condor-8.6.11-1.el7
355
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-c499781e80
python-gnupg-0.4.4-1.el7
353
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bc0182548b
bubblewrap-0.3.3-2.el7
62
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fa8a2e97c6
python-waitress-1.4.3-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-b23fa957bb
drupal7-ckeditor-1.19-1.el7
13
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-16bf726581
php-robrichards-xmlseclibs1-1.4.3-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-34295ace88
cacti-1.2.11-1.el7 cacti-spine-1.2.11-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-b6453e2708
nrpe-4.0.2-1.el7
3
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-ede50a3d8b
libasr-1.0.4-2.el7 opensmtpd-6.6.4p1-3.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-19d171a465
python34-3.4.10-5.el7
1
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-6783237c17
chromium-81.0.4044.113-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
NetworkManager-l2tp-1.2.18-1.el7
ansible-2.9.7-1.el7
gnuchess-6.2.6-1.el7
oval-graph-1.1.1-1.el7
pylibacl-0.5.2-13.el7
python3-six-1.14.0-1.el7
simde-0.0.0-1.git29b9110.el7
Details about builds:
================================================================================
NetworkManager-l2tp-1.2.18-1.el7 (FEDORA-EPEL-2020-fe20536e09)
NetworkManager VPN plugin for L2TP and L2TP/IPsec
--------------------------------------------------------------------------------
Update Information:
Updated to 1.2.18 release
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 18 2020 Douglas Kosovic <doug(a)uq.edu.au> - 1.2.18-1
- Updated to 1.2.18 release
- Use --enable-libreswan-dh2 configure switch
--------------------------------------------------------------------------------
================================================================================
ansible-2.9.7-1.el7 (FEDORA-EPEL-2020-3f2d4cea8a)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Update to bugfix and security update 2.9.7. See
https://github.com/ansible/ansible/blob/stable-2.9/changelogs/CHANGELOG-v...
for detailed changes.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 18 2020 Kevin Fenzi <kevin(a)scrye.com> - 2.9.7-1
- Update to 2.9.7.
- fixes CVE-2020-1733 CVE-2020-1735 CVE-2020-1740 CVE-2020-1746 CVE-2020-1753
CVE-2020-10684 CVE-2020-10685 CVE-2020-10691
- Drop the -s from the shebang to allow ansible to use locally installed modules.
* Mon Apr 6 2020 Igor Raits <ignatenkobrain(a)fedoraproject.org> - 2.9.6-3
- Ship ansible-test in both (py2 and py3) variants
* Sun Apr 5 2020 Igor Raits <ignatenkobrain(a)fedoraproject.org> - 2.9.6-2
- Enable python3 subpackage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1805319 - CVE-2020-1740 ansible: secrets readable after ansible-vault edit
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1805319
[ 2 ] Bug #1805326 - CVE-2020-1738 ansible: module package can be selected by the
ansible facts [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1805326
[ 3 ] Bug #1805332 - CVE-2020-1736 ansible: atomic_move primitive sets permissive
permissions [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1805332
[ 4 ] Bug #1805336 - CVE-2020-1735 ansible: path injection on dest parameter in fetch
module [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1805336
[ 5 ] Bug #1805339 - CVE-2020-1734 ansible: shell enabled by default in a pipe lookup
plugin subprocess [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1805339
[ 6 ] Bug #1805342 - CVE-2020-1733 ansible: insecure temporary directory when running
become_user from become directive [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1805342
[ 7 ] Bug #1808472 - CVE-2020-1746 ansible: Information disclosure issue in ldap_attr
and ldap_entry modules [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1808472
[ 8 ] Bug #1811933 - CVE-2020-1753 ansible: kubectl connection plugin leaks sensitive
information [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1811933
[ 9 ] Bug #1816311 - CVE-2020-10684 ansible: code injection when using ansible_facts as
a subkey [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1816311
[ 10 ] Bug #1816312 - CVE-2020-10685 ansible: modules which use files encrypted with
vault are not properly cleaned up [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1816312
[ 11 ] Bug #1817979 - CVE-2020-10691 ansible: archive traversal vulnerability in
ansible-galaxy collection install [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1817979
[ 12 ] Bug #1825070 - ansible-2.9.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1825070
--------------------------------------------------------------------------------
================================================================================
gnuchess-6.2.6-1.el7 (FEDORA-EPEL-2020-e3e05f0ce4)
The GNU chess program
--------------------------------------------------------------------------------
Update Information:
6.2.6
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 19 2020 Gwyn Ciesla <gwync(a)protonmail.com> - 6.2.6-1
- 6.2.6
* Tue Jan 28 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Thu Jul 25 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Thu Jan 31 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Mon Feb 19 2018 Mat��j Cepl <mcepl(a)redhat.com> - 6.2.5-6
- Add gcc as BuildRequires and remove Groups (obsolete for many relases.)
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Aug 2 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Sun Jul 30 2017 Florian Weimer <fweimer(a)redhat.com> - 6.2.5-3
- Rebuild with binutils fix for ppc64le (#1475636)
* Wed Jul 26 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.2.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1749177 - CVE-2019-15767 gnuchess: stack-based overflow in cmd_load in
frontend/cmd.cc via crafted EPD file [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1749177
[ 2 ] Bug #1749178 - CVE-2019-15767 gnuchess: stack-based overflow in cmd_load in
frontend/cmd.cc via crafted EPD file [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1749178
[ 3 ] Bug #1825541 - gnuchess-6.2.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1825541
--------------------------------------------------------------------------------
================================================================================
oval-graph-1.1.1-1.el7 (FEDORA-EPEL-2020-b1e03c329a)
Tool for visualization of SCAP rule evaluation results
--------------------------------------------------------------------------------
Update Information:
release 1.1.1 ---- Fixes the required dependency ---- release 1.1.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 17 2020 Jan Rodak <jrodak(a)redhat.com> - 1.1.1-1
- release 1.1.1
* Fri Apr 17 2020 Jan Rodak <jrodak(a)redhat.com> - 1.1.0-2
- Fixes the required dependency
* Wed Apr 15 2020 Jan Rodak <jrodak(a)redhat.com> - 1.1.0-1
- release 1.1.0
--------------------------------------------------------------------------------
================================================================================
pylibacl-0.5.2-13.el7 (FEDORA-EPEL-2020-b27ca08622)
POSIX.1e ACLs library wrapper for python
--------------------------------------------------------------------------------
Update Information:
Rebuilt for python3 on EPEL 7
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 18 2020 Frank Crawford <frank(a)crawford.emu.id.au> - 0.5.2-13
- Rebuilt for python3 on EPEL 7 and 8
* Fri Jul 26 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-12
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Sat Feb 2 2019 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-11
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-10
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue Jun 19 2018 Miro Hron��ok <mhroncok(a)redhat.com> - 0.5.2-9
- Rebuilt for Python 3.7
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Wed Feb 7 2018 Iryna Shcherbina <ishcherb(a)redhat.com> - 0.5.2-7
- Update Python 2 dependency declarations to new packaging standards
(See
https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3)
* Thu Aug 3 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.2-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Mon Dec 19 2016 Miro Hron��ok <mhroncok(a)redhat.com> - 0.5.2-3
- Rebuild for Python 3.6
* Tue Jul 19 2016 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.2-2
-
https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_...
* Mon May 2 2016 Yclept Nemo <pscjtwjdjtAhnbjm/dpn> - 0.5.2-1
- updated to 0.5.2
- phase out python-libacl (it's been a while...)
- run checks
- python3 subpackage
- remove outdated macros
- (original change date Mon Jan 12 2015)
* Thu Feb 4 2016 Fedora Release Engineering <releng(a)fedoraproject.org> - 0.5.1-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Thu Jun 18 2015 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.1-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Sun Aug 17 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.1-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.1-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.5.1-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python3-six-1.14.0-1.el7 (FEDORA-EPEL-2020-ec8dcb9990)
Python 2 and 3 compatibility utilities
--------------------------------------------------------------------------------
Update Information:
Update to 1.14.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 17 2020 Orion Poplawski <orion(a)nwra.com> - 1.14.0-1
- Update to 1.14.0 (bugz#1821211)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1821211 - Please update it to 1.14
https://bugzilla.redhat.com/show_bug.cgi?id=1821211
--------------------------------------------------------------------------------
================================================================================
simde-0.0.0-1.git29b9110.el7 (FEDORA-EPEL-2020-89e4b0a22d)
SIMD Everywhere
--------------------------------------------------------------------------------
Update Information:
- Initial import. - Build with meson and ninja-build instead of cmake. - Allow
failures for tests or skip tests on ppc64le.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1823001 - Review Request: simde - SIMD Everywhere
https://bugzilla.redhat.com/show_bug.cgi?id=1823001
--------------------------------------------------------------------------------