The following Fedora EPEL 7 Security updates need testing:
Age URL
898
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087
dokuwiki-0-0.24.20140929c.el7
660
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f
mcollective-2.8.4-1.el7
242
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d
libbsd-0.8.3-1.el7
140
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe
mod_cluster-1.3.3-10.el7
138
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4
tnef-1.4.14-1.el7
137
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378
python-XStatic-jquery-ui-1.12.0.1-1.el7
40
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-47be021843
heimdal-7.4.0-1.el7
23
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-017fbc40e8
supervisor-3.1.4-1.el7
15
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8683c5e591
potrace-1.15-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-816da4b59a
ReviewBoard-2.5.15-1.el7 python-djblets-0.9.9-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b69fde3111
mingw-libsoup-2.56.1-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a1d2b25c25
php-PHPMailer-5.2.24-1.el7
11
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-9bf7bf3989
mingw-gdk-pixbuf-2.36.8-1.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5344219d81
bodhi-2.9.1-1.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-17b77b3268
botan-1.10.16-1.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4a0b7bf8d6
chromium-60.0.3112.101-2.el7
4
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-07d2039ffa
redis-3.2.10-2.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-a8c25bd6d7
exim-4.89-2.el7
0
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-fc1436acf8
dnsdist-1.2.0-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
cacti-1.1.19-1.el7
clearlooks-phenix-6.0.3-3.el7
distribution-gpg-keys-1.14-1.el7
dnsdist-1.2.0-1.el7
engauge-digitizer-10.2-1.el7
fedrepo-req-1.5.0-2.el7
lldpd-0.9.8-1.el7
mock-1.4.4-1.el7
php-horde-Horde-Core-2.30.1-1.el7
php-phpmyadmin-sql-parser-4.1.10-1.el7
tracer-0.6.13-2.el7
xfce4-vala-4.10.3-17.el7
zstd-1.3.1-1.el7
Details about builds:
================================================================================
cacti-1.1.19-1.el7 (FEDORA-EPEL-2017-9a8c22eb51)
An rrd based graphing tool
--------------------------------------------------------------------------------
Update Information:
- Update to 1.1.19 Release notes:
https://www.cacti.net/release_notes.php?version=1.1.19 ---- - Update to
1.1.17 Release notes:
https://www.cacti.net/release_notes.php?version=1.1.17
--------------------------------------------------------------------------------
================================================================================
clearlooks-phenix-6.0.3-3.el7 (FEDORA-EPEL-2017-4f5cbde556)
Clearlooks-Phenix theme
--------------------------------------------------------------------------------
Update Information:
Clearlooks-Phenix is a GTK+ 3 port of Clearlooks, the default theme for GNOME 2.
Style is also included for GTK2, Unity and for Metacity, Openbox and Xfwm4
window managers.
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.14-1.el7 (FEDORA-EPEL-2017-3558bd6497)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
* Add Fedora 28 keys * Add several third parties keys (Adobe, Dell, JPackage,
CalcForge, VirtualBox, PostgreSQL, Skype, Google, Dropbox, Remi) * Add new
Copr's project keys
--------------------------------------------------------------------------------
================================================================================
dnsdist-1.2.0-1.el7 (FEDORA-EPEL-2017-fc1436acf8)
Highly DNS-, DoS- and abuse-aware loadbalancer
--------------------------------------------------------------------------------
Update Information:
Update to new upstream release 1.2.0 Security fix for CVE-2016-7069 and
CVE-2017-7557
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1483870 - CVE-2016-7069 dnsdist: Crafted backend responses can cause a denial
of service
https://bugzilla.redhat.com/show_bug.cgi?id=1483870
[ 2 ] Bug #1483867 - CVE-2017-7557 dnsdist: Alteration of ACLs via API authentication
bypass
https://bugzilla.redhat.com/show_bug.cgi?id=1483867
--------------------------------------------------------------------------------
================================================================================
engauge-digitizer-10.2-1.el7 (FEDORA-EPEL-2017-757d5882c1)
Convert graphs or map files into numbers
--------------------------------------------------------------------------------
Update Information:
- Update to 10.2
--------------------------------------------------------------------------------
================================================================================
fedrepo-req-1.5.0-2.el7 (FEDORA-EPEL-2017-179e05be92)
CLI for Fedora package repo requests
--------------------------------------------------------------------------------
Update Information:
Changes: * Set the user agent string to "fedrepo-req/version" * Add a way to
skip Bugzilla ticket validation in fedrepo-req-admin * Explain when a user can't
be found in FAS * Don't use the Bugzilla authentication cache on fedrepo-req *
Change requirements from "git" to "git-core" ---- Updates to
v1.4.0. The
client tool is mostly unchanged except that it has a few usability improvements
such as having a man page and telling users to read the README if they haven't
configured the client tool. The admin tool has a few enhancements and bug fixes
that are listed in git. ---- Bumps to version 1.3.0 ---- Initial release
---- Initial Release ---- Initial release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1482575 - fedrepo-req: change requires from git to git-core
https://bugzilla.redhat.com/show_bug.cgi?id=1482575
[ 2 ] Bug #1481036 - Requesting new repo errors with meaningless error message
https://bugzilla.redhat.com/show_bug.cgi?id=1481036
[ 3 ] Bug #1469331 - Review Request: fedrepo-req - A CLI tool that provides an easy way
to submit ticket requests for packaging tasks in Fedora
https://bugzilla.redhat.com/show_bug.cgi?id=1469331
--------------------------------------------------------------------------------
================================================================================
lldpd-0.9.8-1.el7 (FEDORA-EPEL-2017-dcbb66ea6a)
ISC-licensed implementation of LLDP
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1483362 - lldpd-0.9.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1483362
--------------------------------------------------------------------------------
================================================================================
mock-1.4.4-1.el7 (FEDORA-EPEL-2017-91e00d535a)
Builds packages inside chroots
--------------------------------------------------------------------------------
Update Information:
* Fedora 27 configs have been added. * /etc/dnf/dnf.conf is used instead of
/etc/dnf.conf * /etc/dnf/dnf.conf is populated even when yum is used * Rename
group inside of chroot from mockbuild to mock - this will allow you to install
mock inside of mock' chroot.
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Core-2.30.1-1.el7 (FEDORA-EPEL-2017-6a256bf266)
Horde Core Framework libraries
--------------------------------------------------------------------------------
Update Information:
**Horde_Core 2.30.1** * [mjr] Fix issue that could break ActiveSync sync if
object not found.
--------------------------------------------------------------------------------
================================================================================
php-phpmyadmin-sql-parser-4.1.10-1.el7 (FEDORA-EPEL-2017-9862faca62)
A validating SQL lexer and parser with a focus on MySQL dialect
--------------------------------------------------------------------------------
Update Information:
**Version 4.1.10** - 2017-08-21 * Use custom LoaderException for context
loading errors.
--------------------------------------------------------------------------------
================================================================================
tracer-0.6.13-2.el7 (FEDORA-EPEL-2017-1ea755452d)
Finds outdated running applications in your system
--------------------------------------------------------------------------------
Update Information:
New upstream update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1469282 - tracer-common should require python3-argcomplete
https://bugzilla.redhat.com/show_bug.cgi?id=1469282
[ 2 ] Bug #1450388 - RFE: add logic to tracer to recognize more services
https://bugzilla.redhat.com/show_bug.cgi?id=1450388
--------------------------------------------------------------------------------
================================================================================
xfce4-vala-4.10.3-17.el7 (FEDORA-EPEL-2017-a78d7e3eb4)
Vala bindings for the Xfce framework
--------------------------------------------------------------------------------
Update Information:
Rebuild for new vala in RHEL7.4. Fixes bug #1481728
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1481728 - Update for vala-0.34.6-1.el7
https://bugzilla.redhat.com/show_bug.cgi?id=1481728
--------------------------------------------------------------------------------
================================================================================
zstd-1.3.1-1.el7 (FEDORA-EPEL-2017-4e9614bf16)
Zstd compression library
--------------------------------------------------------------------------------
Update Information:
Latest upstream
--------------------------------------------------------------------------------