The following Fedora EPEL 5 Security updates need testing: Age URL 759 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-1626 puppet-2.7.26-1.el5 608 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849 sblim-sfcb-1.3.8-2.el5 251 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-edbea40516 mcollective-2.8.4-1.el5 223 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-582c8075e6 thttpd-2.25b-24.el5 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-ca8f71985b mbedtls-2.3.0-1.el5 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-c03e77f531 nginx-1.10.1-1.el5 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-61f32ecfe2 tcpreplay-4.1.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing R-3.3.1-1.el5 drupal7-7.50-1.el5 libburn-1.4.4-1.el5 libisoburn-1.4.4-1.el5 libisofs-1.4.4-1.el5 safekeep-1.4.4-1.el5 tcpreplay-4.1.1-2.el5 Details about builds: ================================================================================ R-3.3.1-1.el5 (FEDORA-EPEL-2016-fa43c0f5fa) A language for data analysis and graphics -------------------------------------------------------------------------------- Update Information: Update to 3.3.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1348554 - R-3.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1348554 -------------------------------------------------------------------------------- ================================================================================ drupal7-7.50-1.el5 (FEDORA-EPEL-2016-3956f48d8a) An open-source content-management platform -------------------------------------------------------------------------------- Update Information: https://www.drupal.org/blog/drupal-7-50 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1353775 - drupal7-7.50 is available https://bugzilla.redhat.com/show_bug.cgi?id=1353775 -------------------------------------------------------------------------------- ================================================================================ libburn-1.4.4-1.el5 (FEDORA-EPEL-2016-6b3ad74605) Library for reading, mastering and writing optical discs -------------------------------------------------------------------------------- Update Information: libisofs 1.4.4 ============== * Bug fix: HFS+ production could cause MBR partition of type 0xEE without GPT. * Bug fix: Protective MBR was not produced if no System Area data are given. * Bug fix: Protective MBR was not recognized if partition is appended. * Bug fix: The HFS+ filesystem was not marked in GPT of GRUB2 hybrid layout. * Bug fix: HFS+ directories could announce more children than they actually have. * Bug fix: At image loading time GRUB2 MBR was not recognized if the partitiontable is not the protective one as described by UEFI. * Bug fix: Oversized text in ISO_SYSAREA_REPORT_DOC_ALPHA. Thanks to Etienne Bergeron. * New pseudo path for El Torito boot images: --interval:appened_partition_N:all:: * New bit15 with options of iso_write_opts_set_system_area() to enforce MBR bootable/active flag. * New API calls iso_write_opts_set_appended_as_apm(), iso_write_opts_set_part_like_isohybrid(). * Introduced image size tolerance of 300 kB in order to recognize SUN Disk Label that was generated by genisoimage -B "...". * Added "extern C" to libisofs.h libburn and cdrskin 1.4.4 ========================= * Bug fix: Option drive_scsi_dev_family=sg did not convert /dev/sr* to /dev/sg* * Bug fix: burn_make_input_sheet_v07t() falsly recognized double byte encoding. Affected cdrskin option: cdtext_to_v07t= * Bug fix: Double free at end of run if burn_write_opts_set_leadin_text() is used. Affected cdrskin option: textfile= * Bug fix: DVD book type of DVD+RW DL and DVD+R DL was reported wrong. Thanks to Etienne Bergeron. libisoburn and xorriso 1.4.4 ============================ * Bug fix: -as mkisofs did not unescape "\=" in the source part of pathspecs * Bug fix: -boot_image "any" "system_area=/dev/zero" did not zeroize loaded data * Bug fix: -pathspecs "on" did not properly handle "\\=" * Bug fix: When reading an ISO filesystem, the presence of --protective-msdos-label was not recognized if a partition is appended * Bug fix: xorrisofs option --protective-msdos-label did not work if no system area data were given by option -G or alike * Bug fix: -modesty_on_drive properties timeout_sec, min_usec, max_usec read wrong numbers from the parameter text * Letting -as mkisofs --norock revoke the special effect of -r * Letting -blank on overwritable media invalidate UDF extended descriptors * New -pathspecs mode "as_mkisofs" * New -boot_image setting mbr_force_bootable=, -as mkisofs --mbr-force-bootable * New -boot_image bootspecs appended_part_as=apm, part_like_isohybrid=on * New -as mkisofs options -appended_part_as_apm, -part_like_isohybrid * New command -scsi_dev_family, new -as cdrecord option drive_scsi_dev_family= -------------------------------------------------------------------------------- References: [ 1 ] Bug #1352345 - libisoburn-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352345 [ 2 ] Bug #1352496 - libburn-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352496 [ 3 ] Bug #1352346 - libisofs-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352346 -------------------------------------------------------------------------------- ================================================================================ libisoburn-1.4.4-1.el5 (FEDORA-EPEL-2016-6b3ad74605) Library to enable creation and expansion of ISO-9660 filesystems -------------------------------------------------------------------------------- Update Information: libisofs 1.4.4 ============== * Bug fix: HFS+ production could cause MBR partition of type 0xEE without GPT. * Bug fix: Protective MBR was not produced if no System Area data are given. * Bug fix: Protective MBR was not recognized if partition is appended. * Bug fix: The HFS+ filesystem was not marked in GPT of GRUB2 hybrid layout. * Bug fix: HFS+ directories could announce more children than they actually have. * Bug fix: At image loading time GRUB2 MBR was not recognized if the partitiontable is not the protective one as described by UEFI. * Bug fix: Oversized text in ISO_SYSAREA_REPORT_DOC_ALPHA. Thanks to Etienne Bergeron. * New pseudo path for El Torito boot images: --interval:appened_partition_N:all:: * New bit15 with options of iso_write_opts_set_system_area() to enforce MBR bootable/active flag. * New API calls iso_write_opts_set_appended_as_apm(), iso_write_opts_set_part_like_isohybrid(). * Introduced image size tolerance of 300 kB in order to recognize SUN Disk Label that was generated by genisoimage -B "...". * Added "extern C" to libisofs.h libburn and cdrskin 1.4.4 ========================= * Bug fix: Option drive_scsi_dev_family=sg did not convert /dev/sr* to /dev/sg* * Bug fix: burn_make_input_sheet_v07t() falsly recognized double byte encoding. Affected cdrskin option: cdtext_to_v07t= * Bug fix: Double free at end of run if burn_write_opts_set_leadin_text() is used. Affected cdrskin option: textfile= * Bug fix: DVD book type of DVD+RW DL and DVD+R DL was reported wrong. Thanks to Etienne Bergeron. libisoburn and xorriso 1.4.4 ============================ * Bug fix: -as mkisofs did not unescape "\=" in the source part of pathspecs * Bug fix: -boot_image "any" "system_area=/dev/zero" did not zeroize loaded data * Bug fix: -pathspecs "on" did not properly handle "\\=" * Bug fix: When reading an ISO filesystem, the presence of --protective-msdos-label was not recognized if a partition is appended * Bug fix: xorrisofs option --protective-msdos-label did not work if no system area data were given by option -G or alike * Bug fix: -modesty_on_drive properties timeout_sec, min_usec, max_usec read wrong numbers from the parameter text * Letting -as mkisofs --norock revoke the special effect of -r * Letting -blank on overwritable media invalidate UDF extended descriptors * New -pathspecs mode "as_mkisofs" * New -boot_image setting mbr_force_bootable=, -as mkisofs --mbr-force-bootable * New -boot_image bootspecs appended_part_as=apm, part_like_isohybrid=on * New -as mkisofs options -appended_part_as_apm, -part_like_isohybrid * New command -scsi_dev_family, new -as cdrecord option drive_scsi_dev_family= -------------------------------------------------------------------------------- References: [ 1 ] Bug #1352345 - libisoburn-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352345 [ 2 ] Bug #1352496 - libburn-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352496 [ 3 ] Bug #1352346 - libisofs-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352346 -------------------------------------------------------------------------------- ================================================================================ libisofs-1.4.4-1.el5 (FEDORA-EPEL-2016-6b3ad74605) Library to create ISO 9660 disk images -------------------------------------------------------------------------------- Update Information: libisofs 1.4.4 ============== * Bug fix: HFS+ production could cause MBR partition of type 0xEE without GPT. * Bug fix: Protective MBR was not produced if no System Area data are given. * Bug fix: Protective MBR was not recognized if partition is appended. * Bug fix: The HFS+ filesystem was not marked in GPT of GRUB2 hybrid layout. * Bug fix: HFS+ directories could announce more children than they actually have. * Bug fix: At image loading time GRUB2 MBR was not recognized if the partitiontable is not the protective one as described by UEFI. * Bug fix: Oversized text in ISO_SYSAREA_REPORT_DOC_ALPHA. Thanks to Etienne Bergeron. * New pseudo path for El Torito boot images: --interval:appened_partition_N:all:: * New bit15 with options of iso_write_opts_set_system_area() to enforce MBR bootable/active flag. * New API calls iso_write_opts_set_appended_as_apm(), iso_write_opts_set_part_like_isohybrid(). * Introduced image size tolerance of 300 kB in order to recognize SUN Disk Label that was generated by genisoimage -B "...". * Added "extern C" to libisofs.h libburn and cdrskin 1.4.4 ========================= * Bug fix: Option drive_scsi_dev_family=sg did not convert /dev/sr* to /dev/sg* * Bug fix: burn_make_input_sheet_v07t() falsly recognized double byte encoding. Affected cdrskin option: cdtext_to_v07t= * Bug fix: Double free at end of run if burn_write_opts_set_leadin_text() is used. Affected cdrskin option: textfile= * Bug fix: DVD book type of DVD+RW DL and DVD+R DL was reported wrong. Thanks to Etienne Bergeron. libisoburn and xorriso 1.4.4 ============================ * Bug fix: -as mkisofs did not unescape "\=" in the source part of pathspecs * Bug fix: -boot_image "any" "system_area=/dev/zero" did not zeroize loaded data * Bug fix: -pathspecs "on" did not properly handle "\\=" * Bug fix: When reading an ISO filesystem, the presence of --protective-msdos-label was not recognized if a partition is appended * Bug fix: xorrisofs option --protective-msdos-label did not work if no system area data were given by option -G or alike * Bug fix: -modesty_on_drive properties timeout_sec, min_usec, max_usec read wrong numbers from the parameter text * Letting -as mkisofs --norock revoke the special effect of -r * Letting -blank on overwritable media invalidate UDF extended descriptors * New -pathspecs mode "as_mkisofs" * New -boot_image setting mbr_force_bootable=, -as mkisofs --mbr-force-bootable * New -boot_image bootspecs appended_part_as=apm, part_like_isohybrid=on * New -as mkisofs options -appended_part_as_apm, -part_like_isohybrid * New command -scsi_dev_family, new -as cdrecord option drive_scsi_dev_family= -------------------------------------------------------------------------------- References: [ 1 ] Bug #1352345 - libisoburn-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352345 [ 2 ] Bug #1352496 - libburn-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352496 [ 3 ] Bug #1352346 - libisofs-1.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352346 -------------------------------------------------------------------------------- ================================================================================ safekeep-1.4.4-1.el5 (FEDORA-EPEL-2016-402423d16b) The SafeKeep backup system -------------------------------------------------------------------------------- Update Information: Latest upstream release -------------------------------------------------------------------------------- ================================================================================ tcpreplay-4.1.1-2.el5 (FEDORA-EPEL-2016-61f32ecfe2) Replay captured network traffic -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-6160. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1353525 - CVE-2016-6160 tcpreplay: Tcprewrite does not check the size of frames it processes https://bugzilla.redhat.com/show_bug.cgi?id=1353525 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list epel-devel@xxxxxxxxxxxxxxxxxxxxxxx https://lists.fedoraproject.org/admin/lists/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
