The following Fedora EPEL 6 Security updates need testing: Age URL 386 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6 380 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 312 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-8156 nagios-4.0.8-1.el6 270 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 242 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 128 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-30a8346813 vtun-3.0.1-10.el6 33 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-db7e78fac7 php-PHPMailer-5.2.16-2.el6 26 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-d0e444c5f2 pypy-5.0.1-4.el6 25 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-7a25f65890 nginx-1.10.1-1.el6 17 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-225fc51f32 chicken-4.11.0-2.el6 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-d1c7111779 p7zip-16.02-1.el6 8 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-1cbd9dc578 drupal7-views-3.14-1.el6 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-823164477b php-doctrine-orm-2.4.8-1.el6 php-doctrine-dbal-2.4.5-1.el6 php-doctrine-common-2.4.3-2.el6 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-6e8996ae73 php-ZendFramework2-2.2.10-2.el6 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2f26fee4ad dropbear-2016.74-1.el6 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-2d00357bc8 dietlibc-0.33-8.el6 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-66eb498b93 v8-3.14.5.10-25.el6 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-af2033a524 cryptopp-5.6.2-10.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-d8fc3f17ea libarchive3-3.2.1-1.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-b191f5d359 collectd-4.10.9-3.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing ansible-2.1.1.0-1.el6 arp-scan-1.9.2-1.el6 collectd-4.10.9-3.el6 golang-github-gengo-grpc-gateway-0-0.1.gitdcb8443.el6 golang-googlecode-goprotobuf-0-0.24.git8616e8e.el6 libarchive3-3.2.1-1.el6 mozilla-requestpolicy-1.0-0.15.20160626git06f4c1.el6 php-horde-Horde-Auth-2.2.0-1.el6 php-horde-Horde-Core-2.25.0-1.el6 php-horde-Horde-Mime-Viewer-2.2.0-1.el6 php-twig-1.24.1-1.el6 telegram-cli-1.3.3-0.6.20160323git443793.el6 Details about builds: ================================================================================ ansible-2.1.1.0-1.el6 (FEDORA-EPEL-2016-96a52ccff6) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: Update to ansible 2.1.1 with lots of bugfixes. See: https://github.com/ansible/ansible/blob/stable-2.1/CHANGELOG.md for a full list -------------------------------------------------------------------------------- References: [ 1 ] Bug #1346950 - Ansible fails on Amazon Linux https://bugzilla.redhat.com/show_bug.cgi?id=1346950 -------------------------------------------------------------------------------- ================================================================================ arp-scan-1.9.2-1.el6 (FEDORA-EPEL-2016-58871d6d23) Scanning and fingerprinting tool -------------------------------------------------------------------------------- Update Information: fix #1359953 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1359953 - [abrt] arp-scan: get_hardware_address(): arp-scan killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1359953 -------------------------------------------------------------------------------- ================================================================================ collectd-4.10.9-3.el6 (FEDORA-EPEL-2016-b191f5d359) Statistics collection daemon for filling RRD files -------------------------------------------------------------------------------- Update Information: Security fix for unchecked error conditionals of gcry_control. ---- CVE-2016-6254 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1361062 - collectd: Unchecked error conditions of gcry_control https://bugzilla.redhat.com/show_bug.cgi?id=1361062 -------------------------------------------------------------------------------- ================================================================================ golang-github-gengo-grpc-gateway-0-0.1.gitdcb8443.el6 (FEDORA-EPEL-2016-82d8d36d1e) GRPC to JSON proxy generator -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1354375 - Review Request: golang-github-gengo-grpc-gateway - GRPC to JSON proxy generator https://bugzilla.redhat.com/show_bug.cgi?id=1354375 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-goprotobuf-0-0.24.git8616e8e.el6 (FEDORA-EPEL-2016-4f32e95528) Go support for Google protocol buffers -------------------------------------------------------------------------------- Update Information: Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1246113 - Tracker for golang-googlecode-goprotobuf https://bugzilla.redhat.com/show_bug.cgi?id=1246113 -------------------------------------------------------------------------------- ================================================================================ libarchive3-3.2.1-1.el6 (FEDORA-EPEL-2016-d8fc3f17ea) A library for handling streaming archive formats -------------------------------------------------------------------------------- Update Information: - Update to 3.2.1 - Drop old patches - Make bsdcat3 sub-package - Use cmake as builder on epel (autogen.sh needs autoconf >= 2.69) - Use ctest for testing - Fix bz#1358370 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1358370 - CVE-2016-6250 libarchive3: libarchive: Integer overflow when verifying filename size [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=1358370 -------------------------------------------------------------------------------- ================================================================================ mozilla-requestpolicy-1.0-0.15.20160626git06f4c1.el6 (FEDORA-EPEL-2016-a685e81067) Firefox and Seamonkey extension that gives you control over cross-site requests -------------------------------------------------------------------------------- Update Information: - Update to v1.0.beta12.2 - Drop old patch -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Auth-2.2.0-1.el6 (FEDORA-EPEL-2016-a591ba52c9) Horde Authentication API -------------------------------------------------------------------------------- Update Information: **Horde_Auth 2.2.0** * [jan] Add searchUsers() method. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Core-2.25.0-1.el6 (FEDORA-EPEL-2016-67774a2991) Horde Core Framework libraries -------------------------------------------------------------------------------- Update Information: **Horde_Core 2.25.0** * [jan] Allow to use the pretty autocompleter without Ajax requests. * [mjr] Allow adding CSS files with Ajax response. * [mjr] Use syntaxhighlighter version 4. * [jan] Fix issue with prototype.js that keeps images in HTML messages from loading. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Mime-Viewer-2.2.0-1.el6 (FEDORA-EPEL-2016-db5118bd8d) Horde MIME Viewer Library -------------------------------------------------------------------------------- Update Information: **Horde_Mime_Viewer 2.2.0** * [mjr] Add SyntaxHighlighter version 4 support. -------------------------------------------------------------------------------- ================================================================================ php-twig-1.24.1-1.el6 (FEDORA-EPEL-2016-4013ecbbe1) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: ### 1.24.1 (2016-05-30) * fixed reserved keywords (forbids true, false, null and none keywords for variables names) * fixed support for PHP7 (Throwable support) * marked the following methods as being internals on Twig_Environment: getFunctions(), getFilters(), getTests(), getFunction(), getFilter(), getTest(), getTokenParsers(), getTags(), getNodeVisitors(), getUnaryOperators(), getBinaryOperators(), getFunctions(), getFilters(), getGlobals(), initGlobals(), initExtensions(), and initExtension() ### 1.24.0 (2016-01-25) * adding support for the ?? operator * fixed the defined test when used on a constant, a map, or a sequence * undeprecated _self (should only be used to get the template name, not the template instance) * fixed parsing on PHP7 ### 1.23.3 (2016-01-11) * fixed typo ### 1.23.2 (2015-01-11) * added versions in deprecated messages * made file cache tolerant for trailing (back)slashes on directory configuration * deprecated unused Twig_Node_Expression_ExtensionReference class ### 1.23.1 (2015-11-05) * fixed some exception messages which triggered PHP warnings * fixed BC on Twig_Test_NodeTestCase ### 1.23.0 (2015-10-29) * deprecated the possibility to override an extension by registering another one with the same name * deprecated Twig_ExtensionInterface::getGlobals() (added Twig_Extension_GlobalsInterface for BC) * deprecated Twig_ExtensionInterface::initRuntime() (added Twig_Extension_InitRuntimeInterface for BC) * deprecated Twig_Environment::computeAlternatives() ### 1.22.3 (2015-10-13) * fixed regression when using null as a cache strategy * improved performance when checking template freshness * fixed warnings when loaded templates do not exist * fixed template class name generation to prevent possible collisions * fixed logic for custom escapers to call them even on integers and null values * changed template cache names to take into account the Twig C extension -------------------------------------------------------------------------------- ================================================================================ telegram-cli-1.3.3-0.6.20160323git443793.el6 (FEDORA-EPEL-2016-666db6a466) Linux Command-line interface for Telegram -------------------------------------------------------------------------------- Update Information: - Update to new commit #443793 - Python support is disabled (partially abandoned by upstream) -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list epel-devel@xxxxxxxxxxxxxxxxxxxxxxx https://lists.fedoraproject.org/admin/lists/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
