The following Fedora EPEL 7 Security updates need testing: Age URL 575 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 337 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 56 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c redis-3.2.3-1.el7 54 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-4b8dd3488d knot-1.6.8-1.el7 40 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3 chicken-4.11.0-3.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-03fb3c1531 banshee-2.6.2-11.el7 dbus-sharp-0.7.0-15.el7 dbus-sharp-glib-0.5.0-13.el7 gdata-sharp-1.4.0.2-18.el7 gio-sharp-0.3-14.el7 gkeyfile-sharp-0.1-19.el7 gnome-sharp-2.24.2-12.el7 gtk-sharp-beans-2.14.0-17.el7 gtk-sharp2-2.12.26-3.el7 gtk-sharp3-2.99.3-16.el7 gudev-sharp-0.1-18.el7 libappindicator-12.10.0-11.el7 libgpod-0.8.3-8.el7 mono-4.2.4-7.el7 mono-addins-1.1-3.el7 mono-cecil-0.9.6-6.el7 mono-zeroconf-0.9.0-16.el7 notify-sharp-0.4.0-0.26.20100411svn.el7 notify-sharp3-3.0.3-2.el7 nunit-3.4.1-2.el7 nunit2-2.6.4-14.el7 pinta-1.6-5.el7 taglib-sharp-2.1.0.0-3.el7 12 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-49577d864a mongodb-2.6.12-3.el7 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-aca1572ceb mingw-gnutls-3.3.24-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-8f6ed4db26 libuv-1.9.1-1.el7 nodejs-6.7.0-107.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-28ad6782b3 php-adodb-5.20.6-2.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-208f62faa6 links-2.13-1.el7 5 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-452534ff97 php-ZendFramework-1.12.20-1.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-39560a2353 mingw-c-ares-1.12.0-1.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-60045af95e mingw-libidn-1.33-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-0890ae6d2d nsd-4.1.13-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-387d58ef27 chromium-53.0.2785.143-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing OpenImageIO-1.5.24-3.el7 SDL2_mixer-2.0.1-2.el7 check-mk-1.2.8p11-2.el7 chromium-53.0.2785.143-1.el7 dpm-dsi-1.9.9-1.el7 fail2ban-0.9.5-3.el7 fluidsynth-1.1.6-7.el7 fts-3.4.3-3.el7 gfal2-2.12.2-2.el7 lash-0.5.4-26.el7 lumina-desktop-1.0.0-5.p2.Lbc08e90.el7 mingw-cmocka-1.1.0-2.el7 mkvtoolnix-7.4.0-3.el7 php-bartlett-php-compatinfo-db-1.13.0-1.el7 php-phpseclib-2.0.4-1.el7 php-symfony-2.8.12-2.el7 php-twig-1.26.0-1.el7 php-udan11-sql-parser-3.4.10-1.el7 plasma-oxygen-5.8.0-2.el7 pugixml-1.7-3.el7 python-bitarray-0.8.1-4.el7 python-jcconv-0.2.4-2.el7 sddm-0.14.0-3.el7 sks-1.1.6-1.el7 zstd-1.1.0-1.el7 Details about builds: ================================================================================ OpenImageIO-1.5.24-3.el7 (FEDORA-EPEL-2016-dce60c46e0) Library for reading and writing images -------------------------------------------------------------------------------- Update Information: Update pugixml to latest version and rebuild dependencies. ---- New upstream release 2.12.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1347390 - None https://bugzilla.redhat.com/show_bug.cgi?id=1347390 -------------------------------------------------------------------------------- ================================================================================ SDL2_mixer-2.0.1-2.el7 (FEDORA-EPEL-2016-653039c60a) Simple DirectMedia Layer - Sample Mixer Library -------------------------------------------------------------------------------- Update Information: Initial SD2_mixer build for EPEL 7. -------------------------------------------------------------------------------- ================================================================================ check-mk-1.2.8p11-2.el7 (FEDORA-EPEL-2016-c760babd41) A new general purpose Nagios-plugin for retrieving data -------------------------------------------------------------------------------- Update Information: Dist tag fix for mod_python to be a require on EL6 only. ---- New upstream release. -------------------------------------------------------------------------------- ================================================================================ chromium-53.0.2785.143-1.el7 (FEDORA-EPEL-2016-387d58ef27) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-5177, CVE-2016-5178 https://googlechromereleases.blogspot.com/2016/09/stable-channel-update-for- desktop_29.html ---- Update to 53.0.2785.116. https://chromium.googlesource.c om/chromium/src/+log/53.0.2785.113..53.0.2785.116?pretty=fuller&n=10000 ---- Update to 53.0.2785.113 Security fix for CVE-2016-5170, CVE-2016-5171, CVE-2016-5172, CVE-2016-5173, CVE-2016-5174, CVE-2016-5175 ---- Stable update to 53.0.2785.101. Security fix for CVE-2016-5147, CVE-2016-5148, CVE-2016-5149, CVE-2016-5150, CVE-2016-5151, CVE-2016-5152, CVE-2016-5153, CVE-2016-5154, CVE-2016-5155, CVE-2016-5156, CVE-2016-5157, CVE-2016-5158, CVE-2016-5159, CVE-2016-5161, CVE-2016-5162, CVE-2016-5163, CVE-2016-5164, CVE-2016-5165, CVE-2016-5166, CVE-2016-5160, CVE-2016-5167 Also applies fix for chrome-remote- desktop where HOME env variable was not properly set via systemd service. ---- Remove fedora only Requires, use bundled harfbuzz because el7 system lib is too old. ---- Disabled hidpi option in Chromium. Cleanup widevine handling so that third party addon package can exist. Add Requires(post) for selinux deps. Fix provides/requires to not include private libs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1380632 - CVE-2016-5178 chromium-browser: various fixes from internal audits https://bugzilla.redhat.com/show_bug.cgi?id=1380632 [ 2 ] Bug #1380631 - CVE-2016-5177 chromium-browser: use after free in v8 https://bugzilla.redhat.com/show_bug.cgi?id=1380631 [ 3 ] Bug #1375868 - CVE-2016-5175 chromium-browser: various fixes from internal audits https://bugzilla.redhat.com/show_bug.cgi?id=1375868 [ 4 ] Bug #1375867 - CVE-2016-5174 chromium-browser: popup not correctly suppressed https://bugzilla.redhat.com/show_bug.cgi?id=1375867 [ 5 ] Bug #1375866 - CVE-2016-5173 chromium-browser: extension resource access https://bugzilla.redhat.com/show_bug.cgi?id=1375866 [ 6 ] Bug #1375865 - CVE-2016-5172 chromium-browser: arbitrary memory read in v8 https://bugzilla.redhat.com/show_bug.cgi?id=1375865 [ 7 ] Bug #1375864 - CVE-2016-5171 chromium-browser: use after free in blink https://bugzilla.redhat.com/show_bug.cgi?id=1375864 [ 8 ] Bug #1375863 - CVE-2016-5170 chromium-browser: use after free in blink https://bugzilla.redhat.com/show_bug.cgi?id=1375863 [ 9 ] Bug #1372229 - CVE-2016-5167 chromium-browser: various fixes from internal audits https://bugzilla.redhat.com/show_bug.cgi?id=1372229 [ 10 ] Bug #1372228 - CVE-2016-5160 chromium-browser: extensions web accessible resources bypass https://bugzilla.redhat.com/show_bug.cgi?id=1372228 [ 11 ] Bug #1372227 - CVE-2016-5166 chromium-browser: smb relay attack via save page as https://bugzilla.redhat.com/show_bug.cgi?id=1372227 [ 12 ] Bug #1372225 - CVE-2016-5165 chromium-browser: script injection in devtools https://bugzilla.redhat.com/show_bug.cgi?id=1372225 [ 13 ] Bug #1372224 - CVE-2016-5164 chromium-browser: universal xss using devtools https://bugzilla.redhat.com/show_bug.cgi?id=1372224 [ 14 ] Bug #1372223 - CVE-2016-5163 chromium-browser: address bar spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1372223 [ 15 ] Bug #1372222 - CVE-2016-5162 chromium-browser: extensions web accessible resources bypass https://bugzilla.redhat.com/show_bug.cgi?id=1372222 [ 16 ] Bug #1372221 - CVE-2016-5161 chromium-browser: type confusion in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372221 [ 17 ] Bug #1372220 - CVE-2016-5159 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372220 [ 18 ] Bug #1372219 - CVE-2016-5158 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372219 [ 19 ] Bug #1372218 - CVE-2016-5157 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372218 [ 20 ] Bug #1372217 - CVE-2016-5156 chromium-browser: use after free in event bindings https://bugzilla.redhat.com/show_bug.cgi?id=1372217 [ 21 ] Bug #1372216 - CVE-2016-5155 chromium-browser: address bar spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1372216 [ 22 ] Bug #1372215 - CVE-2016-5154 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372215 [ 23 ] Bug #1372214 - CVE-2016-5153 chromium-browser: use after destruction in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372214 [ 24 ] Bug #1372213 - CVE-2016-5152 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372213 [ 25 ] Bug #1372212 - CVE-2016-5151 chromium-browser: use after free in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372212 [ 26 ] Bug #1372210 - CVE-2016-5150 chromium-browser: use after free in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372210 [ 27 ] Bug #1372209 - CVE-2016-5149 chromium-browser: script injection in extensions https://bugzilla.redhat.com/show_bug.cgi?id=1372209 [ 28 ] Bug #1372208 - CVE-2016-5148 chromium-browser: universal xss in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372208 [ 29 ] Bug #1372207 - CVE-2016-5147 chromium-browser: universal xss in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372207 -------------------------------------------------------------------------------- ================================================================================ dpm-dsi-1.9.9-1.el7 (FEDORA-EPEL-2016-f15492ebff) Disk Pool Manager (DPM) plugin for the Globus GridFTP server -------------------------------------------------------------------------------- Update Information: * new upstream release -------------------------------------------------------------------------------- ================================================================================ fail2ban-0.9.5-3.el7 (FEDORA-EPEL-2016-73eab6c7c7) Daemon to ban hosts that cause multiple authentication errors -------------------------------------------------------------------------------- Update Information: - Update to 0.9.5 - see https://github.com/fail2ban/fail2ban/releases/tag/0.9.5 - Give up being PartOf iptables to allow firewalld restarts to work (bug #1379141) - Add journalmatch entries for sendmail (bug #1329919) ---- Update to 0.9.4: Fixes: roundcube-auth jail typo for logpath Fix dnsToIp resolver for fqdn with large list of IPs (gh-1164) filter.d /apache-badbots.conf Updated useragent string regex adding escape for + filter.d/mysqld-auth.conf Updated "Access denied ..." regex for MySQL 5.6 and later (gh-1211, gh-1332) filter.d/sshd.conf Updated "Auth fail" regex for OpenSSH 5.9 and later Treat failed and killed execution of commands identically (only different log messages), which addresses different behavior on different exit codes of dash and bash (gh-1155) Fix jail.conf.5 man's section (gh-1226) Fixed default banaction for allports jails like pam-generic, recidive, etc with new default variable banaction_allports (gh-1216) Fixed fail2ban-regex stops working on invalid (wrong encoded) character for python version < 3.x (gh-1248) Use postfix_log logpath for postfix-rbl jail filters.d/postfix.conf - add 'Sender address rejected: Domain not found' failregex use fail2ban_agent as user-agent in actions badips, blocklist_de, etc (gh-1271) Fix ignoring the sender option by action_mw, action_mwl and action_c_mwl Changed filter.d/asterisk regex for "Call from ..." (few vulnerable now) Removed compression and rotation count from logrotate (inherit them from the global logrotate config) New Features: New interpolation feature for definition config readers - <known/parameter> (means last known init definition of filters or actions with name parameter). This interpolation makes possible to extend a parameters of stock filter or action directly in jail inside jail.local file, without creating a separately filter.d/*.local file. As extension to interpolation %(known/parameter)s, that does not works for filter and action init parameters New actions: nftables-multiport and nftables-allports - filtering using nftables framework. Note: it requires a pre-existing chain for the filtering rule. New filters: openhab - domotic software authentication failure with the rest api and web interface (gh-1223) nginx-limit-req - ban hosts, that were failed through nginx by limit request processing rate (ngx_http_limit_req_module) murmur - ban hosts that repeatedly attempt to connect to murmur/mumble-server with an invalid server password or certificate. haproxy-http-auth - filter to match failed HTTP Authentications against a HAProxy server New jails: murmur - bans TCP and UDP from the bad host on the default murmur port. sshd filter got new failregex to match "maximum authentication attempts exceeded" (introduced in openssh 6.8) Added filter for Mac OS screen sharing (VNC) daemon Enhancements: Do not rotate empty log files Added new date pattern with year after day (e.g. Sun Jan 23 2005 21:59:59) http://bugs.debian.org/798923 Added openSUSE path configuration (Thanks Johannes Weberhofer) Allow to split ignoreip entries by ',' as well as by ' ' (gh-1197) Added a timeout (3 sec) to urlopen within badips.py action (Thanks M. Maraun) Added check against atacker's Googlebot PTR fake records (Thanks Pablo Rodriguez Fernandez) Enhance filter against atacker's Googlebot PTR fake records (gh-1226) Nginx log paths extended (prefixed with "*" wildcard) (gh-1237) Added filter for openhab domotic software authentication failure with the rest api and web interface (gh-1223) Add *_backend options for services to allow distros to set the default backend per service, set default to systemd for Fedora as appropriate Performance improvements while monitoring large number of files (gh-1265). Use associative array (dict) for monitored log files to speed up lookup operations. Thanks @kshetragia Specified that fail2ban is PartOf iptables.service firewalld.service in .service file -- would reload fail2ban if those services are restarted Provides new default fail2ban_version and interpolation variable fail2ban_agent in jail.conf Enhance filter 'postfix' to ban incoming SMTP client with no fqdn hostname, and to support multiple instances of postfix having varying suffix (gh-1331) (Thanks Tom Hendrikx) files/gentoo-initd to use start-stop-daemon to robustify restarting the service -------------------------------------------------------------------------------- References: [ 1 ] Bug #1321460 - asterisk regex needs to be more liberal https://bugzilla.redhat.com/show_bug.cgi?id=1321460 -------------------------------------------------------------------------------- ================================================================================ fluidsynth-1.1.6-7.el7 (FEDORA-EPEL-2016-653039c60a) Real-time software synthesizer -------------------------------------------------------------------------------- Update Information: Initial SD2_mixer build for EPEL 7. -------------------------------------------------------------------------------- ================================================================================ fts-3.4.3-3.el7 (FEDORA-EPEL-2016-dce60c46e0) File Transfer Service V3 -------------------------------------------------------------------------------- Update Information: Update pugixml to latest version and rebuild dependencies. ---- New upstream release 2.12.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1347390 - None https://bugzilla.redhat.com/show_bug.cgi?id=1347390 -------------------------------------------------------------------------------- ================================================================================ gfal2-2.12.2-2.el7 (FEDORA-EPEL-2016-dce60c46e0) Grid file access library 2.0 -------------------------------------------------------------------------------- Update Information: Update pugixml to latest version and rebuild dependencies. ---- New upstream release 2.12.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1347390 - None https://bugzilla.redhat.com/show_bug.cgi?id=1347390 -------------------------------------------------------------------------------- ================================================================================ lash-0.5.4-26.el7 (FEDORA-EPEL-2016-653039c60a) LASH Audio Session Handler -------------------------------------------------------------------------------- Update Information: Initial SD2_mixer build for EPEL 7. -------------------------------------------------------------------------------- ================================================================================ lumina-desktop-1.0.0-5.p2.Lbc08e90.el7 (FEDORA-EPEL-2016-8ef6597c75) A lightweight, portable desktop environment -------------------------------------------------------------------------------- Update Information: Initial package, rhbz#1357064 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1357064 - None https://bugzilla.redhat.com/show_bug.cgi?id=1357064 [ 2 ] Bug #1381197 - None https://bugzilla.redhat.com/show_bug.cgi?id=1381197 -------------------------------------------------------------------------------- ================================================================================ mingw-cmocka-1.1.0-2.el7 (FEDORA-EPEL-2016-8e0d13ce58) MinGW Lightweight library to simplify and generalize unit tests for C -------------------------------------------------------------------------------- Update Information: Corrected package names -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373782 - None https://bugzilla.redhat.com/show_bug.cgi?id=1373782 -------------------------------------------------------------------------------- ================================================================================ mkvtoolnix-7.4.0-3.el7 (FEDORA-EPEL-2016-dce60c46e0) Matroska container manipulation utilities -------------------------------------------------------------------------------- Update Information: Update pugixml to latest version and rebuild dependencies. ---- New upstream release 2.12.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1347390 - None https://bugzilla.redhat.com/show_bug.cgi?id=1347390 -------------------------------------------------------------------------------- ================================================================================ php-bartlett-php-compatinfo-db-1.13.0-1.el7 (FEDORA-EPEL-2016-b46055471e) Reference Database to be used with php-compatinfo library -------------------------------------------------------------------------------- Update Information: **Version 1.13.0** - 2016-10-03 - Support to PHP 7.0.11 - Support to PHP 5.6.26 - Fixed: curl reference with libCurl dependency, see [#7](https://github.com/llaville/php-compatinfo-db/issues/7) **Version 1.12.0** - 2016-09-26 - Support to PHP 7.0.10 - Support to PHP 5.6.25 -------------------------------------------------------------------------------- ================================================================================ php-phpseclib-2.0.4-1.el7 (FEDORA-EPEL-2016-73b3103b74) PHP Secure Communications Library -------------------------------------------------------------------------------- Update Information: **Version 2.0.4** - 2016-08-18 * fix E_DEPRECATED errors on PHP 7.1 (#1041) * SFTP: speed up downloads (#945) * SFTP: fix infinite loop when uploading empty file (#995) * ASN1: fix possible infinite loop in decode (#1027) ---- **Version 2.0.3** - 2016-08-18 - BigInteger/RSA: don't compare openssl versions > 1.0 (#946) - RSA: don't attempt to use the CRT when zero value components exist (#980) - RSA: zero salt length RSA signatures don't work (#1002) - ASN1: fix PHP Warning on PHP 7.1 (#1013) - X509: set parameter fields to null for CSR's / RSA (#914) - CRL optimizations (#1000) - SSH2: fix "Expected SSH_FXP_STATUS or ..." error (#999) - SSH2: use stream_get_* instead of fread() / fgets() (#967) - SFTP: make symlinks support relative target's (#1004) - SFTP: fix sending stream resulting in zero byte file (#995) -------------------------------------------------------------------------------- ================================================================================ php-symfony-2.8.12-2.el7 (FEDORA-EPEL-2016-c5b86c9ec1) PHP framework for web projects -------------------------------------------------------------------------------- Update Information: **Twig 1.26.0** (2016-10-02) * added template cache invalidation based on more environment options * added a missing deprecation notice * fixed template paths when a template is stored in a PHAR file * allowed filters/functions/tests implementation to use a different class than the extension they belong to * deprecated Twig_ExtensionInterface::getName() ---- **Twig 1.25.0** (2016-09-21) * changed the way we store template source in template classes * removed usage of realpath in cache keys * fixed Twig cache sharing when used with different versions of PHP * removed embed parent workaround for simple use cases * deprecated the ability to store non Node instances in Node::$nodes * deprecated Twig_Environment::getLexer(), Twig_Environment::getParser(), Twig_Environment::getCompiler() * deprecated Twig_Compiler::getFilename() ---- **Symfony 2.8.12** (2016-10-03) * bug #20102 [Validator] Url validator not validating hosts ending in a number (gwkunze) * bug #20132 Use "more entropy" option for uniqid() (javiereguiluz) * bug #20122 [Validator] Reset constraint options (ro0NL) * bug #20116 fixed AddConstraintValidatorsPass config (fabpot) * bug #20078 Fix #19943 Make sure to process each interface metadata only once (lemoinem) * bug #20080 [Form] compound forms without children should be considered rendered implicitly (backbone87) * bug #20087 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) * bug #20086 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) * bug #20077 [Process] silent file operation to avoid open basedir issues (xabbuh) * bug #20079 fixed Twig support for 1.26 and 2.0 (fabpot) * bug #20051 Fix indexBy type extraction (lemoinem) * bug #19951 [Finder] Trim trailing directory slash in ExcludeDirectoryFilterIterator (ro0NL) * bug #20018 [VarDumper] Fix test (nicolas-grekas) * bug #20011 Use UUID for error codes for Form validator. (Koc) * bug #20010 [DX] Fixed regression when exception message swallowed when logging it. (Koc) * bug #19983 [TwigBridge] removed Twig null nodes (deprecated as of Twig 1.25) (fabpot) * bug #19946 [Console] Fix parsing optionnal options with empty value in argv (chalasr) * bug #19636 [Finder] no PHP warning on empty directory iteration (ggottwald) * bug #19923 [bugfix] [Console] Set `Input::$interactive` to `false` when command is executed with `--quiet` as verbosity level (phansys) * bug #19811 Fixed the nullable support for php 7.1 and below (2.7, 2.8, 3.0) (iltar) * bug #19853 [PropertyInfo] Make ReflectionExtractor compatible with ReflectionType changes in PHP 7.1 (teohhanhui) * bug #19904 [Form] Fixed collapsed ChoiceType options attributes (HeahDude) * bug #19908 [Config] Handle open_basedir restrictions in FileLocator (Nicofuma) * bug #19924 [DoctrineBridge][PropertyInfo] Treat Doctrine decimal type as string (teohhanhui) * bug #19932 Fixed bad merge (GrahamCampbell) * bug #19922 [Yaml][TwigBridge] Use JSON_UNESCAPED_SLASHES for lint commands output (chalasr) * bug #19928 [Validator] Update IpValidatorTest data set with a valid reserved IP (jakzal) * bug #19813 [Console] fixed PHP7 Errors are now handled and converted to Exceptions (fonsecas72) * bug #19879 [Form] Incorrect timezone with DateTimeLocalizedStringTransformer (mbeccati) * bug #19878 Fix translation:update command count (tgalopin) -------------------------------------------------------------------------------- ================================================================================ php-twig-1.26.0-1.el7 (FEDORA-EPEL-2016-c5b86c9ec1) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: **Twig 1.26.0** (2016-10-02) * added template cache invalidation based on more environment options * added a missing deprecation notice * fixed template paths when a template is stored in a PHAR file * allowed filters/functions/tests implementation to use a different class than the extension they belong to * deprecated Twig_ExtensionInterface::getName() ---- **Twig 1.25.0** (2016-09-21) * changed the way we store template source in template classes * removed usage of realpath in cache keys * fixed Twig cache sharing when used with different versions of PHP * removed embed parent workaround for simple use cases * deprecated the ability to store non Node instances in Node::$nodes * deprecated Twig_Environment::getLexer(), Twig_Environment::getParser(), Twig_Environment::getCompiler() * deprecated Twig_Compiler::getFilename() ---- **Symfony 2.8.12** (2016-10-03) * bug #20102 [Validator] Url validator not validating hosts ending in a number (gwkunze) * bug #20132 Use "more entropy" option for uniqid() (javiereguiluz) * bug #20122 [Validator] Reset constraint options (ro0NL) * bug #20116 fixed AddConstraintValidatorsPass config (fabpot) * bug #20078 Fix #19943 Make sure to process each interface metadata only once (lemoinem) * bug #20080 [Form] compound forms without children should be considered rendered implicitly (backbone87) * bug #20087 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) * bug #20086 [VarDumper] Fix PHP 7.1 compat (nicolas-grekas) * bug #20077 [Process] silent file operation to avoid open basedir issues (xabbuh) * bug #20079 fixed Twig support for 1.26 and 2.0 (fabpot) * bug #20051 Fix indexBy type extraction (lemoinem) * bug #19951 [Finder] Trim trailing directory slash in ExcludeDirectoryFilterIterator (ro0NL) * bug #20018 [VarDumper] Fix test (nicolas-grekas) * bug #20011 Use UUID for error codes for Form validator. (Koc) * bug #20010 [DX] Fixed regression when exception message swallowed when logging it. (Koc) * bug #19983 [TwigBridge] removed Twig null nodes (deprecated as of Twig 1.25) (fabpot) * bug #19946 [Console] Fix parsing optionnal options with empty value in argv (chalasr) * bug #19636 [Finder] no PHP warning on empty directory iteration (ggottwald) * bug #19923 [bugfix] [Console] Set `Input::$interactive` to `false` when command is executed with `--quiet` as verbosity level (phansys) * bug #19811 Fixed the nullable support for php 7.1 and below (2.7, 2.8, 3.0) (iltar) * bug #19853 [PropertyInfo] Make ReflectionExtractor compatible with ReflectionType changes in PHP 7.1 (teohhanhui) * bug #19904 [Form] Fixed collapsed ChoiceType options attributes (HeahDude) * bug #19908 [Config] Handle open_basedir restrictions in FileLocator (Nicofuma) * bug #19924 [DoctrineBridge][PropertyInfo] Treat Doctrine decimal type as string (teohhanhui) * bug #19932 Fixed bad merge (GrahamCampbell) * bug #19922 [Yaml][TwigBridge] Use JSON_UNESCAPED_SLASHES for lint commands output (chalasr) * bug #19928 [Validator] Update IpValidatorTest data set with a valid reserved IP (jakzal) * bug #19813 [Console] fixed PHP7 Errors are now handled and converted to Exceptions (fonsecas72) * bug #19879 [Form] Incorrect timezone with DateTimeLocalizedStringTransformer (mbeccati) * bug #19878 Fix translation:update command count (tgalopin) -------------------------------------------------------------------------------- ================================================================================ php-udan11-sql-parser-3.4.10-1.el7 (FEDORA-EPEL-2016-dee865ea7e) A validating SQL lexer and parser with a focus on MySQL dialect -------------------------------------------------------------------------------- Update Information: **Version 3.4.10** - 2016-10-03 * Fixed API regression on DELETE statement --- **Version 3.4.9** - 2016-10-03 * Added support for CASE expressions * Support for parsing and building DELETE statement * Support for parsing subqueries in FROM clause --- **Version 3.4.8** - 2016-09-22 * No change release to sync GitHub releases with Packagist ---- **Version 3.4.7** - 2016-09-20 * Fix parsing of DEFINER without backquotes * Fixed escaping HTML entities in HTML formatter * Fixed escaping of control chars in CLI formatter ---- **Version 3.4.6** - 2016-09-13 * Fix parsing of REPLACE INTO ... * Fix parsing of INSERT ... ON DUPLICATE KEY UPDATE ... * Extended testsuite * Re-enabled PHP 5.3 support --- **Version 3.4.5** - 2016-09-13 * Fix parsing of INSERT...SELECT and INSERT...SET syntax * Fix parsing of CREATE TABLE ... PARTITION * Fix parsing of SET CHARACTER SET, CHARSET, NAMES * Add Support for 'CREATE TABLE `table_copy` LIKE `table` -------------------------------------------------------------------------------- ================================================================================ plasma-oxygen-5.8.0-2.el7 (FEDORA-EPEL-2016-9aca50b652) Plasma and Qt widget style and window decorations for Plasma 5 and KDE 4 -------------------------------------------------------------------------------- Update Information: Provide qt5-style-oxygen for epel7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1381197 - None https://bugzilla.redhat.com/show_bug.cgi?id=1381197 -------------------------------------------------------------------------------- ================================================================================ pugixml-1.7-3.el7 (FEDORA-EPEL-2016-dce60c46e0) A light-weight C++ XML processing library -------------------------------------------------------------------------------- Update Information: Update pugixml to latest version and rebuild dependencies. ---- New upstream release 2.12.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1347390 - None https://bugzilla.redhat.com/show_bug.cgi?id=1347390 -------------------------------------------------------------------------------- ================================================================================ python-bitarray-0.8.1-4.el7 (FEDORA-EPEL-2016-299648f46c) Efficient Array of Booleans --C Extensions -------------------------------------------------------------------------------- Update Information: Add support to epel 7 and 6, disable python3 in el6 -------------------------------------------------------------------------------- ================================================================================ python-jcconv-0.2.4-2.el7 (FEDORA-EPEL-2016-5b597e47b6) JapaneseCharacterCONVerter -------------------------------------------------------------------------------- Update Information: Initial rpm-release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1380671 - None https://bugzilla.redhat.com/show_bug.cgi?id=1380671 -------------------------------------------------------------------------------- ================================================================================ sddm-0.14.0-3.el7 (FEDORA-EPEL-2016-07c8e8befc) QML based X11 desktop manager -------------------------------------------------------------------------------- Update Information: Provide sddm for epel7 -------------------------------------------------------------------------------- ================================================================================ sks-1.1.6-1.el7 (FEDORA-EPEL-2016-2ce3494a09) Synchronizing Key Server -------------------------------------------------------------------------------- Update Information: Update to latest version of sks -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304429 - None https://bugzilla.redhat.com/show_bug.cgi?id=1304429 [ 2 ] Bug #1365236 - None https://bugzilla.redhat.com/show_bug.cgi?id=1365236 -------------------------------------------------------------------------------- ================================================================================ zstd-1.1.0-1.el7 (FEDORA-EPEL-2016-df3c15fb8a) Zstd compression library -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373218 - None https://bugzilla.redhat.com/show_bug.cgi?id=1373218 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
