The following Fedora EPEL 7 Security updates need testing: Age URL 763 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 526 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 228 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e8f4ff76b3 chicken-4.11.0-3.el7 108 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 24 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-05ac8b1dc4 php-onelogin-php-saml-2.10.5-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e9e451db03 chromium-57.0.2987.133-1.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-1ae79d206b ReviewBoard-2.5.10-1.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d9e3bfe77d php-horde-Horde-Crypt-2.7.6-1.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7889b3b509 libupnp-1.6.21-1.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe mod_cluster-1.3.3-10.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-45845d256f python-django-1.6.11.6-1.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5f9a6163b4 tnef-1.4.14-1.el7 3 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378 python-XStatic-jquery-ui-1.12.0.1-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-99c7c2f382 xorgxrdp-0.2.1-1.el7 xrdp-0.9.2-5.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-b9db4ff3ec proftpd-1.3.5e-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing nghttp2-1.21.1-1.el7 php-cs-fixer-2.2.1-1.el7 proftpd-1.3.5e-1.el7 python-fedmsg-meta-fedora-infrastructure-0.18.0-1.el7 qt5ct-0.31-1.el7 rubygem-jekyll-sass-converter-1.5.0-1.el7 yadifa-2.2.4-1.el7 youtube-dl-2017.04.09-1.el7 Details about builds: ================================================================================ nghttp2-1.21.1-1.el7 (FEDORA-EPEL-2017-79b07b72fa) Experimental HTTP/2 client, server and proxy -------------------------------------------------------------------------------- Update Information: - update to the latest upstream release (#1438364) - package systemd unit file (#1426929) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1426929 - nghttp2: package systemd unit file https://bugzilla.redhat.com/show_bug.cgi?id=1426929 [ 2 ] Bug #1438364 - Please update to version 1.21.0 https://bugzilla.redhat.com/show_bug.cgi?id=1438364 -------------------------------------------------------------------------------- ================================================================================ php-cs-fixer-2.2.1-1.el7 (FEDORA-EPEL-2017-20e887dcb2) A tool to automatically fix PHP code style -------------------------------------------------------------------------------- Update Information: **Changelog for v2.2.1** * bug #2621 Tokenizer - fix edge cases with empty code, registered found tokens and code hash (SpacePossum, keradus) * bug #2674 SemicolonAfterInstructionFixer - Fix case where block ends with an opening curly brace (ntzm) * bug #2675 ProcessOutputTest - update tests to pass on newest Symfony components under Windows (keradus) * minor #2651 Fix UPGRADE.md table syntax so it works in GitHub (ntzm, keradus) * minor #2665 Travis - Improve trailing spaces detection (julienfalque) * minor #2666 TransformersTest - move test to auto-review group (keradus) * minor #2668 add covers annotation (keradus) * minor #2669 TokensTest - grooming (SpacePossum) * minor #2670 AbstractFixer: use applyFix instead of fix (Slamdunk) * minor #2677 README: Correct progressbar option support (Laurens Stetzel) ---- **Changelog for v2.2.0** * bug #2640 NoExtraConsecutiveBlankLinesFixer - Fix single indent characters not working (ntzm) * feature #2220 Doctrine annotation fixers (julienfalque) * feature #2431 MethodArgumentSpaceFixer: allow to retain multiple spaces after comma (Slamdunk) * feature #2459 BracesFixer - Add option for keeping opening brackets on the same line (jtojnar, SpacePossum) * feature #2486 Add FunctionToConstantFixer (SpacePossum, keradus) * feature #2505 FunctionDeclarationFixer - Make space after anonymous function configurable (jtojnar, keradus) * feature #2509 FullOpeningTagFixer - Ensure opening PHP tag is lowercase (jtojnar) * feature #2532 FixCommand - add stop-on-violation option (keradus) * feature #2591 Improve process output (julienfalque) * feature #2603 Add InvisibleSymbols Fixer (ivan1986, keradus) * feature #2642 Add MagicConstantCasingFixer (ntzm) * feature #2657 PhpdocToCommentFixer - Allow phpdoc for language constructs (ceeram, SpacePossum) * minor #2500 Configuration resolver (julienfalque, SpacePossum, keradus) * minor #2566 Show more details on errors and exceptions. (SpacePossum, julienfalque) * minor #2597 HHVM - bump required version to 3.18 (keradus) * minor #2606 FixCommand - fix missing comment close tag (keradus) * minor #2623 OrderedClassElementsFixer - remove dead code (SpacePossum) * minor #2625 Update Symfony and Symfony:risky rulesets (keradus) * minor #2626 TernaryToNullCoalescingFixer - adjust ruleset membership and description (keradus) * minor #2635 ProjectCodeTest - watch that all classes have dedicated tests (keradus) * minor #2647 DescribeCommandTest - remove deprecated code usage (julienfalque) * minor #2648 Move non-code covering tests to AutoReview subnamespace (keradus) * minor #2652 NoSpacesAroundOffsetFixerTest - fix deprecation (keradus) * minor #2656 Code grooming (keradus) * minor #2659 Travis - speed up preparation for phar building (keradus) * minor #2660 Fixed typo in suggest for ext-mbstring (pascal-hofmann) * minor #2661 NonPrintableCharacterFixer - include into Symfony:risky ruleset (keradus) **Changelog for v2.1.3** * bug #2358 Cache - Deal with signature encoding (keradus, GrahamCampbell) * bug #2475 Add shorthand array destructing support (SpacePossum, keradus) * bug #2595 NoUnusedImportsFixer - Fix import usage detection with properties (julienfalque) * bug #2605 PhpdocAddMissingParamAnnotationFixer, PhpdocOrderFixer - fix priority issue (SpacePossum) * bug #2607 Fixers - better comments handling (SpacePossum) * bug #2612 BracesFixer - Fix early bracket close for do-while loop inside an if without brackets (felixgomez) * bug #2614 Ensure that '*Fixer::fix()' won't crash when running on non-candidate collection (keradus) * bug #2630 HeaderCommentFixer - Fix trailing whitespace not removed after <?php (julienfalque) * bug #2637 ToolInfo - use static dir check for composer discovery (Slamdunk) * bug #2639 SemicolonAfterInstructionFixer - Handle alternative syntax (SpacePossum) * bug #2645 HHVM: handle T_HH_ERROR (keradus) * bug #2653 IsNullFixer - fix edge case (localheinz, kalessil) * bug #2654 PhpdocAddMissingParamAnnotationFixer - handle one-line docblocks (keradus) * minor #2594 Travis - generate coverage report at 7.1 and clean up build matrix (keradus) * minor #2613 HeaderCommentFixer - add missing case for exception raising (keradus) * minor #2615 Add DescribeCommand test (julienfalque) * minor #2616 Exclude more tests in phar version (keradus) * minor #2618 Update README.rst (mhitza) * minor #2620 Finder - Remove `*.twig` as default (SpacePossum) * minor #2641 Cookbook - remove information about levels (keradus) * minor #2644 DescribeCommandTest - fix test execution on decorated console (keradus) * minor #2655 AppVeyor - Cache Composer Installation (julienfalque) ---- **Changelog for v2.1.2** * bug #2580 NoSpacesAfterFunctionNameFixer - Fix after dynamic call (SpacePossum, keradus) * bug #2586 NoUnusedImportsFixerTest - handle FQCN import (keradus) * bug #2587 NoClosingTagFixerTest - handle file without operations (keradus, SpacePossum) * minor #2552 Initial compatibility with PHP 7.2-DEV (keradus) * minor #2582 Improve AppVeyor and Travis CI build time (julienfalque) * minor #2584 NoUnreachableDefaultArgumentValueFixer - fix typo (chadburrus) * minor #2593 PhpUnitFqcnAnnotationFixer - move test to proper namespace (keradus) * minor #2596 AppVeyor - update PHP versions (keradus) **Changelog for v2.1.1** * bug #2547 NoUnneededControlParenthesesFixer - Handle T_COALESCE in clone (keksa) * bug #2557 BracesFixer - Better comments handling (SpacePossum) * bug #2558 require symfony/polyfill-xml (SpacePossum) * bug #2560 PhpdocNoAliasTagFixer - Fix circular replacements detection (julienfalque) * bug #2567 Filename with spaces usage (jaymecd) * bug #2572 NoUnreachableDefaultArgumentValueFixer - Mark as risky (SpacePossum) * minor #2533 AppVeyor - adjust phpunit version (keradus) * minor #2535 Make .gitignore entries more specific (julienfalque) * minor #2541 README.rst - provide download link for latest version (keradus) * minor #2562 Add schema.json (keradus) * minor #2563 Add deprecation notices tests (julienfalque) * minor #2564 Add rules configuration by passing json encode config by CLI (SpacePossum) * minor #2569 Make symfony/phpunit-bridge a dev dependency only (julienfalque) * minor #2574 Add xml.xsd (keradus) -------------------------------------------------------------------------------- ================================================================================ proftpd-1.3.5e-1.el7 (FEDORA-EPEL-2017-b9db4ff3ec) Flexible, stable and highly-configurable FTP server -------------------------------------------------------------------------------- Update Information: Current upstream maintenance release for the 1.3.5 series. Includes fix for CVE-2017-7418, where not all path elements were checked for symlinks when using a chroot, so attackers with local access could bypass the AllowChrootSymlinks control by replacing a path component (other than the last one) with a symbolic link. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1439693 - CVE-2017-7418 proftpd: AllowChrootSymlinks control bypass https://bugzilla.redhat.com/show_bug.cgi?id=1439693 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.18.0-1.el7 (FEDORA-EPEL-2017-b58a717d03) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Updates to 0.18.0 ---- Update to 0.17.8 ------------------ Pull Requests - (@puiterwijk) #410, All kojis now use https https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/pull/410 Commits - 682032986 All kojis now use https https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/commit/682032986 - 96957a490 Fix distgit URLs (#411) https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/commit/96957a490 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1438588 - python-fedmsg-meta-fedora-infrastructure-0.18.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1438588 -------------------------------------------------------------------------------- ================================================================================ qt5ct-0.31-1.el7 (FEDORA-EPEL-2017-7e10e16f0c) Qt5 Configuration Tool -------------------------------------------------------------------------------- Update Information: New release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1436672 - qt5ct-0.31 is available https://bugzilla.redhat.com/show_bug.cgi?id=1436672 -------------------------------------------------------------------------------- ================================================================================ rubygem-jekyll-sass-converter-1.5.0-1.el7 (FEDORA-EPEL-2017-55890432bb) Basic Sass converter for Jekyll -------------------------------------------------------------------------------- Update Information: * Update to 1.5.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1395000 - rubygem-jekyll-sass-converter-1.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1395000 -------------------------------------------------------------------------------- ================================================================================ yadifa-2.2.4-1.el7 (FEDORA-EPEL-2017-d71d34b6ed) Lightweight authoritative Name Server with DNSSEC capabilities -------------------------------------------------------------------------------- Update Information: 20170406: YADIFA 2.2.4 ---- - Fixes an issue with relative include names that would not always be properly computed - Fixes an issue where concurrent configuration reloads could lead to a crash -------------------------------------------------------------------------------- References: [ 1 ] Bug #1439718 - yadifa-2.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1439718 -------------------------------------------------------------------------------- ================================================================================ youtube-dl-2017.04.09-1.el7 (FEDORA-EPEL-2017-b5c39715e2) A small command-line program to download online videos -------------------------------------------------------------------------------- Update Information: Upgrade to the latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1435495 - youtube-dl-2017.04.09 is available https://bugzilla.redhat.com/show_bug.cgi?id=1435495 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
