The following Fedora EPEL 6 Security updates need testing: Age URL 804 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7031 python-virtualenv-12.0.7-1.el6 798 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-7168 rubygem-crack-0.3.2-2.el6 688 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-e2b4b5b2fb mcollective-2.8.4-1.el6 660 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-35e240edd9 thttpd-2.25b-24.el6 270 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-e3e50897ac libbsd-0.8.3-2.el6 166 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-c0d33ae70f tnef-1.4.14-1.el6 7 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-8dca05d55c drupal7-views-3.18-1.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-4c76ddcc92 libmspack-0.6-0.1.alpha.el6 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e50abdd3d5 python3-numpy-1.10.4-6.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing distribution-gpg-keys-1.15-1.el6 lcgdm-dav-0.19.0-1.el6 libmspack-0.6-0.1.alpha.el6 nordugrid-arc-5.4.0-1.el6 nordugrid-arc-doc-2.0.17-1.el6 nordugrid-arc-nagios-plugins-1.9.1-1.el6 php-horde-Horde-Crypt-2.7.10-1.el6 php-horde-Horde-Editor-2.0.5-1.el6 php-horde-horde-5.2.17-1.el6 php-horde-kronolith-4.2.23-1.el6 php-horde-mnemo-4.2.14-1.el6 python3-numpy-1.10.4-6.el6 Details about builds: ================================================================================ distribution-gpg-keys-1.15-1.el6 (FEDORA-EPEL-2017-855d37c9bb) GPG keys of various Linux distributions -------------------------------------------------------------------------------- Update Information: - update Copr keys - add new remi key -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.19.0-1.el6 (FEDORA-EPEL-2017-62eba73d8d) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: New upstream release 0.19.0 -------------------------------------------------------------------------------- ================================================================================ libmspack-0.6-0.1.alpha.el6 (FEDORA-EPEL-2017-4c76ddcc92) Library for CAB and related files compression and decompression -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-6419 and CVE-2017-11423 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1483909 - CVE-2017-6419 libmspack, clamav: heap-based buffer overflow in mspack/lzxd.c https://bugzilla.redhat.com/show_bug.cgi?id=1483909 [ 2 ] Bug #1472776 - CVE-2017-11423 libmspack, clamav: Stack-based buffer over-read in cabd_read_string function https://bugzilla.redhat.com/show_bug.cgi?id=1472776 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-5.4.0-1.el6 (FEDORA-EPEL-2017-ec44619d2b) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information: http://www.nordugrid.org/arc/releases/15.03u16/release_notes_15.03u16.html -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-doc-2.0.17-1.el6 (FEDORA-EPEL-2017-ec44619d2b) Advanced Resource Connector Documentation -------------------------------------------------------------------------------- Update Information: http://www.nordugrid.org/arc/releases/15.03u16/release_notes_15.03u16.html -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-nagios-plugins-1.9.1-1.el6 (FEDORA-EPEL-2017-ec44619d2b) Nagios plugins for ARC -------------------------------------------------------------------------------- Update Information: http://www.nordugrid.org/arc/releases/15.03u16/release_notes_15.03u16.html -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Crypt-2.7.10-1.el6 (FEDORA-EPEL-2017-ef27425413) Horde Cryptography API -------------------------------------------------------------------------------- Update Information: **Horde_Crypt 2.7.10** * [jan] Correctly determine expiration dates of short living PGP keys. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Editor-2.0.5-1.el6 (FEDORA-EPEL-2017-c0abc119dc) Horde Editor API -------------------------------------------------------------------------------- Update Information: **Horde_Editor 2.0.5** * [jan] Mark PHP 7 as supported. -------------------------------------------------------------------------------- ================================================================================ php-horde-horde-5.2.17-1.el6 (FEDORA-EPEL-2017-c0b66b1775) Horde Application Framework -------------------------------------------------------------------------------- Update Information: **horde 5.2.17** * [jan] Fix returning to last URL after using the login link. * [jan] Officially support PHP 7. -------------------------------------------------------------------------------- ================================================================================ php-horde-kronolith-4.2.23-1.el6 (FEDORA-EPEL-2017-caac80ea2e) A web based calendar -------------------------------------------------------------------------------- Update Information: **kronolith 4.2.23** * [jan] Officially support PHP 7. * [jan] Fix time offsets when importing CSV data with two-digit years. * [jan] Fix updating and deleting events from external CalDAV servers (martin1 AT k0k.net, Bug #14021). * [jan] Fix exporting multiple tags to iCalendar CATEGORIES (Bug #14057). -------------------------------------------------------------------------------- ================================================================================ php-horde-mnemo-4.2.14-1.el6 (FEDORA-EPEL-2017-df0481828a) A web based notes manager -------------------------------------------------------------------------------- Update Information: **mnemo 4.2.14** * [jan] Officially support PHP 7. * [jan] Fix exporting multiple tags to vNote CATEGORIES (Bug #14057). -------------------------------------------------------------------------------- ================================================================================ python3-numpy-1.10.4-6.el6 (FEDORA-EPEL-2017-e50abdd3d5) A fast multidimensional array facility for Python 3 -------------------------------------------------------------------------------- Update Information: Add a patch for the security vulnerability (rhbz#1483689) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1483689 - CVE-2017-12852 python3-numpy: numpy: Missing input validation on empty list or ndarray in numpy.pad function [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483689 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
