The following Fedora EPEL 7 Security updates need testing: Age URL 978 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-1087 dokuwiki-0-0.24.20140929c.el7 741 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-dac7ed832f mcollective-2.8.4-1.el7 323 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-04bc9dd81d libbsd-0.8.3-1.el7 220 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-d241156dfe mod_cluster-1.3.3-10.el7 217 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-7ecb12e378 python-XStatic-jquery-ui-1.12.0.1-1.el7 52 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-e27758bd23 libmspack-0.6-0.1.alpha.el7 50 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-52b8147c68 openvpn-auth-ldap-2.0.3-15.el7 23 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-1e541e27e9 nginx-1.12.2-1.el7 15 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f576d1826a nodejs-6.11.5-1.el7 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-95bf973a7d wordpress-4.8.3-1.el7 6 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-020fe6e5ac rubygem-ox-2.4.11-3.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-30026fdcc1 hostapd-2.6-6.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-01fce22094 php-PHPMailer-5.2.26-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-5e4edb1320 fedpkg-1.30-4.el7 rpkg-1.51-2.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-227eb8f562 roundcubemail-1.1.10-1.el7 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2017-f412a32589 python-copr-1.84-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing ProDy-1.9.3-1.el7 atop-2.3.0-4.el7 copr-cli-1.65-1.el7 fedfind-3.8.0-1.el7 fedpkg-1.30-4.el7 flcluster-1.0.3-1.el7 flnet-7.3.2-1.el7 flwkey-1.2.3-2.el7 globus-gridftp-server-12.4-1.el7 globus-gridftp-server-control-6.0-3.el7 globus-gsi-credential-7.14-1.el7 globus-gsi-sysconfig-8.0-1.el7 globus-gssapi-gsi-13.4-1.el7 libmediainfo-17.10-1.el7 linsim-2.0.3-1.el7 mediaconch-17.08-2.el7 mediainfo-17.10-1.el7 perl-Finance-Quote-1.45-1.el7 php-cs-fixer-2.2.10-1.el7 powerman-2.3.24-4.el7 python-copr-1.83-1.el7 python-copr-1.84-1.el7 python-wikitcms-2.2.0-1.el7 relval-2.2.0-1.el7 roundcubemail-1.1.10-1.el7 rpkg-1.51-2.el7 slick-greeter-1.1.0-4.el7 zstd-1.3.2-1.el7 Details about builds: ================================================================================ ProDy-1.9.3-1.el7 (FEDORA-EPEL-2017-cd6e45ef26) Application for protein structure, dynamics and sequence analysis -------------------------------------------------------------------------------- Update Information: - Update to 1.9.3 - Obsolete old patch -------------------------------------------------------------------------------- ================================================================================ atop-2.3.0-4.el7 (FEDORA-EPEL-2017-00345ef554) An advanced interactive monitor to view the load on system and process level -------------------------------------------------------------------------------- Update Information: Change from logrotate to upstream script. ---- 2.3.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1509943 - Update to version 2.3.0 https://bugzilla.redhat.com/show_bug.cgi?id=1509943 -------------------------------------------------------------------------------- ================================================================================ copr-cli-1.65-1.el7 (FEDORA-EPEL-2017-2db7688f69) Command line interface for COPR -------------------------------------------------------------------------------- Update Information: - allow to set use_bootstrap_container via API ---- - add SCM api - add deprecation warnings for tito and mockscm methods ---- - fix unittests - run tests with python3 - pag#130 update requirements - pag#125 copr build copr pkgs [pkgs ...] builds only the first SRPM - pag#112 [RFE] copr-cli whoami - Bug 1431035 - coprs should check credentials before uploading source rpm - Spelling fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1431035 - coprs should check credentials before uploading source rpm https://bugzilla.redhat.com/show_bug.cgi?id=1431035 -------------------------------------------------------------------------------- ================================================================================ fedfind-3.8.0-1.el7 (FEDORA-EPEL-2017-c0be6372ac) Fedora compose and image finder -------------------------------------------------------------------------------- Update Information: fedfind 3.6.4 fixes use of the `expected_images` property (and hence `check_expected()` method) with modular composes. In 3.6.2 and earlier, it caused a crash. fedfind 3.7.1 improves handling of various new compose types introduced by release engineering. The new nightly modular composes from master branch, now versioned `Bikeshed` rather than `Rawhide`, are handled with a new `BikeshedModularNightly` class. 'updates' and 'updates-testing' composes are explicitly not supported (`get_release` will raise a `ValueError` with a specific text for these) as they do not contain images and so fedfind can't do much with them. Note that the `fedfind.helpers.parse_cid` function is entirely rewritten in support of this; the new version is much more capable and accurate and should handle all compose IDs the previous version handled correctly, but please report any issues you find. fedfind 3.8.0 adds support for the Modular Server candidate composes which are currently being produced. The updates to relval and python-wikitcms similarly add support for Modular composes and events. -------------------------------------------------------------------------------- ================================================================================ fedpkg-1.30-4.el7 (FEDORA-EPEL-2017-5e4edb1320) Fedora utility for working with dist-git -------------------------------------------------------------------------------- Update Information: **Update** - Fixed chain-build - Remove hard dependency of bash-completion from fedpkg **rpkg** - Ignore TestModulesCli if openidc-client is unavailable (cqi) - Port mbs-build to rpkg (mprahl) - Add .vscode to .gitignore (mprahl) - Fix TestPatch.test_rediff in order to run with old version of mock (cqi) - Allow to specify alternative Copr config file - #184 (cqi) - Tests for patch command (cqi) - More Tests for mockbuild command (cqi) - More tests for getting spec file (cqi) - Tests for container-build-setup command (cqi) - Test for container- build to use custom config (cqi) - Suppress output from git command within setUp (cqi) - Skip test if rpmfluff is not available (lsedlar) - Allow to override build URL (cqi) - Test for mock-config command (cqi) - Tests for copr-build command (cqi) - Fix arch-override for container-build (lucarval) - Remove unsupported osbs for container-build (lucarval) - cli: add --arches support for koji_cointainerbuild (mlangsdo) - Strip refs/heads/ from branch only once (lsedlar) - Don't install bin and config files (cqi) - Fix kojiprofile selection in cliClient.container_build_koji (cqi) - Avoid branch detection for 'rpkg sources' (praiskup) - Fix encoding in new command (cqi) - Minor wording improvement in help (pgier) - Fix indentation (pviktori) - Add --with and --without options to mockbuild (pviktori) **fedpkg** - Tests for update command (cqi) - Add support for module commands (mprahl) - Clean rest cert related code (cqi) - Remove fedora cert (cqi) - Override build URL for Koji (cqi) - changing anongiturl to use src.fp.o instead of pkgs.fp.o. - #119 (tflink) - Add tests (cqi) - Enable lookaside_namespaced - #130 (cqi) - Detect dist tag correctly for RHEL and CentOS - #141 (cqi) - Remove deprecated call to platform.dist (cqi) - Do not prompt hint for SSL cert if fail to log into Koji (cqi) - Add more container-build options to bash completion (cqi) - Remove osbs from bash completion - #138 (cqi) - Install executables via entry_points - #134 (cqi) - Fix container build target (lsedlar) - Get correct build target for rawhide containers (lsedlar) - Update error message to reflect deprecation of --dist option (pgier) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1188634 - fedpkg clone -a should use https:// transport https://bugzilla.redhat.com/show_bug.cgi?id=1188634 [ 2 ] Bug #1509322 - fedpkg >= 1.30-1 depends on bash-completion https://bugzilla.redhat.com/show_bug.cgi?id=1509322 -------------------------------------------------------------------------------- ================================================================================ flcluster-1.0.3-1.el7 (FEDORA-EPEL-2017-5ff6d0e947) A management tool for accessing dxcluster nodes -------------------------------------------------------------------------------- Update Information: Initial package release for Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1508492 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508492 [ 2 ] Bug #1060852 - None https://bugzilla.redhat.com/show_bug.cgi?id=1060852 [ 3 ] Bug #1508478 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508478 [ 4 ] Bug #1321081 - None https://bugzilla.redhat.com/show_bug.cgi?id=1321081 -------------------------------------------------------------------------------- ================================================================================ flnet-7.3.2-1.el7 (FEDORA-EPEL-2017-5ff6d0e947) Amateur Radio Net Control Station -------------------------------------------------------------------------------- Update Information: Initial package release for Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1508492 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508492 [ 2 ] Bug #1060852 - None https://bugzilla.redhat.com/show_bug.cgi?id=1060852 [ 3 ] Bug #1508478 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508478 [ 4 ] Bug #1321081 - None https://bugzilla.redhat.com/show_bug.cgi?id=1321081 -------------------------------------------------------------------------------- ================================================================================ flwkey-1.2.3-2.el7 (FEDORA-EPEL-2017-5ff6d0e947) Modem program for the K1EL Winkeyer series -------------------------------------------------------------------------------- Update Information: Initial package release for Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1508492 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508492 [ 2 ] Bug #1060852 - None https://bugzilla.redhat.com/show_bug.cgi?id=1060852 [ 3 ] Bug #1508478 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508478 [ 4 ] Bug #1321081 - None https://bugzilla.redhat.com/show_bug.cgi?id=1321081 -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-12.4-1.el7 (FEDORA-EPEL-2017-bd0f704639) Globus Toolkit - Globus GridFTP Server -------------------------------------------------------------------------------- Update Information: globus-gridftp-server * Ignore backup & packaging files in config.d globus- gridftp-server-control * Terminate the connection if server fails to write the 220 banner globus-gsi-credential * Remove prototype for non-existing function (7.12) * Fix crash when handle->cert not set in call to globus_gsi_cred_get_cert (7.13) * Remove compatibility shims for old versions of OpenSSL (7.13) * Fix issue with voms proxy and openssl 1.1 (7.14) globus-gsi-sysconfig * Add cert and key checks based on different uid globus-gssapi-gsi * Allow configuration of non-root user to own credentials for root services (13.3) * Improve vhost support (13.4) -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-control-6.0-3.el7 (FEDORA-EPEL-2017-bd0f704639) Globus Toolkit - Globus GridFTP Server Library -------------------------------------------------------------------------------- Update Information: globus-gridftp-server * Ignore backup & packaging files in config.d globus- gridftp-server-control * Terminate the connection if server fails to write the 220 banner globus-gsi-credential * Remove prototype for non-existing function (7.12) * Fix crash when handle->cert not set in call to globus_gsi_cred_get_cert (7.13) * Remove compatibility shims for old versions of OpenSSL (7.13) * Fix issue with voms proxy and openssl 1.1 (7.14) globus-gsi-sysconfig * Add cert and key checks based on different uid globus-gssapi-gsi * Allow configuration of non-root user to own credentials for root services (13.3) * Improve vhost support (13.4) -------------------------------------------------------------------------------- ================================================================================ globus-gsi-credential-7.14-1.el7 (FEDORA-EPEL-2017-bd0f704639) Globus Toolkit - Globus GSI Credential Library -------------------------------------------------------------------------------- Update Information: globus-gridftp-server * Ignore backup & packaging files in config.d globus- gridftp-server-control * Terminate the connection if server fails to write the 220 banner globus-gsi-credential * Remove prototype for non-existing function (7.12) * Fix crash when handle->cert not set in call to globus_gsi_cred_get_cert (7.13) * Remove compatibility shims for old versions of OpenSSL (7.13) * Fix issue with voms proxy and openssl 1.1 (7.14) globus-gsi-sysconfig * Add cert and key checks based on different uid globus-gssapi-gsi * Allow configuration of non-root user to own credentials for root services (13.3) * Improve vhost support (13.4) -------------------------------------------------------------------------------- ================================================================================ globus-gsi-sysconfig-8.0-1.el7 (FEDORA-EPEL-2017-bd0f704639) Globus Toolkit - Globus GSI System Config Library -------------------------------------------------------------------------------- Update Information: globus-gridftp-server * Ignore backup & packaging files in config.d globus- gridftp-server-control * Terminate the connection if server fails to write the 220 banner globus-gsi-credential * Remove prototype for non-existing function (7.12) * Fix crash when handle->cert not set in call to globus_gsi_cred_get_cert (7.13) * Remove compatibility shims for old versions of OpenSSL (7.13) * Fix issue with voms proxy and openssl 1.1 (7.14) globus-gsi-sysconfig * Add cert and key checks based on different uid globus-gssapi-gsi * Allow configuration of non-root user to own credentials for root services (13.3) * Improve vhost support (13.4) -------------------------------------------------------------------------------- ================================================================================ globus-gssapi-gsi-13.4-1.el7 (FEDORA-EPEL-2017-bd0f704639) Globus Toolkit - GSSAPI library -------------------------------------------------------------------------------- Update Information: globus-gridftp-server * Ignore backup & packaging files in config.d globus- gridftp-server-control * Terminate the connection if server fails to write the 220 banner globus-gsi-credential * Remove prototype for non-existing function (7.12) * Fix crash when handle->cert not set in call to globus_gsi_cred_get_cert (7.13) * Remove compatibility shims for old versions of OpenSSL (7.13) * Fix issue with voms proxy and openssl 1.1 (7.14) globus-gsi-sysconfig * Add cert and key checks based on different uid globus-gssapi-gsi * Allow configuration of non-root user to own credentials for root services (13.3) * Improve vhost support (13.4) -------------------------------------------------------------------------------- ================================================================================ libmediainfo-17.10-1.el7 (FEDORA-EPEL-2017-6d6dfe25c8) Library for supplies technical and tag information about a video or audio file -------------------------------------------------------------------------------- Update Information: Update to 17.10. -------------------------------------------------------------------------------- ================================================================================ linsim-2.0.3-1.el7 (FEDORA-EPEL-2017-5ff6d0e947) Tool for Amateur Radio Digital Mode evaluation -------------------------------------------------------------------------------- Update Information: Initial package release for Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1508492 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508492 [ 2 ] Bug #1060852 - None https://bugzilla.redhat.com/show_bug.cgi?id=1060852 [ 3 ] Bug #1508478 - None https://bugzilla.redhat.com/show_bug.cgi?id=1508478 [ 4 ] Bug #1321081 - None https://bugzilla.redhat.com/show_bug.cgi?id=1321081 -------------------------------------------------------------------------------- ================================================================================ mediaconch-17.08-2.el7 (FEDORA-EPEL-2017-7415cb15d8) Most relevant technical and tag data for video and audio files (CLI) -------------------------------------------------------------------------------- Update Information: Rebuild for new libmediainfo. -------------------------------------------------------------------------------- ================================================================================ mediainfo-17.10-1.el7 (FEDORA-EPEL-2017-6d6dfe25c8) Supplies technical and tag information about a video or audio file (CLI) -------------------------------------------------------------------------------- Update Information: Update to 17.10. -------------------------------------------------------------------------------- ================================================================================ perl-Finance-Quote-1.45-1.el7 (FEDORA-EPEL-2017-967e14970f) A Perl module that retrieves stock and mutual fund quotes -------------------------------------------------------------------------------- Update Information: Current upstream maintenance release. Various sources fixed, new source AlphaVantage added. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1509722 - perl-Finance-Quote-1.40 is available https://bugzilla.redhat.com/show_bug.cgi?id=1509722 [ 2 ] Bug #1510220 - perl-Finance-Quote-1.42 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510220 [ 3 ] Bug #1510678 - perl-Finance-Quote-1.44 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510678 [ 4 ] Bug #1511240 - perl-Finance-Quote-1.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=1511240 -------------------------------------------------------------------------------- ================================================================================ php-cs-fixer-2.2.10-1.el7 (FEDORA-EPEL-2017-59f8857c74) A tool to automatically fix PHP code style -------------------------------------------------------------------------------- Update Information: **Changelog for v2.2.10** * bug #3199 TokensAnalyzer - getClassyElements (SpacePossum) * bug #3208 BracesFixer - Fix for instantiation in control structures (julienfalque, SpacePossum) * bug #3215 BinaryOperatorSpacesFixer - Fix spaces around multiple exception catching (|) (ntzm) * bug #3216 AbstractLinesBeforeNamespaceFixer - add min. and max. option, not only single target count (SpacePossum) * bug #3217 TokenizerLinter - fix lack of linting when code is cached (SpacePossum, keradus) * minor #3200 Skip slow test when Xdebug is loaded (julienfalque) * minor #3219 Normalise references to GitHub in docs (ntzm) * minor #3226 Remove unused imports (ntzm) * minor #3231 Fix typos (ntzm) * minor #3234 Simplify Cache\Signature::equals (ntzm) * minor #3237 UnconfigurableFixer - use only LF (keradus) * minor #3238 AbstractFixerTest - fix @cover annotation (keradus) ---- **Changelog for v2.2.9** * bug #3062 BraceClassInstantiationTransformer - Fix instantiation inside method call braces case (julienfalque, keradus) * bug #3083 SingleBlankLineBeforeNamespaceFixer - Fix handling namespace right after opening tag (mlocati) * bug #3109 SwitchCaseSemicolonToColonFixer - Fix bug with nested constructs (SpacePossum) * bug #3123 Cache - File permissions (SpacePossum) * bug #3172 IndentationTypeFixer - do not touch whitespace that is not indentation (SpacePossum) * bug #3176 NoMultilineWhitespaceBeforeSemicolonsFixer - SpaceAfterSemicolonFixer - priority fix (SpacePossum) * bug #3193 TokensAnalyzer::getClassyElements - sort result before returning (SpacePossum) * bug #3196 SelfUpdateCommand - fix exit status when can't determine newest version (julienfalque) * minor #3107 ConfigurationResolver - improve error message when rule is not found (SpacePossum) * minor #3113 Add WordMatcher (keradus) * minor #3133 Unify Reporter tests (keradus) * minor #3134 Allow Symfony 4 (keradus, garak) * minor #3136 PHPUnit - call hooks from parent class as well (keradus) * minor #3145 misc - Typo (localheinz) * minor #3150 Fix CircleCI (julienfalque) * minor #3151 Update gitattributes to ignore next file (keradus) * minor #3156 Update php-coveralls (keradus) * minor #3166 README - add link to new gitter channel. (SpacePossum) * minor #3174 Update UPGRADE.md (vitek-rostislav) * minor #3180 Fix usage of static variables (kubawerlos) * minor #3184 Code grooming - sort content of arrays (keradus) * minor #3191 Travis - add nightly build to allow_failures due to Travis issues (keradus) * minor #3197 DX groom CS (keradus) -------------------------------------------------------------------------------- ================================================================================ powerman-2.3.24-4.el7 (FEDORA-EPEL-2017-1503cf8814) Centralized power control for clusters -------------------------------------------------------------------------------- Update Information: Fix systemd support -------------------------------------------------------------------------------- References: [ 1 ] Bug #1489093 - powerman in EPEL7 should have systemd support https://bugzilla.redhat.com/show_bug.cgi?id=1489093 -------------------------------------------------------------------------------- ================================================================================ python-copr-1.83-1.el7 (FEDORA-EPEL-2017-2db7688f69) Python interface for Copr -------------------------------------------------------------------------------- Update Information: - allow to set use_bootstrap_container via API ---- - add SCM api - add deprecation warnings for tito and mockscm methods ---- - fix unittests - run tests with python3 - pag#130 update requirements - pag#125 copr build copr pkgs [pkgs ...] builds only the first SRPM - pag#112 [RFE] copr-cli whoami - Bug 1431035 - coprs should check credentials before uploading source rpm - Spelling fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1431035 - coprs should check credentials before uploading source rpm https://bugzilla.redhat.com/show_bug.cgi?id=1431035 -------------------------------------------------------------------------------- ================================================================================ python-copr-1.84-1.el7 (FEDORA-EPEL-2017-f412a32589) Python interface for Copr -------------------------------------------------------------------------------- Update Information: Change default COPR URL route from http://copr.fedoraproject.org to https://copr.fedorainfracloud.org -------------------------------------------------------------------------------- ================================================================================ python-wikitcms-2.2.0-1.el7 (FEDORA-EPEL-2017-c0be6372ac) Fedora QA wiki test management Python library -------------------------------------------------------------------------------- Update Information: fedfind 3.6.4 fixes use of the `expected_images` property (and hence `check_expected()` method) with modular composes. In 3.6.2 and earlier, it caused a crash. fedfind 3.7.1 improves handling of various new compose types introduced by release engineering. The new nightly modular composes from master branch, now versioned `Bikeshed` rather than `Rawhide`, are handled with a new `BikeshedModularNightly` class. 'updates' and 'updates-testing' composes are explicitly not supported (`get_release` will raise a `ValueError` with a specific text for these) as they do not contain images and so fedfind can't do much with them. Note that the `fedfind.helpers.parse_cid` function is entirely rewritten in support of this; the new version is much more capable and accurate and should handle all compose IDs the previous version handled correctly, but please report any issues you find. fedfind 3.8.0 adds support for the Modular Server candidate composes which are currently being produced. The updates to relval and python-wikitcms similarly add support for Modular composes and events. -------------------------------------------------------------------------------- ================================================================================ relval-2.2.0-1.el7 (FEDORA-EPEL-2017-c0be6372ac) Tool for interacting with Fedora QA wiki pages -------------------------------------------------------------------------------- Update Information: fedfind 3.6.4 fixes use of the `expected_images` property (and hence `check_expected()` method) with modular composes. In 3.6.2 and earlier, it caused a crash. fedfind 3.7.1 improves handling of various new compose types introduced by release engineering. The new nightly modular composes from master branch, now versioned `Bikeshed` rather than `Rawhide`, are handled with a new `BikeshedModularNightly` class. 'updates' and 'updates-testing' composes are explicitly not supported (`get_release` will raise a `ValueError` with a specific text for these) as they do not contain images and so fedfind can't do much with them. Note that the `fedfind.helpers.parse_cid` function is entirely rewritten in support of this; the new version is much more capable and accurate and should handle all compose IDs the previous version handled correctly, but please report any issues you find. fedfind 3.8.0 adds support for the Modular Server candidate composes which are currently being produced. The updates to relval and python-wikitcms similarly add support for Modular composes and events. -------------------------------------------------------------------------------- ================================================================================ roundcubemail-1.1.10-1.el7 (FEDORA-EPEL-2017-227eb8f562) Round Cube Webmail is a browser-based multilingual IMAP client -------------------------------------------------------------------------------- Update Information: Upstream announcement for **Version 1.1.10** This is a security update to the stable version 1.1. It fixes a recently discovered file disclosure vulnerability caused by insufficient input validation in conjunction with file-based attachment plugins, which are used by default. More details will be published under CVE-2017-16651. We strongly recommend to update all productive installations of Roundcube 1.1.x. Please do backup your data before updating! **Changelog** - Fix file disclosure vulnerability caused by insufficient input validation **CVE-2017-16651** (#6026) -------------------------------------------------------------------------------- ================================================================================ rpkg-1.51-2.el7 (FEDORA-EPEL-2017-5e4edb1320) Python library for interacting with rpm+git -------------------------------------------------------------------------------- Update Information: **Update** - Fixed chain-build - Remove hard dependency of bash-completion from fedpkg **rpkg** - Ignore TestModulesCli if openidc-client is unavailable (cqi) - Port mbs-build to rpkg (mprahl) - Add .vscode to .gitignore (mprahl) - Fix TestPatch.test_rediff in order to run with old version of mock (cqi) - Allow to specify alternative Copr config file - #184 (cqi) - Tests for patch command (cqi) - More Tests for mockbuild command (cqi) - More tests for getting spec file (cqi) - Tests for container-build-setup command (cqi) - Test for container- build to use custom config (cqi) - Suppress output from git command within setUp (cqi) - Skip test if rpmfluff is not available (lsedlar) - Allow to override build URL (cqi) - Test for mock-config command (cqi) - Tests for copr-build command (cqi) - Fix arch-override for container-build (lucarval) - Remove unsupported osbs for container-build (lucarval) - cli: add --arches support for koji_cointainerbuild (mlangsdo) - Strip refs/heads/ from branch only once (lsedlar) - Don't install bin and config files (cqi) - Fix kojiprofile selection in cliClient.container_build_koji (cqi) - Avoid branch detection for 'rpkg sources' (praiskup) - Fix encoding in new command (cqi) - Minor wording improvement in help (pgier) - Fix indentation (pviktori) - Add --with and --without options to mockbuild (pviktori) **fedpkg** - Tests for update command (cqi) - Add support for module commands (mprahl) - Clean rest cert related code (cqi) - Remove fedora cert (cqi) - Override build URL for Koji (cqi) - changing anongiturl to use src.fp.o instead of pkgs.fp.o. - #119 (tflink) - Add tests (cqi) - Enable lookaside_namespaced - #130 (cqi) - Detect dist tag correctly for RHEL and CentOS - #141 (cqi) - Remove deprecated call to platform.dist (cqi) - Do not prompt hint for SSL cert if fail to log into Koji (cqi) - Add more container-build options to bash completion (cqi) - Remove osbs from bash completion - #138 (cqi) - Install executables via entry_points - #134 (cqi) - Fix container build target (lsedlar) - Get correct build target for rawhide containers (lsedlar) - Update error message to reflect deprecation of --dist option (pgier) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1188634 - fedpkg clone -a should use https:// transport https://bugzilla.redhat.com/show_bug.cgi?id=1188634 [ 2 ] Bug #1509322 - fedpkg >= 1.30-1 depends on bash-completion https://bugzilla.redhat.com/show_bug.cgi?id=1509322 -------------------------------------------------------------------------------- ================================================================================ slick-greeter-1.1.0-4.el7 (FEDORA-EPEL-2017-f1f1998578) A slick-looking LightDM greeter -------------------------------------------------------------------------------- Update Information: - Show system-logo in lower left corner by default - Add patch from upstream to use gsettings default if there is no different preset in the config file -------------------------------------------------------------------------------- ================================================================================ zstd-1.3.2-1.el7 (FEDORA-EPEL-2017-3bb6d9294a) Zstd compression library -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
