The following Fedora EPEL 6 Security updates need testing: Age URL 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-42e4c7d470 mbedtls-2.7.13-1.el6 9 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-dd6b868b6d pam_radius-1.4.0-4.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing monitorix-3.12.0-1.el6 proftpd-1.3.3g-14.el6 Details about builds: ================================================================================ monitorix-3.12.0-1.el6 (FEDORA-EPEL-2020-aec2bab316) A free, open source, lightweight system monitoring tool -------------------------------------------------------------------------------- Update Information: This new version introduces two new modules: the phpfpm.pm and the unbound.pm. The first one will allow to collect PHP-FPM statistics and monitor unlimited number of sites, while the unbound.pm module will collect a lot of statistics of the Unbound running in your local server. There is not possibility to collect Unbound statistics from remote servers. In all, both modules come with a fairly complete statistic graphs. Besides these two new modules, this version includes some interesting new features. It has been finally fixed the bind.pm module to support newer versions of BIND. Now this module relies on Perl XML::LibXML to parse the output of BIND (instead of using Perl XML::Simple). Also, the gensens.pm module includes Battery as its third sensor, and there has been some improvements in the NFS graph for FreeBSD systems. The fail2ban.pm module has also changed the way how the values are shown. From now on, you can choose between absolute and rate values, being the former the default one. The ZFS graph has also changed the way how are shown the Operations and Bandwidth graphs. The rest of new features, changes and bugs fixed are, as always, reflected in the Changes file. Please, check the monitorix.conf(5) man page for all the details. NOTICE: The configuration file monitorix.conf has been extended with important changes. All users still using older versions are encouraged to upgrade to this version. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 21 2020 Jordi Sanfeliu <jordi@xxxxxxxxxxxx> - 3.12.0-1 - Updated to 3.12.0. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1805689 - monitorix-3.12.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1805689 -------------------------------------------------------------------------------- ================================================================================ proftpd-1.3.3g-14.el6 (FEDORA-EPEL-2020-91512b5eee) Flexible, stable and highly-configurable FTP server -------------------------------------------------------------------------------- Update Information: This update addresses a use-after-free vulnerability (CVE-2020-9273): successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 20 2020 Paul Howarth <paul@xxxxxxxxxxxx> - 1.3.3g-14 - Fix use-after-free vulnerability in memory pools during data transfer (CVE-2020-9273, https://github.com/proftpd/proftpd/issues/903) -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx
