The following Fedora EPEL 7 Security updates need testing: Age URL 68 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1f259a45ef openjpeg2-2.3.1-11.el7 11 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-edab6b43f2 seamonkey-2.53.8.1-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2021-1405677543 putty-0.76-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing CFR-0.151-3.el7 oval-graph-1.2.8-1.el7 prosody-0.11.10-1.el7 Details about builds: ================================================================================ CFR-0.151-3.el7 (FEDORA-EPEL-2021-3a82f02dd3) CFR - Another Java Decompiler -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ oval-graph-1.2.8-1.el7 (FEDORA-EPEL-2021-3f874a390a) Tool for visualization of SCAP rule evaluation results -------------------------------------------------------------------------------- Update Information: 1.2.8 (Jan Rodak) -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 2 2021 Packit Service <user-cont-team+packit-service@xxxxxxxxxx> - 1.2.8-1 - 1.2.8 (Jan Rodak) - Changes name of test functions (Jan Rodak) - Changes output of test_commands (Jan Rodak) - Changes how are loaded path (Jan Rodak) - Removes an unnecessary method (Jan Rodak) - Improves naming of metodes (Jan Rodak) - Reworks completion of message (Jan Rodak) - Creates global namespaces for parsing XML (Jan Rodak) - Renames parsers classes (Jan Rodak) - Changes methods to static methods in the parser for comments (Jan Rodak) - Reduces the number of parameters in the method (Jan Rodak) - Moves the creation of the test node and the extended definition node to separate methods (Jan Rodak) - Changes method to static method in the parser for oval scan definitions (Jan Rodak) - Uses global dictionary for conversion bool values (Jan Rodak) - Simplify the method (Jan Rodak) - Changes methods to static methods in the parser for test info (Jan Rodak) - Improves code formatting (Jan Rodak) - Removes an unnecessary method (Jan Rodak) - Improves search in oval system characteristics (Jan Rodak) - Changes tests for new arf xml parser (Jan Rodak) - Changes clinet for new arf xml parser (Jan Rodak) - Improves raise error (Jan Rodak) - Removes unnecessary variables (Jan Rodak) - Improves xml validation (Jan Rodak) - Reworks loading rules form profile (Jan Rodak) - Changes formatting in a benchmark for ARF XML parser (Jan Rodak) - Moves XML parser part to separate directory (Jan Rodak) - Reworks check for the generated HTML (Jan Rodak) - Reworks generating HTML (Jan Rodak) - Reworks opening web browser with a report (Jan Rodak) - Fixes tests after change verbose output (Jan Rodak) - Removes unnecessary function parameter (Jan Rodak) - Rework verbose output (Jan Rodak) - Renemes class (Jan Rodak) - Creates sub modul for creating HTML (Jan Rodak) - Updates tests (Jan Rodak) - Implements new OVAL gate evaluation to OVAL tree (Jan Rodak) - Reworks OVAL gate evaluation (Jan Rodak) * Mon Aug 2 2021 Jan Rodak <jrodak@xxxxxxxxxx> - 1.2.8-1 - release 1.2.8 -------------------------------------------------------------------------------- ================================================================================ prosody-0.11.10-1.el7 (FEDORA-EPEL-2021-b740c86692) Flexible communications server for Jabber/XMPP -------------------------------------------------------------------------------- Update Information: Prosody 0.11.10 =============== Upstream is pleased to announce a new minor release from their stable branch. This release primarily fixes CVE-2021-37601, a remote information disclosure vulnerability. See the previously released advisory for details. Upstream recommends that all deployments upgrade if they have not yet applied the mitigation described in the advisory. Security -------- * MUC: Fix logic for access to affiliation lists CVE-2021-37601: https://prosody.im/security/advisory_20210722/ Minor changes ------------- * prosodyctl: Add `limits` to known globals to warn about misplacing it * util.ip: Fix netmask for link-local address range * mod_pep: Remove obsolete node restoration code * util.pubsub: Fix traceback if node data not initialized -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 3 2021 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.11.10-1 - Upgrade to 0.11.10 (#1989535) * Fri Jul 23 2021 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.11.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Thu May 20 2021 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 0.11.9-3 - Rebuild for ICU 69 * Wed May 19 2021 Pete Walter <pwalter@xxxxxxxxxxxxxxxxx> - 0.11.9-2 - Rebuild for ICU 69 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1989535 - prosody-0.11.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1989535 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
