The following Fedora EPEL 7 Security updates need testing: Age URL 0 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-b2c46a790d radare2-5.6.4-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing cobbler-2.8.5-4.el7 Details about builds: ================================================================================ cobbler-2.8.5-4.el7 (FEDORA-EPEL-2022-1f3ec359c3) Boot server configurator -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2021-45082, CVE-2021-45083 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 3 2022 Orion Poplawski <orion@xxxxxxxx> - 2.8.5-4 - Fix apache group * Thu Mar 3 2022 Orion Poplawski <orion@xxxxxxxx> - 2.8.5-3 - Apply fixes for CVE-2021-45082/3 - Drop EL6 support -------------------------------------------------------------------------------- References: [ 1 ] Bug #2056392 - CVE-2021-45082 cobbler: incomplete template sanitization [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2056392 [ 2 ] Bug #2056393 - CVE-2021-45083 cobbler: unsafe permissions on sensitive files in /etc/cobbler [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2056393 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
