The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.1... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6374/rt3-3.8.13-1.e... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6330/perl-YAML-LibY... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6358/openstack-nova... https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribbl...
The following builds have been pushed to Fedora EPEL 6 updates-testing
dcap-2.47.6-2.el6 erlang-bitcask-1.5.1-2.el6 fedmsg-0.2.3-1.el6 lcgdm-1.8.3.1-2.el6 lcm-0.9.0-5.el6 monit-5.1.1-3.el6 nagios-plugins-lcgdm-0.9.1-1.el6 pmount-0.9.23-1.el6 rt3-3.8.13-1.el6.2
Details about builds:
================================================================================ dcap-2.47.6-2.el6 (FEDORA-EPEL-2012-6372) Client Tools for dCache -------------------------------------------------------------------------------- Update Information:
Fix character encoding issue in sources -------------------------------------------------------------------------------- ChangeLog:
* Thu Jul 12 2012 Mattias Ellert mattias.ellert@fysast.uu.se - 2.47.6-2 - Remove encoding fixes --------------------------------------------------------------------------------
================================================================================ erlang-bitcask-1.5.1-2.el6 (FEDORA-EPEL-2012-6370) Eric Brewer-inspired key/value store -------------------------------------------------------------------------------- Update Information:
* Initial package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #652623 - Review Request: erlang-bitcask - Eric Brewer-inspired key/value store https://bugzilla.redhat.com/show_bug.cgi?id=652623 --------------------------------------------------------------------------------
================================================================================ fedmsg-0.2.3-1.el6 (FEDORA-EPEL-2012-6377) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information:
0.2.3 with upstream typo fixes Added deps on m2crypto and python-m2ext /var/log/fedmsg wasn't being created correctly. Require moksha >= 0.8.3. python-argparse fix for epel-6. -------------------------------------------------------------------------------- ChangeLog:
* Wed Jul 11 2012 Ralph Bean rbean@redhat.com - 0.2.3-1 - Upstream bump that fixes some typos. * Tue Jul 10 2012 Ralph Bean rbean@redhat.com - 0.2.2-3 - Added deps on python-argparse for py < 2.7 (rhel6) * Sat Jul 7 2012 Ralph Bean rbean@redhat.com - 0.2.2-2 - Added deps on m2crypto and python-m2ext * Sat Jul 7 2012 Ralph Bean rbean@redhat.com - 0.2.2-1 - Update to fedmsg-irc to fix lineRate issues - fedmsg.crypto module - sign and validate messages * Mon Jun 11 2012 Ralph Bean rbean@redhat.com - 0.2.1-2 - Require moksha >= 0.8.3 * Mon Jun 11 2012 Ralph Bean rbean@redhat.com - 0.2.1-1 - Override producers and consumers entry-points in the hub. Should fix a collision that fedmsg-irc is having with fedoracommunity. * Mon Jun 11 2012 Ralph Bean rbean@redhat.com - 0.2.0-4 - Introduce temporary hard dep on orbited. * Mon Jun 11 2012 Ralph Bean rbean@redhat.com - 0.2.0-3 - /var/log/fedmsg wasn't being created correctly. --------------------------------------------------------------------------------
================================================================================ lcgdm-1.8.3.1-2.el6 (FEDORA-EPEL-2012-6380) LHC Computing Grid Data Management -------------------------------------------------------------------------------- Update Information:
Update for new upstream release - 1.8.3.1. -------------------------------------------------------------------------------- ChangeLog:
* Tue Jun 5 2012 Ricardo Rocha ricardo.rocha@cern.ch - 1.8.3.1-2 - Cleanup sysv scripts from upstream when using systemd * Mon Jun 4 2012 Ricardo Rocha ricardo.rocha@cern.ch - 1.8.3.1-1 - Update for new upstream release - Dropped postgresql packages (unsupported by upstream) - Removed configuration bits from the spec file (incomplete) - Renamed dpm-srm* to srm*, dpm-rfiod to rfiod (using alternatives) --------------------------------------------------------------------------------
================================================================================ lcm-0.9.0-5.el6 (FEDORA-EPEL-2012-6375) Utilities for lightweight communications and marshaling -------------------------------------------------------------------------------- Update Information:
This update excludes the following arches: ppc and ppc64 which were preventing builds on el5 and el6. Also bumped release which wasn't synched with the changelog. --------------------------------------------------------------------------------
================================================================================ monit-5.1.1-3.el6 (FEDORA-EPEL-2012-6385) Manages and monitors processes, files, directories and devices -------------------------------------------------------------------------------- Update Information:
Fix the init script to use the pidfile to kill the daemon, not the name -------------------------------------------------------------------------------- ChangeLog:
* Wed Jul 11 2012 Maxim Burgerhout wzzrd@fedoraproject.org - 5.1.1-3 - Fix init script to use the pidfile instead of the process name to kill the daemon --------------------------------------------------------------------------------
================================================================================ nagios-plugins-lcgdm-0.9.1-1.el6 (FEDORA-EPEL-2012-6381) Nagios probes to be run remotely against DPM / LFC nodes -------------------------------------------------------------------------------- Update Information:
Update for new upstream release 0.9.1 release, with some new probes and fixes for old ones.
-------------------------------------------------------------------------------- ChangeLog:
* Wed Jul 11 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.9.1-1 - Update for new upstream release * Fri May 25 2012 Alexandre Beche alexandre.beche@cern.ch - 0.9.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ pmount-0.9.23-1.el6 (FEDORA-EPEL-2012-6373) Enable normal user mount -------------------------------------------------------------------------------- Update Information:
pmount ("policy mount") is a wrapper around the standard mount program which permits normal users to mount removable devices without a matching /etc/fstab entry. Be warned that pmount is installed setuid root. --------------------------------------------------------------------------------
================================================================================ rt3-3.8.13-1.el6.2 (FEDORA-EPEL-2012-6374) Request tracker 3 -------------------------------------------------------------------------------- Update Information:
Fix dependencies filtering. Update to 3.8.13. -------------------------------------------------------------------------------- ChangeLog:
* Tue Jul 10 2012 Xavier Bachelot xavier@bachelot.org - 3.8.13-1.2 - Fix filtering for EL6. * Mon Jun 4 2012 Xavier Bachelot xavier@bachelot.org - 3.8.13-1.1 - Default to non-devel mode for non-Fedora builds. * Sat Jun 2 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.13-1 - Upstream update. * Tue May 22 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.12-1 - Upstream update. - Address various CVEs (BZ 824082). * Thu Feb 2 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-7 - Fix shebangs. - Make testsuite files executable (enables rpm's perl module dep tracking). - Build *-tests, iff devel_mode was given. - Misc. specfile massaging. * Tue Jan 31 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-6 - Misc. specfile improvements. * Tue Jan 31 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-5 - Rewrite *-tests package (Don't use tests macros). * Mon Jan 30 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-4 - Rename rpmbuild option with_tests into with_runtests. - Add rt3-tests subpackage. - Add README.tests. - Remove removal of ${RT3_LIBDIR}/t (Fixed by upstream). - Rework R:/BR:. - Use %{__rm} instead of /bin/rm. - Misc minor spec file cleanup. * Wed Jan 18 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-3 - Fix typo in filter rules. - Add lexdir, manualdir, RT3_LEXDIR. * Mon Jan 16 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-2 - Remove redundant R: config(rt3), Remove P: config(rt3). - Rewrite filter rules. * Sun Jan 15 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.11-1 - Upstream update. * Tue Jan 10 2012 Ralf Corsépius corsepiu@fedoraproject.org - 3.8.10-5 - Fix broken dependency filtering having been added in *-4. - Spec file cleanup. * Mon Jul 25 2011 Petr Pisar ppisar@redhat.com - 3.8.10-4 - RPM 4.9 dependency filtering added * Wed Jul 20 2011 Petr Sabata contyk@redhat.com - 3.8.10-3 - Perl mass rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #828512 - CVE-2011-5092 rt3: remote arbitrary code execution and privilege elevation flaw https://bugzilla.redhat.com/show_bug.cgi?id=828512 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org