The following Fedora EPEL 7 Security updates need testing: Age URL 169 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3989/cross-binutils... 53 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1087/dokuwiki-0-0.2... 53 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0952/qpid-qmf-0.28-... 36 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1421/quassel-0.11.0... 30 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1545/strongswan-5.3... 14 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5832/mingw-gnutls-3... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5973/mingw-libtiff-... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6006/dpkg-1.16.16-5... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5991/mingw-libgcryp... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5995/mingw-qt-4.8.6... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5960/testdisk-7.0-3... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5987/mingw-openssl-... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5994/mingw-qt5-qtba... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5971/mingw-curl-7.4... 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6030/proftpd-1.3.5-... 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-5937/wordpress-4.2.... 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-6078/clamav-0.98.7-...
The following builds have been pushed to Fedora EPEL 7 updates-testing
R-3.2.0-1.el7 fail2ban-0.9.2-1.el7 fedfind-1.1.5-1.el7 fetch-crl-3.0.16-1.el7 iscan-firmware-20130319-1.el7 libcec-2.2.0-1.el7 mash-0.6.15-1.el7 mozilla-requestpolicy-1.0-0.4.20150430gitf4e92d.el7 perl-MIME-Base32-1.02a-13.el7 python-cached_property-1.2.0-1.el7
Details about builds:
================================================================================ R-3.2.0-1.el7 (FEDORA-EPEL-2015-6096) A language for data analysis and graphics -------------------------------------------------------------------------------- Update Information:
Update to R 3.2.0, rebuild rpy and rkward to reflect the change. -------------------------------------------------------------------------------- ChangeLog:
* Sun Apr 26 2015 Tom Callaway spot@fedoraproject.org - 3.2.0-1 - update to 3.2.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1212462 - R-3.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1212462 --------------------------------------------------------------------------------
================================================================================ fail2ban-0.9.2-1.el7 (FEDORA-EPEL-2015-6094) Daemon to ban hosts that cause multiple authentication errors -------------------------------------------------------------------------------- Update Information:
ver. 0.9.2 (2015/04/29) - better-quick-now-than-later ----------
- Fixes: * Fix ufw action commands * infinite busy loop on _escapedTags match in substituteRecursiveTags gh-907. Thanks TonyThompson * port[s] typo in jail.conf/nginx-http-auth gh-913. Thanks Frederik Wagner (fnerdwq) * $ typo in jail.conf. Thanks Skibbi. Debian bug #767255 * grep'ing for IP in *mail-whois-lines.conf should now match also at the beginning and EOL. Thanks Dean Lee * jail.conf - php-url-fopen: separate logpath entries by newline * failregex declared direct in jail was joined to single line (specifying of multiple expressions was not possible). * filters.d/exim.conf - cover different settings of exim logs details. Thanks bes.internal * filter.d/postfix-sasl.conf - failregex is now case insensitive * filters.d/postfix.conf - add 'Client host rejected error message' failregex * fail2ban/__init__.py - add strptime thread safety hack-around * recidive uses iptables-allports banaction by default now. Avoids problems with iptables versions not understanding 'all' for protocols and ports * filter.d/dovecot.conf - match pam_authenticate line from EL7 - match unknown user line from EL7 * Use use_poll=True for Python 2.7 and >=3.4 to overcome "Bad file descriptor" msgs issue (gh-161) * filter.d/postfix-sasl.conf - tweak failregex and add ignoreregex to ignore system authentication issues * fail2ban-regex reads filter file(s) completely, incl. '.local' file etc. (gh-954) * firewallcmd-* actions: split output into separate lines for grepping (gh-908) * Guard unicode encode/decode issues while storing records in the database. Fixes "binding parameter error (unsupported type)" (gh-973), thanks to kot for reporting * filter.d/sshd added regex for matching openSUSE ssh authentication failure * filter.d/asterisk.conf: - Dropped "Sending fake auth rejection" failregex since it incorrectly targets the asterisk server itself - match "hacking attempt detected" logs
- New Features: - New filters: - postfix-rbl Thanks Lee Clemens - apache-fakegooglebot.conf Thanks Lee Clemens - nginx-botsearch Thanks Frantisek Sumsal - drupal-auth Thanks Lee Clemens - New recursive embedded substitution feature added: - `<<PREF>HOST>` becomes `<IPV4HOST>` for PREF=`IPV4`; - `<<PREF>HOST>` becomes `1.2.3.4` for PREF=`IPV4` and IPV4HOST=`1.2.3.4`; - New interpolation feature for config readers - `%(known/parameter)s`. (means last known option with name `parameter`). This interpolation makes possible to extend a stock filter or jail regexp in .local file (opposite to simply set failregex/ignoreregex that overwrites it), see gh-867. - Monit config for fail2ban in files/monit/ - New actions: - action.d/firewallcmd-multiport and action.d/firewallcmd-allports Thanks Donald Yandt - action.d/sendmail-geoip-lines.conf - action.d/nsupdate to update DNSBL. Thanks Andrew St. Jean - New status argument for fail2ban-client -- flavor: fail2ban-client status <jail> [flavor] - empty or "basic" works as-is - "cymru" additionally prints (ASN, Country RIR) per banned IP (requires dnspython or dnspython3) - Flush log at USR1 signal
- Enhancements: * Enable multiport for firewallcmd-new action. Closes gh-834 * files/debian-initd migrated from the debian branch and should be suitable for manual installations now (thanks Juan Karlo de Guzman) * Define empty ignoreregex in filters which didn't have it to avoid warnings (gh-934) * action.d/{sendmail-*,xarf-login-attack}.conf - report local timezone not UTC time/zone. Closes gh-911 * Conditionally log Ignore IP with reason (dns, ip, command). Closes gh-916 * Absorbed DNSUtils.cidr into addr2bin in filter.py, added unittests * Added syslogsocket configuration to fail2ban.conf * Note in the jail.conf for the recidive jail to increase dbpurgeage (gh-964) -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 30 2015 Orion Poplawski orion@cora.nwra.com - 0.9.2-1 - Update to 0.9.2 --------------------------------------------------------------------------------
================================================================================ fedfind-1.1.5-1.el7 (FEDORA-EPEL-2015-5963) Fedora Finder finds Fedora -------------------------------------------------------------------------------- Update Information:
This update introduces fedfind to the official Fedora repositories. fedfind is a tool for finding Fedora images. See https://www.happyassassin.net/fedfind --------------------------------------------------------------------------------
================================================================================ fetch-crl-3.0.16-1.el7 (FEDORA-EPEL-2015-6093) Downloads Certificate Revocation Lists -------------------------------------------------------------------------------- Update Information:
Changes in 3.0.16-1 ---------------------- * Added cache state freshness constraints (default maxcachetime set to 96hrs) * Re-set cache expiry of state data if CRL nextUpdate is within or beyond 7 hrs (config "expirestolerance") claimed URL Expiry or Cache-control max-age
Changes in 3.0.15-1 ---------------------- * Fixed issues resulting in undefined attribute values to be returned for CRL
https://dist.eugridpma.info/distribution/util/fetch-crl/CHANGES
-------------------------------------------------------------------------------- ChangeLog:
* Fri May 1 2015 Steve Traylen steve.trayen@cern.ch - 3.0.16-1 - New version 3.0.16. --------------------------------------------------------------------------------
================================================================================ iscan-firmware-20130319-1.el7 (FEDORA-EPEL-2015-6099) Firmware for Epson flatbed scanners -------------------------------------------------------------------------------- Update Information:
Add Epson Perfection V550 Photo firmware. -------------------------------------------------------------------------------- ChangeLog:
* Fri May 1 2015 Simone Caronni negativo17@gmail.com - 20130319-1 - Add Perfection V550 firmware (#1212545). - Add license macro. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1212545 - Enhancement - add support for Perfection V550 scanner firmware https://bugzilla.redhat.com/show_bug.cgi?id=1212545 --------------------------------------------------------------------------------
================================================================================ libcec-2.2.0-1.el7 (FEDORA-EPEL-2015-6098) Library and utilities for HDMI-CEC device control -------------------------------------------------------------------------------- Update Information:
Update to 2.2.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1184147 - EPEL7 package request - libcec https://bugzilla.redhat.com/show_bug.cgi?id=1184147 --------------------------------------------------------------------------------
================================================================================ mash-0.6.15-1.el7 (FEDORA-EPEL-2015-6084) Koji buildsystem to yum repository converter -------------------------------------------------------------------------------- Update Information:
blacklist php and httpd from being multilib rhbz#1217168 (dennis) Make blacklist/whitelist into config values. based on patch from Ralph Bean in rhbz#1082832 (dennis) Pass the config object into the multilib method objects. (rbean) Add configs for stg. (rbean) update the mash configs for rawhide (dennis) -------------------------------------------------------------------------------- ChangeLog:
* Fri May 1 2015 Dennis Gilmore dennis@ausil.us - 0.6.15-1 - Save a reference to the config. (rbean) - add script for making changelogs from git for rpm (dennis) * Wed Apr 29 2015 Dennis Gilmore dennis@ausil.us - 0.6.14-1 - blacklist php and httpd from being multilib rhbz#1217168 (dennis) - Make blacklist/whitelist into config values. based on patch from Ralph Bean in rhbz#1082832 (dennis) - Pass the config object into the multilib method objects. (rbean) - Add configs for stg. (rbean) - update the mash configs for rawhide (dennis) * Tue Feb 10 2015 Dennis Gilmore dennis@ausil.us - 0.6.13-2 - add patch moving rawhide to f23 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1217168 - httpd and php should not be multilib https://bugzilla.redhat.com/show_bug.cgi?id=1217168 [ 2 ] Bug #1082832 - RFE: make whitelist and blacklist config options instead of hard coded https://bugzilla.redhat.com/show_bug.cgi?id=1082832 --------------------------------------------------------------------------------
================================================================================ mozilla-requestpolicy-1.0-0.4.20150430gitf4e92d.el7 (FEDORA-EPEL-2015-6101) Firefox and Seamonkey extension that gives you control over cross-site requests -------------------------------------------------------------------------------- Update Information:
- **Update to Beta9.1** - **Changed upstream URL** -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 30 2015 Antonio Trande <sagitterATfedoraproject.org> - 1.0-0.4.20150430gitf4e92d - Update to Beta9.1 - Changed upstream URL --------------------------------------------------------------------------------
================================================================================ perl-MIME-Base32-1.02a-13.el7 (FEDORA-EPEL-2015-6107) Base32 encoder / decoder -------------------------------------------------------------------------------- Update Information:
Initial build for EPEL7 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1205746 - Please branch perl-MIME-Base32 for EPEL7 https://bugzilla.redhat.com/show_bug.cgi?id=1205746 --------------------------------------------------------------------------------
================================================================================ python-cached_property-1.2.0-1.el7 (FEDORA-EPEL-2015-6104) A cached-property for decorating methods in Python classes -------------------------------------------------------------------------------- Update Information:
This update provides the latest release of cached_property, with several improvements upstream. All changes should remain backward-compatible. See upstream changes here:
https://github.com/pydanny/cached-property/blob/1.2.0/HISTORY.rst This update provides the latest upstream release, which is a minor update with no API changes. This update provides the latest upstream release, which is a minor update with no API changes. This update provides the latest upstream release, which is a minor update with no API changes. This update provides the latest upstream release, which is a minor update with no API changes. This update provides the latest upstream release, which is a minor update with no API changes. -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 29 2015 Adam Williamson awilliam@redhat.com - 1.2.0-1 - new upstream release 1.2.0 (refactoring, bug fixes) - patch out non-ASCII characters in HISTORY.rst (breaks py3 build in koji) * Thu Apr 16 2015 Adam Williamson awilliam@redhat.com - 1.1.0-1 - new upstream release 1.1.0 (insignificant changes) --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org