Fedora EPEL 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Fri Nov 18 18:41:25 UTC 2011 

The following Fedora EPEL 5 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4964/phpMyAdmin3-3.4.7.1-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-3762/couchdb-1.0.2-8.el5,erlang-ibrowse-2.2.0-3.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4986/ReviewBoard-1.5.7-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-5024/torque-2.5.7-4.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4907/bugzilla-3.2.10-2.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4782/phpldapadmin-1.0.2-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4674/awstats-6.95-3.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4748/clamav-0.97.3-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4943/proftpd-1.3.3g-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4869/net6-1.3.14-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4749/cherokee-1.2.101-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4867/drupal6-views-2.13-1.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    gsi-openssh-4.3p2-3.el5
    mussh-1.0-0.el5
    tito-0.4.0-1.el5
    torque-2.5.7-4.el5

Details about builds:


================================================================================
 gsi-openssh-4.3p2-3.el5 (FEDORA-EPEL-2011-5022)
 An implementation of the SSH protocol with GSI authentication
--------------------------------------------------------------------------------
Update Information:

SSH (Secure SHell) is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the secure channel.

OpenSSH is OpenBSD's version of the last free version of SSH, bringing it up to date in terms of security and features.

This version of OpenSSH has been modified to support GSI authentication.

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #683587 - Review Request: gsi-openssh - An implementation of the SSH protocol with GSI authentication
        https://bugzilla.redhat.com/show_bug.cgi?id=683587
--------------------------------------------------------------------------------


================================================================================
 mussh-1.0-0.el5 (FEDORA-EPEL-2011-5023)
 Multihost SSH wrapper
--------------------------------------------------------------------------------
Update Information:

Update to upstream 1.0 release with various minor bugfixes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 16 2011 Kevin Fenzi <kevin at scrye.com> - 1.0-0
- Update to new 1.0 upstream release.
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.7-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sat Jul 25 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.7-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Wed Feb 25 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.7-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Mon Aug 27 2007 Kevin Fenzi <kevin at tummy.com> 0.7-2
- Update License tag
--------------------------------------------------------------------------------


================================================================================
 tito-0.4.0-1.el5 (FEDORA-EPEL-2011-5029)
 A tool for managing rpm based git projects
--------------------------------------------------------------------------------
Update Information:

Added ability to build via mock, push updates to yum repositories, and tag with specific versions from CLI. Fixes several bugs including the error where some (rare) tags will not build.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov  9 2011 Devan Goodwin <dgoodwin at rm-rf.ca> 0.4.0-1
- Fix import error with new fedpkg version. (dgoodwin at rm-rf.ca)
- Add a KojiGitReleaser. (dgoodwin at rm-rf.ca)
- Adding --use-version to allow Tito to force a version to use.
  (awood at redhat.com)
- Support SCRATCH=1 env variable for koji releaser. (dgoodwin at rm-rf.ca)
- Support ONLY_TAGS env variable for koji releaser. (dgoodwin at rm-rf.ca)
- List releasers option. (dgoodwin at rm-rf.ca)
- Documentation update. (dgoodwin at rm-rf.ca)
- Allow releaseing to multiple targets at once, and add --all-starting-with.
  (dgoodwin at rm-rf.ca)
- Make auto-install available to all builders. (dgoodwin at rm-rf.ca)
- Allow setting specific builder and passing builder args on CLI. (dgoodwin at rm-
  rf.ca)
- Add new mechanism for passing custom arguments to builders. (dgoodwin at rm-
  rf.ca)
- HACKING tips updated. (dgoodwin at rm-rf.ca)
- Add a rsync username env variable for yum repo releaser. (dgoodwin at rm-rf.ca)
- Restructure release CLI. (dgoodwin at redhat.com)
- Parsing spec files and bumping their versions or releases is now in Python.
  (awood at redhat.com)
* Wed Oct  5 2011 Devan Goodwin <dgoodwin at rm-rf.ca> 0.3.3-1
- Clarify some initial project layout documentation. (dgoodwin at rm-rf.ca)
- match based on the tag for the package we are building (mmccune at redhat.com)
- Teach tito how to checkout EUS branches (msuchy at redhat.com)
- Remove release parameter from _update_package_metadata() (msuchy at redhat.com)
- Avoid traceback if rpmbuild fails (jumanjiman at gmail.com)
- Make Fedora git builds a little more tolerant if you need to re-run.
  (dgoodwin at redhat.com)
- Fix the binary spew in SOURCES on some weird tags. (dgoodwin at redhat.com)
- Do not print traceback when user lacks write permission (jumanjiman at gmail.com)
- Fix Fedora git releaser to use more reliable commands. (dgoodwin at rm-rf.ca)
- Remove the old tito build --release code. (dgoodwin at rm-rf.ca)
- Allow custom releasers to be loaded and used. (dgoodwin at rm-rf.ca)
- Introduce new CLI module for releases. (dgoodwin at rm-rf.ca)
- Use fedpkg switch branch for git releases. (dgoodwin at rm-rf.ca)
- Do not print traceback when user hit Ctrl+C (msuchy at redhat.com)
- '0' is True, we want it as false (msuchy at redhat.com)
--------------------------------------------------------------------------------


================================================================================
 torque-2.5.7-4.el5 (FEDORA-EPEL-2011-5024)
 Tera-scale Open-source Resource and QUEue manager
--------------------------------------------------------------------------------
Update Information:

This torque update corrects a security vulnerability whereby a user connecting to the torque pbs_server could impersonate another user present within the torque batch system.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov 17 2011 Steve Traylen <steve.traylen at cern.ch> - 2.5.7-4
- Empty release for release mistake.
* Thu Nov 17 2011 Steve Traylen <steve.traylen at cern.ch> - 2.5.7-3
- Add torque-fix-munge-rhbz#752079.patch
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #752079 - Torque and Munge impersonation vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=752079
--------------------------------------------------------------------------------

More information about the epel-devel-list mailing list