Fedora EPEL 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Tue May 7 18:13:44 UTC 2013 

The following Fedora EPEL 5 Security updates need testing:
 Age  URL
 380  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
 275  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5
  80  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5
  26  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5410/php-geshi-1.0.8.11-3.el5
  14  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5517/git-1.8.2.1-1.el5
   8  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5620/phpMyAdmin3-3.5.8.1-1.el5
   0  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-5711/openvpn-2.3.1-1.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    gccxml-0.9.0-0.15.20130506.git567213ac.el5
    mksh-46-1.el5
    openvpn-2.3.1-1.el5

Details about builds:


================================================================================
 gccxml-0.9.0-0.15.20130506.git567213ac.el5 (FEDORA-EPEL-2013-5661)
 XML output extension to GCC
--------------------------------------------------------------------------------
Update Information:

New git snapshot with gcc 4.8 support files included.
--------------------------------------------------------------------------------
ChangeLog:

* Mon May  6 2013 Mattias Ellert <mattias.ellert at fysast.uu.se> - 0.9.0-0.15.20130506.git567213ac
- Updated git snapshot
- Now contains support files for gcc 4.8
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.0-0.14.20120309
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Mon Oct 15 2012 Jon Ciesla <limburgher at gmail.com> - 0.9.0-0.13-20120309
- Provides: bundled(libiberty)
--------------------------------------------------------------------------------


================================================================================
 mksh-46-1.el5 (FEDORA-EPEL-2013-5647)
 MirBSD enhanced version of the Korn Shell
--------------------------------------------------------------------------------
Update Information:

R46 delivers these changes:

  * [tg] dot.mkshrc: prevent lksh from running it
  * [tg] Add the lksh manual page to the mksh distribution
  * [tg] Make both lksh and mksh interpret numbers with a leading digit zero (‘0’) as octal precisely iff “set -o posix” is active
  * [tg] Point out the octal digit and the integer arithmetic differences from POSuX verbosely in the manual pages (point people who need octals to “set -o posix” and who need longs to lksh) and elaborate on the horrors of ISO C Undefined Behaviour which is allowed to delete all your data
  * [tg] Unbreak “set -o” (list flags) in lksh on LP64 machines
  * [tg] Implement Emacs mode PgUp as Vi insert mode Cur↑ for Yofuh
  * [tg] Allow setting both “set -o sh” and “set -o posix”, if done in the same command; shuffle around compatibility levels (mksh/lksh, with -o sh, with -o posix) again; permit a /bin/sh to set either or both
  * [tg] Sync lksh manual page with the exact code ifdefs
  * [tg] Change more use of signed integer to use unsigned instead
  * [tg] Implement “set -o pipefail” like AT&T ksh93 and GNU bash do
  * [tg] dot.mkshrc: provide hd(1) in Pure mksh™ for fallback
  * [tg] Implement VALSUBs (value substitutions): ${|REPLY=foo;}


R45 comes with this bag of changes:

  * [tg] Make “set -x” print the commands run in escaped form
  * [tg] PS4 in dot.mkshrc is now timestamped
  * [tg] The &> GNU bash I/O redir is no longer parsed in -o posix, -o sh modes, lksh (breaks valid scripts)
  * [tg] Implement ${ …;} more efficiently (deleted-open files)
  * [tg] For shf, %#s (if you can get it past GCC’s printf format attribute) calls print_value_quoted, ignoring field width and precision
  * [tg] Catch “typeset =” (regression) with better error message
  * [tg, Tonnerre Lombard] add “doch” alias to dot.mkshrc which just repeats the last input line with sudo(8)
  * [tg] Use unsigned integers for all calculations, to avoid ISO C “Undefined Behaviour” (and implementation-defined behaviour) throughout (most of) the code; emulate signed integer arithmetics using unsigned; not-lksh only
  * [tg] Emulate signed modulo naïvely, for correct sign of the result
  * [tg] Add <<< and >>> for ROL and ROR (rotate left and right, respectively) operations, <<<= and >>> assignments; bitwise AND the RHS of a shift/rotate op with 31 (not for lksh)
  * [tg] Remove a warning by working around a workaround found in dietlibc which works around a bug in broken software such as GNU tar (really!)
  * [tg] Correct and simplify list and categorisation of built-in commands as POSIX special and “everything else” plus a flag to keep assignments
  * [tg] Handle ((foo)) as “let]” internally to avoid a conflict with user-defined functions called let (LP#1156707)
  * [tg] Clean up the code
--------------------------------------------------------------------------------
ChangeLog:

* Fri May  3 2013 Thorsten Glaser <tg at mirbsd.org> 46-1
- Upgrade mksh to R46
* Wed May  1 2013 Thorsten Glaser <tg at mirbsd.org> 45-1
- Upgrade mksh to R45 and the other files to the accompanying versions
- Drop workaround for GCC PR55009 (no longer needed)
- Use https for homepage
--------------------------------------------------------------------------------


================================================================================
 openvpn-2.3.1-1.el5 (FEDORA-EPEL-2013-5711)
 A full-featured SSL VPN solution
--------------------------------------------------------------------------------
Update Information:

Fix for SSL vulnerability.
--------------------------------------------------------------------------------
ChangeLog:

* Mon May  6 2013 Jon Ciesla <limburgher at gmail.com> 2.3.1-1
- Update to 2.3.1
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #960195 - CVE-2013-2061 openvpn: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=960195
--------------------------------------------------------------------------------

More information about the epel-devel-list mailing list