Fedora EPEL 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Sat Nov 17 19:51:40 UTC 2012 

The following Fedora EPEL 5 Security updates need testing:
 Age  URL
 209  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
 104  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5
   2  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13480/cgit-0.9.1-1.el5
  35  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13152/cobbler-2.4.0-beta2.el5
   6  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13443/roundup-1.4.20-1.el5
  30  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13203/389-ds-base-1.2.10.14-2.el5
   0  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13496/mod_security-2.6.8-2.el5
  33  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13182/ssmtp-2.61-19.el5
  32  https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13192/icecast-2.3.3-1.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    mod_geoip-1.2.7-1.el5
    mod_security-2.6.8-2.el5

Details about builds:


================================================================================
 mod_geoip-1.2.7-1.el5 (FEDORA-EPEL-2012-13494)
 GeoIP module for the Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:

Upgrade to 1.2.7:

 - Add support for GEOIP_NETSPEED_REV1
 - Experimental support for GEOIP_COUNTRY_EDITION_V6
 - Add GEOIP_DOMAIN_EDITION support
--------------------------------------------------------------------------------


================================================================================
 mod_security-2.6.8-2.el5 (FEDORA-EPEL-2012-13496)
 Security module for the Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:

- Add some missing directives RHBZ #569360
- Backport the fix multipart/invalid part ruleset bypass issue from 2.7 branch (CVE-2012-4528) (RHBZ #867424, #867773, #867774)
--------------------------------------------------------------------------------
ChangeLog:

* Sat Nov 17 2012 Athmane Madjoudj <athmane at fedoraproject.org> 2.6.8-2
- Add some missing directives RHBZ #569360
- Backport the fix multipart/invalid part ruleset bypass issue (CVE-2012-4528)
  (RHBZ #867424, #867773, #867774)
* Fri Sep 28 2012 Athmane Madjoudj <athmane at fedoraproject.org> 2.6.8-1
- Update to 2.6.8
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #867424 - CVE-2012-4528 mod_security: multipart/invalid part ruleset bypass
        https://bugzilla.redhat.com/show_bug.cgi?id=867424
--------------------------------------------------------------------------------

More information about the epel-devel-list mailing list