Check available security updates for CentOS 7.
Operating system.
$ cat /etc/centos-release CentOS Linux release 7.6.1810 (Core)
Initial steps
Install Extra Packages for Enterprise Linux (EPEL) repository as it provides update notices.
$ sudo yum --assumeyes install epel-release
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * base: ftp.man.poznan.pl * extras: ftp.man.poznan.pl * updates: ftp.man.poznan.pl Resolving Dependencies --> Running transaction check ---> Package epel-release.noarch 0:7-11 will be installed --> Finished Dependency Resolution Dependencies Resolved ================================================================================================================================================================== Package Arch Version Repository Size ================================================================================================================================================================== Installing: epel-release noarch 7-11 extras 15 k Transaction Summary ================================================================================================================================================================== Install 1 Package Total size: 15 k Installed size: 24 k Downloading packages: Running transaction check Running transaction test Transaction test succeeded Running transaction Installing : epel-release-7-11.noarch 1/1 Verifying : epel-release-7-11.noarch 1/1 Installed: epel-release.noarch 0:7-11 Complete!
Update package cache.
$ sudo yum makecache fast
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile epel/x86_64/metalink | 29 kB 00:00:00 * base: ftp.icm.edu.pl * epel: ftp.icm.edu.pl * extras: mirror-pl.kielcetechnologypark.net * updates: mirror-pl.kielcetechnologypark.net base | 3.6 kB 00:00:00 epel | 5.3 kB 00:00:00 extras | 2.9 kB 00:00:00 updates | 2.9 kB 00:00:00 (1/3): epel/x86_64/updateinfo | 1.0 MB 00:00:00 (2/3): epel/x86_64/group_gz | 90 kB 00:00:00 (3/3): epel/x86_64/primary_db | 6.9 MB 00:00:01 Metadata Cache Created
Display summary information
Display summary information on all provided advisories.
$ sudo yum --cacheonly updateinfo summary all
Loaded plugins: fastestmirror
Updates Information Summary: all
1673 New Package notice(s)
253 Security notice(s)
114 None Security notice(s)
3 Critical Security notice(s)
29 Important Security notice(s)
70 Moderate Security notice(s)
37 Low Security notice(s)
1295 Bugfix notice(s)
1180 Enhancement notice(s)
updateinfo summary done
Display summary information on all provided advisories excluding packages that are already installed.
$ sudo yum --cacheonly updateinfo summary available
Loaded plugins: fastestmirror
Updates Information Summary: available
1673 New Package notice(s)
251 Security notice(s)
113 None Security notice(s)
3 Critical Security notice(s)
28 Important Security notice(s)
70 Moderate Security notice(s)
37 Low Security notice(s)
1295 Bugfix notice(s)
1180 Enhancement notice(s)
updateinfo summary done
Display summary information on advisories related to packages that are already installed.
$ sudo yum --cacheonly updateinfo summary installed
Loaded plugins: fastestmirror
Updates Information Summary: installed
3 New Package notice(s)
4 Security notice(s)
1 None Security notice(s)
1 Critical Security notice(s)
1 Important Security notice(s)
1 Moderate Security notice(s)
1 Bugfix notice(s)
1 Enhancement notice(s)
updateinfo summary done
Display summary information on advisories related to packages that can be updated.
$ sudo yum --cacheonly updateinfo summary updates
Loaded plugins: fastestmirror
Updates Information Summary: updates
1 Critical Security notice(s)
1 Enhancement notice(s)
updateinfo summary done
List advisories
List every provided advisory.
$ sudo yum --cacheonly updateinfo list all
Loaded plugins: fastestmirror FEDORA-EPEL-2016-b92b91098f newpackage 0ad-0.0.20-4.el7.x86_64 FEDORA-EPEL-2017-d960d7834c enhancement 0ad-0.0.22-1.el7.x86_64 FEDORA-EPEL-2016-b92b91098f newpackage 0ad-data-0.0.20-1.el7.noarch FEDORA-EPEL-2017-d960d7834c enhancement 0ad-data-0.0.22-1.el7.noarch FEDORA-EPEL-2016-6e37f92d4b bugfix 0install-2.11-1.el7.x86_64 FEDORA-EPEL-2016-8229efcf3a enhancement 2048-cli-0.9.1-1.el7.x86_64 FEDORA-EPEL-2016-8229efcf3a enhancement 2048-cli-nocurses-0.9.1-1.el7.x86_64 FEDORA-EPEL-2016-df9b446811 enhancement 2ping-3.2.1-2.el7.noarch FEDORA-EPEL-2016-7b134b993d bugfix 389-admin-1.1.46-1.el7.x86_64 [...] i FEDORA-EPEL-2015-90d91da479 newpackage apiextractor-0.10.10-10.el7.x86_64 i FEDORA-EPEL-2019-d4f26180c3 newpackage coturn-4.5.1.1-1.el7.x86_64 i FEDORA-EPEL-2015-0599 bugfix hiredis-0.12.1-1.el7.x86_64 i FEDORA-EPEL-2018-87d4d9304b newpackage libdnet-1.12-0.13.1.el7.x86_64 i FEDORA-EPEL-2019-aa84623a4e Moderate/Sec. libmspack-0.5-0.0.7.alpha.el7.x86_64 i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-1:1.16.1-1.el7.x86_64 i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-all-modules-1:1.16.1-1.el7.noarch i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-filesystem-1:1.16.1-1.el7.noarch i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-image-filter-1:1.16.1-1.el7.x86_64 i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-perl-1:1.16.1-1.el7.x86_64 i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-xslt-filter-1:1.16.1-1.el7.x86_64 i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-mail-1:1.16.1-1.el7.x86_64 i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-stream-1:1.16.1-1.el7.x86_64 i FEDORA-EPEL-2019-0f4cca7837 enhancement python-srpm-macros-3-23.el7.noarch i FEDORA-EPEL-2017-017fbc40e8 None/Sec. supervisor-3.1.4-1.el7.noarch i FEDORA-EPEL-2017-56ca95fe85 Critical/Sec. varnish-4.0.5-1.el7.x86_64 i FEDORA-EPEL-2017-56ca95fe85 Critical/Sec. varnish-libs-4.0.5-1.el7.x86_64 [...] FEDORA-EPEL-2016-f08257b92c newpackage zulucrypt-devel-5.0.0-3.20160802git064e9db.el7.x86_64 FEDORA-EPEL-2016-b072b4c9c7 enhancement zulucrypt-devel-5.0.1-1.el7.x86_64 FEDORA-EPEL-2016-f08257b92c newpackage zulucrypt-doc-5.0.0-3.20160802git064e9db.el7.noarch FEDORA-EPEL-2016-b072b4c9c7 enhancement zulucrypt-doc-5.0.1-1.el7.noarch FEDORA-EPEL-2016-f08257b92c newpackage zulucrypt-libs-5.0.0-3.20160802git064e9db.el7.x86_64 FEDORA-EPEL-2016-b072b4c9c7 enhancement zulucrypt-libs-5.0.1-1.el7.x86_64 FEDORA-EPEL-2016-7691119a3a enhancement zvbi-0.2.35-1.el7.x86_64 FEDORA-EPEL-2016-7691119a3a enhancement zvbi-devel-0.2.35-1.el7.x86_64 FEDORA-EPEL-2016-7691119a3a enhancement zvbi-fonts-0.2.35-1.el7.noarch updateinfo list done
List every provided advisory, excluding packages that are already installed.
$ sudo yum --cacheonly updateinfo list available
Loaded plugins: fastestmirror FEDORA-EPEL-2016-b92b91098f newpackage 0ad-0.0.20-4.el7.x86_64 FEDORA-EPEL-2017-d960d7834c enhancement 0ad-0.0.22-1.el7.x86_64 FEDORA-EPEL-2016-b92b91098f newpackage 0ad-data-0.0.20-1.el7.noarch FEDORA-EPEL-2017-d960d7834c enhancement 0ad-data-0.0.22-1.el7.noarch FEDORA-EPEL-2016-6e37f92d4b bugfix 0install-2.11-1.el7.x86_64 FEDORA-EPEL-2016-8229efcf3a enhancement 2048-cli-0.9.1-1.el7.x86_64 FEDORA-EPEL-2016-8229efcf3a enhancement 2048-cli-nocurses-0.9.1-1.el7.x86_64 FEDORA-EPEL-2016-df9b446811 enhancement 2ping-3.2.1-2.el7.noarch FEDORA-EPEL-2016-7b134b993d bugfix 389-admin-1.1.46-1.el7.x86_64 [...] FEDORA-EPEL-2016-f08257b92c newpackage zulucrypt-devel-5.0.0-3.20160802git064e9db.el7.x86_64 FEDORA-EPEL-2016-b072b4c9c7 enhancement zulucrypt-devel-5.0.1-1.el7.x86_64 FEDORA-EPEL-2016-f08257b92c newpackage zulucrypt-doc-5.0.0-3.20160802git064e9db.el7.noarch FEDORA-EPEL-2016-b072b4c9c7 enhancement zulucrypt-doc-5.0.1-1.el7.noarch FEDORA-EPEL-2016-f08257b92c newpackage zulucrypt-libs-5.0.0-3.20160802git064e9db.el7.x86_64 FEDORA-EPEL-2016-b072b4c9c7 enhancement zulucrypt-libs-5.0.1-1.el7.x86_64 FEDORA-EPEL-2016-7691119a3a enhancement zvbi-0.2.35-1.el7.x86_64 FEDORA-EPEL-2016-7691119a3a enhancement zvbi-devel-0.2.35-1.el7.x86_64 FEDORA-EPEL-2016-7691119a3a enhancement zvbi-fonts-0.2.35-1.el7.noarch updateinfo list done
List advisories for packages that are already installed.
$ sudo yum --cacheonly updateinfo list installed
Loaded plugins: fastestmirror FEDORA-EPEL-2015-90d91da479 newpackage apiextractor-0.10.10-10.el7.x86_64 FEDORA-EPEL-2019-d4f26180c3 newpackage coturn-4.5.1.1-1.el7.x86_64 FEDORA-EPEL-2015-0599 bugfix hiredis-0.12.1-1.el7.x86_64 FEDORA-EPEL-2018-87d4d9304b newpackage libdnet-1.12-0.13.1.el7.x86_64 FEDORA-EPEL-2019-aa84623a4e Moderate/Sec. libmspack-0.5-0.0.7.alpha.el7.x86_64 FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-1:1.16.1-1.el7.x86_64 FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-all-modules-1:1.16.1-1.el7.noarch FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-filesystem-1:1.16.1-1.el7.noarch FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-image-filter-1:1.16.1-1.el7.x86_64 FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-perl-1:1.16.1-1.el7.x86_64 FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-xslt-filter-1:1.16.1-1.el7.x86_64 FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-mail-1:1.16.1-1.el7.x86_64 FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-stream-1:1.16.1-1.el7.x86_64 FEDORA-EPEL-2019-0f4cca7837 enhancement python-srpm-macros-3-23.el7.noarch FEDORA-EPEL-2017-017fbc40e8 None/Sec. supervisor-3.1.4-1.el7.noarch FEDORA-EPEL-2017-56ca95fe85 Critical/Sec. varnish-4.0.5-1.el7.x86_64 FEDORA-EPEL-2017-56ca95fe85 Critical/Sec. varnish-libs-4.0.5-1.el7.x86_64 updateinfo list done
List advisories for packages that can be updated.
$ sudo yum --cacheonly updateinfo list updates
Loaded plugins: fastestmirror FEDORA-EPEL-2019-020e5a5f9c enhancement epel-release-7-12.noarch FEDORA-EPEL-2017-56ca95fe85 Critical/Sec. varnish-docs-4.0.5-1.el7.x86_64 updateinfo list done
Display advisory information
Display detailed information about the specific advisory.
$ sudo yum --cacheonly updateinfo info all --advisory=FEDORA-EPEL-2019-020e5a5f9c
Loaded plugins: fastestmirror
===============================================================================
epel-release-7-12
===============================================================================
Update ID : FEDORA-EPEL-2019-020e5a5f9c
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2019-10-04 20:28:32
Updated : 2020-01-09 00:11:30Description : Add in &infra and content variables to better understand users
: of EPEL.
Severity : None
Installed : false
updateinfo info done
$ sudo yum --cacheonly updateinfo info all --advisory=FEDORA-EPEL-2017-56ca95fe85
Loaded plugins: fastestmirror
===============================================================================
varnish-4.0.5-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2017-56ca95fe85
Release : Fedora EPEL 7
Type : security
Status : stable
Issued : 2017-08-04 13:50:14
Updated : 2017-08-03 11:07:37 Bugs : 1477222 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests
: 1477699 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests [epel-all]
Description : New upstream release. This is a security release, with a fix for
: a crash bug that might be used in a denial of
: service attack. Details from the upstream project
: are found here:
:
: http://varnish-cache.org/security/VSV00001.html
Severity : Critical
Installed : true
updateinfo info done
Display detailed information about every provided advisory.
$ sudo yum --cacheonly updateinfo info all
Loaded plugins: fastestmirror
===============================================================================
0ad-0.0.20-4.el7 0ad-data-0.0.20-1.el7 miniupnpc-2.0-1.el7 mozjs31-31.2.0-8.el7 nvidia-texture-tools-2.0.8-13.el7
===============================================================================
Update ID : FEDORA-EPEL-2016-b92b91098f
Release : Fedora EPEL 7
Type : newpackage
Status : stable
Issued : 2016-07-06 06:25:28
Updated : 2016-07-05 16:40:48Description : Initial 0ad build for EPEL 7.
Severity : None
Installed : false
===============================================================================
0ad-0.0.22-1.el7 0ad-data-0.0.22-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2017-d960d7834c
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2017-08-11 17:46:41
Updated : 2020-01-09 00:13:57Description : Update to 0.0.22
Severity : None
Installed : false
[...]
===============================================================================
zvbi-0.2.35-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2016-7691119a3a
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2016-03-04 18:26:56
Updated : 2020-01-09 00:12:57Description : Update to 0.2.35
Severity : None
Installed : false
updateinfo info done
Display detailed information about every provided advisory, excluding packages that are already installed.
$ sudo yum --cacheonly updateinfo list available
Loaded plugins: fastestmirror
===============================================================================
0ad-0.0.20-4.el7 0ad-data-0.0.20-1.el7 miniupnpc-2.0-1.el7 mozjs31-31.2.0-8.el7 nvidia-texture-tools-2.0.8-13.el7
===============================================================================
Update ID : FEDORA-EPEL-2016-b92b91098f
Release : Fedora EPEL 7
Type : newpackage
Status : stable
Issued : 2016-07-06 06:25:28
Updated : 2016-07-05 16:40:48Description : Initial 0ad build for EPEL 7.
Severity : None
Installed : false
===============================================================================
0ad-0.0.22-1.el7 0ad-data-0.0.22-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2017-d960d7834c
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2017-08-11 17:46:41
Updated : 2020-01-09 00:13:57Description : Update to 0.0.22
Severity : None
Installed : false
[...]
===============================================================================
zvbi-0.2.35-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2016-7691119a3a
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2016-03-04 18:26:56
Updated : 2020-01-09 00:12:57Description : Update to 0.2.35
Severity : None
Installed : false
updateinfo info done
Display detailed information about advisories related to packages that are already installed.
$ sudo yum --cacheonly updateinfo info installed
Loaded plugins: fastestmirror
===============================================================================
apiextractor-0.10.10-10.el7 generatorrunner-0.6.16-9.el7 pyside-tools-0.2.13-9.el7 python-pyside-1.2.2-4.el7 shiboken-1.2.2-3.el7
===============================================================================
Update ID : FEDORA-EPEL-2015-90d91da479
Release : Fedora EPEL 7
Type : newpackage
Status : stable
Issued : 2015-12-17 10:31:02
Updated : 2020-01-09 00:04:45 Bugs : 1140773 - Please build an EPEL7 build of python-pyside
: 1140771 - Please build an EPEL7 build of shiboken
: 1140770 - Please build an EPEL7 build of generatorrunner
: 1140769 - Please build an EPEL7 build of apiextractor
Description : Initial packages for EPEL 7.
Severity : Low
===============================================================================
coturn-4.5.1.1-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2019-d4f26180c3
Release : Fedora EPEL 7
Type : newpackage
Status : stable
Issued : 2019-08-18 00:27:45
Updated : 2020-01-09 00:16:01 Bugs : 1705146 - coturn fails to start because of PID file issue
: 1733691 - Please build coturn for EPEL 7 and 8
Description : The Coturn TURN Server is a VoIP media traffic NAT traversal
: server and gateway. It can be used as a
: general-purpose network traffic TURN
: server/gateway, too.
:
: This implementation also includes some extra
: features. Supported RFCs:
:
: TURN specs:
:
: - RFC 5766 - base TURN specs
: - RFC 6062 - TCP relaying TURN extension
: - RFC 6156 - IPv6 extension for TURN
: - Experimental DTLS support as client protocol.
:
: STUN specs:
:
: - RFC 3489 - "classic" STUN
: - RFC 5389 - base "new" STUN specs
: - RFC 5769 - test vectors for STUN protocol
: testing
: - RFC 5780 - NAT behavior discovery support
:
: The implementation fully supports the following
: client-to-TURN-server protocols:
:
: - UDP (per RFC 5766)
: - TCP (per RFC 5766 and RFC 6062)
: - TLS (per RFC 5766 and RFC 6062);
: TLS1.0/TLS1.1/TLS1.2
: - DTLS (experimental non-standard feature)
:
: Supported relay protocols:
:
: - UDP (per RFC 5766)
: - TCP (per RFC 6062)
:
: Supported user databases (for user repository,
: with passwords or keys, if authentication is
: required):
:
: - SQLite
: - MySQL
: - PostgreSQL
: - Redis
:
: Redis can also be used for status and statistics
: storage and notification.
:
: Supported TURN authentication mechanisms:
:
: - long-term
: - TURN REST API (a modification of the long-term
: mechanism, for time-limited secret-based
: authentication, for WebRTC applications)
:
: The load balancing can be implemented with the
: following tools (either one or a combination of
: them):
:
: - network load-balancer server
: - DNS-based load balancing
: - built-in ALTERNATE-SERVER mechanism.
Severity : None
===============================================================================
hiredis-0.12.1-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2015-0599
Release : Fedora EPEL 7
Type : bugfix
Status : stable
Issued : 2015-02-02 15:19:49
Updated : 2020-01-09 00:12:13 Bugs : 1186213 - hiredis-0.12.1 is available
Description : == 0.12.1 - January 26, 2015 ==
:
: * Fix make install: DESTDIR support, install all
: required files, install PKGCONF in proper
: location
: * Fix make test as 32 bit build on 64 bit platform
:
: == 0.12.0 - January 22, 2015 ==
:
: * Add optional KeepAlive support
: * Try again on EINTR errors
: * Add libuv adapter
: * Add IPv6 support
: * Remove possibility of multiple close on same fd
: * Add ability to bind source address on connect
: * Add redisConnectFd() and redisFreeKeepFd()
: * Fix getaddrinfo() memory leak
: * Free string if it is unused (fixes memory leak)
: * Improve redisAppendCommandArgv performance 2.5x
: * Add support for SO_REUSEADDR
: * Fix redisvFormatCommand format parsing
: * Add GLib 2.0 adapter
: * Refactor reading code into read.c
: * Fix errno error buffers to not clobber errors
: * Generate pkgconf during build
: * Silence _BSD_SOURCE warnings
: * Improve digit counting for multibulk creation
Severity : None
===============================================================================
libdnet-1.12-0.13.1.el7
===============================================================================
Update ID : FEDORA-EPEL-2018-87d4d9304b
Release : Fedora EPEL 7
Type : newpackage
Status : stable
Issued : 2018-08-08 17:17:26
Updated : 2020-01-09 00:14:04Description : - Add libdnet 1.12-13.1 from RHEL/CentOS 7 to EPEL 7 (limited
: arch pkg)
Severity : None
===============================================================================
libmspack-0.5-0.0.7.alpha.el7
===============================================================================
Update ID : FEDORA-EPEL-2019-aa84623a4e
Release : Fedora EPEL 7
Type : security
Status : stable
Issued : 2019-08-24 00:32:03
Updated : 2020-01-09 00:13:14Description : The libmspack packages contain a library providing compression
: and extraction of the Cabinet (CAB) file format
: used by Microsoft.
:
: Security Fix(es):
:
: * libmspack: Out-of-bounds write in
: mspack/cab.h (CVE-2018-18584)
: * libmspack: chmd_read_headers() fails to
: reject filenames containing NULL bytes
: (CVE-2018-18585)
:
: https://access.redhat.com/errata/RHSA-2019:2049
Severity : Moderate
===============================================================================
nginx-1.16.1-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2019-6ca75fc39a
Release : Fedora EPEL 7
Type : security
Status : stable
Issued : 2019-10-19 16:51:59
Updated : 2019-10-15 16:23:05 Bugs : 1750857 - EPEL7 nginx package contains multiple CVEs
Description : Needs further testing on EPEL7 systems who have modified
: configs.
Severity : Important
===============================================================================
python-PyGithub-1.39-5.el7 python-PyMySQL-0.9.2-2.el7 python-polib-1.0.7-10.el7 python-pretend-1.0.8-4.el7 python-process-tests-1.0.0-11.el7 python-productmd-1.20-3.el7 python-prompt_toolkit-1.0.15-2.el7 python-psutil-2.2.1-5.el7 python-ptyprocess-0.5.1-7.el7 python-pycodestyle-2.0.0-6.el7 python-pycosat-0.6.3-2.el7 python-pycryptodomex-3.7.3-2.el7 python-pyev-0.9.0-0.2.20130610gite31d137.el7 python-pygraphviz-1.3-2.rc2.el7.2 python-pymilter-1.0.3-2.el7 python-pymssql-2.1.3-3.el7 python-pypandoc-1.3.3-3.el7 python-pyroute2-0.4.13-2.el7 python-pyside-1.2.4-2.el7 python-pysocks-1.6.8-6.el7 python-pytest-catchlog-1.2.2-3.el7 python-pytest-runner-3.0-2.el7 python-pytest-xdist-1.17.1-3.el7 python-pyvirtualize-0.9-5.20181003git57d2307.el7 python-pyvmomi-6.7.1-3.el7 python-pyxs-0.4.1-2.el7 python-rencode-1.0.5-4.el7 python-responses-0.5.1-7.el7 python-rope-0.12.0-2.el7 python-rpdb-0.1.5-3.el7.1 python-rpm-macros-3-23.el7 python-ruamel-yaml-0.13.14-2.el7 python-scandir-1.9.0-2.el7 python-scripttest-1.3.0-10.el7 python-setuptools_scm-1.17.0-3.el7 python-sh-1.12.14-7.el7 python-simplejson-3.10.0-2.el7 python-simplepath-0.3.4-2.el7 python-slacker-0.12.0-4.el7 python-sphinx-autobuild-0.7.1-9.el7 python-sphinx-theme-alabaster-0.7.9-2.el7 python-spur-0.3.17-2.el7 python-structlog-17.2.0-2.el7 python-terminado-0.6-3.el7 python-texttable-1.4.0-2.el7 python-tinydb-3.10.0-2.el7 python-toml-0.9.4-4.el7 python-toolz-0.9.0-8.el7 python-traitlets-4.3.2-3.el7
===============================================================================
Update ID : FEDORA-EPEL-2019-0f4cca7837
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2019-04-03 18:50:33
Updated : 2019-03-13 15:19:19 Bugs : 1626231 - Review Request: python-pyvirtualize - Python module to access and manage VMware
: 1674462 - python-rope-0.12.0 is available
Description : This update changes the main python3 in EPEL7 from python34 to
: python36. This is not removing python34, only
: changing the following in the python macros.
:
: * **Previous:**
: - python3_pkgversion = python34
: - python3_other_pkgversion = python36
: * **With Update:**
: - python3_pkgversion = python36
: - python3_other_pkgversion = python34
:
: This update is not just for python-rpm-macros,
: python34 and python36. But every EPEL7 package
: that used those macros while being built. Thus
: this update has all of those packages that have
: been rebuilt.
:
: Due to bohdi limitations, the update has been
: broken up. Please also test the following bohdi
: updates:
:
: *
: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f2d195dada
: *
: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-9e9f81e581
: *
: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0d62608bce
: *
: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-5be892b745
: *
: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0f4cca7837
: *
: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-ed3564d906
:
: ----
:
: fix versioned dependencies to pyvmomi
:
:
: ----
:
: Update to the latest upstream
Severity : None
===============================================================================
supervisor-3.1.4-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2017-017fbc40e8
Release : Fedora EPEL 7
Type : security
Status : stable
Issued : 2017-08-26 19:21:43
Updated : 2020-01-09 00:07:16 Bugs : 1476143 - CVE-2017-11610 supervisor: Command injection via malicious XML-RPC request
: 1475938 - supervisord.service file contains removed SysVStartPriority= setting and does NOT have dependency on remote user (LDAP, kerberos, NIS, etc)
Description : Update to 3.1.4.
Severity : None
===============================================================================
varnish-4.0.5-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2017-56ca95fe85
Release : Fedora EPEL 7
Type : security
Status : stable
Issued : 2017-08-04 13:50:14
Updated : 2017-08-03 11:07:37 Bugs : 1477222 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests
: 1477699 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests [epel-all]
Description : New upstream release. This is a security release, with a fix for
: a crash bug that might be used in a denial of
: service attack. Details from the upstream project
: are found here:
:
: http://varnish-cache.org/security/VSV00001.html
Severity : Critical
updateinfo info done
Display detailed information about advisories related to packages that can be updated.
$ sudo yum --cacheonly updateinfo info updates
Loaded plugins: fastestmirror
===============================================================================
epel-release-7-12
===============================================================================
Update ID : FEDORA-EPEL-2019-020e5a5f9c
Release : Fedora EPEL 7
Type : enhancement
Status : stable
Issued : 2019-10-04 20:28:32
Updated : 2020-01-09 00:11:30Description : Add in &infra and content variables to better understand users
: of EPEL.
Severity : None
===============================================================================
varnish-4.0.5-1.el7
===============================================================================
Update ID : FEDORA-EPEL-2017-56ca95fe85
Release : Fedora EPEL 7
Type : security
Status : stable
Issued : 2017-08-04 13:50:14
Updated : 2017-08-03 11:07:37 Bugs : 1477222 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests
: 1477699 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests [epel-all]
Description : New upstream release. This is a security release, with a fix for
: a crash bug that might be used in a denial of
: service attack. Details from the upstream project
: are found here:
:
: http://varnish-cache.org/security/VSV00001.html
Severity : Critical
updateinfo info done
Install packages related to a single or multiple advisories
Install specific advisory.
$ sudo yum --assumeyes update --advisory FEDORA-EPEL-2017-56ca95fe85
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * base: ftp.vectranet.pl * epel: ftp.icm.edu.pl * extras: ftp.icm.edu.pl * updates: mirror-pl.kielcetechnologypark.net --> epel-release-7-12.noarch from epel removed (updateinfo) --> epel-release-7-11.noarch from @extras removed (updateinfo) 1 package(s) needed (+0 related) for security, out of 2 available Resolving Dependencies --> Running transaction check ---> Package varnish-docs.x86_64 0:4.0.4-3.el7 will be updated ---> Package varnish-docs.x86_64 0:4.0.5-1.el7 will be an update --> Finished Dependency Resolution Dependencies Resolved ================================================================================================================================================================== Package Arch Version Repository Size ================================================================================================================================================================== Updating: varnish-docs x86_64 4.0.5-1.el7 epel 457 k Transaction Summary ================================================================================================================================================================== Upgrade 1 Package Total download size: 457 k Downloading packages: epel/x86_64/prestodelta | 453 B 00:00:00 varnish-docs-4.0.5-1.el7.x86_64.rpm | 457 kB 00:00:00 Running transaction check Running transaction test Transaction test succeeded Running transaction Updating : varnish-docs-4.0.5-1.el7.x86_64 1/2 Cleanup : varnish-docs-4.0.4-3.el7.x86_64 2/2 Verifying : varnish-docs-4.0.5-1.el7.x86_64 1/2 Verifying : varnish-docs-4.0.4-3.el7.x86_64 2/2 Updated: varnish-docs.x86_64 0:4.0.5-1.el7 Complete!
Install security advisories.
$ sudo yum --assumeyes update --advisory FEDORA-EPEL-2017-56ca95fe85
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * base: ftp.vectranet.pl * epel: ftp.icm.edu.pl * extras: ftp.icm.edu.pl * updates: mirror-pl.kielcetechnologypark.net --> epel-release-7-12.noarch from epel removed (updateinfo) --> epel-release-7-11.noarch from @extras removed (updateinfo) 1 package(s) needed (+0 related) for security, out of 2 available Resolving Dependencies --> Running transaction check ---> Package varnish-docs.x86_64 0:4.0.4-3.el7 will be updated ---> Package varnish-docs.x86_64 0:4.0.5-1.el7 will be an update --> Finished Dependency Resolution Dependencies Resolved ================================================================================================================================================================== Package Arch Version Repository Size ================================================================================================================================================================== Updating: varnish-docs x86_64 4.0.5-1.el7 epel 457 k Transaction Summary ================================================================================================================================================================== Upgrade 1 Package Total download size: 457 k Downloading packages: epel/x86_64/prestodelta | 453 B 00:00:00 varnish-docs-4.0.5-1.el7.x86_64.rpm | 457 kB 00:00:00 Running transaction check Running transaction test Transaction test succeeded Running transaction Updating : varnish-docs-4.0.5-1.el7.x86_64 1/2 Cleanup : varnish-docs-4.0.4-3.el7.x86_64 2/2 Verifying : varnish-docs-4.0.5-1.el7.x86_64 1/2 Verifying : varnish-docs-4.0.4-3.el7.x86_64 2/2 Updated: varnish-docs.x86_64 0:4.0.5-1.el7 Complete!
Install bugfix advisories.
$ sudo yum update --bugfix
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * base: ftp.vectranet.pl * epel: ftp.icm.edu.pl * extras: ftp.icm.edu.pl * updates: mirror-pl.kielcetechnologypark.net --> varnish-docs-4.0.5-1.el7.x86_64 from epel removed (updateinfo) --> varnish-docs-4.0.4-3.el7.x86_64 from @/varnish-docs-4.0.4-3.el7.x86_64 removed (updateinfo) --> epel-release-7-12.noarch from epel removed (updateinfo) --> epel-release-7-11.noarch from @extras removed (updateinfo) No packages needed for security; 2 packages available Resolving Dependencies