FEDORA-EPEL-2019-dd9e038712

security update in Fedora EPEL 7 for pagure, python-amqp, & 5 more

Status: stable 4 months ago

Rebase to Pagure 5.2 to move to a maintained Pagure version and fix CVE-2017-1002151, as well as many other issues.

Upstream changes of note with the rebase to 5.2:

  • The UI has been completely redesigned
  • Theming has been redesigned, and new themes are included as subpackages
  • Many new API endpoints have been added
  • Reworked how git hooks work to rely on a single file for efficiency
  • Expanded functionality included in the pagure-admin command
  • Support for mirroring in git repositories from outside sources
  • Support for merging a PR when the fork was deleted
  • Support for generating archives from commits or tags
  • Support for rebasing pull-requests

Consult the official Pagure documentation on upgrading to Pagure 5 from earlier versions.

As part of this update, celery 4.2.1, kombu 4.2.2, billiard 3.5.0.5, vine 1.2.0, amqp 2.4.0, and redis-py 2.10.6 are now in EPEL7 to support Pagure.

How to install

sudo dnf upgrade --advisory=FEDORA-EPEL-2019-dd9e038712

Comments 12

This update has been submitted for testing by ngompa.

This update has been pushed to testing.

Using these packages to run pagure's test suite in podman/CentOS7, they fail, but not because of these packages (which are actually improving the situation compare to the packages I used to use)

karma: +1 #1191235: +1 #1329587: +1 #1474269: +1 #1474270: +1 #1492699: +1 #1522821: +1

ngompa edited this update.

New build(s):

  • python-redis-2.10.6-1.el7

Karma has been reset.

This update has been submitted for testing by ngompa.

This update has been pushed to testing.

ngompa edited this update.

Generally works, though running Pagure requires a lot of fiddling with SELinux rules. My understanding is that the current version of the package has the same issues, so better than it was before at least.

karma: +1 #1191235: +1 #1329587: +1 #1474269: +1 #1474270: +1 #1492699: +1 #1522821: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by ngompa.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
high
Karma
+2
stable threshold: 2
unstable threshold: -3
Autopush
Enabled
Dates
submitted 5 months ago
in testing 4 months ago
in stable 4 months ago
modified 4 months ago

Related Bugs 6

0+1 #1191235 Please add python-celery to EPEL7 build
0+1 #1329587 please update kombu to 3.x series
0+1 #1474269 CVE-2017-1002151 pagure: Private repositories accessible through ssh
0+1 #1474270 CVE-2017-1002151 pagure: Private repositories accessible through ssh [epel-7]
0+1 #1492699 python-celery package missing in epel7
0+1 #1522821 python-kombu package is not available in EPEL 7

Automated Test Results