BACKWARDS INCOMPATIBLE UPGRADE

This update is required to resolve some outstanding CVEs. It was approved by the EPEL steering committee. It changes the library soname from libonig.so.2 to libonig.so.5. The only software in EPEL 7 affected by this is jq, which has been rebuilt as part of this update.

This update has been submitted for testing by carlwgeorge.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

ngompa edited this update.

New build(s):

  • jq-1.6-2.el7

Karma has been reset.

3 months ago
User Icon davidalger commented & provided feedback 3 months ago
karma

Building PHP 7.4 successfully against these RPMs and jq installs and appears to be working.

BZ#1466750 CVE-2017-9224 CVE-2017-9225 CVE-2017-9226 CVE-2017-9227 CVE-2017-9228 CVE-2017-9229 oniguruma: various flaws [epel-7]
BZ#1777660 oniguruma: update to latest version to address CVEs
BZ#1836692 jq: rebuild for oniguruma rebase

This update has been pushed to testing.

3 months ago

This update can be pushed to stable now if the maintainer wishes

2 months ago

This update has been submitted for stable by ngompa.

2 months ago

This update has been pushed to stable.

2 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
3 months ago
in testing
3 months ago
in stable
2 months ago
modified
3 months ago
BZ#1466750 CVE-2017-9224 CVE-2017-9225 CVE-2017-9226 CVE-2017-9227 CVE-2017-9228 CVE-2017-9229 oniguruma: various flaws [epel-7]
0
1
BZ#1777660 oniguruma: update to latest version to address CVEs
0
1
BZ#1836692 jq: rebuild for oniguruma rebase
0
1

Automated Test Results