These two fields allow to specify a different default assignee for ticket opened against this package in bugzilla. Note: The EPEL field is always displayed for packages in the 'rpms' namespace regardless of whether it is used in bugzilla or not.
3aad410
Fixed CVE-2018-1000156 - Malicious patch files cause ed to execute arbitrary commands.