Download  Print this page

Red Hat ENTERPRISE LINUX 5.5 - TECHNICAL NOTES Manual

Hide thumbs
   
1
2
Table Of Contents
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470

Advertisement

Quick Links

Red Hat Enterprise
Linux 5.5
Technical Notes
Detailed notes on the changes implemented
in Red Hat Enterprise Linux 5.5

Advertisement

loading

  Summary of Contents for Red Hat ENTERPRISE LINUX 5.5 - TECHNICAL NOTES

  • Page 1 Red Hat Enterprise Linux 5.5 Technical Notes Detailed notes on the changes implemented in Red Hat Enterprise Linux 5.5...
  • Page 2 Linux 5.5 Edition 0 Author rhelv5-list@redhat.com Copyright © 2010 Red Hat. The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/.
  • Page 3: Table Of Contents

    Preface 1. Package Updates 1.1. acl ..........................1 1.2. acpid ........................... 2 1.3. aide ..........................3 1.4. anaconda ........................3 1.5. apr-util ......................... 8 1.6. at ..........................8 1.7. audit ..........................9 1.8. autofs ........................10 1.9. automake ........................12 1.10.
  • Page 4 Technical Notes 1.50. evince ........................53 1.51. exim ......................... 54 1.52. fetchmail ........................55 1.53. filesystem ......................... 56 1.54. firefox ........................56 1.55. firstboot ........................60 1.56. freeradius ......................... 61 1.57. gail .......................... 62 1.58. gcc .......................... 62 1.59. gd ..........................64 1.60.
  • Page 5 1.101. libevent ........................ 146 1.102. libgnomecups ....................... 147 1.103. libgtop2 ........................ 147 1.104. libhugetlbfs ......................148 1.105. libsepol ......................... 148 1.106. libuser ........................149 1.107. libvirt ........................149 1.108. libvirt-cim ......................154 1.109. libvorbis ........................ 156 1.110. linuxwacom ......................156 1.111.
  • Page 6 1.167. pykickstart ......................216 1.168. python-virtinst ....................... 217 1.169. PyXML ......................... 218 1.170. qspice ........................219 1.171. readahead ......................221 1.172. redhat-artwork ....................... 222 1.173. redhat-release ....................... 222 1.174. redhat-release-notes ..................... 222 1.175. rgmanager ......................223 1.176. rhn-client-tools ...................... 226 1.177.
  • Page 7 1.203. taskjuggler ......................263 1.204. tcpdump ....................... 264 1.205. tcsh ........................264 1.206. tog-pegasus ......................266 1.207. util-linux ........................ 267 1.208. valgrind ........................ 267 1.209. vconfig ......................... 268 1.210. vino ........................268 1.211. virt-manager ......................269 1.212. vixie-cron ......................270 1.213.
  • Page 8 Technical Notes 5.4. ctdb ......................... 305 5.5. device-mapper-multipath ................... 305 5.6. dmraid ........................306 5.7. dogtail ........................307 5.8. firstboot ........................307 5.9. gfs2-utils ........................308 5.10. gnome-volume-manager ..................308 5.11. initscripts ........................ 309 5.12. iscsi-initiator-utils ..................... 309 5.13. kernel-xen ......................309 5.14.
  • Page 9: Preface

    Preface The Red Hat Enterprise Linux 5.5 Technical Notes list and document the changes made to the Red Hat Enterprise Linux 5 operating system and its accompanying applications between minor release Red Hat Enterprise Linux 5.4 and minor release Red Hat Enterprise Linux 5.5. For system administrators and others planning Red Hat Enterprise Linux 5.5 upgrades and deployments, the Technical Notes provide a single, organized record of the bugs fixed in, features added to, and Technology Previews included with this new release of Red Hat Enterprise Linux.
  • Page 11: Package Updates

    With this update, getfacl and setfacl are now able to produce correct output when using non-ASCII character sets. (BZ#507747 All users of Access Control Lists should upgrade to these updated packages, which resolve this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=368451 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=430458 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=436070 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500095...
  • Page 12: Acpid

    A local attacker could use this flaw to escalate their privileges if the log file was created as world-writable and with the setuid or setgid bit set. (CVE-2009-4033 Please note that this flaw was due to a Red Hat-specific patch (acpid-1.0.4-fd.patch) included in the Red Hat Enterprise Linux 5 acpid package. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548374 https://www.redhat.com/security/data/cve/CVE-2009-4033.html...
  • Page 13: Aide

    Keyboard–Video–Mouse (KVM) switches. Therefore, when installing Red Hat Enterprise Linux 5 on a system with a KVM switch, installation would be constrained to text mode. Anaconda no longer checks for bad or missing EDID, and allows graphical installation to proceed https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530485...
  • Page 14 Chapter 1. Package Updates even when this information is unavailable. Graphical installation on machines attached to KVM switches therefore continues as if them monitor were connected directly to the graphics adapter. (BZ#445486 • previously, anaconda expected storage devices to be available immediately when it probed for the location of a kickstart file.
  • Page 15 RHBA-2010:0194: bug fix and enhancement update • the part kickstart command accepts an option called --label that allows a label to be applied to a disk partition during a kickstart installation. However, the code that implemented this option was previously missing from anaconda. Any label specified in a kickstart file was therefore ignored. Anaconda now includes code to transfer the specified label from the kickstart file to the disk partition.
  • Page 16 Chapter 1. Package Updates to install on an iSCSI target specified by in IPv6 address. The logic by which anaconda parses IP addresses has now been corrected, but now requires IPv6 addresses to be specified in the [address]:port form to comply with the relevant RFCs. This form removes ambiguity, since IPv6 addresses are still valid if they omit a sequence of bytes with zero values.
  • Page 17 RHBA-2010:0194: bug fix and enhancement update • previously, when installing on IBM System z systems, anaconda assumed that the network gateway was unreachable if its attempt to ping the gateway timed out after 10 seconds. Anaconda would then prompt the user to select a gateway. However, if IPADDR in the conf file has changed recently, network interfaces take longer to respond.
  • Page 18: Apr-Util

    All users requiring MySQL support should install these newly released packages, which add this enhancement. 1.6. at 1.6.1. RHBA-2009:1654: bug fix and enhancement update Note This update has already been released (prior to the GA of this release) as FASTRACK RHBA-2009:1654 errata https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=252073 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=491342...
  • Page 19: Audit

    When it attempted to do so, a segmentation fault would occur. The audit package has now been patched so that IPC mode fields are interpreted by the software without crashes resulting. (BZ#519790 This update also includes the following enhancement: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500542 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=232259 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537792 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513974 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519790...
  • Page 20: Autofs

    1.8.2. RHBA-2010:0265: bug fix update The autofs utility controls the operation of the automount daemon. The automount daemon automatically mounts file systems when you use them, and unmounts them when they are not busy. This updated package fixes the following bugs: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529851 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523188 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=525431...
  • Page 21 RHBA-2010:0265: bug fix update • If an included map read failed, autofs returned an error and subsequent master map entries were not read. This update reports the failure in the log but master map reading no longer ceases. (BZ#506034 • autofs could segfault if it called xmlCleanupParser concurrently from multiple threads, as this function is not re-entrant.
  • Page 22: Automake

    Note: This issue affected Makefile targets used by developers to prepare distribution source archives. Those targets are not used when compiling programs from the source code. All users of automake, automake14, automake15, automake16, and automake17 should upgrade to these updated packages, which resolve this issue. https://www.redhat.com/security/data/cve/CVE-2009-4029.html...
  • Page 23: Avahi

    This update has already been released (prior to the GA of this release) as the security RHSA-2010:0062 errata Updated bind packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=219143 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=232161...
  • Page 24 BIND server was receiving such client queries. (CVE-2009-4022 All BIND users are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. After installing the update, the BIND daemon (named) will be restarted automatically. https://www.redhat.com/security/data/cve/CVE-2010-0097.html https://www.redhat.com/security/data/cve/CVE-2010-0290.html https://www.redhat.com/security/data/cve/CVE-2009-4022.html...
  • Page 25: Binutils

    As a result, ld now can now merge different levels of visibility without error. (BZ#531269 Users are advised to upgrade to these updated binutils packages, which resolve these issues. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=499164 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509124 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508765 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529028...
  • Page 26: Bogl

    This updated package ensures that no re-evaluation occurs concerning the router IP to return for each client. (BZ#446108 All users of bootparamd are advised to upgrade to this updated package, which resolves this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517957 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=446108...
  • Page 27: Booty

    It was discovered that a brltty library had an insecure relative RPATH (runtime library search path) set in the ELF (Executable and Linking Format) header. A local user able to convince another user https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=429906 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=552957...
  • Page 28: Checkpolicy

    Security-Enhanced Linux (SELinux). The checkpolicy utility is required for building SELinux policies. This updated checkpolicy package addresses the following issues: https://www.redhat.com/security/data/cve/CVE-2008-3279.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530554 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530554 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530554 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530554...
  • Page 29: Chkconfig

    "alternatives" program now recognizes that the program is no longer available and removes the extraneous symbolic link, with the result that the next-best alternative is properly selected, and running the program works as expected. (BZ#525051 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531229 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533790 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533796 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=441443...
  • Page 30: Cman

    With this update, the fence_scsi agent extracts the device name (pv_name) and Universally Unique Identifier (pv_uuid) and builds a hash keyed on the UUID (which is consistent on all nodes). This ensures devices are ordered consistently on each node. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=501225 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=466740 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516599 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518061...
  • Page 31 These updated cman packages provide fixes for the following bugs: * when using device-mapper-multipath devices, registrations were only sent to the active path, which meant that, in the event of path failure, the node would be unable to access the device via the https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520823...
  • Page 32 * fence_virsh reports vm status incorrectly. (BZ#544664 * improve error messages from ccsd if there is a network problem. (BZ#517399 * new fence agent for VMWare. (BZ#548577 Note: this is a Tech Preview only. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529712 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530400 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549473 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544664 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517399 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548577...
  • Page 33 * broken device detection for DRAC3 ERA/O. (BZ#489809 * fix case sensitivities in action parameter. (BZ#528938 * fencing_snmp failed on all operations & traceback fix. (BZ#528916 * accept unknown options from standard input. (BZ#532920 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508722 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545054 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532922 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549124 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549113 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544482 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514662 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=546082 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521817...
  • Page 34 * fence_scsi support for 2 node clusters. (BZ#516085 * Support for power cycle in fence ipmi. (BZ#482913 * add option 'list devices' for fencing agents. (BZ#519697 * add support for switching IPv4/IPv6. (BZ#520458 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532916 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=507514 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526806 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=546340 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248006 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=372901 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511113 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511346 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516111...
  • Page 35: Cmirror

    * the cluster log daemon was unable to recover if the cluster was shutdown and restarted without also restarting the cluster log daemon. (BZ#518665 * communication structure used between nodes was not in a mixed-architecture or upgrade friendly format. (BZ#488102 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508262 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506928 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506928 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506928 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506928 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518622 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519670...
  • Page 36: Cmirror-Kmod

    The ricci component of conga runs the "virsh nodeinfo" command to determine whether a node can host a Virtual Machine service and it does so as a non- root user. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544253 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544253 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544253 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544253...
  • Page 37 Python version. With this update, all shebang lines point explicitly to the system version at /usr/bin/python. (BZ#521884 * Conga does not properly handle HA LVM types. (BZ#530129 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537209 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519252 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=469881 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=476698 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508142 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514051...
  • Page 38: Coolkey

    (BZ#499976 * CoolKeys is now able to recognize smart cards that use the T1 protocol, such as the SafeNet 330J, in addition to the T0-protocol cards supported previously. (BZ#514298 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519268 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=226790 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245529 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245529 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245529 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245529...
  • Page 39: Coreutils

    * when a directory contained a symbolic link to itself, the readlink command, which displays the value of a symbolic link on standard output, incorrectly gave the following error message when attempting to read the value of the symbolic link (or the value of the symbolic links when recursing through the https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514299 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528641...
  • Page 40: Cpio

    Users of cpio are advised to upgrade to this updated package, which contains backported patches to correct these issues. 1.26. cpuspeed 1.26.1. RHBA-2010:0035: bug fix update Note This update has already been released (prior to the GA of this release) as FASTRACK RHBA-2010:0035 errata https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=567545 https://www.redhat.com/security/data/cve/CVE-2010-0624.html https://www.redhat.com/security/data/cve/CVE-2010-0624.html https://www.redhat.com/security/data/cve/CVE-2007-4476.html...
  • Page 41: Crash

    CPU received its shutdown NMI while running in an interrupt handler. The bt command was changed and the error no longer occurs. (BZ#510505 * added support for dumpfile format of virsh dump of KVM kernels. (BZ#510519 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=495049 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=449004 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516224 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=504952 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508156 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510505...
  • Page 42: Ctdb

    Red Hat Enterprise Linux to provide the features with wide exposure, with the goal of supporting these features in a future release of Red Hat Enterprise Linux. Technology Preview features are not supported under Red Hat Enterprise Linux 5.5 subscription services, and may not be functionally https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520506 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523512 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=550419 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528184...
  • Page 43: Cups

    It was discovered that the Red Hat Security Advisory RHSA-2009:1595 did not fully correct the use-after-free flaw in the way CUPS handled references in its file descriptors-handling interface. A remote attacker could send specially-crafted queries to the CUPS server, causing it to crash. (CVE-2010-0302 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=552213 https://www.redhat.com/security/data/cve/CVE-2010-0302.html...
  • Page 44 This update has already been released (prior to the GA of this release) as the security RHSA-2009:1513 errata Updated cups packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. https://www.redhat.com/security/data/cve/CVE-2009-3553.html https://www.redhat.com/security/data/cve/CVE-2009-2820.html https://www.redhat.com/security/data/cve/CVE-2009-2820.html...
  • Page 45 * jobs with multiple files could be removed from a disabled queue when it is re-enabled. (BZ#506257 * the cups-lpd daemon, for handling RFC 1179 clients, could fail under load due to incorrect temporary file handling. (BZ#523152 https://www.redhat.com/security/data/cve/CVE-2009-3608.html https://www.redhat.com/security/data/cve/CVE-2009-3609.html https://www.redhat.com/security/data/cve/CVE-2009-3608.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=447987 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=460898 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=487495...
  • Page 46: Curl

    * curl now supports loading Certificate Revocation Lists (CRLs) from a Privacy Enhanced Mail (PEM) file. When curl attempts to access sites that have had their certificate revoked in a CRL, curl refuses access to those sites. (BZ#532069 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527429 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540646 https://www.redhat.com/security/data/cve/CVE-2010-0734.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=479967 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517199...
  • Page 47: Cyrus-Imapd

    After installing the update, cyrus-imapd will be restarted automatically. 1.32. cyrus-sasl 1.32.1. RHBA-2010:0151: bug fix update Note This update has already been released (prior to the GA of this release) as errata RHBA-2010:0151 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=473128 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517084 https://www.redhat.com/security/data/cve/CVE-2009-2632.html https://www.redhat.com/security/data/cve/CVE-2009-3235.html...
  • Page 48: Dbus

    For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted. 1.33.2. RHBA-2010:0236: bug fix update Updated dbus packages that fix a multilib conflict that could cause installation failure on 64-bit architectures are now available. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=568084 https://www.redhat.com/security/data/cve/CVE-2009-1189.html...
  • Page 49: Dbus-Python

    Updated device-mapper packages that include various bug fixes and enhancements are now available. The device-mapper packages provide a library required by logical volume management utilities such as LVM2 and dmraid. This update applies the following bug fixes(BZ#536814 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=471359 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532142 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=536814...
  • Page 50: Device-Mapper-Multipath

    LUNs as failed. (BZ#538463 Users are advised to upgrade to these updated device-mapper-multipath packages, which resolve these issues. 1.36.2. RHBA-2010:0255: bug fix and enhancement update Updated device-mapper-multipath packages that fix several bugs and add various enhancements are now available. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537761 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538463...
  • Page 51 * If a path is removed while it is still part of a multipath device, it was taking multipath minutes to mark it as failed. This should now happen immediately at the end of the next path checking interval. (BZ#527754 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526550 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518575 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531744 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537977...
  • Page 52: Dhcp

    All users are advised to upgrade to these updated packages, which resolve these issues and add these enhancements. 1.37. dhcp 1.37.1. RHBA-2010:0042: bug fix update Note This update has already been released (prior to the GA of this release) as errata RHBA-2010:0042 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532424 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=553042 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=472171 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=502128 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524178 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=481239 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510331 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=554830...
  • Page 53 (BZ#534117 Note: depending on the specific DHCP setup on a given system, other memory leaks may still present. Please file a separate bug if DHCP appears to leak memory after applying this update. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=552211 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498658 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532136 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=534117...
  • Page 54: Dhcpv6

    DHCPv6 client now checks if the reply has an IA before deciding if DAD needs to be applied, resolving this issue. (BZ#515644 All users of dhcpv6 are advised to upgrade to these updated packages, which resolve this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=555672 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=466251 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=476974 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515644...
  • Page 55: Dmidecode

    LGA1366 socket devices, decoding PCI-E Gen 2 slot IDs, and for a variety of processors, including the Intel Core i7 and Dual-Core Celeron and Xeon Dual-, Quad- and Multi-Core 3xxx, 5xxx and 7xxx series processors. (BZ#518562 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520123 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518562...
  • Page 56: Dmraid

    * modifications to Intel support in the libdmraid tool caused the SONAME field to change. This caused compatibility issues in python-pyblock symbolic links. The version number in the libdmraid tool's file name has been updated, which caused the dependencies to be automatically re- generated during https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513402 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514497 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516852...
  • Page 57: Dogtail

    Python. This broke these scripts in the case of a user installing an alternative version of Python. With this update, all Dogtail's python scripts point explicitly to the system version at /usr/bin/python. (BZ#521339 All dogtail users should upgrade to this updated package, which resolves these issues. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=556254 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=567922 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250219 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521339...
  • Page 58: Dosfstools

    This update has already been released (prior to the GA of this release) as the security RHSA-2009:1619 errata An updated dstat package that fixes one security issue is now available for Red Hat Enterprise Linux This update has been rated as having moderate security impact by the Red Hat Security Response Team. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=249067 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=469842...
  • Page 59: E4Fsprogs

    All users of e4fsprogs are advised to upgrade to these updated packages, which resolve this issue. 1.45. elilo 1.45.1. RHEA-2010:0302: enhancement update An updated elilo package that adds validation checks and error messages to the boot manager is now available. https://www.redhat.com/security/data/cve/CVE-2009-3894.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528055...
  • Page 60: Elinks

    ELinks to crash and possibly execute arbitrary code via embedded formatting sequences in translated messages. (CVE-2007-2027 All ELinks users are advised to upgrade to this updated package, which contains backported patches to resolve these issues. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250327 https://www.redhat.com/security/data/cve/CVE-2008-7224.html https://www.redhat.com/security/data/cve/CVE-2007-2027.html...
  • Page 61: Esc

    "Enroll" button to the user erroneously because all management functions should be disabled for CAC cards. With this update, when a CAC card is entered, all management functions are disabled, including the "Enroll" function. (BZ#553661 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=467011 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514053 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517414 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549540 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549542...
  • Page 62: Etherboot

    PCI locations. This updated package adds the following enhancements: * ethtool can now display all NIC speeds, not just 10/100/1000. (BZ#450162 * the redundant INSTALL file has been removed from the package. (BZ#472034 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511912 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521901 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=546016 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=547773 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=450162 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=472034...
  • Page 63: Evince

    With this update, the drawing area for the loading page is now correctly allocated, resolving this issue. (BZ#499676 All evince users are advised to upgrade to this updated package, which resolves these issues. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=472038 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524241 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529395 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=229173 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=469379...
  • Page 64: Exim

    Chapter 1. Package Updates 1.51. exim 1.51.1. RHBA-2009:1627: bug fix update Note This update has already been released (prior to the GA of this release) as FASTRACK RHBA-2009:1627 errata Updated exim packages that resolve several issues are now available. Exim is a message transfer agent (MTA) developed at the University of Cambridge for use on Unix systems connected to the Internet.
  • Page 65: Fetchmail

    All fetchmail users should upgrade to this updated package, which contains backported patches to correct these issues. If fetchmail is running in daemon mode, it must be restarted for this update to take effect (use the "fetchmail --quit" command to stop the fetchmail process). https://www.redhat.com/security/data/cve/CVE-2009-2666.html https://www.redhat.com/security/data/cve/CVE-2007-4565.html https://www.redhat.com/security/data/cve/CVE-2008-2711.html...
  • Page 66: Filesystem

    Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A use-after-free flaw was found in Firefox. Under low memory conditions, visiting a web page containing malicious content could result in Firefox executing arbitrary code with the privileges of the user running Firefox. (CVE-2009-1571 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=487568 https://www.redhat.com/security/data/cve/CVE-2009-1571.html...
  • Page 67 A flaw was found in the way Firefox displayed the SSL location bar indicator. An attacker could create an unencrypted web page that appears to be encrypted, possibly tricking the user into believing they are visiting a secure page. (CVE-2009-3984 https://www.redhat.com/security/data/cve/CVE-2010-0159.html https://www.redhat.com/security/data/cve/CVE-2010-0160.html https://www.redhat.com/security/data/cve/CVE-2009-3988.html https://www.redhat.com/security/data/cve/CVE-2010-0162.html https://www.redhat.com/security/data/cve/CVE-2009-3979.html...
  • Page 68 A heap-based buffer overflow flaw was found in the Firefox string to floating point conversion routines. A web page containing malicious JavaScript could crash Firefox or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2009-1563 https://www.redhat.com/security/data/cve/CVE-2009-3985.html https://www.redhat.com/security/data/cve/CVE-2009-3370.html https://www.redhat.com/security/data/cve/CVE-2009-3274.html https://www.redhat.com/security/data/cve/CVE-2009-3372.html https://www.redhat.com/security/data/cve/CVE-2009-3373.html...
  • Page 69 (CVE-2009-3070 CVE-2009-3074 CVE-2009-3075 A use-after-free flaw was found in Firefox. An attacker could use this flaw to crash Firefox or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2009-3077 https://www.redhat.com/security/data/cve/CVE-2009-3375.html https://www.redhat.com/security/data/cve/CVE-2009-3376.html https://www.redhat.com/security/data/cve/CVE-2009-3374.html https://www.redhat.com/security/data/cve/CVE-2009-3380.html https://www.redhat.com/security/data/cve/CVE-2009-3382.html https://www.redhat.com/security/data/cve/CVE-2009-3070.html https://www.redhat.com/security/data/cve/CVE-2009-3071.html https://www.redhat.com/security/data/cve/CVE-2009-3072.html...
  • Page 70: Firstboot

    Code has been added to the networking.py source file to modify the behavior of the network configuration and main windows. Now the configuration window will stay on top if the user clicks outside its boundary. (BZ#511984 Users are advised to upgrade to these updated packages, which resolve this issue. https://www.redhat.com/security/data/cve/CVE-2009-3079.html https://www.redhat.com/security/data/cve/CVE-2009-3076.html https://www.redhat.com/security/data/cve/CVE-2009-2654.html https://www.redhat.com/security/data/cve/CVE-2009-3078.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511984...
  • Page 71: Freeradius

    This update addresses the following bug: * an error in the EAP authentication module could cause memory corruption. Running the radeapclient utility would typically expose the problem. An error message including text such as this *** glibc detected *** radeapclient: free(): invalid pointer: https://www.redhat.com/security/data/cve/CVE-2009-3111.html...
  • Page 72: Gail

    A gcc update that resolves an option handling bug where only the last "-fno-builtin-*" option specified on the command line was honored is now available. The gcc packages include C, C++, Java, Fortran, Objective C, and Ada 95 GNU compilers, along with related support libraries. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=476513 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506561...
  • Page 73 C++ constructors or destructors. This was because gcc incorrectly released information on abstract functions (specifically, contents of the DECL_INITIAL() function), which are needed for creating debug information. With this release, nodes containing abstract functions https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526421 https://www.redhat.com/security/data/cve/CVE-2009-3736.html...
  • Page 74 This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gd packages provide a graphics library used for the dynamic creation of images, such as PNG and JPEG. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513184 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515799 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516028 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519519 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528792...
  • Page 75: Gdb

    GDB contains special instructions to make OpenMP parallel sections indifferent to normal code, allowing GDB to step into parallel sections with "next" correctly. (BZ#533176 * The GDB version banner now correctly displays "Red Hat Enterprise Linux" instead of "Fedora". (BZ#537788 https://www.redhat.com/security/data/cve/CVE-2009-3546.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526533 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514287 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520618 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533176...
  • Page 76: Gfs-Kmod

    These updated gfs-kmod packages are in sync with the latest kernel (2.6.18-194.el5). The modules in earlier gfs-kmod packages failed to load because they did not match the running kernel. It was possible to force-load the modules. With this update, however, users no longer need to. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=550786 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=553672 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=559291 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562770...
  • Page 77: Gfs-Utils

    Updated gfs-utils packages that fix various bugs are now available. The gfs-utils packages provide the user-space tools necessary to mount, create, maintain and test GFS file systems. The updated gfs-utils packages apply the following bug fixes: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=471258 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513885 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515717 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517145...
  • Page 78: Gfs2-Utils

    ) Allow fsck.gfs2 to check RO mounted file systems (BZ#557128 ) GFS2: gfs2_convert should fix statfs file (BZ#556961 gfs2_convert doesn't convert jdata files correctly (BZ#545602 ) GFS2: fatal: invalid metadata block after gfs2_grow (BZ#546683 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509225 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512722 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508978 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503485 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503530 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506682 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514939 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500483 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=507596 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514018 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503529...
  • Page 79: Glibc

    The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contains the standard C and the standard math libraries. Without these two libraries, the Linux system cannot function properly. These updated glibc packages provide a fix for the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=546683 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533213 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540475...
  • Page 80: Gnome-Vfs2

    It provides a modular architecture and ships with several modules that implement support for file systems, http, ftp, and others. It provides a URI-based API, backend supporting asynchronous file operations, a MIME type manipulation library, and other features. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548692 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=491995 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522528 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529997...
  • Page 81 * attempting to open a supported document type represented by a symbolic link on an NFS share with the Evince document viewer failed with the following error message: Unable to open document Unhandled MIME type: “application/octet-stream” https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=555642 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=247522 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=432764 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=438116...
  • Page 82: Gpart

    * although gpart contains ELF objects, the gpart-debuginfo package was empty. With this update the - debuginfo package contains valid debugging information as expected. (BZ#500598 gpart users needing the gpart debuginfo package should install this upgraded package which fixes this problem. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=481593 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=486286 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503112 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500598...
  • Page 83: Gzip

    (BZ#395991 * a suspend hotkey combination (Fn+F1) used on Dell Latitude hardware was not mapped correctly. While the keycode sequence could be set manually, owners of Dell Latitude equipment experienced https://www.redhat.com/security/data/cve/CVE-2010-0001.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=238113 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=395991...
  • Page 84: Hmaccalc

    However, if an hmaccalc binary had been prelinked using the "prelink" command, and that command was not located in one of the directories listed in the PATH environment variable, then that binary https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=450326 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=486427 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=501726 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519645...
  • Page 85: Httpd

    "SSLInsecureRenegotiation" configuration directive. If this directive is enabled, mod_ssl will renegotiate insecurely with unpatched clients. (BZ#567980 Refer to the following Red Hat Knowledgebase article for more details about the changed mod_ssl behavior: http://kbase.redhat.com/faq/docs/DOC-20491 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512275 https://www.redhat.com/security/data/cve/CVE-2010-0408.html https://www.redhat.com/security/data/cve/CVE-2010-0434.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=567980...
  • Page 86 Note: This update does not fully resolve the issue for HTTPS servers. An attack is still possible in configurations that require a server-initiated renegotiation. Refer to the following Knowledgebase article for further information: http://kbase.redhat.com/faq/docs/DOC-20491 A NULL pointer dereference flaw was found in the Apache mod_proxy_ftp module. A malicious FTP server to which requests are being proxied could use this flaw to crash an httpd child process via a malformed reply to the EPSV or PASV commands, resulting in a limited denial of service.
  • Page 87: Hwdata

    An updated hwdata package that adds various enhancements is now available. The hwdata package contains tools for accessing and displaying hardware identification and configuration data. This updated package adds entries for the following devices to the Red Hat Enterprise Linux 5.4 pci.ids and usb.ids databases: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=448350 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=505002 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510515 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526110 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528640 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533407...
  • Page 88: Ia32El

    (BZ#515165 * The ia32el did not pass the second, third and fourth offset arguments of the fadvise64() or fadvise64_64() system call methods to the kernel correctly because it was unable to handle 64-bit https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=475712 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512050 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517100 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517131 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529449...
  • Page 89: Iasl

    DMAR tables are now decoded correctly. (BZ#518109 * the iasl package has been updated to the latest version. (BZ#518209 Users are advised to upgrade to this updated iasl package, which resolves this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528590 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528590 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528590 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528590 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528596 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528597...
  • Page 90: Inn

    * if IPv6 was disabled, running the "ss" command resulted in a segmentation fault. A workaround was to run "ss -f inet". With this update the return value checks for net_*_open were fixed and the workaround is no longer necessary. The ss command again returns socket statistics as expected. (BZ#493578 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=464916 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=493578...
  • Page 91: Iprutils

    * the memory alignment of ipt_connlimit_data was incorrect on x86-based systems. This update adds an explicit aligned attribute to the ipt_connlimit_data struct to correct this. (BZ#529687 Users are advised to upgrade to these updated iptables packages, which resolve this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512246 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532544 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529687...
  • Page 92: Iptstate

    Users with hardware containing Intel PRO/Wireless 2220 network adapters are advised to install this enhancement. 1.80. iscsi-initiator-utils 1.80.1. RHBA-2010:0078: bug fix update Note This update has already been released (prior to the GA of this release) as errata RHBA-2010:0078 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=474381 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=494492...
  • Page 93 * The iscsi initiator would fail to connect to a target when the bnx2i transport was being used. As a consequence, the log-in attempt would time out and fail. A fix has been made to the way in which MAC addresses are handled. As a result, users can now successfully log in. (BZ#520508 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549629 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=504666 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511271 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514926...
  • Page 94: Iwl3945-Firmware

    This package contains the firmware required by the iwl4965 driver for Linux. * The firmware package has been enhanced to synchronize it with the latest version of the upstream Intel Wireless Wi-Fi Link 4965AGN driver (version 228.61.2.24). This upgrade brings about the following new functionality: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531748 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517380 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=556984 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=534100...
  • Page 95: Iwl5000-Firmware

    These updated java-1.6.0-ibm packages fix a bug where the IBM Java 6 Runtime Environment did not recognize several time zones. (BZ#569623 All users of java-1.6.0-ibm are advised to upgrade to these updated packages, which contain new time zone data and therefore resolve this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510757 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=501609 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=569623...
  • Page 96: Java-1.6.0-Openjdk

    (CVE-2009-3876 CVE-2009-3877 An information leak was found in the way the JRE handled color profiles. An attacker could use this flaw to discover the existence of files outside of the color profiles directory. (CVE-2009-3728 https://www.redhat.com/security/data/cve/CVE-2009-3869.html https://www.redhat.com/security/data/cve/CVE-2009-3871.html https://www.redhat.com/security/data/cve/CVE-2009-3873.html https://www.redhat.com/security/data/cve/CVE-2009-3874.html https://www.redhat.com/security/data/cve/CVE-2009-3881.html https://www.redhat.com/security/data/cve/CVE-2009-2409.html https://www.redhat.com/security/data/cve/CVE-2009-3875.html...
  • Page 97: Java-1.6.0-Sun

    The java-1.6.0-sun packages include the Sun Java 6 Runtime Environment, Sun Java 6 Software Development Kit (SDK), the source code for the Sun Java class libraries, the Sun Java browser plug- in and Web Start, the Sun JDBC/ODBC bridge driver, and demonstration files for the Sun Java 6 SDK. https://www.redhat.com/security/data/cve/CVE-2009-3879.html https://www.redhat.com/security/data/cve/CVE-2009-3880.html https://www.redhat.com/security/data/cve/CVE-2009-3882.html https://www.redhat.com/security/data/cve/CVE-2009-3883.html...
  • Page 98: Kdelibs

    Note: this bug was a known issue at the release of Red Hat Enterprise Linux 5.4 and a manual version of the fix included in this update was documented in the Red Hat Enterprise Linux 5.4 Technical Notes: http://redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_No tes/Known_Issues- pdksh.html If /etc/profile.d/kde.sh already exists, the new version included with this update is installed as /etc/...
  • Page 99: Kernel

    Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The kernel packages contain the Linux kernel, the core of any Linux operating system. https://www.redhat.com/security/data/cve/CVE-2009-0689.html...
  • Page 100 (BZ#559335 * adding a bonding interface in mode balance-alb to a bridge was not functional. (BZ#560588 * some KVM (Kernel-based Virtual Machine) guests experienced slow performance (and possibly a crash) after suspend/resume. (BZ#560640 https://www.redhat.com/security/data/cve/CVE-2010-0008.html https://www.redhat.com/security/data/cve/CVE-2010-0415.html https://www.redhat.com/security/data/cve/CVE-2010-0437.html https://www.redhat.com/security/data/cve/CVE-2009-4308.html https://www.redhat.com/security/data/cve/CVE-2010-0003.html https://www.redhat.com/security/data/cve/CVE-2010-0007.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543449 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=553132...
  • Page 101 Security fixes: * an array index error was found in the gdth driver. A local user could send a specially-crafted IOCTL request that would cause a denial of service or, possibly, privilege escalation. (CVE-2009-3080 Important) https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=560665 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=561417 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=561454 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562746 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562772 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562777...
  • Page 102 1394 controllers. A local, unprivileged user with access to /dev/fw* files could issue certain IOCTL calls, causing a denial of service or privilege escalation. The FireWire modules are blacklisted by default, and if enabled, only root has access to the files noted above by default. (CVE-2009-4138 Moderate) https://www.redhat.com/security/data/cve/CVE-2009-4021.html https://www.redhat.com/security/data/cve/CVE-2009-4141.html https://www.redhat.com/security/data/cve/CVE-2009-4272.html https://www.redhat.com/security/data/cve/CVE-2006-6304.html https://www.redhat.com/security/data/cve/CVE-2006-6304.html https://www.redhat.com/security/data/cve/CVE-2009-2910.html...
  • Page 103 "ls". (CVE-2009-4020 , Low) Bug fix documentation for this update will be available shortly from www.redhat.com/docs/en-US/ errata/RHSA-2010-0046/Kernel_Security_Update/ index.html Users should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.
  • Page 104 * for the LSI Logic LSI53C1030 Ultra320 SCSI controller, read commands sent could receive incorrect data, preventing correct data transfer. (BZ#529308 * pciehp could not detect PCI Express hot plug slots on some systems. (BZ#530383 * soft lockups: inotify race and contention on dcache_lock. (BZ#533822 BZ#537019 https://www.redhat.com/security/data/cve/CVE-2009-3620.html https://www.redhat.com/security/data/cve/CVE-2009-3726.html https://www.redhat.com/security/data/cve/CVE-2009-3612.html https://www.redhat.com/security/data/cve/CVE-2009-3621.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545583 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529308 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530383 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533822...
  • Page 105 * system crash during boot when NUMA is enabled on systems using MC and kernel-xen. (BZ#539684 * on some larger systems, performance issues due to a spinlock. (BZ#539685 * APIC errors when IOMMU is enabled on some AMD Opteron systems. (BZ#539687 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533858 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533859 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533861 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537014 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537020 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537346 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539674...
  • Page 106 * a flaw was found in the NFSv4 implementation. The kernel would do an unnecessary permission check after creating a file. This check would usually fail and leave the file with the permission bits set to random values. Note: This is a server-side only issue. (CVE-2009-3286 , Important) https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539688 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539689 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539690 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539691 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539692 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540381...
  • Page 107 180 seconds, meaning connection information on the backup was soon lost. This could prevent the successful failover of connections. The timeout value can now be set via "ipvsadm --set". (BZ#528645 https://www.redhat.com/security/data/cve/CVE-2009-3547.html https://www.redhat.com/security/data/cve/CVE-2009-3613.html https://www.redhat.com/security/data/cve/CVE-2009-3228.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517971 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524153...
  • Page 108 671670 * disabling MSI-X for qla2xxx also disabled MSI interrupts. (BZ#519782 * performance issues with reads when using the qlge driver on PowerPC systems. A system hang could also occur during reboot. (BZ#519783 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529162 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529366 https://www.redhat.com/security/data/cve/CVE-2009-2849.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517967 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517976 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519782 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519782...
  • Page 109 This update brings the random number generator into conformance. (BZ#523289 * an option to disable/enable the use of the first random block is now provided to bring ansi_cprng into compliance with FIPS-140 continuous test requirements. (BZ#523290 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520685 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520686 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520905 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520906 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520906 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520908 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520919...
  • Page 110 (CVE-2009-4307 , Low) These updated packages also include several hundred bug fixes for and enhancements to the Linux kernel. Space precludes documenting each of these changes in this advisory and users are directed https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524150 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524151 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524152 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524527 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519782 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519782...
  • Page 111 Red Hat Enterprise Linux 5.5 Release Notes for information on the most significant of these changes: http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.5/html/Release_Notes/ All Red Hat Enterprise Linux 5 users are advised to install these updated packages, which address these vulnerabilities as well as fixing the bugs and adding the enhancements noted in the Red Hat Enterprise Linux 5.5 Release Notes and Technical Notes.
  • Page 112 Chapter 1. Package Updates BZ#516623 • Include core WMI support and Dell-WMI driver. BZ#515812 • [kabi] Add scsi_nl_{send_vendor_msg,{add,remove}_driver}. BZ#514923 • Enable ACPI 4.0 power metering. BZ#514442 • Add AER software error injection support. BZ#513101 • Add support for Syleus chip to fschmd driver. BZ#511972 •...
  • Page 113 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update • A bug was discovered where closing the lid on an HP6510b caused the system to crash. This was due to the system failing to run on CPU0. A patch was created to enable ACPI workqueues to run BZ#485016 on CPU0, and this has been tested successfully.
  • Page 114 Chapter 1. Package Updates BZ#519422 • Fix AMD erratum - server C1E • EXPERIMENTAL EX/MC: AMD IOMMU Linux driver with latest BIOS has IO PAGE FAULTS 531469/539689 • [Intel 5.5 BUG] NMI and Watchdog are not disabled on CPU when CPU is taken offline. BZ#532514 BZ#537395 •...
  • Page 115 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update A problem was found where, under the right conditions, it was possible for packets to become re- ordered prior to the assignment of a Transmission Sequence Number (TSN) value. The conditions which caused this are the fact that multiple interfaces were used in transmission, where each had differing Path Maximum Transmission Unit (pmtu) values.
  • Page 116 Chapter 1. Package Updates The set online, set offline, and related rollback and error routines are only processed if the device is in a FINAL or DISCONNECTED state. BZ#523219 • DASD: Fail requests when device state is less then ready. A problem was found where in certain device mapper multipath/PPRC setups a DASD device gets quiesced and then set to the "basic"...
  • Page 117 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update 1.88.7.1.2.5. Other Updates BZ#543637 • [PowerPC] Fix "scheduling while atomic" error in alignment handler. BZ#524112 • [powerpc] Handle SLB resize during migration. BZ#517928 • Export additional CPU flags in /proc/cpuinfo Previously, /proc/cpuinfo only showed the original set of flags supported from the base kernel release.
  • Page 118 Chapter 1. Package Updates BZ#539521 • Call trace error when resuming from suspend to disk. • Add BL2xx and DL7xx to the list of ProLiant systems in xen/arch/x86/ioport_emulate.c in BZ#536677 the Xen variants of Red Hat Enterprise Linux 5. BZ#533292 •...
  • Page 119 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update address of the highest memory page. This is an incorrect assumption and prevents NUMA support from being enabled on some systems. This update addresses this assumption and prevents this problem from occurring.
  • Page 120 Chapter 1. Package Updates BZ#567979 • bnx2x: use single tx queue BZ#564102 • igb: fix WoL initialization when disabled in eeprom BZ#561076 • igb: fix warning in igb_ethtool.c BZ#562732 • s2io: restore ability to tx/rx vlan traffic BZ#568153 • ixgbe: stop unmapping DMA buffers too early BZ#558809 •...
  • Page 121 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update BZ#526976 • fixup problems with vlans and bonding BZ#513707 • ixgbe: upstream update to include 82599-KR support BZ#549460 • be2net: multiple bug fixes BZ#524651 • virtio_net: fix tx wakeup race condition BZ#475457 •...
  • Page 122 Chapter 1. Package Updates BZ#546326 • bnx2: fix frags index BZ#542746 • netxen: further p3 updates for Red Hat Enterprise Linux 5.5 BZ#516833 • netxen: driver updates from 2.6.31 and 2.6.32 BZ#513710 • igb: update igb driver to support barton hills BZ#519086 •...
  • Page 123 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update BZ#527748 • bnx2: apply BROKEN_STATS workaround to 5706/5708 • syncookies: support for TCP options via timestamps and tcp: add IPv6 support to TCP SYN cookies BZ#509062 BZ#508387 •...
  • Page 124 Chapter 1. Package Updates BZ#517893 • qlge: fix hangs and read performance BZ#514141 • mlx4_en fix for vlan traffic BZ#500346 • mlx4_en device multi-function patch BZ#514147 • mlx4_core: fails to load on large systems BZ481652# • add DSCP netfilter target 1.88.7.1.5.
  • Page 125 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update BZ#512361 • Do an exact check of attribute specified In case ACLs are not supported in the underlying filesystem, this update enables the NFSv4 server to return NFS4ERR_ATTRNOTSUPP when ACL attributes are specified when creating a file. BZ#511278 •...
  • Page 126 Chapter 1. Package Updates • Fix length calculation for converted Unicode readdir names. • Fix dentry hash calculation for case-insensitive mounts. • Do not make mountpoints shrinkable. • Ensure maximum username length check in session setup matches. BZ#544417 • NULL out pointers when chasing DFS referrals. BZ#531005 •...
  • Page 127 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update OLTP-type runs regressed by 0.5% due to the additional overhead in the aio_complete() code path. This update uses a bit in ki_flags to address this problem. BZ#545612 •...
  • Page 128 Chapter 1. Package Updates 1005 BZ#513136 • Address file write performance degradation on ext2 file systems When file write performance is measured using the iozone benchmark test, the performance of Red Hat Enterprise Linux 5.4 GA Snapshot1 is about 40% lower than the performance of Red Hat Enterprise Linux 5.3 GA in some cases.
  • Page 129 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update 1026 BZ#430631 • Correctly recognize the logical unit (LU) of Hitachi-made storage. The LU of Hitachi-made storage was not correctly recognized in Red Hat Enterprise Linux 5. The LU was correctly recognized using a combination of Red Hat Enterprise Linux 4, Hitachi-made storage, and the Qlogic-made HBA driver.
  • Page 130 Chapter 1. Package Updates 1040 BZ#552327 • qla2xxx: Correct timeout value calculation for CT pass-through commands. 1041 BZ#550148 • qla2xxx driver updates. 1042 BZ#521203 • Update arcmsr driver to better match upstream. 1043 BZ#520820 • Re-enable "mpt_msi_enable" option. • Kernel panics from list corruption when using a tape drive connected through cciss adapter. 1044 BZ#520192 1045...
  • Page 131 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update 1064 BZ#475695 • Add bfa Brocade BFA Fibre-Channel/FCoE driver. 1065 BZ#529979 • Add pmcraid driver. 1066 BZ#549763 • Update lpfc driver. 1067 BZ#518243 • Upddate megaraid driver. 1.88.7.1.7.
  • Page 132 Chapter 1. Package Updates The kernel driver dm-snapshot handles multiple snapshots with different chunk sizes incorrectly. It occasionally dispatches write requests to the origin volume prior to copying the data to all the snapshots. As a consequence, the snapshots are not static and writes to the origin are occasionally reflected to the snapshots.
  • Page 133 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update 1098 BZ#549465 • Update ioremap to prevent kernel hang when using recent NVIDIA display drivers. A problem was found where attempting to run a recent NVIDIA display driver on 32-bit Red Hat Enterprise Linux 5.3 or 5.4 would cause the kernel to hang.
  • Page 134 Chapter 1. Package Updates A problem was found where the kernel would sometimes go into a soft lockup for 10s at .context_struct_compute_av+0x214/0x39c. This update changes the way transition checks are performed in order to avoid this problem. 1.88.7.1.12. Miscellaneous Updates 1112 BZ#566575 •...
  • Page 135 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update This update was necessary to address an issue found where, using IPoIB, connectivity would be lost with a single host but maintained with other hosts. 1133 BZ#537433 •...
  • Page 136 Chapter 1. Package Updates A problem was found in cpufreq_get which sometimes causes a kernel panic on HP DL785-G6 machines running Red Hat Enterprise Linux 5.3 and 5.4. This update addresses the problem that was occurring and this kernel panic no longer occurs. 1148 BZ#523259 •...
  • Page 137 RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update 1159 BZ#511211 • [cpufreq] Don't set policy for offline CPUs. • Add CPU hotplug notifiers to support suspend-to-disk and suspend-to-RAM while using KVM. 1160 BZ#510814 1161 BZ#510746 •...
  • Page 138: Kexec-Tools

    Chapter 1. Package Updates A check was placed in an additional portion of the bridge forwarding code and the following message (or similar) will be printed to the console or logs when a device with LRO enabled is placed into a bridge on the host or has routing enabled: "eth0: received packets cannot be forwarded while 1186 BZ#483646 LRO is enabled".
  • Page 139 * previously, faulty logic in the code that cleans up files used by kdump in /tmp meant that files were sometimes left behind in /tmp. This has been corrected to ensure that files in /tmp are cleaned up. 1203 (BZ#512098 1196 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532030 1197 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533793 1198 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239791 1199 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500741...
  • Page 140 /lib. The correct path is now explicitly provided in mkdumprd, 1213 so DNS lookups work on PowerPC systems. (BZ#569119 All kexec-tools users should upgrade to this updated package, which resolves these issues. 1204 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513608 1205 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516877 1206 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516907 1207 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531244...
  • Page 141: Krb5

    KSH-93 is the most recent version of the KornShell by David Korn of AT&T Bell Laboratories. KornShell is a shell programming language which is also compatible with "sh", the original Bourne Shell. This updated ksh package includes fixes for the following bugs: 1215 https://www.redhat.com/security/data/cve/CVE-2009-4212.html...
  • Page 142 * the ksh shell uses a special variable, "$!", which contains the process ID (pid) of the last background job or background function. However, the $! variable did not contain the correct pid when it was 1217 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543447 1218 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544974 1219 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=435159...
  • Page 143: Ktune

    * when running a Red Hat Enterprise Linux KVM guest under heavy load, the guest's system clock had the tendency to drift by an amount correlated with the system load. This ktune update provides an 1225 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520383 1226 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538655 1227 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538857...
  • Page 144 (BZ#496940 Users of Red Hat Enterprise Linux KVM guests, especially those affected by significant clock drift, are advised to upgrade to this updated package, which resolves this issue and adds this enhancement. 1232 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518039 1233 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516652 1234 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=496940...
  • Page 145: Kudzu

    (using "modprobe [module]") all of the following modules which are currently running (determined using "lsmod"): kvm, ksm, kvm-intel or kvm-amd. 3. Restart the KVM guest VMs. All users of kvm are advised to upgrade to these updated packages, which resolve this issue. 1235 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=571657 1236 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=581799 1237 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503235 1239 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517855...
  • Page 146 BZ#518081 with , the original Bugzilla report for this issue. http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technica l_Notes/ Known_Issues-kvm.html With this update, the underlying issue (stale EPTP-tagged mappings possibly being used when a virtual CPU or vcpu migrated to a different Physical CPU or pcpu) has been addressed and the work...
  • Page 147 Timer events are now processed in the main VCPU event loop so timer events are processed while the VCPU is halted. Timer events may inject interrupts or non-maskable interrupt (NMI) which will then unhalt the VCPU. This fixes the issue of unconditionally unhalting the 1249 VCPU. (BZ#492663 1245 https://www.redhat.com/security/data/cve/CVE-2010-0741.html...
  • Page 148 Chapter 1. Package Updates • If one or more VCPUs was disabled, VCPUs would appear in Windows Server 2008 Device Manager as devices with the ! symbol indicating an error. Windows does not handle CPUs marked as present (bit 0 in ACPI spec), but not enabled (bit 1), which causes this issue. However, there are situations where Linux expects CPUs to be present but not enabled.
  • Page 149 RHSA-2010:0271: Important security, bug fix and enhancement update • The qemu-img command failed to copy a RAW image to a Fibre Channel storage device. The qemu-image command can now copy, convert and create images on Fibre Channel storage 1263 devices. (BZ#511072 •...
  • Page 150 Chapter 1. Package Updates • 64-bit guests would hang on an AMD host if one or more of the guest's VCPUs were changed from 1274 1275 BZ#517223 offline to online. This issue is resolved in the updated package. (BZ#525699 • When using the virtual vm8086 mode, bugs in the emulated hardware task switching 1276 implementation may have caused older guest operating systems to malfunction.
  • Page 151 RHSA-2010:0271: Important security, bug fix and enhancement update • KVM did not change the pacakge address of the etherboot.zrom file. KVM would always used the default, the ne.zrom file. Guests could not get an IP address or access PXE servers. The updated packages resolve this issue and guests can access PXE server when using non-default network 1289 devices.
  • Page 152 Chapter 1. Package Updates • Guests could not eject CD-ROMs from physical CD-ROM drives attached to the guest. The updated packages resolve this issue and guests can now eject CD-ROMs from physical CD-ROM drives. 1302 (BZ#539250 • The qcow2 file format unnecessarily rounded up the length of the backing format string to the next multiple of 8.
  • Page 153: Less

    less These updated packages add the following enhancements: • Support for migration and image compatibility between Red Hat Enterprise Linux 5.4.4 and Red Hat 1320 1321 BZ#557327 Enterprise Linux 5.5 hosts. (BZ#553187 • The KVM hypervisor does not accept MSR_KERNEL_GS_BASE intercept calls for Windows Server 2008 guests.
  • Page 154: Libxi

    With this update, programs which call XInitThreads() in the correct manner do not suffer from deadlock 1339 and do not hang, thus resolving the issue. (BZ#563120 All users of libXi are advised to upgrade to these updated packages, which resolve this issue. 1335 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=441691 1336 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509553 1337 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510724 1339...
  • Page 155: Libxrandr

    An enhanced libaio package is now available. The Linux-native asynchronous I/O facility ("async I/O" or "aio") has a richer API and capability set than the simple POSIX asynchronous I/O facility. This library, libaio, provides the Linux-native API 1341 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498044 1342 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=487354...
  • Page 156: Libcmpiutil

    This update rebases the libevent library included with Red Hat Enterprise Linux from version 1.1a to 1345 the current stable upstream release, version 1.4.13. (BZ#476557 For details on the changes between these two versions see the upstream Changelogs available on the libevent home page: http://monkey.org/~provos/libevent/ 1343 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540626 1344 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540843 1345 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=476557...
  • Page 157: Libgnomecups

    (non-IDE) drive. These stat files provide several statistics about the state of a block device. However, libgtop2 parsed the line of information supplied by stat files on recent versions of Red Hat Enterprise Linux incorrectly, which caused, for example, 1347 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509064...
  • Page 158: Libhugetlbfs

    API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, and programs such as load_policy, which must perform specific transformations on binary policies (for example, customizing policy boolean settings). This updated libsepol package addresses the following issue: 1349 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548693 1350 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562817 1352 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523346...
  • Page 159: Libuser

    All users of libuser are advised to upgrade to these updated packages, which resolve this issue. 1.107. libvirt 1.107.1. RHBA-2009:1424: bug fix update Note This update has already been released (prior to the GA of this release) as errata 1356 RHBA-2009:1424 Updated libvirt packages that resolve an issue are now available. 1353 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531228 1355 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528644...
  • Page 160 Using the virsh edit command to change the name of a Xen domain would make a new copy of the configuration file with the new name, but not alter the original configuration file. UUIDs and names for guest domains are now checked to ensure they match. Attempting to change the name 1357 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517903...
  • Page 161 RHBA-2010:0205: bug fix and enhancement update of a domain using the virsh edit command will now return an error message and not make any change to the system. 1362 BZ#504262 • Valid values for the credit scheduler parameter are in the range 0-65534. A value of 65535 was being accepted as valid, but would not alter the scheduler configuration.
  • Page 162 Chapter 1. Package Updates allocation and permissions information, but not capacity information, and the command now works as expected. 1371 BZ#510450 • When an XML configuration file was generated using virsh dumpxml for a running virtual machine, it contained parameters used for backwards compatibility with previous versions. virt- xml-validate would report that the generated file was not valid because of these legacy parameters.
  • Page 163 RHBA-2010:0205: bug fix and enhancement update 1379 BZ#519204 • libvirt was ordering disks unecessarily. When a new disk was added, it would sometimes shift the boot disk later in the list, causing the user to be unable to boot. The sorting algorithm was changed, and will now insert a new disk as far to the end of the list as possible, while being ordered correctly with other disks on the same bus.
  • Page 164: Libvirt-Cim

    Chapter 1. Package Updates memory error. The error handling was changed so that NUMA errors are now non-fatal. Errors are now logged, and connection progresses as expected. 1388 BZ#559755 • libvirt was found to be incorrectly detecting machine types supported by KVM. This meant that KVM guests which did not specify any machine type could not be created.
  • Page 165 * guest domain console support as well as support for storage pools and network pools was added. 1401 (BZ#512233 All users of virtualization tools that interact with libvirt, especially those using CMPI and CIM, should install this updated package which addresses this problem and adds this enhancement. 1399 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517817 1400 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517579 1401 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512233...
  • Page 166: Libvorbis

    All users requiring Intuos 4 tablet support should install this new package, which adds this enhancement. 1.111. lm_sensors 1.111.1. RHBA-2010:0186: bug fix and enhancement update Updated lm_sensors packages that fix a bug and add various enhancements are now available. 1403 https://www.redhat.com/security/data/cve/CVE-2009-3379.html 1404 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=566602...
  • Page 167: Log4Cpp

    * Installing both the 32-bit and 64-bit versions of the library in parallel caused a multilib conflict when the HTML documentation was built as part of the installation process. This prevented the installation of both versions on a single machine. 1405 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=474383 1406 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513099 1407 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=473119...
  • Page 168: Logwatch

    1416 1417 1418 BZ#424031 BZ#466455 application logs. (BZ#460993 All users of logwatch are advised to upgrade to this updated package, which resolves these issues and provides this enhancement. 1411 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=502679 1413 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=465212 1414 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=489490 1415 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511928 1416 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=460993 1417 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=424031 1418 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=466455...
  • Page 169: Lvm2

    lvm2 1.114. lvm2 1.114.1. RHBA-2009:1476: bug-fix update Note This update has already been released (prior to the GA of this release) as errata 1419 RHBA-2009:1476 Updated lvm2 packages that fix bugs are now available. The lvm2 packages contain support for Logical Volume Management (LVM). This update applies the following bug fixes: * Adds new option prioritise_write_locks in lvm.conf.
  • Page 170 Chapter 1. Package Updates The lvm2 packages contain support for Logical Volume Management (LVM). This update applies the following bug fixes: * Fixes crash in dmevnetd if both snapshot and mirror monitoring is used. * Fixes several memory locking problems which could lead to deadlocks. * Uses read-only instead or write lock for lvchange --refresh.
  • Page 171: Lvm2-Cluster

    lvm2-cluster * Fixes mirror convert polling to ignore LV with different UUID. As well, this update adds the following enhancements: * Uses lvconvert --repair instead of vgreduce in mirror dmeventd and introduces to use mirror image and log policies. In the event of a failure, the policy specified in lvm.conf will be used to determine what happens (for exact description see using mirror_log_fault_policy and mirror_image_fault_policy comments in lvm.conf).
  • Page 172 Chapter 1. Package Updates Updated lvm2-cluster packages that fix several bugs are now available. The lvm2-cluster packages contain support for Logical Volume Management (LVM) in a clustered environment. This update applies the following bug fixes: * Make all tools use consistent lock ordering. This fixes vgextend command to block instead of failing when requested Volume Group is locked read-only.
  • Page 173: Man

    The syslog man page now notes the LOG_KERN facility 1427 cannot be generated from user processes. (BZ#471176 * the pthread_setaffinity_np (part of pthread.h) man page was not included in the man-pages package. 1428 It now is. (BZ#474238 1423 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=443059 1424 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=452290 1425 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=456219 1426 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=468897 1427 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=471176 1428 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=474238...
  • Page 174: Man-Pages-Ja

    This update has already been released (prior to the GA of this release) as FASTRACK 1436 RHBA-2009:1630 errata An updated man-pages-ja package that fixes documentation errors and typos is now available. The man-pages-ja package contains Japanese translations of the Linux Documentation Project man pages. 1429 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=497197 1430 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515346 1431 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517309 1432 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518984 1433 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522761...
  • Page 175 Enterprise Linux 5. the elvtune man page was still included in the man-pages-ja package, however. 1443 With this update, the elvtune man page has been removed to avoid confusion. (BZ#519707 All man-pages-ja users should upgrade to this updated package, which resolves these issues. 1437 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=486655 1438 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509048 1439 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515467 1440 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527638...
  • Page 176: Mcelog

    Multiple arrays on a single device 1446 are now checked by the raid-check script as expected. (BZ#523000 All mdadm users are advised to upgrade to this updated package, which resolves these issues and adds this feature. 1444 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522827 1446 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523000...
  • Page 177: Mesa

    _NET_ACTIVE_WINDOW to raise a window above the currently focused window. Metacity allows XRaiseWindow when the same application keeps focus but defines an application by its window group. Some of these older applications also do not set the window group and, consequently, metacity 1447 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=536868 1448 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=435963...
  • Page 178 Metacity mistakenly marked them as needing user intervention. Metacity now checks the window to determine if it has a "startup ID" and sets the initial_timestamp and initial_workspace properties 1456 accordingly. As a result KDE applications no longer flash in these circumstances. (BZ#506537 1450 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537023 1451 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537024 1452 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=237158 1453 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=495939...
  • Page 179: Microcode_Ctl

    Intel 64-based CPU models and takes advantage of the mechanism built-in to Linux that allows microcode to be updated after system boot. When loaded, the updated microcode corrects the behavior of various Intel processors, as described in processor specification updates issued by Intel for those processors. 1457 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523777 1458 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526045 1459 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530261 1460 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523841...
  • Page 180: Mkinitrd

    --rootdev= parameter. Changes applied to mkinitrd to support boot from multipath introduced the local rootdev variable. This variable overrides the global variable resulting in an incorrect root device, such as a component 1463 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526802...
  • Page 181 RHBA-2010:0295: bug fix and enhancement update SCSI device, being written to the /init script preventing the system from booting. The local variable has been renamed to avoid the conflict. Running mkinitrd on a multipath boot system 1466 now results in a successful boot of the system. (BZ#503567 •...
  • Page 182: Module-Init-Tools

    1.125.1. RHBA-2009:1607: bug fix update Note This update has already been released (prior to the GA of this release) as FASTRACK 1478 RHBA-2009:1607 errata An updated mtx package that fixes one bug is now available. 1475 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=430942 1476 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=477089 1477 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509568...
  • Page 183: Mysql

    DATE or DATETIME type is compared with the result of the NAME_CONST() 1481 function. (BZ#538731 All mysql users, and especially those using replication, are advised to upgrade to these updated packages, which resolve this issue. 1479 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513984 1481 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538731...
  • Page 184 "my.cnf" file. All MySQL users are advised to upgrade to these updated packages, which contain backported patches to resolve these issues. After installing this update, the MySQL server daemon (mysqld) will be restarted automatically. 1483 https://www.redhat.com/security/data/cve/CVE-2009-4028.html 1484 https://www.redhat.com/security/data/cve/CVE-2009-4019.html 1485 https://www.redhat.com/security/data/cve/CVE-2009-4030.html...
  • Page 185: Nautilus-Open-Terminal

    It was discovered that neon is affected by the previously published "null prefix attack", caused by incorrect handling of NULL characters in X.509 certificates. If an attacker is able to get a carefully- crafted certificate signed by a trusted Certificate Authority, the attacker could use the certificate during 1487 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509878...
  • Page 186: Net-Snmp

    All users of net-snmp are advised to upgrade to these updated packages, which resolve these issues. 1.129.2. RHBA-2010:0253: bug fix and enhancement update Updated net-snmp packages that fix various bugs and add enhancements are now available. 1489 https://www.redhat.com/security/data/cve/CVE-2009-2474.html 1490 https://www.redhat.com/security/data/cve/CVE-2009-2473.html 1492 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516183...
  • Page 187 * the snmpd daemon was unable to process requests to create a new User-Based Security Model (USM) veiw with Object ID components larger than 255. With ths update, snmpd is able to create new 1502 USM views with all valid OIDs. (BZ#527364 1494 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=504742 1495 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=507528 1496 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514703 1497 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518633...
  • Page 188: Net-Tools

    IPv4 address must be provided in IPv6 notation. This update clarifies the man page notation. It now reads "tunnel ::aa.bb.cc.dd", making it clear IPv6-style address notation is 1508 required. (BZ#453918 1503 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528164 1504 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543499 1505 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=547698 1507 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=322901...
  • Page 189: Networkmanager

    If a user edited network connection options using nm-connection-editor, a summary of those changes was broadcasted over the D-Bus message bus, possibly disclosing sensitive information (such as 1514 wireless network authentication credentials) to other local users. (CVE-2009-4145 1509 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=466845 1510 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=477876 1511 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=493314 1513 https://www.redhat.com/security/data/cve/CVE-2009-4144.html...
  • Page 190: Newt

    Newt is a programming library for color text mode, widget-based user interfaces. Newt can be used to add stacked windows, entry widgets, checkboxes, radio buttons, labels, plain text fields, scrollbars, and so on, to text mode user interfaces. 1515 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=477061 1516 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532723 1517...
  • Page 191: Nfs-Utils

    NFS server on the remote host. For example, showmount can display the clients which are mounted on that host. This update addresses the following bugs: 1523 * nfsnobody == 4294967294 causes idmapd to stop responding. (BZ#523285 1519 https://www.redhat.com/security/data/cve/CVE-2009-2905.html 1521 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=456307 1522 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=468046 1523 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523285...
  • Page 192: Nspluginwrapper

    Users of nspluginwrapper should upgrade to this updated package, which resolves these issues. 1.135. nss_ldap 1.135.1. RHBA-2009:1527: bug fix update Note This update has already been released (prior to the GA of this release) as errata 1530 RHBA-2009:1527 1524 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=497551 1525 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=435838 1526 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=455218 1527 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=466547 1528 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521948...
  • Page 193 This updated nss_ldap package ensures that no segmentation fault occurs, however the correct way to access the server information in the outlined case would be to use the command getent 1534 -s 'passwd:ldap' passwd. (BZ#448883 1531 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529376 1532 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518911 1533 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=499302 1534...
  • Page 194: Numactl

    Simple NUMA policy support. It consists of a numactl program to run other programs with a specific NUMA policy, and the libnuma library, which performs allocations with NUMA policy in applications. These updated numactl packages provide fixes for the following bugs: 1535 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=472920 1536 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=454315 1537 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=555805...
  • Page 195: Opencryptoki

    * openCryptoki was not properly recognizing that secure-key crypto support was installed, and so the 1544 "CCA" token was not being enabled for use. (BZ#545379 All users of openCryptoki are advised to upgrade to these updated packages, which resolve these issues. 1539 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=491689 1540 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=502241 1542 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540471 1543 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540474 1544 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545379...
  • Page 196: Openais

    1549 services. (BZ#474400 * A random error code was returned by saCkptCheckpointOpen if the internal IPC operation failed. 1550 Now the proper SA_AIS_ERR_LIBRARY error code is returned in this condition. (BZ#520164 1546 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521098 1547 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509180 1548 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526069 1549 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=474400 1550...
  • Page 197 * Resolve a defect where errant code calls pthread_cond_wait in an atexit() handler, resulting in lockup 1563 of the aisexec daemon 1% of the time on shutdown. (BZ#566467 All openais users should install this update, which fixes these bugs. 1551 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=520012 1552 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515159 1553 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=525280 1554 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529054...
  • Page 198: Openipmi

    Updated OpenIPMI packages that resolve several issues are now available. OpenIPMI (Intelligent Platform Management Interface) provides command line tools and utilities to access platform information, allowing system administrators to monitor system health and manage systems. This update addresses the following problem: 1565 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527474...
  • Page 199: Openib

    Remote Direct Memory Access (RDMA) technology. The following general upgrade has been performed: 1572 * this update brings a number of packages in line with their latest upstream versions. (BZ#518218 1567 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514215 1568 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=513609 1569 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532445 1570 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514678 1571 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522524...
  • Page 200 * the OpenFabrics Alliance (OFED) drivers which support Mellanox MT25408 ConnectX series 1586 Infiniband devices were added. (BZ#511190 All openib users should upgrade to these updated packages which resolves these issues and adds these enhancements. 1573 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=479940 1574 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=568449 1575 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=479941 1576 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526138 1577 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543453...
  • Page 201: Openldap

    -1 is now passed when NULL is passed to LDAP. (BZ#495701 * slapd could crash on a server under heavy load when using rwm overlay, caused by freeing non- 1594 allocated memory during operation cleanup. (BZ#495628 1587 https://www.redhat.com/security/data/cve/CVE-2009-3767.html 1588 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527313 1589 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510522 1590 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509230 1591 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=507276...
  • Page 202: Openmotif

    1.142.1. RHBA-2010:0132: bug fix update Note This update has already been released (prior to the GA of this release) as errata 1603 RHBA-2010:0132 Updated openmotif packages that resolve several issues are now available. 1595 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=483356 1596 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=481003 1597 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=468206 1598 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=466937 1599 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=460331...
  • Page 203: Openoffice.org

    (BZ#491357 • enabling the Mozilla plugin in OpenOffice.org and opening a .odt file in Firefox would generate a segmentation fault, causing Firefox to crash on x86_64 architectures. A patch has been applied 1604 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=569906 1605 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=569907 1606 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=569908...
  • Page 204 Chapter 1. Package Updates to define the uint32 and int32 variables as the appropriate type of int or long depending on the 1610 architecture. (BZ#496033 • when performing an Edit Find & Replace operation in OpenOffice.org Impress, the Find All button was visible but inactive.
  • Page 205: Openssh

    Updated openssh packages that resolve an issue are now available. OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. These packages include the core files necessary for both the OpenSSH client and server. These updated openssh packages fix the following bug: 1622 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537348...
  • Page 206 The ssh init script now functions as expected, even if a zero length key exists before execution of the script. 1628 (BZ#531738 1624 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=561420 1626 https://www.redhat.com/security/data/cve/CVE-2009-2904.html 1627 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530358 1628 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531738...
  • Page 207: Openssl

    Refer to the following Knowledgebase article for additional details about the flaw: http://kbase.redhat.com/faq/docs/DOC-20491 A missing return value check flaw was discovered in OpenSSL, that could possibly cause OpenSSL to call a Kerberos library function with invalid arguments, resulting in a NULL pointer dereference crash in the MIT Kerberos library.
  • Page 208: Openswan

    For the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. 1.146. openswan 1.146.1. RHBA-2010:0096: bug fix update Note This update has already been released (prior to the GA of this release) as errata 1638 RHBA-2010:0096 1636 https://www.redhat.com/security/data/cve/CVE-2009-4355.html 1637 https://www.redhat.com/security/data/cve/CVE-2009-2409.html...
  • Page 209 The TAHI Project IPv6 Ready Test Suite, Phase 2, includes an IKE version 2 test category. Support for the HMAC-SHA1-96 message digest algorithm is required by this category and, previously, Openswan did not include such support. With this update, HMAC-SHA1-96 supported has been added to the 1641 openswan package. (BZ#533883 1639 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=557688 1641 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533883...
  • Page 210: Oprofile

    OProfile is then re-compiled with this version of binutils-devel, thereby fixing 1645 the regression. (BZ#527679 1646 * OProfile now supports the IBM POWER7 processor. (BZ#566524 All OProfile users should apply this update. 1642 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=450642 1643 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498619 1644 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518480 1645 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527679 1646 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=566524...
  • Page 211: Pam

    A remote attacker could use this flaw to recognize valid usernames, which would aid a dictionary-based password guess 1649 attack. (CVE-2009-1384 This update also fixes the following bugs: 1648 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=571341 1649 https://www.redhat.com/security/data/cve/CVE-2009-1384.html...
  • Page 212: Paps

    All paps users should upgrade to this updated package, which resolve this issue. 1.151. parted 1.151.1. RHBA-2010:0257: bug fix update Updated parted packages that resolve an issue editing gpt tables are now available. 1650 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509092 1651 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=489015 1652 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=450776 1654...
  • Page 213: Pax

    * the pax utility creates ustar (Uniform Standard Tape Archive) archives by default. Attempting to create a ustar archive of a directory which contained path names that were exactly 100 characters in length caused pax to fail with the following error message: 1655 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529672 1656 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=563266...
  • Page 214: Pciutils

    1.154.1. RHBA-2010:0278: bug fix update An updated pcsc-lite package that fixes a bug in the source RPM is now available. pcsc-lite is a daemon which controls access to smart cards and other security tokens on your system. 1658 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=239001 1660 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=505557...
  • Page 215: Perl-Sys-Virt

    'flags' parameter to fail with a usage error. The 'flags' parameter is now documented as an optional parameter that defaults to a value of zero if it is omitted. Usage errors no longer occur when using the 1664 methods as documented. (BZ#519712 1661 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=440627 1662 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519647 1663 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=525091 1664...
  • Page 216: Perl-Xml-Sax

    Warning, both perl-XML-SAX and perl-XML-LibXML packages must be updated together in one step. Updating these packages separately can result in the configuration file ParserDetails.ini becoming broken. All users of perl-XML-SAX and perl-XML-LibXML are advised to upgrade to these updated packages, which resolve these issues. 1665 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543878 1667 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=475250 1668 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=289061 1669 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538855...
  • Page 217: Pexpect

    Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 1672 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=481380 1673 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521891...
  • Page 218 The php package contains a module that adds support for the PHP language to the Apache HTTP Server. * two minor fixes were performed in the php substr_compare and substr_count functions to correct 1681 1682 BZ#470971 integer overflows. (BZ#469807 & 1675 https://www.redhat.com/security/data/cve/CVE-2009-2687.html 1676 https://www.redhat.com/security/data/cve/CVE-2009-3292.html 1677 https://www.redhat.com/security/data/cve/CVE-2009-3546.html 1678 https://www.redhat.com/security/data/cve/CVE-2009-4017.html 1679 https://www.redhat.com/security/data/cve/CVE-2009-3291.html 1680 https://www.redhat.com/security/data/cve/CVE-2009-4142.html...
  • Page 219: Pidgin

    Users are advised to upgrade to these updated php packages, which resolve these issues and add these enhancements. 1.159. pidgin 1.159.1. RHBA-2010:0176: bug fix update Note This update has already been released (prior to the GA of this release) as errata 1694 RHBA-2010:0176 1683 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=483690 1684 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=484058 1685 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=486651 1686 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=491050 1687 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498031 1688 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515372...
  • Page 220: Piranha

    * Pulse does not activate sorry server when all real servers are down. In this updated package, pulse 1699 will activate sorry server when needed.(BZ#566140 Users of piranha are advised to upgrade to these updated packages, which resolve these issues. 1695 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=576311 1696 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522230 1697 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533113 1698 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549738...
  • Page 221: Pirut

    Security-Enhanced Linux (SELinux) system and its policies. These utilities include load_policy to load policies, setfiles to label file systems, newrole to switch roles, and run_init to run /etc/init.d/ scripts in their proper context. These updated packages fix the following bugs: 1701 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=444697 1702 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=459489 1703 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=478834 1704 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=436193...
  • Page 222: Poppler

    (such as Evince) to crash or, potentially, execute 1710 1711 1712 CVE-2009-3608 CVE-2009-3609 arbitrary code when opened. (CVE-2009-3603 1713 CVE-2009-3608 Red Hat would like to thank Chris Rohlf for reporting the issue. 1705 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=460970 1706 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=505521 1707 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521298 1708 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527487 1710 https://www.redhat.com/security/data/cve/CVE-2009-3603.html 1711 https://www.redhat.com/security/data/cve/CVE-2009-3608.html 1712 https://www.redhat.com/security/data/cve/CVE-2009-3609.html 1713 https://www.redhat.com/security/data/cve/CVE-2009-3608.html...
  • Page 223: Postgresql

    Release Notes for a list of changes: http://www.postgresql.org/docs/7.4/static/release.html http://www.postgresql.org/docs/8.1/static/ release.html All PostgreSQL users should upgrade to these updated packages, which resolve these issues. If the postgresql service is running, it will be automatically restarted after installing this update. 1714 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528147 1716 https://www.redhat.com/security/data/cve/CVE-2007-6600.html 1717 https://www.redhat.com/security/data/cve/CVE-2009-3230.html 1718...
  • Page 224: Ppc64-Utils

    172917281727 the HMC for filtering. (BZ#565518 Users of ppc64-utils are advised to upgrade to these updated packages, which resolve these issues and add these enhancements. 1719 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512373 1722 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=565518 1721 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=565518 1720 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=565518 1725 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=565518...
  • Page 225: Procps

    * The ps utility's "etime" field shows the elapsed time since a process was started. On heavily-loaded systems, it was possible for a negative value to be returned due to an integer overflow. This has been 1730 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=469495 1731 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=471476 1732 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=475963...
  • Page 226: Pykickstart

    (BZ#547877 * pykickstart now adds the kickstart line number of a script to anaconda error logs if that script causes 1748 the installation to fail. This assists with debugging kickstart installation problems. (BZ#547188 1738 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=556762 1739 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=556777 1740 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=558475 1741 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=561392...
  • Page 227: Python-Virtinst

    * When --wait is specified as 0, virt-install should begin the installation process and exit the console. However, a syntax error in the code caused virt-install --wait to perform as if it was not specified, and 1749 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=555311 1750 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498237 1751 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503721...
  • Page 228: Pyxml

    This update has been rated as having moderate security impact by the Red Hat Security Response Team. PyXML provides XML libraries for Python. The distribution contains a validating XML parser, an implementation of the SAX and DOM programming interfaces, and an interface to the Expat parser. 1756 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517081 1757 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523767 1758 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545837 1759 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=547380...
  • Page 229: Qspice

    (BZ#521792 * on new client connections the SPICE server previously sent the client an uncompressed initial screen image. In low bandwidth conditions this resulted in a long period of apparent inactivity, with 1763 https://www.redhat.com/security/data/cve/CVE-2009-3720.html 1764 https://www.redhat.com/security/data/cve/CVE-2009-3720.html 1766 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521791 1767 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521792...
  • Page 230 * sometimes a client was timed out if the server was overloaded or due to low bandwidth. Client time- 1775 out has been increased to 15 seconds to prevent this.(BZ#526458 1776 * qemu crashed when OpenOffice 3.1.1 launched .odp files. (BZ#545862 1768 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522049 1769 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518193 1770 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518388 1771 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521488 1772 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=482111...
  • Page 231: Readahead

    Python version. With this update, the shebang line in readahead-check points explicitly to the system version at /usr/bin/ 1784 python. (BZ#521280 1777 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549532 1778 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=549673 1779 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=551580 1780 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=559207...
  • Page 232: Redhat-Artwork

    * as well, /usr/share/apps/kdm/themes/RHEL/ also contained Red Hat trademarked images that are (and should only be) included in the redhat-logos package. For this update, these trademarked images were removed from redhat-artwork. When a Red Hat trademarked image is displayed, such images...
  • Page 233: Rgmanager

    An updated version of the redhat-release-notes package is now available as part of ongoing support and maintenance of Red Hat Enterprise Linux 5. This package contains the release notes for Red Hat Enterprise Linux 5.5. 1.175. rgmanager 1.175.1. RHBA-2009:1510: bug-fix update...
  • Page 234 * S/Lang processor no longer leaks memory. (BZ#507431 1799 * rgmanager exits if killed while waiting for fencing. (BZ#508147 1800 * bonded link handling when using Xen bridged interfaces works. (BZ#518037 1792 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=531799 1793 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=499835 1794 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506094 1795 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506346 1796 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514040 1797 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519786...
  • Page 235 * more debugging information has been added to /tmp/rgmanager-dump.. (BZ#512052 1817 * path support emulation has been added for KVM virtual machines. (BZ#545916 1818 * vm.sh now provides more meaningful error reports. (BZ#529926 1801 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530409 1802 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527777 1803 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510017 1804 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=524757 1805 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=527239 1806 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532756...
  • Page 236: Rhn-Client-Tools

    DNS record, register the system with its hostname. (BZ#511273 * when registering system to RHN or RHN Satellite using firstboot interface, correctly populate 1829 configuration values in /etc/sysconfig/rhn/up2date. (BZ#513660 1819 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562237 1820 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=216808 1821 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509265 1822 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510798 1823 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514625...
  • Page 237: Rhnlib

    1838 of RHN Satellite. (BZ#566694 All Red Hat Network Satellite users are advised to upgrade to this updated package, which provides these enhancements and bug fixes. 1830 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516207 1831 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517945 1832 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521281 1833 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526450 1834 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530369...
  • Page 238: Rhnsd

    * The list of screen resolutions was not emptied in set_resolution causing some resolutions to not be selectable. An initialization variable has now been implemented. This allows the correct screen 1842 resolutions choices. (BZ#242577 1840 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503738 1841 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=492565 1842 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=242577...
  • Page 239: Rsyslog

    * the rsyslog server can now handle more than 1000 open files and Transmission Control Protocol 1849 (TCP) connections. (BZ#519192 All users of rsyslog are advised to upgrade to these updated packages, which resolve these issues and add these enhancements. 1843 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=473419 1844 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519201 1845 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519203 1846 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=475217 1847 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=488068...
  • Page 240: Ruby

    NT_STATUS_LOGON_FAILURE. The parsing code is now corrected and no longer includes the newline as part of the authentication details. Mount.cifs can therefore use credentials files to authenticate with file servers successfully. 1851 https://www.redhat.com/security/data/cve/CVE-2009-1904.html 1852 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=546245...
  • Page 241 After installing this update, the smb service will be restarted automatically. 1.182.3. RHBA-2010:0300: bug fix update Updated samba packages that contain various bugfixes are now available. Samba is a suite of programs used by machines to share files, printers, and other information. 1855 https://www.redhat.com/security/data/cve/CVE-2009-2906.html 1856 https://www.redhat.com/security/data/cve/CVE-2009-1888.html 1857 https://www.redhat.com/security/data/cve/CVE-2009-2813.html 1858 https://www.redhat.com/security/data/cve/CVE-2009-2948.html...
  • Page 242 (BZ#532153 * mounting and unmounting a CIFS filesystem quickly would eventually lead to the CIFS mounts becoming unmountable. The issue has been corrected by linking mtab.o to the building of mount.cifs 1859 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=457082 1860 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=457096 1861 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=457097 1862 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=457192...
  • Page 243: Samba3X

    * samba3x was previously only available as a technology preview for AMD64 and Intel 64 architectures. It is now supported for Itanium, PowerPC, IBM System z, x86, AMD64 and Intel 64 server and client variants. 1872 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=533912 1873 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=555654 1874 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506292...
  • Page 244: Sblim

    * A new sblim-smis-hba package has been added to the SBLIM package set. This package adds the Host Bus Adapters (HBA) API that is an industry standard C language for management of fibre 1882 channel host bus adapters and discovery of SAN resources. (BZ#512238 1878 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=557921 1879 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=571778 1880 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526756 1881 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516785...
  • Page 245: Screen

    This ensures utempter support is enabled and commands such as logname, "who am i" and "w" work 1891 in screen sessions as expected. (BZ#541875 All screen users are advised to upgrade to this updated package, which resolves this issue. 1883 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512370 1884 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512374 1886 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512230 1885 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512230...
  • Page 246: Scsi-Target-Utils

    * the /etc/tgt/targets.conf file now supports more advanced configuration parameters. Refer to the tgt- admin(8) manual page for further information about valid parameters for the /etc/tgt/targets.conf file. All users of scsi-target-utils are advised to upgrade to this updated package, which resolves these issues. 1893 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545785 1894 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545786 1895 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=552928...
  • Page 247: Selinux-Policy

    This update includes updated policy rules for IPsec which fix the AVC denials so that pluto is allowed to run as expected. Note that this is necessary for FIPS-140 compliance. 1900 (BZ#538452 1897 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=523548 1899 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538449 1900 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538452...
  • Page 248 NFS server, and during the creation of a cache directory. This package modifies SELinux policy so that the coolkey Kerberos library is excluded from being audited when 1906 performing this operation. (BZ#294651 1901 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538453 1902 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538503 1904 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=555793 1905...
  • Page 249 RHBA-2010:0182: bug fix update • A leaked file descriptor in cupsd caused an SELinux error or denial. SELinux policy has been modified to allow this activity and not to cause a denial when this activity takes place. 1907 (BZ#483395 • The /root/.ssh directory contained incorrect SELinux permissions if it was deleted and re- created.
  • Page 250 Chapter 1. Package Updates • Instances of #!/usr/bin/env python have been removed from SELinux policy source code, as using this technique to call python in the top of an executable python file is being discontinued by 1920 Red Hat developers. (BZ#521284 •...
  • Page 251 RHBA-2010:0182: bug fix update • SELinux AVC denial errors were triggered when using the sysadm SELinux user to connect to racoon using a UNIX domain stream socket. After applying this update, access functions as 1935 expected. (BZ#545369 • When using the MLS functionality, iptables can now start properly and has proper permissions to 1936 read configuration files.
  • Page 252: Sendmail

    (CVE-2009-4565 1954 CVE-2009-4565 Note: The issue only affected configurations using TLS with certificate verification and CommonName checking enabled, which is not a typical configuration. This update also fixes the following bugs: 1952 https://www.redhat.com/security/data/cve/CVE-2006-7176.html 1953 https://www.redhat.com/security/data/cve/CVE-2009-4565.html 1954 https://www.redhat.com/security/data/cve/CVE-2009-4565.html...
  • Page 253: Shadow-Utils

    (-b, --base-dir), and commands using this option would not succeed. The useradd utility has been updated to recognize the base directory option properly, and 1963 useradd commands now work as expected. (BZ#469158 1955 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512871 1956 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=299951 1957 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250552 1958 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=244012...
  • Page 254: Sosreport

    As a consequence, the wrong version of the Global File System would be used and it also would be incorrectly set to weak-update. SOS has now been modified to warn system administrators if 1964 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=487575 1965 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=505033 1966 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=449154...
  • Page 255 RHBA-2010:0201: bug fix and enhancement update gfs2.ko has been set to use weak updates and instructs them there is a need to remove kmod- 1970 gfs2 and reboot the system before proceeding any further. (BZ#507390 • groupd can erroneously assign the fence domain id 00000000. This can result in LVM commands becoming permanently locked.
  • Page 256 Chapter 1. Package Updates issue, changes have been made to password masking to ensure the XML remains well-formed and the process is applied to any back-up configuration files that may exist. As a result, security is enhanced and files no longer need manual rectification before tests can be run on cluster.conf. 1978 (BZ#497588 •...
  • Page 257 (BZ#478009 • SOS was not reporting the output of the lsb_release command. If /etc/redhat-release was corrupted or missing, it was impossible for support to confirm which version of Red Hat Enterprise Linux was in use. lsb)release provides a useful fallback. A plug-in has been added to SOS to gather a large amount of data provided by the lsb_release command and in associated /etc files.
  • Page 258: Squid

    A flaw was found in the way Squid handled truncated DNS replies. A remote attacker able to send specially-crafted UDP packets to Squid's DNS client port could trigger an assertion failure in Squid's 1999 child process, causing that child process to exit. (CVE-2010-0308 1997 https://www.redhat.com/security/data/cve/CVE-2009-2855.html 1998 https://www.redhat.com/security/data/cve/CVE-2009-2855.html 1999 https://www.redhat.com/security/data/cve/CVE-2010-0308.html...
  • Page 259: Squirrelmail

    2006 send mail without that user's permission. (CVE-2009-2964 Users of SquirrelMail should upgrade to this updated package, which contains a backported patch to correct these issues. 2000 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521926 2001 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=496170 2002 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516245 2003 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538738 2004 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=470843...
  • Page 260: Star

    STD OUT and hung. With this update, strace now checks for this situation and re-synchronizes with system call notifications when necessary. Note: this problem only presents on Itanium-based systems 2010 (BZ#548363 All strace users are advised to upgrade to this updated package, which resolves this issue. 2008 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=450994 2010 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548363...
  • Page 261: Sudo

    A privilege escalation flaw was found in the way sudo handled the sudoedit pseudo-command. If a local user were authorized by the sudoers file to use this pseudo-command, they could possibly 2016 leverage this flaw to execute arbitrary code with the privileges of the root user. (CVE-2010-0426 2012 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=558471 2013 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548363 2014 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=564364 2016...
  • Page 262 2022 500942) * the requiretty option requires a user to use only a real terminal (TTY). When sudo was used over LDAP (Lightweight Directory Access Protocol), the !requiretty (TTY not required) option was incorrectly 2017 https://www.redhat.com/security/data/cve/CVE-2010-0427.html 2018 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=497873 2019 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512191 2020 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521778...
  • Page 263: Sysklogd

    * syslogd.conf would cause a memory leak by forwarding messages to its IP address, for example "*.*@192.168.122.5". This would result in processes being terminated by the "OOM killer" to free up 2029 memory. A patch has been applied to ensure that messages are not self-forwarded. (BZ#481600 2023 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521903 2024 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=538700 2025 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=561336 2026 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=460232...
  • Page 264: System-Config-Cluster

    * system-config-cluster should not tag clusternodes with multicast tags. (BZ#517140 2039 * system-config-cluster does not validate "startup_wait" mysql resource option. (BZ#530171 System-config-cluster users should upgrade to this updated package, which resolves these issues. 2030 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=490897 2031 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506683 2032 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=352631 2033 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=436939 2034 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=474155...
  • Page 265: System-Config-Lvm

    In these updated packages, system-config-lvm contains fixes for this situation. 2043 (BZ#522200 * system-config-lvm failed when scanning mirrored logical volume with corelog. In these updated 2044 package, system-config-lvm works correctly with such volumes.(BZ#516609 2041 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537022 2042 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=525116 2043 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522200 2044 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=516609...
  • Page 266: System-Config-Securitylevel

    * when a new port is added to a firewall -- via the Firewall Options > Other ports > Add dialog box -- its service name is derived from the port number. Service names containing hyphens (eg iascontrol-oms, 2045 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515322 2046 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514268 2047 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=502042...
  • Page 267: System-Config-Services

    UTF-8 encoded: they contained incorrect characters that resulted in a nonsense strings presenting when the application was used in German. These characters have been corrected to their corresponding UTF-8 characters, ensuring they display properly in German locales. 2059 (BZ#284931 2054 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503588 2055 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532947 2056 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=532948 2057 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208170...
  • Page 268: Systemtap

    All systemtap users should upgrade to these updated packages, which resolve this issue. 1.201.2. RHSA-2010:0124: Important security update Important This update has already been released (prior to the GA of this release) as the security 2064 RHSA-2010:0124 errata 2060 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=445185 2061 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500424 2063 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543058...
  • Page 269 2068 2069 2070 BZ#559643 BZ#513654 (BZ#506959 , and • This update also fixes several typographical errors in the man pages of stap-server and stap- 2071 (BZ#516691 client. 2065 https://www.redhat.com/security/data/cve/CVE-2009-4273.html 2066 https://www.redhat.com/security/data/cve/CVE-2010-0411.html 2067 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515829...
  • Page 270 Chapter 1. Package Updates • Using the task_pid() function in a SystemTap script while the kernel-debuginfo package was not installed could incorrectly result in a semantic error. This update applies an upstream patch to 2072 the task.stp tapset, which fixes the issue. (BZ#519314 •...
  • Page 271: Tar

    Users of tar are advised to upgrade to this updated package, which contains backported patches to correct these issues. 1.202.2. RHBA-2010:0224: bug fix and enhancement update An updated tar package that fixes several bugs and adds various enhancements is now available. 2085 https://www.redhat.com/security/data/cve/CVE-2010-0624.html 2086 https://www.redhat.com/security/data/cve/CVE-2010-0624.html 2087 https://www.redhat.com/security/data/cve/CVE-2007-4476.html...
  • Page 272 With this update, tar returns an exit 2095 code of 2 and displays an error message when attempting to extract too-small files. (BZ#544427 In addition, this updated package provides the following enhancements: 2088 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=294661 2089 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=429522 2090 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=472553 2091 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=495686...
  • Page 273: Taskjuggler

    This version requirement has been relaxed and corrected so that building 2100 TaskJuggler from the source RPM succeeds as expected. (BZ#233033 TaskJuggler users who build the package from source are advised to upgrade to this updated package, which resolves these issues. 2096 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518208 2097 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530956 2099 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=233028 2100 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=233033...
  • Page 274: Tcpdump

    This updated tcsh package fixes the following bug: * when using the tcsh shell, running a command containing glob characters (such as "echo FAIL *", for example) within a directory in which automount mounted other directories (such as for NIS) based 2102 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=485670 2103 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=497819...
  • Page 275 The behavior that was said to be a bug has since been found 2105 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526459 2107 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=547529 2108 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=461836...
  • Page 276: Tog-Pegasus

    The OpenPegasus Feature Status page summarizes the changes made in this version, http:// www.openpegasus.org/page.tpl?CALLER=index.tpl&ggid=799 . * when being installed, the tog-pegasus package displayed a warning message about the possibility of repository corruption occurring. This is because the post install stage ran the command cimmofl to 2109 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=495642 2110 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498625 2111 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526712 2112 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=502474...
  • Page 277: Util-Linux

    As a result, Valgrind can detect a lot of problems that are otherwise very hard to find/diagnose. 2119 This update re-bases Valgrind to upstream version 3.5.0 (BZ#522330 ), and applies several enhancements and fixes including the following: 2116 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529161 2118 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=471372 2119 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522330...
  • Page 278: Vconfig

    Users of vconfig are advised to upgrade to this updated package, which resolves these issues. 1.210. vino 1.210.1. RHBA-2009:1590: bug fix update Note This update has already been released (prior to the GA of this release) as FASTRACK 2126 RHBA-2009:1590 errata 2120 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=476271 2121 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515768 2122 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=530165 2124 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500635 2125 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=221161...
  • Page 279: Virt-Manager

    The updated virt-manager has an advanced option which allows users to specify which IP address and port to use for a live migration. Specifying the fastest network 2134 interface will speed up migrations. (BZ#518487 2127 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=493097 2128 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508273 2129 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=508357 2130 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509746...
  • Page 280: Vixie-Cron

    This update includes a corrected /etc/pam.d/crond file that export environment variables correctly. Setting pam variables via cron now works as documented. 2141 (BZ#546568 All vixie-cron users should upgrade to this updated package, which resolves this issue. 2135 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=522096 2136 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=534005 2137 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=539496 2138 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=436320...
  • Page 281: Vsftpd

    All users of wdaemon are advised to upgrade to this updated package if they need this enhancement. 1.215. wget 1.215.1. RHSA-2009:1549: Moderate security update Important This update has already been released (prior to the GA of this release) as the security 2144 RHSA-2009:1549 errata 2143 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544278...
  • Page 282: Wpa_Supplicant

    1.217.1. RHBA-2009:1514: bug fix update Note This update has already been released (prior to the GA of this release) as errata 2147 RHBA-2009:1514 Updated xen packages that close a memory leak in xend are now available. 2145 https://www.redhat.com/security/data/cve/CVE-2009-3490.html 2146 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506230...
  • Page 283 This update has already been released (prior to the GA of this release) as the security 2151 RHSA-2009:1472 errata Updated xen packages that fix a security issue and multiple bugs are now available for Red Hat Enterprise Linux 5. 2148 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528163 2150 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=547289...
  • Page 284 1e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 res 41/20:03:00:00:00/00:00:00:00:00/a0 Emask 0x3 (HSM violation) ata2.00: status: { DRDY ERR -} ata2: soft resetting link 2152 https://www.redhat.com/security/data/cve/CVE-2009-3525.html 2153 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=525141 2154 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=525143 2155...
  • Page 285 RHBA-2010:0294: bug fix and enhancement update The updated packages resolve this issue by fixing the virtualized ATA driver. The updated packages cause the following issue on the guest: ata2.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x6 frozen ata2.00: BMDMA stat 0x5 ata2.00: cmd a0/01:00:00:80:00/00:00:00:00:00/a0 tag 0 dma 16512 in ata2.00: status: { DRDY DRQ -} ata2: soft resetting link...
  • Page 286 Chapter 1. Package Updates pci-list-assignable-devices command. The updated package provides an error that 2163 informs the user the module is not loaded. (BZ#514448 • A race condition rarely occurred when a para-virtualized guest was rebooted. When the race condition occured it caused para-virtualized guests to stop or crash after rebooting. The race condition no longer occurs in the updated packages and para-virtualized guests should always run 2164 after rebooting.
  • Page 287: Xerces-J2

    CPU use). (CVE-2009-2625 Users should upgrade to these updated packages, which contain a backported patch to correct this issue. Applications using the Apache Xerces2 Java Parser must be restarted for this update to take effect. 2186 https://www.redhat.com/security/data/cve/CVE-2009-2625.html...
  • Page 288: Xmlsec1

    * The qxl driver is added to i386, AMD64 and Intel 64 platforms. qxl is an accelerated paravirtualized graphics device in Red Hat's KVM virtualization platform. All users should upgrade to this updated package, which adds this enhancement. 2188 https://www.redhat.com/security/data/cve/CVE-2009-0217.html...
  • Page 289: Xorg-X11-Drv-Ast

    * the framebuffer driver had a bug relating to CopyArea performance, which led to the system appearing to run extremely slowly. The performance bug was corrected in an upstream version of the 2192 driver and the sluggish performance is no longer seen. (BZ#466163 2189 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=488274 2190 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=371151 2191 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=548008 2192...
  • Page 290: Xorg-X11-Drv-I810

    This updated package addresses the following issues: * Updates to the driver for Pilot1 and Pilot2 chipsets caused display errors in the installer for the remote kernel-based virtual machine when used with the Pilot2 chipset at 800x600 resolution. This 2193 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=521350 2194 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=511896 2195 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=517356...
  • Page 291: Xorg-X11-Drv-Nv

    Dell M4500 Mobile Workstations. (BZ#514999 All users should install this newly released package, which resolves these issues. 1.227. xorg-x11-drv-qxl 1.227.1. RHBA-2010:0188: bug fix update An updated xorg-x11-drv-qxl package that fixes numerous bugs is now available. 2197 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=518997 2198 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=563196 2199 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=498500 2200 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=486135 2201 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=499684...
  • Page 292 This was caused by incorrect size parameters applied to xf86UnMapVidMem and printing of values from incorrect memory structure. The size parameter was modified and ROM structure replaced QXL 2209 structure for draw area values. These errors no longer appear in the log.(BZ#549386 2203 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509410 2204 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=543663 2205 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=544781 2206 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=552181...
  • Page 293: Xorg-X11-Drv-Vesa

    Updated xorg-x11-server packages that resolve an issue are now available. X.org X11 is an open source implementation of the X Window System. It provides the basic low level functionality upon which full fledged graphical user interfaces such as GNOME and KDE are designed. 2210 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=551289 2211 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=551981 2212...
  • Page 294 Changes were made to the xorg-x11-server package to better support the gnome-screensaver and xinerama functions and the screensaver now works correctly. 2221 (BZ#516204 2222 2223 BZ#530309 BZ#554571 2214 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=537759 2215 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=435963 2216 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=536868 2217 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=486120 2218 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=496108 2219 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=507536...
  • Page 295: Xorg-X11-Xdm

    All users of xorg-x11-xdm are advised to upgrade to this updated package, which resolves this issue. 1.231. xterm 1.231.1. RHBA-2009:1611: bug fix update Note This update has already been released (prior to the GA of this release) as errata 2229 RHBA-2009:1611 2224 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515609 2225 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=510120 2226 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=558611 2228 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=506535...
  • Page 296: Yaboot

    All PowerPC yaboot users are advised to upgrade to this updated package, which resolves this issue and adds this enhancement. 1.233. yp-tools 1.233.1. RHBA-2009:1609: bug fix update Note This update has already been released (prior to the GA of this release) as FASTRACK 2233 RHBA-2009:1609 errata 2230 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=540534 2231 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=515778 2232 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=562956...
  • Page 297: Yum

    * fix exit regression when updating packages that do not exist. (BZ#521008 2241 * show obsoletes in check-update, if obsoletes flag is on. (BZ#526064 All yum users should upgrade to this updated package, which resolves these issues. 2234 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=500642 2235 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528738 2236 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528746 2237 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529233 2238 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=529719...
  • Page 298: Yum-Rhn-Plugin

    (BZ #524237) * correctly update log files when performing package updates and removals from RHN / RHN Satellite. (BZ #527412) Users of yum-rhn-plugin are advised to upgrade to this updated package, which fixes these issues. 2242 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=437822 2243 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=504295 2244 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=509342 2245 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=514467...
  • Page 299: New Packages

    QEMU is now available as an integrated and supported Red Hat Enterprise Linux package. BZ#545886 (BZ#512045 & Note: gPXE does not replace etherboot. Both packages, howver, write their .zrom files to the same directory -- /usr/share/pxe-boot. KVM links to whatever ROM files are present in /usr/share/pxe-boot https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=473704 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=512045 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=545886...
  • Page 300: Rhea-2010:0199: Gsl

    WiFi Link 6000 Series AGN Adapters (aka iwl6000 devices). (BZ#526292 All users of the iwlagn driver, especially those requiring iwl6000 support, should install this new package, which provides this enhancement. 2.6. RHEA-2010:0276: postgresql84 New postgresql84 packages are now available. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519223 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=526292...
  • Page 301: Rhea-2010:0268: Python-Dmidecode

    Note: PowerPC and IBM System z systems do not use the DMI standard and, consequently, do not have DMI tables to decode. If the python-dmidecode module is installed on these systems, however, the module can read supplied DMI data from x86-based systems. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=489479 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=558746 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=546220...
  • Page 302: Rhea-2010:0249: Tunctl

    The LZMA algorithm, however, provides generally better compression ratios than these conventional tools. (BZ#519122 Anyone interested in taking advantage of this new compression utility should install this new package. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=501574 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=519122...
  • Page 303: Technology Previews

    TrouSerS is an implementation of the Trusted Computing Group's Software Stack (TSS) specification. You can use TrouSerS to write applications that make use of TPM hardware. tpm- tools is a suite of tools used to manage and utilize TPM hardware. For more information about TrouSerS, refer to http://trousers.sourceforge.net/. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=475695...
  • Page 304 Technology Preview. http:// Red Hat recommends that those interested in testing stateless code read the HOWTO at fedoraproject.org/wiki/StatelessLinux/HOWTO stateless-list@redhat.com and join The enabling infrastructure pieces for Stateless Linux were originally introduced in Red Hat Enterprise Linux 5.
  • Page 305 • An updated Mesa package that adds new protocol support. By installing these components, you can have GL-accelerated effects on your desktop with very few changes, as well as the ability to enable and disable them at will without replacing your X server.
  • Page 306 Red Hat There is also a known issue relating to connection timeouts in some situations. Refer to Bugzilla #470627 for more information on this issue. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=470627...
  • Page 307 Technology Preview of the upstream malloc. To enable the per-thread memory pools the environment variable MALLOC_PER_THREAD needs to be set in the environment. This environment variable will become obsolete when this new malloc behaviour becomes default in future releases. Users experiencing contention for the malloc resources could try enabling this option. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=470627...
  • Page 309: Capabilities And Limits

    Red Hat maintains a technology capabilities and limits page for Red Hat Enterprise Linux at www.redhat.com/rhel/compare/. This page provides the theoretical limits supported by the software as well as certified limits for generally available hardware. The theoretical limits are updated with every major release.
  • Page 311: Known Issues

    Chapter 5. Known Issues 5.1. anaconda The anaconda package contains the program which was used to install your system. The following are the Known Issues that apply to the anaconda package in Red Hat Enterprise Linux 5 • anaconda sometimes crashes while attempting to install on a disk containing partitions or filesystems used by other operating systems.
  • Page 312 Chapter 5. Known Issues $ cat << EOF>> -/etc/iscsi/initiatorname.iscsi InitiatorName=iqn.1994-05.com.fedora:d62f2d7c09f 2. Start iscsid $ iscsid 3. Discover and login to target: $ iscsiadm --m discovery --t st --p $TARGET_IP $ iscsiadm --m node --T $TARGET_IQN --p $TARGET_IP ---login 4. If the iSCSI LUN is part of a LVM Logical volume group $ lvm vgscan $ lvm vgchange --ay 5.
  • Page 313 anaconda use the Red Hat Network with the hosted Web user interface, a Red Hat Network Satellite, the local (BZ#494033) graphical Updater, or the yum command line. • Anaconda's graphical installer fails to start at the default 800x600 resolution on systems utilizing Intel Graphics Device Next Generation (IGDNG) devices.
  • Page 314: Cmirror

    Chapter 5. Known Issues • when using anaconda's automatic partitioning on an IBM System p partition with multiple harddisks containing different Linux distributions, the anaconda installer may overwrite the bootloaders of the other Linux installations although their harddisks have been unchecked. To work around this, choose manual partitioning during the installation process.(BZ#519795) The following note applies to PowerPC Architectures:...
  • Page 315: Ctdb

    ctdb 5.4. ctdb CTDB is a clustered database based on Samba's Trivial Database (TDB). The ctdb package is a cluster implementation used to store temporary data. If an application is already using TBD for temporary data storage, it can be very easily converted to be cluster-aware and use CTDB. •...
  • Page 316: Dmraid

    Chapter 5. Known Issues /dev/mapper/3600d0230003414f30000203a7bc41a00p1 /dev/mpath/3600d0230003414f30000203a7bc41a00 /dev/mpath/3600d0230003414f30000203a7bc41a00p1 (BZ#238421) • Running the multipath command with the -ll option can cause the command to hang if one of the paths is on a blocking device. Note that the driver does not fail a request after some time if the device does not respond.
  • Page 317: Dogtail

    dogtail 3. Mount the root partition: mkdir -/tmp/raid mount -/dev/mapper/isw_effjffhbi_Volume0p1 -/tmp/raid 4. Decompress the boot image: mkdir -/tmp/raid/tmp/image cd -/tmp/raid/tmp/image gzip --cd -/tmp/raid/boot/inird-2.6.18-155.el5.img -| cpio --imd -–quiet 5. Change the names of the RAID volumes in the initscript to use the new names of RAID: dmraid -–ay -–I -–p -–rm_partition -“/dev/mapper/isw_effjffhbi_Volume0”...
  • Page 318: Gfs2-Utils

    Chapter 5. Known Issues • The IBM System z does not provide a traditional Unix-style physical console. As such, Red Hat Enterprise Linux 5.2 for the IBM System z does not support the firstboot functionality during initial program load. To properly initialize setup for Red Hat Enterprise Linux 5.2 on the IBM System z, run the following commands after installation: •...
  • Page 319: Initscripts

    initscripts • Removable storage devices (such as CDs and DVDs) do not automatically mount when you are logged in as root. As such, you will need to manually mount the device through the graphical file (BZ#209362) manager. Alternatively, you can run the following command to mount a device to /media: mount -/dev/[device name] -/media 5.11.
  • Page 320 Chapter 5. Known Issues • Xen guests will not boot using configurations that bind multiple virtualized CPUs to a single CPU. (BZ#570056 • The Xen hypervisor will not start when booting from an iSCSI disk. To work around this issue, disable the Xen hypervisor's EDD feature with the "edd=off"...
  • Page 321 kernel-xen • When using Single Root I/O Virtualization (SR-IOV) devices under Xen, a single Hardware Virtual (BZ#511403) Machine (HVM) guest is limited to 12 Virtual Function (VF) assignments. • When booting a fully virtualized Xen guest, the following message may be displayed on the guest console: testing NMI watchdog -...
  • Page 322: Kernel

    Chapter 5. Known Issues • Parity • io_base address These details must be specified in the append= line of the dom0 kernel in /boot/efi/ elilo.conf. For example: append="com1=19200,8n1,0x3f8 -- quiet rhgb console=tty0 console=ttyS0,19200n8" In this example, com1 is the serial port, 19200 is the speed (in bits/second), 8n1 specifies the (BZ#433771) number of data bits/parity settings, and 0x3f8 is the io_base address.
  • Page 323 kernel unloaded until after all guest virtual machines with assigned VFs from that SR-IOV device have terminated. (BZ#514360 • Under some circumstances, the sky2 driver may hang, returning the following error message: sky2 eth<N>: receiver hang detected Currently, the only work around to make the device online again is to reboot the system. This (BZ#509891 bug will be repaired in an upcoming update to Red Hat Enterprise Linux 5.4.
  • Page 324 Chapter 5. Known Issues If the kmod-kvm package is installed, the 'kvm_intel' or 'kvm_amd' module automatically loads during boot on some systems. If a physical CPU is placed offline while the 'kvm_intel' or 'kvm_amd' module is loaded a subsequent attempt to online that CPU may fail with an I/O error. To work around this issue, unload the 'kvm_intel' or 'kvm_amd' before performing physical CPU hot- plug operations.
  • Page 325 kernel Important Turning NUMA reclaim negatively effects the overall throughput of the system. (BZ#507360) • Configuring IRQ SMP affinity has no effect on some devices that use message signalled interrupts (MSI) with no MSI per-vector masking capability. Examples of such devices include Broadcom NetXtreme Ethernet devices that use the bnx2 driver.
  • Page 326 Chapter 5. Known Issues • If your system uses the TSC timer, the gettimeofday system call may move backwards. This is because of an overflow issue that causes the TSC timer to jump forward significantly in some cases; when this occurs, the TSC timer will correct itself, but will ultimately register a movement backwards in time.
  • Page 327: Kexec-Tools

    kexec-tools To do so, add the following options to /etc/modprobe.conf: alias wlan0 iwlagn options iwlagn swcrypto50=1 swcrypto=1 (where wlan0 is the default interface name of the first Intel WiFi Link device) (BZ#468967) The following note applies to PowerPC Architectures: • The size of the PPC kernel image is too large for OpenFirmware to support. Consequently, network booting will fail, resulting in the following error message: Please wait, loading kernel...
  • Page 328: Krb5

    Chapter 5. Known Issues This work around prevents the forcedeth network driver from using high memory resources in the kdump kernel, allowing the network to function properly. • The system may not successfully reboot into a kexec/kdump kernel if X is running and using a driver other than vesa.
  • Page 329 • By default, KVM virtual machines created in Red Hat Enterprise Linux 5.5 have a virtual Realtek 8139 (rtl8139) network interface controller (NIC). The rtl8139 virtual NIC works fine in most environments, but may suffer from performance degradation issues on some networks for example, a 10 GigE (10 Gigabit Ethernet) network.
  • Page 330 Chapter 5. Known Issues virsh define -/tmp/new-guest.xml virsh start new-guest • Currently, KVM cannot disable virtualization extensions on a CPU while it is being taken down. Consequently, suspending a host running KVM-based virtual machines may cause the host to (BZ#509809) crash.
  • Page 331 • the kvm package has incorrect dependencies related to the libgcrypt package. Consequently, if the libgcrypt package installed on a system is earlier than version 1.4.4, the qemu-kvm process may refuse to start, returning a libgcrypt initialization error message. To work around this issue, update libgcrypt to the version provided by Red Hat Enterprise Linux 5.5.
  • Page 332: Less

    Chapter 5. Known Issues 5.18. less The less utility is a text file browser that resembles more, but with more capabilities ("less is more"). The less utility allows users to move backwards in the file as well as forwards. Because less need not read the entire input file before it starts, less starts up more quickly than text editors (vi, for example).
  • Page 333: Mesa

    mesa 5.22. mesa Mesa provides a 3D graphics API that is compatible with OpenGL. It also provides hardware- accelerated drivers for many popular graphics chips. The following note applies to x86_64 Architectures: • On an IBM T61 laptop, Red Hat recommends that you refrain from clicking the glxgears window (when glxgears is run).
  • Page 334: Openmpi

    Chapter 5. Known Issues The following note applies to the ia64 Architectures: • Running perftest will fail if different CPU speeds are detected. As such, you should disable CPU (BZ#433659) speed scaling before running perftest. 5.25. openmpi Open MPI, MVAPICH, and MVAPICH2 are all competing implementations of the Message Passing Interface (MPI) standard.
  • Page 335: Virtio-Win

    virtio-win • Running some user-space probe test cases provided by the systemtap-testsuite package fail with an Unknown symbol in module error on some architectures. These test cases include (but are not limited to): • systemtap.base/uprobes.exp • systemtap.base/bz10078.exp • systemtap.base/bz6850.exp • systemtap.base/bz5274.exp Because of a known bug in the latest SystemTap update, new SystemTap installations do not unload old versions of the uprobes.ko module.
  • Page 336: Xorg-X11-Drv-Nv

    Chapter 5. Known Issues The following notes apply to x86_64 Architectures: • If your system uses an Intel 945GM graphics card, do not use the i810 driver. You should use the (BZ#468218) default intel driver instead. • On dual-GPU laptops, if one of the graphics chips is Intel-based, the Intel graphics mode cannot drive any external digital connections (including HDMI, DVI, and DisplayPort).
  • Page 337: Yaboot

    yaboot 5.32. yaboot The yaboot package is a boot loader for Open Firmware based PowerPC systems. It can be used to boot IBM eServer System p machines. • If the string that represents the path to kernel (or ramdisk) is greater than 63 characters, network booting an IBM Power5 series system may result in the following error: FINAL File Size = 8948021 bytes.
  • Page 338 Chapter 5. Known Issues • Installing Red Hat Enterprise Linux 3.9 on a fully virtualized guest may be extremely slow. In addition, booting up the guest after installation may result in hda: lost interrupt errors. (BZ#249521) To avoid this bootup error, configure the guest to use the SMP kernel.
  • Page 339: Package Manifest

    Appendix A. Package Manifest This appendix is a list of all package changes since the release of Red Hat Enterprise Linux 5.4 A.1. Added Packages ctdb-1.0.82-1.el5 • Group: System Environment/Daemons • Summary: A Clustered Database based on Samba's Trivial Database (TDB) •...
  • Page 340 Appendix A. Package Manifest • Description: PostgreSQL is an advanced Object-Relational database management system (DBMS) that supports almost all SQL constructs (including transactions, subselects and user- defined types and functions). The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipulate the internal structure of PostgreSQL databases on a PostgreSQL server.
  • Page 341: Dropped Packages

    Dropped Packages general purpose compression algorithm designed by Igor Pavlov as part of 7-Zip. It provides high compression ratio while keeping the decompression speed fast. A.2. Dropped Packages libpfm-3.2-0.060926.4.el5 • Group: Development/Libraries • Summary: a performance monitoring library for Linux/ia64 •...
  • Page 342 Appendix A. Package Manifest • Summary: OpenIPMI (Intelligent Platform Management Interface) library and tools • Description: The Open IPMI project aims to develop an open code base to allow access to platform information using Intelligent Platform Management Interface (IPMI). This package contains the tools of the OpenIPMI project.
  • Page 343 Updated Packages • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes acpid-1.0.4-9.el5 - acpid-1.0.4-9.el5_4.2 • Group: System Environment/Daemons •...
  • Page 344 Appendix A. Package Manifest • No removed conflicts • No added obsoletes • No removed obsoletes anaconda-11.1.2.195-1 - anaconda-11.1.2.209-1 • Group: Applications/System • Summary: Graphical system installer • Description: The anaconda package contains the program which was used to install your system.
  • Page 345 Updated Packages • No added obsoletes • No removed obsoletes at-3.1.8-82.fc6 - at-3.1.8-84.el5 • Group: System Environment/Daemons • Summary: Job spooling tools. • Description: At and batch read commands from standard input or from a specified file. At allows you to specify that a command will be run at a particular time. Batch will execute commands when the system load levels drop to a particular level.
  • Page 346 Appendix A. Package Manifest autofs-5.0.1-0.rc2.131.el5 - autofs-5.0.1-0.rc2.143.el5 • Group: System Environment/Daemons • Summary: A tool for automatically mounting and unmounting filesystems. • Description: autofs is a daemon which automatically mounts filesystems when you use them, and unmounts them later when you are not using them. This can include network filesystems, CD-ROMs, floppies, and so forth.
  • Page 347 Updated Packages • Summary: A GNU tool for automatically creating Makefiles. • Description: Automake is a tool for automatically generating `Makefile.in' files compliant with the GNU Coding Standards. This package contains Automake 1.4, an older version of Automake. You should install it if you need to run automake in a project that has not yet been updated to work with newer versions of Automake.
  • Page 348 Appendix A. Package Manifest You should install it if you need to run automake in a project that has not yet been updated to work with latest version of Automake. • Added Dependencies: • texinfo • No removed dependencies • No added provides •...
  • Page 349 Updated Packages of technology is already found in MacOS X (branded 'Rendezvous', 'Bonjour' and sometimes 'ZeroConf') and is very convenient. • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts •...
  • Page 350 Appendix A. Package Manifest or archive file), strings (for listing printable strings from files), strip (for discarding symbols), and addr2line (for converting addresses to file and line). • No added dependencies • No removed dependencies • No added provides • No removed provides •...
  • Page 351 Updated Packages • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes booty-0.80.6-5 - booty-0.80.6-7 • Group: System Environment/Libraries •...
  • Page 352 Appendix A. Package Manifest • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes checkpolicy-1.33.1-4.el5 - checkpolicy-1.33.1-6.el5 • Group: Development/System • Summary: SELinux policy compiler • Description: Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux.
  • Page 353 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes cman-2.0.115-1.el5 - cman-2.0.115-34.el5 • Group: System Environment/Base • Summary: cman - The Cluster Manager • Description: cman - The Cluster Manager •...
  • Page 354 Appendix A. Package Manifest cmirror-kmod-0.1.22-1.el5 - cmirror-kmod-0.1.22-3.el5 • Group: System Environment/Kernel • Summary: cmirror kernel modules • Description: cmirror-kmod - The Cluster Mirror kernel modules • Added Dependencies: • kernel-devel-ia64 = 2.6.18-182.el5 • kernel-xen-devel-ia64 = 2.6.18-182.el5 • Removed Dependencies: • kernel-devel-ia64 = 2.6.18-159.el5 •...
  • Page 355 Updated Packages coolkey-1.1.0-6.el5 - coolkey-1.1.0-14.el5 • Group: System Environment/Libraries • Summary: CoolKey PKCS #11 module • Description: Linux Driver support for the CoolKey and CAC products. • No added dependencies • No removed dependencies • No added provides • No removed provides •...
  • Page 356 Appendix A. Package Manifest crc, HPUX binary, HPUX old ASCII, old tar and POSIX.1 tar. By default, cpio creates binary format archives, so that they are compatible with older cpio programs. When it is extracting files from archives, cpio automatically recognizes which kind of archive it is reading and can read archives created on machines with a different byte-order.
  • Page 357 Updated Packages packages from Red Hat Linux, the mcore kernel patch offered by Mission Critical Linux, or the LKCD kernel patch. • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts •...
  • Page 358 Appendix A. Package Manifest • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes cyrus-imapd-2.3.7-7.el5 - cyrus-imapd-2.3.7-7.el5_4.3 • Group: System Environment/Daemons •...
  • Page 359 Updated Packages cyrus-sasl-2.1.22-5.el5 - cyrus-sasl-2.1.22-5.el5_4.3 • Group: System Environment/Libraries • Summary: The Cyrus SASL library. • Description: The cyrus-sasl package contains the Cyrus implementation of SASL. SASL is the Simple Authentication and Security Layer, a method for adding authentication support to connection-based protocols.
  • Page 360 Appendix A. Package Manifest dbus-1.1.2-12.el5 - dbus-1.1.2-14.el5 • Group: System Environment/Libraries • Summary: D-BUS message bus • Description: D-BUS is a system for sending messages between applications. It is used both for the systemwide message bus service, and as a per-user-login-session messaging facility. •...
  • Page 361 Updated Packages • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes device-mapper-multipath-0.4.7-30.el5 - device-mapper-multipath-0.4.7-34.el5 • Group: System Environment/Base • Summary: Tools to manage multipath devices using device-mapper. •...
  • Page 362 Appendix A. Package Manifest • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes dhcpv6-1.0.10-17.el5 - dhcpv6-1.0.10-18.el5 • Group: System Environment/Daemons • Summary: DHCPv6 - DHCP server and client for IPv6 •...
  • Page 363 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes dmraid-1.0.0.rc13-53.el5 - dmraid-1.0.0.rc13-63.el5 • Group: System Environment/Base • Summary: dmraid (Device-mapper RAID tool and library) • Description: DMRAID supports RAID device discovery, RAID set activation and display of properties for ATARAID on Linux >= 2.4 using device-mapper.
  • Page 364 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes dogtail-0.6.1-2.el5 - dogtail-0.6.1-3.el5 • Group: User Interface/X • Summary: GUI test tool and automation framework • Description: GUI test tool and automation framework that uses assistive technologies to communicate with desktop applications.
  • Page 365 Updated Packages • Description: Dstat is a versatile replacement for vmstat, iostat, netstat and ifstat. Dstat overcomes some of their limitations and adds some extra features, more counters and flexibility. Dstat is handy for monitoring systems during performance tuning tests, benchmarks or troubleshooting.
  • Page 366 Appendix A. Package Manifest • No removed obsoletes elilo-3.6-3 - elilo-3.6-4 • Group: System Environment/Base • Summary: ELILO linux boot loader for EFI-based systems • Description: ELILO is a linux boot loader for EFI-based systems, such as IA-64. • No added dependencies •...
  • Page 367 Updated Packages • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes etherboot-5.4.4-10.el5 - etherboot-5.4.4-13.el5 • Group: Development/Tools •...
  • Page 368 Appendix A. Package Manifest • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes evince-0.6.0-9.el5 - evince-0.6.0-13.el5 • Group: Applications/Publishing • Summary: Document viewer • Description: evince is a GNOME-based document viewer. •...
  • Page 369 Updated Packages • No removed conflicts • No added obsoletes • No removed obsoletes expat-1.95.8-8.2.1 - expat-1.95.8-8.3.el5_4.2 • Group: System Environment/Libraries • Summary: A library for parsing XML. • Description: This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser.
  • Page 370 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes filesystem-2.4.0-2 - filesystem-2.4.0-3.el5 • Group: System Environment/Base • Summary: The basic directory layout for a Linux system. • Description: The filesystem package is one of the basic packages that is installed on a Red Hat Linux system.
  • Page 371 Updated Packages • No added obsoletes • No removed obsoletes firstboot-1.4.27.7-1.el5 - firstboot-1.4.27.8-1.el5 • Group: System Environment/Base • Summary: Initial system configuration utility • Description: The firstboot utility runs after installation. It guides the user through a series of steps that allows for easier configuration of the machine. •...
  • Page 372 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes gail-1.9.2-1.fc6 - gail-1.9.2-3.el5 • Group: System Environment/Libraries • Summary: Accessibility implementation for GTK+ and GNOME libraries • Description: GAIL implements the abstract interfaces found in ATK for GTK+ and GNOME libraries, enabling accessibility technologies such as at-spi to access those GUIs.
  • Page 373 Updated Packages • Description: The gd graphics library allows your code to quickly draw images complete with lines, arcs, text, multiple colors, cut and paste from other images, and flood fills, and to write out the result as a PNG or JPEG file. This is particularly useful in Web applications, where PNG and JPEG are two of the formats accepted for inline images by most browsers.
  • Page 374 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes gfs-kmod-0.1.34-2.el5 - gfs-kmod-0.1.34-12.el5 • Group: System Environment/Kernel • Summary: gfs kernel modules • Description: gfs - The Global File System is a symmetric, shared-disk, cluster file system. • Added Dependencies: •...
  • Page 375 Updated Packages • No removed obsoletes gfs2-utils-0.1.62-1.el5 - gfs2-utils-0.1.62-20.el5 • Group: System Environment/Kernel • Summary: Utilities for managing the global filesystem (GFS) • Description: The gfs2-utils package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in GFS filesystems. •...
  • Page 376 Appendix A. Package Manifest • Summary: The GNOME virtual file-system libraries • Description: GNOME VFS is the GNOME virtual file system. It is the foundation of the Nautilus file manager. It provides a modular architecture and ships with several modules that implement support for file systems, http, ftp, and others.
  • Page 377 Updated Packages • Description: Gpart is a small tool which tries to guess what partitions are on a PC type harddisk in case the primary partition table was damaged. • No added dependencies • No removed dependencies • No added provides •...
  • Page 378 Appendix A. Package Manifest • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes hmaccalc-0.9.6-1.el5 - hmaccalc-0.9.6-3.el5 • Group: System Environment/Base • Summary: Tools for computing and checking HMAC values for files •...
  • Page 379 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes hwdata-0.213.16-1.el5 - hwdata-0.213.18-1.el5.1 • Group: System Environment/Base • Summary: Hardware identification and configuration data • Description: hwdata contains various hardware identification and configuration data, such as the pci.ids database and MonitorsDb databases.
  • Page 380 Appendix A. Package Manifest • No removed obsoletes ibsim-0.5-1.el5 - ibsim-0.5-2.el5 • Group: System Environment/Libraries • Summary: InfiniBand fabric simulator for management • Description: ibsim provides simulation of infiniband fabric for using with OFA OpenSM, diagnostic and management tools. • No added dependencies •...
  • Page 381 Updated Packages • Description: This package provides IB diagnostic programs and scripts needed to diagnose an IB subnet. • Added Dependencies: • opensm-devel >= 3.3.0 • Removed Dependencies: • libibcommon-devel • opensm-devel >= 3.2.0 • No added provides • No removed provides •...
  • Page 382 Appendix A. Package Manifest • Description: The iproute package contains networking utilities (ip and rtmon, for example) which are designed to use the advanced networking capabilities of the Linux 2.4.x and 2.6.x kernel. • No added dependencies • No removed dependencies •...
  • Page 383 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes iptstate-1.4-1.1.2.2 - iptstate-1.4-2.el5 • Group: System Environment/Base • Summary: A top-like display of IP Tables state table entries •...
  • Page 384 Appendix A. Package Manifest • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes java-1.6.0-openjdk-1.6.0.0-1.2.b09.el5 - java-1.6.0-openjdk-1.6.0.0-1.7.b09.el5 • Group: Development/Languages • Summary: OpenJDK Runtime Environment • Description: The OpenJDK runtime environment. • No added dependencies •...
  • Page 385 Updated Packages kdelibs-3.5.4-22.el5_3 - kdelibs-3.5.4-25.el5_4.1 • Group: System Environment/Libraries • Summary: K Desktop Environment - Libraries • Description: Libraries for the K Desktop Environment: KDE Libraries included: kdecore (KDE core library), kdeui (user interface), kfm (file manager), khtmlw (HTML widget), kio (Input/Output, networking), kspell (spelling checker), jscript (javascript), kab (addressbook), kimgio (image manipulation).
  • Page 386 Appendix A. Package Manifest • Description: kexec-tools provides /sbin/kexec binary that facilitates a new kernel to boot using the kernel's kexec feature either on a normal or a panic reboot. This package contains the /sbin/ kexec binary and ancillary utilities that together form the userspace component of the kernel's kexec feature.
  • Page 387 Updated Packages • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes ktune-0.2-3.el5 - ktune-0.2-6.el5 • Group: System Environment/Base • Summary: Server performance tuning service • Description: ktune provides settings for server performance tuning. Please have a look at /etc/ sysconfig/ktune and /etc/sysctl.ktune for tuning parameters.
  • Page 388 Appendix A. Package Manifest • No removed obsoletes kvm-83-105.el5 - kvm-83-164.el5 • Group: Development/Tools • Summary: Kernel-based Virtual Machine • Description: KVM (for Kernel-based Virtual Machine) is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running unmodified Linux or Windows images.
  • Page 389 Updated Packages • No added obsoletes • No removed obsoletes libXi-1.0.1-3.1 - libXi-1.0.1-4.el5_4 • Group: System Environment/Libraries • Summary: X.Org X11 libXi runtime library • Description: X.Org X11 libXi runtime library • No added dependencies • No removed dependencies • No added provides •...
  • Page 390 Appendix A. Package Manifest • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes libaio-0.3.106-3.2 - libaio-0.3.106-5 • Group: System Environment/Libraries •...
  • Page 391 Updated Packages • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes libcxgb3-1.2.3-1.el5 - libcxgb3-1.2.5-2.el5 • Group: System Environment/Libraries • Summary: Chelsio T3 iWARP HCA Userspace Driver •...
  • Page 392 Appendix A. Package Manifest • libibverbs-devel >= 1.1.2-4 • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes libevent-1.1a-3.2.1 - libevent-1.4.13-1 • Group: System Environment/Libraries • Summary: Abstract asynchronous event notification library •...
  • Page 393 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes libgtop2-2.14.4-3.el5 - libgtop2-2.14.4-8.el5_4 • Group: System Environment/Libraries • Summary: libgtop library (version 2) • Description: libgtop is a library for portably obtaining information about processes, such as their PID, memory usage, etc.
  • Page 394 Appendix A. Package Manifest libibcm-1.0.4-3.el5 - libibcm-1.0.5-1.el5 • Group: System Environment/Libraries • Summary: Userspace InfiniBand Communication Manager. • Description: libibcm provides a userspace InfiniBand Communication Managment library. • Added Dependencies: • libibverbs-devel >= 1.1.3 • Removed Dependencies: • libibverbs-devel >= 1.1.2-4.el5 •...
  • Page 395 Updated Packages • Description: libibmad provides low layer IB functions for use by the IB diagnostic and management programs. These include MAD, SA, SMP, and other basic IB functions. • Added Dependencies: • libibumad-devel = 1.3.3 • Removed Dependencies: • libibumad-devel >= 1.2.3 •...
  • Page 396 Appendix A. Package Manifest access for fast path operations. For this library to be useful, a device-specific plug-in module should also be installed. • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts •...
  • Page 397 Updated Packages • libibverbs-devel >= 1.1.3 • Removed Dependencies: • libibverbs-devel >= 1.1.2-4.el5 • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes libmthca-1.0.5-4.el5 - libmthca-1.0.5-6.el5 •...
  • Page 398 Appendix A. Package Manifest • Added Dependencies: • libibverbs-devel >= 1.1.3 • Removed Dependencies: • libibverbs-devel >= 1.1.2-4.el5 • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes librdmacm-1.0.8-5.el5 - librdmacm-1.0.10-1.el5 •...
  • Page 399 Updated Packages including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. libsepol provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, as well as by programs like load_policy that need to perform specific transformations on binary policies such as customizing policy boolean settings.
  • Page 400 Appendix A. Package Manifest • Summary: A user and group account administration library. • Description: The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included.
  • Page 401 Updated Packages • No removed obsoletes libvirt-cim-0.5.5-2.el5 - libvirt-cim-0.5.8-3.el5 • Group: Development/Libraries • Summary: A CIM provider for libvirt • Description: Libvirt-cim is a CMPI CIM provider that implements the DMTF SVPC virtualization model. The goal is to support most of the features exported by libvirt itself, enabling management of multiple platforms with a single provider.
  • Page 402 Appendix A. Package Manifest linuxwacom-0.7.8.3-6.el5 - linuxwacom-0.7.8.3-8.el5 • Group: User Interface/X Hardware Support • Summary: Wacom Drivers from Linux Wacom Project • Description: The Linux Wacom Project manages the drivers, libraries, and documentation for configuring and running Wacom tablets under the Linux operating system. It contains diagnostic applications as well as X.org XInput drivers.
  • Page 403 Updated Packages • Description: A library of C++ classes for flexible logging to files, syslog, IDSA and other destinations. It is modeled after the Log for Java library (http://www.log4j.org), staying as close to their API as is reasonable. • No added dependencies •...
  • Page 404 Appendix A. Package Manifest • Added Dependencies: • device-mapper >= 1.02.39-1 • Removed Dependencies: • device-mapper >= 1.02.32-1 • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes lvm2-cluster-2.02.46-8.el5 - lvm2-cluster-2.02.56-7.el5 •...
  • Page 405 Updated Packages • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes man-pages-ja-20060815-11.el5 - man-pages-ja-20060815-13.el5 • Group: Documentation • Summary: Japanese man (manual) pages from the Japanese Manual Project •...
  • Page 406 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes mdadm-2.6.9-2.el5 - mdadm-2.6.9-3.el5 • Group: System Environment/Base • Summary: mdadm controls Linux md devices (software RAID arrays) • Description: mdadm is used to create, manage, and monitor Linux MD (software RAID) devices. As such, it provides similar functionality to the raidtools package.
  • Page 407 Updated Packages • Description: Metacity is a simple window manager that integrates nicely with GNOME 2. • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts •...
  • Page 408 Appendix A. Package Manifest • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes module-init-tools-3.3-0.pre3.1.54.el5 - module-init-tools-3.3-0.pre3.1.60.el5 • Group: System Environment/Kernel •...
  • Page 409 Updated Packages • mvapich >= 1.1.0-0.3355.2 • mvapich2 >= 1.2-0.p1.3 • openmpi >= 1.3.2-2 • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes mtx-1.2.18-8.2.2 - mtx-1.2.18-9 •...
  • Page 410 Appendix A. Package Manifest • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes mvapich2-1.2-0.p1.3.el5 - mvapich2-1.4-1.el5 • Group: Development/Libraries • Summary: OSU MVAPICH2 MPI package •...
  • Page 411 Updated Packages • No removed conflicts • No added obsoletes • No removed obsoletes nautilus-open-terminal-0.6-6.el5 - nautilus-open-terminal-0.6-7.el5 • Group: User Interface/Desktops • Summary: Nautilus extension for an open terminal shortcut • Description: The nautilus-open-terminal extension provides a right-click "Open Terminal" option for nautilus users who prefer that option.
  • Page 412 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes net-snmp-5.3.2.2-7.el5 - net-snmp-5.3.2.2-9.el5 • Group: System Environment/Daemons • Summary: A collection of SNMP protocol tools and libraries. • Description: SNMP (Simple Network Management Protocol) is a protocol used for network management.
  • Page 413 Updated Packages newt-0.52.2-12.el5 - newt-0.52.2-15.el5 • Group: System Environment/Libraries • Summary: A development library for text mode user interfaces. • Description: Newt is a programming library for color text mode, widget based user interfaces. Newt can be used to add stacked windows, entry widgets, checkboxes, radio buttons, labels, plain text fields, scrollbars, etc., to text mode user interfaces.
  • Page 414 Appendix A. Package Manifest • No removed obsoletes nspluginwrapper-0.9.91.5-22.el5 - nspluginwrapper-1.3.0-8.el5 • Group: Networking/WWW • Summary: A compatibility layer for Netscape 4 plugins • Description: nspluginwrapper makes it possible to use Netscape 4 compatible plugins compiled for ppc into Mozilla for another architecture, e.g. x86_64. This package consists in: * npviewer: the plugin viewer * npwrapper.so: the browser-side plugin * nspluginplayer: stand-alone NPAPI plugin player * mozilla-plugin-config: a tool to manage plugins installation and update •...
  • Page 415 Updated Packages • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes nss_ldap-253-21.el5 - nss_ldap-253-25.el5 • Group: System Environment/Base • Summary: NSS library and PAM module for LDAP. • Description: This package includes two LDAP access clients: nss_ldap and pam_ldap. Nss_ldap is a set of C library extensions that allow X.500 and LDAP directory servers to be used as a primary source of aliases, ethers, groups, hosts, networks, protocol, users, RPCs, services, and shadow passwords (instead of or in addition to using flat files or NIS).
  • Page 416 Appendix A. Package Manifest • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes numactl-0.9.8-8.el5 - numactl-0.9.8-11.el5 • Group: System Environment/Base • Summary: library for tuning for Non Uniform Memory Access machines •...
  • Page 417 Updated Packages • No added obsoletes • No removed obsoletes openais-0.80.6-8.el5 - openais-0.80.6-16.el5 • Group: System Environment/Base • Summary: The openais Standards-Based Cluster Framework executive and APIs • Description: This package contains the openais executive, openais service handlers, default configuration files and init script. •...
  • Page 418 Appendix A. Package Manifest • Description: OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools. LDAP is a set of protocols for accessing directory services (usually phone book style information, but other information is possible) over the Internet, similar to the way DNS (Domain Name System) information is propagated over the Internet.
  • Page 419 Updated Packages new MPI-2 compliant implementation, Open MPI offers advantages for system and software vendors, application developers, and computer science researchers. For more information, see http://www.open-mpi.org/ . • Added Dependencies: • libibcm-devel • libibverbs-devel >= 1.1.3 • librdmacm-devel • Removed Dependencies: •...
  • Page 420 Appendix A. Package Manifest • java-devel = 1.4.2 • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes opensm-3.2.6-2.el5 - opensm-3.3.3-1.el5 • Group: System Environment/Daemons • Summary: OpenIB InfiniBand Subnet Manager and management utilities •...
  • Page 421 Updated Packages version of the last free version of SSH, bringing it up to date in terms of security and features, as well as removing all patented algorithms to separate libraries. This package includes the core files necessary for both the OpenSSH client and server. To make this package useful, you should also install openssh-clients, openssh-server, or both.
  • Page 422 Appendix A. Package Manifest private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4309) •...
  • Page 423 Updated Packages • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes pam_krb5-2.2.14-10 - pam_krb5-2.2.14-15 • Group: System Environment/Base •...
  • Page 424 Appendix A. Package Manifest • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes parted-1.8.1-23.el5 - parted-1.8.1-27.el5 • Group: Applications/System • Summary: The GNU disk partition manipulation program • Description: The GNU Parted program allows you to create, destroy, resize, move, and copy hard disk partitions.
  • Page 425 Updated Packages pciutils-2.2.3-7.el5 - pciutils-2.2.3-8.el5 • Group: Applications/System • Summary: PCI bus related utilities. • Description: The pciutils package contains various utilities for inspecting and setting devices connected to the PCI bus. The utilities provided require kernel version 2.1.82 or newer (which support the /proc/bus/pci interface).
  • Page 426 Appendix A. Package Manifest • Description: gen2 uverbs microbenchmarks • Added Dependencies: • libibverbs-devel >= 1.1.3 • librdmacm-devel >= 1.0.10 • Removed Dependencies: • libibverbs-devel >= 1.1.2-4 • librdmacm-devel >= 1.0.8-5 • No added provides • No removed provides • No added conflicts •...
  • Page 427 Updated Packages • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes perl-XML-SAX-0.14-5 - perl-XML-SAX-0.14-8 • Group: Development/Libraries •...
  • Page 428 Appendix A. Package Manifest • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes php-5.1.6-23.2.el5_3 - php-5.1.6-27.el5 • Group: Development/Languages • Summary: The PHP HTML-embedded scripting language. (PHP: Hypertext Preprocessor) •...
  • Page 429 Updated Packages • Removed Dependencies: • aspell-devel • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes piranha-0.8.4-13.el5 - piranha-0.8.4-16.el5 • Group: System Environment/Base • Summary: Cluster administation tools •...
  • Page 430 Appendix A. Package Manifest • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes policycoreutils-1.33.12-14.6.el5 - policycoreutils-1.33.12-14.8.el5 • Group: System Environment/Base • Summary: SELinux policy core utilities. • Description: Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux.
  • Page 431 Updated Packages • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes postgresql-8.1.11-1.el5_1.1 - postgresql-8.1.18-2.el5_4.1 • Group: Applications/Databases • Summary: PostgreSQL client programs and libraries. • Description: PostgreSQL is an advanced Object-Relational database management system (DBMS) that supports almost all SQL constructs (including transactions, subselects and user- defined types and functions).
  • Page 432 Appendix A. Package Manifest • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes procps-3.2.7-11.1.el5 - procps-3.2.7-16.el5 • Group: Applications/System • Summary: System and process monitoring utilities. • Description: The procps package contains a set of system utilities that provide system information.
  • Page 433 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes python-virtinst-0.400.3-5.el5 - python-virtinst-0.400.3-9.el5 • Group: Development/Libraries • Summary: Python modules and utilities for installing virtual machines • Description: virtinst is a module that helps build and install libvirt based virtual machines. Currently supports KVM, QEmu and Xen virtual machines.
  • Page 434 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes qperf-0.4.4-3.el5 - qperf-0.4.6-1.el5 • Group: Networking/Diagnostic • Summary: Measure socket and RDMA performance • Description: Measure socket and RDMA performance. • No added dependencies • No removed dependencies •...
  • Page 435 - redhat-artwork-5.0.9-2.el5 • Group: User Interface/Desktops • Summary: Artwork for Red Hat default look-and-feel • Description: redhat-artwork contains the themes and icons that make up the Red Hat default look and feel. • No added dependencies • No removed dependencies...
  • Page 436 • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes redhat-release-5Client-5.4.0.3 - redhat-release-5Client-5.5.0.2 • Group: System Environment/Base • Summary: Red Hat Enterprise Linux release file • Description: Red Hat Enterprise Linux release files • No added dependencies •...
  • Page 437 Updated Packages redhat-release-5Server-5.4.0.3 - redhat-release-5Server-5.5.0.2 • Group: System Environment/Base • Summary: Red Hat Enterprise Linux release file • Description: Red Hat Enterprise Linux release files • No added dependencies • No removed dependencies • No added provides • No removed provides •...
  • Page 438 • Group: Development/Libraries • Summary: Python libraries for the RHN project • Description: rhnlib is a collection of python modules used by the Red Hat Network (http:// rhn.redhat.com) software. • No added dependencies • No removed dependencies • No added provides •...
  • Page 439 Updated Packages • No removed obsoletes rhnsd-4.7.0-4.el5 - rhnsd-4.7.0-5.el5 • Group: System Environment/Base • Summary: Red Hat Network query daemon • Description: The Red Hat Update Agent that automatically queries the Red Hat Network servers and determines which packages need to be updated on your machine, and runs any actions. •...
  • Page 440 Appendix A. Package Manifest output format control. It is quite compatible to stock sysklogd and can be used as a drop-in replacement. Its advanced features make it suitable for enterprise-class, encryption protected syslog relay chains while at the same time being very easy to setup for the novice user. •...
  • Page 441 Updated Packages • Description: Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information (such as lists of available files and printers). The Windows NT, OS/2, and Linux operating systems support this natively, and add-on packages can enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS, and more.
  • Page 442 Appendix A. Package Manifest • No removed conflicts • No added obsoletes • No removed obsoletes screen-4.0.3-1.el5 - screen-4.0.3-1.el5_4.1 • Group: Applications/System • Summary: A screen manager that supports multiple logins on one terminal • Description: The screen utility allows you to have multiple logins on just one terminal. Screen is useful for users who telnet into a machine or are connected via a dumb terminal, but want to use more than just one login.
  • Page 443 Updated Packages • No removed obsoletes selinux-policy-2.4.6-255.el5 - selinux-policy-2.4.6-279.el5 • Group: System Environment/Base • Summary: SELinux policy configuration • Description: SELinux Reference Policy - modular. • Added Dependencies: • checkpolicy >= 1.33.1-5 • Removed Dependencies: • checkpolicy >= 1.30.11-1 • No added provides •...
  • Page 444 Appendix A. Package Manifest shadow-utils-4.0.17-14.el5 - shadow-utils-4.0.17-15.el5 • Group: System Environment/Base • Summary: Utilities for managing accounts and shadow password files. • Description: The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow password format, plus programs for managing user and group accounts.
  • Page 445 Updated Packages squid-2.6.STABLE21-3.el5 - squid-2.6.STABLE21-6.el5 • Group: System Environment/Daemons • Summary: The Squid proxy caching server. • Description: Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process.
  • Page 446 Appendix A. Package Manifest • No removed obsoletes srptools-0.0.4-6.el5 - srptools-0.0.4-8.el5 • Group: System Environment/Base • Summary: Tools for using the InfiniBand SRP protocol devices • Description: In conjunction with the kernel ib_srp driver, srptools allows you to discover and use SCSI devices via the SCSI RDMA Protocol over InfiniBand.
  • Page 447 Updated Packages value. Strace is useful for diagnosing problems and debugging, as well as for instructional purposes. Install strace if you need a tool to track the system calls made and received by a process. • No added dependencies • No removed dependencies •...
  • Page 448 Appendix A. Package Manifest • Description: The sysklogd package contains two system utilities (syslogd and klogd) which provide support for system logging. Syslogd and klogd run as daemons (background processes) and log system messages to different places, like sendmail logs, security logs, error logs, etc. •...
  • Page 449 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes system-config-securitylevel-1.6.29.1-2.1.el5 - system-config-securitylevel-1.6.29.1-5.el5 • Group: System Environment/Base • Summary: A graphical interface for modifying the system security level •...
  • Page 450 Appendix A. Package Manifest systemtap-0.9.7-5.el5 - systemtap-1.1-3.el5 • Group: Development/System • Summary: Instrumentation System • Description: SystemTap is an instrumentation system for systems running Linux 2.6. Developers can write instrumentation to collect data on the operation of the system. • Added Dependencies: •...
  • Page 451 Updated Packages • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes taskjuggler-2.2.0-3 - taskjuggler-2.2.0-5.el5 • Group: Applications/Productivity • Summary: Project management tool • Description: TaskJuggler is a modern and powerful project management tool. Its new approach to project planning and tracking is far superior to the commonly used Gantt chart editing tools.
  • Page 452 Appendix A. Package Manifest • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes tcsh-6.14-14.el5 - tcsh-6.14-17.el5 • Group: System Environment/Shells • Summary: An enhanced version of csh, the C shell. •...
  • Page 453 Updated Packages • No removed obsoletes tog-pegasus-2.7.2-1.el5 - tog-pegasus-2.9.1-2.el5 • Group: Systems Management/Base • Summary: OpenPegasus WBEM Services for Linux • Description: OpenPegasus WBEM Services for Linux enables management solutions that deliver increased control of enterprise resources. WBEM is a platform and resource independent DMTF standard that defines a common information model and communication protocol for monitoring and controlling resources from diverse sources.
  • Page 454 Appendix A. Package Manifest • Description: The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, Util-linux contains the fdisk configuration tool and the login program. • No added dependencies •...
  • Page 455 Updated Packages • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes vino-2.13.5-7.el5 - vino-2.13.5-9.el5 • Group: User Interface/Desktops • Summary: A remote desktop system for GNOME •...
  • Page 456 Appendix A. Package Manifest • No added obsoletes • No removed obsoletes vixie-cron-4.1-76.el5 - vixie-cron-4.1-77.el5_4.1 • Group: System Environment/Base • Summary: The Vixie cron daemon for executing specified programs at set times. • Description: The vixie-cron package contains the Vixie version of cron. Cron is a standard UNIX daemon that runs specified programs at scheduled times.
  • Page 457 Updated Packages • Description: Helper application which emulates persistent input devices for Wacom tablets so they can be plugged and unplugged while X.org server is running. This should go away as soon X.org properly supports hotplugging. • No added dependencies •...
  • Page 458 Appendix A. Package Manifest • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes xen-3.0.3-94.el5 - xen-3.0.3-105.el5 • Group: Development/Libraries •...
  • Page 459 Updated Packages the Xerces Native Interface (XNI), a complete framework for building parser components and configurations that is extremely modular and easy to program. The Apache Xerces2 parser is the reference implementation of XNI but other parser components, configurations, and parsers can be written using the Xerces Native Interface.
  • Page 460 Appendix A. Package Manifest • Description: The purpose of this package is to require all of the individual X.Org driver rpms, to allow the OS installation software to install all drivers all at once, without having to track which individual drivers are present on each architecture. By installing this package, it forces all of the individual driver packages to be installed.
  • Page 461 Updated Packages • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes xorg-x11-drv-fbdev-0.3.0-2 - xorg-x11-drv-fbdev-0.3.0-3 • Group: User Interface/X Hardware Support • Summary: Xorg X11 fbdev video driver • Description: X.Org X11 fbdev video driver. •...
  • Page 462 Appendix A. Package Manifest xorg-x11-drv-mga-1.4.10-5.el5 - xorg-x11-drv-mga-1.4.10-7.el5 • Group: User Interface/X Hardware Support • Summary: Xorg X11 mga video driver • Description: X.Org X11 mga video driver. • No added dependencies • No removed dependencies • No added provides • No removed provides •...
  • Page 463 Updated Packages • No added provides • No removed provides • No added conflicts • No removed conflicts • No added obsoletes • No removed obsoletes xorg-x11-drv-vesa-1.3.0-8.1.el5 - xorg-x11-drv-vesa-1.3.0-8.2.el5 • Group: User Interface/X Hardware Support • Summary: Xorg X11 vesa video driver •...
  • Page 464 Appendix A. Package Manifest • No removed conflicts • No added obsoletes • No removed obsoletes xorg-x11-xdm-1.0.5-6.el5 - xorg-x11-xdm-1.0.5-7.el5 • Group: User Interface/X • Summary: X.Org X11 xdm - X Display Manager • Description: X.Org X11 xdm - X Display Manager •...
  • Page 465 Updated Packages • Summary: XUL Runtime for Gecko Applications • Description: XULRunner provides the XUL Runtime environment for Gecko applications. • Added Dependencies: • nspr-devel >= 4.7.6 • Removed Dependencies: • nspr-devel >= 4.7.0.99.2 • No added provides • No removed provides •...
  • Page 466 Appendix A. Package Manifest as the machine has the NIS client programs running and the user's password is recorded in the NIS passwd database. NIS was formerly known as Sun Yellow Pages (YP). This package's NIS implementation is based on FreeBSD's YP and is a special port for glibc 2.x and libc versions 5.4.21 and later.
  • Page 467 Updated Packages • Description: This yum plugin provides support for yum to access a Red Hat Network server for software updates. • No added dependencies • No removed dependencies • No added provides • No removed provides • No added conflicts •...
  • Page 469: Revision History

    Appendix B. Revision History Revision 1.01 Thu Apr 22 2009 Ryan Lerch rlerch@redhat.com Added new Known Issue for Bug 575799 Revision 1.0 Wed Nov 26 2009 Ryan Lerch rlerch@redhat.com Initial Build of the 5.5 Technical Notes...

This manual is also suitable for:

Enterprise linux 5.5