Red Hat ENTERPRISE LINUX 5.4 - TECHNICAL NOTES User Manual

Red Hat Enterprise

Linux 5.4

Technical Notes

Every Change to Every Package

Technical Notes

Red Hat Enterprise Linux 5.4 Technical Notes Every Change to Every Package Edition 1

Author rhelv5-list@redhat.com

The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version.

Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.

Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, MetaMatrix, Fedora, the Infinity Logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries.

Linux® is the registered trademark of Linus Torvalds in the United States and other countries.

All other trademarks are the property of their respective owners.

1801 Varsity Drive Raleigh, NC 27606-2072 USA Phone: +1 919 754 3700 Phone: 888 733 4281 Fax: +1 919 754 3701 PO Box 13588 Research Triangle Park, NC 27709 USA

The Red Hat Enterprise Linux 5.4 Technical Notes list and document the changes made to the Red Hat Enterprise Linux 5 operating system and its accompanying applications between minor release Red Hat Enterprise Linux 5.3 and minor release Red Hat Enterprise Linux 5.4.

iii

Preface xvii

1. Package Updates 1

1.1. NetworkManager ......................................................................................................... 1

1.1.1. RHSA-2009:0361: Moderate security update ...................................................... 1

1.1.2. RHBA-2009:1389: bug fix update ...................................................................... 1

1.2. OpenIPMI ................................................................................................................... 2

1.2.1. RHEA-2009:1312: bug fix and enhancement update ........................................... 2

1.3. acpid .......................................................................................................................... 4

1.3.1. RHSA-2009:0474: Moderate security update ...................................................... 4

1.3.2. RHBA-2009:1403: bug fix update ...................................................................... 4

1.4. acroread ..................................................................................................................... 5

1.4.1. RHSA-2009:1109: Critical security update .......................................................... 5

1.4.2. RHSA-2009:0478: Critical security update .......................................................... 6

1.4.3. RHSA-2009:0376: Critical security update .......................................................... 6

1.5. aide ............................................................................................................................ 7

1.5.1. RHEA-2009:1073: enhancement update ............................................................ 7

1.6. amanda ...................................................................................................................... 7

1.6.1. RHBA-2009:1300: bug fix update ...................................................................... 7

1.7. anaconda ................................................................................................................... 8

1.7.1. RHBA-2009:1306: bug fix and enhancement update ........................................... 8

1.8. apr ........................................................................................................................... 10

1.8.1. RHSA-2009:1204: Moderate and apr-util security update ................................... 10

1.9. apr-util ...................................................................................................................... 10

1.9.1. RHSA-2009:1107: Moderate security update .................................................... 10

1.10. aspell ...................................................................................................................... 11

1.10.1. RHBA-2009:1070: bug fix update ................................................................... 11

1.11. audit ....................................................................................................................... 12

1.11.1. RHBA-2009:0475: bug fix and enhancement update ....................................... 12

1.11.2. RHBA-2009:0443: bug fix update ................................................................... 12

1.11.3. RHEA-2009:1303: enhancement ..................................................................... 13

1.12. authconfig ............................................................................................................... 14

1.12.1. RHBA-2009:0482: bug fix update ................................................................... 14

1.13. authd ...................................................................................................................... 15

1.13.1. RHBA-2009:0442: bug fix update ................................................................... 15

1.14. autofs ..................................................................................................................... 15

1.14.1. RHBA-2009:1131: bug fix update ................................................................... 15

1.14.2. RHBA-2009:1397: bug fix update .................................................................... 16

1.15. avahi ...................................................................................................................... 18

1.15.1. RHBA-2009:1119: bug fix update ................................................................... 18

1.16. bind ........................................................................................................................ 19

1.16.1. RHSA-2009:1179: Important security update .................................................. 19

1.16.2. RHBA-2009:1137: bug fix update ................................................................... 20

1.16.3. RHBA-2009:1420: bug fix and enhancement update ........................................ 20

1.17. binutils .................................................................................................................... 21

1.17.1. RHBA-2009:0465: bug fix update ................................................................... 21

1.18. busybox .................................................................................................................. 22

1.18.1. RHBA-2009:1249: bug fix update ................................................................... 22

1.19. cman ...................................................................................................................... 23

1.19.1. RHBA-2009:1192: bug fix update ................................................................... 23

1.19.2. RHBA-2009:1103: bug fix update ................................................................... 23

1.19.3. RHBA-2009:0416: bug fix update ................................................................... 23

Technical Notes

1.19.4. RHSA-2009:1341: Low security, bug fix, and enhancement update ................... 24

1.20. cmirror .................................................................................................................... 26

1.20.1. RHEA-2009:1340: bug-fix update ................................................................... 26

1.21. cmirror-kmod ........................................................................................................... 26

1.21.1. RHBA-2009:1367: bug fix update ................................................................... 26

1.22. conga ..................................................................................................................... 27

1.22.1. RHBA-2009:0381: bug fix update ................................................................... 27

1.22.2. RHBA-2009:1381: bug-fix and enhancement update ....................................... 27

1.23. coreutils .................................................................................................................. 28

1.23.1. RHBA-2009:1262: bug fix update ................................................................... 28

1.24. cpio ........................................................................................................................ 29

1.24.1. RHBA-2009:0379: bug fix update ................................................................... 29

1.25. cpuspeed ................................................................................................................ 30

1.25.1. RHBA-2009:0424: bug fix update ................................................................... 30

1.26. crash ...................................................................................................................... 30

1.26.1. RHBA-2009:0049: bug fix update ................................................................... 30

1.26.2. RHBA-2009:1283: bug fix update ................................................................... 31

1.27. cryptsetup-luks ........................................................................................................ 32

1.27.1. RHBA-2009:1349: bug fix update ................................................................... 32

1.28. cscope .................................................................................................................... 32

1.28.1. RHSA-2009:1102: Moderate security update .................................................. 32

1.29. cups ....................................................................................................................... 33

1.29.1. RHBA-2009:1360: bug fix update .................................................................... 33

1.29.2. RHSA-2009:1082: Important security update .................................................. 34

1.29.3. RHSA-2009:0429: Important security update .................................................. 34

1.30. curl ......................................................................................................................... 36

1.30.1. RHSA-2009:1209: Moderate security update .................................................. 36

1.30.2. RHSA-2009:0341: Moderate security update .................................................. 36

1.31. cvs ......................................................................................................................... 37

1.31.1. RHBA-2009:1370: bug fix update ................................................................... 37

1.32. cyrus-imapd ............................................................................................................ 37

1.32.1. RHSA-2009:1116: Important security update .................................................. 37

1.32.2. RHBA-2009:1120: bug fix update ................................................................... 38

1.33. cyrus-sasl ............................................................................................................... 38

1.33.1. RHBA-2009:1330: bug fix update ................................................................... 38

1.34. db4 ......................................................................................................................... 39

1.34.1. RHBA-2009:0390: bug fix update ................................................................... 39

1.35. device-mapper ........................................................................................................ 39

1.35.1. RHBA-2009:1392: bug-fix and enhancement update ....................................... 39

1.36. device-mapper-multipath .......................................................................................... 40

1.36.1. RHBA-2009:0432: bug fix update ................................................................... 40

1.36.2. RHSA-2009:0411: Moderate security update .................................................. 41

1.36.3. RHBA-2009:0283: bug fix update ................................................................... 41

1.36.4. RHEA-2009:1377: bug-fix and enhancement update ....................................... 42

1.37. dhcp ....................................................................................................................... 43

1.37.1. RHBA-2009:1331: bug fix update ................................................................... 43

1.38. dhcpv6 .................................................................................................................... 44

1.38.1. RHBA-2009:1409: bug fix update ................................................................... 44

1.39. dmidecode .............................................................................................................. 44

1.39.1. RHBA-2009:1324: enhancement update ......................................................... 44

1.40. dmraid .................................................................................................................... 45

1.40.1. RHBA-2009:1347: bug-fix and enhancement update ....................................... 45

1.41. dos2unix ................................................................................................................. 46

1.41.1. RHBA-2009:0276: bug fix update ................................................................... 46

1.42. dump ...................................................................................................................... 46

1.42.1. RHBA-2009:0425: bug fix update ................................................................... 46

1.43. dvd+rw-tools ........................................................................................................... 47

1.43.1. RHBA-2009:1072: bug fix update ................................................................... 47

1.44. e2fsprogs ................................................................................................................ 48

1.44.1. RHBA-2009:1291: bug fix and enhancement update ....................................... 48

1.45. e4fsprogs ................................................................................................................. 48

1.45.1. RHBA-2009:1413: bug fix update .................................................................... 48

1.46. ecryptfs-utils ............................................................................................................ 49

1.46.1. RHSA-2009:1307: Low security, bug fix, and enhancement update ................... 49

1.47. efax ........................................................................................................................ 51

1.47.1. RHBA-2009:1113: bug fix update ................................................................... 51

1.48. esc ......................................................................................................................... 51

1.48.1. RHBA-2009:1310: bug fix update ................................................................... 51

1.49. ethtool .................................................................................................................... 52

1.49.1. RHEA-2009:1408: enhancement update ......................................................... 52

1.50. evince ..................................................................................................................... 52

1.50.1. RHBA-2009:1404: bug fix update ................................................................... 52

1.51. evolution ................................................................................................................. 52

1.51.1. RHBA-2009:1260: bug fix update ................................................................... 52

1.52. evolution-connector ................................................................................................. 54

1.52.1. RHBA-2009:1261: bug fix update ................................................................... 54

1.53. evolution-data-server ............................................................................................... 55

1.53.1. RHSA-2009:0354: Moderate security update .................................................. 55

1.53.2. RHBA-2009:1259: bug fix update ................................................................... 55

1.54. file .......................................................................................................................... 57

1.54.1. RHBA-2009:0456: bug fix update ................................................................... 57

1.55. findutils ................................................................................................................... 57

1.55.1. RHEA-2009:1410: enhancement update ......................................................... 57

1.56. fipscheck ................................................................................................................ 57

1.56.1. RHEA-2009:1266: enhancement update ......................................................... 57

1.57. firefox ..................................................................................................................... 58

1.57.1. RHSA-2009:1162: Critical security update ...................................................... 58

1.57.2. RHSA-2009:1095: Critical security update ...................................................... 59

1.57.3. RHSA-2009:0449: Critical security update ...................................................... 60

1.57.4. RHSA-2009:0436: Critical security update ...................................................... 60

1.57.5. RHSA-2009:0397: Critical security update ...................................................... 61

1.57.6. RHSA-2009:0315: Critical security update ...................................................... 62

1.57.7. RHSA-2009:0256: Critical security update ...................................................... 63

1.58. flash-plugin ............................................................................................................. 64

1.58.1. RHSA-2009:1188: Critical security update ...................................................... 64

1.58.2. RHSA-2009:0332: Critical security update ...................................................... 64

1.59. foomatic .................................................................................................................. 65

1.59.1. RHBA-2009:1240: bug fix update ................................................................... 65

1.60. freetype .................................................................................................................. 66

1.60.1. RHSA-2009:1061: Important security update .................................................. 66

1.61. gcc ......................................................................................................................... 66

1.61.1. RHBA-2009:1376: bug fix update ................................................................... 66

Technical Notes

1.62. gcc44 ..................................................................................................................... 67

1.62.1. RHBA-2009:1375: bug fix and enhancement update ....................................... 67

1.63. gdb ......................................................................................................................... 68

1.63.1. RHBA-2009:1361: bug fix update ................................................................... 68

1.64. gdm ........................................................................................................................ 69

1.64.1. RHSA-2009:1364: Low security and bug fix update ......................................... 69

1.65. gfs-kmod ................................................................................................................. 70

1.65.1. RHBA-2009:1212: bug-fix update ................................................................... 70

1.65.2. RHBA-2009:1338: bug-fix update ................................................................... 70

1.66. gfs-utils ................................................................................................................... 71

1.66.1. RHBA-2009:1336: bug fix update ................................................................... 71

1.67. gfs2-utils ................................................................................................................. 71

1.67.1. RHBA-2009:0477: bug fix update ................................................................... 71

1.67.2. RHBA-2009:0418: bug fix update ................................................................... 72

1.67.3. RHBA-2009:0280: bug fix update ................................................................... 72

1.67.4. RHSA-2009:1337: Low security and bug fix update ......................................... 72

1.68. ghostscript .............................................................................................................. 74

1.68.1. RHSA-2009:0421: Moderate security update .................................................. 74

1.68.2. RHSA-2009:0345: Moderate security update .................................................. 74

1.68.3. RHBA-2009:1257: bug fix update ................................................................... 75

1.69. giflib ....................................................................................................................... 76

1.69.1. RHSA-2009:0444: Important security update .................................................. 76

1.70. glib2 ....................................................................................................................... 76

1.70.1. RHSA-2009:0336: Moderate security update .................................................. 76

1.71. glibc ....................................................................................................................... 77

1.71.1. RHBA-2009:1415: bug fix and enhancement update ........................................ 77

1.71.2. RHBA-2009:1202: bug fix update ................................................................... 80

1.72. gnome-python2-desktop ........................................................................................... 80

1.72.1. RHBA-2009:0405: bug fix update ................................................................... 80

1.73. gnome-session ........................................................................................................ 81

1.73.1. RHBA-2009:1079: bug fix update ................................................................... 81

1.74. grep ........................................................................................................................ 81

1.74.1. RHBA-2009:0481: bug fix update ................................................................... 81

1.75. grub ........................................................................................................................ 82

1.75.1. RHBA-2009:1388: bug fix and enhancement update ....................................... 82

1.76. gstreamer-plugins-base ............................................................................................ 82

1.76.1. RHSA-2009:0352: Moderate security update .................................................. 82

1.77. gstreamer-plugins-good ........................................................................................... 83

1.77.1. RHSA-2009:1123: Moderate security update .................................................. 83

1.77.2. RHSA-2009:0271: Important security update .................................................. 83

1.78. gtk-vnc .................................................................................................................... 84

1.78.1. RHBA-2009:1301: bug fix update ................................................................... 84

1.79. hal ........................................................................................................................... 84

1.79.1. RHBA-2009:1359: bug fix and enhancement update ........................................ 84

1.80. htdig ....................................................................................................................... 85

1.80.1. RHBA-2009:0291: bug fix update ................................................................... 85

1.81. httpd ....................................................................................................................... 86

1.81.1. RHSA-2009:1148: Important security update .................................................. 86

1.81.2. RHSA-2009:1075: Moderate security update .................................................. 87

1.81.3. RHBA-2009:1380: bug fix update ................................................................... 87

1.82. hwbrowser .............................................................................................................. 89

vii

1.82.1. RHBA-2009:0277: bug fix update ................................................................... 89

1.83. hwdata .................................................................................................................... 89

1.83.1. RHEA-2009:1348: enhancement update ......................................................... 89

1.84. ia32el ..................................................................................................................... 90

1.84.1. RHBA-2009:1271: bug fix and enhancement update ....................................... 90

1.85. icu .......................................................................................................................... 90

1.85.1. RHSA-2009:1122: Moderate security update .................................................. 90

1.85.2. RHSA-2009:0296: Moderate security update .................................................. 91

1.86. initscripts ................................................................................................................ 91

1.86.1. RHBA-2009:1344: bug fix update .................................................................... 91

1.87. iptables .................................................................................................................... 93

1.87.1. RHBA-2009:1414: bug fix and enhancement update ........................................ 93

1.88. iproute .................................................................................................................... 94

1.88.1. RHBA-2009:0404: bug fix update ................................................................... 94

1.89. iprutils ..................................................................................................................... 94

1.89.1. RHBA-2009:1246: bug fix and enhancement update ....................................... 94

1.90. ipsec-tools .............................................................................................................. 95

1.90.1. RHSA-2009:1036: Important security update .................................................. 95

1.91. iputils ...................................................................................................................... 95

1.91.1. RHBA-2009:1090: bug fix update ................................................................... 95

1.92. ipvsadm .................................................................................................................. 96

1.92.1. RHBA-2009:1398: bug fix update ................................................................... 96

1.93. irqbalance ............................................................................................................... 96

1.93.1. RHBA-2009:1265: bug fix update ................................................................... 96

1.94. iscsi-initiator-utils ..................................................................................................... 97

1.94.1. RHBA-2009:1099: bug fix update ................................................................... 97

1.94.2. RHBA-2009:1368: bug fix update ................................................................... 97

1.95. isdn4k-utils .............................................................................................................. 98

1.95.1. RHBA-2009:1112: bug fix update ................................................................... 98

1.96. iwl3945-firmware ..................................................................................................... 99

1.96.1. RHEA-2009:1253: enhancement update ......................................................... 99

1.97. iwl4965-firmware ..................................................................................................... 99

1.97.1. RHEA-2009:1252: enhancement update ......................................................... 99

1.98. jadetex .................................................................................................................. 100

1.98.1. RHBA-2009:0378: bug fix update ................................................................. 100

1.99. java-1.4.2-ibm ........................................................................................................ 100

1.99.1. RHSA-2009:0445: Critical security update .................................................... 100

1.100. java-1.5.0-ibm ...................................................................................................... 101

1.100.1. RHEA-2009:1208: enhancement update ..................................................... 101

1.100.2. RHSA-2009:1038: Critical security update ................................................... 102

1.101. java-1.5.0-sun ...................................................................................................... 103

1.101.1. RHSA-2009:1199: Critical security update ................................................... 103

1.101.2. RHSA-2009:0394: Critical security update ................................................... 103

1.102. java-1.6.0-ibm ...................................................................................................... 104

1.102.1. RHSA-2009:1198: Critical security update ................................................... 104

1.102.2. RHSA-2009:0369: Critical security update ................................................... 105

1.103. java-1.6.0-openjdk ............................................................................................... 106

1.103.1. RHSA-2009:1201: Important security and bug fix update .............................. 106

1.103.2. RHSA-2009:0377: Important security update ............................................... 107

1.104. java-1.6.0-sun ...................................................................................................... 109

1.104.1. RHSA-2009:1200: Critical security update ................................................... 109

Technical Notes

viii

1.104.2. RHBA-2009:1093: bug fix update ............................................................... 110

1.104.3. RHSA-2009:0392: Critical security update ................................................... 110

1.104.4. RHEA-2009:0284: enhancement update ..................................................... 111

1.105. kdebase .............................................................................................................. 111

1.105.1. RHBA-2009:1277: bug fix update ............................................................... 111

1.106. kdegraphics ......................................................................................................... 112

1.106.1. RHSA-2009:1130: Critical security update ................................................... 112

1.106.2. RHSA-2009:0431: Important security update ............................................... 113

1.107. kdelibs ................................................................................................................ 114

1.107.1. RHSA-2009:1127: Critical security update ................................................... 114

1.108. kdenetwork .......................................................................................................... 114

1.108.1. RHBA-2009:0452: bug fix update ............................................................... 114

1.109. kdepim ................................................................................................................ 115

1.109.1. RHBA-2009:1057: bug fix update ............................................................... 115

1.110. kernel .................................................................................................................. 115

1.110.1. RHSA-2009:1193: Important security and bug fix update .............................. 115

1.110.2. RHBA-2009:1151: bug fix update ............................................................... 117

1.110.3. RHBA-2009:1133: bug fix update ............................................................... 118

1.110.4. RHSA-2009:1106: Important security and bug fix update .............................. 118

1.110.5. RHSA-2009:0473: Important security and bug fix update .............................. 120

1.110.6. RHSA-2009:0326: Important security and bug fix update .............................. 122

1.110.7. RHSA-2009:0264: Important security update ............................................... 123

1.110.8. RHSA-2009:1222: Important security and bug fix update .............................. 125

1.110.9. RHSA-2009:1243 ....................................................................................... 125

1.111. kexec-tools .......................................................................................................... 141

1.111.1. RHBA-2009:0467: bug fix update ............................................................... 141

1.111.2. RHBA-2009:0048: bug fix update ............................................................... 142

1.111.3. RHBA-2009:1258: bug fix and enhancement update .................................... 142

1.112. krb5 .................................................................................................................... 143

1.112.1. RHSA-2009:0408: Important security update ............................................... 143

1.112.2. RHBA-2009:1378: bug fix and enhancement update .................................... 144

1.113. ksh ..................................................................................................................... 145

1.113.1. RHBA-2009:1165: bug fix update ............................................................... 145

1.113.2. RHBA-2009:1256: bug fix update ............................................................... 145

1.114. lcms .................................................................................................................... 146

1.114.1. RHSA-2009:0339: Moderate security update ............................................... 146

1.115. less ..................................................................................................................... 147

1.115.1. RHBA-2009:0413: bug fix update ............................................................... 147

1.116. lftp ...................................................................................................................... 147

1.116.1. RHSA-2009:1278: Low security and bug fix update ..................................... 147

1.117. libX11 ................................................................................................................. 149

1.117.1. RHEA-2009:1332: enhancement update ..................................................... 149

1.118. libdhcp ................................................................................................................ 149

1.118.1. RHBA-2009:1333: bug fix update ............................................................... 149

1.119. libgcrypt .............................................................................................................. 150

1.119.1. RHEA-2009:1264: enhancement update ..................................................... 150

1.120. libpng .................................................................................................................. 150

1.120.1. RHSA-2009:0333: Moderate security update ............................................... 150

1.121. libsemanage ........................................................................................................ 151

1.121.1. RHBA-2009:1298: bug fix update ............................................................... 151

1.122. libsepol ............................................................................................................... 151

1.122.1. RHBA-2009:1273: bug fix update ............................................................... 151

1.123. libsoup ................................................................................................................ 152

1.123.1. RHSA-2009:0344: Moderate security update ............................................... 152

1.124. libspe2 ................................................................................................................ 152

1.124.1. RHBA-2009:1263: bug fix and enhancement update .................................... 152

1.125. libtiff .................................................................................................................... 153

1.125.1. RHSA-2009:1159: Moderate security update ............................................... 153

1.126. libunwind ............................................................................................................. 154

1.126.1. RHBA-2009:0464: bug fix update ............................................................... 154

1.127. libvirt ................................................................................................................... 154

1.127.1. RHSA-2009:0382: Moderate security update ............................................... 154

1.127.2. RHEA-2009:1269: bug fix and enhancement update .................................... 155

1.128. libvirt-cim ............................................................................................................. 156

1.128.1. RHEA-2009:1270: bug fix and enhancement update .................................... 156

1.129. libvorbis .............................................................................................................. 157

1.129.1. RHSA-2009:1219: Important security update ............................................... 157

1.130. libwmf ................................................................................................................. 158

1.130.1. RHSA-2009:0457: Moderate security update ............................................... 158

1.131. libxml .................................................................................................................. 158

1.131.1. RHSA-2009:1206: Moderate and libxml2 security update ............................. 158

1.132. linuxwacom ......................................................................................................... 159

1.132.1. RHEA-2009:1384: enhancement update ..................................................... 159

1.133. lksctp-tools .......................................................................................................... 159

1.133.1. RHBA-2009:0412: bug fix update ............................................................... 159

1.134. ltrace .................................................................................................................. 160

1.134.1. RHBA-2009:0380: bug fix update ............................................................... 160

1.135. lvm2 .................................................................................................................... 161

1.135.1. RHBA-2009:1393: bug-fix and enhancement update .................................... 161

1.136. lvm2-cluster ......................................................................................................... 163

1.136.1. RHBA-2009:1394: bug-fix and enhancement update .................................... 163

1.137. m2crypto ............................................................................................................. 163

1.137.1. RHBA-2009:1351: bug fix update ............................................................... 163

1.138. man-pages-ja ...................................................................................................... 164

1.138.1. RHBA-2009:0483: bug fix update ............................................................... 164

1.139. mcelog ................................................................................................................ 165

1.139.1. RHBA-2009:1374: bug fix and enhancement update .................................... 165

1.140. mdadm ................................................................................................................ 165

1.140.1. RHBA-2009:1382: bug fix and enhancement update .................................... 165

1.141. microcode_ctl ...................................................................................................... 166

1.141.1. RHEA-2009:1363: enhancement update ..................................................... 166

1.142. mkinitrd ............................................................................................................... 167

1.142.1. RHBA-2009:1088: bug fix update ............................................................... 167

1.142.2. RHBA-2009:1345: bug fix and enhancement update .................................... 167

1.143. mlocate ............................................................................................................... 167

1.143.1. RHBA-2009:1251: bug fix update ............................................................... 167

1.144. mod_auth_mysql ................................................................................................. 168

1.144.1. RHSA-2009:0259: Moderate security update ............................................... 168

1.145. mod_authz_ldap .................................................................................................. 169

1.145.1. RHBA-2009:0305: bug fix update ............................................................... 169

1.146. mod_nss ............................................................................................................. 169

1.146.1. RHEA-2009:0403: enhancement update ..................................................... 169

Technical Notes

1.146.2. RHBA-2009:1365: bug fix update ............................................................... 169

1.147. module-init-tools .................................................................................................. 170

1.147.1. RHBA-2009:1362: bug fix update ............................................................... 170

1.148. mysql .................................................................................................................. 171

1.148.1. RHSA-2009:1289: Moderate security and bug fix update .............................. 171

1.149. mysql-connector-odbc .......................................................................................... 173

1.149.1. RHBA-2009:1290: bug fix update ............................................................... 173

1.150. nautilus-sendto .................................................................................................... 173

1.150.1. RHBA-2008:0916: bug fix and enhancement update .................................... 173

1.151. net-snmp ............................................................................................................. 174

1.151.1. RHBA-2009:1215: bug fix update ............................................................... 174

1.151.2. RHBA-2009:1069: bug fix update ............................................................... 174

1.151.3. RHBA-2009:1372: enhancement and bug fix update .................................... 175

1.152. netpbm ................................................................................................................ 176

1.152.1. RHSA-2009:0012: Moderate security update ............................................... 176

1.152.2. RHBA-2009:1268: bug fix update ............................................................... 176

1.153. nfs-utils ............................................................................................................... 177

1.153.1. RHSA-2009:1321: Low security and bug fix update ..................................... 177

1.154. nfs-utils-lib ........................................................................................................... 178

1.154.1. RHBA-2009:1250: bug fix update ............................................................... 178

1.155. nfs4-acl-tools ....................................................................................................... 178

1.155.1. RHEA-2009:1407: enhancement update ..................................................... 178

1.156. nspr and nss ....................................................................................................... 179

1.156.1. RHSA-2009:1186: Critical security, bug fix, and enhancement update ........... 179

1.156.2. RHBA-2009:1161: bug fix and enhancement update .................................... 180

1.157. nss_ldap ............................................................................................................. 181

1.157.1. RHBA-2009:1379: bug fix update ............................................................... 181

1.158. ntp ...................................................................................................................... 182

1.158.1. RHSA-2009:1039: Important security update ............................................... 182

1.158.2. RHSA-2009:0046: Moderate security update ............................................... 182

1.159. numactl ............................................................................................................... 183

1.159.1. RHBA-2009:0389: bug fix update ............................................................... 183

1.160. openais ............................................................................................................... 183

1.160.1. RHBA-2009:1191: bug-fix update ............................................................... 183

1.160.2. RHBA-2009:1104: bug-fix update ............................................................... 184

1.160.3. RHBA-2009:0417: bug fix update ............................................................... 184

1.160.4. RHBA-2009:1366: bug-fix and enhancement update .................................... 185

1.161. openhpi ............................................................................................................... 186

1.161.1. RHEA-2009:1279: enhancement update ..................................................... 186

1.162. openib ................................................................................................................. 188

1.162.1. RHBA-2009:1304: bug fix update ............................................................... 188

1.163. openoffice.org ...................................................................................................... 189

1.163.1. RHBA-2009:1248: bug fix update ............................................................... 189

1.164. openssh .............................................................................................................. 191

1.164.1. RHSA-2009:1287: Low security, bug fix, and enhancement update ............... 191

1.165. openssl ............................................................................................................... 192

1.165.1. RHSA-2009:1335: Moderate security, bug fix, and enhancement update ....... 192

1.166. openswan ............................................................................................................ 193

1.166.1. RHSA-2009:1138: Important security update ............................................... 193

1.166.2. RHSA-2009:0402: Important security update ............................................... 194

1.166.3. RHEA-2009:1350: bug fix update ............................................................... 194

1.167. oprofile ................................................................................................................ 196

1.167.1. RHBA-2009:1322: bug fix and enhancement update .................................... 196

1.168. pam .................................................................................................................... 196

1.168.1. RHBA-2009:1358: bug fix and enhancement update .................................... 196

1.169. pango ................................................................................................................. 198

1.169.1. RHSA-2009:0476: Important security update ............................................... 198

1.169.2. RHBA-2009:1395: bug fix update ............................................................... 198

1.170. pciutils ................................................................................................................ 199

1.170.1. RHBA-2009:1110: bug fix update ............................................................... 199

1.171. perl ..................................................................................................................... 199

1.171.1. RHBA-2009:0406: bug fix update ............................................................... 199

1.171.2. RHBA-2009:1244: bug fix and enhancement update .................................... 199

1.172. perl-DBD-Pg ........................................................................................................ 200

1.172.1. RHSA-2009:0479: Moderate security update ............................................... 200

1.173. php ..................................................................................................................... 201

1.173.1. RHSA-2009:0338: Moderate security update ............................................... 201

1.174. php-pear ............................................................................................................. 202

1.174.1. RHBA-2009:1071: bug fix update ............................................................... 202

1.175. pidgin .................................................................................................................. 203

1.175.1. RHSA-2009:1218: Critical security update ................................................... 203

1.175.2. RHSA-2009:1139: Moderate security and bug fix update .............................. 203

1.175.3. RHBA-2009:0407: bug fix update ............................................................... 204

1.176. piranha ................................................................................................................ 205

1.176.1. RHBA-2009:1396: bug-fix update ............................................................... 205

1.177. policycoreutils ...................................................................................................... 206

1.177.1. RHBA-2009:1292: bug fix update ............................................................... 206

1.178. poppler ................................................................................................................ 206

1.178.1. RHSA-2009:0480: Important security update ............................................... 206

1.179. ppc64-utils ........................................................................................................... 207

1.179.1. RHEA-2009:1247: enhancement update ..................................................... 207

1.180. psmisc ................................................................................................................ 208

1.180.1. RHBA-2009:0439: bug fix update ............................................................... 208

1.181. pykickstart ........................................................................................................... 208

1.181.1. RHBA-2009:1387: bug fix update ............................................................... 208

1.182. pyorbit ................................................................................................................. 209

1.182.1. RHBA-2009:1056: bug fix update ............................................................... 209

1.183. python ................................................................................................................. 209

1.183.1. RHSA-2009:1176: Moderate security update ............................................... 209

1.183.2. RHBA-2009:1402: bug fix update ............................................................... 210

1.184. python-pyblock .................................................................................................... 211

1.184.1. RHBA-2009:1319: bug fix update ............................................................... 211

1.185. python-virtinst ...................................................................................................... 211

1.185.1. RHBA-2009:1412:bug fix and enhancement update ..................................... 211

1.186. resktop ................................................................................................................. 212

1.186.1. RHEA-2009:1417: bug fix and enhancement update ..................................... 212

1.187. readline ............................................................................................................... 213

1.187.1. RHBA-2009:1078: bug fix update ............................................................... 213

1.188. redhat-release ..................................................................................................... 213

1.188.1. RHEA-2009:1400: bug fix and enhancement update .................................... 213

1.189. redhat-release-notes ............................................................................................ 214

1.189.1. RHEA-2009:1385: enhancement update ..................................................... 214

Technical Notes

xii

1.190. redhat-rpm-config ................................................................................................. 214

1.190.1. RHBA-2009:1089: bug fix update ............................................................... 214

1.191. rgmanager ........................................................................................................... 214

1.191.1. RHBA-2009:1196: bug-fix update ............................................................... 214

1.191.2. RHBA-2009:0415: bug fix update ............................................................... 215

1.191.3. RHSA-2009:1339: Low security, bug fix, and enhancement update ............... 215

1.192. rhn-client-tools ..................................................................................................... 217

1.192.1. RHBA-2009:1354: bug fix and enhancement update .................................... 217

1.193. rhnlib .................................................................................................................. 218

1.193.1. RHBA-2009:1353: bug fix and enhancement update .................................... 218

1.194. rhnsd .................................................................................................................. 219

1.194.1. RHBA-2009:1356: bug fix update ............................................................... 219

1.195. rpm ..................................................................................................................... 219

1.195.1. RHBA-2009:1371: bug fix update ............................................................... 219

1.196. rsh ...................................................................................................................... 220

1.196.1. RHBA-2009:0423: bug fix update ............................................................... 220

1.197. rt61pci-firmware ................................................................................................... 221

1.197.1. RHEA-2009:1255: enhancement update ..................................................... 221

1.198. rt73usb-firmware .................................................................................................. 221

1.198.1. RHEA-2009:1254: enhancement update ..................................................... 221

1.199. ruby .................................................................................................................... 221

1.199.1. RHSA-2009:1140: Moderate security update ............................................... 221

1.200. s390utils .............................................................................................................. 222

1.200.1. RHBA-2009:1311: bug fix and enhancement update .................................... 222

1.201. samba ................................................................................................................. 223

1.201.1. RHBA-2009:1150: bug fix update ............................................................... 223

1.201.2. RHBA-2009:1416: bug fix update ................................................................ 223

1.202. sblim ................................................................................................................... 224

1.202.1. RHBA-2009:1267: bug fix update ............................................................... 224

1.203. scim-bridge .......................................................................................................... 225

1.203.1. RHBA-2009:0426: bug fix update ............................................................... 225

1.204. selinux-policy ....................................................................................................... 225

1.204.1. RHBA-2009:1242 ....................................................................................... 225

1.205. setroubleshoot ..................................................................................................... 227

1.205.1. RHBA-2009:1080: bug fix update ............................................................... 227

1.206. setup .................................................................................................................. 228

1.206.1. RHBA-2009:0484: bug fix and enhancement update .................................... 228

1.207. sg3_utils .............................................................................................................. 229

1.207.1. RHBA-2009:1357: bug fix and enhancement update .................................... 229

1.208. sos ..................................................................................................................... 230

1.208.1. RHBA-2009:0461: bug fix and enhancement update .................................... 230

1.208.2. RHBA-2009:1418: bugfix and enhancement update ...................................... 231

1.209. sqlite ................................................................................................................... 234

1.209.1. RHBA-2009:0441: bug fix update ............................................................... 234

1.210. squirrelmail .......................................................................................................... 234

1.210.1. RHSA-2009:1066: Important security update ............................................... 234

1.211. strace .................................................................................................................. 235

1.211.1. RHBA-2009:0309: bug fix update ............................................................... 235

1.211.2. RHBA-2009:0017: bug fix update ............................................................... 236

1.211.3. RHBA-2009:1317: bug fix update ............................................................... 236

1.212. subversion ........................................................................................................... 237

xiii

1.212.1. RHSA-2009:1203: Important security update ............................................... 237

1.213. sudo ................................................................................................................... 237

1.213.1. RHSA-2009:0267: Moderate security update ............................................... 237

1.213.2. RHBA-2009:0438: bug fix update ............................................................... 238

1.214. system-config-cluster ........................................................................................... 238

1.214.1. RHBA-2009:1401: bug-fix and enhancement update .................................... 238

1.215. system-config-date ............................................................................................... 239

1.215.1. RHBA-2009:0279: bug fix update ............................................................... 239

1.216. system-config-language ........................................................................................ 239

1.216.1. RHBA-2009:1074: bug fix update ............................................................... 239

1.217. system-config-network .......................................................................................... 240

1.217.1. RHBA-2009:1352: bug fix and enhancement update .................................... 240

1.218. system-config-samba ........................................................................................... 240

1.218.1. RHBA-2009:1329: bug fix update ............................................................... 240

1.219. systemtap ............................................................................................................ 241

1.219.1. RHSA-2009:0373: Moderate security update ............................................... 241

1.219.2. RHBA-2009:1313: bug fix and enhancement update ..................................... 242

1.220. tcl ....................................................................................................................... 243

1.220.1. RHBA-2009:0414: bug fix update ............................................................... 243

1.221. tcp_wrappers ....................................................................................................... 244

1.221.1. RHBA-2009:0453: bug fix update ............................................................... 244

1.222. tetex ................................................................................................................... 244

1.222.1. RHBA-2009:1118: bug fix update ............................................................... 244

1.223. tftp ...................................................................................................................... 245

1.223.1. RHEA-2009:1274: enhancement update ..................................................... 245

1.224. thunderbird .......................................................................................................... 245

1.224.1. RHSA-2009:1126: Moderate security update ............................................... 245

1.224.2. RHSA-2009:0258: Moderate security update ............................................... 246

1.225. tog-pegasus ........................................................................................................ 247

1.225.1. RHBA-2009:1286: bug fix and enhancement update .................................... 247

1.226. tomcat ................................................................................................................. 248

1.226.1. RHSA-2009:1164: Important security update ............................................... 248

1.227. totem .................................................................................................................. 249

1.227.1. RHBA-2009:1288: bug fix update ............................................................... 249

1.228. tzdata .................................................................................................................. 249

1.228.1. RHEA-2009:1214: enhancement update ..................................................... 249

1.228.2. RHEA-2009:1105: enhancement update ..................................................... 250

1.228.3. RHEA-2009:0422: enhancement update ..................................................... 250

1.229. udev ................................................................................................................... 251

1.229.1. RHSA-2009:0427: Important security update ............................................... 251

1.229.2. RHBA-2009:1346: bug fix and enhancement update .................................... 251

1.230. unix2dos ............................................................................................................. 252

1.230.1. RHBA-2009:0294: bug fix update ............................................................... 252

1.231. util-linux .............................................................................................................. 252

1.231.1. RHBA-2009:1405: bug fix update ............................................................... 252

1.232. vim ..................................................................................................................... 253

1.232.1. RHBA-2009:1117: bug fix update ............................................................... 253

1.233. vino .................................................................................................................... 253

1.233.1. RHEA-2009:1121: enhancement update ..................................................... 253

1.234. virt-manager ........................................................................................................ 254

1.234.1. RHBA-2009:1285: enhancement and bug fix update .................................... 254

Technical Notes

xiv

1.235. virt-viewer ............................................................................................................ 255

1.235.1. RHBA-2009:1299: bug fix update ............................................................... 255

1.236. vnc ..................................................................................................................... 256

1.236.1. RHSA-2009:0261: Moderate security update ............................................... 256

1.237. vsftpd .................................................................................................................. 256

1.237.1. RHBA-2009:1068: bug fix update ............................................................... 256

1.237.2. RHBA-2009:1282: bug fix update ............................................................... 257

1.238. watchdog ............................................................................................................ 258

1.238.1. RHEA-2009:1327: enhancement update ..................................................... 258

1.239. wdaemon ............................................................................................................ 258

1.239.1. RHBA-2009:1111: bug fix update ............................................................... 258

1.240. wget .................................................................................................................... 259

1.240.1. RHBA-2009:1280: bug fix update ............................................................... 259

1.241. wireshark ............................................................................................................ 259

1.241.1. RHSA-2009:1100: Moderate security update ............................................... 259

1.241.2. RHSA-2009:0313: Moderate security update ............................................... 260

1.242. xen ..................................................................................................................... 261

1.242.1. RHBA-2009:1092: bug fix update ............................................................... 261

1.242.2. RHBA-2009:0401: bug fix update ............................................................... 261

1.242.3. RHBA-2009:1328: bug fix and enhancement update .................................... 262

1.243. xkeyboard-config ................................................................................................. 264

1.243.1. RHEA-2009:1369: bug fix and enhancement update .................................... 264

1.244. xorg-x11-drv-ati ..................................................................................................... 264

1.244.1. RHBA-2009:1343: bug fix and enhancement update ..................................... 264

1.245. xorg-x11-drv-i810 ................................................................................................. 265

1.245.1. RHBA-2009:1391: bug fix and enhancement update .................................... 265

1.246. xorg-x11-drv-mga ................................................................................................. 266

1.246.1. RHBA-2009:1390: bug fix update ............................................................... 266

1.247. xorg-x11-drv-nv ................................................................................................... 267

1.247.1. RHEA-2009:1342: enhancement update ..................................................... 267

1.248. xorg-x11-proto-devel ............................................................................................ 267

1.248.1. RHEA-2009:1411: enhancement update ..................................................... 267

1.249. xorg-x11-server ..................................................................................................... 267

1.249.1. RHBA-2009:1373: bug fix and enhancement update ..................................... 267

1.250. yaboot ................................................................................................................. 268

1.250.1. RHBA-2009:1386: bug fix and enhancement update .................................... 268

1.251. ypbind ................................................................................................................. 269

1.251.1. RHBA-2009:0462: bug fix update ............................................................... 269

1.252. yum .................................................................................................................... 269

1.252.1. RHBA-2009:1142: bug fix update ............................................................... 269

1.252.2. RHBA-2009:1419: bug fix update ................................................................ 269

1.253. yum-metadata-parser ........................................................................................... 272

1.253.1. RHBA-2009:0440: bug fix update ............................................................... 272

1.254. yum-rhn-plugin ..................................................................................................... 273

1.254.1. RHBA-2009:1355: bug fix and enhancement update .................................... 273

1.255. zsh ..................................................................................................................... 274

1.255.1. RHBA-2009:0463: bug fix update ............................................................... 274

2. New Packages 275

2.1. RHEA-2009:1284: blktrace ....................................................................................... 275

2.2. RHEA-2009:1325: celt051 ........................................................................................ 275

2.3. RHEA-2009:1383: ctdb ............................................................................................ 275

2.4. RHEA-2009:1276: etherboot .................................................................................... 275

2.5. RHEA-2009:1318: fcoe-utils ..................................................................................... 276

2.6. RHEA-2009:1320: fuse ............................................................................................ 276

2.7. RHEA-2009:1297: gnupg2 ....................................................................................... 277

2.8. RHEA-2009:1281: hmaccalc .................................................................................... 277

2.9. RHEA-2009:1275: iasl ............................................................................................. 277

2.10. RHEA-2009:1272: kvm .......................................................................................... 277

2.11. RHEA-2009:1296: libassuan ................................................................................... 278

2.12. RHEA-2009:1314: libhbaapi ................................................................................... 278

2.13. RHEA-2009:1316: libhbalinux ................................................................................. 278

2.14. RHEA-2009:1295: libksba ...................................................................................... 279

2.15. RHEA-2009:1315: libpciaccess ............................................................................... 279

2.16. RHEA-2009:1326: log4cpp ..................................................................................... 279

2.17. RHEA-2009:1245: pdksh ........................................................................................ 279

2.18. RHEA-2009:1302: perl-Sys-Virt .............................................................................. 280

2.19. RHEA-2009:1293: pinentry ..................................................................................... 280

2.20. RHEA-2009:1294: pth ............................................................................................ 280

2.21. RHEA-2009:1309: qcairo ........................................................................................ 281

2.22. RHBA-2009:1323: qffmpeg ..................................................................................... 281

2.23. RHEA-2009:1305: qpixman .................................................................................... 281

2.24. RHEA-2009:1334: qspice ....................................................................................... 282

2.25. RHEA-2009:1399: samba3x ................................................................................... 282

2.26. RHEA-2009:1308: xorg-x11-drv-qxl ......................................................................... 282

2.27. RHEA-2009:1406: xorg-x11-xdm ............................................................................ 282

3. Technology Previews 283

4. Known Issues 289

4.1. anaconda ................................................................................................................. 289

4.2. cmirror ..................................................................................................................... 291

4.3. compiz ..................................................................................................................... 291

4.4. device-mapper-multipath ........................................................................................... 291

4.5. dmraid ..................................................................................................................... 292

4.6. dogtail ...................................................................................................................... 294

4.7. firstboot .................................................................................................................... 294

4.8. gfs2-utils .................................................................................................................. 294

4.9. gnome-volume-manager ............................................................................................ 295

4.10. initscripts ................................................................................................................ 295

4.11. iscsi-initiator-utils ..................................................................................................... 295

4.12. kernel-xen .............................................................................................................. 296

4.13. kernel ..................................................................................................................... 298

4.14. kexec-tools ............................................................................................................. 302

4.15. krb5 ....................................................................................................................... 303

4.16. kvm ........................................................................................................................ 303

4.17. less ........................................................................................................................ 306

4.18. libvirt-cim ................................................................................................................ 306

4.19. libvirt ...................................................................................................................... 307

4.20. lvm2 ....................................................................................................................... 307

4.21. mesa ...................................................................................................................... 307

4.22. mkinitrd .................................................................................................................. 307

4.23. openib .................................................................................................................... 308

4.24. openmpi ................................................................................................................. 308

Technical Notes

xvi

4.25. pdksh ..................................................................................................................... 309

4.26. qspice .................................................................................................................... 309

4.27. rsyslog ................................................................................................................... 309

4.28. sblim ...................................................................................................................... 310

4.29. selinux-policy .......................................................................................................... 310

4.30. systemtap ............................................................................................................... 311

4.31. udev ....................................................................................................................... 312

4.32. virt-manager ........................................................................................................... 312

4.33. virtio-win ................................................................................................................. 312

4.34. xen ........................................................................................................................ 312

4.35. xorg-x11-drv-i810 .................................................................................................... 313

4.36. xorg-x11-drv-nv ....................................................................................................... 313

4.37. xorg-x11-drv-vesa ................................................................................................... 314

A. Package Manifest 315

A.1. Added Packages ..................................................................................................... 315

A.2. Dropped Packages .................................................................................................. 319

A.3. Updated Packages .................................................................................................. 319

B. Revision History 447

xvii

Preface

For system administrators and others planning Red Hat Enterprise Linux 5.4 upgrades and deployments, the Technical Notes provide a single, organized record of the bugs fixed in, features added to, and Technology Previews included with this new release of Red Hat Enterprise Linux.

For auditors and compliance officers, the Red Hat Enterprise Linux 5.4 Technical Notes provide a single, organized source for change tracking and compliance testing.

For every user, the Red Hat Enterprise Linux 5.4 Technical Notes provide details of what has changed in this new release.

The Technical Notes also include, as an Appendix, the Red Hat Enterprise Linux Package Manifest: a listing of every changed package in this release.

xviii

Chapter 1.

Package Updates

1.1. NetworkManager

1.1.1. RHSA-2009:0361: Moderate security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:0361

Updated NetworkManager packages that fix two security issues are now available for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

NetworkManager is a network link manager that attempts to keep a wired or wireless network connection active at all times.

An information disclosure flaw was found in NetworkManager's D-Bus interface. A local attacker could leverage this flaw to discover sensitive information, such as network connection passwords and preshared keys. (CVE-2009-03652)

A potential denial of service flaw was found in NetworkManager's D-Bus interface. A local user could leverage this flaw to modify local connection settings, preventing the system's network connection from functioning properly. (CVE-2009-05783)

Red Hat would like to thank Ludwig Nussel for reporting these flaws responsibly.

Users of NetworkManager should upgrade to these updated packages which contain backported patches to correct these issues.

1.1.2. RHBA-2009:1389: bug fix update

Updated NetworkManager packages that fix several bugs are now available.

NetworkManager is a network link manager that attempts to keep a wired or wireless network connection active at all times.

These updated NetworkManager packages provide the following fixes:

• NetworkManager allowed users to create completely insecure ad-hoc wireless networks and indeed, the default security setting for wifi sharing was "none". Because of this default setting and because NetworkManager did not warn users of the potential security risks, users could unwittingly compromise the security of their computers. Now, NetworkManager uses "WEP Passphrase" as the default security option for creating a new wifi network, and allows administrators to disable users'

https://www.redhat.com/security/data/cve/CVE-2009-0365.html

https://www.redhat.com/security/data/cve/CVE-2009-0578.html

Chapter 1. Package Updates

ability to share wifi connections without security in place, or their ability to share wifi connections at all. These measures make it less likely that a user could inadvertently compromise a sensitive system. (BZ#4962474)

• accessing the context (right-click) menu of the NetworkManager GNOME applet could trigger the GNOME Keyring Unlock dialog to appear, after which no X11 applications could receive keyboard or mouse events. Now, NetworkManager closes the context menu before requesting keyring items, and therefore avoids this situation. (BZ#4760205)

• NetworkManager did not export VPN configurations. When a user selected this function, NetworkManager would present an error message: "VPN setting invalid", even for a connection with valid settings. Network manager now exports VPN connections correctly. (BZ#4853456)

• due to faulty logic in the code, nm-applet would choose the lowest signal strength of all APs of the same SSID in the area and display this strength in the menu to represent the signal strength for that SSID. NetworkManager now correctly calculates wireless signal strength when multiple access points with the same SSID are present. (BZ#4854777)

• when NetworkManager fails to connect to a wifi network, it re-prompts the user for the passphrase for that network. Previously, NetworkManager did not retain the original text of the passphrase entered by the user. Therefore, when users selected the "Show password" option so that they could see what they had typed after a failed connection attempt, NetworkManager displayed the passphrase in hexadecimal form. NetworkManager now retains the original text of the passphrase and displays the original passphrase instead of a hexadecimal string when the user selects the "Show password" option. (BZ#4665098)

• NetworkManager has its own internal method of starting loopback devices, and does not use the configuration settings stored in /etc/sysconfig/network-scripts/ifcfg-lo. Previously, NetworkManager would produce an error, alerting users that the configuration settings were ignored. This error message could mislead users to think that a problem had occurred. Now, NetworkManager does not present this error message to the user, and avoids the potential confusion. (BZ#4840609)

• the NetworkManager package requires wpa_supplicant, but previously omitted the Epoch term for the wpa_supplicant package. Consequently, installing NetworkManager did not ensure that a suitable version of wpa_supplicant was installed on the system. Now, the NetworkManager package specifies the epoch for the version of wpa_supplicant that it requires. (BZ#46868810)

• NetworkManager displayed configuration options for VPN even when no VPN software was installed on the system. This could mislead users to think that they could make VPN connections in situations when it was not possible to make these connections. Now, the VPN submenu is hidden if no VPN services are installed on the system, avoiding the potential confusion. (BZ#46460411)

Users are advised to upgrade to these updated NetworkManager packages, which provide these fixes.

1.2. OpenIPMI

1.2.1. RHEA-2009:1312: bug fix and enhancement update

Updated OpenIPMI packages that fix several bugs and add various enhancements are now available.

OpenIPMI (Intelligent Platform Management Interface) provides graphical and command line tools and utilities to access platform information, thus facilitating system management and monitoring for system administrators.

RHEA-2009:1312: bug fix and enhancement update

These updated packages upgrade OpenIPMI to upstream version 2.0.16 and ipmitool to version

1.8.11. (BZ#47554212)

These updated OpenIPMI packages provide fixes for the following bugs:

• some IPMI-enabled hardware makes use of UDP ports 623 (ASF Remote Management and Control Protocol) and 664 (ASF Secure Remote Management and Control Protocol), which corrupts other traffic on these ports, causing symptoms such as autofs mounts hanging. The OpenIPMI package provides a configuration file for xinetd that prevents other services from using these ports, so that they do not interfere with IPMI. On affected systems, the fix has to be enabled manually by setting "disabled = no" for the appropriate port(s) in /etc/xinetd.d/rmcp and (re)starting the xinetd service. (BZ#42932913)

• on the S/390 architecture, running "ipmicmd" to access the internal hash table of open connections caused the utility to segmentation fault. With this update, "ipmicmd" correctly handles the hash table and thus no longer crashes. (BZ#437013 14)

• the "rmcp_ping" utility did not perform checks on the arguments provided to it on the command line, and would accept invalid port numbers and/or start tags. (BZ#43725615)

• the ipmitool utility is shipped in the OpenIPMI-tools packages, and it was not possible to have other packages depend on "ipmitool" directly. These updated packages explicitly provide the "ipmitool" feature so that other packages are now able to reference it. (BZ#44278416)

• several libraries in the OpenIPMI packages contained unnecessary RPATH values, which have not been compiled in to these updated packages. (BZ#46611917)

• the OpenIPMI-devel packages contained manual pages which were already provided by the OpenIPMI packages and have therefore been removed from the OpenIPMI-devel packages. (BZ#46648718)

• the ipmievd daemon listens for events sent by the BMC to the SEL and logs those events to syslog. Previously, the OpenIPMI-tools package did not contain the init script for the "ipmievd" service. This init script is included in these updated packages. (BZ#46997919)

• previously, it was not possible to query "ipmitool" to determine whether SOL payloads were enabled or disabled for specific users. These updated packages introduce a new "ipmitool sol payload status" query that implements the "Gets User Payload Access Command" from the IPMI specification, thus allowing users' SOL payload access privileges to be queried. (BZ#47003120)

• the "ipmitool sel list" command displayed event IDs as hexadecimal numbers. However, it was not possible to then provide these values as parameters to other "ipmitool sel" commands. These packages include an updated ipmitool whose various "ipmitool sel" commands accept both decimal and hexadecimal ID values as parameters. (BZ#47080521)

• it was not possible to specify a Kg key with non-printable characters on the ipmitool command line. With this update, a Kg key can now be specified as a hexadecimal value using the '-y' command line option. (BZ#47925222)

• the "sensor list" section of the ipmitool(1) man page now describes each columnar value of the command "ipmitool sensors list". (BZ#47970223)

In addition, these updated packages provide the following enhancements:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=475542

Chapter 1. Package Updates

• new in this OpenIPMI 2.0.16 release is the OpenIPMI-gui package, which contains a GUI that provides a tree-structured view of the IPMI domains it is connected to. (BZ#50478324)

• the "ipmitool sol set" command now checks the values of arguments provided on the command line. (BZ#31123125)

• the ipmitool(1) man page has been updated to include descriptions for these commands: spd, picmg, hpm, firewall, fwum and kontronoem. (BZ#43853926)

Users are advised to upgrade to these updated OpenIPMI packages, which resolve these issues and add these enhancements.

1.3. acpid

1.3.1. RHSA-2009:0474: Moderate security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:0474

An updated acpid package that fixes one security issue is now available for Red Hat Enterprise Linux

2.1, 3, 4, and 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

acpid is a daemon that dispatches ACPI (Advanced Configuration and Power Interface) events to user-space programs.

Anthony de Almeida Lopes of Outpost24 AB reported a denial of service flaw in the acpid daemon's error handling. If an attacker could exhaust the sockets open to acpid, the daemon would enter an infinite loop, consuming most CPU resources and preventing acpid from communicating with legitimate processes. (CVE-2009-079828)

Users are advised to upgrade to this updated package, which contains a backported patch to correct this issue.

1.3.2. RHBA-2009:1403: bug fix update

An updated acpid package that fixes a bug is now available.

acpid is a daemon that dispatches ACPI (Advanced Configuration and Power Interface) events to user-space programs.

In some pre-release versions of Red Hat Enterprise Linux 5.4, the Hardware Abstraction Layer (HAL) daemon was initialized before the ACPI daemon. Consequently, this resulted in the HAL daemon preventing the ACPI daemon from accessing /proc/acpi/event. With this update, the acpid package

https://www.redhat.com/security/data/cve/CVE-2009-0798.html

acroread

has been updated so the ACPI daemon now starts before the HAL daemon, which resolves this issue. (BZ#50317729)

Users should upgrade to this updated package, which resolves these issues.

1.4. acroread

1.4.1. RHSA-2009:1109: Critical security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:1109

Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

Adobe Reader allows users to view and print documents in Portable Document Format (PDF).

Multiple security flaws were discovered in Adobe Reader. A specially crafted PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. (CVE-2009-019831, CVE-2009-050932, CVE-2009-051033, CVE-2009-051134,

CVE-2009-051235, CVE-2009-088836, CVE-2009-088937, CVE-2009-185538, CVE-2009-185639, CVE-2009-185740, CVE-2009-185841, CVE-2009-185942, CVE-2009-186143, CVE-2009-202844)

All Adobe Reader users should install these updated packages. They contain Adobe Reader version

8.1.6, which is not vulnerable to these issues. All running instances of Adobe Reader must be restarted for the update to take effect.

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=503177

https://www.redhat.com/security/data/cve/CVE-2009-0198.html

https://www.redhat.com/security/data/cve/CVE-2009-0509.html

https://www.redhat.com/security/data/cve/CVE-2009-0510.html

https://www.redhat.com/security/data/cve/CVE-2009-0511.html

https://www.redhat.com/security/data/cve/CVE-2009-0512.html

https://www.redhat.com/security/data/cve/CVE-2009-0888.html

https://www.redhat.com/security/data/cve/CVE-2009-0889.html

https://www.redhat.com/security/data/cve/CVE-2009-1855.html

https://www.redhat.com/security/data/cve/CVE-2009-1856.html

https://www.redhat.com/security/data/cve/CVE-2009-1857.html

https://www.redhat.com/security/data/cve/CVE-2009-1858.html

https://www.redhat.com/security/data/cve/CVE-2009-1859.html

https://www.redhat.com/security/data/cve/CVE-2009-1861.html

https://www.redhat.com/security/data/cve/CVE-2009-2028.html

Chapter 1. Package Updates

1.4.2. RHSA-2009:0478: Critical security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:0478

Updated acroread packages that fix two security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

Adobe Reader allows users to view and print documents in Portable Document Format (PDF).

Two flaws were discovered in Adobe Reader's JavaScript API. A PDF file containing malicious JavaScript instructions could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader. (CVE-2009-149246, CVE-2009-149347)

All Adobe Reader users should install these updated packages. They contain Adobe Reader version

8.1.5, which is not vulnerable to these issues. All running instances of Adobe Reader must be

restarted for the update to take effect.

1.4.3. RHSA-2009:0376: Critical security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:0376

Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

Adobe Reader allows users to view and print documents in Portable Document Format (PDF).

Multiple input validation flaws were discovered in the JBIG2 compressed images decoder used by Adobe Reader. A malicious PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader. (CVE-2009-019349, CVE-2009-065850,

CVE-2009-092851, CVE-2009-106152, CVE-2009-106253)

All Adobe Reader users should install these updated packages. They contain Adobe Reader version

8.1.4, which is not vulnerable to these issues. All running instances of Adobe Reader must be

restarted for the update to take effect.

https://www.redhat.com/security/data/cve/CVE-2009-1492.html

https://www.redhat.com/security/data/cve/CVE-2009-1493.html

https://www.redhat.com/security/data/cve/CVE-2009-0193.html

https://www.redhat.com/security/data/cve/CVE-2009-0658.html

https://www.redhat.com/security/data/cve/CVE-2009-0928.html

https://www.redhat.com/security/data/cve/CVE-2009-1061.html

https://www.redhat.com/security/data/cve/CVE-2009-1062.html

aide

1.5. aide

1.5.1. RHEA-2009:1073: enhancement update

Note

This update has already been released (prior to the GA of this release) as FASTRACK errata RHEA-2009:1073

An enhanced aide package that contains minor adjustments to the aide.conf configuration file to offer improved initial behavior is now available.

Advanced Intrusion Detection Environment (AIDE) is a program that creates a database of files on a system, and then uses that database to ensure file integrity and detect system intrusions.

This updated aide package adds the following enhancement:

• the /var/run/utmp configuration file is now correctly treated as a log file, and the hidden files (also known as "dot files") located in the root user's home directory are now checked for permission integrity only. These enhancements to AIDE should cause systems to produce fewer false alarms concerning files which have changed. (BZ#47654255)

Users of aide are advised to upgrade to this updated package, which adds this enhancement.

1.6. amanda

1.6.1. RHBA-2009:1300: bug fix update

Updated amanda packages that fix two bugs are now available.

Amanda is a network-capable tape backup solution.

These updated amanda packages resolve the following issues:

• the "amtapetype" command had a bug in memory management: an invalid pointer was passed to the free() function. In some circumstances this caused amrecover to fail with a "Extractor child exited with status 2" error. The invalid pointer is no longer passed to free() and amrecover extracts files from a tape backup as expected. (BZ#47697156)

• previously, amanda sub-packages (including amanda-devel, amanda-server and amanda-client) were only required to be the same version as amanda: they did not check that their release was in sync with the base amanda package. This could cause the packages to go out-of-sync and malfunction if an attempt was made to update either the base amanda package or any of amanda's sub-packages. With this update, both the version and release are checked, ensuring all dependent packages remain in sync if either the base package or any sub-packages are updated. (BZ#49711157)

Users of amanda should upgrade to these updated packages, which resolves these issues.

Chapter 1. Package Updates

1.7. anaconda

1.7.1. RHBA-2009:1306: bug fix and enhancement update

Updated anaconda packages that fix several bugs and add various enhancements are now available.

Anaconda is the system installer.

These updated anaconda packages provide fixes for the following bugs:

Anaconda is the system installer.

These updated anaconda packages provide fixes for the following bugs:

• a write-protected SD card could cause an installation failure even when the mount point was deselected in the Disk Druid. (BZ#47188358)

• Anaconda occasionally attempted to delete nonexistent snapshots, which caused installation to fail. (BZ#43382459)

• if a boot file was retrieved via DHCP, Anaconda now saves it so that it can later be used to construct the default Kickstart file if the user boots with "ks" as a boot parameter. (BZ#44800660)

• driver disk locations can now be specified using the "dd=[URL]" option, where [URL] is an FTP, HTTP or NFS location. (BZ#45447861)

• the bootloader can now be located in the MBR on a software RAID1 boot partition. (BZ#47597362)

• Anaconda now installs multipath packages so that multipath devices work as expected following first reboot. (BZ#46661463)

• Anaconda prompted for the time zone even when the time zone was correctly specified in the Kickstart file. (BZ#48161764)

• on Itanium systems, the time stamps of installed files and directories were in the future. (BZ#48520065)

• the iSCSI Boot Firmware Table (iBFT) now works with Challenge-Handshake Authentication Protocol (CHAP) and reverse-CHAP setups. (BZ#49743866)

• Anaconda now correctly sets the umask on device nodes. (BZ#38353167)

• following a manual installation during which IPv6 was configured, the /etc/sysconfig/network-scripts/ ifcfg-[interface] file (such as ifcfg-eth0) did not contain those IPv6 network details. (BZ#44539468)

• Anaconda now correctly handles LAN channel station (LCS) devices. (BZ#47110169)

• when using autostep mode with a Kickstart configuration file, Anaconda incorrectly prompted for a root password even when the root password was designated as encrypted. (BZ#47112270)

• empty repositories caused installation to fail. (BZ#47618271)

• large numbers of tape drives in the Kickstart file are now handled correctly. (BZ#47618672)

• hyphenated MAC address formats in the Kickstart file (e.g. "ksdevice=00-11-22-33-44-55") are now allowed. (BZ#48030973)

RHBA-2009:1306: bug fix and enhancement update

• an unexpected exception during Logical Unit Number (LUN) selection caused installation to fail. (BZ#47527174)

• when installing on a low-memory system or virtual machine over HTTP or FTP, a non-present "lspci" binary caused installation to fail. (BZ#47647675)

• Anaconda now correctly adds the user to the default group, and groups specified by "--groups", when performing a Kickstart installation. (BZ#45441876)

• the "cmdline" option, which specifies a non-Ncurses installation, is now honored in the Kickstart file. (BZ#45632577)

• Kickstart file download from an anonymous FTP site is now possible. (BZ#47753678)

In addition, these updated packages provide the following enhancements:

• default configuration values are now suggested during System z installation. (BZ#47535079)

• hardware device descriptions have been enhanced to reflect expanded hardware support. (BZ#49851180)

• the Mellanox ConnectX mt26448 10Gb/E driver is now supported. (BZ#51497181)

• the mpt2sas driver is now supported. (BZ#47567182)

• the Emulex Tiger Shark converged network adatper is now supported. (BZ#49687583)

• the Marvell RAID bus controller MV64460/64461/64462 and Emulex OneConnect 10GbE NIC devices are now supported. (BZ#49317984)

• the IGB Virtual Function driver is now supported. (BZ#50287585)

• installation on RAID10 devices is now supported. (BZ#46799686)

• non-fatal errors and conditions are now ignored when installing from a Kickstart file. (BZ#45546587)

• stale LVM metadata can now be removed with the "--clearpart" option. (BZ#46261588)

• to aid in identifying the network card, an option to blink its LED for 5 minutes is now present. (BZ#47374789)

• IPv6 address validation on S/390 installations has been improved. (BZ#46057990)

Users are advised to upgrade to these updated anaconda packages, which resolve these issues and add these enhancements.

Chapter 1. Package Updates

1.8. apr

1.8.1. RHSA-2009:1204: Moderate and apr-util security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:1204

Updated apr and apr-util packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

The Apache Portable Runtime (APR) is a portability library used by the Apache HTTP Server and other projects. It aims to provide a free library of C data structures and routines. apr-util is a utility library used with APR. This library provides additional utility interfaces for APR; including support for XML parsing, LDAP, database interfaces, URI parsing, and more.

Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way the Apache Portable Runtime (APR) manages memory pool and relocatable memory allocations. An attacker could use these flaws to issue a specially-crafted request for memory allocation, which would lead to a denial of service (application crash) or, potentially, execute arbitrary code with the privileges of an application using the APR libraries. (CVE-2009-241292)

All apr and apr-util users should upgrade to these updated packages, which contain backported patches to correct these issues. Applications using the APR libraries, such as httpd, must be restarted for this update to take effect.

1.9. apr-util

1.9.1. RHSA-2009:1107: Moderate security update

Important

This update has already been released (prior to the GA of this release) as the security errata RHSA-2009:1107

Updated apr-util packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

apr-util is a utility library used with the Apache Portable Runtime (APR). It aims to provide a free library of C data structures and routines. This library contains additional utility interfaces for APR; including support for XML, LDAP, database interfaces, URI parsing, and more.

https://www.redhat.com/security/data/cve/CVE-2009-2412.html

aspell

An off-by-one overflow flaw was found in the way apr-util processed a variable list of arguments. An attacker could provide a specially-crafted string as input for the formatted output conversion routine, which could, on big-endian platforms, potentially lead to the disclosure of sensitive information or a denial of service (application crash). (CVE-2009-195694)

Note: The CVE-2009-1956 flaw only affects big-endian platforms, such as the IBM S/390 and PowerPC. It does not affect users using the apr-util package on little-endian platforms, due to their different organization of byte ordering used to represent particular data.

A denial of service flaw was found in the apr-util Extensible Markup Language (XML) parser. A remote attacker could create a specially-crafted XML document that would cause excessive memory consumption when processed by the XML decoding engine. (CVE-2009-195595)

A heap-based underwrite flaw was found in the way apr-util created compiled forms of particular search patterns. An attacker could formulate a specially-crafted search keyword, that would overwrite arbitrary heap memory locations when processed by the pattern preparation engine. (CVE-2009-002396)

All apr-util users should upgrade to these updated packages, which contain backported patches to correct these issues. Applications using the Apache Portable Runtime library, such as httpd, must be restarted for this update to take effect.

1.10. aspell

1.10.1. RHBA-2009:1070: bug fix update

Note

This update has already been released (prior to the GA of this release) as FASTRACK errata RHBA-2009:1070

An updated aspell-nl package that fixes a bug is now available.

Aspel-nl provides the word list/dictionaries for Dutch language.

This updated aspell-nl package fixes the following bug:

• the previous aspell-nl update provided also an empty aspell-nl-debuginfo package. The dictionary packages for Aspell do not require debuginfo packages; this update therefore removes the extraneous aspell-nl-debuginfo package. (BZ#50054098)

All Dutch language Aspell users are advised to upgrade to this updated package, which resolves this issue.

https://www.redhat.com/security/data/cve/CVE-2009-1956.html

https://www.redhat.com/security/data/cve/CVE-2009-1955.html

https://www.redhat.com/security/data/cve/CVE-2009-0023.html

Chapter 1. Package Updates

1.11. audit

1.11.1. RHBA-2009:0475: bug fix and enhancement update

Note

This update has already been released (prior to the GA of this release) as errata

RHBA-2009:0475

Updated audit packages that fix a bug and add an enhancement are now available.

The audit packages contain user-space utilities for storing and searching the audit records generated by the audit subsystem in the Linux 2.6 kernel.

These updated audit packages fix the following bug:

• ausearch was unable to interpret tty audit records. tty records are specially-encoded, and the ausearch program could not decode them, which resulted in their being displayed in encoded form. These updated packages enable ausearch to interpret (i.e. decode correctly) TTY records, thus resolving the issue. ( BZ#497518

101100

)

In addition, these updated audit packages provide the following enhancement:

• The aureport program was enhanced to add a '--tty' report option. This is a new report that was recently added to audit in order to aid in the review of TTY audit events. ( BZ#497518

103102

)

Users are advised to upgrade to these updated audit packages, which resolve this issue and add this enhancement.

1.11.2. RHBA-2009:0443: bug fix update

Note

This update has already been released (prior to the GA of this release) as errata

RHBA-2009:0443

104

Updated audit packages that resolve several issues are now available.

The audit packages contain user-space utilities for storing and searching the audit records generated by the audit subsystem in the Linux 2.6 kernel.

These updated packages fix the following bugs in the auditd daemon and one of its utilities:

• when the log_format parameter was set to "NOLOG" in the auditd.conf configuration file, audit events which were queued in the internal message queue were not cleared after being written to dispatchers. This caused the internal message queue to grow over time, causing an auditd memory leak. With these updated packages the audit events in the internal message queue are properly cleared after being written, thus plugging the memory leak.

+ 436 hidden pages

Red Hat ENTERPRISE LINUX 5.4 - TECHNICAL NOTES User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual