CentOS Stream 9 Updates: February 22, 2022
This list of CentOS Stream 9 updates was generated from CentOS Project RSS feeds via community manager Rich Bowen's rssupdates.py script.
The list was compiled using Rich's script on the date of this blog post. Most entries only include the x86_64 architecture, though Rich's script pulls all of them.
This Hugo blog post was automatically generated using a script written by Steven Rosenberg.
New packages in centos-9-stream-x86_64-AppStream
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-mysql-2.3.16-3.el9.x86_64
dovecot-mysql - MySQL back end for dovecot
This package provides the MySQL back end for dovecot-auth etc.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-pigeonhole-2.3.16-3.el9.x86_64
dovecot-pigeonhole - Sieve and managesieve plug-in for dovecot
This package provides sieve and managesieve plug-in for dovecot LDA.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-pgsql-2.3.16-3.el9.x86_64
dovecot-pgsql - Postgres SQL back end for dovecot
This package provides the Postgres SQL back end for dovecot-auth etc.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-2.3.16-3.el9.x86_64
dovecot - Secure imap and pop3 server
Dovecot is an IMAP server for Linux/UNIX-like systems, written with security
primarily in mind. It also contains a small POP3 server. It supports mail
in either of maildir or mbox formats.
The SQL drivers and authentication plug-ins are in their subpackages.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Thu, 10 Feb 2022 17:05:29 GMT: publicsuffix-list-20210518-3.el9.noarch
publicsuffix-list - Cross-vendor public domain suffix database
The Public Suffix List is a cross-vendor initiative to provide
an accurate list of domain name suffixes, maintained by the hard work
of Mozilla volunteers and by submissions from registries.
Software using the Public Suffix List will be able to determine where
cookies may and may not be set, protecting the user from being
tracked across sites.
Change Log:
Thu, 10 Feb 2022 GMT - Kamil Dudka <kdudka@redhat.com> - 20210518-3 - unset writable-by-group permission bit on the license file Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 20210518-2 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 18 May 2021 GMT - Kamil Dudka <kdudka@redhat.com> - 20210518-1 - Recent revision - 20210518 ...
Thu, 27 Jan 2022 12:02:48 GMT: sblim-sfcb-1.4.9-25.el9.x86_64
sblim-sfcb - Small Footprint CIM Broker
Small Footprint CIM Broker (sfcb) is a CIM server conforming to the
CIM Operations over HTTP protocol.
It is robust, with low resource consumption and therefore specifically
suited for embedded and resource constrained environments.
sfcb supports providers written against the Common Manageability
Programming Interface (CMPI).
Change Log:
Thu, 27 Jan 2022 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 1.4.9-25 - Change build flags, fix errors during the start of the service Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.4.9-24 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Wed, 16 Jun 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.4.9-23 - Rebuilt for RHEL 9 BETA for openssl 3.0 Related: rhbz#1971065 ...
Wed, 16 Feb 2022 22:51:13 GMT: lorax-lmc-novirt-34.9.14-1.el9.x86_64
lorax-lmc-novirt - livemedia-creator no-virt dependencies
Additional dependencies required by livemedia-creator when using it with --no-virt
to run Anaconda.
Change Log:
Wed, 16 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.14-1 - Keep nvram module (bcl@redhat.com) Resolves: rhbz#2050877 Fri, 04 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.13-1 - mkksiso: Fix check for unsupported arch error (bcl@redhat.com) Related: rhbz#2049192 Thu, 03 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.12-1 - mkksiso: Improve debug message about unsupported arch (bcl@redhat.com) Related: rhbz#2049192 - mkksiso: Add kickstart to s390x cdboot.prm (bcl@redhat.com) Resolves: rhbz#2049192 ...
Wed, 16 Feb 2022 22:51:13 GMT: lorax-docs-34.9.14-1.el9.x86_64
lorax-docs - Lorax html documentation
Includes the full html documentation for lorax, livemedia-creator, and the pylorax library.
Change Log:
Wed, 16 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.14-1 - Keep nvram module (bcl@redhat.com) Resolves: rhbz#2050877 Fri, 04 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.13-1 - mkksiso: Fix check for unsupported arch error (bcl@redhat.com) Related: rhbz#2049192 Thu, 03 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.12-1 - mkksiso: Improve debug message about unsupported arch (bcl@redhat.com) Related: rhbz#2049192 - mkksiso: Add kickstart to s390x cdboot.prm (bcl@redhat.com) Resolves: rhbz#2049192 ...
Wed, 16 Feb 2022 22:51:13 GMT: lorax-lmc-virt-34.9.14-1.el9.x86_64
lorax-lmc-virt - livemedia-creator libvirt dependencies
Additional dependencies required by livemedia-creator when using it with qemu.
Change Log:
Wed, 16 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.14-1 - Keep nvram module (bcl@redhat.com) Resolves: rhbz#2050877 Fri, 04 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.13-1 - mkksiso: Fix check for unsupported arch error (bcl@redhat.com) Related: rhbz#2049192 Thu, 03 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.12-1 - mkksiso: Improve debug message about unsupported arch (bcl@redhat.com) Related: rhbz#2049192 - mkksiso: Add kickstart to s390x cdboot.prm (bcl@redhat.com) Resolves: rhbz#2049192 ...
Wed, 16 Feb 2022 22:51:13 GMT: lorax-templates-generic-34.9.14-1.el9.x86_64
lorax-templates-generic - Generic build templates for lorax and livemedia-creator
Lorax templates for creating the boot.iso and live isos are placed in
/usr/share/lorax/templates.d/99-generic
Change Log:
Wed, 16 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.14-1 - Keep nvram module (bcl@redhat.com) Resolves: rhbz#2050877 Fri, 04 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.13-1 - mkksiso: Fix check for unsupported arch error (bcl@redhat.com) Related: rhbz#2049192 Thu, 03 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.12-1 - mkksiso: Improve debug message about unsupported arch (bcl@redhat.com) Related: rhbz#2049192 - mkksiso: Add kickstart to s390x cdboot.prm (bcl@redhat.com) Resolves: rhbz#2049192 ...
Wed, 16 Feb 2022 22:51:13 GMT: lorax-34.9.14-1.el9.x86_64
lorax - Tool for creating the anaconda install images
Lorax is a tool for creating the anaconda install images.
It also includes livemedia-creator which is used to create bootable livemedia,
including live isos and disk images. It can use libvirtd for the install, or
Anaconda's image install feature.
Change Log:
Wed, 16 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.14-1 - Keep nvram module (bcl@redhat.com) Resolves: rhbz#2050877 Fri, 04 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.13-1 - mkksiso: Fix check for unsupported arch error (bcl@redhat.com) Related: rhbz#2049192 Thu, 03 Feb 2022 GMT - Brian C. Lane <bcl@redhat.com> 34.9.12-1 - mkksiso: Improve debug message about unsupported arch (bcl@redhat.com) Related: rhbz#2049192 - mkksiso: Add kickstart to s390x cdboot.prm (bcl@redhat.com) Resolves: rhbz#2049192 ...
Thu, 17 Feb 2022 18:56:54 GMT: gpgmepp-1.15.1-6.el9.i686
gpgmepp - C++ bindings/wrapper for GPGME
C++ bindings/wrapper for GPGME.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: gpgmepp-1.15.1-6.el9.x86_64
gpgmepp - C++ bindings/wrapper for GPGME
C++ bindings/wrapper for GPGME.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 10 Feb 2022 11:53:16 GMT: libwmf-lite-0.2.12-9.el9.i686
libwmf-lite - Windows Metafile parser library
A library for parsing Windows MetaFile vector graphics (WMF).
Change Log:
Wed, 09 Feb 2022 GMT - Josef Ridky <jridky@redhat.com> - 0.2.12-9 - add gating.yaml file Thu, 20 Jan 2022 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild Thu, 22 Jul 2021 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild ...
Thu, 10 Feb 2022 11:53:16 GMT: libwmf-0.2.12-9.el9.i686
libwmf - Windows MetaFile Library
A library for reading and converting Windows MetaFile vector graphics (WMF).
Change Log:
Wed, 09 Feb 2022 GMT - Josef Ridky <jridky@redhat.com> - 0.2.12-9 - add gating.yaml file Thu, 20 Jan 2022 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild Thu, 22 Jul 2021 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild ...
Thu, 10 Feb 2022 11:53:16 GMT: libwmf-0.2.12-9.el9.x86_64
libwmf - Windows MetaFile Library
A library for reading and converting Windows MetaFile vector graphics (WMF).
Change Log:
Wed, 09 Feb 2022 GMT - Josef Ridky <jridky@redhat.com> - 0.2.12-9 - add gating.yaml file Thu, 20 Jan 2022 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild Thu, 22 Jul 2021 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild ...
Thu, 10 Feb 2022 11:53:16 GMT: libwmf-lite-0.2.12-9.el9.x86_64
libwmf-lite - Windows Metafile parser library
A library for parsing Windows MetaFile vector graphics (WMF).
Change Log:
Wed, 09 Feb 2022 GMT - Josef Ridky <jridky@redhat.com> - 0.2.12-9 - add gating.yaml file Thu, 20 Jan 2022 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild Thu, 22 Jul 2021 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 0.2.12-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild ...
Thu, 17 Feb 2022 15:41:46 GMT: cockpit-machines-261-1.el9.noarch
cockpit-machines - Cockpit user interface for virtual machines
Cockpit component for managing virtual machines.
If "virt-install" is installed, you can also create new virtual machines.
Change Log:
Wed, 16 Feb 2022 GMT - Jelle van der Waa <jvanderwaa@redhat.com> - 261-1 - Tests improvements and stabilization Mon, 24 Jan 2022 GMT - Matej Marusak <mmarusak@redhat.com> - 260-1 - Tests improvements and stabilization Wed, 19 Jan 2022 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 259-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-display-virtio-gpu-6.2.0-9.el9.x86_64
qemu-kvm-device-display-virtio-gpu - QEMU virtio-gpu display device
This package provides the virtio-gpu display device for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-docs-6.2.0-9.el9.x86_64
qemu-kvm-docs - qemu-kvm documentation
qemu-kvm-docs provides documentation files regarding qemu-kvm.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-6.2.0-9.el9.x86_64
qemu-kvm - QEMU is a machine emulator and virtualizer
qemu-kvm is an open source virtualizer that provides hardware
emulation for the KVM hypervisor. qemu-kvm acts as a virtual
machine monitor together with the KVM kernel modules, and emulates the
hardware for a full system such as a PC and its associated peripherals.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-pr-helper-6.2.0-9.el9.x86_64
qemu-pr-helper - qemu-pr-helper utility for qemu-kvm
This package provides the qemu-pr-helper utility that is required for certain
SCSI features.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-core-6.2.0-9.el9.x86_64
qemu-kvm-core - qemu-kvm core components
qemu-kvm is an open source virtualizer that provides hardware
emulation for the KVM hypervisor. qemu-kvm acts as a virtual
machine monitor together with the KVM kernel modules, and emulates the
hardware for a full system such as a PC and its associated peripherals.
This is a minimalistic installation of qemu-kvm. Functionality provided by
this package is not ensured and it can change in a future version as some
functionality can be split out to separate package.
Before updating this package, it is recommended to check the package
changelog for information on functionality which might have been moved to
a separate package to prevent issues due to the moved functionality.
If apps opt-in to minimalist packaging by depending on qemu-kvm-core, they
explicitly accept that features may disappear from qemu-kvm-core in future
updates.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-ui-egl-headless-6.2.0-9.el9.x86_64
qemu-kvm-ui-egl-headless - QEMU EGL headless driver
This package provides the additional egl-headless UI for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-usb-host-6.2.0-9.el9.x86_64
qemu-kvm-device-usb-host - QEMU usb host device
This package provides the USB pass through driver for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-display-virtio-vga-6.2.0-9.el9.x86_64
qemu-kvm-device-display-virtio-vga - QEMU virtio-vga display device
This package provides the virtio-vga display device for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-ui-opengl-6.2.0-9.el9.x86_64
qemu-kvm-ui-opengl - QEMU opengl support
This package provides opengl support.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-display-virtio-vga-gl-6.2.0-9.el9.x86_64
qemu-kvm-device-display-virtio-vga-gl - QEMU virtio-vga-gl display device
This package provides the virtio-vga-gl display device for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-guest-agent-6.2.0-9.el9.x86_64
qemu-guest-agent - QEMU guest agent
qemu-kvm is an open source virtualizer that provides hardware emulation for
the KVM hypervisor.
This package provides an agent to run inside guests, which communicates
with the host over a virtio-serial channel named "org.qemu.guest_agent.0"
This package does not need to be installed on the host OS.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-virtiofsd-6.2.0-9.el9.x86_64
qemu-virtiofsd - QEMU virtio-fs shared file system daemon
This package provides virtiofsd daemon. This program is a vhost-user backend
that implements the virtio-fs device that is used for sharing a host directory
tree with a guest.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-tools-6.2.0-9.el9.x86_64
qemu-kvm-tools - qemu-kvm support tools
qemu-kvm-tools provides various tools related to qemu-kvm usage.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-common-6.2.0-9.el9.x86_64
qemu-kvm-common - QEMU common files needed by all QEMU targets
qemu-kvm is an open source virtualizer that provides hardware emulation for
the KVM hypervisor.
This package provides documentation and auxiliary programs used with qemu-kvm.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-audio-pa-6.2.0-9.el9.x86_64
qemu-kvm-audio-pa - QEMU PulseAudio audio driver
This package provides the additional PulseAudio audio driver for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-usb-redirect-6.2.0-9.el9.x86_64
qemu-kvm-device-usb-redirect - QEMU usbredir support
This package provides usbredir support.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-display-virtio-gpu-pci-gl-6.2.0-9.el9.x86_64
qemu-kvm-device-display-virtio-gpu-pci-gl - QEMU virtio-gpu-pci-gl display device
This package provides the virtio-gpu-pci-gl display device for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-display-virtio-gpu-pci-6.2.0-9.el9.x86_64
qemu-kvm-device-display-virtio-gpu-pci - QEMU virtio-gpu-pci display device
This package provides the virtio-gpu-pci display device for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-block-rbd-6.2.0-9.el9.x86_64
qemu-kvm-block-rbd - QEMU Ceph/RBD block driver
This package provides the additional Ceph/RBD block driver for QEMU.
Install this package if you want to access remote Ceph volumes
using the rbd protocol.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-img-6.2.0-9.el9.x86_64
qemu-img - QEMU command line tool for manipulating disk images
This package provides a command line tool for manipulating disk images.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-device-display-virtio-gpu-gl-6.2.0-9.el9.x86_64
qemu-kvm-device-display-virtio-gpu-gl - QEMU virtio-gpu-gl display device
This package provides the virtio-gpu-gl display device for QEMU.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 13:00:11 GMT: 17:qemu-kvm-block-curl-6.2.0-9.el9.x86_64
qemu-kvm-block-curl - QEMU CURL block driver
This package provides the additional CURL block driver for QEMU.
Install this package if you want to access remote disks over
http, https, ftp and other transports provided by the CURL library.
Change Log:
Thu, 17 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-9 - kvm-block-Lock-AioContext-for-drain_end-in-blockdev-reop.patch [bz#2046659] - kvm-iotests-Test-blockdev-reopen-with-iothreads-and-thro.patch [bz#2046659] - kvm-block-nbd-Delete-reconnect-delay-timer-when-done.patch [bz#2033626] - kvm-block-nbd-Assert-there-are-no-timers-when-closed.patch [bz#2033626] - kvm-iotests.py-Add-QemuStorageDaemon-class.patch [bz#2033626] - kvm-iotests-281-Test-lingering-timers.patch [bz#2033626] - kvm-block-nbd-Move-s-ioc-on-AioContext-change.patch [bz#2033626] - kvm-iotests-281-Let-NBD-connection-yield-in-iothread.patch [bz#2033626] - Resolves: bz#2046659 (qemu crash after execute blockdev-reopen with iothread) - Resolves: bz#2033626 (Qemu core dump when start guest with nbd node or do block jobs to nbd node) Mon, 14 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-8 - kvm-numa-Enable-numa-for-SGX-EPC-sections.patch [bz#2033708] - kvm-numa-Support-SGX-numa-in-the-monitor-and-Libvirt-int.patch [bz#2033708] - kvm-doc-Add-the-SGX-numa-description.patch [bz#2033708] - kvm-Enable-SGX-RH-Only.patch [bz#2033708] - kvm-qapi-Cleanup-SGX-related-comments-and-restore-sectio.patch [bz#2033708] - kvm-block-io-Update-BSC-only-if-want_zero-is-true.patch [bz#2041461] - kvm-iotests-block-status-cache-New-test.patch [bz#2041461] - kvm-iotests-Test-qemu-img-convert-of-zeroed-data-cluster.patch [bz#1882917] - kvm-qemu-img-make-is_allocated_sectors-more-efficient.patch [bz#1882917] - kvm-block-backend-prevent-dangling-BDS-pointers-across-a.patch [bz#2040123] - kvm-iotests-stream-error-on-reset-New-test.patch [bz#2040123] - kvm-hw-arm-smmuv3-Fix-device-reset.patch [bz#2042481] - Resolves: bz#2033708 ([Intel 9.0 Feat] qemu-kvm: SGX 1.5 (SGX1 + Flexible Launch Control) support) - Resolves: bz#2041461 (Inconsistent block status reply in qemu-nbd) - Resolves: bz#1882917 (the target image size is incorrect when converting a badly fragmented file) - Resolves: bz#2040123 (Qemu core dumped when do block-stream to a snapshot node on non-enough space storage) - Resolves: bz#2042481 ([aarch64] Launch guest with "default-bus-bypass-iommu=off,iommu=smmuv3" and "iommu_platform=on", guest hangs after system_reset) Mon, 07 Feb 2022 GMT - Miroslav Rezanina <mrezanin@redhat.com> - 6.2.0-7 - kvm-qemu-storage-daemon-Add-vhost-user-blk-help.patch [bz#1962088] - kvm-qemu-storage-daemon-Fix-typo-in-vhost-user-blk-help.patch [bz#1962088] - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch [bz#2046201] - kvm-block-rbd-fix-handling-of-holes-in-.bdrv_co_block_st.patch [bz#2034791] - kvm-block-rbd-workaround-for-ceph-issue-53784.patch [bz#2034791] - Resolves: bz#1962088 ([QSD] wrong help message for the fuse) - Resolves: bz#2046201 (CVE-2022-0358 qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 [rhel-9.0]) - Resolves: bz#2034791 (Booting from Local Snapshot Core Dumped Whose Backing File Is Based on RBD) ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-devel-matched-5.14.0-62.el9.x86_64
kernel-devel-matched - Meta package to install matching core and devel packages for a given kernel
This meta package is used to install matching core and devel packages for a given kernel.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-headers-5.14.0-62.el9.x86_64
kernel-headers - Header files for the Linux kernel for use by glibc
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-debug-devel-matched-5.14.0-62.el9.x86_64
kernel-debug-devel-matched - Meta package to install matching core and devel packages for a given kernel
This meta package is used to install matching core and devel packages for a given kernel.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-debug-devel-5.14.0-62.el9.x86_64
kernel-debug-devel - Development package for building kernel modules to match the kernel
This package provides kernel headers and makefiles sufficient to build modules
against the kernel package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-devel-5.14.0-62.el9.x86_64
kernel-devel - Development package for building kernel modules to match the kernel
This package provides kernel headers and makefiles sufficient to build modules
against the kernel package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: perf-5.14.0-62.el9.x86_64
perf - Performance monitoring for the Linux kernel
This package contains the perf tool, which enables performance monitoring
of the Linux kernel.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:56 GMT: kernel-doc-5.14.0-62.el9.noarch
kernel-doc - Various documentation bits found in the kernel source
This package contains documentation files from the kernel
source. Various bits of information about the Linux kernel and the
device drivers shipped with it are documented in these files.
You'll want to install this package if you need a reference to the
options that can be passed to Linux kernel modules at load time.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Sat, 19 Feb 2022 12:14:32 GMT: python3-policycoreutils-3.3-4.2.el9.noarch
python3-policycoreutils - SELinux policy core python3 interfaces
The python3-policycoreutils package contains the interfaces that can be used
by python 3 in an SELinux environment.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:32 GMT: policycoreutils-dbus-3.3-4.2.el9.noarch
policycoreutils-dbus - SELinux policy core DBUS api
The policycoreutils-dbus package contains the management DBUS API use to manage
an SELinux environment.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:32 GMT: policycoreutils-gui-3.3-4.2.el9.noarch
policycoreutils-gui - SELinux configuration GUI
system-config-selinux is a utility for managing the SELinux environment
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:32 GMT: policycoreutils-python-utils-3.3-4.2.el9.noarch
policycoreutils-python-utils - SELinux policy core python utilities
The policycoreutils-python-utils package contains the management tools use to manage
an SELinux environment.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:13 GMT: policycoreutils-devel-3.3-4.2.el9.i686
policycoreutils-devel - SELinux policy core policy devel utilities
The policycoreutils-devel package contains the management tools use to develop policy in an SELinux environment.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:21 GMT: policycoreutils-sandbox-3.3-4.2.el9.x86_64
policycoreutils-sandbox - SELinux sandbox utilities
The policycoreutils-sandbox package contains the scripts to create graphical
sandboxes
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:21 GMT: policycoreutils-devel-3.3-4.2.el9.x86_64
policycoreutils-devel - SELinux policy core policy devel utilities
The policycoreutils-devel package contains the management tools use to develop policy in an SELinux environment.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Tue, 15 Feb 2022 11:45:38 GMT: python3-libsemanage-3.3-2.el9.x86_64
python3-libsemanage - semanage python 3 bindings for libsemanage
The libsemanage-python3 package contains the python 3 bindings for developing
SELinux management applications.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - optionally rebuild policy when modules are changed externally Fri, 22 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-1 - SELinux userspace 3.3 release Sun, 10 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc3.1 - SELinux userspace 3.3-rc3 release ...
Sat, 19 Feb 2022 08:21:49 GMT: osbuild-composer-dnf-json-45-1.el9.x86_64
osbuild-composer-dnf-json - The dnf-json binary used by osbuild-composer and the workers
The dnf-json binary used by osbuild-composer and the workers.
Change Log:
Fri, 18 Feb 2022 GMT - Ondřej Budai <ondrej@budai.cz> - 45-1 - New upstream release Fri, 11 Feb 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 44-1 - New upstream release Wed, 26 Jan 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 43-1 - New upstream release ...
Sat, 19 Feb 2022 08:21:49 GMT: osbuild-composer-45-1.el9.x86_64
osbuild-composer - An image building service based on osbuild
A service for building customized OS artifacts, such as VM images and OSTree
commits, that uses osbuild under the hood. Besides building images for local
usage, it can also upload images directly to cloud.
It is compatible with composer-cli and cockpit-composer clients.
Change Log:
Fri, 18 Feb 2022 GMT - Ondřej Budai <ondrej@budai.cz> - 45-1 - New upstream release Fri, 11 Feb 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 44-1 - New upstream release Wed, 26 Jan 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 43-1 - New upstream release ...
Sat, 19 Feb 2022 08:21:49 GMT: osbuild-composer-worker-45-1.el9.x86_64
osbuild-composer-worker - The worker for osbuild-composer
The worker for osbuild-composer
Change Log:
Fri, 18 Feb 2022 GMT - Ondřej Budai <ondrej@budai.cz> - 45-1 - New upstream release Fri, 11 Feb 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 44-1 - New upstream release Wed, 26 Jan 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 43-1 - New upstream release ...
Sat, 19 Feb 2022 08:21:49 GMT: osbuild-composer-core-45-1.el9.x86_64
osbuild-composer-core - The core osbuild-composer binary
The core osbuild-composer binary. This is suitable both for spawning in containers and by systemd.
Change Log:
Fri, 18 Feb 2022 GMT - Ondřej Budai <ondrej@budai.cz> - 45-1 - New upstream release Fri, 11 Feb 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 44-1 - New upstream release Wed, 26 Jan 2022 GMT - Thomas Lavocat <tlavocat@redhat.com> - 43-1 - New upstream release ...
Thu, 17 Feb 2022 17:12:53 GMT: osbuild-lvm2-48-1.el9.noarch
osbuild-lvm2 - LVM2 support
Contains the necessary stages and device host
services to build LVM2 based images.
Change Log:
Wed, 16 Feb 2022 GMT - Chloe Kaubisch <chloe.kaubisch@gmail.com> - 48-1 - New upstream release Wed, 02 Feb 2022 GMT - Jacob Kozol <jacobdkozol@gmail.com> - 47-1 - New upstream release Wed, 19 Jan 2022 GMT - Simon Steinbeiss <simon.steinbeiss@redhat.com> - 46-1 - New upstream release ...
Thu, 17 Feb 2022 17:12:53 GMT: osbuild-48-1.el9.noarch
osbuild - A build system for OS images
A build system for OS images
Change Log:
Wed, 16 Feb 2022 GMT - Chloe Kaubisch <chloe.kaubisch@gmail.com> - 48-1 - New upstream release Wed, 02 Feb 2022 GMT - Jacob Kozol <jacobdkozol@gmail.com> - 47-1 - New upstream release Wed, 19 Jan 2022 GMT - Simon Steinbeiss <simon.steinbeiss@redhat.com> - 46-1 - New upstream release ...
Thu, 17 Feb 2022 17:12:53 GMT: osbuild-selinux-48-1.el9.noarch
osbuild-selinux - SELinux policies
Contains the necessary SELinux policies that allows
osbuild to use labels unknown to the host inside the
containers it uses to build OS artifacts.
Change Log:
Wed, 16 Feb 2022 GMT - Chloe Kaubisch <chloe.kaubisch@gmail.com> - 48-1 - New upstream release Wed, 02 Feb 2022 GMT - Jacob Kozol <jacobdkozol@gmail.com> - 47-1 - New upstream release Wed, 19 Jan 2022 GMT - Simon Steinbeiss <simon.steinbeiss@redhat.com> - 46-1 - New upstream release ...
Thu, 17 Feb 2022 17:12:53 GMT: osbuild-luks2-48-1.el9.noarch
osbuild-luks2 - LUKS2 support
Contains the necessary stages and device host
services to build LUKS2 encrypted images.
Change Log:
Wed, 16 Feb 2022 GMT - Chloe Kaubisch <chloe.kaubisch@gmail.com> - 48-1 - New upstream release Wed, 02 Feb 2022 GMT - Jacob Kozol <jacobdkozol@gmail.com> - 47-1 - New upstream release Wed, 19 Jan 2022 GMT - Simon Steinbeiss <simon.steinbeiss@redhat.com> - 46-1 - New upstream release ...
Thu, 17 Feb 2022 17:12:53 GMT: python3-osbuild-48-1.el9.noarch
python3-osbuild - A build system for OS images
A build system for OS images
Change Log:
Wed, 16 Feb 2022 GMT - Chloe Kaubisch <chloe.kaubisch@gmail.com> - 48-1 - New upstream release Wed, 02 Feb 2022 GMT - Jacob Kozol <jacobdkozol@gmail.com> - 47-1 - New upstream release Wed, 19 Jan 2022 GMT - Simon Steinbeiss <simon.steinbeiss@redhat.com> - 46-1 - New upstream release ...
Thu, 17 Feb 2022 17:12:53 GMT: osbuild-ostree-48-1.el9.noarch
osbuild-ostree - OSTree support
Contains the necessary stages, assembler and source
to build OSTree based images.
Change Log:
Wed, 16 Feb 2022 GMT - Chloe Kaubisch <chloe.kaubisch@gmail.com> - 48-1 - New upstream release Wed, 02 Feb 2022 GMT - Jacob Kozol <jacobdkozol@gmail.com> - 47-1 - New upstream release Wed, 19 Jan 2022 GMT - Simon Steinbeiss <simon.steinbeiss@redhat.com> - 46-1 - New upstream release ...
Thu, 17 Feb 2022 13:02:49 GMT: 2:containers-common-1-21.el9.noarch
containers-common - Common configuration and documentation for containers
This package contains common configuration files and documentation for container
tools ecosystem, such as Podman, Buildah and Skopeo.
It is required because the most of configuration files and docs come from projects
which are vendored into Podman, Buildah, Skopeo, etc. but they are not packaged
separately.
Change Log:
Wed, 16 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 2:1-21 - containers.conf should contain network_backend = "cni" in RHEL8.6 - Related: #2000051 Wed, 09 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 2:1-20 - update shortname aliases from upstream - Related: #2000051 Fri, 04 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 2:1-19 - sync vendored components - Related: #2000051 ...
Thu, 17 Feb 2022 21:58:01 GMT: selinux-policy-devel-34.1.26-1.el9.noarch
selinux-policy-devel - SELinux policy development files
SELinux policy development package.
This package contains:
- interfaces, macros, and patterns for policy development
- a policy example
- the macro-expander utility
and some additional files.
Change Log:
Thu, 17 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.26-1 - Remove permissive domain for insights_client_t Resolves: rhbz#2055823 - New policy for insight-client Resolves: rhbz#2055823 - Allow confined sysadmin to use tool vipw Resolves: rhbz#2053458 - Allow chage domtrans to sssd Resolves: rhbz#2054657 - Remove label for /usr/sbin/bgpd Resolves: rhbz#2055578 - Dontaudit pkcsslotd sys_admin capability Resolves: rhbz#2055639 - Do not change selinuxuser_execmod and selinuxuser_execstack Resolves: rhbz#2055822 - Allow tuned to read rhsmcertd config files Resolves: rhbz#2055823 Mon, 14 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.25-1 - Allow systemd watch unallocated ttys Resolves: rhbz#2054150 - Allow alsa bind mixer controls to led triggers Resolves: rhbz#2049732 - Allow alsactl set group Process ID of a process Resolves: rhbz#2049732 - Allow unconfined to run virtd bpf Resolves: rhbz#2033504 Fri, 04 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.24-1 - Allow tumblerd write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain create session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gkeyringd_domain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow systemd-logind delete session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gdm-x-session write to session dbus tmp sock files Resolves: rhbz#2000039 - Allow sysadm_t nnp_domtrans to systemd_tmpfiles_t Resolves: rhbz#2039453 - Label exFAT utilities at /usr/sbin Resolves: rhbz#1972225 ...
Thu, 17 Feb 2022 22:29:43 GMT: 1:openmpi-4.1.1-5.el9.i686
openmpi - Open Message Passing Interface
Open MPI is an open source, freely available implementation of both the
MPI-1 and MPI-2 standards, combining technologies and resources from
several other projects (FT-MPI, LA-MPI, LAM/MPI, and PACX-MPI) in
order to build the best MPI library available. A completely new MPI-2
compliant implementation, Open MPI offers advantages for system and
software vendors, application developers, and computer science
researchers. For more information, see http://www.open-mpi.org/ .
Change Log:
Thu, 17 Feb 2022 GMT - Honggang Li <honli@redhat.com> - 4.1.1-5 - Revert v4.1.2 - Add Epoch tag - Resolves: rhbz#2055184 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 4.1.1-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 20 Jul 2021 GMT - Honggang Li <honli@redhat.com> - 4.1.1-3 - Enable gating test - Related: rhbz#1869443 ...
Thu, 17 Feb 2022 22:29:44 GMT: 1:openmpi-4.1.1-5.el9.x86_64
openmpi - Open Message Passing Interface
Open MPI is an open source, freely available implementation of both the
MPI-1 and MPI-2 standards, combining technologies and resources from
several other projects (FT-MPI, LA-MPI, LAM/MPI, and PACX-MPI) in
order to build the best MPI library available. A completely new MPI-2
compliant implementation, Open MPI offers advantages for system and
software vendors, application developers, and computer science
researchers. For more information, see http://www.open-mpi.org/ .
Change Log:
Thu, 17 Feb 2022 GMT - Honggang Li <honli@redhat.com> - 4.1.1-5 - Revert v4.1.2 - Add Epoch tag - Resolves: rhbz#2055184 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 4.1.1-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 20 Jul 2021 GMT - Honggang Li <honli@redhat.com> - 4.1.1-3 - Enable gating test - Related: rhbz#1869443 ...
Thu, 17 Feb 2022 22:29:43 GMT: 1:openmpi-devel-4.1.1-5.el9.i686
openmpi-devel - Development files for openmpi
Contains development headers and libraries for openmpi.
Change Log:
Thu, 17 Feb 2022 GMT - Honggang Li <honli@redhat.com> - 4.1.1-5 - Revert v4.1.2 - Add Epoch tag - Resolves: rhbz#2055184 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 4.1.1-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 20 Jul 2021 GMT - Honggang Li <honli@redhat.com> - 4.1.1-3 - Enable gating test - Related: rhbz#1869443 ...
Thu, 17 Feb 2022 22:29:44 GMT: 1:openmpi-devel-4.1.1-5.el9.x86_64
openmpi-devel - Development files for openmpi
Contains development headers and libraries for openmpi.
Change Log:
Thu, 17 Feb 2022 GMT - Honggang Li <honli@redhat.com> - 4.1.1-5 - Revert v4.1.2 - Add Epoch tag - Resolves: rhbz#2055184 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 4.1.1-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 20 Jul 2021 GMT - Honggang Li <honli@redhat.com> - 4.1.1-3 - Enable gating test - Related: rhbz#1869443 ...
Thu, 17 Feb 2022 22:29:44 GMT: 1:openmpi-java-4.1.1-5.el9.x86_64
openmpi-java - Java library
Java library.
Change Log:
Thu, 17 Feb 2022 GMT - Honggang Li <honli@redhat.com> - 4.1.1-5 - Revert v4.1.2 - Add Epoch tag - Resolves: rhbz#2055184 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 4.1.1-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 20 Jul 2021 GMT - Honggang Li <honli@redhat.com> - 4.1.1-3 - Enable gating test - Related: rhbz#1869443 ...
Thu, 17 Feb 2022 23:11:32 GMT: rhel-system-roles-1.13.0-1.el9.noarch
rhel-system-roles - Set of interfaces for unified system management
Collection of Ansible roles and modules that provide a stable and
consistent configuration interface for managing multiple versions
of Red Hat Enterprise Linux.
Change Log:
Mon, 14 Feb 2022 GMT - Rich Megginson <rmeggins@redhat.com> - 1.13.0-1 - storage - RFE: Add support for RAID volumes (lvm-only) Resolves rhbz#2016514 (EL8) Resolves rhbz#2016518 (EL9) - storage - RFE: Add support for cached volumes (lvm-only) Resolves rhbz#2016511 (EL8) Resolves rhbz#2016517 (EL9) - metrics - metrics role can't be re-run if the Grafana admin password has been changed Resolves rhbz#1967321 (EL8) Resolves rhbz#2041632 (EL9) - nbde_client - NBDE client system role does not support servers with static IP addresses Resolves rhbz#1985022 (EL8) Resolves rhbz#2031555 (EL9) - ha_cluster - [RFE] ha_cluster - Support for creating resource constraints (Location, Ordering, etc.) Resolves rhbz#2041635 (EL8) Resolves rhbz#2041634 (EL9) - firewall - ensure zone exists and can be used in subsequent operations Resolves rhbz#2042541 (EL8) Resolves rhbz#2024775 (EL9) - network - RFE: Support Routing Tables in static routes in Network Role Resolves rhbz#2031521 (EL8) Resolves rhbz#2049798 (EL9) - network - Failure to activate connection: nm-manager-error-quark: No suitable device found for this connection Resolves rhbz#2034908 (EL8) Resolves rhbz#2038957 (EL9) - network - Set DNS search setting only for enabled IP protocols Resolves rhbz#2041627 (EL8) Resolves rhbz#2004899 (EL9) Tue, 08 Feb 2022 GMT - Rich Megginson <rmeggins@redhat.com> - 1.12.1-1 - vpn - template error while templating string: no filter named 'vpn_ipaddr' Resolves rhbz#2052103 (EL8) Resolves rhbz#2050341 (EL9) - kdump - Unable to start service kdump: Job for kdump.service failed because the control process exited with error code. Resolves rhbz#2052105 (EL8) Resolves rhbz#2050419 (EL9) - remove collection dependencies on rhel because we vendor them in Thu, 03 Feb 2022 GMT - Rich Megginson <rmeggins@redhat.com> - 1.12.0-2 - RHEL8.6, 9 - add "Requires: ansible-core or ansible" Resolves rhbz#2012316 (EL8) Resolves rhbz#2012298 (EL9) ...
Thu, 17 Feb 2022 18:59:35 GMT: kernel-srpm-macros-1.0-11.el9.noarch
kernel-srpm-macros - RPM macros that list arches the full kernel is built on
This packages contains the rpm macro that list what arches
the full kernel is built on.
The variable to use is kernel_arches.
Change Log:
Thu, 17 Feb 2022 GMT - Eugene Syromiatnikov <esyr@redhat.com> - 1.0-11 - Work around a change in type of __crc_* symbols for some kmods printed by nm on ppc64le and s390x - Resolves: #2055464 Thu, 18 Nov 2021 GMT - Eugene Syromiatnikov <esyr@redhat.com> - 1.0-10 - Add conflicts of kernel-srpm-macros with kernel-rpm-macros < 185-9 as macros.kmp, kmodtool, and rpmsort were moved from the latter to the former. Mon, 20 Sep 2021 GMT - Eugene Syromiatnikov <esyr@redhat.com> - 1.0-9 - Update scripts with RHEL-specific changes. ...
Thu, 17 Feb 2022 18:59:35 GMT: kernel-rpm-macros-185-11.el9.noarch
kernel-rpm-macros - Macros and scripts for building kernel module packages
Macros and scripts for building kernel module packages.
Change Log:
Thu, 17 Feb 2022 GMT - Eugene Syromiatnikov <esyr@redhat.com> - 1.0-11 - Work around a change in type of __crc_* symbols for some kmods printed by nm on ppc64le and s390x - Resolves: #2055464 Thu, 18 Nov 2021 GMT - Eugene Syromiatnikov <esyr@redhat.com> - 1.0-10 - Add conflicts of kernel-srpm-macros with kernel-rpm-macros < 185-9 as macros.kmp, kmodtool, and rpmsort were moved from the latter to the former. Mon, 20 Sep 2021 GMT - Eugene Syromiatnikov <esyr@redhat.com> - 1.0-9 - Update scripts with RHEL-specific changes. ...
Thu, 17 Feb 2022 15:00:47 GMT: libva-2.11.0-4.el9.x86_64
libva - Video Acceleration (VA) API for Linux
Libva is a library providing the VA API video acceleration API.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 2.11.0-4 - Prefer -fstack-protector-strong Resolves: #2044878 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-2 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Thu, 17 Feb 2022 15:00:47 GMT: libva-devel-2.11.0-4.el9.i686
libva-devel - Development files for libva
The libva-devel package contains libraries and header files for
developing applications that use libva.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 2.11.0-4 - Prefer -fstack-protector-strong Resolves: #2044878 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-2 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Thu, 17 Feb 2022 15:00:47 GMT: libva-devel-2.11.0-4.el9.x86_64
libva-devel - Development files for libva
The libva-devel package contains libraries and header files for
developing applications that use libva.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 2.11.0-4 - Prefer -fstack-protector-strong Resolves: #2044878 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-2 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Thu, 17 Feb 2022 15:00:47 GMT: libva-2.11.0-4.el9.i686
libva - Video Acceleration (VA) API for Linux
Libva is a library providing the VA API video acceleration API.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 2.11.0-4 - Prefer -fstack-protector-strong Resolves: #2044878 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.11.0-2 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Wed, 16 Feb 2022 16:22:45 GMT: scap-security-guide-0.1.60-4.el9.noarch
scap-security-guide - Security guidance and baselines in SCAP formats
The scap-security-guide project provides a guide for configuration of the
system from the final system's security point of view. The guidance is specified
in the Security Content Automation Protocol (SCAP) format and constitutes
a catalog of practical hardening advice, linked to government requirements
where applicable. The project bridges the gap between generalized policy
requirements and specific implementation guidelines. The system
administrator can use the oscap CLI tool from openscap-scanner package, or the
scap-workbench GUI tool from scap-workbench package to verify that the system
conforms to provided guideline. Refer to scap-security-guide(8) manual page for
further information.
Change Log:
Tue, 15 Feb 2022 GMT - Watson Sato <wsato@redhat.com> - 0.1.60-4 - Fix Ansible service disabled tasks (RHBZ#2014561) - Update description of OSPP profile (RHBZ#2045386) - Add page_aloc.shuffle rules for OSPP profile (RHBZ#2055118) Mon, 14 Feb 2022 GMT - Gabriel Becker <ggasparb@redhat.com> - 0.1.60-3 - Update sudoers rules in RHEL8 STIG V1R5 (RHBZ#2045403) - Add missing SRG references in RHEL8 STIG V1R5 rules (RHBZ#2045403) - Update chronyd_or_ntpd_set_maxpoll to disregard server and poll directives (RHBZ#2045403) - Fix GRUB2 rule template to configure the module correctly on RHEL8 (RHBZ#2014561) - Update GRUB2 rule descriptions (RHBZ#2020623) - Make package_rear_installed not applicable on AARCH64 (RHBZ#2014561) Fri, 11 Feb 2022 GMT - Watson Sato <wsato@redhat.com> - 0.1.60-2 - Update OSPP profile (RHBZ#2016038, RHBZ#2043036, RHBZ#2020670, RHBZ#2046289) ...
Wed, 16 Feb 2022 16:22:45 GMT: scap-security-guide-doc-0.1.60-4.el9.noarch
scap-security-guide-doc - HTML formatted security guides generated from XCCDF benchmarks
The scap-security-guide-doc package contains HTML formatted documents containing
hardening guidances that have been generated from XCCDF benchmarks
present in scap-security-guide package.
Change Log:
Tue, 15 Feb 2022 GMT - Watson Sato <wsato@redhat.com> - 0.1.60-4 - Fix Ansible service disabled tasks (RHBZ#2014561) - Update description of OSPP profile (RHBZ#2045386) - Add page_aloc.shuffle rules for OSPP profile (RHBZ#2055118) Mon, 14 Feb 2022 GMT - Gabriel Becker <ggasparb@redhat.com> - 0.1.60-3 - Update sudoers rules in RHEL8 STIG V1R5 (RHBZ#2045403) - Add missing SRG references in RHEL8 STIG V1R5 rules (RHBZ#2045403) - Update chronyd_or_ntpd_set_maxpoll to disregard server and poll directives (RHBZ#2045403) - Fix GRUB2 rule template to configure the module correctly on RHEL8 (RHBZ#2014561) - Update GRUB2 rule descriptions (RHBZ#2020623) - Make package_rear_installed not applicable on AARCH64 (RHBZ#2014561) Fri, 11 Feb 2022 GMT - Watson Sato <wsato@redhat.com> - 0.1.60-2 - Update OSPP profile (RHBZ#2016038, RHBZ#2043036, RHBZ#2020670, RHBZ#2046289) ...
Thu, 17 Feb 2022 13:08:37 GMT: slirp4netns-1.1.12-4.el9.x86_64
slirp4netns - slirp for network namespaces
slirp for network namespaces, without copying buffers across the namespaces.
Change Log:
Thu, 17 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 1.1.12-4 - update gating.yaml as we have no local tests in dist-git - Related: #2000051 Tue, 15 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 1.1.12-3 - fix gating - don't use insecure functions - thanks to Marc-André Lureau - Related: #2000051 Tue, 15 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 1.1.12-2 - add gating.yaml - Related: #2000051 ...
Wed, 16 Feb 2022 20:31:40 GMT: dlm-lib-4.1.1-2.el9.i686
dlm-lib - Library for dlm
The dlm-lib package contains the libraries needed to use the dlm
from userland applications.
Change Log:
Tue, 15 Feb 2022 GMT - David Teigland <teigland@redhat.com> - 4.1.1-2 - compiler warnings and makefile flags Mon, 15 Nov 2021 GMT - David Teigland <teigland@redhat.com> - 4.1.1-1 - new upstream version Wed, 25 Aug 2021 GMT - David Teigland <teigland@redhat.com> - 4.0.9-7 - fix pacemaker header ...
Wed, 16 Feb 2022 20:31:39 GMT: dlm-lib-4.1.1-2.el9.x86_64
dlm-lib - Library for dlm
The dlm-lib package contains the libraries needed to use the dlm
from userland applications.
Change Log:
Tue, 15 Feb 2022 GMT - David Teigland <teigland@redhat.com> - 4.1.1-2 - compiler warnings and makefile flags Mon, 15 Nov 2021 GMT - David Teigland <teigland@redhat.com> - 4.1.1-1 - new upstream version Wed, 25 Aug 2021 GMT - David Teigland <teigland@redhat.com> - 4.0.9-7 - fix pacemaker header ...
Thu, 17 Feb 2022 13:42:30 GMT: bsdtar-3.5.3-1.el9.x86_64
bsdtar - Manipulate tape archives
The bsdtar package contains standalone bsdtar utility split off regular
libarchive packages.
Change Log:
Mon, 14 Feb 2022 GMT - Lukas Javorsky <ljavorsk@redhat.com> - 3.5.3-1 - Rebase to version 3.5.3 Mon, 23 Aug 2021 GMT - Ondrej Dubaj <odubaj@redhat.com> - 3.5.2-1 - Rebased to version 3.5.2 (#1996634) - Fixed symlink handling Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.5.1-7 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Thu, 17 Feb 2022 13:02:41 GMT: cockpit-podman-42-1.el9.noarch
cockpit-podman - Cockpit component for Podman containers
The Cockpit user interface for Podman containers.
Change Log:
Thu, 17 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 42-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/42 - Related: #2000051 Thu, 03 Feb 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 41-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/41 - Related: #2000051 Mon, 24 Jan 2022 GMT - Jindrich Novy <jnovy@redhat.com> - 40-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/40 - Related: #2000051 ...
Mon, 14 Feb 2022 15:36:41 GMT: ipa-selinux-4.9.8-5.el9.noarch
ipa-selinux - FreeIPA SELinux policy
Custom SELinux policy module for FreeIPA
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: python3-ipaclient-4.9.8-5.el9.noarch
python3-ipaclient - Python libraries used by IPA client
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If your network uses IPA for authentication, this package should be
installed on every client machine.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: python3-ipalib-4.9.8-5.el9.noarch
python3-ipalib - Python3 libraries used by IPA
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If you are using IPA with Python 3, you need to install this package.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: ipa-common-4.9.8-5.el9.noarch
ipa-common - Common files used by IPA
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If you are using IPA, you need to install this package.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: ipa-server-dns-4.9.8-5.el9.noarch
ipa-server-dns - IPA integrated DNS server with support for automatic DNSSEC signing
IPA integrated DNS server with support for automatic DNSSEC signing.
Integrated DNS server is BIND 9. OpenDNSSEC provides key management.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: ipa-client-common-4.9.8-5.el9.noarch
ipa-client-common - Common files used by IPA client
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If your network uses IPA for authentication, this package should be
installed on every client machine.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: python3-ipaserver-4.9.8-5.el9.noarch
python3-ipaserver - Python libraries used by IPA server
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If you are installing an IPA server, you need to install this package.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:41 GMT: ipa-server-common-4.9.8-5.el9.noarch
ipa-server-common - Common files used by IPA server
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If you are installing an IPA server, you need to install this package.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:22 GMT: ipa-client-epn-4.9.8-5.el9.x86_64
ipa-client-epn - Tools to configure Expiring Password Notification in IPA
This package provides a service to collect and send expiring password
notifications via email (SMTP).
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:22 GMT: ipa-client-4.9.8-5.el9.x86_64
ipa-client - IPA authentication for use on clients
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If your network uses IPA for authentication, this package should be
installed on every client machine.
This package provides command-line tools for IPA administrators.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:22 GMT: ipa-server-4.9.8-5.el9.x86_64
ipa-server - The IPA authentication server
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
If you are installing an IPA server, you need to install this package.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:22 GMT: ipa-server-trust-ad-4.9.8-5.el9.x86_64
ipa-server-trust-ad - Virtual package to install packages required for Active Directory trusts
Cross-realm trusts with Active Directory in IPA require working Samba 4
installation. This package is provided for convenience to install all required
dependencies at once.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 15:36:22 GMT: ipa-client-samba-4.9.8-5.el9.x86_64
ipa-client-samba - Tools to configure Samba on IPA client
This package provides command-line tools to deploy Samba domain member
on the machine enrolled into a FreeIPA environment
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Wed, 16 Feb 2022 16:02:14 GMT: 1:rhc-0.2.1-3.el9.x86_64
rhc - Message dispatch agent for cloud-connected systems
rhc is pair of utilities that register systems with RHSM and establishes
a receiving queue for instructions to be sent to the system via a broker.
Change Log:
Tue, 15 Feb 2022 GMT - Link Dupont <link@redhat.com> - 0.2.1-3 - Include patch to collect and report errors during disconnect Fri, 11 Feb 2022 GMT - Link Dupont <link@redhat.com> - 0.2.1-2 - Include patch to default worker config location Fri, 11 Feb 2022 GMT - Link Dupont <link@redhat.com> - 0.2.1-1 - New upstream version ...
Mon, 14 Feb 2022 09:31:26 GMT: libical-devel-3.0.14-1.el9.i686
libical-devel - Development files for libical
The libical-devel package contains libraries and header files for developing
applications that use libical.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:26 GMT: libical-3.0.14-1.el9.i686
libical - Reference implementation of the iCalendar data type and serialization format
Reference implementation of the iCalendar data type and serialization format
used in dozens of calendaring and scheduling products.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:26 GMT: libical-glib-devel-3.0.14-1.el9.i686
libical-glib-devel - Development files for building against libical-glib
Development files needed for building things which link against libical-glib.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:26 GMT: libical-glib-3.0.14-1.el9.i686
libical-glib - GObject wrapper for libical library
This package provides a GObject wrapper for libical library with support
of GObject Introspection.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:30 GMT: libical-glib-devel-3.0.14-1.el9.x86_64
libical-glib-devel - Development files for building against libical-glib
Development files needed for building things which link against libical-glib.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:30 GMT: libical-devel-3.0.14-1.el9.x86_64
libical-devel - Development files for libical
The libical-devel package contains libraries and header files for developing
applications that use libical.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:30 GMT: libical-glib-3.0.14-1.el9.x86_64
libical-glib - GObject wrapper for libical library
This package provides a GObject wrapper for libical library with support
of GObject Introspection.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Mon, 14 Feb 2022 09:31:30 GMT: libical-3.0.14-1.el9.x86_64
libical - Reference implementation of the iCalendar data type and serialization format
Reference implementation of the iCalendar data type and serialization format
used in dozens of calendaring and scheduling products.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.14-1 - Resolves: #2054087 (Update to 3.0.14) Tue, 18 Jan 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.0.13-1 - Resolves: #2041724 (Update to 3.0.13) Mon, 13 Dec 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.0.12-1 - Resolves: #2031657 (Update to 3.0.12) ...
Tue, 15 Feb 2022 10:27:04 GMT: rpm-apidocs-4.16.1.3-11.el9.noarch
rpm-apidocs - API documentation for RPM libraries
This package contains API documentation for developing applications
that will manipulate RPM packages and databases.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:27:04 GMT: rpm-cron-4.16.1.3-11.el9.noarch
rpm-cron - Create daily logs of installed packages.
This package contains a cron job which creates daily logs of installed
packages on a system.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:43 GMT: rpm-devel-4.16.1.3-11.el9.i686
rpm-devel - Development files for manipulating RPM packages
This package contains the RPM C library and header files. These
development files will simplify the process of writing programs that
manipulate RPM packages and databases. These files are intended to
simplify the process of creating graphical package managers or any
other tools that need an intimate knowledge of RPM packages in order
to function.
This package should be installed if you want to develop programs that
will manipulate RPM packages and databases.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-devel-4.16.1.3-11.el9.x86_64
rpm-devel - Development files for manipulating RPM packages
This package contains the RPM C library and header files. These
development files will simplify the process of writing programs that
manipulate RPM packages and databases. These files are intended to
simplify the process of creating graphical package managers or any
other tools that need an intimate knowledge of RPM packages in order
to function.
This package should be installed if you want to develop programs that
will manipulate RPM packages and databases.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-plugin-syslog-4.16.1.3-11.el9.x86_64
rpm-plugin-syslog - Rpm plugin for syslog functionality
Rpm plugin for syslog functionality.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-plugin-fapolicyd-4.16.1.3-11.el9.x86_64
rpm-plugin-fapolicyd - Rpm plugin for fapolicyd functionality
Rpm plugin for fapolicyd functionality.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-plugin-systemd-inhibit-4.16.1.3-11.el9.x86_64
rpm-plugin-systemd-inhibit - Rpm plugin for systemd inhibit functionality
This plugin blocks systemd from entering idle, sleep or shutdown while an rpm
transaction is running using the systemd-inhibit mechanism.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-plugin-ima-4.16.1.3-11.el9.x86_64
rpm-plugin-ima - Rpm plugin ima file signatures
Rpm plugin ima file signatures.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-build-4.16.1.3-11.el9.x86_64
rpm-build - Scripts and executable programs used to build packages
The rpm-build package contains the scripts and executable programs
that are used to build packages using the RPM Package Manager.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Mon, 14 Feb 2022 09:32:14 GMT: evolution-langpacks-3.40.4-3.el9.noarch
evolution-langpacks - Translations for evolution
This package contains translations for evolution.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Mon, 14 Feb 2022 09:32:14 GMT: evolution-help-3.40.4-3.el9.noarch
evolution-help - Help files for evolution
This package contains user documentation for evolution.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Mon, 14 Feb 2022 09:31:48 GMT: evolution-pst-3.40.4-3.el9.x86_64
evolution-pst - PST importer plugin for Evolution
This package contains the plugin to import Microsoft Personal Storage Table
(PST) files used by Microsoft Outlook and Microsoft Exchange.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Mon, 14 Feb 2022 09:31:48 GMT: evolution-bogofilter-3.40.4-3.el9.x86_64
evolution-bogofilter - Bogofilter plugin for Evolution
This package contains the plugin to filter junk mail using Bogofilter.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Mon, 14 Feb 2022 09:31:48 GMT: evolution-3.40.4-3.el9.x86_64
evolution - Mail and calendar client for GNOME
Evolution is the GNOME mailer, calendar, contact manager and
communications tool. The components which make up Evolution
are tightly integrated with one another and act as a seamless
personal information-management tool.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Mon, 14 Feb 2022 09:31:48 GMT: evolution-spamassassin-3.40.4-3.el9.x86_64
evolution-spamassassin - SpamAssassin plugin for Evolution
This package contains the plugin to filter junk mail using SpamAssassin.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Wed, 16 Feb 2022 14:40:56 GMT: fuse3-devel-3.10.2-5.el9.i686
fuse3-devel - File System in Userspace (FUSE) v3 devel files
With FUSE it is possible to implement a fully functional filesystem in a
userspace program. This package contains development files (headers,
pgk-config) to develop FUSE v3 based applications/filesystems.
Change Log:
Wed, 16 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-5 - Fix test failure - Fix missing dependency Tue, 15 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-4 - Add gating.yaml file Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.10.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:40:58 GMT: fuse3-libs-3.10.2-5.el9.x86_64
fuse3-libs - File System in Userspace (FUSE) v3 libraries
Devel With FUSE it is possible to implement a fully functional filesystem in a
userspace program. This package contains the FUSE v3 libraries.
Change Log:
Wed, 16 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-5 - Fix test failure - Fix missing dependency Tue, 15 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-4 - Add gating.yaml file Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.10.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:40:58 GMT: fuse3-3.10.2-5.el9.x86_64
fuse3 - File System in Userspace (FUSE) v3 utilities
With FUSE it is possible to implement a fully functional filesystem in a
userspace program. This package contains the FUSE v3 userspace tools to
mount a FUSE filesystem.
Change Log:
Wed, 16 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-5 - Fix test failure - Fix missing dependency Tue, 15 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-4 - Add gating.yaml file Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.10.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:40:56 GMT: fuse3-libs-3.10.2-5.el9.i686
fuse3-libs - File System in Userspace (FUSE) v3 libraries
Devel With FUSE it is possible to implement a fully functional filesystem in a
userspace program. This package contains the FUSE v3 libraries.
Change Log:
Wed, 16 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-5 - Fix test failure - Fix missing dependency Tue, 15 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-4 - Add gating.yaml file Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.10.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:40:58 GMT: fuse3-devel-3.10.2-5.el9.x86_64
fuse3-devel - File System in Userspace (FUSE) v3 devel files
With FUSE it is possible to implement a fully functional filesystem in a
userspace program. This package contains development files (headers,
pgk-config) to develop FUSE v3 based applications/filesystems.
Change Log:
Wed, 16 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-5 - Fix test failure - Fix missing dependency Tue, 15 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-4 - Add gating.yaml file Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.10.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 11:55:55 GMT: gnutls-devel-3.7.3-4.el9.i686
gnutls-devel - Development files for the gnutls package
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
This package contains files needed for developing applications with
the GnuTLS library.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:55:55 GMT: gnutls-c++-3.7.3-4.el9.i686
gnutls-c++ - The C++ interface to GnuTLS
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:56:11 GMT: gnutls-devel-3.7.3-4.el9.x86_64
gnutls-devel - Development files for the gnutls package
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
This package contains files needed for developing applications with
the GnuTLS library.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:56:11 GMT: gnutls-c++-3.7.3-4.el9.x86_64
gnutls-c++ - The C++ interface to GnuTLS
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:56:11 GMT: gnutls-dane-3.7.3-4.el9.x86_64
gnutls-dane - A DANE protocol implementation for GnuTLS
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
This package contains library that implements the DANE protocol for verifying
TLS certificates through DNSSEC.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:55:55 GMT: gnutls-dane-3.7.3-4.el9.i686
gnutls-dane - A DANE protocol implementation for GnuTLS
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
This package contains library that implements the DANE protocol for verifying
TLS certificates through DNSSEC.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:56:11 GMT: gnutls-utils-3.7.3-4.el9.x86_64
gnutls-utils - Command line tools for TLS protocol
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
This package contains command line TLS client and server and certificate
manipulation tools.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Mon, 14 Feb 2022 19:55:41 GMT: lua-posix-35.0-6.el9.x86_64
lua-posix - A POSIX library for Lua
This is a POSIX library for Lua which provides access to many POSIX features
to Lua programs.
Change Log:
Mon, 14 Feb 2022 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 35.0-6 - Pass LDFLAGS to the build so RPM linker flags are used and annocheck passes. - Add patch from upstream to fix propagation of LDFLAGS into build system. - Resolves: rhbz#2044879 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 35.0-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 35.0-4 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Wed, 16 Feb 2022 12:17:28 GMT: createrepo_c-libs-0.17.7-2.el9.x86_64
createrepo_c-libs - Library for repodata manipulation
Libraries for applications using the createrepo_c library
for easy manipulation with a repodata.
Change Log:
Wed, 16 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-2 - Switch default of --keep-all-metadata to TRUE and add --discard-additional-metadata (RhBug:2055032) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-1 - Update to 0.17.7 - Remove insecure hashes SHA-1 and MD5 from the default build (RhBug:1935486) - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks (RhBug:1998426) - Fix valgrind warnings caused by subprocess calls Mon, 16 Aug 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.2-5 - Fix issues detected by static analyzers ...
Wed, 16 Feb 2022 12:17:25 GMT: createrepo_c-libs-0.17.7-2.el9.i686
createrepo_c-libs - Library for repodata manipulation
Libraries for applications using the createrepo_c library
for easy manipulation with a repodata.
Change Log:
Wed, 16 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-2 - Switch default of --keep-all-metadata to TRUE and add --discard-additional-metadata (RhBug:2055032) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-1 - Update to 0.17.7 - Remove insecure hashes SHA-1 and MD5 from the default build (RhBug:1935486) - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks (RhBug:1998426) - Fix valgrind warnings caused by subprocess calls Mon, 16 Aug 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.2-5 - Fix issues detected by static analyzers ...
Wed, 16 Feb 2022 12:17:28 GMT: createrepo_c-0.17.7-2.el9.x86_64
createrepo_c - Creates a common metadata repository
C implementation of Createrepo.
A set of utilities (createrepo_c, mergerepo_c, modifyrepo_c)
for generating a common metadata repository from a directory of
rpm packages and maintaining it.
Change Log:
Wed, 16 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-2 - Switch default of --keep-all-metadata to TRUE and add --discard-additional-metadata (RhBug:2055032) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-1 - Update to 0.17.7 - Remove insecure hashes SHA-1 and MD5 from the default build (RhBug:1935486) - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks (RhBug:1998426) - Fix valgrind warnings caused by subprocess calls Mon, 16 Aug 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.2-5 - Fix issues detected by static analyzers ...
Wed, 16 Feb 2022 12:17:28 GMT: python3-createrepo_c-0.17.7-2.el9.x86_64
python3-createrepo_c - Python 3 bindings for the createrepo_c library
Python 3 bindings for the createrepo_c library.
Change Log:
Wed, 16 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-2 - Switch default of --keep-all-metadata to TRUE and add --discard-additional-metadata (RhBug:2055032) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-1 - Update to 0.17.7 - Remove insecure hashes SHA-1 and MD5 from the default build (RhBug:1935486) - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks (RhBug:1998426) - Fix valgrind warnings caused by subprocess calls Mon, 16 Aug 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.2-5 - Fix issues detected by static analyzers ...
Tue, 01 Feb 2022 09:49:51 GMT: 2:tog-pegasus-libs-2.14.1-64.el9.i686
tog-pegasus-libs - The OpenPegasus Libraries
The OpenPegasus libraries.
Change Log:
Tue, 01 Feb 2022 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-64 - Fix build flags Resolves: #2044895 - Fix preun systemd macro call Resolves: #2048002 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2:2.14.1-63 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 22 Jul 2021 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-62 - Improve error message without DES support in SNMP Resolves: rhbz#1972623 ...
Tue, 01 Feb 2022 09:49:52 GMT: 2:tog-pegasus-2.14.1-64.el9.x86_64
tog-pegasus - OpenPegasus WBEM Services for Linux
OpenPegasus WBEM Services for Linux enables management solutions that deliver
increased control of enterprise resources. WBEM is a platform and resource
independent DMTF standard that defines a common information model and
communication protocol for monitoring and controlling resources from diverse
sources.
Change Log:
Tue, 01 Feb 2022 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-64 - Fix build flags Resolves: #2044895 - Fix preun systemd macro call Resolves: #2048002 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2:2.14.1-63 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 22 Jul 2021 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-62 - Improve error message without DES support in SNMP Resolves: rhbz#1972623 ...
Tue, 01 Feb 2022 09:49:52 GMT: 2:tog-pegasus-libs-2.14.1-64.el9.x86_64
tog-pegasus-libs - The OpenPegasus Libraries
The OpenPegasus libraries.
Change Log:
Tue, 01 Feb 2022 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-64 - Fix build flags Resolves: #2044895 - Fix preun systemd macro call Resolves: #2048002 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2:2.14.1-63 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 22 Jul 2021 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-62 - Improve error message without DES support in SNMP Resolves: rhbz#1972623 ...
Wed, 16 Feb 2022 13:00:47 GMT: 2:vim-enhanced-8.2.2637-13.el9.x86_64
vim-enhanced - A version of the VIM editor which includes recent enhancements
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more. The
vim-enhanced package contains a version of VIM with extra, recently
introduced features like Python and Perl interpreters.
Install the vim-enhanced package if you'd like to use a version of the
VIM editor which includes recently added enhancements like
interpreters for the Python and Perl scripting languages. You'll also
need to install the vim-common package.
Change Log:
Wed, 16 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-13 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash Thu, 10 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0413 vim: use after free in src/ex_cmds.c - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c - CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c Wed, 09 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0368 vim: Out-of-bounds Read in vim - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c ...
Wed, 16 Feb 2022 13:00:47 GMT: 2:vim-common-8.2.2637-13.el9.x86_64
vim-common - The common files needed by any version of the VIM editor
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more. The
vim-common package contains files which every VIM binary will need in
order to run.
If you are installing vim-enhanced or vim-X11, you'll also need
to install the vim-common package.
Change Log:
Wed, 16 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-13 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash Thu, 10 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0413 vim: use after free in src/ex_cmds.c - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c - CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c Wed, 09 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0368 vim: Out-of-bounds Read in vim - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c ...
Wed, 16 Feb 2022 13:00:47 GMT: 2:vim-X11-8.2.2637-13.el9.x86_64
vim-X11 - The VIM version of the vi editor for the X Window System - GVim
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and
more. VIM-X11 is a version of the VIM editor which will run within the
X Window System. If you install this package, you can run VIM as an X
application with a full GUI interface and mouse support by command gvim.
Install the vim-X11 package if you'd like to try out a version of vi
with graphics and mouse capabilities. You'll also need to install the
vim-common package.
Change Log:
Wed, 16 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-13 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash Thu, 10 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0413 vim: use after free in src/ex_cmds.c - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c - CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c Wed, 09 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0368 vim: Out-of-bounds Read in vim - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c ...
Tue, 15 Feb 2022 19:08:18 GMT: 1:virt-v2v-bash-completion-1.45.99-1.el9.noarch
virt-v2v-bash-completion - Bash tab-completion for virt-v2v
Install this package if you want intelligent bash tab-completion
for virt-v2v.
Change Log:
Tue, 15 Feb 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.99-1 - Rebase to upstream 1.45.99. - Add check for sufficient free space in the host resolves: rhbz#2051394 - Update documentation of -ip for conversions from VMware over HTTPS related: rhbz#1960087 - -o rhv-upload: Keep connections alive resolves: rhbz#2032324 - -o rhv-upload: Improve conversion performance resolves: rhbz#2039255 - -o rhv-upload: Replace -oo rhv-direct with -oo rhv-proxy resolves: rhbz#2033096 - Fix log line wrapping making log parsing difficult (1820221) Wed, 02 Feb 2022 GMT - Laszlo Ersek <lersek@redhat.com> - 1:1.45.97-4 - v2v import from vCenter fails when using interactive password because cookie-script tries to be interactive (pick commit 8abc07a8589a) resolves: rhbz#1960087 - model='virtio-transitional' is wrongly added when converting windows guest to local by rhel9 v2v (pick commit range commit range 8abc07a8589a..cacedec64072) resolves: rhbz#2043333 Wed, 26 Jan 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.97-3 - Rebase to upstream 1.45.97. resolves: rhbz#2011713 - Add virtio-transitional for older guests when converting to q35 resolves: rhbz#1942325 - Fix -o rhv mode resolves: rhbz#2027598 - input: xen: Fix assertion error when importing from remote block device resolves: rhbz#2041852 - output: -o json: Allow -oo (output options) to work resolves: rhbz#2041850 - Fix virt-v2v hang when given incorrect vpx:// URL resolves: rhbz#2041886 - Fix hang when converting with virt-p2v resolves: rhbz#2044911 - Send nbdinfo debugging information to stderr resolves: rhbz#2044922 - Explicitly require platform-python resolves: rhbz#2046178 ...
Tue, 15 Feb 2022 19:08:18 GMT: 1:virt-v2v-1.45.99-1.el9.x86_64
virt-v2v - Convert a virtual machine to run on KVM
Virt-v2v converts a single guest from a foreign hypervisor to run on
KVM. It can read Linux and Windows guests running on VMware, Xen,
Hyper-V and some other hypervisors, and convert them to KVM managed by
libvirt, OpenStack, oVirt, Red Hat Virtualisation (RHV) or several
other targets. It can modify the guest to make it bootable on KVM and
install virtio drivers so it will run quickly.
Change Log:
Tue, 15 Feb 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.99-1 - Rebase to upstream 1.45.99. - Add check for sufficient free space in the host resolves: rhbz#2051394 - Update documentation of -ip for conversions from VMware over HTTPS related: rhbz#1960087 - -o rhv-upload: Keep connections alive resolves: rhbz#2032324 - -o rhv-upload: Improve conversion performance resolves: rhbz#2039255 - -o rhv-upload: Replace -oo rhv-direct with -oo rhv-proxy resolves: rhbz#2033096 - Fix log line wrapping making log parsing difficult (1820221) Wed, 02 Feb 2022 GMT - Laszlo Ersek <lersek@redhat.com> - 1:1.45.97-4 - v2v import from vCenter fails when using interactive password because cookie-script tries to be interactive (pick commit 8abc07a8589a) resolves: rhbz#1960087 - model='virtio-transitional' is wrongly added when converting windows guest to local by rhel9 v2v (pick commit range commit range 8abc07a8589a..cacedec64072) resolves: rhbz#2043333 Wed, 26 Jan 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.97-3 - Rebase to upstream 1.45.97. resolves: rhbz#2011713 - Add virtio-transitional for older guests when converting to q35 resolves: rhbz#1942325 - Fix -o rhv mode resolves: rhbz#2027598 - input: xen: Fix assertion error when importing from remote block device resolves: rhbz#2041852 - output: -o json: Allow -oo (output options) to work resolves: rhbz#2041850 - Fix virt-v2v hang when given incorrect vpx:// URL resolves: rhbz#2041886 - Fix hang when converting with virt-p2v resolves: rhbz#2044911 - Send nbdinfo debugging information to stderr resolves: rhbz#2044922 - Explicitly require platform-python resolves: rhbz#2046178 ...
Wed, 16 Feb 2022 13:00:51 GMT: python3-libnmstate-2.0.0-1.el9.x86_64
python3-libnmstate - nmstate Python 3 API library
This package contains the Python 3 library for Nmstate.
Change Log:
Wed, 16 Feb 2022 GMT - Fernando Fernandez Mancera <ferferna@redhat.com> - 2.0.0-1 - Upgrade to 2.0.0. RHBZ#1996575 Thu, 13 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.7.alpha6 - Add gating.yaml. RHBZ#1996575 Wed, 12 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.6.alpha6 - Upgrade to 2.0.0. alpha 6. Resolves: RHBZ#1996575 ...
Wed, 16 Feb 2022 13:00:51 GMT: nmstate-libs-2.0.0-1.el9.i686
nmstate-libs - C binding of nmstate
This package contains the C binding of nmstate.
Change Log:
Wed, 16 Feb 2022 GMT - Fernando Fernandez Mancera <ferferna@redhat.com> - 2.0.0-1 - Upgrade to 2.0.0. RHBZ#1996575 Thu, 13 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.7.alpha6 - Add gating.yaml. RHBZ#1996575 Wed, 12 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.6.alpha6 - Upgrade to 2.0.0. alpha 6. Resolves: RHBZ#1996575 ...
Wed, 16 Feb 2022 13:00:51 GMT: nmstate-libs-2.0.0-1.el9.x86_64
nmstate-libs - C binding of nmstate
This package contains the C binding of nmstate.
Change Log:
Wed, 16 Feb 2022 GMT - Fernando Fernandez Mancera <ferferna@redhat.com> - 2.0.0-1 - Upgrade to 2.0.0. RHBZ#1996575 Thu, 13 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.7.alpha6 - Add gating.yaml. RHBZ#1996575 Wed, 12 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.6.alpha6 - Upgrade to 2.0.0. alpha 6. Resolves: RHBZ#1996575 ...
Wed, 16 Feb 2022 13:00:51 GMT: nmstate-2.0.0-1.el9.x86_64
nmstate - Declarative network manager API
Nmstate is a library with an accompanying command line tool that manages host
networking settings in a declarative manner and aimed to satisfy enterprise
needs to manage host networking through a northbound declarative API and multi
provider support on the southbound.
Change Log:
Wed, 16 Feb 2022 GMT - Fernando Fernandez Mancera <ferferna@redhat.com> - 2.0.0-1 - Upgrade to 2.0.0. RHBZ#1996575 Thu, 13 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.7.alpha6 - Add gating.yaml. RHBZ#1996575 Wed, 12 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.6.alpha6 - Upgrade to 2.0.0. alpha 6. Resolves: RHBZ#1996575 ...
Wed, 16 Feb 2022 15:18:33 GMT: SDL2-devel-2.0.20-2.el9.i686
SDL2-devel - Files needed to develop Simple DirectMedia Layer applications
Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed
to provide fast access to the graphics frame buffer and audio device. This
package provides the libraries, include files, and other resources needed for
developing SDL applications.
Change Log:
Tue, 08 Feb 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-2 - Backport Wayland fixes with Wayland-by-default from upstream Resolves: rhbz#2051963 Tue, 11 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-1 - Update to 2.0.20 Resolves: rhbz#2039137 - Drop backported patches included in this release Fri, 07 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.18-2 - Move libSDL2main to -devel and refresh split CMake target patch Resolves: rhbz#2038390 ...
Wed, 16 Feb 2022 15:18:33 GMT: SDL2-2.0.20-2.el9.i686
SDL2 - Cross-platform multimedia library
Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed
to provide fast access to the graphics frame buffer and audio device.
Change Log:
Tue, 08 Feb 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-2 - Backport Wayland fixes with Wayland-by-default from upstream Resolves: rhbz#2051963 Tue, 11 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-1 - Update to 2.0.20 Resolves: rhbz#2039137 - Drop backported patches included in this release Fri, 07 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.18-2 - Move libSDL2main to -devel and refresh split CMake target patch Resolves: rhbz#2038390 ...
Wed, 16 Feb 2022 15:18:41 GMT: SDL2-2.0.20-2.el9.x86_64
SDL2 - Cross-platform multimedia library
Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed
to provide fast access to the graphics frame buffer and audio device.
Change Log:
Tue, 08 Feb 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-2 - Backport Wayland fixes with Wayland-by-default from upstream Resolves: rhbz#2051963 Tue, 11 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-1 - Update to 2.0.20 Resolves: rhbz#2039137 - Drop backported patches included in this release Fri, 07 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.18-2 - Move libSDL2main to -devel and refresh split CMake target patch Resolves: rhbz#2038390 ...
Wed, 16 Feb 2022 15:18:41 GMT: SDL2-devel-2.0.20-2.el9.x86_64
SDL2-devel - Files needed to develop Simple DirectMedia Layer applications
Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed
to provide fast access to the graphics frame buffer and audio device. This
package provides the libraries, include files, and other resources needed for
developing SDL applications.
Change Log:
Tue, 08 Feb 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-2 - Backport Wayland fixes with Wayland-by-default from upstream Resolves: rhbz#2051963 Tue, 11 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-1 - Update to 2.0.20 Resolves: rhbz#2039137 - Drop backported patches included in this release Fri, 07 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.18-2 - Move libSDL2main to -devel and refresh split CMake target patch Resolves: rhbz#2038390 ...
Wed, 16 Feb 2022 12:21:18 GMT: annobin-annocheck-10.54-2.el9.i686
annobin-annocheck - A tool for checking the security hardening status of binaries
Installs the annocheck program which uses the notes generated by annobin to
check that the specified files were compiled with the correct security
hardening options.
Change Log:
Tue, 15 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.54-2 - Spec File: Use a different method to disable the annobin plugin (#2054571) Mon, 14 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.54-1 - Annocheck: Accept static GO binaries. (#2053606) Fri, 11 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.53-2 - NVR bump to allow rebuilding against latest gcc. (#2053507) ...
Wed, 16 Feb 2022 12:21:19 GMT: annobin-annocheck-10.54-2.el9.x86_64
annobin-annocheck - A tool for checking the security hardening status of binaries
Installs the annocheck program which uses the notes generated by annobin to
check that the specified files were compiled with the correct security
hardening options.
Change Log:
Tue, 15 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.54-2 - Spec File: Use a different method to disable the annobin plugin (#2054571) Mon, 14 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.54-1 - Annocheck: Accept static GO binaries. (#2053606) Fri, 11 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.53-2 - NVR bump to allow rebuilding against latest gcc. (#2053507) ...
Wed, 16 Feb 2022 12:21:19 GMT: annobin-10.54-2.el9.x86_64
annobin - Annotate and examine compiled binary files
Provides a plugin for GCC that records extra information in the files
that it compiles.
Note - the plugin is automatically enabled in gcc builds via flags
provided by the redhat-rpm-macros package.
Also provides a plugin for Clang which performs a similar function.
Also provides a plugin for LLVM which performs a similar function.
Change Log:
Tue, 15 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.54-2 - Spec File: Use a different method to disable the annobin plugin (#2054571) Mon, 14 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.54-1 - Annocheck: Accept static GO binaries. (#2053606) Fri, 11 Feb 2022 GMT - Nick Clifton <nickc@redhat.com> - 10.53-2 - NVR bump to allow rebuilding against latest gcc. (#2053507) ...
Wed, 16 Feb 2022 08:35:46 GMT: libmng-2.0.3-17.el9.i686
libmng - Library for Multiple-image Network Graphics support
LibMNG is a library for accessing graphics in MNG (Multi-image Network
Graphics) and JNG (JPEG Network Graphics) formats. MNG graphics are
basically animated PNGs. JNG graphics are basically JPEG streams
integrated into a PNG chunk.
Change Log:
Wed, 16 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-17 - Fix gating.yaml - Release bump Tue, 15 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-16 - Add gating.yaml - Release bump Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.0.3-15 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 08:35:47 GMT: libmng-2.0.3-17.el9.x86_64
libmng - Library for Multiple-image Network Graphics support
LibMNG is a library for accessing graphics in MNG (Multi-image Network
Graphics) and JNG (JPEG Network Graphics) formats. MNG graphics are
basically animated PNGs. JNG graphics are basically JPEG streams
integrated into a PNG chunk.
Change Log:
Wed, 16 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-17 - Fix gating.yaml - Release bump Tue, 15 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-16 - Add gating.yaml - Release bump Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.0.3-15 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-jmods-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-jmods - JMods for OpenJDK 17
The JMods for OpenJDK 17.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-javadoc-zip-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-javadoc-zip - OpenJDK 17 API documentation compressed in a single archive
The OpenJDK 17 API documentation compressed in a single archive.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-src-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-src - OpenJDK 17 Source Bundle
The java-17-openjdk-src sub-package contains the complete OpenJDK 17
class library source code for use by IDE indexers and debuggers.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-static-libs-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-static-libs - OpenJDK 17 libraries for static linking
The OpenJDK 17 libraries for static linking.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-javadoc-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-javadoc - OpenJDK 17 API documentation
The OpenJDK 17 API documentation.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-devel-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-devel - OpenJDK 17 Development Environment
The OpenJDK 17 development tools.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-17.0.1.0.12-2.el9.x86_64
java-17-openjdk - OpenJDK 17 Runtime Environment
The OpenJDK 17 runtime environment.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-headless-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-headless - OpenJDK 17 Headless Runtime Environment
The OpenJDK 17 runtime environment without audio and video support.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-demo-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-demo - OpenJDK 17 Demos
The OpenJDK 17 demos.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Wed, 16 Feb 2022 18:35:30 GMT: gawk-all-langpacks-5.1.0-6.el9.x86_64
gawk-all-langpacks - Additional localisation files for gawk utility
The base package of gawk supports only the english localisation. This subpackage
contains additional localisation files.
Change Log:
Wed, 16 Feb 2022 GMT - Jakub Martisko <jamartis@redhat.com> - 5.1.0-6 Fix the issue with incorect handling of return values of some processes Resolves: rhbz#2055107 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 5.1.0-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 15 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 5.1.0-4 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Wed, 16 Feb 2022 14:55:22 GMT: perl-CPAN-2.29-2.el9.noarch
perl-CPAN - Query, download and build perl modules from CPAN sites
The CPAN module automates or at least simplifies the make and install of
perl modules and extensions. It includes some primitive searching
capabilities and knows how to use LWP, HTTP::Tiny, Net::FTP and certain
external download clients to fetch distributions from the net.
Change Log:
Wed, 16 Feb 2022 GMT - Jitka Plesnikova <jplesnik@redhat.com> - 2.29-2 - Resolves: rhbz#2037211 - Enable gating Mon, 07 Feb 2022 GMT - Jitka Plesnikova <jplesnik@redhat.com> - 2.29-1 - 2.29 bump; Package tests - Resolves: rhbz#2037211 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.28-8 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-hostfxr-6.0-6.0.2-3.el9.x86_64
dotnet-hostfxr-6.0 - .NET command line host resolver
The .NET host resolver contains the logic to resolve and select
the right version of the .NET SDK or runtime to use.
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, Mac and Windows.
It particularly focuses on creating console applications, web
applications and micro-services.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-targeting-pack-6.0-6.0.2-3.el9.x86_64
dotnet-targeting-pack-6.0 - Targeting Pack for Microsoft.NETCore.App 6.0
This package provides a targeting pack for Microsoft.NETCore.App 6.0
that allows developers to compile against and target Microsoft.NETCore.App 6.0
applications using the .NET SDK.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-sdk-6.0-6.0.102-3.el9.x86_64
dotnet-sdk-6.0 - .NET 6.0 Software Development Kit
The .NET SDK is a collection of command line applications to
create, build, publish and run .NET applications.
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, Mac and Windows.
It particularly focuses on creating console applications, web
applications and micro-services.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: aspnetcore-targeting-pack-6.0-6.0.2-3.el9.x86_64
aspnetcore-targeting-pack-6.0 - Targeting Pack for Microsoft.AspNetCore.App 6.0
This package provides a targeting pack for Microsoft.AspNetCore.App 6.0
that allows developers to compile against and target Microsoft.AspNetCore.App 6.0
applications using the .NET SDK.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-templates-6.0-6.0.102-3.el9.x86_64
dotnet-templates-6.0 - .NET 6.0 templates
This package contains templates used by the .NET SDK.
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, Mac and Windows.
It particularly focuses on creating console applications, web
applications and micro-services.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-host-6.0.2-3.el9.x86_64
dotnet-host - .NET command line launcher
The .NET host is a command line program that runs a standalone
.NET application or launches the SDK.
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, Mac and Windows.
It particularly focuses on creating console applications, web
applications and micro-services.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-runtime-6.0-6.0.2-3.el9.x86_64
dotnet-runtime-6.0 - NET 6.0 runtime
The .NET runtime contains everything needed to run .NET applications.
It includes a high performance Virtual Machine as well as the framework
libraries used by .NET applications.
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, Mac and Windows.
It particularly focuses on creating console applications, web
applications and micro-services.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-apphost-pack-6.0-6.0.2-3.el9.x86_64
dotnet-apphost-pack-6.0 - Targeting Pack for Microsoft.NETCore.App 6.0
This package provides a targeting pack for Microsoft.NETCore.App 6.0
that allows developers to compile against and target Microsoft.NETCore.App 6.0
applications using the .NET SDK.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: netstandard-targeting-pack-2.1-6.0.102-3.el9.x86_64
netstandard-targeting-pack-2.1 - Targeting Pack for NETStandard.Library 2.1
This package provides a targeting pack for NETStandard.Library 2.1
that allows developers to compile against and target NETStandard.Library 2.1
applications using the .NET SDK.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 04:21:06 GMT: aspnetcore-runtime-6.0-6.0.2-3.el9.x86_64
aspnetcore-runtime-6.0 - ASP.NET Core 6.0 runtime
The ASP.NET Core runtime contains everything needed to run .NET
web applications. It includes a high performance Virtual Machine as
well as the framework libraries used by .NET applications.
ASP.NET Core is a fast, lightweight and modular platform for creating
cross platform web applications that work on Linux, Mac and Windows.
It particularly focuses on creating console applications, web
applications and micro-services.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...
Wed, 16 Feb 2022 10:17:10 GMT: python3-psycopg2-2.8.6-6.el9.x86_64
python3-psycopg2 - A PostgreSQL database adapter for Python 3
Psycopg is the most popular PostgreSQL adapter for the Python
programming language. At its core it fully implements the Python DB
API 2.0 specifications. Several extensions allow access to many of the
features offered by PostgreSQL.
Change Log:
Tue, 08 Feb 2022 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 2.8.6-6 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Add manual Obsoletes for python39-psycopg2-doc - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.8.6-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.8.6-4 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
New packages in centos-9-stream-x86_64-BaseOS
Mon, 07 Feb 2022 09:26:07 GMT: dnf-4.10.0-4.el9.noarch
dnf - Package manager
Utility that allows users to manage packages on their systems.
It supports RPMs, modules and comps groups & environments.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-4 - Use rpm.TransactionSet.dbCookie() to determining if rpmdb has changed (RhBug:2043476) Mon, 24 Jan 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-3 - Don't recommend python3-unbound (RhBug:1947925) - Recommend rpm-plugin-systemd-inhibit only if systemd (RhBug:1947924) - Don't recommend /usr/bin/sqlite3 for bash-completion (RhBug:1947924) Tue, 07 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-2 - Respect cacheonly in python dnf API (RhBug:2026849) - [doc] Improve description of multilib_policy=all (RhBug:1996681,1995630) ...
Mon, 07 Feb 2022 09:26:07 GMT: python3-dnf-4.10.0-4.el9.noarch
python3-dnf - Python 3 interface to DNF
Python 3 interface to DNF.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-4 - Use rpm.TransactionSet.dbCookie() to determining if rpmdb has changed (RhBug:2043476) Mon, 24 Jan 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-3 - Don't recommend python3-unbound (RhBug:1947925) - Recommend rpm-plugin-systemd-inhibit only if systemd (RhBug:1947924) - Don't recommend /usr/bin/sqlite3 for bash-completion (RhBug:1947924) Tue, 07 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-2 - Respect cacheonly in python dnf API (RhBug:2026849) - [doc] Improve description of multilib_policy=all (RhBug:1996681,1995630) ...
Mon, 07 Feb 2022 09:26:07 GMT: dnf-automatic-4.10.0-4.el9.noarch
dnf-automatic - Package manager - automated upgrades
Systemd units that can periodically download package upgrades and apply them.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-4 - Use rpm.TransactionSet.dbCookie() to determining if rpmdb has changed (RhBug:2043476) Mon, 24 Jan 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-3 - Don't recommend python3-unbound (RhBug:1947925) - Recommend rpm-plugin-systemd-inhibit only if systemd (RhBug:1947924) - Don't recommend /usr/bin/sqlite3 for bash-completion (RhBug:1947924) Tue, 07 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-2 - Respect cacheonly in python dnf API (RhBug:2026849) - [doc] Improve description of multilib_policy=all (RhBug:1996681,1995630) ...
Mon, 07 Feb 2022 09:26:07 GMT: yum-4.10.0-4.el9.noarch
yum - Package manager
Utility that allows users to manage packages on their systems.
It supports RPMs, modules and comps groups & environments.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-4 - Use rpm.TransactionSet.dbCookie() to determining if rpmdb has changed (RhBug:2043476) Mon, 24 Jan 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-3 - Don't recommend python3-unbound (RhBug:1947925) - Recommend rpm-plugin-systemd-inhibit only if systemd (RhBug:1947924) - Don't recommend /usr/bin/sqlite3 for bash-completion (RhBug:1947924) Tue, 07 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-2 - Respect cacheonly in python dnf API (RhBug:2026849) - [doc] Improve description of multilib_policy=all (RhBug:1996681,1995630) ...
Mon, 07 Feb 2022 09:26:07 GMT: dnf-data-4.10.0-4.el9.noarch
dnf-data - Common data and configuration files for DNF
Common data and configuration files for DNF
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-4 - Use rpm.TransactionSet.dbCookie() to determining if rpmdb has changed (RhBug:2043476) Mon, 24 Jan 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-3 - Don't recommend python3-unbound (RhBug:1947925) - Recommend rpm-plugin-systemd-inhibit only if systemd (RhBug:1947924) - Don't recommend /usr/bin/sqlite3 for bash-completion (RhBug:1947924) Tue, 07 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.10.0-2 - Respect cacheonly in python dnf API (RhBug:2026849) - [doc] Improve description of multilib_policy=all (RhBug:1996681,1995630) ...
Thu, 10 Feb 2022 17:05:29 GMT: publicsuffix-list-dafsa-20210518-3.el9.noarch
publicsuffix-list-dafsa - Cross-vendor public domain suffix database in DAFSA form
The Public Suffix List is a cross-vendor initiative to provide
an accurate list of domain name suffixes, maintained by the hard work
of Mozilla volunteers and by submissions from registries.
Software using the Public Suffix List will be able to determine where
cookies may and may not be set, protecting the user from being
tracked across sites.
This package includes a DAFSA representation of the Public Suffix List
for runtime loading.
Change Log:
Thu, 10 Feb 2022 GMT - Kamil Dudka <kdudka@redhat.com> - 20210518-3 - unset writable-by-group permission bit on the license file Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 20210518-2 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 18 May 2021 GMT - Kamil Dudka <kdudka@redhat.com> - 20210518-1 - Recent revision - 20210518 ...
Thu, 17 Feb 2022 18:56:54 GMT: gpgme-1.15.1-6.el9.i686
gpgme - GnuPG Made Easy - high level crypto API
GnuPG Made Easy (GPGME) is a library designed to make access to GnuPG
easier for applications. It provides a high-level crypto API for
encryption, decryption, signing, signature verification and key
management.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: gpgme-1.15.1-6.el9.x86_64
gpgme - GnuPG Made Easy - high level crypto API
GnuPG Made Easy (GPGME) is a library designed to make access to GnuPG
easier for applications. It provides a high-level crypto API for
encryption, decryption, signing, signature verification and key
management.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: python3-gpg-1.15.1-6.el9.x86_64
python3-gpg - gpgme bindings for Python 3
gpgme bindings for Python 3.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-debug-modules-extra-5.14.0-62.el9.x86_64
kernel-debug-modules-extra - Extra kernel modules to match the kernel
This package provides less commonly used kernel modules for the kernel package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-modules-5.14.0-62.el9.x86_64
kernel-modules - kernel modules to match the core kernel
This package provides commonly used kernel modules for the core kernel package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-debug-modules-5.14.0-62.el9.x86_64
kernel-debug-modules - kernel modules to match the core kernel
This package provides commonly used kernel modules for the core kernel package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: bpftool-5.14.0-62.el9.x86_64
bpftool - Inspection and simple manipulation of eBPF programs and maps
This package contains the bpftool, which allows inspection and simple
manipulation of eBPF programs and maps.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-core-5.14.0-62.el9.x86_64
kernel-core - The Linux kernel
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-tools-5.14.0-62.el9.x86_64
kernel-tools - Assortment of tools for the Linux kernel
This package contains the tools/ directory from the kernel source
and the supporting documentation.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-debug-5.14.0-62.el9.x86_64
kernel-debug - kernel meta-package for the debug kernel
The meta-package for the debug kernel
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: python3-perf-5.14.0-62.el9.x86_64
python3-perf - Python bindings for apps which will manipulate perf events
The python3-perf package contains a module that permits applications
written in the Python programming language to use the interface
to manipulate perf events.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-debug-core-5.14.0-62.el9.x86_64
kernel-debug-core - The Linux kernel compiled with extra debugging enabled
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.
This variant of the kernel has numerous debugging options enabled.
It should only be installed when trying to gather additional information
on kernel bugs, as some of these options impact performance noticably.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-tools-libs-5.14.0-62.el9.x86_64
kernel-tools-libs - Libraries for the kernels-tools
This package contains the libraries built from the tools/ directory
from the kernel source.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-5.14.0-62.el9.x86_64
kernel - The Linux kernel
The kernel meta package
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-modules-extra-5.14.0-62.el9.x86_64
kernel-modules-extra - Extra kernel modules to match the kernel
This package provides less commonly used kernel modules for the kernel package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:56 GMT: kernel-abi-stablelists-5.14.0-62.el9.noarch
kernel-abi-stablelists - The Red Hat Enterprise Linux kernel ABI symbol stablelists
The kABI package contains information pertaining to the Red Hat Enterprise
Linux kernel ABI, including lists of kernel symbols that are needed by
external Linux kernel modules, and a yum plugin to aid enforcement.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Sat, 19 Feb 2022 12:14:21 GMT: policycoreutils-newrole-3.3-4.2.el9.x86_64
policycoreutils-newrole - The newrole application for RBAC/MLS
RBAC/MLS policy machines require newrole as a way of changing the role
or level of a logged in user.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:21 GMT: policycoreutils-3.3-4.2.el9.x86_64
policycoreutils - SELinux policy core utilities
Security-enhanced Linux is a feature of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux. The Security-enhanced Linux
kernel contains new architectural components originally developed to
improve the security of the Flask operating system. These
architectural components provide general support for the enforcement
of many kinds of mandatory access control policies, including those
based on the concepts of Type Enforcement®, Role-based Access
Control, and Multi-level Security.
policycoreutils contains the policy core utilities that are required
for basic operation of a SELinux system. These utilities include
load_policy to load policies, setfiles to label filesystems, newrole
to switch roles.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Sat, 19 Feb 2022 12:14:21 GMT: policycoreutils-restorecond-3.3-4.2.el9.x86_64
policycoreutils-restorecond - SELinux restorecond utilities
The policycoreutils-restorecond package contains the restorecond service.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-4.2 - semodule: add command-line option to detect module changes Mon, 14 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-3 - fixfiles: Use parallel relabeling Mon, 29 Nov 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - setfiles/restorecon: support parallel relabeling with -T <N> option - semodule: add -m | --checksum option ...
Tue, 15 Feb 2022 11:45:34 GMT: libsemanage-3.3-2.el9.i686
libsemanage - SELinux binary policy manipulation library
Security-enhanced Linux is a feature of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux. The Security-enhanced Linux
kernel contains new architectural components originally developed to
improve the security of the Flask operating system. These
architectural components provide general support for the enforcement
of many kinds of mandatory access control policies, including those
based on the concepts of Type Enforcement®, Role-based Access
Control, and Multi-level Security.
libsemanage provides an API for the manipulation of SELinux binary policies.
It is used by checkpolicy (the policy compiler) and similar tools, as well
as by programs like load_policy that need to perform specific transformations
on binary policies such as customizing policy boolean settings.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - optionally rebuild policy when modules are changed externally Fri, 22 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-1 - SELinux userspace 3.3 release Sun, 10 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc3.1 - SELinux userspace 3.3-rc3 release ...
Tue, 15 Feb 2022 11:45:38 GMT: libsemanage-3.3-2.el9.x86_64
libsemanage - SELinux binary policy manipulation library
Security-enhanced Linux is a feature of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux. The Security-enhanced Linux
kernel contains new architectural components originally developed to
improve the security of the Flask operating system. These
architectural components provide general support for the enforcement
of many kinds of mandatory access control policies, including those
based on the concepts of Type Enforcement®, Role-based Access
Control, and Multi-level Security.
libsemanage provides an API for the manipulation of SELinux binary policies.
It is used by checkpolicy (the policy compiler) and similar tools, as well
as by programs like load_policy that need to perform specific transformations
on binary policies such as customizing policy boolean settings.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - optionally rebuild policy when modules are changed externally Fri, 22 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-1 - SELinux userspace 3.3 release Sun, 10 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc3.1 - SELinux userspace 3.3-rc3 release ...
Thu, 17 Feb 2022 21:58:01 GMT: selinux-policy-34.1.26-1.el9.noarch
selinux-policy - SELinux policy configuration
SELinux core policy package.
Originally based off of reference policy,
the policy has been adjusted to provide support for Fedora.
Change Log:
Thu, 17 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.26-1 - Remove permissive domain for insights_client_t Resolves: rhbz#2055823 - New policy for insight-client Resolves: rhbz#2055823 - Allow confined sysadmin to use tool vipw Resolves: rhbz#2053458 - Allow chage domtrans to sssd Resolves: rhbz#2054657 - Remove label for /usr/sbin/bgpd Resolves: rhbz#2055578 - Dontaudit pkcsslotd sys_admin capability Resolves: rhbz#2055639 - Do not change selinuxuser_execmod and selinuxuser_execstack Resolves: rhbz#2055822 - Allow tuned to read rhsmcertd config files Resolves: rhbz#2055823 Mon, 14 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.25-1 - Allow systemd watch unallocated ttys Resolves: rhbz#2054150 - Allow alsa bind mixer controls to led triggers Resolves: rhbz#2049732 - Allow alsactl set group Process ID of a process Resolves: rhbz#2049732 - Allow unconfined to run virtd bpf Resolves: rhbz#2033504 Fri, 04 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.24-1 - Allow tumblerd write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain create session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gkeyringd_domain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow systemd-logind delete session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gdm-x-session write to session dbus tmp sock files Resolves: rhbz#2000039 - Allow sysadm_t nnp_domtrans to systemd_tmpfiles_t Resolves: rhbz#2039453 - Label exFAT utilities at /usr/sbin Resolves: rhbz#1972225 ...
Thu, 17 Feb 2022 21:58:01 GMT: selinux-policy-targeted-34.1.26-1.el9.noarch
selinux-policy-targeted - SELinux targeted policy
SELinux targeted policy package.
Change Log:
Thu, 17 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.26-1 - Remove permissive domain for insights_client_t Resolves: rhbz#2055823 - New policy for insight-client Resolves: rhbz#2055823 - Allow confined sysadmin to use tool vipw Resolves: rhbz#2053458 - Allow chage domtrans to sssd Resolves: rhbz#2054657 - Remove label for /usr/sbin/bgpd Resolves: rhbz#2055578 - Dontaudit pkcsslotd sys_admin capability Resolves: rhbz#2055639 - Do not change selinuxuser_execmod and selinuxuser_execstack Resolves: rhbz#2055822 - Allow tuned to read rhsmcertd config files Resolves: rhbz#2055823 Mon, 14 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.25-1 - Allow systemd watch unallocated ttys Resolves: rhbz#2054150 - Allow alsa bind mixer controls to led triggers Resolves: rhbz#2049732 - Allow alsactl set group Process ID of a process Resolves: rhbz#2049732 - Allow unconfined to run virtd bpf Resolves: rhbz#2033504 Fri, 04 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.24-1 - Allow tumblerd write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain create session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gkeyringd_domain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow systemd-logind delete session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gdm-x-session write to session dbus tmp sock files Resolves: rhbz#2000039 - Allow sysadm_t nnp_domtrans to systemd_tmpfiles_t Resolves: rhbz#2039453 - Label exFAT utilities at /usr/sbin Resolves: rhbz#1972225 ...
Thu, 17 Feb 2022 21:58:01 GMT: selinux-policy-mls-34.1.26-1.el9.noarch
selinux-policy-mls - SELinux MLS policy
SELinux MLS (Multi Level Security) policy package.
Change Log:
Thu, 17 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.26-1 - Remove permissive domain for insights_client_t Resolves: rhbz#2055823 - New policy for insight-client Resolves: rhbz#2055823 - Allow confined sysadmin to use tool vipw Resolves: rhbz#2053458 - Allow chage domtrans to sssd Resolves: rhbz#2054657 - Remove label for /usr/sbin/bgpd Resolves: rhbz#2055578 - Dontaudit pkcsslotd sys_admin capability Resolves: rhbz#2055639 - Do not change selinuxuser_execmod and selinuxuser_execstack Resolves: rhbz#2055822 - Allow tuned to read rhsmcertd config files Resolves: rhbz#2055823 Mon, 14 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.25-1 - Allow systemd watch unallocated ttys Resolves: rhbz#2054150 - Allow alsa bind mixer controls to led triggers Resolves: rhbz#2049732 - Allow alsactl set group Process ID of a process Resolves: rhbz#2049732 - Allow unconfined to run virtd bpf Resolves: rhbz#2033504 Fri, 04 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.24-1 - Allow tumblerd write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain create session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gkeyringd_domain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow systemd-logind delete session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gdm-x-session write to session dbus tmp sock files Resolves: rhbz#2000039 - Allow sysadm_t nnp_domtrans to systemd_tmpfiles_t Resolves: rhbz#2039453 - Label exFAT utilities at /usr/sbin Resolves: rhbz#1972225 ...
Thu, 17 Feb 2022 21:58:01 GMT: selinux-policy-sandbox-34.1.26-1.el9.noarch
selinux-policy-sandbox - SELinux sandbox policy
SELinux sandbox policy for use with the sandbox utility.
Change Log:
Thu, 17 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.26-1 - Remove permissive domain for insights_client_t Resolves: rhbz#2055823 - New policy for insight-client Resolves: rhbz#2055823 - Allow confined sysadmin to use tool vipw Resolves: rhbz#2053458 - Allow chage domtrans to sssd Resolves: rhbz#2054657 - Remove label for /usr/sbin/bgpd Resolves: rhbz#2055578 - Dontaudit pkcsslotd sys_admin capability Resolves: rhbz#2055639 - Do not change selinuxuser_execmod and selinuxuser_execstack Resolves: rhbz#2055822 - Allow tuned to read rhsmcertd config files Resolves: rhbz#2055823 Mon, 14 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.25-1 - Allow systemd watch unallocated ttys Resolves: rhbz#2054150 - Allow alsa bind mixer controls to led triggers Resolves: rhbz#2049732 - Allow alsactl set group Process ID of a process Resolves: rhbz#2049732 - Allow unconfined to run virtd bpf Resolves: rhbz#2033504 Fri, 04 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.24-1 - Allow tumblerd write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain create session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gkeyringd_domain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow systemd-logind delete session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gdm-x-session write to session dbus tmp sock files Resolves: rhbz#2000039 - Allow sysadm_t nnp_domtrans to systemd_tmpfiles_t Resolves: rhbz#2039453 - Label exFAT utilities at /usr/sbin Resolves: rhbz#1972225 ...
Thu, 17 Feb 2022 21:58:01 GMT: selinux-policy-doc-34.1.26-1.el9.noarch
selinux-policy-doc - SELinux policy documentation
SELinux policy documentation package.
This package contains manual pages and documentation of the policy modules.
Change Log:
Thu, 17 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.26-1 - Remove permissive domain for insights_client_t Resolves: rhbz#2055823 - New policy for insight-client Resolves: rhbz#2055823 - Allow confined sysadmin to use tool vipw Resolves: rhbz#2053458 - Allow chage domtrans to sssd Resolves: rhbz#2054657 - Remove label for /usr/sbin/bgpd Resolves: rhbz#2055578 - Dontaudit pkcsslotd sys_admin capability Resolves: rhbz#2055639 - Do not change selinuxuser_execmod and selinuxuser_execstack Resolves: rhbz#2055822 - Allow tuned to read rhsmcertd config files Resolves: rhbz#2055823 Mon, 14 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.25-1 - Allow systemd watch unallocated ttys Resolves: rhbz#2054150 - Allow alsa bind mixer controls to led triggers Resolves: rhbz#2049732 - Allow alsactl set group Process ID of a process Resolves: rhbz#2049732 - Allow unconfined to run virtd bpf Resolves: rhbz#2033504 Fri, 04 Feb 2022 GMT - Zdenek Pytela <zpytela@redhat.com> - 34.1.24-1 - Allow tumblerd write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow login_userdomain create session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gkeyringd_domain write to session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow systemd-logind delete session_dbusd tmp socket files Resolves: rhbz#2000039 - Allow gdm-x-session write to session dbus tmp sock files Resolves: rhbz#2000039 - Allow sysadm_t nnp_domtrans to systemd_tmpfiles_t Resolves: rhbz#2039453 - Label exFAT utilities at /usr/sbin Resolves: rhbz#1972225 ...
Thu, 17 Feb 2022 13:42:22 GMT: libarchive-3.5.3-1.el9.i686
libarchive - A library for handling streaming archive formats
Libarchive is a programming library that can create and read several different
streaming archive formats, including most popular tar variants, several cpio
formats, and both BSD and GNU ar variants. It can also write shar archives and
read ISO9660 CDROM images and ZIP archives.
Change Log:
Mon, 14 Feb 2022 GMT - Lukas Javorsky <ljavorsk@redhat.com> - 3.5.3-1 - Rebase to version 3.5.3 Mon, 23 Aug 2021 GMT - Ondrej Dubaj <odubaj@redhat.com> - 3.5.2-1 - Rebased to version 3.5.2 (#1996634) - Fixed symlink handling Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.5.1-7 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Thu, 17 Feb 2022 13:42:30 GMT: libarchive-3.5.3-1.el9.x86_64
libarchive - A library for handling streaming archive formats
Libarchive is a programming library that can create and read several different
streaming archive formats, including most popular tar variants, several cpio
formats, and both BSD and GNU ar variants. It can also write shar archives and
read ISO9660 CDROM images and ZIP archives.
Change Log:
Mon, 14 Feb 2022 GMT - Lukas Javorsky <ljavorsk@redhat.com> - 3.5.3-1 - Rebase to version 3.5.3 Mon, 23 Aug 2021 GMT - Ondrej Dubaj <odubaj@redhat.com> - 3.5.2-1 - Rebased to version 3.5.2 (#1996634) - Fixed symlink handling Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.5.1-7 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Tue, 15 Feb 2022 10:26:43 GMT: rpm-libs-4.16.1.3-11.el9.i686
rpm-libs - Libraries for manipulating RPM packages
This package contains the RPM shared libraries.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:43 GMT: rpm-build-libs-4.16.1.3-11.el9.i686
rpm-build-libs - Libraries for building RPM packages
This package contains the RPM shared libraries for building packages.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:43 GMT: rpm-sign-libs-4.16.1.3-11.el9.i686
rpm-sign-libs - Libraries for signing RPM packages
This package contains the RPM shared libraries for signing packages.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: python3-rpm-4.16.1.3-11.el9.x86_64
python3-rpm - Python 3 bindings for apps which will manipulate RPM packages
The python3-rpm package contains a module that permits applications
written in the Python programming language to use the interface
supplied by RPM Package Manager libraries.
This package should be installed if you want to develop Python 3
programs that will manipulate RPM packages and databases.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-plugin-audit-4.16.1.3-11.el9.x86_64
rpm-plugin-audit - Rpm plugin for logging audit events on package operations
Rpm plugin for logging audit events on package operations.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-sign-libs-4.16.1.3-11.el9.x86_64
rpm-sign-libs - Libraries for signing RPM packages
This package contains the RPM shared libraries for signing packages.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-4.16.1.3-11.el9.x86_64
rpm - The RPM package management system
The RPM Package Manager (RPM) is a powerful command line driven
package management system capable of installing, uninstalling,
verifying, querying, and updating software packages. Each software
package consists of an archive of files along with information about
the package like its version, a description, etc.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-sign-4.16.1.3-11.el9.x86_64
rpm-sign - Package signing support
This package contains support for digitally signing RPM packages.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-build-libs-4.16.1.3-11.el9.x86_64
rpm-build-libs - Libraries for building RPM packages
This package contains the RPM shared libraries for building packages.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-plugin-selinux-4.16.1.3-11.el9.x86_64
rpm-plugin-selinux - Rpm plugin for SELinux functionality
Rpm plugin for SELinux functionality.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Tue, 15 Feb 2022 10:26:46 GMT: rpm-libs-4.16.1.3-11.el9.x86_64
rpm-libs - Libraries for manipulating RPM packages
This package contains the RPM shared libraries.
Change Log:
Mon, 14 Feb 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-11 - Fix IMA signature lengths assumed constant, take III (#2018937) - Fix regression reading rpm v3 and other rare packages (#2037186) - Fix spurious %transfiletriggerpostun execution (#2023692) Mon, 31 Jan 2022 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-10 - Address covscan issues in binding sigs validation patch (#1943724) - Bump hash for rpmdb cookie to SHA256 for FIPS (#2048455) - Add --path query option (#2037352) - Skip recorded symlinks in --setperms (#2025906) Mon, 13 Dec 2021 GMT - Michal Domonkos <mdomonko@redhat.com> - 4.16.1.3-9 - Fix IMA signature lengths assumed constant, take II (#2018937) ...
Wed, 16 Feb 2022 22:24:56 GMT: 1:grub2-common-2.06-21.el9.noarch
grub2-common - grub2 common layout
This package provides some directories which are required by various grub2
subpackages.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:56 GMT: 1:grub2-efi-aa64-modules-2.06-21.el9.noarch
grub2-efi-aa64-modules - Modules used to build custom grub.efi images
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides support for rebuilding your own grub.efi.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-tools-2.06-21.el9.x86_64
grub2-tools - Support tools for GRUB.
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides tools for support of all platforms.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:30 GMT: 1:grub2-pc-modules-2.06-21.el9.noarch
grub2-pc-modules - Modules used to build custom grub images
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides support for rebuilding your own grub.efi.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-efi-x64-2.06-21.el9.x86_64
grub2-efi-x64 - GRUB for EFI systems.
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides support for efi-x64 systems.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-pc-2.06-21.el9.x86_64
grub2-pc - Bootloader with support for Linux, Multiboot, and more
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides support for pc systems.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-tools-efi-2.06-21.el9.x86_64
grub2-tools-efi - Support tools for GRUB.
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides tools for support of EFI platforms.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-tools-extra-2.06-21.el9.x86_64
grub2-tools-extra - Support tools for GRUB.
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides tools for support of all platforms.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-tools-minimal-2.06-21.el9.x86_64
grub2-tools-minimal - Support tools for GRUB.
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides tools for support of all platforms.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-efi-x64-modules-2.06-21.el9.noarch
grub2-efi-x64-modules - Modules used to build custom grub.efi images
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides support for rebuilding your own grub.efi.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 22:24:32 GMT: 1:grub2-efi-x64-cdboot-2.06-21.el9.x86_64
grub2-efi-x64-cdboot - Files used to boot removeable media with EFI
The GRand Unified Bootloader (GRUB) is a highly configurable and
customizable bootloader with modular architecture. It supports a rich
variety of kernel formats, file systems, computer architectures and
hardware devices.
This subpackage provides optional components of grub used with removeable media on efi-x64 systems.
Change Log:
Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-21 - Require Secure Boot certs based on architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Brian Stinson <bstinson@redhat.com> - 2.06-20 - Conditionalize Secure Boot settings per architecture - Resolves: #2049214 Wed, 16 Feb 2022 GMT - Robbie Harwood <rharwood@redhat.com> - 2.06-19 - Attempt to fix ppc64le signing bugs in previous change - Resolves: #2049214 ...
Wed, 16 Feb 2022 14:40:58 GMT: fuse-common-3.10.2-5.el9.x86_64
fuse-common - Common files for File System in Userspace (FUSE) v2 and v3
Common files for FUSE v2 and FUSE v3.
Change Log:
Wed, 16 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-5 - Fix test failure - Fix missing dependency Tue, 15 Feb 2022 GMT - Pavel Reichl <preichl@redhat.com> - 3.10.2-4 - Add gating.yaml file Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.10.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 11:55:55 GMT: gnutls-3.7.3-4.el9.i686
gnutls - A TLS protocol implementation
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 11:56:11 GMT: gnutls-3.7.3-4.el9.x86_64
gnutls - A TLS protocol implementation
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
Change Log:
Wed, 16 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-4 - Specify FIPS140-3 module name and version - fips: allow a few more primes in RSA key generation - fips: tighten PKCS#12 algorithm checks - Correct return value of KTLS stub API Tue, 15 Feb 2022 GMT - Zoltan Fridrich <zfridric@redhat.com> - 3.7.3-3 - Disable config reload in order to not break allowlisting (#2042532) Wed, 02 Feb 2022 GMT - Daiki Ueno <dueno@redhat.com> - 3.7.3-2 - Build with TPM2 support, patch from Alexander Sosedkin (#2033220) ...
Wed, 16 Feb 2022 16:52:35 GMT: python3-pyparsing-2.4.7-9.el9.noarch
python3-pyparsing - Python package with an object-oriented approach to text processing
pyparsing is a module that can be used to easily and directly configure syntax
definitions for any number of text parsing applications.
This is the Python 3 version.
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 2.4.7-9 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 2.4.7-8.1 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.4.7-7.1 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Mon, 07 Feb 2022 09:25:51 GMT: libdnf-0.65.0-3.el9.i686
libdnf - Library providing simplified C and Python API to libsolv
A Library providing simplified C and Python API to libsolv.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-3 - Use `rpmdbCookie` from librpm, remove `hawkey.Sack._rpmdb_version` Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-2 - Rebuilt with json-c-0.14-11.el9 (RhBug:2023320) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-1 - Update to 0.65.0 - Implement logic for demodularization of modular rpms (RhBug:1805260) - DnfContext: fix handling of default module profiles - ModuleMetadata: gracefully handle modules with no defaults - Remove failovermethod config option (RhBug:1961083) - Add support for excluding packages to be installed as weak dependencies - Add support for autodetecting packages to be excluded from being installed as weak dependencies - Turn off strict validation of modulemd documents (RhBug:2004853,2007166,2007167) ...
Mon, 07 Feb 2022 09:25:55 GMT: libdnf-0.65.0-3.el9.x86_64
libdnf - Library providing simplified C and Python API to libsolv
A Library providing simplified C and Python API to libsolv.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-3 - Use `rpmdbCookie` from librpm, remove `hawkey.Sack._rpmdb_version` Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-2 - Rebuilt with json-c-0.14-11.el9 (RhBug:2023320) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-1 - Update to 0.65.0 - Implement logic for demodularization of modular rpms (RhBug:1805260) - DnfContext: fix handling of default module profiles - ModuleMetadata: gracefully handle modules with no defaults - Remove failovermethod config option (RhBug:1961083) - Add support for excluding packages to be installed as weak dependencies - Add support for autodetecting packages to be excluded from being installed as weak dependencies - Turn off strict validation of modulemd documents (RhBug:2004853,2007166,2007167) ...
Mon, 07 Feb 2022 09:25:55 GMT: python3-libdnf-0.65.0-3.el9.x86_64
python3-libdnf - Python 3 bindings for the libdnf library.
Python 3 bindings for the libdnf library.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-3 - Use `rpmdbCookie` from librpm, remove `hawkey.Sack._rpmdb_version` Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-2 - Rebuilt with json-c-0.14-11.el9 (RhBug:2023320) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-1 - Update to 0.65.0 - Implement logic for demodularization of modular rpms (RhBug:1805260) - DnfContext: fix handling of default module profiles - ModuleMetadata: gracefully handle modules with no defaults - Remove failovermethod config option (RhBug:1961083) - Add support for excluding packages to be installed as weak dependencies - Add support for autodetecting packages to be excluded from being installed as weak dependencies - Turn off strict validation of modulemd documents (RhBug:2004853,2007166,2007167) ...
Mon, 07 Feb 2022 09:25:55 GMT: python3-hawkey-0.65.0-3.el9.x86_64
python3-hawkey - Python 3 bindings for the hawkey library
Python 3 bindings for the hawkey library.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-3 - Use `rpmdbCookie` from librpm, remove `hawkey.Sack._rpmdb_version` Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-2 - Rebuilt with json-c-0.14-11.el9 (RhBug:2023320) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-1 - Update to 0.65.0 - Implement logic for demodularization of modular rpms (RhBug:1805260) - DnfContext: fix handling of default module profiles - ModuleMetadata: gracefully handle modules with no defaults - Remove failovermethod config option (RhBug:1961083) - Add support for excluding packages to be installed as weak dependencies - Add support for autodetecting packages to be excluded from being installed as weak dependencies - Turn off strict validation of modulemd documents (RhBug:2004853,2007166,2007167) ...
Wed, 16 Feb 2022 14:14:41 GMT: python3-dnf-plugin-versionlock-4.0.24-3.el9.noarch
python3-dnf-plugin-versionlock - Version Lock Plugin for DNF
Version lock plugin takes a set of name/versions for packages and excludes all other
versions of those packages. This allows you to e.g. protect packages from being
updated by newer versions.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-3 - Backport patch with new way to determine rpmdb version Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-2 - [groups-manager] Use full NEVRA for matching packages instead of only name (RhBug:2029864) - [versionlock] Fix: Multiple package-name-spec arguments don't lock (RhBug:2029871) - [versionlock] Update documentation for adding specifi version (RhBug:2013332) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-1 - Update to 4.0.24 - [repomanage] Allow running only with metadata - [repomanage] Enhance documentation (RhBug:1898293) - [versionlock] Locking obsoleted package does not make the obsoleter unavailable (RhBug:1957280) - [versionlock] Work correctly with packages with minorbump part of release (RhBug:1961217) - [leaves] Show strongly connected components - [needs-restarting] Fix wrong boot time (RhBug:1960437) - [playground] Disable playground command, since it doesn't work - [copr] on CentOS Stream, enable centos stream chroot instead of not epel 8 (RhBug:1994154) - [copr] Avoid using deprecated function distro.linux_distribution() (RhBug:2011550) - [copr] don't traceback on empty lines in /etc/os-release ...
Wed, 16 Feb 2022 14:14:41 GMT: python3-dnf-plugin-post-transaction-actions-4.0.24-3.el9.noarch
python3-dnf-plugin-post-transaction-actions - Post transaction actions Plugin for DNF
Post transaction actions Plugin for DNF, Python 3 version. Plugin runs actions
(shell commands) after transaction is completed. Actions are defined in action
files.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-3 - Backport patch with new way to determine rpmdb version Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-2 - [groups-manager] Use full NEVRA for matching packages instead of only name (RhBug:2029864) - [versionlock] Fix: Multiple package-name-spec arguments don't lock (RhBug:2029871) - [versionlock] Update documentation for adding specifi version (RhBug:2013332) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-1 - Update to 4.0.24 - [repomanage] Allow running only with metadata - [repomanage] Enhance documentation (RhBug:1898293) - [versionlock] Locking obsoleted package does not make the obsoleter unavailable (RhBug:1957280) - [versionlock] Work correctly with packages with minorbump part of release (RhBug:1961217) - [leaves] Show strongly connected components - [needs-restarting] Fix wrong boot time (RhBug:1960437) - [playground] Disable playground command, since it doesn't work - [copr] on CentOS Stream, enable centos stream chroot instead of not epel 8 (RhBug:1994154) - [copr] Avoid using deprecated function distro.linux_distribution() (RhBug:2011550) - [copr] don't traceback on empty lines in /etc/os-release ...
Wed, 16 Feb 2022 14:14:41 GMT: yum-utils-4.0.24-3.el9.noarch
yum-utils - Yum-utils CLI compatibility layer
As a Yum-utils CLI compatibility layer, supplies in CLI shims for
debuginfo-install, repograph, package-cleanup, repoclosure, repomanage,
repoquery, reposync, repotrack, repodiff, builddep, config-manager, debug,
download and yum-groups-manager that use new implementations using DNF.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-3 - Backport patch with new way to determine rpmdb version Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-2 - [groups-manager] Use full NEVRA for matching packages instead of only name (RhBug:2029864) - [versionlock] Fix: Multiple package-name-spec arguments don't lock (RhBug:2029871) - [versionlock] Update documentation for adding specifi version (RhBug:2013332) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-1 - Update to 4.0.24 - [repomanage] Allow running only with metadata - [repomanage] Enhance documentation (RhBug:1898293) - [versionlock] Locking obsoleted package does not make the obsoleter unavailable (RhBug:1957280) - [versionlock] Work correctly with packages with minorbump part of release (RhBug:1961217) - [leaves] Show strongly connected components - [needs-restarting] Fix wrong boot time (RhBug:1960437) - [playground] Disable playground command, since it doesn't work - [copr] on CentOS Stream, enable centos stream chroot instead of not epel 8 (RhBug:1994154) - [copr] Avoid using deprecated function distro.linux_distribution() (RhBug:2011550) - [copr] don't traceback on empty lines in /etc/os-release ...
Wed, 16 Feb 2022 14:14:41 GMT: python3-dnf-plugins-core-4.0.24-3.el9.noarch
python3-dnf-plugins-core - Core Plugins for DNF
Core Plugins for DNF, Python 3 interface. This package enhances DNF with builddep,
config-manager, copr, debug, debuginfo-install, download, needs-restarting,
groups-manager, repoclosure, repograph, repomanage, reposync, changelog
and repodiff commands.
Additionally provides generate_completion_cache passive plugin.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-3 - Backport patch with new way to determine rpmdb version Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-2 - [groups-manager] Use full NEVRA for matching packages instead of only name (RhBug:2029864) - [versionlock] Fix: Multiple package-name-spec arguments don't lock (RhBug:2029871) - [versionlock] Update documentation for adding specifi version (RhBug:2013332) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-1 - Update to 4.0.24 - [repomanage] Allow running only with metadata - [repomanage] Enhance documentation (RhBug:1898293) - [versionlock] Locking obsoleted package does not make the obsoleter unavailable (RhBug:1957280) - [versionlock] Work correctly with packages with minorbump part of release (RhBug:1961217) - [leaves] Show strongly connected components - [needs-restarting] Fix wrong boot time (RhBug:1960437) - [playground] Disable playground command, since it doesn't work - [copr] on CentOS Stream, enable centos stream chroot instead of not epel 8 (RhBug:1994154) - [copr] Avoid using deprecated function distro.linux_distribution() (RhBug:2011550) - [copr] don't traceback on empty lines in /etc/os-release ...
Wed, 16 Feb 2022 14:14:41 GMT: dnf-plugins-core-4.0.24-3.el9.noarch
dnf-plugins-core - Core Plugins for DNF
Core Plugins for DNF. This package enhances DNF with builddep, config-manager,
copr, debug, debuginfo-install, download, needs-restarting, groups-manager, repoclosure,
repograph, repomanage, reposync, changelog and repodiff commands. Additionally
provides generate_completion_cache passive plugin.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-3 - Backport patch with new way to determine rpmdb version Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-2 - [groups-manager] Use full NEVRA for matching packages instead of only name (RhBug:2029864) - [versionlock] Fix: Multiple package-name-spec arguments don't lock (RhBug:2029871) - [versionlock] Update documentation for adding specifi version (RhBug:2013332) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 4.0.24-1 - Update to 4.0.24 - [repomanage] Allow running only with metadata - [repomanage] Enhance documentation (RhBug:1898293) - [versionlock] Locking obsoleted package does not make the obsoleter unavailable (RhBug:1957280) - [versionlock] Work correctly with packages with minorbump part of release (RhBug:1961217) - [leaves] Show strongly connected components - [needs-restarting] Fix wrong boot time (RhBug:1960437) - [playground] Disable playground command, since it doesn't work - [copr] on CentOS Stream, enable centos stream chroot instead of not epel 8 (RhBug:1994154) - [copr] Avoid using deprecated function distro.linux_distribution() (RhBug:2011550) - [copr] don't traceback on empty lines in /etc/os-release ...
Tue, 15 Feb 2022 17:29:56 GMT: subscription-manager-cockpit-1.29.26-1.el9.noarch
subscription-manager-cockpit - Subscription Manager Cockpit UI
Subscription Manager Cockpit UI
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:56 GMT: rhsm-icons-1.29.26-1.el9.noarch
rhsm-icons - Icons for Red Hat Subscription Management client tools
This package contains the desktop icons for the graphical interfaces provided for management
of Red Hat subscriptions: subscription-manager-gui, subscription-manager-cockpit-plugin.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:43 GMT: subscription-manager-rhsm-certificates-1.29.26-1.el9.x86_64
subscription-manager-rhsm-certificates - Certificates required to communicate with a Red Hat Unified Entitlement Platform
This package contains certificates required for communicating with the REST interface
of a Red Hat Unified Entitlement Platform, used for the management of system entitlements
and to receive access to content.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:43 GMT: python3-cloud-what-1.29.26-1.el9.x86_64
python3-cloud-what - Python package for detection of public cloud provider
This package contains a Python module for detection and collection of public
cloud metadata and signatures.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:43 GMT: subscription-manager-1.29.26-1.el9.x86_64
subscription-manager - Tools and libraries for subscription and repository management
The Subscription Manager package provides programs and libraries to allow users
to manage subscriptions and yum repositories from the Red Hat entitlement
platform.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:43 GMT: subscription-manager-plugin-ostree-1.29.26-1.el9.x86_64
subscription-manager-plugin-ostree - A plugin for handling OSTree content.
Enables handling of content of type 'ostree' in any certificates
from the server. Populates /ostree/repo/config as well as updates
the remote in the currently deployed .origin file.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:43 GMT: python3-subscription-manager-rhsm-1.29.26-1.el9.x86_64
python3-subscription-manager-rhsm - A Python library to communicate with a Red Hat Unified Entitlement Platform
A small library for communicating with the REST interface of a Red Hat Unified
Entitlement Platform. This interface is used for the management of system
entitlements, certificates, and access to content.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Tue, 15 Feb 2022 17:29:43 GMT: libdnf-plugin-subscription-manager-1.29.26-1.el9.x86_64
libdnf-plugin-subscription-manager - Subscription Manager plugin for libdnf
This package provides a plugin to interact with repositories from the Red Hat
entitlement platform; contains only one product-id binary plugin used by
e.g. microdnf.
Change Log:
Tue, 15 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.26-1 - Translated using Weblate (Korean) (simmon@nplob.com) - Translated using Weblate (German) (atalanttore@googlemail.com) - Revert "1935446: Use updated cert with SHA-256 algorithm" (csnyder@redhat.com) Fri, 11 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.25-1 - 2046516: register: do not check environments w/ activation keys (ptoscano@redhat.com) - No-op refactor of RegisterCommand._process_environments() (ptoscano@redhat.com) - 1935446: Use updated cert with SHA-256 algorithm (jhnidek@redhat.com) - build: pin pytest to < 7 (ptoscano@redhat.com) - Update translation files (noreply@weblate.org) Thu, 10 Feb 2022 GMT - Christopher Snyder <csnyder@redhat.com> 1.29.24-1 - 2023430: Cockpit: another improvement of curtain view (jhnidek@redhat.com) - environments: fix list for account in env-less org (ptoscano@redhat.com) - Reverting disabling AutoAttach() and PoolAttach() in SCA mode (jhnidek@redhat.com) - 2023430: cockpit: improve handling of main curtain view (ptoscano@redhat.com) - Squelch DeprecationWarning's when importing pyinotify (ptoscano@redhat.com) - Drop tox.ini, no more needed now (ptoscano@redhat.com) - flake8: improve, and integrate bits from tox.ini (ptoscano@redhat.com) - flake8: misc fixes in tito/tests (ptoscano@redhat.com) - 2035662: facts: tweak message for dmidecode warnings (ptoscano@redhat.com) - facts: improve/tweak logging of warnings (ptoscano@redhat.com) - jenkins: use custom settings for the RH internal npmjs repo (ptoscano@redhat.com) - jenkins: switch away from readFile() (ptoscano@redhat.com) - jenkins: simplify script filenames & labels (ptoscano@redhat.com) - jenkins: remove old scripts (ptoscano@redhat.com) - ENT-4671: Improve debug logging to stdout (mhorky@redhat.com) - Drop non-systemd support (ptoscano@redhat.com) - ENT-4650: Remove python-six from build system (mhorky@redhat.com) - ENT-4093: Fix flake8 warning W605 (mhorky@redhat.com) - ENT-4618: Switch away from six.get_method_* (mhorky@redhat.com) - ENT-4414: Remove RhsmIconCache (mhorky@redhat.com) - New extraction for translatable strings (ptoscano@redhat.com) - ENT-4589: Switch away from six.reraise (mhorky@redhat.com) - 2041968: Update man and help for environments options (wpoteat@redhat.com) ...
Wed, 16 Feb 2022 13:01:10 GMT: 2:vim-filesystem-8.2.2637-13.el9.noarch
vim-filesystem - VIM filesystem layout
This package provides some directories which are required by other
packages that add vim files, p.e. additional syntax files or filetypes.
Change Log:
Wed, 16 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-13 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash Thu, 10 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0413 vim: use after free in src/ex_cmds.c - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c - CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c Wed, 09 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0368 vim: Out-of-bounds Read in vim - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c ...
Wed, 16 Feb 2022 13:00:47 GMT: 2:vim-minimal-8.2.2637-13.el9.x86_64
vim-minimal - A minimal version of the VIM editor
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more. The
vim-minimal package includes a minimal version of VIM, providing
the commands vi, view, ex, rvi, and rview. NOTE: The online help is
only available when the vim-common package is installed.
Change Log:
Wed, 16 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-13 - CVE-2022-0572 vim: heap overflow in ex_retab() may lead to crash Thu, 10 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0413 vim: use after free in src/ex_cmds.c - CVE-2022-0443 vim: heap-use-after-free in enter_buffer() of src/buffer.c - CVE-2022-0392 vim: heap-based buffer overflow in getexmodeline() in ex_getln.c Wed, 09 Feb 2022 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:8.2.2637-12 - CVE-2022-0368 vim: Out-of-bounds Read in vim - CVE-2022-0417 vim: heap-based-buffer-overflow in ex_retab() of src/indent.c - CVE-2022-0408 vim: Stack-based Buffer Overflow in spellsuggest.c ...
Wed, 16 Feb 2022 14:30:04 GMT: accel-config-3.4.2-2.el9.i686
accel-config - Configure accelerator subsystem devices
Utility library for configuring the accelerator subsystem.
Change Log:
Fri, 11 Feb 2022 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-2 - Rebuild to clear osci test failure. Resolves: rhbz#1999934 Tue, 05 Oct 2021 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-1 - Rebase to 3.4.2 release and add test subpackage. Resolves: rhbz#1999934 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:30:05 GMT: accel-config-libs-3.4.2-2.el9.x86_64
accel-config-libs - Configuration library for accelerator subsystem devices
Libraries for accel-config.
Change Log:
Fri, 11 Feb 2022 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-2 - Rebuild to clear osci test failure. Resolves: rhbz#1999934 Tue, 05 Oct 2021 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-1 - Rebase to 3.4.2 release and add test subpackage. Resolves: rhbz#1999934 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:30:05 GMT: accel-config-3.4.2-2.el9.x86_64
accel-config - Configure accelerator subsystem devices
Utility library for configuring the accelerator subsystem.
Change Log:
Fri, 11 Feb 2022 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-2 - Rebuild to clear osci test failure. Resolves: rhbz#1999934 Tue, 05 Oct 2021 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-1 - Rebase to 3.4.2 release and add test subpackage. Resolves: rhbz#1999934 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 14:30:04 GMT: accel-config-libs-3.4.2-2.el9.i686
accel-config-libs - Configuration library for accelerator subsystem devices
Libraries for accel-config.
Change Log:
Fri, 11 Feb 2022 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-2 - Rebuild to clear osci test failure. Resolves: rhbz#1999934 Tue, 05 Oct 2021 GMT - Jerry Snitselaar <jsnitsel@redhat.com> - 3.4.2-1 - Rebase to 3.4.2 release and add test subpackage. Resolves: rhbz#1999934 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.2-3 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 18:35:30 GMT: gawk-5.1.0-6.el9.x86_64
gawk - The GNU version of the AWK text processing utility
The gawk package contains the GNU version of AWK text processing utility. AWK is
a programming language designed for text processing and typically used as a data
extraction and reporting tool.
The gawk utility can be used to do quick and easy text pattern matching,
extracting or reformatting. It is considered to be a standard Linux tool for
text processing.
Change Log:
Wed, 16 Feb 2022 GMT - Jakub Martisko <jamartis@redhat.com> - 5.1.0-6 Fix the issue with incorect handling of return values of some processes Resolves: rhbz#2055107 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 5.1.0-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 15 Apr 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 5.1.0-4 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 ...
Wed, 16 Feb 2022 16:59:37 GMT: python3-pysocks-1.7.1-12.el9.noarch
python3-pysocks - A Python SOCKS client module
A fork of SocksiPy with bug fixes and extra features.
Acts as a drop-in replacement to the socket module. Featuring:
- SOCKS proxy client for Python 2.6 - 3.x
- TCP and UDP both supported
- HTTP proxy client included but not supported or recommended (you should use
urllib2's or requests' own HTTP proxy interface)
- urllib2 handler included.
This package is for Python3 version 3.9 only.
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 1.7.1-12 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 1.7.1-11 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.7.1-10 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 12:20:51 GMT: python3-six-1.15.0-9.el9.noarch
python3-six - Python 2 and 3 compatibility utilities
python-six provides simple utilities for wrapping over differences between
Python 2 and Python 3.
Change Log:
Wed, 16 Feb 2022 GMT - Lukáš Zachar <lzachar@redhat.com> - 1.15.0-9 - Add gating configuration and simple test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 1.15.0-8 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.0-7 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
New packages in centos-9-stream-x86_64-CRB
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-devel-2.3.16-3.el9.i686
dovecot-devel - Development files for dovecot
This package provides the development files for dovecot.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-devel-2.3.16-3.el9.x86_64
dovecot-devel - Development files for dovecot
This package provides the development files for dovecot.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Wed, 01 Dec 2021 11:11:34 GMT: 1:dovecot-2.3.16-3.el9.i686
dovecot - Secure imap and pop3 server
Dovecot is an IMAP server for Linux/UNIX-like systems, written with security
primarily in mind. It also contains a small POP3 server. It supports mail
in either of maildir or mbox formats.
The SQL drivers and authentication plug-ins are in their subpackages.
Change Log:
Wed, 03 Nov 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-3 - re-enable LTO build (#1990080) Wed, 27 Oct 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-2 - set first_valid_uid to 1000 to match system default (#2009716) Fri, 20 Aug 2021 GMT - Michal Hlavinka <mhlavink@redhat.com> - 1:2.3.16-1 - dovecot updated to 2.3.16, pigeonhole to 0.5.16 - fixes several regressions (#1997583) ...
Thu, 17 Feb 2022 18:56:54 GMT: gpgme-devel-1.15.1-6.el9.i686
gpgme-devel - Development headers and libraries for gpgme
Development headers and libraries for gpgme.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:56:54 GMT: qgpgme-devel-1.15.1-6.el9.i686
qgpgme-devel - Development libraries and header files for gpgme
Development libraries and header files for gpgme.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:56:54 GMT: qgpgme-1.15.1-6.el9.i686
qgpgme - Qt API bindings/wrapper for GPGME
Qt API bindings/wrapper for GPGME.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:56:54 GMT: gpgmepp-devel-1.15.1-6.el9.i686
gpgmepp-devel - Development libraries and header files for gpgme-pp
Development libraries and header files for gpgme-pp
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: gpgme-devel-1.15.1-6.el9.x86_64
gpgme-devel - Development headers and libraries for gpgme
Development headers and libraries for gpgme.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: qgpgme-1.15.1-6.el9.x86_64
qgpgme - Qt API bindings/wrapper for GPGME
Qt API bindings/wrapper for GPGME.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: qgpgme-devel-1.15.1-6.el9.x86_64
qgpgme-devel - Development libraries and header files for gpgme
Development libraries and header files for gpgme.
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 18:57:00 GMT: gpgmepp-devel-1.15.1-6.el9.x86_64
gpgmepp-devel - Development libraries and header files for gpgme-pp
Development libraries and header files for gpgme-pp
Change Log:
Thu, 17 Feb 2022 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-6 - Rebuild Resolves: #2035319 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.15.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Fri, 16 Jul 2021 GMT - Jiri Kucera <jkucera@redhat.com> - 1.15.1-4 - Fix license and covscan issues Resolves: #1938732 ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-cross-headers-5.14.0-62.el9.x86_64
kernel-cross-headers - Header files for the Linux kernel for use by cross-glibc
Kernel-cross-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
cross-glibc package.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Thu, 17 Feb 2022 12:55:19 GMT: kernel-tools-libs-devel-5.14.0-62.el9.x86_64
kernel-tools-libs-devel - Assortment of tools for the Linux kernel
This package contains the development files for the tools/ directory from
the kernel source.
Change Log:
Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-62.el9] - ibmvnic: remove unused defines (Diego Domingos) [2047921] - ibmvnic: Update driver return codes (Diego Domingos) [2047921] - powerpc/fadump: opt out from freeing pages on cma activation failure (Diego Domingos) [2040289] - mm/cma: provide option to opt out from exposing pages on activation failure (Diego Domingos) [2040289] - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (Vitaly Kuznetsov) [2052908] - rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2026991] - redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS (Prarit Bhargava) [2053028] - ibmvnic: remove unused ->wait_capability (Diego Domingos) [2047928] - ibmvnic: don't spin in tasklet (Diego Domingos) [2047928] - ibmvnic: init ->running_cap_crqs early (Diego Domingos) [2047928] - ibmvnic: Allow extra failures before disabling (Diego Domingos) [2047928] - s390/pv: fix the forcing of the swiotlb (Thomas Huth) [2051581] - scsi: vmw_pvscsi: Set residual data length conditionally (Cathy Avery) [2048178] - selinux: fix double free of cond_list on error paths (Ondrej Mosnacek) [2052439] - selinux: fix NULL-pointer dereference when hashtab allocation fails (Ondrej Mosnacek) [2052436] - isdn: cpai: check ctr->cnr to avoid array index out of bound (Chris von Recklinghausen) [2016492] {CVE-2021-43389} - mm/hwpoison: fix unpoison_memory() (Aristeu Rozanski) [1972220] - mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (Aristeu Rozanski) [1972220] - mm/hwpoison: mf_mutex for soft offline and unpoison (Aristeu Rozanski) [1972220] - mm/hwpoison: clear MF_COUNT_INCREASED before retrying get_any_page() (Aristeu Rozanski) [1972220] - mm, hwpoison: fix condition in free hugetlb page path (Aristeu Rozanski) [1972220] - filemap: remove PageHWPoison check from next_uptodate_page() (Aristeu Rozanski) [1972220] - mm: hwpoison: handle non-anonymous THP correctly (Aristeu Rozanski) [1972220] - mm: hwpoison: refactor refcount check handling (Aristeu Rozanski) [1972220] - mm: filemap: coding style cleanup for filemap_map_pmd() (Aristeu Rozanski) [1972220] - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (John Meneghini) [2031648] - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (John Meneghini) [2006606] - redhat/configs: Enable CONFIG_TEST_BPF (Viktor Malik) [2035168] - ext4: fix potential NULL pointer dereference in ext4_fill_super() (Lukas Czerner) [2051466] - netfilter: ipset: Emit deprecation warning at set creation time (Phil Sutter) [2048194] - redhat: move CONFIG_ARM64_MTE to aarch64 config directory (Herton R. Krzesinski) - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (Waiman Long) [1996015] - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (Waiman Long) [1996015] - net ticp:fix a kernel-infoleak in __tipc_sendmsg() (Xin Long) [2050039] - tipc: discard MSG_CRYPTO msgs when key_exchange_enabled is not set (Xin Long) [2050039] - tipc: delete the unlikely branch in tipc_aead_encrypt (Xin Long) [2050039] - blktrace: switch trace spinlock to a raw spinlock (Wander Lairson Costa) [2047971] - NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION (Steve Dickson) [2027447] - igb: fix deadlock caused by taking RTNL in RPM resume path (Corinna Vinschen) [2040312] - igb: Fix removal of unicast MAC filters of VFs (Corinna Vinschen) [2040312] - igb: fix netpoll exit with traffic (Corinna Vinschen) [2040312] - igb: unbreak I2C bit-banging on i350 (Corinna Vinschen) [2040312] - igb: Avoid memcpy() over-reading of ETH_SS_STATS (Corinna Vinschen) [2040312] - igb: Add counter to i21x doublecheck (Corinna Vinschen) [2040312] - net: create netdev->dev_addr assignment helpers (Josef Oskera) [2030720] Wed, 16 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-61.el9] - Enable KUNIT tests for redhat kernel-modules-internal (Nico Pache) [2048326] - kasan: test: fix compatibility with FORTIFY_SOURCE (Nico Pache) [2048326] - kasan: test: silence intentional read overflow warnings (Nico Pache) [2048326] - kasan: test: bypass __alloc_size checks (Nico Pache) [2048326] - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (Nico Pache) [2048326] - lib: Introduce CONFIG_MEMCPY_KUNIT_TEST (Nico Pache) [2048326] - nvme-rdma: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme-tcp: fix possible use-after-free in transport error_recovery work (Chris Leech) [1994618 2033414] - nvme: fix a possible use-after-free in controller reset during load (Chris Leech) [1994618 2033414] - redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_AREAS (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUG (David Hildenbrand) [2043141] - redhat/configs: simplify CONFIG_CMA_DEBUGFS (David Hildenbrand) [2043141] - bpf: Fix kernel address leakage in atomic fetch (Jiri Olsa) [2046636] {CVE-2021-4203} - IB/rdmavt: Validate remote_addr during loopback atomic tests (Kamal Heib) [2032114] - [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (Mete Durlu) [2049016] - [s390] s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (Mete Durlu) [2048979] - [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048979] - net: openvswitch: Fix ct_state nat flags for conns arriving from tc (Antoine Tenart) [2045048] - net: openvswitch: Fix matching zone id for invalid conns arriving from tc (Antoine Tenart) [2045048] - net/sched: flow_dissector: Fix matching on zone id for invalid conns (Antoine Tenart) [2045048] - net/sched: Extend qdisc control block with tc control block (Antoine Tenart) [2045048] - openvswitch: fix sparse warning incorrect type (Antoine Tenart) [2045048] - openvswitch: fix alignment issues (Antoine Tenart) [2045048] - openvswitch: update kdoc OVS_DP_ATTR_PER_CPU_PIDS (Antoine Tenart) [2045048] - openvswitch: Introduce per-cpu upcall dispatch (Antoine Tenart) [2045048] - netfilter: fix regression in looped (broad|multi)cast's MAC handling (Florian Westphal) [2044272] - selftests: nft_concat_range: add test for reload with no element add/del (Florian Westphal) [2044272] - selftests: netfilter: Add correctness test for mac,net set type (Florian Westphal) [2044272] - netfilter: conntrack: don't increment invalid counter on NF_REPEAT (Florian Westphal) [2044272] - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (Florian Westphal) [2044272] - netfilter: nft_payload: do not update layer 4 checksum when mangling fragments (Florian Westphal) [2044272] - netfilter: bridge: add support for pppoe filtering (Florian Westphal) [2044272] - netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy() (Florian Westphal) [2044272] - netfilter: conntrack: annotate data-races around ct->timeout (Florian Westphal) [2044272] - netfilter: nft_exthdr: break evaluation if setting TCP option fails (Florian Westphal) [2044272] - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (Florian Westphal) [2044272] - tracing: Tag trace_percpu_buffer as a percpu pointer (Jerome Marchand) [2035164] - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (Jerome Marchand) [2035164] - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Test open-time credential usage for migration checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time cgroup namespace for process migration perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - cgroup: Use open-time credentials for process migraton perm checks (Chris von Recklinghausen) [2035768] {CVE-2021-4197} - x86/sched: Decrease further the priorities of SMT siblings (Prarit Bhargava) [1971926] Tue, 15 Feb 2022 GMT - Herton R. Krzesinski <herton@redhat.com> [5.14.0-60.el9] - crypto: jitter - add oversampling of noise source (Herbert Xu) [2036816] - Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values" (Guillaume Nault) [2027560] - Change "-auto" suffix to fix CI automotive pipeline issues (Julio Faracco) - nvme: drop unused variable ctrl in nvme_setup_cmd (John Meneghini) [2044616] - nvme: increment request genctr on completion (John Meneghini) [2044616] - nvme-pci: Fix abort command id (John Meneghini) [2044616] - nvme: add command id quirk for apple controllers (John Meneghini) [2044616] - nvme: move nvme_multi_css into nvme.h (John Meneghini) [2044616] - nvme: code command_id with a genctr for use-after-free validation (John Meneghini) [2044616] - nvme-pci: limit maximum queue depth to 4095 (John Meneghini) [2044616] - selftests: Calculate udpgso segment count without header adjustment (Xin Long) [2044129] - udp: using datalen to cap ipv6 udp max gso segments (Xin Long) [2044129] - inet_diag: fix kernel-infoleak for UDP sockets (Xin Long) [2044129] - udp: using datalen to cap max gso segments (Xin Long) [2044129] - sctp: hold endpoint before calling cb in sctp_transport_lookup_process (Xin Long) [2043823] - sctp: use call_rcu to free endpoint (Xin Long) [2043823] - sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long) [2043823] - sctp: make the raise timer more simple and accurate (Xin Long) [2043823] - nfsd: fix use-after-free due to delegation race (Benjamin Coddington) [1991929] - bonding: Fix extraction of ports from the packet headers (Jonathan Toppins) [2042548] - bonding: fix ad_actor_system option setting to default (Jonathan Toppins) [2042548] - bonding: make tx_rebalance_counter an atomic (Jonathan Toppins) [2042548] - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (Jonathan Toppins) [2042548] - bonding: 3ad: pass parameter bond_params by reference (Jonathan Toppins) [2042548] - bonding: complain about missing route only once for A/B ARP probes (Jonathan Toppins) [2042548] - bonding: improve nl error msg when device can't be enslaved because of IFF_MASTER (Jonathan Toppins) [2042548] - bonding: combine netlink and console error messages (Jonathan Toppins) [2042548] - net, bonding: Refactor bond_xmit_hash for use with xdp_buff (Jonathan Toppins) [2042548] - net: bonding: bond_alb: Remove the dependency on ipx network layer (Jonathan Toppins) [2042548] - bonding: add new option lacp_active (Jonathan Toppins) [1951951 2042548] - bonding: 3ad: fix the concurrency between __bond_release_one() and bond_3ad_state_machine_handler() (Jonathan Toppins) [2042548] - fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2030418] {CVE-2021-4083} - fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2030418] {CVE-2021-4083} - ipv6: Continue processing multipath route even if gateway attribute is invalid (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY when deleting multipath route (Hangbin Liu) [2041401] - ipv6: Do cleanup if attribute validation fails in multipath route (Hangbin Liu) [2041401] - ipv6: Check attribute length for RTA_GATEWAY in multipath route (Hangbin Liu) [2041401] - ipv6: fix memory leak in fib6_rule_suppress (Hangbin Liu) [2041401] - net: nexthop: reduce rcu synchronizations when replacing resilient groups (Hangbin Liu) [2041401] - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Hangbin Liu) [2041401] - net: ipv6: add fib6_nh_release_dsts stub (Hangbin Liu) [2041401] - ipv6: fix typos in __ip6_finish_output() (Hangbin Liu) [2041401] - igbvf: Refactor trace (Corinna Vinschen) [2040322] - igbvf: fix double free in `igbvf_probe` (Corinna Vinschen) [2040322] - bnx2x: Fix enabling network interfaces without VFs (Manish Chopra) [1998304] - tun: fix bonding active backup with arp monitoring (Jonathan Toppins) [2050837] ...
Tue, 15 Feb 2022 11:45:34 GMT: libsemanage-devel-3.3-2.el9.i686
libsemanage-devel - Header files and libraries used to build policy manipulation tools
The semanage-devel package contains the libraries and header files
needed for developing applications that manipulate binary policies.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - optionally rebuild policy when modules are changed externally Fri, 22 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-1 - SELinux userspace 3.3 release Sun, 10 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc3.1 - SELinux userspace 3.3-rc3 release ...
Tue, 15 Feb 2022 11:45:38 GMT: libsemanage-devel-3.3-2.el9.x86_64
libsemanage-devel - Header files and libraries used to build policy manipulation tools
The semanage-devel package contains the libraries and header files
needed for developing applications that manipulate binary policies.
Change Log:
Tue, 15 Feb 2022 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-2 - optionally rebuild policy when modules are changed externally Fri, 22 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-1 - SELinux userspace 3.3 release Sun, 10 Oct 2021 GMT - Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc3.1 - SELinux userspace 3.3-rc3 release ...
Thu, 17 Feb 2022 22:29:44 GMT: 1:python3-openmpi-4.1.1-5.el9.x86_64
python3-openmpi - OpenMPI support for Python 3
OpenMPI support for Python 3.
Change Log:
Thu, 17 Feb 2022 GMT - Honggang Li <honli@redhat.com> - 4.1.1-5 - Revert v4.1.2 - Add Epoch tag - Resolves: rhbz#2055184 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 4.1.1-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Tue, 20 Jul 2021 GMT - Honggang Li <honli@redhat.com> - 4.1.1-3 - Enable gating test - Related: rhbz#1869443 ...
Thu, 17 Feb 2022 13:42:22 GMT: libarchive-devel-3.5.3-1.el9.i686
libarchive-devel - Development files for libarchive
The libarchive-devel package contains libraries and header files for
developing applications that use libarchive.
Change Log:
Mon, 14 Feb 2022 GMT - Lukas Javorsky <ljavorsk@redhat.com> - 3.5.3-1 - Rebase to version 3.5.3 Mon, 23 Aug 2021 GMT - Ondrej Dubaj <odubaj@redhat.com> - 3.5.2-1 - Rebased to version 3.5.2 (#1996634) - Fixed symlink handling Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.5.1-7 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Thu, 17 Feb 2022 13:42:30 GMT: libarchive-devel-3.5.3-1.el9.x86_64
libarchive-devel - Development files for libarchive
The libarchive-devel package contains libraries and header files for
developing applications that use libarchive.
Change Log:
Mon, 14 Feb 2022 GMT - Lukas Javorsky <ljavorsk@redhat.com> - 3.5.3-1 - Rebase to version 3.5.3 Mon, 23 Aug 2021 GMT - Ondrej Dubaj <odubaj@redhat.com> - 3.5.2-1 - Rebased to version 3.5.2 (#1996634) - Fixed symlink handling Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 3.5.1-7 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Mon, 14 Feb 2022 15:36:41 GMT: python3-ipatests-4.9.8-5.el9.noarch
python3-ipatests - IPA tests and test tools
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
This package contains tests that verify IPA functionality under Python 3.
Change Log:
Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-5 - Resolves: rhbz#2053025 - add IPA test suite fixes Mon, 14 Feb 2022 GMT - Alexander Bokovoy <abokovoy@redhat.com> - 4.9.8-4 - Resolves: rhbz#2053586 IPA LDAP plugin ipa-cldap memory leak - fix memory leak in CLDAP responder Fri, 11 Feb 2022 GMT - Florence Blanc-Renaud <frenaud@redhat.com> - 4.9.8-3 - Resolves: rhbz#2050540 Unable to join RHEL 8.5 Replica to RHEL 7.9 Master for migration purposes - Don't always override the port in import_included_profiles - Resolves: rhbz#2051582 Enable ipa-ccache-sweep.timer during server installation - Test ipa-ccache-sweep.timer enabled by default during installation - Enable the ccache sweep timer during installation - Resolves: rhbz#2051844 ipa-join tests are failing due to changes in expected output - Remove ipa-join errors from behind the debug option ...
Mon, 14 Feb 2022 09:31:46 GMT: evolution-devel-3.40.4-3.el9.i686
evolution-devel - Development files for building against evolution
Development files needed for building things which link against evolution.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Mon, 14 Feb 2022 09:31:48 GMT: evolution-devel-3.40.4-3.el9.x86_64
evolution-devel - Development files for building against evolution
Development files needed for building things which link against evolution.
Change Log:
Mon, 14 Feb 2022 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-3 - Resolves: #2054084 (ECompEditor: Timezone can be reset on component save) Mon, 11 Oct 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-2 - Resolves: #2012701 (Empty emoji picker with gtk3 3.24.30) Fri, 13 Aug 2021 GMT - Milan Crha <mcrha@redhat.com> - 3.40.4-1 - Related: #1992450 (Update to 3.40.4) ...
Wed, 16 Feb 2022 12:17:25 GMT: createrepo_c-devel-0.17.7-2.el9.i686
createrepo_c-devel - Library for repodata manipulation
This package contains the createrepo_c C library and header files.
These development files are for easy manipulation with a repodata.
Change Log:
Wed, 16 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-2 - Switch default of --keep-all-metadata to TRUE and add --discard-additional-metadata (RhBug:2055032) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-1 - Update to 0.17.7 - Remove insecure hashes SHA-1 and MD5 from the default build (RhBug:1935486) - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks (RhBug:1998426) - Fix valgrind warnings caused by subprocess calls Mon, 16 Aug 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.2-5 - Fix issues detected by static analyzers ...
Wed, 16 Feb 2022 12:17:28 GMT: createrepo_c-devel-0.17.7-2.el9.x86_64
createrepo_c-devel - Library for repodata manipulation
This package contains the createrepo_c C library and header files.
These development files are for easy manipulation with a repodata.
Change Log:
Wed, 16 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-2 - Switch default of --keep-all-metadata to TRUE and add --discard-additional-metadata (RhBug:2055032) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.7-1 - Update to 0.17.7 - Remove insecure hashes SHA-1 and MD5 from the default build (RhBug:1935486) - Fix error when updating repo with removed modules metadata - Exit with status code 1 when loading of repo's metadata fails - Fix memory leaks (RhBug:1998426) - Fix valgrind warnings caused by subprocess calls Mon, 16 Aug 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.17.2-5 - Fix issues detected by static analyzers ...
Tue, 01 Feb 2022 09:49:51 GMT: 2:tog-pegasus-devel-2.14.1-64.el9.i686
tog-pegasus-devel - The OpenPegasus Software Development Kit
The OpenPegasus WBEM Services for Linux SDK is the developer's kit for the
OpenPegasus WBEM Services for Linux release. It provides Linux C++ developers
with the WBEM files required to build WBEM Clients and Providers. It also
supports C provider developers via the CMPI interface.
Change Log:
Tue, 01 Feb 2022 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-64 - Fix build flags Resolves: #2044895 - Fix preun systemd macro call Resolves: #2048002 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2:2.14.1-63 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 22 Jul 2021 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-62 - Improve error message without DES support in SNMP Resolves: rhbz#1972623 ...
Tue, 01 Feb 2022 09:49:52 GMT: 2:tog-pegasus-devel-2.14.1-64.el9.x86_64
tog-pegasus-devel - The OpenPegasus Software Development Kit
The OpenPegasus WBEM Services for Linux SDK is the developer's kit for the
OpenPegasus WBEM Services for Linux release. It provides Linux C++ developers
with the WBEM files required to build WBEM Clients and Providers. It also
supports C provider developers via the CMPI interface.
Change Log:
Tue, 01 Feb 2022 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-64 - Fix build flags Resolves: #2044895 - Fix preun systemd macro call Resolves: #2048002 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2:2.14.1-63 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 Thu, 22 Jul 2021 GMT - Vitezslav Crhonek <vcrhonek@redhat.com> - 2.14.1-62 - Improve error message without DES support in SNMP Resolves: rhbz#1972623 ...
Wed, 16 Feb 2022 16:52:35 GMT: pyparsing-doc-2.4.7-9.el9.noarch
pyparsing-doc - Documentation for pyparsing python package
The package contains documentation for pyparsing.
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 2.4.7-9 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 2.4.7-8.1 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.4.7-7.1 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Mon, 07 Feb 2022 09:25:51 GMT: libdnf-devel-0.65.0-3.el9.i686
libdnf-devel - Development files for libdnf
Development files for libdnf.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-3 - Use `rpmdbCookie` from librpm, remove `hawkey.Sack._rpmdb_version` Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-2 - Rebuilt with json-c-0.14-11.el9 (RhBug:2023320) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-1 - Update to 0.65.0 - Implement logic for demodularization of modular rpms (RhBug:1805260) - DnfContext: fix handling of default module profiles - ModuleMetadata: gracefully handle modules with no defaults - Remove failovermethod config option (RhBug:1961083) - Add support for excluding packages to be installed as weak dependencies - Add support for autodetecting packages to be excluded from being installed as weak dependencies - Turn off strict validation of modulemd documents (RhBug:2004853,2007166,2007167) ...
Mon, 07 Feb 2022 09:25:55 GMT: libdnf-devel-0.65.0-3.el9.x86_64
libdnf-devel - Development files for libdnf
Development files for libdnf.
Change Log:
Mon, 07 Feb 2022 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-3 - Use `rpmdbCookie` from librpm, remove `hawkey.Sack._rpmdb_version` Thu, 09 Dec 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-2 - Rebuilt with json-c-0.14-11.el9 (RhBug:2023320) Mon, 25 Oct 2021 GMT - Pavla Kratochvilova <pkratoch@redhat.com> - 0.65.0-1 - Update to 0.65.0 - Implement logic for demodularization of modular rpms (RhBug:1805260) - DnfContext: fix handling of default module profiles - ModuleMetadata: gracefully handle modules with no defaults - Remove failovermethod config option (RhBug:1961083) - Add support for excluding packages to be installed as weak dependencies - Add support for autodetecting packages to be excluded from being installed as weak dependencies - Turn off strict validation of modulemd documents (RhBug:2004853,2007166,2007167) ...
Tue, 15 Feb 2022 19:08:18 GMT: 1:virt-v2v-man-pages-ja-1.45.99-1.el9.noarch
virt-v2v-man-pages-ja - Japanese (ja) man pages for virt-v2v
virt-v2v-man-pages-ja contains Japanese (ja) man pages
for virt-v2v.
Change Log:
Tue, 15 Feb 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.99-1 - Rebase to upstream 1.45.99. - Add check for sufficient free space in the host resolves: rhbz#2051394 - Update documentation of -ip for conversions from VMware over HTTPS related: rhbz#1960087 - -o rhv-upload: Keep connections alive resolves: rhbz#2032324 - -o rhv-upload: Improve conversion performance resolves: rhbz#2039255 - -o rhv-upload: Replace -oo rhv-direct with -oo rhv-proxy resolves: rhbz#2033096 - Fix log line wrapping making log parsing difficult (1820221) Wed, 02 Feb 2022 GMT - Laszlo Ersek <lersek@redhat.com> - 1:1.45.97-4 - v2v import from vCenter fails when using interactive password because cookie-script tries to be interactive (pick commit 8abc07a8589a) resolves: rhbz#1960087 - model='virtio-transitional' is wrongly added when converting windows guest to local by rhel9 v2v (pick commit range commit range 8abc07a8589a..cacedec64072) resolves: rhbz#2043333 Wed, 26 Jan 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.97-3 - Rebase to upstream 1.45.97. resolves: rhbz#2011713 - Add virtio-transitional for older guests when converting to q35 resolves: rhbz#1942325 - Fix -o rhv mode resolves: rhbz#2027598 - input: xen: Fix assertion error when importing from remote block device resolves: rhbz#2041852 - output: -o json: Allow -oo (output options) to work resolves: rhbz#2041850 - Fix virt-v2v hang when given incorrect vpx:// URL resolves: rhbz#2041886 - Fix hang when converting with virt-p2v resolves: rhbz#2044911 - Send nbdinfo debugging information to stderr resolves: rhbz#2044922 - Explicitly require platform-python resolves: rhbz#2046178 ...
Tue, 15 Feb 2022 19:08:18 GMT: 1:virt-v2v-man-pages-uk-1.45.99-1.el9.noarch
virt-v2v-man-pages-uk - Ukrainian (uk) man pages for virt-v2v
virt-v2v-man-pages-uk contains Ukrainian (uk) man pages
for virt-v2v.
Change Log:
Tue, 15 Feb 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.99-1 - Rebase to upstream 1.45.99. - Add check for sufficient free space in the host resolves: rhbz#2051394 - Update documentation of -ip for conversions from VMware over HTTPS related: rhbz#1960087 - -o rhv-upload: Keep connections alive resolves: rhbz#2032324 - -o rhv-upload: Improve conversion performance resolves: rhbz#2039255 - -o rhv-upload: Replace -oo rhv-direct with -oo rhv-proxy resolves: rhbz#2033096 - Fix log line wrapping making log parsing difficult (1820221) Wed, 02 Feb 2022 GMT - Laszlo Ersek <lersek@redhat.com> - 1:1.45.97-4 - v2v import from vCenter fails when using interactive password because cookie-script tries to be interactive (pick commit 8abc07a8589a) resolves: rhbz#1960087 - model='virtio-transitional' is wrongly added when converting windows guest to local by rhel9 v2v (pick commit range commit range 8abc07a8589a..cacedec64072) resolves: rhbz#2043333 Wed, 26 Jan 2022 GMT - Richard W.M. Jones <rjones@redhat.com> - 1:1.45.97-3 - Rebase to upstream 1.45.97. resolves: rhbz#2011713 - Add virtio-transitional for older guests when converting to q35 resolves: rhbz#1942325 - Fix -o rhv mode resolves: rhbz#2027598 - input: xen: Fix assertion error when importing from remote block device resolves: rhbz#2041852 - output: -o json: Allow -oo (output options) to work resolves: rhbz#2041850 - Fix virt-v2v hang when given incorrect vpx:// URL resolves: rhbz#2041886 - Fix hang when converting with virt-p2v resolves: rhbz#2044911 - Send nbdinfo debugging information to stderr resolves: rhbz#2044922 - Explicitly require platform-python resolves: rhbz#2046178 ...
Wed, 16 Feb 2022 13:00:51 GMT: nmstate-devel-2.0.0-1.el9.i686
nmstate-devel - C binding development files of nmstate
This package contains the C binding development files of nmstate.
Change Log:
Wed, 16 Feb 2022 GMT - Fernando Fernandez Mancera <ferferna@redhat.com> - 2.0.0-1 - Upgrade to 2.0.0. RHBZ#1996575 Thu, 13 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.7.alpha6 - Add gating.yaml. RHBZ#1996575 Wed, 12 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.6.alpha6 - Upgrade to 2.0.0. alpha 6. Resolves: RHBZ#1996575 ...
Wed, 16 Feb 2022 13:00:51 GMT: nmstate-devel-2.0.0-1.el9.x86_64
nmstate-devel - C binding development files of nmstate
This package contains the C binding development files of nmstate.
Change Log:
Wed, 16 Feb 2022 GMT - Fernando Fernandez Mancera <ferferna@redhat.com> - 2.0.0-1 - Upgrade to 2.0.0. RHBZ#1996575 Thu, 13 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.7.alpha6 - Add gating.yaml. RHBZ#1996575 Wed, 12 Jan 2022 GMT - Gris Ge <fge@redhat.com> - 2.0.0-0.6.alpha6 - Upgrade to 2.0.0. alpha 6. Resolves: RHBZ#1996575 ...
Wed, 16 Feb 2022 15:18:33 GMT: SDL2-static-2.0.20-2.el9.i686
SDL2-static - Static libraries for SDL2
Static libraries for SDL2.
Change Log:
Tue, 08 Feb 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-2 - Backport Wayland fixes with Wayland-by-default from upstream Resolves: rhbz#2051963 Tue, 11 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-1 - Update to 2.0.20 Resolves: rhbz#2039137 - Drop backported patches included in this release Fri, 07 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.18-2 - Move libSDL2main to -devel and refresh split CMake target patch Resolves: rhbz#2038390 ...
Wed, 16 Feb 2022 15:18:41 GMT: SDL2-static-2.0.20-2.el9.x86_64
SDL2-static - Static libraries for SDL2
Static libraries for SDL2.
Change Log:
Tue, 08 Feb 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-2 - Backport Wayland fixes with Wayland-by-default from upstream Resolves: rhbz#2051963 Tue, 11 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.20-1 - Update to 2.0.20 Resolves: rhbz#2039137 - Drop backported patches included in this release Fri, 07 Jan 2022 GMT - Neal Gompa <ngompa@centosproject.org> - 2.0.18-2 - Move libSDL2main to -devel and refresh split CMake target patch Resolves: rhbz#2038390 ...
Wed, 16 Feb 2022 08:35:46 GMT: libmng-devel-2.0.3-17.el9.i686
libmng-devel - Development files for the Multiple-image Network Graphics library
LibMNG is a library for accessing MNG and JNG format graphics. The
libmng-devel package contains files needed for developing or compiling
applications which use MNG graphics.
Change Log:
Wed, 16 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-17 - Fix gating.yaml - Release bump Tue, 15 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-16 - Add gating.yaml - Release bump Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.0.3-15 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 08:35:47 GMT: libmng-devel-2.0.3-17.el9.x86_64
libmng-devel - Development files for the Multiple-image Network Graphics library
LibMNG is a library for accessing MNG and JNG format graphics. The
libmng-devel package contains files needed for developing or compiling
applications which use MNG graphics.
Change Log:
Wed, 16 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-17 - Fix gating.yaml - Release bump Tue, 15 Feb 2022 GMT - Filip Janus <fjanus@redhat.com> - 2.0.3-16 - Add gating.yaml - Release bump Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 2.0.3-15 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-slowdebug - OpenJDK 17 Runtime Environment with full debugging on
The OpenJDK 17 runtime environment.
This package is unoptimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-headless-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-headless-slowdebug - OpenJDK 17 Runtime Environment with full debugging on
The OpenJDK 17 runtime environment without audio and video support.
This package is unoptimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-jmods-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-jmods-fastdebug - JMods for OpenJDK 17 with minimal debugging on
The JMods for OpenJDK 17.
This package is optimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-jmods-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-jmods-slowdebug - JMods for OpenJDK 17 with full debugging on
The JMods for OpenJDK 17.
This package is unoptimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-demo-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-demo-slowdebug - OpenJDK 17 Demos with full debugging on
The OpenJDK 17 demos.
This package is unoptimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-devel-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-devel-fastdebug - OpenJDK 17 Development Environment with minimal debugging on
The OpenJDK 17 development tools .
This package is optimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-headless-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-headless-fastdebug - OpenJDK 17 Runtime Environment with minimal debugging on
The OpenJDK 17 runtime environment without audio and video support.
This package is optimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-static-libs-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-static-libs-fastdebug - OpenJDK 17 libraries for static linking with minimal debugging on
The OpenJDK 17 libraries for static linking.
This package is optimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-src-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-src-slowdebug - OpenJDK 17 Source Bundle for packages with debugging on
The java-17-openjdk-src-slowdebug sub-package contains the complete OpenJDK 17
class library source code for use by IDE indexers and debuggers, for packages with debugging on.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-fastdebug - OpenJDK 17 Runtime Environment with minimal debugging on
The OpenJDK 17 runtime environment.
This package is optimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-demo-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-demo-fastdebug - OpenJDK 17 Demos with minimal debugging on
The OpenJDK 17 demos.
This package is optimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-src-fastdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-src-fastdebug - OpenJDK 17 Source Bundle %{for_fastdebug}
The java-17-openjdk-src-fastdebug sub-package contains the complete OpenJDK 17
class library source code for use by IDE indexers and debuggers, %{for_fastdebug}.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-static-libs-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-static-libs-slowdebug - OpenJDK 17 libraries for static linking with full debugging on
The OpenJDK 17 libraries for static linking.
This package is unoptimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Tue, 30 Nov 2021 00:56:31 GMT: 1:java-17-openjdk-devel-slowdebug-17.0.1.0.12-2.el9.x86_64
java-17-openjdk-devel-slowdebug - OpenJDK 17 Development Environment with full debugging on
The OpenJDK 17 development tools.
This package is unoptimised with full debugging. Install only as needed and remove ASAP.
Change Log:
Mon, 29 Nov 2021 GMT - Severin Gehwolf <sgehwolf@redhat.com> - 1:17.0.1.0.12-2 - Use 'sql:' prefix in nss.fips.cfg as F35+ no longer ship the legacy secmod.db file as part of nss - Resolves: rhbz#2023537 Tue, 16 Nov 2021 GMT - Andrew Hughes <gnu.andrew@redhat.com> - 1:17.0.1.0.12-1 - Drop JDK-8272332 patch now included upstream. - Resolves: rhbz#2013846 Tue, 16 Nov 2021 GMT - Petra Alice Mikova <pmikova@redhat.com> - 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 - Dropped commented-out source line - Resolves: rhbz#2013846 ...
Wed, 16 Feb 2022 16:36:00 GMT: emacs-cython-mode-0.29.22-7.el9.noarch
emacs-cython-mode - A major mode for editing Cython source files in Emacs
cython-mode is an Emacs major mode for editing Cython source files.
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 0.29.22-7 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 0.29.22-6 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 16:35:38 GMT: python3-Cython-0.29.22-7.el9.x86_64
python3-Cython - Language for writing Python extension modules
The Cython language makes writing C extensions for the Python language as easy
as Python itself. Cython is a source code translator based on Pyrex,
but supports more cutting edge functionality and optimizations.
The Cython language is a superset of the Python language (almost all Python
code is also valid Cython code), but Cython additionally supports optional
static typing to natively call C functions, operate with C++ classes and
declare fast C types on variables and class attributes.
This allows the compiler to generate very efficient C code from Cython code.
This makes Cython the ideal language for writing glue code for external C/C++
libraries, and for fast C modules that speed up the execution of Python code.
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 0.29.22-7 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 0.29.22-6 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Mon, 09 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 16:35:46 GMT: python3-py-1.10.0-6.el9.noarch
python3-py - Library with cross-python path, ini-parsing, io, code, log facilities
The py lib is a Python development support library featuring the
following tools and modules:
* py.path: uniform local and svn path objects
* py.apipkg: explicit API control and lazy-importing
* py.iniconfig: easy parsing of .ini files
* py.code: dynamic code generation and introspection
* py.path: uniform local and svn path objects
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 1.10.0-6 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 1.10.0-5 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 1.10.0-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 16:34:24 GMT: python3-pluggy-0.13.1-7.el9.noarch
python3-pluggy - The plugin manager stripped of pytest specific details
The plugin manager stripped of pytest specific details.
Change Log:
Wed, 16 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 0.13.1-7 - Add gating configuration and a simple smoke test - Related: rhbz#1950291 Tue, 08 Feb 2022 GMT - Tomas Orsava <torsava@redhat.com> - 0.13.1-6 - Add automatically generated Obsoletes tag with the python39- prefix for smoother upgrade from RHEL8 - Related: rhbz#1990421 Tue, 10 Aug 2021 GMT - Mohan Boddu <mboddu@redhat.com> - 0.13.1-5 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 ...
Wed, 16 Feb 2022 04:21:06 GMT: dotnet-sdk-6.0-source-built-artifacts-6.0.102-3.el9.x86_64
dotnet-sdk-6.0-source-built-artifacts - Internal package for building .NET 6.0 Software Development Kit
The .NET source-built archive is a collection of packages needed
to build the .NET SDK itself.
These are not meant for general use.
Change Log:
Tue, 15 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.102-3 - Disable bootstrap - Related: RHBZ#1986211 Fri, 04 Feb 2022 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-2 - Rebuild and check SDK to avoid an incomplete SDK - Related: RHBZ#1986211 Wed, 10 Nov 2021 GMT - Omair Majid <omajid@redhat.com> - 6.0.100-1 - Update to .NET 6 - Resolves: RHBZ#1986211 ...