Red Hat Training
A Red Hat training course is available for Red Hat Enterprise Linux
8. Resolved Issues
8.1. All Architectures
- The data for TTY device activity reports was not generating correctly. Consequently, the command
sar -yfailed, returning the error:Requested activities not available in file
In this updated package, sar has been corrected so the -y option outputs the TTY device activity. - Previously, setting
max_fdstounlimitedin/etc/multipath.confwould prevent the multipathd daemon from starting. If number of open file descriptors needs to be set to the system maximum,max_fdsshould be set tomax. - mod_perl is now re-based to version 2.0.4, the latest upstream release. This update applies several updates, which include a bug fix that now allows mod_perl to work properly with Bugzilla 3.0.
- cups is now re-based to version 1.3.7. This update applies several bug fixes and enhancements, including:
- Kerberos authentication is now supported.
- User-defined printer and job policies are now loaded correctly.
- Remote queue caches are no longer loaded when browsing is disabled.
- The
classes.confconfiguration file now has correct file permissions.
lm_sensorshas been re-based to version 2.10.7. This update applies several upstream enhancements and bug fixes, including a fix that prevents libsensors from crashing with aGeneral parse errormessage whenk8tempis also loaded.- elfutils has been updated in this release to address the following bugs:
- The eu-readelf utility could crash when reading certain input files.
- The eu-strip utility is used in the
rpmbuildprocedures that create new binary packages. It separates debugging information from executable code, to make-debuginfopackages. A bug in this utility resulted in unusable debugging information for ET_REL files on the s390 platform; this affects Linux kernel module files (.ko.debug), and caused the generatedkernel-debuginfopackages not to work with Systemtap on s390.
- vnc-server is now re-based to version 4.1.2-14.el5. This update applies the following fixes:
- A bug that prevented vncserver from printing error messages when Xvnc failed to start is now fixed.
- Xvnc no longer uses the wrong root window depth; it now uses the correct window depth specified by the
-depthoption. - A bug that causes the
libvnc.somodule to crash the X server is now fixed. - Xvnc now supports GLX and RENDER extensions on all architectures.
- smartmontools has been re-based to version 5.38. This update improves autodetection of hardware devices, improves support for CCISS RAID arrays, and features a larger database of supported devices.This update also fixes a bug wherein SELinux prevented smartmontools from monitoring 3ware RAID devices. smartmontools can now monitor such devices properly.
- python-urlgrabber has been re-based to version 3.1.0-5. This applies several bug fixes from upstream, including:
yumcan now correctly re-download from ayumrepository that does not support partial downloads.yumcan now resume an interrupted download even if theyumrepository is FTP-based with a specified port.- The size of progress bars are now dynamic to the terminal width. In addition, progress bars are now cleaner, and display a percentage of the total downloaded data.
- The
keepalivesignal of python-urlgrabber is now fixed. Previously, a bug in this signal incorrectly increased memory usage during downloads; in addition, this bug also prevented reposync and yumdownloader from performing properly when downloading a large number of packages.
- yum-utils is now re-based to upstream version 1.1.16. This applies several bug fixes, including:
yum update --securitycan now properly locate old relevant security updates.yum-versionlocknow works properly against package obsoletes.
This update also includes theyum-fastestmirrorplugin, which enables yum to choose the fastest repository in a mirrorlist. - Samba has been re-based to upstream version 3.2.0. This fixes several bugs, including one that prevented users from joining domains that used Windows 2003 as their name server. This update also fixes a bug that caused samba domain membership to break after changing the system password using
net rpc changetrustpw.For a more comprehensive list of upstream samba updates included this release, refer to http://www.samba.org/samba/history/samba-3.0.32.html - OpenLDAP has been re-based to upstream version 2.3.43. This applies several upstream bug fixes, including:
- The
initscript now reports a warning if theslapddaemon cannot read a TLS certificate file. - All libraries in
openldap-debuginfopackage are now unstripped. - Uninstalling the
openldap-develpackage no longer breaks OpenLDAP libraries.
Red Hat now distributes additional overlays for OpenLDAP server. Except forsyncprov, all overlays can be found in separateopenldap-servers-overlayspackages, compiled as dynamically loadable modules. Thesyncprovoverlay is statically linked to the OpenLDAP server to maintain compatibility with older OpenLDAP releases. - Because the
xtermbinary had the set group ID (setgid) bit configured, certain environmental variables (such asLD_LIBRARY_PATHandTMPDIR) were unset. In this release, thextermbinary now has mode0755permissions configured, which resolves this issue. - The recommended method for balancing the load on NIS servers when multiple machines are connecting with ypbind has changed with this release. The ypbind daemon's behavior has not changed: it still pings all NIS servers listed in the
/etc/ypbindconfiguration file and then binds to the single fastest-responding server. Before, it was recommended to list all available NIS servers in each machine's/etc/ypbind.confconfiguration file. However, because even servers under high load can respond quickly to this ping, thus inadvertently increasing their own load, it is now recommended for administrators to list a smaller number of available NIS servers in each machine's ypbind.conf, and to vary this list across machines. In this way, NIS servers are automatically load-balanced due to not every NIS server being listed as being available to every machine. - OpenMotif has been re-based to upstream version 2.3.1. This update applies several bug fixes, including:
- A bug in the way OpenMotif handled the
GrabandUngrabevents is now fixed. In previous releases, this bug could cause the display to lock. - A bug in nedit could cause it to crash when using the nedit graphical user interface. This was caused by a function in the code that causes a segmentation fault in some cases of item selection, which is now fixed.
- dbus has been re-based to version 1.1.2. This update fixes a bug wherein multi-threaded programs could cause a deadlock in dbus. In previous releases, as one thread listened to dbus and processed messages, the second thread would send messages to dbus.
- strace has been re-based to version 4.5.18. This fixes several bugs, including:
- A bug that caused strace to crash when the
-foption was used on some multi-threaded programs (particularly on 64-bit systems) is now fixed. - A bug that prevented the 64-bit version of strace from executing a
vfork()function call on a 32-bit process is now fixed.
- cpuspeed has been updated to version 1.2.1-5. With this update, the cpuspeed
initscript now loads thespeedstep-centrinomodule if all other module loads fail. In addition, a user-space bug that prevented thePowernow-k8module from loading is now fixed. - The frysk suite of tools have been removed completely from this distribution. frysk was originally introduced as a technology preview in Red Hat Enterprise Linux 5.0.
- Previously, the partition I/O statistics provided by the
iostat -xcommand were incomplete. In this update, partition statistics are now calculated in the same manner as disk statistics, providing coherent and comprehensive I/O statistics at the partition level. - A password disclosure flaw was found with configuration file for the Dovecot mail server. If a system had the
ssl_key_passwordoption defined, any local user could view the SSL key password. (CVE-2008-4870)Note
This flaw did not allow the attacker to acquire the contents of the SSL key. The password has no value without the key file which arbitrary users should not have read access to.To better protect even this value, however, thedovecot.conffile now supports the "!include_try" directive. Thessl_key_passwordoption should be moved fromdovecot.confto a new file owned by, and only readable and writable by, root (ie 0600). This file should be referenced fromdovecot.confby setting the!include_try /path/to/password/fileoption.
8.2. x86_64 Architectures
- ksh has been re-based to version 2008-02-02. This update adds multi-byte character handling, addresses many job control problems and applies several bug fixes from upstream. Note that this update to ksh preserves compatibility for existing scripts.
8.3. s390x Architectures
- A
vmconvertbug prevented it from working properly on thevmurdevice node (/dev/0.0.000c). This causedvmconvertto fail when attempting to access dumps on thevmurdevice with the errorvmconvert: Open dump file failed! (Permission denied). An update tos390utilsin this release fixes this issue. - The
initscript andconfigfile for themon_procddaemon andmon_fsstatddaemon were missing from thes390utilspackage. Consequently these daemons could not be built and used. The missing files have been added in this update which resolves this issue.
8.4. PowerPC Architectures
- A bug that prevented the
ehci_hcdmodule from reloading on this architecture is now fixed. This ensures that the Belkin 4-port PCI-Express USB Lily adapter (and other similar devices) now function properly with Red Hat Enterprise Linux 5 when they use theehci_hcdmodule. - The libhugetlbfs library is now re-based to version 1.3. This update applies several upstream improvements to the library, thereby improving the performance of applications that use Huge pages.For a complete list of updates to libhugetlbfs, refer to the following link:
