-
Language:
English
-
Language:
English
Red Hat Training
A Red Hat training course is available for Red Hat Enterprise Linux
5.5 Technical Notes
Detailed notes on the changes implemented in Red Hat Enterprise Linux 5.5
Edition 5
Red Hat Inc.
Abstract
Preface
Chapter 1. Package Updates
1.1. acl
1.1.1. RHBA-2009:1652: bug fix update
Note
1.2. acpid
1.2.1. RHBA-2010:0004: bug fix update
Note
1.2.2. RHSA-2009:1642: Important security update
Important
1.3. aide
1.3.1. RHBA-2010:0036: bug fix update
Note
1.4. anaconda
1.4.1. RHBA-2010:0194: bug fix and enhancement update
- previously, when anaconda could not read the extended display identification data (EDID) of a monitor, it reverted to text mode. However, EDID information is frequently not available on systems connected to Keyboard–Video–Mouse (KVM) switches. Therefore, when installing Red Hat Enterprise Linux 5 on a system with a KVM switch, installation would be constrained to text mode. Anaconda no longer checks for bad or missing EDID, and allows graphical installation to proceed even when this information is unavailable. Graphical installation on machines attached to KVM switches therefore continues as if them monitor were connected directly to the graphics adapter. (BZ#445486)
- previously, anaconda expected storage devices to be available immediately when it probed for the location of a kickstart file. On systems where USB storage might not be available immedately (for example, IBM BladeCenter systems), anaconda would not find the kickstart file and would prompt the user for its location. This interaction negated the usefulness of kickstart, since the installation could not then complete unattended. Anaconda now waits until it has probed five times or for more than 31 seconds before prompting the user for the location of a kickstart file. This allows USB storage enough time to respond and for kickstart to proceed unattended. (BZ#460566)
- previously, some user interface elements in the the Malayalam translation of anaconda overlapped. The overlapping elements disabled some buttons in the screen where anaconda lets users to choose a partitioning scheme for the system, and prevented installation from continuing. The text of the Malayalam translation has been shortened so that the interface elements no longer overlap. The buttons on the partitioning scheme screen now work correctly and allow installation to continue. (BZ#479353)
- during installation, anaconda automatically examines any storage device that has the label
OEMDRV
for driver updates and applies any updates that it finds there. Previously, anaconda searched for this label on the devices listed in/proc/partitions
. However,/proc/partitions
does not identify CD or DVD media, so anaconda overlooked optical disks that had the correct label. Anaconda now examines the devices listed in/sys/block
. Therefore, anaconda correctly identifies CDs and DVDs labelledOEMDRV
as driver discs and automatically applies any driver updates contained on them. (BZ#485060) - previously, if anaconda required network access early in an installation (for example, to retrieve a kickstart file or driver disk image), it temporarily saved information about the network configuration while it enabled access to the network. However, if anaconda required network access again for a separate reason, it would not attempt to configure network access again, but would not be able to connect to the network either, because it no longer retained the configuration information that it had already used. Therefore, anaconda could not download both a kickstart file and a driver disk image over a network. Anaconda now retains the network configuration that it obtains early in the installation process, and can reuse this information multiple times. Therefore, anaconda can use more than one resource obtained over a network during installation. (BZ#495042)
- previously, while upgrading a system, anaconda did not check whether packages marked for installation as dependencies were already installed on the system. Consequently, many packages would be reinstalled during an upgrade, wasting time and, in the case of network installations, bandwidth. Now, when performing an upgrade, anaconda matches the packages to be installed against the packages that are already installed. Any packages with the same Name, Arch, Epoch, Version, Release (NAEVR) as a package already on the system are skipped and not reinstalled. (BZ#495796)
- previously, anaconda did not specify a value for
HOTPLUG
when writing the system's networking configuration files, although it did write a value forONBOOT
. BecauseHOTPLUG
is enabled by default, the effect of disablingONBOOT
was limited because any interface not activated at boot time would be enabled anyway whenever probed by the system. Anaconda now writes a value forHOTPLUG
, setting it to the same value asONBOOT
. Therefore, any network interface not meant to be enabled at boot time will not be automatically enabled by probing either. (BZ#498086) - the
part
kickstart command accepts an option called--label
that allows a label to be applied to a disk partition during a kickstart installation. However, the code that implemented this option was previously missing from anaconda. Any label specified in a kickstart file was therefore ignored. Anaconda now includes code to transfer the specified label from the kickstart file to the disk partition. Users can now label disk partitions during kickstart installations. (BZ#498856) - when running in rescue mode, anaconda previously lacked the ability to identify partitions on logical volumes if the partitions were identified in
fstab
by label rather than by device name. Therefore, if the root (/
) partition were identified in this way, the usefulness of rescue mode would be limited. Anaconda in rescue mode now uses the getLabels() method to find partitions and therefore properly detects root partition even if it resides on a logical volume and is identified by label infstab
. (BZ#502178) - previously, the help text available while configuring
NETTYPE
for IBM System z systems did not mention HiperSockets. Users new to System z might therefore not have known to chooseqeth
to configure HiperSocket interfaces on their hardware. The help text has now been updated to indicate the correct choice and users can select the appropriate option. (BZ#511962) - when the
RUNKS
was set to0
in theCMSCONFFILE
file on IBM System z systems, anaconda should have performed an installation in interactive mode. However, a rewrite of linuxrc.s390 changed the behavior of RUNKS and led to anaconda ignoring this variable. Installation would therefore proceed in non-interactive mode regardless of what value was set inCMSCONFFILE
. A new test is now included in the version of linuxrc.s390 in Red Hat Enterprise Linux 5.5 so that anaconda honorsRUNKS=0
and performs an interactive install if this value is set. (BZ#513951) - by design, anaconda recognizes any block device with the label
OEMDRV
as a driver disc and searches it for a driver update. However, anaconda previously failed to examinedev
nodes and therefore, it would not recognize this label on USB storage devices mounted as a partitionless block devices. Anaconda now examinesdev
nodes for the labelOEMDRV
and treats them the same as partitions with this label. It is therefore possible to use a partitionless device as a driver disc. (BZ#515437) - previously, anaconda did not reinitialize its record of the partition layout on a system when users clicked the back button from the partitioning screen. Therefore, when a user selected a partition layout, went back to an earlier screen, and then went forward again to choose a different partition layout, anaconda would attempt to implement the new partition layout over the previously-selected partition layout instead of the partition layout actually present on the system. This would sometimes result in a crash. Now, when users step backwards from the partitioning screen. anaconda reinitializes its record of the partitions present on the system. Users can therefore change their minds about partitioning options without crashing anaconda. (BZ#516715)
- systems store information about iSCSI targets to which they are connected in the iSCSI Boot Firmware Table (iBFT) in BIOS. Previously, however, when anaconda installed Red Hat Enterprise Linux 5 from a local installation source such as a CD, DVD, or hard disk, it would not initialize network connections before asking users to configure storage on the system. Therefore, on systems with iSCSI storage, users would have to configure a network connection manually before proceding with installation, even when this information was already available to anaconda in the system BIOS. Now, when anaconda detects a valid iBFT present on a system, it automatically loads the network configuration specified there and does not requre users to enter this information. Installation from local media on systems with iSCSI storage is therefore simpler and more reliable. (BZ#517768)
- due to faulty logic, anaconda previously did not parse IPv6 addresses correctly and attempted to read the final byte of the address as a port number. It was therefore not possible, for example, to install on an iSCSI target specified by in IPv6 address. The logic by which anaconda parses IP addresses has now been corrected, but now requires IPv6 addresses to be specified in the
[address]:port
form to comply with the relevant RFCs. This form removes ambiguity, since IPv6 addresses are still valid if they omit a sequence of bytes with zero values. When IPv6 addresses are specified in this format, anaconda parses them correctly and installation continues as normal. (BZ#525054) - comments in kickstart files are marked with a pound symbol (
#
) at the start of the line. However, anaconda did not previously account for the possibility that users might mark a comment with multiple pound symbols (for example,#####
). Anaconda would therefore attempt to parse lines that started with multiple pound symbols and installation would fail. Anaconda now recognizes lines that start with multiple pound symbols as comments and does not attempt to parse them. Users can now safely mark comments in kickstart files in this way. (BZ#525676) - to avoid a circular dependency that exists between the ghostscript and ghostscript-fonts packages, anaconda ignored ghostscript's dependency on ghostscript-fonts. However, ghostscript-fonts was not explicitly installed as part of the Printing package group. The usefulness of Ghostscript as installed by anaconda was therefore limited. Anaconda still avoids the circular dependency, but now specifically installs ghostscript-fonts when users select the Printing package group. (BZ#530548)
- previously, anaconda did not automatically instruct the kernel to check for multipath devices when installing on IBM System z systems. Therefore, unless users booted with the
mpath
boot option, iSCSI devices detected on more than one path would be represented in the installer multiple times, one for each path. Anaconda now automatically loads thempath
boot option and therefore represents multipath devices correctly. (BZ#538129) - Dell PowerEdge servers equipped with the SAS6i/R integrated RAID controller use BIOS Enhanced Disk Drive Services (EDD) to identify the storage device from which to boot the operating system. Previously, anaconda did not parse EDD to identify the correct boot device. Consequently, with a RAID 0 and RAID 1 configured on the system, anaconda would choose the wrong device and the system would not be bootable. Anaconda now parses EDD to support the SAS6i/R integrated RAID controller, so that it selects the correct boot device for systems that use this device. (BZ#540637)
- previously, anaconda would always attempt to reconstruct pre-existing Logical Volume Management (LVM) devices during installation. Anaconda would attempt to recreate the LVM device even when a user cleared the LVM partitions from one or more of the disks that held partitions that formed part of a volume group. In this case, installation would fail. Now, anaconda no longer attempts to reconstruct incomplete LVM devices. Users can therefore safely re-allocate storage that was once part of a volume group and installation will proceed as expected. (BZ#545869)
- when
ksdevice=link
is set in a kickstart file, anaconda should automatically select the first available network interface and use it during installation. This avoids the need for user input and allows installation to proceed unattended. However, if interfaces were in a state where anaconda could not determine their status, anaconda would revert to interactive more and prompt the user to select a network interface, thus making unattended installation impossible on systems where network interfaces could be in such a state. Anaconda now forces the network interfaces on the system intoIFF_UP
andIFF_RUNNING
states before it attempts to obtain link status. Because the interfaces are now in a state where they can report their link status to anaconda, Anaconda can automatically choose one to use during installation and kickstart installations can proceed unattended. (BZ#549751) - previously, when installing on IBM System z systems, anaconda assumed that the network gateway was unreachable if its attempt to ping the gateway timed out after 10 seconds. Anaconda would then prompt the user to select a gateway. However, if
IPADDR
in theconf
file has changed recently, network interfaces take longer to respond. Anaconda now prompts the user only when three pings have failed and therefore avoids prompting the user for gateway information that is already correctly specified in theconf
file. (BZ#506742)
- after transferring installation files to a z/VM guest, a user must execute a series of Conversational Monitor System (CMS) commands to IPL the zLinux installation. These commands can be scripted, but no such script was previously included with Red Hat Enterprise Linux 5. The lack of a readymade script made installation more difficult for users unfamiliar with CMS commands. The CMS script for starting the install process on z/VM is now included in the Red Hat Enterprise Linux 5 images, simplifying installation. (BZ#475343)
- anaconda now loads the Brocade BNA Ethernet Controller driver, and supports Brocade Fibre Channel to PCIe Host Bus Adapters. (BZ#475707)
- previously, anaconda did not offer users the opportunity to configure NFS options during interactive installation (although these could be configured in kickstart files). Users who needed to fine-tune NFS parameters for installation were therefore forced to run an unattended installation. Now, anaconda presents users who select NFS installation with a dialog in which they can configure NFS options to suit their needs. (BZ#493052)
- previously, it was not possible to configure hypervisor parameters during a kickstart installation. As a result, users needed to specify hypervisor parameters manually after installation, negating the usefulness of kickstart as as a mechanism for unattended installations. Now, anaconda recognizes a new kickstart option,
--hvargs
and sets Hypervisor parameters accordingly. (BZ#501438) - previouisly, during a kickstart installation when multiple multipath LUNs were available, anaconda would automatically choose the LUN with the lowest ID number for the root device. Users had no ready way to customize this behavior. Now, anaconda supports a
multipath
kickstart command with--name
and--device
options that allow users to specify a LUN for root. (BZ#502768) - anaconda can retrieve kickstart files from FTP servers. Previously, however, anaconda did not support users specifying authentication credentials to access an FTP server. Therefore, if access to the server were protected by a passphrase, anaconda could not retrieve the kickstart file. Now, when specifying the location of a kickstart file with the
ks=
boot option, users can provide a passphrase to allow anaconda to retrieve the kickstart files fom a protected server. (BZ#505424) - previously, troubleshooting errors that occurred while running %pre and %post kickstart scriptlets was very difficult because anaconda did not log the behavior of these scriptlets. Anaconda now copies %pre and %post kickstart scriptlets to
/tmp
together with a log. These records make troubleshooting kickstart installations easier. (BZ#510636) - Reipl is a kernel feature that instructs IBM System z systems where to boot next, as these systems do not have a default boot location. Anaconda did not previously support Reipl, which meant that during installation, users had to specify a boot location manually between different phases of the installation. Anaconda now supports Reipl, so these reboots can happen automatically. (BZ#512195)
- NPort ID Virtualization (NPIV) presents one physical Fibre Channel adapter port to the SAN as multiple WWNN/WWPN pairs. Anaconda now supports NPIV, which allows users on PowerPC systems to install to a NPIV LUN. (BZ#512237)
- the Python executables that make up anaconda now all explicitly use the system Python (
#! /usr/bin/python
instead of#! /usr/bin/env python
). This ensures that anaconda functions correctly when more than one Python stack is present on a system. (BZ#521337) - anaconda now supports the Emulex OneConnect iSCSI network interface card. (BZ#529442)
- anaconda now supports PMC Sierra MaxRAID controller adapters. (BZ#532777)
- although users have been able to specify package groups for installation in kickstart files, using the
@
prefix, it was not possible to exclude package groups from installation, only individual packages. Anaconda now supports excluding package groups with the-@
prefix (BZ#558516) - anaconda now loads the xorg-x11-qxl-drv and xorg-x11-ast-drv X11 video drivers as required. xorg-x11-qxl-drv supports the qemu QXL video accelerator when installing Red Hat Enterprise Linux 5 as a guest operating system. xorg-x11-ast-drv supports ASPEED Technologies video hardware. (BZ#567666)
1.5. apr-util
1.5.1. RHEA-2010:0310: enhancement update
1.6. at
1.6.1. RHBA-2009:1654: bug fix and enhancement update
Note
1.7. audit
1.7.1. RHBA-2010:0228: bug fix update
1.8. autofs
1.8.1. RHBA-2009:1468: bug fix update
Note
1.8.2. RHBA-2010:0265: bug fix update
- If an included map read failed, autofs returned an error and subsequent master map entries were not read. This update reports the failure in the log but master map reading no longer ceases. (BZ#506034)
- autofs could segfault if it called
xmlCleanupParser
concurrently from multiple threads, as this function is not re-entrant. autofs has been changed to call this function only once from its main thread, when the application exits. (BZ#513289) - autofs could segfault at startup when using LDAP under certain circumstances. autofs would fail to try and retrieve a query dn if:
- LDAP is being used to store autofs maps and...
- The LDAP schema to be used for the maps is explicitly defined in the autofs configuration and...
- No master map entries exist in LDAP.
This set of conditions would return success instead of failure. This update fixes the get query dn failure. (BZ#572603) - If a master map entry is changed in any other way besides the map name (for example, map wide options) the system encountered two application data structures for the "same" map during a map re-read. If the contents of that map has also changed, a deadlock can occur.Having the duplicate data structure also caused entries in the problem map to be umounted. Since direct mount maps have a distinct autofs mount for each entry direct mount they appeared to stop working. This update corrects this behaviour. (BZ#514412)
- autofs would block for several minutes when attempting to mount from a server that was not available. A new mount_wait parameter has been added to prevent this block. This update requires SELinux policy 255 or later. (BZ#517349)
- The autofs parser objected to locations containing the characters '@' and '#' (Lustre and sshfs mounts) causing the mount request to fail. This update allows autofs to parse these characters and mount successfully. (BZ#520745)
- Due to an incorrect system call an error message stating "Operation not permitted" would be returned when attempting to mount an unknown hostname. This call has been corrected and autofs now returns "hostname lookup failed" as would be expected. (BZ#533323)
- A typing error in the usage text of the autofs service script has been corrected. (BZ#534012)
- When changing the timed wait from using select(2) to poll(2) in the non-blocking TCP connection function, to overcome the 1024 file handle limit of select(2), the wait timeout was not correctly converted from seconds to milliseconds. This update corrects the problem. (BZ#539747)
- autofs failed to mount locations whose path depended on another local auto-mounted mount. Dependent mounts are triggered by calling access(2) on the mount location path prior to mounting the location. The check for whether a location was a local path was restrictive and didn't cater for all cases. This has now been fixed. (BZ#537403)
- Inter-operability between autofs and some non-open source LDAP servers was impaired when a SASL authenticated connection was used over muliple bind and unbind operations. autofs has been updated use distinct authentication connection for each server it binds to. (BZ#537793)
- autofs failed to load its maps if all LDAP servers were down, or unreachable, when the daemon started. The dependency on an LDAP server being available at startup has been removed. This change resolved the issue of the map server being unreachable for some common usage cases. (BZ#543554)
- The random selection option used with mount locations that have multiple servers was not being set correctly during the paring of master map entries. If specified as a mount option in master map entries the option is now used as has been requested. (BZ#548476)
- Setting the expire timeout to 0 was causing autofs to constantly schedule expire runs leading to excessive resource usage and preature umounting of mounts. Setting the timeout to 0 should in fact disable expiry of mounts and this update fixes this incorrect behavior. (BZ#548277)
- autofs would abort when using DIGEST-MD5 authentication under heavy concurrent access. This was caused by autofs not providing the locking functions required by the cyrus-sasl library. In addition the cyrus-sasl library locking functions contained a race which sometimes lead to a deadlock. This update adds the needed locking functions to autofs and passes them to cyrus-sasl at initialization. The bug in the cyrus-sasl library is fixed in cyrus-sasl-lib 2.1.22-5.el5.el5_4.3 and later which is required for the update to install if cyrus-sasl is also installed. (BZ#559430)
1.9. automake
1.9.1. RHSA-2010:0321: Low security update
1.10. avahi
1.10.1. RHBA-2010:0034: bug fix update
Note
1.11. bind
1.11.1. RHSA-2010:0062: Moderate security update
Important
1.11.2. RHSA-2009:1620: Moderate security update
Important
1.12. binutils
1.12.1. RHBA-2010:0304: bug fix update
1.13. bogl
1.13.1. RHBA-2009:1593: bug fix update
Note
1.14. bootparamd
1.14.1. RHBA-2010:0057: bug fix update
Note
1.15. booty
1.15.1. RHBA-2010:0185: bug fix and enhancement update
1.16. brltty
1.16.1. RHSA-2010:0181: Low security and bug fix update
1.17. checkpolicy
1.17.1. RHBA-2010:0184: bug fix update
1.18. chkconfig
1.18.1. RHBA-2009:1628: bug fix update
Note
1.19. cman
1.19.1. RHBA-2009:1435: bug fix update
Note
1.19.2. RHBA-2009:1516: bug-fix update
Note
1.19.3. RHBA-2009:1598: bug fix update
Note
1.19.4. RHBA-2009:1622: bug-fix update
Note
1.19.5. RHBA-2010:0266: bug fix and enhancement update
1.20. cmirror
1.20.1. RHBA-2010:0307: bug fix update
1.21. cmirror-kmod
1.21.1. RHBA-2010:0309: bug fix update
1.22. conga
1.22.1. RHBA-2009:1623: bug fix update
Note
1.22.2. RHBA-2010:0289: bug fix and enhancement update
1.23. coolkey
1.23.1. RHBA-2010:0068: bug fix update
Note
1.24. coreutils
1.24.1. RHBA-2009:1511: bug fix update
Note
1.24.2. RHBA-2010:0120: bug fix update
Note
1.25. cpio
1.25.1. RHSA-2010:0144: Moderate security update
Important
1.26. cpuspeed
1.26.1. RHBA-2010:0035: bug fix update
Note
1.27. crash
1.27.1. RHBA-2010:0230: bug fix update
1.28. ctdb
1.28.1. RHEA-2010:0320: enhancement update
1.29. cups
1.29.1. RHBA-2010:0045: bug fix update
Note
1.29.2. RHSA-2010:0129: Moderate security update
Important
1.29.3. RHSA-2009:1595: Moderate security update
Important
1.29.4. RHSA-2009:1513: Moderate security update
Important
1.29.5. RHBA-2010:0210: bug fix update
1.30. curl
1.30.1. RHSA-2010:0273: Moderate security, bug fix and enhancement update
1.31. cyrus-imapd
1.31.1. RHSA-2009:1459: Important security update
Important
1.32. cyrus-sasl
1.32.1. RHBA-2010:0151: bug fix update
Note
1.33. dbus
1.33.1. RHSA-2010:0018: Moderate security update
Important
1.33.2. RHBA-2010:0236: bug fix update
1.34. dbus-python
1.34.1. RHBA-2009:1559: bug fix available
Note
1.35. device-mapper
1.35.1. RHBA-2010:0296: bug fix and enhancement update
1.36. device-mapper-multipath
1.36.1. RHBA-2009:1645: bug fix update
Note
1.36.2. RHBA-2010:0255: bug fix and enhancement update
1.37. dhcp
1.37.1. RHBA-2010:0042: bug fix update
Note
1.37.2. RHBA-2010:0223: bug fix update
1.38. dhcpv6
1.38.1. RHBA-2010:0196: bug fix update
1.39. dmidecode
1.39.1. RHEA-2009:1456: enhancement update
Note
1.39.2. RHEA-2010:0303: enhancement update
1.40. dmraid
1.40.1. RHBA-2010:0286: bug fix update
1.41. dogtail
1.41.1. RHBA-2010:0009: bug fix update
Note
1.42. dosfstools
1.42.1. RHBA-2010:0007: bug fix update
Note
1.43. dstat
1.43.1. RHSA-2009:1619: Moderate security update
Important
1.44. e4fsprogs
1.44.1. RHBA-2010:0239: bug fix and enhancement update
1.45. elilo
1.45.1. RHEA-2010:0302: enhancement update
1.46. elinks
1.46.1. RHSA-2009:1471: Important security update
Important
1.47. esc
1.47.1. RHBA-2010:0066: bug fix update
Note
1.48. etherboot
1.48.1. RHBA-2010:0227: bug fix update
1.49. ethtool
1.49.1. RHBA-2010:0279: bug fix and enhancement update
1.50. evince
1.50.1. RHBA-2010:0195: bug fix update
1.51. exim
1.51.1. RHBA-2009:1627: bug fix update
Note
1.52. fetchmail
1.52.1. RHSA-2009:1427: Moderate security update
Important
1.53. filesystem
1.53.1. RHBA-2009:1481: bug fix update
Note
1.54. firefox
1.54.1. RHSA-2010:0112: Critical security update
Important
1.54.2. RHSA-2009:1674: Critical security update
Important
1.54.3. RHSA-2009:1530: Critical security update
Important
1.54.4. RHSA-2009:1430: Critical security update
Important
1.55. firstboot
1.55.1. RHBA-2010:0314: bug fix update
1.56. freeradius
1.56.1. RHSA-2009:1451: Moderate security update
Important
1.56.2. RHBA-2009:1678: bug fix update
Note
1.57. gail
1.57.1. RHBA-2009:1594: bug fix update
Note
1.58. gcc
1.58.1. RHBA-2009:1533: bug fix update
Note
1.58.2. RHSA-2010:0039: Moderate and gcc4 security update
Important
1.58.3. RHBA-2010:0232: bug fix update
1.59. gd
1.59.1. RHSA-2010:0003: Moderate security update
Important
1.60. gdb
1.60.1. RHBA-2010:0285: bug fix update
1.61. gfs-kmod
1.61.1. RHSA-2010:0291: Moderate security, bug fix and enhancement update
1.62. gfs-utils
1.62.1. RHBA-2010:0290: bug fix update
1.63. gfs2-utils
1.63.1. RHBA-2010:0287: bug fix update
1.64. glibc
1.64.1. RHBA-2009:1634: bug fix update
Note
1.64.2. RHBA-2010:0050: bug fix update
Note
1.64.3. RHBA-2010:0306: bug fix and enhancement update
1.65. gnome-vfs2
1.65.1. RHBA-2010:0317: bug fix update
1.65.2. RHBA-2010:0032: bug fix update
Note
1.66. gpart
1.66.1. RHBA-2009:1606: bug fix update
Note
1.67. gzip
1.67.1. RHSA-2010:0061: Moderate security update
Important
1.68. hal
1.68.1. RHBA-2010:0256: bug fix update
1.69. hmaccalc
1.69.1. RHBA-2010:0055: bug fix update
Note
1.70. httpd
1.70.1. RHSA-2010:0168: Moderate security and enhancement update
Important
1.70.2. RHSA-2009:1579: Moderate security update
Important
1.70.3. RHBA-2010:0252: bug fix and enhancement update
1.71. hwdata
1.71.1. RHEA-2010:0197: enhancement update
1.72. ia32el
1.72.1. RHBA-2010:0250: bug fix update
1.73. iasl
1.73.1. RHBA-2010:0226: bug fix and enhancement update
1.74. inn
1.74.1. RHBA-2009:1509: bug fix update
Note
1.75. iproute
1.75.1. RHBA-2009:1520: bug fix update
Note
1.76. iprutils
1.76.1. RHEA-2010:0229: enhancement update
1.77. iptables
1.77.1. RHBA-2009:1539: bug fix update
Note
1.78. iptstate
1.78.1. RHBA-2009:1676: bug fix update
Note
1.79. ipw2200-firmware
1.79.1. RHEA-2010:0218: enhancement update
1.80. iscsi-initiator-utils
1.80.1. RHBA-2010:0078: bug fix update
Note
1.80.2. RHBA-2010:0293: bug fix and enhancement update
1.81. iwl3945-firmware
1.81.1. RHEA-2010:0219: enhancement update
1.82. iwl4965-firmware
1.82.1. RHEA-2010:0215: enhancement update
1.83. iwl5000-firmware
1.83.1. RHEA-2010:0216: enhancement update
1.84. java-1.6.0-ibm
1.84.1. RHBA-2010:0327: bug fix update
1.85. java-1.6.0-openjdk
1.85.1. RHSA-2009:1584: Important security update
Important
1.86. java-1.6.0-sun
1.86.1. RHBA-2010:0072: bug fix update
Note
1.87. kdelibs
1.87.1. RHBA-2009:1464: bug fix update
Note
1.87.2. RHSA-2009:1601: Critical security update
Important
1.88. kernel
1.88.1. RHSA-2011:0004: Important: kernel security, bug fix, and enhancement update
Important
Security fixes:
- A flaw was found in sctp_packet_config() in the Linux kernel's Stream Control Transmission Protocol (SCTP) implementation. A remote attacker could use this flaw to cause a denial of service. (CVE-2010-3432, Important)
- A missing integer overflow check was found in snd_ctl_new() in the Linux kernel's sound subsystem. A local, unprivileged user on a 32-bit system could use this flaw to cause a denial of service or escalate their privileges. (CVE-2010-3442, Important)
- A heap overflow flaw in the Linux kernel's Transparent Inter-Process Communication protocol (TIPC) implementation could allow a local, unprivileged user to escalate their privileges. (CVE-2010-3859, Important)
- An integer overflow flaw was found in the Linux kernel's Reliable Datagram Sockets (RDS) protocol implementation. A local, unprivileged user could use this flaw to cause a denial of service or escalate their privileges. (CVE-2010-3865, Important)
- A flaw was found in the Xenbus code for the unified block-device I/O interface back end. A privileged guest user could use this flaw to cause a denial of service on the host system running the Xen hypervisor. (CVE-2010-3699, Moderate)
- Missing sanity checks were found in setup_arg_pages() in the Linux kernel. When making the size of the argument and environment area on the stack very large, it could trigger a BUG_ON(), resulting in a local denial of service. (CVE-2010-3858, Moderate)
- A flaw was found in inet_csk_diag_dump() in the Linux kernel's module for monitoring the sockets of INET transport protocols. By sending a netlink message with certain bytecode, a local, unprivileged user could cause a denial of service. (CVE-2010-3880, Moderate)
- Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit system could use this flaw to cause a denial of service or escalate their privileges. (CVE-2010-4157, Moderate)
- The fix for Red Hat Bugzilla bug 484590 as provided in RHSA-2009:1243 introduced a regression. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-4161, Moderate)
- A NULL pointer dereference flaw was found in the Bluetooth HCI UART driver in the Linux kernel. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-4242, Moderate)
- It was found that a malicious guest running on the Xen hypervisor could place invalid data in the memory that the guest shared with the blkback and blktap back-end drivers, resulting in a denial of service on the host system. (CVE-2010-4247, Moderate)
- A flaw was found in the Linux kernel's CPU time clocks implementation for the POSIX clock interface. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-4248, Moderate)
- Missing initialization flaws in the Linux kernel could lead to information leaks. (CVE-2010-3876, CVE-2010-4083, Low)
- BZ#651811
- Kernel panic could occur when the
gfs2_glock_hold
function was called within thegfs2_process_unlinked_inode
function. This was due to the fact thatgfs2_glock_hold
was being called without a reference already held on the inode in question. This update, resolves this problem by changing the order in which it acquires references to match that of the NFS code, thus, kernel panic no longer occurs. - BZ#651805
- Running certain tests (exploiting the reclaiming of unlinked dinodes) could cause a livelock to occur which resulted in a
GFS2
hang. This update fixes the problems with inodes getting stuck in certain states, thus, the hangs no longer occur. - BZ#646765
- The HP ProLiant DL580 G5 Server is in the
bfsort
whitelist, however the HP ProLiant DL580 G7 Server was not. This caused the scripts running under HP ProLiant DL580 G7 Server to not work properly. With this update, the HP ProLiant DL580 G7 Server has been added to thebfsort
whitelist. - BZ#652561
- When removing a slave
tg3
driver interface withvlan
support frombond
, a "scheduling while atomic" error (i.e. a thread has called theschedule()
function during an operation which is supposed to be atomic, i.e uninterrupted) occurred and, consequently, the system encountered a deadlock. With this update, the aforementioned error no longer occurs and removing a slavetg3
driver interface works as expected. - BZ#651818
- Loading a kernel module invokes various
kstopmachine
threads which repeat acquiring and releasing of each spinlock of their localrun queue
by calling theyield()
function. If an interruption occurs at that time and its handler requires one of those spinlocks, the operation fails to acquire the lock and the system hangs up. With this update,run queue
spinlock starvation is avoided, thus, the system no longer hangs. - BZ#643339
- If an Intel 82598 10 Gigabit Ethernet Controller was configured in a way that caused peer-to-peer traffic to be sent to the Intel X58 I/O hub (IOH), a PCIe credit starvation problem occurred. As a result, the system would hang. With this update, the system continues to work and does not hang.
- BZ#657028
- Handling ALUA (Asymmetric Logical Unit Access)
transitioning
states did not work properly due to a faultySCSI
(Small Computer System Interface)ALUA
handler. With this update, optimized state transitioning prevents the aforementioned behavior. - BZ#657029
- Due to a null pointer dereference in the
qla24xx_queuecommand
function, a Red Hat Enterprise Linux 5.5.z QLogic Fibre Channel host would panic during I/O with controller faults. This update fixes the null pointer dereference, thus, the system no longer panics. - BZ#658934
- Prior to this update, Red Hat Enterprise Linux 5 with the
qla4xxx
driver andFC
(Fibre Channel) drivers using thefc
class, a device might have been put in the offline state due to a transport problem. Once the transport problem was resolved, the device was not usable until a user manually corrected the state. This update enables the transition from the offline state to the running state, thus, fixing the problem. - BZ#657319
- System could have crashed when the
uhci_irq()
function was called between theuhci_stop()
andfree_irq()
functions. This update avoids the aforementioned crash and the system works as expected. - BZ#649255
- On some
bnx2
-based devices, frames could drop unexpectedly. This was shown by the increasingrx_fw_discards
values in theethtool --statistics
output. With this update, frames are no longer dropped and allbnx2
-based devices work as expected. - BZ#647681
- Prior to this update,
balance-rr
bonding did not work properly. This resulted in non-functioning network interfaces unless the thebond0
interface had thepromiscuous
mode enabled. With this update, networkbalance-rr
bonding works as expected, thus, preventing the aforementioned issue. - BZ#658857
- Prior to this update, the global
dentry
unused counter (nr_unused
) failed to update properly. As a result, the counter would contain negative values. When trying to reference the counter,dcache
would loop indefinitely. With this update, thenr_unused
counter has been updated, thus, it now works properly and no longer causes indefinite loops. - BZ#653335
- Previously, both
GFS
andGFS2
file systems performed poorly when compared to, for example, theext3
file system. With this update, steps have been taken to ensure the best performance possible with the aforementioned file systems. - BZ#643344
- Prior to this update, the execve utility exhibited the following flaw. When an argument and any environment data were copied from an old task's user stack to the user stack of a newly-execve'd task, the kernel would not allow the process to be interrupted or rescheduled. Therefore, when the argument or environment string data was (abnormally) large, there was no "interactivity" with the process while the
execve()
function was transferring the data. With this update, fatal signals (like CTRL-c) can now be received and handled and a process is allowed to yield to higher priority processes during the data transfer. - BZ#643347
- A typographical error in the
create_by_name()
function tested an error pointer (ERR_PTR
) againstdentry
instead of*dentry
. If "*dentry" was anERR_PTR
, it would be dereferenced in either themkdir()
function or thecreate()
function which could cause kernel panic. With this update, the typographical error has been fixed, thus, kernel panic no longer occurs in the aforementioned case. - BZ#658378
- Updated partner qualification injecting target faults uncovered a flaw where the Emulex
lpfc
driver would incorrectly panic due to a nullpnode
dereference. This update addresses the issue and was tested successfully under the same test conditions without the panic occurring. - BZ#658864, BZ#658379
- Updated partner qualification injecting controller faults uncovered a flaw where the Emulex
lpfc
driver panicked during error handling. With this update, kernel panic no longer occurs. - BZ#658079
- Updated partner qualification injecting controller faults uncovered a flaw where Fibre Channel ports would go offline while testing with Emulex LPFC controllers due to a faulty LPFC heartbeat functionality. This update changes the default behavior of the LPFC heartbeat to
off
. - BZ#643345
- Prior to this update, the
netback
driver failed to transition from theInitWait
state to theConnected
state after it was closed once. This was due to the fact that at the moment thenetdev_state_change
function was called, the interface was still down, so theNETDEV_CHANGE
event was not called. This update makes sure the interface is up (via theNETDEV_UP
event) and correctly changes the states. - BZ#648938
- AMD64 hosts on Intel Xeon processor 7500 series machines panicked when installing a Red Hat Enterprise Linux 4.8 KVM guest. This was due to a faulty value being generated in the
gso_size
variable that did not conform to the specification. With this update, faulty values are no longer generated and kernel panic no longer occurs. - BZ#664416
- Reading an empty file on an optional mount
sync/noac
of NFSv4 could cause kernel panic. This problem did not occur when an optional mount was set as a default. The kernel panic was caused by improperly setting thelock_context
field innfs_writepage_sync
. With this update, the aforementioned issue has been fixed and kernel panic no longer occurs. - BZ#663353
- Running certain tests, the system could crash due to an error in
nfs_flush_incompatible
. This was caused by problematic calls to thenfs_clear_context
function. With this update, calls to thenfs_clear_context
function work as expected and the system no longer crashes. - BZ#663381
- Writing to a file on optional mount
sync/noac
of NFSv4 could cause kernel panic. This problem did not occur when an optional mount was set as a default. The kernel panic was caused by thelock_context
field being added to thenfs_writedata
but missing the functionality to be filled out in thenfs_writepage_sync
codepath. With this update, a new function was added to properly handle thelock_context
field, thus, kernel panic no longer occurs.
- BZ#658520
- The
sfc
driver adds support for the Solarstorm SFC9000 family of Ethernet controllers.
1.88.2. RHSA-2010:0839: Moderate: kernel security and bug fix update
Important
NULL
pointer dereference flaw was found in the io_submit_one()
function in the Linux kernel asynchronous I/O implementation. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-3066, Moderate)
xfs_ioc_fsgetxattr()
function in the Linux kernel XFS file system implementation. A data structure in xfs_ioc_fsgetxattr()
was not initialized properly before being copied to user-space. A local, unprivileged user could use this flaw to cause an information leak. (CVE-2010-3078, Moderate)
__futex_atomic_op1
, __futex_atomic_op2
, and futex_atomic_cmpxchg_inatomic()
macros replaced the LOCK
prefix with a NOP
instruction. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-3086, Moderate)
tcf_act_police_dump()
function in the Linux kernel network traffic policing implementation. A data structure in tcf_act_police_dump()
was not initialized properly before being copied to user-space. A local, unprivileged user could use this flaw to cause an information leak. (CVE-2010-3477, Moderate)
sys_io_submit()
function in the Linux kernel asynchronous I/O implementation. A local, unprivileged user could use this flaw to cause an information leak. (CVE-2010-3067, Low)
802.3ad
link aggregation did not work properly when using the ixgbe
driver. This was caused due to an inability to form 802.3ad
-based bonds. With this update, the issue causing 802.3ad
link aggregation to not work properly has been fixed. (BZ#644822)
IGMP
join packets. With this update, the driver sends IGMP
join packets and the multicast domain is rejoined immediately. (BZ#640973)
UP
and PV
drivers, may have caused the guest to stop responding. With this update, HVM guest migration works as expected. (BZ#630989)
lvextend
during an intensive Virtual Guest power up caused this operation to fail. Since lvextend
was blocked, all components became non-responsive: vgs
and lvs
commands froze the session, Virtual Guests became Paused
or Not Responding
. This was caused by a faulty use of a lock. With this update, performing an lvextend
operation works as expected. (BZ#632255)
iomem
resources, which were enumerated using the PNP Motherboard resource descriptions, were not recognized and taken into consideration when gathering resource information. This could have caused MMIO-based requests to receive allocations that were not valid. With this update, system board iomem
resources are correctly recognized when gathering resource information. (BZ#629861)
NOT_READY
on standby path. (BZ#634977)
megaraid_sas
driver (for SAS based RAID controllers) handled physical disks and management IOCTLs (Input/Output Control). All physical disks were exported to the disk layer, allowing an oops in megasas_complete_cmd_dpc()
when completing the IOCTL command if a timeout occurred. One possible trigger for this bug was running mkfs
. This update resolves this issue by updating the megaraid_sas
driver to version 4.31. (BZ#619365)
RELEASE_LOCKOWNER
operation has been implemented for NFSv4 in order to avoid an exhaustion of NFS server state IDs, which could result in an NFS4ERR_RESOURCE
error. Furthermore, if the NFS4ERR_RESOURCE
error is returned by the NFS server, it is now handled correctly, thus preventing a possible reason for the following error:
NFS: v4 server returned a bad sequence-id error!
pmt_update_time()
function. With this update, time is kept accurately and no longer drifts backwards. (BZ#641915)
dasd_sleep_on
functions use a global wait queue when waiting for a CQR (Channel Queue Request). Previously, the wait condition checked the status
and devlist
fields of the CQR to determine if it is safe to continue. This evaluation may have returned true, although the tasklet did not finish processing the CQR and the callback function had not been called yet. When the callback was finally called, the data in the CQR could have already been invalid. With this update, the sleep_on
wait condition has a safe way to determine if the tasklet has finished processing, thus, preventing the aforementioned behavior. (BZ#638579)
ICMP
packets corrupted the kernel memory. This was caused by a flaw in net/ipv4/proc.c
. With this update, kernel memory is no longer corrupted when receiving 8 or more different types of ICMP
packets. (BZ#634976)
/proc/acpi/ibm/video
in order to prevent the aforementioned crash. (BZ#629241)
NULL
pointer in the lpfc_nlp_put()
function may have caused the system to crash. With this update, several changes have been made to ensure the correct reference count, resolving this issue. (BZ#637727)
dd
command on an iSCSI device with the qla3xxx driver may have caused the system to crash. This error has been fixed, and running the dd
command on such device no longer crashes the system. (BZ#637206)
divider=x
kernel parameter set to a value greater than 1 and that showed the following line of text in the kernel boot messages were the subject of the aforementioned behavior:
time.c: Using 3.579545 MHz WALL PM GTOD PM timer
log_mtts_per_seg
was increased from 5 to 7, increasing the amount of memory that can be registered. Machines with larger memory are now able to register more memory. (BZ#643806)
1.88.3. RHSA-2010:0504: Important: kernel security and bug fix update
Important
1.88.4. RHSA-2010:0046: Important security and bug fix update
Important
1.88.5. RHSA-2010:0147: Important security and bug fix update
Important
1.88.6. RHSA-2010:0019: Important security update
Important
1.88.7. RHSA-2009:1670: Important security and bug fix update
Important
1.88.8. RHSA-2009:1548: Important security and bug fix update
Important
1.88.9. RHSA-2009:1455: Moderate security and bug fix update
Important
1.88.10. RHSA-2010:0178: Important Red Hat Enterprise Linux 5.5 kernel security and bug fix update
1.88.10.1. Bug Fixes
1.88.10.1.1. Generic Kernel Features
- Add IRONLAKE support to AGP/DRM drivers. BZ#547908
- PCI AER: HEST FIRMWARE FIRST support. BZ#547762
- Extend tracepoint support. BZ#534178
- Update ibmvscsi driver with upstream multipath enhancements. BZ#512203This update provides improved support for the ibmvscsi driver, including support for fastfail mode and improved multipathing support.This update is
64-bit PowerPC
-specific. - amd64_edac: Add and detect ddr3 support. BZ#479070
- Add scsi and libfc symbols to whitelist_file. BZ#533489
- Extend KABI to support symbols that are not part of the current KABI. BZ#526342
libfc
bug fixes and improvements. BZ#526259- Implement
smp_call_function_[single|many]
in x86_64 and i386. BZ#526043A number of updates now depend on thesmp_call_function_single()
andsmp_call_function_many()
functions. This update provides a single function that can refer to the appropriate function as required, thereby simplifying the creation of further updates. - Support the single-port Async device on p7 Saturn. BZ#525812
- Backport open source driver for Creative X-Fi audio card. BZ#523786
- [Intel 5.5 FEAT] Update PCI.IDS for B43 graphics controller. BZ#523637
- Support physical CPU hotplug. BZ#516999This feature provides the functionality to add and remove CPU resources physically while the system is running.This feature applies to 32-bit x86, 64-bit Intel 64 and AMD64, and 64-bit Itanium2 architectures.
- Include core WMI support and Dell-WMI driver. BZ#516623
- [kabi] Add scsi_nl_{send_vendor_msg,{add,remove}_driver}. BZ#515812
- Enable ACPI 4.0 power metering. BZ#514923
- Add AER software error injection support. BZ#514442
- Add support for Syleus chip to fschmd driver. BZ#513101
- Implement support for DS8000 volumes. BZ#511972
- Support Lexar ExpressCard. BZ#511374
- Disable ARB_DISABLE on platforms where it is not needed. BZ#509422ARB_DISABLE is a NOP on all of the recent Intel platforms. For such platforms, this update reduces contention on the c3_lock by skipping the fake ARB_DISABLE.This lock is held on each deep C-state entry and exit and with 16, 32, and 64 logical CPUs in NHM EP, NHM EX platforms, this contention can become significant. Specifically on distributions that do not have tickless feature and where all CPUs may wake up around the same time.
- Add
zfcp
parameter to dynamically adjust scsi_queue_depth size. BZ#508355 - Add HP ipmi message handling to Red Hat Enterprise Linux 5. BZ#507402
- Backport CONFIG_DETECT_HUNG_TASK to Red Hat Enterprise Linux 5. BZ#506059In some circumstances, tasks in the kernel may permanently enter the uninterruptible sleep state (D-State), making the system impossible to shut down. This update adds the Detect Hung Task kernel thread, providing the ability to detect tasks permanently stuck in the D-State.This new feature is controlled by the "CONFIG_DETECT_HUNG_TASK=" kernel flag. When set to "y", tasks stuck in the D-State are detected; when set to "n" it is off. The default value for the "CONFIG_DETECT_HUNG_TASK" flag is "y".Additionally, the "CONFIG_BOOTPARAM_HUNG_TASK_PANIC" flag has been added. When set to "y", a kernel panic is triggered when a task stuck in the D-State is detected. The default value for the "CONFIG_BOOTPARAM_HUNG_TASK_PANIC" flag is "n".
- Add ability to access Nehalem uncore configuration space. BZ#504330Systems that don't use MMCONFIG have trouble when allocating resources by using a legacy PCI probe. As a result, the machine will hang during boot if the Disk PCI device is not properly initialized.This update reverts a patch that improves the PCI ID detection in order to detect the new PCI devices found on Nehalem machines. Consequently, the kernel will not hang on such machines. A different patch will be needed, however, when adding any driver that needs to see the non-core set of PCI devices on Nehalem.
- When booted with P-state limit, limit can never be increased BZ#489566
- Add do_settimeofday and __user_walk_fd BZ#486205
- A bug was discovered where closing the lid on an HP6510b caused the system to crash. This was due to the system failing to run on CPU0. A patch was created to enable ACPI workqueues to run on CPU0, and this has been tested successfully. BZ#485016
- Some applications (e.g., dump and nfsd) try to improve disk I/O performance by distributing I/O requests to multiple processes or threads by using the Completely Fair Queuing (CFQ) I/O scheduler. This application design negatively affected I/O performance, causing a large drop in performance under certain workloads on real queuing devices.
- Enable CONFIG_DETECT_HUNG_TASK by default, but disable BOOTPARAM_xx by default
- Only prompt for network configuration when required. BZ#506898Due to an unexpected side effect of a kernel change in Red Hat Enterprise Linux 5.4, the installer will prompt for the network configuration, regardless of whether these parameters appear in the PARM or CONF files.This flaw was addressed by removing the annotation of cmdline as __initdata. The installer no longer prompts for network configuration when not required.
1.88.10.1.2. Kernel Platform Enablement
1.88.10.1.2.1. BX-EX/MC Enablement Features
- [Intel 5.5 FEAT] Make suspend-resume work on systems with lots of logical CPUs (Boxboro-EX). BZ#499271
- [Intel 5.5 FEAT] Add ability to access Nehalem uncore config space 504330/539675
- [AMD 5.5 Feat] Support Magny-cours topology 513684/539678
- Red Hat Enterprise Linux 5.5: Power-aware Scheduler changes to support multiple node processors 513685/539680
- Fix kernel panic while booting Red Hat Enterprise Linux 5 32-bit kernel on Magny-cours. BZ#522215
- [Intel 5.5 FEAT] Oprofile: Add support for arch perfmon - kernel component BZ#523479
- EXPERIMENTAL EX/MC: Xen NUMA broken on Magny-cours system Z. BZ#526051
- [Intel 5.5 FEAT] Fix spinlock issue which causes performance impact on large systems. BZ#526078
- EXPERIMENTAL EX/MC: Magny-cours topology fixes. BZ#526315
- EXPERIMENTAL MC/EX: Issue when bringing CPU offline and online with 32-bit kernel. BZ#526770
- EXPERIMENTAL MC/EX: Incorrect memory setup can cause Xen crash. BZ#526785
- Fix AMD erratum - server C1E BZ#519422
- EXPERIMENTAL EX/MC: AMD IOMMU Linux driver with latest BIOS has IO PAGE FAULTS 531469/539689
- [Intel 5.5 BUG] NMI and Watchdog are not disabled on CPU when CPU is taken offline. BZ#532514
- Boxboro-EX: multiple equal directory entries in
/proc/acpi/processor
BZ#537395
1.88.10.1.2.2. x86-specific Updates
- Fix AMD Magny-Cours boot inside Xen on pre-5.5 hypervisor. BZ#560013A problem was found where Beta 1 of Red Hat Enterprise Linux 5.5 would fail to boot as a Xen guest on AMD Magny-Cours systems using a hypervisor other than the one included in Red Hat Enterprise Linux 5.5.This update provides a fix for this issue.
- Support always running local APIC. BZ#496306
- kvm: Mark kvmclock_init as cpuinit. BZ#523450
- Fix stale data in shared_cpu_map cpumasks. BZ#541953This update was necessary to avoid possible kernel panic when performing frequent CPU online/offline operations.
1.88.10.1.2.3. x86_64-specific Updates
- k8: Do not mark early_is_k8_nb as __init. BZ#567275This update addresses a problem with CPU hotplugging identified on AMD Magny-Cours machines.
- Avoid deadlocks during MCE broadcasts. BZ#562866
- Wire up compat sched_rr_get_interval. BZ#557092A problem was found where if a program that calls
sched_rr_get_interval()
is compiled on x86 and is executed on x86_64, it will destroy the user stack. This problem is solved by callingsys32_sched_rr_get_interval()
instead ofsys_sched_rr_get_interval()
whensched_rr_get_interval()
is called.This update includes a backport of an upstream patch to correct this problem. - Disable vsyscall in kvm guests. BZ#542612A problem was found on Red Hat Enterprise Linux 5.4 guests with PV clock enabled, where there is a large difference between the time returned by
clock_gettime(CLOCK_REALTIME)
and the time returned bygettimeofday()
, even if a program executes one call right after the other.This update addresses the problem, which was traced to the use of vsyscall in kvm guests. - Resolve issue with SCTP messages arriving out of order. BZ#517504A problem was found where, under the right conditions, it was possible for packets to become re-ordered prior to the assignment of a Transmission Sequence Number (TSN) value. The conditions which caused this are the fact that multiple interfaces were used in transmission, where each had differing Path Maximum Transmission Unit (pmtu) values.This update addresses the problem with the SCTP stack that allowed this reordering to occur.
- Cap kernel at 1024G on x86_64 systems.
- Fix kernel crash when 1TB of memory and NUMA is used. BZ#523522
- kvm: Allow kvmclock to be overwritten. BZ#523447
- glibc should call pselect() and ppoll() on Itanium kernels. BZ#520867
- Force Altix drivers to use 64-bit addressing. This update is Altix-specific. BZ#517192This update applies to the 64-bit Itanium2 architecture.
- vsmp: Fix bit-wise operator and compile issue. BZ#515408
- Fix hugepage memory tracking. BZ#518671
1.88.10.1.2.4. IBM S/390-specific Updates
- qeth: Set default BLKT settings by OSA hw level. BZ#559621A problem was found where new hardware was being configured with values for old hw levels, because BLKT settings were not being set according to different hw levels.This update ensures that the BLKT settings are applied after the hw level has been probed.
- Clear high-order bits after switching to 64-bit mode. BZ#546302
- Fix single stepping on svc 0. BZ#540527A problem was found where if a system call number > 256 is single-stepped or svc 0 is single-stepped then the system call would not be executed. This update provides a solution to this problem.
- DASD: Support DIAG access for read-only devices. BZ#537859
- IUCV: Use correct output register in
iucv_query_maxconn()
. BZ#524251A problem was found where the system log contained kernel messages reporting that the IUCV "pathid" was greater thanmax_connections
. This is because the wrong output register was used when querying the maximum number of IUCV connections.This update ensures that the correct output register is used, and this problem no longer occurs. - cio: Fix set online/offline processing failures. BZ#523323A problem was found where the
set online
orset offline
routines failed for a DASD device. Afterwards this device could neither be set online nor offline.Theset online
,set offline
, and related rollback and error routines are only processed if the device is in a FINAL or DISCONNECTED state. - DASD: Fail requests when device state is less then ready. BZ#523219A problem was found where in certain device mapper multipath/PPRC setups a DASD device gets quiesced and then set to the "basic" state to flush its queue and return all already queued requests back to the device mapper. It was possible that a request was queued after the device's state was set to basic, and so that request stayed queued, was not processed, and the device mapper was blocked waiting for it.This update ensures that all requests that arrive in such a state are returned as failed.
- Set preferred IBM S/390 console based on conmode. BZ#520461A problem was found where if conmode was set to 3270 to enable the 3270 terminal device driver, kernel console messages were not displayed in the console view. This is because the default preferred console is set to "ttyS". For the 3270 terminal device driver, the preferred console must be set to "tty3270".This update introduces a new function to set the preferred console based on the specified conmode.
- Optimize storage key operations for anonymous pages. BZ#519977A problem was found where removal of anonymous mappings resulted in poor performance. This update optimizes the instructions that are used for these operations.
- CIO: set correct number of internal I/O retries. BZ#519814A problem was found where if a device has
n
paths and that device is not path-grouped, and an internal I/O command fails, then the control unit presents the error sensen
times on each different path. Because CIO only performs five retries, devices with five or more paths run out of retries before their functional status can be correctly determined.This update increases the number of retries to 10 to prevent this problem from occurring. - Add module signing to IBM S/390 kernels. BZ#483665
- Make CIO_* macros safe if dbfs are not available. BZ#508934
- qeth: Improve no_checksumming handling for layer3. BZ#503238
- qeth: Handle VSwitch Port Isolation error codes. BZ#503232
- Implement AF_IUCV SOCK_SEQPACKET support. BZ#512006This update offers AF_IUCV datagram stream-oriented sockets in addition to the existing AF_IUCV byte stream-oriented sockets. SOCK_SEQPACKET provides a sequenced, reliable, two-way connection-based data transmission path for datagrams of fixed maximum length; a consumer is required to read an entire packet with each input system call.
- Kernel parameters vmhalt, vmpanic, vmpoff and vmreboot are ignored. BZ#518229A problem was found where an obsolete function (
__setup()
) was being called twice. This update removes those function calls, and the affected kernel parameters now behave as expected.
1.88.10.1.2.5. Other Updates
- [PowerPC] Fix "scheduling while atomic" error in alignment handler. BZ#543637
- [powerpc] Handle SLB resize during migration. BZ#524112
- Export additional CPU flags in
/proc/cpuinfo
BZ#517928Previously,/proc/cpuinfo
only showed the original set of flags supported from the base kernel release. It did not include new features present in supported CPUs. This update addresses this problem, and applies to both x86 and x86_64 architectures. - This feature provides the ability for user level software monitoring the system for disabled cache indices and to explicitly disable them. BZ#517586This update applies to 32-bit x86 and 64-bit Intel 64 and AMD64 architectures.
- Update ALSA HDA, snd-hda-intel driver. BZ#525390
- Add Hudson-2 sb900 i2c driver. BZ#515125
- Add fcocee npiv support to ibmvfc driver. BZ#512192
- Add i3200 edac driver support. BZ#469976
1.88.10.1.3. Virtualization Updates
- Fix module loading for virtio-balloon module. BZ#564361
- VT-d: Ignore unknown DMAR entries. BZ#563900
- kvm: Fix double registering of pvclock on i386. BZ#557095
- Fix frequency scaling on Intel platforms. BZ#553324
- Update to enable VF in Dom0. BZ#547980
- Xen IOMMU fix for AMD M-C platforms with SATA set to IDE combined mode. BZ#544021AMD M-C systems, that is, Maranello platforms, have several SATA settings, for example, IDE, SATA AHCI, and SATA IDE combined mode. A problem was found with IOMMU when the SATA drive is in IDE combined mode that could prevent Red Hat Enterprise Linux 5.4 from booting properly when IOMMU is enabled. In some cases the SATA drive was not detected.This update implements a global interrupt remapping table, which is shared by all devices and provides better compatibility with certain old BIOSes, and prevents this problem from occurring.
- Ensure a new xenfb thread is not created on every save/restore. BZ#541325A problem was found where an initial two xenfb threads were created for a save/restore operation for a live migration, followed by another two every time the guest was live migrated, or saved and restored.This update avoids creating further threads if one already exists.
- PV guest crash on poweroff. BZ#540811
- Call trace error when resuming from suspend to disk. BZ#539521
- Add BL2xx and DL7xx to the list of ProLiant systems in
xen/arch/x86/ioport_emulate.c
in the Xen variants of Red Hat Enterprise Linux 5. BZ#536677 - Mask out extended topology CPUID feature. BZ#533292On Intel Nehalem (55xx) dom0 hosts, booting Windows 2008 R2 64-bit domU resulted in a hang. This was caused by incomplete emulation of the CPUID instruction in hvm/xvm support.Because Xen guests do not need to know about extended topology, this update masks out that topology to prevent this problem from occurring.
- Fix timedrift on VM with pv_clock enabled. BZ#531268
- Use upstream
kvm_get_tsc_khz()
BZ#531025 - Whitespace updates in Xen scheduler. BZ#529271
- Xen panic in msi_msg_read_remap_rte with acpi=off. BZ#525467
- Backport interrupt rate limiting. BZ#524747
- RHEV: SAP SLCS 2.3 fails during install/import in a RHEV-H/KVM guest with PV KVM clock. BZ#524076
- Attempting to boot a fully virtualized DomU with rawhide's 2.6.31-14.fc12.x86_64 for installation hangs almost immediately. A 32-bit HVM booted and installed successfully on a 32-bit host.This update masks out the
xsave
andosxsave
bits to prevent this problem from occurring. - Enable display of the
ida
flag on Xen kernels. BZ#522846Theida
flag, which indicates the presence of the Turbo Boost feature, was not seen in the cpuflags section of/proc/cpuinfo
on Xen kernels. This occurred on both 32-bit and 64-bit Xen kernels.This update ensures that this flag is displayed when the Turbo Boost feature is present on Xen kernels. - Xen fails to boot on Itanium with > 128GB memory. BZ#521865A problem was found where attempting to boot a Xen kernel on Itanium systems with more than 128GB of RAM would result in a Xen panic. This problem was traced to a miscalculation of the Xen heap size.This update includes support for the
xenheap_megabytes
hypervisor option to address this problem. For example, if the installed memory exceeds 64GB, it is suggested to set the option to a value equal to the memory size in gigabytes. For example, on a system with 128GB of memory, theelilo.conf
file should include the directive:append="xenheap_megabytes=128 --"
- Fix SRAT check for discontiguous memory. BZ#519225A problem was found where Xen could ignore valid SRAT tables because it expects completely contiguous memory ranges, where the sum of the node memory is approximately equal to the address of the highest memory page. This is an incorrect assumption and prevents NUMA support from being enabled on some systems. This update addresses this assumption and prevents this problem from occurring.
- Allow booting with broken serial hardware. BZ#518338
- Fix for array out-of-bounds in blkfront. BZ#517238
- Enable Xen to build on gcc 4.4. BZ#510686
- Handle x87 opcodes in TLS segment fixup. BZ#510225
- Implement fully preemptible page table teardown. BZ#510037
- Fix timeout with PV guest and physical CDROM. BZ#506899
- Fix SR-IOV function dependency link problem. BZ#503837
- F-11 Xen 64-bit domU cannot be started with > 2047MB of memory. BZ#502826
- x86: Make NMI detection work. BZ#494120
- netback: call netdev_features_changed. BZ#493092
- Invalidate dom0 pages before starting guest. BZ#466681
- AMD IOMMU Xen pass-through support. BZ#531469
- Add balloon driver for KVM guests. BZ#522629
- Provide pass-through MSI-X mask bit acceleration V3. BZ#537734
- CD-ROM drive does not recognize new media. BZ#221676
- kvmclock: fix incorrect wallclock value. BZ#519771
- KMP for Xen kernel cannot be applied. BZ#521081A problem was found when creating KMP that includes the driver that uses the "pci_enable_msi/pci_disable_msi" function for the Xen kernel and applying it, error messages are printed out and KMP cannot be applied. This problem occurred on both i386 and x86_64 architectures.This update addresses this problem and these error messages no longer appear.
1.88.10.1.4. Network Device Drivers
- mlx4: pass attributes down to vlan interfaces BZ#573098
- r8169: fix assignments in backported net_device_ops BZ#568040
- virtio_net: refill rx buffer on out-of-memory BZ#554078
- be2net: critical bugfix from upstream BZ#567718
- tg3: fix 5717 and 57765 asic revs panic under load BZ#565964
- bnx2x: use single tx queue BZ#567979
- igb: fix WoL initialization when disabled in eeprom BZ#564102
- igb: fix warning in igb_ethtool.c BZ#561076
- s2io: restore ability to tx/rx vlan traffic BZ#562732
- ixgbe: stop unmapping DMA buffers too early BZ#568153
- e1000e: disable NFS filtering capabilites in ICH hw BZ#558809
- bnx2: update firmware and version to 2.0.8 BZ#561578
- mlx4: fix broken SRIOV code BZ#567730
- mlx4: pass eth attributes down to vlan interfaces BZ#557109
- ixgbe: initial support of ixgbe PF and VF drivers BZ#525577
- bnx2x: update to 1.52.1-6 firmware BZ#560556
- ixgbe: prevent speculatively processing descriptors BZ#566309
- tg3: fix 57765 LED BZ#566016
- tg3: fix race condition with 57765 devices BZ#565965
- forcedeth: fix putting system into S4 BZ#513203
- netfilter: allow changing queue length via netlink BZ#562945
- e1000e: fix deadlock unloading module on some ICH8 BZ#555818
- Wireless fixes from 2.6.32.2, 2.6.32.3, 2.6.32.4, & 2.6.32.7 BZ#559711
- be2net: latest bugfixes from upstream for Red Hat Enterprise Linux 5.5 BZ#561322
- cxgb3: add memory barriers BZ#561957
- igb: fix msix_other interrupt masking BZ#552348
- niu: fix deadlock when using bondin BZ#547943
- sky2: fix initial link state error BZ#559329
- iptables: fix routing of REJECT target packets BZ#548079
- niu: fix the driver to be functional with vlans BZ#538649
- igb: update driver to support End Point DCA BZ#513712
- tg3: update to version 3.106 for 57765 asic support BZ#545135
- bonding: fix alb mode locking regression BZ#533496
- e1000e: fix broken wol BZ#557974
- fixup problems with vlans and bonding BZ#526976
- ixgbe: upstream update to include 82599-KR support BZ#513707
- be2net: multiple bug fixes BZ#549460
- virtio_net: fix tx wakeup race condition BZ#524651
- Add support for send/receive tracepoints. BZ#475457
- wireless: fix build when using O=objdir BZ#546712
- update tg3 driver to version 3.100 BZ#515312
- e1000e: support for 82567V-3 and MTU fixes BZ#513706
- bonding: add debug module option BZ#546624
- ipv4: fix possible invalid memory access BZ#541213
- s2io: update driver to current upstream version BZ#513942
- wireless: report reasonable bitrate for 802.11n BZ#546281
- mac80211: report correct signal for non-dBm values BZ#545899
- wireless: Remove some unnecessary warning messages. mac80211: avoid uninit pointer dereference in ieee80211. BZ#545121
- wireless: avoid deadlock when enabling rfkill BZ#542593
- bnx2: update to version 2.0.2 BZ#517377
- cnic: Update driver for Red Hat Enterprise Linux 5.5 BZ#517378
- mdio: Add mdio module from upstream and ethtool. Add more defines for mdio to use. Add the sfc (Solarflare) driver. BZ#448856
- r8169: update to latest upstream for Red Hat Enterprise Linux 5.5 BZ#540582
- benet: update driver to latest upstream for Red Hat Enterprise Linux 5.5 BZ#515269
- e1000: update to latest upstream for Red Hat Enterprise Linux 5.5 BZ#515524
- ipv4: fix an unexpectedly freed skb in tcp BZ#546402
- bnx2: fix frags index BZ#546326
- netxen: further p3 updates for Red Hat Enterprise Linux 5.5 BZ#542746
- netxen: driver updates from 2.6.31 and 2.6.32 BZ#516833
- igb: update igb driver to support barton hills BZ#513710
- enic: update to upstream version 1.1.0.100 BZ#519086
- ipvs: synchronize closing of connections BZ#492942
- cxgb3: fix port index issue and correct hex/decimal error BZ#516948
- mlx4_en: add a pci id table BZ#508770
- resolve issues with vlan creation and filtering BZ#521345
- gro: fix illegal merging of trailer trash BZ#537876
- ixgbe: add and enable CONFIG_IXGBE_DCA BZ#514306
- call cond_resched in rt_run_flush BZ#517588
- igb: add support for 82576ns serdes adapter BZ#517063
- qlge: updates and fixes for Red Hat Enterprise Linux 5.5 BZ#519453
- igb: fix kexec with igb controller BZ#527424
- qlge: fix crash with kvm guest device passthrough BZ#507689
- igb: set vf rlpml must take vlan tag into account BZ#515602
- fix race in data receive/select BZ#509866
- augment raw_send_hdrinc to validate ihl in user hdr BZ#500924
- bonding: introduce primary_reselect option and ab_arp use std active slave select code BZ#471532
- use netlink notifications to track neighbour states and introduce generic function __neigh_notify BZ#516589
- sched: fix panic in bnx2_poll_work BZ#526481
- bnx2i/cnic: update driver version for Red Hat Enterprise Linux 5.5 BZ#516233
- cxgb3: bug fixes from latest upstream version BZ#510818
- sunrpc: remove flush_workqueue from xs_connect BZ#495059
- lvs: adjust sync protocol handling for ipvsadm -2 and for timeout values BZ#524129
- igb and e100: return PCI_ERS_RESULT_DISCONNECT on failure BZ#514250
- bnx2: apply BROKEN_STATS workaround to 5706/5708 BZ#527748
- syncookies: support for TCP options via timestamps and tcp: add IPv6 support to TCP SYN cookies BZ#509062
- e1000e: return PCI_ERS_RESULT_DISCONNECT on fail BZ#508387
- e100: add support for 82552 BZ#475610
- netfilter: honour source routing for LVS-NAT BZ#491010
- Update r8169 driver to avoid losing MSI interrupts. BZ#514589
- ipt_recent: sanity check hit count BZ#523982
- ipv4: ip_append_data handle NULL routing table BZ#520297
- fix drop monitor to not panic on null dev BZ#523279
- ipv6: do not fwd pkts with the unspecified saddr BZ#517899
- igbvf: recognize failure to set mac address BZ#512469
- sunrpc client: IF for binding to a local address and set rq_daddr in svc_rqst on socket recv BZ#500653
- tcp: do not use TSO/GSO when there is urgent data BZ#502572
- vxge: new driver for Neterion 10Gb Ethernet and Makefile, Kconfig and config additions BZ#453683
- 8139too: RTNL and flush_scheduled_work deadlock BZ#487346
- icmp: fix icmp_errors_use_inbound_ifaddr sysctl BZ#502822
- bonding: allow bond in mode balance-alb to work BZ#487763
- rtl8139: set mac address on running device BZ#502491
- tun: allow group ownership of TUN/TAP devices BZ#497955
- tcp: do not use TSO/GSO when there is urgent data BZ#497032
- A problem was found where if you set
/proc/sys/net/ipv4/route/secret_interval
to0
, you could not reset it to another value, and/bin/bash
would hang on the echo.The timer reschedule path was updated to ensure that the rtnl lock is always released. The/proc/sys/net/ipv4/route/secret_interval
can now be set to0
and successfully reset to another value without causing/bin/bash
to hang. BZ#510067 - sky2: revert some phy power refactoring changes BZ#509891
- bonding: tlb/alb: set active slave when enslaving BZ#499884
- tg3: refrain from touching MPS BZ#516123
- qlge: fix hangs and read performance BZ#517893
- mlx4_en fix for vlan traffic BZ#514141
- mlx4_en device multi-function patch BZ#500346
- mlx4_core: fails to load on large systems BZ#514147
- add DSCP netfilter target BZ481652#
1.88.10.1.5. Filesystem and Storage Management Updates
1.88.10.1.5.1. NFS-specific Updates
- Fix a deadlock in the sunrpc code. BZ#548846
- Ensure
dprintk()
macro works everywhere. BZ#532701 - Update
nfs4_do_open_expired()
to prevent infinite loops. BZ#526888A problem was found withnfs4_do_open_expired()
that could lead to the reclaimer thread going into an infinite loop. This bug was triggered when the client received an NFS4ERR_DELAY from the server, and the exception.retry bit was set, enforcing a timeout. This bit was never reset to zero (0) when the server recovered, leading to an infinite loop.This update checks for server recovery and resets the exception.retry bit when appropriate, preventing the creation of this infinite loop. - nfsnobody == 4294967294 causes idmapd to stop responding BZ#519184
- statfs on NFS partition always returns 0 BZ#519112A problem was found where
statfs
on NFS partitions always returned a zero (0) value, regardless of success or fail. On fail,statfs
should return a negative number.This update corrects the problem so thatstatfs
behaves as expected. - Read/Write NFS I/O performance was severely degraded by NFS synchronous write RPCs (FILE_SYNC) that occur when an application has a file open O_RDWR and is reading dirty pages. This read() system call triggered a flush of the dirty page to the server, using a 4096-byte synchronous write. The remote filesystem is mounted with an explicit async mount option, and the application does not open the file with O_SYNC or O_DSYNC flags.
- Mounting with a rsize/wsize of 2048 (less than the 4096 page size) eliminates these synchronous writes, and dramatically improves I/O. BZ#498433
- knfsd: query fs for v4 getattr of FATTR4_MAXNAME BZ#469689
- Bring nfs4acl into line with mainline code BZ#479870
- Add an nfsiod workqueue BZ#489931
- nfsv4: Distinguish expired from stale stateID BZ#514654
- Do an exact check of attribute specified BZ#512361In case ACLs are not supported in the underlying filesystem, this update enables the NFSv4 server to return NFS4ERR_ATTRNOTSUPP when ACL attributes are specified when creating a file.
- Fix regression in nfs_open_revalidate BZ#511278
- Fix cache invalidation problems in nfs_readdir BZ#511170
1.88.10.1.5.2. GFS-specific Updates
- Fix kernel BUG when using fiemap. BZ#569610
- Use correct GFP for allocating page on write. BZ#566221Allocation of memory during the write system call can trigger memory reclaim. This update ensures that the VM does not call back into the filesystem, resulting in a kernel OOPS. This problem is only seen in times of memory shortage on a node.
- Filesystem mounted with ecryptfs_xattr option could not be written. BZ#553670
- Filesystem consistency error in gfs2_ri_update. BZ#553447
- Update O_APPEND to behave as expected. BZ#544342Previously, when using GFS2, if two nodes concurrently updated the same file, each node would overwrite the other node's data, as the file position for such a file was not being updated correctly. This issue only occurred when using
open()
with the O_APPEND flag, and then issuing awrite()
without first performing another operation on the inode, such asstat()
orread()
. - Fix glock reference count issues. BZ#539240
- Fix rename locking issue. BZ#538484
- Enhance statfs and quota usability. BZ#529796
- Cluster failures due to invalid metadata blocks. BZ#519049A problem was found with gfs2 filesystems where clusters would fail as a result of fatal filesystem withdrawal. This update provides a solution to that problem.
- gfs2_delete_inode failing on RO filesystem. BZ#501359
- Fix potential race in glock code. BZ#498976
- GFS2 ">>" will not update ctime and mtime after appending to the file. BZ#496716
- After gfs2_grow, new size is not seen immediately. BZ#482756
- Add '-o errors=withdraw|panic' to GFS2 mount option. BZ#518106
- mount.gfs hangs forever if concurrent umount of different gfs filesystems are performed. BZ#440273
1.88.10.1.5.3. CIFS-specific Updates
- CIFS filesystem update, including: BZ#562947
- Fix length calculation for converted Unicode readdir names.
- Fix dentry hash calculation for case-insensitive mounts.
- Do not make mountpoints shrinkable.
- Ensure maximum username length check in session setup matches.
- NULL out pointers when chasing DFS referrals. BZ#544417
- Protect GlobalOplock_Q with its own spinlock to prevent crash in small_smb_init. BZ#531005
- Add new options to disable overriding of ownership. BZ#515252
- cifs: Enable dfs submounts to handle remote referrals. BZ#513410
httpd
Sendfile problems reading from a CIFS share. BZ#486092- Don't use
CIFSGetSrvInodeNumber
BZ#529431 - CIFS filesystem update, including: BZ#500838
- Fix artificial limit on reading symlinks
- Copy struct *after* setting port, not before
- Add addr= mount option alias for ip=
- Free nativeFileSystem before allocating new one
- Fix read buffer overflow
- Fix potential NULL deref in parse_DFS_referrals
- Fix memory leak in ntlmv2 hash calculation
- Fix broken mounts when an SSH tunnel is used
- Avoid invalid kfree in cifs_get_tcp_session
1.88.10.1.5.4. Cluster-specific Updates
- dlm: Fix connection close handling. BZ#521093A problem was found where a cluster would hang after a node rejoins from a simulated network outage. This update addresses the connection close handling problem that was the cause of the issue, and clusters now behave as expected in this situation.
1.88.10.1.5.5. Other Updates
- Fix randasys crashes x86_64 systems regression. BZ#562857
- proc: Make errno values consistent when race occurs. BZ#556545
- Fix performance regression introduced by eventfd support. BZ#548565OLTP-type runs regressed by 0.5% due to the additional overhead in the
aio_complete()
code path.This update uses a bit inki_flags
to address this problem. - Fix possible inode corruption on unlock. BZ#545612
- xfs: Fix fallocate error return sign. BZ#544349When issuing an fallocate call on xfs which results in insufficient space to complete, XFS returns "28" instead of "ENOSPC" - xfs uses positive errnos internally, and flips them before returning, but in this case it was missed.This update ensures the error number is inverted before being returned.
- Skip inodes without pages to free in
drop_pagecache_sb()
. BZ#528070 - Fix soft lockup problem with
dcache_lock
. BZ#526612 - ext3: Replace
lock_super
with explicit resize lock. BZ#525100A problem was found where performing an online resize of an ext3 filesystem would fail. This update cross-ports a change developed for ext4 to address a similar problem. - Update MPT fusion 3.4.13rh BZ#516710The mtp base driver for devices using LSI Fusion MPT firmware has been updated to version 3.4.13rh. This update fixes many issues, most notably:
- The serial attached SCSI (SAS) topology scan has been restructured, adding expander, link status and host bus adapter (HBA) events.
- Intermittent issues caused by SAS cable removal and reinsertion have been fixed.
- An issue where SATA devices received different SAS addresses has been fixed.
- The device firmware now reports the queue full event to the driver and the driver handles the queue full event using the SCSI mid-layer.
- Update MPT2SAS to 02.101.00.00 BZ#516702The mpt2sas driver that supports the SAS-2 family of adapters from LSI has been updated to version 02.101.00.00. This update fixes many issues, most notably:
- Sanity checks have been added when volumes are added and removed, ignoring events for foreign volumes.
- The driver is now legacy I/O port free.
- An issue that may have resulted in a kernel OOPS at hibernation or resume has been fixed.
- Fix online resize bug while using
resize2fs
BZ#515759 - ENOSPC during fsstress leads to filesystem corruption on ext2, ext3, and ext4 BZ#515529
- Bring putpubfh handling inline with upstream BZ#515405
- Address file write performance degradation on ext2 file systems BZ#513136When file write performance is measured using the iozone benchmark test, the performance of Red Hat Enterprise Linux 5.4 GA Snapshot1 is about 40% lower than the performance of Red Hat Enterprise Linux 5.3 GA in some cases. File read performance of 5.4 GA Snapshot1 is almost the same as 5.3 GA.This problem occured on both i386 and x86_64, however i386 performance degradation seemed to be worse compared to x86_64.This update converts ext2 to the new aops.
- getdents() reports
/proc/1/task/1/
as DT_UNKNOWN BZ#509713 - Do not return invalidated nlm_host BZ#507549
- Make NR_OPEN tunable BZ#507159
- Free journal buffers on ext3 and ext4 file systems after releasing private data belonging to a mounted filesystem BZ#506217
- Prevent Genesis from getting stuck in a loop writing to an unlinked file BZ#505331
- Fix inode_table test in ext{2,3}_check_descriptors BZ#504797
- Support origin size < chunk size BZ#502965
- smbd proccess hangs with flock call BZ#502531
- inotify: fix race BZ#499019
- Don't allow setting ctime over v4 BZ#497909
- AVC denied 0x100000 for a directory with eCryptFS and Apache BZ#489774
- Don't zero out pages array inside struct dio BZ#488161
- File truncations when both suid and write permissions are set BZ#486975
- Fix stripping SUID/SGID flags when chmod/chgrp directory BZ#485099
- Sanitize invalid partition table entries BZ#481658
- DIO write returns -EIO on try_to_release_page fail BZ#461100
- Batch AIO requests BZ#532769
- Add eventd support. BZ#493101
- Update ext4 to latest upstream codebase BZ#528054
- If a non-root setuid binary is run as root, its
/proc/<pid>/smaps
file cannot be read because the file's permissions only allow access from a task with the original root UID value.The/proc/<pid>/smaps
file is now created with S_IRUGO permissions (-r--r--r--), which means it can be read even when running a setuid binary. BZ#322881 - Correctly recognize the logical unit (LU) of Hitachi-made storage. BZ#430631The LU of Hitachi-made storage was not correctly recognized in Red Hat Enterprise Linux 5. The LU was correctly recognized using a combination of Red Hat Enterprise Linux 4, Hitachi-made storage, and the Qlogic-made HBA driver. Further, Red Hat Enterprise Linux 5 did recognize an LU that did not exist in the storage. The storage is used with SCSI-2.Red Hat Enterprise Linux 5 now issues a SCSI command (REPORT_LUN) when recognizing the logical unit in the SCSI layer. The LU is now correctly recognized when using a combination of Red Hat Enterprise Linux 5, Hitachi storage, and the Qlogic-made HBA driver.
1.88.10.1.6. Storage and Device Driver Updates
1.88.10.1.6.1. PCI Updates
- AER: Disable advanced error reporting by default. BZ#559978
- Prevent PCIe AER errors being reported multiple times. BZ#544923A problem was found where not all PCIe AER uncorrectable status bits were cleaned up after an uncorrectable/non-fatal or uncorrectable/fatal error was triggered. As a result, subsequent errors would sometimes display a previously reported error.This update ensures that errors are only reported once.
- Add base AER driver support. BZ#517093This feature provides the advanced error handling (diagnosis and recovery) for PCI-Express devices by adding AER (Advanced Error Reporting) support.PCIe AER provides the finer resolution of error source and error severity, as well as the ability to reset the slot to re-initialize the device.This update applies to 32-bit x86 and 64-bit Intel 64 and AMD64 architectures.
- Enable acs p2p upstream forwarding. BZ#518305
1.88.10.1.6.2. SCSI Updates
- mpt2sas: Fix missing initialization. BZ#565637
- be2iscsi: Fix scsi eh callouts and add support for new chip to be2iscsi driver. BZ#564145
- device_handler: Add netapp to ALUA device list. BZ#562080
- qla2xxx: Return FAILED if abort command fails. BZ#559972
- lpfc: Update driver to 8.2.0.63.3p FC/FCoE. BZ#564506
- lpfc: Update driver to 8.2.0.63.2p FC/FCoE. BZ#557792
- lpfc: Update driver to 8.2.0.63.1p FC/FCoE. BZ#555604
- be2iscsi: Upstream driver refresh for Red Hat Enterprise Linux 5.5. BZ#554545
- qla2xxx: Correct timeout value calculation for CT pass-through commands. BZ#552327
- qla2xxx driver updates. BZ#550148
- Update arcmsr driver to better match upstream. BZ#521203
- Re-enable "mpt_msi_enable" option. BZ#520820
- Kernel panics from list corruption when using a tape drive connected through cciss adapter. BZ#520192
- megaraid: Make driver legacy I/O port free. BZ#515863
- Update Emulex lpfc 8.2.0.x FC/FCoE driver. BZ#515272
- scsi_transport_fc: fc_user_scan correction to prevent scsi_scan looping forever. BZ#515176
- Update qla2xxx qla4xx driver. BZ#519447
- Update for HighPoint RocketRAID hptiop driver. BZ#519076
- Errata 28 fix on LSI53C1030. BZ#
- Add kernel (scsi_dh_rdace) support for Sun 6540 storage arrays. BZ#518496
- Disable state transition from OFFLINE to RUNNING. BZ#516934This feature prevents a timeout from occurring on the same device repeatedly by disabling the state transition of the SCSI device from OFFLINE to RUNNING in the
unblock
function of the SCSI layer.This update applies to 32-bit x86, 64-bit Intel 64 and AMD64, and 64-bit Itanium2 architectures. - Add be2iscsi driver. BZ#515284
- Add emc clarion support to scsi_dh modules. BZ#437107
- scsi_dh_rdac driver update. BZ#524335
- qla2xxx: Allow use of MSI when MSI-X disabled. BZ#517922On Red Hat Enterprise Linux 5 the MSI-X disable option for this driver also disables MSI. This update adds another state to the variable to allow the user to specify either MSI or MSI-X.
1.88.10.1.6.3. Other Updates
- Add Support for Huawei EC1260. BZ#517454
- Update stex driver to version 4.6.0102.4. BZ#516881
- Add support for the hp-ilo driver. BZ#515010
- Include support for SB900 SATA/IDE controllers. BZ#515114
- qla2xxx: add AER support. BZ#513927
- Add bfa Brocade BFA Fibre-Channel/FCoE driver. BZ#475695
- Add pmcraid driver. BZ#529979
- Update lpfc driver. BZ#549763
- Upddate megaraid driver. BZ#518243
1.88.10.1.7. Block Device Updates
- cfq-iosched: Fix sequential read performance regression. BZ#571818
- cfq: Kick busy queues without waiting for merged req. BZ#570814
- raid45: Fix for kernel OOPS resulting from constructor error path. BZ#565494
- Fix deadlock at suspending mirror device. BZ#555120
- Fix I/O errors while accessing loop devices or file-based Xen images from GFS volume. BZ#549397
- Correct issue with MD/DM mapping in blktrace. BZ#515551
- Fix install panic with xen iSCSI boot device. BZ#512991
- Allow more flexibility for read_ahead_kb store. BZ#510257
- Add device ID for 82801JI sata controller. BZ#506200
- Fix a race in dm-raid1. BZ#502927
- raid: deal with soft lockups during resync. BZ#501075
- blktrace stops working after a trace-file-directory replacement. BZ#498489
- I/O scheduler setting via elevator kernel option is not picked up by Xen guest. BZ#498461
- Fix rcu accesses in partition statistics code. BZ#493517
- Fix iosched batching fairness and reset batch for ordered requests. BZ#462472
1.88.10.1.8. Multiple Device Updates
- Fix kernel panic releasing bio structure after recovery failed. BZ#555171
- Lock snapshot while reporting status. BZ#543307A problem was found where, in the
snapshot_status()
function, the counts were being read without holding the lock. This could result in invalid intermediate values being reported.This update is a backport of a previous patch that locks the snapshot while reporting status. - Fix deadlock in device mapper multipath when removing a device. BZ#543270
- Snapshots of the same origin with differing chunk sizes causes corruption. BZ#210490The kernel driver dm-snapshot handles multiple snapshots with different chunk sizes incorrectly. It occasionally dispatches write requests to the origin volume prior to copying the data to all the snapshots. As a consequence, the snapshots are not static and writes to the origin are occasionally reflected to the snapshots. When there are multiple snapshots of the same origin volume with different chunk sizes, and you write to the origin volume, the data in the snapshots may be corrupted.This update ensures that the kernel driver always waits until all the chunks in all the snapshots are reallocated before dispatching a write request to the origin device.
- raid5: Mark cancelled readahead BIOS with -EIO. BZ#512552
1.88.10.1.9. Wireless Infrastructure and Driver Updates
- iwlwifi: Fix dual-band N-only use on IWL5x00. BZ#566696
- rt2x00: Fix work cancel race conditions. BZ#562972
- Update old static regulatory domain rules. BZ#543723
- Puma Peak wireless support. BZ#516859This update contains support for the iwl6000 hardware from Intel. Devices in this hardware line support 802.11a, 802.11b, 802.11g, and 802.11n protocols. This update also includes support for the iwl1000 hardware line. Support for iwl5000, iwl4965, and iwl3945 was also updated.In order to support the features of these drivers, the mac80211 and cfg80211 subsystems were updated. Further, all existing mac80211-based drivers were refreshed to match the updated mac80211 subsystem.
- Support Realtek RTL8187B wireless driver. BZ#514661
- Update Intel wireless driver (iwlagn) for iwl4965 / iwl5000. BZ#474328
- Add support for Atheros wireless ATH9k driver. BZ#456943The update of the mac80211 enabled support of the ath9k driver. This supports the full line of 802.11n wireless LAN adapters from Atheros.
- mac80211: fix reported wireless extensions version. BZ#513430
1.88.10.1.10. Memory Management Updates
- [Xen]
mmap()
with PROT_WRITE on Red Hat Enterprise Linux 5 was incompatible with Red Hat Enterprise Linux 4. BZ#562761 - A problem was found where
munmap()
would fail with an ENOMEM error if:- the number of VMAs = VMA limit - 1, and
- it does not unmap an entire VMA but only part of a VMA.
This update implements further checks to handle partial unmappings to avoid this problem. - Update
ioremap
to prevent kernel hang when using recent NVIDIA display drivers. BZ#549465A problem was found where attempting to run a recent NVIDIA display driver on 32-bit Red Hat Enterprise Linux 5.3 or 5.4 would cause the kernel to hang. This was due to hitting aBUG()
call in the__change_page_attr()
routine.This update provides the necessary changes to address this problem. - Prevent hangs during memory reclaim on large systems. BZ#546428
- Call
vfs_check_frozen()
after unlocking the spinlock. BZ#541956 - Display UID as well as PID in OOM killer output. BZ#520419
- Add a tracepoint for kernel pagefault events. BZ#517133This feature provides a tracepoint to trace kernel pagefault events. The argument should include the IP (instruction pointer) and the faulted virtual address.This update applies to 32-bit x86 and 64-bit Intel 64 and AMD64 architectures.
- Memory mapped files not updating timestamps. BZ#452129
- Prevent hangs or long pauses when zone_reclaim_mode=1. BZ#507360
1.88.10.1.11. Audit and Security Updates
1.88.10.1.11.1. Audit Updates
- Fix breakage and leaks in
audit_tree.c
BZ#549750A problem was found where if a user ranauditctl -R audit.rules
which unloads and then loads rules that include (for exeample) "-F dir=/var/log/audit" or "-F dir=/lib", it would result in a kernel OOPS.This update provides a fix for this issue. - Correct the record length of execve. BZ#509134
1.88.10.1.11.2. Cryptography Updates
- IBM S/390: Permit weak keys unless REQ_WEAK_KEY is set. BZ#504667
1.88.10.1.11.3. SELinux Updates
- Allow preemption between transition permission checks in order to prevent CPU soft lockup BZ#516216A problem was found where the kernel would sometimes go into a soft lockup for 10s at .context_struct_compute_av+0x214/0x39c. This update changes the way transition checks are performed in order to avoid this problem.
1.88.10.1.12. Miscellaneous Updates
- power_meter: Avoid OOPS on driver load. BZ#566575
- hvc_iucv: Allocate IUCV send/receive buffers in DMA zone. BZ#566202
- f71805f: Fix sio_data to
platform_device_add_data()
. BZ#564399 - Fix 32-bit Machine Check Exception Handler. BZ#562862
- Fix APIC and TSC reads for guests. BZ#562006
- zcrypt: Do not remove coprocessor in case of error 8/72. BZ#561067
- smsc47m1: Fix data to
platform_device_add_data()
. BZ#560944 - it87: Fix sio_data to
platform_device_add_data()
. BZ#559950 - w83627hf: Fix data to
platform_device_add_data()
. BZ#557172 - Power Now driver: fix crash on AMD family 0x11 processors. BZ#555180
- EDAC driver fix for non-MMCONFIG systems. BZ#550123
khungtaskd
not stopped during suspend. BZ#550014- Do not evaluate WARN_ON condition twice. BZ#548653
- Fix NULL pointer panic in acpi_run_os. BZ#547733
- Implement public pci_ioremap_bar function. BZ#546244
- Fix PTRACE_KILL hanging in 100% CPU loop. BZ#544138
- Fix compile warnings in eeh code. BZ#538407This update was necessary to address a compile problem in PowerPC introduced by a change in the PCI AER code.
- [infiniband] Fix bitmask handling from QP control block. BZ#561953
- [infiniband] Fix issue with sleep in interrupt ehca handler. BZ#561952
- [infiniband] Rewrite SG handling for RDMA logic. BZ#540686After dma-mapping an SG list provided by the SCSI midlayer, iser must ensure the mapped SG is "aligned for RDMA", in the sense that it is possible to produce one mapping in the HCA IOMMU which represents the whole SG. Next, the mapped SG is formatted for registration with the HCA.This update provides the necessary rewrites to achieve the above.
- [infiniband] init neigh->dgid.raw on bonding events. BZ#538067This update was necessary to address an issue found where, using IPoIB, connectivity would be lost with a single host but maintained with other hosts.
- USB driver update. BZ#537433This driver update avoids USB 1.1 device failures that may occur due to requests from USB OHCI controllers being overwritten if the latency for any pending request by the USB controller is very long (in the range of milliseconds).
- Add qcserial module to Red Hat Enterprise Linux 5 kernel. BZ#523888This module was added to support the Qualcomm WWAN cards used by some laptops.
- sysctl: Require CAP_SYS_RAWIO to set mmap_min_addr. BZ#534018
- Enable msi-x correctly on qlogic 2xxx series. BZ#531593This update enables the FC and FCoE drivers to use MSI-X or MSI interrupts when they are available. The ql2xenablemsix can be used to override this:
0 = enable traditional pin-based interrupt mechanism 1 = enable MSI-X interrupt mechanism 2 = enable MSI interrupt mechanism
- Implement futex priority-based wakeup. BZ#531552A problem was found where the threads waiting on the futex_q queue list would acquire the mutex lock in the order they were queued rather than by priority. This update addresses that problem.
- Make
scsi_dh_activate()
asynchronous to address the slower LUN failovers with large numbers of LUNs. BZ#537514 - [scsi] Fix inconsistent usage of
max_lun
BZ#531488 - Fix dlm_recv deadlock under memory pressure while processing GFP_KERNEL locks. BZ#530537
- [scsi] Panic at .ipr_sata_reset after device reset. BZ#528175
- [scsi] Export scsilun_to_int symbol. BZ#528153This symbol is needed by some drivers, and without this update they each tend to use their own copy of the entire function.
- Ensure pci_dev->is_enabled is set. BZ#527496Failure to set this may cause suspend/resume to fail on some devices.
- Fix a bug in
rwsem_is_locked()
function. BZ#526092 - [scsi] cciss: Ignore stale commands after reboot. BZ#525440
- Fix a mistake in ACPI debug statement that prevents kernel compilation. BZ#524787
- Fix panic in
cpufreq_get
on DL785-G6. BZ#523505A problem was found incpufreq_get
which sometimes causes a kernel panic on HP DL785-G6 machines running Red Hat Enterprise Linux 5.3 and 5.4.This update addresses the problem that was occurring and this kernel panic no longer occurs. - [FIPS140-2] Provide option to disable/enable use of the first random block. BZ#523259
- [FIPS140-2] Do not use the first n-bit block generated after power-up, initialization, or reset. BZ#522860
- thinkpad_acpi: Disable ecnvram brightness. BZ#522745The brightness of the screen needed to be manually set using the "Fn + Home" key combination every time you reboot an IBM T43 laptop, using the Intel Corporation Mobile 915GM/GMS/910GML Express Graphics Controller (rev 03). This problem was traced to the fact that the thinkpad_acpi CMOS NVRAM (7) and EC (5) did not agree on the display brightness level.This update addresses this problem and the screen now always starts at the highest brightness setting.
- pciehp: Fix PCI-E hotplug slot detection. BZ#521731A problem was found where the PCI-E hotplug slot was not detected by the pciehp driver on some platforms. The cause of this problem was traced to a bug in the pciehp driver. This update addresses this bug and PCI-E hotplug slots are now detected correctly.
- Fix NULL pointer dereference in
pci_bus_show_cpuaffinity()
BZ#519633A problem was found where reading/sys/class/pci_bus/0000:ff/cpuaffinity
(usingcat
or a similar function) would cause the kernel to crash and the system to reboot. This update provides a solution to this problem. - A problem was found with iommu=pt mode for intel_iommu where if you are using iommu=pt and you assign a device to a KVM guest and then de-assign it,the result is a device which is not usable in the host. It can be re-assigned to other guests again, but not directly used in the host.There is also an issue where with iommu=pt any PCI devices that are hot-plugged in the host cannot be used.This update provides a solution to the above problems.
- [firewire] fw-ohci: Fix IOMMU resource exhaustion. BZ#513827
- Support AMD Magny-Cours power-aware scheduler fix. BZ#513685
- Fix CPU llc_shared_map information. BZ#513684
- [cpufreq] Add option to avoid smi while calibrating. BZ#513649The CPU frequency (cpu_khz) was infrequently calculated as larger value than the CPU's specification in both Red Hat Enterprise Linux 5.1(x86) and 5.2(x86). This also contributed to the system time being gradually delayed. This update adds an option to avoid this problem.
- [cpufreq] Don't set policy for offline CPUs. BZ#511211
- Add CPU hotplug notifiers to support suspend-to-disk and suspend-to-RAM while using KVM. BZ#510814
- Better FASYNC handling on file close. BZ#510746
- fd leak if
pipe()
is called with an invalid address. BZ#509625 - Kernel panic occurs when adding nosmp option and booting the system. BZ#509581
- Increase hibernate timeout. BZ#507331
- Hang on boot due to wrong APIC timer calibration. BZ#503957
- DASD failfast flag cannot be set on. BZ#503222
- wacom: add Intuos4 support. BZ#502708
- st: display current settings of option bits. BZ#501030
- psmouse: reenable mouse on shutdown. BZ#501025
- Relocate initramfs to increase vmalloc space. BZ#499253
- Fix undefined reference to `__udivdi3'. BZ#499063
- Add Oprofile support for Nehalem-EP processors. BZ#498624
- Multiple device failure renders dm-raid1 unfixable. BZ#498532
- Don't oomkill when hugepage alloc fails on node. BZ#498510
- Prevent tmpfs from going readonly during oom kills. BZ#497257
- documentation: fix file-nr definition in fs.txt. BZ#497200
- Conditional flush in flush_all_zero_pkmaps. BZ#484683
- Fix corrupted intel_rng kernel messages. BZ#477778
- Use KVM pvclock code to detect/correct lost ticks. BZ#476075
- Fix mcp55 apic routing. BZ#473404
- Fix snapshot crash on invalidation. BZ#461506
- Add pci_domain_nr. BZ#450121
- LRO (Large Receive Offload) is a network technology that offloads some of the overhead associated with receiving high-volume traffic from a single host. Though there is a performance benefit to LRO it cannot be used in environments where the host will take the incoming traffic and forward it to another device on the system (internal or external). In such environments, the host will panic when LRO is enabled on an interface and that interface is placed into a bridge on the host.A check was placed in an additional portion of the bridge forwarding code and the following message (or similar) will be printed to the console or logs when a device with LRO enabled is placed into a bridge on the host or has routing enabled: "eth0: received packets cannot be forwarded while LRO is enabled". BZ#483646
- jbd slab cache creation/deletion is racey. BZ#496847
- In some cases, kernel panics while calling SysRQ-C. The printk warning about long delays was removed, and the kernel no longer hangs when SysRQ-C is called. BZ#497195
- Fix serial ports on IBM Point-of-Sale hardware. BZ#506799
- Add support for Intel multi-APIC-cluster systems. BZ#507333
- A bug was found in ia64_mca_modify_original_stack (arch/ia64/kernel/mca.c) where if INIT was issued while the kernel was in fsys-mode, the register was not saved in the stack. Consequently, the kdump corefile could not be backtraced in IA64. Registers in the stack are now restored on init. BZ#515753
- Add a tracepoint for the coredump event to the kernel. The new tracepoint provides tracing tools with pointers to the coredump filename string, and to the coredump_params data structure. BZ#517115
- Add four new signal-related tracepoints to the kernel. These tracepoints provide tracing tools which can deliver significant amounts of data. Refer to the bug report for full details. BZ#517121
- Add support for Nehalem-EX (Beckton) processors in Oprofile. BZ#521992
1.88.11. RHSA-2010:0610: Important kernel security and bug fix update
sprintf()
use were found in the Linux kernel Bluetooth implementation. Creating a large number of Bluetooth L2CAP, SCO, or RFCOMM sockets could result in arbitrary memory pages being overwritten. A local, unprivileged user could use this flaw to cause a kernel panic (denial of service) or escalate their privileges. (CVE-2010-1084, Important)
CIFSSMBWrite()
function in the Linux kernel Common Internet File System (CIFS) implementation. A remote attacker could send a specially-crafted SMB response packet to a target CIFS client, resulting in a kernel panic (denial of service). (CVE-2010-2248, Important)
mext_check_arguments()
function in the ext4 file system code. A local user could use this flaw to cause the MOVE_EXT IOCTL to overwrite the contents of an append-only file on an ext4 file system, if they have write permissions for that file. (CVE-2010-2066, Low)
possible circular locking dependency detected
warning was triggered. With this update, the warning is no longer displayed and the loading of a USB mass storage driver under kernel-debug works as expected. BZ#607483
bnx2x
network driver (10
Gb), TCP
bandwidth problems occurred, causing transfer rate slowdowns (down to 400
Kb) and network delays. The network traces shown that the reason for the TCP
bandwidth problems were TCP
delayed ACK mechanisms. This update improves the packet-handling code so that network ACKs are not delayed when using TPA, GRO (Generic Receive Offload), or LRO (Large Receive Offload) with the bnx2x
driver, thus leading to increased networking performance. BZ#613900
/var/log/messages
directory during IO runs. With this update, the firmware dump errors no longer appear in the /var/log/messages
directory. BZ#613688
CNIC
driver, occasionally, data structures were freed when the device was down. If at that moment an ISCSI
netlink message was received, a crash occurred. With this update, the crash no longer occurs. BZ#615260
acpiphp
module (using the /sbin/modprobe
command) on a Intel Xeon processor 7500 series system caused kernel panic. With these updates, an error message is produced when the aforementioned case occurs and the machine does not panic. BZ#607486
1.88.12. RHSA-2010:0723: Important kernel security and bug fix update
ecryptfs_uid_hash()
function in the Linux kernel eCryptfs implementation. On systems that have the eCryptfs netlink transport (Red Hat Enterprise Linux 5 does) or where the /dev/ecryptfs
file has world writable permissions (which it does not, by default, on Red Hat Enterprise Linux 5), a local, unprivileged user could use this flaw to cause a denial of service or possibly escalate their privileges. (CVE-2010-2492, Important)
msleep()
calls with the MDELAY()
macro and handles the locking properly. BZ#620661
msi_nolock
, which allows for better simultaneous processing of MSIs. BZ#621940
mmap()
or munmap()
function on /dev/zero
decreased the performance on multiple threads. This update allows the user to switch off the optimization by typing echo 0 > /proc/sys/vm/vm_devzero_optimization
at a shell prompt as superuser. BZ#623141
/proc/cpuinfo
when running a kernel-xen kernel. This has been fixed, and /proc/cpuinfo
now contains all CPU flags as expected. BZ#624365
ccw_device_set_options()
in dasd_generic_probe()
unset the CWDEV_ALLOW_FORCE flag set in dasd_eckd_probe()
and the unconditional reserve was not allowed on ECKD dasds. This update sets flags only in discipline specific probe functions. BZ#627194
1.89. kexec-tools
1.89.1. RHBA-2009:1600: bug fix update
Note
1.89.2. RHBA-2010:0179: bug fix update
1.90. krb5
1.90.1. RHSA-2010:0029: Critical security update
Important
1.91. ksh
1.91.1. RHBA-2009:1686: bug fix update
Note
1.91.2. RHBA-2010:0234: bug fix and enhancement update
1.92. ktune
1.92.1. RHBA-2009:1422: bug fix update
Note
1.92.2. RHBA-2010:0238: bug fix and enhancement update
1.93. kudzu
1.93.1. RHBA-2010:0191: bug fix and enhancement update
1.94. kvm
1.94.1. RHBA-2009:1423: bug fix update
Note
1.94.2. RHBA-2009:1488: bug fix update
Note
1.94.3. RHBA-2010:0158: bug fix update
Note
1.94.4. RHSA-2010:0271: Important security, bug fix and enhancement update
- Setting the
cpu_set
variable to1 online
in the qemu Monitor and then shutting down the guest would cause the host or the guest to crash. The updated package resolves this issue and prevents the host or guest from crashing in this scenario. (BZ#487857) - The KVM configure script would not abort if the correct options were not enabled. The KVM configure script now verifies features are enabled or disabled by the configure script and aborts if the features was not loaded as requested. (BZ#489900)
- The para-virtualized network drivers (
virtio-net
) lacked non-maskable interrupt (NMI) injection masking on AMD-based hosts. This caused Windows XP guests using the para-virtualized network driver could fail with a Blue Screen error during certain tests. The updated packages resolve this issue. (BZ#492290) - Timer events were processed before entering guest mode. This meant that certain timer events may not have been processed. Timer events are now processed in the main VCPU event loop so timer events are processed while the VCPU is halted. Timer events may inject interrupts or non-maskable interrupt (NMI) which will then unhalt the VCPU. This fixes the issue of unconditionally unhalting the VCPU. (BZ#492663)
- If one or more VCPUs was disabled, VCPUs would appear in Windows Server 2008 Device Manager as devices with the ! symbol indicating an error. Windows does not handle CPUs marked as present (bit 0 in ACPI spec), but not enabled (bit 1), which causes this issue.However, there are situations where Linux expects CPUs to be present but not enabled. This is a heuristic test used by Linux to determine if a CPU is hot-pluggable.The updated package fixes virtualized CPU detection for Windows but breaks the ability to hot-add CPUs into Linux guests. (BZ#495844)
- Using the numeric keypad of a keyboard with or without Num Lock produced erroneous input on guests accessed with VNC through the QEMU monitor application. The number pad keys should now work for input on guests accessed with VNC. (BZ#497507)
- An unhandled interrupt from the kvm_vcpu_block() call unhalted a VCPU outside of the interrupt window. As a consequence, when the "
there is no bootable disk
" error presented the qemu process used 100% of the available CPUs. The updated packages resolve this issue and the interrupt is now handled correctly. (BZ#502086) - Windows Server 2008 R2 guests would hang after a restart if the guest was created with multiple VCPUs. This was caused by not properly filtering non-maskable interrupts (NMIs) from the guests during the restart procedure. The updated packages fix this issue and Windows Server 2008 R2 guests can successfully use multiple VCPU. (BZ#502543 BZ#503322)
- Migrating a paused guest caused the guest to resume at the destination. Paused guests now remain paused after a migration. (BZ#503367)
- Multiple virtualized guests using the hypercall device resulted in one or more of the guests using 100% of their assigned CPUs or becoming unresponsive. The updated packages fix the hypercall device, preventing this issue. (BZ#503759)
- VCPUs were not reported correctly to Windows XP guests. On the Windows XP guest the number for CPUs listed in Task Manager was lower than the number of CPUs assigned to the guest. Windows XP guests should now use and display the number of VCPUs assign if the guest can handle that number of CPUs. (BZ#508040)
- A segmentation fault occurred when a guest used a
i82551
emulated network interface card was used. The segmentation fault is fixed in the packages. (BZ#510706) - Creating guests that use both 64k and 4k image block cluster sizes and virtualized IDE as the storage device driver would cause a segmentation fault in the
qemu-kvm
process. The updated packages resolve this issue. (BZ#542923) - Running the
migrate_set_speed
command in the QEMU console after runningmigrate_cancel
causes segmentation fault in KVM. The updated packages fix this issue and the code causing the segmentation fault is fixed. (BZ#522887) - A segmentation fault occurred when using the
qemu-img rebase
command to rebase an image snapshot. (BZ#563141) - The
qemu-img rebase
command failed with an "Operation not supported" error message when it was run on locally-attached block devices. (BZ#569762) - The
qemu-img
command failed to copy a RAW image to a Fibre Channel storage device. Theqemu-image
command can now copy, convert and create images on Fibre Channel storage devices. (BZ#511072) - Storage I/O errors were processed out of order causing the guest to change state or crash unexpectedly. The guest state handlers now process storage I/O errors in the proper order. (BZ#514522)
- A guest would occasionally not accept keystrokes or mouse clicks after rebooting. The updated package resolves this issue and user interactions are accepted after repeatedly rebooting guests. (BZ#515275)
- In rare instances, certain virtualized guests could lock up while requesting a
raw_pread
system call. The offset was larger than the file size of the read failures which causes the system to infinitely loop I/O requests. This could, in certain circumstances lead to file system corruption on virtualized guests. The updated pacakges add a result test which prevents the infinite request loop. (BZ#515655) - The guest could change the QXL device ROM which could result in memory corruption. The updated packages prevent the guest from modifying the QXL device ROM. (BZ#537888)
- The MRS storage array (
msrs
) inkvm_arch_save_regs()
function. The array was sized too small for the function and may cause stack corruption. (BZ#528917) - Incorrectly handled I/O errors could cause guests file system corruption when using the para-virtualized block drivers and IDE emulation of NFS storage. The updated packages resolve this issue and host I/O errors will pause the guest instead of causing file system corruption. (BZ#531827)
- With Red Hat Enterprise Virtualization, the
virtio_blk_dma_restart_bh()
function previously handled write errors. The function was not updated for this, causing read errors to be resubmitted as writes. This caused guest image corruption in some cases.Additionally, the return values of thebdrv_aio_write()
andbdrv_aio_read()
functions were ignored. If an immediate failure occurred in one of these functions, errors would be missed and the guest could hang or read corrupted data. (BZ#552487) - with Red Hat Enterprise Virtualization, guests continued to run after encountering disk read errors. This could have caused guest file systems to corrupt (but not the host's), notably in environments that use networked storage. With this update, the
qemu-kvm
command's-drive "werror=stop"
option now applies not only to write errors but also to read errors. When using this option, guests will pause on disk read and write errors.By default, guests managed by Red Hat Enterprise Virtualization use the"werror=stop"
option. This option is not used by default for guests managed by libvirt. (BZ#533390) - KVM would crash or fail to boot when attempting to assign 64GB of memory to 32-bit guests using PAE. KVM now supports addressing up to 48 bits of physical memory with PAE. (BZ#516545)
- Windows Server 2003 32-bit guests assigned more than 4GB of RAM would crash after rebooting the guest. The updated packages resolve this issue and Windows Server 2003 32-bit guests can be assigned more than 4GB of RAM. 32-bit guests may not be able to use more than 4GB of RAM, refer to the guest operating system's documentation. (BZ#516762)
- When using the virtual
vm8086
mode, bugs in the emulated hardware task switching implementation may have caused older guest operating systems to malfunction. (BZ#517324) - An "
unhandled vm exit: 0x31 vcpu_id 0
" error message could appear when installing certain guest operating systems, such as SUSE Linux Enterprise Server 11, using a para-virtualized block device (virtio-blk). The updated packages resolve this issue and installation with the para-virtualized drivers is supported and working. (BZ#518081) - The
__kvm_mmu_free_some_pages
list was not verified empty before it was used. The updated package verifies the__kvm_mmu_free_some_pages
list is empty before attempting to look at list entries. (BZ#519397) - Windows Server 2008 64 bit guests use a
cr8
call which executed avmexit
call. This caused performance issues for Windows Server 2008 guests. The updated packages use a different call method to handlecr8
calls which significantly improves the performance of Windows Server 2008 64 bit guests. (BZ#520285) - When attempting to resume from hibernate with Windows Server 2003 guests, KVM would attempt to stop the QEMU emulated audio device which was not activated. This caused a "
snd_playback_stop: ASSERT playback_channel->base.active failed
" error message to appear and the resume process to fail and the guest to crash. The updated package resolves this issue. (BZ#520394) - Time drift may have occurred in Windows guests that use the IOAPIC interrupt for timing. The updated packages resolve this issue and Windows guests should now keep time accurately. (BZ#521025)
- Windows Server 2003 (32-bit and 64-bit) guests may have experienced time drift. (BZ#543137)
- On AMD hosts, Window Server 2008 R2 Datacenter guests would stop during the installation at the step "
Setup will continue after restarting your computer
". This issue is resolved and Windows Server 2008 R2 Datacenter guests now successfully install. (BZ#521749) - Resetting the PCI status of a para-virtualized network device (virtio-net) would cause KVM to crash. This issue is resolved the the updated packages. (BZ#521829)
- The German keyboard map was missing some keys in when accessing a guest with VNC. The German keyboard map now contains all keys when accessing guests with VNC. (BZ#521835)
- When a guest issued an Inter-processor Interrupt (IPI) call, the call would cause KVM to issue a global IPI call on the host. The global IPI call interrupts all processors instead of just those assigned to the guest. The updated packages resolve the issue by using the kernel's IPI handling functions instead of emulating the IPI handler. (BZ#524970)
- KVM and virtualized guests would become unresponsive due to waiting infinitely for an
aio
threads to return. The updated packages resolve this issue by correctly timing out threads which do not return. (BZ#525114) - The host KVM process could crash or use 100% of the allocated CPUs when a guest with more than one VCPU received high volumes of network traffic through a device using the para-virtualized network drivers (virtio-net). This issue is resolved in the updated packages. (BZ#525323)
- KVM did not change the pacakge address of the etherboot
.zrom
file. KVM would always used the default, thene.zrom
file. Guests could not get an IP address or access PXE servers. The updated packages resolve this issue and guests can access PXE server when using non-default network devices. (BZ#526124) - KVM could generate invalid memory types in Memory Type Range Registers (MTRR) and Page Attribute Tables (PAT). This could be used by guests running random code to possibly store (and later use) a random MTRR type. The updated package prevent these invalid memory types from being created. (BZ#526837)
- An error in the Makefile prevented users from using the source RPM to install KVM. (BZ#527722)
- Linux guest
initrd
images greater than 4GB would cause the guest to crash. KVM now limits the size ofinitrd
images to less than 4GB. (BZ#529694) - If the
qemu-kvm
command's-net user
option was used, unattended Windows XP installations would not receive an IP address after rebooting. The guest requests a second DHCP address which makes the list of free DHCP addresses run out much quicker. This issue is fixed by reassigning the same addressed requested with DHCP to the guest after the guest reboots. (BZ#531631) - The para-virtualized clock (pvclock) Mode-specific register values were not preserved after a migration. This issue also affected the para-virtualized clock when a guest was saved and restored. These drivers not being saved could cause the guest's time keeping to become significantly skewed after restoring or migrating the guest. In the updated packages, the MSR values are preserved when a guest is saved and restored, and for migrations. (BZ#531701)
- Installing Windows Server 2008 R2 from an ISO image could result in a blue screen "
BAD_POOL_HEADER
" stop error. (BZ#531887) - Running certain test functions on Windows 7 guests caused a blue screen "
HAL_RTC_IRQF_WILL_NOT_CLEAR
" stop error. (BZ#556455) - Windows Server 2003 R2 Service Pack 2 32-bit guests using the para-virtualized block drivers could crash with an
unhandledvm exit
error during reboot. The hypervisor now handles this error, resolving the issue. (BZ#532086) - After restoring a migrated Windows Server 2008 R2 guest, a race condition caused the guest to hang during the shut down sequence. The updated packages resolve this issue and Windows Server 2008 R2 guests will successfully shut down when requested after a migration. (BZ#533090)
- a bug in the
grow_refcount_table()
error handling caused infinite recursion in some cases. This caused theqemu-kvm
process to hang and eventually crash. (BZ#537075) - Full I/O error codes were not passed up to the host or the Red Hat Enterprise Virtualization Manager. Accurate I/O error codes are now forwarded to the user and management tools. (BZ#537077)
- There was a regression in the
qemu-img
command, Fibre Channel devices could not be formatted using RAW or use preallocated RAW devices. Theqemu-img
command is updated to handle Fibre Channel devices in the RAW format. (BZ#537655) - Guests could not eject CD-ROMs from physical CD-ROM drives attached to the guest. The updated packages resolve this issue and guests can now eject CD-ROMs from physical CD-ROM drives. (BZ#539250)
- The
qcow2
file format unnecessarily rounded up the length of the backing format string to the next multiple of 8. The array inBlockDriverState
can only store 15 characters, causing backing formats with 9 characters or more to fail. This issue effected devices using thehost_device
format. The updated packages resolve this issue by determining the length of the backing format ofqcow2
devices. (BZ#540893) - Migrations could fail due to invisible physical CPU states. A new set of IOCTL exports report user-invisible states related to exceptions, interrupts, and Non-Maskable Interrupts (NMIs). These functions allow management tools to prevent this type of failed migration. (BZ#541084)
- The KVM process could become non-responsive if a networked or local connect to the QXL driver was lost while the driver was running. This cause a "
qxl_display_update: waiting for command
" error message to be printed in the logs. The updated packages resolve this issue. (BZ#544785) - The
qemu-kvm
man page incorrectly described theqcow2
default ascache=writeback
. The default iscache=none
forqcow2
images andcache=writethrough
for all other disk types. The man page forqemu-kvm
has been updated to reflect this. (BZ#545194) - KVM did not verify if barriers were required for migration. KVM now verifies if barriers are required for guest migration and disables barriers if they are not required. (BZ#549938)
- The hypercall driver for Windows guests did not reset the device when the guest was shut down or rebooted. This occasionally caused the driver to use 100% of the CPU and cause the guest to hang. (BZ#550755)
- The
kvm-qemu-img
command failed to convert sparse RAW image files to qcow2 sparse snapshot image files. (BZ#558195) - Migration with the
-M rhel5.5.0
parameter did not work for migration to or from Red Hat Enterprise Linux 5.5. Migration with the-M
parameter is now supported and functional. (BZ#559163) - Removed a warning message which appeared when the
-initrd
option was used. (BZ#512672) - The KVM kernel module would panic if the
paging64_sync_page()
call was executed on a system using PCI passthrough devices. This kernel panic error could occur if a guest with an attached PCI device was started. The updated packages resolve this issue. (BZ#566385) - Removed a debugging message
qemu_popen: returning result of qemu_fopen_ops
that displayed when saving a virtualized guest state into a compressed file. (BZ#530533)
- The KVM hypervisor does not accept
MSR_KERNEL_GS_BASE
intercept calls for Windows Server 2008 guests. This improves performance of Windows Server 2008 guests under heavy loads. (BZ#488130) - qcow2 now uses 64Kb as the default block cluster size instead of 4Kb blocks which improves performance for guests using qcow2. (BZ#502809)
- Various unsupported features of the
qemu-kvm
command are now compiled out of the kvm pacakges. (BZ#516672) - Support for migration from older hypervisors which use versions of savevm with additional fields which are not supported by newer versions. This feature is required for migrations from older hypervisors to newer versions of KVM. (BZ#541731)
- Support for guest access to advanced CPU extensions, including: SSE4.1, SSE4.2 and SSE4a. (BZ#518090)
- SMBIOS table 4 data is now generated for Windows guests. (BZ#537178)
- The cache flushing command was changed from
fsync
tofdatasync
. This allows write caches to be exposed to guests and allows the guest to request for flushing I/O buffers. This improves I/O performance for some guests. (BZ#537646) - Support for changing the file format of an in-place backing file. (BZ#530134)
- Support for Red Hat Enterprise Linux 3.9 guests running the para-virtualized drivers. (BZ#536749)
- The QXL driver now supports setting resolutions of 1024x576 and 1024x600. (BZ#552240)
1.95. less
1.95.1. RHBA-2010:0214: bug fix and enhancement update
1.96. libXi
1.96.1. RHBA-2010:0127: bug fix update
Note
1.97. libXrandr
1.97.1. RHBA-2009:1608: bug fix update
Note
1.98. libXt
1.98.1. RHBA-2010:0192: bug fix update
1.99. libaio
1.99.1. RHBA-2010:0277: bug fix update
1.100. libcmpiutil
1.100.1. RHBA-2010:0222: bug fix and enhancement update
1.101. libevent
1.101.1. RHEA-2010:0244: enhancement update
1.102. libgnomecups
1.102.1. RHBA-2009:1577: bug fix update
Note
1.103. libgtop2
1.103.1. RHBA-2010:0099: bug fix update
Note
1.104. libhugetlbfs
1.104.1. RHEA-2010:0056: enhancement update
Note
1.105. libsepol
1.105.1. RHBA-2010:0183: bug fix update
1.106. libuser
1.106.1. RHBA-2009:1525: bug fix update
Note
1.107. libvirt
1.107.1. RHBA-2009:1424: bug fix update
Note
1.107.2. RHBA-2010:0205: bug fix and enhancement update
libvirt
packages that fix several bugs and introduce feature enhancements are now available for Red Hat Enterprise Linux 5.
- On Xen guests, the netfront and RTL8192 network drivers could run concurrently, bringing up two network interfaces where only one was configured. The two interfaces would share the same MAC address and could cause networking difficulties. Support for a netfront interface model has been added, meaning only the single netfront interface is configured.
- The storage pool deletion routine did not distinguish between files and directories when removing data. As a result, inactive storage pools could not be deleted. With this update, files and directories are removed appropriately, allowing inactive storage pools to be deleted.
- When adding a new physical host PCI device,
libvirt
would not attempt to reset the PCI bus if other functions or devices were present on the same bus. Some PCI devices could not utilized for virtualization as a result. Attempts to reset the PCI bus will now be made, allowing affected devices to be used for virtualization. - Devices attached to a guest in managed mode were not automatically re-attached to the host OS when the guest shut down. Manual intervention was required to use these devices again when the guest is re-started. Managed mode devices will now be re-attached to the host when the guest shuts down, allowing them to be automatically used when the guest is re-started..
- The Xen driver was not checking that guest domains with the same UUID also had the same name. Using the
virsh edit
command to change the name of a Xen domain would make a new copy of the configuration file with the new name, but not alter the original configuration file. UUIDs and names for guest domains are now checked to ensure they match. Attempting to change the name of a domain using thevirsh edit
command will now return an error message and not make any change to the system. - Valid values for the credit scheduler parameter are in the range
0
-65534
. A value of65535
was being accepted as valid, but would not alter the scheduler configuration. With this release, only values within the valid range are accepted. - Using the
info
command to change memory values on a KVM guest showed that inactive KVM guest memory was not being reported correctly. Memory reporting for unused domains was corrected in theqemu
driver and the info command now returns the correct value. - Running the command
virsh vol-key volname
was sometimes resulting in a segmentation fault. A change was made to the way pool objects are handled and the key lookup no longer crashes. - Using the pool parameter with the
virsh vol-path
command would result in errors. Thevirsh vol-path
command was altered to support the pool parameter and the errors no longer occur. - The
virsh find-storage-pool-sources
command failed to find anydir/nfs/netfs
pool sources and failed withunknown failure
. The error reporting was fixed and the command now works as expected. - The
virsh nodedev-create
command resulted in an out of memory error. This was found to be a false positive. The checks were updated, and the error now only occurs if there is an actual memory problem. - Two different methods were using the same name for different
libvirt
entry points, which created a device error when creating nodes. One of the methods was renamed and node creation now works as expected. - Running the
virsh nodedev-destroy
command to destroy a NIC interface causedlibvirtd
to hang indefinitely. The locking issue was found and rectified and thelibvirtd
crash no longer occurs. - Running the
virsh vol-delete
command produced afailed to connect to the hypervisor
error andlibvirtd
needed to be restarted. The code was altered to refresh allocation and permissions information, but not capacity information, and the command now works as expected. - When an XML configuration file was generated using
virsh dumpxml
for a running virtual machine, it contained parameters used for backwards compatibility with previous versions.virt-xml-validate
would report that the generated file was not valid because of these legacy parameters. The validate program was altered to accept the parameters used in the generated XML file, which now validates correctly. - Running concurrent TLS connections under the
libvirt
python wrapper causedlibvirt
to crash. Changes were made to the way thatGNUTLS
handles threading and the crash no longer occurs. libvirt
was not reporting current vCPU and pCPU placement or the vCPU execution time counter accurately. The behavior was changed so thatlibvirt
doesn't find out the affinity when set withtaskset
, but does when set withvirsh vcpupin
. The reporting is now correct.- Creating npiv devices works as expected, but puts error messages into the
/var/log/messages
file. The Opened WWN path/sys/class/fc_host//host5/port_name
for reading message was updated and the error messages no longer appear in the log file. - The
virsh
man page described “most operations” as being asynchronous, which is not the case. The man page was updated to state that most operations are synchronous except creation and shutdown of domains. - Guests that use the default source clock try to compensate for lost ticks by reading the TSC as well. This can cause the guest clock to go out of synchronization. All Red Hat Enterprise Linux guests now unconditionally add
--no-kvm-pit-reinjection
to theqemu
command line, and the guest no longer falls out of synchronization. libvirt
would not perform a power management reset if there were other functions on the device. The PCI Power Management reset only affects individual functions, and not the whole device. The check for other functions was removed, so that where both are available, the whole device reset is preferred over individual function resets.- When a migration was performed to a virtual machine that had been paused, the virtual machine would no longer be paused after the migration had completed. The behavior of
qemu-kvm
was changed so that it no longer 'forgets' the virtual machine is paused, and it will now stay paused during a migration. libvirt
was ordering disks unecessarily. When a new disk was added, it would sometimes shift the boot disk later in the list, causing the user to be unable to boot. The sorting algorithm was changed, and will now insert a new disk as far to the end of the list as possible, while being ordered correctly with other disks on the same bus. This resolved booting errors caused by disk ordering.- A typographical error in an XML domain file caused
libvirtd
to suffer a segmentation fault. A check was added, and a typing mistake will now causelibvirtd
to fail gracefully and produce a meaningful error report. - Devices that are assigned below a non-ACS switch can cause transactions to bypass the VT-d hardware and the validation process.
libvirt
now successfully blocks devices between non-ACS switches, unless the user specifies the permissive='yes' attribute for <hostdev>, so all transactions now undergo validation by default. - When querying Xen remotely virsh would sometimes raise an "unknown failure" error. The semantics were modified and where possible, the error is now more informative.
- When using
xen+ssh://
to connect to a host, sometimes an RPC entry point would not be available anddominfo
would raise an uninformativeerror: unknown procedure
error. The error reporting was changed and it now reports as an unsupported entry point. - When a network created a bridge, it would only be enabled if the host had an IP on that bridge. This would cause the bridge creation to fail quietly, and packets would not be passed as expected. The error messages were improved for bridge creation and deletion, and if a failure occurs, it will now produce an informative error.
- HVM VT-d PCI passthrough attach and detach was not working correctly and devices could not be hotplugged. The attach and detach code now has additional checks and hotplugging functions as expected.
- When
virt-manager
tried to attach a PCI device to a Xen guest, it calledvirNodeDeviceReset
and subsequently crashed. The Xen driver was updated, and it now checks if a given PCI device is assigned to another guest, so that PCI devices can be attached as expected. - When the host was running the KVM hypervisor, the
libvirtd
process was occasionally unable to connect to the hypervisor. In this case,qemu-kvm
failed to start, and gave a false NUMAout of memory
error. The error handling was changed so that NUMA errors are now non-fatal. Errors are now logged, and connection progresses as expected. libvirt
was found to be incorrectly detecting machine types supported by KVM. This meant that KVM guests which did not specify any machine type could not be created. This also caused some rare problems that would cause/distribution/virt/install
to fail.libvirt
was updated to correctly detect and identify KVM-supported machine types.
- Support has been added for assigning Single Root I/O Virtualization (SR-IOV) devices to
qemu
guests. - Implementation of the
virsh dump
command for QEMU/KVM guests is included in this release. - Support was added to
libvirt
for KVM PCI device assignment hotplug. - Added
-mem-prealloc
to the KVM command line when using hugepage. libvirt
now allows the creation of more than 256 guests, and more than 150 DHCP leases.- The
-M rhel5.4
arguments are now passed by default when launchingqemu-kvm
. This improves backward migration ability.
libvirt
are advised to upgrade to these updated packages, which resolve these issues and add these enhancements.
1.108. libvirt-cim
1.108.1. RHBA-2009:1421: bug fix update
Note
1.108.2. RHBA-2010:0206: bug fix and enhancement update
1.109. libvorbis
1.109.1. RHSA-2009:1561: Important security update
Important
1.110. linuxwacom
1.110.1. RHEA-2010:0325: enhancement update
1.111. lm_sensors
1.111.1. RHBA-2010:0186: bug fix and enhancement update
1.112. log4cpp
1.112.1. RHEA-2010:0313: enhancement update
1.113. logwatch
1.113.1. RHBA-2010:0033: bug fix and enhancement update
Note
1.114. lvm2
1.114.1. RHBA-2009:1476: bug-fix update
Note
1.114.2. RHBA-2009:1538: bug-fix update
Note
1.114.3. RHBA-2010:0298: bug fix and enhancement update
1.115. lvm2-cluster
1.115.1. RHBA-2009:1475: bug-fix update
Note
1.115.2. RHBA-2010:0299: bug fix and enhancement update
1.116. man-pages
1.116.1. RHBA-2009:1574: bug fix update
Note
1.117. man-pages-ja
1.117.1. RHBA-2009:1630: bug fix update
Note
1.118. mcelog
1.118.1. RHBA-2010:0247: bug fix update
1.119. mdadm
1.119.1. RHBA-2010:0006: bug fix update
Note
1.120. mesa
1.120.1. RHBA-2010:0261: bug fix update
1.121. metacity
1.121.1. RHBA-2009:1610: bug fix update
Note
1.121.2. RHBA-2010:0245: bug fix and enhancement update
1.122. microcode_ctl
1.122.1. RHEA-2010:0243: enhancement update
1.123. mkinitrd
1.123.1. RHBA-2010:0295: bug fix and enhancement update
mkinitrd
utility creates file system images for use as initial ramdisk (initrd) images.
- booting a Storage Area Network (SAN) from a replicated Logical Unit Number (LUN) following a loss of the primary site would fail when doing array-based synchronous data replication to a remote site. This was due to the fact that the initrd on the replicated LUN is configured to see the World Wide Identifier (WWID) of the primary LUN only. A patch has been applied that allows for the creation of all multipath devices so that the replicated LUN is visible for booting. It should be noted that some manual configuration is required following the installation of the updated package:
- ensure that
multipath.conf
has the correct stanzas for both multipath devices. - run
mkinitrd
again.
A replicated LUN will now successfully boot provided:- the
multipath.conf
in the initrd does not blacklist the new LUN and; /var/lib/multipath/bindings
in the initrd is either empty or contains an entry binding mpath0 (or the device originally installed to) to the replicated LUN's WWID.
scsi_model devflag
options appended to/etc/modprobe.conf
can be of the form: “options scsi_mod dev_flags="HITACHI:OPEN-9 -SUN:0x240” to specify more than one SCSI model. These strings are written as arguments to theinsmod
command within theinitrd
script. The leading spaces of the second model name in the above example were incorrectly read as a single space by thenash
command resulting in the/proc/scsi/device_info
file containing invalid strings. A user specifying a SCSI model in this way would have to manually edit the/proc/scsi/device_info
file as a result. A patch has been applied tonash.c
to correctly handle the quoted string following thedev_flag
argument. The string is now written to the/proc/scsi/device_info
file in the correct format. (BZ#467850)mkinitrd
uses a global variablerootdev
to store the name of the root device. This is either auto-detected or passed in via the command line--rootdev=
parameter. Changes applied tomkinitrd
to supportboot from multipath
introduced the localrootdev
variable. This variable overrides the global variable resulting in an incorrect root device, such as a component SCSI device, being written to the/init
script preventing the system from booting. The local variable has been renamed to avoid the conflict. Runningmkinitrd
on a multipath boot system now results in a successful boot of the system. (BZ#503567)mkinitrd
runsnash
on each logical volume. Theblock_find_fs_by_key()
method calls thenashDmGetDevName()
method for each logical volume. Thenash
command does not run to completion in a reasonable time-frame as thenashDmGetDevName()
recurses through all devices each time it is called. This update allowsnashDmGetDevName()
to cache its results, sonash
no longer uses 100% of the CPU when installingRPM
s. (BZ#516047)mkinitrd
copied thelvm.conf
file verbatim to the initrd without parsing it properly. If the logical volume manager (LVM) was configured to use host tags, Red Hat Enterprise Linux would not boot because a host name could not be set at initrd time.lvm --dumpconfig
is now used to retrieve the LVM configuration file. (BZ#517868)mkinitrd
attempted to explicitly activate the subsets of a nested RAID 10 set. Error messages would then be printed to the log during boot. These messages could safely be ignored. They have now been removed to avoid confusion. (BZ#526246)mkinitrd
copied the symbolic link of a bootpath driver instead of the actual bootpath driver. This caused kernel panic due to an unavailable driver on first boot of the operating system.mkinitrd
now checks the full path of symbolically linked drivers. (BZ#540641)- when the root file system was on the logical volume manager (LVM), as is the default installation option,
nash
received a segmentation fault reference if some modules did not load during post-installation reboot. This caused unwarranted kernel panic. Kernel panic no longer occurs as a result of the non-loading of modules. (BZ#560567) - several virtio modules were missing from the previous version of
mkinitrd
. This meant thatmkinitrd
built incorrectly upon installation if virtio block or network devices were used within the Kernel Based Virtual Machine (KVM). The final result was kernel panic. These updated packages contain the required modules which allowmkinitrd
to build and install correctly. (BZ#560672)
- the
scsi_dh_rdac
module is needed to support many LSI Engenio based (IBM and non-IBM) storage devices. With the inclusion of a module such as thescsi_dh_rdac
module in initrd, the time to boot a system with multiple rdac devices is minimized. A patch has been applied tomkinitrd
to load everyscsi_dh_*
module in the event that multipath devices are detected. The patch currently succeeds in loadingxscsi_dh_rdac
modules for installations on DS4K storage and further work is being undertaken to ensure the successful loading of modules independent of the host device. (BZ#460899) mkinitrd
is responsible for ensuring that all drivers, applications, and configuration information needed to mount the root filesystem are packaged into each kernel's initrd. Unlike the Logical Volume Manager (LVM) component ofmkinitrd
, multipath operates on only the logical volume associated with the root filesystem and not the volume group containing the root filesystem. As a consequence, when installing a system with multipath devices, only disks currently in use by the root's logical volume have multipath configured within the initrd. A patch has been applied that wraps thefind_mpath_deps
in a loop that iterates through every primary volume in the root volume group. Non-LVMs are handled in a separate case by runnningfind_mpath_deps
against the root device. Installing a system with multipath devices will now result in the primary volumes in the root virtual group being on multipath devices. (BZ#501535)
1.124. module-init-tools
1.124.1. RHBA-2010:0242: bug fix update
1.125. mtx
1.125.1. RHBA-2009:1607: bug fix update
Note
1.126. mysql
1.126.1. RHBA-2009:1693: bug fix update
Note
1.126.2. RHSA-2010:0109: Moderate security update
Important
1.127. nautilus-open-terminal
1.127.1. RHBA-2009:1483: bug fix update
Note
1.128. neon
1.128.1. RHSA-2009:1452: Moderate security update
Important
1.129. net-snmp
1.129.1. RHBA-2009:1437: bug fix update
Note
1.129.2. RHBA-2010:0253: bug fix and enhancement update
1.130. net-tools
1.130.1. RHBA-2009:1677: bug fix update
Note
1.131. NetworkManager
1.131.1. RHSA-2010:0108: Moderate security update
Important
1.131.2. RHBA-2010:0263: bug fix update
1.132. newt
1.132.1. RHSA-2009:1463: Moderate security update
Important
1.132.2. RHBA-2009:1482: bug fix update
Note
1.133. nfs-utils
1.133.1. RHBA-2010:0284: bug fix update
1.134. nspluginwrapper
1.134.1. RHBA-2010:0187: bug fix update
1.135. nss_ldap
1.135.1. RHBA-2009:1527: bug fix update
Note
1.135.2. RHBA-2010:0260: bug fix update
1.136. numactl
1.136.1. RHBA-2010:0319: bug fix update
1.136.2. RHBA-2009:1626: bug fix update
Note
1.137. openCryptoki
1.137.1. RHBA-2009:1685: bug fix update
Note
1.138. openais
1.138.1. RHBA-2009:1474: bug fix update
Note
1.138.2. RHBA-2010:0180: bug fix update
1.139. OpenIPMI
1.139.1. RHBA-2009:1487: bug fix update
Note
1.139.2. RHBA-2009:1629: bug fix update
Note
1.140. openib
1.140.1. RHBA-2010:0292: bug fix and enhancement update
1.141. openldap
1.141.1. RHSA-2010:0198: Moderate security and bug fix update
1.142. openmotif
1.142.1. RHBA-2010:0132: bug fix update
Note
1.143. openoffice.org
1.143.1. RHBA-2010:0274: bug fix and enhancement update
- a nested table would be removed from the defined nesting structure when rendered in Web Layout view causing OpenOffice.org to crash. A patch has been applied to ensure the correct rendering of nested tables. (BZ#469157) (BZ#469157)
- using OpenOffice.org Impress in a dual monitor configuration and selecting Slide Show → Slide Show would cause the application to crash as the application was configured to return a default screen. A patch has been applied to detect and return the monitor upon which the slide show will be displayed. (BZ#476949)
- when saving a html document containing cells which are merged across rows, OpenOffice.org Writer would insert an additional cell in each row of the spanned set. When the document was rendered, the cells would appear to be misaligned due to the creation of the additional cells. A patch has been applied to retain the original table row span configuration. (BZ#491357)
- enabling the Mozilla plugin in OpenOffice.org and opening a
.odt
file in Firefox would generate a segmentation fault, causing Firefox to crash on x86_64 architectures. A patch has been applied to define theuint32
andint32
variables as the appropriate type of int or long depending on the architecture. (BZ#496033) - when performing an Edit → Find & Replace operation in OpenOffice.org Impress, the Find All button was visible but inactive. A patch has been applied to remove the Find All button from the interface as this is not a supported OpenOffice.org Impress feature. (BZ#504109)
- when attempting to merge a
.sxi
or.odt
file into an OpenOffice.org Calc document, the application would crash due to theSfxMedium* pMed
pointer inScDocShell::DialogClosedHdl()
being set toNULL
. A patch has been applied to thedocsh4.cxx
file to test the state of this variable prior to affecting the merge. (BZ#504551) - when using OpenOffice.org Calc with spell check enabled, if a misspelt word was entered in a cell and the Edit → Repeat:Insert operation was attempted from within a new cell, the misspelt word will would not be inserted. The
viewfunc.cxx
file has been updated to ensure that the insert operation is functional even if the original cell contents are misspelt. (BZ#504967) - in OpenOffice.org Calc, the Data → Group and Outline → AutoOutline command would not work for any cell that contained a formula specifying a cell range as a list (for example: =SUM(A1;A2;A3)). To fix this bug the
cell.hxx
file has been modified to simplify a list range (for example: the list A2;A1;A3 would become A1:A3). By condensing the list, the Data → Group and Outline → AutoOutline command now works as expected. (BZ#504971) - building
RPM
s for OpenOffice.org would fail when a Java version above version 1.4 was installed. This occurred because the ANT scripts used to build some of the components were not configured to generate version 1.4 compatible bytecode upon which OpenOffice.org is dependent. This bug has since been fixed by enforcingRPM
s to be built with the GNU Compiler for Java (GCJ) or the Eclipse Compiler for Java (EJC). GJC specific options have been omitted as these are not recognized by EJC. This ensures that OpenOffice.orgRPM
s are generated without error when using therpmbuild
command. (BZ#506036) - when printing, OpenOffice.org would sometimes crash. This was due to the code that processes Postscript Printer Description (PPD) keys from CUPS inserting a value of
None
as the first value for each newly inserted key. Under these circumstances the second insertion returns aNULL
pointer and the following statement causes the crash by dereferencing the pointer. To correct this bug thejobset.cxx
file has been modified to only insert a value ofNone
as the first value for each newly inserted key if it is not already present. (BZ#515488) - when zooming in over 128% on a document in the OpenOffice.org Writer, any inserted note would no longer be viewable. By upgrading the OpenOffice.org suite to 3.1.1-19.5 this issue is no longer presented. (BZ#521006)
- bulleted lists in an OpenOffice.org Writer version 3 document would not render when opened in OpenOffice.org Writer version 2.3.0. By upgrading the OpenOffice.org suite to 3.1.1-19.5 this issue is no longer presented. (BZ#527933)
- the OpenOffice.org Calc application would crash when custom colors were created. These updated packages fix an improperly declared variable that caused the bug. Custom colors can now be created successfully. (BZ#530355)
- the OpenOffice.org package prior to version 3.1.1 did not support Microsoft 2007 Office
Open XML
(OOXML) file formats resulting in the inability to open files of this type. The OpenOffice.org 3.1.1-19.5 suite provides the necessary support to open OOXML file formats includingpptx
,xlsx
anddocx
. (BZ#444052)
1.144. openssh
1.144.1. RHBA-2009:1668: bug fix update
Note
1.144.2. RHBA-2010:0123: bug fix update
Note
1.144.3. RHSA-2009:1470: Moderate security update
Important
1.144.4. RHBA-2010:0193: bug fix update
1.145. openssl
1.145.1. RHSA-2010:0162: Important security update
Important
1.145.2. RHSA-2010:0054: Moderate security update
Important
1.146. openswan
1.146.1. RHBA-2010:0096: bug fix update
Note
1.146.2. RHBA-2009:1612: bug fix update
Note
1.147. oprofile
1.147.1. RHBA-2010:0283: bug fix and enhancement update
1.148. pam
1.148.1. RHBA-2010:0135: bug fix update
Note
1.149. pam_krb5
1.149.1. RHSA-2010:0258: Low security and bug fix update
1.150. paps
1.150.1. RHBA-2009:1679: bug fix update
Note
1.151. parted
1.151.1. RHBA-2010:0257: bug fix update
1.152. pax
1.152.1. RHBA-2009:1591: bug fix update
Note
1.153. pciutils
1.153.1. RHBA-2009:1592: bug fix update
Note
1.154. pcsc-lite
1.154.1. RHBA-2010:0278: bug fix update
1.155. perl-Sys-Virt
1.155.1. RHBA-2010:0251: bug fix update
1.156. perl-XML-SAX
1.156.1. RHBA-2010:0008: and perl-XML-LibXML bug fix update
Note
1.157. pexpect
1.157.1. RHBA-2009:1508: bug fix update
Note
1.158. php
1.158.1. RHSA-2010:0040: Moderate security update
Important
1.158.2. RHBA-2010:0241: bug fix and enhancement update
1.159. pidgin
1.159.1. RHBA-2010:0176: bug fix update
Note
1.160. piranha
1.160.1. RHBA-2010:0297: bug fix update
1.161. pirut
1.161.1. RHBA-2010:0058: bug fix update
Note
1.162. policycoreutils
1.162.1. RHBA-2010:0208: bug fix update
1.163. poppler
1.163.1. RHSA-2009:1504: Important security and bug fix update
Important
1.164. postgresql
1.164.1. RHSA-2009:1484: Moderate security update
Important
1.165. ppc64-utils
1.165.1. RHBA-2010:0225: bug fix and enhancement update
1.166. procps
1.166.1. RHBA-2010:0200: bug fix and enhancement update
1.167. pykickstart
1.167.1. RHBA-2010:0248: bug fix and enhancement update
1.168. python-virtinst
1.168.1. RHBA-2010:0282: bug fix and enhancement update
1.169. PyXML
1.169.1. RHSA-2010:0002: Moderate security update
Important
1.170. qspice
1.170.1. RHBA-2009:1489: bug fix update
Note
1.170.2. RHBA-2010:0264: bug fix update
1.171. readahead
1.171.1. RHBA-2010:0005: bug fix update
Note
1.172. redhat-artwork
1.172.1. RHBA-2010:0311: bug fix update
1.173. redhat-release
1.173.1. RHEA-2010:0207: enhancement update
1.174. redhat-release-notes
1.174.1. RHEA-2010:0315: enhancement update
1.175. rgmanager
1.175.1. RHBA-2009:1510: bug-fix update
Note
1.175.2. RHBA-2009:1521: bug-fix update
Note
1.175.3. RHBA-2009:1589: bug-fix update
Note
1.175.4. RHBA-2010:0280: bug fix and enhancement update
1.176. rhn-client-tools
1.176.1. RHBA-2010:0270: bug fix and enhancement update
1.177. rhnlib
1.177.1. RHBA-2010:0322: bug fix update
1.178. rhnsd
1.178.1. RHBA-2009:1655: bug fix update
Note
1.179. rhpxl
1.179.1. RHBA-2010:0318: bug fix update
1.180. rsyslog
1.180.1. RHBA-2010:0213: bug fix update
1.181. ruby
1.181.1. RHBA-2010:0012: bug fix update
Note
1.182. samba
1.182.1. RHBA-2009:1641: bug fix update
Note
1.182.2. RHSA-2009:1529: Moderate security update
Important
1.182.3. RHBA-2010:0300: bug fix update
1.183. samba3x
1.183.1. RHBA-2010:0301: bug fix update
1.184. sblim
1.184.1. RHBA-2010:0231: bug fix and enhancement update
1.185. screen
1.185.1. RHBA-2009:1621: bug fix update
Note
1.186. scsi-target-utils
1.186.1. RHBA-2010:0067: bug fix and enhancement update
Note
1.187. selinux-policy
1.187.1. RHBA-2009:1495: bug fix update
Note
1.187.2. RHBA-2010:0013: bug fix update
Note
1.187.3. RHBA-2010:0063: bug fix update
Note
1.187.4. RHBA-2010:0182: bug fix update
selinux-policy
packages that fix numerous bugs are now available.
- The
coolkey
library used by some Kerberos implementations caused an SELinux denial when credentials were sent to an NFS server, and during the creation of a cache directory. This package modifies SELinux policy so that the coolkey Kerberos library is excluded from being audited when performing this operation. (BZ#294651) - A leaked file descriptor in
cupsd
caused an SELinux error or denial. SELinux policy has been modified to allow this activity and not to cause a denial when this activity takes place. (BZ#483395) - The
/root/.ssh
directory contained incorrect SELinux permissions if it was deleted and re-created. This permission error caused thessh-keygen
command to fail when creating keys in this directory from an init script, as it was not labelled correctly. SELinux policy has been modified to enable the correct permissions on the/root/.ssh
directory if it is removed and re-added. Having the correct permission on this directory results inssh-keygen
now being able to successfully generate keys as expected. (BZ#492519) - Hosts with SELinux in enforcing mode were not able to create a cluster with Red Hat Cluster Suite (RHCS) when running
service cman start
becauseaisexec
could not allocate shared memory. Support has been added in SELinux policy for Cluster Suite, which resolves these issues. (BZ#503141) - An SELinux denial was triggered when the
coolkey
command integrated withsamba
to join an Active Directory service. SELinux policy has been modified to allow for proper coolkey cache management in the samba policy module. (BZ#507797) - SELinux policy has been modified to allow proper operation of the
rsync
command when it is used via the SSH protocol. (BZ#510748) - A problematic library file for the Oracle
sqlplus
command caused an SELinux denial. Policy has been modified to label this file correctly to allow for its unexpected behavior. The sqlplus command functions normally after applying this update. (BZ#512375) - Users operating in the
sysadm
SELinux role can now use thesetkey
utility from theipsec-tools
package. (BZ#513447) - A transition rule has been added to SELinux policy that allows
vbetool
the permissions it needs to operate normally. (BZ#515491) - When
setkey
was executed from a network startup script, an SELinux denial was triggered. An interface has been added to enable integration with temporary files when using setkey within the MLS SELinux policy. (BZ#515687) - The protection offered over the
rsync
command has changed. rsync is now protected only when started from inetd or xinetd. Other usages of rsync are considered client-side operations and are not protected any further than that of utilities such ascp
orscp
. (BZ#516780) - The
sudo
command was not properly launching an intermediary shell to authenticate users with correct sudo role privileges. This fix allows transitions to operate normally and allows users to execute commands as root via sudo, when configured to do so. (BZ#519017) - Launching an
ipsec
connection by using theservice network restart
command did not succeed. The ipsec connection did not start as it was started from the init_t domain. Policy forsetkey
has been modified so that it can now read temporary data from init scripts, and ipsec connections now start normally from the init_t domain. (BZ#519363) - Scripts for
mod_fcgid
, a CGI plugin for the Apache HTTP server caused SELinux permission errors when used. Policy has been modified to both allow mod_fcgid scripts the required permissions, and to allow CGI applications to use their own mail modules to send mail, instead of callingsendmail
. (BZ#519369) - Instances of
#!/usr/bin/env python
have been removed from SELinux policy source code, as using this technique to callpython
in the top of an executable python file is being discontinued by Red Hat developers. (BZ#521284) - Support for Red Hat Cluster Suite has been added to SELinux policy. Please note that SELinux policy only provides coverage for the infrastructure components. Services directly managed by Cluster Suite will require their own policies and are not covered by this enhancement. (BZ#522158)
- SELinux policy has been modified so that
cyrus-imapd
is now able to register its SNMP sub-agent by connecting to a socket upon startup. (BZ#523548) - An SELinux denial was triggered when configuring the
SNMP
daemon to listen on TCP or UDP ports for AgentX sub-agents. Policy has been modified so that this daemon can now bind TCP/UDP sockets to AgentX ports. (BZ#523773) - SELinux denials were caused when implementing user quotas over
NFS
(Network File System) shares. Policy has been modified to properly allow for the normal operation of quotas when using NFS shares. (BZ#525420) - Upon updating the
udev
daemon to the latest version and restarting it, the SELinux context for udev was changed from the default, causing errors. This update ensures that this context remains correct when restarting udev. (BZ#526640) - SELinux policy has been modified to not trigger an error when the virDomainSave() API is called from
qemu-kvm
. (BZ#530552) procmail
was causing an AVC denial when attempting to read files used byspamassassin
. Rules have been added to policy so that these applications can communicate normally via pipes. (BZ#530750)- The ability to send and receive unlabeled packets was added to policy rules. (BZ#530809)
- A bug prevented the installation of the selinux-policy-strict package because the requirements of
aisexec
were not properly met. The strict policy can now be installed as expected. (BZ#531196) - Real Time Kernel support was added to selinux-policy. (BZ#531230)
- The
e4fsck
command was not properly labeled, causing execution to fail. Policy permissions have been fixed so that e4fsck is now correctly labeled. (BZ#532565) - Permissions were modified to allow
pluto
to write logs properly. (BZ#537106) - This update includes updated policy rules for
IPsec
, fixing the AVC denials that preventedpluto
from running properly. After applying this update, pluto runs as expected. Note that this is necessary for FIPS-140 security compliance. (BZ#537133) vhostmd
is a daemon that provides a communication channel between a host and its hosted virtual machines. Implementing avhostmd
daemon caused AVC denial errors when launching it viaservice vhostmd start
. SELinux policy rules have been added to protect the vhostmd daemon. The daemon starts and operates normally after applying the update. (BZ#543941)- SELinux AVC denial errors were triggered when using the sysadm SELinux user to connect to
racoon
using a UNIX domain stream socket. After applying this update, access functions as expected. (BZ#545369) - When using the MLS functionality,
iptables
can now start properly and has proper permissions to read configuration files. (BZ#546604) - Policy has been modified to give the
smartd
daemon the ability to read from and write to generic SCSI devices. (BZ#547387) - SELinux policy has been modified to fix a segfault error when using an iSCSI target with the
bnx2i
interface type. (BZ#548599) - The
/var/vdsm
directory was incorrectly labeled by SELinux, showing two different SELinux contexts. After applying this update, the directory is now correctly labeled with a single label. (BZ#549492) - When using the '-i' option to the
lpadmin
command to set an interface script for a printer, SELinux error messages are triggered. A new type,cupsd_interface_t
, has been added to policy to allowcupsd
to properly utilize a System V style interface script. (BZ#550015) - The
postgresql
regression tests include libraries that need to be dynamically loaded by the postgresql server. Some of these libraries were incorrectly labeled, which caused the regression tests to fail and SELinux errors to appear. This update applies the correct permissions to the libraries, and the postgresql regression tests now operate as expected. (BZ#551063) prelink
is a utility that can reduce the startup times of applications by linking to libraries and storing the linking in the executable. prelink is now allowed under SELinux policy to load and execute functions from shared libraries, with legacy support included for older libraries. (BZ#551664)qemu-kvm
caused SELinux errors when creating or starting a virtual machine whenTransport Layer Security
(TLS) is enabled in qemu.conf for an environment using a Public Key Infrastructure (PKI). This error occurred because qemu-kvm did not have sufficient permission to read from a random number generator (/dev/random
and/dev/urandom
) in order to gather its entropy. Permissions have been modified so that qemu-kvm can now read from these random number generators. (BZ#552763)- A regression error was discovered when installing new SELinux packages. The
postfix_postdrop
command was unable to use sockets. This resulted in emails not being sent. After applying this update, postfix is able to read and write sendmail unix_stream_sockets and emails can be sent using sendmail as expected. (BZ#553492) - The
/etc/xen
was incorrectly labeled. This caused errors when using automated scripts for staging Xen guest virtual machines. A fix was applied to correctly label the directory, which resolved the problem. Xen guests are now functioning as expected. (BZ#554777) - Restarting networking services using the
service network restart
command resulted in an AVC denial caused by dhcpc_t being unable to relabel to and from net_conf_t. This update allows this with the result that restarting networking succeeds without SELinux denials. (BZ#559355) - The
iscsid
daemon, which implements the control path of the iSCSI protocol along with management functions, could not create its log file due to an incorrect SELinux context. (BZ#562303) - The context for the
named
name server daemon, when running in a chrooted environment, was incorrect, and with this update is labeled correctly. (BZ#562833) - Attempting to save the firewall configuration with the
service iptables save
command triggered an AVC denial. This update changes the default context for the/sbin/iptables-save
application to iptabels_exec_t so that the firewall configuration can be saved. (BZ#564376) - Attempting to run a CGI script from a
cgi-bin
directory mounted on an NFS share resulted in an AVC denial, whereas serving static pages from apublic_html
directory worked as expected. CGI scripts can now be run from NFS-mounted directories given the correct permissions. (BZ#566557) - When the SELinux boolean ftp_home_dir was enabled, the allow_ftpd_anon_write boolean did not take effect, and users could upload files to their home directories via anonymous FTP even though write access should have been restricted by the value of allow_ftpd_anon_write. With this update, the value of allow_ftpd_anon_write allows or permits anonymous FTP writes, as expected. (BZ#566975)
1.188. sendmail
1.188.1. RHSA-2010:0237: Low security and bug fix update
1.189. shadow-utils
1.189.1. RHBA-2010:0209: bug fix update
1.190. sosreport
1.190.1. RHBA-2010:0201: bug fix and enhancement update
- when
kmod-gfs2
was installed on a Red Hat Enterprise Linux 5 system, it was possible to have a situation whereby its version ofgfs2.ko
would take precedence over that supplied with the kernel. As a consequence, the wrong version of the Global File System would be used and it also would be incorrectly set to weak-update. SOS has now been modified to warn system administrators ifgfs2.ko
has been set to use weak updates and instructs them there is a need to remove kmod-gfs2 and reboot the system before proceeding any further. (BZ#507390) groupd
can erroneously assign the fence domain id 00000000. This can result in LVM commands becoming permanently locked. To alert system administrators to this issue, a check has been added to SOS that examines the output ofgroup_tool -v
for a string of zeroes against fence and, if it finds this to be the case, it generates a warning message that instructs administrators on how to remedy the problem. (BZ#499468)- SOS was inadvertently copying all subdirectories and files relative to where the command was executed, (including paths created by symlinks), into
/tmp
. (This problem did not occur if absolute link entries were used.) A change has been made so that SOS no longer traverses directories relative to the current working directory. As a result, this potentially large amount of data is no longer copied erroneously. (BZ#530385) - SOS had no capability to detect or report problems with cman services, which can occur when groupd becomes stuck in a state that needs to be resolved before cluster operations can continue. To rectify this, SOS now checks the output of
group_tool -v
to detect if CMAN services are set to anything other than none. A warning is then produced to prompt the system administrator to investigate the cause of the potential problem. (BZ#499472) - SOS's progress reporting was inaccurate, due to problems with output buffering and the wrong placement of error messages. When the
sosreport
command was run from a terminal, the percentage completed figure would go up and down. Furthermore, after it has reached 100%, the real time and estimated finish time would continue to grow together for several more seconds. A new, more reliable progress indication system has been added. As a result, the progress indication will be reliable from now on. (BZ#502442) - SOS would erroneously report that one or more nfs export do not have a fsid attribute set even if the fsid had been specified in the fs resource. This was due to an omission in the
cluster.py
file which was only searching the services tag and not the resources tag, in whichfsid
is set (as part of best practice) if the file system is a share resource.cluster.py
has now been patched to account for all scenarios so false reports of missingfsids
will no longer be generated. (BZ#507674) - The
sosreport -k general.syslogsize=15
command did not limit log file sizes to 15 Mb, contrary to expected behavior. This was because the limits were being erroneously applied to/var/log/messages.*
instead of/var/log/messages
. As a result, huge reports were generated and sosreport could even potentially die if all space in/tmp
was used by the process. To fix this problem, the limits are now being applied to/var/log/messages
meaning the huge reports are no longer being generated. (BZ#516551) - The list of installed RPMs generated by sosreport was in a non-standard format. Rather than in the accepted format of
name-[epoch:]version-release.arch
, it was in the form ofname-version-release-arch
. This was inconvenient to users wishing to paste output to programs such asyum
. To fix this issue, changes have been made to ensure that the list of installed RPMs is now in thename-[epoch:]version-release.arch
format to make it usable withyum
andrpm
commands. (BZ#482755) - A problem occurred when
sosreport
deliberately obscured fencing passwords in/etc/cluster/cluster.conf
. It would break the XML formatting by removing the quotation marks that surrounded the masked version of the password. A further problem was that the passwords in backup files (such as/etc/cluster/cluster.conf.1
) were not obscured. To resolve this issue, changes have been made to password masking to ensure the XML remains well-formed and the process is applied to any back-up configuration files that may exist. As a result, security is enhanced and files no longer need manual rectification before tests can be run oncluster.conf
. (BZ#497588) - SOS reports were including all of the contents of the
/tftpboot
directory, which resulted in huge files (potentially greater than 1 GB), if multiple boot media had been created in that location. To address this issue the contents of/tftpboot
are now excluded from the report. (BZ#523263) - previously, the
sar
plugin included in SOS ignored the locale setting and created sar files with time data presented in the default format. With this update, the plugin now honors the locale setting and generates sar files with time data in the expected format (ie the same format as sar files created bysysstat cron
jobs). (BZ#525010)
- SOS was only gathering limited data on some aspects of system performance. This has been expanded to include sources such as:
/var/log/cron*
parted hard disk device print
tune2fs -l filesystem
/etc/inittab
service service name status
/etc/inittab
/etc/kdump.conf
/sbin/mdadm -D /dev/md*
/etc/lvm
/proc/buddyinfo
- SOS was not gathering dmraid information, which can be extremely useful for troubleshooting. A large amount of functionality has now been added that enables SOS to report dm-raid signatures if these are detected and send this information to support engineers. It also ensures that this information is reported even if SOS is being run in rescue mood at one of the service levels at which dm-raid systems will not boot. This information is gathered via these specific commands:
dmraid -V
dmraid -b
dmraid -r
dmraid -s
dmraid -tay
dmraid -rD
the output of which is now gathered by sosreport resulting in much quicker identification and resolution of support issues. (BZ#507672) - SOS was not reporting configuration information for running OpenAIS systems, making troubleshooting extremely difficult, especially if the systems in question had been heavily customized. SOS has been modified so that the following detailed OpenAIS cluster information is now captured, leading to faster and more accurate troubleshooting. (BZ#521344)
- the rh-upload-core script included with sos has been improved. Most significantly, the script can now upload any file, and not just vmcores. (BZ#523750)
- SOS reports include the name service cache daemon (nscd) configuration file found at /etc/nscd.conf. With this update, SOS reports now also include the debug logs if nscd is running with debugging enabled. Note: similarly to syslog, SOS limits the debug log files to 50 MiB. If nscd runs in debug mode for extended periods (eg a week), the debug log files can be 100s of MiBs and larger. (BZ#536960)
- SOS now checks for the presence of Apache QPID (specifically, it checkes for qpidd, the QPID daemon) and, if detected, collects QPID configuration, state and log information and saves it to sos_command/broker/ in the sosreport. (BZ#557851)
- SOS did not gather the SELinux audit log files (/var/log/audit/*). It has now been amended to gather the last fifty entries of this log, meaning that SELinux problems can be investigated more easily. (BZ#443984)
- SOS did not gather sound card information, leading to prolonged support calls whilst this information was manually collected and sent in by users. A new Python-based plug-in has been written that collects information about soundcards via ALSA. As a result, users will not have to hunt for this information themselves during a support call. (BZ#478009)
- SOS was not reporting the output of the lsb_release command. If /etc/redhat-release was corrupted or missing, it was impossible for support to confirm which version of Red Hat Enterprise Linux was in use. lsb)release provides a useful fallback. A plug-in has been added to SOS to gather a large amount of data provided by the lsb_release command and in associated /etc files. It also outputs a message, informing the user if /etc/redhat-release is missing. By reporting this information, the system version can be identified quickly and accurately, assisting in the troubleshooting process. (BZ#479111)
- SOS was not able to collect data relating to the Quagga routing suite if this was installed on a user's systems. As a result, troubleshooting these systems was more difficult. To remedy this problem, a plug-in has been added to SOS that collects Quagga-related configuration files, thereby providing the requisite information to quckly and easily identify and remedy problems with these systems. (BZ#485191)
- SOS was not able to collect Cron data. As a result, troubleshooting was sometimes difficult. To resolve this issue, SOS has been patched so that it now includes data from /var/spool/cron allowing support engineers to know about the scheduling of tasks on a given system. (BZ#485559)
- SOS was not able to report information about the Cobbler Linux installation suite, limiting engineers' attempts to troubleshoot systems. To rectify this, SOS now has a plug-in that gathers the following files if they are present:
/etc/cobbler
/var/log/cobbler
/var/lib/rhn/kickstarts
/var/lib/cobbler/snippits
/var/lib/cobbler/config
/var/lib/cobbler/kickstarts
/var/lib/cobbler/triggers
As a result, troubleshooting Cobbler is now much easier. (BZ#495934). - SOS was not able to report information about the iSCSI Initiator if this was present on the system. Thus, information about transmission of SCSI commands over IP networks could not be gathered by the reporting tool. To rectify this problem, SOS now reports on:
/etc/iscsi/iscsid.conf
/etc/iscsi/initiatorname.iscsi
/var/lib/iscsi/
This makes debugging problems involving iSCSI much easier. (BZ#512889) - SOS was not able to capture multicast information This made it hard to debug OpenAIS clusters, as they use multicast IGMP groups to send messages. For the purposes of troubleshooting, it is important to know which groups are available and active on a node, so SOS has been enhanced so that it can now report on the following information:
netstat -agn
ip mroute show
ip maddr show
As a result, OpenAIS clusters can now be debugged by troubleshooters much more easily. (BZ#514294)
1.191. squid
1.191.1. RHSA-2010:0221: Low security and bug fix update
1.192. squirrelmail
1.192.1. RHSA-2009:1490: Moderate security update
Important
1.193. star
1.193.1. RHBA-2009:1575: bug fix update
Note
1.194. strace
1.194.1. RHBA-2010:0047: bug fix update
Note
1.194.2. RHBA-2010:0174: bug fix update
Note
1.195. sudo
1.195.1. RHSA-2010:0122: Important security update
Important
1.195.2. RHBA-2010:0212: bug fix update
1.196. sysklogd
1.196.1. RHBA-2010:0211: bug fix update
1.197. system-config-cluster
1.197.1. RHBA-2010:0288: bug fix update
1.198. system-config-lvm
1.198.1. RHBA-2009:1613: bug-fix update
Note
1.198.2. RHBA-2010:0267: bug fix update
1.199. system-config-securitylevel
1.199.1. RHBA-2009:1656: bug fix update
Note
1.200. system-config-services
1.200.1. RHBA-2010:0275: bug fix update
1.201. systemtap
1.201.1. RHBA-2010:0070: bug fix update
Note
1.201.2. RHSA-2010:0124: Important security update
Important
1.201.3. RHBA-2010:0308: bug fix and enhancement update
- The
systemtap-testsuite
package contained test cases that were incorrectly not configured as 'executable' (systemtap.base/bz10078.stp
,buildko/two.stp
, andbuildok/thirty.stp
). Any test runs involving these cases failed unexpectedly. This release fixes the permissions for all test cases; it also fixes minor test case issues relating to an incorrect header file reference insystemtap.base/sdt.exp
, an incorrect execution sequence insystemtap.base/labels.exp
, and an incorrect reference to a missing script insystemtap.base/crash.exp
. (BZ#506959, BZ#559643, and BZ#513654) - This update also fixes several typographical errors in the
man
pages ofstap-server
andstap-client
. (BZ#516691) - Using the
task_pid()
function in a SystemTap script while thekernel-debuginfo
package was not installed could incorrectly result in a semantic error. This update applies an upstream patch to thetask.stp
tapset, which fixes the issue. (BZ#519314) - This release also includes sample scripts for probing kernel tracepoints, namely:
memory/mmanonpage.stp
memory/mmfilepage.stp
memory/mmreclaim.stp
memory/mmwriteback.stp
network/dropwatch.stp
process/schedtimes.stp
- Killing concurrent
staprun
processes could result in a kernel panic. This was becauseruntime/procfs.c
only checked if/proc/systemtap
was being used before deleting it, resulting in a race condition that made it possible for/proc/systemtap
to be deleted while a module was still loaded inside. This update fixes the race condition by adding instructions to lock the transport directory and check for files under/proc/systemtap
before deleting it. (BZ#510282) - The
tcpmib.stp
andipmib.stp
tapsets have been updated to provide per-socket network statistics and dynamic TCP connection tracing. (BZ#512202) - SystemTap now supports signal-based log file switching. As such, the on-file flight recorder can easily backup its latest logs on-the-fly. (BZ#517091)
- Using
SIGKILL
on thestap
process will not terminate its child process,stapio
. As such, users may not be aware that a SystemTap module is still probing the system, which will result in performance degradation. This update adds a note inman stap
warning users of this behavior. (BZ#523356) - Previous updates to SystemTap changed the order of parameters in the output of
stap
. This could cause problems in third-party tools that use SystemTap to probe kernel functions. This update reverts the order of parameters to its original sequence, which is also consistent with their order in the kernel source code. (BZ#560890) - The
sys32_pipe
function was removed in updated kernels, but the system call tapsets for the x86_64 kernel still contained an alias that used this function. As a result, using the probesyscall.*
resulted in a semantic error. With this release, the system call tapsets for the x86_64 kernel make thesyscall.pipe
probe alias (which usessys32_pipe
) optional, thereby avoiding the error. (BZ#563114) - The unprivileged user mode in this release is stricter, carefully restricting the types of probes an allowed for unprivileged users. In addition, unprivileged user mode also features clearer diagnostic messages whenever users attempt to use restricted probes. (BZ#564443)
- It was possible to call the module shutdown code while a start-up was in progress; this could leave some kernel callbacks registered after the module has unloaded. As such, running multiple SystemTap scripts could crash the system. This update adds mutual exclusions to both shutdown and startup codes, thereby preventing a possible crash. (BZ#521610)
- The
literal_addr_to_sym_addr()
function did not correctly compute for marker addresses. As such, markers became inaccessible after runningprelink
; this prevented scripts that used markers from compiling. This release fixes theliteral_addr_to_sym_addr()
, ensuring that marker addresses are accessible after runningprelink
. (BZ#564445) - Updates to GCC changed the format of variable locations it provided during compile time. However, the code used by SystemTap to process variable locations (in
loc2c.c
) was not updated accordingly to understand this new format. This could prevent some variables from initializing properly. With this release, theloc2c.c
file is updated to correctly process the new format used by GCC for variable locations. (BZ#536807)
1.202. tar
1.202.1. RHSA-2010:0141: Moderate security update
Important
1.202.2. RHBA-2010:0224: bug fix and enhancement update
1.203. taskjuggler
1.203.1. RHBA-2009:1576: bug fix update
Note
1.204. tcpdump
1.204.1. RHBA-2009:1605: bug fix update
Note
1.205. tcsh
1.205.1. RHBA-2009:1494: bug fix update
Note
1.205.2. RHBA-2010:0027: bug fix update
Note
1.205.3. RHBA-2010:0190: bug fix update
1.206. tog-pegasus
1.206.1. RHEA-2010:0233: enhancement update
1.207. util-linux
1.207.1. RHBA-2010:0052: bug fix update
Note
1.208. valgrind
1.208.1. RHBA-2010:0272: bug fix and enhancement update
1.209. vconfig
1.209.1. RHBA-2009:1573: bug fix update
Note
1.210. vino
1.210.1. RHBA-2009:1590: bug fix update
Note
1.211. virt-manager
1.211.1. RHBA-2010:0281: bug fix update
1.212. vixie-cron
1.212.1. RHBA-2009:1684: bug fix update
Note
1.213. vsftpd
1.213.1. RHBA-2009:1664: bug fix update
Note
1.214. wdaemon
1.214.1. RHEA-2010:0326: enhancement update
1.215. wget
1.215.1. RHSA-2009:1549: Moderate security update
Important
1.216. wpa_supplicant
1.216.1. RHBA-2010:0235: bug fix and enhancement update
1.217. xen
1.217.1. RHBA-2009:1514: bug fix update
Note
1.217.2. RHBA-2010:0010: bug fix update
Note
1.217.3. RHSA-2009:1472: Moderate security and bug fix update
Important
1.217.4. RHBA-2010:0294: bug fix and enhancement update
xen
packages contain tools for managing the virtual machine monitor in Red Hat Enterprise Linux Virtualization.
- Cause: Fully-virtualized Fedora 10 and newer guests would freeze during the boot sequence. The guest would repeatedly receive an error similar to the following error:
ata2.00: configured for MWDMA2 ata2: EH complete ata2.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x6 frozen ata2.00: cmd a0/00:00:00:00:00/00:00:00:00:00/a0 tag 0 cdb 1e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 res 41/20:03:00:00:00/00:00:00:00:00/a0 Emask 0x3 (HSM violation) ata2.00: status: { DRDY ERR } ata2: soft resetting link
The updated packages resolve this issue by fixing the virtualized ATA driver. The updated packages cause the following issue on the guest:ata2.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x6 frozen ata2.00: BMDMA stat 0x5 ata2.00: cmd a0/01:00:00:80:00/00:00:00:00:00/a0 tag 0 dma 16512 in ata2.00: status: { DRDY DRQ } ata2: soft resetting link ata2.00: configured for MWDMA2 ata2: EH complete
After this error the guest should successfully boot. (BZ#480317) - The Xen daemon would hang if a user attempted to shut down or save a paused guest. Guests cannot be saved or shut down if the guest is in a paused state as those operations can only be conducted on running guests. The updated Xen daemon will no longer hang but the user is presented with the following warning:
Error: Can't shutdown/save the domain since the domain is paused; unpaused it first if you want to shutdown/save
To shut down or save a guest in a paused state, the guest must first be unpaused by the user. (BZ#504910) - Sufficient memory was not reserved for fully virtualized guests when creating new guests. Memory listed as available by the
xm info
command could not be fully allocated to the guest. When attempting create a fully virtualized guest with more than or equal to the maximum available memory value, the following error message would appear:Error: (1, 'Internal error', 'Could not allocate memory for HVM guest.\n (16 = Device or resource busy)')
This issue has been resolved by improving the memory balloon driver to correctly allocate memory for fully virtualized guests and fully virtualized guests using the Intel VT-d extensions for PCI passthrough. (BZ#512041) - An error message appeared when attempting to detach a PCI device from a para-virtualized guest. The error is corrected in the updated packages. PCI passthrough is only supported by Xen full virtualization and not by para-virtualization. (BZ#512307)
- Scheduling was reset if a guest was saved and restored. Scheduling data is now preserved when a guest is saved and restored. (BZ#513211)
- A race condition between the
xend
daemon and the hotplug scripts caused a recently rebooted guest to disappear from thexm list
command output. The race condition is fixed and guests will now always appear in thexm list
command output after the guest is rebooted. (BZ#513604) - The
xm pci-list
command would fail due to an unhandled error in the output parsing functions for para-virtualized guests. The output is now handled correctly by thexm pci-list
command which resolves this issue in the updated packages. (BZ#514025) - An uninformative error message appeared when the
xm pci-list-assignable-devices
command was executed. Thepciback
kernel module must be loaded before executing thexm pci-list-assignable-devices
command. The updated package provides an error that informs the user the module is not loaded. (BZ#514448) - A race condition rarely occurred when a para-virtualized guest was rebooted. When the race condition occured it caused para-virtualized guests to stop or crash after rebooting. The race condition no longer occurs in the updated packages and para-virtualized guests should always run after rebooting. (BZ#518104)
- The python environment has been changed to explicitly use the system python. This allows ysers to install other versions of python for testing. (BZ#521333)
- Fixed a regression which prevented para-virtualized guests from being started with attached PCI devices. PCI passthrough now works with para-virtualized guests. (BZ#521346)
- Using the value
rename-restart
for theon_reboot
parameter caused guests to not start when the guest was rebooted. Usingrename-restart
now causes guests to start successfully after a reboot with a different name. (BZ#521799) - Simultaneous migrations from two hosts to a third host and two hosts simultaneously swapping guests between them would fail. The updated packages fix this issue and simultaneous migrations now work between multiple hosts. (BZ#522850)
- Memory leaks in the
libxc
and thelibxenstore
python binding libraries caused increasing memory usage over time. The memory leaks in thelibxc
and thelibxenstore
libraries are fixed in the updated package and the libraries memory usage should remain steady. (BZ#524308) - A guest name conflict caused a running guest to appear shut down after restarting the guest. This issue is resolved in the updated package and running guest do not erroneously report that they are shut down. (BZ#529880)
- The
xm dump-core
command could not dump memory while a guest is running. The memory dump functionality has been improved, however, there are still issues with generating live dumps. The guest core dump image may be in an inconsistent state if the guest is under load. Users are now warned about this issue. (BZ#382591)
- PCI device hotplugging works in the updated packages. This feature is supported by the libvirt and virt-manager tools.(BZ#512315)
- The
xendomains
service now has less confusing and better formatted output. (BZ#251666) - Support for the
maxvcpus
parameter for Xen configuration files. Themaxvcpus
parameter sets a maximum number of VCPUs available that is separate from the initial VCPUs assigned to the guest. (BZ#453042) - The SMBIOS device, the BIOS device for virtualized guests, now presents the device manufacturer as "Red Hat" and the product family as "Red Hat Enterprise Linux". (BZ#499453)
- SCSI emulated devices were not supported in prior versions. Emulated SCSI devices are now supported. (BZ#515757)
- Support for assigning more than 12 SR-IOV Virtual Functions (VFs) to a single fully virtualized Xen guest. (BZ#511403)
- Support for BZIP2 and LZMA compressed kernels for para-virtualized guests. (BZ#517049)
- PCIe switches allow peer to peer transactions that are routed by the switch and could bypass the Intel VT-d translation hardware, potentially causing unexpected behavior in the system. Access Control Services (ACS) allows the system to force the PCIe switch to route all traffic upstream so that the VT-d hardware can validate all transactions. The updated package prevents assigning PCI devices below a non-ACS PCIe switch. (BZ#523819)
- Support for using the EXT4 file system for a boot partition for para-virtualized guests. (BZ#524611)
- SMBIOS now complies with the Microsoft Server Virtualization Validation Program (SVVP). (BZ#540161)
- Xen now automatically pins guests to a smallest possible number of NUMA nodes. This provides better performance on NUMA based systems. (BZ#543199)
1.218. xerces-j2
1.218.1. RHSA-2009:1615: Moderate security update
Important
1.219. xmlsec1
1.219.1. RHSA-2009:1428: Moderate security update
Important
1.220. xorg-x11-drivers
1.220.1. RHEA-2010:0323: enhancement update
1.221. xorg-x11-drv-ast
1.221.1. RHEA-2010:0202: enhancement update
1.222. xorg-x11-drv-evdev
1.222.1. RHBA-2010:0246: bug fix update
1.223. xorg-x11-drv-fbdev
1.223.1. RHBA-2010:0203: bug fix and enhancement update
1.224. xorg-x11-drv-i810
1.224.1. RHBA-2010:0262: bug fix and enhancement update
1.225. xorg-x11-drv-mga
1.225.1. RHBA-2010:0324: bug fix update
1.226. xorg-x11-drv-nv
1.226.1. RHBA-2010:0204: bug fix and enhancement update
1.227. xorg-x11-drv-qxl
1.227.1. RHBA-2010:0188: bug fix update
1.228. xorg-x11-drv-vesa
1.228.1. RHBA-2010:0312: bug fix update
1.229. xorg-x11-server
1.229.1. RHBA-2009:1691: bug fix update
Note
1.229.2. RHBA-2010:0259: bug fix update
1.230. xorg-x11-xdm
1.230.1. RHBA-2009:1653: bug fix update
Note
1.231. xterm
1.231.1. RHBA-2009:1611: bug fix update
Note
1.232. yaboot
1.232.1. RHBA-2010:0316: bug fix and enhancement update
1.233. yp-tools
1.233.1. RHBA-2009:1609: bug fix update
Note
1.234. yum
1.234.1. RHBA-2010:0254: bug fix update
1.235. yum-rhn-plugin
1.235.1. RHBA-2010:0269: bug fix and enhancement update
Chapter 2. New Packages
2.1. RHEA-2010:0305: freeradius2
2.2. RHEA-2010:0240: gpxe
2.3. RHEA-2010:0199: gsl
2.4. RHEA-2010:0217: iwl1000-firmware
2.5. RHEA-2010:0220: iwl6000-firmware
2.6. RHEA-2010:0276: postgresql84
2.7. RHEA-2010:0268: python-dmidecode
2.8. RHEA-2010:0249: tunctl
2.9. RHEA-2010:0189: xz
Chapter 3. Technology Previews
- DFS
- Starting with Red Hat Enterprise Linux 5.3, CIFS supports Distributed File System (DFS) as a Technology Preview.
- Brocade BFA Fibre-Channel/FCoE driver
- the
bfa
driver for Brocade Fibre Channel Host Bus adapters has been added to Red Hat Enterprise Linux 5.5 as a Technology Preview. BZ#475695 - ext4
- The latest generation of the ext filesystem,
ext4
, is available in this release as a Technology Preview.Ext4
is an incremental improvement on theext3
file system developed by Red Hat and the Linux community. The release name of the file system for the Technology Preview isext4dev
.The file system is provided by theext4dev.ko
kernel module, and a newe4fsprogs
package, which contains updated versions of the familiar e2fsprogs administrative tools for use with ext4. To use, installe4fsprogs
and then use commands likemkfs.ext4dev
from the e4fsprogs program to create an ext4-base file system. When referring to the filesystem on a mount commandline or fstab file, use the filesystem nameext4dev
. - FreeIPMI
- FreeIPMI is now included in this update as a Technology Preview. FreeIPMI is a collection of Intelligent Platform Management IPMI system software. It provides in-band and out-of-band software, along with a development library conforming to the Intelligent Platform Management Interface (IPMI v1.5 and v2.0) standards.For more information about FreeIPMI, refer to http://www.gnu.org/software/freeipmi/
- TrouSerS and tpm-tools
- TrouSerS and
tpm-tools
are included in this release to enable use of Trusted Platform Module (TPM) hardware.TPM hardware features include (among others):- Creation, storage, and use of RSA keys securely (without being exposed in memory)
- Verification of a platform's software state using cryptographic hashes
TrouSerS is an implementation of the Trusted Computing Group's Software Stack (TSS) specification. You can use TrouSerS to write applications that make use of TPM hardware.tpm-tools
is a suite of tools used to manage and utilize TPM hardware.For more information about TrouSerS, refer to http://trousers.sourceforge.net/. - eCryptfs
- eCryptfs is a stacked cryptographic file system for Linux. It mounts on individual directories in existing mounted lower file systems such as EXT3; there is no need to change existing partitions or file systems in order to start using eCryptfs.With this release, eCryptfs has been re-based to upstream version 56, which provides several bug fixes and enhancements. In addition, this update provides a graphical program to help configure eCryptfs (
ecryptfs-mount-helper-gui
).This update also changes the syntax of certain eCryptfs mount options. If you choose to update to this version of eCryptfs, you should update any affected mount scripts and/etc/fstab
entries. For information about these changes, refer toman ecryptfs
.The following caveats apply to this release of eCryptfs:- Note that the eCryptfs file system will only work properly if the encrypted file system is mounted once over the underlying directory of the same name. For example:
mount -t ecryptfs /mnt/secret /mnt/secret
The secured portion of the file system should not be exposed, i.e. it should not be mounted to other mount points, bind mounts, and the like. - eCryptfs mounts on networked file systems (e.g. NFS, Samba) will not work properly.
- This version of the eCryptfs kernel driver requires updated userspace, which is provided by
ecryptfs-utils-56-4.el5
or newer.
For more information about eCryptfs, refer to http://ecryptfs.sf.net. You can also refer to http://ecryptfs.sourceforge.net/README and http://ecryptfs.sourceforge.net/ecryptfs-faq.html for basic setup information. - Stateless Linux
- Stateless Linux, included as a Technology Preview, is a new way of thinking about how a system should be run and managed, designed to simplify provisioning and management of large numbers of systems by making them easily replaceable. This is accomplished primarily by establishing prepared system images which get replicated and managed across a large number of stateless systems, running the operating system in a read-only manner (refer to
/etc/sysconfig/readonly-root
for more details).In its current state of development, the Stateless features are subsets of the intended goals. As such, the capability remains as Technology Preview.Red Hat recommends that those interested in testing stateless code join the stateless-list@redhat.com mailing list.The enabling infrastructure pieces for Stateless Linux were originally introduced in Red Hat Enterprise Linux 5. - AIGLX
- AIGLX is a Technology Preview feature of the otherwise fully supported X server. It aims to enable GL-accelerated effects on a standard desktop. The project consists of the following:
- A lightly modified X server.
- An updated Mesa package that adds new protocol support.
By installing these components, you can have GL-accelerated effects on your desktop with very few changes, as well as the ability to enable and disable them at will without replacing your X server. AIGLX also enables remote GLX applications to take advantage of hardware GLX acceleration. - FireWire
- The
firewire-sbp2
module is still included in this update as a Technology Preview. This module enables connectivity with FireWire storage devices and scanners.At present, FireWire does not support the following:- IPv4
- pcilynx host controllers
- multi-LUN storage devices
- non-exclusive access to storage devices
In addition, the following issues still exist in FireWire:- a memory leak in the
SBP2
driver may cause the machine to become unresponsive. - a code in this version does not work properly in big-endian machines. This could lead to unexpected behavior in PowerPC.
- ktune
- This release includes
ktune
(from thektune
package), a service that sets several kernel tuning parameters to values suitable for specific system profiles. Currently,ktune
only provides a profile for large-memory systems running disk-intensive and network-intensive applications.The settings provides byktune
do not override those set in/etc/sysctl.conf
or through the kernel command line.ktune
may not be suitable on some systems and workloads; as such, you should test it comprehensively before deploying to production.You can disable any configuration set byktune
and revert to your normall settings by simply stopping thektune
service usingservice ktune stop
(as root). - SGPIO Support for dmraid
- Serial General Purpose Input Output (SGPIO) is an industry standard communication method used between a main board and a variety of internal and external hard disk drive bay enclosures. This method can be used to control LED lights on an enclosure through the AHCI driver interface.In this release, SGPIO support in dmraid is included as a technology preview. This will allow dmraid to work properly with disk enclosures.
- GCC 4.4
- The Gnu Compiler Collection version 4.4 (GCC4.4) is now included in this release as a Technology Preview. This collection of compilers include C, C++, and Fortran compilers along with support libraries.Note that in the
gcc44
packages, the default for thegnu89-inline
option has been changed to-fgnu89-inline
, whereas upstream and future updates of Red Hat Enterprise Linux 5 will default to-fno-gnu89-inline
. This is necessary because many headers shipped as part of Red Hat Enterprise Linux 5 expect GNU in-line semantics instead of ISO C99 semantics. These headers have not been adjusted to request GNU in-line semantics through attributes. - Kernel Tracepoint Facility
- In this update, a new kernel marker/tracepoint facility has been implemented as a Technology Preview. This interface adds static probe points into the kernel, for use with tools such as SystemTap.
- Device Failure Monitoring of RAID sets
- Device Failure Monitoring, using the tools dmraid and dmevent_tool, is included in Red Hat Enterprise Linux 5.5 as a Technology Preview. This provides the ability to watch and report device failures on component devices of RAID sets.
- Software based Fibre Channel over Ethernet (FCoE)
- The Fibre Channel over Ethernet (FCoE) driver (fcoe.ko), along with libfc, provides the ability to run FCoE over a standard Ethernet card. This capability is provided as a technical preview in Red Hat Enterprise Linux 5.5.To enable this feature, you must login by writing the network interface name to the
/sys/module/fcoe/parameters/create
file, for example:echo eth6 > /sys/module/fcoe/parameters/create
To logout, write the network interface name to the/sys/module/fcoe/parameters/destroy
file, for example:echo eth6 > /sys/module/fcoe/parameters/destroy
For further information on software based FCoE refer to: http://www.open-fcoe.org/openfc/wiki/index.php/FCoE_Initiator_Quickstart.Red Hat Enterprise Linux 5.5 provides full support for FCoE on three specialized hardware implementations. These are: Ciscofnic
driver, the Emulexlpfc
driver, and the Qlogicqla2xx
driver. - iSER Support
- iSER support, allowing for block storage transfer across a network, has been added to the
scsi-target-utils
package as a Technology Preview. In this release, single portal and multiple portals on different subnets are supported. There are known bugs when using multiple portals on the same subnet.To set up the iSER target component install the scsi-target-utils and libibverbs-devel RPM. The library package for the InfiniBand hardware that is being used is also required. For example: host channel adapters that use thecxgb3
driver thelibcxgb3
package is needed, and for host channel adapters using themthca
driver thelibmthca
package is needed.There is also a known issue relating to connection timeouts in some situations. Refer to Red Hat Bugzilla #470627 for more information on this issue. - iSER Support
- iSER support, allowing for block storage transfer across a network, has been added to the
scsi-target-utils
package as a Technology Preview. In this release, single portal and multiple portals on different subnets are supported. There are known bugs when using multiple portals on the same subnet.To set up the iSER target component install the scsi-target-utils and libibverbs-devel RPM. The library package for the InfiniBand hardware that is being used is also required. For example: host channel adapters that use thecxgb3
driver thelibcxgb3
package is needed, and for host channel adapters using themthca
driver thelibmthca
package is needed.There is also a known issue relating to connection timeouts in some situations. Refer to Red Hat Bugzilla #470627 for more information on this issue. - cman fence_virsh fence agent
- The fence_virsh fence agent is provided in this release of Red Hat Enterprise Linux as a Technology Preview. fence_virsh provides the ability for one guest (running as a domU) to fence another using the libvirt protocol. However, as fence_virsh is not integrated with cluster-suite it is not supported as a fence agent in that environment.
- glibc new MALLOC behaviour
- The upstream glibc has been changed recently to enable higher scalability across many sockets and cores. This is done by assigning threads their own memory pools and by avoiding locking in some situations. The amount of additional memory used for the memory pools (if any) can be controlled using the environment variables MALLOC_ARENA_TEST and MALLOC_ARENA_MAX.MALLOC_ARENA_TEST specifies that a test for the number of cores is performed once the number of memory pools reaches this value. MALLOC_ARENA_MAX sets the maximum number of memory pools used, regardless of the number of cores.The glibc in the Red Hat Enterprise Linux 5.5 release has this functionality integrated as a Technology Preview of the upstream malloc. To enable the per-thread memory pools the environment variable MALLOC_PER_THREAD needs to be set in the environment. This environment variable will become obsolete when this new malloc behaviour becomes default in future releases. Users experiencing contention for the malloc resources could try enabling this option.
Chapter 4. Capabilities and Limits
Note
Logical CPU is defined as the number of CPUs that are presented to the operating system by the hardware. Multi-core processors and hyperthreads increase the number of logical CPUs that are visible to the operating system.
Certified | |
---|---|
x86 | 32 |
Itanium2 | 256 |
AMD64/Intel64 | 64 |
Power | 128 |
System z | 64 (z10 EC) |
Certified | |
---|---|
x86 | 16GB |
Itanium2 | 2TB |
AMD64/Intel64 | 256GB |
Power | 512GB |
System z | 1.5TB (z10 EC) |
Chapter 5. Known Issues
5.1. anaconda
- anaconda sometimes crashes while attempting to install on a disk containing partitions or filesystems used by other operating systems. To workaround this issue, clear the existing partition table using the command:
clearpart --initlabel [disks]
BZ#530465 - Performing a System z installation when the install.img is located on direct access storage device (DASD) disk, will cause the installer to crash, returning a backtrace. anaconda is attempting to re-write (commit) all disk labels when partitioning is complete, but is failing because the partition is busy. To work around this issue, a non-DASD source should be used for install.img. BZ#455929
- When installing to an ext3 or ext4 file system, anaconda disables periodic filesystem checking. Unlike ext2, these filesystems are journaled, removing the need for a periodic filesystem check. In the rare cases where there is an error detected at runtime or an error while recovering the filesystem journal, the file system check will be run at boot time. (BZ#513480)
- If unmodified kickstart files from Red Hat Enterprise Linux 5.4 are used to install Red Hat Enterprise Linux 5.5, anaconda may crash and complain that the directory required to save the log files does not exist.(BZ#568861)
- Red Hat Enterprise Linux 5 does not support having a separate /var on a network filesystem (nfs, iscsi disk, nbd, etc.) This is because /var contains the utilities required to bring up the network, for example /var/lib/dhcp. However, you may have /var/spool, /var/www or the like on a separate network disk, just not the complete /var filesystem. BZ#485478
- When using rescue mode on an installation which uses iscsi drives which were manually configured during installation, the automatic mounting of the root filesystem will not work and you need to configure iscsi and mount the filesystems manually. This only applies to manual configured iscsi drives, iscsi drives which are automatically detected through ibft are fully supported in rescue mode.To rescue a system which has / on a non ibft configured iscsi drive, choose to skip the mounting of the root fs when asked and then follow the steps below.
$TARGET_IP: IP address of the iscsi target (drive) $TARGET_IQN: name of the iscsi target as printed by the discovery command $ROOT_DEV: devicenode (/dev/.....) where your root fs lives
- Define an initiator name.
$ mkdir /etc/iscsi $ cat << EOF>> /etc/iscsi/initiatorname.iscsi InitiatorName=iqn.1994-05.com.fedora:d62f2d7c09f EOF
- Start iscsid
$ iscsid
- Discover and login to target:
$ iscsiadm -m discovery -t st -p $TARGET_IP $ iscsiadm -m node -T $TARGET_IQN -p $TARGET_IP --login
- If the iSCSI LUN is part of a LVM Logical volume group
$ lvm vgscan $ lvm vgchange -ay
- Now mount your '/' partition
$ mount /dev/path/to/root /mnt/sysimage $ mount -t bind /dev /mnt/sysimage/dev $ mount -t proc proc /mnt/sysimage/proc $ mount -t sysfs sysfs /mnt/sysimage/sys
- Now you can chroot to the root fs of your installation if wanted
$ chroot /mnt/sysimage /bin/su -
- When installing KVM or Xen guests, always create a partition for the guest disk, or create an LVM volume. Guests should not be installed to block devices or raw disk devices. Anaconda includes disk label duplication avoidance code, but when installing within a VM, it has no visibility to the disk labels elsewhere on the host and cannot detect duplicates.If guest filesystems, especially the root filesystem, are directly visible to the host, a host OS reboot may inadvertantly parse the partition table and mount the guest filesystems. This can lead to highly undesirable outcomes. (BZ#518461)
- The minimum memory requirement when installing all Red Hat Enterprise Linux packages (i.e. '*' or '@everything' is listed in the %packages section of the kickstart file) on a fully virtualized Itanium guest is 768MB. After installation, the memory allocated to the guest can be lowered to the desired amount. (BZ#507891)
- Upgrading a system using Anaconda is not possible if the system is installed on disks attached using zFCP or iSCSI (unless booted from the disk using a network adaptor with iBFT). Such disks are activated after Anaconda scans for upgradable installations and are not found. To update please use the Red Hat Network with the hosted Web user interface, a Red Hat Network Satellite, the local graphical Updater, or the yum command line. (BZ#494033)
- Anaconda's graphical installer fails to start at the default 800x600 resolution on systems utilizing Intel Graphics Device Next Generation (IGDNG) devices. To work around this issue, ensure anaconda uses a higher resolution by passing the parameters
resolution=1024x768
orresolution=1280x1024
" to the installer using the boot command line. - The NFS default for RHEL5 is "locking". Therefore, to mount nfs shares from the %post section of anaconda, use the
mount -o nolock,udp
command to start the locking daemon before using nfs to mount shares. (BZ#426053) - If you are using the Virtualized kernel when upgrading from Red Hat Enterprise Linux 5.0 to a later 5.x release, you must reboot after completing the upgrade. You should then boot the system using the updated Virtualized kernel.The hypervisor ABI changes in an incompatible way between Red Hat Enterprise Linux 5 and 5.1. If you do not boot the system after upgrading from RHEL 5.0 using the updated Virtualized kernel, the upgraded Virtualization RPMs will not match the running kernel. (BZ#251669)
- When upgrading from Red Hat Enterprise Linux 4.6 to Red Hat Enterprise Linux 5.1 or later, gcc4 may cause the upgrade to fail. As such, you should manually remove the gcc4 package before upgrading. (BZ#432773)
- When provisioning guests during installation, the RHN tools for guests option will not be available. When this occurs, the system will require an additional entitlement, separate from the entitlement used by
dom0
.To prevent the consumption of additional entitlements for guests, install therhn-virtualization-common
package manually before attempting to register the system to Red Hat Network. (BZ#431648) - When installing Red Hat Enterprise Linux 5 on a guest, the guest is configured to explicitly use a temporary installation kernel provided by
dom0
. Once installation finishes, it can then use its own bootloader. However, this can only be achieved by forcing the guest's first reboot to be a shutdown.As such, when the Reboot button appears at the end of the guest installation, clicking it shuts down the guest, but does not reboot it. This is an expected behavior.Note that when you boot the guest after this it will then use its own bootloader. (BZ#328471) - Using the
swap --grow
parameter in a kickstart file without setting the--maxsize
parameter at the same time makes anaconda impose a restriction on the maximum size of the swap partition. It does not allow it to grow to fill the device.For systems with less than 2GB of physical memory, the imposed limit is twice the amount of physical memory. For systems with more than 2GB, the imposed limit is the size of physical memory plus 2GB. (BZ#462734) - Existing encrypted block devices that contain
vfat
file systems will appear as typeforeign
in the partitioning interface; as such, these devices will not be mounted automatically during system boot. To ensure that such devices are mounted automatically, add an appropriate entry for them to/etc/fstab
. For details on how to do so, refer toman fstab
. (BZ#467202) - when using anaconda's automatic partitioning on an IBM System p partition with multiple harddisks containing different Linux distributions, the anaconda installer may overwrite the bootloaders of the other Linux installations although their harddisks have been unchecked. To work around this, choose manual partitioning during the installation process.(BZ#519795)
- The minimum RAM required to install Red Hat Enterprise Linux 5.2 is 1GB; the recommended RAM is 2GB. If a machine has less than 1GB RAM, the installation process may hang.Further, PowerPC-based machines that have only 1GB of RAM experience significant performance issues under certain RAM-intensive workloads. For a Red Hat Enterprise Linux 5.2 system to perform RAM-intensive processes optimally, 4GB of RAM is recommended. This ensures the system has the same number of physical pages as was available on PowerPC machines with 512MB of RAM running Red Hat Enterprise Linux 4.5 or earlier. (BZ#209165)
- Installation on a machine with existing Linux or non-Linux filesystems on DASD block devices may cause the installer to halt. If this happens, it is necessary to clear out all existing partitions on the DASD devices you want to use and restart the installer. (BZ#289631)
- If your system only has 512MB of RAM, attempting to install Red Hat Enterprise Linux 5.4 may fail. To prevent this, perform a base installation first and install all other packages after the installation finishes. (BZ#435271)
5.2. cmirror
- Due to limitations in the cluster infrastructure, cluster mirrors greater than 1.5TB cannot be created with the default region size. If larger mirrors are required, the region size should be increased from its default (512kB), for example:
# -R <region_size_in_MiB> lvcreate -m1 -L 2T -R 2 -n mirror vol_group
Failure to increase the region size will result in the LVM creation process hanging and may cause other LVM commands to hang. (BZ#514814)
5.3. compiz
- Running
rpmbuild
on thecompiz
source RPM will fail if any KDE orqt
development packages (for example,qt-devel
) are installed. This is caused by a bug in thecompiz
configuration script.To work around this, remove any KDE orqt
development packages before attempting to build thecompiz
package from its source RPM. (BZ#444609)
5.4. ctdb
- When installing ctdb, the tdb-tools package needs to be installed manually. This dependency issues will be addressed in a future release. (BZ#526479)
5.5. device-mapper-multipath
- When using
dm-multipath
, iffeatures "1 queue_if_no_path"
is specified in/etc/multipath.conf
then any process that issues I/O will hang until one or more paths are restored.To avoid this, setno_path_retry [N]
in/etc/multipath.conf
(where[N]
is the number of times the system should retry a path). When you do, remove thefeatures "1 queue_if_no_path"
option from/etc/multipath.conf
as well.If you need to use"1 queue_if_no_path"
and experience the issue noted here, usedmsetup
to edit the policy at runtime for a particular LUN (i.e. for which all the paths are unavailable).To illustrate: rundmsetup message [device] 0 "fail_if_no_path"
, where[device]
is the multipath device name (e.g.mpath2
; do not specify the path) for which you want to change the policy from"queue_if_no_path"
to"fail_if_no_path"
. (BZ#419581) - When a LUN is deleted on a configured storage system, the change is not reflected on the host. In such cases,
lvm
commands will hang indefinitely whendm-multipath
is used, as the LUN has now become stale.To work around this, delete all device andmpath
link entries in/etc/lvm/.cache
specific to the stale LUN.To find out what these entries are, run the following command:ls -l /dev/mpath | grep [stale LUN]
For example, if[stale LUN]
is 3600d0230003414f30000203a7bc41a00, the following results may appear:lrwxrwxrwx 1 root root 7 Aug 2 10:33 /3600d0230003414f30000203a7bc41a00 -> ../dm-4 lrwxrwxrwx 1 root root 7 Aug 2 10:33 /3600d0230003414f30000203a7bc41a00p1 -> ../dm-5
This means that 3600d0230003414f30000203a7bc41a00 is mapped to twompath
links:dm-4
anddm-5
.As such, the following lines should be deleted from/etc/lvm/.cache
:/dev/dm-4 /dev/dm-5 /dev/mapper/3600d0230003414f30000203a7bc41a00 /dev/mapper/3600d0230003414f30000203a7bc41a00p1 /dev/mpath/3600d0230003414f30000203a7bc41a00 /dev/mpath/3600d0230003414f30000203a7bc41a00p1
- Running the
multipath
command with the-ll
option can cause the command to hang if one of the paths is on a blocking device. Note that the driver does not fail a request after some time if the device does not respond.This is caused by the cleanup code, which waits until the path checker request either completes or fails. To display the currentmultipath
state without hanging the command, usemultipath -l
instead. (BZ#214838)
5.6. dmraid
- The
/etc/cron.d/dmeventd-logwatch
crontab file does not specify the user that the logwatch process should be executed by. To work around this issue, the functional portion of this crontab must be changed to:* * * * * root /usr/sbin/logwatch --service dmeventd --range today --detail med
(BZ#516892) - The installation procedure stores the name of RAID volume and partition in an initscript. When the system boots, dmraid enables the RAID partition (that are named implicitly in the init script. This action functions until the volume and partition names are changed. In these cases, the system may not boot, and the user is given an option to reboot system and start the rebuild procedure in OROM.OROM changes the name of RAID volume (as seen by dmraid) and dmraid cannot recognize the array identified by previous name stored in initscript. The system no longer boots from RAID partition, since it is not enabled by dmraid. In case of RAID 1 (mirror), the system may be booted from disk that is part of RAID volume. However, dmraid does not allow to active or rebuild the volume which component in mounted.To work around this issue, do not rebuild the RAID array in OROM. Start the rebuild procedure by dmraid in the operating system, which performs all the steps of rebuilding. dmraid does not change the RAID volume name, therefore the system can be booted from RAID array without the need of init script modification.To modify init script after OROM has started rebuild:
- Start the system in rescue mode from the installation disk, skip finding and mounting previous installations.
- At the command line, find and enable the raid volume that is to be booted from (the RAID volume and partitions will be activated)
dmraid -ay isw_effjffhbi_Volume0
- Mount the root partition:
mkdir /tmp/raid mount /dev/mapper/isw_effjffhbi_Volume0p1 /tmp/raid
- Decompress the boot image:
mkdir /tmp/raid/tmp/image cd /tmp/raid/tmp/image gzip -cd /tmp/raid/boot/inird-2.6.18-155.el5.img | cpio -imd –quiet
- Change the names of the RAID volumes in the initscript to use the new names of RAID:
dmraid –ay –I –p –rm_partition “/dev/mapper/isw_effjffhbi_Volume0” kpartx –a –p p “/dev/mapper/isw_effjffhbi_Volume0” mkrtootdev –t ext3 –o defaults,ro /dev/mapper/isw_effjffhbi_Volume0p1
- compress and copy initrd image with the modified init script to the boot directory
cd /tmp/raid/tmp/image find . –print | cpio –c –o | gzip -9 > /tmp/raid/boot/inird-2.6.18-155.el5.img
- unmount the raid volume and reboot the system:
umount /dev/mapper/isw_effjffhbi_Volume0p1 dmraid -an
5.7. dogtail
- Attempting to run
sniff
may result in an error. This is because some required packages are not installed withdogtail
. (BZ#435702)To prevent this from occurring, install the following packages manually:- librsvg2
- ghostscript-fonts
- pygtk2-libglade
5.8. firstboot
- The IBM System z does not provide a traditional Unix-style physical console. As such, Red Hat Enterprise Linux 5.2 for the IBM System z does not support the firstboot functionality during initial program load.To properly initialize setup for Red Hat Enterprise Linux 5.2 on the IBM System z, run the following commands after installation:
/usr/bin/setup
— provided by thesetuptool
package./usr/bin/rhn_register
— provided by therhn-setup
package.
5.9. gfs2-utils
fsck.gfs2: invalid option -- a
". To work around this issue:
- Enter the root password when prompted
- Mount the root file system manually:
mount -o remount,rw /dev/VolGroup00/LogVol00 /
- Edit the /etc/fstab file from:
/dev/VolGroup00/LogVol00 / gfs2 defaults 1 1
to/dev/VolGroup00/LogVol00 / gfs2 defaults 1 0
- Reboot the system.
Important
5.10. gnome-volume-manager
- Removable storage devices (such as CDs and DVDs) do not automatically mount when you are logged in as root. As such, you will need to manually mount the device through the graphical file manager. (BZ#209362)Alternatively, you can run the following command to mount a device to
/media
:mount /dev/[device name] /media
5.11. initscripts
- On systems with more than two encrypted block devices, anaconda has a option to provide a global passphrase. The init scripts, however, do not support this feature. When booting the system, entering each individual passphrase for all encrypted devices will be required. (BZ#464895)
- Boot-time logging to
/var/log/boot.log
is not available in Red Hat Enterprise Linux 5.3. (BZ#223446, BZ#210136)
5.12. iscsi-initiator-utils
- iSCSI iface binding is not supported during install or boot. The initiator only supports the ability to log into target portals using the default behavior where the initiator uses the network routing table to decide which NIC to use.To work around this limitation, booting or installation can be done using the default behavior. After the iscsi and iscsid services start, the iscsi service can log into the target using iSCSI iface binding. This however, will leave an extra session using the default behavior, and it has to be manually logged out using the following command:
iscsiadm -m node -T target -p ip -I default -u
(BZ#500273)
5.13. kernel-xen
- Migrating a guest that is using the xen-vnif drivers as a fully virtualized guest under Xen will produce a deadlock in the XenBus. This bug, however, does not present if the IOEMU driver is used or if the system has no active network interface. (BZ#555910)
- On Intel platforms with VT-d enabled, the frame buffer of a fully-virtualized Xen guest with 4GB or more RAM might not be displayed correctly. To work around this issue, create the guest with additional memory (e.g. 2GB more than desired), close the guest, then recreate the guest with the desired amount of RAM. (BZ#511398)
- Xen guests will not boot using configurations that bind multiple virtualized CPUs to a single CPU. (BZ#570056)
- The Xen hypervisor will not start when booting from an iSCSI disk. To work around this issue, disable the Xen hypervisor's EDD feature with the "edd=off" kernel parameter. For example:
kernel /xen.gz edd=off
(BZ#568336) - Some BIOS implementations initialize interrupt remapping hardware in a way that Xen does not expect. Consequently, a system might hang during boot, returning the error message:
(XEN) [VT-D]intremap.c:73: remap_entry_to_ioapic_rte: index (74) is larger than remap table entry size (55)!
To work around this issue, disable the interrupt remapping feature in the BIOS and reboot the system. (BZ#563546) - blktap may not function as expected, resulting in slow disk I/O causing the guest to operate slowly also. To work around this issue guests should be installed using a physical disk (i.e. a real partition or a logical volume). (BZ#545692)
- On certain platforms, the mptsas driver may cause kernel warning messages such as the following to be displayed:
kernel unaligned access to 0xe0000034f327f0ff, ip=0xa0000002040c4870 kernel unaligned access to 0xe0000034f327cbff, ip=0xa0000002040c4870 kernel unaligned access to 0xe00000300c9581ff, ip=0xa0000002040c4870
These messages do not indicate a serious error. The data alignment issue will be fixed in a future release. BZ#570000 - When booting paravirtualized guests that support gigabyte page tables (i.e. a Fedora 11 guest) on Red Hat Enterprise Linux 5.4 Xen, the domain may fail to start if more than 2047MB of memory is configured for the domain. To work around this issue, pass the "
nogbpages
" parameter on the guest kernel command-line. (BZ#502826) - Boot parameters are required to enable SR/IOV Virtual Function devices. SR/IOV Virtual Function devices can only be accessed if the parameter pci_pt_e820_access=on is added to the boot stanza in the /boot/grub/grub.conf file. For example:
title Red Hat Enterprise Linux Server (2.6.18-152.el5xen) root (hd0,1) kernel /xen.gz-2.6.18-152.el5 com1=115200,8n1 console=com1 iommu=1 module /vmlinuz-2.6.18-152.el5xen ro root=LABEL=/ console=ttyS0,115200 pci_pt_e820_access=on
This enables the MMCONF access method for the PCI configuration space, a requirement for VF device support - When using Single Root I/O Virtualization (SR-IOV) devices under Xen, a single Hardware Virtual Machine (HVM) guest is limited to 12 Virtual Function (VF) assignments. (BZ#511403)
- When booting a fully virtualized Xen guest, the following message may be displayed on the guest console:
testing NMI watchdog ... <4> WARNING: CPU#0: NMI appears to be stuck (0->0)!
This issue is caused by an implementation issue with the Xen hypervisor and can be safely ignored. (BZ#500845) - Diskette drive media will not be accessible when using the virtualized kernel. To work around this, use a USB-attached diskette drive instead.Note that diskette drive media works well with other non-virtualized kernels. (BZ#401081)
- Formatting a disk when running Windows 2008 or Windows Vista as a guest can crash when the guest has been booted with multiple virtual CPUs. To work around this, boot the guest with a single virtual CPU when formatting. (BZ#441627)
- Fully virtualized guests cannot correct for time lost due to the domain being paused and unpaused. Being able to correctly track the time across pause and unpause events is one of the advantages of paravirtualized kernels. This issue is being addressed upstream with replaceable timers, so fully virtualized guests will have paravirtualized timers. Currently, this code is under development upstream and should be available in later versions of Red Hat Enterprise Linux. (BZ#422531)
- Upgrading a host (
dom0
) system to Red Hat Enterprise Linux 5.2 may render existing Red Hat Enterprise Linux 4.5 SMP paravirtualized guests unbootable. This is more likely to occur when the host system has more than 4GB of RAM.To work around this, boot each Red Hat Enterprise Linux 4.5 guest in single CPU mode and upgrade its kernel to the latest version (for Red Hat Enterprise Linux 4.5.z). (BZ#253087, BZ#251013)
- On some Itanium systems configured for console output to VGA, the
dom0
virtualized kernel may fail to boot. This is because the virtualized kernel failed to properly detect the default console device from the Extensible Firmware Interface (EFI) settings.When this occurs, add the boot parameterconsole=tty
to the kernel boot options in/boot/efi/elilo.conf
. (BZ#249076) - On some Itanium systems (such as the Hitachi Cold Fusion 3e), the serial port cannot be detected in
dom0
when VGA is enabled by the EFI Maintenance Manager. As such, you need to supply the following serial port information to thedom0
kernel:- Speed in bits/second
- Number of data bits
- Parity
io_base
address
These details must be specified in theappend=
line of thedom0
kernel in/boot/efi/elilo.conf
. For example:append="com1=19200,8n1,0x3f8 -- quiet rhgb console=tty0 console=ttyS0,19200n8"
In this example,com1
is the serial port,19200
is the speed (in bits/second),8n1
specifies the number of data bits/parity settings, and0x3f8
is theio_base
address. (BZ#433771) - Virtualization does not work on some architectures that use Non-Uniform Memory Access (NUMA). As such, installing the virtualized kernel on systems that use NUMA will result in a boot failure.Some installation numbers install the virtualized kernel by default. If you have such an installation number and your system uses NUMA and does not work with kernel-xen, deselect the Virtualization option during installation. (BZ#293071)
5.14. kernel
- Attempting to boot the x86 kernel on AMD Magny-Cours systems may result in a kernel panic. A fix will be made available in Red Hat Enterprise Linux 5.5 z-stream updates. To work around this issue, install the x86 variant of Red Hat Enterprise Linux 5.4 and upgrade to Red Hat Enterprise Linux 5.5.z. (BZ#575799)
- A kernel panic may be triggered by the lpfc driver when multiple Emulex OneConnect Universal Converged Network Adapter initiators are included in the same Storage Area Network (SAN) zone. Typically, this kernel panic will present after a cable is pulled or one of the systems is rebooted. To work around this issue, configure the SAN to use single initiator zoning. (BZ#574858)
- Systems containing AMD64 or Intel64 based hardware that use the x86 PAE kernel variant may fail to perform a core dump. AMD64 or Intel64 based hardware is able to handle more than 64GB of RAM, but the PAE kernel is strictly limited to 64GB. kexec-tools is aware of memory over the 64GB limit, but is unable to access it or produce a vmcore file. (BZ#559928)
- Hot-adding memory is not a supported action in Red Hat Enterprise Linux 5.5. However, with Nehalem-EX processors, hot-adding memory must be performed at the same time as hot-adding a CPU. Consequently, hot-adding a CPU is also not a supported action on Nehalem-EX processors. (BZ#515298)
- If a Huawei USB modem is unplugged from a system, the device may not be detected when it is attached again. To work around this issue, the usbserial and usb-storage driver modules need to be reloaded, allowing the system to detect the device. Alternatively, the if the system is rebooted, the modem will be detected also. (BZ#517454)
- Memory on-line is not currently supported with the Boxboro-EX platform. (BZ#515299)
- Unloading a PF (SR-IOV Physical function) driver from a host when a guest is using a VF (virtual function) from that device can cause a host crash. A PF driver for an SR-IOV device should not be unloaded until after all guest virtual machines with assigned VFs from that SR-IOV device have terminated. (BZ#514360)
- Under some circumstances, the sky2 driver may hang, returning the following error message:
sky2 eth<N>: receiver hang detected
Currently, the only work around to make the device online again is to reboot the system. This bug will be repaired in an upcoming update to Red Hat Enterprise Linux 5.4. (BZ#509891, BZ#517976) - Data corruption on NFS filesystems might be encountered on network adapters without support for error-correcting code (ECC) memory that also have TCP segmentation offloading (TSO) enabled in the driver. Note: data that might be corrupted by the sender still passes the checksum performed by the IP stack of the receiving machine A possible work around to this issue is to disable TSO on network adapters that do not support ECC memory. BZ#504811
- After installation, a System z machine with a large number of memory and CPUs (e.g. 16 CPU's and 200GB of memory) might may fail to IPL. To work around this issue, change the line
ramdisk=/boot/initrd-2.6.18-<kernel-version-number>.el5.img
toramdisk=/boot/initrd-2.6.18-<kernel-version-number>.el5.img,0x02000000
The commandzipl -V
should now show0x02000000
as the starting address for the inital RAM disk (initrd). Stop the logigal partiton (LPAR), and then manually increase the the storage size of the LPAR. - On certain hardware configurations the kernel may panic when the Broadcom iSCSI offload driver (
bnx2i.ko
andcnic.ko
) is loaded. To work around this do not manually load the bnx2i or cnic modules, and temporarily disable theiscsi
service from starting. To disable the iscsi service, runchkconfig --del iscsi chkconfig --del iscsid
On the first boot of your system, theiscsi
service may start automatically. To bypass this, during bootup, enter interactive start up and stop the iscsi service from starting. - In Red Hat Enterprise Linux 5, invoking the kernel system call "setpriority()" with a "which" parameter of type "PRIO_PROCESS" does not set the priority of child threads. (BZ#472251)
- Physical CPUs cannot be safely placed offline or online when the 'kvm_intel' or 'kvm_amd' module is loaded. This precludes physical CPU offline and online operations when KVM guests that utilize processor virtualization support are running. It also precludes physical CPU offline and online operations without KVM guests running when the 'kvm_intel' or 'kvm_amd' module is simply loaded and not being used.If the kmod-kvm package is installed, the 'kvm_intel' or 'kvm_amd' module automatically loads during boot on some systems. If a physical CPU is placed offline while the 'kvm_intel' or 'kvm_amd' module is loaded a subsequent attempt to online that CPU may fail with an I/O error.To work around this issue, unload the 'kvm_intel' or 'kvm_amd' before performing physical CPU hot-plug operations. It may be necessary to shut down KVM guests before the 'kvm_intel' or 'kvm_amd' will successfully unload.For example, to offline a physical CPU 6 on an Intel based system:
# rmmod kvm_intel # echo 0 > /sys/devices/system/cpu/cpu6/online # modprobe kvm_intel
- A change to the cciss driver in Red Hat Enterprise Linux 5.4 made it incompatible with the "echo disk > /sys/power/state" suspend-to-disk operation. Consequently, the system will not suspend properly, returning messages such as:
Stopping tasks: ====================================================================== stopping tasks timed out after 20 seconds (1 tasks remaining): cciss_scan00 Restarting tasks...<6> Strange, cciss_scan00 not stopped done
(BZ#513472) - The kernel is unable to properly detect whether there is media present in a CD-ROM drive during kickstart installs. The function to check the presence of media incorrectly interprets the "logical unit is becoming ready" sense, returning that the drive is ready when it is not. To work around this issue, wait several seconds between inserting a CD and asking the installer (anaconda) to refresh the CD. (BZ#510632)
- Applications attempting to
malloc
memory approximately larger than the size of the physical memory on the node on a NUMA system may hang or appear to stall. This issue may occur on a NUMA system where the remote memory distance, as defined in SLIT, is greater than 20 and RAM based filesystem liketmpfs
orramfs
is mounted.To work around this issue, unmount all RAM based filesystems (i.e. tmpfs or ramfs). If unmounting the RAM based filesystems is not possible, modify the application to allocate lesser memory. Finally, if modifying the application is not possible, disable NUMA memory reclaim by running:sysctl vm.zone_reclaim_mode=0
Important
Turning NUMA reclaim negatively effects the overall throughput of the system. - Configuring IRQ SMP affinity has no effect on some devices that use message signalled interrupts (MSI) with no MSI per-vector masking capability. Examples of such devices include Broadcom NetXtreme Ethernet devices that use the
bnx2
driver.If you need to configure IRQ affinity for such a device, disable MSI by creating a file in/etc/modprobe.d/
containing the following line:options bnx2 disable_msi=1
Alternatively, you can disable MSI completely using the kernel boot parameterpci=nomsi
. (BZ#432451) - The
smartctl
tool cannot properly read SMART parameters from SATA devices. (BZ#429606) - IBM T60 laptops will power off completely when suspended and plugged into a docking station. To avoid this, boot the system with the argument
acpi_sleep=s3_bios
. (BZ#439006) - The QLogic iSCSI Expansion Card for the IBM Bladecenter provides both ethernet and iSCSI functions. Some parts on the card are shared by both functions. However, the current
qla3xxx
andqla4xxx
drivers support ethernet and iSCSI functions individually. Both drivers do not support the use of ethernet and iSCSI functions simultaneously.Because of this limitation, successive resets (via consecutiveifdown
/ifup
commands) may hang the device. To avoid this, allow a 10-second interval after anifup
before issuing anifdown
. Also, allow the same 10-second interval after anifdown
before issuing anifup
. This interval allows ample time to stabilize and re-initialize all functions when anifup
is issued. (BZ#276891) - Laptops equipped with the Cisco Aironet MPI-350 wireless may hang trying to get a DHCP address during any network-based installation using the wired ethernet port.To work around this, use local media for your installation. Alternatively, you can disable the wireless card in the laptop BIOS prior to installation (you can re-enable the wireless card after completing the installation). (BZ#213262)
- Hardware testing for the Mellanox MT25204 has revealed that an internal error occurs under certain high-load conditions. When the
ib_mthca
driver reports a catastrophic error on this hardware, it is usually related to an insufficient completion queue depth relative to the number of outstanding work requests generated by the user application.Although the driver will reset the hardware and recover from such an event, all existing connections at the time of the error will be lost. This generally results in a segmentation fault in the user application. Further, ifopensm
is running at the time the error occurs, then you need to manually restart it in order to resume proper operation. (BZ#251934) - The IBM T41 laptop model does not enter Suspend Mode properly; as such, Suspend Mode will still consume battery life as normal. This is because Red Hat Enterprise Linux 5 does not yet include the
radeonfb
module.To work around this, add a script namedhal-system-power-suspend
to/usr/share/hal/scripts/
containing the following lines:chvt 1 radeontool light off radeontool dac off
This script will ensure that the IBM T41 laptop enters Suspend Mode properly. To ensure that the system resumes normal operations properly, add the scriptrestore-after-standby
to the same directory as well, containing the following lines:radeontool dac on radeontool light on chvt 7
- If the
edac
module is loaded, BIOS memory reporting will not work. This is because theedac
module clears the register that the BIOS uses for reporting memory errors.The current Red Hat Enterprise Linux Driver Update Model instructs the kernel to load all available modules (including theedac
module) by default. If you wish to ensure BIOS memory reporting on your system, you need to manually blacklist theedac
modules. To do so, add the following lines to/etc/modprobe.conf
:blacklist edac_mc blacklist i5000_edac blacklist i3000_edac blacklist e752x_edac
- Due to outstanding driver issues with hardware encryption acceleration, users of Intel WiFi Link 4965, 5100, 5150, 5300, and 5350 wireless cards are advised to disable hardware accelerated encryption using module parameters. Failure to do so may result in the inability to connect to Wired Equivalent Privacy (WEP) protected wireless networks after connecting to WiFi Protected Access (WPA) protected wireless networks.To do so, add the following options to
/etc/modprobe.conf
:alias wlan0 iwlagn options iwlagn swcrypto50=1 swcrypto=1
(where wlan0 is the default interface name of the first Intel WiFi Link device)
- The size of the PPC kernel image is too large for OpenFirmware to support. Consequently, network booting will fail, resulting in the following error message:
Please wait, loading kernel... /pci@8000000f8000000/ide@4,1/disk@0:2,vmlinux-anaconda: No such file or directory boot:
To work around this:- Boot to the OpenFirmware prompt, by pressing the '8' key when the IBM splash screen is displayed.
- Run the following command:
setenv real-base 2000000
- Boot into System Managment Services (SMS) with the command:
0> dev /packages/gui obe
5.15. kexec-tools
- Executing
kdump
on an IBM Bladecenter QS21 or QS22 configured with NFS root will fail. To avoid this, specify an NFS dump target in/etc/kdump.conf
. (BZ#368981) - Some
forcedeth
based devices may encounter difficulty accessing memory above 4GB during operation in akdump
kernel. To work around this issue, add the following line to the/etc/sysconfig/kdump
file:KDUMP_COMMANDLINE_APPEND="dma_64bit=0"
This work around prevents the forcedeth network driver from using high memory resources in the kdump kernel, allowing the network to function properly. - The system may not successfully reboot into a
kexec
/kdump
kernel if X is running and using a driver other than vesa. This problem only exists with ATI Rage XL graphics chipsets.If X is running on a system equipped with ATI Rage XL, ensure that it is using the vesa driver in order to successfully reboot into akexec
/kdump
kernel. (BZ#221656) - kdump now serializes drive creation registration with the rest of the kdump process. Consequently, kdump may hang waiting for IDE drives to be initialized. In these cases, it is recommended that IDE disks not be used with kdump. (BZ#473852)
- It is possible in rare circumstances, for
makedumpfile
to produce erroneous results but not have them reported. This is due to the fact thatmakedumpfile
processes its output data through a pipeline consisting of several stages. Ifmakedumpfile
fails, the other stages will still succeed, effectively masking the failure. Should a vmcore appear corrupt, and makedumpfile is in use, it is recommended that the core be recorded without makedumpfile and a bug be reported. (BZ#475487) - kdump now restarts when CPUs or DIMMs are hot-added to a system. If multiple items are added at the same time, several sequential restarts may be encountered. This behavior is intentional, as it minimizes the time-frame where a crash may occur while memory or processors are not being tracked by kdump. (BZ#474409)
- Some Itanium systems cannot properly produce console output from the
kexec
purgatory
code. This code contains instructions for backing up the first 640k of memory after a crash.Whilepurgatory
console output can be useful in diagnosing problems, it is not needed forkdump
to properly function. As such, if your Itanium system resets during akdump
operation, disable console output inpurgatory
by adding--noio
to theKEXEC_ARGS
variable in/etc/sysconfig/kdump
. (BZ#436426)
5.16. krb5
- The format of a stash file, while not architecture-specific, is endian-specific. Consequently, a stash file is not directly portable between big-endian and little-endian systems. When setting up a secondary KDC where the endianness differs from that of the master KDC, the stash file should be recreated by running '
kdb5_util create -s
' on the secondary and supplying the original master password. (BZ#514741)
5.17. kvm
- By default, KVM virtual machines created in Red Hat Enterprise Linux 5.5 have a virtual Realtek 8139 (rtl8139) network interface controller (NIC). The rtl8139 virtual NIC works fine in most environments, but may suffer from performance degradation issues on some networks for example, a 10 GigE (10 Gigabit Ethernet) network.One workaround for this issue is switch to a different type of virtual NIC, for example, Intel PRO/1000 (e1000) or virtio (a virtual I/O driver for Linux that can talk to the hypervisor).To switch to e1000:Alternatively, if you're having trouble installing the OS on the virtual machine because of the rtl8139 NIC (for example, because you're installing the OS over the network), you can create a virtual machine from scratch with an e1000 NIC. This method requires you to have at least one virtual machine already created (possibly installed from CD or DVD) to use as a template.
- Shutdown the guest OS
- Edit the guest OS definition with the command-line tool virsh:
virsh edit GUEST
- Locate the network interface section and add a model line as shown:
<interface type='network'> ... <model type='e1000' /> </interface>
- Save the changes and exit the text editor
- Restart the guest OS
- Create an XML template from an existing virtual machine:
virsh dumpxml GUEST > /tmp/guest.xml
- Copy and edit the XML file and update the unique fields: virtual machine name, UUID, disk image, MAC address, etc. NOTE: you can delete the UUID and MAC address lines and virsh will generate a UUID and MAC address.
cp /tmp/guest.xml /tmp/new-guest.xml vi /tmp/new-guest.xml
- Locate the network interface section and add a model line as shown:
<interface type='network'> ... <model type='e1000' /> </interface>
- Create the new virtual machine:
virsh define /tmp/new-guest.xml virsh start new-guest
- Currently, KVM cannot disable virtualization extensions on a CPU while it is being taken down. Consequently, suspending a host running KVM-based virtual machines may cause the host to crash. (BZ#509809)
- The KSM module shipped in this release is a different version from the KSM module found on the latest upstream kernel versions. Newer features, such as exporting statistics on the /sys filesystem, that are implemented upstream are not in the version shipped in this release.
- The mute button in the audio control panel on a Windows virtual machine does not mute the sound. BZ#482570
- Hot-unplugging of PCI devices is not supported in this release. This feature will be introduced in a future update. (BZ#510679)
- When migrating KVM guests between hosts, the NX CPU feature setting on both source and destination must match. Migrating a guest between a host with the NX feature disabled (i.e. disabled in the BIOS settings) and a host with the NX feature enabled may cause the guest to crash. (BZ#516029)
- the application binary interface (ABI) between the KVM userspace (e.g. qemu-kvm) and the KVM kernel modules may change in future updates. Using the latest upstream qemu-kvm package is unsupported due to ABI differences. (BZ#515549)
- Devices using the qlge driver cannot be assigned to a KVM guest using KVM's PCI Device Driver assignment. (BZ#507689)
- the use of the qcow2 disk image format with KVM is considered a Technology Preview. (BZ#517880)
- 64-bit versions of Windows 7 do not have support for the AC'97 Audio Codec. Consequently, the virtualized sound device Windows 7 kvm guests will not function. (BZ#563122)
- Hotplugging emulated devices after migration may result in the virtual machine crashing after a reboot or the devices no longer being visible. (BZ#507191)
- Windows 2003 32-bit guests with more than 4GB of RAM may crash on reboot with the default qemu-kvm CPU settings. To work around this issue, configure a different CPU model on the management interface. (BZ#516762)
- The KVM modules from the
kmod-kvm
package do not support kernels prior to version 2.6.18-159.el5. Error messages similar to the following will be returned if attempting to install these modules on older kernels:FATAL: Error inserting kvm_intel (/lib/modules/2.6.18-155.el5/weak-updates/kmod-kvm/kvm-intel.ko): Unknown symbol in module, or unknown parameter (see dmesg)
(BZ#509361) - the kvm package has incorrect dependencies related to the
libgcrypt
package. Consequently, if thelibgcrypt
package installed on a system is earlier than version 1.4.4, theqemu-kvm
process may refuse to start, returning alibgcrypt initialization error
message. To work around this issue, updatelibgcrypt
to the version provided by Red Hat Enterprise Linux 5.5. (BZ#503118) - The KVM modules available in the
kmod-kvm
package are loaded automatically at boot time if the kmod-kvm package is installed. To make these KVM modules available after installing thekmod-kvm
package the system either needs to be rebooted or the modules can be loaded manually by running the/etc/sysconfig/modules/kvm.modules
script. (BZ#501543) - Some Linux-based guests that use virtio virtual block devices may abort during installation, returning the error message: unhandled vm exit: 0x31 vcpu_id 0 To work around this issue, consider utilizing a different interface (other than virtio) for the guest virtual disk. (BZ#518081)
- RHEL5.x virtualization relies on etherboot for remote booting. Etherboot is an implementation of the pxe standard, but lacks some features that are present in the new gpxe boot technology which is not shipped with RHEL. It is possible to use the gpxe roms with RHEL 5.4. As an example, gpxe roms can be used to interpret requests generated by Microsoft RIS or WDS. All components present in RHEL5.4 are capable of booting gpxe roms. The roms can be obtained directly from http://rom-o-matic.net/, or other sources like the Fedora Project. BZ#509208
- The Preboot eXecution Environment (PXE) boot ROMs included with KVM are from the Etherboot project. Consequently, some bug fixes or features that are present on the newer gPXE project are not available on Etherboot. For example, Virtual Machines (VMs) cannot boot using Microsoft based PXE (ie. Remote Installation Services (RIS) or Windows Deployment Services (WDS)). (BZ#497692)
- The following QEMU / KVM features are currently disabled and not supported: (BZ#512837)
- smb user directories
- scsi emulation
- "isapc" machine type
- nested KVM guests
- usb mass storage device emulation
- usb wacom tablet emulation
- usb serial emulation
- usb network emulation
- usb bluetooth emulation
- device emulation for vmware drivers
- sb16, es1370, and ac97 sound card emulation
- bluetooth emulation
5.18. less
- The "less" command has been updated. less no longer adds the "carriage return" character when wrapping long lines. Consequently, lines longer than the terminal width will be displayed incorrectly when browsing the file line per line. The command line option "--old-bot" forces less to behave as it did previously, with long text lines displayed correctly. (BZ#441691)
5.19. libcmpiutil
- The libcmpiutil-devel package depends on tog-pegasus-devel, which for the Red Hat Enterprise Linux Desktop product is only available from the Workstation option. Therefore, any attempt to install the libcmpiutil-devel package on a system that does not have a Subscription including the Workstation option or is not subscribed to the Workstation channel on RHN, will fail with an unresolved dependency error.
5.20. libvirt
- Volumes created using the libvirt storage API may not have an SELinux label that allows access by virtual machines. If an SELinux AVC denial is reported when starting a Xen or KVM guest, the adminstrator should either manually relabel the file/device, or add the file path(s) as rule to the SELinux policy using the 'semanage' tool. (BZ#510143)
5.21. lvm2
- The
lvchange
command is used to change the attributes of a logical volume. Issuing thelvchange
command on a volume group that contains a mirror or snapshot may result in messages similar to the following:Unable to change mirror log LV fail_secondary_mlog directly Unable to change mirror image LV fail_secondary_mimage_0 directly Unable to change mirror image LV fail_secondary_mimage_1 directly
These messages can be safely ignored. (BZ#232499)
5.22. mesa
- On an IBM T61 laptop, Red Hat recommends that you refrain from clicking the
glxgears
window (whenglxgears
is run). Doing so can lock the system.To prevent this from occurring, disable the tiling feature. To do so, add the following line in theDevice
section of/etc/X11/xorg.conf
:Option "Tiling" "0"
5.23. mkinitrd
- When using an encrypted device, the following error message may be reported during bootup:
insmod: error inserting '/lib/aes_generic.ko': -1 File exists
This message can safely be ignored. (BZ#466296) - Installation using a Multiple Device (MD) RAID on top of multipath will result in a machine that cannot boot. Multipath to Storage Area Network (SAN) devices which provide RAID internally are not affected. (BZ#467469)
- When installing Red Hat Enterprise Linux 5.4, the following errors may be returned in
install.log
:Installing kernel-2.6.18-158.el5.s390x cp: cannot stat `/sbin/dmraid.static': No such file or directory
This message can be safely ignored. - iSCSI root devices do not function correctly if used over an IPv6 network connection. While the installation will appear to succeed, the system will fail to find the root filesystem during the first boot. (BZ#529636)
5.24. openib
- Running
perftest
will fail if different CPU speeds are detected. As such, you should disable CPU speed scaling before runningperftest
. (BZ#433659)
5.25. openmpi
mvapich
andmvapich2
in Red Hat Enterprise Linux 5 are compiled to support only InfiniBand/iWARP interconnects. Consequently, they will not run over ethernet or other network interconnects. (BZ#466390)- When upgrading openmpi using yum, the following warning may be returned:
cannot open `/tmp/openmpi-upgrade-version.*' for reading: No such file or directory
The message is harmless and can be safely ignored. (BZ#463919) - A bug in previous versions of
openmpi
andlam
may prevent you from upgrading these packages. This bug manifests in the following error (when attempting to upgradeopenmpi
orlam
:error: %preun(openmpi-[version]) scriptlet failed, exit status 2
As such, you need to manually remove older versions ofopenmpi
andlam
in order to install their latest versions. To do so, use the followingrpm
command:rpm -qa | grep '^openmpi-\|^lam-' | xargs rpm -e --noscripts --allmatches
(BZ#433841)
5.26. qspice
- Occasionally, the video compression algorithm used by SPICE starts when the guest is accessing text instead of video or moving content. This causes the text to appear blurry or difficult to read. (BZ#493375)
5.27. systemtap
- Running some user-space probe test cases provided by the
systemtap-testsuite
package fail with anUnknown symbol in module
error on some architectures. These test cases include (but are not limited to):systemtap.base/uprobes.exp
systemtap.base/bz10078.exp
systemtap.base/bz6850.exp
systemtap.base/bz5274.exp
Because of a known bug in the latest SystemTap update, new SystemTap installations do not unload old versions of theuprobes.ko
module. Some updated user-space probe tests provided by the systemtap-testsuite package use symbols available only in the latestuprobes.ko
module (also provided by the latest SystemTap update). As such, running these user-space probe tests result in the error mentioned earlier.If you encounter this error, simply runrmmod uprobes
to manually remove the olderuprobes.ko
module before running the user-space probe test again.(BZ#499677) - SystemTap currently uses GCC to probe user-space events. GCC is, however, unable to provide debuggers with precise location list information for parameters. In some cases, GCC also fails to provide visibility on some parameters. As a consequence, SystemTap scripts that probe user-space may return inaccurate readings. (BZ#239065)
5.28. virtio-win
- Low performance with UDP messages larger than 1024 is a known Microsoft issue: http://support.microsoft.com/default.aspx/kb/235257. For the message larger than 1024 bytes follow the workaround procedure detailed in the above Microsoft knowledgebase article.
- Installation of Windows XP with the floppy containing guest drivers (in order to get the virtio-net drivers installed as part of the installation), will return messages stating that the viostor.sys file could not be found. viostor.sys is not part of the network drivers, but is on the same floppy as portions of the virtio-blk drivers. These messages can be safely ignored, simply accept the installation's offer to reboot, and the installation will continue normally. BZ#513160
5.29. xorg-x11-drv-i810
- Running a screensaver or resuming a suspended laptop with an external monitor attached may result in a blank screen or a brief flash followed by a blank screen. If this occurs with the screensaver, the prompt for your password is being obscured, the password can still be entered blindly to get back to the desktop. To work around this issue, physically disconnect the external monitor and then press the video hotkey (usually Fn-F7) to rescan the available outputs, before suspending the laptop.
- If your system uses an Intel 945GM graphics card, do not use the
i810
driver. You should use the defaultintel
driver instead. (BZ#468218) - On dual-GPU laptops, if one of the graphics chips is Intel-based, the Intel graphics mode cannot drive any external digital connections (including HDMI, DVI, and DisplayPort). This is a hardware limitation of the Intel GPU. If you require external digital connections, configure the system to use the discrete graphics chip (in the BIOS). (BZ#468259)
5.30. xorg-x11-drv-nv
- Improvements have been made to the 'nv' driver, enhancing suspend and resume support on some systems equipped with nVidia GeForce 8000 and 9000 series devices. Due to technical limitations, this will not enable suspend/resume on all hardware. (BZ#414971)
- The nv driver for NVIDIA graphics devices does not fully support the DisplayPort digital display interface. Connections from DisplayPort video devices to DisplayPort monitors are unsupported by the nv driver. Internal laptop and notebook displays that use Embedded DisplayPort (eDP) are also unsupported. Other connections, such as VGA, DVI, HDMI and the use of DisplayPort to DVI adapters are supported by the nv driver. To work around this limitation, it is recommended that the "vesa" driver be used. (BZ#566228)
- Some machines that use NVIDIA graphics cards may display corrupted graphics or fonts when using the graphical installer or during a graphical login. To work around this, switch to a virtual console and back to the original X host. (BZ#222737, BZ#221789)
5.31. xorg-x11-drv-vesa
- When running the bare-metal (non-Virtualized) kernel, the X server may not be able to retrieve
EDID
information from the monitor. When this occurs, the graphics driver will be unable to display resolutions highers than 800x600.To work around this, add the following line to theServerLayout
section of/etc/X11/xorg.conf
:Option "Int10Backend" "x86emu"
5.32. yaboot
- If the string that represents the path to kernel (or ramdisk) is greater than 63 characters, network booting an IBM Power5 series system may result in the following error:
FINAL File Size = 8948021 bytes. load-base=0x4000 real-base=0xc00000 DEFAULT CATCH!, exception-handler=fff00300
The firmware for IBM Power6 and IBM Power7 systems contains a fix for this issue. (BZ#550086)
5.33. xen
- As of Red Hat Enterprise Linux 5.4, PCI devices connected to a single PCI-PCI bridge can no longer be assigned to different PV guests. If the old, unsafe behaviour is required, disable pci-dev-assign-strict-check in /etc/xen/xend-config.sxp. (BZ#508310)
- In live migrations of paravirtualized guests, time-dependent guest processes may function improperly if the corresponding hosts' (dom0) times are not synchronized. Use NTP to synchronize system times for all corresponding hosts before migration. (BZ#426861)
- When running x86_64 Xen, it is recommended to set dom0-min-mem in /etc/xen/xend-config.sxp to a value of 1024 or higher. Lower values may cause the dom0 to run out of memory, resulting in poor performance or out-of-memory situations. (BZ#519492)
- The Red Hat Enterprise Linux 3 kernel does not include SWIOTLB support. SWIOTLB support is required for Red Hat Enterprise Linux 3 guests to support more than 4GB of memory on AMD Opteron and Athlon-64 processors. Consequently, Red Hat Enterprise Linux 3 guests are limited to 4GB of memory on AMD processors. (BZ#504187)
- When setting up interface bonding on
dom0
, the defaultnetwork-bridge
script may cause bonded network interfaces to alternately switch betweenunavailable
andavailable
. This occurrence is commonly known as flapping.To prevent this, replace the standardnetwork-script
line in/etc/xen/xend-config.sxp
with the following line:(network-script network-bridge-bonding netdev=bond0)
Doing so will disable the netloop device, which prevents Address Resolution Protocol (ARP) monitoring from failing during the address transfer process. (BZ#429154, BZ#429154) - The Hypervisor outputs messages regarding attempts by any guest to write to an MSR. Such messages contain the statement
Domain attempted WRMSR
. These messages can be safely ignored; furthermore, they are rate limited and should pose no performance risk. (BZ#477647)
- Installing Red Hat Enterprise Linux 3.9 on a fully virtualized guest may be extremely slow. In addition, booting up the guest after installation may result in
hda: lost interrupt
errors.To avoid this bootup error, configure the guest to use the SMP kernel. (BZ#249521)
Appendix A. Package Manifest
A.1. Added Packages
- ctdb-1.0.82-1.el5
- Group: System Environment/Daemons
- Summary: A Clustered Database based on Samba's Trivial Database (TDB)
- Description: CTDB is a cluster implementation of the TDB database used by Samba and other projects to store temporary data. If an application is already using TDB for temporary data it is very easy to convert that application to be cluster aware and use CTDB instead.
- freeradius2-2.1.7-7.el5
- Group: System Environment/Daemons
- Summary: High-performance and highly configurable free RADIUS server
- Description: The FreeRADIUS Server Project is a high performance and highly configurable GPL'd free RADIUS server. The server is similar in some respects to Livingston's 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they don't share a lot in common any more. It now has many more features than Cistron or Livingston, and is much more configurable. FreeRADIUS is an Internet authentication daemon, which implements the RADIUS protocol, as defined in RFC 2865 (and others). It allows Network Access Servers (NAS boxes) to perform authentication for dial-up users. There are also RADIUS clients available for Web servers, firewalls, Unix logins, and more. Using RADIUS allows authentication and authorization for a network to be centralized, and minimizes the amount of re-configuration which has to be done when adding or deleting new users.
- gpxe-0.9.7-8.el5
- Group: System Environment/Base
- Summary: A network boot loader
- Description: gPXE is an open source network bootloader. It provides a direct replacement for proprietary PXE ROMs, with many extra features such as DNS, HTTP, iSCSI, etc.
- gsl-1.13-3.el5
- Group: System Environment/Libraries
- Summary: The GNU Scientific Library for numerical analysis
- Description: The GNU Scientific Library (GSL) is a collection of routines for numerical analysis, written in C.
- postgresql84-8.4.2-5.el5
- Group: Applications/Databases
- Summary: PostgreSQL client programs
- Description: PostgreSQL is an advanced Object-Relational database management system (DBMS) that supports almost all SQL constructs (including transactions, subselects and user-defined types and functions). The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipulate the internal structure of PostgreSQL databases on a PostgreSQL server. These client programs can be located on the same machine with the PostgreSQL server, or may be on a remote machine which accesses a PostgreSQL server over a network connection. This package contains the docs in HTML for the whole package, as well as command-line utilities for managing PostgreSQL databases on a PostgreSQL server. If you want to manipulate a PostgreSQL database on a local or remote PostgreSQL server, you need this package. You also need to install this package if you're installing the postgresql-server package.
- python-dmidecode-3.10.8-4.el5
- Group: System Environment/Libraries
- Summary: Python module to access DMI data
- Description: python-dmidecode is a python extension module that uses the code-base of the 'dmidecode' utility, and presents the data as python data structures or as XML data using libxml2.
- samba3x-3.3.8-0.51.el5
- Group: System Environment/Daemons
- Summary: Server and Client software to interoperate with Windows machines
- Description: Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information (such as lists of available files and printers). The Windows NT, OS/2, and Linux operating systems support this natively, and add-on packages can enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS, and more. This package provides an SMB/CIFS server that can be used to provide network services to SMB/CIFS clients. Samba uses NetBIOS over TCP/IP (NetBT) protocols and does NOT need the NetBEUI (Microsoft Raw NetBIOS frame) protocol.
- tunctl-1.5-3.el5
- Group: Applications/System
- Summary: Create and remove virtual network interfaces
- Description: tunctl is a tool to set up and maintain persistent TUN/TAP network interfaces, enabling user applications access to the wire side of a virtual nework interface. Such interfaces is useful for connecting VPN software, virtualization, emulation and a number of other similar applications to the network stack. tunctl originates from the User Mode Linux project.
- xz-4.999.9-0.3.beta.20091007git.el5
- Group: Applications/File
- Summary: LZMA compression utilities
- Description: XZ Utils are an attempt to make LZMA compression easy to use on free (as in freedom) operating systems. This is achieved by providing tools and libraries which are similar to use than the equivalents of the most popular existing compression algorithms. LZMA is a general purpose compression algorithm designed by Igor Pavlov as part of 7-Zip. It provides high compression ratio while keeping the decompression speed fast.
A.2. Dropped Packages
- libpfm-3.2-0.060926.4.el5
- Group: Development/Libraries
- Summary: a performance monitoring library for Linux/ia64
- Description: This package contains a library to develop performance monitoring applications using the Performance Monitor Unit (PMU) available on various processors.
- pfmon-3.2-0.060926.5.el5
- Group: Development/Tools
- Summary: a performance monitoring tool for Linux/ia64
- Description: This package contains pfmon 3.x, a tool to monitor performance using the Performance Monitor Unit (PMU). Pfmon can monitor standalone programs or the entire system on both UP and SMP Linux systems. This version of pfmon requires a kernel perfmon-2.x (found in 2.6 kernels) subsystem to function properly.
A.3. Updated Packages
- NetworkManager-0.7.0-9.el5 - NetworkManager-0.7.0-10.el5
- Group: System Environment/Base
- Summary: Network connection manager and user applications
- Description: NetworkManager attempts to keep an active network connection available at all times. It is intended only for the desktop use-case, and is not intended for usage on servers. The point of NetworkManager is to make networking configuration and setup as painless and automatic as possible. If using DHCP, NetworkManager is intended to replace default routes, obtain IP addresses from a DHCP server, and change nameservers whenever it sees fit.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- OpenIPMI-2.0.16-5.el5 - OpenIPMI-2.0.16-7.el5
- Group: System Environment/Base
- Summary: OpenIPMI (Intelligent Platform Management Interface) library and tools
- Description: The Open IPMI project aims to develop an open code base to allow access to platform information using Intelligent Platform Management Interface (IPMI). This package contains the tools of the OpenIPMI project.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- PyXML-0.8.4-4 - PyXML-0.8.4-4.el5_4.2
- Group: Development/Libraries
- Summary: XML libraries for python.
- Description: An XML package for Python. The distribution contains a validating XML parser, an implementation of the SAX and DOM programming interfaces and an interface to the Expat parser.
- Added Dependencies:
- expat-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- acl-2.2.39-3.el5 - acl-2.2.39-6.el5
- Group: System Environment/Base
- Summary: Access control list utilities.
- Description: This package contains the getfacl and setfacl utilities needed for manipulating access control lists.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- acpid-1.0.4-9.el5 - acpid-1.0.4-9.el5_4.2
- Group: System Environment/Daemons
- Summary: ACPI Event Daemon
- Description: acpid is a daemon that dispatches ACPI events to user-space programs.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- aide-0.13.1-4.el5 - aide-0.13.1-6.el5
- Group: Applications/System
- Summary: Intrusion detection environment
- Description: AIDE (Advanced Intrusion Detection Environment) is a file integrity checker and intrusion detection program.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- anaconda-11.1.2.195-1 - anaconda-11.1.2.209-1
- Group: Applications/System
- Summary: Graphical system installer
- Description: The anaconda package contains the program which was used to install your system. These files are of little use on an already installed system.
- Added Dependencies:
- pykickstart >= 0.43.8
- Removed Dependencies:
- pykickstart
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- apr-util-1.2.7-7.el5_3.2 - apr-util-1.2.7-11.el5
- Group: System Environment/Libraries
- Summary: Apache Portable Runtime Utility library
- Description: The mission of the Apache Portable Runtime (APR) is to provide a free library of C data structures and routines. This library contains additional utility interfaces for APR; including support for XML, LDAP, database interfaces, URI parsing and more.
- Added Dependencies:
- mysql-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- at-3.1.8-82.fc6 - at-3.1.8-84.el5
- Group: System Environment/Daemons
- Summary: Job spooling tools.
- Description: At and batch read commands from standard input or from a specified file. At allows you to specify that a command will be run at a particular time. Batch will execute commands when the system load levels drop to a particular level. Both commands use /bin/sh. You should install the at package if you need a utility for time-oriented job control. Note: If it is a recurring job that will need to be repeated at the same time every day/week, etc. you should use crontab instead.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- audit-1.7.13-2.el5 - audit-1.7.17-3.el5
- Group: System Environment/Daemons
- Summary: User space tools for 2.6 kernel auditing
- Description: The audit package contains the user space utilities for storing and searching the audit records generate by the audit subsystem in the Linux 2.6 kernel.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- autofs-5.0.1-0.rc2.131.el5 - autofs-5.0.1-0.rc2.143.el5
- Group: System Environment/Daemons
- Summary: A tool for automatically mounting and unmounting filesystems.
- Description: autofs is a daemon which automatically mounts filesystems when you use them, and unmounts them later when you are not using them. This can include network filesystems, CD-ROMs, floppies, and so forth.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- automake-1.9.6-2.1 - automake-1.9.6-2.3.el5
- Group: Development/Tools
- Summary: A GNU tool for automatically creating Makefiles.
- Description: Automake is a tool for automatically generating `Makefile.in' files compliant with the GNU Coding Standards. You should install Automake if you are developing software and would like to use its ability to automatically generate GNU standard Makefiles. If you install Automake, you will also need to install GNU's Autoconf package.
- Added Dependencies:
- bison
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- automake14-1.4p6-13 - automake14-1.4p6-13.el5.1
- Group: Development/Tools
- Summary: A GNU tool for automatically creating Makefiles.
- Description: Automake is a tool for automatically generating `Makefile.in' files compliant with the GNU Coding Standards. This package contains Automake 1.4, an older version of Automake. You should install it if you need to run automake in a project that has not yet been updated to work with newer versions of Automake.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- automake15-1.5-16 - automake15-1.5-16.el5.2
- Group: Development/Tools
- Summary: A GNU tool for automatically creating Makefiles.
- Description: Automake is a tool for automatically generating `Makefile.in' files compliant with the GNU Coding Standards. This package contains Automake 1.5, an older version of Automake. You should install it if you need to run automake in a project that has not yet been updated to work with newer versions of Automake.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- automake16-1.6.3-8 - automake16-1.6.3-8.el5.1
- Group: Development/Tools
- Summary: A GNU tool for automatically creating Makefiles.
- Description: Automake is a tool for automatically generating `Makefile.in' files compliant with the GNU Coding Standards. This package contains Automake 1.6, an older version of Automake. You should install it if you need to run automake in a project that has not yet been updated to work with latest version of Automake.
- Added Dependencies:
- texinfo
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- automake17-1.7.9-7 - automake17-1.7.9-7.el5.2
- Group: Development/Tools
- Summary: A GNU tool for automatically creating Makefiles.
- Description: Automake is a tool for automatically generating `Makefile.in' files compliant with the GNU Coding Standards. This package contains Automake 1.7, an older version of Automake. You should install it if you need to run automake in a project that has not yet been updated to work with latest version of Automake.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- avahi-0.6.16-6.el5 - avahi-0.6.16-7.el5
- Group: System Environment/Base
- Summary: Local network service discovery
- Description: Avahi is a system which facilitates service discovery on a local network -- this means that you can plug your laptop or computer into a network and instantly be able to view other people who you can chat with, find printers to print to or find files being shared. This kind of technology is already found in MacOS X (branded 'Rendezvous', 'Bonjour' and sometimes 'ZeroConf') and is very convenient.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- bind-9.3.6-4.P1.el5 - bind-9.3.6-4.P1.el5_4.2
- Group: System Environment/Daemons
- Summary: The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server.
- Description: BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- binutils-2.17.50.0.6-12.el5 - binutils-2.17.50.0.6-14.el5
- Group: Development/Tools
- Summary: A GNU collection of binary utilities.
- Description: Binutils is a collection of binary utilities, including ar (for creating, modifying and extracting from archives), as (a family of GNU assemblers), gprof (for displaying call graph profile data), ld (the GNU linker), nm (for listing symbols from object files), objcopy (for copying and translating object files), objdump (for displaying information from object files), ranlib (for generating an index for the contents of an archive), size (for listing the section sizes of an object or archive file), strings (for listing printable strings from files), strip (for discarding symbols), and addr2line (for converting addresses to file and line).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- bogl-0.1.18-11.2.1.el5.1 - bogl-0.1.18-13.el5
- Group: System Environment/Libraries
- Summary: A terminal program for displaying Unicode on the console.
- Description: BOGL stands for Ben's Own Graphics Library. It is a small graphics library for Linux kernel frame buffers. It supports only very simple graphics.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- bootparamd-0.17-24.devel.2.1 - bootparamd-0.17-26.el5
- Group: System Environment/Daemons
- Summary: A server process which provides boot information to diskless clients.
- Description: The bootparamd process provides bootparamd, a server process which provides the information needed by diskless clients in order for them to successfully boot. Bootparamd looks first in /etc/bootparams for an entry for that particular client; if a local bootparams file doesn't exist, it looks at the appropriate Network Information Service (NIS) map. Some network boot loaders (notably Sun's) rely on special boot server code on the server, in addition to the RARP and TFTP servers. This bootparamd server process is compatible with SunOS bootparam clients and servers which need that boot server code. You should install bootparamd if you need to provide boot information to diskless clients on your network.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- booty-0.80.6-5 - booty-0.80.6-7
- Group: System Environment/Libraries
- Summary: simple python bootloader config lib
- Description: Small python library for use with bootloader configuration by anaconda and up2date.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- brltty-3.7.2-1.fc6 - brltty-3.7.2-4.el5
- Group: System Environment/Daemons
- Summary: Braille display driver for Linux/Unix.
- Description: BRLTTY is a background process (daemon) which provides access to the Linux/Unix console (when in text mode) for a blind person using a refreshable braille display. It drives the braille display, and provides complete screen review functionality. Some speech capability has also been incorporated.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- checkpolicy-1.33.1-4.el5 - checkpolicy-1.33.1-6.el5
- Group: Development/System
- Summary: SELinux policy compiler
- Description: Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. This package contains checkpolicy, the SELinux policy compiler. Only required for building policies.
- Added Dependencies:
- libsepol-devel >= 1.15.2-3
- Removed Dependencies:
- libsepol-devel >= 1.15.2-1
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- chkconfig-1.3.30.1-2 - chkconfig-1.3.30.2-2.el5
- Group: System Environment/Base
- Summary: A system tool for maintaining the /etc/rc*.d hierarchy.
- Description: Chkconfig is a basic system utility. It updates and queries runlevel information for system services. Chkconfig manipulates the numerous symbolic links in /etc/rc.d, to relieve system administrators of some of the drudgery of manually editing the symbolic links.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cman-2.0.115-1.el5 - cman-2.0.115-34.el5
- Group: System Environment/Base
- Summary: cman - The Cluster Manager
- Description: cman - The Cluster Manager
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cmirror-1.1.39-2.el5 - cmirror-1.1.39-8.el5
- Group: System Environment/Base
- Summary: cmirror - The Cluster Mirror Package
- Description: cmirror - Cluster Mirroring
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cmirror-kmod-0.1.22-1.el5 - cmirror-kmod-0.1.22-3.el5
- Group: System Environment/Kernel
- Summary: cmirror kernel modules
- Description: cmirror-kmod - The Cluster Mirror kernel modules
- Added Dependencies:
- kernel-devel-ia64 = 2.6.18-182.el5
- kernel-xen-devel-ia64 = 2.6.18-182.el5
- Removed Dependencies:
- kernel-devel-ia64 = 2.6.18-159.el5
- kernel-xen-devel-ia64 = 2.6.18-159.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- conga-0.12.2-6.el5 - conga-0.12.2-12.el5
- Group: System Environment/Base
- Summary: Remote Management System
- Description: Conga is a project developing management system for remote stations. It consists of luci, https frontend, and ricci, secure daemon that dispatches incoming messages to underlying management modules.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- coolkey-1.1.0-6.el5 - coolkey-1.1.0-14.el5
- Group: System Environment/Libraries
- Summary: CoolKey PKCS #11 module
- Description: Linux Driver support for the CoolKey and CAC products.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- coreutils-5.97-23.el5 - coreutils-5.97-23.el5_4.2
- Group: System Environment/Base
- Summary: The GNU core utilities: a set of tools commonly used in shell scripts
- Description: These are the GNU core utilities. This package is the combination of the old GNU fileutils, sh-utils, and textutils packages.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cpio-2.6-23.el5 - cpio-2.6-23.el5_4.1
- Group: Applications/Archiving
- Summary: A GNU archiving program.
- Description: GNU cpio copies files into or out of a cpio or tar archive. Archives are files which contain a collection of other files plus information about them, such as their file name, owner, timestamps, and access permissions. The archive can be another file on the disk, a magnetic tape, or a pipe. GNU cpio supports the following archive formats: binary, old ASCII, new ASCII, crc, HPUX binary, HPUX old ASCII, old tar and POSIX.1 tar. By default, cpio creates binary format archives, so that they are compatible with older cpio programs. When it is extracting files from archives, cpio automatically recognizes which kind of archive it is reading and can read archives created on machines with a different byte-order. Install cpio if you need a program to manage file archives.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cpuspeed-1.2.1-8.el5 - cpuspeed-1.2.1-9.el5
- Group: System Environment/Base
- Summary: CPU frequency adjusting daemon
- Description: cpuspeed is a daemon that dynamically changes the speed of your processor(s) depending upon its current workload if it is capable (needs Intel Speedstep, AMD PowerNow!, or similar support). This package also supports enabling cpu frequency scaling via in-kernel governors on Intel Centrino and AMD Athlon64/Opteron platforms.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- crash-4.0-8.9.1.el5 - crash-4.1.2-4.el5
- Group: Development/Debuggers
- Summary: crash utility for live systems; netdump, diskdump, kdump, LKCD or mcore dumpfiles
- Description: The core analysis suite is a self-contained tool that can be used to investigate either live systems, kernel core dumps created from the netdump, diskdump and kdump packages from Red Hat Linux, the mcore kernel patch offered by Mission Critical Linux, or the LKCD kernel patch.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cups-1.3.7-11.el5 - cups-1.3.7-18.el5
- Group: System Environment/Daemons
- Summary: Common Unix Printing System
- Description: The Common UNIX Printing System provides a portable printing layer for UNIX® operating systems. It has been developed by Easy Software Products to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces.
- Added Dependencies:
- poppler-utils
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- curl-7.15.5-2.1.el5_3.5 - curl-7.15.5-9.el5
- Group: Applications/Internet
- Summary: A utility for getting files from remote servers (FTP, HTTP, and others).
- Description: cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. cURL offers many useful capabilities, like proxy support, user authentication, FTP upload, HTTP post, and file transfer resume.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cyrus-imapd-2.3.7-7.el5 - cyrus-imapd-2.3.7-7.el5_4.3
- Group: System Environment/Daemons
- Summary: A high-performance mail server with IMAP, POP3, NNTP and SIEVE support
- Description: The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board environment to be set up across multiple servers. It differs from other IMAP server implementations in that it is run on "sealed" servers, where users are not normally permitted to log in and have no system account on the server. The mailbox database is stored in parts of the filesystem that are private to the Cyrus IMAP server. All user access to mail is through software using the IMAP, POP3 or KPOP protocols. It also includes support for virtual domains, NNTP, mailbox annotations, and much more. The private mailbox database design gives the server large advantages in efficiency, scalability and administratability. Multiple concurrent read/write connections to the same mailbox are permitted. The server supports access control lists on mailboxes and storage quotas on mailbox hierarchies. The Cyrus IMAP server supports the IMAP4rev1 protocol described in RFC 3501. IMAP4rev1 has been approved as a proposed standard. It supports any authentication mechanism available from the SASL library, imaps/pop3s/nntps (IMAP/POP3/NNTP encrypted using SSL and TLSv1) can be used for security. The server supports single instance store where possible when an email message is addressed to multiple recipients, SIEVE provides server side email filtering.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- cyrus-sasl-2.1.22-5.el5 - cyrus-sasl-2.1.22-5.el5_4.3
- Group: System Environment/Libraries
- Summary: The Cyrus SASL library.
- Description: The cyrus-sasl package contains the Cyrus implementation of SASL. SASL is the Simple Authentication and Security Layer, a method for adding authentication support to connection-based protocols.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dapl-2.0.19-2.el5 - dapl-2.0.25-2.el5
- Group: System Environment/Libraries
- Summary: Library providing access to the DAT 1.2 and 2.0 APIs
- Description: libdat and libdapl provide a userspace implementation of the DAT 1.2 and 2.0 API that is built to natively support InfiniBand/iWARP network technology.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- librdmacm-devel >= 1.0.10
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4
- librdmacm-devel >= 1.0.8-5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dbus-1.1.2-12.el5 - dbus-1.1.2-14.el5
- Group: System Environment/Libraries
- Summary: D-BUS message bus
- Description: D-BUS is a system for sending messages between applications. It is used both for the systemwide message bus service, and as a per-user-login-session messaging facility.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dbus-python-0.70-7.el5 - dbus-python-0.70-9.el5_4
- Group: System Environment/Libraries
- Summary: D-Bus Python Bindings
- Description: D-Bus python bindings for use with python programs.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- device-mapper-1.02.32-1.el5 - device-mapper-1.02.39-1.el5
- Group: System Environment/Base
- Summary: device mapper library
- Description: This package contains the supporting userspace files (libdevmapper and dmsetup) for the device-mapper.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- device-mapper-multipath-0.4.7-30.el5 - device-mapper-multipath-0.4.7-34.el5
- Group: System Environment/Base
- Summary: Tools to manage multipath devices using device-mapper.
- Description: device-mapper-multipath provides tools to manage multipath devices by instructing the device-mapper multipath kernel module what to do. The tools are : * multipath : Scan the system for multipath devices and assemble them. * multipathd : Detects when paths fail and execs multipath to update things.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dhcp-3.0.5-21.el5 - dhcp-3.0.5-23.el5
- Group: System Environment/Daemons
- Summary: DHCP (Dynamic Host Configuration Protocol) server and relay agent.
- Description: DHCP (Dynamic Host Configuration Protocol) is a protocol which allows individual devices on an IP network to get their own network configuration information (IP address, subnetmask, broadcast address, etc.) from a DHCP server. The overall purpose of DHCP is to make it easier to administer a large network. The dhcp package includes the ISC DHCP service and relay agent. To use DHCP on your network, install a DHCP service (or relay agent), and on clients run a DHCP client daemon. The dhcp package provides the ISC DHCP service and relay agent.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dhcpv6-1.0.10-17.el5 - dhcpv6-1.0.10-18.el5
- Group: System Environment/Daemons
- Summary: DHCPv6 - DHCP server and client for IPv6
- Description: Implements the Dynamic Host Configuration Protocol (DHCP) for Internet Protocol version 6 (IPv6) networks in accordance with RFC 3315: Dynamic Host Configuration Protocol for IPv6 (DHCPv6). Consists of dhcp6s(8), the server DHCP daemon, and dhcp6r(8), the DHCPv6 relay agent. Install this package if you want to support dynamic configuration of IPv6 addresses and parameters on your IPv6 network.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dmidecode-2.9-1.el5 - dmidecode-2.10-3.el5
- Group: System Environment/Base
- Summary: Tool to analyse BIOS DMI data.
- Description: dmidecode reports information about x86 hardware as described in the system BIOS according to the SMBIOS/DMI standard. This information typically includes system manufacturer, model name, serial number, BIOS version, asset tag as well as a lot of other details of varying level of interest and reliability depending on the manufacturer. This will often include usage status for the CPU sockets, expansion slots (e.g. AGP, PCI, ISA) and memory module slots, and the list of I/O ports (e.g. serial, parallel, USB).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dmraid-1.0.0.rc13-53.el5 - dmraid-1.0.0.rc13-63.el5
- Group: System Environment/Base
- Summary: dmraid (Device-mapper RAID tool and library)
- Description: DMRAID supports RAID device discovery, RAID set activation and display of properties for ATARAID on Linux >= 2.4 using device-mapper.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dnsmasq-2.45-1.el5_2.1 - dnsmasq-2.45-1.1.el5_3
- Group: System Environment/Daemons
- Summary: A lightweight DHCP/caching DNS server
- Description: Dnsmasq is lightweight, easy to configure DNS forwarder and DHCP server. It is designed to provide DNS and, optionally, DHCP, to a small network. It can serve the names of local machines which are not in the global DNS. The DHCP server integrates with the DNS server and allows machines with DHCP-allocated addresses to appear in the DNS with names configured either in each host or in a central configuration file. Dnsmasq supports static and dynamic DHCP leases and BOOTP for network booting of diskless machines.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dogtail-0.6.1-2.el5 - dogtail-0.6.1-3.el5
- Group: User Interface/X
- Summary: GUI test tool and automation framework
- Description: GUI test tool and automation framework that uses assistive technologies to communicate with desktop applications.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dosfstools-2.11-7.el5 - dosfstools-2.11-9.el5
- Group: Applications/System
- Summary: Utilities for making and checking MS-DOS FAT filesystems on Linux
- Description: The dosfstools package includes the mkdosfs and dosfsck utilities, which respectively make and check MS-DOS FAT filesystems on hard drives or on floppies.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- dstat-0.6.6-3.el5 - dstat-0.6.6-3.el5_4.1
- Group: System Environment/Base
- Summary: Versatile resource statistics tool
- Description: Dstat is a versatile replacement for vmstat, iostat, netstat and ifstat. Dstat overcomes some of their limitations and adds some extra features, more counters and flexibility. Dstat is handy for monitoring systems during performance tuning tests, benchmarks or troubleshooting. Dstat allows you to view all of your system resources instantly, you can eg. compare disk usage in combination with interrupts from your IDE controller, or compare the network bandwidth numbers directly with the disk throughput (in the same interval). Dstat gives you detailed selective information in columns and clearly indicates in what magnitude and unit the output is displayed. Less confusion, less mistakes.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- e4fsprogs-1.41.5-3.el5 - e4fsprogs-1.41.9-3.el5
- Group: System Environment/Base
- Summary: Utilities for managing the fourth extended (ext4) filesystem
- Description: The e4fsprogs package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in the fourth extended (ext4) filesystem. E4fsprogs contains e4fsck (used to repair filesystem inconsistencies after an unclean shutdown), mke4fs (used to initialize a partition to contain an empty ext4 filesystem), debugfs (used to examine the internal structure of a filesystem, to manually repair a corrupted filesystem, or to create test cases for e4fsck), tune4fs (used to modify filesystem parameters), and most of the other core ext4fs filesystem utilities. Please note that "e4fsprogs" simply contains renamed static binaries from the equivalent upstream e2fsprogs release; it is packaged this way for Red Hat Enterprise Linux 5 to ensure that the many changes included for ext4 do not destabilize the core e2fsprogs in RHEL5. You should install the e4fsprogs package if you need to manage the performance of an ext4 filesystem.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- elilo-3.6-3 - elilo-3.6-4
- Group: System Environment/Base
- Summary: ELILO linux boot loader for EFI-based systems
- Description: ELILO is a linux boot loader for EFI-based systems, such as IA-64.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- elinks-0.11.1-5.1.0.1.el5 - elinks-0.11.1-6.el5_4.1
- Group: Applications/Internet
- Summary: A text-mode Web browser.
- Description: Links is a text-based Web browser. Links does not display any images, but it does support frames, tables and most other HTML tags. Links' advantage over graphical browsers is its speed--Links starts and exits quickly and swiftly displays Web pages.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- esc-1.1.0-9.el5 - esc-1.1.0-11.el5
- Group: Applications/Internet
- Summary: Enterprise Security Client Smart Card Client
- Description: Enterprise Security Client allows the user to enroll and manage their cryptographic smartcards.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- etherboot-5.4.4-10.el5 - etherboot-5.4.4-13.el5
- Group: Development/Tools
- Summary: Etherboot collection of boot roms
- Description: Etherboot is a software package for creating ROM images that can download code over an Ethernet network to be executed on an x86 computer. Many network adapters have a socket where a ROM chip can be installed. Etherboot is code that can be put in such a ROM
- Added Dependencies:
- /usr/include/gnu/stubs-32.h
- Removed Dependencies:
- glibc32
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ethtool-6-3.el5 - ethtool-6-4.el5
- Group: Applications/System
- Summary: Ethernet settings tool for PCI ethernet cards
- Description: This utility allows querying and changing of ethernet card settings, such as speed, port, autonegotiation, and PCI locations.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- evince-0.6.0-9.el5 - evince-0.6.0-13.el5
- Group: Applications/Publishing
- Summary: Document viewer
- Description: evince is a GNOME-based document viewer.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- exim-4.63-3.el5 - exim-4.63-5.el5
- Group: System Environment/Daemons
- Summary: The exim mail transfer agent
- Description: Exim is a message transfer agent (MTA) developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal of flexibility in the way mail can be routed, and there are extensive facilities for checking incoming mail. Exim can be installed in place of sendmail, although the configuration of exim is quite different to that of sendmail.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- expat-1.95.8-8.2.1 - expat-1.95.8-8.3.el5_4.2
- Group: System Environment/Libraries
- Summary: A library for parsing XML.
- Description: This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser. This means that you register handlers with the parser prior to starting the parse. These handlers are called when the parser discovers the associated structures in the document being parsed. A start tag is an example of the kind of structures for which you may register handlers.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- fetchmail-6.3.6-1.1.el5 - fetchmail-6.3.6-1.1.el5_3.1
- Group: Applications/Internet
- Summary: A remote mail retrieval and forwarding utility
- Description: Fetchmail is a remote mail retrieval and forwarding utility intended for use over on-demand TCP/IP links, like SLIP or PPP connections. Fetchmail supports every remote-mail protocol currently in use on the Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6, and IPSEC) for retrieval. Then Fetchmail forwards the mail through SMTP so you can read it through your favorite mail client. Install fetchmail if you need to retrieve mail over SLIP or PPP connections.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- filesystem-2.4.0-2 - filesystem-2.4.0-3.el5
- Group: System Environment/Base
- Summary: The basic directory layout for a Linux system.
- Description: The filesystem package is one of the basic packages that is installed on a Red Hat Linux system. Filesystem contains the basic directory layout for a Linux operating system, including the correct permissions for the directories.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- firefox-3.0.12-1.el5_3 - firefox-3.0.18-1.el5_4
- Group: Applications/Internet
- Summary: Mozilla Firefox Web browser
- Description: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability.
- Added Dependencies:
- xulrunner-devel >= 1.9.0.18-1
- xulrunner-devel-unstable >= 1.9.0.18-1
- Removed Dependencies:
- xulrunner-devel >= 1.9.0.12-1
- xulrunner-devel-unstable >= 1.9.0.12-1
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- firstboot-1.4.27.7-1.el5 - firstboot-1.4.27.8-1.el5
- Group: System Environment/Base
- Summary: Initial system configuration utility
- Description: The firstboot utility runs after installation. It guides the user through a series of steps that allows for easier configuration of the machine.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- freeradius-1.1.3-1.4.el5 - freeradius-1.1.3-1.6.el5
- Group: System Environment/Daemons
- Summary: High-performance and highly configurable free RADIUS server.
- Description: The FreeRADIUS Server Project is a high performance and highly configurable GPL'd free RADIUS server. The server is similar in some respects to Livingston's 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they don't share a lot in common any more. It now has many more features than Cistron or Livingston, and is much more configurable. FreeRADIUS is an Internet authentication daemon, which implements the RADIUS protocol, as defined in RFC 2865 (and others). It allows Network Access Servers (NAS boxes) to perform authentication for dial-up users. There are also RADIUS clients available for Web servers, firewalls, Unix logins, and more. Using RADIUS allows authentication and authorization for a network to be centralized, and minimizes the amount of re-configuration which has to be done when adding or deleting new users.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gail-1.9.2-1.fc6 - gail-1.9.2-3.el5
- Group: System Environment/Libraries
- Summary: Accessibility implementation for GTK+ and GNOME libraries
- Description: GAIL implements the abstract interfaces found in ATK for GTK+ and GNOME libraries, enabling accessibility technologies such as at-spi to access those GUIs.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gcc-4.1.2-46.el5 - gcc-4.1.2-48.el5
- Group: Development/Languages
- Summary: Various compilers (C, C++, Objective-C, Java, ...)
- Description: The gcc package contains the GNU Compiler Collection version 4.1. You'll need this package in order to compile C code.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gd-2.0.33-9.4.el5_1.1 - gd-2.0.33-9.4.el5_4.2
- Group: System Environment/Libraries
- Summary: A graphics library for quick creation of PNG or JPEG images
- Description: The gd graphics library allows your code to quickly draw images complete with lines, arcs, text, multiple colors, cut and paste from other images, and flood fills, and to write out the result as a PNG or JPEG file. This is particularly useful in Web applications, where PNG and JPEG are two of the formats accepted for inline images by most browsers. Note that gd is not a paint program.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gdb-6.8-37.el5 - gdb-7.0.1-23.el5
- Group: Development/Debuggers
- Summary: A GNU source-level debugger for C, C++, Java and other languages
- Description: GDB, the GNU debugger, allows you to debug programs written in C, C++, Java, and other languages, by executing them in a controlled fashion and printing their data.
- Added Dependencies:
- zlib-devel
- Removed Dependencies:
- dejagnu
- gcc
- glibc-devel
- gzip
- make
- prelink
- sharutils
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gfs-kmod-0.1.34-2.el5 - gfs-kmod-0.1.34-12.el5
- Group: System Environment/Kernel
- Summary: gfs kernel modules
- Description: gfs - The Global File System is a symmetric, shared-disk, cluster file system.
- Added Dependencies:
- kernel-devel-ia64 = 2.6.18-192.el5
- kernel-xen-devel-ia64 = 2.6.18-192.el5
- Removed Dependencies:
- kernel-devel-ia64 = 2.6.18-159.el5
- kernel-xen-devel-ia64 = 2.6.18-159.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gfs-utils-0.1.20-1.el5 - gfs-utils-0.1.20-7.el5
- Group: System Environment/Kernel
- Summary: Utilities for managing the global filesystem (GFS)
- Description: The gfs-utils package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in GFS filesystems.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gfs2-utils-0.1.62-1.el5 - gfs2-utils-0.1.62-20.el5
- Group: System Environment/Kernel
- Summary: Utilities for managing the global filesystem (GFS)
- Description: The gfs2-utils package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in GFS filesystems.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- glibc-2.5-42 - glibc-2.5-49
- Group: System Environment/Libraries
- Summary: The GNU libc libraries.
- Description: The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important sets of shared libraries: the standard C library and the standard math library. Without these two libraries, a Linux system will not function.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gnome-vfs2-2.16.2-4.el5 - gnome-vfs2-2.16.2-6.el5
- Group: System Environment/Libraries
- Summary: The GNOME virtual file-system libraries
- Description: GNOME VFS is the GNOME virtual file system. It is the foundation of the Nautilus file manager. It provides a modular architecture and ships with several modules that implement support for file systems, http, ftp, and others. It provides a URI-based API, backend supporting asynchronous file operations, a MIME type manipulation library, and other features.
- Added Dependencies:
- libsmbclient-devel
- Removed Dependencies:
- samba-common >= 3.0.8-0.pre1.3
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gnutls-1.4.1-3.el5_2.1 - gnutls-1.4.1-3.el5_3.5
- Group: System Environment/Libraries
- Summary: A TLS protocol implementation.
- Description: GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer. Currently the GnuTLS library implements the proposed standards by the IETF's TLS working group.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gpart-0.1h-3.1 - gpart-0.1h-5.el5
- Group: Applications/System
- Summary: A program for recovering corrupt partition tables
- Description: Gpart is a small tool which tries to guess what partitions are on a PC type harddisk in case the primary partition table was damaged.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- gzip-1.3.5-10.el5 - gzip-1.3.5-11.el5_4.1
- Group: Applications/File
- Summary: The GNU data compression program.
- Description: The gzip package contains the popular GNU gzip data compression program. Gzipped files have a .gz extension. Gzip should be installed on your Red Hat Linux system, because it is a very commonly used data compression program.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- hal-0.5.8.1-52.el5 - hal-0.5.8.1-59.el5
- Group: System Environment/Libraries
- Summary: Hardware Abstraction Layer
- Description: HAL is daemon for collection and maintaining information from several sources about the hardware on the system. It provides a live device list through D-BUS.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- hmaccalc-0.9.6-1.el5 - hmaccalc-0.9.6-3.el5
- Group: System Environment/Base
- Summary: Tools for computing and checking HMAC values for files
- Description: The hmaccalc package contains tools which can calculate HMAC (hash-based message authentication code) values for files. The names and interfaces are meant to mimic the sha*sum tools provided by the coreutils package.
- Added Dependencies:
- autoconf
- automake
- prelink
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- httpd-2.2.3-31.el5 - httpd-2.2.3-43.el5
- Group: System Environment/Daemons
- Summary: Apache HTTP Server
- Description: The Apache HTTP Server is a powerful, efficient, and extensible web server.
- Added Dependencies:
- openssl-devel >= 0.9.8e-12.el5_4.4
- Removed Dependencies:
- openssl-devel
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- hwdata-0.213.16-1.el5 - hwdata-0.213.18-1.el5.1
- Group: System Environment/Base
- Summary: Hardware identification and configuration data
- Description: hwdata contains various hardware identification and configuration data, such as the pci.ids database and MonitorsDb databases.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- iasl-20061109-5.el5 - iasl-20090123-1.el5
- Group: Development/Languages
- Summary: Intel ASL compiler/decompiler
- Description: iasl compiles ASL (ACPI Source Language) into AML (ACPI Machine Language), which is suitable for inclusion as a DSDT in system firmware. It also can disassemble AML, for debugging purposes.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ibsim-0.5-1.el5 - ibsim-0.5-2.el5
- Group: System Environment/Libraries
- Summary: InfiniBand fabric simulator for management
- Description: ibsim provides simulation of infiniband fabric for using with OFA OpenSM, diagnostic and management tools.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ibutils-1.2-10.el5 - ibutils-1.2-11.el5
- Group: System Environment/Libraries
- Summary: OpenIB Mellanox InfiniBand Diagnostic Tools
- Description: ibutils provides IB network and path diagnostics.
- Added Dependencies:
- opensm-devel >= 3.3.0
- Removed Dependencies:
- opensm-devel >= 3.2.0
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- infiniband-diags-1.4.4-1.el5 - infiniband-diags-1.5.3-1.el5
- Group: System Environment/Libraries
- Summary: OpenFabrics Alliance InfiniBand Diagnostic Tools
- Description: This package provides IB diagnostic programs and scripts needed to diagnose an IB subnet.
- Added Dependencies:
- opensm-devel >= 3.3.0
- Removed Dependencies:
- libibcommon-devel
- opensm-devel >= 3.2.0
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- inn-2.4.3-8.el5 - inn-2.4.3-9.el5
- Group: System Environment/Daemons
- Summary: The InterNetNews (INN) system, an Usenet news server.
- Description: INN (InterNetNews) is a complete system for serving Usenet news and/or private newsfeeds. INN includes innd, an NNTP (NetNews Transport Protocol) server, and nnrpd, a newsreader that is spawned for each client. Both innd and nnrpd vary slightly from the NNTP protocol, but not in ways that are easily noticed. Install the inn package if you need a complete system for serving and reading Usenet news. You may also need to install inn-devel, if you are going to use a separate program which interfaces to INN, like newsgate or tin.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- iproute-2.6.18-10.el5 - iproute-2.6.18-11.el5
- Group: Applications/System
- Summary: Advanced IP routing and network device configuration tools.
- Description: The iproute package contains networking utilities (ip and rtmon, for example) which are designed to use the advanced networking capabilities of the Linux 2.4.x and 2.6.x kernel.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- iprutils-2.2.13-1.el5 - iprutils-2.2.18-1.el5
- Group: System Environment/Base
- Summary: Utilities for the IBM Power Linux RAID adapters
- Description: Provides a suite of utilities to manage and configure SCSI devices supported by the ipr SCSI storage device driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- iptables-1.3.5-5.3.el5 - iptables-1.3.5-5.3.el5_4.1
- Group: System Environment/Base
- Summary: Tools for managing Linux kernel packet filtering capabilities.
- Description: The iptables utility controls the network packet filtering code in the Linux kernel. If you need to set up firewalls and/or IP masquerading, you should install this package.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- iptstate-1.4-1.1.2.2 - iptstate-1.4-2.el5
- Group: System Environment/Base
- Summary: A top-like display of IP Tables state table entries
- Description: IP Tables State (iptstate) was originally written to implement the "state top" feature of IP Filter (see "The Idea" below) in IP Tables. "State top" displays the states held by your stateful firewall in a top-like manner. Since IP Tables doesn't have a built in way to easily display this information even once, an option was added to just have it display the state table once. Features include: - Top-like realtime state table information - Sorting by any field - Reversible sorting - Single display of state table - Customizable refresh rate - Open Source (specifically I'm using the zlib license)
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- iscsi-initiator-utils-6.2.0.871-0.10.el5 - iscsi-initiator-utils-6.2.0.871-0.16.el5
- Group: System Environment/Daemons
- Summary: iSCSI daemon and utility programs
- Description: The iscsi package provides the server daemon for the iSCSI protocol, as well as the utility programs used to manage it. iSCSI is a protocol for distributed disk access using SCSI commands sent over Internet Protocol networks.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- java-1.6.0-openjdk-1.6.0.0-1.2.b09.el5 - java-1.6.0-openjdk-1.6.0.0-1.7.b09.el5
- Group: Development/Languages
- Summary: OpenJDK Runtime Environment
- Description: The OpenJDK runtime environment.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- kdegraphics-3.5.4-13.el5_3 - kdegraphics-3.5.4-15.el5_4.2
- Group: Applications/Multimedia
- Summary: K Desktop Environment - Graphics Applications
- Description: Graphics applications for the K Desktop Environment. Includes: kdvi (displays TeX .dvi files) kghostview (displays postscript files) kcoloredit (palette editor and color chooser) kiconedit (icon editor) kolourpaint (a simple drawing program) ksnapshot (screen capture utility) kview (image viewer for GIF, JPEG, TIFF, etc.) kooka (scanner application) kruler (screen ruler and color measurement tool) kpdf (display pdf files)
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- kdelibs-3.5.4-22.el5_3 - kdelibs-3.5.4-25.el5_4.1
- Group: System Environment/Libraries
- Summary: K Desktop Environment - Libraries
- Description: Libraries for the K Desktop Environment: KDE Libraries included: kdecore (KDE core library), kdeui (user interface), kfm (file manager), khtmlw (HTML widget), kio (Input/Output, networking), kspell (spelling checker), jscript (javascript), kab (addressbook), kimgio (image manipulation).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- kernel-2.6.18-164.el5 - kernel-2.6.18-194.el5
- Group: System Environment/Kernel
- Summary: The Linux kernel (the core of the Linux operating system)
- Description: The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- kexec-tools-1.102pre-77.el5 - kexec-tools-1.102pre-96.el5
- Group: Applications/System
- Summary: The kexec/kdump userspace component.
- Description: kexec-tools provides /sbin/kexec binary that facilitates a new kernel to boot using the kernel's kexec feature either on a normal or a panic reboot. This package contains the /sbin/kexec binary and ancillary utilities that together form the userspace component of the kernel's kexec feature.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- krb5-1.6.1-36.el5 - krb5-1.6.1-36.el5_4.1
- Group: System Environment/Libraries
- Summary: The Kerberos network authentication system.
- Description: Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartext passwords.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ksh-20080202-14.el5 - ksh-20100202-1.el5
- Group: Applications/Shells
- Summary: The Original ATT Korn Shell
- Description: KSH-93 is the most recent version of the KornShell by David Korn of AT&T Bell Laboratories. KornShell is a shell programming language, which is upward compatible with "sh" (the Bourne Shell).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ktune-0.2-3.el5 - ktune-0.2-6.el5
- Group: System Environment/Base
- Summary: Server performance tuning service
- Description: ktune provides settings for server performance tuning. Please have a look at /etc/sysconfig/ktune and /etc/sysctl.ktune for tuning parameters.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- kudzu-1.2.57.1.21-1 - kudzu-1.2.57.1.24-1
- Group: Applications/System
- Summary: The Red Hat Linux hardware probing tool.
- Description: Kudzu is a hardware probing tool run at system boot time to determine what hardware has been added or removed from the system.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- kvm-83-105.el5 - kvm-83-164.el5
- Group: Development/Tools
- Summary: Kernel-based Virtual Machine
- Description: KVM (for Kernel-based Virtual Machine) is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running unmodified Linux or Windows images. Each virtual machine has private virtualized hardware: a network card, disk, graphics adapter, etc.
- Added Dependencies:
- kernel-devel-x86_64 = 2.6.18-191.el5
- Removed Dependencies:
- kernel-devel-x86_64 = 2.6.18-160.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- less-394-6.el5 - less-436-2.el5
- Group: Applications/Text
- Summary: A text file browser similar to more, but better.
- Description: The less utility is a text file browser that resembles more, but has more capabilities. Less allows you to move backwards in the file as well as forwards. Since less doesn't have to read the entire input file before it starts, less starts up more quickly than text editors (for example, vi). You should install less because it is a basic utility for viewing text files, and you'll use it frequently.
- Added Dependencies:
- autoconf
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libXi-1.0.1-3.1 - libXi-1.0.1-4.el5_4
- Group: System Environment/Libraries
- Summary: X.Org X11 libXi runtime library
- Description: X.Org X11 libXi runtime library
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libXrandr-1.1.1-3.1 - libXrandr-1.1.1-3.3
- Group: System Environment/Libraries
- Summary: X.Org X11 libXrandr runtime library
- Description: X.Org X11 libXrandr runtime library
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libXt-1.0.2-3.1.fc6 - libXt-1.0.2-3.2.el5
- Group: System Environment/Libraries
- Summary: X.Org X11 libXt runtime library
- Description: X.Org X11 libXt runtime library
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libaio-0.3.106-3.2 - libaio-0.3.106-5
- Group: System Environment/Libraries
- Summary: Linux-native asynchronous I/O access library
- Description: The Linux-native asynchronous I/O facility ("async I/O", or "aio") has a richer API and capability set than the simple POSIX async I/O facility. This library, libaio, provides the Linux-native API for async I/O. The POSIX async I/O facility requires this library in order to provide kernel-accelerated async I/O capabilities, as do applications which require the Linux-native async I/O API.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libcmpiutil-0.4-2.el5 - libcmpiutil-0.5.1-1.el5
- Group: System Environment/Libraries
- Summary: CMPI Utility Library
- Description: Libcmpiutil is a library of utility functions for CMPI providers. The goal is to reduce the amount of repetitive work done in most CMPI providers by encapsulating common procedures with more "normal" APIs. This extends from operations like getting typed instance properties to standardizing method dispatch and argument checking.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libcxgb3-1.2.3-1.el5 - libcxgb3-1.2.5-2.el5
- Group: System Environment/Libraries
- Summary: Chelsio T3 iWARP HCA Userspace Driver
- Description: Userspace hardware driver for use with the libibverbs InfiniBand/iWARP verbs library. This driver enables Chelsio iWARP capable ethernet devices.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libehca-1.2.1-3.el5 - libehca-1.2.1-6.el5
- Group: System Environment/Libraries
- Summary: IBM InfiniBand HCA Userspace Driver
- Description: IBM hardware driver for use with libibverbs user space verbs access library.
- Added Dependencies:
- autoconf
- libibverbs-devel >= 1.1.3
- libtool
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libevent-1.1a-3.2.1 - libevent-1.4.13-1
- Group: System Environment/Libraries
- Summary: Abstract asynchronous event notification library
- Description: The libevent API provides a mechanism to execute a callback function when a specific event occurs on a file descriptor or after a timeout has been reached. libevent is meant to replace the asynchronous event loop found in event driven network servers. An application just needs to call event_dispatch() and can then add or remove events dynamically without having to change the event loop.
- Added Dependencies:
- doxygen
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libgnomecups-0.2.2-8 - libgnomecups-0.2.2-9
- Group: Development/Libraries
- Summary: GNOME library for CUPS integration
- Description: GNOME library for CUPS integration
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libgtop2-2.14.4-3.el5 - libgtop2-2.14.4-8.el5_4
- Group: System Environment/Libraries
- Summary: libgtop library (version 2)
- Description: libgtop is a library for portably obtaining information about processes, such as their PID, memory usage, etc.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libhugetlbfs-1.3-3.el5 - libhugetlbfs-1.3-7.el5
- Group: System Environment/Libraries
- Summary: Library to access the Huge TLB Filesystem
- Description: The libhugetlbfs library interacts with the Linux hugetlbfs to make large pages available to applications in a transparent manner.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libibcm-1.0.4-3.el5 - libibcm-1.0.5-1.el5
- Group: System Environment/Libraries
- Summary: Userspace InfiniBand Communication Manager.
- Description: libibcm provides a userspace InfiniBand Communication Managment library.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libibcommon-1.1.2-1.el5 - libibcommon-1.2.0-1.el5
- Group: System Environment/Libraries
- Summary: OpenFabrics Alliance InfiniBand management common library
- Description: libibcommon provides common utility functions for the OFA diagnostic and management tools.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libibmad-1.2.3-1.el5 - libibmad-1.3.3-1.el5
- Group: System Environment/Libraries
- Summary: OpenFabrics Alliance InfiniBand MAD library
- Description: libibmad provides low layer IB functions for use by the IB diagnostic and management programs. These include MAD, SA, SMP, and other basic IB functions.
- Added Dependencies:
- libibumad-devel = 1.3.3
- Removed Dependencies:
- libibumad-devel >= 1.2.3
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libibumad-1.2.3-1.el5 - libibumad-1.3.3-1.el5
- Group: System Environment/Libraries
- Summary: OpenFabrics Alliance InfiniBand umad (user MAD) library
- Description: libibumad provides the user MAD library functions which sit on top of the user MAD modules in the kernel. These are used by the IB diagnostic and management tools, including OpenSM.
- No added dependencies
- Removed Dependencies:
- libibcommon-devel >= 1.1.2
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libibverbs-1.1.2-4.el5 - libibverbs-1.1.3-2.el5
- Group: System Environment/Libraries
- Summary: Library providing access to InfiniBand/iWARP hardware verbs protocol
- Description: libibverbs is a library that allows userspace processes to use InfiniBand/iWARP "verbs" as described in the InfiniBand Architecture Specification. This includes direct hardware access for fast path operations. For this library to be useful, a device-specific plug-in module should also be installed.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libipathverbs-1.1-14.el5 - libipathverbs-1.2-2.el5
- Group: System Environment/Libraries
- Summary: QLogic InfiniPath HCA Userspace Driver
- Description: QLogic hardware driver for use with libibverbs user space verbs access library. This driver supports QLogic InfiniPath based cards.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libmlx4-1.0.1-2.el5 - libmlx4-1.0.1-5.el5
- Group: System Environment/Libraries
- Summary: Mellanox ConnectX InfiniBand HCA Userspace Driver
- Description: Mellanox hardware driver for use with libibverbs user space verbs access library. This driver supports Mellanox ConnectX architecture cards.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libmthca-1.0.5-4.el5 - libmthca-1.0.5-6.el5
- Group: System Environment/Libraries
- Summary: Mellanox InfiniBand HCA Userspace Driver
- Description: Mellanox hardware driver for use with libibverbs user space verbs access library. This driver supports Mellanox based Single Data Rate and Dual Data Rate cards, including those from Cisco, Topspin, and Voltaire. It does not support the Connect-X architecture based Quad Data Rate cards (libmlx4 handles that hardware).
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libnes-0.6-2.el5 - libnes-0.9.0-2.el5
- Group: System Environment/Libraries
- Summary: NetEffect RNIC Userspace Driver
- Description: Userspace hardware driver for use with the libibverbs InfiniBand/iWARP verbs library. This driver enables NetEffect iWARP capable ethernet devices.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- librdmacm-1.0.8-5.el5 - librdmacm-1.0.10-1.el5
- Group: System Environment/Libraries
- Summary: Userspace RDMA Connection Manager.
- Description: librdmacm provides a userspace RDMA Communication Managment API.
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4.el5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libsepol-1.15.2-2.el5 - libsepol-1.15.2-3.el5
- Group: System Environment/Libraries
- Summary: SELinux binary policy manipulation library
- Description: Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. libsepol provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, as well as by programs like load_policy that need to perform specific transformations on binary policies such as customizing policy boolean settings.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libtool-1.5.22-6.1 - libtool-1.5.22-7.el5_4
- Group: Development/Tools
- Summary: The GNU Portable Library Tool
- Description: GNU Libtool is a set of shell scripts which automatically configure UNIX and UNIX-like systems to generically build shared libraries. Libtool provides a consistent, portable interface which simplifies the process of using shared libraries. If you are developing programs which will use shared libraries, but do not use the rest of the GNU Autotools (such as GNU Autoconf and GNU Automake), you should install the libtool package. The libtool package also includes all files needed to integrate the GNU Portable Library Tool (libtool) and the GNU Libtool Dynamic Module Loader (ltdl) into a package built using the GNU Autotools (including GNU Autoconf and GNU Automake). This package includes a modification from the original GNU Libtool to allow support for multi-architecture systems, such as the AMD64 Opteron and the Intel 64-bit Xeon.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libuser-0.54.7-2.el5.5 - libuser-0.54.7-2.1.el5_4.1
- Group: System Environment/Base
- Summary: A user and group account administration library.
- Description: The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included.
- Added Dependencies:
- autoconf
- automake
- gettext-devel
- gtk-doc
- libtool
- nscd
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libvirt-0.6.3-20.el5 - libvirt-0.6.3-33.el5
- Group: Development/Libraries
- Summary: Library providing a simple API virtualization
- Description: Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux (and other OSes).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libvirt-cim-0.5.5-2.el5 - libvirt-cim-0.5.8-3.el5
- Group: Development/Libraries
- Summary: A CIM provider for libvirt
- Description: Libvirt-cim is a CMPI CIM provider that implements the DMTF SVPC virtualization model. The goal is to support most of the features exported by libvirt itself, enabling management of multiple platforms with a single provider.
- No added dependencies
- Removed Dependencies:
- xen-devel
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- libvorbis-1.1.2-3.el5_3.3 - libvorbis-1.1.2-3.el5_4.4
- Group: System Environment/Libraries
- Summary: The Vorbis General Audio Compression Codec.
- Description: Ogg Vorbis is a fully open, non-proprietary, patent-and royalty-free, general-purpose compressed audio format for audio and music at fixed and variable bitrates from 16 to 128 kbps/channel. The libvorbis package contains runtime libraries for use in programs that support Ogg Voribs.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- linuxwacom-0.7.8.3-6.el5 - linuxwacom-0.7.8.3-8.el5
- Group: User Interface/X Hardware Support
- Summary: Wacom Drivers from Linux Wacom Project
- Description: The Linux Wacom Project manages the drivers, libraries, and documentation for configuring and running Wacom tablets under the Linux operating system. It contains diagnostic applications as well as X.org XInput drivers.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- lm_sensors-2.10.7-4.el5 - lm_sensors-2.10.7-9.el5
- Group: Applications/System
- Summary: Hardware monitoring tools.
- Description: The lm_sensors package includes a collection of modules for general SMBus access and hardware monitoring. NOTE: this requires special support which is not in standard 2.2-vintage kernels.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- log4cpp-1.0-4.el5 - log4cpp-1.0-9.el5
- Group: Development/Libraries
- Summary: C++ logging library
- Description: A library of C++ classes for flexible logging to files, syslog, IDSA and other destinations. It is modeled after the Log for Java library (http://www.log4j.org), staying as close to their API as is reasonable.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- logwatch-7.3-6.el5 - logwatch-7.3-8.el5
- Group: Applications/System
- Summary: A log file analysis program
- Description: Logwatch is a customizable, pluggable log-monitoring system. It will go through your logs for a given period of time and make a report in the areas that you wish with the detail that you wish. Easy to use - works right out of the package on many systems.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- lvm2-2.02.46-8.el5 - lvm2-2.02.56-8.el5
- Group: System Environment/Base
- Summary: Userland logical volume management tools
- Description: LVM2 includes all of the support for handling read/write operations on physical volumes (hard disks, RAID-Systems, magneto optical, etc., multiple devices (MD), see mdadd(8) or even loop devices, see losetup(8)), creating volume groups (kind of virtual disks) from one or more physical volumes and creating one or more logical volumes (kind of logical partitions) in volume groups.
- Added Dependencies:
- device-mapper >= 1.02.39-1
- Removed Dependencies:
- device-mapper >= 1.02.32-1
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- lvm2-cluster-2.02.46-8.el5 - lvm2-cluster-2.02.56-7.el5
- Group: System Environment/Base
- Summary: Cluster extensions for userland logical volume management tools
- Description: Extensions to LVM2 to support clusters.
- Added Dependencies:
- device-mapper >= 1.02.39-1
- Removed Dependencies:
- device-mapper >= 1.02.32-1
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- man-pages-2.39-12.el5 - man-pages-2.39-15.el5
- Group: Documentation
- Summary: Man (manual) pages from the Linux Documentation Project.
- Description: A large collection of man pages (documentation) from the Linux Documentation Project (LDP).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- man-pages-ja-20060815-11.el5 - man-pages-ja-20060815-13.el5
- Group: Documentation
- Summary: Japanese man (manual) pages from the Japanese Manual Project
- Description: Japanese Manual pages, translated by JM-Project (Japanese Manual Project).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mcelog-0.9pre-1.27.el5 - mcelog-0.9pre-1.29.el5
- Group: System Environment/Base
- Summary: Tool to translate x86-64 CPU Machine Check Exception data.
- Description: mcelog is a daemon that collects and decodes Machine Check Exception data on x86-64 machines.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mdadm-2.6.9-2.el5 - mdadm-2.6.9-3.el5
- Group: System Environment/Base
- Summary: mdadm controls Linux md devices (software RAID arrays)
- Description: mdadm is used to create, manage, and monitor Linux MD (software RAID) devices. As such, it provides similar functionality to the raidtools package. However, mdadm is a single program, and it can perform almost all functions without a configuration file, though a configuration file can be used to help with some common tasks.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mesa-6.5.1-7.7.el5 - mesa-6.5.1-7.8.el5
- Group: System Environment/Libraries
- Summary: Mesa graphics libraries
- Description: Mesa
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- metacity-2.16.0-12.el5 - metacity-2.16.0-15.el5
- Group: User Interface/Desktops
- Summary: Metacity window manager
- Description: Metacity is a simple window manager that integrates nicely with GNOME 2.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- microcode_ctl-1.17-1.48.el5 - microcode_ctl-1.17-1.50.el5
- Group: System Environment/Base
- Summary: Tool to update x86/x86-64 CPU microcode.
- Description: microcode_ctl - updates the microcode on Intel x86/x86-64 CPU's
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mkinitrd-5.1.19.6-54 - mkinitrd-5.1.19.6-61
- Group: System Environment/Base
- Summary: Creates an initial ramdisk image for preloading modules.
- Description: Mkinitrd creates filesystem images for use as initial ramdisk (initrd) images. These ramdisk images are often used to preload the block device modules (SCSI or RAID) needed to access the root filesystem. In other words, generic kernels can be built without drivers for any SCSI adapters which load the SCSI driver as a module. Since the kernel needs to read those modules, but in this case it isn't able to address the SCSI adapter, an initial ramdisk is used. The initial ramdisk is loaded by the operating system loader (normally LILO) and is available to the kernel as soon as the ramdisk is loaded. The ramdisk image loads the proper SCSI adapter and allows the kernel to mount the root filesystem. The mkinitrd program creates such a ramdisk using information found in the /etc/modules.conf file.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- module-init-tools-3.3-0.pre3.1.54.el5 - module-init-tools-3.3-0.pre3.1.60.el5
- Group: System Environment/Kernel
- Summary: Kernel module management utilities.
- Description: The modutils package includes various programs needed for automatic loading and unloading of modules under 2.6 and later kernels, as well as other module management programs. Device drivers and filesystems are two examples of loaded and unloaded modules.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mpitests-3.1-3.el5 - mpitests-3.2-1.el5
- Group: Applications
- Summary: MPI Benchmarks and tests
- Description: Set of popular MPI benchmarks: IMB-2.3 Presta-1.4.0 OSU benchmarks ver 2.2
- Added Dependencies:
- mvapich >= 1.2.0
- mvapich2 >= 1.4
- openmpi >= 1.4
- Removed Dependencies:
- mvapich >= 1.1.0-0.3355.2
- mvapich2 >= 1.2-0.p1.3
- openmpi >= 1.3.2-2
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mtx-1.2.18-8.2.2 - mtx-1.2.18-9
- Group: Applications/System
- Summary: A SCSI media changer control program.
- Description: The MTX program controls the robotic mechanism in autoloaders and tape libraries such as the HP SureStore DAT 40x6, Exabyte EZ-17, and Exabyte 220. This program is also reported to work with a variety of other tape libraries and autochangers from ADIC, Tandberg/Overland, Breece Hill, HP, and Seagate. If you have a backup tape device capable of handling more than one tape at a time, you should install MTX.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mvapich-1.1.0-0.3355.2.el5 - mvapich-1.2.0-0.3562.1.el5
- Group: Development/Libraries
- Summary: MPI implementation over Infiniband RDMA-enabled interconnect
- Description: This is high performance and scalable MPI-1 implementation over Infiniband and RDMA-enabled interconnects. This implementation is based on MPICH and MVICH. MVAPICH is pronounced as `em-vah-pich''.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mvapich2-1.2-0.p1.3.el5 - mvapich2-1.4-1.el5
- Group: Development/Libraries
- Summary: OSU MVAPICH2 MPI package
- Description: This is an MPI-2 implementation which includes all MPI-1 features. It is based on MPICH2 and MVICH.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- mysql-5.0.77-3.el5 - mysql-5.0.77-4.el5_4.2
- Group: Applications/Databases
- Summary: MySQL client programs and shared libraries
- Description: MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the MySQL client programs, the client shared libraries, and generic MySQL files.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- nautilus-open-terminal-0.6-6.el5 - nautilus-open-terminal-0.6-7.el5
- Group: User Interface/Desktops
- Summary: Nautilus extension for an open terminal shortcut
- Description: The nautilus-open-terminal extension provides a right-click "Open Terminal" option for nautilus users who prefer that option.
- Added Dependencies:
- intltool
- nautilus-devel >= 2.5.4
- Removed Dependencies:
- nautilus >= 2.5.4
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- neon-0.25.5-10.el5 - neon-0.25.5-10.el5_4.1
- Group: Applications/Publishing
- Summary: An HTTP and WebDAV client library
- Description: neon is an HTTP and WebDAV client library, with a C interface; providing a high-level interface to HTTP and WebDAV methods along with a low-level interface for HTTP request handling. neon supports persistent connections, proxy servers, basic, digest and Kerberos authentication, and has complete SSL support.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- net-snmp-5.3.2.2-7.el5 - net-snmp-5.3.2.2-9.el5
- Group: System Environment/Daemons
- Summary: A collection of SNMP protocol tools and libraries.
- Description: SNMP (Simple Network Management Protocol) is a protocol used for network management. The NET-SNMP project includes various SNMP tools: an extensible agent, an SNMP library, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl mib browser. This package contains the snmpd and snmptrapd daemons, documentation, etc. You will probably also want to install the net-snmp-utils package, which contains NET-SNMP utilities. Building option: --without tcp_wrappers : disable tcp_wrappers support
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- net-tools-1.60-78.el5 - net-tools-1.60-81.el5
- Group: System Environment/Base
- Summary: Basic networking tools.
- Description: The net-tools package contains basic networking tools, including ifconfig, netstat, route, and others.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- newt-0.52.2-12.el5 - newt-0.52.2-15.el5
- Group: System Environment/Libraries
- Summary: A development library for text mode user interfaces.
- Description: Newt is a programming library for color text mode, widget based user interfaces. Newt can be used to add stacked windows, entry widgets, checkboxes, radio buttons, labels, plain text fields, scrollbars, etc., to text mode user interfaces. This package also contains the shared library needed by programs built with newt, as well as a /usr/bin/dialog replacement called whiptail. Newt is based on the slang library.
- Added Dependencies:
- docbook-utils
- lynx
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- nfs-utils-1.0.9-42.el5 - nfs-utils-1.0.9-44.el5
- Group: System Environment/Daemons
- Summary: NFS utilities and supporting clients and daemons for the kernel NFS server.
- Description: The nfs-utils package provides a daemon for the kernel NFS server and related tools, which provides a much higher level of performance than the traditional Linux NFS server used by most users. This package also contains the showmount program. Showmount queries the mount daemon on a remote host for information about the NFS (Network File System) server on the remote host. For example, showmount can display the clients which are mounted on that host. This package also contains the mount.nfs and umount.nfs program.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- nspluginwrapper-0.9.91.5-22.el5 - nspluginwrapper-1.3.0-8.el5
- Group: Networking/WWW
- Summary: A compatibility layer for Netscape 4 plugins
- Description: nspluginwrapper makes it possible to use Netscape 4 compatible plugins compiled for ppc into Mozilla for another architecture, e.g. x86_64. This package consists in: * npviewer: the plugin viewer * npwrapper.so: the browser-side plugin * nspluginplayer: stand-alone NPAPI plugin player * mozilla-plugin-config: a tool to manage plugins installation and update
- Added Dependencies:
- curl-devel
- gecko-devel
- libX11-devel
- nspr-devel
- pango-devel
- Removed Dependencies:
- gecko-devel >= 1.9
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- nspr-4.7.4-1.el5_3.1 - nspr-4.7.6-1.el5_4
- Group: System Environment/Libraries
- Summary: Netscape Portable Runtime
- Description: NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management (malloc and free) and shared library linking.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- nss_ldap-253-21.el5 - nss_ldap-253-25.el5
- Group: System Environment/Base
- Summary: NSS library and PAM module for LDAP.
- Description: This package includes two LDAP access clients: nss_ldap and pam_ldap. Nss_ldap is a set of C library extensions that allow X.500 and LDAP directory servers to be used as a primary source of aliases, ethers, groups, hosts, networks, protocol, users, RPCs, services, and shadow passwords (instead of or in addition to using flat files or NIS). Pam_ldap is a module for Linux-PAM that supports password changes, V2 clients, Netscape's SSL, ypldapd, Netscape Directory Server password policies, access authorization, and crypted hashes.
- Added Dependencies:
- openldap-devel >= 2.3.43-7
- Removed Dependencies:
- openldap-devel >= 2.0.27
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ntp-4.2.2p1-9.el5_3.2 - ntp-4.2.2p1-9.el5_4.1
- Group: System Environment/Daemons
- Summary: Synchronizes system time using the Network Time Protocol (NTP).
- Description: The Network Time Protocol (NTP) is used to synchronize a computer's time with another reference time source. The ntp package contains utilities and daemons that will synchronize your computer's time to Coordinated Universal Time (UTC) via the NTP protocol and NTP servers. The ntp package includes ntpdate (a program for retrieving the date and time from remote machines via a network) and ntpd (a daemon which continuously adjusts system time). Install the ntp package if you need tools for keeping your system's time synchronized via the NTP protocol.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- numactl-0.9.8-8.el5 - numactl-0.9.8-11.el5
- Group: System Environment/Base
- Summary: library for tuning for Non Uniform Memory Access machines
- Description: Simple NUMA policy support. It consists of a numactl program to run other programs with a specific NUMA policy and a libnuma to do allocations with NUMA policy in applications.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openCryptoki-2.2.4-22.el5 - openCryptoki-2.2.4-22.el5_4.2
- Group: Productivity/Security
- Summary: Implementation of Cryptoki v2.11 for IBM Crypto Hardware
- Description: The PKCS#11 Version 2.11 api implemented for the IBM Crypto cards. This package includes support for the IBM 4758 Cryptographic CoProcessor (with the PKCS#11 firmware loaded) and the IBM eServer Cryptographic Accelerator (FC 4960 on pSeries)
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openais-0.80.6-8.el5 - openais-0.80.6-16.el5
- Group: System Environment/Base
- Summary: The openais Standards-Based Cluster Framework executive and APIs
- Description: This package contains the openais executive, openais service handlers, default configuration files and init script.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openib-1.4.1-3.el5 - openib-1.4.1-5.el5
- Group: System Environment/Base
- Summary: OpenIB Infiniband Driver Stack
- Description: User space initialization scripts for the kernel InfiniBand drivers
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openldap-2.3.43-3.el5 - openldap-2.3.43-12.el5
- Group: System Environment/Daemons
- Summary: The configuration files, libraries, and documentation for OpenLDAP.
- Description: OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools. LDAP is a set of protocols for accessing directory services (usually phone book style information, but other information is possible) over the Internet, similar to the way DNS (Domain Name System) information is propagated over the Internet. The openldap package contains configuration files, libraries, and documentation for OpenLDAP.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openmotif-2.3.1-2.el5 - openmotif-2.3.1-2.el5_4.1
- Group: System Environment/Libraries
- Summary: Open Motif runtime libraries and executables.
- Description: This is the Open Motif 2.3.1 runtime environment. It includes the Motif shared libraries, needed to run applications which are dynamically linked against Motif, and the Motif Window Manager "mwm".
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openmpi-1.3.2-2.el5 - openmpi-1.4-4.el5
- Group: Development/Libraries
- Summary: Open Message Passing Interface
- Description: Open MPI is an open source, freely available implementation of both the MPI-1 and MPI-2 standards, combining technologies and resources from several other projects (FT-MPI, LA-MPI, LAM/MPI, and PACX-MPI) in order to build the best MPI library available. A completely new MPI-2 compliant implementation, Open MPI offers advantages for system and software vendors, application developers, and computer science researchers. For more information, see http://www.open-mpi.org/ .
- Added Dependencies:
- libibcm-devel
- libibverbs-devel >= 1.1.3
- librdmacm-devel
- Removed Dependencies:
- compat-dapl-devel >= 2.0.19-2
- libibverbs-devel >= 1.1.2-4
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openoffice.org-2.3.0-6.11.el5 - openoffice.org-3.1.1-19.5.el5
- Group: Applications/Productivity
- Summary: OpenOffice.org comprehensive office suite.
- Description: OpenOffice.org is an Open Source, community-developed, multi-platform office productivity suite. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites. Sophisticated and flexible, OpenOffice.org also works transparently with a variety of file formats, including Microsoft Office. Usage: Simply type "ooffice" to run OpenOffice.org or select the requested component (Writer, Calc, Impress, etc.) from your desktop menu. On first start a few files will be installed in the user's home, if necessary.
- Added Dependencies:
- bc
- gperf
- java-devel-gcj
- lucene
- Removed Dependencies:
- java-devel = 1.4.2
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- opensm-3.2.6-2.el5 - opensm-3.3.3-1.el5
- Group: System Environment/Daemons
- Summary: OpenIB InfiniBand Subnet Manager and management utilities
- Description: OpenSM is the OpenIB project's Subnet Manager for Infiniband networks. The subnet manager is run as a system daemon on one of the machines in the infiniband fabric to manage the fabric's routing state. This package also contains various tools for diagnosing and testing Infiniband networks that can be used from any machine and do not need to be run on a machine running the opensm daemon.
- Added Dependencies:
- byacc
- libibmad-devel = 1.3.3
- Removed Dependencies:
- libibmad-devel >= 1.2.3
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openssh-4.3p2-36.el5 - openssh-4.3p2-41.el5
- Group: Applications/Internet
- Summary: The OpenSSH implementation of SSH protocol versions 1 and 2
- Description: SSH (Secure SHell) is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the secure channel. OpenSSH is OpenBSD's version of the last free version of SSH, bringing it up to date in terms of security and features, as well as removing all patented algorithms to separate libraries. This package includes the core files necessary for both the OpenSSH client and server. To make this package useful, you should also install openssh-clients, openssh-server, or both.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openssl-0.9.8e-12.el5 - openssl-0.9.8e-12.el5_4.6
- Group: System Environment/Libraries
- Summary: The OpenSSL toolkit
- Description: The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- openswan-2.6.21-5.el5 - openswan-2.6.21-5.el5_4.2
- Group: System Environment/Daemons
- Summary: Openswan IPSEC implementation
- Description: Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4309)
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- oprofile-0.9.4-11.el5 - oprofile-0.9.4-15.el5
- Group: Development/System
- Summary: System wide profiler
- Description: OProfile is a profiling system for systems running Linux. The profiling runs transparently during the background, and profile data can be collected at any time. OProfile makes use of the hardware performance counters provided on Intel P6, and AMD Athlon family processors, and can use the RTC for profiling on other x86 processor types. See the HTML documentation for further details.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pam-0.99.6.2-6.el5 - pam-0.99.6.2-6.el5_4.1
- Group: System Environment/Base
- Summary: A security tool which provides authentication for applications
- Description: PAM (Pluggable Authentication Modules) is a system security tool that allows system administrators to set authentication policy without having to recompile programs that handle authentication.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pam_krb5-2.2.14-10 - pam_krb5-2.2.14-15
- Group: System Environment/Base
- Summary: A Pluggable Authentication Module for Kerberos 5.
- Description: This is pam_krb5, a pluggable authentication module that can be used with Linux-PAM and Kerberos 5. This module supports password checking, ticket creation, and optional TGT verification and conversion to Kerberos IV tickets. The included pam_krb5afs module also gets AFS tokens if so configured.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- paps-0.6.6-18.el5 - paps-0.6.6-19.el5
- Group: Applications/Publishing
- Summary: Plain Text to PostScript converter
- Description: paps is a PostScript converter from plain text file using Pango.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- parted-1.8.1-23.el5 - parted-1.8.1-27.el5
- Group: Applications/System
- Summary: The GNU disk partition manipulation program
- Description: The GNU Parted program allows you to create, destroy, resize, move, and copy hard disk partitions. Parted can be used for creating space for new operating systems, reorganizing disk usage, and copying data to new hard disks.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pax-3.4-1.2.2 - pax-3.4-2.el5
- Group: Applications/Archiving
- Summary: POSIX File System Archiver
- Description: 'pax' is the POSIX standard archive tool. It supports the two most common forms of standard Unix archive (backup) files - CPIO and TAR.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pciutils-2.2.3-7.el5 - pciutils-2.2.3-8.el5
- Group: Applications/System
- Summary: PCI bus related utilities.
- Description: The pciutils package contains various utilities for inspecting and setting devices connected to the PCI bus. The utilities provided require kernel version 2.1.82 or newer (which support the /proc/bus/pci interface).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pcsc-lite-1.4.4-0.1.el5 - pcsc-lite-1.4.4-1.el5
- Group: System Environment/Daemons
- Summary: PC/SC Lite smart card framework and applications
- Description: The purpose of PC/SC Lite is to provide a Windows(R) SCard interface in a very small form factor for communicating to smartcards and readers. PC/SC Lite uses the same winscard API as used under Windows(R). This package includes the PC/SC Lite daemon, a resource manager that coordinates communications with smart card readers and smart cards that are connected to the system, as well as other command line tools.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- perftest-1.2-14.el5 - perftest-1.2.3-1.el5
- Group: Productivity/Networking/Diagnostic
- Summary: IB Performance tests
- Description: gen2 uverbs microbenchmarks
- Added Dependencies:
- libibverbs-devel >= 1.1.3
- librdmacm-devel >= 1.0.10
- Removed Dependencies:
- libibverbs-devel >= 1.1.2-4
- librdmacm-devel >= 1.0.8-5
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- perl-Sys-Virt-0.2.0-4.el5 - perl-Sys-Virt-0.2.0-6.el5
- Group: Development/Libraries
- Summary: Perl bindings for the libvirt library
- Description: The Sys::Virt module provides a Perl XS binding to the libvirt virtual machine management APIs. This allows machines running within arbitrary virtualization containers to be managed with a consistent API.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- perl-XML-LibXML-1.58-5 - perl-XML-LibXML-1.58-6
- Group: Development/Libraries
- Summary: XML-LibXML Perl module
- Description: XML-LibXML Perl module.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- perl-XML-SAX-0.14-5 - perl-XML-SAX-0.14-8
- Group: Development/Libraries
- Summary: XML-SAX Perl module
- Description: XML-SAX Perl module.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pexpect-2.3-1.el5 - pexpect-2.3-3.el5
- Group: Development/Languages
- Summary: Pure Python Expect-like module
- Description: Pexpect is a pure Python module for spawning child applications; controlling them; and responding to expected patterns in their output. Pexpect works like Don Libes' Expect. Pexpect allows your script to spawn a child application and control it as if a human were typing commands. Pexpect can be used for automating interactive applications such as ssh, ftp, passwd, telnet, etc. It can be used to automate setup scripts for duplicating software package installations on different servers. And it can be used for automated software testing. Pexpect is in the spirit of Don Libes' Expect, but Pexpect is pure Python. Unlike other Expect-like modules for Python, Pexpect does not require TCL or Expect nor does it require C extensions to be compiled. It should work on any platform that supports the standard Python pty module.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- php-5.1.6-23.2.el5_3 - php-5.1.6-27.el5
- Group: Development/Languages
- Summary: The PHP HTML-embedded scripting language. (PHP: Hypertext Preprocessor)
- Description: PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The php package contains the module which adds support for the PHP language to Apache HTTP Server.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pidgin-2.5.9-1.el5 - pidgin-2.6.6-1.el5
- Group: Applications/Internet
- Summary: A Gtk+ based multiprotocol instant messaging client
- Description: Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor. Pidgin supports many common features of other clients, as well as many unique features, such as perl scripting, TCL scripting and C plugins. Pidgin is not affiliated with or endorsed by America Online, Inc., Microsoft Corporation, Yahoo! Inc., or ICQ Inc.
- No added dependencies
- Removed Dependencies:
- aspell-devel
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- piranha-0.8.4-13.el5 - piranha-0.8.4-16.el5
- Group: System Environment/Base
- Summary: Cluster administation tools
- Description: Various tools to administer and configure the Linux Virtual Server as well as heartbeating and failover components. The LVS is a dynamically adjusted kernel routing mechanism that provides load balancing primarily for web and ftp servers though other services are supported.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pirut-1.3.28-13.el5 - pirut-1.3.28-17.el5
- Group: Applications/System
- Summary: Package Installation, Removal and Update Tools
- Description: pirut (pronounced "pirate") provides a set of graphical tools for managing software.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- policycoreutils-1.33.12-14.6.el5 - policycoreutils-1.33.12-14.8.el5
- Group: System Environment/Base
- Summary: SELinux policy core utilities.
- Description: Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. policycoreutils contains the policy core utilities that are required for basic operation of a SELinux system. These utilities include load_policy to load policies, setfiles to label filesystems, newrole to switch roles, and run_init to run /etc/init.d scripts in the proper context.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- poppler-0.5.4-4.4.el5_3.9 - poppler-0.5.4-4.4.el5_4.11
- Group: Development/Libraries
- Summary: PDF rendering library
- Description: Poppler, a PDF rendering library, it's a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- postgresql-8.1.11-1.el5_1.1 - postgresql-8.1.18-2.el5_4.1
- Group: Applications/Databases
- Summary: PostgreSQL client programs and libraries.
- Description: PostgreSQL is an advanced Object-Relational database management system (DBMS) that supports almost all SQL constructs (including transactions, subselects and user-defined types and functions). The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipulate the internal structure of PostgreSQL databases on a PostgreSQL server. These client programs can be located on the same machine with the PostgreSQL server, or may be on a remote machine which accesses a PostgreSQL server over a network connection. This package contains the docs in HTML for the whole package, as well as command-line utilities for managing PostgreSQL databases on a PostgreSQL server. If you want to manipulate a PostgreSQL database on a remote PostgreSQL server, you need this package. You also need to install this package if you're installing the postgresql-server package.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ppc64-utils-0.11-12.el5 - ppc64-utils-0.11-14.el5
- Group: System Environment/Base
- Summary: Linux/PPC64 specific utilities
- Description: A collection of utilities for Linux on PPC64 platforms.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- procps-3.2.7-11.1.el5 - procps-3.2.7-16.el5
- Group: Applications/System
- Summary: System and process monitoring utilities.
- Description: The procps package contains a set of system utilities that provide system information. Procps includes ps, free, skill, pkill, pgrep, snice, tload, top, uptime, vmstat, w, watch and pdwx. The ps command displays a snapshot of running processes. The top command provides a repetitive update of the statuses of running processes. The free command displays the amounts of free and used memory on your system. The skill command sends a terminate command (or another specified signal) to a specified set of processes. The snice command is used to change the scheduling priority of specified processes. The tload command prints a graph of the current system load average to a specified tty. The uptime command displays the current time, how long the system has been running, how many users are logged on, and system load averages for the past one, five, and fifteen minutes. The w command displays a list of the users who are currently logged on and what they are running. The watch program watches a running program. The vmstat command displays virtual memory statistics about processes, memory, paging, block I/O, traps, and CPU activity. The pwdx command reports the current working directory of a process or processes.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- pykickstart-0.43.5-1.el5 - pykickstart-0.43.8-1.el5
- Group: System Environment/Libraries
- Summary: A python library for manipulating kickstart files
- Description: The pykickstart package is a python library for manipulating kickstart files.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- python-virtinst-0.400.3-5.el5 - python-virtinst-0.400.3-9.el5
- Group: Development/Libraries
- Summary: Python modules and utilities for installing virtual machines
- Description: virtinst is a module that helps build and install libvirt based virtual machines. Currently supports KVM, QEmu and Xen virtual machines. Package includes several command line utilities, including virt-install (build and install new VMs) and virt-clone (clone an existing virtual machine).
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- qlvnictools-0.0.1-11.el5 - qlvnictools-0.0.1-12.el5
- Group: System Environment/Base
- Summary: VNIC ULP service
- Description: VNIC ULP service
- Added Dependencies:
- libibverbs-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- qperf-0.4.4-3.el5 - qperf-0.4.6-1.el5
- Group: Networking/Diagnostic
- Summary: Measure socket and RDMA performance
- Description: Measure socket and RDMA performance.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- qspice-0.3.0-39.el5 - qspice-0.3.0-54.el5
- Group: User Interface/Desktops
- Summary: An implementation of the Simple Protocol for Independent Computing Environments
- Description: The Simple Protocol for Independent Computing Environments (SPICE) is a remote display system built for virtual environments which allows you to view a computing 'desktop' environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rds-tools-1.4-2.el5 - rds-tools-1.5-1.el5
- Group: Applications/System
- Summary: RDS support tools
- Description: Various tools for support of the RDS (Reliable Datagram Socket) API. RDS is specific to InfiniBand and iWARP networks and does not work on non-RDMA hardware.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- readahead-1.3-7.el5 - readahead-1.3-8.el5
- Group: System Environment/Base
- Summary: Read a preset list of files into memory.
- Description: readahead reads the contents of a list of files into memory, which causes them to be read from cache when they are actually needed. Its goal is to speed up the boot process.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- redhat-artwork-5.0.9-1.el5 - redhat-artwork-5.0.9-2.el5
- Group: User Interface/Desktops
- Summary: Artwork for Red Hat default look-and-feel
- Description: redhat-artwork contains the themes and icons that make up the Red Hat default look and feel.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- redhat-release-5Client-5.4.0.3 - redhat-release-5Client-5.5.0.2
- Group: System Environment/Base
- Summary: Red Hat Enterprise Linux release file
- Description: Red Hat Enterprise Linux release files
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- redhat-release-notes-5Client-29 - redhat-release-notes-5Client-31
- Group: System Environment/Base
- Summary: Red Hat Enterprise Linux release notes files
- Description: Red Hat Enterprise Linux release notes files.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- redhat-release-5Server-5.4.0.3 - redhat-release-5Server-5.5.0.2
- Group: System Environment/Base
- Summary: Red Hat Enterprise Linux release file
- Description: Red Hat Enterprise Linux release files
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- redhat-release-notes-5Server-29 - redhat-release-notes-5Server-31
- Group: System Environment/Base
- Summary: Red Hat Enterprise Linux release notes files
- Description: Red Hat Enterprise Linux release notes files.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rgmanager-2.0.52-1.el5 - rgmanager-2.0.52-6.el5
- Group: System Environment/Base
- Summary: Open Source HA Resource Group Failover for Red Hat Enterprise Linux
- Description: Red Hat Resource Group Manager provides high availability of critical server applications in the event of planned or unplanned system downtime.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rhn-client-tools-0.4.20-9.el5 - rhn-client-tools-0.4.20-33.el5
- Group: System Environment/Base
- Summary: Support programs and libraries for Red Hat Network
- Description: Red Hat Network Client Tools provides programs and libraries to allow your system to receive software updates from Red Hat Network.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rhnlib-2.2.7-2.el5 - rhnlib-2.5.22-3.el5
- Group: Development/Libraries
- Summary: Python libraries for the RHN project
- Description: rhnlib is a collection of python modules used by the Red Hat Network (http://rhn.redhat.com) software.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rhnsd-4.7.0-4.el5 - rhnsd-4.7.0-5.el5
- Group: System Environment/Base
- Summary: Red Hat Network query daemon
- Description: The Red Hat Update Agent that automatically queries the Red Hat Network servers and determines which packages need to be updated on your machine, and runs any actions.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rhpxl-0.41.1-7.el5 - rhpxl-0.41.1-9.el5
- Group: System Environment/Libraries
- Summary: Python library for configuring and running X.
- Description: The rhpxl (pronounced 'rapunzel') package contains a Python library for configuring and running X.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- rsyslog-2.0.6-1.el5 - rsyslog-3.22.1-3.el5
- Group: System Environment/Daemons
- Summary: Enhanced system logging and kernel message trapping daemons
- Description: Rsyslog is an enhanced multi-threaded syslogd supporting, among others, MySQL, syslog/tcp, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is quite compatible to stock sysklogd and can be used as a drop-in replacement. Its advanced features make it suitable for enterprise-class, encryption protected syslog relay chains while at the same time being very easy to setup for the novice user.
- Added Dependencies:
- gnutls-devel
- krb5-devel
- postgresql-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- ruby-1.8.5-5.el5_3.7 - ruby-1.8.5-5.el5_4.8
- Group: Development/Languages
- Summary: An interpreter of object-oriented scripting language
- Description: Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks (as in Perl). It is simple, straight-forward, and extensible.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- samba-3.0.33-3.14.el5 - samba-3.0.33-3.28.el5
- Group: System Environment/Daemons
- Summary: The Samba SMB server.
- Description: Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information (such as lists of available files and printers). The Windows NT, OS/2, and Linux operating systems support this natively, and add-on packages can enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS, and more. This package provides an SMB server that can be used to provide network services to SMB (sometimes called "Lan Manager") clients. Samba uses NetBIOS over TCP/IP (NetBT) protocols and does NOT need the NetBEUI (Microsoft Raw NetBIOS frame) protocol.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- sblim-1-35.el5 - sblim-1-40.el5
- Group: Applications/System
- Summary: Standards Based Linux Instrumentation for Manageability
- Description: SBLIM stands for Standards Based Linux Instrumentation for Manageability, and consists of a set of standards based Web Based Enterprise Management (WBEM) modules that use the Common Information Model (CIM) standard to gather and provide systems management information, events, and methods to local or networked consumers via an CIM object services broker using the CMPI (Common Manageability Programming Interface) standard. This package provides a set of core providers and development tools for systems management applications.
- Added Dependencies:
- libhbaapi-devel
- openssl-devel
- pam-devel
- sblim-cmpi-devel
- zlib-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- screen-4.0.3-1.el5 - screen-4.0.3-1.el5_4.1
- Group: Applications/System
- Summary: A screen manager that supports multiple logins on one terminal
- Description: The screen utility allows you to have multiple logins on just one terminal. Screen is useful for users who telnet into a machine or are connected via a dumb terminal, but want to use more than just one login. Install the screen package if you need a screen manager that can support multiple logins on one terminal.
- Added Dependencies:
- libutempter-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- scsi-target-utils-0.0-5.20080917snap.el5 - scsi-target-utils-0.0-6.20091205snap.el5_4.1
- Group: System Environment/Daemons
- Summary: The SCSI target daemon and utility programs
- Description: The SCSI target package contains the daemon and tools to setup a SCSI targets. Currently, software iSCSI targets are supported.
- No added dependencies
- Removed Dependencies:
- openssl-devel
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- selinux-policy-2.4.6-255.el5 - selinux-policy-2.4.6-279.el5
- Group: System Environment/Base
- Summary: SELinux policy configuration
- Description: SELinux Reference Policy - modular.
- Added Dependencies:
- checkpolicy >= 1.33.1-5
- Removed Dependencies:
- checkpolicy >= 1.30.11-1
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- sendmail-8.13.8-2.el5 - sendmail-8.13.8-8.el5
- Group: System Environment/Daemons
- Summary: A widely used Mail Transport Agent (MTA).
- Description: The Sendmail program is a very widely used Mail Transport Agent (MTA). MTAs send mail from one machine to another. Sendmail is not a client program, which you use to read your email. Sendmail is a behind-the-scenes program which actually moves your email over networks or the Internet to where you want it to go. If you ever need to reconfigure Sendmail, you will also need to have the sendmail.cf package installed. If you need documentation on Sendmail, you can install the sendmail-doc package.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- shadow-utils-4.0.17-14.el5 - shadow-utils-4.0.17-15.el5
- Group: System Environment/Base
- Summary: Utilities for managing accounts and shadow password files.
- Description: The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow password format, plus programs for managing user and group accounts. The pwconv command converts passwords to the shadow password format. The pwunconv command unconverts shadow passwords and generates an npasswd file (a standard UNIX password file). The pwck command checks the integrity of password and shadow files. The lastlog command prints out the last login times for all users. The useradd, userdel, and usermod commands are used for managing user accounts. The groupadd, groupdel, and groupmod commands are used for managing group accounts.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- sos-1.7-9.27.el5 - sos-1.7-9.49.el5
- Group: Development/Libraries
- Summary: A set of tools to gather troubleshooting information from a system
- Description: Sos is a set of tools that gathers information about system hardware and configuration. The information can then be used for diagnostic purposes and debugging. Sos is commonly used to help support technicians and developers.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- squid-2.6.STABLE21-3.el5 - squid-2.6.STABLE21-6.el5
- Group: System Environment/Daemons
- Summary: The Squid proxy caching server.
- Description: Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools.
- Added Dependencies:
- krb5-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- squirrelmail-1.4.8-5.el5_3.7 - squirrelmail-1.4.8-5.el5_4.10
- Group: Applications/Internet
- Summary: SquirrelMail webmail client
- Description: SquirrelMail is a standards-based webmail package written in PHP4. It includes built-in pure PHP support for the IMAP and SMTP protocols, and all pages render in pure HTML 4.0 (with no Javascript) for maximum compatibility across browsers. It has very few requirements and is very easy to configure and install. SquirrelMail has all the functionality you would want from an email client, including strong MIME support, address books, and folder manipulation.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- srptools-0.0.4-6.el5 - srptools-0.0.4-8.el5
- Group: System Environment/Base
- Summary: Tools for using the InfiniBand SRP protocol devices
- Description: In conjunction with the kernel ib_srp driver, srptools allows you to discover and use SCSI devices via the SCSI RDMA Protocol over InfiniBand.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- star-1.5a75-2 - star-1.5a75-3
- Group: Applications/Archiving
- Summary: An archiving tool with ACL support
- Description: Star saves many files together into a single tape or disk archive, and can restore individual files from the archive. Star supports ACL.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- strace-4.5.18-5.el5 - strace-4.5.18-5.el5_4.1
- Group: Development/Debuggers
- Summary: Tracks and displays system calls associated with a running process
- Description: The strace program intercepts and records the system calls called and received by a running process. Strace can print a record of each system call, its arguments and its return value. Strace is useful for diagnosing problems and debugging, as well as for instructional purposes. Install strace if you need a tool to track the system calls made and received by a process.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- sudo-1.6.9p17-5.el5 - sudo-1.7.2p1-5.el5
- Group: Applications/System
- Summary: Allows restricted root access for specified users.
- Description: Sudo (superuser do) allows a system administrator to give certain users (or groups of users) the ability to run some (or all) commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict what commands a user may run on a per-host basis, copious logging of each command (providing a clear audit trail of who did what), a configurable timeout of the sudo command, and the ability to use the same configuration file (sudoers) on many different machines.
- Added Dependencies:
- libselinux-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- sysklogd-1.4.1-44.el5 - sysklogd-1.4.1-46.el5
- Group: System Environment/Daemons
- Summary: System logging and kernel message trapping daemons.
- Description: The sysklogd package contains two system utilities (syslogd and klogd) which provide support for system logging. Syslogd and klogd run as daemons (background processes) and log system messages to different places, like sendmail logs, security logs, error logs, etc.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- system-config-cluster-1.0.57-1.5 - system-config-cluster-1.0.57-3
- Group: Applications/System
- Summary: system-config-cluster is a utility which allows you to manage cluster configuration in a graphical setting.
- Description: system-config-cluster is a utility which allows you to manage cluster configuuration in a graphical setting.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- system-config-lvm-1.1.5-1.0.el5 - system-config-lvm-1.1.5-4.el5
- Group: Applications/System
- Summary: A utility for graphically configuring Logical Volumes
- Description: system-config-lvm is a utility for graphically configuring Logical Volumes
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- system-config-securitylevel-1.6.29.1-2.1.el5 - system-config-securitylevel-1.6.29.1-5.el5
- Group: System Environment/Base
- Summary: A graphical interface for modifying the system security level
- Description: system-config-securitylevel is a graphical user interface for setting basic firewall rules.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- system-config-services-0.9.4-1.el5 - system-config-services-0.9.4-5.el5
- Group: Applications/System
- Summary: system-config-services is an initscript and xinetd configuration utility
- Description: system-config-services is a utility which allows you to configure which services should be enabled on your machine.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- systemtap-0.9.7-5.el5 - systemtap-1.1-3.el5
- Group: Development/System
- Summary: Instrumentation System
- Description: SystemTap is an instrumentation system for systems running Linux 2.6. Developers can write instrumentation to collect data on the operation of the system.
- Added Dependencies:
- boost-devel
- nss-tools
- pkgconfig
- Removed Dependencies:
- crash-devel
- zlib-devel
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- tar-1.15.1-23.0.1.el5 - tar-1.15.1-30.el5
- Group: Applications/Archiving
- Summary: A GNU file archiving program
- Description: The GNU tar program saves many files together in one archive and can restore individual files (or all of the files) from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive compression/decompression, the ability to perform remote archives, and the ability to perform incremental and full backups. If you want to use tar for remote backups, you also need to install the rmt package.
- Added Dependencies:
- gawk
- gettext
- rsh
- texinfo
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- taskjuggler-2.2.0-3 - taskjuggler-2.2.0-5.el5
- Group: Applications/Productivity
- Summary: Project management tool
- Description: TaskJuggler is a modern and powerful project management tool. Its new approach to project planning and tracking is far superior to the commonly used Gantt chart editing tools. It has already been successfully used in many projects and scales easily to projects with hundreds of resources and thousands of tasks. It covers the complete spectrum of project management tasks from the first idea to the completion of the project. It assists you during project scoping, resource assignment, cost and revenue planning, and risk and communication management.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- tcpdump-3.9.4-14.el5 - tcpdump-3.9.4-15.el5
- Group: Applications/Internet
- Summary: A network traffic monitoring tool.
- Description: Tcpdump is a command-line tool for monitoring network traffic. Tcpdump can capture and display the packet headers on a particular network interface or on all interfaces. Tcpdump can display all of the packet headers, or just the ones that match particular criteria. Install tcpdump if you need a program to monitor network traffic.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- tcsh-6.14-14.el5 - tcsh-6.14-17.el5
- Group: System Environment/Shells
- Summary: An enhanced version of csh, the C shell.
- Description: Tcsh is an enhanced but completely compatible version of csh, the C shell. Tcsh is a command language interpreter which can be used both as an interactive login shell and as a shell script command processor. Tcsh includes a command line editor, programmable word completion, spelling correction, a history mechanism, job control and a C language like syntax.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- thunderbird-2.0.0.22-2.el5_3 - thunderbird-2.0.0.24-2.el5_4
- Group: Applications/Internet
- Summary: Mozilla Thunderbird mail/newsgroup client
- Description: Mozilla Thunderbird is a standalone mail and newsgroup client.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- tog-pegasus-2.7.2-1.el5 - tog-pegasus-2.9.1-2.el5
- Group: Systems Management/Base
- Summary: OpenPegasus WBEM Services for Linux
- Description: OpenPegasus WBEM Services for Linux enables management solutions that deliver increased control of enterprise resources. WBEM is a platform and resource independent DMTF standard that defines a common information model and communication protocol for monitoring and controlling resources from diverse sources.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- tzdata-2009k-1.el5 - tzdata-2010e-1.el5
- Group: System Environment/Base
- Summary: Timezone data
- Description: This package contains data files with rules for various timezones around the world.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- util-linux-2.13-0.52.el5 - util-linux-2.13-0.52.el5_4.1
- Group: System Environment/Base
- Summary: A collection of basic system utilities.
- Description: The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, Util-linux contains the fdisk configuration tool and the login program.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- valgrind-3.2.1-6.el5 - valgrind-3.5.0-1.el5
- Group: Development/Debuggers
- Summary: Tool for finding memory management bugs in programs
- Description: Valgrind is a tool to help you find memory-management problems in your programs. When a program is run under Valgrind's supervision, all reads and writes of memory are checked, and calls to malloc/new/free/delete are intercepted. As a result, Valgrind can detect a lot of problems that are otherwise very hard to find/diagnose.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- vconfig-1.9-2.1 - vconfig-1.9-3
- Group: System Environment/Base
- Summary: Linux 802.1q VLAN configuration utility
- Description: The vconfig program configures and adjusts 802.1q VLAN parameters.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- vino-2.13.5-7.el5 - vino-2.13.5-9.el5
- Group: User Interface/Desktops
- Summary: A remote desktop system for GNOME
- Description: Vino is a VNC server for GNOME. It allows remote users to connect to a running GNOME session using VNC.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- virt-manager-0.6.1-8.el5 - virt-manager-0.6.1-12.el5
- Group: Applications/Emulators
- Summary: Virtual Machine Manager
- Description: Virtual Machine Manager provides a graphical tool for administering virtual machines for KVM, Xen, and QEmu. Start, stop, add or remove virtual devices, connect to a graphical or serial console, and see resource usage statistics for existing VMs on local or remote machines. Uses libvirt as the backend management API.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- vixie-cron-4.1-76.el5 - vixie-cron-4.1-77.el5_4.1
- Group: System Environment/Base
- Summary: The Vixie cron daemon for executing specified programs at set times.
- Description: The vixie-cron package contains the Vixie version of cron. Cron is a standard UNIX daemon that runs specified programs at scheduled times. Vixie cron adds better security and more powerful configuration options to the standard version of cron.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- vsftpd-2.0.5-16.el5 - vsftpd-2.0.5-16.el5_4.1
- Group: System Environment/Daemons
- Summary: vsftpd - Very Secure Ftp Daemon
- Description: vsftpd is a Very Secure FTP daemon. It was written completely from scratch.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- wdaemon-0.14-4 - wdaemon-0.14-5
- Group: User Interface/X Hardware Support
- Summary: Hotplug helper for Wacom X.org driver
- Description: Helper application which emulates persistent input devices for Wacom tablets so they can be plugged and unplugged while X.org server is running. This should go away as soon X.org properly supports hotplugging.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- wget-1.11.4-2.el5 - wget-1.11.4-2.el5_4.1
- Group: Applications/Internet
- Summary: A utility for retrieving files using the HTTP or FTP protocols.
- Description: GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest with FTP servers and Range with HTTP servers to retrieve files over slow or unstable connections, support for Proxy servers, and configurability.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- wpa_supplicant-0.5.10-8.el5 - wpa_supplicant-0.5.10-9.el5
- Group: System Environment/Base
- Summary: WPA/WPA2/IEEE 802.1X Supplicant
- Description: wpa_supplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11 authentication/association of the wlan driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xen-3.0.3-94.el5 - xen-3.0.3-105.el5
- Group: Development/Libraries
- Summary: Xen is a virtual machine monitor
- Description: This package contains the Xen tools and management daemons needed to run virtual machines on x86, x86_64, and ia64 systems. Information on how to use Xen can be found at the Xen project pages. The Xen system also requires the Xen hypervisor and domain-0 kernel, which can be found in the kernel-xen* package. Virtualization can be used to run multiple operating systems on one physical system, for purposes of hardware consolidation, hardware abstraction, or to test untrusted applications in a sandboxed environment.
- Added Dependencies:
- bzip2-devel
- e4fsprogs-devel
- xz-devel
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xerces-j2-2.7.1-7jpp.2 - xerces-j2-2.7.1-7jpp.2.el5_4.2
- Group: Text Processing/Markup/XML
- Summary: Java XML parser
- Description: Welcome to the future! Xerces2 is the next generation of high performance, fully compliant XML parsers in the Apache Xerces family. This new version of Xerces introduces the Xerces Native Interface (XNI), a complete framework for building parser components and configurations that is extremely modular and easy to program. The Apache Xerces2 parser is the reference implementation of XNI but other parser components, configurations, and parsers can be written using the Xerces Native Interface. For complete design and implementation documents, refer to the XNI Manual. Xerces 2 is a fully conforming XML Schema processor. For more information, refer to the XML Schema page. Xerces 2 also provides a partial implementation of Document Object Model Level 3 Core, Load and Save and Abstract Schemas [deprecated] Working Drafts. For more information, refer to the DOM Level 3 Implementation page.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xmlsec1-1.2.9-8.1 - xmlsec1-1.2.9-8.1.1
- Group: Development/Libraries
- Summary: Library providing support for "XML Signature" and "XML Encryption" standards
- Description: XML Security Library is a C library based on LibXML2 and OpenSSL. The library was created with a goal to support major XML security standards "XML Digital Signature" and "XML Encryption".
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drivers-7.1-4.1.el5 - xorg-x11-drivers-7.1-4.2.el5
- Group: User Interface/X Hardware Support
- Summary: X.Org X11 driver installation package
- Description: The purpose of this package is to require all of the individual X.Org driver rpms, to allow the OS installation software to install all drivers all at once, without having to track which individual drivers are present on each architecture. By installing this package, it forces all of the individual driver packages to be installed.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-ast-0.81.0-3 - xorg-x11-drv-ast-0.89.9-1.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 ast video driver
- Description: X.Org X11 ast video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-evdev-1.0.0.5-3.el5 - xorg-x11-drv-evdev-1.0.0.5-5.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 evdev input driver
- Description: X.Org X11 evdev input driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-fbdev-0.3.0-2 - xorg-x11-drv-fbdev-0.3.0-3
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 fbdev video driver
- Description: X.Org X11 fbdev video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-i810-1.6.5-9.25.el5 - xorg-x11-drv-i810-1.6.5-9.36.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 i810 video driver(s)
- Description: X.Org X11 i810 video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-mga-1.4.10-5.el5 - xorg-x11-drv-mga-1.4.10-7.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 mga video driver
- Description: X.Org X11 mga video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-nv-2.1.12-6.el5 - xorg-x11-drv-nv-2.1.15-3.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 nv video driver
- Description: X.Org X11 nv video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-qxl-0.0.4-1.1.el5 - xorg-x11-drv-qxl-0.0.12-1.2.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 qxl video driver
- Description: X.Org X11 qxl video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-drv-vesa-1.3.0-8.1.el5 - xorg-x11-drv-vesa-1.3.0-8.2.el5
- Group: User Interface/X Hardware Support
- Summary: Xorg X11 vesa video driver
- Description: X.Org X11 vesa video driver.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-server-1.1.1-48.67.el5 - xorg-x11-server-1.1.1-48.76.el5
- Group: User Interface/X
- Summary: X.Org X11 X server
- Description: X.Org X11 X server
- Added Dependencies:
- mesa-source >= 6.5.1-7.8.el5
- pam-devel
- Removed Dependencies:
- mesa-source >= 6.5.1
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xorg-x11-xdm-1.0.5-6.el5 - xorg-x11-xdm-1.0.5-7.el5
- Group: User Interface/X
- Summary: X.Org X11 xdm - X Display Manager
- Description: X.Org X11 xdm - X Display Manager
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xterm-215-8.el5 - xterm-215-8.el5_4.1
- Group: User Interface/X
- Summary: xterm terminal emulator for the X Window System
- Description: The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- xulrunner-1.9.0.12-1.el5_3 - xulrunner-1.9.0.18-1.el5_4
- Group: Applications/Internet
- Summary: XUL Runtime for Gecko Applications
- Description: XULRunner provides the XUL Runtime environment for Gecko applications.
- Added Dependencies:
- nspr-devel >= 4.7.6
- Removed Dependencies:
- nspr-devel >= 4.7.0.99.2
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- yaboot-1.3.13-8.el5 - yaboot-1.3.13-10.el5
- Group: System Environment/Base
- Summary: Linux bootloader for Power Macintosh "New World" computers.
- Description: yaboot is a bootloader for PowerPC machines which works on New World ROM machines (Rev. A iMac and newer) and runs directly from Open Firmware, eliminating the need for Mac OS. yaboot can also bootload IBM pSeries machines.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- yp-tools-2.9-0.1 - yp-tools-2.9-1.el5
- Group: System Environment/Base
- Summary: NIS (or YP) client programs.
- Description: The Network Information Service (NIS) is a system which provides network information (login names, passwords, home directories, group information) to all of the machines on a network. NIS can enable users to login on any machine on the network, as long as the machine has the NIS client programs running and the user's password is recorded in the NIS passwd database. NIS was formerly known as Sun Yellow Pages (YP). This package's NIS implementation is based on FreeBSD's YP and is a special port for glibc 2.x and libc versions 5.4.21 and later. This package only provides the NIS client programs. In order to use the clients, you'll need to already have an NIS server running on your network. An NIS server is provided in the ypserv package. Install the yp-tools package if you need NIS client programs for machines on your network. You will also need to install the ypbind package on every machine running NIS client programs. If you need an NIS server, you'll need to install the ypserv package on one machine on the network.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- yum-3.2.22-20.el5 - yum-3.2.22-26.el5
- Group: System Environment/Base
- Summary: RPM installer/updater
- Description: Yum is a utility that can check for and automatically download and install updated RPM packages. Dependencies are obtained and downloaded automatically prompting the user as necessary.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
- yum-rhn-plugin-0.5.4-13.el5 - yum-rhn-plugin-0.5.4-15.el5
- Group: System Environment/Base
- Summary: RHN support for yum
- Description: This yum plugin provides support for yum to access a Red Hat Network server for software updates.
- No added dependencies
- No removed dependencies
- No added provides
- No removed provides
- No added conflicts
- No removed conflicts
- No added obsoletes
- No removed obsoletes
Appendix B. Revision History
Revision History | |||
---|---|---|---|
Revision 1-3.402 | Fri Oct 25 2013 | Rüdiger Landmann | |
| |||
Revision 1-3 | Mon Jun 4 2012 | Martin Prpič | |
| |||
Revision 1-1 | Thu Apr 22 2010 | Ryan Lerch | |
| |||
Revision 1-0 | Wed Nov 26 2009 | Ryan Lerch | |
|