RHBA-2009:0195 - Bug Fix Advisory

Topic

An updated yum-rhn-plugin package that fixes a bug is now available.

Description

yum-rhn-plugin allows yum to access a Red Hat Network server for software
updates.

This update applies several bug fixes and enhancements, most notably:

• Options in the [repos] section of /etc/yum/pluginconf.d/rhnplugin.conf

now work as expected. In previous releases, the "protect" and "exclude"
options did not work as documented.

• A bug that prevented 'yum repolist all' from displaying the 'repo.name'

attribute of RHN repositories is now fixed.

• Package transfers now support SSL CA certificate verification.
• A bug in /usr/lib/yum-plugins/rhnplugin.py is now fixed. In previous

releases, the formReposForClean() function (in
/usr/lib/yum-plugins/rhnplugin.py) could add duplicate entries (retrieved
from the yum cache directory) to the RepoStorage object when users ran 'yum
clean'. When this occurred, an exception could occur. With this release,
formReposForClean() now checks if a repository name already exists in
RepoStorage before adding it.

• 'yum clean all' now cleans metadata correctly for RHN channels.
• The yum-protectbase plugin is now supported. This allows users to protect

packages from RHN repositories using the 'protect=yes' option in
/etc/yum/pluginconf.d/protectbase.conf.

• yum-rhn-plugin can now handle special characters (e.g. @) in the http

proxy password. In previous releases, a bug prevented some users from
querying RHN through yum if their http proxy password contained the symbol '@'.

• A bug that displayed incorrect error messages if a non-root user

attempted to use yum is now fixed.

• yum-rhn-plugin now provides the correct user-agent (UA) header

information to m2crypto once an https request connects.

• The xmlrpc call 'delta_packages' now labels the list of packages to be

removed correctly, ensuring that changes to packages on client machines are
correctly updated on the satellite. In previous releases, 'delta_packages'
contained an "added" and "removed" list of packages, while the server
expected an "added" and "deleted" list of packages.

• A bug in the xmlrpc call 'delta_packages' that prevented yum-rhn-plugin

from transmitting correct "updated" and "older" package information back to
RHN is now fixed. In previous releases, this bug caused updated packages to
appear twice on RHN/Satellite when users ran 'yum update'.

• RHN clients now honor architecture information provided by the server,

ensuring that the clients choose the right packages to install as per
architecture.

• The yum-updatesd 'do_update' flag now functions as documented. Users can

now use this flag to control whether automatic updates or package pushes
from RHN should be applied.

• A typographical error in the man page is now fixed. In previous releases,

the FILES section of the yum-rhn-plugin man page incorrectly referred to
/etc/sysconfig/rhn/update instead of /etc/sysconfig/rhn/up2date.

Users of yum-rhn-plugin are advised to upgrade to this update.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Affected Products

• Red Hat Enterprise Linux Server 5 x86_64
• Red Hat Enterprise Linux Server 5 ia64
• Red Hat Enterprise Linux Server 5 i386
• Red Hat Enterprise Linux Workstation 5 x86_64
• Red Hat Enterprise Linux Workstation 5 i386
• Red Hat Enterprise Linux Desktop 5 x86_64
• Red Hat Enterprise Linux Desktop 5 i386
• Red Hat Enterprise Linux for IBM z Systems 5 s390x
• Red Hat Enterprise Linux for Power, big endian 5 ppc
• Red Hat Enterprise Linux Server from RHUI 5 x86_64
• Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

• BZ - 436043 - yum-protectbase can't be used with RHN repos., as you can't set options
• BZ - 448012 - yum clean fails when non-RHN repositories are configured
• BZ - 449726 - yum-rhn-plugin manpage has typo
• BZ - 450241 - yum fails if http proxy password contains @ symbol
• BZ - 455759 - xmlrpc call delta_packages checks wrong list for package removals
• BZ - 455760 - pkg updates do not notify rhn/sat of removal of old versions
• BZ - 456540 - Non-root yum message clarification
• BZ - 469719 - client should handle the arch information if sent down from server instead of jus comparing NVRE

CVEs

(none)

References

(none)