RHBA-2016:0227 - Bug Fix Advisory

Topic

Updated cockpit packages that fix several bugs and add various enhancements are now available for Red Hat Enterprise Linux 7 Extras.

Description

Cockpit is a server administration interface that makes it easy to administer
GNU/Linux servers through a web browser.

The cockpit packages have been upgraded to upstream version 0.93, which provides a number of bug fixes and enhancements over the previous version. Changes include fixing Cockpit session issues with a second machine, adding an SOS report UI, the ability to set machine performance profiles using Tuned and on Atomic Host systems an interface for OSTree upgrades and rollbacks. (BZ#1292918, BZ#1277938)

This update also fixes the following bugs:

• The missing PIE and RELRO compilation flags have been added to cockpit. (BZ#1214275)
• Fixed a startup /dev/urandom read issue that could break authentication. (BZ#1303582)
• This update fixes the sosreport tool, which now works as expected. (BZ#1306145)

Users of cockpit are advised to upgrade to this updated packages, which fix these bugs and add these enhancements.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat Enterprise Linux Server 7 x86_64
• Red Hat Enterprise Linux Server from RHUI 7 x86_64

Fixes

• BZ - 1292918 - Rebase Cockpit in RHEL Extras 7.2.2
• BZ - 1297797 - Ship a separate cockpit-docker subpackage on RHEL
• BZ - 1303582 - websocket: incomplete read breaks authentication, login not possible

CVEs

(none)

References

• http://www.redhat.com/security/updates/classification/#normal