Comments

185 Comments

Btw there some other broken deps: "dnf repoquery --whatrequires 'libnetsnmp.so.30()(64bit)'"

Last metadata expiration check: 0:25:32 ago on Tue 04 Dec 2018 11:13:49 AM CET. 389-ds-base-snmp-0:1.4.0.16-1.fc28.x86_64 389-ds-base-snmp-0:1.4.0.6-2.fc28.x86_64 OpenIPMI-0:2.0.24-4.fc28.x86_64 OpenIPMI-0:2.0.25-8.fc28.x86_64 asterisk-snmp-0:15.3.0-1.fc28.x86_64 cacti-spine-0:1.1.38-2.fc28.x86_64 collectd-snmp-0:5.8.0-8.fc28.x86_64 collectd-snmp-0:5.8.1-1.fc28.x86_64 corosync-0:2.4.4-1.fc28.x86_64 cyrus-imapd-0:3.0.5-7.fc28.x86_64 foghorn-0:0.1.6-18.fc28.x86_64 hplip-0:3.18.3-1.fc28.x86_64 hplip-0:3.18.6-10.fc28.x86_64 hplip-libs-0:3.18.3-1.fc28.x86_64 hplip-libs-0:3.18.6-10.fc28.x86_64 ifstat-0:1.1-25.fc28.x86_64 keepalived-0:1.4.2-1.fc28.x86_64 keepalived-0:1.4.5-1.fc28.x86_64 libsane-hpaio-0:3.18.3-1.fc28.x86_64 libsane-hpaio-0:3.18.6-10.fc28.x86_64 lldpd-0:0.9.8-2.fc28.x86_64 lldpd-0:1.0.1-1.fc28.x86_64 mbrowse-0:0.4.3-15.fc27.x86_64 nagios-plugins-snmp-disk-proc-0:1.3.1-5.fc27.x86_64 nagios-plugins-snmp-disk-proc-0:1.3.1-6.fc28.x86_64 net-snmp-1:5.7.3-36.fc28.x86_64 net-snmp-1:5.7.3-38.fc28.x86_64 net-snmp-agent-libs-1:5.7.3-36.fc28.x86_64 net-snmp-agent-libs-1:5.7.3-38.fc28.x86_64 net-snmp-devel-1:5.7.3-36.fc28.x86_64 net-snmp-devel-1:5.7.3-38.fc28.x86_64 net-snmp-perl-1:5.7.3-36.fc28.x86_64 net-snmp-perl-1:5.7.3-38.fc28.x86_64 net-snmp-utils-1:5.7.3-36.fc28.x86_64 net-snmp-utils-1:5.7.3-38.fc28.x86_64 ntop-0:5.0.1-15.fc28.x86_64 nut-0:2.7.4-14.fc28.x86_64 openhpi-0:3.7.0-5.fc28.x86_64 openhpi-0:3.8.0-1.fc28.x86_64 openhpi-libs-0:3.7.0-5.fc28.x86_64 openhpi-libs-0:3.8.0-1.fc28.x86_64 openhpi-subagent-0:2.3.4-34.fc28.x86_64 opensips-snmpstats-0:2.3.3-3.fc28.x86_64 opensips-snmpstats-0:2.3.6-1.fc28.x86_64 php-snmp-0:7.2.12-1.fc28.x86_64 php-snmp-0:7.2.4-2.fc28.x86_64 ptpd-0:2.3.1-11.235e9b4.fc28.x86_64 python2-net-snmp-1:5.7.3-38.fc28.x86_64 python3-net-snmp-1:5.7.3-36.fc28.x86_64 quagga-0:1.2.2-4.fc28.x86_64 quagga-0:1.2.4-1.fc28.x86_64 rsyslog-snmp-0:8.34.0-1.fc28.x86_64 rsyslog-snmp-0:8.38.0-1.fc28.x86_64 tog-pegasus-libs-2:2.14.1-43.fc28.x86_64 tog-pegasus-test-2:2.14.1-43.fc28.x86_64 zabbix-proxy-mysql-0:3.0.16-1.fc28.x86_64 zabbix-proxy-mysql-0:3.0.22-1.fc28.x86_64 zabbix-proxy-pgsql-0:3.0.16-1.fc28.x86_64 zabbix-proxy-pgsql-0:3.0.22-1.fc28.x86_64 zabbix-proxy-sqlite3-0:3.0.16-1.fc28.x86_64 zabbix-proxy-sqlite3-0:3.0.22-1.fc28.x86_64 zabbix-server-mysql-0:3.0.16-1.fc28.x86_64 zabbix-server-mysql-0:3.0.22-1.fc28.x86_64 zabbix-server-pgsql-0:3.0.16-1.fc28.x86_64 zabbix-server-pgsql-0:3.0.22-1.fc28.x86_64

karma

Broken deps: package php-snmp-7.2.12-1.fc28.x86_64 requires libnetsnmp.so.30()(64bit), but none of the providers can be installed

@tyrola Thanks for your feedback. It is a security update for https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2018-03.html (CVE-2018-10851).

Please let me explain a few things: RHEL7 will be supported until June 30, 2024. We can't support PowerDNS 3.4.x until 2024, because PowerDNS 3.4.x is now EOL (End of Life). Please check the End of life statement from upstream developer: https://doc.powerdns.com/authoritative/appendices/EOL.html

That's the reason why we must upgrade to PowerDNS 4.x. Since there is no SQL schema change between 3.4.x and 4.0.x the upgrade should work properly in most situations with mysql or psql backend. I am sorry that you had problems. Please note: The API was considered experimental in all 3.x releases.

@tis

Thank you. Missed the obsolete section in the final git commit. It's now fixed with pdns-4.0.6-2.el7. Please check.

karma

works fine and fixes #1639381

BZ#1639381 Drop the selinux domain check or use system_cronjob_t domain for the system crontab files

@pbrobinson

Thank you for the report. Missed it. Checked only F28 with dnf repoquery --whatrequires 'libmbedcrypto.so.()(64bit)' and dnf repoquery --whatrequires 'libmbedtls.so.()(64bit)'

I will rebuilt the missing packages and they will be added to the update.

Hello muench,

You're right. Referring to https://github.com/ARMmbed/mbedtls/issues/1561 indicates that the issue hasn't been fixed with the latest 2.7.6 release. Anyway, it's not exploitable. (see https://github.com/ARMmbed/mbedtls/issues/1561#issuecomment-421098364) I will remove CVE-2018-1000520 from this update. For CVE-2018-1000520, we have to wait for an upstream fix.

The current (2.7.6) update contains only a fix for the security issue documented in the release notes.

karma

works fine

This update has been unpushed.

This update has been unpushed.

This update has been unpushed.

karma

works fine

This update has been unpushed.

This update has been unpushed.

@tis

This issue has been fixed with the latest dislocker rebuilt.

@tis

This issue has been fixed with the latest dislocker rebuilt.

karma

works fine

karma

works fine

This update has been unpushed.

This update has been unpushed.