This is a primarily maintenance update. Please see the attached bugs for more specific details on what has improved as far as stability is concerned.

There is also a larger new feature which is being released in concert with work being done in Katello / Foreman. Subscription-manager has a concept of a package-profile. This contains information on all installed rpm packages for the system on which it is running.

We have expanded this reporting capability to include information on enabled and installed modules from modulemd as well as to report on which repositories this system has enabled presently.

This information is combined into a group of reports and submitted to the same endpoint on Katello / Foreman.

The new request is a PUT to /consumers/{consumer_uuid}/profiles. This is done only when the string "combined_reporting" in the managerCapabilities key of the response to a GET /status.

The old just rpm profile reporting is still done as a PUT to /consumers/{consumer_uuid}/packages. This is at this point only done if the server side does not support the new capability.

More will likely be added in the future to further expand on this capability of reporting.


Numerous bug fixes. Please see the rpm changelog for details.

How to install

sudo dnf upgrade --advisory=FEDORA-2018-91ba32a0ff

This update has been submitted for testing by csnyder.

3 years ago

This update has obsoleted subscription-manager-1.21.5-1.fc27, and has inherited its bugs and notes.

3 years ago
User Icon muench commented & provided feedback 3 years ago

Hello csnyder , thank you for your work! I would like to know if CVE-2017-2663 is fixed within this release or if it already has been fixed in a previous release as the last vulnerable Version of subscription-manager was 1.19.3 and now we are at 1.21.5

Regards, Muench

This update has been pushed to testing.

3 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for batched by csnyder.

3 years ago

This update has been submitted for stable by csnyder.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1156510 [rfe] use dnf instead of yum (if dnf is installed)
0
0
BZ#1434493 CVE-2017-2663 subscription-manager: unsafe dbus interface [fedora-all]
0
0
BZ#1446256 [RFE] Too large dependency chain
0
0
BZ#1505955 claims "subscription required" which is false on Fedora
0
0
BZ#1547354 subscription-manager is missing dependency on "python2-kitchen" on f27
0
0
BZ#1553266 Oops! in subscription-manager-cockpit TypeError: f.GetStatus is not a function
0
0
BZ#1555384 Broken Exec= line in com.redhat.SubscriptionManager.service
0
0
BZ#1564735 subscription-manager-rhsm subpackage has been dropped on Fedora 27
0
0
BZ#1598514 [RFE] Set owner/group/umask for /etc/pki/entitlement/ certs
0
0
BZ#1612282 Man page scan results for subscription-manager
0
0

Automated Test Results