ELBA-2021-9032

ELBA-2021-9032 - cockpit unboundid-ldapsdk bug fix update

Type:BUG
Severity:NA
Release Date:2021-02-17

Description


cockpit
[195.10-1.0.3]
- Use older golang

[195.10-1.0.2]
- Enable building of dashboard

[195.10-1.0.1]
- Turn off display of subscriptions menu item in GUI
- Drop subscription-manager requirement since we do not ship it (tianyue.lan@oracle.com)

[195.10-1]
- Firewall: Fix privilege check for sudoers (rhbz#1841559)

[195.9-1]
- ws: Add support for EC certificates (rhbz#1841070)
- Translation fixes (rhbz#1796834)
- Use RHSM1 service instead of the deprecated (and now removed)
com.redhat.SubscriptionManager

[195.8-1]
- webserver: Fix large requests with TLS (rhbz#1785497)
- Machines: Avoid D-Bus introspection to libvirt-dbus, to speed up polkit
operations (rhbz#1780400)
- Machines: Fix CPU statistics (rhbz#1763641)

[195.6-1]
- subscriptions: Avoid PackageKit when installing insights-client
(rhbz#1768917)

[195.5-1]
- subscriptions: Install insights-client on demand (rhbz#1768917)

[195.4-1]
- Update translations (rhbz#1733994)

[195.3-1]
- subscriptions: Add support for Red Hat Insights (rhbz#1748026)
- systemd: Warn if not connected to Insights (rhbz#1748350)

[195.2-1]
- firewall: Only reload firewall when adding custom services (rhbz#1725094)
- networking: Activate a connection after clearing master/slave fields (rhbz#1729378)
- Add Obsoletes: for ancient cockpit-shell package (rhbz#1744208)

[195.1-1]
- Update translations rhbz#1688228

[191-1]
- System: Enable/disable SMT rhbz#1696139

[190-1]
- kdump: Add NFS and SSH dump targets rhbz#1533366
- kdump: Fix confusing design of target selector rhbz#1536327
- firewall: Hide already enabled items from 'Add Services' dialog rhbz#1598625
- networking: Gracefully handle when NetworkManager is not running
rhbz#1551615
- web server: Mark deleted cookie as 'secure', and add X-Content-Type-Options
header rhbz#1677767
- web server: Mark deleted cookie as 'HttpOnly' rhbz#1656339
- Fix various crashes spotted by coverity rhbz#1644209
- Fix remotectl crash with inaccessible files rhbz#1644213
- Fix race condition with fslist1 channels rhbz#1644223
- Fix crash with parsing invalid bas64 headers rhbz#1663712

[173.1-1]
- Crash fixes spotted by coverity rhbz#1644345
- Fix race condition with fslist channels rhbz#1644346
- Fix remotectl crash on errors rhbz#1644348

[173-7]
- Build against fixed build root with all architectures again rhbz#1628490

[173-6]
- Fix remote unauthenticated crash with crafted URLs rhbz#1627631
- Fix off-by-one error in flow control rhbz#1626846

[173-5]
- Storage: Fix crash when cancelling package install
- Update translations rhbz#1569423

[173-1]
- Rebase to version 173 rhbz#1568728

[172-1]
- Rebase to version 172 rhbz#1568728

[171-1]
- Rebase to version 171 rhbz#1568728

[169-3]
- Rebase to version 169, drop all patches rhbz#1568728
- Fix Subscriptions page hang when accessing as non-admin rhbz#1442540
- Show an indicator on front page if updates are available rhbz#1495543
- Properly localize 'Log in' rhbz#1541454
- Improve check for root privilege availability, to e. g. also work for FreeIPA
admins rhbz#1574630

[154-3]
- Update source po for Japanese translations rhbz#1512923
- Adjust build system to avoid build failure for the above

[154-2]
- Update Japanese translations rhbz#1512923

[154-1]
- Rebase to version 154, drop all patches rhbz#1470780
- This allows ssh keys to be loaded from arbitrary directories
rhbz#1425887

[138-9]
- Add Japanese translation rhbz#1461085

[138-8]
- Rebuild for new dependencies

[138-7]
- Build cockpit-docker for s390x

[138-6]
- Fix ssh dependency

[138-5]
- Fix forwarding binary data in the shell
- Fix dashboard dependency

[138-4]
- Bump and rebuild on more architectures

[138-3]
- Fix issues with connections between multiple hosts
- Fix format string type mismatch on some architectures

[138-2]
- Bump and rebuild with dashboard

[138-1]
- Update to 138 release
- Simplify protocol that cockpit talks to session authentication processes

[137-1]
- Update to 137 release
- Cockpit's web server understands and properly responds to HTTP HEAD requests

[136-1]
- Update to 136 release
- Reorder menu items in a more logical way

[135-4]
- The cockpit package doesn't require the dashboard anymore
- The dashboard package conflicts with older bridge and ws versions

[135-3]
- Update to 135 release
- Redesigned page menu and machine switcher
- Show /etc/motd in the 'System' page
- Allow changing the MAC address for ethernet adapters and see them for bonds
- NetworkManager now activates slave interfaces by itself
- Show 'Locked/Unlocked' indicator for privilege escalation in the top bar
- Privilege escalation works with sudo reauthorization
- Use official /etc/ssh/ssh_known_hosts when connecting to remote hosts

[131-3]
- Fix size of list heading rhbz#1422184
- Fix button tooltips rhbz#1365372 rhbz#1412036
- Make basic selinux functionality available without rhbz#1422181

[131-2]
- Actually build cockpit-dashboard sub-package

[131-1]
- Update to 131 release
- Support for configuring kdump kernel crash dumping
- Support for rebasing OSTrees and configuring OSTree remotes
- Cockpit now respects /etc/shells and prevents login when user has an invalid shell
- Add a 'LoginTo' option in cockpit.conf to toggle ability to login to other servers
- Validate textual input on the Networking page properly

[126-1]
- Update to 126 release
- Show security scan information about containers
- During login users can choose whether password is cached and reused
- Allow renaming of active devices in networking interface
- More clearly indicate when checking network connectivity
- Allow more time for rollback when making network changes rhbz#1395108
- The remotectl command can now combine certificate and key files
- Domain join operations can now be properly cancelled
- Make Kerberos authentication work even if gss-proxy is in use
- When proxied, support X-Forwarded-Proto
- Ignore block devices with a zero size in the storage interface

[125-1]
- Update to 125 release
- Display OSTree signatures on Atomic Host
- Expand logical volumes and partitions inline on their devices
- No longer offer to format read-only block devices
- Use stored passphrases for LUKS devices properly
- System shutdown can be scheduled by date
- Properly terminate user sessions on the Accounts page
- Fix regression on login screen in older Internet Explorer browsers

[122-3]
- Fix regression when activating virtual network interfaces rhbz#1394667
- Support network connections that don't have an interface name rhbz#1394668
- Fix registry console Windows IE and Edge login rhbz#1378810 rhbz#1393740
- Fix reloading of projects and users in kubernetes rhbz#1393785
- Only set websocket protocols if they are available rhbz#1394675

[122-2]
- Fix default flags for new VLAN devices rhbz#1390605

[122-1]
- Update to 122 release
- Cockpit can rollback network configuration that would otherwise disconnect an admin from the system
- Unmanaged network devices are now shown
- The list of Docker containers can be filtered and expanded inline
- Cockpit can be a 'bastion host' by using the login page to connect to an alternate system via SSH
- Only connect to an alternate system if it has a known SSH host key
- When connecting to other systems, each SSH connection is run in a separate process
- Fixes bugs that prevent the 'Logs' page from working in Firefox 49
- A network proxy can be used when registering with RHEL subscriptions rhbz#1338681

[118-2]
- Turn off Cockpit debug session

[118-1]
- Update to 118 release
- SELinux audit failures can be diagnosed and solutions applied to the system
- Configure storage for Docker containers and images
- Volumes and environment variables can be configured for Docker containers
- Support PAM conversations on the Login screen, enabling two factor authentication
- Cockpit URLs can be proxied with a configured HTTP path prefix
- Timer jobs in systemd can be created and configured
- Display all managed NetworkManager devices
- Add support for network teams
- Prevent removal of last volume from volume group rhbz#1354421

[0.114-2]
- The API of cockpit-bridge and cockpit-shell is now stable, other components
only depend on a version >= 0.114 now, not an exact match to their own version

[0.114-1]
- Update to 0.114 release
- Red Hat Subscriptions can now specify activation keys and orgs rhbz#1338680
- Network configuration of the Ethernet MTU rhbz#1339552
- SSH Host keys are show on system page rhbz#1318414
- Properly show SSH keys on authentication page rhbz#1336686
- Use 'active-backup' as the default for new network bonds rhbz#1348066
- Don't show network interfaces where NM_CONTROLLED=no is set rhbz#1330552
- Disable tuned correctly when clearing a performance profile rhbz#1330473
- Use CockpitLang cookie and Accept-Language for localization
- Cockpit terminal now supports shells like fish
- Disable the network on/off switch for unknown or unmanaged interfaces
rhbz#1329954 rhbz#1329956
- Show intelligent password score error messages rhbz#1330838
- Show full string for system hardware info and operating system name rhbz#1331243
- Ensure popup-info when creating an account remains on screen rhbz#1340749
- Remove erroneous docker dependency rhbz#1349375

[0.108-1]
- Update to 0.108 release
- Strict browser security policy for Cockpit is now enforced. This defines which code can be run in a Cockpit session and mitigates a number of browser based attacks.

[0.103-1]
- Update to 0.103 release
- When Cockpit fails to connect to a host, relevant SSH command or host details are displayed to help resolve the issue
- Docker restart policy can be configured when starting a new container
- Display a single combined dialog for creating logical volumes
- Don't offer a 'Computer OU' option when joining IPA domains
- Display binary journal data correctly
- Display IEC names (eg: MiB) for disk or file system sizes
- Refuse to shrink logical volumes and prevent negative sizes in file system partition dialogs
- Apply strict Content-Security-Policy on most of Cockpit to prevent a number of browser based attacks
- Numerous other bug fixes and admin interface improvements

[0.96-2]
- Fix selenium tests
- Fix issue with dwz / go binaries in packages

[0.96-1]
- Update to 0.96 release
- Fix memory leaks, mostly related to DBus code
- Compatible with docker 1.10
- Limit concurrent authentication similar to sshd using 'MaxStartups' setting
- Fixed up server disconnection UI
- Navigation fixes

[0.93-3]
- Fix session path rhbz#1306145

[0.93-2]
- Fix startup /dev/urandom read issue rhbz#1303582

[0.93-1]
- Add tuned support
- Exit on idle in cockpit-ws

[0.92-1]
- Add OAuth login support
- Make SOS report work on Atomic

[0.91-2]
- Depend on correct rpm-ostree RPM on RHEL

[0.91-1]
- Update to 0.91 release
- Fix Cockpit session issues with a second machine rhbz#1277938
- Split out docker rhbz#1297797
- Distribute licenses of included components in the source rpm
- Reworked TLS certificates for Cockpit
- Remove custom SELinux policy
- SOS report UI page
- User interface for OSTree upgrades and rollbacks
- Offer to activate multipathd for multipath disks

[0.77-3]
- Update cockpit.pam to include pam_reauthorize and pam_ssh_add rhbz#1269623

[0.77-2]
- Fix extreme CPU usage bug rhbz#1266503
- Fix regressions in 0.77 rhbz#1266566

[0.77-1]
- Work better with multipath storage
- Deletion of kubernetes objects
- Cleaner URLs in the bookmark bar
- Show a warning when adding too many machines
- Make authentication work when embedding Cockpit
- Complete componentizing Cockpit

[0.70-2]
- kubernetes-client is not available on kubernetes yet

[0.70-1]
- Update to 0.70 release
- Depend on kubernetes-client instead of kubernetes

[0.69-1]
- Update to 0.69 release.

[0.68-1]
- Update to 0.68 release.

[0.66-1]
- Update to 0.66 release

[0.65-2]
- Require libssh 0.7.1 on fedora >= 22 systems

[0.65-1]
- Update to 0.65 release

[0.64-1]
- Update to 0.64 release

[0.63-1]
- Update to 0.63 release
- Remove cockpit-docker for armv7hl while docker
packages are being fixed

[0.62-1]
- Update to 0.62 release

[0.61-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild

[0.61-1]
- Update to 0.61 release

[0.60-1]
- Update to 0.60 release

[0.59-1]
- Update to 0.59 release

[0.58-1]
- Update to 0.58 release

[0.57-1]
- Update to 0.57 release

[0.56-1]
- Update to 0.56 release

[0.55-1]
- Update to 0.55 release

[0.54-1]
- Update to 0.54 release

[0.53-1]
- Update to 0.53 release

[0.52-1]
- Update to 0.52 release

[0.51-1]
- Update to 0.51 release

[0.50-1]
- Update to 0.50 release

[0.49-2]
- Fix incorrect Obsoletes: of cockpit-daemon

[0.49-1]
- Update to 0.49 release.
- cockpitd was renamed to cockpit-wrapper the cockpit-daemon
package was removed and is now installed with the
cockpit-bridge package.

[0.48-1]
- Update to 0.48 release

[0.47-2]
- Don't attempt to build cockpit-kubernetes on armv7hl

[0.47-1]
- Update to 0.47 release, build docker on armvrhl

[0.46-1]
- Update to 0.46 release

[0.45-1]
- Update to 0.45 release

[0.44-3]
- Add back debuginfo files to the right place

[0.44-2]
- Disable separate debuginfo for now: build failure

[0.44-1]
- Update to 0.44 release

[0.43-2]
- Don't break EPEL or CentOS builds due to missing branding

[0.43-1]
- Update to 0.43 release

[0.42-2]
- Fix obseleting cockpit-assets

[0.42-1]
- Update to 0.42 release

[0.41-1]
- Update to 0.41 release

[0.40-1]
- Update to 0.40 release

[0.39-1]
- Update to 0.39 release

[0.38-1]
- Update to 0.38 release

[0.37-1]
- Update to 0.37 release

[0.36-1]
- Update to 0.36 release

[0.35-1]
- Update to 0.35 release

[0.34-1]
- Update to 0.34 release

[0.33-3]
- Only depend on docker stuff on x86_64

[0.33-2]
- Only build docker stuff on x86_64

[0.33-1]
- Update to 0.33 release

[0.32-1]
- Update to 0.32 release

[0.31-1]
- Update to 0.31 release

[0.30-1]
- Update to 0.30 release
- Split Cockpit into various sub packages

[0.29-3]
- Don't require test-assets from selinux-policy
- Other minor tweaks and fixes

[0.29-2]
- Include selinux policy as a dep where required

[0.29-1]
- Update to 0.29 release

[0.28-1]
- Update to 0.28 release
- cockpit-agent was renamed to cockpit-bridge

[0.27-1]
- Update to 0.27 release
- Don't create cockpit-*-admin groups rhbz#1145135
- Fix user management for non-root users rhbz#1140562
- Fix 'out of memory' error during ssh auth rhbz#1142282

[0.26-1]
- Update to 0.26 release
- Can see disk usage on storage page rhbz#1142459
- Better order for lists of block devices rhbz#1142443
- Setting container memory limit fixed rhbz#1142362
- Can create storage volume of maximum capacity rhbz#1142259
- Fix RAID device Bitmap enable/disable error rhbz#1142248
- Docker page connects to right machine rhbz#1142229
- Clear the format dialog label correctly rhbz#1142228
- No 'Drop Privileges' item in menu for root rhbz#1142197
- Don't flash 'Server has closed Connection on logout rhbz#1142175
- Non-root users can manipulate user accounts rhbz#1142154
- Fix strange error message when editing user accounts rhbz#1142154

[0.25-1]
- Update to 0.25 release

[0.24-1]
- Update to 0.24 release

[0.23-1]
- Update to 0.23 release

[0.22-1]
- Update to 0.22 release

[0.21-1]
- Update to 0.21 release

[0.20-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild

[0.20-1]
- Update to 0.20 release

[0.19-1]
- Update to 0.19 release

[0.18-1]
- Update to 0.18 release
- Add glib-networking build requirement
- Let selinux-policy-targetted distribute selinux policy

[0.17-2]
- Drop Requires and references to dead test-assets subpackage

[0.17-1]
- Update to 0.17 release

[0.16-3]
- Distribute our own selinux policy rhbz#1110758

[0.16-2]
- Refer to cockpit.socket in scriptlets rhbz#1110764

[0.16-1]
- Update to 0.16 release

[0.15-1]
- Update to 0.15 release
- Put pam_reauthorize.so in the cockpit PAM stack

[0.14-1]
- Update to 0.14 release

[0.13-1]
- Update to 0.13 release

[0.12-1]
- Update to upstream 0.12 release

[0.11-1]
- Update to upstream 0.11 release

[0.10-1]
- Update to upstream 0.10 release

[0.9-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild

[0.9-1]
- Update to upstream 0.9 release
- Fix file attribute for cockpit-polkit

[0.8-1]
- Update to upstream 0.8 release
- cockpitd now runs as a user session DBus service

[0.7-1]
- Update to upstream 0.7 release

[0.6-1]
- Update to upstream 0.6 release

[0.5-1]
- Update to upstream 0.5 release

[0.4-1]
- Update to upstream 0.4 release
- Lots of packaging cleanup and polish

[0.3-1]
- Update to upstream 0.3 release

[0.2-0.4.20140204git5e1faad]
- Redid the release tag

[0.2-0.3.5e1faadgit]
- Fixed license tag
- Updated to new FSF address upstream
- Removing libgsystem before build
- Now claiming specific manpages
- Made the config files noreplace
- Removed the test assets
- Put the web assets in a subpackage

[0.2-0.2.5e1faadgit]
- Patch libgsystem out

unboundid-ldapsdk
[4.0.7-1]
- Update to 4.0.7 (#1613079)

[4.0.6-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

[4.0.6-1]
- Update to 4.0.6 (#1580993)

[4.0.5-1]
- Update to 4.0.5 (#1557972)
- Fix CVE-2018-1000134 (#1557532)

[4.0.4-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild

[4.0.4-1]
- Update to 4.0.4 (#1537503)

[4.0.1-1]
- Update to 4.0.1 (#1488680)

[4.0.0-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild

[4.0.0-1]
python-passlib
[1.7.1-1]
- Update to 1.7.1 (#1620382)

[1.7.0-11]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild

[1.7.0-10]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

[1.7.0-9]
- Rebuilt for Python 3.7

[1.7.0-8]
- Update Python 2 dependency declarations to new packaging standards
(See https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3)

[1.7.0-7]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild

[1.7.0-6]
- Update conditional

[1.7.0-5]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild

[1.7.0-4]
- Fix eggs-info generation

[1.7.0-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild

[1.7.0-2]
- Rebuild for Python 3.6

[1.7.0-1]
- Update to 1.7.0

[1.6.5-4]
- https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages

[1.6.5-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild

[1.6.5-2]
- Rebuilt for https://fedoraproject.org/wiki/Changes/python3.5

[1.6.5-1]
- Added python2 and python3 subpackage
- updated to 1.6.5

[1.6.2-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild

[1.6.2-1]
- update to 1.6.2

[1.6.1-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild

[1.6.1-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild

[1.6.1-1]
- update to 1.6.1

[1.5.3-4]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild

[1.5.3-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild

[1.5.3-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild

[1.5.3-1]
- initial release for Fedora




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) python-passlib-1.7.1-1.el7.src.rpmb9c8a554575bba5bfaf92e80fbc18466-
python2-passlib-1.7.1-1.el7.noarch.rpme1966858608de473735f871b6460c33e-
Oracle Linux 7 (x86_64) cockpit-195.10-1.0.3.el7.src.rpm0601246c56ceaa3bf23b76859153e55d-
python-passlib-1.7.1-1.el7.src.rpmb9c8a554575bba5bfaf92e80fbc18466-
unboundid-ldapsdk-4.0.7-1.el7.src.rpm7175692769164c625ae3f03cb09a38d8-
cockpit-195.10-1.0.3.el7.x86_64.rpm3e18e80fc8a0a8b52a009ae9497f1687-
cockpit-bridge-195.10-1.0.3.el7.x86_64.rpm303a14eddb375e04a0077b760b17ee31-
cockpit-dashboard-195.10-1.0.3.el7.x86_64.rpm40f9b9babe0d243b3916ef775abba970-
cockpit-doc-195.10-1.0.3.el7.x86_64.rpmf36de30a076bc36e560e12db58904d13-
cockpit-docker-195.10-1.0.3.el7.x86_64.rpm3eda8ed27068728ee4b763faa6949e8a-
cockpit-kubernetes-195.10-1.0.3.el7.x86_64.rpm6d22b8f2960e657dbf045ca84c632d59-
cockpit-machines-195.10-1.0.3.el7.noarch.rpmf8b19bf0b1d263b3e6284d325f975c15-
cockpit-machines-ovirt-195.10-1.0.3.el7.noarch.rpm1d8c2b43054c867f3d28ea2f8f3c35a6-
cockpit-packagekit-195.10-1.0.3.el7.noarch.rpmfb7a47ec7219609f5d70cbd838b9e18e-
cockpit-pcp-195.10-1.0.3.el7.x86_64.rpm9ea97fc41e2a03496a3e8eacb80d2efa-
cockpit-storaged-195.10-1.0.3.el7.noarch.rpm3c34bb543baf1334d109f84c34355dc3-
cockpit-system-195.10-1.0.3.el7.noarch.rpmb578b8d3c3881c5e4422a50d1833c97f-
cockpit-tests-195.10-1.0.3.el7.x86_64.rpma8071fb158f14b2312f3b82650c2f8cb-
cockpit-ws-195.10-1.0.3.el7.x86_64.rpm7ee8a9bf527f1392536c0ac9a7146f76-
python2-passlib-1.7.1-1.el7.noarch.rpme1966858608de473735f871b6460c33e-
unboundid-ldapsdk-4.0.7-1.el7.noarch.rpm097d40ef126637e942b2d12823ed3e06-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete