SLBA-2011:0316-3This update fixes the following bug: * Previously, the summary extractor of reStructuredText did not work properly and the documentation process failed. Due to this behavior, building packages could fail. This update resolves this problem. Packages now build successfully.Scientific Linux FermiScientific Linux Fermi 6epydoc-3.0.1-6.el6.noarch.rpm78035bedcf2bc277220369fe28299f8f23b3cb66816b64f98bc1536b88f7ef24SLBA-2011:0516-1Yum-rhn-plugin allows yum to access a Red Hat Network server for software updates. This update addresses the following issue: * When used in conjunction with yum 3.2.29, yum-rhn-plugin created empty and superfluous directories for every registered RHN repository in the current directory when "yum clean" was executed. Note: directories for other registered yum repositories were not created in this instance. With this update, no directories are created when "yum clean" is executed, as expected.Scientific Linux FermiScientific Linux Fermi 6yum-rhn-plugin-0.9.1-26.el6_1.1.noarch.rpm8bcc995bcd00496e0a53ba958584060203678120a9f4d3b636426d53e9092d54SLBA-2011:0818-1This update fixes the following bug: * Previously, booting for the first time failed after a new Scientific Linux 6 installation was performed on HP DL360 Gen8. This was due to using invalid locale names, which caused a stack trace. The same problem also affected Scientific Linux 6's Subscription Manager. The problem has been fixed by using "C" as the default locale so that the Scientific Linux 6 first boot and Subscription Manager work as expected.Scientific Linux FermiScientific Linux Fermi 6python-rhsm-0.95.14-1.el6_1.noarch.rpmd95e1f8733e376d2586a2848f58f0d4ce21156f4e5c1b5ec2aabf9b822c9e8f4SLBA-2011:0821-1This update fixes the following bugs: * Previously, the lldpad service triggered excessive timeout events every second. This caused the service to consume excess resources. With this update, the lldpad service has switched from polling-based to a demand-based model. This prevents excessive timeout event generation and ensures the service consumes only the expected resources.Scientific Linux FermiScientific Linux Fermi 6lldpad-0.9.41-4.el6_1.4.i686.rpmcb8bce9e2fd9baf44a33dc1bed2793c8a363f122b0dde5a19d80e8b664cc4d1clldpad-devel-0.9.41-4.el6_1.4.i686.rpm5555f0b1c5be6e03c43559d4aa9c94daf4c5569c35b278c088e321bf80054550SLBA-2011:0822-1This update fixes the following bug: * Prior to this update, the graphical user interface of the Subscription Manager utility incorrectly listed unlimited subscriptions as "-1". This update adapts the Subscription Manager to mark such subscriptions as "unlimited". * Due to incorrect handling of user's locale settings, the "My Subscriptions" tab in the previous version of the Subscription Manager may have displayed incorrect end dates. With this update, the underlying source code has been adapted to address this issue, and the "My Subscriptions" tab now displays correct end dates. * Previously,the Subscription Manager used the same key.pem file for all entitlements. However, the NSS (Network Security Services) libraries require a different file for each entitlement, and an attempt to install packages on a system with more than one subscription therefore failed with an error message similar to the following: [Errno 14] PYCURL ERROR 22 - "NSS: private key not found for certificate: PEM Token #1:1310636811763322869.pem" This update adapts the Subscription Manager to create a unique key.pem file for each entitlement, so that packages can now be installed as expected on such systems.Scientific Linux FermiScientific Linux Fermi 6subscription-manager-0.95.14-1.el6_1.i686.rpmf136e2c6b630375dc20236950cbc4cb9e7174802499dd4ff59bcb48d288177e7subscription-manager-firstboot-0.95.14-1.el6_1.i686.rpm6598f51bf82fc925ba94c4e8cdde7c2ea5e70b4471b81a4c3c3450fec99c2c6bsubscription-manager-gnome-0.95.14-1.el6_1.i686.rpm1bd78b80ea568ca6ff568da1c9b0641b8dc4680e920d59914a5f695e7a0aff42SLBA-2011:0824-2Bugs fixed in this updated package include: * Password changes did not replicate because the method used to pass the changes to consumer servers was rejected on the consumer. This issue has been corrected, and password changes now replicate as expected. * Values could be lost when group memberships were synchronized between 389 Directory Server and Active Directory with the Windows Sync feature. The synchronization and modify operations have been altered to prevent this issue, allowing group updates to synchronize with Active Directory. * The ldclt command-line testing tool crashed during LDAP ADD operations because an LDAP attribute was not set correctly, preventing the creation of entries that did not already exist. This update allows the LDAP ADD to proceed correctly. * The server crashed if a long running task was started using the cn=tasks,cn=config interface and then the server was shut down before the task completed. This update prevents the server from crashing, but does not gracefully terminate the task, which can leave the server database in an inconsistent state. For example, the fixup-memberof.pl script invokes a tasks to fix up the memberOf attribute in group member entries. If the server is shut down before the task can complete, some entries may not have the correct memberOf values. Users should ensure that tasks are complete before shutting down the server to avoid inconsistency. * When using the Entry USN feature, deleting an entry caused a memory leak via the entryusn attribute. This update fixes the memory leak.Scientific Linux FermiScientific Linux Fermi 6389-ds-base-1.2.8.2-1.el6_1.3.i686.rpma2bfbf9d2e42dd2ad55e6d94e445e134854edf95fcc360a9892a15735ef4ec87389-ds-base-devel-1.2.8.2-1.el6_1.3.i686.rpm53c3150333d97cdbd3f8031f88eafd8ae9104f14907308ff0a7f0ec12aafb9f6389-ds-base-libs-1.2.8.2-1.el6_1.3.i686.rpm98c122dbb80511231a2258f14f1f178c6e5de8acf36b266f8cba7e9f92cdf835SLBA-2011:0848-1This update fixes the following bug: * Previously, when the SSH_USE_STRONG_RNG variable was set to 1, openssh read 48 bytes from the /dev/random number generator to generate a seed. This seed was too long and caused long delays on ssh or sshd startup and when connections were received. Now, the SSH_USE_STRONG_RNG variable contains number of bytes that should be pulled from /dev/random (with a minimum default value of six) and the delays no longer occur.Scientific Linux FermiScientific Linux Fermi 6openssh-5.3p1-52.el6_1.2.i686.rpmde5f52fc025a8cec3fed8b12a78ef5d7701764e6a436638ddcaee8edda310748openssh-askpass-5.3p1-52.el6_1.2.i686.rpmd77b87b6bc5b915aa408f0da9ea737efa23e1da56adb4779a13e965364fd332copenssh-clients-5.3p1-52.el6_1.2.i686.rpm3a2edff73942061757b145d1f67265c80a02bdc33e443de24bd119f34a66fc91openssh-ldap-5.3p1-52.el6_1.2.i686.rpmd53bfc3a3b155d009e1eb1db0a103f2a519fcfbdeb46b1ac2352aad2f41d36aeopenssh-server-5.3p1-52.el6_1.2.i686.rpm961a7ed6dd27dc92cd604416e7b799513a781acebad8837759e32dd6d8af818apam_ssh_agent_auth-0.9-52.el6_1.2.i686.rpm38a4cc7ec86c42e08f6801b0979fa69e437d3060ae7233599ba52c42a4f36be4SLBA-2011:0849-1This update fixes the following bugs: * When the first DNS entry defined in the /etc/resolv.conf file was unreachable, the sssd utility failed to try to connect to any subsequent DNS server to resolve the SRV record. This caused sssd to permanently operate in offline mode. This bug has been fixed and sssd is now able to connect to an alternate server if the primary server is down. * The sssd client terminated when the ldap_default_authtok_type option was not configured. With this update, the ldap_default_authtok_type option now defaults to "password" if it is not specified in the /etc/sssd/sssd.conf file and the bug no longer occurs.Scientific Linux FermiScientific Linux Fermi 6sssd-1.5.1-34.el6_1.1.i686.rpm55b0bf3f566786e10be6c865e813152d6d56c70dcfab248f256eac2b46e13dbbsssd-client-1.5.1-34.el6_1.1.i686.rpme95c49a816c2b9a5f08081a4b7c6d48cc3b237808af8e0b0d737dccf5e5c23edsssd-tools-1.5.1-34.el6_1.1.i686.rpm5ded823a2d2a34011f07c8e3e9c8a9338f63e976c8b4f2bfd4458de06b1b11f4SLBA-2011:0854-1This update fixes the following bugs: * When the corosync server terminated unexpectedly, if it was connected to corosync clients, a shared memory leak occurred. This bug has been fixed and no memory leaks occur in the described scenario. * When a ring ID file was smaller than 8 bytes, the corosync server terminated unexpectedly. With this update, if no proper ring ID file can be loaded, the corosync server creates one and no crash will occur. * During the recovery phase, the corosync server sometimes terminated unexpectedly. As a consequence, a network token was lost and new configuration had to be created. This bug has been fixed and the corosync server no longer crashes in the described scenario. * In rare circumstances involving multiple running nodes, the corosync server terminated unexpectedly during shut down. This bug has been fixed and the corosync server no longer crashes. * When inconsistent cluster.conf files with different versions were used among nodes, a memory leak occurred in the corosync server during the configuration reload. This bug has been fixed and the configuration reload via the cman_tool no longer causes memory leaks.Scientific Linux FermiScientific Linux Fermi 6corosync-1.2.3-21.el6_0.2.i686.rpmc834387a4253ee0cc72f128d6a253d173d4e30bc9a1c232782477ccb10d31887corosynclib-1.2.3-21.el6_0.2.i686.rpm6a722ee25a6d31bdb01fedb468ceb5f3742336d608dc5ff961150df4ac00aeffcorosynclib-devel-1.2.3-21.el6_0.2.i686.rpmf61fe5dd10eb90aac7ff674e1d07b3a9cfb7c3afc17e01e4411f3fce3ce04378SLBA-2011:0855-1This update fixes the following bug: * Due to a problem in the build test suite, the guile package failed to build. The problem has been resolved in this update so that the guile package now builds properly.Scientific Linux FermiScientific Linux Fermi 6guile-1.8.7-5.el6.i686.rpme0442965933fef662986f12b6a9ef3f9ba52d05fa1e54035dfde34ab69ddb70cguile-devel-1.8.7-5.el6.i686.rpmdb4beabd0de6f76ab44b79f7a3f713e6c01f858c83dfc4f5c313c2ad863fe057SLBA-2011:0865-1This update fixes the following bugs: * When an IPA server was installed and then a replica package for a replica server was generated, the installation of the replica server failed. With this update, the installation process waits for the 389DS (389 Directory Server) tasks to complete before restarting the server, fixing this bug. * Previously, the ipa service was not enabled via the chkconfig tool during the installation of a replica server. Subsequently, when the replica server was restarted, the ipa service was not started. With this update, replica servers are properly configured to start on boot. * After a replica server was installed, the Managed Entries were not properly configured on replica servers. Subsequently, users had to manually add the configuration using the ldapmodify tool after the replica installation, and then restart the services with the "ipactl restart" command. This bug has been fixed and the configuration is now automatically added as expected. * When a new reverse zone was created via the ipa-replica-prepare script, the wrong DNS entry was updated, which eventually caused an installation of a replica server to fail. This bug has been fixed and when the named service is restarted after a replica package has been created, the correct DNS entries are now set up for an installation of a replica server.Scientific Linux FermiScientific Linux Fermi 6ipa-admintools-2.0.0-23.el6_1.1.i686.rpm0dad04a75997d6a7bf4c55969b745c2404e7667dccf911c4aa61f1d6f4a793d5ipa-client-2.0.0-23.el6_1.1.i686.rpm913e8fd21d8799f9302e20d867e6a3c33906bf9d88ff0fb556835f9e9c5fcaa6ipa-python-2.0.0-23.el6_1.1.i686.rpm26197f0bff01b4ab9761063e187e31e071536ab0da0e6d22b161a2a4e513f071ipa-server-2.0.0-23.el6_1.1.i686.rpm3c79773e96d4e51fc003c9d8b2dfa228a6b4a0636ac7eb176bc9113cfd682bfbipa-server-selinux-2.0.0-23.el6_1.1.i686.rpmebe1ad802d40895ab62d28c767600b3d4e4c7395af7194ebcbfaea83e7d7eb7fSLBA-2011:0872-1This update fixes the following bug: * Prior to this update, an example included in the /etc/crontab file contained an omission. It did not state that defining a job in crontab requires a username to be defined. The missing information has been added to the /etc/crontab file in this update.Scientific Linux FermiScientific Linux Fermi 6crontabs-1.10-33.el6.noarch.rpmf10a88da32d75fa55d8e3292fa27c6209f1434c30e6e54bf82339e4a6952caf4SLBA-2011:0874-2This update fixes the following bugs: * Xen guests cannot make use of all CPU features, and in some cases they are even risky to be advertised. One such feature is CONSTANT_TSC. This feature prevents the TSC (Time Stamp Counter) from being marked as unstable, which allows the sched_clock_stable option to be enabled. Having the sched_clock_stable option enabled is problematic for Xen PV guests because the sched_clock() function has been overridden with the xen_sched_clock() function, which is not synchronized between virtual CPUs. This update provides a patch, which sets all x86_power features to 0 as a preventive measure against other potentially dangerous assumptions the kernel could make based on the features, fixing this issue. * Issues for which a host had older hypervisor code running on newer hardware, which exposed the new CPU features to the guests, were discovered. This was dangerous because newer guest kernels (such as Scientific Linux 6) may have attempted to use those features or assume certain machine behaviors that it would not be able to process because it was, in fact, a Xen guest. One such place was the intel_idle driver which attempts to use the MWAIT and MONITOR instructions. These instructions are invalid operations for a Xen PV guest. This update provides a patch, which masks the MWAIT instruction to avoid this issue. The system must be rebooted for this update to take effect.Scientific Linux FermitrueScientific Linux Fermi 6kernel-2.6.32-131.4.1.el6.i686.rpm04607e931e4314891072d51aacbd81968579c149dfc1548091613774239ab341kernel-debug-2.6.32-131.4.1.el6.i686.rpm496ef238be1aab453d812173385cd8c3651fc9a76fcff016bd4ada2893cb3405kernel-debug-devel-2.6.32-131.4.1.el6.i686.rpm77acab7a352a74d64f3bbcf57f76ced13ff130fa2304f765b3e552d42ebe0c4bkernel-devel-2.6.32-131.4.1.el6.i686.rpm1132f323c78791755626a11d70095cdc2dce42a2a7a2ca6823582ad9d3c10022kernel-doc-2.6.32-131.4.1.el6.noarch.rpm771d0ab11363d1f0d6e83597738be6ff9bdd3f63dcb0eb0597b87482c8a22a92kernel-firmware-2.6.32-131.4.1.el6.noarch.rpm7dcec1ae7946ecb6fd7a9bf7c50bf588997acb0dc3f790d03333ff3a315e0ae5kernel-headers-2.6.32-131.4.1.el6.i686.rpmcf51ee3e83932a5f960ee36ad6bb1f526abf9708d870adba6de34a4d4f240d75perf-2.6.32-131.4.1.el6.i686.rpm4e81fd954c3c19b474cb7e09b5ddb4b6e3e4b48b0d86c714f39882058c1cb367SLBA-2011:0884-1This update fixes the following bugs: * When the cryptsetup or libcryptsetup utility was run in FIPS (Federal Information Processing Standards) mode, the "Running in FIPS mode." message was displayed during initialization of all commands. This sometimes caused minor issues with associated scripts. This bug has been fixed and the message is now displayed only in verbose mode. * Previously, the libcryptsetup crypt_get_volume_key() function allowed to perform an action not compliant with FIPS. To conform FIPS requirements, the function is now disabled in FIPS mode and returns an EACCES error code to indicate it. Note that the "luksDump --dump-master-key" command and the key escrow functionality of the volume_key package are also disabled in FIPS mode as a consequence of this update.Scientific Linux FermiScientific Linux Fermi 6cryptsetup-luks-1.2.0-3.el6_1.2.i686.rpmd3ba2d61c1ea418efa0fce16ee35a0cf4965d28a7fe23a25e94b56e3e7e55274cryptsetup-luks-devel-1.2.0-3.el6_1.2.i686.rpmc2a3e6a41fbe384ff09d2fa322211af242001cc43987655c853b3ec07e88bb6ecryptsetup-luks-libs-1.2.0-3.el6_1.2.i686.rpm61a2cde5683a2f8e4ffa9606f600a759b313623712db7479a7658d067c5b0f1bSLBA-2011:0893-1The qpid-qmf package provides an extensible management framework layered on QPID messaging. The qpid-tools package provides management and diagnostic tools for Apache Qpid brokers and clients. These updated qpid related packages provide fixes for the following bugs: * The qpid-cpp package has been updated to reflect the changes in Scientific Linux 5 MRG 2.0. * The qpid-qmf package has been updated to reflect the changes in Scientific Linux 5 MRG 2.0. * The qpid-tools package has been updated to reflect the changes in Scientific Linux 5 MRG 2.0.Scientific Linux FermiScientific Linux Fermi 6python-qpid-qmf-0.10-10.el6.i686.rpmc267e443e2da3fdcd748cc8b9f36c184dd68dd6e63df8751486c3371cbb331b8qpid-cpp-client-0.10-6.el6.i686.rpmfecf7b22498f636a4946a8acde82e138bff688a3a437b65824fcefc43c803d1bqpid-cpp-client-devel-0.10-6.el6.i686.rpm65e942c6aef27312aef2d96bb392796de3c870f70015955e0682a08f8dca1244qpid-cpp-client-devel-docs-0.10-6.el6.noarch.rpm3c4fcf4e6bea2ec516da6c9e8444f6c379e54f1d91e86592196bf5dc76100a1dqpid-cpp-client-rdma-0.10-6.el6.i686.rpmd42f2026a6ce8bc6087e4bb4ca0bd078c7528b8a02bce16187c1e79a1330d6caqpid-cpp-client-ssl-0.10-6.el6.i686.rpmc2b38ef980d6d32e6c2ab0de416f769f4198e3dcc2cf85303262af37e49334c8qpid-cpp-server-0.10-6.el6.i686.rpm3f954ff61a13ae8a20a1e514dbb5d52ee4cd86ced7e9cb0711904d7b53bac08cqpid-cpp-server-cluster-0.10-6.el6.i686.rpm0697a0787662d5e240280304c49baeeb755ab6a67052d07a5b26f66e9b17ea47qpid-cpp-server-devel-0.10-6.el6.i686.rpmac614002fa87e517803d37c3ca847fd92dd2a827051a26482636a22e3a4a9e51qpid-cpp-server-rdma-0.10-6.el6.i686.rpmd9b7379cd782d79ce25cc1b790e4a7b3fa369d76c7bd513a4402137dd2a1517fqpid-cpp-server-ssl-0.10-6.el6.i686.rpm2091a865b7f3dbe6170cb4c09feaa5f536872e6ffd1d1fbc7e393dd994a1218eqpid-cpp-server-store-0.10-6.el6.i686.rpm7bfe51f7717d22307846d9aada058b5476611b570df96eb153c6ac5c198b6755qpid-cpp-server-xml-0.10-6.el6.i686.rpmd929a14310e4a207738cd2f1b3885dca2c9025bf2ee0a4471727033b5d711365qpid-qmf-0.10-10.el6.i686.rpm0943a32111dd59370b8863fee7507f7587d39e60787e446c7ba4fc4c0b786b28qpid-qmf-devel-0.10-10.el6.i686.rpmb7189c23142807e885225b95334f97a80764ba49c7e22f3ad6760c57499ccdf5qpid-tools-0.10-5.el6.noarch.rpm787f3a19989c8bcf68f70b92591c1789c83349d3ea0221476c1bcf48054a1f9erh-qpid-cpp-tests-0.10-6.el6.i686.rpm6067b12b6372106ba4745788baa73f4eaeb56dfad7413afd7e36543685eced08ruby-qpid-qmf-0.10-10.el6.i686.rpm59d9219d74e6e6c04d0d0f57af4ee950c261c5614df7135c9674c808c002ed92SLBA-2011:0899-1This update fixes the following bug: * Previously, the default paper size was selected in portrait orientation when printing documents in landscape orientation. Consequently, the output was printed in portrait orientation and the content was cropped on the right side. With this update, if the paper size matches in landscape mode, that paper size is selected and the landscape orientation is selected for printing.Scientific Linux FermiScientific Linux Fermi 6ghostscript-8.70-11.el6_1.2.i686.rpmead620d08d62f8d98aa25d2e659c52875e06b524ff8a9e070c9eef6447e29538ghostscript-devel-8.70-11.el6_1.2.i686.rpm8ba00be3134e1def422f3ab4cb1747dad47c6e3602fac4ec2c67a4f93d570381ghostscript-doc-8.70-11.el6_1.2.i686.rpm61b6d83da869f8641ff765549af3f9847e669ec98b5358a11d64381007d04369ghostscript-gtk-8.70-11.el6_1.2.i686.rpmbc7d8a2ef1ea230a1bc7315131b3839a357339991038e79db4d57b4e1098f5b3SLBA-2011:0902-1Warning: Before applying this update, there is a manual step that you may need to perform. This step assumes that you are using the new subscription manager entitlement tooling to apply software updates. If you are encountering an "[Errno 14] problem with the local client certificate" error message when executing yum commands, you will need to run the following commands as root: # rm -f /etc/pki/entitlement/* # subscription-manager refresh Note that systems that are using Red Hat Network Classic for software entitlement updates do not need to perform this manual step before applying this errata update. This update fixes the following bugs: * When the subscription-manager utility had been upgraded, it put incorrect data to the sslclientkey repository parameter value. Consequently, when the yum utility was executed to install a software, yum terminated with the "[Errno 14] problem with the local client certificate" error message. The bug in subscription-manager has been fixed and yum can now be run without any certificate errors. * Previously, running the firstboot utility with the "-r" option, while the subscription-manager-firstboot utility was already installed, caused firstboot to terminate with a traceback; firstboot also failed to display a message stating that the computer was already registered with Red Hat Network. This bug has been fixed, firstboot now displays the warning message properly and no tracebacks are issued in the described scenario. * Two variations were used in the ProductName parameter for the workstation subscription: "Scientific Linux Workstation" and "Scientific Linux 6 Workstation". As a consequence, users running the "subscription-manager list --installed" command, while subscribed to the "Scientific Linux Workstation" subscription, got a misleading report. With this update, the ProductId parameter is used instead to compare subscriptions in the described scenario, and the bug no longer occurs. * Previously, the "Start Date" and "End Date" fields in the Contract Selection dialog window of the subscription-manager-gui utility were not populated. With this update, the dates are displayed as expected.Scientific Linux FermiScientific Linux Fermi 6subscription-manager-0.95.17-1.el6_1.i686.rpm38511569dce09c06e233037c035579ef79b39790ce413b73010f76d02061ca3dsubscription-manager-firstboot-0.95.17-1.el6_1.i686.rpmd668fd57d877273d58fb83ba6fc6d45fa232d5eba6383b91c2e52cce81750165subscription-manager-gnome-0.95.17-1.el6_1.i686.rpm52f386abbdc57451fd484d5363d483eba0708618a418377bdec850f3d193081bSLBA-2011:0903-1This update upgrades the iwl5000 firmware to upstream version 8.83.5.1, which provides a number of bug fixes over the previous version.Scientific Linux FermiScientific Linux Fermi 6iwl5000-firmware-8.83.5.1_1-1.el6_1.1.noarch.rpm7e22843a59294a3cd1c1dcbf80a3035996df814bca734fdeed1c91d20bbf9561SLBA-2011:0911-1This update fixes the following bug: * Prior to this update, the /etc/profile.d/which2.csh file caused an alias for the "which" command to be created. As a result, the "which" command included in the "which" package was used instead of the built-in "which" command as included in the C shell (csh). The problem has been fixed in this update by removing the /etc/profile.d/which2.csh file so that the "which" command included in csh is now used as expected. All users of "which" should upgrade to this updated package, which fixes this bug.Scientific Linux FermiScientific Linux Fermi 6which-2.19-6.el6.i686.rpm47c8b7e0c5652f3c2fb617dc4cc0c4df1c2e99e6ab74f632cdd2cf6d0bb0fe18SLBA-2011:0921-1This update fixes the following bug: * Previously, when querying a domain with the name length near the allowed limit of 63 characters, and emitting command options to a whois server, the "whois" command failed because both the domain name and command options were given to a function responsible for translating Internationalized Domain Names (IDN) to ASCII. The length of such command was greater than the allowed limit. This update fixes this bug so that only the domain name is now translated after executing the command. As well, this update adds the following enhancement: * Previously, jwhois did not contain the whois server details for the dotEmarat extension. As a result, whois queries for these extensions were incorrectly directed to whois.internic.net. With this update, the configuration file correctly directs queries for the dotEmarat domains to whois.aeda.net.ae.Scientific Linux FermiScientific Linux Fermi 6jwhois-4.0-19.el6.i686.rpm8f034cd65dc7b00fade43fdfc1eba6d7ce7ea9147038233047ca14a3353a96cfSLBA-2011:0922-1This update fixes the following bug: * Prior to this update, when viewing the U+4190 CJK character with the AR PL UMing font and the font size 10, this character was not displayed properly. This bug has been corrected in this update so that the character is now correctly displayed as expected.Scientific Linux FermiScientific Linux Fermi 6cjkuni-fonts-common-0.2.20080216.1-35.el6.noarch.rpm02b11cb52ebd318cc7fd7b70fd752a737fc5217d806f897ffd273b7b384eb86bcjkuni-fonts-ghostscript-0.2.20080216.1-35.el6.noarch.rpm8ef748684c14e527ceb015c9259ab7ada3d552aceae603bb73710122b9211a90cjkuni-ukai-fonts-0.2.20080216.1-35.el6.noarch.rpm6ea43ab78b33da8da26d78771394ec8f4af14cf10e7d6461a980b7e09296ac8fcjkuni-uming-fonts-0.2.20080216.1-35.el6.noarch.rpm140fc16dd5607f3ab54c0a5504c4fb89f537be1da3deb0eb59494b06ad4f0d2fSLBA-2011:0924-1This update fixes the following bugs: * Prior to this update, the setfacl.1 man page was not intelligible in that it did not state that removing a non-existent ACL entry is not considered to be an error. With this update, the setfacl.1 man page has been updated so that its content is now intelligible and exactly specifies the aforementioned behavior with regard to removing a non-existent ACL entry. * Prior to this update, the package specification did not reflect a change of the upstream project web page address. This update corrects the respective address in the package specification.Scientific Linux FermiScientific Linux Fermi 6acl-2.2.49-5.el6.i686.rpmbd4d6dadd09b01bc76d1928b903c24597a65aedabc8c8ec81d10aab54d27e0a0libacl-2.2.49-5.el6.i686.rpmb61d6a3da0e519a15584d63a9a48b6c2ad339624a3045636243cfc73ca9bf187libacl-devel-2.2.49-5.el6.i686.rpmf8a4af70cb2564a9b62e1df4c40c84f3f5bae28687a2f30923814aa62be7aa40SLBA-2011:0925-1This update fixes the following bugs: * Previously, SSSD relied on the inotify kernel subsystem to detect whether a DNS resolver file had been changed. If inotify returned an error (for example due to resource exhaustion), SSSD terminated unexpectedly and network logins no longer worked. With this update, SSSD itself detects the failure in the described scenario and falls back to the five-second polling, fixing this bug. * When SSSD communicated with an OpenLDAP server, which supported server-side password policies but did not list them in the "supportedControl" attribute of the server's rootDSE entry, SSSD terminated unexpectedly with a segmentation fault. This was a regression introduced in version 1.5.1-34.el6 of the sssd package. An upstream patch has been provided to fix this bug.Scientific Linux FermiScientific Linux Fermi 6sssd-1.5.1-34.el6_1.2.i686.rpmbd005a8cb85da6413f1a42a85766a02161732e2cb8f0469e0cbc67f9906583d9sssd-client-1.5.1-34.el6_1.2.i686.rpm99071f413c5fedd187000d211af8b4095b1eef5c3726cbc01ef6bc36677437c4sssd-tools-1.5.1-34.el6_1.2.i686.rpmff8d82c3991cadd917d552bb34e50203bd510b8cdd8df8558ff4b36c4c4296fcSLBA-2011:0931-1This update fixes the following bug: * When used to combine two Adler-32 checksums, the adler32_combine() function could have produced an incorrect result under certain circumstances. With this update, the underlying algorithm has been fixed, and the adler32_combine() function no longer returns incorrect checksums.Scientific Linux FermiScientific Linux Fermi 6minizip-1.2.3-26.el6.i686.rpm1da4e9c19f0edbb576f8965f796d87fbcd37dbbd2546145512df7e3fdb09b4d5minizip-devel-1.2.3-26.el6.i686.rpm3a4c21e0a094d13a4d2d31d7e45173a46e6ae6d5824e84d1c51d146c557c3e51zlib-1.2.3-26.el6.i686.rpmd22c9f82bac3ca0c55eb693c7b922a599acc9a662f9680eeb7a71e2fde61a6b3zlib-devel-1.2.3-26.el6.i686.rpm5e288e78dde8e7a24819e7ad68c3cd5a306183efe377a59a2ca00f5be715362czlib-static-1.2.3-26.el6.i686.rpm8cb784c0aac68f4e0f50cb6ae985d0cc21d04cb5db479cd4ac74dbc0a720eca8SLBA-2011:0932-1This update fixes the following bug: * Under certain circumstances, the star utility could have terminated unexpectedly with a segmentation fault when used with a file which name was exactly 100 characters long. This segmentation fault has been fixed in this update and no longer occurs.Scientific Linux FermiScientific Linux Fermi 6star-1.5-11.el6.i686.rpmb8a0a6fbb241df6c74b9d7edfc0ef7360182d8dc6a99479ccbd0c5805098935dSLBA-2011:0933-1This update fixes the following bug: * Prior to this update, the swig utility emitted a nonexistent "zend_error_noreturn" function call instead of the "zend_error" call into a generated PHP code. This bug has been fixed in this update, and swig now correctly emits only the "zend_error" call as expected.Scientific Linux FermiScientific Linux Fermi 6swig-1.3.40-6.el6.i686.rpm2ac3fd4215cfa082b51636331ad8a9b3c34aa6c3e545eb54ef5f4a0c3d537ab2swig-doc-1.3.40-6.el6.noarch.rpmbcc87b13678590c9eafd28ac043738c5b5d166febafdc766619ef2434763537bSLBA-2011:0934-2[Updated 7 September 2011] This update fixes a bug in which the file utility did not parse ELF (Executable and Linkable Format) binary files correctly. If an entry in the program header table contained a file offset beyond the end of file, dynamically linked files were reported as being linked statically. The file utility now recognizes files in the described scenario correctly. As well, this update fixes the following bugs: * Prior to this update, the file utility could have been unable to recognize RPM files for certain supported architectures. This update improves the file type recognition, and the RPM files for all supported architectures are now correctly identified as expected. * Prior to this update, the file utility did not correctly recognized the IBM System z kernel images. This problem has been corrected so that the IBM System z kernel images are now correctly recognized as expected. * Prior to this update, the file utility attempted to show information related to core dumps for binary files that were not core dumps. This undesired behavior has been fixed in this update so that information related to core dumps is showed only for core dumps and not for the binary files which are not core dumps. * Prior to this update, file patterns for LaTeX checked only the first 400 bytes of a file to determine the pattern type. This caused an incorrect pattern type recognition as some files could have contained a larger number of comments at the beginning of the file. Furthermore, file patterns which matched a Python script were tried before the LaTeX patterns and this undesired behavior could have caused an incorrect pattern type recognition as LaTeX files could have included a source code written in Python. With this update, the aforementioned problems have been fixed by increasing the number of first bytes checked for a LaTeX file to 4096 bytes, and by trying the LaTeX patterns before the Python patterns. * Prior to this update, there were several spelling mistakes contained in the magic(5) manual page. This update corrects the spelling mistakes in the respective manual page. * Prior to this update, the file utility treated MP3 files as text files, and therefore was unable to recognize the MP3 files. This undesired behavior has been fixed in this update, and the file utility now treats the MP3 files as binary files and is able to properly recognize them.Scientific Linux FermiScientific Linux Fermi 6file-5.04-11.el6.i686.rpm7594a5b908a97acd8ca99a95312b7b9a8f398a76eb1fdfa80de6159ac4080e0dfile-devel-5.04-11.el6.i686.rpm8e191cf2dae591536be37a0c6027d9c95e0ae6d91fa9c8a177d8aad2e8cb62a7file-libs-5.04-11.el6.i686.rpm90f54be9170578a3fa739f60d1809b438d48fd1fdc05cfef8fe3c6f168ed098bfile-static-5.04-11.el6.i686.rpm3828aeafbb1fd539d653822a1862011bfee70aa3172981a7950da3d4427ab4b8python-magic-5.04-11.el6.i686.rpm318902a6fc33df880ea2f56f87eff276210aa6f0625164cfea65e8513c039b73SLBA-2011:0936-1This update fixes the following bug: * Prior to this update, the "$ActionSendStreamDriverMode" configuration directive did not have any effect on big-endian platforms. Due to this behavior, the Transport Layer Security (TLS) encryption was not enabled. This update modifies the code to correctly process the configuration directive. Now, TLS encryption works as expected.Scientific Linux FermiScientific Linux Fermi 6rsyslog-4.6.2-3.el6_1.1.i686.rpmfd435f5f0ee0619b0809676e36d8635785687e14764e6771a3257951c4061bc0rsyslog-gnutls-4.6.2-3.el6_1.1.i686.rpm0a73f99de514f1a169ff5a3c3d2745aff54f3c999f56a433069ab08084b2263arsyslog-gssapi-4.6.2-3.el6_1.1.i686.rpm49b924d4336ad249f07767732acb47f002f909ee4ebd7de0b33ff170d836e255rsyslog-mysql-4.6.2-3.el6_1.1.i686.rpmb76f5e00a47e5115e6cde6d1fd9b34609400daafeafd9cfc215089875d55550frsyslog-pgsql-4.6.2-3.el6_1.1.i686.rpm2aa562d3404e0f0eb87dccef2291b349550c9b6af8913e9dfc57ee811a095c41rsyslog-relp-4.6.2-3.el6_1.1.i686.rpmbfe82693b874fccc5fea20fe2d35939416164c4daacf85f74ff7f0f2aae14030SLBA-2011:0942-1This update fixes the following bug: * When a module does not provide its own method for retrieving a user's list of supplemental group memberships, the libc library's default method is used instead to get that information by examining all of the groups known to the module. Consequently, applications which attempted to retrieve the information from multiple threads simultaneously, interfered with each other and each received an incomplete result set. This update provides a module-specific method which prevents this interference in the nss_db module.Scientific Linux FermiScientific Linux Fermi 6nss_db-2.2.3-0.3.pre1.el6_1.1.i686.rpm529892a85224c5f96817b9aa5cea64d871529954a481a344b8c8a9ff670ed0caSLBA-2011:0958-1This update fixes the following bug: * Previously, when a custom multicast address was configured, the configuration parser incorrectly set the default value of the time-to-live (TTL) variable for multicast packet to 0. Consequently, cluster nodes could not communicate with each other. With this update, the default TTL value is set to 1, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6clusterlib-3.0.12-41.el6_1.1.i686.rpmcac7090aa6e3aa80f583d743362d476dcfe02f5eb5de61cf14ac5dfb9a52be4dclusterlib-devel-3.0.12-41.el6_1.1.i686.rpmea427cb2e730b7b805d81d00bfcaba71fcbb0dfa2c4b9f7de523d4e01392ac80cman-3.0.12-41.el6_1.1.i686.rpm017ab35ea06136cbbc25c8fbf47415c346c392e0d7e2c364701d24e84023f9f2gfs2-utils-3.0.12-41.el6_1.1.i686.rpm212d9448250bdb72a18cf48858a9865a03a697e8d0ea9f778983f2e040987d16SLBA-2011:0960-1This update fixes the following bug: * Prior to this update, any resource agent returning corrupted or invalid metadata would cause the rgmanager utility to terminate unexpectedly and the node to be fenced. With this update, rgmanager is able to skip the broken agent and continue operating as expected, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6rgmanager-3.0.12-11.el6_1.1.i686.rpm0eea78d4611d0e8df92838de2ae8e158dd5a3c72cefe303aa0b61021e9b93089SLBA-2011:0961-1These updated openswan packages provide fixes for the following bugs: * Openswan did not handle protocol and port (leftprotoport) configuration correctly if the hostname parameter was configured instead of the ipaddress parameter using Openswan. This update solves this issue, and Openswan now correctly sets up policies with the correct protocol and port even when the hostname parameter is configured. * Prior to this update, very large security label strings received from the peer were being truncated. The truncated string was then still used. However, this truncated string could, under rare circumstances, turn out to be a valid string, leading to an incorrect policy. Additionally, erroneous queuing of on- demand requests of setting up an IPsec connection was discovered in the IKEv2 (Internet Key Exchange) code. Although not harmful, it was not the intended design. This update fixes both of these issues, and Openswan now correctly handles the IKE setup. * Previously, Openswan failed to set up AH (Authentication Header) mode security associations (SAs). This was because Openswan was erroneously processing the AH mode as if it was the ESP (Ecrypted Secure Payload) mode, and was expecting an encryption key. This update fixes this issue, and it is now possible to properly set up AH mode SAs. * IPsec connections over a loopback interface did not work properly when a specific port was configured. This was because incomplete IPsec policies were being set up, leading to connection failures. This update fixes this issue, and complete policies are now correctly established.Scientific Linux FermiScientific Linux Fermi 6openswan-2.6.32-4.el6_1.1.i686.rpm0ddc5888f3de31d20fc244fe6207ddad5adfa144cd42d6acc1c19f133d4e9ba4openswan-doc-2.6.32-4.el6_1.1.i686.rpm5e7bdc032ac051326100ad5cdc89d225d2c32c2681fbefa224007e566a442c42SLBA-2011:0962-1This update fixes the following bugs: * Prior to this update, the man-pages-ja package did not contain the Japanese translations of the man pages of the "halt", "init", "poweroff", "reboot", "runlevel", "shutdown", and "telinit" commands. With this update, the aforementioned man page translations have been added. * Prior to this update, the Japanese translation of the getpriority(2) man page contained a typo in the range of "nice values". This update corrects the typo. * Prior to this update, the Japanese translation of the wall(1) man page contained a typo in the description of the message length limit. This update corrects the typo. * Prior to this update, the Japanese translation of the tar(1) man page did not contain descriptions of the "--selinux" and "--no-selinux" options. With this update, the missing descriptions have been added.Scientific Linux FermiScientific Linux Fermi 6man-pages-ja-20100115-5.el6.noarch.rpmf7f7da19b7aacb4c1fd3009b434e07ac0715c93bd13a3688dbd3cb9c755254deSLBA-2011:0963-1This update fixes the following bug: * Prior to this update, the in.telnetd service used the sockaddr structure to store IPv6 addresses. This structure was too small in its size, and as a result, subsequent logins wrote incorrect records about the last login source. With this update, in.telnetd now uses the sockaddr_storage structure, which is large enough in its size to be able to store IPv6 addresses.Scientific Linux FermiScientific Linux Fermi 6telnet-0.17-47.el6.i686.rpm777871c4ab36b8048b5cb22a555902ae5a7de1cd3446eda47f9f91fa4870f13dtelnet-server-0.17-47.el6.i686.rpmce5c49400f7c8115ecf0ad1ee0017cc4c63763d2474be99d44cfccfcf718c891SLBA-2011:0965-1These updated graphviz packages provide fixes for the following bugs: * Several links in the Graphviz Documentation Index file led to nonexistent or incorrectly named files. This update fixes these links so that their targets resolve correctly. * The graphviz test suite was disabled on the PowerPC, 64-bit PowerPC and SPARC64 architectures due to unexpected terminations with segmentation faults. The test code used in the test suite did not set the TextLayout plugin correctly, which led to the crash of the test suite. This has been fixed and the test suite passes on all architectures. * Prior to this update, the About dialog box displayed "" instead of the real name of the DotEdit utility. This has been fixed and the name is now displayed correctly. * When using the graphviz utility with PHP, the gv.so module did not load and displayed the following error message: /usr/lib64/php/modules/gv.so' - /usr/lib64/php/modules/gv.so: undefined symbol: zend_error_noreturn in Unknown on line 0 This was caused by the SWIG tool which used the zend_error_noreturn() function to build the PHP module. SWIG has been modified and the bug no longer occurs.Scientific Linux FermiScientific Linux Fermi 6graphviz-2.26.0-7.el6.i686.rpm83136e6350d6cfaba0e7da9428047ff793a17e636c3162fce18c57d5fa15cdfagraphviz-devel-2.26.0-7.el6.i686.rpm2ba3c1e97f19599294c05be3d8056c77deb73f0b1452295c46a31dfe7799d21dgraphviz-doc-2.26.0-7.el6.i686.rpm464bf590025b5701796448e1b82bbe3e85c84abf7bf2cc70579abc2496e656f0graphviz-gd-2.26.0-7.el6.i686.rpmcbc78f87bc1c9c3a1601cd881a4130e3113522aa478ded70da0dfee627fc81ffgraphviz-graphs-2.26.0-7.el6.i686.rpm50adcf53d7f164278ad94d01666164a79245e1f67e5695d73f6008a3dfdf2e78graphviz-guile-2.26.0-7.el6.i686.rpm31173ad92e72d3b7f6be1eaca7120579b3c7e626f17eb651054cadc91a9d7e46graphviz-java-2.26.0-7.el6.i686.rpmf249f605de8cfdcfe31eeee14239bc4c5cab786b1699eb3cd1d9527b5f01c1bagraphviz-lua-2.26.0-7.el6.i686.rpm2b0eefacf9cedf542c26e30a7baadd7d9bcee9cf1bd6c88262fc60450572a1e2graphviz-perl-2.26.0-7.el6.i686.rpm404b5b7046e3518df6affd774657bdcf58a85b2f276ab9fad5957be7b5774d58graphviz-php-2.26.0-7.el6.i686.rpmc9aaa4120876a42b317a4d22dac5e432f2a7467e5c56cfee6191cf0fea8388fagraphviz-python-2.26.0-7.el6.i686.rpm19611c0b615427e5e8954cd123a5aec4e9dd62c88c782bfca0514baa48181d50graphviz-ruby-2.26.0-7.el6.i686.rpm6effd6b1eb9f43b9b9a8cfd87403be4e3210eaec591f4a0cc186afa433c1e764graphviz-tcl-2.26.0-7.el6.i686.rpm0843d292e28316a52028f54238fd0d8ef2e3e279287eb9220eccfc6c34b8cce6SLBA-2011:0966-1This update fixes the following bug: * Prior to this update, certain locale subdirectories in the /usr/share/locale/ directory did not have any owner set. With this update, this bug has been fixed so that the filesystem package now owns the subdirectories of the following locales: bg_BG (Bulgarian), en_NZ (New Zealand English), fi_FI (Finnish), gl_ES (Galician), lv_LV (Latvian), ms_MY (Malaysian), sr_RS (Serbian), en@shaw (Shavian), zh_CN.GB2312 (Chinese Simplified), sr@ijekavian (Serbian Jekavian), and sr@ijekavianlatin (Serbian Jekavian Latin).Scientific Linux FermiScientific Linux Fermi 6filesystem-2.4.30-3.el6.i686.rpmd7c233ab959fcce0f81e5f4faa3afa7f7698493ed6059004ddc5e472c4763570SLBA-2011:0967-1This update fixes the following bug: * Prior to this update, the output of the "nmap -h" (or "nmap --help") command did not describe all the available nmap options that begin with the "-s" or "-P" prefix. As a result, a user could have been unable to research what options can be used to perform specific tasks with nmap. With this update, the bug has been fixed so that the output of "nmap -h" now describes all the aforementioned nmap options that were previously missing from the output.Scientific Linux FermiScientific Linux Fermi 6nmap-5.21-4.el6.i686.rpm61c47fcbec738d559556a08da0b51ce44874096d80f15a308482aa8020aac167nmap-frontend-5.21-4.el6.noarch.rpm8d19a1a4cdbcf87cf42f110df03ff681de30f8f498fe80abcd2eda7997b7bee0SLBA-2011:1091-1This update fixes the following bug: * Previously, if a second thread in a single application triggered the Python garbage collection while a copy operation was in progress, the copy operation terminated unexpectedly. With this update, appropriate object reference count adjustments have been added to the code, and this bug no longer occurs.Scientific Linux FermiScientific Linux Fermi 6python-psycopg2-2.0.13-2.el6_1.1.i686.rpm2e7ef134723db42342a9afbd6ab65e846d76b5897cb1af45ec2a81dd565f3ce3python-psycopg2-doc-2.0.13-2.el6_1.1.i686.rpm43a80932f3bf44c99723bdd1962a320ce4ac09893e6ee004a72a72cb239733c7SLBA-2011:1092-1This update fixes the following bug: * Prior to this update, it was not possible to build the gpm packages on the supported platforms if the emacs package was installed. This problem has been resolved with this update and no longer occurs.Scientific Linux FermiScientific Linux Fermi 6gpm-1.20.6-12.el6.i686.rpm2452d7594a28af3202eb7406c02638b382b91211b397d7e7d884f2a73083f69agpm-devel-1.20.6-12.el6.i686.rpm612580ff8921ca7a8acc86a36e4f79849f0b764888cc7d0916901695efee786bgpm-libs-1.20.6-12.el6.i686.rpmd5d04cc9efbe340e44056282cd22a41194bfeae8bca026c3579251c4b8bd6866gpm-static-1.20.6-12.el6.i686.rpm984989016f5fc77b0efd26a68af266749d2299b3892191d71bcb1cdb97549407SLBA-2011:1093-1This update fixes the following bug: * Prior to this update, the perl-Test-Spelling package erroneously required the aspell package instead of the hunspell package at runtime. This update fixes the problem by correcting perl-Test-Spelling's runtime dependencies so that the hunspell package is now required, as expected.Scientific Linux FermiScientific Linux Fermi 6perl-Test-Spelling-0.11-7.el6.noarch.rpm4d80cbbea8a9aa92ea975853ce9229e813579eaa352c8c66641925941ed50119SLBA-2011:1094-1This update fixes the following bugs: * Prior to this update, it was not possible to build the kdepim-runtime package on Scientific Linux 6. This problem has been resolved in this update and no longer occurs. * Prior to this update, Akonaditray, which is an application included in KDE, was incorrectly displayed in the GNOME Applications menu. This bug has been fixed in this update so that Akonaditray is no longer displayed in the aforementioned menu.Scientific Linux FermitrueScientific Linux Fermi 6kdepim-runtime-4.3.4-5.el6.i686.rpm62a8a46c94a89d400aa0939655c42b3061e6d39fbfd6876ddef7871a187980e9kdepim-runtime-devel-4.3.4-5.el6.i686.rpmb9aef3e3c4934123b7dbb466eeb346894e69e4c7b8996f2e81533a94fed3b52bkdepim-runtime-libs-4.3.4-5.el6.i686.rpm7f293a2aa50f9cafc67d8420b9a6e8d1bebdfe03094714c3b62f00811cbdc2b3SLBA-2011:1095-1This update fixes the following bugs: * Prior to this update, the dump utility passed wrong arguments to the "clone(2)" system call. As a result, dump became unresponsive when executed on the S/390 or IBM System z architecture. This bug has been fixed in this update so that dump now passes correct arguments and no longer hangs. * Under certain circumstances, the dump utility could have failed to detect holes in files correctly. When a user attempted to restore an erroneous backup using the "restore" command, an error message "Missing blocks at end of [path], assuming hole" could have been displayed. In such case, the backup could have not been restored properly. This bug has been fixed in this update so that dump now handles holes in files as expected. * Prior to this update, the "dump -w" command did not recognize ext4 file systems as supported. With this update, the bug has been fixed so that "dump -w" now recognizes the ext4 file systems as supported.Scientific Linux FermiScientific Linux Fermi 6dump-0.4-0.6.b42.el6.i686.rpmfb26d400f2356baa5742b3c0b68992402c1e60f2e1ae687fac9e004d6a7b6ee5rmt-0.4-0.6.b42.el6.i686.rpm059c8bbdfcd91a6be19b7201c248b8858e8bfa31648af46cbf9aa089a61ccaacSLBA-2011:1096-1This update fixes the following bug: * Prior to this update, there was a problem when entering a password using the pinentry-curses utility; an error message was displayed instead of the password entry dialog if pinentry-curses was run under a user different from the user who owned the current tty. This bug has been fixed in this update so that no error message is now displayed and pinentry-curses asks for a password as expected.Scientific Linux FermiScientific Linux Fermi 6pinentry-0.7.6-6.el6.i686.rpmfd8e250493748168ca39bb2ec3823eeb87f8774d7709bc93500c3928ef36bd46pinentry-gtk-0.7.6-6.el6.i686.rpm453f7cc7f5044a4efb41e4925757cfd0852e9551a1cb9b5fda9f665ee78be800pinentry-qt-0.7.6-6.el6.i686.rpm191636107eb29aef97843164f197021bf7df8193c6bb8dd473c2f728ae1c3699pinentry-qt4-0.7.6-6.el6.i686.rpm967d0bc9d7e7cd83294fba15b858c249776eb1346d964918f41c68e5d2973359SLBA-2011:1114-1This update fixes the following bug: * Prior to this update, an obsolete "matplotlib" configuration directive in seekwatcher caused seekwatcher to emit a spurious warning when executed. This bug has been fixed in this update and no longer occurs.Scientific Linux FermiScientific Linux Fermi 6seekwatcher-0.12-5.el6.noarch.rpm45452f2441fba835386feffb8f8c3e67403a968f0a9709cb2226ceef33f1c52aSLBA-2011:1115-1This update fixes the following bugs: * If the KDE and GNOME desktop environments were both installed on one system, two System Monitor utilities were installed as well. These, located in System Tools of the Applications menu, had the same icons and title, which may have confused the user. With this update, KDE icons are used for the ksysguard tool. * Prior to this update, the ksysguard process terminated unexpectedly with a segmentation fault after clicking the OK button in the Properties dialog of the Network History tab, which is included in the ksysguard application. This bug has been fixed in this update so that ksysguard no longer crashes and works properly. * Previously, when rebooting the system, the kdm utility terminated with a segmentation fault if auto-login was enabled. This was caused by a NULL password being sent to the master process, which has been fixed, and rebooting the system with auto-login enabled no longer causes kdm to crash. * When clicking Help in the Battery Monitor Settings dialog of the Battery Monitor widget, the message "The file or folder help:/plasma-desktop/index.html does not exist" appeared instead of displaying the help pages. This update adds the missing help pages, which fixes the problem.Scientific Linux FermitrueScientific Linux Fermi 6kdebase-workspace-4.3.4-22.el6.i686.rpmefd162938b7e057d1dc954a34caea0fac6ba33d88d2a4781c6ef76f0404f62d4kdebase-workspace-akonadi-4.3.4-22.el6.i686.rpmd58d15267fec21673a0668887bbda7ff2475cc04e50e2d308cfc8a203b00c8b8kdebase-workspace-devel-4.3.4-22.el6.i686.rpm7afcb4bd3b85c11c44b5778b8fe152059dd71a310acaf76d32cf0c582fd28d5ckdebase-workspace-libs-4.3.4-22.el6.i686.rpm8cf20291bfaad3d2e5cfb6a20fec26c28714ed456650866796a7a704ef4bd476kdebase-workspace-python-applet-4.3.4-22.el6.i686.rpme2c51cf2a84e56c9563498866f10113f51f38123a3b11650e71ee078012cf48ckdebase-workspace-wallpapers-4.3.4-22.el6.noarch.rpm7ce7a73dfeff520e1d20dbbacb89a8a7b618dc71e28ae2248a44b5222a4782e5kdm-4.3.4-22.el6.i686.rpmd64015b2defe95efddb4020a9fedaa8251597902cbf92aaf6e6ac94fb01745e2ksysguardd-4.3.4-22.el6.i686.rpm4f4c2e8d998d00373515acd62d9c78e4f371394dd6cc967c9300b4a2cbb6d70foxygen-cursor-themes-4.3.4-22.el6.noarch.rpm2eb6989f070f865c8a84afa3225697436bc8444ee50963d645109b9b874ce87bSLBA-2011:1116-1This update fixes the following bugs: * Prior to this update, the is_selinux_disabled() function was not correctly checked. With this update, this check returns the correct value and now the check works as expected. * Prior to this update, the behavior of the i/--in-place option for symlinks and hardlinks was not clearly documented. With this update, the manpage and the user documentation has been improved and this problem is resolved.Scientific Linux FermiScientific Linux Fermi 6sed-4.2.1-7.el6.i686.rpma760738e1771f4031d41c54942b8ca594dc606f04687843c90b544972aa615d0SLBA-2011:1117-1This update fixes the following bugs: * Prior to this update, the icon for the ksystemlog program did not appear correctly in GNOME Application's System Tools menu. This bug has been fixed in this update so that the icon is now displayed as expected. * Prior to this update, the Network Settings component that was included in KDE's System Settings was not compatible with NetworkManager in Scientific Linux 6. As a result, the spurious message "Your Platform is Not Supported" was displayed in the aforementioned component's dialog window. Furthermore, no network interface controllers (NICs) were displayed in the dialog window. These problems have been resolved in this update by removing the Network Settings component from KDE's System Settings.Scientific Linux FermitrueScientific Linux Fermi 6kdeadmin-4.3.4-5.el6.i686.rpm12304707e451b0edb143711e1e2b37a06f8cc7dfa06f788b94e916008c6aadd3SLBA-2011:1118-1This update fixes the following bug: * Prior to this update, the mime.types database did not contain the WebM MIME type (video/webm). The problem has been resolved in this update by including the MIME type in the database.Scientific Linux FermiScientific Linux Fermi 6mailcap-2.1.31-2.el6.noarch.rpm7a98e0458fecebafb3ba141e5dc17ddb4ed83e53939a807db38ad194c3c971dfSLBA-2011:1123-1* Previously, the MGA driver rendered the image incorrectly on big-endian architectures, including PowerPC and 64-bit PowerPC. Consequently, the display showed altered colors. With this update, a patch has been provided to address this issue, and the colors are now displayed correctly in the described scenario.Scientific Linux FermiScientific Linux Fermi 6xorg-x11-drv-mga-1.4.12-4.el6_1.1.i686.rpmb5d956acc5f556fb8a2edeb9ee1d4303caa0bcaca2544a2b4504cc3dda675264SLBA-2011:1124-1This update fixes the following bug: *Prior to this update, client certificates were under certain circumstances not released when OpenLDAP validated the Transport Layer Security (TLS) peer and the client certificate was cached by Mozilla NSS library. Due to this problem, tools that used both OpenLDAP and Mozilla NSS libraries could fail when calling the NSS_Shutdown function. This update releases the certificate in the OpenLDAP library after finishing the validation. Now, all caches can be released and NSS_Shutdown succeeds.Scientific Linux FermiScientific Linux Fermi 6openldap-2.4.23-15.el6_1.1.i686.rpm9f77b9eac49b3fdbb87d8cf7d086726a8be14fa67c99638fd98c9cfe19295b0aopenldap-clients-2.4.23-15.el6_1.1.i686.rpm89c0fa79e094654344522bff7f861452b46caf2a4d83c370d43f04065a349818openldap-devel-2.4.23-15.el6_1.1.i686.rpmf1f4e770ea543f63bbce3815f35a7c0f46652291b59c7a9e35b8b750155748daopenldap-servers-2.4.23-15.el6_1.1.i686.rpm585a935171cab387c0872f3c43d66feef045d15f06a8a3138cb6d68766ba89ecopenldap-servers-sql-2.4.23-15.el6_1.1.i686.rpmb6233030b46663b3250f84b8d0f2e59e28b28f8c0dcd889412831932d4c42f2fSLBA-2011:1126-1This update fixes the following bugs: * When an array was changing level from redundant to non-redundant such as RAID 0, mdadm failed to exit and remained in memory. This caused a variety of issues, including a termination with a segmentation fault when two array transitions were executed sequentially. With this update, a patch has been provided to address this issue, and the monitor is now properly removed from memory after the backward takeover operation. * If an array size was not properly aligned to the chunk size, the expansion process failed to start and the "New chunk size does not divide component size" error message was returned. This bug has been fixed, and the array alignment is now checked before the expansion process begins. * Previously, when a volume was created with the "--size" option but without providing a chunk size and a container, mdadm used the "UnSet=65534" option for rounding the volume size before setting the default chunk size. This caused the new volume to be created with an incorrect size. This bug has been fixed, and the volume size is now properly rounded to the chunk size. * When the expansion process of a RAID 0 volume was restarted, mdadm failed to correctly assemble the array because the critical section could not be restored from a backup file, and the "mdadm: Failed to restore critical section for reshape - sorry" error message was returned. A patch has been provided to address this issue, and now, the RAID 0 expansion process cannot be restarted, thus fixing this bug. * Previously, mdadm incorrectly calculated reshape start data disks number (0) during the reshape restart operation and used it for calculations. This caused a variety of issues; for example, when two disks were added to the 3-disk RAID 5 array and the array under migration was disassembled and then assembled again, mdadm terminated unexpectedly. A set of patches has been provided to address this issue, and the reshape process is now properly restarted in the described scenario. * When two arrays were configured in a container and the arrays were reassembled during a rebuild or initialization process, the stored checkpoint for one of the arrays was sometimes lost. Consequently, the restarted process did not use the checkpoint information and started from zero position instead. A patch has been provided to address this issue, and the restarted process now properly continues from the stored checkpoint.Scientific Linux FermiScientific Linux Fermi 6mdadm-3.2.2-1.el6_1.2.i686.rpm7257b3e391124f96f0869f3f39eac4548eb5321c2607c0f0d42308810ffee235SLBA-2011:1133-1This update fixes the following bugs: * When the small files were transferred and the "-v" option was enabled, the tftp client printed incorrect statistics about the transfer. This update fixes printing of the transfer statistics. * The tftpd daemon did not correctly handle the utimeout option value. If a client specified a utimeout value within the permitted range, it caused the tftpd process to crash. This crash only affected the current tftp request.Scientific Linux FermiScientific Linux Fermi 6tftp-0.49-7.el6.i686.rpm1b412f11fe5399dde36c8a2c16c5da2c7fa0118e2da800d77309f0974f90adeetftp-server-0.49-7.el6.i686.rpmfcad81dd5d5c642fc914f1a509ef3ba73291a071066288383c0611c3440ef86eSLBA-2011:1143-1These updated sssd packages fix the following bug: * Previously, SSSD did not properly close its PAM sockets after an authentication attempt, which eventually resulted in process resource exhaustion and a denial of service situation. The code has been modified to fix this issue, and file descriptors are now properly released when they are no longer in use.Scientific Linux FermiScientific Linux Fermi 6sssd-1.5.1-34.el6_1.3.i686.rpmd3b1532846b4573d500033ecf0b078eacb7a2560bdf9e88ac039b90f56813f55sssd-client-1.5.1-34.el6_1.3.i686.rpmf40d8134e8b09fcae1caba91e3851b1b0aa8e44eefa48532b6d348143cbdc58csssd-tools-1.5.1-34.el6_1.3.i686.rpm0cf4c8a3d3df49f6c2ab3ea6c83295a9310b79e56277a17eff8c7722b2f04d0bSLBA-2011:1150-1This update fixes the following bugs: * When the system ran out of memory in a module, systemtap failed to remove the module directory created by the debugfs debugger. Consequently, systemtap was unable to load the same module until after a system reboot; sometimes even a kernel panic occurred. With this update, a patch has been provided to address this issue, and systemtap now properly removes the module directory in the described scenario, thus fixing this bug. * Under unusual circumstances, the rate of error or warning messages sent from the probe module to userspace exceeded various buffers. As a consequence, some control messages were sometimes lost which eventually led to a kernel panic in some cases. With this update, the transport layer ensures that all control messages are delivered even if there is a flood of warning or error messages, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6systemtap-1.4-6.el6_1.3.i686.rpm0632e2b8d245c21ee400bf06d7ae0e0c9a17614b42a97daa5bfe390801261993systemtap-client-1.4-6.el6_1.3.i686.rpm8ed4ccc383540a1854cc75f78f4b417cb881a0c6dcfc9ad5c1cce1462e6c3e43systemtap-grapher-1.4-6.el6_1.3.i686.rpm8d14dabed3d5f6af9ade0f8cdf7e617e2dbe13755469bca94bc4b77d7d4ee94dsystemtap-initscript-1.4-6.el6_1.3.i686.rpm4a113ee71a66530d99cdbe171e2eb760bd9f2fe09c51231e57997564030676easystemtap-runtime-1.4-6.el6_1.3.i686.rpm067e8b3ed2cd1236bee2b4ce51dc6d5f048fa6e36e3bed60bb9b71ee8fd5fc3fsystemtap-sdt-devel-1.4-6.el6_1.3.i686.rpmf0ec2443a4c6b6dff35c7ebec7071f5dd4f836a3ce363bbf1156971aa78aaad6systemtap-server-1.4-6.el6_1.3.i686.rpm630f515dcc816c2f65f3230cfb2918ec82149c1ec90c4871961f5878b1e51b64systemtap-testsuite-1.4-6.el6_1.3.i686.rpm3507ad81a508cf99f517611fefc3967962d9e847c915eea7f0ada39da74ecb92SLBA-2011:1156-1This update fixes for the following bug: * Previously, certain DMI (Direct Media Interface) tables did not report CPU information as a string and returned the NULL value instead. Consequently, Python terminated unexpectedly with a segmentation fault when trying to identify the CPU type by performing a string comparison. With this update, additional checks for NULL values, performed prior the string comparison, have been added to the code, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6python-dmidecode-3.10.12-1.el6_1.1.i686.rpm327f6c11e857825a362aa45bd8eef01136c83434354d5afccf5bae9649630890SLBA-2011:1158-1This update fixes the following bug: * Prior to this update, the cyclic redundancy check (CRC) was not correctly computed on 64-bit architectures during decompression of gzip archives. In this update, constant-width integer types are used to compute CRC to make the results stable across all architectures.Scientific Linux FermiScientific Linux Fermi 6boost-1.41.0-11.el6_1.2.i686.rpm5a57b00b525073bcff6f7afdc60fa1a5a44c2a6f83fc2ba1fe7d54a799abb877boost-date-time-1.41.0-11.el6_1.2.i686.rpm4e7eae58d570804a1ea7ee457b8c0731ea9788eeb3271cc350fb16564b36e43eboost-devel-1.41.0-11.el6_1.2.i686.rpmd5ea46a9fd68d6b4fae14423d28951f4d7945c750e99e3689e0be715fa8dababboost-doc-1.41.0-11.el6_1.2.i686.rpm31a90431fcd3a30488422589ea4782f3672b8a5ec069ad0d4c73e137188bf36dboost-filesystem-1.41.0-11.el6_1.2.i686.rpm76796490915222e638899cdd40fe7e92291056c8808d145dd9db21ba4389007bboost-graph-1.41.0-11.el6_1.2.i686.rpm34fcbfb177fd4d7126a23ef8b1d817b031ba33db0361414d0c161f0430b3c886boost-graph-mpich2-1.41.0-11.el6_1.2.i686.rpm141789b13f7681f76f9bb5f32b32cd09513f1f66725c031a30112391ce8cb4aaboost-graph-openmpi-1.41.0-11.el6_1.2.i686.rpm1d3a755d571973f9cd99506e6669eec19945dfab5b839fcca1700092e1815f5aboost-iostreams-1.41.0-11.el6_1.2.i686.rpm89899ae790ef20f21b4b797bf7b71314978f958334f59fb4b8eb94b8178ab905boost-math-1.41.0-11.el6_1.2.i686.rpm895ca58bc5d0870dd8316b8c7f991873ee475e576a5770dbea98a97391a8434aboost-mpich2-1.41.0-11.el6_1.2.i686.rpmd82f30602badc8d191d146efefba6e967c16daf9686c9348f3f3c6e4464009eaboost-mpich2-devel-1.41.0-11.el6_1.2.i686.rpmf5c147f3b01a69bd72deea7cc7d91e4849fcfa24e767d8fccd2521df85e1d0e5boost-mpich2-python-1.41.0-11.el6_1.2.i686.rpm76d876277f1df2ff47780c0e93137947f686a98763d21c51ef7e2521a36bbaa6boost-openmpi-1.41.0-11.el6_1.2.i686.rpm08aeed30be6ad25fa4881f7da3da98944d1453f7fb756ae4e939d63661e70f55boost-openmpi-devel-1.41.0-11.el6_1.2.i686.rpmbd23bbeb7f65197a25f2558ad9cbb0787a454bea04d19ffcad99affb8482ca7cboost-openmpi-python-1.41.0-11.el6_1.2.i686.rpm1c9bad8fb9e4a9ea0e7fcbbcc84940fb49d1f50307e7a25f480c0d68e7b33cb8boost-program-options-1.41.0-11.el6_1.2.i686.rpm9e909620f732078c5cba56c9aea6fc2cf5a7460776a481aed798a296e409c5adboost-python-1.41.0-11.el6_1.2.i686.rpmb89c0c13e0741d91175922d66f69e6e5532397a0f93738bc737378eb9ae63bc3boost-regex-1.41.0-11.el6_1.2.i686.rpm92671eb7e6695298b8509032110937623c13ac984d32936898d638ad4167eb9fboost-serialization-1.41.0-11.el6_1.2.i686.rpm49c00cda9e147d217beaf61fb814f79dc0bc66800abf662961f55eb40ef097deboost-signals-1.41.0-11.el6_1.2.i686.rpm9926f3256aadf2d7489ae3127e5998f63213f853a2e3750f9f1f98834639ba5eboost-static-1.41.0-11.el6_1.2.i686.rpm80f8936e6e7d98fd019a17f42b359ee92f0195acf0cd390a99d39f56776e8aadboost-system-1.41.0-11.el6_1.2.i686.rpm2dabf1f6cb0e5a9540defa602212b8fb5d445aff4190ddf81fc1fcfb541f5b2dboost-test-1.41.0-11.el6_1.2.i686.rpmeb8ae307f404da63de83b52c33613ba0c555bd2a59204ecbb8fec2d92970d244boost-thread-1.41.0-11.el6_1.2.i686.rpmc52c6a5d8b3a2a440e4abaf893a520c70677286fda22f07401a35d9376e952b8boost-wave-1.41.0-11.el6_1.2.i686.rpmfc2b442e70fd10aa46f05bcd6eeb7a28902dafc6674eb686c6c05ba3d0574789SLBA-2011:1168-1These updated autotrace packages fix the following bug: * When installing autotrace-devel multilib RPM packages from the optional repository, file conflicts between these packages appeared, causing the installation transaction to abort. This problem has been fixed and the installation transaction now proceeds without conflicts..Scientific Linux FermiScientific Linux Fermi 6autotrace-0.31.1-26.el6.i686.rpmd50256833313d720ca4b78d225726276874e9577eb72b4d5bd362f7380764886autotrace-devel-0.31.1-26.el6.i686.rpm9bf8fd119611b49039de930c709a7a780d6e0b62fcd61ad7b61d7e16c5f91062SLBA-2011:1169-1This update fixes the following bugs: * Prior to this update, the isdn and capi init scripts were not LSB compatible. Due to this problem, the isdn and capi init scripts exited with incorrect or invalid exit statuses. This update modifies the init scripts so that they are LSB compatible. Now the init scripts exit with the correct exit status.,Scientific Linux FermiScientific Linux Fermi 6isdn4k-utils-3.2-75.el6.i686.rpmc2422661f757ff09b42c53c01dd8147773f87c5927b5a7c530a86640564d1629isdn4k-utils-devel-3.2-75.el6.i686.rpm770eaf45e4cca44692b50726e8294c1c10b994be68672f45e5a703b1529bbd96isdn4k-utils-vboxgetty-3.2-75.el6.i686.rpm4fb2750ee345ef7943c59d967ff0def92b4910b3602824c4d7172983f968224exisdnload-3.2-75.el6.i686.rpm82d4ccd887d03d4cd0b3f2b6037160e6dbebb7eafc282b11f11ef29ff09eac6dSLBA-2011:1171-1This update fixes the following bugs: * Bash provides the PROMPT_COMMAND environment variable containing a command that is called when a prompt is displayed. Prior to this update, the PROMPT_COMMAND variable set by a custom profile.d script was overwritten with the default value from the /etc/bashrc script file. With this update, the /etc/bashrc script file has been updated so that it now respects a user-defined PROMPT_COMMAND variable, and does not overwrite it. * Prior to this update, the /etc/host.conf configuration file contained a line "order host,bind". This line is no longer used by the glibc library and is therefore redundant. With this update, this line has been removed from the host.conf file. Additionally, this update adds the following enhancements: * The retrace-server package creates a user ID (UID) pair and a group ID (GID) pair, both with the name "retrace" and number "174". This user and group is used by the Automated Bug Reporting Tool (ABRT) retracing server. Prior to this update, the aforementioned UID/GID pairs were not reserved by the setup package so that other packages or system administrators could have accidentally assigned those values to other users and groups. With this update, the setup package now reserves these UID and GID names and numbers so that accidental conflicts with other users and groups do not happen anymore. * The rhev-agent package creates a user ID (UID) pair and a group ID (GID) pair, both with the name "rhevagent" and number "175". This user and group is used by RHEV-Agent. Prior to this update, the aforementioned UID/GID pairs were not reserved by the setup package so that other packages or system administrators could have accidentally assigned those values to other users and groups. With this update, the setup package now reserves these UID and GID names and numbers so that accidental conflicts with other users and groups do not happen anymore. * The trafficserver package creates a user ID (UID) pair and a group ID (GID) pair, both with the name "ats" and number "176". This user and group is used for the configuration management functions over a cluster of nodes. Prior to this update, the aforementioned UID/GID pairs were not reserved by the setup package so that other packages or system administrators could have accidentally assigned those values to other users and groups. With this update, the setup package now reserves these UID and GID names and numbers so that accidental conflicts with other users and groups do not happen anymore.Scientific Linux FermiScientific Linux Fermi 6setup-2.8.14-13.el6.noarch.rpm6faece3fd47c5821c181029a4225d83fca0371a26a66073f2cea19a603b57b39SLBA-2011:1172-1This update fixes the following bug: * Previously, the regular expression used to find URLs in the text was missing a colon character. As a consequence, the URL containing a colon was not interpreted correctly. With this update, a colon character has been added to the regular expression so that the URL is now properly interpreted.Scientific Linux FermitrueScientific Linux Fermi 6gnome-terminal-2.31.3-7.el6.i686.rpm55cc82d07646b4aec21dd9e2c0bd16da962dd396da9b210085c790c77901a2b9SLBA-2011:1173-1This update fixes the following bug: * Prior to this update, the icon for the kttsmsg program incorrectly appeared in GNOME Application's Accessories menu. This bug has been fixed in this update so that the icon is now no longer displayed, as expected.Scientific Linux FermitrueScientific Linux Fermi 6kdeaccessibility-4.3.4-5.el6.i686.rpm4c6f3f322ceb25e9b91ce3bdf1db264b76eeef84be5be33a156836436f6aba34kdeaccessibility-libs-4.3.4-5.el6.i686.rpmc3698151de46f82c440a5fc34b09662da4cf5c9580bf0a46f3a2d55081f4a176SLBA-2011:1174-1This update fixes the following bug: * Prior to this update, Doxygen required invalid BuildRequires on the qt-devel package. With this update, packages with BuildRequires dependencies on the qt- devel package have been fixed. Now, these packages explicitly require qt4-devel.Scientific Linux FermiScientific Linux Fermi 6doxygen-1.6.1-6.el6.i686.rpme0f2b59ad40e64d010350633f8bdecb019c18cd7e4c25249355e504547a1e2a6doxygen-doxywizard-1.6.1-6.el6.i686.rpm06cc4193c83c34067a311fccccca9c7f754cc133e687bc9df9553a7937b4d476SLBA-2011:1175-1This update fixes the following bug: * Prior to this update, sudo incorrectly searched for the Lightweight Directory Access Protocol (LDAP) configuration in the /etc/nss_ldap.conf file. This bug has been fixed in this update so that sudo now searches the /etc/nslcd.conf file. As well, this update adds the following enhancement: * Because the sudo utility needs to be run with elevated privileges, the sudo package is now built with RELRO linker flags.Scientific Linux FermiScientific Linux Fermi 6sudo-1.7.4p5-7.el6.i686.rpmaea204264d67b4321b848f37ee404355ed6c21c21fd27d4a29ceda02d5012d5bSLBA-2011:1176-1This update fixes the following bugs: * Previously, remote "tuned" service starts could have led to a service unresponsiveness under certain circumstances. With this update, the handling of stdin, stdout, or stderr during the service creation has been fixed to resolve this problem. * Previously, using NIC bonding could have led to an unexpected termination of "tuned". With this update, the network device type determination has been fixed by handling more error conditions so that the aforementioned bug no longer occurs. All users of "tuned" are advised to upgrade to these updated packages, which fix these bugs.Scientific Linux FermiScientific Linux Fermi 6tuned-0.2.19-6.el6.noarch.rpmba6e58c6467b36e355d07fe7506c8898cfcfdaa7f54e2bf0a479a81d5021db43tuned-utils-0.2.19-6.el6.noarch.rpmab43a39c3fffa9a4029bfb0c093c57a8179dcf17179f67ecc62396a4f1050049SLBA-2011:1177-1This update fixes the following bugs: * Prior to this update, when mingetty was invoked with the "--chroot" option, mingetty did not change the working directory to the new root. Furthermore, mingetty continued even if setting constraints specified by the "--chroot", "-- chdir", and "--nice" options failed. As a result, a user was able to escape from the changed root by using relative paths. Also, it was possible for a user to obtain a process with a different process priority. These problems have been resolved in this update so that the working directory is now changed to the new root directory, all failures are now recognized, and mingetty terminates with an error reported to the system log. * Prior to this update, when invoking mingetty with a TTY name (a non-option position argument) that was longer than 39 ASCII characters, a buffer overflow occurred and the mingetty stack content could have become corrupted. This bug has been fixed in this update so that only the first 39 bytes (34 bytes in case of a relative path) from the TTY name are now copied. * Prior to this update, when using a login name longer than 39 characters, such login name was silently refused and mingetty terminated. With this update, login names with the length up to the current runtime limit are now accepted; login names that are above the limit are refused, an error is reported to the system log, and mingetty terminates.Scientific Linux FermiScientific Linux Fermi 6mingetty-1.08-5.el6.i686.rpm6c87dd97199918113f25276294ac19caaaa67c290e6341e02d26eb343b2ee9c8SLBA-2011:1179-1These updated glibc packages provide fixes for the following bugs: * Under certain circumstances, a threaded process could have been granted incomplete group membership of the user which was running the process. This was caused by glibc using its default method for group membership determination, which led to a situation in which multiple threads interfered with each other while attempting to retrieve information simultaneously. Due to the nature of the group membership determination method used, each thread ended up with a different subset of the entire result set. With this update, the group membership determination method has been modified to precede this interference. * When a process corrupted its heap, the malloc() function could have entered a deadlock situation while building up an error message string. This caused the process unresponsive. With this update, the code has been modified to use the mmap() function to allocate memory for the error message. This workaround ensures that the malloc() deadlock no longer occurs when allocating memory for an error message when the corrupted process heap is detected, and such a process is now normally aborted. * Prior to this update, the Name Service Caching Daemon (nscd) did not clear the host cache effectively when repopulating its values. The code has been modified to schedule nscd cache pruning more accurately. * Previously, nscd did not take into consideration time-to-live (TTL) parameters for the DNS records it was caching. With this update, the code has been modified so that nscd now respects TTL parameters when it answers requests for DNS records.Scientific Linux FermiScientific Linux Fermi 6glibc-2.12-1.25.el6_1.3.i686.rpm398e172a78514dfc9db1085afe0641b72b087cab7d3e5c02598e623cbb05c4c8glibc-common-2.12-1.25.el6_1.3.i686.rpmceacb386cb610860383ebd5981f80886f993f28aa6b45be58993b89f4e353e01glibc-devel-2.12-1.25.el6_1.3.i686.rpme7e603237ce7cefebf1e7dd2140f6fac3524e866996bc2a306b3e61508823384glibc-headers-2.12-1.25.el6_1.3.i686.rpm00b41a790e3fa2b4976556a0cec917118dccc334c9cf6b555feb8de335dd1fa8glibc-static-2.12-1.25.el6_1.3.i686.rpme9cb5aa296af381e47424f5446d2c1305782781056e3f274197b402af6c5afecglibc-utils-2.12-1.25.el6_1.3.i686.rpm987745f4a654235535bee328105e33670c6630172fc0a46dd56fd0aaa0e734a5nscd-2.12-1.25.el6_1.3.i686.rpm6b94e07f1be4a0ac3d7e25bfdb6ca5f657db502e11ab4fa2b73eae530765f080SLBA-2011:1186-1These updated curl packages fix the following bug: * As a solution to a security issue, GSSAPI credential delegation was disabled, which broke the functionality of the applications that were relying on delegation, which was incorrectly enabled by libcurl. To fix this issue, the CURLOPT_GSSAPI_DELEGATION libcurl option has been introduced in order to enable delegation explicitly when applications need it. All applications using GSSAPI credential delegation can now use this new libcurl option to be able to run properly. All running applications using libcurl have to be restarted for the update to take an effect.Scientific Linux FermiScientific Linux Fermi 6curl-7.19.7-26.el6_1.2.i686.rpm3a71dc0cc7c679dc0c252c9c50a44c64a19b115851a01dbd87cd9fa2d4811dc1libcurl-7.19.7-26.el6_1.2.i686.rpm72c691a24e05130b7b79ab1fb1a6729b24e31f69a34c6ad81f71118aa866dfc7libcurl-devel-7.19.7-26.el6_1.2.i686.rpmc9b708be05928103e78fb102552ec403293acecba0b9043e9659a2245080bd46SLBA-2011:1199-1This update fixes the following bug: * When searching for files or directories to remove, tmpwatch was reporting all failures to access these files or directories. This included expected access failures due to the restrictive default configuration of FUSE mount points. With this update, tmpwatch now silently ignores all EACCES errors, and the expected access failures regarding FUSE mount points are no longer reported.Scientific Linux FermiScientific Linux Fermi 6tmpwatch-2.9.16-4.el6.i686.rpm9cfd9b1a5b794af25b8837f3079f0fc13512d6cec1267925fbb064ad2d24aabfSLBA-2011:1200-2This update fixes the following bugs: * Prior to this update, when starting another instance of the konsole application in an already running konsole instance, the spurious "Undecodable sequence: \001b(hex)[?1034h" message was displayed. This bug has been fixed in this update and no longer occurs. * Prior to this update, the System Settings application in KDE became unresponsive when entering a password in order to apply changes in the About Me dialog. With this update, the bug has been fixed so that entering a password works properly.Scientific Linux FermitrueScientific Linux Fermi 6kdebase-4.3.4-5.el6.i686.rpm73cb7510a3beb9c26402138312849c89973ecb45d999897797414f6f06d1c0e1kdebase-devel-4.3.4-5.el6.i686.rpm8ef7d0c5f637c06e5eea13ce2760a74ea1200c8393a736ab191421338730d527kdebase-libs-4.3.4-5.el6.i686.rpm0a30ab6b03f91d86c43d5596a656b845ec54f2b831db3ed5bd539ee4c94d096bSLBA-2011:1201-1This update fixes the following bug: * Prior to this update, when a system event relevant to smartd happened, the following spurious error message was output if no mail address was configured: "smartd: internal error in MailWarning(): cfg.mailwarn->emailfreq=0" This unintended behavior has been fixed in this update so that the spurious error message is no longer displayed.Scientific Linux FermiScientific Linux Fermi 6smartmontools-5.39.1-5.el6.i686.rpm833245ef2969c6828b93bb6eb38c0991b0b4290993c9f86ace52f1365455117aSLBA-2011:1202-1This update fixes the following bugs: * Prior to this update, the unicap package did not provide the libucil, libunicap and libunicap-gtk virtual packages. As a result, it was not possible to install packages that depended on the libucil, libunicap and libunicap-gtk packages. This update fixes the declaration "--provides" so that the unicap package now provides the virtual packages. * Prior to this update, the unicap utility did not check for the return value of the Advanced Linux Sound Architecture (ALSA) initialization. As a result, unicap terminated unexpectedly if the initialization of ALSA failed. This update adds the missing checks for the return value to handle the ALSA initialization failure gracefully. * Prior to this update, the unicap utility did not check for the return value of the Theora encoder initialization. As a result, unicap terminated unexpectedly if the initialization of the Theora encoder failed. This update adds the missing checks for the return value to handle the Theora encoder initialization failure gracefully. * Prior to this update, unicap-devel packages for both 32-bit and 64-bit architectures on a single system could not be installed because of conflicts between the packages. This update uses the documentation from the unicap source code archive instead of the documentation generated at build time. Now, unicap- devel packages can be installed as expected. * Prior to this update, the unicap package was missing a dependency on libv4l2.so.0, although some libraries shipped with unicap were using libv4l2.so.0. This update adds the missing dependency.Scientific Linux FermiScientific Linux Fermi 6unicap-0.9.5-7.el6.i686.rpmfa63671fc09addbc7b0d95977b9c91e6da92b36c1a0abb5a1135dba810eab5e7unicap-devel-0.9.5-7.el6.i686.rpm8b803c7f88d577c03090b2e38b31e1ed41a2fd16ee7ce27c6cbbbb579798a884SLBA-2011:1203-1These updated nautilus packages provide fixes for the following bugs: * Previously, the "Volume is busy" dialog was not linked to any window, which led to the "Untitled window" item appearing on the taskbar when the user unmounted or ejected a device with one or more files opened. This update sets the dialog temporarily for the desktop window which automatically removes the taskbar item. * Previously, an incorrect signal was emitted when the user changed the name of a bookmark created in Nautilus. As a consequence, the changes got lost and the new name was not written into the bookmark file. This has been fixed: the correct signal is now emitted and the bookmarks can be properly updated. * Previously, Nautilus could close unexpectedly with a segmentation fault due to a race condition if the user selected a file that was already deleted but was still displayed in the window. This has been fixed and Nautilus does not terminate unexpectedly any longer. * Previously, the GNOME Configuration (GConf) schemas were missing. As a consequence, the position and size of the folder windows were lost once the user closed the window. The missing GConf schemas have been added and the position and size of the folder windows are now saved and restored correctly. * Prior to this update, Nautilus did not reflect the changes made to the locations of the XDG (Base Directory Specification) file system directories and used the old locations instead. As a consequence, files created on the desktop may have disappeared if the user logged on used a different user interface language. This problem has been fixed: the desktop is now refreshed with every change of the XDG directories. * Previously, Nautilus could have become suspended when the user copied files from an FTP server. This was caused by an error in the GVFS (GNOME virtual file system) client dbus code which prevented recursive synchronous calls. This has been fixed and Nautilus no longer becomes suspended during the file transfers. * Prior to this update, Nautilus did not refresh the folder buttons in the path bar when deleting the linked directories. When clicking on the folder icon in the path bar, an error message appeared. Now, folder buttons in the path bar are automatically removed when deleting the linked directory.Scientific Linux FermiScientific Linux Fermi 6nautilus-2.28.4-18.el6.i686.rpm75143ee4781ec8ac5755b24355a29b301d2d2197925b4c1b8d919b756177feaenautilus-devel-2.28.4-18.el6.i686.rpmac3497552640eff3e2a18b36ecfa5755b701ee3af0bba6bc02569f3fafdb2635nautilus-extensions-2.28.4-18.el6.i686.rpmb3572d0e125915b38e791b8a8efd128c53c841e7ee1784283df4b6f4d34f8d95SLBA-2011:1204-1This update fixes the following bug: * Previously, setting a cursor color was not working properly in that a terminal (text) cursor was invisible in some applications which used vte. With this update, the bug has been fixed so that the cursor is now rendered properly and is visible as expected.Scientific Linux FermiScientific Linux Fermi 6vte-0.25.1-7.el6.i686.rpm923330da3a678da5b346dbb6b3a653185be3bcaf8293c03c6509920bf3177a14vte-devel-0.25.1-7.el6.i686.rpm7edb267e0df1e104ec9b0fc558219e04860c061b69da05b944feeec971f6ee55SLBA-2011:1205-2This updated nautilus-open-terminal package includes fixes for the following bugs: * This update adds the untranslated string which was missing in the Japanese translation of the graphical user interface. * Previously, the terminal failed to start if the user used a shell other than bash. The problem was caused by incorrect invocation parameters, which have been fixed and the terminal now launches properly. * Previously, nothing happened if there was no terminal application installed and the user right-clicked on the desktop and selected "Open Terminal". With this update, the gnome-terminal package has been set as a hard dependency to guarantee at least one terminal application is available.Scientific Linux FermiScientific Linux Fermi 6nautilus-open-terminal-0.17-4.el6.i686.rpmbdc8cde9676819a541ae8fbbbf6a7ef27fe7569bb3aa3bf12150ca6bc142432fSLBA-2011:1206-3This update fixes the following bug: * Prior to this update, the icon for the Sweeper utility did not appear correctly in GNOME Application's Accessories menu. This bug has been fixed in this update so that the icon is now displayed as expected.Scientific Linux FermitrueScientific Linux Fermi 6kdeutils-4.3.4-7.el6.i686.rpma1c6f88398ca6e17550b917e9cef835cc85210fbe6dd9956540bbfde78b7ea22kdeutils-libs-4.3.4-7.el6.i686.rpme338455719ae2667a920a644d767ed02d72de4212e525b2a6301737b6e440f79SLBA-2011:1208-1This updated ibus-anthy package fixes the following bug: * Previously, when changing the Candidate Window Page Size setting of Other under the General tab, the im-chooser application had to be restarted for the changes to take effect. This problem has been fixed and the changes made to Candidate Window Page Size now apply immediately.Scientific Linux FermiScientific Linux Fermi 6ibus-anthy-1.2.1-3.el6.i686.rpmfef79f5d90d992bac27e800e1586961f320ac34da2df425e9f59d2657cbfda1bSLBA-2011:1218-1This update fixes the following bug: * Due to multilib problems, the fakeroot command was only built on 64-bit architectures as a workaround, one which prevented the RPM package from being built on other architectures. This update resolves the multilib problems so that fakeroot now builds successfully on all architectures.Scientific Linux FermiScientific Linux Fermi 6fakechroot-2.9-24.5.el6_1.1.i686.rpm3f07b1f0d84600af07dbf76cc58500054128d1834556af17da25ca387287e6fafakechroot-libs-2.9-24.5.el6_1.1.i686.rpmdaa7945df4d46a61ec9922b9d7467694c73c91ba90a930c6d950d3867b9cec9eSLBA-2011:1223-1This update fixes the following bugs: * Prior to this update, remote virtual machine management with TLS encryption used the same port as the one used for the unencrypted connection. With this update, the port for the remote virtual machine management has been changed so that remote virtual machine management with TLS encryption now works as expected. * Prior to this update, the Tamil translation was incomplete. As a result, certain messages were displayed in English. With this update, the missing messages have been added to the translation. * Prior to this update, the Hindi translation was incomplete. As a result, certain messages were displayed in English. With this update, the missing messages have been added to the translation. * Prior to this update, the Punjabi translation was incomplete. As a result, certain messages were displayed in English. With this update, the missing messages have been added to the translation.Scientific Linux FermiScientific Linux Fermi 6system-config-firewall-1.2.27-5.el6.noarch.rpmdc4577725cc12bad82d8c83e072972d3d6933564ce76b7992ec8ed61134fa116system-config-firewall-base-1.2.27-5.el6.noarch.rpm4890621e12301b192865572a61a3e3f8dca8a9ccc2e82d178b6425d952cc5533system-config-firewall-tui-1.2.27-5.el6.noarch.rpm97c65b9d8226326fe24ef1824d792540b9045b2c3cbf0541fc109cea45239da5SLBA-2011:1224-1This updated cpufrequtils package fixes the following bug: * Prior to this update, the cpufreq-aperf utility did not run on 32-bit systems due to an incorrect argument passed to the read() call. This problem has been fixed: the buffer size is now used instead of the size of the pointer and the cpufreq-aperf utility runs as expected.Scientific Linux FermiScientific Linux Fermi 6cpufrequtils-007-6.el6.i686.rpm6a80c16445f1a4aeeb6f71815c4620e0ab34bd0cd333ebc0d9f4175c4c9e4989cpufrequtils-devel-007-6.el6.i686.rpmc8cb55bec6d9415bf6300b06b0d2583e00ba6108048dfa6e233707999410404aSLBA-2011:1225-1This update fixes the following bug: * Prior to this update, when installing the libcgroup package, a new group "cgred" was erroneously created as a user group (starting with GID 500) and not as a system group (with GID lower than 500). As a result, newly created users could have had UID different to GID. With this update, the "cgred" group is now created correctly as the system group with GID lower than 500. This update does not change GID of the "cgred" group if the group already exists on the system.Scientific Linux FermiScientific Linux Fermi 6libcgroup-0.37-3.el6.i686.rpm3823219938d9eda919e1bccce62fb03e99f07f9b49cf94e8999765e4e9e5b626libcgroup-devel-0.37-3.el6.i686.rpm788a1965b3805b2a05fb4843c7ff2bbfdce5dcc613590e58e2598abccd442a12libcgroup-pam-0.37-3.el6.i686.rpm896f1b5a0d2e3e76a68c604b324d4f254763deddc556653470d9ca286e770308SLBA-2011:1226-1This update fixes the following bug: * Prior to this update, the libsndfile package was built without the Ogg container format support. As a result, applications using the libsndfile library were not able to work with the Ogg format. With this update, the problem has been fixed so that applications can now work with the Ogg format as expected.Scientific Linux FermiScientific Linux Fermi 6libsndfile-1.0.20-5.el6.i686.rpm0443a37521b1b0989db3c0964e9ca4f6dafd2ac1fb9b47c88b2c542d0411a8c9libsndfile-devel-1.0.20-5.el6.i686.rpmfe2f4bb94bee92865af5f0d3e82768d59b6ed1f8d084daf56d5afe05a7e6fb12SLBA-2011:1227-1This update fixes the following bugs: * Prior to this update, the bltk tree was corrupted. As a result, the bltk_report script failed. This update modifies the settings of the bltk root path. Now, the report script works as expected. * Prior to this update, bltk could be installed without requiring the gnuplot binary. As a result, the bltk_plot script exited with an error message when the gnuplot package was not installed and the charts were shown from measured data. This update requires the gnuplot package for its installation. Now, the bltk_plot script no longer exits with an error.Scientific Linux FermiScientific Linux Fermi 6bltk-1.0.9-16.el6.i686.rpm8ae9774821e3655ef906d7f7acd88e49a7cdc7769d1a75038b5bfe9f3b5d9bdaSLBA-2011:1228-1This update fixes the following bug: * Previously, under certain circumstances, LabelGadget could have drawn over a parent window with the background color and, if using the Xft fonts, also over the text. With this update, the text and background drawing functionality has been fixed so that the aforementioned problems do not occur anymore.Scientific Linux FermiScientific Linux Fermi 6openmotif-2.3.3-4.el6.i686.rpm79212b8ad5ecd295ecf1d3fcadb07904d7faaa47583349eb2da004a905657d17openmotif-devel-2.3.3-4.el6.i686.rpm3c6974945a2ac425a6854c054f434456f7caa59f59243febd14d7bd311dd7328SLBA-2011:1229-1This update fixes the following bugs: * Previously, a trailing comma was passed in the "thunderbird" command. As a result, Thunderbird was unable to open a compose window. With this update, the trailing comma has been stripped so that Thunderbird now works properly. * Previously, there was a typo found in the xdg-utils source code. As a consequence, Thunderbird, after passing in an email address, created a compose window without the "To:" address. With this update, the typo has been fixed so that the "To:" address is now passed in correctly.Scientific Linux FermiScientific Linux Fermi 6xdg-utils-1.0.2-17.20091016cvs.el6.noarch.rpm328656cf384de534381aaf6a01793e8c4ce619ac1d44864881e39ab4860ba03fSLBA-2011:1230-1This update fixes the following bug: * Previously, PowerTOP did not correctly handle the SIGWINCH signal. As a result, PowerTOP was terminated unexpectedly if the terminal window, in which PowerTOP was running, was resized. This update fixes the SIGWINCH signal handling so that PowerTOP is not unexpectedly terminated if the terminal window is resized.Scientific Linux FermiScientific Linux Fermi 6powertop-1.11-6.el6.i686.rpm05cbe9cdaec804a3dc55752c83a9d1358de235c935efe5137b350990e8185612SLBA-2011:1231-1This update fixes the following bug: * When scanning for iSCSI devices, if no device existed with a Logical Unit Number (LUN) of "0", then the rescan-scsi-bus.sh shell script failed to detect any other devices as well. With this update, the rescan-scsi-bus.sh script detects all iSCSI devices even if there is no device with LUN of "0".Scientific Linux FermiScientific Linux Fermi 6sg3_utils-1.28-4.el6.i686.rpm599e3e34e060e43b2d8c291170a57adfb191e009cd449b37d18ab7c8f1220bf4sg3_utils-devel-1.28-4.el6.i686.rpmaab3000769de4dfb40d04b7de5befb9cee951326c1a238bce94441791cde07e8sg3_utils-libs-1.28-4.el6.i686.rpm93970fb79bae8fcae36f7816ed4e624cb2ad27e144f0f4485cd71b294982a2c0SLBA-2011:1232-1This update fixes the following bugs: * Prior to this update, the bacula packages were not distributed with the applybaculadate file. As a result, the logwatch cron script failed. The problem has been fixed by including the applybaculadate file in the bacula packages so that the logwatch cron script now works as expected. * Prior to this update, the make_catalog_backup.pl script created a MySQL configuration file, which had the file permissions set to world-writeable and world-readable so that MySQL did not accept the configuration file with these permissions and the MySQL database login configuration was not used. As a result, it was not possible to complete a MySQL database dump. With this update, the configuration file is now created with correct permissions, and the MySQL database login configuration is used by MySQL so that it is now possible to complete the MySQL database dump as expected. * Prior to this update, there was no option to change Bacula's runtime user. As a consequence, Bacula was always run under the root user. The problem has been fixed by adding support for the bacula-dir, bacula-fd, and bacula-sd files in the /etc/sysconfig/ directory; these files can be used for specifying a non- root user and group with the DIR_USER, FD_USER, SD_USER, and DIR_GROUP, FD_GROUP and SD_GROUP options, respectively. With this update, Bacula can be run under the specified user. * Prior to this update, when creating a symbolic link to the "bscan" utility, the new link was erroneously named "dbcheck". As a result, the already existing "dbcheck" symbolic link was overwritten by the erroneous one. Thus the "dbcheck" command ran the "bscan" utility so that it was not possible to execute the "bscan" utility with the "bscan" command. The problem has been fixed in this update so that the "dbcheck" and "bscan" utilities now work as expected. * Prior to this update, Bacula's default configuration missed a required option. As a result, the Bacula tray monitor component terminated unexpectedly. The problem has been fixed by adding the "Address" option to the "Director" section in the Bacula tray monitor configuration file so that the Bacula tray monitor now works as expected with the default configuration file. Note that this bug fix does not alter any existing Bacula tray monitor configuration file. As a consequence, the Bacula tray monitor can terminate unexpectedly if the existing Bacula tray monitor configuration is incorrect. * Prior to this update, the backup size was computed incorrectly under certain circumstances. As a consequence, the reported size of the incremental backup could have been wrong. The problem has been fixed by correcting the backup size computation process so that the size of the incremental backup is now reported correctly. * Prior to this update, the shadow-utils package was not listed among the package dependencies for Bacula. As a result, the bacula user and bacula group were not created when the shadow-utils package was not present on the system, and a warning message was displayed during the bacula packages installation. This bug has been fixed by adding shadow-utils to the package dependencies. * Prior to this update, the chkconfig package, which contains the "alternatives" utility, was not listed among the package dependencies for Bacula. As a result, the bacula-dir and bacula-sd services were not configured, the "alternatives" utility was not found, and Bacula's symbolic links were not created. These problems have been fixed by adding chkconfig to the package dependencies.Scientific Linux FermiScientific Linux Fermi 6bacula-client-5.0.0-9.el6.i686.rpmf642e3e0a649324e6f032d790cbf8cbe043c78c6b7a7432ad6a983964fdf4aa4bacula-common-5.0.0-9.el6.i686.rpm7dab52eb65e1049537b22d271c08acb4c0ace89bb8db3b26678ad9ce75211176bacula-console-5.0.0-9.el6.i686.rpm9261c030ec79f4a3a9932508106a0e62d87443c049e347ed1b0f0f01857bbec2bacula-console-bat-5.0.0-9.el6.i686.rpm6be77a5c86244aac6e13784749b7b9c885873a3aada360f0ee393350ff9cd4e1bacula-director-common-5.0.0-9.el6.i686.rpmfae0a60f144ca129c509cffcec5aa18821109f0335f30300ea14712c25ccff4fbacula-director-mysql-5.0.0-9.el6.i686.rpmc14551b8ea1e711d2f6d149dda48a904fe7517d273115832d033ef351843b9fcbacula-director-postgresql-5.0.0-9.el6.i686.rpm7b3dbe691e3507eadbeb75fb477dc71d359398c4d2e176d5f7d5fdb49e61979fbacula-director-sqlite-5.0.0-9.el6.i686.rpm8b91cbba772db72a5dc3e0199de8ca9e43c530e799379eeecaa13a8ed9912832bacula-docs-5.0.0-9.el6.i686.rpm81cc483b840bea940776455ab5dd1d268cf6c2ff73d06ed38a05bc5941c51c90bacula-storage-common-5.0.0-9.el6.i686.rpmd71fb757ad6261601f888ab34ba09f958e967460c1e10a697c1c2a643452c06fbacula-storage-mysql-5.0.0-9.el6.i686.rpme09d909d4e24b93d266d0c137b61103522b1094035c5080fdbd729465b231206bacula-storage-postgresql-5.0.0-9.el6.i686.rpm624abf42a682e2c91e41561c13d4746c78b1e888e59002e2819e8cb3e93911e6bacula-storage-sqlite-5.0.0-9.el6.i686.rpmcb0840c5393247eae2e9342d448c2c814e67b508d56a9c05e0f61ff3aef57d99bacula-traymonitor-5.0.0-9.el6.i686.rpm16e7db50297fe920e03a93a953a37843b23c603205895b07128d404014ce6732SLBA-2011:1235-1This update fixes the following bug: * The fencing agent for Cisco UCS, included in the Scientific Linux 6.1 cluster, supports the "suborg" option. However, this option was not defined in the schema for the /etc/cluster/cluster.conf file. As a consequence, utilities such as ccs returned error messages about the schema violation at the attempt to define fencing for UCS blade servers with the "suborg" option, and the fenced daemon did not start if this definition was forced into the cluster configuration file. With this update, a patch that adds the "suborg" option to the cluster configuration schema definition for the fence_cisco_ucs agent has been provided, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6ccs-0.16.2-35.el6_1.1.i686.rpm490b352c940461d8b1d576f95ed02ee6c9e62b5abd26b83d129353a6b304cc1cricci-0.16.2-35.el6_1.1.i686.rpm202a48ea1c6c032c6c8411a15cff92f2082e5f108c3bb3bcd3124be83b2deb04SLBA-2011:1236-1These updated cluster and gfs2-utils packages fix the following bug: * Prior to this update, the "suborg" option was not allowed by the cluster configuration schema defined in the /usr/share/cluster/cluster.rng file. As a consequence, when the "suborg" option was specified for the fence_cisco_ucs agent, the cluster refused to validate the configuration schema. The "suborg" option is now properly recognized, which fixes the problem.Scientific Linux FermiScientific Linux Fermi 6clusterlib-3.0.12-41.el6_1.2.i686.rpmba2b71a74f143317d5803acb46a816ca49770ed4da12a3339a18b2a780029534clusterlib-devel-3.0.12-41.el6_1.2.i686.rpm631b792b7d1ad66d802c7a52623a12f9b3c9a24d1af7c366a3444b368801ba2fcman-3.0.12-41.el6_1.2.i686.rpm4304cf644c72b588acc08995b498ba7419d631168855a4f5781bc784e3e9a511gfs2-utils-3.0.12-41.el6_1.2.i686.rpmd7886099016463db8ed258b1feb0375291a9f0ad899605184d3a630bb9e03069SLBA-2011:1255-1This update fixes for the following bug: * Prior to this update, an input object file could have a non-empty .toc section but no references to the .toc entries because of a problem in the 64-bit PowerPC linker TOC editing code. As a result, various utilities of the binutils package terminated unexpectedly with a segmentation fault under certain conditions. This update handles local symbols in .toc sections correctly. Now, no more crashes occur.Scientific Linux FermiScientific Linux Fermi 6binutils-2.20.51.0.2-5.20.el6_1.1.i686.rpme59612d85250c6e2434a93fa38a5dccfbb6d43734d9e39cf1bf19ecc94c5b4c7binutils-devel-2.20.51.0.2-5.20.el6_1.1.i686.rpm044f69c48bb8ec26794efe10c4e303484df9b60f4c63ebcaee3a2decbf97fc36SLBA-2011:1269-1This update fixes the following bug: * Prior to this update, the 64-bit architecture was not preferred over the 32-bit architecture when setting the PATH environment variable on the 64-bit PowerPC platform. This bug has been fixed in this update so that the 64-bit architecture is now preferred.Scientific Linux FermitrueScientific Linux Fermi 6qt3-3.3.8b-30.el6.i686.rpm6c2e3496b6670423e50ddac682e967e790987b58af6956fe32b75ee8017f0189qt3-MySQL-3.3.8b-30.el6.i686.rpmd6edebdbbce5f2b1a939bb5006bfb0ccaf4178b52f6789b9894443e2b4d73a13qt3-ODBC-3.3.8b-30.el6.i686.rpm4426b9833da9c1e21d7d4b05c7a968acd27fe779e0b71e810579643c87f3f2bbqt3-PostgreSQL-3.3.8b-30.el6.i686.rpmc499d3effef2483735f750237f757f2fe320f77af5cc858575e056b09b40aa28qt3-config-3.3.8b-30.el6.i686.rpme58170faf0b52b03a2dac9d90cd695fabc71f6ca3a16aa1c1396aea647e8ff9aqt3-designer-3.3.8b-30.el6.i686.rpm804bf63c1b2183ad6827de45033b78096896b4e089a7f0a3e6bd855da4575590qt3-devel-3.3.8b-30.el6.i686.rpm1a233cc10fa2fd2183f0dbf9a83d342873ea8e0a7eb24ccaaf86e70987d7cc6bqt3-devel-docs-3.3.8b-30.el6.i686.rpmaa4c573a4a06a4c58f4a580d8095c32ecf56e7e151227527c2a0c56f7ae8c9f1qt3-sqlite-3.3.8b-30.el6.i686.rpmcdcf393a11d047720278489a46517c7fb494ad19d13c87dddc3b548e43d64b86SLBA-2011:1270-1This update fixes the following bug: * Prior to this update, the sblim-smis-hba package's license field contained both the EPL and SNIA licenses, although no code in the package is licensed under the SNIA license. This bug has been fixed in this update by removing the SNIA license from the license field so that the field now contains the correct information.Scientific Linux FermiScientific Linux Fermi 6sblim-smis-hba-1.0.0-4.el6.i686.rpmfdd209a253329c18a570bd2096ce461676f00d9f746962c03b56f86ed9787401SLBA-2011:1271-1This update fixes the following bug: * Prior to this update, perl-Net-DNS lacked a complete IPv6 functionality. This update adds the dependencies related to IPv6 and, in addition, prevents the possibility of interactive (re)build.Scientific Linux FermiScientific Linux Fermi 6perl-Net-DNS-0.65-4.el6.i686.rpm486875773368027f39a9336ab4dd03868b9670878d7554b9eabb417aaea48ee6perl-Net-DNS-Nameserver-0.65-4.el6.i686.rpm8075cf15d80ae1192ae2eb638b762ece9ae0f8804421c71a9f80504565e64eb0SLBA-2011:1272-1This update fixes the following bugs: * Prior to this update, the setfattr utility could not restore the original values of the attributes when the "getfattr -e text" or "getfattr --encoding=text" command was used to dump attributes with embedded null characters. This update fixes the encoding of these values in getfattr to prevent information loss. * Prior to this update, the getfattr utility followed symbolic links to directories even if the "-h" or "--no-dereference" option was specified. Additionally, the description in the getfattr(1) man page that related to this functionality was misleading. This update fixes getfattr with the "-h" option so that it no longer follows the symbolic links and the related content of the getfattr(1) man page is now correct. * Prior to this update, the getfattr utility did not return a non-zero exit code when an attribute specified in the "getfattr" command did not exist. This update fixes getfattr so that it now returns a non-zero exit code when an attribute does not exist. * Prior to this update, supported methods for encoding values of the extended attributes were not properly described in the setfattr(1) man page. This update adds the appropriate descriptions of the encoding methods to the setfattr(1) man page. * Prior to this update, the project web page address as stated in the package specification did not reflect the change of the upstream project web page address. This update corrects the project web page address in the package specification. * Prior to this update, the attr library was built without support for read- only relocations (RELRO) flags. With this update, the library is now built with partial RELRO support.Scientific Linux FermiScientific Linux Fermi 6attr-2.4.44-7.el6.i686.rpm715f2ec6eaa75d4f805988007bec60b3c8a16db1ac3c7bbc7797e2aab0aac931libattr-2.4.44-7.el6.i686.rpmc950be9d077b185dc9cfd3f8615023e5674d7a42946720cd1c472d3e4d1a96b3libattr-devel-2.4.44-7.el6.i686.rpmb9be42e6a70f7add1b85868e783a143785442aa1417a7925e0f464ff720ded31SLBA-2011:1273-1This update fixes the following bugs: * Previously, when a user configured a custom panel launcher in the profile, Sabayon terminated unexpectedly while getting details of the profile. With this update, a priority level has been set up for sorting in the Details view so that Sabayon no longer crashes while getting the profile details. * Previously, when a user created a file or folder on the desktop that contained an apostrophe ("'") in the name, Sabayon terminated unexpectedly when saving the profile. With this update, any apostrophe characters in the name are now escaped so that Sabayon no longer crashes and properly saves the profile.Scientific Linux FermiScientific Linux Fermi 6sabayon-2.29.92-3.el6.i686.rpm318772f55ffb5ead212d80d561b83817090d58e89421b319f2cbfab1a725d3c9sabayon-apply-2.29.92-3.el6.i686.rpmdbdacb8741f5de3459c46a3229b59bab0f20e93a6c6ca2bd3fe974a010236e20SLBA-2011:1274-1This updated ibus-table-erbi package fixes the following bugs: * Prior to this update, the ibus-table-erbi spec file contained a redundant line which printed the debug message "/usr/share/ibus-table/tables" at the end of installation. The line indicated the working directory of the post-install script and has been removed to fix the problem. * Previously, the table index was updated when running the post-install script of the ibus-table-erbi package. This modified the size of the files, the MD5 Message-Digest Algorithm checksum and the access time of database files. As a consequence, the "rpm -V" command failed with false positive warnings of the aforementioned changes due to the changes not matching the values in the package metadata. This has been fixed: files that are expected to be modified when running the post-install script are now specified with correct verify flags in the spec file.Scientific Linux FermiScientific Linux Fermi 6ibus-table-erbi-1.2.0.20090901-8.el6.noarch.rpma124ef8121e858f892a1668f7219f37ed9aaeca2eca84951955accec8842fb0aSLBA-2011:1275-1This update fixes the following bugs: * Previously, a number of Python scripts and subdirectories in the /usr/lib/mailman/ directory were group writable. As a result, the respective files and subdirectories could have been changed not only by the owner, but also by other users in the same user group. This undesired behavior has been resolved in this update so that only the owner can now change the files and subdirectories. * Because of a bug in the brp-python-compile script file, unnecessary /etc/mailman/mm_cfg.pyc and /etc/mailman/mm_cfg.pyo files were generated under certain circumstances. As a result, the Mailman build process could have failed. This update fixes the aforementioned bug by compiling Python script files manually so that the build process no longer fails. * In accordance with current guidelines, all Python executable files have been updated to use the Python executable file directly, that is the "#!/usr/bin/python" string instead of "#!/usr/bin/env python".Scientific Linux FermiScientific Linux Fermi 6mailman-2.1.12-17.el6.i686.rpmb722b26fcdf64e50c27ee37488db12428ddfa92b1b8df9dcda47ab3e20b8f008SLBA-2011:1280-1This update fixes the following bug: * When submitting a signing request to a IPA (Identity, Policy, Audit) CA, certmonger is expected to authenticate using the client's host credentials, and to delegate the client's credentials to the server. Recent updates to libraries on which certmonger depends changed delegation of client credentials from a mandatory operation to an optional operation that is no longer enabled by default, which effectively broke certmonger's support for IPA CAs. This update gives certmonger the ability to explicitly request credential delegation when used with newer versions of these libraries, which introduce an API that allows certmonger to explicitly request that credential delegation be performed.Scientific Linux FermiScientific Linux Fermi 6certmonger-0.42-1.el6_1.2.i686.rpm1f04aba1243e598fbce903564bb10373db5feff4b1a5808571e695cd754c2684SLBA-2011:1284-1This update fixes the following bug: * Prior to this update, the GSSAPI credential delegation was disabled due to a security issue. As a result, the functionality of applications that relied on delegation was broken. This update adds a new constructor argument in the xmlrpc-c++ client API to set the new CURLOPT_GSSAPI_DELEGATION libcurl option to enable the credential delegation. All applications that use xmlrpc-c with GSSAPI credential delegation can now apply this new constructor to run as expected.Scientific Linux FermiScientific Linux Fermi 6xmlrpc-c-1.16.24-1200.1840.el6_1.4.i686.rpm26a9f57e113e01648acfa4a97480b25b6b9565cc16564a66b6df6d263c2f11ebxmlrpc-c-apps-1.16.24-1200.1840.el6_1.4.i686.rpmc6bf7e49c9b9a17c01a3bb2c51b4f69cb55f3413046ea76d2d37a0ec48a16ad2xmlrpc-c-c++-1.16.24-1200.1840.el6_1.4.i686.rpmef71ef5f3b9a87a097756894ff4947c72a62226071afad6471bbb1fe2d8d3e90xmlrpc-c-client++-1.16.24-1200.1840.el6_1.4.i686.rpma32a91564e5c53fe7b63487853f734dcfc9259967f3edfb7e5d28ebc10961dc7xmlrpc-c-client-1.16.24-1200.1840.el6_1.4.i686.rpm844accdeeb3c0ea77426cbfb8be0f34a0c41e3a5979f3e170c8ef137a34bc7fbxmlrpc-c-devel-1.16.24-1200.1840.el6_1.4.i686.rpmafcd1545a34e98c9c456523f205e27b8746ed7faee176d40cf37a282b171783eSLBA-2011:1285-1* Prior to this update, the portreserve daemon exited after the first port was released. As a result, all ports that services registered for portreserve were released when one of these services asked for its port to be released. With this update portreserve releases now only the requested ports.Scientific Linux FermiScientific Linux Fermi 6portreserve-0.0.4-4.el6_1.1.i686.rpm45ddff28b74ead1ca91b3995a71ce15aa37966028525b87c0cda5fca8f12ec4bSLBA-2011:1287-1This update fixes the following bug: * When deleting a multipath device while checking a path, the multipathd daemon did not abort the path check. As a consequence, the daemon terminated when trying to access multipath device information. The problem has been fixed and the multipathd daemon now aborts the path check when deleting a multipath device.Scientific Linux FermiScientific Linux Fermi 6device-mapper-multipath-0.4.9-41.el6_1.1.i686.rpmba8b4312bce6d1d8b103388546c2119611c71fdf2470298d97bd4575498e367cdevice-mapper-multipath-libs-0.4.9-41.el6_1.1.i686.rpm2f3abaed0633f920bbe8b8e95e829c24c749fe3a2fcd58307c2b80e1927c2fd8kpartx-0.4.9-41.el6_1.1.i686.rpm462aea904b8a221f5be9bc87647d97324aa56b9011639420a2cecca9a19a83e7SLBA-2011:1314-1This update fixes the following bug: * Prior to this update, GSSAPI credential delegation was disabled in the curl utility due to a security issue. As a result, applications that rely on delegation did not work properly. This update utilizes a new constructor argument in the xmlrpc-c client API to set the new CURLOPT_GSSAPI_DELEGATION curl option. This option enables the credential delegation, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6ipa-admintools-2.0.0-23.el6_1.2.i686.rpmd8dd05c445a0cd7b5f1f0a6ef48723dfb3077526a4d50c66799c0410258fb452ipa-client-2.0.0-23.el6_1.2.i686.rpm3adf74f18baf2a01093654a1247a36e9c485fcbc12935d6fb33f5cc3fbf00b5aipa-python-2.0.0-23.el6_1.2.i686.rpm046c0906d8e2886f0c959c882a31941d067055f52b38d27d381e2541dacd4bf2ipa-server-2.0.0-23.el6_1.2.i686.rpmef0d0056f89ddb1bff364cbdbc414e55d880ebbfb4b830faa0be1f840266752eipa-server-selinux-2.0.0-23.el6_1.2.i686.rpm68b7abfc35618ba2305963d0790d16bc5fa617a146d454505ca1bc2622d489a8SLBA-2011:1316-1This update fixes the following bug: * The MaxJobs directive controls the maximum number of print jobs that are kept in memory. Previously, once the number of jobs reached the limit, the CUPS system failed to automatically purge the oldest completed job from the system to make room for a new one. This bug has been fixed, and the jobs beyond the limit are now properly purged in the described scenario.Scientific Linux FermiScientific Linux Fermi 6cups-1.4.2-39.el6_1.1.i686.rpm72b31c66fc6792d2d6b7e4a3d7ab28c44b874ce6983d15217b7d563687ac8c9acups-devel-1.4.2-39.el6_1.1.i686.rpmab7ccc1ee6b08529bd96abb7e001b84d5b185f06fac75ab0bbdf40d9850673d1cups-libs-1.4.2-39.el6_1.1.i686.rpmfd241feffb4ba83d3995abd6912fb8c2f97749f63b933815772deea4eea34eefcups-lpd-1.4.2-39.el6_1.1.i686.rpm745b6cb48bfdb87cb64d03ff0a12e0ed98d3a919b320fe4b96bc115d391fef86cups-php-1.4.2-39.el6_1.1.i686.rpm24c67e2cacacfea4373dc66c33c6388fabb9f4319bbd1d6d3c748e23ad60ba12SLBA-2011:1361-1This update fixes the following bugs: * Previously, under heavy traffic, receive buffers sometimes overflowed, causing loss of packets. Consequently, retransmit list error messages appeared in the log files. This bug has been fixed, incoming messages are now processed more frequently, and the retransmit list error messages no longer appear in the described scenario. * Previously, when a combination of a lossy network and a large number of configuration changes was used with corosync, corosync sometimes terminated unexpectedly. This bug has been fixed, and corosync no longer crashes in the described scenario. * Prior to this update, when corosync ran the "cman_tool join" and "cman_tool leave" commands in a loop, corosync sometimes terminated unexpectedly. This bug has been fixed, and corosync no longer crashes in the described scenario.Scientific Linux FermiScientific Linux Fermi 6corosync-1.2.3-36.el6_1.3.i686.rpm6aaba3c903e32ed26f2429e87025cb69f97f20d1f27e6a17cd4964f0e3923e8ccorosynclib-1.2.3-36.el6_1.3.i686.rpm38451721296738261afbcdb93ecaf68eb565ee9345fea5116c4e621ebc428502corosynclib-devel-1.2.3-36.el6_1.3.i686.rpm5a9332ccae0aac985d5bbcc35ec4d56c8b7013971eb2ff037fcc67f89b341c1cSLBA-2011:1373-1This update fixes the following bug: * Prior to this update, libssh2 package leaked memory and terminated unexpectedly in certain situations. This update modifies libssh2 so that no more memory leaks occur and now libssh2 works as expected. Note, that all running applications using libssh2 have to be restarted for the update to take an effect.Scientific Linux FermiScientific Linux Fermi 6libssh2-1.2.2-7.el6_1.1.i686.rpm29c74a2e78914d725b6d6f53bf9f7ad2e29b5b135072cce6c99dfbb9df97846blibssh2-devel-1.2.2-7.el6_1.1.i686.rpmd7ddae137f68d17b81b59dfc7be27d09f1b5ef4f0fac1a7d6a8c9335e50a2610libssh2-docs-1.2.2-7.el6_1.1.i686.rpm93130a51b9e7347b0f601af09ca95ebf1bbb7d1bee79dc55943e9153bf4bafc6SLBA-2011:1381-1This update fixes the following bug: * Previously, the Edge Control Protocol (ECP) could not verify whether a port lookup was successful when running Virtual Discovery and Configuration Protocol (VDP) on bonded devices because VDP does not support bonded devices. As a consequence, the LLDP agent terminated unexpectedly with a segmentation fault. With this update, VDP is no longer initialized on bonded devices and the crash no longer occurs.Scientific Linux FermiScientific Linux Fermi 6lldpad-0.9.41-4.el6_1.5.i686.rpm4a561056c1bfec516272b5bac97c22ef2fd165909a7a10a28eebafc362d5f2belldpad-devel-0.9.41-4.el6_1.5.i686.rpm5d441789b9c6aa4313f1ed56605c614727812c3a668c08f6bfe9ab333bcb36b4SLBA-2011:1387-1This update fixes for the following bugs: * Previously, the mkdumprd utility failed to parse the /etc/mdadm.cof configuration file. As a consequence, mkdumprd failed to create an initial ramdisk for kdump crash recovery and the kdump service failed to start. With this update, mkdumprd has been modified so that it now parses the configuration file and builds initrd correctly. The kdump service now starts as expected. * On the PowerPC 64 architecture, the kexec utiliity experienced a segmentation fault when the kdump service was started on a system containing more than 1 TB of RAM. As a result, it was not possible to capture a crash kernel on such a system. This has been fixed with this update so that kexec no longer crashes when kdump starts on a system with greater than 1 TB of physical memory, and kdump can now works as expected.Scientific Linux FermiScientific Linux Fermi 6kexec-tools-2.0.0-188.el6_1.2.i686.rpm9e46d030a9e8bf44cbd7b8e062e9164b355ae00ddc08d7559fb9e4dfa6da585dSLBA-2011:1389-1This update fixes the following bug: * When setting the length of an RSA key for the IBM Cryptographic Accelerator(ICA) token, initialization of the CKA_MODULUS_BITS internal attribute of PKCS#11 was not properly tested and the RSA key length could have been set incorrectly. As a consequence, RSA key verification in the ICA token failed. To ensure that the RSA key is set correctly, two conditions have been added in the respective function in the ICA specific library. The RSA key operations now work properly on the ICA token.Scientific Linux FermiScientific Linux Fermi 6opencryptoki-2.3.3-2.el6_1.1.i686.rpmbbcf8a5ae668b31297fff427c8519b58ab4ef7be34bf5a5305b7b8cb1400046aopencryptoki-devel-2.3.3-2.el6_1.1.i686.rpm021fda0f32633b405a230056d5dbecde050d73216c780e7fb4b7987f26ea77daopencryptoki-libs-2.3.3-2.el6_1.1.i686.rpm5cb4cdd85e01f15f428f43c615c7ba1993925132dcfec5cf584987f8382f37acSLBA-2011:1395-1* Previously, extended records for Memory Device (DMI type 17) and Memory Array Mapped Address (DMI type 19) DMI types were missing from the dmidecode utility output. With this update, dmidecode has been upgraded to upstream version 2.11, which updates support for the SMBIOS specification to version 2.7.1, thus fixing this bug.Scientific Linux FermiScientific Linux Fermi 6dmidecode-2.11-2.el6_1.i686.rpma96e3b8976d3f3a09542790efd2437bf7dc0caedc7a930b8fa57767a37583c66SLBA-2011:1397-1This update fixes the following bug: * Previously, the function responsible for parsing the /proc/mounts file was not able to handle single quote characters in the path name of a mount points entries. As a consequence, an NFS exported file system could not be unmounted if its mount point contained space characters. To fix this problem, the parsing routine has been rewritten so that it now parses entries in the /proc/mounts file properly. All NFS file systems now can be unmounted as expected.Scientific Linux FermiScientific Linux Fermi 6nfs-utils-1.2.3-7.el6_1.1.i686.rpm3416ecf1ed0761b2f407764c47027f407e015c76d6bad4afba78bfbb5962d127SLBA-2011:1398-1This update fixes the following bugs: * Due to a regression, a memory leak was introduced that prevented the broker from correctly releasing messages. Consequently, the broker's memory footprint grew indefinitely. A patch has been provided to address this issue, and the memory leak no longer occurs in the described scenario. * After the upgrade of MRG Messaging from version 1.2 to version 1.3, the qpidd daemon terminated unexpectedly on some of the cluster nodes. With this update, the broker code has been fixed to handle all cases when a faulty client sends frames before completely opening the connection, thus fixing this bug. * Previously, specifying an invalid IP address for a destination broker caused a repeatable file descriptor leak. A patch has been provided to address this issue, and the file descriptor leak no longer occurs in the described scenario. * Prior to this update, when a large message (over 4KB) was sent from the python-qpid client to the broker, the connection became unresponsive and other clients were unable to connect to the broker. This bug has been fixed, and clients no longer hang in the described scenario. * Under heavy load, the broker generated a large number of timer late/overrun warning messages. Though the messages themselves were usually inoffensive, the time to log them individually caused long (up to several seconds) delays and inflated log files. With this update, logging output for these messages has been restricted to the "--log-enabled=info" option, thus preventing this bug.Scientific Linux FermiScientific Linux Fermi 6qpid-cpp-client-0.10-8.el6_1.i686.rpm578d6aa901c909d4193acaef84640767bd9a16c9bd466a5c4e851c0583de697eqpid-cpp-client-devel-0.10-8.el6_1.i686.rpm0cd1d244b5d889801670db4fa9554c9d9f7608a041f934c34dd78239e9ad99bcqpid-cpp-client-devel-docs-0.10-8.el6_1.noarch.rpm827669affffc4a9dc7157c70556cf8644fcebcc7f99ccd51a31c6c042514dbb2qpid-cpp-client-rdma-0.10-8.el6_1.i686.rpmd1123e41aac2deb8f7dc8a60a27dddf3637473768e023f2c2dd14c691eb28bdcqpid-cpp-client-ssl-0.10-8.el6_1.i686.rpm6f80a9b2545fd5df161258e7f9b2e61ece02dc2abcaa2be6f98a671386d5eca8qpid-cpp-server-0.10-8.el6_1.i686.rpmca1b9aed9043bd7e618fad17c81ef781001f86d0f5af8fb8bebd988705501a1aqpid-cpp-server-cluster-0.10-8.el6_1.i686.rpm4a8b6b31aaeaca79586bb5239c20a018609f37c64e8dc7d4f5c89898d9b5f141qpid-cpp-server-devel-0.10-8.el6_1.i686.rpmdb38d2e537f730faee1b9a63520da626e56196d06b94c91ff927bad7eeaaff6bqpid-cpp-server-rdma-0.10-8.el6_1.i686.rpm8e1f4a82639532af5b8de63ae2f4291cf3a1095ff0c14424dbb9687f78f5e1f5qpid-cpp-server-ssl-0.10-8.el6_1.i686.rpm250d3f17db8eedea2fb631c10143c4ae4870354e29bd77a7d181f749b47449f1qpid-cpp-server-store-0.10-8.el6_1.i686.rpm4a5841fbbb31f9b1f5bb11cbbdb69665e9d2025aa1de5954c2482b687e75388fqpid-cpp-server-xml-0.10-8.el6_1.i686.rpm5ea2e34650b05210da8f48d9edea3318e242d20aa64c3caa25e724c757e0d20erh-qpid-cpp-tests-0.10-8.el6_1.i686.rpm10fd2f9044fb283bfbcfa54e2553aa0708adac07b8a989f00d10cadaf9e30074SLBA-2011:1778-1This update fixes the following bug: * Previously, nwfilter support was dependent on the ability to execute scripts in the /tmp directory, which is considered unsafe. With this ability blocked, guests relying on the nwfilter component were not allowed to start. The underlying code has been modified so that nwfilter no longer requires to execute scripts in the /tmp directory. After installing these updated packages, libvirtd must be restarted. Use the "service libvirtd restart" command for this update to take effect.Scientific Linux FermitrueScientific Linux Fermi 6libvirt-0.9.4-23.el6_2.1.i686.rpmc1736b48898ddfefd9941cdf96d3eacb99e037f255adfd25275643903efcb129libvirt-client-0.9.4-23.el6_2.1.i686.rpm2fa1e9d1cc353b008c817b99842c13e5987c551054ff6275be1a9055c5ef4567libvirt-devel-0.9.4-23.el6_2.1.i686.rpm45e3f2a3b9308f0f2695ee90286427ba098480a8b54ac104b28d0a2c571274balibvirt-lock-sanlock-0.9.4-23.el6_2.1.i686.rpmd23ff31a6bd3e735bd370d2a8ee1c3b00532e6a79fc3700b29fdc747309a1f64libvirt-python-0.9.4-23.el6_2.1.i686.rpmb5381a963e4f7d78f91969615e23b98255806243fadfe71a46b2e4ce29b9325eSLBA-2011:1816-1This update fixes the following bugs: * Previously, a bug in Xephyr's input handling code disabled screens on a screen crossing event. When the Xephyr nested X server was configured in a multi-screen setup, the focus was only on the screen where the mouse was located, and only this screen was updated. The aforementioned code has been removed and the Xephyr server now correctly updates screens in multi-screen setups.Scientific Linux FermiScientific Linux Fermi 6xorg-x11-server-Xdmx-1.10.4-6.el6_2.1.i686.rpm5c006c684fb079838265d57847c91a9bb999dcbddcce8dc7b64874b41917999dxorg-x11-server-Xephyr-1.10.4-6.el6_2.1.i686.rpm69696f80e035764df21ee141ddc06ef0d80f1b12be2d0f49dde3f228b8b104bexorg-x11-server-Xnest-1.10.4-6.el6_2.1.i686.rpm4e7c7f5909b5ac46ecf79e9f43a33b601b34f9bda3893311b6f2ef2763965c79xorg-x11-server-Xorg-1.10.4-6.el6_2.1.i686.rpmfc951dcf9f5d822d29aa7ae4e33b6bc7f81c4cb6fb019b36dc38a0330e2e24b1xorg-x11-server-Xvfb-1.10.4-6.el6_2.1.i686.rpma7c2ffa22909571100c22faf4dfc5642dd6a3dd61f7a3c6a5ae5bdd7ac56a6b7xorg-x11-server-common-1.10.4-6.el6_2.1.i686.rpm9aba4141b9e4a9c96f337828121c7a3a7488accd2ed3a890d717b6eea7273b48xorg-x11-server-devel-1.10.4-6.el6_2.1.i686.rpmecd4d089232125ceecc3245321aea4877161315650ad922c39858c9a897a0450xorg-x11-server-source-1.10.4-6.el6_2.1.noarch.rpm90e8d28635f02dff421406e99430791a2bf423eff2bef7f6ff4b7f10e53160bbSLBA-2011:1836-1This update fixes the following bugs: * Prior to this update, errors arising on automatic updates of DNSSEC trust anchors were handled incorrectly. Consequently, the named daemon could become unresponsive on shutdown. With this update, the error handling has been improved and named exits on shutdown gracefully. * Prior to this update, a race condition could occur on validation of DNSSEC- signed NXDOMAIN responses and the named daemon could terminate unexpectedly. With this update, the underlying code has been fixed and the race condition no longer occurs.Scientific Linux FermiScientific Linux Fermi 6bind-9.7.3-8.P3.el6_2.1.i686.rpm4f315f281568f7307b192fcf5d5feb05cca834aef5b4529e44183501e2875d2fbind-chroot-9.7.3-8.P3.el6_2.1.i686.rpm3f15f9923cc5cb982a00f2e802426585f2fe4ca2df6df3cbfb58272f79d38743bind-devel-9.7.3-8.P3.el6_2.1.i686.rpm8c63728978224fad677494973e7b57fb5d9ea8bc6a05b5bdd535ce7590395b6cbind-libs-9.7.3-8.P3.el6_2.1.i686.rpm599cfe1fa45743441d452d7df4bdad08f6768e684696f6fe42770e478015242ebind-sdb-9.7.3-8.P3.el6_2.1.i686.rpma723e30aec694a59c1533022525a1d03624af0cb49403a65c044bcef7b33e5d9bind-utils-9.7.3-8.P3.el6_2.1.i686.rpma3d337a103ec7e11af3cc5920b3b987c9ce1f0ec62d9a9857bd73c724030c50aSLBA-2011:1838-1This update fixes the following bug: * Recent changes to NSS re-introduced a problem where applications could not use multiple SSL client certificates in the same process. Therefore, any attempt to run commands that worked with multiple SSL client certificates, such as the "yum repolist" command, resulted in a re-negotiation handshake failure. With this update, a revised patch correcting this problem has been applied to NSS, and using multiple SSL client certificates in the same process is now possible again.Scientific Linux FermiScientific Linux Fermi 6nss-3.12.10-17.el6_2.i686.rpm6dba31f2f1eeb0faa6ceac1c09f07c7c9957b180a69f50bf14977b761d0fd3fdnss-devel-3.12.10-17.el6_2.i686.rpm0bbf3c598f80334b434f12b65a04169c3a25787686596759ad22f3d37c4bcf72nss-pkcs11-devel-3.12.10-17.el6_2.i686.rpm05dc294c7d328dcb8ea22a56c30ed02ed9edfeb859f9790f59e9d708cd04e516nss-sysinit-3.12.10-17.el6_2.i686.rpm069a4156e77048dffad5c1a74f0d9983be3fce9f183f7b6668ec4f67c92b1b9enss-tools-3.12.10-17.el6_2.i686.rpmeaf271873c41feb7ab0f802ab5c8f15f9cf235c04786d37348e789c3bae18c73SLBA-2011:1839-1This update fixes the following bug: * The SNMP daemon (snmpd) did not properly fill a set of watched socket file descriptors. Therefore, the daemon sometimes terminated unexpectedly with the "select: bad file descriptor" error message when more than 32 AgentX subagents connected to snmpd on 32-bit platforms or more than 64 subagents on 64-bit platforms. With this update, snmpd properly clears sets of watched file descriptors and thus it no longer crashes when handling a large number of subagents.Scientific Linux FermiScientific Linux Fermi 6net-snmp-5.5-37.el6_2.1.i686.rpmda334da85cc25fedd546fd2d0adb3eb1d7fdc3a1157a02051ea6139f2823090cnet-snmp-devel-5.5-37.el6_2.1.i686.rpmfe67f0139f00b2d9acd323c5f1a23d6723ef59a6fa605af51cacbbf7adc05198net-snmp-libs-5.5-37.el6_2.1.i686.rpm96f7ccd724705d004b7ffc56afad786d2471fd8b4e122e007ca96ece4b5ffc6cnet-snmp-perl-5.5-37.el6_2.1.i686.rpm7316d0abcd6a48d0adf4967084c71dbb6f014961372d8b135589f1d4599d2ac0net-snmp-python-5.5-37.el6_2.1.i686.rpm9a3f23635202a7dedca2a5de86f6ab8973b6e120a9b7f9370647601f4d335ea7net-snmp-utils-5.5-37.el6_2.1.i686.rpm1e7dd69e8191da2e9f21d03604dbc69370ea05a24b68f340ea99862f13bae518SLBA-2011:1847-1This update fixes the following bug: * Previously, a remote RMI client could execute code on the RMI server with unrestricted privileges. This security issue in the Java Remote Method Invocation (RMI) registry implementation was fixed by the SLSA-2011-1380 security advisory. However, the security restrictions applied by the advisory were too strict and caused the RMI registry to stop working correctly. This update adjusts the RMI registry so it now works as expected.Scientific Linux FermiScientific Linux Fermi 6java-1.6.0-openjdk-1.6.0.0-1.42.1.10.4.el6_2.i686.rpm1f92f3fb030a47435e4666c6dd4dd967078e0988988d41bdc2902813a94a9e87java-1.6.0-openjdk-demo-1.6.0.0-1.42.1.10.4.el6_2.i686.rpm837c42bf44d444badfd28c1924500473999021db720c1fde756248bccaabbadcjava-1.6.0-openjdk-devel-1.6.0.0-1.42.1.10.4.el6_2.i686.rpm7ed4343eed1c9145c553e4aec9ca961495b854e93c794eafc8c3f550f5ac4e7cjava-1.6.0-openjdk-javadoc-1.6.0.0-1.42.1.10.4.el6_2.i686.rpm41bd022ed94ea66e2d12011af85a31c5e811ba02b5f253598f6d84d2948dee2ejava-1.6.0-openjdk-src-1.6.0.0-1.42.1.10.4.el6_2.i686.rpma40173e5a1eaa34fdc14059e8c918004cd52f52707e2ed1bfbf18b1c4a53b460SLBA-2012:0001-1This update fixes the following bug: * The vsftpd daemon sets a value of the RLIMIT_AS variable during its initialization phase. With Scientific Linux 6.1, the RLIMIT_AS value (100 MB) became insufficient which restricted LDAP users from authentication to the system using vsftpd. With this update, the initial RLIMIT_AS value has been increased to 200 MB, and vsftpd now can be used for LDAP authentication as expected.Scientific Linux FermiScientific Linux Fermi 6vsftpd-2.2.2-6.el6_2.1.i686.rpm1ae2dc7675610e1ae6046e0421058e59ee2d2724a475b8378e28314e641f116dSLBA-2012:0004-1This update fixes the following bug: * When exiting a subshell after a command substitution, ksh could prematurely exit without any error. With this update, ksh no longer terminates under these circumstances and all subsequent commands are processed correctly.Scientific Linux FermiScientific Linux Fermi 6ksh-20100621-12.el6_2.1.i686.rpm90da9ec38788a1531237fbae5e0a8c7bb471a670e8cfa732aeeba13697b67ac9SLBA-2012:0005-1* Due to the way how the NoMachine NX Free Edition server implements XInput support, an attempt to log into the server using an NX or VNC client triggered an XInput error that was handled incorrectly by the libxklavier library. Consequently, the GNOME Settings Daemon (gnome-settings-daemon) was terminated with signal 6 (SIGABRT). To resolve this problem, the XInput error handling routine in the libxklavier library has been modified. The library now ignores this error and gnome-settings-daemon runs correctly under these conditions.Scientific Linux FermiScientific Linux Fermi 6libxklavier-4.0-7.el6_2.1.i686.rpmdc48d008e5d965e1dc6b027abf735b352ec373031d9115b3cf6285ad9b488b3flibxklavier-devel-4.0-7.el6_2.1.i686.rpm6fcdf3d09f77056438b1fc450ed0b5869115502d4f2e7082af6935fc448e17b1SLBA-2012:0009-1This update fixes the following bug: * The multi-threaded named daemon uses the atomic operations feature to speed- up an access to shared data. This feature did not work correctly on the 32-bit and 64-bit PowerPC architectures. Therefore, the named daemon sometimes became unresponsive on these architectures. This update disables the atomic operations feature on the 32-bit and 64-bit PowerPC architectures, which ensures that the named daemon is now more stable, reliable and no longer hangs.Scientific Linux FermiScientific Linux Fermi 6bind-9.7.3-8.P3.el6_2.2.i686.rpm3b4be758c408eaaf792e067c998e21a829ef54ad655ce0aa2b7d08cd7282e7e8bind-chroot-9.7.3-8.P3.el6_2.2.i686.rpmac18e6868c219fec70f4d7b4d363bd75e169263145295d3d8de369990645c3f8bind-devel-9.7.3-8.P3.el6_2.2.i686.rpma3242b9dcfc499cdce7014ad36e71a69bca3b4211fcab1b313b71af39bf33ea7bind-libs-9.7.3-8.P3.el6_2.2.i686.rpm3751949cf1145d0270433426081c4e46dccb9cca45e6184c449d69ced954fa0ebind-sdb-9.7.3-8.P3.el6_2.2.i686.rpm98524b2f50db7a855c98f6878ff893bb08510f147b8fb2736dd6b68505bd9bedbind-utils-9.7.3-8.P3.el6_2.2.i686.rpma651b152f3a1711d66df0220e6537356e99b09f26a44781996163aca05863a8cSLBA-2012:0013-1These updated libvirt packages include multiple bug fixes and enhancements. The most significant changes are as follow: * This update forces all libvirt managed KVM guests with virtio drives to run with the "scsi=off" option. This will prevent SCSI requests in guests being passed to underlying block devices on the host; however, a separate bug is preventing "scsi=off" from working correctly. A malicious, privileged guest user could issue a crafted request that would still be passed to the underlying block device. A future qemu-kvm update will correct the "scsi=off" functionality, blocking such crafted requests, and allowing CVE-2011-4127 to be mitigated before the kernel update is applied. As "scsi=off" may break legitimate pass through of SCSI requests, this update also adds a new value for the device attribute in the disk XML element, "lun". This type is like the default "disk" device, but will allow SCSI requests from guests to be passed to the underlying block device on the host. (Using the "lun" device attribute causes the guest to run with "scsi=on".) Note: After installing the SLSA-2011:1849 kernel update, it will not be possible for guests to issue SCSI requests on virtio drives backed by partitions or LVM volumes, even if "device='lun'" is used. It will only be possible to issue SCSI requests on virtio drives backed by whole disks. * This update adds support for VMware vSphere Hypervisor (ESXi) 5 installations. * The libvirt package was missing a dependency on the avahi package. The dependency is required due to mDNS support which is turned on by default. As a consequence, the libvirtd daemon failed to start if the libvirt package was installed on the system without Avahi. With this update, the dependency on avahi is now defined in the libvirt.spec file, and Avahi is installed along with libvirt.Scientific Linux FermiScientific Linux Fermi 6libvirt-0.9.4-23.el6_2.4.i686.rpm5ed007f73c757c30acc4ebe336cf41ade4ecf0e989a9bbb4e9d6540a6f9c95eflibvirt-client-0.9.4-23.el6_2.4.i686.rpm35b1269a855497273c18cdc706d47b6011175da436c81de2b3db5b5118d56619libvirt-devel-0.9.4-23.el6_2.4.i686.rpmbd94ec8b7026c97dc2f0d8755d59215ff546a93d22c9d808f03ca2c89b739ff4libvirt-lock-sanlock-0.9.4-23.el6_2.4.i686.rpm9823e2dd80cfe12317991a0113aa432e11cfce77fadb34628a457017924c4c3blibvirt-python-0.9.4-23.el6_2.4.i686.rpmfcdaa167b8ac2c65b59e331e9672a6f26cd2d2e412e65d66177a51ae7413893bSLBA-2012:0028-1This update fixes the following bug: * The strace utility did not properly track switches between 32-bit and 64-bit process execution domains (so called "personalities") when tracing multiple processes with multiple "personalities". This caused strace to output the wrong system call names and arguments for the traced processes. This update corrects personality tracking in strace so that it now prints system call names and arguments as expected.Scientific Linux FermiScientific Linux Fermi 6strace-4.5.19-1.11.el6_2.1.i686.rpma5fc79488588643c91a476a6d29f7ca4d83fc713c6cc268d41e8e0a8740c440dSLBA-2012:0042-1This update fixes the following bug: * Emacs did not properly terminate if it was started remotely and the remote client session was closed while Emacs was suspended. Under these conditions, Emacs entered an infinite loop in the code and gradually consumed all available computer resources, which caused the system to become unstable. With this update, Emacs has been modified, and it now terminates correctly when the remote session is closed.Scientific Linux FermiScientific Linux Fermi 6emacs-23.1-21.el6_2.1.i686.rpmc28d4eace07b9f3a8824f8b0e627a2689dbf345b7758ff916ab6b3c5897320a0emacs-common-23.1-21.el6_2.1.i686.rpm9ca561d257981ae08f4f61db07977dd804f5644565fc6421320b7bec9be619b9emacs-el-23.1-21.el6_2.1.i686.rpmccf4c76ea8d17b58adf9797f73ac744bc2a70c2ed4f52ccd49139b816566708demacs-nox-23.1-21.el6_2.1.i686.rpm3dfe7c7257474c1e32b7a039d3e27781fd2806f1ce510e396df415dd33997516SLBA-2012:0043-1This update fixes the following bug: * The ncompress utility previously relied on the glibc implementation of the memcpy() function. A recent glibc update optimized memcpy(), which resulted in data corruption in ncompress file compression and decompression. This update replaces memcpy() with the memmove() function and ncompress now works as expected.Scientific Linux FermiScientific Linux Fermi 6ncompress-4.2.4-54.el6_2.1.i686.rpmfa12e8237d6cbdfb099e2b2a4bd00986e06a15d9ea9518f71c14a33da587cc15SLBA-2012:0049-1This update fixes the following bugs: * When the LDAP server was under a heavy load, and the network was congested, client connections could experience problems. If there was a connection problem while the server was sending Simple Paged Result (SPR) search results to the client, the LDAP server called a cleanup routine incorrectly. This led to a memory leak and the server terminated unexpectedly. With this update, the underlying code has been modified to ensure that cleanup tasks are run correctly and memory leaks no longer occur. The LDAP server no longer crashes in this scenario. * Previously, certain operations with the Change Sequence Number (CSN) were not very effective in 389 Directory Server. Therefore, performing a large number of the modrdn operations during Directory Server content replications led to poor performance, and the ns-slapd daemon consumed up to 100% CPU under these circumstances. With this update, the underlying code has been modified to use these CSN operations efficiently so that replications in Directory Server now work as expected in this scenario. * Previously, allocated memory was not correctly released in the underlying code for the SASL GSSAPI authentication method, when checking the Simple Authentication and Security Layer (SASL) identity mappings. This problem could cause memory leaks when processing SASL bind requests, which eventually caused the LDAP server to terminate unexpectedly with a segmentation fault. This update adds function calls that are needed to free allocated memory correctly. Memory leaks no longer occur and the LDAP server no longer crashes in this scenario. * Previously, 389 Directory Server used the Netscape Portable Runtime (NSPR) implementation of the read/write locking mechanism. This implementation allowed deadlocks to occur if 389 Directory Server was under a heavy load, which caused the server to become unresponsive. With this update, 389 Directory Server now uses the POSIX implementation of the locking mechanism, and deadlocks no longer occur under a heavy load. * Under a heavy load in replicated environments, 389 Directory Server did not handle the Entry USN index correctly. Consequently, the index could become out of sync with the main database and search operations on USN entries returned incorrect results. This update modifies the Entry USN plug-in and 389 Directory Server now handles the Entry USN index as expected.Scientific Linux FermiScientific Linux Fermi 6389-ds-base-1.2.9.14-1.el6_2.2.i686.rpmbedf3a7e1c4f4fddf27f1c55a1460a040337535c23bbfc833344032ce7fffc2c389-ds-base-devel-1.2.9.14-1.el6_2.2.i686.rpmd59e559cf7d07332adf1b2c3a9e029c16685c38714ab745a65f872d77b34d37b389-ds-base-libs-1.2.9.14-1.el6_2.2.i686.rpm7ca4a8f0f73bc35d5779511fa4d065624737fcb428d2db079970c5612d45ddd7SLBA-2012:0054-1This update fixes the following bug: * Previously, SSSD did not correctly handle LDAP authentication requests failover under a heavy load and the request could fail with a system error. This occurred due to an invalid LDAP URI value if the second authentication request was sent before the first request could be processed by the failover service. With this update, the underlying code has been modified to ensure that the LDAP URI string remains valid until the LDAP authentication request is processed.Scientific Linux FermiScientific Linux Fermi 6libipa_hbac-1.5.1-66.el6_2.3.i686.rpm4702c822bef606875d5a68a143dbcf55e7fd6c5caa4c16b714df3cf3b90f8530libipa_hbac-devel-1.5.1-66.el6_2.3.i686.rpmcaec26fcd15d9d68becd3648533bfb8033d624a63923476e2817ea5d00d1e479libipa_hbac-python-1.5.1-66.el6_2.3.i686.rpm157a0b8a92a576073e6465d58d42640e836f12c26d46bfa9802d1bb8f1b71b43sssd-1.5.1-66.el6_2.3.i686.rpm60b9ccb6956f2eaf8c6c516aef91e17098643eeee8ef25f079ed3c228f947896sssd-client-1.5.1-66.el6_2.3.i686.rpma5ef8d04e4377c67fa8d7b1f37ae39623e42f344dd0339491c2b0ad8a492f907sssd-tools-1.5.1-66.el6_2.3.i686.rpm9d36bf2571331e73ed4c33e4fb56ce4c341402d56ee1514a91eba5c1c74ec3d0SLBA-2012:0055-1This update fixes the following bug: * Previously, the nslcd daemon performed the idle time expiration check for the LDAP connection before starting an LDAP search operation. On a lossy network or if the LDAP server was under a heavy load, a connection could time out after a successful check and the search operation then failed. With this update, the idle time expiration test is now performed during the LDAP search operation so that the connection now no longer expires under these circumstances.Scientific Linux FermiScientific Linux Fermi 6nss-pam-ldapd-0.7.5-14.el6_2.1.i686.rpma3921c60de4e74071603439d9431f73f3b1747d0ca9f2bd7d6ae165696834217SLBA-2012:0068-1This update fixes the following bug: * Due to an error in the time-parsing routine, the "at" command incorrectly calculated the year when a job was scheduled by using days on input. For example: "at now + 10 days". This update fixes erroneous grammar so that "at" now schedules jobs correctly.Scientific Linux FermiScientific Linux Fermi 6at-3.1.10-43.el6_2.1.i686.rpm00e9e4ad6d0949773e800722389ee8c98bcb77bfe454a174fcb8730b0c5d9426SLBA-2012:0122-1This update fixes the following bug: * Squid did not properly release allocated memory when generating error page contents, which caused memory leaks. Consequently, the Squid proxy server consumed a huge amount of memory within a short time period. This update fixes this memory leak and Squid no longer consumes more memory than expected. After installing this update, the squid service will be restarted automatically.Scientific Linux FermiScientific Linux Fermi 6squid-3.1.10-1.el6_2.2.i686.rpmbe9f620affd8e7863c7393d671c0fe4a89fcbe47bf34c6d73e0be4c28a58f7cfSLBA-2012:0124-1This update fixes the following bug: * An insufficiently designed calculation in the CPU accelerator in the previous kernel caused an arithmetic overflow in the sched_clock() function when system uptime exceeded 208.5 days. This overflow led to a kernel panic on the systems using the Time Stamp Counter (TSC) or Virtual Machine Interface (VMI) clock source. This update corrects the aforementioned calculation so that this arithmetic overflow and kernel panic can no longer occur under these circumstances. The system must be rebooted for this update to take effect.Scientific Linux FermitrueScientific Linux Fermi 6kernel-2.6.32-220.4.2.el6.i686.rpm9feaa1a7f712db43fe24a19f11aa69bd26849304cedfbe91203359333a2e77f0kernel-debug-2.6.32-220.4.2.el6.i686.rpmbc048c3d67a0ef08495f231fa58227f2019545763c027e047ee1ca59dd53a09ckernel-debug-devel-2.6.32-220.4.2.el6.i686.rpmf54485594ea7fb28b5883022b9a74c9f26b8265206a9415827479756007fa8b9kernel-devel-2.6.32-220.4.2.el6.i686.rpm95d1c61f8278fe54e41bcd78f17dbd7f8f00d5694d59b5e17ac90f8ee846f859kernel-doc-2.6.32-220.4.2.el6.noarch.rpm52b7611fc9e3fab2e4e134c6cfe9a4aeaec43e9515e5a3efef195368f3e65de8kernel-firmware-2.6.32-220.4.2.el6.noarch.rpme3371caa8ff27e3a810f17d261b8d188bd10d608d1061bfad7736836d84a4d30kernel-headers-2.6.32-220.4.2.el6.i686.rpmb5606e1ed94544d2d5d02d5a473b9db0097e595d8bc0db79c42f43657d5a77f9perf-2.6.32-220.4.2.el6.i686.rpmcf67d1b9b596b7a8c1f4851f6b176673636304b8195f7d36b79cc7e68f11be9cpython-perf-2.6.32-220.4.2.el6.i686.rpm5759de096d319ef2efb264066f786de3c3f994abed57fd85652c04f4ba45d54eSLBA-2012:0134-1This update fixes the following bugs: * The semanage utility did not produce correct audit messages in the Common Criteria certified environment. This update modifies semanage so that it now sends correct audit events when the user is assigned to or removed from a new role. This update also modifies behavior of semanage concerning the user's SELinux Multi-Level Security (MLS) and Multi-Category Security (MCS) range. The utility now works with the user's default range of the MLS/MCS security level instead of the lowest. In addition, the semange(8) manual page has been corrected to reflect the current semanage functionality. * The missing exit(1) function call in the underlying code of the sepolgen- ifgen utility could cause the restorecond daemon to access already freed memory when retrieving user's information. This would cause restorecond to terminate unexpectedly with a segmentation fault. With this update, restorecond has been modified to check the return value of the getpwuid() function to avoid this situation. * When installing packages on the system in Federal Information Processing Standard (FIPS) mode, parsing errors could occur and installation failed. This was caused by the "/usr/lib64/python2.7/site-packages/sepolgen/yacc.py" parser, which used MD5 checksums that are not supported in FIPS mode. This update modifies the parser to use SHA-256 checksums and installation process is now successful.Scientific Linux FermiScientific Linux Fermi 6policycoreutils-2.0.83-19.21.el6_2.i686.rpmdd1056fc63de1624367c1ba3b06d912dbf8eedf3df87d07230177dfb636242e1policycoreutils-gui-2.0.83-19.21.el6_2.i686.rpm8aba170216ee7cdecc8985ac471bc3f1cbacd41958e8e9c9507ecc05f75aa851policycoreutils-newrole-2.0.83-19.21.el6_2.i686.rpm20a64a7361317a0d9d8db918007ccac12a8231420bc7a74a891b0ff28c69312epolicycoreutils-python-2.0.83-19.21.el6_2.i686.rpm4aea5bdf6f3fe6468825a9de1640a3979c16eb4b199e4641463f5fe6898f4a90policycoreutils-sandbox-2.0.83-19.21.el6_2.i686.rpmde991f52bb99db13fb186fa7ce592c2ef575b02163fd6e38ad6c384cc4f3d090SLBA-2012:0145-1The python-psycopg2 package has been upgraded to upstream version 2.0.14, which provides a number of bug fixes and enhancements over the previous version, including the fix for a memory leak in cursor handling. This update also ensures better compatibility with the PostgreSQL object-relational database management system version 8.4.Scientific Linux FermiScientific Linux Fermi 6python-psycopg2-2.0.14-1.el6_2.1.i686.rpm49b049a64d789e8670a89148b4118b65ff665a6737169adcc4ed6f9b716673cepython-psycopg2-doc-2.0.14-1.el6_2.1.i686.rpm43073211ce6d1ed06fefe0044004edf1709e11949f2db57d21b0c30e66d028b8SLBA-2012:0320-1This update fixes the following bug: * A function to check validity of a mount location was meant to check only for a small subset of map location errors. A recent improvement modification in error reporting inverted a logic test in this validating function. Consequently, the scope of the test was widened, which caused automount to report false positive failures. With this update, the faulty logic test has been corrected and false positive failures no longer occur.Scientific Linux FermiScientific Linux Fermi 6autofs-5.0.5-39.el6_2.1.i686.rpmecf46a5aae8e945880c5bedcbb09f2443dd2501bfce2ba21538fd5e22c11bb1cSLBA-2012:0331-1This update fixes the following bug: * When sourcing dracut modules, dracut did not check whether the "install" script for the module exists and is executable. Therefore, if the script was missing, an attempt to execute the script failed. As a consequence, dracut did not execute the "installkernel" script, and the module was not included in the initramfs image. This problem has been fixed, dracut now performs the check and only executes the "install" script when it exists. Then, the "installkernel" script is correctly executed and the module is installed in the initramfs image. * Previously, dracut did not correctly handle a situation when booting a system with a degraded RAID array. In such a case, the initial RAM disk image (initramfs) was not able to start the array and the system did not boot. With this update, the initramfs forces the array to start and the system now boots as expected.Scientific Linux FermiScientific Linux Fermi 6dracut-004-256.el6_2.1.noarch.rpm635305080dc755c1ffeef80625b707f93be9d90b3dacffa5fef4a06835a1ec3cdracut-caps-004-256.el6_2.1.noarch.rpmf8945c8b52658690debf3b909fa91dfda73f5e1d48c82601396b9ad7ecc9ea70dracut-fips-004-256.el6_2.1.noarch.rpma9c4c1c053a7e718af5c4f47d92dce06dd938f844ee5066079e584e72f90131cdracut-fips-aesni-004-256.el6_2.1.noarch.rpm3dc1ac154c699764e7d969314fba9cc97ccc3f4dab107833ffc993b87060d556dracut-generic-004-256.el6_2.1.noarch.rpm3a63e55c66bd513237c8c14105e967e465560e107ed91e23ad99f7768f991adfdracut-kernel-004-256.el6_2.1.noarch.rpm407f0885c0cc208a49bd1d54c01162abb51ed9a85f7688ac1e80715f5fdee2f7dracut-network-004-256.el6_2.1.noarch.rpmaeeac028dbfb34be672a5d48a95980bb0e247b0a47775a99dfc7860005376cdbdracut-tools-004-256.el6_2.1.noarch.rpmb3b56b9f969969f7a098857f86a781d9ef645cb35fbda1566fc1593899074708SLBA-2012:0335-1This update fixes the following bug: * The option parser of the iptables utility did not correctly handle the "-m mark" and "-m conmark" options in the same rule. Therefore, the iptables command failed when issued with both options. This update modifies behavior of the option parser so that iptables now works as expected with the "-m mark" and "-m conmark" options specified.Scientific Linux FermiScientific Linux Fermi 6iptables-1.4.7-5.1.el6_2.i686.rpma4f43d034489abb503bee83707892fae9067fcb4792c2dca96a2d2977b18a737iptables-devel-1.4.7-5.1.el6_2.i686.rpmcd5a3ee4575c563336e0656b7b1a04b37f87150c17620adfb427bdbe8e3bfbc6iptables-ipv6-1.4.7-5.1.el6_2.i686.rpm5ed6a8e6c94227d59b8f4c250d25877afa37050c25ec1b6cbee411b247a70403SLBA-2012:0337-1Netscape Portable Runtime (NSPR) provides platform independence for non-GUI operating system facilities. The nss-util package has been upgraded to upstream version 3.13, which provides a number of enhancements over the previous version. The nss packages have been upgraded to upstream version 3.13, which provides a number of bug fixes and enhancements over the previous version. The nspr package has been upgraded to upstream version 4.8.9, which provides a number of enhancements over the previous version. This update also fixes the following bugs: * A lack of robustness flaw caused crashes in the administration server for RH Directory Server because the mod_nss module made nss calls before initializing nss per documented API. With this update, nss protects itself against being called before it as been properly initialized by the caller. * Previously, due to a bug in the FreeBL library, Openswan could generate a Key Exchange payload that was one byte shorter than what was required by the Diffie Hellman (DH) protocol. As a consequence, Openswan dropped connections during such payloads. With this update, the size of the payload is set to zero by default, and the Softoken module is queried for the size. Connections are no longer dropped by Openswan in the described scenario.Scientific Linux FermiScientific Linux Fermi 6nspr-4.8.9-3.el6_2.i686.rpm1c6b4aa09d961871bf714fea5ad8767a30728c5d2585c5150e23807fb2d60735nspr-devel-4.8.9-3.el6_2.i686.rpm48770866e22600e2ca71ff72b57aed354c1a833ffbf3053a85511b1c8896ea2cnss-3.13.1-6.el6_2.i686.rpm3f36d5f1de52994d8bb84bb8ef334c72f6076babf8f9428f32c90ca5e65c645anss-devel-3.13.1-6.el6_2.i686.rpm9b826cf4ecc07473c11b6c8ffaf68364e287493cec7410b69313b81e6afe9b07nss-pkcs11-devel-3.13.1-6.el6_2.i686.rpmb3ab6c10c511cce1d196a59f14c4a79935369e0f9c4ea049329c6aadc4e78dd7nss-sysinit-3.13.1-6.el6_2.i686.rpm1bac57a857b21eb9fbaaac77124231e9692d29a5f37f85691f60e444a0f0382bnss-tools-3.13.1-6.el6_2.i686.rpm931a0cc1f4325313567eefc5df6c57bd45027b7c2aa45d3382f74a682f9f4f47nss-util-3.13.1-3.el6_2.i686.rpm047c84c41a999197fcc1e7ff13129a93084da7f57d77d55335bd4742c4918f85nss-util-devel-3.13.1-3.el6_2.i686.rpm8fe1cd0606a0f2cc79be33ed3f4bd50b522636dfa546fb00421eec7bc9373a8fSLBA-2012:0339-1This updated openswan package includes fixes for the following bugs: * The Openswan IKEv2 implementation did not correctly process an IKE_SA_INIT message containing an INVALID_KE_PAYLOAD Notify Payload. With this fix, Openswan now sends the INVALID_KE_PAYLOAD notify message back to the peer so that IKE_SA_INIT can restart with the correct KE payload. * Previously, Openswan sometimes generated a KE payload that was 1 byte shorter than specified by the Diffie-Hellman algorithm. Consequently, IKE renegotiation failed at random intervals. An error message in the following format was logged: next payload type of ISAKMP Identification Payload has an unknown value: This update checks the length of the generated key and if it is shorter than required, leading zero bytes are added. Note that the NSS library package needs to be version 3.13 or later for the KE payload and IKE renegotiation issues to be fully resolved.Scientific Linux FermiScientific Linux Fermi 6openswan-2.6.32-10.el6_2.i686.rpmc0f3323cef6de5a31cb22307e9cd8f7e6faebbdf0a26ad0f516221328eaf5df5openswan-doc-2.6.32-10.el6_2.i686.rpm3c0df5a21ef5c93fc614089fdbba3e432f8623fee84c11dd6b5f9484c037dc11SLBA-2012:0342-1This update fixes the following bugs: * Under certain circumstances, a rare race condition between the poll() event handler and the dmidecode utility could occur. This race could result in dmidecode waiting indefinitely to perform a read operation on the already closed file descriptor. As a consequence, it was impossible to perform any tasks for virtualized guests using the libvirtd management daemon, or perform certain tasks using the virt-manager utility, such as creating a new virtual machine. This update modifies the underlying code so that the race condition no longer occurs and libvirtd and virt-manager work as expected. * Previously, when libvirt tried to attach certain SR-IOV (Single Root I/O Virtualization) devices to virtual guests, this attempts failed with the "Unable to reset PCI device" error messages. This patch modifies the underlying code so that these PCI devices can now be successfully attached to guests. * When migrating a QEMU domain and using SPICE for a remote display, the migration was failing and the display was erratic under certain circumstances. This was happening because with the incoming migration connection open, QEMU was unable to accept any other connections on the target host. With this update, the underlying code has been modified to delay the migration connection until the SPICE client is connected to the target destination. The guest domains can now be successfully migrated without disrupting the display during the migration. * Previously, if the libvirt package was built with avahi support, libvirt required the avahi package to be installed on the system as a prerequisite for its own installation. If the avahi package could not be installed on the system due to security concerns, installation of libvirt failed. This update modifies the libvirt.spec file to require only the avahi-libs package. The libvirt package is now successfully installed and libvirtd starts as expected. After installing these updated packages, libvirtd must be restarted. Use the "service libvirtd restart" command for this update to take effect.Scientific Linux FermitrueScientific Linux Fermi 6libvirt-0.9.4-23.el6_2.6.i686.rpmdbad5467bc6bbbd09cb186f2e4cdf7c438fd511b7fae49bbbc526305b39e145blibvirt-client-0.9.4-23.el6_2.6.i686.rpmef06cb8b03cea7f9d83495d6615bffa2f63880fe19a3e68c74fb09aa9be120f3libvirt-devel-0.9.4-23.el6_2.6.i686.rpmd4f25a400063141c8139a73201b2da233cb278f551763ad368dd36bbe2571017libvirt-lock-sanlock-0.9.4-23.el6_2.6.i686.rpm50687b40206bccae3b0667b06eab8bc3a46b8fd2b332e335711d974e0100e97dlibvirt-python-0.9.4-23.el6_2.6.i686.rpmaa503779d18a13bb18f57a379e0ec5c93d5f950e02e63cd4be62fada017d40f9SLBA-2012:0344-1This update fixes the following bugs: * Crashes were reported in the messaging daemon (qpidd) included in MRG after a recent update to nss. This occurred as qpidd made nss calls before initializing nss. These updated packages prevent qpidd, and other affected processes that call nss without initializing as mandated by the API, from crashing.Scientific Linux FermiScientific Linux Fermi 6nss-3.13.1-7.el6_2.i686.rpmbcbc964dd90dcc078168c0d7316f1f94d49b5af0a9e910131814a2fd92d8f342nss-devel-3.13.1-7.el6_2.i686.rpmda9df452cc8d45670aeb09910340c65b8253a090dc055869366c6adf03e40b78nss-pkcs11-devel-3.13.1-7.el6_2.i686.rpm51c31340be00d0124dc468f5e5fe554d569158c506fb1ec2bce21523ecacec50nss-sysinit-3.13.1-7.el6_2.i686.rpmb3be32138678b02f5f597c90c3a679e58abed5027e249377cdb180d46bb71049nss-tools-3.13.1-7.el6_2.i686.rpmb289d4c9208685dcb8ed7318eef6f07455c6bfce65595ebf1c7dae03575db6d9SLBA-2012:0346-1This update fixes the following bug: * The previous update of nss_db attempted to fix a bug, which under certain circumstances prevented multi-threaded applications from obtaining complete lists of user's supplemental group memberships. This problem was not completely fixed due to an internal error that occurred when using an insufficiently large temporary buffer to parse a group entry with a large list of users. This update resolves the issue by resetting the buffer's contents after the buffer has been resized. Large group lists are thus correctly parsed and the entire list of user's supplemental groups is now correctly listed in this scenario.Scientific Linux FermiScientific Linux Fermi 6nss_db-2.2.3-0.4.pre1.el6_2.1.i686.rpm6fc0911246d3872f3719e2189738291194f18e0ac517f8d212b82fff0b02c6cdSLBA-2012:0348-1This update fixes the following bug: * In ispell mode, Emacs used the spell checkers in the following order: Ispell, Aspell, and Hunspell. However, Ispell is no longer available and Aspell does not have any dictionaries installed by default. Consequently, because Emacs found Aspell before the default Hunspell, the spell check failed and Emacs reported the following error message: ispell-init-process: Error: No word lists can be found for the language "en_US". With this update, Emacs has been modified to look for the spell checkers in the following order: Hunspell, Aspell, and Ispell. This ensures that Hunspell is used by default when it is available.Scientific Linux FermiScientific Linux Fermi 6emacs-23.1-21.el6_2.3.i686.rpmd4b7b0b2786fa76cfe6338bb0ce016411ed29a6a7f0721a98d630022e88ebf9demacs-common-23.1-21.el6_2.3.i686.rpma7fac50d7b9b833528db34f2d17544f5dbd9edfc49f116c16b5fec1f472e14b3emacs-el-23.1-21.el6_2.3.i686.rpm4023a76d110171edbcd56486e66e06710b6898e8a05f74ed736967c2340f968cemacs-nox-23.1-21.el6_2.3.i686.rpmb02c14c4430a65877f42d0a83316431c89ad3b93f619a1aad1c268cb65e38997SLBA-2012:0351-1This update fixes the following bug: * Previously, the "configure.in" file did not include information on how to handle 64-bit PowerPC architectures. Attempting to install the fontforge-devel multilib PowerPC and 64-PowerPC RPM packages on the same 64-bit PowerPC machine led to conflicts between those packages. This update modifies the "configure.in" file, so that fontforge-devel multilib RPM packages are allowed to be installed on the same machine. The conflicts no longer occur in the described scenario.Scientific Linux FermiScientific Linux Fermi 6fontforge-20090622-3.1.el6.i686.rpmf1bf21db80f7488f42b42f305595aa9b84bd7b6f87a3405c482088e2a4cd9870fontforge-devel-20090622-3.1.el6.i686.rpm0bef7dcfaf76809e0018c00d815e12bde0b3867accaeb100b6f2f4049164299eSLBA-2012:0352-1This update fixes the following bug: * Previously, the grep utility was not able to handle the EPIPE error. If a SIGPIPE signal was blocked by the shell, grep kept continuously printing error messages. An upstream patch has been applied to address this problem, so that grep exits on the first EPIPE error and prints only one error message.Scientific Linux FermiScientific Linux Fermi 6grep-2.6.3-3.el6.i686.rpmb123ae126af8d2886d854d8619da67a9d799b3023c0406f5fb7526b83287395eSLBA-2012:0353-1This update fixes the following bug: * The fence_rhevm fencing agent uses the RHEV API to check the power status ("on" or "off") of a virtual machine. In addition to the states of "up" and "down", the API includes other states like "unassigned", "powering_up", "paused", "migrating", "unknown", "not_responding", "wait_for_launch", "reboot_in_progress", "saving_state", "restoring_state", "suspended", "image_illegal", "image_locked" or "powering_down". Previously, only if the machine was in the "up" state, the "on" power status was returned. The "off" status was returned for all other states although the machine was actually running. This allowed for successful fencing even before the machine was really powered off. With this update, the fence_rhevm agent detects power status of a cluster node more conservatively, and the "off" status is returned only if the machine is really powered off, it means in the "off" state.Scientific Linux FermiScientific Linux Fermi 6fence-agents-3.1.5-10.el6_2.1.i686.rpm5606d00b4ab4725c8d3584369267700e164cdf5147f3de90ac3624eb756e791cSLBA-2012:0354-1This update fixes the following bug: * Prior to this update, the shebang line of the modifyrepo.py script contained "#!/usr/bin/env python", so the system path was used to locate the Python executable. When another version of Python was installed on the system, and "/usr/local/python" was specified in the PATH environment variable, scripts did not work due to Python compatibility problems. With this update, the shebang line is modified to "#!/usr/bin/python", so that the system version of Python is always used.Scientific Linux FermiScientific Linux Fermi 6createrepo-0.9.8-5.el6.noarch.rpm01dba5a59ea174eba675b0701521a73b4b240a5da565c2b9e6c2f713e306b752SLBA-2012:0355-1This update fixes the following bug: * The previous version of initscripts did not support IPv6 routing in the same way as IPv4 routing. IPv6 addressing and routing could be achieved only by specifying the "ip" commands explicitly with the "-6" flag in the "/etc/sysconfig/network-scripts/rule-DEVICE_NAME" configuration file (where "DEVICE_NAME" is a name of the respective network interface). With this update, related network scripts have been modified to provide support for IPv6-based policy routing. IPv6 routing is now configured separately in the the "/etc/sysconfig/network-scripts/rule6-DEVICE_NAME" configuration file.Scientific Linux FermiScientific Linux Fermi 6debugmode-9.03.27-1.el6_2.1.i686.rpm7466d5fd3fcdeb79195af8a81bcad32ea03d6da850c6f9e2e50ad03735cec68cinitscripts-9.03.27-1.el6_2.1.i686.rpmd09eeddaaf9e6b6255cc0a48867934b7bf3465abfa70f96a78e733ced67c894fSLBA-2012:0357-1Note: The Certificate Authority component provided by this update is not intended to be used as a standalone server. It is installed and operates as a part of Identity Management (IPA) in Scientific Linux. Bug fixes: When installing IPA, the installer uses 'sslget' to communicate with the CA. The server sends out a full response to the sslget client, but the client receives only 5 bytes of the encrypted stream. pki-core packages, which fix the listed bug.Scientific Linux FermiScientific Linux Fermi 6pki-ca-9.0.3-21.el6_2.noarch.rpm1de4a125ec5b14f9185509941ac6f24f2ace612119c40a3535ac507ce516573bpki-common-9.0.3-21.el6_2.noarch.rpm6a97fabbc8f43958b080f58c781ad56c7a7004740dd22b8b666b3e3b2a0d2adepki-common-javadoc-9.0.3-21.el6_2.noarch.rpm9ca7312929eb772eac62e65bc26f0679aafe3faabb304513d7b7d185c2f3ea7apki-java-tools-9.0.3-21.el6_2.noarch.rpmccb4b72b84f63ac7001ac476ccaf6af17ed9521517edd467a0f5c637bb132160pki-java-tools-javadoc-9.0.3-21.el6_2.noarch.rpm2653fd7bb22b7281127bf6f5fccea9ab45aed310abce84506fe62256ecb09798pki-native-tools-9.0.3-21.el6_2.i686.rpm33d202af17cc2fb9b9d643d5ce30c9b83db6a55e4bda655a34957aada8065c39pki-selinux-9.0.3-21.el6_2.noarch.rpm686e07e564f9286d10f907af1ddb8e9c03274c6c8ed7000673415bd563d7027fpki-setup-9.0.3-21.el6_2.noarch.rpmb6920e5b8a116288a858b583671cdc6f842d3f28effd4ad1e664362eb2006485pki-silent-9.0.3-21.el6_2.noarch.rpm1025a26fd17ee52752bbaab27bca7f586cce543d8ee1617fd966a77755d11bbapki-symkey-9.0.3-21.el6_2.i686.rpm294648249cf23188964dbde8cbe34b6b9a8d4f63c6bf3ef2940d0541fe95a216pki-util-9.0.3-21.el6_2.noarch.rpmec812f3d205d929cf32030f36ebf7539ff5daef8d906c61c44a6a40648c9f5fbpki-util-javadoc-9.0.3-21.el6_2.noarch.rpm9bc616f3eaf4526ae176e3d886aacc5911fda665c20d061ab1de71f81d80c0c0SLBA-2012:0360-1This update fixes the following bug: * The functions that implement Counter (CTR), Output Feedback (OFB), and Cipher Feedback (CFB) block cipher modes previously incorrectly reset the counter of the remaining bytes of a block that had not been used in the previous encryption or decryption operation. Consequently, calling the encryption function on a small amount of data, that was not aligned to the size of the block, led to incorrect data encryption or decryption in the aforementioned modes. An upstream patch has been applied to correct the underlying functions, and both encryption and decryption now work as expected in CTR, OFB, and CFB modes.Scientific Linux FermiScientific Linux Fermi 6openssl-1.0.0-20.el6_2.2.i686.rpmf98a5fff54b67d9535ae12afaa5c5852258fb02e1ed3243807b6c5a5bfc518a1openssl-devel-1.0.0-20.el6_2.2.i686.rpmf1005b898dbd761b41c5345400f0a4adc11db08e84b260d571e8c80eaf98dfaaopenssl-perl-1.0.0-20.el6_2.2.i686.rpm62c3bc75ba8246998615fa4d39458f20b1722738d7fd3d250cd4a127e1f31630openssl-static-1.0.0-20.el6_2.2.i686.rpm54da6944e432dac369c556fea7d2da07fa3b3b82db1ab0b3b98082f3729187b1SLBA-2012:0365-1This update fixes the following bug: * Previously, the interface provided by the gmp library was changed. This resulted in one exported symbol being absent in Scientific Linux 6 (when compared to the Scientific Linux 5 system). In addition, the symbol could have been reported as missing under certain circumstances. To fix this problem, this update adds the missing symbol back to the library.Scientific Linux FermiScientific Linux Fermi 6gmp-4.3.1-7.el6_2.2.i686.rpm6e238f5356828797e67ce79d397c883dea5ce16bb6af2f5e97a242f6169a4077gmp-devel-4.3.1-7.el6_2.2.i686.rpmdec5c7b1e03e2be75313246a87b60f894252f42fe06da5a67f44a54c3d61e75cgmp-static-4.3.1-7.el6_2.2.i686.rpmc8f7bb5f957cfd535253485c904568084549cc3def1a6f17003f0705b84d20a8SLBA-2012:0366-1This update fixes the following bugs: * Previously, if the "override" keyword was present in the depmod.conf file without any parameters specified, the depmod utility terminated unexpectedly with a segmentation fault. A patch has been applied to ensure that the depmod utility no longer crashes and a syntax warning is displayed instead. * Previously, on low-memory systems (such as low-memory high-performance infrastructure, or HPC, nodes or virtual machines), depmod could use excessive amount of memory. As a consequence, the depmod process was killed by the OOM (out of memory) mechanism, and the system was unable to boot. With this update, the free() function is correctly used on several places in the code so that so that depmod's memory consumption is reduced. This update also adds the following enhancement: * This update adds the "backports" directory to the search path in the depmod.conf file, which is necessary to support integration of the compat- wireless package into kernel packages.Scientific Linux FermiScientific Linux Fermi 6module-init-tools-3.9-19.el6_2.i686.rpma370a2cd774aeee3f6d30c0191fdce1b3b0b1d5ae497abdbe9a8bca6975258bfSLBA-2012:0368-1This update fixes the following bug: * Previously, if the X server was configured as a multi-screen setup through multiple "Device" sections in the xorg.conf file, an absolute input device (for example a graphic tablet's stylus) got stuck in the right-most or bottom-most screen. This update changes the screen crossing behavior so that absolute devices are always mapped across all screens.Scientific Linux FermiScientific Linux Fermi 6xorg-x11-server-Xdmx-1.10.4-6.sl6.3.i686.rpmf02e26508ad091b6a742d334395b07486d2988a12439be9cff4c50696ce0bfb3xorg-x11-server-Xephyr-1.10.4-6.sl6.3.i686.rpm2e4b5b1ab5ac636eeabcb21cf4e5d133d4842e15eb80282a0a2fc896e86c6c83xorg-x11-server-Xnest-1.10.4-6.sl6.3.i686.rpm1417869d1d68253516ed0447c4017a27a386cb13c72099e9cd3f817aafb762d7xorg-x11-server-Xorg-1.10.4-6.sl6.3.i686.rpme8834bf818d84927aee6d0b471212f49cc5ed3bd8ed6d01dc62a9250b3863a3bxorg-x11-server-Xvfb-1.10.4-6.sl6.3.i686.rpmee8a2241e86d969b6a0f03782c2d93626606a4e211628d8aa799ed7e8ae1acc7xorg-x11-server-common-1.10.4-6.sl6.3.i686.rpma430c81e68dfd21db2e61e0f0473c90d16d66b29ce9835524e219c7ca2902b98xorg-x11-server-devel-1.10.4-6.sl6.3.i686.rpmdea8e3502d41e30096c0825ed8685a36f1595be62697d9ff9e203f8941e23436xorg-x11-server-source-1.10.4-6.sl6.3.noarch.rpm6a6bac4d5bde5a234f81c0cb47fe26c563a84bfacf0a8a28cca37f86e88e3fa1SLBA-2012:0371-1This update fixes the following bugs: * The SPICE client did not properly support the Xinerama extension in full screen mode on multi-screen setups. Therefore, if the user switched to full screen mode while using Xinerama, the SPICE client windows failed to cover all physical screens used by the guest. With this update, the underlying code has been modified to provide Xinerama support and the SPICE client now behaves correctly in full screen mode. * Any attempt of sound recording in the guest failed if there was another application accessing the recording device on the SPICE client startup. This update ensures that the client uses the PulseAudio sound server, which now allows multiple applications to access the recording device at the same time.Scientific Linux FermiScientific Linux Fermi 6spice-client-0.8.2-7.el6_2.2.i686.rpm9ffb20854a279ceff756fd9b4fedc1c692ade2de00808433fb2afb67ca50bc61SLBA-2012:0372-1The icedtea-web package has been upgraded to upstream version 1.1.5, which ensures that Firefox 10 and later does not terminate unexpectedly when LiveConnect is heavily used, and that Chrome browser tabs no longer terminate unexpectedly during JavaScript execution. Note: This update is not compatible with Firefox 3.6 and earlier. If you are using such a Firefox version, upgrade to a later supported version before applying this update.Scientific Linux FermiScientific Linux Fermi 6icedtea-web-1.1.5-1.el6_2.i686.rpm1a58400fc967769dcac838e87e1ebe205162524344e65efcd8cfdf19c2eadf1cicedtea-web-javadoc-1.1.5-1.el6_2.i686.rpmd709737f4dfe39382a69afe127a36dcba6d9a351eb8111df2e7a9ddd20bf2220SLBA-2012:0373-1This update fixes the following bug: * Previously, the range condition for the update_aru() function could cause incorrect check of message IDs. Due to this, in rare cases, the corosync utility entered the "FAILED TO RECEIVE" state, and so failed to receive multicast packets. With this update, the range value in the update_aru() function is no longer checked for; the fail_to_recv_const constant performs such checks. Now, corosync does not fail to receive packets.Scientific Linux FermiScientific Linux Fermi 6corosync-1.4.1-4.el6_2.1.i686.rpm8c1b3b43c2b7e4762e98f317a004269876d1eeecdbb631be213407689ccd2eeccorosynclib-1.4.1-4.el6_2.1.i686.rpm6551a5e93713670fba40685a5b50b73246eaef8bfb5724eb0471ca2631fcff26corosynclib-devel-1.4.1-4.el6_2.1.i686.rpmc7b0323a54f7f8bc344c22a053e6fba450f4440612e90f0315ed4abeed6e1e07SLBA-2012:0377-1This update fixes the following bug: * Previously, on big-endian architectures, including IBM System z, the Konqueror web browser could terminate unexpectedly or become unresponsive when loading certain web sites. A patch has been applied to address this issue, and Konqueror no longer crashes or hangs on the aforementioned architectures.Scientific Linux FermitrueScientific Linux Fermi 6kdelibs-4.3.4-14.el6.i686.rpm7ba8a108d8dbba1dcb95c4b66f969d3312bda914cb4ecf0deb8112dec5fa3d93kdelibs-apidocs-4.3.4-14.el6.noarch.rpmdf00bae61381fcf563d8b190193fd50613587d0fab914a99e4fee73968b1c154kdelibs-common-4.3.4-14.el6.i686.rpm552b59f648df935b970c2c2d175ddd7f42de76feccddfd85b3b9065411cce706kdelibs-devel-4.3.4-14.el6.i686.rpmab8a57b08d1c0708d2cddb26a399e97b3574aedc6c6706d7ec74a173a1f19024SLBA-2012:0380-1This update fixes the following bugs: * The QXL driver for Scientific Linux 6.2 did not contain the compatibility layer. As a consequence, updating a Scientific Linux 6 guest running on a Scientific Linux 5 host in the RHEV 2.2 environment caused the SPICE client window to become black after the update, and therefore unusable. A patch has been applied to ensure proper compatibility and the driver now works correctly in the described scenario. * The QXL driver for Scientific Linux 6.2 was not able to cache images on the client side. This led to visible and significant impact on user experience (users could have experienced delays when loading images contained in web presentations or slideshows). With this update, images can be optionally cached on the client side.Scientific Linux FermiScientific Linux Fermi 6xorg-x11-drv-qxl-0.0.14-13.el6_2.i686.rpme04c7ba282916dbef0cc699cd6cfa2b92231d145687d2f1142d1975f4016c8a2SLBA-2012:0381-1This update fixes the following bug: * Previously, the libgweather library did not contain information for the city of Jerusalem, making it impossible to search for the city or select the city from the list of cities offered by the weather panel applet. This update adds the missing information to the libgweather database, so that users can now select Jerusalem as a valid option.Scientific Linux FermiScientific Linux Fermi 6libgweather-2.28.0-5.el6.i686.rpm9ea0db4269b16a1483b422096a31cdeecbbf0014039ce3e5d13a00741507d27alibgweather-devel-2.28.0-5.el6.i686.rpm71f521d9f369096133f6ca2c3054584d46c4ac3d5129028617406dc5eaa3922fSLBA-2012:0382-1This update fixes the following bug: * When opening an X Display Manager Control Protocol (XDMCP) connection using the tsclient utility, tsclient could terminate unexpectedly with a segmentation fault. A patch has been applied to address this issue, so that an XDMCP connection is now started correctly for the configured host.Scientific Linux FermiScientific Linux Fermi 6tsclient-2.0.2-8.el6.i686.rpm2935a384220b7575673e758eff195b4d94a6e8acdd74c97186bf80dbf23ba779tsclient-devel-2.0.2-8.el6.i686.rpm10fb0f2054a1a9c02a118eb438de025e6627d9657e402278f278aede59337213SLBA-2012:0383-1This update fixes the following bug: * Previously, the dropwatch utility could terminate unexpectedly with a segmentation fault. The failure was caused by a double-free error which occurred while issuing the start and stop messages. This update removes the freeing function calls from the underlying code, which prevents the dropwatch utility from crashing.Scientific Linux FermiScientific Linux Fermi 6dropwatch-1.2-1.el6.i686.rpm6bab2a5f12644e889a51e72ce8382c3102ff9cc3d04b13e95a98c06671d2ffc1SLBA-2012:0384-1This update fixes the following bug: * Previously, the "fonts.dir" file provided with the liberation-fonts packages was empty. As a consequence, legacy applications were not able to make use of liberation-fonts even when the package was installed. This was because the "mkfontscale" command was run after the "mkfontdir" command. The order of running the commands has been changed and legacy applications can use liberation-fonts as expected.Scientific Linux FermiScientific Linux Fermi 6liberation-fonts-common-1.05.1.20090721-5.el6.noarch.rpm5655f4ef0740f80c494e17710e7ffcf9a271170f60d41a3dd1b02e58db2385a3liberation-mono-fonts-1.05.1.20090721-5.el6.noarch.rpm40ac236e3467cff81c1a155dde8bf32a9053a2e5180592230aa7503fe7cad68cliberation-sans-fonts-1.05.1.20090721-5.el6.noarch.rpma369a39f5cc8625250e23a47ff293927b3c144782f89906616bcd85d151f08a1liberation-serif-fonts-1.05.1.20090721-5.el6.noarch.rpm35d921d8e2fb1141e5ca2d1bd2fafe3d1ec21c9fe0266d78d4794b6484aad561SLBA-2012:0385-1This update fixes the following bugs: * Prior to this update, the gawk utility could, under certain circumstances, interpret some run-time variables as internal zero-length variable prototypes. When gawk tried to free such run-time variables, it actually freed the internal prototypes, that were allocated just once due to memory savings. As a consequence, gawk sometimes failed and the error message "awk: double free or corruption" was displayed. With this update the problem has been corrected and the error no longer occurs. * Prior to this update, the gawk utility did not copy variables from the command line arguments. As a consequence, the variables were not accessible as intended. This update modifies the underlying code so that gawk makes copies of those variables. * Prior to this update, the Yacc interpreter encountered problems handling larger stacks. As a consequence, the Yacc interpreter could fail with a stack overflow error when interpreting the AWK code. This update enlarges the stack and Yacc can now handle these AWK programs.Scientific Linux FermiScientific Linux Fermi 6gawk-3.1.7-9.el6.i686.rpm63eb436d57bc74c744d7cd80714b68264348b1c762bbd76419cd92c5f08242f5SLBA-2012:0386-1This update fixes the following bug: * The anacron scheduler starts the yum-cron utility with the "nice" value of 10. This caused Yum's RPM transactions to run at very low priority level. Also, any updated service inherited this "nice" value, which influenced the system behavior. This update adds the "reset_nice" configuration option, which allows Yum to reset the "nice" value to 0 before running an RPM transaction. With this option set, Yum's RPM transactions run at normal priority level so that updated services are restarted with normal priority as expected.Scientific Linux FermiScientific Linux Fermi 6yum-3.2.29-22.el6_2.2.noarch.rpm751b2cab3a76307ca2f032a69146ec6029c4d7551b648191f7e5c1f15a9dc1cbyum-cron-3.2.29-22.el6_2.2.noarch.rpme9d44d1620acf743a890376e5be03de95078cc1971cbcccd91ef5b79d9619521SLBA-2012:0391-1This update fixes the following bugs: * Previously, the file utility contained "magic" patterns that incorrectly detected files according to one byte only. Unicode text files starting with that particular byte could be therefore incorrectly recognized as DOS executable files. This update removes the problematic patterns. Patterns that match less than 16 bits are no longer accepted, and the utility no longer detects Unicode files as DOS executables. * Previously, the "magic" pattern for detection of Dell BIOS headers was outdated. As a consequence, the file utility did not detect newer BIOS formats. The "magic" pattern has been updated, and the file utility now detects new formats of Dell BIOS properly. * Previously, users were allowed to add new "magic" files only into the home directory. As a consequence, users were not able to configure "magic" patterns for certain special file formats system-wide. With this update, a backported patch provides a way to read "magic" patterns from the /etc/magic file. * Previously, "magic" patterns for Python were insufficient. The file utility was therefore unable to detect a Python script according to the Python function definition. With this update, detection of Python is improved, and Python scripts are properly recognized. * Previously, the file utility did not contain a "magic" pattern for detection of files compressed using the LZMA algorithm. As a consequence, the file utility was unable to detect these files. This update adds the missing "magic" pattern, and LZMA compressed files are now detected as expected. * Previously, the file utility did not contain a "magic" pattern to detect the swap signature on Itanium microprocessors. As a consequence, the file utility was unable to detect the signature. This update adds the missing "magic" pattern, and the swap signature on Itanium microprocessors is detected as expected. * Previously, the file utility did not parse the name of an RPM package from the RPM file. As a consequence, the utility did not print the name of the RPM package. This update adds a "magic" pattern for RPM package name parsing, and the name is now printed as expected.Scientific Linux FermiScientific Linux Fermi 6file-5.04-13.el6.i686.rpmcda653463354fed5235a798124569c7a3b1ad66a2234fd6ee77894939b9ff669file-devel-5.04-13.el6.i686.rpm6debe48194ca33a279b3a5c0829fa3f16e2d0b5e90f2afc3acc2f902c3dd189dfile-libs-5.04-13.el6.i686.rpmd2d0cc35740a6bad7e0d906d86c9204ec3c875c8a0b09f90c41534583d7bba2bfile-static-5.04-13.el6.i686.rpm4f335ccd94f04f633abef7fd8fa592d2009796d47ffdba5cedbf9432a2d8d065python-magic-5.04-13.el6.i686.rpm0cc4787d0a9b1d90987f3c94f6fdcfcb8d52e4a72691e061bd4d361d742750cfSLBA-2012:0392-1The iok package has been upgraded to upstream version 1.3.13, which provides a number of bug fixes over the previous version. This update also fixes the following bugs: * Due to xkb keymaps being rewritten in a recent update of the xkeyboard-config package, the iok's language list contained incorrect xkb keymap names when selecting the Hindi X Keyboard Extension (XKB). To fix this problem, the iok's xkb parser has been rewritten. * Previously, iok looked for files with the ".mim" suffix in the "~/.m17n" directory instead of the "~/.m17n.d" directory. This update modifies the directory path to the correct "~/.m17n.d" so that the user-defined keymap files are saved in the correct directory. * Previously, when using the on-screen keyboard, mouse clicks on various characters worked as expected. However, finger inputs failed because the first selected character was selected regardless of what characters the user selected next. With this update, users can use the drag-and-drop feature when running iok in advanced mode (the "iok -a" command), which allows users to drag the first key button over the second button. The drag-and-drop feature is not available in iok's default mode. * Due to a small size of the xkb name array, if the user selected the xkb- Malayalam keymap (enhanced Indian Script with the Rupee sign), and then pressed the "To English" button, the iok utility could terminate unexpectedly. With this update, the size of the xkb name array has been increased so that the utility no longer crashes in the described scenario.Scientific Linux FermiScientific Linux Fermi 6iok-1.3.13-2.el6.i686.rpmd66e0370f200fb26ade9775cef4c05f77b2265dbc567447d04c2aad6d8ed1be4SLBA-2012:0394-1This update fixes the following bugs: * The SLBA-2011:1656 errata advisory released a patch that fixed a problem of mod_nss crashing when clearing its SSL cache on startup without the NSS library initialized. However, that patch placed the fix in the improper location in the code, which caused a file descriptor leak in the Apache httpd daemon. With this update, the necessary fix has been relocated to the appropriate location in the code so that the problem is fixed and the file descriptor leak no longer occurs.Scientific Linux FermiScientific Linux Fermi 6mod_nss-1.0.8-14.el6_2.i686.rpm25accaeebe924eb61f2893b8d7c82d551fb735be1751f36250afab4166b576baSLBA-2012:0400-1This update fixes the following bug: * Previously, the kdebase-workspace package relied on the bluez-libs-devel package for rebuild. However, bluez-libs-devel was not supported on IBM System z architectures and builds could be created only with help of the fake-build- provides package which is not required behavior. With this update, the bluez- libs-devel package is no longer required as a dependency on IBM System z architecture and rebuilds are successful.Scientific Linux FermitrueScientific Linux Fermi 6kdebase-workspace-4.3.4-23.el6.i686.rpmf365a2def513bc30cc7de19a1d159a5eaa26b0095f21b17b776ef63dd67a336fkdebase-workspace-akonadi-4.3.4-23.el6.i686.rpm6b98db3db657704b6e13287ac36073f57fa456cea40668afc17c2b0b6b6d4270kdebase-workspace-devel-4.3.4-23.el6.i686.rpm06f241de1f1a5d4a6a1f1a50a003284289620a5cd8ee64b228be6fe2ce761c9ekdebase-workspace-libs-4.3.4-23.el6.i686.rpm1f1d4c96a0feb02c11b9fdebf59f61702eeface0b279fb0597c8f7b1cf578b75kdebase-workspace-python-applet-4.3.4-23.el6.i686.rpm39c1518ad74d8f864c0800baac5ca3aa96c5c4967bcb995edd67810200f86db5kdebase-workspace-wallpapers-4.3.4-23.el6.noarch.rpm95e80c6ca44bcc5c4c912ae810ea7f0f20b41b63f468ac925edfd2a817b1cf04kdm-4.3.4-23.el6.i686.rpm616a4ffff014be3357af5281271787e2d853b2abac88c7d02dbc4bf5c9ed6c5bksysguardd-4.3.4-23.el6.i686.rpmce5f732414a2f00d1481a3244f4b38fd12412f626572e18a0353332753ac1de9oxygen-cursor-themes-4.3.4-23.el6.noarch.rpme7d12e51d60818d9a1c9865ac1ba33164c297b8901f018b1b34450abbdd5b21aSLBA-2012:0402-1This update fixes the following bug: * Previously, binary files from the base atlas package contained illegal instructions from an incompatible instruction set (3DNow!). As a consequence, an "Illegal instruction" error was displayed. This update disables usage of the instruction set.Scientific Linux FermiScientific Linux Fermi 6atlas-3.8.4-2.el6.i686.rpmea5c4ac816c94d00ef1c4ed0702f06ad7ceeb79da7d3f46463babd89ce0a597fatlas-3dnow-3.8.4-2.el6.i686.rpmf70fbc7712ba3905c6c8cea5c0c67b1c8fb398b03aa6b191ff37ed5bdbd9c595atlas-3dnow-devel-3.8.4-2.el6.i686.rpm3a3b92210c8a99126d7a2ceb6952fd9fbc36eec50acf6110ab6fae2783d75739atlas-devel-3.8.4-2.el6.i686.rpm9c8af5f03b9b34fb9152408743b6b02a04dda81754812e5bfad34e19cde984aeatlas-sse-3.8.4-2.el6.i686.rpm7b05eb033f0602926c6c2a63f72453a72d95d830978b08027065a2404c63ce11atlas-sse-devel-3.8.4-2.el6.i686.rpm4f96e27089140a23599228b5a825968a51b4e48525aae471aab06fd2e3b9e2aeatlas-sse2-3.8.4-2.el6.i686.rpm4f28a140b87c953dd60e079eaab4f9195aa7a2d2b19d148cb1767a10776c8200atlas-sse2-devel-3.8.4-2.el6.i686.rpm3c27e151c0daa68bf6fb41f746015f3caea7ee911c3ddaf6a93c1414246a1298atlas-sse3-3.8.4-2.el6.i686.rpme55246980d010332250d71e00a43b7e11de4edb8ac156ab9144368e5e2d4caeeatlas-sse3-devel-3.8.4-2.el6.i686.rpmb76fd943fb10ed908a097a35e5340a1e9921b64731542369080ea0d635620b97SLBA-2012:0403-1This update fixes the following bugs: * Previously, the "mkbootdisk --iso" command could fail with a "Volume ID string too long" error. This was because the length of the volume ID is limited to 32 characters but the limit was not verified. With this update, the string length is verified and if it is longer than 32 characters, the fixed string "Scientific Linux" is used for volume ID. * Previously, the mkbootdisk package was missing a dependency on the genisoimage package that was required for functionality of the "--iso" option. This update adds the missing dependency.Scientific Linux FermiScientific Linux Fermi 6mkbootdisk-1.5.5-3.el6.i686.rpm4f2e0de3ee1977781a23391d1c58a7c1af51281e7edbf7c5a1cba4d9306a4590SLBA-2012:0404-1This update fixes the following bug: * Previously, no dependency on the rpcbind package was specified in the rstatd and rusers SysV init scripts. In addition, when the rstatd and rusersd services were started, a check to see if networking was enabled was not performed, and an incorrect exit code was returned. This update adds rpcbind dependency to the rusersd and rstatd init scripts. Also, the SysV init scripts have been adjusted to return correct exit codes. Checks are now performed when starting the rstatd and rusersd services to see whether networking is available and binding to rpcbind was successful.Scientific Linux FermiScientific Linux Fermi 6rusers-0.17-61.el6.i686.rpm956da88b2e687c8feb27b3a3ab9fde4d7ac15685bf36a6ece60a2a4246524cdcrusers-server-0.17-61.el6.i686.rpm6486f396c12701ae54620003c62bbdbe73d1fe85a9531e6a04de358dba379efeSLBA-2012:0405-1This update fixes the following bug: * Previously, due to an object not being destroyed, the Nautilus file manager could consume an excessive amount of memory. Consequently, constantly growing resident memory would slow down the system. The source code has been modified to prevent memory leaks from occurring and Nautilus now consumes a reasonable amount of memory.Scientific Linux FermitrueScientific Linux Fermi 6gnome-desktop-2.28.2-9.el6.i686.rpm602fa48bc4ba87d01fd732d6ffc5b6fb571611affcba93098c54e5e57f4b338egnome-desktop-devel-2.28.2-9.el6.i686.rpm107805dfbb2c462b17afb7d8ca7fbc7874626afba374c362956c6da0c7c0469cSLBA-2012:0409-1This update fixes the following bugs: * Under certain circumstances, the xinetd daemon could become unresponsive (for example, when trying to acquire an already acquired lock for writing to its log file) when an unexpected signal arrived. With this update, the daemon handles unexpected signals correctly and no longer hangs under these circumstances. * Previously, a bug in the xinetd code could cause corruption of the time_t variable resulting in the following compiler warning: warning: dereferencing type-punned pointer will break strict-aliasing rules A patch has been applied to address this issue, so that the warning no longer occurs. * Previously, the xinetd daemon ignored the "port" line of the service configuration file, and it was therefore impossible to bind certain RPC services to a specific port. The underlying source code has been modified to ensure that xinetd honors the "port" line, so that the port numbers are now handled appropriately. * Incorrect use of the realloc() function could cause memory corruption. This resulted in the xinetd daemon terminating unexpectedly right after the start when a large number of services had been configured. The realloc() function has been removed, which ensures that memory corruption no longer occurs in this scenario, and the xinetd daemon starts successfully even when configuring a large number of services.Scientific Linux FermiScientific Linux Fermi 6xinetd-2.3.14-34.el6.i686.rpm79638cf2a280fa7bb3af41140d90512a49bc938dc28c15ec2ede2909fbaa4293SLBA-2012:0413-1The python-slip packages have been upgraded to upstream version 0.2.20, which provides a number of bug fixes over the previous version. In addition, this update fixes a bug causing previous versions of python-slip to incorrectly determine whether SELinux was enabled or not. Therefore, convenience functions for writing files always attempted to set SELinux labels even if SELinux was disabled. This could cause for example the system-config-date tool to fail to change settings.Scientific Linux FermiScientific Linux Fermi 6python-slip-0.2.20-1.el6_2.noarch.rpm718fe4e2d58e1fa8f82882c0e5c9fa6b7c4761034ac82372bba29ead0625317bpython-slip-dbus-0.2.20-1.el6_2.noarch.rpm0eb0378bd4201e8b2940272030ed6c8b84284c730cad20dac5825e3392e7da01python-slip-gtk-0.2.20-1.el6_2.noarch.rpmf6a56f9abf85a6936cd1be198e3892b3f4f3bca76a68a218375c90f226cd5556SLBA-2012:0414-1This update fixes the following bug: * Previously, the "start-time" command-line argument of the tcpslice utility was parsed incorrectly. As a consequence, the utility produced error messages every time the command-line argument was used. With this update, the "start- time" command-line argument is parsed correctly, and an error message is displayed only if "start-time" is defined in an incorrect format.Scientific Linux FermiScientific Linux Fermi 6tcpdump-4.0.0-3.20090921gitdf3cb4.2.el6.i686.rpm7cd44fbf9ce7ac3d42b1ca0006bdcd16275857741da90c08cd1b3fd5a0a464a7SLBA-2012:0415-1This update fixes the following bugs: * When installing multiple Linux Standard Base (LSB) services which only had LSB headers, the stop priority of the related LSB init scripts could have been miscalculated and set to "-1". With this update, the LSB init script ordering mechanism has been fixed, and the stop priority of the LSB init scripts is now set correctly. * When an LSB init script requiring the "$local_fs" facility was installed with the "install_initd" command, the installation of the script could fail under certain circumstances. With this update, the underlying code has been modified to ignore this requirement because the "$local_fs" facility is always implicitly provided. LSB init scripts with requirements on "$local_fs" are now installed correctly.Scientific Linux FermiScientific Linux Fermi 6chkconfig-1.3.49.3-1.el6_2.i686.rpm09cc52bbb6385e9f81a73fb169bc1e0ed37f241f63eea9c4b5d534973051c695ntsysv-1.3.49.3-1.el6_2.i686.rpm232aceb120438e723a85d4797aaf15707073e2724da36b2abd458adccde17875SLBA-2012:0418-1This update fixes the following bug: * Previously, empty jobs could be created using the "lp" command either by submitting an empty file to print (for example by executing "lp /dev/null") or by providing an empty file as standard input. In this way, a job was created but was never processed. With this update, creation of empty print jobs is not allowed, and the user is now informed that no file is in the request.Scientific Linux FermiScientific Linux Fermi 6cups-1.4.2-44.el6_2.3.i686.rpmf36ace6eec32dc2d4fb2750836c1d4394c1dffceda04871c4c2745ea2d49996fcups-devel-1.4.2-44.el6_2.3.i686.rpm01c9ab6a87929a9fa7409b19ccb591c1aa58b1940f44515f07886f52cc782da3cups-libs-1.4.2-44.el6_2.3.i686.rpma381c811d89dd0e63ca5c91ceabea88d205386de8059df6c5c0647e95e3e957acups-lpd-1.4.2-44.el6_2.3.i686.rpm205d275f72738d176141ede69c370537d62e04ec5ebf569d565ff95e1d194305cups-php-1.4.2-44.el6_2.3.i686.rpmc668790222a778a55c3cf0a38aaaa152c9cc9109fd3b14a315b2e001ced72f5aSLBA-2012:0419-1This update fixes the following bugs: * If the user attempted to connect locally as a non-root user to the libvirtd daemon (using "qemu:///user"), the ".libvirt" directory was not created in the home directory. As a consequence, non-root users failed to use libvirt. This update ensures that the directory is created, and libvirt now works as expected for non-root users. * The localtime_r() function used in the libvirt code was not async signal safe, which caused child processes to enter a deadlock when attempting to generate a log message. As a consequence, the virsh utility became unresponsive. This update applies backported patches and adds a new API for generating log time stamps in an async-signal safe manner. The virsh utility no longer hangs under these circumstances. After installing these updated packages, libvirtd must be restarted. Use the "service libvirtd restart" command for this update to take effect.Scientific Linux FermitrueScientific Linux Fermi 6libvirt-0.9.4-23.el6_2.7.i686.rpm5b05d932a2dc645c2a2c31392ac75ce8a2dd5d1cad6e68f865a9b404ca8f226alibvirt-client-0.9.4-23.el6_2.7.i686.rpm69c74864258d0a3068b313ab9c675073c185d6cb533c149dbbd148c2eebdea79libvirt-devel-0.9.4-23.el6_2.7.i686.rpm57b76aff3e8cef0e646614dc4af813825c7e065bbad9fb4c3fee0441835fc378libvirt-lock-sanlock-0.9.4-23.el6_2.7.i686.rpm1924004d3096d8c227b95d7615ec598ae546b4a65191e5dff89c52831018b3f5libvirt-python-0.9.4-23.el6_2.7.i686.rpm935e63e01212c5f90f9814a5e90983371fabc304d12045c874a0b3cb9e1de030SLBA-2012:0425-1This update fixes the following bug: * If a marshaled object contained multiple child objects and the call to the Marshal.load method was interrupted by a context switch, a segmentation fault could have been triggered. This was due to a thread-safety bug in the Ruby interpreter and could affect multiple packages. To prevent segmentation faults from occurring, the destination string is marked, and data tables that are identical with symbol tables are cleared.Scientific Linux FermiScientific Linux Fermi 6ruby-1.8.7.352-7.el6_2.i686.rpm219342e9c3eb70551367b4678792d5aeebacc5d9c7969ec77955bad6a55a581aruby-devel-1.8.7.352-7.el6_2.i686.rpm126b72c1fa548f75d776361d8082e921aa74992619f1128e4521bb7ec9e6e326ruby-docs-1.8.7.352-7.el6_2.i686.rpm62e7e588bd8b5f1ab020e7fb7f1657d2fb2eefe2f84e9b9b48f8c5f4a6ef0606ruby-irb-1.8.7.352-7.el6_2.i686.rpm791899f74f9b6539ef5a2eed6e668042d5f538a17868a9d7d8737a7be66291a4ruby-libs-1.8.7.352-7.el6_2.i686.rpm2390a51c4612f8b1dd4807170c7c5ec2405fb9fefac36778ea2e2957cf095507ruby-rdoc-1.8.7.352-7.el6_2.i686.rpm9e20b0826bb3a1accab28642cd4ce60415c2669f7a04e009d0014c649aaec0bbruby-ri-1.8.7.352-7.el6_2.i686.rpmcace163b3cb9cdb4e925062c8087d4b1532ac1e7bb75e2b006c7b74b30489e60ruby-static-1.8.7.352-7.el6_2.i686.rpm30594b47ae88b39162872c26a8302f7be823ddedbb7e18a3d65dd58ec294a668ruby-tcltk-1.8.7.352-7.el6_2.i686.rpm6d59e2db57706c599143b2635c25ff7b359f0021848690f6a3d972c837910d4fSLBA-2012:0430-1This update fixes the following bugs: * Previously, SSL connections could not be established with libcurl if the selected Network Security Services (NSS) database was broken or invalid. This update modifies the code of libcurl to initialize NSS without a valid database, which allows applications to establish SSL connections as expected in this scenario. * The OpenLDAP suite was recently modified to use NSS instead of OpenSSL as the SSL back end. This change led to collisions between libcurl and OpenLDAP on NSS initialization and shutdown. Consequently, applications that were using both, libcurl and OpenLDAP, failed to establish SSL connections. This update modifies libcurl to use the same NSS API as OpenLDAP, which prevents collisions from occurring. Applications using OpenLDAP and libcurl can now connect to the LDAP server over SSL as expected. All running applications that use libcurl have to be restarted for this update to take effect.Scientific Linux FermiScientific Linux Fermi 6curl-7.19.7-26.el6_2.4.i686.rpm66c0503e1d0bd7960025cfb7bbab3838cff4ba1e0f68ff0c80045cb023d6a33dlibcurl-7.19.7-26.el6_2.4.i686.rpmb06ea55ad288b4ecf7ac400833a47319155070612b461fdf724cc0742231f589libcurl-devel-7.19.7-26.el6_2.4.i686.rpm0c39c85515a633ceba1dc75a7ef546812c802f97b0b37a2791c15c8542ca0b62SLBA-2012:0431-1This update fixes the following bugs: * Previously, an insufficient data type was used for certain bit shift operations in the libssh2 code. This could result in an arithmetic overflow, which caused the curl utility to terminate unexpectedly when downloading files larger than 2 GB over the SFTP protocol. With this update, the underlying code has been modified to use the correct data type and curl now works as expected in the scenario described. * When sending a large amount of data over SSH, libssh2 could, under certain circumstances, fail to resume an interrupted key exchange. Instead of that, further data was erroneously sent, which caused the remote site to close the connection immediately. This update modifies the code of libssh2 so that libssh2 now properly resumes the interrupted key exchange before sending any further data. The connection remains open and the data transfer proceeds as expected. After installing this updated package, all running applications using libssh2 have to be restarted for this update to take effect.Scientific Linux FermiScientific Linux Fermi 6libssh2-1.2.2-7.el6_2.3.i686.rpmbc11f1246a6559a3ab2a5e4ab539d93850af680fda61dd2b9ff53a318b3dbcf1libssh2-devel-1.2.2-7.el6_2.3.i686.rpm90904fdecf46c4f3fea368236f8a6573ee237e037d9851063e9f024938cbd786libssh2-docs-1.2.2-7.el6_2.3.i686.rpma827beb63e831a9df00e7bf5e3f377a5f752cec4014cc50c17ff73f619c79294SLBA-2012:0442-1This updated lsof package fixes the following bugs: * Previously, only the first "+e" or "-e" option was processed and the rest were ignored. Consequently it was not possible to exclude more than one file system from being subjected to kernel function calls. This update fixes this issue and lsof now functions as expected with multiple +e or -e options. * Prior to this update, the lsof utility ignored the "-w" option if both the "-b" and the "-w" options were specified. As a consequence, lsof failed to suppress warning messages. Now, the -w option successfully suppresses warning messages.Scientific Linux FermiScientific Linux Fermi 6lsof-4.82-4.el6.i686.rpmdf0d3e3c2278774d327c55578a724ab07f7ef6e92a4bda709f7cfcdbd5ab54abSLBA-2012:0443-1This update fixes the following bug: * Prior to this update, memory corruption could occur in an "eval" expression if one of its sub-expressions was assigned to the same variable. An upstream patch has been applied to address this issue, and memory corruption no longer appears in the described scenario.Scientific Linux FermiScientific Linux Fermi 6make-3.81-20.el6.i686.rpm1ff571253a2fc5386ae665d1848ccf87854a4233f1efae6aaa27f2c43f0ccec7SLBA-2012:0444-1This update fixes the following bug: * Prior to this update,the options --to-stdout and --no-absolute-filenames were not listed in the cpio (1) manual page. This update includes the missing options and corrects several misprints.Scientific Linux FermiScientific Linux Fermi 6cpio-2.10-10.el6.i686.rpm603eba59fe1d06bbd2134ecf0e4c97b5545669a836836b9670ad911fb3bbeca9SLBA-2012:0445-1This update fixes the following bugs: * Prior to this update, the PCRE license file was missing from the pcre-static subpackage. This update adds the license file. * Prior to this update, the pcretest(1) manual page contained various misprints. This update corrects these misprints. * Prior to this update, the pcregrep(1) manual page contained various misprints. This update corrects these misprints.Scientific Linux FermiScientific Linux Fermi 6pcre-7.8-4.el6.i686.rpm93066dd8feedc6c9837a2f7e3b46b66e3ae1f9cf46dae90a1d50b9f134f3569bpcre-devel-7.8-4.el6.i686.rpm495499f1fbb063a805cb5ad55c731c71fe5b0e356f37705c486ffe249887bae7pcre-static-7.8-4.el6.i686.rpme665e0c9122fcb82914d99beaf2e87765a142daba12f50edd40d6314e6a70a10SLBA-2012:0446-1This update fixes the following bugs: * If the SDL_VM_GrabInput() function was called when the window of an SDL application was not visible (for example, the window was displayed on a different workspace or outside of the screen borders), the SDL library, and therefore the current application thread, was unresponsive until the window became visible and the input could be grabbed. The SDL_VM_GrabInput() function has been adjusted to return immediately with the proper error code signaling that the grab failed. * Previously, calling the SDL_BlitSurface() function on overlapping rectangles when running the Streaming SIMD Extensions 3 (SSE3) optimized standard C library caused the bitmap content on the screen to be corrupted. The internal SDL_BlitCopyOverlap() function has been fixed to copy bitmaps between overlapping areas correctly. The SDL_BlitSurface() function now performs correctly even if the standard C library does not implement the memcpy() function safely for operations on overlapping memory areas. * When running an SDL application in window mode and using certain window managers (like Fluxbox), the left-button event was not reported to the application. This update fixes dispatching of notifications when a window is left and the parent window is not interested in grabbing or ungrabbing events to handle window focus changes. With this update, the event of pressing the mouse button is reported to the application even if the window manager handles grab events. * When using a hat-type analog joystick in an SDL application, the application terminated unexpectedly with a segmentation fault when the user moved the hat. The data structure which defines the analog part of a joystick has been updated to match the data structure passed by the kernel to the SDL library. The state of the analog hat is now properly passed by the kernel to the SDL library and it is interpreted accurately by the library. * Prior to this update, the SDL spec file contained two invalid configuration options. This update removes these unrecognized options from the spec file. All options defined in the spec file are now recognized by the SDL configure script.Scientific Linux FermiScientific Linux Fermi 6SDL-1.2.14-3.el6.i686.rpm01869d41397f8e35fab801b1763f8a5d9230d14340ce38a77f8704cdc9ed2c43SDL-devel-1.2.14-3.el6.i686.rpm4828b7bc528dddd7f471cd1e2f4895e06cb3d226d90798d8366f7da9cf1f716cSDL-static-1.2.14-3.el6.i686.rpmd2c83d0b9e407807430782816d935e8680a6c5c93edbea9aaefcc91b6867dc3aSLBA-2012:0447-1This update fixes the following bugs: * Prior to this update, the init script for the portreserve daemon did not always return the correct exit code. As a consequence, an incorrect error message was displayed. With this update, the init script is modified to return the correct exit codes, and also appropriate messages are now displayed. * The portreserve package requires the "chkconfig" command because it is run in installation scriptlets. However, this was previously not reflected in the package metadata, and error messages could be displayed during installation. To prevent this issue, this update adds requirement tags for chkconfig.Scientific Linux FermiScientific Linux Fermi 6portreserve-0.0.4-9.el6.i686.rpm0bad7ad0435a562ae26fad16aca29312b38c1b1e93310c66cba712e893588431SLBA-2012:0448-1This update fixes the following bugs: * Previously, displaying tooltips while being in a main loop recursion caused the system-config-printer utility to terminate unexpectedly. To prevent system- config-printer from crashing, displaying tooltips is now avoided during the main loop recursion. * Python bindings for the CUPS library were not reliable when threads were used. In particular, a single password callback function was used instead of one for each thread. This, in some cases, caused the system-config-printer utility to terminate unexpectedly with a segmentation fault. With this update, thread local storage is used for the password callback function in Python bindings for the CUPS library.Scientific Linux FermiScientific Linux Fermi 6system-config-printer-1.1.16-23.el6.i686.rpmdf2a568893022cd9e6890bbda154c99ff3ecfbb939dcc16b8c570841189e3925system-config-printer-libs-1.1.16-23.el6.i686.rpm6b1e1d8c0ef63e15874bef20bf37ffc714748d02bb361752b432a86a031bd689system-config-printer-udev-1.1.16-23.el6.i686.rpmd6a22266e46f1672d0d34b905a9e27c5e388b4f40ac11bcc0d7345b9f67ed409SLBA-2012:0449-1This update fixes the following bugs: * Previously, the Japanese version of the man(1) manual page contained a duplicate line in the specification of the "-p pager" option. This update removes the duplicate. * Prior to this update, the makewhatis script, which creates the whatis database of manual pages, ignored symbolic links between pages. With this update, the makewhatis script includes symbolic links in the whatis database.Scientific Linux FermiScientific Linux Fermi 6man-1.6f-30.el6.i686.rpmc14de69c37330122c84aa8b0d7768361d8c9d5da32097a7698d40636f9b51944SLBA-2012:0450-1This update fixes the following bug: * Previously, the KPendulum and KRotation screen savers, listed in the OpenGL group of KDE screen savers, produced only a blank screen. This update disables KPendulum and KRotation and none of them is listed in the OpenGL group anymore.Scientific Linux FermitrueScientific Linux Fermi 6kde-style-phase-4.3.4-7.el6.i686.rpm3af072d535e234704f675fe7611406342b8c118a6d531ee02f655d9b30805eadkdeartwork-4.3.4-7.el6.i686.rpm7449609a55c9db577674a184e59f0cc192dbc88a5d07267a181acf8cd84e3730kdeartwork-screensavers-4.3.4-7.el6.i686.rpm4706cd5eab2d2312b9b1740190d02fb7b4b304070f4b714bed5ea174be509299kdeartwork-sounds-4.3.4-7.el6.noarch.rpmc279323ed46337e63942b55a14f1215bbff370ae0bb2232d63e8cb5b39d5403akdeartwork-wallpapers-4.3.4-7.el6.noarch.rpm38edb0f226cad44f24a7b828acfb2c27215721372b98ef434f01d57b2f1c6b39nuvola-icon-theme-4.3.4-7.el6.noarch.rpm1b2e9f65acefc4f638953f8e7f0d2db329f1e85a3b71a8f1670ada8071f3f6e7SLBA-2012:0452-1This update fixes the following bug: * The db4 spec file incorrectly stated that the "License" is simply "BSD", whereas it is in fact licensed under both the BSD and Sleepycat licenses, the latter of which differs from the Berkeley Software Distribution (BSD) license by including a redistribution clause. This update corrects the spec file so it correctly states that the db4 software is provided under the "Sleepycat and BSD" license.Scientific Linux FermiScientific Linux Fermi 6db4-4.7.25-17.el6.i686.rpmb6141931cbdb3f18e8544d99faaaf39f1ddcc77501dd4e9d063aae5b1daf3540db4-cxx-4.7.25-17.el6.i686.rpmb1974b41df21c6ecf63a4dbe84f5c8b2baca398421dfb2e1c24c4fd1741740a6db4-devel-4.7.25-17.el6.i686.rpm9aa13045e47397ffa7f3172317e9b8c62fef7d6b1bf7d5cd39896076181a271cdb4-devel-static-4.7.25-17.el6.i686.rpmfc14b575debcd426f61262bf4264053543c01818c40f2cdc9de8ed8455d00d57db4-java-4.7.25-17.el6.i686.rpm73a981e69ec1a5ec2f814cc4dcda78f4b6bf419d6850273e8bde57e6acd31238db4-tcl-4.7.25-17.el6.i686.rpm054403b9956fd378a70f6534bf641cfac67f336010ee99c92a8c3b64cc96a913db4-utils-4.7.25-17.el6.i686.rpm631b4ec13d03f0f3c70a5a84cd23b72dad5b513283a51b65c2f79b101b98c588SLBA-2012:0454-1This update fixes the following bugs: * Previously, when using the VimExplorer file manager with the locale set to Simplified Chinese (zh_CN), the netrw.vim script inserted an unwanted "e" character in front of file names. The underlying code has been modified so that file names are now displayed correctly, without unwanted characters. * The spec file template that was used when new spec files were edited contained outdated information. With this update, the spec file template is updated to adhere to the latest spec file guidelines. * When using the file explorer in a subdirectory of the root directory, the "vim .." command displayed only part of the root directory's content. A patch has been applied to address this issue, and the "vim .." command now lists the content of the root directory properly in the described scenario. * Due to a typographic error in the filetype plug-in, the vim utility could display the httpd configuration files with incorrect syntax highlighting. This update corrects the errors in the filetype plug-in, and the httpd configuration files are now displayed with the correct syntax highlighting.Scientific Linux FermiScientific Linux Fermi 6vim-X11-7.2.411-1.8.el6.i686.rpm053cc0787e92a11d7e374727aba18c4e5b24265538abd3ddcca8d55abb7fcc28vim-common-7.2.411-1.8.el6.i686.rpm3f0b15045daf52e86faffd033419e6fbddc0cc30d7881837c9e5f74a4d1e1395vim-enhanced-7.2.411-1.8.el6.i686.rpm02098b854df267b558e004876b6ec350c7961b41d23ea296d2ed5f7dadb18732vim-minimal-7.2.411-1.8.el6.i686.rpm7ef02e77d04292597e40138c8ecb17131abd17ec405e7e2d731b2d9eb0181b29SLBA-2012:0455-1This update fixes the following bugs: * When creating a user account in Lightweight Directory Access Protocol (LDAP), the libuser library used the value of the "gecos" attribute as the default value of the "cn" attribute. When the "gecos" attribute was empty, this made the value of "cn" invalid, and the creation of the user account failed. With this update, the user name of the account is stored in the "cn" attribute if the "gecos" attribute is empty, thus allowing successful creation of the user account. * When populating a home directory by copying files from the /etc/skel directory, libuser ignored the "set user-id" and "set group-id" flags. This made it impossible to set up group-shared directories in a home directory. With this update, the "set user-id" and "set group-id" flags are preserved. * Previously, when searching for the user or group account information in files of certain sizes, the libuser library could terminate unexpectedly with a segmentation fault. A patch has been applied to address this issue, and crashes no longer occur in the aforementioned scenario.Scientific Linux FermiScientific Linux Fermi 6libuser-0.56.13-5.el6.i386.rpmcf68bc04a3aee152b1c6261293a1b254654ab90c3add3ae9c614e33f35d7aa53libuser-devel-0.56.13-5.el6.i386.rpmf58945ca851700b95291fed88fddcf9c1491a0daa6052be67f9e2990c5b08890libuser-python-0.56.13-5.el6.i386.rpmaf6d4fb4c6cbca32d2cd911bb5bed2aefe0055a85d4dcf5da8a70921ecd870f6SLBA-2012:0456-1This update fixes the following bugs: * Prior to this update, the expect(1) manual page was not formatted properly. As a result, the content of the manual page was not readable. The formatting has been corrected to ensure easy readability. * Prior to this update, the passmass script did not call the "su" binary with the full path (/bin/su). The passmass script has been modified to call "/bin/su" rather than "su", which is more secure. * Due to incorrect characters matching, applications created by the autoexpect utility could terminate unexpectedly with a segmentation fault. With this update, the number of characters is matched correctly and applications created by autoexpect run successfully. * Previously, the expect-devel subpackage contained a symbolic link to the expect library, which led to an unnecessary dependency. With this update, the link is located in the expect package.Scientific Linux FermiScientific Linux Fermi 6expect-5.44.1.15-4.el6.i686.rpm2577eecdd92bc22e5c101a32a22c3e799728146b63c938d0a347e6b63bb652e8expect-devel-5.44.1.15-4.el6.i686.rpm068c893064be66ac77e15e739f5b06c44fc7715a11f39e7a25fc6041853d0231expectk-5.44.1.15-4.el6.i686.rpm459d726d5fe8d859c1a7fbebd408682c93e2929ebf92061a217e499314e1556dSLBA-2012:0461-1This update fixes the following bugs: * Prior to this update, it was not possible to instruct the "top" utility by using command-line options to sort processes according to the memory consumption. This was possible only in interactive mode (by using the "Shift+M" key combination). This update introduces a new command-line option, "-a", that instructs the "top" utility to sort processes according to the memory consumption in batch mode. Note that in Scientific Linux 5, this functionality is provided by the "-m" option whereas the same option is used for another feature in Scientific Linux 6. * Previously, the CPULOOP variable effected only the statistical lines representing the particular CPU cores. With this update, the "top" command additionally applies the CPULOOP variable on the CPU summary line (that represents all the CPU cores). * Prior to this update, no development package was generated for procps. With this update, a separate procps-devel package containing a set of procps development headers is available.Scientific Linux FermiScientific Linux Fermi 6procps-3.2.8-23.el6.i686.rpm1c2b872e0b80769e7c7ef0a1581b09a19ae231837f58719dfbb88d64ba6725f0procps-devel-3.2.8-23.el6.i686.rpm7aa20e393312af19a7cab7fd195e2e4bfc6675066bd2d195831331a50fdebaf8SLBA-2012:0462-1This update fixes the following bug: * Previously, the build system configuration files included in the libtar package were incompatible with the way the rpmbuild tool extracts debugging information from the binaries installed to the rpm build root during the build of a package. As a consequence, the libtar-debuginfo package did not contain debugging information. A patch has been applied to address this issue, and the libtar-debuginfo package now contains the appropriate content.Scientific Linux FermiScientific Linux Fermi 6libtar-1.2.11-17.el6.i686.rpma75d007c2f559a407f6a7cdd3de90b6759b733237b622ea6a5b578b5981be5b2libtar-devel-1.2.11-17.el6.i686.rpm6711215eb2514bc8d14a990c3ccadad1b54bbadc867535f310ef338e2f297c0aSLBA-2012:0463-1This update fixes the following bug: Prior to this update, the mansupfr.tar.bz2 tarball that contains supplemental French manual pages, was not correctly extracted. As a consequence, some manual pages were not installed. With this update, supplemental manual pages are added back when no known file conflicts appear, and the supplemental French manual pages are again available. All users, requiring localized manual pages in French, are advised to upgrade to this updated package, which fixes this bug.Scientific Linux FermiScientific Linux Fermi 6man-pages-fr-3.23-9.el6.noarch.rpmfa74528a4e0204cb1344b917d52b3861ab4ff4b37221b42b4b6f60a7f1c906e9SLBA-2012:0464-1This update fixes the following bug: * A bug introduced by fixing the CVE-2011-1777 security vulnerability broke functionality of the ISO 9660 CD-ROM image reader and prevented users from opening ISO 9660 images. A patch has been applied to restore full functionality.Scientific Linux FermiScientific Linux Fermi 6libarchive-2.8.3-4.el6_2.i686.rpm57faa0dda8a5fa703873931fd0864beb5f04581ce9edc2765378ea6c5b923d52libarchive-devel-2.8.3-4.el6_2.i686.rpm448b8c97afa2f206e93bcb0ace752a5866724aa11b97013d4f88805d9254e54eSLBA-2012:0470-1This update fixes the following bug: * Previously, Squid did not pass the ident value to a URL rewriter that was configured using the "url_rewrite_program" directive. As a consequence, the URL rewriter received the dash character ("-") as the user value instead of the correct user name. The underlying source code has been modified so that the URL rewriter now receives the correct user name in the described scenario. After installing this update, the squid service will be restarted automatically.Scientific Linux FermiScientific Linux Fermi 6squid-3.1.10-1.el6_2.3.i686.rpm3b1bba8faea3703c624b2f90fd96687eb3512e35c88aa2d3742bd9efad6187daSLBA-2012:0472-1This update fixes the following bugs: * The ESC utility did not start when the latest 10 series release of the XULRunner runtime environment was installed on the system. This update includes necessary changes to ensure that ESC works as expected with the latest version of XULRunner. * After removing and replacing an enrolled token, ESC could terminate unexpectedly followed by a traceback. A patch has been applied to address this issue and ESC now displays the enrolled smart card details as expected.Scientific Linux FermiScientific Linux Fermi 6esc-1.1.0-24.el6_2.2.i686.rpmaac3c2374c7ee82b4321a9b9d0b1b8a6bf7c9f3072f9a06856722af8c6d41c82SLBA-2012:0473-1This update fixes the following bugs: * When creating a sparse file that was zero blocks long, the "rsync --sparse" command did not properly truncate the sparse file at the end of the copy transaction. As a consequence, the file size was bigger than expected. With this update, the underlying source code has been modified to ensure proper truncating of such files. * Previously, the rsync utility could terminate unexpectedly with the following error during a data transfer: Inflate (token) returned -5 This happened if the block size was exactly of the size of the CHUNK_SIZE constant. The output buffer was completely filled after calling the inflate() function for the first time, and it was therefore not possible to obtain remaining buffer output when calling inflate() the next time. The Z_BUF_ERROR constant is now handled properly, and so prevents rsync from terminating in the described scenario.Scientific Linux FermiScientific Linux Fermi 6rsync-3.0.6-9.el6.i686.rpm9901f25b9c5d85d356ab8d86334a97d57aff96ceb2e7c3be4e9a4ec3c809d3e0SLBA-2012:0479-2This update fixes the following bug: * When running kdump after a kernel crash on the system using the ext4 file systems, the kdump initrd could have been created with the zero byte size. This happened because the system waits for several seconds before writing the changes to the disk when using the ext4 file system. Consequently, the kdump initial root file system (rootfs) could not have been mounted and kdump failed. This update modifies kexec-tools to perform the sync operations after creating the initrd. This ensures that initrd is properly written to the disk before trying to mount rootfs so that kdump now successfully proceeds and captures a core dump. In addition, this update adds the following enhancement: * The kdump utility does not support Xen para-virtualized (PV) drivers on Hardware Virtualized Machine (HVM) guests in Scientific Linux 6. Therefore, kdump failed to start if the guest had loaded PV drivers. This update modifies underlying code to allow kdump to start without PV drivers on HVM guests configured with PV drivers.Scientific Linux FermiScientific Linux Fermi 6kexec-tools-2.0.0-209.el6_2.5.i686.rpm29357f8653bd3e0213ed4b5a30d9c185727b818bffad60ec24d0561f97a0c9f7SLBA-2012:0483-1This update fixes the following bug: * Previously, the fence_vmware_soap fence agent did not expose the full path to a virtual machine that is required for fencing. With this update, fence_vmware_soap has been modified to support identification of virtual machines as expected.Scientific Linux FermiScientific Linux Fermi 6fence-agents-3.1.5-10.el6_2.2.i686.rpm640d5a1416a3cfe9190d77c6a0c9e7e707a9662144f761445618745bc060fcabSLBA-2012:0485-1This update fixes the following bug: * Previously, the libvirt-qpid plug-in was linked directly against Qpid libraries instead of being linked only against QMFv2 libraries. As a consequence, newer versions of Qpid libraries could not be used with the libvirt-qpid plug-in. This update modifies the appropriate makefile so that libvirt-qpid is no longer linked directly against the Qpid libraries. The libvirt-qpid plug-in does not have to be re-linked to work with the newer Qpid libraries.Scientific Linux FermiScientific Linux Fermi 6fence-virt-0.2.3-5.1.el6_2.i686.rpm3417f2ef073b19b997c0481d03f90a93cbf689ce05ee007df4ef0dc002a6ccc9fence-virtd-0.2.3-5.1.el6_2.i686.rpm5aeb9e988ab2b29eaebe65efe06c0e0e03637ebc8d686c2f60f6a95290ebedb3fence-virtd-checkpoint-0.2.3-5.1.el6_2.i686.rpma0293041d46e154ca12fdb6157924d2e2d9b798b701ccb28c5aeb50eb66b555dfence-virtd-libvirt-0.2.3-5.1.el6_2.i686.rpmf702dd8ed7a0ecfc565ced8cdc79aaa288df7e48f9926a3212e803ed819978abfence-virtd-libvirt-qpid-0.2.3-5.1.el6_2.i686.rpmcef8e9ca0f1e2dd62231e9b6de69c9f42aaf77e62a4d13df3eaa8cfcefdbb0cbfence-virtd-multicast-0.2.3-5.1.el6_2.i686.rpmb1a0369a1630b873ec52716807094ae95b15c3e27df35c6255dffe2b84408b49fence-virtd-serial-0.2.3-5.1.el6_2.i686.rpmad644b4250ee776884f66a8c39488ddff8dd1085bea543fd2e68f32e5f503641SLBA-2012:0500-3This update fixes the following bug: * When a live migration of a guest was terminated abruptly (using the Ctrl+C key combination), the libvirt daemon could have failed to accept any future migration request of that guest with the following error message: error: Timed out during operation: cannot acquire state change lock This update adds support for registering cleanup callbacks which are called for a domain when a connection is closed. The migration API is more robust to failures, and if a migration process is terminated, it can be restarted on a subsequent command. After installing these updated packages, libvirtd must be restarted. Use the "service libvirtd restart" command for this update to take effect.Scientific Linux FermitrueScientific Linux Fermi 6libvirt-0.9.4-23.el6_2.8.i686.rpm5ab7082975096aabe5e38e606f27564f29e2473a18c6627a5172accc300288f1libvirt-client-0.9.4-23.el6_2.8.i686.rpm89c60b43a38039ead4928aa70f02c15a53817c36d458ab2a4574418414e90ef8libvirt-devel-0.9.4-23.el6_2.8.i686.rpm9cb160efe353f3c92c01cf956b0b1300e84d5c54f3a93881a30d636b711e3a75libvirt-lock-sanlock-0.9.4-23.el6_2.8.i686.rpma3f978658afaf323bd125c6f3ab7ccfefbfc494a8454b87a30a5840c469c8ee4libvirt-python-0.9.4-23.el6_2.8.i686.rpmd76976c06a5fd0e6ba90a8deff9eb3cd99139828af117a95c84a0e3c04e673b5SLBA-2012:0502-1This update fixes the following bug: * Device-Mapper Multipath uses certain regular expressions in the built-in device configurations to determine a multipath device so that the correct configuration can be applied to the device. Previously, some regular expressions for the device vendor and product ID were set too broad. As a consequence, some devices could be matched with incorrect device configurations. With this update, the product and vendor regular expressions have been set more strict so that all multipath devices can now be properly configured.Scientific Linux FermiScientific Linux Fermi 6device-mapper-multipath-0.4.9-46.el6_2.2.i686.rpm24a3da98927c86f848cbd6173be6dfc9376f132db34a142a8c296bc6022a3002device-mapper-multipath-libs-0.4.9-46.el6_2.2.i686.rpm6c7f37437747b3fefdda4f6c1f221bbfea09b0c539519fef26f9229a891a2938kpartx-0.4.9-46.el6_2.2.i686.rpmc0f714a5972d0e6988a60c96ce53130485a7eb9de1530473e88c902edf89a81aSLBA-2012:0511-1This update fixes the following bug: * Qpid APIs using the libpidclient and libqpidcommon libraries are not application binary interface (ABI) stable. These dependencies have been removed so that Qpid rebuilds do not affect the matahari packages.Scientific Linux FermiScientific Linux Fermi 6matahari-0.4.4-12.el6_2.i686.rpm21c3d3d1f69af10f14c454f01f02cd149667bc8a6a7477c0349264fc62fd8ee7matahari-agent-lib-0.4.4-12.el6_2.i686.rpm2bf0b4b5b73b69d56fedc8102c179ef4c02e0729a5e9e09ffd2faa4df5130db4matahari-broker-0.4.4-12.el6_2.i686.rpm25b18ca9c43c687a2c12e16cd293bdeeddbf5a60bb006cd1478502b3b33e9af2matahari-consoles-0.4.4-12.el6_2.i686.rpm5851e764d481928677a2c637f361412b41640104e75870adaeb051325f601c72matahari-devel-0.4.4-12.el6_2.i686.rpm677fc4a02e1da651612f38129904a5e04493b3a51012324a9bb0222fe9018ce8matahari-host-0.4.4-12.el6_2.i686.rpm430bf65e21afd35a254a3ea96c78ea6b60587fe2fcb4782af17eea593c6c9ddbmatahari-lib-0.4.4-12.el6_2.i686.rpm5197f468ada2c9169b5cd8f76ef64e422cae204b690e7f1dc913e4ecbf6f9e7bmatahari-network-0.4.4-12.el6_2.i686.rpmfc9f7d2f955cb50fb43533707d8b008054773434083ecf64e6f4f3f5c18ef051matahari-service-0.4.4-12.el6_2.i686.rpm3bc4a25fb708f7e86a5f583b4ef2b338ea9bd078212db0be769eceac6b45ac9ematahari-sysconfig-0.4.4-12.el6_2.i686.rpm1806759091b9522e39ec48958e1bde10444b963c7644754e09133f98eb460c72SLBA-2012:0512-1This update fixes the following bug: * Previously, the aide utility incorrectly initialized the gcrypt library. This consequently prevented aide to initialize its database if the system was running in FIPS-compliant mode. The initialization routine has been corrected, and along with an extension to the libgcrypt's API introduced in the SLEA-2012:0486 advisory, aide now initializes its database as expected if run in a FIPS-compliant way.Scientific Linux FermiScientific Linux Fermi 6aide-0.14-3.el6_2.2.i686.rpm4011135caa4299f40a6c8da2862b7944a1eb14de4a3d13c56e27872c05605c88SLBA-2012:0525-1This update fixes the following bug: * Qpid APIs using the libpidclient and libpidcommon libraries are not application binary interface (ABI) stable. These dependencies have been removed so that Qpid rebuilds do not affect the libvirt-qmf packages.Scientific Linux FermiScientific Linux Fermi 6libvirt-qmf-0.3.0-7.el6_2.i686.rpma6d29ec1357a0fa00fe2184f25a1339d9d820c4b80618e1c08409fd3228bd28bSLBA-2012:0536-1This update fixes the following bug: * Previously, the underlying library of corosync did not delete temporary buffers used for Inter-Process Communication (IPC) that are stored in the /dev/shm shared memory file system. Therefore, if the user without proper privileges attempted to establish an IPC connection, the attempt failed with an error message as expected but memory allocated for temporary buffers was not released. This could eventually result in /dev/shm being fully used and Denial of Service. This update modifies the coroipcc library to let applications delete temporary buffers if the buffers were not deleted by the corosync server. The /dev/shm file system is no longer cluttered with needless data in this scenario and IPC connections can be established as expected.Scientific Linux FermiScientific Linux Fermi 6corosync-1.4.1-4.el6_2.2.i686.rpmb8bf05baac7768c15a26dc8f73b1243c94790e93141218a42cc07fb37ce3a141corosynclib-1.4.1-4.el6_2.2.i686.rpm75d3a860704aaf4cd941f9ed5897d5e29513a2858524445827e085017f8ddf16corosynclib-devel-1.4.1-4.el6_2.2.i686.rpm2d89b346ef4937c137a87e596f1317e361b6916822a759aeaae9e750e25502d4SLBA-2012:0541-1These updated openswan packages include numerous bug fixes. Documentation of these changes will be available shortly in the Technical Notes document:Scientific Linux FermiScientific Linux Fermi 6openswan-2.6.32-12.el6_2.i686.rpm25ecb98788ef9bb9836d8d2a82b18f4ae882ee59cfbbb9589a6e060cabafa5d3openswan-doc-2.6.32-12.el6_2.i686.rpmb53a4b86c71f434c99ab668440e044b10bf11958ce5c488d85c9e70a8b2134d5SLBA-2012:0548-1This update fixes the following bug: * Previously, fencing a Scientific Linux cluster node with the fence_soap_vmware fence agent running in a virtual machine on VMWare could fail with the following error message: KeyError: 'config.uuid' This was because the fence agent was not able to work with more than one hundred machines in a cluster. With this update, the underlying source code has been modified to support fencing of such clusters.Scientific Linux FermiScientific Linux Fermi 6fence-agents-3.1.5-10.el6_2.3.i686.rpm58023ca52412f155dcd44383d0f6c4b7964b3dc98848b9db2cabb5e6e5966244SLBA-2012:0550-1This update fixes the following bug: * When executing either the "mdir" or "mls" command, the FTP client stores results returned by the server in a specified local file. Previously, when opening the file, the client did not ensure that the mode value it passed to the fopen() function was properly null-terminated. This could cause unpredictable failures. This update ensures that the value is properly null- terminated so that the failures no longer occur in this scenario.Scientific Linux FermiScientific Linux Fermi 6krb5-appl-clients-1.0.1-7.el6_2.1.i686.rpm07895fa517b4bf06612294c38f14618a43c75a7815cbdc2f237dce7e1247d357krb5-appl-servers-1.0.1-7.el6_2.1.i686.rpm917cd85497c46cb8f32a071d1c6ea458784a66d54efcc30cfb93fcc55a35180aSLBA-2012:0552-1This update fixes the following bug: * The irqbalance daemon assigns each interrupt source in the system to a "class", which represents the type of the device (for example Networking, Storage or Media). Previously, irqbalance used the IRQ handler names from the /proc/interrupts file to decide the source class, which caused irqbalance to not recognize network interrupts correctly. As a consequence, systems using biosdevname NIC naming did not have their hardware interrupts distributed and pinned as expected. With this update, the device classification mechanism has been improved, and so ensures a better interrupts distribution.Scientific Linux FermiScientific Linux Fermi 6irqbalance-0.55-30.el6_2.i686.rpmda5389da7bdef65364b7b7fe2f5d5b96204bdb7f6383de8d2173b4f3f8f97caaSLBA-2012:0555-1This update fixes the following bug: * Running the "hostname" command with the "-A, --all-fqdns" or "-I, --all-ip- addresses" option to display all Fully Qualified Domain Names (FQDNs) or network addresses of the host failed with the "Hostname lookup failure" error if the machine's host name was not resolved in DNS. With this update, these options are no longer dependent on name resolution; all FQDNs and network addresses of the host are now displayed as expected even if the host name cannot be resolved or is not included in the /etc/hosts file.Scientific Linux FermiScientific Linux Fermi 6net-tools-1.60-110.el6_2.i686.rpm5234a7c6bcc941aa9cc36e590061d3a7ae87b2ed7dbcfddbfdf6e12c3577bd67SLBA-2012:0556-1This update fixes the following bugs: * An error in the parsing of the "brctl" command's output caused the sosreport utility to log errors on systems with bridged network configurations. The "sosreport" command printed a Python backtrace and certain bridge configuration information was not collected from the system. This update corrects the parsing of the "brctl" command's output so that no backtrace is printed and full bridge configuration data is collected from the system. * Previously, sos used a single fixed path to collect all libvirt logs in one directory. On certain releases of RHEV, the libvirtd.log file could be located in the parent directory and, therefore, the libvirtd.log file was not collected on such systems. The sosreport utility now uses a wildcard character that matches both possible locations for the file. The livirtd.log file is now collected reliably on all supported versions of RHEV. This update also adds the following enhancement: * This update adds a new plug-in that is necessary to collect the requisite logs for the Gluster product. Information is collected from the files located in the /etc/glusterd/ and /var/log/glusterfs/ directories.Scientific Linux FermiScientific Linux Fermi 6sos-2.2-17.el6_2.3.noarch.rpm39f4687bc185afcf47ba794a85ea876d419939800366e28510f598f13df8ea40SLBA-2012:0557-1This update fixes the following bug: * Squid used as a transparent proxy can only handle the HTTP protocol. Previously, when using Squid as a transparent proxy, it was possible to define a URL in which the access protocol contained the asterisk character (*) or an unknown protocol namespace URI (Uniform Resource Identifier). As a consequence, an "Invalid URL" error message was logged in the access.log file during reload time. This update ensures that "http://" is always used in transparent proxy URLs, and error message is no longer logged in this scenario.Scientific Linux FermiScientific Linux Fermi 6squid-3.1.10-1.el6_2.4.i686.rpma79a6a1c4ebe65e93255ddd921f3483a1d3c793b24d6cee00a8d0b74a0cc4058SLBA-2012:0561-1This update fixes the following bug: * When a SIGCHLD signal was received in job control mode and a handler for the signal was installed, Bash called the trap handler within the signal handler itself. This was unsafe and could cause Bash to enter a deadlock or to terminate unexpectedly with a segmentation fault due to memory corruption. With this update, the trap handler is now called outside of the signal handler, and Bash no longer enters a deadlock, neither crashes in this scenario.Scientific Linux FermiScientific Linux Fermi 6bash-4.1.2-9.el6_2.i686.rpm1bdad987fc79de822bb98396b749a869c819578f249335145fc8dea381a8c569bash-doc-4.1.2-9.el6_2.i686.rpm79aa05b8e526081bf34d41e1da5a60d6e08874ecd292deee44f4cf1ef441303bSLBA-2012:0565-1This update fixes the following bugs: * A race condition in the signal handling code caused the sudo process to become unresponsive after receiving the SIGCHLD signal. This update modifies the signal handling to prevent the race condition, which ensures that the sudo process no longer hangs under these circumstances. * The "-l" option is used to list allowed and forbidden commands for the invoking user or for the user specified by the "-U" option. However, previously, the getgrouplist() function incorrectly checked the invoker's group membership instead of the membership of the specified user. Consequently, using the "sudo" command with both the "-l" and "-U" options listed privileges granted to any group the invoker was a member of. The getgrouplist() function has been fixed to properly check the group membership of the intended user rather than checking the invoker's membership. This ensures that the required output is listed when using the "-l" and "-U options.Scientific Linux FermiScientific Linux Fermi 6sudo-1.7.4p5-9.el6_2.i686.rpmcc1ce7651ee833fc5a547209c074089317193c9f137ac6cd224a809d04596c99SLBA-2012:0566-1This update fixes the following bugs: * Previously, glibc looked for an error condition in the wrong location and failed to process a second response buffer in the gaih_getanswer() function. As a consequence, the getaddrinfo() function could not properly return all addresses. This update fixes an incorrect error test condition in gaih_getanswer() so that glibc now correctly parses the second response buffer. The getaddrinfo() function now correctly returns all addresses. * Previously, if the nscd daemon received a CNAME (Canonical Name) record as a response to a DNS (Domain Name System) query, the cached DNS entry adopted the TTL (Time to Live) value of the underlying "A" or "AAAA" response. This caused the nscd daemon to wait for an unexpectedly long time before reloading the DNS entry. With this update, nscd uses the shortest TTL from the response as the TTL value for the entire record. DNS entries are reloaded as expected in this scenario.Scientific Linux FermiScientific Linux Fermi 6glibc-2.12-1.47.el6_2.12.i686.rpm058fa0a882fa5dfe07170449adf7ee2ae2a657b7f9e154c3382301ad2277bcceglibc-common-2.12-1.47.el6_2.12.i686.rpm24d2bb387bcd2c06c962e6d9dd67076895665e8c6af69bc9951a569e9c95b23aglibc-devel-2.12-1.47.el6_2.12.i686.rpm1c10f85f5bc2ec1bbf2ef63ede2b7d2c7146af6be2a67751455c420b0ebf3d57glibc-headers-2.12-1.47.el6_2.12.i686.rpm34b87eed96a6a7c275a61ca34b1ac2857e7cb3429c2f41749b331591886b1888glibc-static-2.12-1.47.el6_2.12.i686.rpm5b7f9358db909abbd46e955fd1ccfceaa2a5f6a44e6848f5b9704393c6825fa5glibc-utils-2.12-1.47.el6_2.12.i686.rpm8028af6693786e745da885113503c7ff5178406fda6ff1ea3214caa066e58adanscd-2.12-1.47.el6_2.12.i686.rpmb72e3fe57e3428b6ebf95048bb5c0a6fbcfc55197ac073c7294fc7596de70ea5SLBA-2012:0673-1This update fixes the following bug: * Previously, the nfsd daemon was started before the mountd daemon. However, nfsd uses mountd to validate file handles. Therefore, if an existing NFS client sent requests to the NFS server when nfsd was started, the client received the ESTALE error causing client applications to fail. This update changes the startup order of the daemons: the mountd daemon is now started first so that it can be correctly used by nfsd, and the client no longer receives the ESTALE error in this scenario.Scientific Linux FermiScientific Linux Fermi 6nfs-utils-1.2.3-15.el6_2.1.i686.rpma2084469a0d6cccd5d9b93caf448b5627409e47b04d75dcbd2a4bdc3631c17ddSLBA-2012:0686-1* After resuming the system or re-enabling the display, an icon could appear in the notification area with an erroneous tooltip that read "Session active, not inhibited, screen idle. If you see this test, your display server is broken and you should notify your distributor." and included a URL to an external web page. This error message was incorrect, had no effect on the system and could be safely ignored. In addition, linking to an external URL from the notification and status area is unwanted. To prevent this, the icon is no longer used for debugging idle problems. gnome-power-manager packages, which fix this bug.Scientific Linux FermitrueScientific Linux Fermi 6gnome-power-manager-2.28.3-6.el6_2.i686.rpmd4706152377549d02f2e34f308c14407fc30d4630f931ac4acd89cfb3e6eb318gnome-power-manager-extra-2.28.3-6.el6_2.i686.rpmf3b26591ad5a3675a437a865a2725a126367cf11420c3e6a7e445c9b36c13479SLBA-2012:0687-1This update fixes the following bugs: * When using multiple shells simultaneously, the command history is saved from all shells in one ".history" file. Previously, when running multiple csh scripts at the same time, lines in the ".history" file could be reordered with different timestamps or some of the entries could disappear, rendering the ".history" file corrupted. As a consequence, start-up scripts could be slowed down. This update implements file locking mechanism that uses shared readers and an exclusive writer to prevent the ".history" file from being corrupted. * Previously, the "anyerror" variable could be selected to set the tcsh exit value behavior. However, "anyerror" is a shell variable and therefore was not propagated to subshells, and could not globally affect csh scripts. This update modifies the tcsh exit value behavior to the default behavior of csh: the new "tcsh_posix_status" variable is now available instead of "anyerror" to allow behavior similar to the POSIX standard.Scientific Linux FermiScientific Linux Fermi 6tcsh-6.17-19.el6_2.i686.rpm792db9a5924f3fb4b448607940677fbc3ef8ded4e4f5c673de22749610e4e6e8SLBA-2012:0703-1This update fixes the following bug: * Due to libatasmart incorrectly calculating the number of bad sectors, certain tools, for example gnome-disk-utility, could erroneously report hard disks with Self-Monitoring, Analysis and Reporting Technology (S.M.A.R.T) as failing when logging in GNOME. This update corrects the bad sector calculation, which ensures that tools such as gnome-disk-utility do not report false positive warnings in this scenario.Scientific Linux FermiScientific Linux Fermi 6libatasmart-0.17-4.el6_2.i686.rpmf1760e5bedccba5d37918d8faa507cab3f1634dabeedbb0e445c2df85a69f4b8libatasmart-devel-0.17-4.el6_2.i686.rpm1eb12703eca948323d691cee06c2d4e0095d0eb58ac7e1680254f458d76eb39aSLBA-2012:0708-1This update fixes the following bug: * Previously, the idled daemon incorrectly used signals for communication with the imapd daemon. This could cause a user's mailbox to become unresponsive. To prevent this problem, idled no longer uses signals to communicate with imapd; the AF_UNIX datagram sockets are now used instead.Scientific Linux FermiScientific Linux Fermi 6cyrus-imapd-2.3.16-6.el6_2.5.i686.rpm1f639f7f1231463ac01475e28c72a651a8c772a48c9cc2d3df2d7e6dcd43a457cyrus-imapd-devel-2.3.16-6.el6_2.5.i686.rpmb7e2da64f7a426eee10c24389e17d8260986f16f30f7dba8d72e87123d54c8fecyrus-imapd-utils-2.3.16-6.el6_2.5.i686.rpma9cc721c30c0ad20d715ceb0d22a5b20c10d5a0b7426971086f558780a09d736SLBA-2012:0727-1This update fixes the following bugs: * Due to a locking problem in one of the routines involved in the migration process, migrations could become unresponsive, for example, when repeatedly migrating a domain between two nodes. The locking problem has been fixed with this update, and migrating a guest is now successful in this scenario. * Closing a file descriptor multiple times could, under certain circumstances, lead to a failure to execute the qemu-kvm binary. As a consequence, a guest failed to start. A patch has been applied to address this issue, so that the guest now starts successfully.Scientific Linux FermiScientific Linux Fermi 6libvirt-0.9.4-23.el6_2.9.i686.rpmf71172a7ed3b2c8ff1e559a185746ee27b366a5dd96e443ecbdc5b7b35ffe208libvirt-client-0.9.4-23.el6_2.9.i686.rpm7c1f7183d5874030f0581528ccd040aaf2ac3c36b3248ed8cd46930fc375f522libvirt-devel-0.9.4-23.el6_2.9.i686.rpm6403234b9fd5481f351778e32aa718dcc878a75eb58fd828f53b608a09fb21d2libvirt-lock-sanlock-0.9.4-23.el6_2.9.i686.rpm3924cc58571595ac181bdb2b40dbf2d97ec1b56b4ad063a27c0cf8a2de0a6fc5libvirt-python-0.9.4-23.el6_2.9.i686.rpmad8ff260f165c4757eaf766bd80589b23cd79426594220bb74a0ff2f18f0b10dSLBA-2012:0728-1This update fixes the following bug: * Previously, dcbtool commands could, under certain circumstances, fail to enable the Fibre Channel over Ethernet (FCoE) application type-length-values (TLV) for a selected interface during the installation process. Consequently, various important features might have not been enabled (for example priority flow control, or PFC) by the Data Center Bridging eXchange (DCBX) peer. To prevent such problems, application-specific parameters (such as the FCoE application TLV) in DCBX are now enabled by default.Scientific Linux FermiScientific Linux Fermi 6lldpad-0.9.43-13.el6_2.1.i686.rpm176ba7fc0d793ab4b6797c3c10a344c444368573d936cb36ff3825292db1e525lldpad-devel-0.9.43-13.el6_2.1.i686.rpme47c0632c56a6ff4d3832b938d46263e88a8f46d550084c01645b4b6ec87e34fSLBA-2012:0737-1This update fixes the following bug: * Previously, it was not possible to activate or deactivate debug logs at runtime due to memory corruption in the objdb structure. With this update, the debug logging can now be activated or deactivated on runtime, for example with the command "corosync-objctl -w logging.debug=off".Scientific Linux FermiScientific Linux Fermi 6corosync-1.4.1-4.el6_2.3.i686.rpm260e3c60dac2718ff82261d0ae6f724fd5db5a0522ef205f19dac65f846aa7e8corosynclib-1.4.1-4.el6_2.3.i686.rpm29727d269b5baf6d2d9b49cd21910c68b4f3ec5b7189848ea94f8f7bb895fbe9corosynclib-devel-1.4.1-4.el6_2.3.i686.rpmb11f5111352a037cccf9205dc5c50a351235efa07a28d489e1804e82b525dec0SLBA-2012:0740-1This update fixes the following bug: * Previously, a bug in the handling of IPv6 sockets was present in the apr_mcast_hops() function. This bug could have prevented applications from successfully using multicast with IPv6 sockets. With this update, this bug has been fixed so that the applications now operate correctly.Scientific Linux FermiScientific Linux Fermi 6apr-1.3.9-5.el6_2.i686.rpm2c98ce95ca1b2d83f66112d8f58f9ff7a3fced8d042dd9aa1cb5fc9339d80e73apr-devel-1.3.9-5.el6_2.i686.rpmdfe4bd499921430eaa1382de87ee28d9d020804f10a313bd0bc0971d6cb09e01SLEA-2011:0515-1This updated libgcrypt package includes the following enhancement: * In FIPS mode, libgcrypt can now use a configurable source of RNG (Random Number Generator) seed. On systems with sufficient amount of entropy gathered from the kernel entropy sources or systems with hardware RNGs, the system administrator can add the "/etc/gcrypt/rngseed" symbolic link pointing to the "/dev/random" device node or a hardware RNG device. This symbolic link will be then opened and read by the libgcrypt library to initialize its RNG.Scientific Linux FermiScientific Linux Fermi 6libgcrypt-1.4.5-5.el6_1.1.i686.rpm1483efd9ee8c96572c78b120c1e089b581d2fde2dd50849a37b4902613bca6d0libgcrypt-devel-1.4.5-5.el6_1.1.i686.rpm24a5d25d05c5280c2942162f285b76ad3fc6a98c04b4e70ed3dc45b700db30eeSLEA-2011:0846-1This update adds the following enhancement: * With this update, the libgcrypt API for the DSA algorithm has been enhanced to allow for presetting the prime (P) and the subprime (Q) parameters when generating the base (G) parameter. This is necessary for the algorithm correctness validation according to the FIPS-186-3 standard.Scientific Linux FermiScientific Linux Fermi 6libgcrypt-1.4.5-5.el6_1.2.i686.rpm585ad89840e1cb784508ea591a3a0d1ee23aac635fb6c30e374307689c90f49clibgcrypt-devel-1.4.5-5.el6_1.2.i686.rpm412f52da275dc3270a824e3848920c37b30c4ee4897bffe2f2fd389c06713f42SLEA-2011:0868-1This update adds the following enhancements: * With this update, the openssl API for the DSA algorithm has been enhanced to allow for presetting the prime (P) and the subprime (Q) parameters when generating the base (G) parameter. This is necessary for the algorithm correctness validation according to the FIPS-186-3 standard. * With this update, the implementation of the AES encryption algorithm with the support for AES-NI processor instructions is now enabled also in the FIPS mode.Scientific Linux FermiScientific Linux Fermi 6openssl-1.0.0-10.el6_1.4.i686.rpm93e6158b187b520b8ec7bf33ec43d0060f4ec6c95a47b5bc63a2c5b5bf345ae1openssl-devel-1.0.0-10.el6_1.4.i686.rpmdb16a6fb27995497e06d2b25aee56587ddf4e968e94fe6dc5921eac0c4f2cbd3openssl-perl-1.0.0-10.el6_1.4.i686.rpm099c47da2ec074cfa349f5ddf65a4e8d336386d02aef470e8ff46c89cecfbb28openssl-static-1.0.0-10.el6_1.4.i686.rpm8b75498ef4db23a86c473f448581620a459b93b604fd7758053a9276e0998027SLEA-2011:0873-1This update fixes the following bug: * Prior to this update, the documentation included in the perl-NetAddr-IP module did not contain a correct description with regard to the addition of a constant to an IP address. The problem has been resolved in this update by correcting the respective part of the documentation.Scientific Linux FermiScientific Linux Fermi 6perl-NetAddr-IP-4.027-7.el6.i686.rpma906584f08c1535e778fb5d98bcb4c36b98ea491a6c8d045d3eddda36b2516efSLEA-2011:0915-1This update adds the following enhancement: * On Indian keyboard layouts, users were unable to enter the newly added Rupee Unicode symbol (U+20B9). With this update, the symbol has been added as a "Alt_Gr+4" keyboard shortcut in the InScript (Indian Script) keymap, where Alt_Gr is the right Alt key.Scientific Linux FermiScientific Linux Fermi 6m17n-contrib-1.1.10-4.el6_1.1.noarch.rpmb7e55f917d6294b4031ad437177d3751c99e36364fee72b82ed23e2440ba530dm17n-contrib-assamese-1.1.10-4.el6_1.1.noarch.rpm059c1ce2498fd22e8391ddae62e59a93d7aabdaaae3499ab02156013cd264c16m17n-contrib-bengali-1.1.10-4.el6_1.1.noarch.rpmf9c2409988db0779d411660f67a2a35c1f73d331537e99badd8d8e9f5fafd951m17n-contrib-chinese-1.1.10-4.el6_1.1.noarch.rpm8db18e21dc112c703fd3d5e905580100bd55fce0e1952e3edb136a45c0634355m17n-contrib-czech-1.1.10-4.el6_1.1.noarch.rpmc0e6d957d02acf8be80eb6b3f8a73fff85a25c163726203ac01036cb23b81fe4m17n-contrib-esperanto-1.1.10-4.el6_1.1.noarch.rpm29a0a807c4e83908ba86a6be0ffd01c7a43ca1862108a74dabc3bd2eb236c671m17n-contrib-gujarati-1.1.10-4.el6_1.1.noarch.rpme6e1526f94f3fa781c34c05f18b9f9edcb7cc4803661eac4dbb1edb1dccccba7m17n-contrib-hindi-1.1.10-4.el6_1.1.noarch.rpm64d2be093db6d4315cdd116c969c0a39a4489bca118399799a0e179deb1d52cem17n-contrib-kannada-1.1.10-4.el6_1.1.noarch.rpm4edfe422889d43f354967ec113d0666773ed95db83eff1ee0bb2114c4850161cm17n-contrib-kashmiri-1.1.10-4.el6_1.1.noarch.rpma762461c866b7306a35d1efb5363ce3ca23c641a03689cdf55b779177e967ce1m17n-contrib-maithili-1.1.10-4.el6_1.1.noarch.rpma777044fe23901a3606538fbacb6dd71f1d632e45e0c3bcdd567a175b292f0aam17n-contrib-malayalam-1.1.10-4.el6_1.1.noarch.rpmca6e9549fe06c67d6dfb869b1519ffdcf9fc3fd39a1621197859ea2c8ddfffb5m17n-contrib-marathi-1.1.10-4.el6_1.1.noarch.rpm33cf79b07b6d387cd67195e4f600a75ee097689b05aa58a7d332fd098e7a6c8em17n-contrib-nepali-1.1.10-4.el6_1.1.noarch.rpm0be35a1aba0b280162c4a7c4ff40e7b7932d5816b84125a07b497bacc6e741f1m17n-contrib-oriya-1.1.10-4.el6_1.1.noarch.rpm1dcca1e28b33892584a8a957c0f8e47c6de124c55578b3ddb48ed6f04180e9acm17n-contrib-pashto-1.1.10-4.el6_1.1.noarch.rpmd2ae28bd8429386e7c61838d783408c772338d7a0d2fc562f6883319e2ee174am17n-contrib-punjabi-1.1.10-4.el6_1.1.noarch.rpmdc7565f177298b031af1118e99029b9fae6e048ca3f2d80924c176018b74d36cm17n-contrib-russian-1.1.10-4.el6_1.1.noarch.rpmc8effa3e6a5bcade626419c838b0ec86c175f582467b8f806e9ba92fb5f1423em17n-contrib-sindhi-1.1.10-4.el6_1.1.noarch.rpm7d554f6a3df7190cea97613ea49238a8d8d00c16631d157b30b9a82168e0fb6em17n-contrib-sinhala-1.1.10-4.el6_1.1.noarch.rpm49827b8a447b828cc2da6f23c0884988e29d4105b3036bed29d9aed41decf05dm17n-contrib-tai-1.1.10-4.el6_1.1.noarch.rpm0a9c33c7a2d7535efc2c914e8fe4ab6afea2d09fb3cccff80c1ee33927789e6fm17n-contrib-tamil-1.1.10-4.el6_1.1.noarch.rpm85a057656379628027abafbadd224b9ef472ddb4d8393f85fef89a73fcbbf594m17n-contrib-telugu-1.1.10-4.el6_1.1.noarch.rpmfa4324894cd1a67d66937ecdcbef21367dca599c7eab0ad98bf146616a8639efm17n-contrib-urdu-1.1.10-4.el6_1.1.noarch.rpm9ac7139ab7363d085bbc62e294693e07ed802c41b36d1042a64830b5e33f97c2m17n-contrib-vietnamese-1.1.10-4.el6_1.1.noarch.rpm8377ac63f07156c8ebe4644ddabce4ac3ac63127b445c005eb38130fb00e42faSLEA-2011:0916-1This update adds the following enhancement: * On Indian keyboard layouts, users were unable to enter the newly added Rupee Unicode symbol (U+20B9). With this update, the Alt_Gr (right Alt) key is supported, and it is now possible to map the Rupee symbol on a keyboard shortcut such as "Alt_Gr+4".Scientific Linux FermiScientific Linux Fermi 6m17n-lib-1.5.5-2.el6_1.1.i686.rpmf0e20b5f5e4e783df789c626fd2a8c04b27b1ce521cda3b08e55700346ce6949m17n-lib-devel-1.5.5-2.el6_1.1.i686.rpm50c7de758557444f9aa110e20edcc0567f6bcf39aa2dcb76d8ff7cb256aef163SLEA-2011:1119-1This update adds the following enhancement: * The new Unicode character U+20B9 (the Rupee symbol) has been added to Indic keyboard layouts.Scientific Linux FermiScientific Linux Fermi 6xkeyboard-config-1.6-7.el6_1.1.noarch.rpm72e19c1bcb9dc772f0b045f8a983b2a9c8bf0ad1fc45625d8278b97717c4421cSLEA-2011:1134-1The lohit-gujarati-fonts package provides a free Gujarati TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-gujarati-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-gujarati-fonts-2.4.4-4.el6.noarch.rpm511b57f3f1ecd02dec107584a1cb44ac27fac0d250faab179cab38aa6dec0c80SLEA-2011:1135-1The lohit-punjabi-fonts package provides a free Punjabi TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-punjabi-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-punjabi-fonts-2.4.4-2.el6.noarch.rpm33f37db63ab477ae600e104f9fc6e0b1fc22ba0ea646311ea5f6f4cbd91946f1SLEA-2011:1136-1The lohit-malayalam-fonts package provides a free Malayalam TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-malayalam-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-malayalam-fonts-2.4.4-5.el6.noarch.rpm54fc76e6e2241772231a07311ef5c34a42dc1818256f504b2cd760bcd3eba6a9SLEA-2011:1137-1The lohit-oriya-fonts package provides a free Oriya TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-oriya-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-oriya-fonts-2.4.3-6.el6.noarch.rpm6975efb2cb3df5f7bdfb251c0aee2736b1eb61a016e869446b081714df38bc98SLEA-2011:1138-1The lohit-assamese-fonts package provides a free Assamese TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-assamese-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-assamese-fonts-2.4.3-5.el6.noarch.rpmb2c2ac39df2a1e70dfbc7e1704156e1e7f4f513b04ccb27bcd072bb898c4b1b1SLEA-2011:1139-1The lohit-tamil-fonts package provides a free Tamil TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-tamil-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-tamil-fonts-2.4.5-5.el6.noarch.rpmed5c26aee0f1838285cabb8252f449da35b239dd40cf202d88ef3ec9844d500aSLEA-2011:1140-1The lohit-kannada-fonts package provides a free Kannada TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-kannada-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-kannada-fonts-2.4.5-5.el6.noarch.rpm053c46a797743ad33345629e3ecd63acd655bce788f69fc1109e7c68b80036e4SLEA-2011:1141-1The lohit-bengali-fonts package provides a free Bengali TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-bengali-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-bengali-fonts-2.4.3-6.el6.noarch.rpmb808bef304e6e5262e20ecb2ddaae8b5efbb1d920dbb498cb57e20e98c23ab3eSLEA-2011:1142-1The lohit-telugu-fonts package provides a free Telugu TrueType/OpenType font. This update adds the following enhancement: * Unicode 6.0, the most recent major version of the Unicode standard, introduces the Indian Rupee Sign (U+20B9), the new official Indian currency symbol. With this update, the lohit-telugu-fonts package now includes a glyph for this new character.Scientific Linux FermiScientific Linux Fermi 6lohit-telugu-fonts-2.4.5-5.el6.noarch.rpm52aea1ce689a294320bc59712d3382c6715f61dafb4195c8cc7f6b9f95e2e347SLEA-2011:1207-2This update adds the following enhancement: * Prior to this update, it was not possible to set a color of individual labels, scrollbars, entries, textboxes, and scales. With this update, setting a color of the aforementioned GUI elements is now possible.Scientific Linux FermiScientific Linux Fermi 6newt-0.52.11-3.el6.i686.rpm1fc34b0e61793070bd24bbe1b6904966807d822c039a6475c8335cb98e84421enewt-devel-0.52.11-3.el6.i686.rpmfa61d9a4bdeb7817421cf996d1c89e5268837bde6ebb368be5983ada9d3c3323newt-python-0.52.11-3.el6.i686.rpmb64734d253ab47769e6ae0ae15979a73096bf9c581d064c396d24b27b14ea16dnewt-static-0.52.11-3.el6.i686.rpm8676054aaf6e58e7b35cb0759e97611426260e181ad1b98e639fc4cc70456f38SLEA-2011:1276-1This update adds the following enhancements: * To allow administrators easily disable the suspend and hibernate actions on the system, DeviceKit-power now checks the PolicyKit authorization before deciding whether an action can be completed. * This update introduces a new sub-package DeviceKit-power-devel-docs, which contains developer's documentation for DeviceKit-power, so that it is now possible to install the DeviceKit-power-devel package on machines with multiple architectures without file conflicts. DeviceKit-power packages, which add these enhancements.Scientific Linux FermiScientific Linux Fermi 6DeviceKit-power-014-3.el6.i686.rpm34917e911217d2acbd6d4e26ccb19d65888a86526f9a3d30ca9c65ccf5ef25d7DeviceKit-power-devel-014-3.el6.i686.rpm1c16788897972cbd804dc2c3b04bf91ec47634f04931b277e8cc04b1fecce3a1DeviceKit-power-devel-docs-014-3.el6.noarch.rpmfb6049dad5a6c3c5d6c63682a6ffbcda2ea6c9ce9809495a54a32cb1768d87e2SLEA-2011:1335-1OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools. The openldap packages contain configuration files, libraries, and documentation for OpenLDAP. These updated openldap packages add the following enhancement: * In a distributed environment, a Root DN (distinguished name) can be specified instead of a hostname to connect to an OpenLDAP server. The Root DN is used to look up the corresponding hosts using the DNS SRV (Domain Name Server Service) records. Prior to this update, the priority and weight of individual SRV records were ignored and the connection was created to the host in the first SRV record returned by the DNS server. As a consequence, a server in a different geographic location may have been queried, leading to high response times. Servers are now queried according to their priority and weight, which conforms to the RFC 2782 standard.Scientific Linux FermiScientific Linux Fermi 6openldap-2.4.23-15.el6_1.3.i686.rpmbe3f922f933b053977ec99af4edd7503520ae478cead6fb3128a8487bc99fa0copenldap-clients-2.4.23-15.el6_1.3.i686.rpmaa72409294bf51dad01a6b70ccac987f347fc92e925a813cc2ad653b0ee275d7openldap-devel-2.4.23-15.el6_1.3.i686.rpm89c9c9a450bdd2ddeed815ce34148c7f3838a8a5f2edb85083552d71200866b1openldap-servers-2.4.23-15.el6_1.3.i686.rpm31e8089f99d8b239e21b4b4b5becc78fa29b591094291c511e8df82ff33f148dopenldap-servers-sql-2.4.23-15.el6_1.3.i686.rpm9a595a7b6b41133da9b4b276695043b495320004afaeb8867bc234cd9b61d612SLEA-2011:1347-1The kmod-ixgbe packages provide kernel modules for controlling Intel 10 Gigabit PCI Express network devices. This update adds the following enhancement: * The kmod-ixgbe packages contain a temporary driver update released as part of the Scientific Linux Driver Update Program (DUP). The kmod-ixgbe-3.4.8_k-2.el6_1 packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.1: Intel 10 Gigabit PCI ExpressScientific Linux FermiScientific Linux Fermi 6kmod-ixgbe-3.4.8_k-3.el6_1.i686.rpm02b7cb52bf2989c9c3213e8bd35f7d273e7c2b4ba6afd3f01cc55f976b154126SLEA-2011:1348-1The kmod-tg3 packages provide kernel modules for controlling Broadcom Tigon3 Ethernet network devices. This update adds the following enhancement: * The kmod-tg3 packages contain a temporary driver update released as part of the Scientific Linux Driver Update Program (DUP). The kmod-tg3-3.119-1.el6_1 packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.1: Broadcom Tigon3 EthernetScientific Linux FermiScientific Linux Fermi 6kmod-tg3-3.119-2.el6_1.i686.rpm06566d851a96316a70032fbe63344367dc1dab9a6896b82988e6eb9a0fc965fcSLEA-2011:1358-1* This update introduces the new configuration option "SpaceLFOnReceive" and the log format template "RSYSLOG_SysklogdFileFormat". These new features allow users to configure rsyslog to behave like the old sysklogd daemon, available in previous releases.Scientific Linux FermiScientific Linux Fermi 6rsyslog-4.6.2-3.el6_1.4.i686.rpmf94046c8d7342560f40c650e21a6ec8570f93fc1b341b35812296f85d975d3dcrsyslog-gnutls-4.6.2-3.el6_1.4.i686.rpm3a02c1307994cc522cadd827b5da51a8315aaa161b984193ac3fdf8251e61062rsyslog-gssapi-4.6.2-3.el6_1.4.i686.rpma5343fba976e815221bd8eaac9b7a4ab2cb73801458e99f79b470512b51ad753rsyslog-mysql-4.6.2-3.el6_1.4.i686.rpmc9692f4d0a72c30e501ef5226993e7975a7c43ddd12b3d9f6705863a562541d6rsyslog-pgsql-4.6.2-3.el6_1.4.i686.rpmedffaba733dd30af8bb39c3d0fbbea2dc9233092e7778efadc1a11820980d6a4rsyslog-relp-4.6.2-3.el6_1.4.i686.rpm5e4b1f3f9ea29815b7c586ba1ae26b79ec14617dccd391d9772872efbb661073SLEA-2011:1366-1This update adds the following enhancement: * The dm-mod and dm-crypt kernel modules were missing from the list of kernel modules which are pre-loaded for the FIPS-140 (Federal Information Processing Standards) check. With this update, these modules have been added to the list. This update also introduces the dracut-fips-aesni subpackage which should be installed if the aesni-intel module is used in FIPS mode.Scientific Linux FermiScientific Linux Fermi 6dracut-004-53.el6_1.1.noarch.rpm871faa3a93efbf20942d9cdedfd0400e4352821b0b05095d3abba6d1836b89f5dracut-caps-004-53.el6_1.1.noarch.rpm4826c84064b779b05b7a35ee66a65e64f367900bb8a7e51febe6c139e7c76121dracut-fips-004-53.el6_1.1.noarch.rpmf04c230529ba4c751165b03cbfb7c38acb2a9b3a69b89622485b8afa5f115df3dracut-fips-aesni-004-53.el6_1.1.noarch.rpm485972148f265c4766bf97fc76c61285e791c4e455e210234579791a4153f7a8dracut-generic-004-53.el6_1.1.noarch.rpmc794137c4ec2f6abfdb755415342eb8eb46dd2a112154bc51942bdb206a49883dracut-kernel-004-53.el6_1.1.noarch.rpm2557eed24c4b70cc55cf864bdb0fcaa9a7b160f74323f1bb897ea453c179a52cdracut-network-004-53.el6_1.1.noarch.rpm95641b41c77d2ed9842c7c2afb4f8ae6307f8787f79e20c594e1ef8af6c16ebddracut-tools-004-53.el6_1.1.noarch.rpm1a49d21420526f5e23c0894210d3a76cdde11bf9039a6e150a402d051cedc5a1SLEA-2011:1776-1The rng-tools package contains the random number generator user space utilities, such as the rngd daemon. This update adds the following enhancements: * The startup script and configuration files for the rngd daemon have been added to the /etc/init.d/ and /etc/sysconfig/ directory, respectively.Scientific Linux FermiScientific Linux Fermi 6rng-tools-2-13.el6_2.i686.rpm497d2ca1b2a71ed13fbc7753f89007f30e1d3bcbd65575944888d762307af6baSLEA-2011:1810-1This update fixes the following bugs: * SSSD responders did not verify whether a username string, which was passed to SSSD by a client application, contained any invalid UTF-8 characters. As a consequence, SSSD terminated unexpectedly when trying to pass such a string to the data provider over the D-Bus protocol, and the validation test performed by the libdbus library failed. To prevent this problem from occurring, UTF-8 validity checks on the string have been added in the underlying SSSD code. SSSD now does not accept username strings that are not compliant with UTF-8 encoding so that SSSD no longer crashes. * When establishing a connection to an LDAP server, SSSD did not handle all possible error codes it could receive but only the ETIMEDOUT error code. Therefore, if SSSD received an error code different from ETIMEDOUT, it did not perform the expected failover to another LDAP server and switched to off-line mode. With this update, SSSD has been modified to handle all error codes received on connection attempt. SSSD now tries to connect to all specified LDAP servers and goes off-line only when it fails to connect to all of them.Scientific Linux FermiScientific Linux Fermi 6libipa_hbac-1.5.1-66.el6_2.1.i686.rpm7986676898cb4fdcc439a100404bc4900ade761fa8001848cc1f77f1837fd14dlibipa_hbac-devel-1.5.1-66.el6_2.1.i686.rpm9abdb4386ce2b3d4ecc2aa0f2cd0fedebf2a411bb044f94a071f1a3d8e42b601libipa_hbac-python-1.5.1-66.el6_2.1.i686.rpm20fa99e270248b24e0850c4101a43aaca746262e594ada9e72f24314546d9f4dsssd-1.5.1-66.el6_2.1.i686.rpmca0bfdcfe62bcb346e79a5ebf16d2947e32c5aeac1bc9c2ab117ac3b8f8674f9sssd-client-1.5.1-66.el6_2.1.i686.rpm37adf8ec54f7d0e6b2edd49eaf0c8529e20b836178a83648fd6a99feb1fff018sssd-tools-1.5.1-66.el6_2.1.i686.rpm928d88c8e09d142f6456146e490bc512f4839409f6ba524b158c0060067b9fa9SLEA-2012:0065-1This update adds the following enhancement: * Previously, OpenSSH could use the Advanced Encryption Standard New Instructions (AES-NI) instruction set only with the AES Cipher-block chaining (CBC) cipher. This update adds support for Counter (CTR) mode encryption in OpenSSH so the AES-NI instruction set can now be used efficiently also with the AES CTR cipher.Scientific Linux FermiScientific Linux Fermi 6openssh-5.3p1-70.el6_2.2.i686.rpm20da1d6b049d7f978b610505dfacf25bffa2d21d40e546335cf9abd0c3ad97d2openssh-askpass-5.3p1-70.el6_2.2.i686.rpm409e3ac46771c3ed93d8906b69e74de824beced0c022a2645c26fe4b750e8ab2openssh-clients-5.3p1-70.el6_2.2.i686.rpmbdbd05df249a6f27b3708d25794eb4cc0a7a3246756f4be37ffbb9265ced966fopenssh-ldap-5.3p1-70.el6_2.2.i686.rpm75090d54760e9bd1ee9766c842b5a3316dd34f00a3a196b475e837465a68d815openssh-server-5.3p1-70.el6_2.2.i686.rpm9d612c07fa53e0d65ff871221e2865dd39c5186670649a486bb41cf052f82a39pam_ssh_agent_auth-0.9-70.el6_2.2.i686.rpm749e0d51d8d82ef82b380f58a9afdb7d04bc94dad76160ef793c70cc58545de7SLEA-2012:0327-2The firefox packages have been upgraded from version 3.6.26 to version 10.0.1, which provides a number of bug fixes and enhancements over the previous version. This update also fixes the following bug: * Previously, with the xulrunner-5.0-2.el6 package installed, the yelp plug-in failed to start and returned the "Could not initialize gecko!" error message. Now, the updated yelp package has been provided and yelp works as expected in the described scenario. Important: Firefox 10 is not completely backwards-compatible with all Mozilla add-ons and Firefox plug-ins that worked with Firefox 3.6. Firefox 10 checks compatibility on first-launch, and, depending on the individual configuration and the installed add-ons and plug-ins, may disable said Add-ons and plug-ins, or attempt to check for updates and upgrade them. Add-ons and plug-ins may have to be manually updated. After installing the update, Firefox must be restarted for the changes to take effect.Scientific Linux FermitrueScientific Linux Fermi 6firefox-10.0.1-1.el6_2.i686.rpmf9fe527476d3da51bdead0c738b8206a53b0a4715f5ebd02c7294e63928a3adaxulrunner-10.0.1-2.el6_2.i686.rpme7990196adb8625ee26ae8c9f6297610c4110ec956fe96735d3bdf7bc37d1c0fxulrunner-devel-10.0.1-2.el6_2.i686.rpm773eb04db8c1f76029622be9cd85e5c3809df46e5ee4b623a44368e502251096yelp-2.28.1-13.el6_2.i686.rpmb1bbd62b27baeabb63882f5553789bcf3de9f93d0322b9bc59a73d6b3b0e5729SLEA-2012:0328-1This update adds the following enhancements: * The passwd command now supports a new option, "-e", that allows the system administrator to expire the password of the specified user so that the user is forced to change the password on the next login attempt. * The passwd executable file is a setuid program so it needs to be well protected against various types of attacks. With this update, passwd has been built with the Position Independent Executables (PIE) flag, "-fPIE -pie", and the full read-only relocations (RELRO) flags, "-Wl,-z,relro,-z,now". The passwd binary is now well protected against "return-to-text" and memory corruption attacks and also against attacks based on the program's ELF section overwriting.Scientific Linux FermiScientific Linux Fermi 6passwd-0.77-4.el6_2.2.i686.rpm2bd56b4999e948c994e1489743db2b472b0714d1fe2a5ec0ac3b6b2840262c8dSLEA-2012:0329-2For Scientific Linux 5, the thunderbird packages have been upgraded from version 2.0.0.24 to version 10.0.1, which provides a number of bug fixes and enhancements over the previous version. For Scientific Linux 6, the thunderbird packages have been upgraded from version 3.1.18 to version 10.0.1, which provides a number of bug fixes and enhancements over the previous version. Important: Thunderbird 10 is not completely backwards-compatible with all Mozilla add-ons and Thunderbird plug-ins that worked with previous versions of Thunderbird. Thunderbird 10 checks compatibility on first-launch, and, depending on the individual configuration and the installed add-ons and plug- ins, may disable said Add-ons and plug-ins, or attempt to check for updates and upgrade them. Add-ons and plug-ins may have to be manually updated. After installing the update, Thunderbird must be restarted for the changes to take effect.Scientific Linux FermitrueScientific Linux Fermi 6thunderbird-10.0.1-3.el6_2.i686.rpmdf185a0ecc4f1fedaa0f05b1bf715a85f4199dfac561befbf1cd1ef43e535d5aSLEA-2012:0401-1This update adds the following enhancement: * Users are now able to configure the maximum number of open files. This allows the conman daemon to easily manage a large number of nodes.Scientific Linux FermiScientific Linux Fermi 6conman-0.2.5-2.4.el6.i686.rpm0c2e25f7722d05516a4ebf1088751e9e262b5a178136f5c784b35921473d9f10SLEA-2012:0435-1This update adds the following enhancement: * Previously, X server audit messages were not included by default in the X server log. Now, those messages are unconditionally included in the log. Also, with this update, verbose messages are added to the X server log if debugging is enabled in the /etc/gdm/custom.conf file (by setting "Enable=true" in the [debug] section).Scientific Linux FermiScientific Linux Fermi 6gdm-2.30.4-33.el6_2.i686.rpmd4e53cc2bb60a6890f800448d54bcb183d0ab95b065438de0685d1cc26bf065bgdm-libs-2.30.4-33.el6_2.i686.rpmd0ae3521c76411949da28f46b35c708fefb51731b4b7e7a503c5c6106ef64d8fgdm-plugin-fingerprint-2.30.4-33.el6_2.i686.rpm2b79f0bf50ffddbf7d5592cd5dec9eb22fefee63786e65c98d6054fa80faeee9gdm-plugin-smartcard-2.30.4-33.el6_2.i686.rpm313fc80990977ef3b74746829916ac6d81f31f5d6d7b66c040afd80e5203a4a5gdm-user-switch-applet-2.30.4-33.el6_2.i686.rpmc5355972f5e20b76438483adb100e5c5c7c27f18cc5dc672577a3f613200d89fSLEA-2012:0482-1This update adds the following enhancement: * The pam_cracklib is a PAM module for password-quality checking used by various applications. With this update, the pam_cracklib module has been improved with additional password-quality checks. The pam_cracklib module now allows to check whether a new password contains the words from the GECOS field from entries in the "/etc/passwd" file. The GECOS field is used to store additional information about the user, such as the user's full name or a phone number, which could be used by an attacker for an attempt to crack the password. The pam_cracklib module now also allows to specify the maximum allowed number of consecutive characters of the same class (lowercase, uppercase, number and special characters) in a password.Scientific Linux FermiScientific Linux Fermi 6pam-1.1.1-10.el6_2.1.i686.rpm9c55466e209b338296a629b41dbedc887f94d13f88962c8c55fb57e614110cf6pam-devel-1.1.1-10.el6_2.1.i686.rpm5c9d1dd91d9838e83e57afb2fb2b45f117926a6bbcfe7aeace530732c7b541f7SLEA-2012:0486-1This update adds the following enhancement: * With Federal Information Processing Standards (FIPS) mode enabled, the libgcrypt library always started in the soft FIPS mode which allows applications to use the MD5 cryptographic hash algorithm. The libgcrypt API previously did not allow the library to programmatically switch from the soft FIPS mode to the enforced FIPS mode. With this update, if the application does not need MD5 support for the Transport Layer Security (TLS) protocol or non- cryptographic purposes, libgcrypt can be preset in the enforced FIPS mode.Scientific Linux FermiScientific Linux Fermi 6libgcrypt-1.4.5-9.el6_2.2.i686.rpm7e5751df3c583e35c91091fa557f87549d72ac0c7b5debc64a03cce2cfcd87adlibgcrypt-devel-1.4.5-9.el6_2.2.i686.rpm4ed7e85e2b4e46920e13b099e5b5244d575b2a7d7ec4044a49ce4b126355b6efSLEA-2012:0503-1The kmod-bnx2x packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.2: Broadcom NetXtreme II BCM5771x/578xx 10/20-Gigabit Ethernet The kmod-bnx2i packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.2: Broadcom NetXtreme II BCM570x/5771x/578xx iSCSI The kmod-bnx2fc packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.2: Broadcom NetXtreme II BCM5771x/578xx FCoE This enhancement update adds the kmod-bnx2x, kmod-bnx2i and kmod-bnx2fc packages to Scientific Linux 6 as part of the Scientific Linux Driver Update Program (DUP). Unless a system includes the exact hardware supported by kmod-bnx2x, kmod- bnx2i, or kmod-bnx2fc, these packages must not be installed.Scientific Linux FermiScientific Linux Fermi 6kmod-bnx2-2.2.1-1.el6_2.i686.rpm57709132e4d6b2a5614f6f8be0d4a44717e7db0604fd47d5db1a16f062b6598fkmod-bnx2fc-1.0.10-1.el6_2.i686.rpmfcba2f92c17cd038f57f0317298ca8ccd26df09971ab40f83c4661412974be7ckmod-bnx2i-2.7.2.1-1.el6_2.i686.rpm80f54e0a78b949910e9dbc8e0e9db055694c89182f5f4f027dbf3354e3374298kmod-bnx2x-1.72.00_0-1.el6_2.i686.rpmd855aa76499d7948cf1dab1aa0a507ddd11c00809e37e71798bd1a7784530e12kmod-bnx2x-firmware-1.72.00_0-1.el6_2.i686.rpm856526f9c46e3dc7bcf3da2555a1eb3be53504d1053bdf76fbdd3d6706c13802kmod-cnic-2.5.9-1.el6_2.i686.rpm56afe217f6efefba14efdfcd4c8df164faa27aaa2462545ba0f8018c8b7195e6SLEA-2012:0530-1The qpid-cpp, qpid-qmf, qpid-tools, qpid-tests and python-qpid packages have been upgraded to upstream version 0.14, which provide a number of bug fixes and enhancements over the previous version.Scientific Linux FermiScientific Linux Fermi 6python-qpid-0.14-7.el6_2.noarch.rpm2ef9e217ca1c8ebe163497bf0bb4a2e9863a0aefb65283428d2d556356457f10python-qpid-qmf-0.14-7.el6_2.i686.rpm6b0b2ecac370cc2aeb1e0bddca489e44012e0036e8d1c1fc1b3943c93bc0aceeqpid-cpp-client-0.14-14.el6_2.i686.rpm34d0e1d4aa00e60f084ab228e261e584528ac59cde5de3386580f564302c438aqpid-cpp-client-devel-0.14-14.el6_2.i686.rpmc7bb2bccf2b4420e0e2902edd1c15f1b7e2b406545a391a6f4e0f0eba1b9522aqpid-cpp-client-devel-docs-0.14-14.el6_2.noarch.rpmfd8502831ea533eb1db656ef9770982152ee323e2ffbf44ed464a73d51bd7b34qpid-cpp-client-rdma-0.14-14.el6_2.i686.rpm2f2d4b60afd30ca96c8c3724c9a33df78e59cfd481ba855b86fc5ec8becebc2eqpid-cpp-client-ssl-0.14-14.el6_2.i686.rpm9351dcc683b2ada90cbc1e58324d0cb64c06f2e9317169f7cd2c6b4812005aabqpid-cpp-server-0.14-14.el6_2.i686.rpmd19fb22e2a554dfee8e85795e0f073d8e3076685837a26e055f0520bbfc81b89qpid-cpp-server-cluster-0.14-14.el6_2.i686.rpm5d185686472c8ae195169ca6240150d442c3b1d4c0a1a1bdc0acfd36ef23347dqpid-cpp-server-devel-0.14-14.el6_2.i686.rpmf0140cd0acb288b14c90484ee59a353e5b3e9e58621a65fe76859a3ca9e940bcqpid-cpp-server-rdma-0.14-14.el6_2.i686.rpm3a8b2135e90ff69012c74b92832c93756f0c9b350c7c2b00b9e8c117cdafaf95qpid-cpp-server-ssl-0.14-14.el6_2.i686.rpm13ce7b50821dc7699339133846bef3c70b3f3133cf6ff5e2e302df7dfb6b7accqpid-cpp-server-store-0.14-14.el6_2.i686.rpm0a64021ad519b8296ebb08585be45037729abc05f531325d735514fc83723db7qpid-cpp-server-xml-0.14-14.el6_2.i686.rpm89036df4015dd333aa5edc35b1b668d6acbfdb3d9fd4003bdbbfedb24f180e87qpid-qmf-0.14-7.el6_2.i686.rpm4b8d9dfe20cb558896fa6aba169ff8f56a8cd8c6df1b885d527a2d459e538155qpid-qmf-devel-0.14-7.el6_2.i686.rpm138ffc5c353105a06007143a91725271908b384aa9250c40ca791a3086560584qpid-tests-0.14-1.el6_2.noarch.rpm7a0b71b4b34b9a0d7b121168e88ba1896d6aeaff421090b5ca423221af7af9fcqpid-tools-0.14-2.el6_2.noarch.rpm605a2d3f6999a6dd485a77f7d92c1d408de4f4c4666342f2b16a39ab1909783arh-qpid-cpp-tests-0.14-14.el6_2.i686.rpm0d8c32feb6ed9f65d254fdb1d574d3140ffc6778ba4efb6bbe2f494bb3d703ebruby-qpid-qmf-0.14-7.el6_2.i686.rpmf218dd236546e782e0f4e3f86a089f8dc2f569c9a927fb8aceccc0a2924507b0SLEA-2012:0563-1The kmod-snd_hda and kmod-snd_core packages provide kernel modules for controlling Intel High Definition Audio compatible devices. The kmod-snd_hda and kmod-snd_core packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.2: * IDT 92HD93 and RealTek ALC 269 HD audio codecs This enhancement update adds the kmod-snd_hda and kmod-snd_core packages to Scientific Linux 6 as part of the Scientific Linux Driver Update Program.Scientific Linux FermiScientific Linux Fermi 6kmod-snd_core-1.0.21.6.3.0-1.el6_2.i686.rpmb6615875486c64a6d1169fde6edca8ccd43c37b5058c1ac9eb1c202d225f670fkmod-snd_hda-1.0.21.6.3.0-1.el6_2.i686.rpmeb6e82f258cb9590655644bfaba10533d49038759748d2bb420295418800c6bfSLEA-2012:0564-1The kmod-tg3 packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.2: Broadcom Tigon3 Ethernet This enhancement update adds the kmod-tg3 packages to Scientific Linux 6 as part of the Scientific Linux Driver Update Program (DUP). Unless a system includes the exact hardware explicitly supported by kmod-tg3, these packages must not be installed.Scientific Linux FermiScientific Linux Fermi 6kmod-tg3-3.122-1.el6_2.i686.rpm45a19e404bb46269e5a822ef6b97a235222075b24c624bcc5572b4f48f44d0d6SLEA-2012:0739-1The kmod-mlx4_en, kmod-mlx4_ib and kmod-mlx4_core packages provide kernel modules for controlling Mellanox Technologies ConnectX PCI Express adapters. The kmod-mlx4_en, kmod-mlx4_ib and kmod-mlx4_core packages provide temporary drivers for the following hardware beyond what was delivered in Scientific Linux 6.2: * Mellanox Technologies ConnectX-3 PCI Express adapters This enhancement update adds the kmod-mlx4_en, kmod-mlx4_ib and kmod-mlx4_core packages to Scientific Linux 6 as part of the Scientific Linux Driver Update Program. Due to a bug in the Scientific Linux 6.2 installer, these packages are not used during installation when included on a Driver Update Disk. To work around this problem, switch to the second console by pressing Crtl+Alt+F2 when the graphical welcome screen appears and execute the following commands: rmmod mlx4_en rmmod mlx4_ib rmmod mlx4_core modprobe mlx4_en modprobe mlx4_ib Then switch back by pressing Alt+F6 and continue the installation. Alternatively, copy the commands mentioned above into a kickstart pre- installation script. Unless a system includes the exact hardware explicitly supported by kmod- mlx4_en, kmod-mlx4_ib and kmod-mlx4_core packages, these packages must not be installed.Scientific Linux FermiScientific Linux Fermi 6kmod-mlx4_core-1.1.32.269-1.el6_2.i686.rpmb11f4917bbc7e3bdcbfd93473f2da5452e5127a0872fe7c7318f7328a6748ccdkmod-mlx4_en-2.0.32.269-1.el6_2.i686.rpmbad0a1c69a3aa7c876f0c585ba3beb922dbd90809f2d5a7cca1524eab8e45d46kmod-mlx4_ib-1.0.32.269-1.el6_2.i686.rpm2ebca320020bac88954a2f535057ca9cd77d386e031df8c0ea7103ba05b42fbdSLSA-2011:1328-1A buffer overflow flaw was found in the harfbuzz module in Qt. If a user loaded a specially-crafted font file with an application linked against Qt, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application. (CVE-2011-3193) A buffer overflow flaw was found in the way Qt handled certain gray-scale image files. If a user loaded a specially-crafted gray-scale image file with an application linked against Qt, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application. (CVE-2011-3194) All running applications linked against Qt libraries must be restarted for this update to take effect.moderateScientific Linux FermitruetrueScientific Linux Fermi 6phonon-backend-gstreamer-4.6.2-20.el6.i686.rpm2762f028ccfd558fb7f0158aeebec0465e6bd4fdfd3c3dcdacce97eab9eee7ceqt-4.6.2-20.el6.i686.rpmd91f2b56fe3bd0308776639da1ef5da5c326aeec56463146bb080e1811ac2ff6qt-demos-4.6.2-20.el6.i686.rpmf4333f2e98227b9d14f8a5ae3bdac933ac96ffd91dbcb5dff83748c51e508d0bqt-devel-4.6.2-20.el6.i686.rpm613bb5e94b1603e12257ad06a52a2e6548b70626a70bd24088e905b4b977321eqt-doc-4.6.2-20.el6.noarch.rpm981f5ec3a2a0c0b985a52e0a027e270f6b63b64fc6fe63bdff1cbb7d4d62b39dqt-examples-4.6.2-20.el6.i686.rpmf83a44643bf630b706c0d14263ffd5d51beb667947be1a6ee81604acab861ab3qt-mysql-4.6.2-20.el6.i686.rpm7e410b6610a43aef804d3f0622b4fa642341d1d27dd55cf135c6f6405d8b96f6qt-odbc-4.6.2-20.el6.i686.rpm9faca38d70fcbb2c37b301859e0f286dc0d16a0e02e026886d4a61a7def3219cqt-postgresql-4.6.2-20.el6.i686.rpm1e07e861215d0ba8e3fd6720eafddd53495fb8b40dd59a5ea23dcc07469f914dqt-sqlite-4.6.2-20.el6.i686.rpm2b4c8c4dc19aa72db4d9e3e2cfc87366673eabef3a216a4d9221ede83c360d01qt-x11-4.6.2-20.el6.i686.rpm4ea1ffa09a36af266ab1f7452c76de3404befe6cebd7044e2cbbdce7960ca7b8