Product SiteDocumentation Site

8. Resolved Issues

8.1. All Architectures

  • The data for TTY device activity reports was not generating correctly. Consequently, the command sar -y failed, returning the error:
    Requested activities not available in file
    
    In this updated package, sar has been corrected so the -y option outputs the TTY device activity.
  • Previously, setting max_fds to unlimited in /etc/multipath.conf would prevent the multipathd daemon from starting. If number of open file descriptors needs to be set to the system maximum, max_fds should be set to max.
  • mod_perl is now re-based to version 2.0.4, the latest upstream release. This update applies several updates, which include a bug fix that now allows mod_perl to work properly with Bugzilla 3.0.
  • cups is now re-based to version 1.3.7. This update applies several bug fixes and enhancements, including:
    • Kerberos authentication is now supported.
    • User-defined printer and job policies are now loaded correctly.
    • Remote queue caches are no longer loaded when browsing is disabled.
    • The classes.conf configuration file now has correct file permissions.
  • lm_sensors has been re-based to version 2.10.7. This update applies several upstream enhancements and bug fixes, including a fix that prevents libsensors from crashing with a General parse error message when k8temp is also loaded.
  • elfutils has been updated in this release to address the following bugs:
    • The eu-readelf utility could crash when reading certain input files.
    • The eu-strip utility is used in the rpmbuild procedures that create new binary packages. It separates debugging information from executable code, to make -debuginfo packages. A bug in this utility resulted in unusable debugging information for ET_REL files on the s390 platform; this affects Linux kernel module files (.ko.debug), and caused the generated kernel-debuginfo packages not to work with Systemtap on s390.
  • vnc-server is now re-based to version 4.1.2-14.el5. This update applies the following fixes:
    • A bug that prevented vncserver from printing error messages when Xvnc failed to start is now fixed.
    • Xvnc no longer uses the wrong root window depth; it now uses the correct window depth specified by the -depth option.
    • A bug that causes the libvnc.so module to crash the X server is now fixed.
    • Xvnc now supports GLX and RENDER extensions on all architectures.
  • smartmontools has been re-based to version 5.38. This update improves autodetection of hardware devices, improves support for CCISS RAID arrays, and features a larger database of supported devices.
    This update also fixes a bug wherein SELinux prevented smartmontools from monitoring 3ware RAID devices. smartmontools can now monitor such devices properly.
  • python-urlgrabber has been re-based to version 3.1.0-5. This applies several bug fixes from upstream, including:
    • yum can now correctly re-download from a yum repository that does not support partial downloads.
    • yum can now resume an interrupted download even if the yum repository is FTP-based with a specified port.
    • The size of progress bars are now dynamic to the terminal width. In addition, progress bars are now cleaner, and display a percentage of the total downloaded data.
    • The keepalive signal of python-urlgrabber is now fixed. Previously, a bug in this signal incorrectly increased memory usage during downloads; in addition, this bug also prevented reposync and yumdownloader from performing properly when downloading a large number of packages.
  • yum-utils is now re-based to upstream version 1.1.16. This applies several bug fixes, including:
    • yum update --security can now properly locate old relevant security updates.
    • yum-versionlock now works properly against package obsoletes.
    This update also includes the yum-fastestmirror plugin, which enables yum to choose the fastest repository in a mirrorlist.
  • Samba has been re-based to upstream version 3.2.0. This fixes several bugs, including one that prevented users from joining domains that used Windows 2003 as their name server. This update also fixes a bug that caused samba domain membership to break after changing the system password using net rpc changetrustpw.
    For a more comprehensive list of upstream samba updates included this release, refer to http://www.samba.org/samba/history/samba-3.0.32.html
  • OpenLDAP has been re-based to upstream version 2.3.43. This applies several upstream bug fixes, including:
    • The init script now reports a warning if the slapd daemon cannot read a TLS certificate file.
    • All libraries in openldap-debuginfo package are now unstripped.
    • Uninstalling the openldap-devel package no longer breaks OpenLDAP libraries.
    Red Hat now distributes additional overlays for OpenLDAP server. Except for syncprov, all overlays can be found in separate openldap-servers-overlays packages, compiled as dynamically loadable modules. The syncprov overlay is statically linked to the OpenLDAP server to maintain compatibility with older OpenLDAP releases.
  • Because the xterm binary had the set group ID (setgid) bit configured, certain environmental variables (such as LD_LIBRARY_PATH and TMPDIR) were unset. In this release, the xterm binary now has mode 0755 permissions configured, which resolves this issue.
  • The recommended method for balancing the load on NIS servers when multiple machines are connecting with ypbind has changed with this release. The ypbind daemon's behavior has not changed: it still pings all NIS servers listed in the /etc/ypbind configuration file and then binds to the single fastest-responding server. Before, it was recommended to list all available NIS servers in each machine's /etc/ypbind.conf configuration file. However, because even servers under high load can respond quickly to this ping, thus inadvertently increasing their own load, it is now recommended for administrators to list a smaller number of available NIS servers in each machine's ypbind.conf, and to vary this list across machines. In this way, NIS servers are automatically load-balanced due to not every NIS server being listed as being available to every machine.
  • OpenMotif has been re-based to upstream version 2.3.1. This update applies several bug fixes, including:
    • A bug in the way OpenMotif handled the Grab and Ungrab events is now fixed. In previous releases, this bug could cause the display to lock.
    • A bug in nedit could cause it to crash when using the nedit graphical user interface. This was caused by a function in the code that causes a segmentation fault in some cases of item selection, which is now fixed.
  • dbus has been re-based to version 1.1.2. This update fixes a bug wherein multi-threaded programs could cause a deadlock in dbus. In previous releases, as one thread listened to dbus and processed messages, the second thread would send messages to dbus.
  • strace has been re-based to version 4.5.18. This fixes several bugs, including:
    • A bug that caused strace to crash when the -f option was used on some multi-threaded programs (particularly on 64-bit systems) is now fixed.
    • A bug that prevented the 64-bit version of strace from executing a vfork() function call on a 32-bit process is now fixed.
  • cpuspeed has been updated to version 1.2.1-5. With this update, the cpuspeed init script now loads the speedstep-centrino module if all other module loads fail. In addition, a user-space bug that prevented the Powernow-k8 module from loading is now fixed.
  • The frysk suite of tools have been removed completely from this distribution. frysk was originally introduced as a technology preview in Red Hat Enterprise Linux 5.0.
  • Previously, the partition I/O statistics provided by the iostat -x command were incomplete. In this update, partition statistics are now calculated in the same manner as disk statistics, providing coherent and comprehensive I/O statistics at the partition level.
  • A password disclosure flaw was found with configuration file for the Dovecot mail server. If a system had the ssl_key_password option defined, any local user could view the SSL key password. (CVE-2008-4870)

    Note

    This flaw did not allow the attacker to acquire the contents of the SSL key. The password has no value without the key file which arbitrary users should not have read access to.
    To better protect even this value, however, the dovecot.conf file now supports the "!include_try" directive. The ssl_key_password option should be moved from dovecot.conf to a new file owned by, and only readable and writable by, root (ie 0600). This file should be referenced from dovecot.conf by setting the !include_try /path/to/password/file option.

8.2. x86_64 Architectures

  • ksh has been re-based to version 2008-02-02. This update adds multi-byte character handling, addresses many job control problems and applies several bug fixes from upstream. Note that this update to ksh preserves compatibility for existing scripts.

8.3. s390x Architectures

  • A vmconvert bug prevented it from working properly on the vmur device node (/dev/0.0.000c). This caused vmconvert to fail when attempting to access dumps on the vmur device with the error vmconvert: Open dump file failed! (Permission denied). An update to s390utils in this release fixes this issue.
  • The init script and config file for the mon_procd daemon and mon_fsstatd daemon were missing from the s390utils package. Consequently these daemons could not be built and used. The missing files have been added in this update which resolves this issue.

8.4. PowerPC Architectures

  • A bug that prevented the ehci_hcd module from reloading on this architecture is now fixed. This ensures that the Belkin 4-port PCI-Express USB Lily adapter (and other similar devices) now function properly with Red Hat Enterprise Linux 5 when they use the ehci_hcd module.
  • The libhugetlbfs library is now re-based to version 1.3. This update applies several upstream improvements to the library, thereby improving the performance of applications that use Huge pages.
    For a complete list of updates to libhugetlbfs, refer to the following link:

Note: This documentation is provided {and copyrighted} by Red Hat®, Inc. and is released via the Open Publication License. The copyright holder has added the further requirement that Distribution of substantively modified versions of this document is prohibited without the explicit permission of the copyright holder. The CentOS project redistributes these original works (in their unmodified form) as a reference for CentOS-5 because CentOS-5 is built from publicly available, open source SRPMS. The documentation is unmodified to be compliant with upstream distribution policy. Neither CentOS-5 nor the CentOS Project are in any way affiliated with or sponsored by Red Hat®, Inc.