Comments

24 Comments
karma

I've tested and nosync still seems to work and fixes the bug triggered by the openssl.

BZ#1837809 "FIPS module installed state definition is modified" changes cause systemctl segfaults during buildroot population
karma

I've tested and nosync still seems to work and fixes the bug triggered by the openssl.

BZ#1837809 "FIPS module installed state definition is modified" changes cause systemctl segfaults during buildroot population
BZ#1680961 pam_selinux - check whether undefined object classes or permissions are allowed or denied in the current policy
BZ#1813023 selinux-policy-3.14.6-7 with pam-1.3.1-24 blocks SSH logins

Please just enable testing updates temporarily. Unfortunately I did not notice the libreswan-3.28 update was obsoleted by 3.29 update that is still in testing.

https://bodhi.fedoraproject.org/updates/FEDORA-2019-1bd9cfb718

karma

Tested locally and it worked for me.

BZ#1718986 libreswan-3.29 is available

Sure, the autopush is disabled exactly for this purpose.

This update has been unpushed.

This was unfortunately already pushed to stable and there is no upstream fix for the issue yet. I'll create a new update as soon as the upstream fix is available.

Yes, sorry for that, I'll fix it.

User Icon tmraz commented & provided feedback on pam-1.3.1-13.fc29 2 years ago

As the changes affect password changes, please test that password changes work for you. Simple testing with passwd command should be fine.

User Icon tmraz commented & provided feedback on pam-1.3.1-13.fc28 2 years ago

As the changes affect password changes, please test that password changes work for you. Simple testing with passwd command should be fine.

Isn't this a wrong use of N-V-R not following the Fedora package versioning guidelines? I.e. what version will be used when nettle-3.4.1 final is released?

Unfortunately this is already in stable.

I've added the asterisk. If @jsmith wants to add some asterisk bugs to the update, please let me know.

Just a note about the abicheck failure - the removed functions are expected, they were introduced only very recently so nothing should use them and we do not want to enable this algorithm in the build.

karma

The issue is fixed, no regressions noted.

karma

The issue is fixed, no regressions noted.

Honestly, I am not sure this is right fix. In my opinion these commands are strictly optional and we should instead fix the reload-cmds.sh to be silent if systemctl is missing.

Unfortunately it was too late when the regression was found. :(

karma

I've tested the update and it works and fixes the problem.

BZ#1432582 authconfig 7.0.0 breaks nsswitch.conf (empty passwd, shadow and group lines)