SUSE-RU-2021:3891-1: moderate: Recommended update for keyutils
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Fri Dec 3 15:10:39 UTC 2021
SUSE Recommended Update: Recommended update for keyutils
______________________________________________________________________________
Announcement ID: SUSE-RU-2021:3891-1
Rating: moderate
References: #1029961 #1113013 #1187654 SLE-20016
Affected Products:
SUSE MicroOS 5.1
SUSE MicroOS 5.0
SUSE Linux Enterprise Server for SAP 15-SP1
SUSE Linux Enterprise Server for SAP 15
SUSE Linux Enterprise Server 15-SP1-LTSS
SUSE Linux Enterprise Server 15-SP1-BCL
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Module for Basesystem 15-SP3
SUSE Linux Enterprise Module for Basesystem 15-SP2
SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS
SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Enterprise Storage 6
SUSE CaaS Platform 4.0
______________________________________________________________________________
An update that has three recommended fixes and contains one
feature can now be installed.
Description:
This update for keyutils fixes the following issues:
- Add /etc/keys/ and /usr/etc/keys/ directory (bsc#1187654)
keyutils was updated to 1.6.3 (jsc#SLE-20016):
* Revert the change notifications that were using /dev/watch_queue.
* Apply the change notifications that use pipe2(O_NOTIFICATION_PIPE).
* Allow "keyctl supports" to retrieve raw capability data.
* Allow "keyctl id" to turn a symbolic key ID into a numeric ID.
* Allow "keyctl new_session" to name the keyring.
* Allow "keyctl add/padd/etc." to take hex-encoded data.
* Add "keyctl watch*" to expose kernel change notifications on keys.
* Add caps for namespacing and notifications.
* Set a default TTL on keys that upcall for name resolution.
* Explicitly clear memory after it's held sensitive information.
* Various manual page fixes.
* Fix C++-related errors.
* Add support for keyctl_move().
* Add support for keyctl_capabilities().
* Make key=val list optional for various public-key ops.
* Fix system call signature for KEYCTL_PKEY_QUERY.
* Fix 'keyctl pkey_query' argument passing.
* Use keyctl_read_alloc() in dump_key_tree_aux().
* Various manual page fixes.
Updated to 1.6:
* Apply various specfile cleanups from Fedora.
* request-key: Provide a command line option to suppress helper execution.
* request-key: Find least-wildcard match rather than first match.
* Remove the dependency on MIT Kerberos.
* Fix some error messages
* keyctl_dh_compute.3: Suggest /proc/crypto for list of available hashes.
* Fix doc and comment typos.
* Add public key ops for encrypt, decrypt, sign and verify (needs
linux-4.20).
* Add pkg-config support for finding libkeyutils.
* upstream isn't offering PGP signatures for the source tarballs anymore
Updated to 1.5.11 (bsc#1113013)
* Add keyring restriction support.
* Add KDF support to the Diffie-Helman function.
* DNS: Add support for AFS config files and SRV records
Patch Instructions:
To install this SUSE Recommended Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE MicroOS 5.1:
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2021-3891=1
- SUSE MicroOS 5.0:
zypper in -t patch SUSE-SUSE-MicroOS-5.0-2021-3891=1
- SUSE Linux Enterprise Server for SAP 15-SP1:
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2021-3891=1
- SUSE Linux Enterprise Server for SAP 15:
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2021-3891=1
- SUSE Linux Enterprise Server 15-SP1-LTSS:
zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-3891=1
- SUSE Linux Enterprise Server 15-SP1-BCL:
zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2021-3891=1
- SUSE Linux Enterprise Server 15-LTSS:
zypper in -t patch SUSE-SLE-Product-SLES-15-2021-3891=1
- SUSE Linux Enterprise Module for Basesystem 15-SP3:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-3891=1
- SUSE Linux Enterprise Module for Basesystem 15-SP2:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-3891=1
- SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS:
zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3891=1
- SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS:
zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3891=1
- SUSE Linux Enterprise High Performance Computing 15-LTSS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2021-3891=1
- SUSE Linux Enterprise High Performance Computing 15-ESPOS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2021-3891=1
- SUSE Enterprise Storage 6:
zypper in -t patch SUSE-Storage-6-2021-3891=1
- SUSE CaaS Platform 4.0:
To install this update, use the SUSE CaaS Platform 'skuba' tool. It
will inform you if it detects new updates and let you then trigger
updating of the complete cluster in a controlled way.
Package List:
- SUSE MicroOS 5.1 (aarch64 s390x x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE MicroOS 5.0 (aarch64 x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server for SAP 15-SP1 (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server for SAP 15 (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server 15-SP1-LTSS (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server 15-SP1-BCL (x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise Module for Basesystem 15-SP2 (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-LTSS (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Linux Enterprise High Performance Computing 15-ESPOS (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE Enterprise Storage 6 (aarch64 x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
- SUSE Enterprise Storage 6 (x86_64):
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
- SUSE CaaS Platform 4.0 (x86_64):
keyutils-1.6.3-5.6.1
keyutils-debuginfo-1.6.3-5.6.1
keyutils-debugsource-1.6.3-5.6.1
keyutils-devel-1.6.3-5.6.1
libkeyutils1-1.6.3-5.6.1
libkeyutils1-32bit-1.6.3-5.6.1
libkeyutils1-32bit-debuginfo-1.6.3-5.6.1
libkeyutils1-debuginfo-1.6.3-5.6.1
References:
https://bugzilla.suse.com/1029961
https://bugzilla.suse.com/1113013
https://bugzilla.suse.com/1187654
More information about the sle-updates
mailing list