SUSE-RU-2024:3724-1: moderate: Recommended update for iputils
SLE-UPDATES
null at suse.de
Fri Oct 18 08:30:24 UTC 2024
# Recommended update for iputils
Announcement ID: SUSE-RU-2024:3724-1
Release Date: 2024-10-18T07:45:42Z
Rating: moderate
References:
* bsc#1017616
* bsc#1057664
* bsc#1065835
* bsc#1072460
* bsc#1082788
* bsc#1196840
* bsc#1199918
* bsc#1199926
* bsc#1199927
* bsc#1221439
* bsc#674304
* bsc#795788
* bsc#860616
* bsc#860655
* bsc#927831
* jsc#PED-9524
Affected Products:
* SUSE Linux Enterprise High Performance Computing 12 SP5
* SUSE Linux Enterprise Server 12 SP5
* SUSE Linux Enterprise Server for SAP Applications 12 SP5
An update that contains one feature and has 15 fixes can now be installed.
## Description:
This update for iputils fixes the following issues:
Update version to version s20161105 (bsc#1221439 jsc#PED-9524):
* This version can use ICMP datagram sockets without CAP_NET_RAW capabilites.
Full changelog:
* ping: eliminate deadcode & simplify
* ping: do not allow oversized packets to root
* correctly initialize first hop
* ping: fix ping -6 -I
* arping,doc: fix documentation of -I
* ping: fix error message when getting EACCES from connect()
* renamed INSTALL to INSTALL.md
* ping: Silence GCC warnings when building with -fstrict-aliasing
* tftpd: Drop supplementary groups for root
* libgcrypt: fix static linking
* doc: Inserted a missing word
* tracepath6: avoid redundant family variable
* tracepath: borrow everything good from tracepath6
* tracepath: switch to dual-stack operation
* tracepath: remove now redundant tracepath6
* docs: fix parallel build of manpages
* ping: remove assignments of values that are never read
* docs: remove references to ping6 and traceroute6
* ping: work with older kernels that don't support ping sockets
* Revert "ping_common.c: fix message flood when EPERM is encountered in ping"
* reorder -I option parsing (bsc#1057664)
* ping: also bind the ICMP socket to the specific device
* tracepath6 is now symlink to tracepath.
* Add fix for ICMP datagram socket ping6-Fix-device-binding.patch
(bsc#1196840, bsc#1199918, bsc#1199926, bsc#1199927).
* Backport license information from upstream (bsc#1082788):
* Fix PMTU discovery in ping6. (bsc#1072460)
* Install rdisc as rdisc, do not use in.rdisc anymore (xinetd which was using
in.* names is obsolete anyways)
* iputils: remove man pages of unused binaries: ninfod, pg3, rdisc (rdisc is
in a separate package)
* Add systemd service for rarpd
* mark ping also verify not caps, as these are changed by the permissions
package. (bsc#1065835)
* Reintroduce rarpd as subpackage
* Explicitly list content in filelist as we have two subpackages now
Update to version s20161105 (Changes taken from the RELNOTES file):
* ping: eliminate deadcode & simplify
* ping: do not allow oversized packets to root
* correctly initialize first hop
* ping: fix ping -6 -I
* arping,doc: fix documentation of -I
* ping: fix error message when getting EACCES from connect()
* renamed INSTALL to INSTALL.md
* (re)structured INSTALL.md and transformed into markdown; added hint that
installation into prefix has to be done with DESTDIR make variable and that
there's no prefix support in configure, close #21
* ping: Silence GCC warnings when building with -fstrict-aliasing
* tftpd: Drop supplementary groups for root
* libgcrypt: fix static linking
* doc: Inserted a missing word
* tracepath6: avoid redundant family variable
* tracepath: borrow everything good from tracepath6
* tracepath: switch to dual-stack operation
* tracepath: remove now redundant tracepath6
* docs: fix parallel build of manpages
* ping: remove assignments of values that are never read
* docs: remove references to ping6 and traceroute6
* ping: work with older kernels that don't support ping sockets
* Revert "ping_common.c: fix message flood when EPERM is encountered in ping"
* reorder -I option parsing (bsc#1057664)
* ping: also bind the ICMP socket to the specific device
* tracepath6 is now symlink to tracepath.
* Add ping6 symlink (bsc#1017616)
* do not install rarpd and rarpd.8 manpage (comes from rarpd rpm currently)
Update to version s20160308 (Changes taken from the RELNOTES file)
* use syntax compatible with busybox date in Makefile
* 'admin prohibited' should print !X not !S.
* Makefile: use #define as in previous code changes
* doc/Makefile: require bash, because we use pushd and popd
* doc: don't timestamp manpages by default
* ping: status() now returns received/transmitted instead of trans/recv
* ping: don't mess with internals of struct msghdr
* ping: ICMP error replies while errno < 0 is a hard error
* ping: always use POSIX locale when parsing -i
* ping: link against libm
* made ping functions protocol independent
* ping: perform dual-stack ping by default
* ping: remove obsolete preprocessor directives
* ping: avoid name clashes between IPv4 and IPv6 code
* ping: merge all ping header files into a single one
* ping: merge `ping6` command into `ping`
* ping: refactor ping options
* ping: refactor ping socket code
* ping: merge IPv4 and IPv6 `pr_addr()`
* ping: fix defines and libs in Makefile
* ping: handle single protocol systems
* iputils ping/ping6: Add a function to check if a packet is ours
* ping: Add <linux/types.h> to fix compilation error.
* ping6: Use GNUTLS API directly for MD5. (v2)
* ping6: Use libgcrypt instead of gnutls for MD5.
* Allow ping to use IPv6 addresses
* ping,ping6 doc: More description on CAP_NET_RAW usage.
* if IPv4 resolving fails fallback to ping6
* ping: in usage print the 'ping -6' options as well
* ping: allow option -4 which forces IPv4
* combine sock and errno into a single structure
* This patch allows running ping and ping6 without root privileges on
* use better names for socket variables
* tracepath,doc: fix corrupted tag
* doc: ping: add missing options and remove ping6
* ninfod: remove unused variables
* ninfod: Regenerate configure by autoconf-2.69.
* ninfod: libgcrypt support.
* Fix building with musl
* travis.yml: install nettle-dev
* Allow using nettle instead of libgcrypt for MD5
* avoid compiler warning caused by snapshot.h
* make `getaddrinfo()` and `getnameinfo()` usage consistent
* enable IDN by default
* remove IPV4_TARGETS and IPV6_TARGETS
* Use svg instead of png to get better image quality
* spec: Configure before building ninfod.
* spec: Fix date in %changelog.
* Use Provides: for old /{,s}bin utils to satisfy reverse dependencies.
* Install utilities to /bin and /sbin until reverse dependencies are properly
fixed.
* Do not install tftp and traceroute to avoid conflicts with the tftp and
traceroute packages. Stick to what iputils used to provide in the past.
* Install tracepath to /usr/bin. (bsc#795788)
Update to version s20150815
* use syntax compatible with busybox date in Makefile
* Makefile: use #define as in previous code changes
* ping: status() now returns received/transmitted instead of trans/recv
* ping: don't mess with internals of struct msghdr
* tracepath,doc: fix corrupted tag
* made ping functions protocol independent
* Allow ping to use IPv6 addresses
* if IPv4 resolving fails fallback to ping6
* ping: in usage print the 'ping -6' options as well
* ping: allow option -4 which forces IPv4
* combine sock and errno into a single structure
* This patch allows running ping and ping6 without root privileges on
* use better names for socket variables
* travis.yml: install nettle-dev
* Allow using nettle instead of libgcrypt for MD5
* avoid compiler warning caused by snapshot.h
* make `getaddrinfo()` and `getnameinfo()` usage consistent
* enable IDN by default
* ping: perform dual-stack ping by default
* remove IPV4_TARGETS and IPV6_TARGETS
* ping: remove obsolete preprocessor directives
* ping: avoid name clashes between IPv4 and IPv6 code
* ping: merge all ping header files into a single one
* ping: merge `ping6` command into `ping`
* ping: refactor ping options
* ping: refactor ping socket code
* ping: merge IPv4 and IPv6 `pr_addr()`
* Use svg instead of png to get better image quality
* iputils ping/ping6: Add a function to check if a packet is ours
* ping: Add <linux/types.h> to fix compilation error.
* ping6: Use GNUTLS API directly for MD5. (v2)
* ping6: Use libgcrypt instead of gnutls for MD5.
* ninfod: Regenerate configure by autoconf-2.69.
* ninfod: libgcrypt support.
* spec: Configure before building ninfod.
* spec: Fix date in %changelog.
* make,spec: Add rpm target.
* ping,ping6 doc: More description on CAP_NET_RAW usage.
* Fixed ping segfaults (bsc#860616,bsc#860655)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise High Performance Computing 12 SP5
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3724=1
* SUSE Linux Enterprise Server 12 SP5
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3724=1
* SUSE Linux Enterprise Server for SAP Applications 12 SP5
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3724=1
## Package List:
* SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64)
* iputils-s20161105-11.3.1
* iputils-debugsource-s20161105-11.3.1
* iputils-debuginfo-s20161105-11.3.1
* SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64)
* iputils-s20161105-11.3.1
* iputils-debugsource-s20161105-11.3.1
* iputils-debuginfo-s20161105-11.3.1
* SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64)
* iputils-s20161105-11.3.1
* iputils-debugsource-s20161105-11.3.1
* iputils-debuginfo-s20161105-11.3.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1017616
* https://bugzilla.suse.com/show_bug.cgi?id=1057664
* https://bugzilla.suse.com/show_bug.cgi?id=1065835
* https://bugzilla.suse.com/show_bug.cgi?id=1072460
* https://bugzilla.suse.com/show_bug.cgi?id=1082788
* https://bugzilla.suse.com/show_bug.cgi?id=1196840
* https://bugzilla.suse.com/show_bug.cgi?id=1199918
* https://bugzilla.suse.com/show_bug.cgi?id=1199926
* https://bugzilla.suse.com/show_bug.cgi?id=1199927
* https://bugzilla.suse.com/show_bug.cgi?id=1221439
* https://bugzilla.suse.com/show_bug.cgi?id=674304
* https://bugzilla.suse.com/show_bug.cgi?id=795788
* https://bugzilla.suse.com/show_bug.cgi?id=860616
* https://bugzilla.suse.com/show_bug.cgi?id=860655
* https://bugzilla.suse.com/show_bug.cgi?id=927831
* https://jira.suse.com/browse/PED-9524
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20241018/d60c2eda/attachment.htm>
More information about the sle-updates
mailing list