Fedora 27: subscription-manager Security Update | LinuxSecurity.com

Advisories

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-91ba32a0ff
2018-11-15 02:11:49.508849
--------------------------------------------------------------------------------

Name        : subscription-manager
Product     : Fedora 27
Version     : 1.24.2
Release     : 1.fc27
URL         : https://www.candlepinproject.org/
Summary     : Tools and libraries for subscription and repository management
Description :
The Subscription Manager package provides programs and libraries to allow users
to manage subscriptions and yum repositories from the Red Hat entitlement
platform.

--------------------------------------------------------------------------------
Update Information:

This is a primarily maintenance update. Please see the attached bugs for more
specific details on what has improved as far as stability is concerned.  There
is also a larger new feature which is being released in concert with work being
done in Katello / Foreman. Subscription-manager has a concept of a package-
profile. This contains information on all installed rpm packages for the system
on which it is running.  We have expanded this reporting capability to include
information on enabled and installed modules from modulemd as well as to report
on which repositories this system has enabled presently.  This information is
combined into a group of reports and submitted to the same endpoint on Katello /
Foreman.   The new request is a PUT to /consumers/{consumer_uuid}/profiles. This
is done only when the string "combined_reporting" in the managerCapabilities key
of the response to a GET /status.  The old just rpm profile reporting is still
done as a PUT to /consumers/{consumer_uuid}/packages. This is at this point only
done if the server side does not support the new capability.  More will likely
be added in the future to further expand on this capability of reporting.  ----
Numerous bug fixes. Please see the rpm changelog for details.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Nov  5 2018 Christopher Snyder  1.24.2-1
- 1645205: Do not update ent certs inside containers ([email protected])
- 1633304: Disable zypper product-id plugin. ([email protected])
- Fedora documentation guidelines favor global over define. ([email protected])
- Show installed profiles only for enabled modules ([email protected])
- 1631339: Fix os.errno issue ([email protected])
- Add a missing comma in test_cache ([email protected])
- Add module enabled and disabled information ([email protected])
- 1636381: Fix up our detection of missing org for service-level list
  ([email protected])
- 1616403: Better handling of missing locale use ([email protected])
- 1636381: Handle case of nonexistant org ([email protected])
- Add scripts to setup local development environment ([email protected])
- 1633380: Add syspurpose compliance status cache - Altered the syspurpose
  compliance status connection call to use the
  /consumers/{uuid}/purpose_compliance API instead of fetching the consumer
  object and reading the syspurpose compliance field off of it. - Added new
  syspurpose compliance status cache saved in
  /var/lib/rhsm/cache/syspurpose_compliance_status.json similar to the
  entitlement status cache. - When the server is unreachable, we don't
  traceback, but rather use the new cache value instead. ([email protected])
- 1639625: Tolerate server missing syspurpose fields ([email protected])
- 1639086: Fix vendor comparison ([email protected])
- Includes the installed module profiles ([email protected])
- 1623390: Fix unregistered messaging in syspurpose ([email protected])
- 1637183: Replace redhat-uep.pem properly ([email protected])
- 1632797: Only save SLA set during register or attach if specified
  ([email protected])
- Updated how syspurpose handles unsetting values ([email protected])
- Update man page for report_package_profile option ([email protected])
- Automatic commit of package [subscription-manager] release [1.24.1-1].
  ([email protected])
- 1616366: Use LANG from environment ([email protected])
- syspurpose no longer supresses JSON malformation errors ([email protected])
- Rename zypper plugin to rhsm ([email protected])
- 1632384: Sync SLA regardless of capability: ([email protected])
- 1621783: Updated syspurpose fields to match expected values ([email protected])
- 1632248: User should be able to set/unset while not registered
  ([email protected])
- 1633575: Update error message when syspurpose is not supported by server
  ([email protected])
- 1614925: Fix grammar ([email protected])
* Mon Oct 15 2018 Christopher Snyder  1.24.1-1
- Rename zypper plugin to rhsm ([email protected])
- 1632384: Sync SLA regardless of capability: ([email protected])
- 1621783: Updated syspurpose fields to match expected values ([email protected])
- 1633575: Update error message when syspurpose is not supported by server
  ([email protected])
- 1614925: Fix grammar ([email protected])
- Added support of modulemd to combined profile; ENT-834 ([email protected])
- 1620136: dnf plugin deletes prod cert as expected; ENT-773
  ([email protected])
- 1615944: Show help when no args are provided ([email protected])
- 1614943: Fix bytes/unicode handling of dmi data ([email protected])
- 1618825: Rename de_DE.po and es_ES.po ([email protected])
- Combined profile: WIP enabled repos ([email protected])
- Added list of enabled repos to combined profile; ENT-833 ([email protected])
- 1607955: WIP: polishing PR with bug fix of release --list
  ([email protected])
- Fixed name of capability and added two unit tests. ([email protected])
- Explict requires added for package we use directly ([email protected])
- 1581410: Eliminate potential for circular dependency ([email protected])
- 1631076: subscription-manager rpm now requires python3-syspurpose
  ([email protected])
- For tito build, clean the yarn cache ([email protected])
- Fix ubuntu compat for virt-who travis runs ([email protected])
- Fix RPMDiff issue with multilib ([email protected])
- Use Combined Profile reporting ([email protected])
- 1629073: No python3-dmidecode on aarch64, ppc64le ([email protected])
- Simplify and fix subpackages logic ([email protected])
- 1614653: Update intermediate CA ([email protected])
- Fix spelling to capitalize Workstation properly ([email protected])
- 1607955: Try to use all entitlement certs for connection with CDN
  ([email protected])
- Use pre-provisioned centos7 box ([email protected])
- Vagrant: use ansible-role-subman-devel via galaxy ([email protected])
- Vagrant: skip provisioning if var needs_provision is false
  ([email protected])
* Mon Sep 10 2018 Christopher Snyder  1.24.0-1
- Use the "service_level_agreement" attribute for the SlaCommand
  ([email protected])
- 1623262: Make automatic enablement of yum plugins working again; ENT-820
  ([email protected])
- Start releasing to f29 ([email protected])
* Thu Aug 30 2018 Christopher Snyder  1.23.4-1
- 1600694: Log dbus exception tracebacks at the debug level
  ([email protected])
- 1623368: Register a system without a syspurpose.json file
  ([email protected])
- Revert "Add sles version to dist" ([email protected])
- 1596699: Handle non-existant rhsm-debug destination (ENT-780)
  ([email protected])
- Sync system purpose for sub-man subcommands ([email protected])
- Add man page for syspurpose. ([email protected])
- 1613968: DNF product-id plugin can install product cert; ENT-789
  ([email protected])
- Add sles version to dist ([email protected])
- Remove extraneous include in setup() ([email protected])
- Updated translations ([email protected])
- 1596001: Change syspurpose import error log level to debug level
  ([email protected])
- 1602702: rhsmcertd did not close lock file; ENT-736 ([email protected])
- Adds the addons set of commands to syspurpose ([email protected])
- 1581445: ENT-564: rhsm configuration manage_repos is not working on RHEL8
  ([email protected])
- Fix time stamps of pyc files ([email protected])
* Mon Aug 13 2018 Christopher Snyder  1.23.3-1
- 1606435: Rename the async module for compatibility with python 3.7; ENT-737
  ([email protected])
- Cockpit/Syspurpose service integration fix ([email protected])
- Display both new and old value in syspurpose diff message
  ([email protected])
- Fix sending single value of addons. ([email protected])
- Fix synchronization of usage with candlepin ([email protected])
- 1596294: Fix displayin RHSM Spoke in Initial Setup ([email protected])
- Syspurpose field value lists [ENT-766] ([email protected])
- ENT-717: Syncing of syspurpose store with candlepin ([email protected])
- 1609048: Replacement of imp module with importlib; ENT-758
  ([email protected])
* Fri Aug  3 2018 Christopher Snyder  1.23.2-1
- Move "nose" to test requirements for syspurpose ([email protected])
* Fri Aug  3 2018 Christopher Snyder  1.23.1-1
- Integrate Syspurpose DBus Signal with Cockpit ([email protected])
- Change usage_type to usage ([email protected])
- ENT-715 Sync syspurpose with server ([email protected])
- 1609052: DNF Plugin needs config initiated earlier ([email protected])
- 1608963: Minimize packaging for python 3 ([email protected])
- Improve test setup for syspurpose tests. ([email protected])
- Two simple fixes for syspurpose ([email protected])
- Raise ioerr when necessary during sp read ([email protected])
- ENT-720 Adds the addons subcommand ([email protected])
- 1602056: Added role subcommand ENT-719 ([email protected])
- Replace lsb-release in spec and Makefile ([email protected])
- Mock out syspurpose code from being executed in subman tests
  ([email protected])
- ENT-584 syspurpose UTF-8 support & better formatting - All syspurpose
  operations now support UTF-8 - syspurpose.json now has user-friendly
  indentation ([email protected])
- ENT-446 Report systempurpose on registration ([email protected])
- 1512944: Fix up remaining python2 deps ENT-724 ([email protected])
- ENT-721: Usage command ([email protected])
- ENT-590 Enhanced SyspurposeStore add/remove operations - 'add' will now not
  override an existing value that was added by the 'set' command, but it will
  be maintained and added in a list along with the newly added value. - 'add'
  will now not add an element to a list if the list already contains it (no
  duplicates). - 'remove' will now unset the current value, if that turns out
  to be scalar instead of being contained in a list. ([email protected])
- Move syspurpose out of packages directory. ([email protected])
- Correct small problems in syspurpose. ([email protected])
- ansible vagrant QOL fixes ([email protected])
- ENT-723: Add System Purpose Status to System Status output
  ([email protected])
- Improve debug logging for release listing ([email protected])
- Remove other references to python-kitchen. ([email protected])
- Make build_ext a proper dependency. ([email protected])
- Add zanata.xml configuration file and gettext keys.pot ([email protected])
- Move clean command to common build_ext module. ([email protected])
- Only gather optparse strings in subscription-manager. ([email protected])
- Move syspurpose source files to be under package directory.
  ([email protected])
- Look for source files based on package directory locations.
  ([email protected])
- Add gettext calls to syspurpose. ([email protected])
- Load build_ext i18n commands in setup.py ([email protected])
- Integrate Dbus signals with Cockpit GUI ([email protected])
- Do not install subman-gui from setup.py by default ([email protected])
- ENT-591 Handle when syspurpose.json is missing & create it.
  ([email protected])
- Fix indeterminate unit test failure. ([email protected])
- Removal of python-kitchen ([email protected])
- ENT-731 Replaced syspurpose 'offerings' commands with 'role': - Removed
  commands 'add-offerings', 'remove-offerings', 'unset-offerings' - Added
  commands 'set-role' and 'unset-role' ([email protected])
- ENT-589 Intentctl -> syspurpose ([email protected])
- ENT-710: Add three_way_merge utility function ([email protected])
- ENT-477: Add signal EntitlementsChanged ([email protected])
- ENT-476: Add signal InstalledProductsChanged ([email protected])
- 1594733: Fix GetStatus in com.redhat.RHSM1.Entitlement ENT-641
  ([email protected])
- Make vagrant setup more flexible ([email protected])
- ENT-475: Add signal ConfigChanged ([email protected])
- 1581777: Reraise exception properly. ENT-566 ([email protected])
- Replace curly quote with straight quote ([email protected])
- Add implementation of filesystem watcher ([email protected])
- 1581410: ENT-572: subman should require dnf-plugin-subscription-manager
  ([email protected])
- ENT-478 com.redhat.RHSM1.Consumer D-Bus service object ([email protected])
- 1576423: Polished changes provided in #1816 and added unit test.
  ([email protected])
* Fri Jun 22 2018 Christopher Snyder  1.22.1-1
- 1571998: Ignore HTB repos ([email protected])
- 1589296: subman list option --after now named --afterdate
  ([email protected])
- 1558411: Begin building dnf-plugin-subscription-manager for RHEL 7
  ([email protected])
- Use constant defined in cerdirectory.py. ([email protected])
- 1553266: When d-bus methods are unavailable, show appropriate message. *
  Added a "safe call" mechanism that makes the initial dbus calls
  (entitlementService, configService, productsService) only if the service is
  available, tries to restart the rhsm service if possible, and otherwise
  failing gracefully. * Added new UI curtain that provides a meaningful message
  and advice to the end user. * Re-added utility method statusUpdateFailed that
  was accidentally deleted. ([email protected])
- 1580996: Fix comparision of objects in Python 3 (ENT-578)
  ([email protected])
- Make xauth Idempotent again ([email protected])
- Fixes missing locale issues while running nosetests ([email protected])
- Remove freezegun ([email protected])
- 1576582: Make rhsm.full_fresh_on_yum=1 working again (ENT-534)
  ([email protected])
- ansible-fix: fixed ansible failing during vagrant up ([email protected])
- Update the license of the subman-cockpit-plugin to GPLv2 ([email protected])
- 1510920: Allow access to job cancellation API ([email protected])
- ENT-447 Add icons to RPM package for subman cockpit plugin
  ([email protected])
* Fri Jun  8 2018 Christopher Snyder  1.22.0-1
- Remove F26 from releasers (Fedora 26 EOL) ([email protected])
* Thu Jun  7 2018 Christopher Snyder  1.21.5-1
- Fix python-rhsm Provides and Obsoletes ([email protected])
- 1568609: Updated man page for --after list option ([email protected])
- Get Initial Setup Addon to run during installation in Vagrant
  ([email protected])
- ENT-447 Create .desktop file that opens web page with our cockpit plugin
  ([email protected])
- ENT-481 service-level command & options now update syspurpose metadata
  ([email protected])
- 1560727: Search for proxy auth message in whole error string
  ([email protected])
- 1555384: get_libexecdir now returns a string instead of bytes
  ([email protected])
- Added generic set/unset and add/remove commands to syspurpose
  ([email protected])
- ENT-488 syspurpose now warns if running in container ([email protected])
- 1574706: Create python2-subscription-manager-rhsm properly
  ([email protected])
- Automatic rebuilding of updates.img on PXE Server ([email protected])
- 1574529: Fix rhsmcertd integer overflow on i386 & i686 ([email protected])
- Respecting proxy port configured in rhsm.conf ([email protected])
* Tue May  1 2018 Christopher Snyder  1.21.4-3
- Add dist back to release ([email protected])
* Tue May  1 2018 Christopher Snyder  1.21.4-2
- Add missing buildrequires to fix upstream fedora python2 builds
  ([email protected])
* Tue May  1 2018 Christopher Snyder  1.21.4-1
- Stop building subscription-manager-gui, when Python 3 is used
  ([email protected])
- Remove kitchen from install_requires ([email protected])
* Wed Apr 25 2018 Christopher Snyder  1.21.3-1
- 1439645: Perform a full entitlement refresh in the yum/dnf/zypper plugins
  ([email protected])
- 1527727: Add proc_stat.btime fact ([email protected])
- 1568214: rhsmcertd no longer uses reload on py3 ([email protected])
- 1559227: Do not use str format for python 2.6 ([email protected])
- 1425766: Additional message in status to indicate content access
  ([email protected])
- Adds a new cli utility 'syspurpose' ([email protected])
- 1559227: Do not log Error messages for missing identity cert/key
  ([email protected])
- 1458159: python-dmidecode bug fix requires specific RPM release.
  ([email protected])
- fix for proxy-server provisioning - resolving of 'candlepin.example.com'
  ([email protected])
- 1458159: Require latest version of python-dmidecode ([email protected])
- 1551044: Add the option to build both python{3,2}-subscription-manager-rhsm
  ([email protected])
- 1559743: Reduce log level of network address fact collection to debug
  ([email protected])
- added a vagrant section for a VM for proxy-server ([email protected])
- ansible role rhsm-services and TESTING.md document ([email protected])
- Fix updates.img to include required Python packages ([email protected])
- Do not remove existing zypper repos when disconnected ([email protected])
- Apply updates.img druing PXE boot ([email protected])
- Do not use private network addresses for vagrant hostmanager
  ([email protected])
- Adds tool to make updates.img file for use with anaconda ([email protected])
- 1554482: Reenable RHUI support ([email protected])
- Fix building on SLES 11 ([email protected])
- Added PXE BOOT client to the Vagrant setup ([email protected])
- New Vagrant file for creating PXEBOOT server ([email protected])
- 1551386: Cannot put unicode into gtk for button label ([email protected])
- 1551465: Fix unicode decode issue on py 2.6 ([email protected])
- Remove unneeded spec file directives ([email protected])
* Tue Feb 27 2018 Alex Wood  1.21.2-3
- Add missing dist macro to release
* Mon Feb 26 2018 Alex Wood  1.21.2-2
- Remove %clean section ([email protected])
- Remove BuildRoot definition ([email protected])
* Mon Feb 26 2018 Alex Wood  1.21.2-1
- 1547354: Add missing requires for python-kitchen ([email protected])
- 1528625: Prevent dmidecode failure from returning None ([email protected])
- 1543639: Properly encode package profile data ([email protected])
- 1527396: Subman cockpit plugin - fix registration using act. keys
  ([email protected])
- 1535974: Close register dialog, when status is changed ([email protected])
- Add start date to available pool listing ([email protected])
- Condition requiring --after and --all is unnecessary ([email protected])
- 1510024: Handle rhel-alt product tags properly ([email protected])
- 1540204: Raise RateLimitExceededException with headers ([email protected])
- 1533905: Remove dependency on yum and chkconfig. ([email protected])
- 1479353: Add --after option to list command ([email protected])
- 1537473: Subman rpm requires python-setuptools ([email protected])
- 1525238: Do not protect rhel prod. cert with special case
  ([email protected])
- 1526622: Do not delete product certificates in protected directory
  ([email protected])
- 1519512: Handle non-UTF8 RPM vendors ([email protected])
- 1487600: Fix registration success detection ([email protected])
- 1527813: subman-gui use new URL of Online Documentation ([email protected])
- 1527392: Clear credential data in register dialog ([email protected])
- rct cat-manifest: show Web and API urls from consumer.json ([email protected])
- Use dnf on RHEL or Fedora w/ using Python 3 ([email protected])
- 1507030: RestlibExceptions should show they originate server-side
  ([email protected])
- Package for Python 3 on Fedora ([email protected])
* Fri Feb  9 2018 Fedora Release Engineering  - 1.21.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jan 11 2018 Alex Wood  1.21.1-1
- Do not enable gpgcheck if the only a metadata gpg key is configured
  ([email protected])
- 1448313: Do not log error, when rhsmcertd is restarted ([email protected])
- Support configuration of a repo metadata signing key ([email protected])
- Generate bin scripts via setuptools entry_points ([email protected])
- 1304056: Fix D-Bus path of com.redhat.RHSM1.Facts ([email protected])
- 1516439: Cockpit reports error during unregister when candlepin unavailable
  ([email protected])
- 1510727: Enable starting of subman GUI, when consumer has been deleted
  ([email protected])
* Mon Dec 11 2017 Kevin Howell  1.20.8-1
- Sync zanata translations ([email protected])
- Add parameter to D-Bus API to pass locale for localization of errors
  ([email protected])
- 1463765: Fix wrong Indic-language translations ([email protected])
- 1487600: Cockpit - Save configuration from register dialog
  ([email protected])
- 1464571: Improve multiple product certs errors ([email protected])
- Replace cockpit-subscriptions ([email protected])
- 1507158: Provide Host: in http CONNECT header ([email protected])
- 1319927: Remove newline from auto enable message ([email protected])
* Tue Nov 28 2017 Kevin Howell  1.20.7-1
- Sync zanata translations ([email protected])
* Tue Nov 28 2017 Kevin Howell  1.20.6-1
- Sync zanata translations ([email protected])
- 1514067: Call virt-what using absolute path ([email protected])
- 1487688: Load config settings for cockpit plugin ([email protected])
- Added dependencies to cockpit-bridge and cockpit-shell. ([email protected])
- 1462456: Flush stdout and stderr on more places ([email protected])
- 1491842: fixed typo in man page. ([email protected])
- 1508591: Removed python-rhsm from subscription-manager version
  ([email protected])
- 1421010: Subman-GUI shows error dialog (wrong proxy settings)
  ([email protected])
- 1500106: subscription-manager status --ondate do not ignore date
  ([email protected])
- 1506970: Fixed default custom URL in cockpit plugin ([email protected])
* Thu Nov  2 2017 Kevin Howell  1.20.5-1
- Sync zanata translations ([email protected])
- Cockpit - listing of installed products using patternfly-react
  ([email protected])
- 1508457: Bump versions in python-rhsm obsoletes ([email protected])
- Implement fallback for settimeout on old m2crypto ([email protected])
- Cockpit: reconcile translated strings ([email protected])
- Cockpit: use translations from root dir ([email protected])
* Mon Oct 30 2017 Kevin Howell  1.20.4-1
- Fix cockpit tgz path in spec file ([email protected])
* Mon Oct 30 2017 Kevin Howell  1.20.3-1
- Cockpit: Implement modal dialog ([email protected]dhat.com)
- Implement bootstrap-select component ([email protected])
- Port cockpit subscriptions-client to dbus ([email protected])
- Move python-rhsm build into subscription-manager ([email protected])
- 1354667: Add identity cert detection to proxy error message generation
  ([email protected])
- 1501889: Enable yum plugins after sub-man subcommand is executed
  ([email protected])
- 1477958: Use inotify for checking changes of consumer certs
  ([email protected])
* Mon Oct  9 2017 Kevin Howell  1.20.2-1
- Sync zanata translations ([email protected])
- Bump python-rhsm requirement to 1.20.2 ([email protected])
- 1448313: Do not log error, when rhsm_icon.json does not exist
  ([email protected])
- 1354667: Better message for proxy/identity cert issue ([email protected])
- 1489917: More robust reading of yum plugin file ([email protected])
- 1491842: Add man page doc for [rhsm] auto_enable_yum_plugins
  ([email protected])
- 1493711: Fix --matches option for the list command. ([email protected])
- 1476817: Set network.ipv4_address properly, when DNS misconfigured.
  ([email protected])
- 1483746: Force UTF-8 encoding in rhsm-service ([email protected])
- rename RepoFile to YumRepoFile ([email protected])
- 1466453: [RFE] rhn-migrate-classic-to-rhsm auto-enable yum plugins
  ([email protected])
- D-Bus service for removing entitlements (all/ID/serial num.)
  ([email protected])
- 1489917: More robust reading of yum plugin file ([email protected])
- 1489877: minor typo in /etc/rhsm/rhsm.conf comment ([email protected])
- restructure RepoFile hierarchy ([email protected])
- 1319927: [RFE] sub-man automatically enables yum plugins ([email protected])
- Fix polymorphy for RHSMLogHandler ([email protected])
- 1481384: Do not update redhat.repo at RateLimitExceededException
  ([email protected])
- 1485008: subman register --type="RHUI" should work ([email protected])
- 1481384: Do not update redhat.repo at RateLimitExceededException (#1685)
  ([email protected])
- Do not attempt to register if already registered. ([email protected])
- Integrate registration service into RegisterCommand. ([email protected])
- 1480659: Properly initialize clean repo copy ([email protected])
- D-Bus service for unregistering system (#1680) ([email protected])
- Add an entitlement service and use it in the CLI and DBus. ([email protected])
- Remove unneeded plugin conduit. ([email protected])
- Clean up imports in dbus.base_object ([email protected])
- Move certificate persistence into register service itself. ([email protected])
- 1480395: Force UTF-8 encoding in daemons ([email protected])
- 1464571: 'sub-man release' prints error for more prod. certs.
  ([email protected])
- 1400326: Better error print, when consumer cert is corrupted
  ([email protected])
- Reload identity after registering. ([email protected])
- Move registration code to a distinct service. ([email protected])
- The get_installed_product_status() is now method of InstalledProducts, small
  changes, refactoring. ([email protected])
- D-Bus service for listing installed products ([email protected])
- 1461003: Deprecate --type option on register command ([email protected])
- 1462928: Reset status after connection validation ([email protected])
- 1330036: Better status error message for initial-setup ([email protected])
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1553266 - Oops! in subscription-manager-cockpit TypeError: f.GetStatus is not a function
        https://bugzilla.redhat.com/show_bug.cgi?id=1553266
  [ 2 ] Bug #1434493 - CVE-2017-2663 subscription-manager: unsafe dbus interface [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1434493
  [ 3 ] Bug #1612282 - Man page scan results for subscription-manager
        https://bugzilla.redhat.com/show_bug.cgi?id=1612282
  [ 4 ] Bug #1564735 - subscription-manager-rhsm subpackage has been dropped on Fedora 27
        https://bugzilla.redhat.com/show_bug.cgi?id=1564735
  [ 5 ] Bug #1505955 - claims "subscription required" which is false on Fedora
        https://bugzilla.redhat.com/show_bug.cgi?id=1505955
  [ 6 ] Bug #1156510 - [rfe] use dnf instead of yum (if dnf is installed)
        https://bugzilla.redhat.com/show_bug.cgi?id=1156510
  [ 7 ] Bug #1598514 - [RFE] Set owner/group/umask for /etc/pki/entitlement/ certs
        https://bugzilla.redhat.com/show_bug.cgi?id=1598514
  [ 8 ] Bug #1446256 - [RFE] Too large dependency chain
        https://bugzilla.redhat.com/show_bug.cgi?id=1446256
  [ 9 ] Bug #1555384 - Broken Exec=  line in com.redhat.SubscriptionManager.service
        https://bugzilla.redhat.com/show_bug.cgi?id=1555384
  [ 10 ] Bug #1547354 - subscription-manager is missing dependency on "python2-kitchen" on f27
        https://bugzilla.redhat.com/show_bug.cgi?id=1547354
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-91ba32a0ff' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]

Fedora 27: subscription-manager Security Update

November 15, 2018
This is a primarily maintenance update

Summary

The Subscription Manager package provides programs and libraries to allow users

to manage subscriptions and yum repositories from the Red Hat entitlement

platform.

Update Information:

This is a primarily maintenance update. Please see the attached bugs for more specific details on what has improved as far as stability is concerned. There is also a larger new feature which is being released in concert with work being done in Katello / Foreman. Subscription-manager has a concept of a package- profile. This contains information on all installed rpm packages for the system on which it is running. We have expanded this reporting capability to include information on enabled and installed modules from modulemd as well as to report on which repositories this system has enabled presently. This information is combined into a group of reports and submitted to the same endpoint on Katello / Foreman. The new request is a PUT to /consumers/{consumer_uuid}/profiles. This is done only when the string "combined_reporting" in the managerCapabilities key of the response to a GET /status. The old just rpm profile reporting is still done as a PUT to /consumers/{consumer_uuid}/packages. This is at this point only done if the server side does not support the new capability. More will likely be added in the future to further expand on this capability of reporting. ---- Numerous bug fixes. Please see the rpm changelog for details.

Change Log

* Mon Nov 5 2018 Christopher Snyder 1.24.2-1 - 1645205: Do not update ent certs inside containers ([email protected]) - 1633304: Disable zypper product-id plugin. ([email protected]) - Fedora documentation guidelines favor global over define. ([email protected]) - Show installed profiles only for enabled modules ([email protected]) - 1631339: Fix os.errno issue ([email protected]) - Add a missing comma in test_cache ([email protected]) - Add module enabled and disabled information ([email protected]) - 1636381: Fix up our detection of missing org for service-level list ([email protected]) - 1616403: Better handling of missing locale use ([email protected]) - 1636381: Handle case of nonexistant org ([email protected]) - Add scripts to setup local development environment ([email protected]) - 1633380: Add syspurpose compliance status cache - Altered the syspurpose compliance status connection call to use the /consumers/{uuid}/purpose_compliance API instead of fetching the consumer object and reading the syspurpose compliance field off of it. - Added new syspurpose compliance status cache saved in /var/lib/rhsm/cache/syspurpose_compliance_status.json similar to the entitlement status cache. - When the server is unreachable, we don't traceback, but rather use the new cache value instead. ([email protected]) - 1639625: Tolerate server missing syspurpose fields ([email protected]) - 1639086: Fix vendor comparison ([email protected]) - Includes the installed module profiles ([email protected]) - 1623390: Fix unregistered messaging in syspurpose ([email protected]) - 1637183: Replace redhat-uep.pem properly ([email protected]) - 1632797: Only save SLA set during register or attach if specified ([email protected]) - Updated how syspurpose handles unsetting values ([email protected]) - Update man page for report_package_profile option ([email protected]) - Automatic commit of package [subscription-manager] release [1.24.1-1]. ([email protected]) - 1616366: Use LANG from environment ([email protected]) - syspurpose no longer supresses JSON malformation errors ([email protected]) - Rename zypper plugin to rhsm ([email protected]) - 1632384: Sync SLA regardless of capability: ([email protected]) - 1621783: Updated syspurpose fields to match expected values ([email protected]) - 1632248: User should be able to set/unset while not registered ([email protected]) - 1633575: Update error message when syspurpose is not supported by server ([email protected]) - 1614925: Fix grammar ([email protected]) * Mon Oct 15 2018 Christopher Snyder 1.24.1-1 - Rename zypper plugin to rhsm ([email protected]) - 1632384: Sync SLA regardless of capability: ([email protected]) - 1621783: Updated syspurpose fields to match expected values ([email protected]) - 1633575: Update error message when syspurpose is not supported by server ([email protected]) - 1614925: Fix grammar ([email protected]) - Added support of modulemd to combined profile; ENT-834 ([email protected]) - 1620136: dnf plugin deletes prod cert as expected; ENT-773 ([email protected]) - 1615944: Show help when no args are provided ([email protected]) - 1614943: Fix bytes/unicode handling of dmi data ([email protected]) - 1618825: Rename de_DE.po and es_ES.po ([email protected]) - Combined profile: WIP enabled repos ([email protected]) - Added list of enabled repos to combined profile; ENT-833 ([email protected]) - 1607955: WIP: polishing PR with bug fix of release --list ([email protected]) - Fixed name of capability and added two unit tests. ([email protected]) - Explict requires added for package we use directly ([email protected]) - 1581410: Eliminate potential for circular dependency ([email protected]) - 1631076: subscription-manager rpm now requires python3-syspurpose ([email protected]) - For tito build, clean the yarn cache ([email protected]) - Fix ubuntu compat for virt-who travis runs ([email protected]) - Fix RPMDiff issue with multilib ([email protected]) - Use Combined Profile reporting ([email protected]) - 1629073: No python3-dmidecode on aarch64, ppc64le ([email protected]) - Simplify and fix subpackages logic ([email protected]) - 1614653: Update intermediate CA ([email protected]) - Fix spelling to capitalize Workstation properly ([email protected]) - 1607955: Try to use all entitlement certs for connection with CDN ([email protected]) - Use pre-provisioned centos7 box ([email protected]) - Vagrant: use ansible-role-subman-devel via galaxy ([email protected]) - Vagrant: skip provisioning if var needs_provision is false ([email protected]) * Mon Sep 10 2018 Christopher Snyder 1.24.0-1 - Use the "service_level_agreement" attribute for the SlaCommand ([email protected]) - 1623262: Make automatic enablement of yum plugins working again; ENT-820 ([email protected]) - Start releasing to f29 ([email protected]) * Thu Aug 30 2018 Christopher Snyder 1.23.4-1 - 1600694: Log dbus exception tracebacks at the debug level ([email protected]) - 1623368: Register a system without a syspurpose.json file ([email protected]) - Revert "Add sles version to dist" ([email protected]) - 1596699: Handle non-existant rhsm-debug destination (ENT-780) ([email protected]) - Sync system purpose for sub-man subcommands ([email protected]) - Add man page for syspurpose. ([email protected]) - 1613968: DNF product-id plugin can install product cert; ENT-789 ([email protected]) - Add sles version to dist ([email protected]) - Remove extraneous include in setup() ([email protected]) - Updated translations ([email protected]) - 1596001: Change syspurpose import error log level to debug level ([email protected]) - 1602702: rhsmcertd did not close lock file; ENT-736 ([email protected]) - Adds the addons set of commands to syspurpose ([email protected]) - 1581445: ENT-564: rhsm configuration manage_repos is not working on RHEL8 ([email protected]) - Fix time stamps of pyc files ([email protected]) * Mon Aug 13 2018 Christopher Snyder 1.23.3-1 - 1606435: Rename the async module for compatibility with python 3.7; ENT-737 ([email protected]) - Cockpit/Syspurpose service integration fix ([email protected]) - Display both new and old value in syspurpose diff message ([email protected]) - Fix sending single value of addons. ([email protected]) - Fix synchronization of usage with candlepin ([email protected]) - 1596294: Fix displayin RHSM Spoke in Initial Setup ([email protected]) - Syspurpose field value lists [ENT-766] ([email protected]) - ENT-717: Syncing of syspurpose store with candlepin ([email protected]) - 1609048: Replacement of imp module with importlib; ENT-758 ([email protected]) * Fri Aug 3 2018 Christopher Snyder 1.23.2-1 - Move "nose" to test requirements for syspurpose ([email protected]) * Fri Aug 3 2018 Christopher Snyder 1.23.1-1 - Integrate Syspurpose DBus Signal with Cockpit ([email protected]) - Change usage_type to usage ([email protected]) - ENT-715 Sync syspurpose with server ([email protected]) - 1609052: DNF Plugin needs config initiated earlier ([email protected]) - 1608963: Minimize packaging for python 3 ([email protected]) - Improve test setup for syspurpose tests. ([email protected]) - Two simple fixes for syspurpose ([email protected]) - Raise ioerr when necessary during sp read ([email protected]) - ENT-720 Adds the addons subcommand ([email protected]) - 1602056: Added role subcommand ENT-719 ([email protected]) - Replace lsb-release in spec and Makefile ([email protected]) - Mock out syspurpose code from being executed in subman tests ([email protected]) - ENT-584 syspurpose UTF-8 support & better formatting - All syspurpose operations now support UTF-8 - syspurpose.json now has user-friendly indentation ([email protected]) - ENT-446 Report systempurpose on registration ([email protected]) - 1512944: Fix up remaining python2 deps ENT-724 ([email protected]) - ENT-721: Usage command ([email protected]) - ENT-590 Enhanced SyspurposeStore add/remove operations - 'add' will now not override an existing value that was added by the 'set' command, but it will be maintained and added in a list along with the newly added value. - 'add' will now not add an element to a list if the list already contains it (no duplicates). - 'remove' will now unset the current value, if that turns out to be scalar instead of being contained in a list. ([email protected]) - Move syspurpose out of packages directory. ([email protected]) - Correct small problems in syspurpose. ([email protected]) - ansible vagrant QOL fixes ([email protected]) - ENT-723: Add System Purpose Status to System Status output ([email protected]) - Improve debug logging for release listing ([email protected]) - Remove other references to python-kitchen. ([email protected]) - Make build_ext a proper dependency. ([email protected]) - Add zanata.xml configuration file and gettext keys.pot ([email protected]) - Move clean command to common build_ext module. ([email protected]) - Only gather optparse strings in subscription-manager. ([email protected]) - Move syspurpose source files to be under package directory. ([email protected]) - Look for source files based on package directory locations. ([email protected]) - Add gettext calls to syspurpose. ([email protected]) - Load build_ext i18n commands in setup.py ([email protected]) - Integrate Dbus signals with Cockpit GUI ([email protected]) - Do not install subman-gui from setup.py by default ([email protected]) - ENT-591 Handle when syspurpose.json is missing & create it. ([email protected]) - Fix indeterminate unit test failure. ([email protected]) - Removal of python-kitchen ([email protected]) - ENT-731 Replaced syspurpose 'offerings' commands with 'role': - Removed commands 'add-offerings', 'remove-offerings', 'unset-offerings' - Added commands 'set-role' and 'unset-role' ([email protected]) - ENT-589 Intentctl -> syspurpose ([email protected]) - ENT-710: Add three_way_merge utility function ([email protected]) - ENT-477: Add signal EntitlementsChanged ([email protected]) - ENT-476: Add signal InstalledProductsChanged ([email protected]) - 1594733: Fix GetStatus in com.redhat.RHSM1.Entitlement ENT-641 ([email protected]) - Make vagrant setup more flexible ([email protected]) - ENT-475: Add signal ConfigChanged ([email protected]) - 1581777: Reraise exception properly. ENT-566 ([email protected]) - Replace curly quote with straight quote ([email protected]) - Add implementation of filesystem watcher ([email protected]) - 1581410: ENT-572: subman should require dnf-plugin-subscription-manager ([email protected]) - ENT-478 com.redhat.RHSM1.Consumer D-Bus service object ([email protected]) - 1576423: Polished changes provided in #1816 and added unit test. ([email protected]) * Fri Jun 22 2018 Christopher Snyder 1.22.1-1 - 1571998: Ignore HTB repos ([email protected]) - 1589296: subman list option --after now named --afterdate ([email protected]) - 1558411: Begin building dnf-plugin-subscription-manager for RHEL 7 ([email protected]) - Use constant defined in cerdirectory.py. ([email protected]) - 1553266: When d-bus methods are unavailable, show appropriate message. * Added a "safe call" mechanism that makes the initial dbus calls (entitlementService, configService, productsService) only if the service is available, tries to restart the rhsm service if possible, and otherwise failing gracefully. * Added new UI curtain that provides a meaningful message and advice to the end user. * Re-added utility method statusUpdateFailed that was accidentally deleted. ([email protected]) - 1580996: Fix comparision of objects in Python 3 (ENT-578) ([email protected]) - Make xauth Idempotent again ([email protected]) - Fixes missing locale issues while running nosetests ([email protected]) - Remove freezegun ([email protected]) - 1576582: Make rhsm.full_fresh_on_yum=1 working again (ENT-534) ([email protected]) - ansible-fix: fixed ansible failing during vagrant up ([email protected]) - Update the license of the subman-cockpit-plugin to GPLv2 ([email protected]) - 1510920: Allow access to job cancellation API ([email protected]) - ENT-447 Add icons to RPM package for subman cockpit plugin ([email protected]) * Fri Jun 8 2018 Christopher Snyder 1.22.0-1 - Remove F26 from releasers (Fedora 26 EOL) ([email protected]) * Thu Jun 7 2018 Christopher Snyder 1.21.5-1 - Fix python-rhsm Provides and Obsoletes ([email protected]) - 1568609: Updated man page for --after list option ([email protected]) - Get Initial Setup Addon to run during installation in Vagrant ([email protected]) - ENT-447 Create .desktop file that opens web page with our cockpit plugin ([email protected]) - ENT-481 service-level command & options now update syspurpose metadata ([email protected]) - 1560727: Search for proxy auth message in whole error string ([email protected]) - 1555384: get_libexecdir now returns a string instead of bytes ([email protected]) - Added generic set/unset and add/remove commands to syspurpose ([email protected]) - ENT-488 syspurpose now warns if running in container ([email protected]) - 1574706: Create python2-subscription-manager-rhsm properly ([email protected]) - Automatic rebuilding of updates.img on PXE Server ([email protected]) - 1574529: Fix rhsmcertd integer overflow on i386 & i686 ([email protected]) - Respecting proxy port configured in rhsm.conf ([email protected]) * Tue May 1 2018 Christopher Snyder 1.21.4-3 - Add dist back to release ([email protected]) * Tue May 1 2018 Christopher Snyder 1.21.4-2 - Add missing buildrequires to fix upstream fedora python2 builds ([email protected]) * Tue May 1 2018 Christopher Snyder 1.21.4-1 - Stop building subscription-manager-gui, when Python 3 is used ([email protected]) - Remove kitchen from install_requires ([email protected]) * Wed Apr 25 2018 Christopher Snyder 1.21.3-1 - 1439645: Perform a full entitlement refresh in the yum/dnf/zypper plugins ([email protected]) - 1527727: Add proc_stat.btime fact ([email protected]) - 1568214: rhsmcertd no longer uses reload on py3 ([email protected]) - 1559227: Do not use str format for python 2.6 ([email protected]) - 1425766: Additional message in status to indicate content access ([email protected]) - Adds a new cli utility 'syspurpose' ([email protected]) - 1559227: Do not log Error messages for missing identity cert/key ([email protected]) - 1458159: python-dmidecode bug fix requires specific RPM release. ([email protected]) - fix for proxy-server provisioning - resolving of 'candlepin.example.com' ([email protected]) - 1458159: Require latest version of python-dmidecode ([email protected]) - 1551044: Add the option to build both python{3,2}-subscription-manager-rhsm ([email protected]) - 1559743: Reduce log level of network address fact collection to debug ([email protected]) - added a vagrant section for a VM for proxy-server ([email protected]) - ansible role rhsm-services and TESTING.md document ([email protected]) - Fix updates.img to include required Python packages ([email protected]) - Do not remove existing zypper repos when disconnected ([email protected]) - Apply updates.img druing PXE boot ([email protected]) - Do not use private network addresses for vagrant hostmanager ([email protected]com) - Adds tool to make updates.img file for use with anaconda ([email protected]) - 1554482: Reenable RHUI support ([email protected]) - Fix building on SLES 11 ([email protected]) - Added PXE BOOT client to the Vagrant setup ([email protected]) - New Vagrant file for creating PXEBOOT server ([email protected]) - 1551386: Cannot put unicode into gtk for button label ([email protected]) - 1551465: Fix unicode decode issue on py 2.6 ([email protected]) - Remove unneeded spec file directives ([email protected]) * Tue Feb 27 2018 Alex Wood 1.21.2-3 - Add missing dist macro to release * Mon Feb 26 2018 Alex Wood 1.21.2-2 - Remove %clean section ([email protected]) - Remove BuildRoot definition ([email protected]) * Mon Feb 26 2018 Alex Wood 1.21.2-1 - 1547354: Add missing requires for python-kitchen ([email protected]) - 1528625: Prevent dmidecode failure from returning None ([email protected]) - 1543639: Properly encode package profile data ([email protected]) - 1527396: Subman cockpit plugin - fix registration using act. keys ([email protected]) - 1535974: Close register dialog, when status is changed ([email protected]) - Add start date to available pool listing ([email protected]) - Condition requiring --after and --all is unnecessary ([email protected]) - 1510024: Handle rhel-alt product tags properly ([email protected]) - 1540204: Raise RateLimitExceededException with headers ([email protected]) - 1533905: Remove dependency on yum and chkconfig. ([email protected]) - 1479353: Add --after option to list command ([email protected]) - 1537473: Subman rpm requires python-setuptools ([email protected]) - 1525238: Do not protect rhel prod. cert with special case ([email protected]) - 1526622: Do not delete product certificates in protected directory ([email protected]) - 1519512: Handle non-UTF8 RPM vendors ([email protected]) - 1487600: Fix registration success detection ([email protected]) - 1527813: subman-gui use new URL of Online Documentation ([email protected]) - 1527392: Clear credential data in register dialog ([email protected]) - rct cat-manifest: show Web and API urls from consumer.json ([email protected]) - Use dnf on RHEL or Fedora w/ using Python 3 ([email protected]) - 1507030: RestlibExceptions should show they originate server-side ([email protected]) - Package for Python 3 on Fedora ([email protected]) * Fri Feb 9 2018 Fedora Release Engineering - 1.21.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Jan 11 2018 Alex Wood 1.21.1-1 - Do not enable gpgcheck if the only a metadata gpg key is configured ([email protected]) - 1448313: Do not log error, when rhsmcertd is restarted ([email protected]) - Support configuration of a repo metadata signing key ([email protected]) - Generate bin scripts via setuptools entry_points ([email protected]) - 1304056: Fix D-Bus path of com.redhat.RHSM1.Facts ([email protected]) - 1516439: Cockpit reports error during unregister when candlepin unavailable ([email protected]) - 1510727: Enable starting of subman GUI, when consumer has been deleted ([email protected]) * Mon Dec 11 2017 Kevin Howell 1.20.8-1 - Sync zanata translations ([email protected]) - Add parameter to D-Bus API to pass locale for localization of errors ([email protected]) - 1463765: Fix wrong Indic-language translations ([email protected]) - 1487600: Cockpit - Save configuration from register dialog ([email protected]) - 1464571: Improve multiple product certs errors ([email protected]) - Replace cockpit-subscriptions ([email protected]) - 1507158: Provide Host: in http CONNECT header ([email protected]) - 1319927: Remove newline from auto enable message ([email protected]) * Tue Nov 28 2017 Kevin Howell 1.20.7-1 - Sync zanata translations ([email protected]) * Tue Nov 28 2017 Kevin Howell 1.20.6-1 - Sync zanata translations ([email protected]) - 1514067: Call virt-what using absolute path ([email protected]) - 1487688: Load config settings for cockpit plugin ([email protected]) - Added dependencies to cockpit-bridge and cockpit-shell. ([email protected]) - 1462456: Flush stdout and stderr on more places ([email protected]) - 1491842: fixed typo in man page. ([email protected]) - 1508591: Removed python-rhsm from subscription-manager version ([email protected]) - 1421010: Subman-GUI shows error dialog (wrong proxy settings) ([email protected]) - 1500106: subscription-manager status --ondate do not ignore date ([email protected]) - 1506970: Fixed default custom URL in cockpit plugin ([email protected]) * Thu Nov 2 2017 Kevin Howell 1.20.5-1 - Sync zanata translations ([email protected]) - Cockpit - listing of installed products using patternfly-react ([email protected]) - 1508457: Bump versions in python-rhsm obsoletes ([email protected]) - Implement fallback for settimeout on old m2crypto ([email protected]) - Cockpit: reconcile translated strings ([email protected]) - Cockpit: use translations from root dir ([email protected]) * Mon Oct 30 2017 Kevin Howell 1.20.4-1 - Fix cockpit tgz path in spec file ([email protected]) * Mon Oct 30 2017 Kevin Howell 1.20.3-1 - Cockpit: Implement modal dialog ([email protected]) - Implement bootstrap-select component ([email protected]) - Port cockpit subscriptions-client to dbus ([email protected]) - Move python-rhsm build into subscription-manager ([email protected]) - 1354667: Add identity cert detection to proxy error message generation ([email protected]) - 1501889: Enable yum plugins after sub-man subcommand is executed ([email protected]) - 1477958: Use inotify for checking changes of consumer certs ([email protected]) * Mon Oct 9 2017 Kevin Howell 1.20.2-1 - Sync zanata translations ([email protected]) - Bump python-rhsm requirement to 1.20.2 ([email protected]) - 1448313: Do not log error, when rhsm_icon.json does not exist ([email protected]) - 1354667: Better message for proxy/identity cert issue ([email protected]) - 1489917: More robust reading of yum plugin file ([email protected]) - 1491842: Add man page doc for [rhsm] auto_enable_yum_plugins ([email protected]) - 1493711: Fix --matches option for the list command. ([email protected]) - 1476817: Set network.ipv4_address properly, when DNS misconfigured. ([email protected]) - 1483746: Force UTF-8 encoding in rhsm-service ([email protected]) - rename RepoFile to YumRepoFile ([email protected]) - 1466453: [RFE] rhn-migrate-classic-to-rhsm auto-enable yum plugins ([email protected]) - D-Bus service for removing entitlements (all/ID/serial num.) ([email protected]) - 1489917: More robust reading of yum plugin file ([email protected]) - 1489877: minor typo in /etc/rhsm/rhsm.conf comment ([email protected]) - restructure RepoFile hierarchy ([email protected]) - 1319927: [RFE] sub-man automatically enables yum plugins ([email protected]) - Fix polymorphy for RHSMLogHandler ([email protected]) - 1481384: Do not update redhat.repo at RateLimitExceededException ([email protected]) - 1485008: subman register --type="RHUI" should work ([email protected]) - 1481384: Do not update redhat.repo at RateLimitExceededException (#1685) ([email protected]) - Do not attempt to register if already registered. ([email protected]) - Integrate registration service into RegisterCommand. ([email protected]) - 1480659: Properly initialize clean repo copy ([email protected]) - D-Bus service for unregistering system (#1680) ([email protected]) - Add an entitlement service and use it in the CLI and DBus. ([email protected]) - Remove unneeded plugin conduit. ([email protected]) - Clean up imports in dbus.base_object ([email protected]) - Move certificate persistence into register service itself. ([email protected]) - 1480395: Force UTF-8 encoding in daemons ([email protected]) - 1464571: 'sub-man release' prints error for more prod. certs. ([email protected]) - 1400326: Better error print, when consumer cert is corrupted ([email protected]) - Reload identity after registering. ([email protected]) - Move registration code to a distinct service. ([email protected]) - The get_installed_product_status() is now method of InstalledProducts, small changes, refactoring. ([email protected]) - D-Bus service for listing installed products ([email protected]) - 1461003: Deprecate --type option on register command ([email protected]) - 1462928: Reset status after connection validation ([email protected]) - 1330036: Better status error message for initial-setup ([email protected])

References

[ 1 ] Bug #1553266 - Oops! in subscription-manager-cockpit TypeError: f.GetStatus is not a function https://bugzilla.redhat.com/show_bug.cgi?id=1553266 [ 2 ] Bug #1434493 - CVE-2017-2663 subscription-manager: unsafe dbus interface [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1434493 [ 3 ] Bug #1612282 - Man page scan results for subscription-manager https://bugzilla.redhat.com/show_bug.cgi?id=1612282 [ 4 ] Bug #1564735 - subscription-manager-rhsm subpackage has been dropped on Fedora 27 https://bugzilla.redhat.com/show_bug.cgi?id=1564735 [ 5 ] Bug #1505955 - claims "subscription required" which is false on Fedora https://bugzilla.redhat.com/show_bug.cgi?id=1505955 [ 6 ] Bug #1156510 - [rfe] use dnf instead of yum (if dnf is installed) https://bugzilla.redhat.com/show_bug.cgi?id=1156510 [ 7 ] Bug #1598514 - [RFE] Set owner/group/umask for /etc/pki/entitlement/ certs https://bugzilla.redhat.com/show_bug.cgi?id=1598514 [ 8 ] Bug #1446256 - [RFE] Too large dependency chain https://bugzilla.redhat.com/show_bug.cgi?id=1446256 [ 9 ] Bug #1555384 - Broken Exec= line in com.redhat.SubscriptionManager.service https://bugzilla.redhat.com/show_bug.cgi?id=1555384 [ 10 ] Bug #1547354 - subscription-manager is missing dependency on "python2-kitchen" on f27 https://bugzilla.redhat.com/show_bug.cgi?id=1547354

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-91ba32a0ff' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : subscription-manager
Product : Fedora 27
Version : 1.24.2
Release : 1.fc27
URL : https://www.candlepinproject.org/
Summary : Tools and libraries for subscription and repository management

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.