- Issued:
- 2009-01-20
- Updated:
- 2009-01-20
RHBA-2009:0079 - Bug Fix Advisory
Synopsis
rpm bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated rpm packages that fix various issues and ensure compliance with
FIPS-140-2 are now available.
Description
The RPM Package Manager (RPM) is a command line driven package management
system capable of installing, uninstalling, verifying, querying, and
updating software packages.
This update re-bases RPM to upstream version 4.4.2.3, and applies several
bug fixes from upstream, most notably:
- A bug that caused rpm to output a "Broken Pipe" error when some valid
packages were installed is now fixed. This error sometimes appeared during
the installation of packages that executed scriptlets that used a fork or
pipe during %post. This was because rpm used the SIGPIPE call (instead of
SIG_IGN) during %post. To fix this, rpm now uses the default handler for
executing scriptlets.
- A bug that sometimes caused "Floating point exception" errors when rpm
was run on a virtualized guest is now fixed. In previous releases, this
error was triggered each time rpm was run on a guest where ntpd was also
running. This was caused by incorrect timing code in rpm, which is now fixed.
- A bug in the rpmgiNext() function is now fixed. This bug previously
caused rpm to sometimes return an incorrect error code.
- A bug in the way rpm -U handled virtual provides is now fixed. This bug
previously caused inconsistent results when upgrading packages through RPM.
With this upstream fix, rpm -U now functions consistently and processes the
upgrade of packages with virtual provides correctly.
- The --httpproxy option no longer prevents rpm from downloading and
installing multiple packages from a webserver. In previous releases, using
- -httpproxy resulted in multiple attempts to install only the first
retrieved package. This was because the urlinfo cache assigned the path of
the first retrieved package to all other packages whenever a proxied
connection was used. With this update, the urlinfo cache assigns the
correct path name of all packages during a proxied connection.
- Installing the 32-bit and 64-bit versions of the same package on a system
and subsequently removing one of them no longer renders the remaining
installed version as invalid.
- In previous releases, rpmbuild sometimes failed to build packages from
source if the redhat-rpm-config package was not installed. This was caused
by a bug in the rpmrc file, which contained a deprecated switch; namely,
- mcpu. This bug was fixed by replacing the deprecated switch with -mtune.
- rpm no longer deletes a package if an upgrade through yum fails. In
previous releases, if an exception occurred during the yum RPMTransaction
callback, rpm still deleted the "old" package even though rpm did not
successfully install the newer version first. With this release, rpm will
stop the upgrade process altogether (thereby preventing an incorrect
package deletion) if yum crashes while executing a transaction callback.
- rpm now adds secondary architecture-specific macro files on multi-arch
systems. This ensures that rpmbuild can properly compile packages for
secondary architectures on a primary architecture.
- rpm now closes all file descriptors it inherits during %post. In previous
releases, rpm only closed the first 100 file descriptors; as a result, any
daemons that were restarted during a large up2date transaction could crash.
- bzip2 is now a dependency for building iptables from source.
- rpmbuild no longer fails when it encounters a spec file that contains
leading comment line or other special symbols.
- rpm now checks for file conflicts under /usr/share/doc; however,
conflicts in documentation files are still allowed. In previous releases,
rpm skipped /usr/share/doc during file conflict checks altogether.
This update also applies the necessary security fixes to ensure that rpm is
now compliant with Federal Information Processing Standard 140-2
(FIPS-140-2). For more information about the upstream version this update
is based upon, refer to http://rpm.org/wiki/Releases/4.4.2.3.
All rpm users are advised to upgrade to this update to apply the
aforementioned fixes.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188
Affected Products
- Red Hat Enterprise Linux Server 5 x86_64
- Red Hat Enterprise Linux Server 5 ia64
- Red Hat Enterprise Linux Server 5 i386
- Red Hat Enterprise Linux Workstation 5 x86_64
- Red Hat Enterprise Linux Workstation 5 i386
- Red Hat Enterprise Linux Desktop 5 x86_64
- Red Hat Enterprise Linux Desktop 5 i386
- Red Hat Enterprise Linux for IBM z Systems 5 s390x
- Red Hat Enterprise Linux for Power, big endian 5 ppc
- Red Hat Enterprise Linux Server from RHUI 5 x86_64
- Red Hat Enterprise Linux Server from RHUI 5 i386
Fixes
- BZ - 233713 - RPM upgrade behaviour is inconsistent
- BZ - 244236 - Incorrect return code
- BZ - 250207 - The description about option '--dump' in manpage is wrong
- BZ - 257921 - RPM needs secondary arch macro files
- BZ - 355551 - rpmrc provides obsolete default switches
- BZ - 426258 - bi-arch packages cause unnecessary .rpmnew and .rpmsave files
- BZ - 431860 - RPM 32/64-bit share the same files leaving last package on removal in invalid state
- BZ - 445075 - bzip2 not mentioned as a dependency in iptables-1.3.5-1.2.1.src.rpm
- BZ - 447177 - rpmbuild fails on a spec with a leading comment line
- BZ - 450205 - rpm --httpproxy can't handle multiple rpm packages
- BZ - 453645 - RPM should close more than 100 file descriptors
- BZ - 454887 - Rebase RPM to Fedora 9 version
- BZ - 460808 - Need to fix RPM to skip checking file conflicts under /usr/share/doc
- BZ - 463944 - rpm writes error : File not found by glob: and return code = 0
- BZ - 463999 - Rpm can "delete old versions" without having "installed new versions"
- BZ - 471591 - echo: write error: Broken pipe in %post
- BZ - 472467 - [RHEL5.3] kernel-xen Floating point exception on 32bit para-virt guest
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 5
SRPM | |
---|---|
rpm-4.4.2.3-9.el5.src.rpm | SHA-256: bae2269c5b549fb45f501773ddde606f64febbfe725eb0cf37cfb76538be425b |
x86_64 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
popt-1.10.2.3-9.el5.x86_64.rpm | SHA-256: 69bf079c171ba95715cee48bb7677a115f0da3ec59c419b2de24f3ad00bd0571 |
rpm-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 91aee55f703faeae56db1761a6772305a8c45782922cfcca9e4f086e063f6e64 |
rpm-apidocs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: b82a047a11069fe9e1a58453989745059f710914b7220ff7286d7a95d8200d69 |
rpm-build-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 739881427362a3e03419e4b2f8c4aaf7897837a4d3c60616a373ce9f0963d519 |
rpm-devel-4.4.2.3-9.el5.i386.rpm | SHA-256: 5519fbbcff1bbfdb9b619d9e18de8dd1a7f96db4f9bd94fe363f52e20ee1e13b |
rpm-devel-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 5dc8ec6492a74335b7d2ea4111eea5210c42780c4dbe8e73cbfcc7464cff1e54 |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-libs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 287ee228b945a37354e7f6ade75d29cfc5439b5c50f739264be0434c686e4796 |
rpm-python-4.4.2.3-9.el5.x86_64.rpm | SHA-256: ed82768c701958bfaad3399b02154d2e2e1b0a079acea1a011463b3beb8fbf01 |
ia64 | |
popt-1.10.2.3-9.el5.ia64.rpm | SHA-256: 0c8d88a93e00918b78842cc20bfe9611133c8177fc208e80a0b0600fbf06419a |
rpm-4.4.2.3-9.el5.ia64.rpm | SHA-256: b03d695b06d59e1215dd95e86a4a311ea632e11fd35607aa7f9b96479b2e7666 |
rpm-apidocs-4.4.2.3-9.el5.ia64.rpm | SHA-256: 55f6426694017ee3d3f55c078b6f2f1486b3a105e62a0dc85d46014005b06e1b |
rpm-build-4.4.2.3-9.el5.ia64.rpm | SHA-256: eb369e44534dbb43178b7ca4a5bda4a2db1b40002fe5689a8ae0e31c2d9ec662 |
rpm-devel-4.4.2.3-9.el5.ia64.rpm | SHA-256: 18f8417b4c140ad12b2fc6e51f62c59bafe3330c9370ded8394cff9480b1d90e |
rpm-libs-4.4.2.3-9.el5.ia64.rpm | SHA-256: 4a734b3b4e526b24bcb59e75c2d2f969e0f7fb8c2bdbff9fdd1be2647c02d449 |
rpm-python-4.4.2.3-9.el5.ia64.rpm | SHA-256: 265b59b76b6991d56b686da20ad7695f4bc2ca44cc3ef0d8c6c51d903c850f79 |
i386 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
rpm-4.4.2.3-9.el5.i386.rpm | SHA-256: a51f64dcccf6d309cba419dd3c844104ef070f5350e36668d58c5eab4fc69ed8 |
rpm-apidocs-4.4.2.3-9.el5.i386.rpm | SHA-256: 22242c0d3934bdc4115965bbd01866de93f2d3bf99f0c5067bee8ad733c8affa |
rpm-build-4.4.2.3-9.el5.i386.rpm | SHA-256: eb586d77a4f0b5ccf9df0acfcaf28b61d944e098e748698ab0fa689e2fa48014 |
rpm-devel-4.4.2.3-9.el5.i386.rpm | SHA-256: 5519fbbcff1bbfdb9b619d9e18de8dd1a7f96db4f9bd94fe363f52e20ee1e13b |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-python-4.4.2.3-9.el5.i386.rpm | SHA-256: 27c6e450bb27977a0623481fd39ab32a5129ec453ad822053d0baf78cdbafe2c |
Red Hat Enterprise Linux Workstation 5
SRPM | |
---|---|
rpm-4.4.2.3-9.el5.src.rpm | SHA-256: bae2269c5b549fb45f501773ddde606f64febbfe725eb0cf37cfb76538be425b |
x86_64 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
popt-1.10.2.3-9.el5.x86_64.rpm | SHA-256: 69bf079c171ba95715cee48bb7677a115f0da3ec59c419b2de24f3ad00bd0571 |
rpm-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 91aee55f703faeae56db1761a6772305a8c45782922cfcca9e4f086e063f6e64 |
rpm-apidocs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: b82a047a11069fe9e1a58453989745059f710914b7220ff7286d7a95d8200d69 |
rpm-build-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 739881427362a3e03419e4b2f8c4aaf7897837a4d3c60616a373ce9f0963d519 |
rpm-devel-4.4.2.3-9.el5.i386.rpm | SHA-256: 5519fbbcff1bbfdb9b619d9e18de8dd1a7f96db4f9bd94fe363f52e20ee1e13b |
rpm-devel-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 5dc8ec6492a74335b7d2ea4111eea5210c42780c4dbe8e73cbfcc7464cff1e54 |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-libs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 287ee228b945a37354e7f6ade75d29cfc5439b5c50f739264be0434c686e4796 |
rpm-python-4.4.2.3-9.el5.x86_64.rpm | SHA-256: ed82768c701958bfaad3399b02154d2e2e1b0a079acea1a011463b3beb8fbf01 |
i386 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
rpm-4.4.2.3-9.el5.i386.rpm | SHA-256: a51f64dcccf6d309cba419dd3c844104ef070f5350e36668d58c5eab4fc69ed8 |
rpm-apidocs-4.4.2.3-9.el5.i386.rpm | SHA-256: 22242c0d3934bdc4115965bbd01866de93f2d3bf99f0c5067bee8ad733c8affa |
rpm-build-4.4.2.3-9.el5.i386.rpm | SHA-256: eb586d77a4f0b5ccf9df0acfcaf28b61d944e098e748698ab0fa689e2fa48014 |
rpm-devel-4.4.2.3-9.el5.i386.rpm | SHA-256: 5519fbbcff1bbfdb9b619d9e18de8dd1a7f96db4f9bd94fe363f52e20ee1e13b |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-python-4.4.2.3-9.el5.i386.rpm | SHA-256: 27c6e450bb27977a0623481fd39ab32a5129ec453ad822053d0baf78cdbafe2c |
Red Hat Enterprise Linux Desktop 5
SRPM | |
---|---|
rpm-4.4.2.3-9.el5.src.rpm | SHA-256: bae2269c5b549fb45f501773ddde606f64febbfe725eb0cf37cfb76538be425b |
x86_64 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
popt-1.10.2.3-9.el5.x86_64.rpm | SHA-256: 69bf079c171ba95715cee48bb7677a115f0da3ec59c419b2de24f3ad00bd0571 |
rpm-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 91aee55f703faeae56db1761a6772305a8c45782922cfcca9e4f086e063f6e64 |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-libs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 287ee228b945a37354e7f6ade75d29cfc5439b5c50f739264be0434c686e4796 |
rpm-python-4.4.2.3-9.el5.x86_64.rpm | SHA-256: ed82768c701958bfaad3399b02154d2e2e1b0a079acea1a011463b3beb8fbf01 |
i386 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
rpm-4.4.2.3-9.el5.i386.rpm | SHA-256: a51f64dcccf6d309cba419dd3c844104ef070f5350e36668d58c5eab4fc69ed8 |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-python-4.4.2.3-9.el5.i386.rpm | SHA-256: 27c6e450bb27977a0623481fd39ab32a5129ec453ad822053d0baf78cdbafe2c |
Red Hat Enterprise Linux for IBM z Systems 5
SRPM | |
---|---|
rpm-4.4.2.3-9.el5.src.rpm | SHA-256: bae2269c5b549fb45f501773ddde606f64febbfe725eb0cf37cfb76538be425b |
s390x | |
popt-1.10.2.3-9.el5.s390.rpm | SHA-256: b8d6ef812f13b6c681ab7e1870fe37f91c12fa1a0965f93d76055293511806e7 |
popt-1.10.2.3-9.el5.s390x.rpm | SHA-256: 5dccafa76d4ced37edda6f1c5bc1c93220a0a7a39d771bda38a553d30754537d |
rpm-4.4.2.3-9.el5.s390x.rpm | SHA-256: 2f7dfcf1a4e826393efae7401d1e119091e4c7fa0d2b8edd08456b187f74ab83 |
rpm-apidocs-4.4.2.3-9.el5.s390x.rpm | SHA-256: 1e70cc9023f6b5af23c46b1f42d5052f6cfedcc645233671901a0fc7e333f229 |
rpm-build-4.4.2.3-9.el5.s390x.rpm | SHA-256: 8ff61b9c7c4a4f429a03ab8dcff8cd0bca4a40b293251c84238eb5907b94061e |
rpm-devel-4.4.2.3-9.el5.s390.rpm | SHA-256: f363a94cbf15e71f92416967cc0007dbf99a769db6ddc71352025694aacab86b |
rpm-devel-4.4.2.3-9.el5.s390x.rpm | SHA-256: c5636bc62d6dab3a96e8d5cb6de102447901dc0568c2e82952620956477ffae3 |
rpm-libs-4.4.2.3-9.el5.s390.rpm | SHA-256: dc355815e6e07490ec6d5ad3fca6e40e4f22c2b5592f803bfcf9e871f7c810b1 |
rpm-libs-4.4.2.3-9.el5.s390x.rpm | SHA-256: c5deec1eb561dba19e1a752c3065cadc7d3bc587286620cd3af55c2aaff92a7c |
rpm-python-4.4.2.3-9.el5.s390x.rpm | SHA-256: 3c25c59f0e47e9471e64396863c3309f67b8c95203c6119f73898d21df5cdd05 |
Red Hat Enterprise Linux for Power, big endian 5
SRPM | |
---|---|
rpm-4.4.2.3-9.el5.src.rpm | SHA-256: bae2269c5b549fb45f501773ddde606f64febbfe725eb0cf37cfb76538be425b |
ppc | |
popt-1.10.2.3-9.el5.ppc.rpm | SHA-256: fda1777e073c0b97d2eacaa0041764cfaed7a0360bed7c57660422e1001efb83 |
popt-1.10.2.3-9.el5.ppc64.rpm | SHA-256: 3e07eac9f737d51555cbecd82583b7ca5e1838cd9b967bf6b26bb5676f3d816c |
rpm-4.4.2.3-9.el5.ppc.rpm | SHA-256: c89d2aabf06c04aa723c1060a5b3b60653d525d76bd7fdab278e1240027a6263 |
rpm-apidocs-4.4.2.3-9.el5.ppc.rpm | SHA-256: 0752c9b2b3255df3e7a9591439e392a2538b5abf0abd189d78e883265ee25e57 |
rpm-build-4.4.2.3-9.el5.ppc.rpm | SHA-256: 982ed443989b801a02a1f3437e27b9e63d8f0b1ea62868c3e0681be03207911f |
rpm-devel-4.4.2.3-9.el5.ppc.rpm | SHA-256: d3f3e711712a556be779738a5d8d5778c675344f83e7efb34dda6a2746992be8 |
rpm-devel-4.4.2.3-9.el5.ppc64.rpm | SHA-256: e20fdd9da5b4a72e3696ba897878998445c8ed2a14d3b839dd76747d22032b2c |
rpm-libs-4.4.2.3-9.el5.ppc.rpm | SHA-256: abe7de882872e9f923f9147c595013ab0db4f07801d94521d6fdd302064742a9 |
rpm-libs-4.4.2.3-9.el5.ppc64.rpm | SHA-256: 454ab401c4e687ef328ac563eabef3cf844e3056328a6b3531d1014f4b3ee054 |
rpm-python-4.4.2.3-9.el5.ppc.rpm | SHA-256: 18d302b70cb060890904f4518c2fa8e95dc66d2df568b477de709ffb6b15f9fd |
Red Hat Enterprise Linux Server from RHUI 5
SRPM | |
---|---|
rpm-4.4.2.3-9.el5.src.rpm | SHA-256: bae2269c5b549fb45f501773ddde606f64febbfe725eb0cf37cfb76538be425b |
x86_64 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
popt-1.10.2.3-9.el5.x86_64.rpm | SHA-256: 69bf079c171ba95715cee48bb7677a115f0da3ec59c419b2de24f3ad00bd0571 |
rpm-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 91aee55f703faeae56db1761a6772305a8c45782922cfcca9e4f086e063f6e64 |
rpm-apidocs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: b82a047a11069fe9e1a58453989745059f710914b7220ff7286d7a95d8200d69 |
rpm-build-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 739881427362a3e03419e4b2f8c4aaf7897837a4d3c60616a373ce9f0963d519 |
rpm-devel-4.4.2.3-9.el5.i386.rpm | SHA-256: 5519fbbcff1bbfdb9b619d9e18de8dd1a7f96db4f9bd94fe363f52e20ee1e13b |
rpm-devel-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 5dc8ec6492a74335b7d2ea4111eea5210c42780c4dbe8e73cbfcc7464cff1e54 |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-libs-4.4.2.3-9.el5.x86_64.rpm | SHA-256: 287ee228b945a37354e7f6ade75d29cfc5439b5c50f739264be0434c686e4796 |
rpm-python-4.4.2.3-9.el5.x86_64.rpm | SHA-256: ed82768c701958bfaad3399b02154d2e2e1b0a079acea1a011463b3beb8fbf01 |
i386 | |
popt-1.10.2.3-9.el5.i386.rpm | SHA-256: b365e6719a572baf4b50563277238eddc118c4cd99a5b0d893279eeab3ba6898 |
rpm-4.4.2.3-9.el5.i386.rpm | SHA-256: a51f64dcccf6d309cba419dd3c844104ef070f5350e36668d58c5eab4fc69ed8 |
rpm-apidocs-4.4.2.3-9.el5.i386.rpm | SHA-256: 22242c0d3934bdc4115965bbd01866de93f2d3bf99f0c5067bee8ad733c8affa |
rpm-build-4.4.2.3-9.el5.i386.rpm | SHA-256: eb586d77a4f0b5ccf9df0acfcaf28b61d944e098e748698ab0fa689e2fa48014 |
rpm-devel-4.4.2.3-9.el5.i386.rpm | SHA-256: 5519fbbcff1bbfdb9b619d9e18de8dd1a7f96db4f9bd94fe363f52e20ee1e13b |
rpm-libs-4.4.2.3-9.el5.i386.rpm | SHA-256: e184e5949b9d9c93df4c864e922a2ad8dcd95736964a6b45fc9b0ca33d793523 |
rpm-python-4.4.2.3-9.el5.i386.rpm | SHA-256: 27c6e450bb27977a0623481fd39ab32a5129ec453ad822053d0baf78cdbafe2c |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.