- Issued:
- 2014-01-21
- Updated:
- 2014-01-21
RHEA-2014:0079 - Product Enhancement Advisory
Synopsis
new package: rhevm-dependencies
Type/Severity
Product Enhancement Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
A new rhevm-dependencies package is now available.
Description
The rhevm-dependencies package provides embedded third party Java dependencies
that are not present in Red Hat Enterprise Linux. This includes:
apache-commons-compress
apache-commons-configuration
apache-commons-jxpath
apache-commons-lang
apache-mina
apache-sshd
jakarta-commons-httpclient
postgresql-jdbc
quartz
spring-ldap
springframework-*
xmlrpc-client
To allow greater flexibility to release third party fixes and push security
fixes, a separate package can be added to allow updating dependencies without
updating the product. The rhevm package will create symlinks for these
components instead of embedding them.
All Red Hat Enterprise Virtualization users are advised to install the
rhevm-dependencies package.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
Affected Products
- Red Hat Virtualization 3.3 x86_64
Fixes
- BZ - 1007799 - rhevm-dependencies - new package for 3rd party dependencies
CVEs
(none)
References
(none)
Red Hat Virtualization 3.3
SRPM | |
---|---|
rhevm-dependencies-3.3.5-1.el6ev.src.rpm | SHA-256: 728250bda0805662e089019af58bbc01ec6617517d8b104a79d47b0352f4ce8e |
x86_64 | |
rhevm-dependencies-3.3.5-1.el6ev.noarch.rpm | SHA-256: 50c2f17eb4715691a1eaa51d0c9f98c1fdc80059f3c6fb08623b33703a990679 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.