December 2021 - rocky-announce

Rocky Linux 8.5 Updates since 2021-12-17
by Louis Abel 22 Dec '21

22 Dec '21

The following packages have been updated since December 17, 2021: 389-ds-base: 389-ds-base-1.4.3.23-10.module+el8.5.0+700+370e33d5 -> 389-ds-base-1.4.3.23-12.module+el8.5.0+722+e2a0b219 accountsservice: accountsservice-0.6.55-2.el8 -> accountsservice-0.6.55-2.el8_5.2 cloud-init: cloud-init-21.1-7.el8 -> cloud-init-21.1-7.el8_5.3 freeradius: freeradius-3.0.20-9.module+el8.5.0+704+21fb769d -> freeradius-3.0.20-10.module+el8.5.0+723+cc9aee6c gnome-shell-extensions: gnome-shell-extensions-3.32.1-20.el8_5.1 -> gnome-shell-extensions-3.32.1-22.el8_5 java-11-openjdk: java-11-openjdk-1:11.0.13.0.8-3.el8_5 -> java-11-openjdk-1:11.0.13.0.8-4.el8_5 kernel: kernel-4.18.0-348.2.1.el8_5 -> kernel-4.18.0-348.7.1.el8_5 kernel-rt: kernel-rt-4.18.0-348.2.1.rt7.132.el8_5 -> kernel-rt-4.18.0-348.7.1.rt7.137.el8_5 kexec-tools: kexec-tools-2.0.20-57.el8 -> kexec-tools-2.0.20-57.el8_5.1 opencryptoki: opencryptoki-3.16.0-5.el8 -> opencryptoki-3.16.0-7.el8_5 openssl: openssl-1:1.1.1k-4.el8 -> openssl-1:1.1.1k-5.el8_5 poppler: poppler-20.11.0-3.el8 -> poppler-20.11.0-3.el8_5.1 postgresql: postgresql-12.7-2.module+el8.5.0+686+20453ecc -> postgresql-12.9-1.module+el8.5.0+724+9de6e501 qemu-kvm: qemu-kvm-15:4.2.0-59.module+el8.5.0+670+c4aa478c -> qemu-kvm-15:4.2.0-59.module+el8.5.0+726+ce09ee88.1 rocky-release: rocky-release-8.5-2.el8 -> rocky-release-8.5-3.el8 sssd: sssd-2.5.2-2.el8_5.1 -> sssd-2.5.2-2.el8_5.3 Associated CVE's: CVE-2021-20321 CVE-2021-3930 CVE-2021-20257 CVE-2021-3712 The follow modules have been updated: virt-rhel-8050020211221163306.b4937e53 virt-devel-rhel-8050020211221163306.b4937e53 postgresql-13-8050020211221161313.b4937e53 postgresql-12-8050020211221161311.b4937e53 freeradius-3.0-8050020211221161359.ab0f257b 389-ds-1.4-8050020211221162652.1a75f91c ========================= Release Engineering Notes ========================= rocky-release package has been updated to add the countme=1 to the base repositories for Rocky Linux, similar to how epel has their repos. If you have modified the repo files, you will have .rpmnew files generated, as to not overwrite your changes. ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-12-16
by Louis Abel 17 Dec '21

17 Dec '21

The following packages have been updated since December 16, 2021: selinux-policy: selinux-policy-3.14.3-80.el8 -> selinux-policy-3.14.3-80.el8_5.2 systemd: systemd-239-51.el8 -> systemd-239-51.el8_5.3 ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-12-13
by Louis Abel 16 Dec '21

16 Dec '21

The following packages have been updated since December 13, 2021: dotnet5.0: dotnet5.0-5.0.209-1.el8_5 -> dotnet5.0-5.0.210-1.el8_5 go-toolset: go-toolset-1.16.7-1.module+el8.5.0+694+f77f0bfd -> go-toolset-1.16.12-1.module+el8.5.0+720+c057d5cf golang: golang-1.16.7-1.module+el8.5.0+694+f77f0bfd -> golang-1.16.12-1.module+el8.5.0+720+c057d5cf ipa: ipa-4.9.6-6.module+el8.5.0+675+61f67439 -> ipa-4.9.6-10.module+el8.5.0+719+4f06efb6 nodejs: nodejs-1:16.8.0-1.module+el8.5.0+702+221f14e6 -> nodejs-1:16.13.1-3.module+el8.5.0+721+4c107270 nodejs-nodemon: nodejs-nodemon-2.0.7-1.module+el8.5.0+702+221f14e6 -> nodejs-nodemon-2.0.15-1.module+el8.5.0+721+4c107270 kernel-rt: kernel-rt-kvm added to RT Associated CVE's: * CVE-2020-25717 The follow modules have been updated: go-toolset-rhel8-8050020211215173118-8aa62369 idm-DL1-8050020211215093947-3d2c466f nodejs-16-8050020211215195043-b4937e53 ========================= Release Engineering Notes ========================= Based on a request, the kernel-rt-kvm package has been added to the RT repo. ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-12-12
by Louis Abel 13 Dec '21

13 Dec '21

The following packages have been updated since December 12, 2021: samba: samba-4.14.5-2.el8 -> samba-4.14.5-7.el8_5 Associated CVE's: * CVE-2016-2124 * CVE-2020-25717 * CVE-2021-23192 ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-12-10
by Louis Abel 12 Dec '21

12 Dec '21

The following packages have been updated since December 10, 2021: WALinuxAgent: WALinuxAgent-2.3.0.2-2.el8 -> WALinuxAgent-2.3.0.2-2.el8.rocky.0 libreoffice: libreoffice-1:6.4.7.2-5.el8.1 -> libreoffice-1:6.4.7.2-5.el8.2.rocky openscap: openscap-1.3.5-6.el8 -> openscap-1.3.5-6.el8.rocky.0.1 pcs: pcs-0.10.10-4.el8 -> pcs-0.10.10-4.el8.rocky.0 python2: python2-2.7.18-7.module+el8.5.0+706+735ec4b3.rocky.0.1 -> python2-2.7.18-7.module+el8.5.0+718+67e45b5f.rocky.0.2 rocky-release: rocky-release-8.5-1.el8 -> rocky-release-8.5-2.el8 The follow modules have been updated: python27 ========================= Release Engineering Notes ========================= These updates are mostly cosmetic in nature and do not affect functionality. * WALinuxAgent -> We have added direct Rocky support here as well as in a PR upstream to Microsoft * libreoffice -> There was red hat branding found. This update addresses the branding. * openscap -> There were missing information for Rocky Linux. * pcs -> The logo had a trademark that was not removed * rocky-release -> simplifies CPE_NAME * python2 -> adds rocky to supported dists ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux Community Update - 2021 Quarter 4
by Brian Clemens 10 Dec '21

10 Dec '21

============================================= Rocky Linux Community Update - 2021 Quarter 4 ============================================= Highlights ========== Rocky Linux 8.5 --------------- The latest minor release of Rocky Linux was released on November 15, 2021. The speed at which the latest release was built is a testament to the dedication of the Rocky Linux Release Engineering team. Their maturing procedures, home-grown tools, and lengthy preparations enabled them to deliver testing assets within hours of upstream source availability. Likewise, the Testing team’s improvement efforts over the past months was validated by their speedy discovery and resolution of issues. 1st Anniversary Party --------------------- We are hosting a party to celebrate our first year! Please join us on December 11th at 15:00 PST. A link to the meeting room and more details are available at https://rockylinux.org/news/event-20211211-anniversary. New Members ----------- Since June, we’ve added four new members to the Rocky Linux leadership team: * Scott Shinn, @atomicturtle, Security Team Deputy * Sherif Nagy, @sherif, Release Engineering Team Deputy * Skip Grube, @skip77, Release Engineering Team Deputy * Steven Spencer, @sspencerwire, Documentation Team Deputy Participation is always welcome in the Rocky Linux project. If you would like to help, please get in touch with a Team Lead or e-mail hello(a)rockylinux.org if you cannot determine a relevant one. Secure Boot ----------- The Rocky Linux bootloader shim has been validated and signed by all necessary parties, enabling Rocky Linux to use secure boot without configuration. This is the culmination of months of work by the Release Engineering team and Sherif Nagy in particular. Secure Boot is a common (and often requested) requirement for many scenarios, including OEMs that have expressed interest in shipping systems with Rocky Linux pre-installed. This is a huge milestone for Rocky Linux as it is the culmination of many months of effort to become validated as a vendor in our own right by Microsoft. Mailing Lists ------------- Mailing lists are an irreplaceable fixture in open source projects. To support Rocky Linux and other RESF projects, the Infrastructure Team has deployed and configured a mailing list solution. We encourage you to subscribe to the Rocky Linux announcements list at https://lists.resf.org/mailman3/lists/rocky-announce.lists.resf.org. Team Updates ============ Community --------- We need you! The Community Team is seeking volunteers to help us grow community facing initiatives Please email community(a)rockylinux.org if you’d like to help. * The Community Team is now holding meetings every Wednesday at 10:00 PST. Please see the community team channel for more information. * We held a very successful “Ask Me Anything” interview on the /r/linux subreddit. We would like to thank everyone who participated, especially the moderator /u/purpleidea who helped to coordinate and run the event. * RockyCon 2022 is now being planned! Please look forward to a day of workshops, presentations, and socializing with the Rocky Linux community within the next few months. * We have selected and configured a social media management solution to coordinate the publication of news across all social platforms where Rocky Linux has a presence. Design ------ * We have planned a wallpaper design contest for the community to incorporate their own designs into the distribution. Winners will get Rocky Linux swag with custom (not-generally-available) designs! * Finalized designs have been made for the RESF’s logo. A sneak peek is available on the web and forum versions of this announcement. Documentation ------------- * Our documentation has been reorganized into intuitive categories. The documentation landing page has also seen many enhancements to usability. The Documentation Team would like to especially thank Patrick (@justasojourner), Steven Spencer (@sspencerwire) and others who have championed, led and implemented these changes. * We are making great progress in our translation efforts with help from new contributors such as Tianci Li (@jimcat8), Antoine Le Morvan (@alemorvan), Franco Colussi (@ambaradan), and many others. * After evaluating and testing several platforms, the Documentation Team has selected Crowdin to scale translation efforts and is beginning to onboard translators. Infrastructure -------------- * A pastebin application has been created to facilitate exchange of text files and long messages on our IRC channels, available at https://rpa.st / https://paste.resf.org / https://paste.rockylinux.org. It can be used easily with the rpaste package available in the Rocky-Extras repository. * We completed many projects to support other teams, including deploying PowerPC build platforms and deploying the highly secure infrastructure necessary for building secure boot components. * Mirror infrastructure has been updated and improved. * Mattermost has been updated several times, including a major version. Release Engineering ------------------- * Alongside the regular Enterprise Linux kernel, a realtime kernel has been built and is now available in the Rocky-RT repo. * We have developed and deployed an application to show live differences between Rocky Linux and RHEL, available at https://repocompare.rockylinux.org. * Security advisories, known bugs, and feature information is now available, both baked into our repositories and as a web page. Try it out with “dnf update info --list” or visit https://errata.rockylinux.org. * Skip Grube (Team Deputy) is sharing some of his release engineering knowledge in a new blog. We encourage anyone interested in helping the team to check it out at https://skip.linuxdn.org/blog.html. * The infrastructure for building a PowerPC version of Rocky Linux has been setup, and builds are underway. This is a fairly involved process and will take some time before it is ready for public consumption. * We have begun initializing the foundation (release and core packages) needed to start on Rocky Linux 9. We have begun importing the RHEL 9 beta sources as well as CentOS Stream 9 sources. In the coming days, we plan on bootstrapping the necessary components for 9. We look forward to sharing more about this with you very soon. Security -------- * Thanks to efforts by Scott Shinn (@atomicturtle), OpenSCAP automated security compliance and remediation is now fully functional on Rocky Linux. * The Center for Internet Security (CIS) is targeting a benchmark for Rocky Linux in early 2022. Thank you to community member mmackenzie for opening up the Workbench request. * We supported the Release Engineering and Infrastructure Teams in their efforts to attain secure boot functionality. Testing ------- * A primary focus for the Testing Team this quarter has been work on openQA test suites allowing automated testing of the Rocky Linux release media and installer. Special thanks to Al B. (@raktajino) for work on Ansible playbooks, Lukas M. (@lumarel) for multi-host openQA configuration and Russ B. (@Russ Butler) for aarch64 test suite validation. * Lukas has also been heavily involved with testing of Secure Boot working closely with Release Engineering to help bring SB to Rocky Community. * In the next quarter we hope to move openQA testing to Rocky Linux hosted infrastructure and begin direct integration with Release Engineering to support fully automated build testing. Web --- * We are working on a UI toolkit which will replace all of the existing Tailwind CSS-based theming across the RESF’s web presence. This is to ensure consistency in design between all Rocky Linux experiences, and will have its debut on the main Rocky Linux website. More sites will follow, but for now it will just be the main website. * We have implemented Fathom Analytics on both the main website, as well as the Documentation website. Fathom is an open-source, privacy-friendly, cookie-less analytics solution. You can view our analytics publicly at the links below. * Main Website: https://app.usefathom.com/share/qdepahys/website/ * Documentation Website: https://app.usefathom.com/share/ktsptdwy/documentation/ Special Interest Groups ======================= As mentioned above, we are now moving forward with SIGs. We started this process by integrating the CentOS SIGs which will bring in some collaborative effort and avoid any redundant efforts. These can be installed via release packages with the nomenclature of “centos-release-*” and will help ease the transition from CentOS to Rocky Linux as well as help foster collaboration between all of the Enterprise Linux variants. Building off of the existing CentOS SIGs, we are be developing the foundation to empower the Rocky Linux community with our own SIGs which we will ensure are completely compatible with all Enterprise Linux family of distributions. We have a number of SIG ideas already developing in Mattermost and we are working on the template SIG charter now. There are three SIGs which have already been started: * SIG/Kernel which is being led by Greg Kroah-Hartman (lead maintainer of the stable main-line Linux kernel) and will include an optional enhanced kernel for Rocky Linux * SIG/Cloud will provide cloud optimizations, packages, and universal base container images to support all clouds and typical use-cases * SIG/AltArch which has already built Raspberry Pi images for testing (more information can be found here: https://wiki.rockylinux.org/en/special-interest-groups/alt-arch/raspberry-pi). We look forward to working with others interested in leading SIGs. Partners & Sponsors =================== We would like to thank our existing partners and sponsors for their support, and we’re pleased to announce a few new ones: * Crowdin * Equinix * ProComputers.com * Seagate Government Solutions * Supermicro * VMware If you have any comments, questions, concerns, suggestions, or would like to help out, send a note to hello(a)rockylinux.org. Sincerely, The Rocky Enterprise Software Foundation https://rockylinux.org

1 0

Rocky Linux 8.5 Updates since 2021-12-09
by Louis Abel 09 Dec '21

09 Dec '21

The following packages have been updated since December 09, 2021: thunderbird: thunderbird-91.3.0-2.el8_4 -> thunderbird-91.4.0-2.el8_5 thunderbird: thunderbird-91.3.0-2.el8.plus -> thunderbird-91.4.0-2.el8.plus ========================= Release Engineering Notes ========================= Thunderbird ----------- This is a regular ESR build update for thunderbird. This update is for both the base repositories and Plus. The Plus repository contains a version of thunderbird with PGP support. ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-12-03
by Louis Abel 08 Dec '21

08 Dec '21

The following packages have been updated since December 03, 2021: abrt: abrt-2.10.9-21.el8 -> abrt-2.10.9-21.el8.rocky.0 firefox: firefox-91.3.0-1.el8_4 -> firefox-91.4.0-1.el8_5 sos: sos-4.1-5.el8 -> sos-4.1-5.el8.rocky.2 ========================= Release Engineering Notes ========================= Firefox ------- This is an updated ESR build for Firefox. abrt ---- This is a mostly cosmetic change. It removes the reliance on the libreport-rhel* and rhtsupport plugins. These packages can be safely removed after updating to the new abrt package. sos --- This is a mostly cosmetic change. It brings down the upstream Rocky policy. See this PR for more details: https://github.com/sosreport/sos/pull/2784 ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Please give mirrors at least 24/48 hours to fully sync. If you find that you cannot update any of the packages listed in this message, you may try another mirror or wait till they have fully synced. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-12-02
by Louis Abel 02 Dec '21

02 Dec '21

The following packages have been updated since December 02, 2021: mailman: mailman-3:2.1.29-12.module+el8.5.0+716+66d1ab43.1 -> mailman-3:2.1.29-12.module+el8.5.0+717+27fd1ba7.2 Associated CVE's: mailman: CVE-2021-44227 The follow modules have been updated since December 02, 2021: mailman-2.1-8050020211202160117.fd901a62 ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Louis Abel Release Engineering

1 0

Rocky Linux 8.5 Updates since 2021-11-29
by Louis Abel 01 Dec '21

01 Dec '21

The following packages have been updated since Nov 29, 2021: kronosnet: kronosnet-1.18-2.el8 -> kronosnet-1.18-4.el8_5 nss: nss-3.67.0-6.el8_4 -> nss-3.67.0-7.el8_5 Associated CVE's: nss-3.67.0-7.el8_5: CVE-2021-43527 ======= Updates ======= Updates released since upstream are posted across our current architectures. We strongly recommend that all users apply *all* updates, including the content released today on your existing Rocky Linux machines. This can be done by running `dnf update`. All Rocky Linux components are built from the sources hosted at git.rockylinux.org. In addition, SRPMs are being published alongside the repositories in a corresponding "source" directory. You can find these on any of our mirrors. These source packages match every binary RPM we release. Louis Abel Release Engineering

1 0

2024

2023

2022

2021

rocky-announce December 2021