[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

[atomic-devel] 2wk atomic release candidate: 20170623



Hey everyone. Sorry for the delay this week. We have been postponing
releasing a new Atomic Host until we had the security updates flow
through our pipeline for the latest CVEs. We have some candidate
images now.

On Monday we will attempt to release the 20170623.1 images.
These images contain the following ostree version/commit:

25.147
8e564e28e81d2eb7634a8a4a87d4f09b9b3ad47c8c06256d43cdb18107d092db

The atomic host VM images are here:

https://kojipkgs.fedoraproject.org/compose/twoweek/Fedora-Atomic-25-20170623.1/compose/CloudImages/x86_64/images/

The ISO image is here:

https://kojipkgs.fedoraproject.org/compose/twoweek/Fedora-Atomic-25-20170623.1/compose/Atomic/x86_64/iso/Fedora-Atomic-ostree-x86_64-25-20170623.1.iso

The AMIs are here:

XXX NOTE XXX:
We currently have an issue in our tooling that makes it so that non
us-east-1 AMIs are not accessible. We are working to resolve this so
hopefully these AMIs will be available. Follow at https://pagure.io/fedora-infrastructure/issue/6123

Fedora-Atomic-25-20170623.1.x86_64  EC2 (ap-northeast-1) ami-1edfc879    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (ap-southeast-1) ami-6d901f0e    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (ap-southeast-2) ami-ca9383a9    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (eu-central-1)   ami-eebf1981    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (eu-west-1)      ami-32849f54    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (sa-east-1)      ami-88dab1e4    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (us-east-1)      ami-e8daf0fe    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (us-west-1)      ami-bc7e52dc    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (us-west-2)      ami-33f3e74a    hvm  gp2            
Fedora-Atomic-25-20170623.1.x86_64  EC2 (ap-northeast-1) ami-f0d3c497    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (ap-southeast-1) ami-80af20e3    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (ap-southeast-2) ami-1c94847f    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (eu-central-1)   ami-ebbc1a84    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (eu-west-1)      ami-ebbfa48d    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (sa-east-1)      ami-73dfb41f    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (us-east-1)      ami-68c7ed7e    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (us-west-1)      ami-bc7f53dc    hvm  standard       
Fedora-Atomic-25-20170623.1.x86_64  EC2 (us-west-2)      ami-ccfde9b5    hvm  standard

The diff between this and the previous released version is:

ostree diff commit old: 0ed61d7441eddf96e6a98de4f10f4675268c7888b6d2b8a405b8c21fe6c92d23
ostree diff commit new: 8e564e28e81d2eb7634a8a4a87d4f09b9b3ad47c8c06256d43cdb18107d092db
Upgraded:
  GeoIP 1.6.10-1.fc25.x86_64 -> 1.6.11-1.fc25.x86_64
  atomic 1.17.2-1.fc25.x86_64 -> 1.18.1-2.fc25.x86_64
  audit 2.7.6-1.fc25.x86_64 -> 2.7.7-1.fc25.x86_64
  audit-libs 2.7.6-1.fc25.x86_64 -> 2.7.7-1.fc25.x86_64
  audit-libs-python 2.7.6-1.fc25.x86_64 -> 2.7.7-1.fc25.x86_64
  audit-libs-python3 2.7.6-1.fc25.x86_64 -> 2.7.7-1.fc25.x86_64
  container-selinux 2:2.14-1.fc25.noarch -> 2:2.19-1.fc25.noarch
  curl 7.51.0-6.fc25.x86_64 -> 7.51.0-7.fc25.x86_64
  glibc 2.24-4.fc25.x86_64 -> 2.24-8.fc25.x86_64
  glibc-all-langpacks 2.24-4.fc25.x86_64 -> 2.24-8.fc25.x86_64
  glibc-common 2.24-4.fc25.x86_64 -> 2.24-8.fc25.x86_64
  glusterfs 3.10.2-1.fc25.x86_64 -> 3.10.3-1.fc25.x86_64
  glusterfs-client-xlators 3.10.2-1.fc25.x86_64 -> 3.10.3-1.fc25.x86_64
  glusterfs-fuse 3.10.2-1.fc25.x86_64 -> 3.10.3-1.fc25.x86_64
  glusterfs-libs 3.10.2-1.fc25.x86_64 -> 3.10.3-1.fc25.x86_64
  gnutls 3.5.12-2.fc25.x86_64 -> 3.5.13-1.fc25.x86_64
  iproute 4.10.0-1.fc25.x86_64 -> 4.11.0-1.fc25.x86_64
  iproute-tc 4.10.0-1.fc25.x86_64 -> 4.11.0-1.fc25.x86_64
  jansson 2.9-1.fc25.x86_64 -> 2.10-2.fc25.x86_64
  kernel 4.11.3-200.fc25.x86_64 -> 4.11.6-201.fc25.x86_64
  kernel-core 4.11.3-200.fc25.x86_64 -> 4.11.6-201.fc25.x86_64
  kernel-modules 4.11.3-200.fc25.x86_64 -> 4.11.6-201.fc25.x86_64
  libcrypt-nss 2.24-4.fc25.x86_64 -> 2.24-8.fc25.x86_64
  libcurl 7.51.0-6.fc25.x86_64 -> 7.51.0-7.fc25.x86_64
  libdb 5.3.28-16.fc25.x86_64 -> 5.3.28-21.fc25.x86_64
  libdb-utils 5.3.28-16.fc25.x86_64 -> 5.3.28-21.fc25.x86_64
  libsss_idmap 1.15.2-3.fc25.x86_64 -> 1.15.2-5.fc25.x86_64
  libsss_nss_idmap 1.15.2-3.fc25.x86_64 -> 1.15.2-5.fc25.x86_64
  libsss_sudo 1.15.2-3.fc25.x86_64 -> 1.15.2-5.fc25.x86_64
  libtasn1 4.10-1.fc25.x86_64 -> 4.12-1.fc25.x86_64
  libteam 1.26-1.fc25.x86_64 -> 1.27-1.fc25.x86_64
  libunwind 1.1-11.fc24.x86_64 -> 1.2-1.fc25.x86_64
  linux-firmware 20170313-72.git695f2d6d.fc25.noarch -> 20170605-74.git37857004.fc25.noarch
  nfs-utils 1:2.1.1-5.rc2.fc25.x86_64 -> 1:2.1.1-5.rc3.fc25.x86_64
  ostree 2017.6-2.fc25.x86_64 -> 2017.7-2.fc25.x86_64
  ostree-grub2 2017.6-2.fc25.x86_64 -> 2017.7-2.fc25.x86_64
  ostree-libs 2017.6-2.fc25.x86_64 -> 2017.7-2.fc25.x86_64
  python3-sssdconfig 1.15.2-3.fc25.noarch -> 1.15.2-5.fc25.noarch
  qrencode-libs 3.4.2-6.fc24.x86_64 -> 3.4.4-1.fc25.x86_64
  rpcbind 0.2.4-6.rc1.fc25.x86_64 -> 0.2.4-6.rc2.fc25.x86_64
  rpm-ostree 2017.5-2.fc25.x86_64 -> 2017.6-3.fc25.x86_64
  selinux-policy 3.13.1-225.16.fc25.noarch -> 3.13.1-225.18.fc25.noarch
  selinux-policy-targeted 3.13.1-225.16.fc25.noarch -> 3.13.1-225.18.fc25.noarch
  sssd-client 1.15.2-3.fc25.x86_64 -> 1.15.2-5.fc25.x86_64
  teamd 1.26-1.fc25.x86_64 -> 1.27-1.fc25.x86_64
  vim-minimal 2:8.0.600-1.fc25.x86_64 -> 2:8.0.642-1.fc25.x86_64


We have several CVEs (listed below) as well as updates to the Atomic
CLI, ostree, and rpm-ostree. The CVEs are:

CVE-2017-1000364 fixed by kernel-4.11.6-201.fc25
  - https://access.redhat.com/security/cve/CVE-2017-1000364
  - https://bugzilla.redhat.com/show_bug.cgi?id=1462819
CVE-2017-1000366 fixed by glibc-2.24-8.fc25
  - https://access.redhat.com/security/cve/CVE-2017-1000366
  - https://bugzilla.redhat.com/show_bug.cgi?id=1462820

Dusty


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]