| Revision Date: | 2007-05-18 | Version: | 635 |
| Title: | RHBA-2007:0331: conga bug fix update (Low) |
| Description: | The Conga package is a web-based administration tool for remote cluster and storage management.
This erratum applies the following bug fixes:
- The borrowed Zope packages used by Conga have been patched to eliminate a possibility of XSS attack. - Passwords are no longer sent back from the server in cleartext for use as input values. - A form error was fixed so that Conga no longer allows for cluster names of over 15 characters. - An error wherein clusters and systems could not be deleted from the manage systems interface has been addressed. - Entering an incorrect password for a system no longer generates an Unbound Local Reference exception. - Luci failover domain forms are no longer empty - The fence_xvm string in cluster.conf for virtual cluster fencing has been corrected. - The advanced options parameters section has been fixed. - A bug where virtual services were unable for configuration has been addressed. - kmod-gfs-xen is now installed when necessary. - The 'enable shared storage support' checkbox is now cleared when a configuration error is encountered. - When configuring an outer physical cluster, it is no longer necessary to add the fence_xvmd tag manually.
Users of Conga are advised to upgrade to these updated packages, which apply these fixes.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2007-0240
CVE-2007-1462
RHBA-2007:0331
RHBA-2007:0331-01
RHBA-2007:0331-01
RHBA-2007:0331
|
| Platform(s): | Red Hat Enterprise Linux 5
| Product(s): | |
| Definition Synopsis |
| Red Hat Enterprise Linux must be installed OR Package Information
Red Hat Enterprise Linux 5 is installed
AND
luci is earlier than 0:0.9.2-6.el5
AND luci is signed with Red Hat redhatrelease2 key
ricci is earlier than 0:0.9.2-6.el5
AND ricci is signed with Red Hat redhatrelease2 key
|