Recommended update for SuSEfirewall2

SUSE Recommended Update: Recommended update for SuSEfirewall2
Announcement ID: SUSE-RU-2017:2220-1
Rating: low
References: #1044523 #906136 #946325 #963740
Affected Products:
  • SUSE Linux Enterprise Server 12-SP3
  • SUSE Linux Enterprise Desktop 12-SP3

  • An update that has four recommended fixes can now be installed.


    This update for SuSEfirewall2 provides the following fixes:

    - Make SuSEfirewall2 check for existing configuration in more sysctl.d
    style directories to allow packages and the user to create overrides
    easily (bsc#1044523)
    - Add support for customizing the sysctl paths to be scanned for existing
    configuration by changing the FW_SYSCTL_PATHS configuration variable
    - Correct the initialization order between SuSEfirewall2 and NFS
    components to make sure NFS server ports are correctly opened when both
    services are enabled in systemd, and to fix NFS clients not receiving
    callbacks from the server when started before SuSEfirewall2.
    (bsc#946325, bsc#963740)

    Patch Instructions:

    To install this SUSE Recommended Update use YaST online_update.
    Alternatively you can run the command listed for your product:

    • SUSE Linux Enterprise Server 12-SP3:
      zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1352=1
    • SUSE Linux Enterprise Desktop 12-SP3:
      zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1352=1

    To bring your system up-to-date, use "zypper patch".

    Package List:

    • SUSE Linux Enterprise Server 12-SP3 (noarch):
      • SuSEfirewall2-3.6.312.333-3.7.3
    • SUSE Linux Enterprise Desktop 12-SP3 (noarch):
      • SuSEfirewall2-3.6.312.333-3.7.3