Recommended update for SuSEfirewall2

Announcement ID: SUSE-RU-2017:2233-1
Rating: low
References:
Affected Products:
  • SUSE Linux Enterprise Desktop 12 SP2
  • SUSE Linux Enterprise High Performance Computing 12 SP2
  • SUSE Linux Enterprise Server 12 SP2
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2
  • SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2

An update that has four fixes can now be installed.

Description:

This update for SuSEfirewall2 provides the following fixes:

  • Make SuSEfirewall2 check for existing configuration in more sysctl.d style directories to allow packages and the user to create overrides easily (bsc#1044523)
  • Add support for customizing the sysctl paths to be scanned for existing configuration by changing the FW_SYSCTL_PATHS configuration variable (bsc#906136)
  • Correct the initialization order between SuSEfirewall2 and NFS components to make sure NFS server ports are correctly opened when both services are enabled in systemd, and to fix NFS clients not receiving callbacks from the server when started before SuSEfirewall2. (bsc#946325, bsc#963740)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • SUSE Linux Enterprise Desktop 12 SP2
    zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1362=1
  • SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2
    zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1362=1
  • SUSE Linux Enterprise High Performance Computing 12 SP2
    zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1362=1
  • SUSE Linux Enterprise Server 12 SP2
    zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1362=1
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2
    zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1362=1

Package List:

  • SUSE Linux Enterprise Desktop 12 SP2 (noarch)
    • SuSEfirewall2-3.6.312-2.10.1
  • SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2 (noarch)
    • SuSEfirewall2-3.6.312-2.10.1
  • SUSE Linux Enterprise High Performance Computing 12 SP2 (noarch)
    • SuSEfirewall2-3.6.312-2.10.1
  • SUSE Linux Enterprise Server 12 SP2 (noarch)
    • SuSEfirewall2-3.6.312-2.10.1
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2 (noarch)
    • SuSEfirewall2-3.6.312-2.10.1

References: