Recommended update for yast2, yast2-firewall, and yast2-services-manager

Announcement ID:	SUSE-RU-2019:1337-1
Rating:	moderate
References:	bsc#1087867 bsc#1108199 bsc#1108628 bsc#1108942 bsc#1109812 bsc#1110549 bsc#1111370 bsc#1112547 bsc#1113732
Affected Products:	Basesystem Module 15 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15

An update that has nine fixes can now be installed.

Description:

This update for yast2, yast2-firewall, and yast2-services-manager fixes the following issues:

Package: yast2

Installation: - Show dialog if registration is skipped. (fate#318196) - Add tags to describe the location for the "all-packages" medium. This information will be shown if the registration has been skipped by the user. No hint will be shown if these tags have not been defined. (fate#325834)

Logging: - Log viewer: replace invalid UTF-8 characters from the displayed log to avoid a crash. (bsc#1110549)

Firewall: - firewalld configuration failed when setting public zone as default second time. (bsc#1109812) - firewalld: fixed the API cmd call for removing services from zones, when the firewall is in offline mode. (bsc#1108628) - Added new methods to firewalld_wrapper in order to switch yast2-dhcp-server to new firewall module. (bsc#1108942) - Network (Firewall): Added modify_masquerade method to zones API unifying the way changes are applied to single value attributes. (bsc#1112547) - CWMFirewallInterfaces: Improved the UX replacing the api calls for checking supported services once the list supported ones are already known by the firewalld instance. (fate#324662)

Package: yast2-firewall

AutoYast schema: - Allowed the new 'description', 'short' and 'target' elements in zone entries (bsc#1108199)

Included Features: - New user interface for firewalld configuration (fate#324662, bsc#1111370): * Manage the firewalld service * Browse interfaces and assign them to firewall zones * List zones and design one of them as the default * Assign services to zones * Open ports - Enable and open the SSH port when only public key authentication is available for the root user. (fate#324690)

Package: yast2-services-manager

• Do not crash in chroot environment (bsc#1113732)
• Adapted to use the new Y2Firewall::Firewalld::Interface objects instead of a hash. (fate#324662)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Server 15
  zypper in -t patch SUSE-SLE-INSTALLER-15-2019-1337=1
• Basesystem Module 15
  zypper in -t patch SUSE-SLE-Module-Basesystem-15-2019-1337=1

Package List:

• SUSE Linux Enterprise Server 15 (aarch64 ppc64le s390x x86_64)
  • yast2-4.0.103-3.15.3
• Basesystem Module 15 (aarch64 ppc64le s390x x86_64)
  • yast2-4.0.103-3.15.3
• Basesystem Module 15 (noarch)
  • yast2-services-manager-4.0.10-3.7.3
  • yast2-firewall-4.0.34-3.6.3

References:

• https://bugzilla.suse.com/show_bug.cgi?id=1087867
• https://bugzilla.suse.com/show_bug.cgi?id=1108199
• https://bugzilla.suse.com/show_bug.cgi?id=1108628
• https://bugzilla.suse.com/show_bug.cgi?id=1108942
• https://bugzilla.suse.com/show_bug.cgi?id=1109812
• https://bugzilla.suse.com/show_bug.cgi?id=1110549
• https://bugzilla.suse.com/show_bug.cgi?id=1111370
• https://bugzilla.suse.com/show_bug.cgi?id=1112547
• https://bugzilla.suse.com/show_bug.cgi?id=1113732