[Gluster-infra] Package updates on forge.gluster.org
Justin Clift
justin at gluster.org
Fri Jun 6 14:39:08 UTC 2014
Heh. Well at least we know what went wrong.
I ran the yum update command on our box, but haven't done the reboot yet.
Noticed that a lot of the rpms are coming from the "base" channel, which
seems to indicate they're not actually installed already.
pam, rpm (itself) seem to be on that list.
I'm kind of concerned now and afraid to reboot the box... any idea why it
would be acting like this?
+ Justin
On 06/06/2014, at 3:35 PM, Marcin Kulik wrote:
> Oh man. This is embarassing. I've been updating the box with IP of
> 54.229.115.178, which is Gitorious' "gluster staging" box :/
>
> On Fri, Jun 6, 2014 at 4:24 PM, Justin Clift <justin at gluster.org> wrote:
>> Interestingly, after double checking our boxes for the vulnerability using
>> the online tool (https://access.redhat.com/labs/ccsinjectiontest/), the
>> box was still showing as vulnerable.
>>
>> Logging in shows a large amount of rpms requiring updates. "Yum update"
>> output:
>>
>> ======================================================================================================
>> Package Arch Version Repository Size
>> ======================================================================================================
>> Installing:
>> kernel x86_64 2.6.32-431.17.1.el6 updates 28 M
>> Updating:
>> ImageMagick x86_64 6.5.4.7-7.el6_5 updates 1.7 M
>> atk x86_64 1.30.0-1.el6 base 195 k
>> audit x86_64 2.2-4.el6_5 updates 225 k
>> audit-libs x86_64 2.2-4.el6_5 updates 60 k
>> bash x86_64 4.1.2-15.el6_4 base 904 k
>> ca-certificates noarch 2013.1.95-65.1.el6_5 updates 1.1 M
>> centos-release x86_64 6-5.el6.centos.11.2 updates 20 k
>> chkconfig x86_64 1.3.49.3-2.el6_4.1 base 159 k
>> coreutils x86_64 8.4-31.el6_5.1 updates 3.0 M
>> coreutils-libs x86_64 8.4-31.el6_5.1 updates 50 k
>> cpp x86_64 4.4.7-4.el6 base 3.7 M
>> cronie x86_64 1.4.4-12.el6 base 73 k
>> cronie-anacron x86_64 1.4.4-12.el6 base 30 k
>> cups-libs x86_64 1:1.4.2-50.el6_4.5 base 317 k
>> curl x86_64 7.19.7-37.el6_5.3 updates 194 k
>> db4 x86_64 4.7.25-18.el6_4 base 563 k
>> db4-utils x86_64 4.7.25-18.el6_4 base 130 k
>> device-mapper x86_64 1.02.79-8.el6 base 164 k
>> device-mapper-event x86_64 1.02.79-8.el6 base 115 k
>> device-mapper-event-libs x86_64 1.02.79-8.el6 base 110 k
>> device-mapper-libs x86_64 1.02.79-8.el6 base 195 k
>> device-mapper-persistent-data x86_64 0.2.8-4.el6_5 updates 1.1 M
>> dhclient x86_64 12:4.1.1-38.P1.el6.centos base 317 k
>> dhcp-common x86_64 12:4.1.1-38.P1.el6.centos base 142 k
>> dmidecode x86_64 1:2.12-5.el6_5 updates 73 k
>> dracut noarch 004-336.el6_5.2 updates 122 k
>> dracut-kernel noarch 004-336.el6_5.2 updates 24 k
>> e2fsprogs x86_64 1.41.12-18.el6 base 552 k
>> e2fsprogs-libs x86_64 1.41.12-18.el6 base 120 k
>> efibootmgr x86_64 0.5.4-11.el6 base 38 k
>> emacs x86_64 1:23.1-25.el6 base 2.2 M
>> emacs-common x86_64 1:23.1-25.el6 base 18 M
>> ethtool x86_64 2:3.5-1.4.el6_5 updates 101 k
>> gcc x86_64 4.4.7-4.el6 base 10 M
>> gcc-c++ x86_64 4.4.7-4.el6 base 4.7 M
>> gdisk x86_64 0.8.10-1.el6 epel 167 k
>> ghostscript x86_64 8.70-19.el6 base 4.4 M
>> glib2 x86_64 2.26.1-7.el6_5 updates 1.6 M
>> glibc x86_64 2.12-1.132.el6_5.2 updates 3.8 M
>> glibc-common x86_64 2.12-1.132.el6_5.2 updates 14 M
>> glibc-devel x86_64 2.12-1.132.el6_5.2 updates 978 k
>> glibc-headers x86_64 2.12-1.132.el6_5.2 updates 608 k
>> gnupg2 x86_64 2.0.14-6.el6_4 base 1.6 M
>> gnutls x86_64 2.8.5-14.el6_5 updates 346 k
>> grep x86_64 2.6.3-4.el6_5.1 updates 229 k
>> grub x86_64 1:0.97-83.el6 base 933 k
>> grubby x86_64 7.0.15-5.el6 base 43 k
>> gtk2 x86_64 2.20.1-4.el6 base 3.3 M
>> gzip x86_64 1.3.12-19.el6_4 base 116 k
>> hdparm x86_64 9.43-4.el6 base 81 k
>> hwdata noarch 0.233-9.1.el6 base 1.2 M
>> initscripts x86_64 9.03.40-2.el6.centos.1 updates 940 k
>> iproute x86_64 2.6.32-32.el6_5 updates 365 k
>> iptables x86_64 1.4.7-11.el6 base 252 k
>> iptables-ipv6 x86_64 1.4.7-11.el6 base 97 k
>> iputils x86_64 20071127-17.el6_4.2 base 120 k
>> kernel-firmware noarch 2.6.32-431.17.1.el6 updates 13 M
>> kernel-headers x86_64 2.6.32-431.17.1.el6 updates 2.9 M
>> kpartx x86_64 0.4.9-72.el6_5.2 updates 58 k
>> krb5-devel x86_64 1.10.3-15.el6_5.1 updates 495 k
>> krb5-libs x86_64 1.10.3-15.el6_5.1 updates 761 k
>> libXcursor x86_64 1.1.13-6.20130524git8f677eaea.el6 base 28 k
>> libXfont x86_64 1.4.5-3.el6_5 updates 136 k
>> libblkid x86_64 2.17.2-12.14.el6_5 updates 115 k
>> libcgroup x86_64 0.40.rc1-5.el6_5.1 updates 125 k
>> libcom_err x86_64 1.41.12-18.el6 base 37 k
>> libcom_err-devel x86_64 1.41.12-18.el6 base 32 k
>> libcurl x86_64 7.19.7-37.el6_5.3 updates 166 k
>> libcurl-devel x86_64 7.19.7-37.el6_5.3 updates 244 k
>> libdrm x86_64 2.4.45-2.el6 base 121 k
>> libgcc x86_64 4.4.7-4.el6 base 101 k
>> libgcrypt x86_64 1.4.5-11.el6_4 base 229 k
>> libgcrypt-devel x86_64 1.4.5-11.el6_4 base 118 k
>> libgomp x86_64 4.4.7-4.el6 base 118 k
>> libjpeg-turbo x86_64 1.2.1-3.el6_5 updates 174 k
>> librsvg2 x86_64 2.26.0-6.el6_5.3 updates 140 k
>> libselinux x86_64 2.0.94-5.3.el6_4.1 base 108 k
>> libselinux-devel x86_64 2.0.94-5.3.el6_4.1 base 136 k
>> libselinux-utils x86_64 2.0.94-5.3.el6_4.1 base 81 k
>> libss x86_64 1.41.12-18.el6 base 41 k
>> libstdc++ x86_64 4.4.7-4.el6 base 293 k
>> libstdc++-devel x86_64 4.4.7-4.el6 base 1.6 M
>> libtasn1 x86_64 2.3-6.el6_5 updates 238 k
>> libtiff x86_64 3.9.4-10.el6_5 updates 343 k
>> libudev x86_64 147-2.51.el6 base 74 k
>> libuuid x86_64 2.17.2-12.14.el6_5 updates 68 k
>> libxml2 x86_64 2.7.6-14.el6_5.1 updates 800 k
>> libxml2-devel x86_64 2.7.6-14.el6_5.1 updates 1.1 M
>> logrotate x86_64 3.7.8-17.el6 base 55 k
>> lvm2 x86_64 2.02.100-8.el6 base 725 k
>> lvm2-libs x86_64 2.02.100-8.el6 base 816 k
>> mdadm x86_64 3.2.6-7.el6_5.2 updates 337 k
>> module-init-tools x86_64 3.9-21.el6_4 base 462 k
>> mysql x86_64 5.1.73-3.el6_5 updates 894 k
>> mysql-devel x86_64 5.1.73-3.el6_5 updates 129 k
>> mysql-libs x86_64 5.1.73-3.el6_5 updates 1.2 M
>> mysql-server x86_64 5.1.73-3.el6_5 updates 8.6 M
>> nginx x86_64 1.0.15-5.el6 epel 397 k
>> nspr x86_64 4.10.2-1.el6_5 updates 113 k
>> nss x86_64 3.15.3-6.el6_5 updates 822 k
>> nss-softokn x86_64 3.14.3-10.el6_5 updates 265 k
>> nss-softokn-freebl x86_64 3.14.3-10.el6_5 updates 157 k
>> nss-sysinit x86_64 3.15.3-6.el6_5 updates 40 k
>> nss-tools x86_64 3.15.3-6.el6_5 updates 358 k
>> nss-util x86_64 3.15.3-1.el6_5 updates 64 k
>> ntp x86_64 4.2.6p5-1.el6.centos base 592 k
>> ntpdate x86_64 4.2.6p5-1.el6.centos base 75 k
>> openldap x86_64 2.4.23-34.el6_5.1 updates 265 k
>> openssh x86_64 5.3p1-94.el6 base 258 k
>> openssh-clients x86_64 5.3p1-94.el6 base 402 k
>> openssh-server x86_64 5.3p1-94.el6 base 311 k
>> openssl x86_64 1.0.1e-16.el6_5.14 updates 1.5 M
>> openssl-devel x86_64 1.0.1e-16.el6_5.14 updates 1.2 M
>> pam x86_64 1.1.1-17.el6 base 658 k
>> perl x86_64 4:5.10.1-136.el6 base 10 M
>> perl-Module-Pluggable x86_64 1:3.90-136.el6 base 40 k
>> perl-Pod-Escapes x86_64 1:1.04-136.el6 base 32 k
>> perl-Pod-Simple x86_64 1:3.13-136.el6 base 212 k
>> perl-libs x86_64 4:5.10.1-136.el6 base 578 k
>> perl-version x86_64 3:0.77-136.el6 base 51 k
>> pixman x86_64 0.26.2-5.1.el6_5 updates 200 k
>> policycoreutils x86_64 2.0.83-19.39.el6 base 648 k
>> polkit x86_64 0.96-5.el6_4 base 158 k
>> postfix x86_64 2:2.6.6-6.el6_5 updates 2.0 M
>> postgresql-libs x86_64 8.4.20-1.el6_5 updates 201 k
>> psmisc x86_64 22.6-19.el6_5 updates 81 k
>> python x86_64 2.6.6-52.el6 updates 74 k
>> python-libs x86_64 2.6.6-52.el6 updates 5.3 M
>> python-urlgrabber noarch 3.9.1-9.el6 base 85 k
>> rpm x86_64 4.8.0-37.el6 base 901 k
>> rpm-libs x86_64 4.8.0-37.el6 base 313 k
>> rpm-python x86_64 4.8.0-37.el6 base 57 k
>> rsync x86_64 3.0.6-9.el6_4.1 base 334 k
>> rsyslog x86_64 5.8.10-8.el6 base 649 k
>> ruby x86_64 1.8.7.352-13.el6 updates 534 k
>> ruby-devel x86_64 1.8.7.352-13.el6 updates 314 k
>> ruby-irb x86_64 1.8.7.352-13.el6 updates 314 k
>> ruby-libs x86_64 1.8.7.352-13.el6 updates 1.6 M
>> ruby-rdoc x86_64 1.8.7.352-13.el6 updates 377 k
>> rubygems noarch 1.3.7-5.el6 base 207 k
>> selinux-policy noarch 3.7.19-231.el6_5.3 updates 825 k
>> selinux-policy-targeted noarch 3.7.19-231.el6_5.3 updates 2.8 M
>> setup noarch 2.8.14-20.el6_4.1 base 151 k
>> sphinx x86_64 2.0.8-1.el6 epel 3.3 M
>> sudo x86_64 1.8.6p3-12.el6 base 703 k
>> sysvinit-tools x86_64 2.87-5.dsf.el6 base 59 k
>> tzdata noarch 2014d-1.el6 updates 452 k
>> udev x86_64 147-2.51.el6 base 348 k
>> upstart x86_64 0.6.5-13.el6_5.3 updates 177 k
>> util-linux-ng x86_64 2.17.2-12.14.el6_5 updates 1.5 M
>> wget x86_64 1.12-1.11.el6_5 updates 483 k
>> xfsprogs x86_64 3.1.1-14.el6 base 724 k
>> xinetd x86_64 2:2.3.14-39.el6_4 base 121 k
>> yum noarch 3.2.29-43.el6.centos updates 996 k
>> yum-plugin-fastestmirror noarch 1.1.30-17.el6_5 updates 28 k
>> yum-utils noarch 1.1.30-17.el6_5 updates 102 k
>> Installing for dependencies:
>> OpenEXR-libs x86_64 1.6.1-8.1.el6 base 197 k
>> ilmbase x86_64 1.0.1-6.1.el6 base 72 k
>> p11-kit x86_64 0.18.5-2.el6_5.2 updates 94 k
>> p11-kit-trust x86_64 0.18.5-2.el6_5.2 updates 71 k
>> shared-mime-info x86_64 0.70-4.el6 base 209 k
>>
>> Transaction Summary
>> ======================================================================================================
>> Install 6 Package(s)
>> Upgrade 156 Package(s)
>>
>> Not sure which boxes you updated, but it wasn't ours.
>>
>> Note -> Not exactly impressed. :(
>>
>> I'm kicking off the updates myself in a minute, then rebooting
>> the box.
>>
>> Regards,
>>
>> Justin Clift
>>
>>
>> On 06/06/2014, at 11:38 AM, Marcin Kulik wrote:
>>> Thanks for heads up.
>>> I've updated the packages and restarted the machine.
>>> All services started properly.
>>>
>>> Regards,
>>> Marcin
>>>
>>> On Thu, Jun 5, 2014 at 5:55 PM, Justin Clift <justin at gluster.org> wrote:
>>>> Just a heads up in case you haven't seen it yet. There's a _new_
>>>> OpenSSL vulnerability reported. Packages for CentOS 5 & 6 have
>>>> been released. (currently getting sync'd to the worldwide mirrors)
>>>>
>>>> http://lists.centos.org/pipermail/centos-announce/2014-June/020344.html
>>>> http://lists.centos.org/pipermail/centos-announce/2014-June/020345.html
>>>> http://lists.centos.org/pipermail/centos-announce/2014-June/020346.html
>>>>
>>>> + Justin
>>>>
>>>>
>>>> On 26/05/2014, at 10:27 AM, Marcin Kulik wrote:
>>>>> Hi Justin,
>>>>>
>>>>> We have installed new package updates on forge.gluster.org and
>>>>> rebooted the machine.
>>>>>
>>>>> Updates installed:
>>>>>
>>>>> libxml2-2.7.6-14.el6_2.7.6-14.el6_5.1.x86_64.drpm
>>>>> libxml2-devel-2.7.6-14.el6_2.7.6-14.el6_5.1.x86_64.drpm
>>>>> selinux-policy-3.7.19-231.el6_5.1_3.7.19-231.el6_5.3.noarch.drpm
>>>>> selinux-policy-targeted-3.7.19-231.el6_5.1_3.7.19-231.el6_5.3.noarch.drpm
>>>>> tzdata-2014b-1.el6_2014b-3.24.el6.noarch.drpm
>>>>>
>>>>> Regards,
>>>>> Marcin
>>
>> --
>> GlusterFS - http://www.gluster.org
>>
>> An open source, distributed file system scaling to several
>> petabytes, and handling thousands of clients.
>>
>> My personal twitter: twitter.com/realjustinclift
>>
--
GlusterFS - http://www.gluster.org
An open source, distributed file system scaling to several
petabytes, and handling thousands of clients.
My personal twitter: twitter.com/realjustinclift
More information about the Gluster-infra
mailing list