Hello everyone!
We are happy to announce the immediate availability of Uyuni 2020.09
At https://www.uyuni-project.org/pages/stable-version.html you will find all
the resources you need to start working with Uyuni 2020.09, including the
release notes, documentation, requirements and setup instructions.
IMPORTANT: Keep in mind Uyuni 2020.07 changed the base OS to openSUSE Leap
15.2, so a special procedure is needed if you are not upgrading from 2020.07
but from a previous version! Check the release notes and the documentation for
all the details
This is the list of highlights for this release:
* Uyuni Hub XML-RPC API is now supported
* Formula for peripheral server management (Technology Preview)
* Maintenance windows
* Monitoring reverse proxies
* Added new type of "Virtual Host Manager": Nutanix AHV
* Grafana 7.1.5
* New products enabled
Please check the release notes for full details.
We will also have Uyuni Community Hours this Friday 25th at 16.00 CEST to
present Uyuni 2020.09 [1]
Remember that Uyuni will follow a rolling release planning, so the next
version will contain bugfixes for this one and any new features. There will be
no maintenance of 2020.09
As always, we hope you will enjoy Uyuni 2020.09 and we invite everyone of you
to send us your feedback [2] and of course your patches, if you can
contribute.
Happy hacking!
[1] https://teams.microsoft.com/l/meetup-join/
19%3Ameeting_ZmZmNzY5MjAtZGI2Mi00MDY1LWJiMTMtYjU3N2U0YmQxMmQz%40thread.v2/0?
context=%7B%22Tid%22%3A%22f7a17af6-1c5c-4a36-aa8b-
f5be247aa4ba%22%2C%22Oid%22%3A%2283d1ce03-a2c8-4530-8955-02fbc59cb7d6%22%7D
Conference ID: 169 720 66#
Dial-in numbers:
https://dialin.teams.microsoft.com/58c3986f-4c3a-4b77-b4e8-f431171ef66d?
id=16972066
[2] https://www.uyuni-project.org/pages/contact.html
--
Julio González Gil
Release Engineer, SUSE Manager and Uyuni
jgonzalez(a)suse.com
Hi everyone,
I just tagged the master branch in preparation for Uyuni 2020.09.
This includes the susemanager-schema that is now 4.2.2.
If you have any open PRs with SQL scripts on "susemanager-4.2.0-to-
susemanager-4.2.1" or ""susemanager-4.2.1-to-
susemanager-4.2.2", please update them ASAP.
The folder you to use is susemanager-4.2.2-to-susemanager-4.2.3 (create
it if it doesn't exist).
Best regards.
--
Julio González Gil
Release Engineer, SUSE Manager and Uyuni
jgonzalez(a)suse.com
Dear lists,
today we released an unscheduled maintenance update for CVE-2020-8028
(bsc#1175884), which is a security vulnerability of SUSE Manager and Uyuni
Servers. The bug has been kept under embargo since it was reported to this day
while we prepared a fix and coordinated the release.
Only users that have shell access to the Uyuni server can exploit this
vulnerability. This is not a common setup, shell access to the server should
usually be restricted to the server administrators.
In order to install this update please make sure you are on the most recent
release (2020.07) and use the following commands on the Uyuni server:
zypper addrepo https://download.opensuse.org/repositories/systemsmanagement:/Uyuni:/Stable…
zypper refresh
spacewalk-service stop
zypper update spacewalk-java-lib spacewalk-java spacewalk-java-config spacewalk-java-postgresql spacewalk-taskomatic spacewalk-admin spacewalk-setup salt-netapi-client
spacewalk-service start
After services start again, the Salt API endpoint will be authenticated and
encrypted.
As the fix changes the way the Salt API endpoint is served, it is expected
to break any third-party scripts or software that may rely on it. We will take
this occasion to remind you that:
- the Salt API endpoint configured by Uyuni at installation time is
exclusively for internal Uyuni use and by default not exposed to the
network. If your custom software depends on using the Salt API directly,
you are relying on something not supported by Uyuni.
- it is possible to define additional API endpoints, and secure them in a
variety of ways, and those are fine for custom scripts. More information
about how to configure those are available at: https://docs.saltstack.com/en/latest/ref/netapi/all/salt.netapi.rest_tornad…
If applying the update is not readily feasible, we recommend to restrict shell
access to the Uyuni Server to the minimum set of users who really need it - which
is a standard, recommended security practice in any case.
More information is available at:
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8028
- https://github.com/uyuni-project/uyuni/pull/2613
--
Julio González Gil
Release Engineer, SUSE Manager and Uyuni
jgonzalez(a)suse.com
Hi everyone,
I just tagged the master branch in preparation for Uyuni 2020.09.
This includes the susemanager-schema that is now 4.2.1.
If you have any open PRs with SQL scripts on susemanager-4.2.0-to-
susemanager-4.2.1, please update them ASAP.
The now you need is to use is susemanager-4.2.0-to-susemanager-4.2.1 (create
it if it doesn't exist).
Best regards.
--
Julio González Gil
Release Engineer, SUSE Manager and Uyuni
jgonzalez(a)suse.com