Release Notes for ProLiant Support Pack for Red Hat Enterprise Linux 5, v8.00 Following is the list of the fixes and/or enhancements for all components in either the 8.00 x86 or x86_64 Red Hat Enterprise Linux 5 support packs. ******************************** hp_qla2x00src-8.01.07.25-2.linux.noarch.rpm - HP StorageWorks FCA2214/FCA2214DC FC HBA Driver for 2.6.x Kernels, v8.01.07.25-2 Enhancements Added 8.01.07.25 adapter driver Added support for auto-failback on MSA active-active arrays and EVA4000/6000/8000 Added support for HP XP Array static load balancing ******************************** hp-lpfc-8.1.10.11.linux.rpm - HP Linux Driver Kit for Emulex Based Fibre Channel Host Bus Adapters for 2.6.x Kernels, v8.1.10.11 Enhancements Added 8.1.10.11 base driver Added support for RHEL 5 Added support for SLES 10 SP 1 Removed ioctl module (lpfcdfc.ko) ******************************** cpq_cciss-3.6.18-10.rhel5.x86_64.rpm - HP ProLiant Smart Array Controller (AMD64/EM64T) Driver for Red Hat Enterprise Linux 5 (AMD64/EM64T), v3.6.18-10 Enhancements Added support for Red Hat Enterprise Linux 5 Update 1 (x86_64). ******************************** cpq_cciss-3.6.18-10.rhel5.i686.rpm - HP ProLiant Smart Array Controller (x86/AMD32) Driver for Red Hat Enterprise Linux 5 (x86), v3.6.18-10 Enhancements Added support for Red Hat Enterprise Linux 5 Update 1 (x86). ******************************** mptlinux-4.00.13.01-2.rhel5.x86_64.rpm - HP U320 SCSI Adapter and SAS HBA with RAID (AMD64/EM64T) Driver for Red Hat Enterprise Linux 5 (AMD64/EM64T), v4.00.13.01-2 Enhancements Added support for Red Hat Enterprise Linux 5 Update 1 (x86_64). ******************************** mptlinux-4.00.13.01-2.rhel5.i686.rpm - HP U320 SCSI Adapter and SAS HBA with RAID (AMD32 & x86) Driver for Red Hat Enterprise Linux 5 (x86), v4.00.13.01-2 Enhancements Added support for Red Hat Enterprise Linux 5 Update 1 (x86). ******************************** e1000-7.6.9.1b-1.src.rpm - HP NC-Series Intel Driver for Linux, v7.6.9.1b-1 Enhancements This driver now installs on RHEL5 update 1. ******************************** tg3-3.77e-1.src.rpm - HP NC-Series Broadcom TG3 Driver for Linux, v3.77e-1 Fixes This driver will no longer report a MSI failure message for the NC324i LOM, which eliminates the need of the workaround of disabling MSI on ServerWorks HT1000 bridge chips commonly found with the NC324i LOM. This driver will no longer stop resuming if the device was shutdown before the system was suspended. This driver will no longer put the stale MSI state back on to the chip when doing kdump, which prevents restoring the wrong MSI state. This driver will no longer generate multiple link interrupts for a single physical link change on NC77xx series NICs. Enhancements This driver now has ethtool support for IPV6 Checksum so you can set or clear the IPV6 Checksum feature Flag using `ethtool -K'. This Driver now supports IPV6 checksum offloading in network devices so you can perform both IPV4 and IPV6 only offload. This Driver now supports automatic MDI (Medium Dependent Interface) even when auto-negotiation is turned off so you can now achieve automatic MDI crossover without the use of crossover cable. ******************************** bnx2-1.7.1d-1.src.rpm - HP NC-Series Multifunction Driver for Linux, v1.7.1d-1 Fixes This driver fixes the compilation issues observed previously on SLES 9 SP4 and RH4 Update 6. The driver is now supported on these distribution versions. ******************************** hpsmh-2.1.11-197.linux.i386.rpm - HP System Management Homepage for Linux (x86), v2.1.11-197 Fixes Addressed the following vulnerabilities: CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when parsing date-related headers. PR 41144. CVE-2007-3304: prefork, worker MPMs: Ensure that the parent process cannot be forced to kill processes outside its process group. CVE-2007-5135: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7l and 0.9.8d might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. CVE-2007-3108: The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys. CVE-2007-6203: Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated via an HTTP request containing an invalid Content-length value, a similar issue to CVE-2006-3918. CVE-2007-4657: Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to obtain sensitive information (memory contents) or cause a denial of service (thread crash) via a large len value to the (1) strspn or (2) strcspn function, which triggers an out-of-bounds read. CVE-2007-3998: The wordwrap function in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, does not properly use the breakcharlen variable, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash, or infinite loop) via certain arguments, as demonstrated by a 'chr(0), 0, ""' argument set. Enhancements Updated OpenSSL, httpd and PHP libraries. ******************************** hpsmh-2.1.11-197.linux.x86_64.rpm - HP System Management Homepage for Linux (x86_64), v2.1.11-197 Fixes Addressed the following vulnerabilities: CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when parsing date-related headers. PR 41144. CVE-2007-3304: prefork, worker MPMs: Ensure that the parent process cannot be forced to kill processes outside its process group. CVE-2007-5135: Off-by-one error in the SSL_get_shared_ciphers function in OpenSSL 0.9.7l and 0.9.8d might allow remote attackers to execute arbitrary code via a crafted packet that triggers a one-byte buffer underflow. CVE-2007-3108: The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys. CVE-2007-6203: Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated via an HTTP request containing an invalid Content-length value, a similar issue to CVE-2006-3918. CVE-2007-4657: Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to obtain sensitive information (memory contents) or cause a denial of service (thread crash) via a large len value to the (1) strspn or (2) strcspn function, which triggers an out-of-bounds read. CVE-2007-3998: The wordwrap function in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, does not properly use the breakcharlen variable, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash, or infinite loop) via certain arguments, as demonstrated by a 'chr(0), 0, ""' argument set. Enhancements Updated OpenSSL, httpd and PHP libraries. ******************************** hp-OpenIPMI-8.0.0-113.rhel5.i386.rpm - HP OpenIPMI Device Driver for Red Hat Enterprise Linux 5 (x86), v8.0.0-113.rhel5 Fixes The hp-OpenIPMI requirement for the "/etc/issue"file to contain a specific string has been removed. This resolves build or packaging issues such as using the HP supplied "rebuild" script when the system administrator modified the contents of the "/etc/issue" file. Resolved an issue where after installing ProLiant Software Package (PSP) 7.9 on Red Hat Enterprise Linux 5, the IPMI driver (from the hp-OpenIPMI-7.9.0-rhel5 RPM) fails to perform a successful periodic check of the BMC which causes the hpasmxld to timeout and forces a reset of the HP management stack. ******************************** hp-OpenIPMI-8.0.0-113.rhel5.x86_64.rpm - HP OpenIPMI Device Driver for Red Hat Enterprise Linux 5 (AMD64/EM64T), v8.0.0-113.rhel5 Fixes Fixes The hp-OpenIPMI requirement for the "/etc/issue"file to contain a specific string has been removed. This resolves build or packaging issues such as using the HP supplied "rebuild" script when the system administrator modified the contents of the "/etc/issue" file. Resolved an issue where after installing ProLiant Software Package (PSP) 7.9 on Red Hat Enterprise Linux 5, the IPMI driver (from the hp-OpenIPMI-7.9.0-rhel5 RPM) fails to perform a successful periodic check of the BMC which causes the hpasmxld to timeout and forces a reset of the HP management stack. ******************************** hpasm-8.0.0-173.rhel5.i586.rpm - HP System Health Application and Insight Management Agents for Red Hat Enterprise Linux 5 (x86), v8.0.0-173.rhel5 Fixes The hpasmxld daemon will terminate and subsequently cause the server to reset due to an IPMI Watchdog Timer / Automatic Server Recovery (ASR) event. The problem only occurs when a communication issue occurs between the iLO 2 (BMC) processor and the Linux IPMI driver. Even then, not every iLO 2 event can cause this failure. The hpasmxld daemon code has been corrected to recognize this event and compensate for it rather than abruptly terminate. Fixed memory Leak in NIC Agent. NIC Agent now returns proper interface name instead of "N/A". Fixed a problem that hot adding a tape drive did not generate any SNMP trap. Enhancements HP Lights-Out Drivers and Agents (hprsm) and NIC Agent (cmanic) packages are merged into the HP System Health Application and Insight Management Agents (hpasm) as a single rpm package. With merging of the hprsm agents into the hpasm package, the HP ProLiant Channel Interface Device Driver for iLO / iLO 2 (hp-iLO) package will need to be installed for agent access to the HP iLO management controller. Removed Integrated Management Log (IML) Viewer Application (cpqimlview). Added support for NIC Controller Firmware Version MIB object. Added support for NC382T NIC. The Rapid Deployment Pack Support Internet Protocol Version 6 (IPv6) support added to SNMP traps. Converted IDE agent to use new SG_IO ioctl instead of SCSI_IOCTL_SEND_COMMAND ioctl. Add support for Smart Array P800, including new support for multipath and 64 LUN. ******************************** hpasm-8.0.0-173.rhel5.x86_64.rpm - HP System Health Application and Insight Management Agents for Red Hat Enterprise Linux 5 (AMD64/EM64T), v8.0.0-173.rhel5 Fixes The hpasmxld daemon will terminate and subsequently cause the server to reset due to an IPMI Watchdog Timer / Automatic Server Recovery (ASR) event. The problem only occurs when a communication issue occurs between the iLO 2 (BMC) processor and the Linux IPMI driver. Even then, not every iLO 2 event can cause this failure. The hpasmxld daemon code has been corrected to recognize this event and compensate for it rather than abruptly terminate. Fixed memory Leak in NIC Agent. NIC Agent now returns proper interface name instead of "N/A". Fixed a problem that hot adding a tape drive did not generate any SNMP trap. Enhancements HP Lights-Out Drivers and Agents (hprsm) and NIC Agent (cmanic) packages are merged into the HP System Health Application and Insight Management Agents (hpasm) as a single rpm package. With merging of the hprsm agents into the hpasm package, the HP ProLiant Channel Interface Device Driver for iLO / iLO 2 (hp-iLO) package will need to be installed for agent access to the HP iLO management controller. Removed Integrated Management Log (IML) Viewer Application (cpqimlview). Added support for NIC Controller Firmware Version MIB object. Added support for NC382T NIC. The Rapid Deployment Pack Support Internet Protocol Version 6 (IPv6) support added to SNMP traps. Converted IDE agent to use new SG_IO ioctl instead of SCSI_IOCTL_SEND_COMMAND ioctl. Add support for Smart Array P800, including new support for multipath and 64 LUN. ******************************** hp-ilo-8.0.0-144.rhel5.i386.rpm - HP ProLiant Channel Interface for Red Hat Enterprise Linux 5 (x86), v7.85-18 Enhancements Initial release, the hp-ilo device driver replaces the cpqci driver in the previously shipped HP Remote system Management (hprsm) package. ******************************** hp-ilo-8.0.0-144.rhel5.x86_64.rpm - HP ProLiant Channel Interface for Red Hat Enterprise Linux 5 (AMD64/EM64T), v7.85-18 Enhancements Initial release, the hp-ilo device driver replaces the cpqci driver in the previously shipped HP Remote system Management (hprsm) package. ******************************** hpmouse-1.1.1-41.noarch.rpm - HP Version Control Agent for Linux, v1.1.1-41 Enhancements Added code to accept any variance of `yes' will work for HPMOUSESILENT. ******************************** hpvca-2.1.9-6.linux.rpm - HP Version Control Agent for Linux, v2.1.9-6 Enhancements Support for componentized installer that can be integrated into VCA ******************************** cpqacuxe-8.0-14.linux.rpm - HP Array Configuration Utility for Linux, v8.0-14 Enhancements Added Dual Domain Support for the HP Smart Array P800 Controller Added 512K Stripe Size for RAID 5 (only on the following controllers with minimum FW 5.00): Smart Array E500 Smart Array P400/400i Smart Array P800 ******************************** hpacucli-8.0-14.linux.rpm - HP Array Configuration Utility CLI for Linux, v8.0-14 Enhancements Added Dual Domain Support for the HP Smart Array P800 Controller Added 512K Stripe Size for RAID 5 (only on the following controllers with minimum FW 5.00): Smart Array E500 Smart Array P400/400i Smart Array P800 ******************************** hpadu-8.0-14.linux.rpm - HP Array Diagnostics Utility for Linux, v8.0-14 Enhancements The ADU report has a new UI and provides the report in various formats (txt, html, xml). ******************************** hpdiags-8.0.0-210.linux.i386.rpm - HP Insight Diagnostics Online Edition for Linux, v8.0.0-210 Fixes Fixes a vulnerability in previous versions of Insight Diagnostics for the HP SMH application. The exploit allowed un-authorized access to files bypassing NTFS permissions granting read rights to restricted files. Enhancements Linux Online Support for SmartStart 8.00 added on new hardware: ProLiant BL2x220c G5 Server ProLiant BL260c G5 Server ProLiant DL785 G5 Server New feature "Accumulated Power-on time" added to Hard Drive Diagnose tool ******************************** fibreutils-2.4-1.linux.i386.rpm - Fibre Channel Utilities for HP StorageWorks FCA2214/FCA2214DC FC HBA for Linux (x86), v2.4-1 Fixes Build 2.4-1 Added -c options to lssg and lssd Build 2.3-8 Add check to lssg to make sure that /sys/class/scsi_generic exists Build 2.3-7 Fixed LUN parsing issue in probe-luns Build 2.3-6 Fixed a hang when scanning in lssg Build 2.3-5 Changed lssd and lssg to not stop on a scsi_info failure ******************************** fibreutils-2.4-1.linux.x86_64.rpm - Fibre Channel Utilities for HP StorageWorks FCA2214/FCA2214DC FC HBA for Linux (AMD64/EM64T), v2.4-1 Fixes Fixes Build 2.4-1 Added -c options to lssg and lssd Build 2.3-8 Add check to lssg to make sure that /sys/class/scsi_generic exists Build 2.3-7 Fixed LUN parsing issue in probe-luns Build 2.3-6 Fixed a hang when scanning in lssg Build 2.3-5 Changed lssd and lssg to not stop on a scsi_info failure ******************************** hponcfg-1.7.0-2.noarch.rpm - HP Lights-Out Online Configuration Utility for Linux, v1.7.0-2 Enhancements Support for new Lights-out driver package - "hp-ilo". ******************************** Copyright 2003-2008 Hewlett-Packard Development Company, L.P.