, Oracle and/or its affiliates. Legal Notices
F48681-01
November 2021
Abstract
Oracle ® Linux 8: Release Notes for Oracle Linux 8.5 provides information about the new features and known issues in the Oracle Linux 8.5 release. This document may be updated after it is released.
Table of Contents
Oracle ® Linux 8: Release Notes for Oracle Linux 8.5 provides information about the new features and known issues in the Oracle Linux 8.5 release. This document may be updated after it is released.
Document generated on: 2021-11-15 (revision: 12689)
These release notes contain information that applies to both the x86_64 and 64-bit Arm (aarch64) architectures. See Chapter 7, Release-Specific Information for Oracle Linux 8.5 (aarch64) for information that applies specifically to the 64-bit Arm (aarch64) platform.
This document is intended for users and administrators of the Oracle Linux 8.5 release. It describes potential issues that you may encounter while using the operating system; and, where appropriate, any corresponding workarounds. Oracle recommends that you read this document before installing Oracle Linux 8.5. It is assumed that readers have a general understanding of the Linux operating system.
The latest version of this document and other documentation for this product are available at:
The following text conventions are used in this document:
|
Convention |
Meaning |
|---|---|
|
boldface |
Boldface type indicates graphical user interface elements associated with an action, or terms defined in text or the glossary. |
|
italic |
Italic type indicates book titles, emphasis, or placeholder variables for which you supply particular values. |
|
|
Monospace type indicates commands within a paragraph, URLs, code in examples, text that appears on the screen, or text that you enter. |
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at https://www.oracle.com/corporate/accessibility/ .
For information about documentation accessibility features that are specific to this release, see Oracle ® Linux 8: Accessibility User's Guide .
Oracle customers that have purchased support have access to electronic support through My Oracle Support. For information, visit https://www.oracle.com/corporate/accessibility/learning-support.html#support-tab .
Oracle is fully committed to diversity and inclusion. Oracle respects and values having a diverse workforce that increases thought leadership and innovation. As part of our initiative to build a more inclusive culture that positively impacts our employees, customers, and partners, we are working to remove insensitive terms from our products and documentation. We are also mindful of the necessity to maintain compatibility with our customers' existing technologies and the need to ensure continuity of service as Oracle's offerings and industry standards evolve. Because of these technical constraints, our effort to remove insensitive terms is ongoing and will take time and external cooperation.
The release is available for installation on the following platforms:
Intel 64-bit (x86_64)
AMD 64-bit (x86_64)
64-bit Arm (aarch64)
In Oracle Linux 8.5, the 64-bit Arm (aarch64) platform is only supported with Unbreakable Enterprise Kernel Release 6 (UEK R6). See Chapter 7, Release-Specific Information for Oracle Linux 8.5 (aarch64) for further details.
Oracle Linux 8 images are available for Oracle Cloud Infrastructure and can be installed onto compute instances. For information about new and changed features, as well as any known issues, use these release notes in conjunction with the release notes that are available for Oracle Linux 8 images. See the release notes for the specific image that you are using on the Oracle Cloud Infrastructure Documentation page.
For more information about Oracle Cloud Infrastructure, visit https://docs.oracle.com/en/operating-systems/oracle-linux/oci/ .
Oracle Linux 8.5 on the x86_64 platform ships with the following default kernel packages:
kernel-4.18.0-348.el8
Red Hat Compatible Kernel (RHCK)
kernel-uek-5.4.17-2136.300.7.el8uek
Unbreakable Enterprise Kernel Release 6 (UEK R6)
The Oracle Linux release is tested as a bundle, as shipped on the installation media image. When installed from the installation media image, the minimum kernel version that is supported is the kernel that is included in the image. Downgrading kernel packages is not supported, unless recommended by Oracle Support.
Table of Contents
This chapter describes new features, major enhancements, bug fixes, and other changes that are introduced in Oracle Linux 8.5. These features generally apply to both the x86_64 and 64-bit Arm (aarch64) platforms, unless otherwise noted. For information that applies specifically to the Arm platform, see Chapter 7, Release-Specific Information for Oracle Linux 8.5 (aarch64) .
The following installation changes are introduced in Oracle Linux 8.5:
Capability for overriding official repositories added.
The
osbuild-composer
backend includes a
set of official repositories that are defined in the
/usr/share/osbuild-composer/repositories
directory by default; but, it does not inherit the system
repositories that are located in the
/etc/yum.repos.d/
directory. However,
in this release, you can override the official
repositories by defining overrides in the
/etc/osbuild-composer/repositories
directory. As a result. the files that are located in this
directory take precedence over those in the
/usr
directory.
Graphical installation program displays warnings about deprecated kernel
boot arguments.
Graphical installation program boot arguments that do not
contain the
inst.
prefix, such as
ks
,
stage2
,
repo
, and so on, are deprecated as of
Oracle Linux 7, with the intent to remove these arguments in the
next major Oracle Linux release.
Starting with Oracle Linux 8.4, warning messages are displayed by the
graphical installation program whenever any boot arguments
that do not contain the
inst.
prefix are
used, as appropriate.
For example, the following warnings are displayed in
dracut
when booting the installation:
ks has been deprecated. All usage of Anaconda boot arguments without the inst. prefix have been deprecated and will be removed in a future major release. Please use inst.ks instead.
When the installation program has started in a terminal window, the following warnings are displayed:
Deprecated boot argument ks must be used with the inst. prefix. Please use inst.ks instead. Anaconda boot arguments without inst. prefix have been deprecated and will be removed in a future major release.
Oracle Linux 8.5 includes Unbreakable Enterprise Kernel Release 6 (UEK R6) on the installation image, along with the Red Hat Compatible Kernel (RHCK). For new installations, UEK R6 is enabled and installed by default and is the default kernel on first boot.
UEK R6 is a heavily tested and optimized operating system kernel for Oracle Linux 8.1 and later releases. The kernel is developed, built, and tested on Arm (aarch64), Intel x86, and AMD x86 (x86_64). platforms. It is based on the mainline Linux kernel version 5.4. This release also updates drivers and includes bug and security fixes.
UEK R6 maintains compatibility with RHCK. Additional features are enabled to provide support for key functional requirements and patches are applied to improve performance and optimize the kernel for use on Oracle operating systems.
For the latest information about UEK R6, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
The following notable features, enhancements, and changes apply to the Red Hat Compatible Kernel (RHCK) that is shipped with Oracle Linux 8.5 on the x86_64 platform.
For the latest information about Unbreakable Enterprise Kernel Release 6 (UEK R6), which is shipped with Oracle Linux 8.5, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
The
igc
Intel 2.5G Ethernet Linux wired
local area network (LAN) driver, which was previously
introduced in Oracle Linux 8.1 as a technology preview, is supported on
all architectures, starting with Oracle Linux 8.4. Note that the
ethtool
command that is used to control
network driver and hardware settings also includes support for
igc
wired LANs.
The
kexec fast reboot
feature is available
as a technology preview feature in Oracle Linux 8. This feature
significantly speeds up the boot process by enabling the
kernel to boot directly into the second kernel without having
to first pass through the Basic Input/Output System (BIOS). To
use this feature, load the
kexec
module
first, then reboot the system.
The following software management features and enhancements are introduced in Oracle Linux 8.5:
RPM includes read-only support for sqlite database back end.
When inspecting other root directories, such as
containers, you might want to query an RPM that is based
on the
sqlite
database backend. Oracle Linux 8.5
includes read-only support for the RPM
sqlite
database back end, which means
you can query the packages that are installed in a UBI 9
or container from the Oracle Linux 8 host.
To perform this type of query with Podman, mount the
container’s file system by using
podman
mount
command, then run the
rpm
-qa
command with the
--root
option and point to the mounted location.
Note that RPM on Oracle Linux 8 continues to use the Berkeley DB
database (
bdb
) back end.
libmodulemd updated to version 2.13.0.
The
libmodulemd
packages have been
updated to version 2.13.0. This version of
libmodulemd
includes fixes for several
issues with the
modulemd-validator
command, as well as the following improvements over the
previous version:
Capability for delisting demodularized packages from a module.
Capability for validating
modulemd-packager-v3
documents by
specifying the new -
-type
option with
the
modulemd-validator
command.
Fortified parsing integers.
sslverifystatus added to dnf configuration.
Starting with this release, enabling the
sslverifystatus
option causes the
dnf
command to each server certificate
revocation status by using the Certificate Status Request
TLS extension (OCSP stapling). As a result, when a revoked
certificate is encountered, the
dnf
command refuses the download from its server.
libcomps-devel package moved to ol8_codeready_builder repository.
The
libcomps-devel
package was moved by
upstream from the
ol8_baseos
repository
to the
ol8_codeready_builder
repository
between Oracle Linux 8.4 and Oracle Linux 8.5. If you were using this
package previously, you may need to enable the
ol8_codeready_builder
repository to
resolve any potential update issues.
The following shells and command-line tools features and improvements are introduced in Oracle Linux 8.5:
Errors when restoring LVM with thin pools is fixed. This enhancement enables Relax-and-Recover (ReaR) to detect when thin pools and other logical volume types with kernel metadata, such as RAIDs and caches, are used in a volume group (VG). ReaR then switches to a mode where it recreates all of the logical volumes (LVs) in the VG by using lvcreate commands. Thus, LVM with thin pools are restored without producing any errors.
The new method does not preserve all the LV properties, such as LVM UUIDs. Before you use ReaR in a production environments, you should test restoring from the backup to determine whether the recreated storage layout matches the requirements.
FCoE option changed to rd.fcoe.
The
rd.nofcoe=0
command has been
changed to
rd.fcoe
in Oracle Linux 8.5. In
previous releases, the
dracut.cmdline(7)
manual page
documented using the
rd.nofcoe=0
command to turn off Fibre Channel over Ethernet (FCoE).
Starting with this release, you should use the
rd.fcoe=0
command to disable FCoE.
lsvpd updated to version 1.7.12.
The
lsvpd
package has been updated to
version 1.7.12 in this release. Notable bug fixes and
enhancements in this version of
lsvpd
include the following:
UUID property added in
sysvpd
.
Improvements to the NVMe firmware version.
Fix for the PCI device manufacturer parsing logic.
Added
recommends clause
to the
lsvpd
configuration file.
modulemd-tools package added.
The
modulemd-tools
package is
introduced in Oracle Linux 8.5. This package provides tools for
parsing and generating
modulemd
YAML
files. To install the package, use the
yum
install modulemd-tools
command.
opencryptoki updated to version 3.16.0.
The
opencryptoki
package has been
updated to version 3.16.0 in this release. This version of
opencryptoki
includes several bug fixes
and the following improvements over the previous version:
Improvements to the
protected-key
option and support for
attribute-bound
keys
in the EP11 core processor
Improvements to the import and export of secure key
objects in the
cycle-count-accurate
(CCA) processor.
ppc64-diag updated to version 2.7.1.
The
ppc64-diag
package has been updated
to version 2.7.7 in this release. This version of
ppc64-diag
includes the following
improvements:
Unit test cases have been improved.
UUID property is added in
sysvpd
.
The
rtas_errd
service does not run in
Linux containers.
Obsolete logging options removed from the
systemd
service files.
ReaR updated to version 2.6.
The ReaR feature has been updated to version 2.6 in this
release. This version of ReaR includes support for
eMMC
devices, improved backup of
multipath devices, and the following other notable
improvements:
All kernel modules are included in the rescue system by default.
A new
GRUB2_INSTALL_DEVICES
configuration variable for the x86_64 and ppc64le
platforms. This variable controls the location of the
boot loader installation.
Files under the
/media
,
/run
,
/mnt
, and
/tmp
directories are automatically
excluded from backups because these directories are
known to contain removable media or temporary files.
The
CLONE_ALL_USERS_GROUPS=true
variable is the default.
For more information, see the description in the
/usr/share/rear/conf/default.conf
file.
Oracle Linux 8.5 introduces the following features, enhancements, and changes to compilers and development toolsets.
Go Toolset updated to version 1.16.6. The Go Toolset has been updated to version 1.16.6. The following are some of the notable changes that have been made:
The
GO111MODULE
environment variable
is set to
on
by default. You can
revert this setting by changing the variable's value to
auto
.
The Go linker uses less resources and improves code robustness and maintainability. This improvement applies to all supported architectures and operating systems.
A new
embed
package has been added.
With this package, you can access embedded files while
compiling programs.
All of the functions of the
io/ioutil
package have been moved to the
io
and
os
packages. You an still use the
io/ioutil
package; however, the
io
and
os
packages
provide better definitions.
The Delve debugger has been updated to version 1.6.0. This version of the Delve debugger supports the Go 1.16.7 Toolset.
Rust Toolset updated to version 1.54.0. The Rust Toolset has been updated to version 1.54.0. This version of the Rust Toolset included the following changes:
The Rust standard library is available for the
wasm32-unknown-unknown
target. This
enhancement enables you to generate WebAssembly
binaries, including newly stabilized intrinsics.
Rust includes the
IntoIterator
implementation for arrays. This enhancement enables you
to use the
IntoIterator
trait to
iterate over arrays by value and pass arrays to methods.
Note, however, that the
array.into_iter()
still iterates
values by reference until the 2021 edition of Rust.
The syntax for
or
patterns allows for
nesting anywhere in the pattern, for example,
Pattern(1|2)
can be used instead of
Pattern(1)|Pattern(2)
.
Unicode identifiers can contain all valid identifier characters, as defined in the Unicode Standard Annex #31.
Methods and trait implementations have been stabilized.
Incremental compilation has been reenabled by default.
LLVM Toolset updated to version 12.0.1. The LLVM Toolset has been updated to version 12.0.1. A new compiler was added and several changes were made to existing compilers. The following are the notable changes that were made in this version of the tool:
The new
-march=x86-64-v[234]
complier
flag has been added.
The
-fasynchronous-unwind-tables
compiler flag, which is part of the
clang
compiler, is the default on
Linux AArch64/PowerPC.
The
clang
compiler includes support
for the C++20 likelihood attributes.
The new
tune-cpu
function attribute
has been added. This function attribute enables
microarchitectural optimizations to be applied
independently from the
target-cpu
attribute or TargetMachine CPU.
The new sanitizer,
-fsanitize=unsigned-shift-base
, has
been added to the integer sanitizer,
-fsanitize=integer
, for improved
security.
Code generation on PowerPC targets has been optimized.
The WebAssembly back end is now enabled in LLVM. This enhancments enables you to generate WebAssembly binaries with LLVM and Clang.
For debugging .NET applications, use the lldb debugger. For other languages, use the gdb debugger.
CMake updated to version 3.20.2. CMake has been updated to version 3.20.2. Notable changes that are included in this version of CMake include the following:
C++23 compiler modes can be specified by using the
CXX_STANDARD
,
CUDA_STANDARD
, and
OBJCXX_STANDARD
target properties or
by using the
cxx_std_23
meta-feature
of the compile features function.
CUDA language support allows the NVIDIA CUDA compiler to be a symbolic link.
Intel oneAPI NextGen LLVM compilers are supported with
the
IntelLLVM
compiler ID.
CMake can facilitate cross compiling for Android by merging with the Android NDK’s toolchain file.
When using
cmake(1)
to generate a
project build system, unknown command-line arguments
that begin with a hyphen are rejected.
GCC Toolset 11: dwz suppors DWARF 5.
Staring with GCC Toolset 11,
dwz
includes support for DWARF 5.
SystemTap updated to verison 4.5. SystemTap has been updated to to version 4.5. This version of SystemTap includes several bug fixes and other improvements, including the following:
32-bit floating-point variables are automatically
widened to double variables. As a result, they can be
accessed directly as
$context
variables.
enum
values can be accessed as
$context
variables.
The BPF uconversions tapset has been extended to include
more tapset functions for accessing values in user
space, such as
user_long_error()
.
Concurrency control is significantly improved to provide more stable operatiosn on large servers.
elfutils updated to version 0.185.
The
elfutils
packages have been updated
to version 0.185. Several bug fixes and the following
notable improvements have been made in this version:
The
eu-elflint
and
eu-readelf
tools can recognize and
show the
SHF_GNU_RETAIN
and
SHT_X86_64_UNWIND
flags on ELF
sections.
The
DEBUGINFOD_SONAME
macro is added
to
debuginfod.h
. You can use this
macro with the
dlopen
function to
load the
libdebuginfod.so
library
dynamically from an application.
The
debuginfod_set_verbose_fd
function has been added to the
debuginfod-client
library. This
function enhances the
debuginfod_find_*
queries
functionality by redirecting the verbose output to a
separate file.
Setting the
DEBUGINFOD_VERBOSE
environment variable shows additional information about
to which servers the
debuginfod
client is connected, as well HTTP responses of those
servers.
The
debuginfod
server includes a new
thread-busy metric and more detailed error metrics,
which makes it easier to inspect processes that run on
the
debuginfod
server.
The
libdw
library transparently
handles the
DW_FORM_indirect
location
value, which enables the
dwarf_whatform
function to return the
actual FORM of an attribute.
The
debuginfod-client
library stores
negative results in a cache, and client objects can
reuse an existing connection, which reduces network
traffic.
Valgrind updated to version 3.17.0.
Valgrind has been updated to version 3.17.0. This version
of Valgrind introduces several bug fixes and enhancements.
A few of the more notable improvements include the
following: Valgrind can read DWARF Version 5 debugging
format, support for debugging queries to the
debuginfod
server, and partial support
for ARMv8.2 processor instructions.
New pcp-ss PCP utility.
The new
pcp-ss
PCP utility is added in
this release. The utility reports socket statistics that
are collected by the
pmdasockets(1)
PMDA. The command is compatible with several
ss
command-line options and reporting
formats. The utility also provides the advantages of local
and remote monitoring, in live mode and historical replay,
from a previously recorded PCP archive.
PCP updated to 5.3.1.
The Performance Co-Pilot (PCP) package has been updated to
version 5.3.1. This release includes bug fixes,
enhancements, and new features, including the following:
scalability improvements, resolved memory leaks in the
pmproxy
service and the
libpcp_web
API library, a new
pcp-ss
tool for historical socket
statistics, improvements to the
pcp-htop
tool, and extensions to the
over-the-wire PCP protocol, which supports higher
resolution timestamps.
pcp-container package updated to version 5.3.1.
The
pcp-container
package has been
updated to version 5.3.1 in this release.
grafana package updated to version 7.5.9.
The
grafana
package has been updated to
version 7.5.9 in this release. Notable new features
enhancements include the following: a new time series
panel (beta), a new pie chart panel (beta), altering
support for Loki, and multiple new query transformations.
grafana-container package updated to version 7.5.9.
The
grafana-container
packages have
been updated to version 7.5.9 in this release. Notable new
features enhancements include the following:
The
grafana
package is updated to
version 7.5.9.
The
grafana-pcp
package is updated to
version 3.10.
The container includes support for the
GF_INSTALL_PLUGINS
environment
variable for installing custom Grafana plugins at
container start-up.
grafana-pcp package updated to version 3.10.0.
The
grafana-pcp
package has been
updated to version 3.1.0. Notable improvements include the
following:
Performance Co-Pilot (PCP) Vector Checklist dashboards use a new time series panel, show units in graphs, and contain updated help texts.
Addition of the
pmproxy
URL and
hostspec
variables to PCP Vector Host
Overview and PCP Checklist dashboards.
All dashboards display datasource selection.
Marking all included dashboards as read-only.
Added compatibility with Grafana 8.
Oracle Linux 8.5 provides the GCC Toolset 11, which is an Application
Stream that is distributed in the form of a Software Collection
in the
AppStream
repository. The GCC Toolset
is similar to the Oracle Linux Developer Toolset.
In Oracle Linux 8.5, the GCC compiler is updated to the upstream version. The following tools have been updated since GCC Toolset 10:
GCC version 11.1.1
GDB version 10.1
Valgrind version 3.17.0
SystemTap version 4.5
Dyninst version 10.2.1
binutils
version 2.36.1
elfutils
version 0.184
dwz
version 0.14
annobin
version 9.69
See Section 4.6, “Compilers and Development Toolsets” for further details about notable changes that have been made to some of the tools that are in GCC Toolset 11.
The GCC Toolset 11 is available as an Application Stream within
the
AppStream
repository, in the form of a
Software Collection.
To install this toolset, use the following command:
sudo dnf install gcc-toolset-11
To run a tool from GCC Toolset 11, use the following command:
scl enable gcc-toolset-11 tool
The following command initiates a shell session, where tool versions from the GCC Toolset 11 take precedence over system versions of the same tools:
scl enable gcc-toolset-11 bash
To pull a container image, run the following command:
podman pull registry/repository/image:tag
Oracle Linux 8.5 includes the following feature changes and improvements for dynamic programming languages, and web and database servers. Note that this release also introduces new and improved module streams:
ruby:3.0 module stream added.
Oracle Linux 8.5 includes Ruby version 3.0.2 in a new
ruby:3.0
module stream. Ruby 3.0.1
includes several performance improvements, bug and
security fixes, and new features, compared with Ruby
version 2.7 that was available in Oracle Linux 8.3. This version of
Ruby includes the following significant features:
Concurrency and parallelism features.
Static analysis features.
Pattern matching with the
case/in
expression is no longer experimental.
One-line pattern matching has been redesigned. This feature is an experimental feature.
Find pattern is added as an experimental feature.
Pasting long code to the
Interactive Ruby Shell
(IRB)
is significantly faster.
measure
command has been added to
IRB
for time measurement.
Other notable changes include changes to keyword arguments,
which are now separated from other arguments. Also, the
default directory for user-installed gems has changed to
$HOME/.local/share/gem/
, unless the
$HOME/.gem/
directory already exists.
Default separator for Python urllib parsing functions has changed.
The default separator for the
urllib.parse.parse_qsl
and
urllib.parse.parse_qs
functions has
been changed from the ampersand (
&
)
and semicolon (
;
) to just an ampersand.
These changes were made to mitigate the Web Cache
Poisoning CVE-2021-23336 in the Python
urllib
library.
This change, which was introduced in Python 3.6 with Oracle Linux 8.4, is now being backported to Python 3.8 and Python 2.7. Note that Python 3.9 is unaffected, as it already includes the new default separator.
Because this change is potentially backwards incompatible,
you have the option to configure the behavior in Python
packages, where the default separator has been changed.
Note also that the affected
urllib
parsing functions emit a warning if it is detected that a
customer’s application is affected by the change.
Python ipaddress module changes.
The Python
ipaddress
module has been
updated to reject IPv4 addresses with leading zeros, with
an
AddressValueError: Leading zeros are not
permitted
error. This change was made to
mitigate CVE-2021-299221.
This change was introduced in
python38
and
python39
modules. Note that previous
Python modules are not impacted by CVE-2021-299221.
If you rely on the previous behavior, you can pre-process your IPv4 address inputs to strip the leading zeros off as follows:
>>> def reformat_ip(address): return '.'.join(part.lstrip('0') if part != '0' else part for part in address.split('.'))
>>> reformat_ip('0127.0.0.1')
'127.0.0.1'
To strip off the leading zeros with an explicit loop for readability, use the following:
def reformat_ip(address):
parts = []
for part in address.split('.'):
if part != "0":
part = part.lstrip('0')
parts.append(part)
return '.'.join(parts)
php:7.4 module stream updated to version 7.4.19.
The PHP scripting language, which is included in the
php:7.4
module stream, has been updated
to version 7.4.19 in this release. With this update,
multiple security and bug fixes have been implemented.
pg_repack package added.
The new
pg_repack
has been added to the
postgresql:12
and
postgresql:13
modules. This package
provides a
PostgreSQL
extension that
enables you remove bloat from tables and indexes, as well
as optionally restore the physical order of clustered
indexes.
nginx:1.20 module added.
The
nginx 1.20
web and proxy server is
available as the
nginx:1.20
module
stream in Oracle Linux 8.5. This version provides numerous bug
fixes, security fixes, enhancements, and new features over
the previous version, including the following:
Support for the client SSL certificate validation with Online Certificate Status Protocol (OCSP).
Support for cache clearing, based on the minimum amount
of free space. Note that this feature is implemented as
the
min_free
parameter of the
proxy_cache_path
directive.
Other notable changes in the
nginx:1.20
module include enhanced directives, such as the
ssl_conf_command
and
ssl_reject_handshake
, and
proxy_cookie_flags
, as well as improved
support for HTTP/2.
squid:4 module updated to version 4.15.
The
Squid
proxy sserver, which is
available in the
squid:4
module stream
has been updated to version 4.15. This update includes
several bug and security fixes over the previous version.
quota command supports HPE XFS. This change enables users of HPE XFS to monitor and manage user and group disk usage by using the quota .
mutt updated to version 2.0.7.
The Mutt email client has been updated to version 2.0.7 in
this release. This version of
mutt
provides a number of enhancements and bug fixes, as well
as added supported for the following:
The
OAuth 2.0
authorization protocol
by using the
XOAUTH2
mechanism. Mutt
also supports the
OAUTHBEARER
authentication mechanism for the IMAP, POP, and SMTP
protocols.
Domain-literal email addresses such as
user@[IPv6:fcXX:…​]
New
$imap_deflate
variable that
supports
COMPRESS=DEFLATE
compression. Note that this variable is disabled by
default.
$ssl_starttls
variable no longer
controls aborting an unencrypted IMAP
PREAUTH
connection. Instead, use the
$ssl_force_tls
variable if you rely
on the
STARTTLS
process.
After updating to the new Mutt version, the
ssl_force_tls
configuration variable
still defaults to
no
, which is designed
prevent problems in existing environments. Note also in
the upstream version of Mutt,
ssl_force_tls
is enabled by default.
Oracle Linux 8.5 provides the following file systems and storage features, enhancements, and changes:
Btrfs removed from RHCK. The Btrfs file system is removed from RHCK in Oracle Linux 8. As such, you cannot create or mount Btrfs file systems when using this kernel. Also, note that any Btrfs user space packages that are provided are not supported with RHCK.
Support for the Btrfs file system is enabled in UEK R6; starting with Oracle Linux 8.3, you have the option to create a Btrfs root file system during an installation, as well as select Btrfs as the file system type when formatting devices. See Oracle ® Linux 8: Installing Oracle Linux for more information about this feature.
For more information about managing a Btrfs root file system, see Oracle ® Linux 8: Managing Local File Systems .
For the latest enhancements that have been made to Btrfs in UEK R6, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
OCFS2 removed from RHCK. The Oracle Cluster File System version 2 (OCFS2) file system is removed from RHCK in Oracle Linux 8. As such, you cannot create or mount OCFS2 file systems when using this kernel. Also, any OCFS2 user space packages that are provided are not supported with RHCK.
OCFS2 is fully supported with UEK R6 in Oracle Linux 8.5.
NVMe/TCP included as a Technology Preview. NVMe over Fabrics TCP host and the target drivers are included in RHCK as a technology preview in this release.
NVMe/TCP is already supported in Unbreakable Enterprise Kernel Release 6.
Support for LVM VDO volumes added to storage System Role.
The
storage
System Role has been
updated to include support for the LVM VDO volumes.
The following high availability and clustering features are included in Oracle Linux 8.5:
Local mode version for pcs cluster setup command. Support for the local mode version of the pcs cluster setup command has been added in this release.
fence_watchdog agent enables watchdog-only SBD configuration on subset
of cluster nodes.
This release includes a new
fence_watchdog
agent for configuring a
watchdog-only SBD setup. Because this capability did not
exist previously, it prevented the use of SBD in a cluster
where some nodes supported it, but others (most often
remote nodes) required some other form of fencing.
pcs command for updating SCSI fencing device. A new pcs command for updating a SCSI fencing device without causing the restart of all other resources has been added.
Reduced output display option added to pcs resoure safe-disable command. The reduced output display option has been added to the pcs resource safe-disable command
pcs command accepts Promoted and Unpromoted role names.
With this update, the
pcs
command
accepts the
Promoted
and
Unpromoted
role names.
pcs resoure status display commands added. This update introduces new pcs resource status display commands.
LVM volume group flag added. A new LVM volume group flag for controlling auto-activation has been added in this release.
Oracle Linux 8.5 introduces several version updates to infrastructure and command-line tools, including the following features:
linuxptp updated to version 3.1.
The
linuxptp
package has been updated
to version 3.1. Notable enhancements include the
ts2phc
program for synchronizing the
Precision Time Protocol (PTP) hardware clock to Pulse Per
Second (PPS) signal, and added support for the automotive
profile and client event monitoring.
chrony updated to version 4.1.
The
chrony
package has been updated to
version 4.1 in this release. Notable changes in this
version of
chrony
include the
following:
Added support for Network Time Security (NTS) authentication.
The Authenticated Network Time Protocol (NTP) sources
are trusted over non-authenticated NTP sources by
default in this update. To restore the original
behavior, add the
autselectmode
ignore
argument to the
chrony.conf
file.
Support is no longer available for authentication with
the following
RIPEMD
keys:
RMD128
,
RMD160
,
RMD256
, and
RMD320
.
Support for long, non-standard MACs in NTPv4 packets is
no longer available. If you are using the
chrony 2.x
,
non-MD5/SHA1
keys, you need to
configure
chrony
by using the
version 3
option.
PowerTop updated to version 2.14. PowerTop has been updated to version 2.14 in this release. This update provides support for the Alder Lake, Sapphire Rapids, and Rocket Lake platforms.
kdumpctl updated to provide an estimate utility.
The
kdumpctl
command features an
estimate
subcommand. Running the
kdumpctl estimate
command provides a
recommended
crashkernel
value that is
based on the current kdump setup and includes additional
details on memory usage.
Intel® QuickAssist Technology Library user space package updated to
version 21.05.
The Intel® QuickAssist Technology Library (QATlib) user
space package and the
qatlib
user space
libraries that allow access to Intel QuickAssist devices
and expose the Intel QuickAssist APIs, have been updated
to version 21.05.
Tuned moves unnecessary IRQs to housekeeping CPUs.
Network device drivers such as
i40e
,
iavf
, and
mlx5
evaluate online CPUs to determine the number of queues and
MSIX
vectors to be created. Previously,
for low-latency environments consisting of a large number
of isolated and very few housekeeping CPUs, any attempts
by Tuned to move these device IRQs to housekeeping CPUs
failed, due to the per-CPU vector limit.
With this enhancement, Tuned explicitly adjusts the numbers of network device channels, and MSIX vectors, as per the housekeeping CPUs. Therefore, all of the device IRQs on the housekeeping CPUs can be moved to achieve low latency.
Oracle Linux 8.5 introduces the following features, enhancements, and
changes for
NetworkManager
:
NetworkManager updated to version 1.32.10.
NetworkManager
has been update to
version 1.32.10. This version of
NetworkManager
includes numerous bug
fixes and enhancements over the previous version.
Capability for managing ethtool parameters added to NetworkManager.
In certain cases, you need to explicitly set non
auto-pause parameters on a specific network interface. In
this release,
NetworkManager
includes
capability for pausing the control flow parameters of
ethtool
in
nmstate
.
Previously,
NetworkManager
did not
include this capability.
To disable the auto negotiation of the pause parameter and enable RX/TX pause support explicitly, use the following command:
sudo nmcli connection modify enp1s0 ethtool.pause-autoneg no ethtool.pause-rx true ethtool.pause-tx true
Property for setting physical and virtual interface in promiscuous mode
added to Network Manager.
The
802-3-ethernet.accept-all-mac-addresses
property for setting physical and virtual interfaces in
the
accept all MAC addresses
mode has
been added to
NetworkManager
. With this
enhancement, the kernel can accept network packages that
are targeting current interfaces’ MAC address in the
accept all MAC addresses
mode.
For example, to enable
accept all MAC
addresses
mode on
eth1
, use the
following command:
sudo nmcli c add type ethernet ifname eth1 connection.id eth1 802-3-ethernet.accept-all-mac-addresses true
nftables can be used as firewall back end in NetworkManager.
This enhancement adds support for the
nftables
firewall framework to
NetworkManager. To switch the default back end from
iptables
to
nftables
, use the following commands:
Oracle Linux 8.5 introduces the following security features, enhancements, and changes:
crypto-policies updated to 20210617.
The
crypto-policies
packages have been
updated to the upstream version 20210617. This version of
crypto-policies
includes numerou bug
fixes and improvements over the previous version.
crypto-policies support for AES-192 ciphers in custom policies.
In Oracle Linux 8.5, the system-wide cryptographic policies include
support for the following values of the
cipher
option in the custom policies
and subpolicies:
AES-192-GCM
,
AES-192-CCM
,
AES-192-CTR
, and
AES-192-CBC
. With this change, you an
enable the
AES-192-GCM
and
AES-192-CBC
ciphers for the Libreswan
application, as well as the
AES-192-CTR
and
AES-192-CBC
ciphers for the
libssh
library and the OpenSSH suite
through
crypto-policies
.
CBC ciphers are disabled in the FUTURE cryptographic policy.
IThe
crypto-policies
packages have been
updated to disable ciphers that use cipher block chaining
(CBC) mode in the
FUTURE
policy. The
settings in the
FUTURE
policy should be
able to withstand near-term future attacks; this change
reflects the current progress. Consequently, system
components that respect
crypto-policies
cannot use CBC mode when the
FUTURE
policy is active.
gnutls updated to version 3.6.16.
The
gnutls
packages have been updated
to version 3.6.16. The following notable enhancements and
bug fixes are included:
The
gnutls_x509_crt_export2()
function returns
0
value instead of
the size of the internal base64 blob in the event of
success. This change aligns with the documentation in
the
gnutls_x509_crt_export2(3
) manual
page.
Certificate verification failures due to the Online
Certificate Status Protocol (OCSP) must-stapling not
being followed are correctly marked with the
GNUTLS_CERT_INVALID
flag.
Version negotiation for TLS 1.2 has been fixed and TLS
1.2 can now be correctly disabled. Previously, if TLS
1.2 was explicitly disabled by using the
-VERS-TLS1.2
option, the server
continued to offer TLS 1.2, even if TLS 1.3 was enabled
Kernel AVC tracepoint added.
This enhancement introduces a new
avc:selinux_audited
kernel tracepoint
that triggers when an SELinux denial is to be audited.
This tracepoint provides for a more convenient and
low-level debugging of SELinux denials. Note that the new
tracepoint is also available for tools like
perf
.
libreswan updated to version 4.4.
The
libreswan
packages have been
updated to version 4.4. This version introduces important
enhancements and bug fixes, including several IKEv2 and
pluto
IKE daemon enhancements, most
notably the following:
IKEv2 protocol fixes and enhancements:
Fixes for TCP encapsulation in
Transport
Mode
and host-to-host connections.
--globalstatus
option added to
the
ipsec whack
command for
displaying redirect statistics.
The
vhost
and
vnet
values in the
ipsec.conf
configuration file are
no longer allowed for IKEv2 connections.
pluto
IKE daemon fixes and
enhancements:
Fixes for host-to-host connections that use non-standard IKE ports.
The
interface-ip=
option is
disabled because Libreswan does not provide the
corresponding functionality yet.
The
PLUTO_PEER_CLIENT
variable in
the
ipsec__updown
script for NAT
in
Transport Mode
is fixed.
Set the
PLUTO_CONNECTION_TYPE
variable to
transport
or
tunnel
.
Non-templated wildcard ID connections can now match.
SCAP Security Guide updated to version 0.1.57.
In Oracle Linux 8.5, the
scap-security-guide
packages have been updated to version 0.1.57. This version
of the SCAP Security Guide provides several bug fixes and
improvements over the previous version, including the
following:
Performance remediations for Audit improvements. Performance of remediations for Audit has been improved by grouping similar system calls. Previously, Audit remediations generated an individual rule for each system call tha was audited by the profile. This behavior led to large numbers of audit rules, which in turn, degraded performance. With this change, remediations for Audit can group rules together for similar system calls with identical fields into a single rule, which improves performance.
Profile for ANSSI-BP-028 High level added. The ANSSI High level profile, which is based on the ANSSI BP-028 recommendations from the French National Security Agency (ANSSI), is added in this release. This additional completes the availability of profiles for all ANSSI-BP-028 v1.2 hardening levels in the SCAP Security Guide. The new profile enables you to harden the system to the recommendations from ANSSI for GNU/Linux Systems at the High hardening level. Thus, you can configure and automate compliance of your Oracle Linux 8 systems to the strictest hardening level by using ANSSI Ansible Playbooks and ANSSI SCAP profiles.
OpenSCAP updated to version 1.3.5. The OpenSCAP packages have been updated to version 1.3.5. This version of OpenSCAP includes numerous fixes and other enhancements over the previous version.
Support for validating digitally signed SCAP source data streams. To conform with the Security Content Automation Protocol (SCAP) 1.3 specifications, OpenSCAP has been updated in Oracle Linux 8.5 to enable the validation of digital signatures for digitally signed SCAP source data streams. OpenSCAP also now validates the digital signature when evaluating a digitally signed SCAP source data stream. The signature validation is performed automatically while loading the file. Data streams with invalid signatures are rejected, and OpenSCAP does not evaluate their content. OpenSCAP uses the XML Security Library in conjunction with the OpenSSL cryptography library to validate the digital signature.
To skip the signature validation, add the
--skip-signature-validation
option to the
oscap xccdf eval
command.
OpenSCAP does not address the trustworthiness of
certificates or public keys that are part of the
KeyInfo
signature element, which are
used to verify the signature. As such, it is important
that you verify such keys to prevent the evaluation of
data streams that may have been modified and signed by bad
actors.
OpenSSL for encrypting Rsyslog TCP and RELP traffic. In this release, the OpenSSL network stream driver has been added to Rsyslog. This driver implements TLS-protected transport by using the OpenSSL library. This change provides added functionality, compared to the stream driver that uses the GnuTLS library. In addition, you can use either OpenSSL or GnuTLS as an Rsyslog network stream driver.
Rsyslog updated to version 8.2102.0-5. Rsyslog has been updated to version 8.2102.0-5. The version of Rsyslog provides numerous improvements over the previous version, including the following:
Added the
exists()
script function
for checking whether a variable exists or not, for
example
$!path!var
Ability to set OpenSSL configuration commands with the
new
tls.tlscfgcmd
configuration
parameter for the
omrelp
and
imrelp
modules.
Added two new rate-limit options to the
omfwd
module for rate-limiting
syslog
messages that are sent to the
remote server:
ratelimit.interval
: This option
specifies the rate-limiting interval in seconds.
ratelimit.burst
: This option
specifies the rate-limiting burst in the number of
messages.
The
immark
module has been rewritten
to include various improvements.
Added the
max sessions
configuration
parameter to the
imptcp
module. The
maximum is measured per-instance, not globally, across
all instances.
Added the
rsyslog-openssl
subpackage.
This network stream driver implements TLS-protected
transport by using the OpenSSL library.
Added per-minute rate limiting to the
imfile
module, with the
MaxBytesPerMinute
and
MaxLinesPerMinute
options. Note that
these options accept integer values and limit the number
of bytes or lines that are allowed to be sent in a
minute.
Capability added to the
imtcp
and
omfwd
module to configure a maximum
depth for the certificate chain verification by using
the
streamdriver.TlsVerifyDepth
option.
socat updated to version 1.7.4.
The
socat
packages have been updated to
version 1.7.4. This version of
socat
includes numerous bug fixes and improvements over version
1.7.3.
firewalld updated to 0.9.3.
The
firewalld
package has been updated
to version 0.9.3. This version of
firewalld
includes numerous upstream
bug fixes and improvements over version 0.8.2.
Notably, this update includes the introduction of the policy object feature that allows forward and output filtering for virtual machines, containers and zones. See https://firewalld.org/2020/09/policy-objects-introduction and https://firewalld.org/2020/09/policy-objects-filtering-container-and-vm-traffic .
The
sos
package for the System of Systems
(SoS) supportability feature has been updated to version 4.1.
Oracle Linux maintains user space compatibility with Red Hat Enterprise Linux (RHEL), which is independent of the kernel version that underlies the operating system. Existing applications in user space continue to run unmodified on Unbreakable Enterprise Kernel Release 6 (UEK R6); no re-certifications are required for RHEL certified applications.
To minimize impact on interoperability during releases, the Oracle Linux team works closely with third-party vendors regarding hardware and software that have dependencies on kernel modules. The kernel ABI for UEK R6 will remain unchanged in all subsequent updates to the initial release. UEK R6 contains changes to the kernel ABI, relative to UEK R5, that require recompilation of third-party kernel modules on the system. Before installing UEK R6, verify its support status with your application vendor.
Table of Contents
This chapter describes known issues in Oracle Linux 8.4, for both the x86_64 and 64-bit Arm (aarch64) platforms. Issues that apply to a specific platform only may be noted as such.
The following are known installation and upgrade issues for Oracle Linux 8.5.
The following
libstoragemgmt
packages are
not included in Oracle Linux 8.5:
libstoragemgmt-nfs-plugin-clibs-1.8.7-1.el8.x86_64.rpm
libstoragemgmt-nfs-plugin-1.8.7-1.el8.noarch.rpm
Consequently, if your Oracle Linux 8.4 system includes these packages, upgrading the system to Oracle Linux 8.5 fails.
To work around this issue, remove these packages from the system prior to upgrading to Oracle Linux 8.5.
(Bug ID 33545502)
When upgrading from Oracle Linux 8.4 to Oracle Linux 8.5, with the appropriate Oracle Linux 8 repositories enabled, the following warning is emitted:
Warning: The unit file, source configuration file or drop-ins of pmlogger.service changed on disk. Run 'systemctl daemon-reload' to reload units.
This warning can be safely ignored, as the upgrade completes successfully.
(Bug ID 32852356)
When upgrading from Oracle Linux 8.4 to Oracle Linux 8.5, with the appropriate Oracle Linux 8 repositories enabled, the dnf upgrade command displays messages similar to the following during the upgrade or package installation process:
Running scriptlet: systemd-239-44.0.1.el8.x86_64 4550/4550 [/usr/lib/tmpfiles.d/dnssec-trigger.conf:1] Line references path below legacy directory /var/run/, updating /var/run/dnssec-trigger → /run/dnssec-trigger; please update the tmpfiles.d/ drop-in file accordingly. [/usr/lib/tmpfiles.d/krb5-krb5kdc.conf:1] Line references path below legacy directory /var/run/, updating /var/run/krb5kdc → /run/krb5kdc; please update the tmpfiles.d/ drop-in file accordingly. [/usr/lib/tmpfiles.d/nss-pam-ldapd.conf:2] Line references path below legacy directory /var/run/, updating /var/run/nslcd → /run/nslcd; please update the tmpfiles.d/ drop-in file accordingly. [/usr/lib/tmpfiles.d/pesign.conf:1] Line references path below legacy directory /var/run/, updating /var/run/pesign → /run/pesign; please update the tmpfiles.d/ drop-in file accordingly. [/usr/lib/tmpfiles.d/portreserve.conf:1] Line references path below legacy directory /var/run/, updating /var/run/portreserve → /run/portreserve; please update the tmpfiles.d/ drop-in file accordingly. . . .
These messages can be safely ignored, as the upgrade or package installation completes successfully.
Or, as an alternative workaround, you can update the
configuration per the instructions in the message and change
the legacy
var/run
<...>
directory path to
/run
<...>
.
(Bug ID 32852433)
Attempting to perform a fresh installation of Oracle Linux 8.5 on an
Oracle 6.4 TB NVMe SSD device will fail. This issue occurs
because the
mkfs.xfs
command
cannot mount the file system. This failure is related to a
problem with the
xfsprogs
package version that is in RHCK, with the root cause of the
issue being an NVMe SSD firmware bug.
To work around the issue, do not use the Oracle 6.4 TB NVMe SSD as a boot disk.
An alternative option is to install Oracle Linux 8.2 and then upgrade to Oracle Linux 8.5.
(Bug ID 32823840)
During a Preboot Execution Environment (PXE) installation of
Oracle Linux 8.5, the installer automatically enables the Ethernet over
USB network interface with the
bootproto=dhcp
and
ONBOOT=yes
parameters. This issue causes
the
NetworkManager
service to fail to
start.
To prevent this issue from occurring, or to resolve the issue if you have already encountered it, use one of the following workarounds:
Prior to the installation, disable the
ONBOOT
parameter for the Ethernet over
USB network interface in the kickstart file, as follows:
network --bootproto=dhcp --device=enp0s20f0u8u3c2 --onboot=off --ipv6=auto
During the installation, on the Network & Host Name screen, do not select the Connect automatically with priority check box to connect automatically on every reboot for the Ethernet over USB network interface.
If you have already encountered this issue, you can
resolve the issue after the installation by changing the
network configuration setting for the Ethernet over USB
network interface to
ONBOOT=no
, and
then rebooting the system.
(Bug ID 31888490)
If an alternate language is selected during an interactive installation using the text-based installer, you cannot progress through all of the steps in the installation wizard. The installation is blocked with [!] bullets for Software Selection and Installation Destination , irrespective of what is selected for these two options.
Note that this issue does not occur when performing an installation when using the default language selection of English or if you use the graphical installation program.
(Bug IDs 30535416, 29648703)
There is a minor upstream usability error that applies to the
graphical installation program when configuring Kdump
settings. In the situation where you attempt to configure a
manual
kdump
memory reservation, and you
then set the memory reservation value to an unacceptable
value, the installer allows you to click
Done
and then return to the
Installation Summary
screen without
producing a warning or error message.
When you select an unacceptable value, the installer resets
the value to the last-known acceptable value that was entered
or the installer sets the default minimum value of 512 MB.
Note that this information is not displayed in the
Installation Summary
screen. Because an
incorrect value cannot be stored for this parameter, the
installation succeeds, even if incorrect information is
entered.
This issue does not occur with the text-based installer, which correctly returns an error if you enter an unacceptable value, preventing you from continuing until you enter an acceptable value.
(Bug IDs 31133351, 31182708)
A minor usability error applies to the graphical installation prorgram when configuring Kdump settings. If you manually change the default memory size that is reserved for Kdump, the new setting is not displayed when the screen is refreshed. Instead, only the values for the total system memory and usable system memory are displayed. Consequently, the limits for the parameter "Memory to be reserved (Mb)" become unknown for future Kdump configuration.
The default settings for Kdump memory reservation of
auto
is adequate as the kernel will
determine what size to use when it boots
(Bug IDs 31133287 and 31182699)
A scriplet-related error similar to the following may be encountered when upgrading from Oracle Linux 8.4 to Oracle Linux 8.5 by using the yum update command:
Running scriptlet: tuned-2.13.0-6.0.2.el8.noarch
1089/1089
Running scriptlet: microcode_ctl-4:20191115-4.el8.x86_64
1089/1089
realpath: weak-updates/kmod-kvdo/vdo/kvdo.ko: No such file or directory
realpath: weak-updates/kmod-kvdo/uds/uds.ko: No such file or directory
dracut: installkernel failed in module kernel-modules-extra
warning: %posttrans(microcode_ctl-4:20191115-4.el8.x86_64) scriptlet failed,
exit status 1
Error in POSTTRANS scriptlet in rpm package microcode_ctl
Running scriptlet: libgcc-8.3.1-4.5.0.7.el8.x86_64
1089/1089
Running scriptlet: glibc-common-2.28-101.0.1.el8.x86_64
1089/1089
Running scriptlet: info-6.5-6.el8.x86_64
1089/1089
The error is encountered if you perform a Server with GUI
installation and then boot the server with RHCK, as this
installation method installs the kernel-dependent,
kmod-kvdo
package/module, which is a
different version in Oracle Linux 8.4 than it is in Oracle Linux 8.5. Note that
the error does not occur if you install the Minimal Install
base environment or if you boot the server with UEK R6.
The error can be safely ignored and is of no consequence, as
the
kmod-kvdo
package is successfully
installed during the upgrade process.
(Bug ID 31292199)
Attempting to register with the Unbreakable Linux Network
(ULN) in Oracle Linux 8.5 by running the
rhnreg_ks
command may fail if the
python3-rhn-virtualization-hosts
package is
installed on the system. This issue has been observed when the
libvirtd
service is not running.
To work around this issue, ensure that the
libvirtd
packages are installed on your
system and that the service is enabled and running prior to
registering with ULN by using the
rhnreg_ks
command.
(Bug ID 30366521)
When upgrading a system to Oracle Linux 8.5, a dependency issue might
be encountered if the
beignet
package
exists on the system to be installed, as this package requires
an earlier version of the
clang-libs
package.
Because the
beignet
package is currently
not available for Oracle Linux 8.4 or Oracle Linux 8.5, this particular issue
would only be encountered when upgrading from an Oracle Linux 8 release
earlier than Oracle Linux 8.3.
The workaround for this issue is to remove the
beignet
package from the system prior to
upgrading to Oracle Linux 8.5.
(Bug ID 31213935)
On new installations of Oracle Linux 8, the ULN registration wizard that presents the options to register with ULN and to use Oracle Ksplice is not displayed on first boot. This behavior differs from previous Oracle Linux releases, where you were presented with these options on the first boot after completing the installation.
As an alternative, you can register with ULN after the installation completes. For instructions, visit https://linux.oracle.com/ .
(Bug ID 29933974)
To successfully install Oracle Linux 8.5 on an Oracle VM VirtualBox
guest, where the graphical installation program is used and
the default installation of the
Server with
GUI
environment is set, the Oracle VM VirtualBox
guest is required to use the VMSVGA graphics controller and
must be configured with at least 64MB of memory.
Failure to set the graphics controller correctly can result in an installation where the graphical display is unable to start correctly.
The VMSVGA graphics controller is the default controller when you create a new guest by using Oracle VM VirtualBox 6.0, or later, for Linux guest operating systems. This issue is more likely to appear if you attempt to install over an existing guest that was created on an earlier Oracle VM VirtualBox release. Oracle recommends that you only attempt to install Oracle Linux 8 on a newly created VM in Oracle VM VirtualBox 6.0, or later.
(Bug ID 30004543)
Spurious messages that are similar to the following might be emitted during a system update from Oracle Linux 8.4 to Oracle Linux 8.5:
/sbin/ldconfig:/etc/ld.so.conf.d/kernel-5.4.17-2102.201.3.el8uek.x86_64.conf:6: hwcap directive ignored
These messages are the result of a change in kernel configuration for UEK and can be safely ignored.
Note that this issue also occurs on subsequent runs of the ldconfig command or for any service or process that triggers the ldconfig command. The messages can also be safely ignored in these cases.
(Bug ID 32816428)
Warnings are emitted when updating the
gssproxy-0.8.0-16
and
nfs-utils-1:2.3.3-41
packages to
gssproxy-0.8.0-19
and
nfs-utils-1:2.3.3-46
. The warnings are
triggered by the
nfs-utils
package update
and appear as follows and are an indication that you must
reload Systemd daemons:
Warning: The unit file, source configuration file or drop-ins of gssproxy.service changed on disk. Run 'systemctl daemon-reload' to reload units.
You can ignore these warning messages, as the services are restarted later in the transaction.
(Bug ID 32831687)
If you remove the
container-selinux
package
from the system after installing Oracle Linux 8.5, the
selinux-policy-targeted
package might also be
removed.
When this problem occurs, you may also see an error message about being unable to load SELinux policy displayed.
To prevent the
selinux-policy-targeted
package from being removed from the system when removing the
container-selinux package
package, you can
specify the following syntax with the
dnf
remove
command:
sudo dnf remove container-selinux --setopt=exclude=selinux-policy-targeted
(Bug ID 32860334)
The
glusterfs-*.i686
packages are not
included in either the Oracle Linux 8.4 or Oracle Linux 8.5 release. However, if
you installed the
glusterfs-*.i686
and
glusterfs-*.x86_64
packages on the system to
be upgraded in an earlier release, running the
dnf
update glusterfs*
command fails to upgrade the
packages to Oracle Linux 8.5.
The workaround for this issue is to first remove the
glusterfs-*.i686
packages from the system to
be upgraded, and then run the
dnf update
glusterfs*
command.
(Bug ID 30279840)
Installing the
libss
package might fail to
update if the
libss-devel
package is
installed on the system.
The workaround for this issue is to first remove the
libss-devel
package from the system and then
install the corresponding version of this package from the
Oracle Linux 8 Distro Builder
developer
repository. Note that because the
ol8_distro_builder
repository is an
unsupported developer repository, it is recommended that you
only enable the repository for this particular installation
action, rather than enabling it globally. For example, you can
run the following command:
sudo dnf --enablerepo=ol8_distro_builder install libss-devel
(Bug ID 32005190)
Some options for configuring disk cache characteristics in the web console are currently not available when you are creating a new VM or before the installation starts. For disks that are already added to a VM or when adding a new disk to an already running system, these configuration options are available in the web console.
As an alternative solution, you can use the virt-manager CLI or a similar CLI to configure disk cache characteristics for a newly added disk before the installation begins, as well for disks that already exist in the VM.
Per Oracle recommendation, you should use Oracle Linux Virtualization Manager for more complex virtualization requirements. For more information, see https://docs.oracle.com/en/virtualization/oracle-linux-virtualization-manager/ .
(Bug ID 30301271)
When booting an Intel-based Dell EMC PowerEdge Server, error messages similar to the following might be displayed if the Dell Active Power Controller (DAPC) setting is enabled in the BIOS:
kernel: ACPI Error: No handler for Region [SYSI] (0000000061df8ef3) [IPMI] (20190816/evregion-132) kernel: ACPI Error: Region IPMI (ID=7) has no handler (20190816/exfldio-265) kernel: ACPI Error: Aborting method \_SB.PMI0._GHL due to previous error (AE_NOT_EXIST) (20190816/psparse-531) kernel: ACPI Error: Aborting method \_SB.PMI0._PMC due to previous error (AE_NOT_EXIST) (20190816/psparse-531) kernel: ACPI Error: AE_NOT_EXIST, Evaluating _PMC (20190816/power_meter-743)
Note that this issue is encountered on both RHCK and UEK kernels.
The workaround for this issue is to disable the
apci_power_meter
kernel module as follows:
echo "blacklist acpi_power_meter" >> /etc/modprobe.d/hwmon.conf
After disabling the
apci_power_meter
kernel
module, reboot the system for the change to take effect.
For environments that do not require the DAPC feature, as an alternative workaround, you can disable the DAPC BIOS setting.
(Bug ID 32105233)
The Oracle Linux 8.5 installer does not recognize some Serial Attached SCSI (SAS) controllers that are found in older Oracle Sun server models. If you attempt to install Oracle Linux 8 on these server models, the installer does not recognize the local disk and the installation fails. Examples of these server models include, but are not limited to, the following: Oracle Sun Fire X4170 M2 Server, Oracle Sun Fire X4170 M3 Server, Oracle Sun OVCA X3-2 Server, and the Oracle Sun X4-2 Server.
The following SAS controllers are removed from the
mpt2sas
driver in RHCK:
SAS2004, PCI ID 0x1000:0x0070
SAS2008, PCI ID 0x1000:0x0072
SAS2108_1, PCI ID 0x1000:0x0074
SAS2108_2, PCI ID 0x1000:0x0076
SAS2108_3, PCI ID 0x1000:0x0077
SAS2116_1, PCI ID 0x1000:0x0064
SAS2116_2, PCI ID 0x1000:0x0065
SSS6200, PCI ID 0x1000:0x007E
The following SAS controllers are removed from the
megaraid_sas
driver in RHCK:
Dell PERC5, PCI ID 0x1028:0x15
SAS1078R, PCI ID 0x1000:0x60
SAS1078DE, PCI ID 0x1000:0x7C
SAS1064R, PCI ID 0x1000:0x411
VERDE_ZCR, PCI ID 0x1000:0x413
SAS1078GEN2, PCI ID 0x1000:0x78
SAS0079GEN2, PCI ID 0x1000:0x79
SAS0073SKINNY, PCI ID 0x1000:0x73
SAS0071SKINNY, PCI ID 0x1000:0x71
The workaround for this issue to use the Unbreakable Enterprise Kernel Release 6 (UEK R6) boot ISO, and then run UEK R6 with Oracle Linux 8, as these controllers are supported in the Unbreakable Enterprise Kernel release.
(Bug ID 29120478)
The following are known file systems issues in Oracle Linux 8.5.
The Btrfs file system is removed from RHCK in Oracle Linux 8, which means you cannot create or mount this file system when using this kernel. Also, any Btrfs user space packages that are provided are not supported with RHCK.
Support for the Btrfs file system is enabled in UEK R6. Starting with Oracle Linux 8.3, during an installation, you have the option to create a Btrfs root file system, as well as select Btrfs as the file system type when formatting devices.
For further details about these changes, see the following documentation:
For information about creating a Btrfs root file system during an installation, see Oracle ® Linux 8: Installing Oracle Linux .
For information about managing the Btrfs file system, see Oracle ® Linux 8: Managing Local File Systems .
For the latest information about other enhancements that have been made to Btrfs in UEK R6, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
The OCFS2 file system is removed from RHCK in Oracle Linux 8, which means you cannot create or mount this file system when using this kernel. Also, OCFS2 user space packages that are provided are not supported with RHCK.
Note that support for OCFS2 file systems is enabled in UEK R6. For the latest information and other enhancements that have been made to OCFS2 in UEK R6, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
If a system that is using the
ext4
file
system is repeatedly or frequently shut down, the file system
might become corrupted. Note that this issue is considered to
be a corner-case issue because it is difficult to replicate
it. The issue exists in the upstream code and proposed patches
are currently under review.
(Bug ID 27547113)
The following are known kernel issues in Oracle Linux 8.5.
Creating KVM guest snapshots when using one kernel and then attempting to revert the snapshot to use another kernel might fail with errors when you run various virsh commands, for example:
sudo virsh start myGuest --console
error: Failed to start domain myGuest error: operation failed: guest CPU doesn't match specification: missing features: md-clear
Running the following command produces similar errors:
sudo virsh snapshot-revert myGuest mySnapshot1 --force
error: operation failed: guest CPU doesn't match specification: missing features: ibpb,amd-ssbd
For example, if you create a KVM guest snapshot while running RHCK, and you then attempt to revert that guest snapshot by using UEK R6, you could encounter this issue. Note that the same issue applies irrespective of which default kernel you are running.
This issue only occurs in situations where you are attempting to interchange an RHCK kernel for a UEK kernel or a UEK kernel for an RHCK kernel. The issue is not encountered if you are interchanging kernel versions from the same vendor.
To avoid encountering this issue, make sure to use guest snapshots that use the same kernel on which they were initially created.
(Bug ID 30561489)
The following errors might be displayed repeatedly when KVM guests are booting on 64-bit AMD hosts:
[ 12.474069] amd64_edac_mod: Unknown symbol amd_register_ecc_decoder (err 0) [ 12.474083] amd64_edac_mod: Unknown symbol amd_report_gart_errors (err 0) [ 12.852250] amd64_edac_mod: Unknown symbol amd_unregister_ecc_decoder (err 0) [ 12.852297] amd64_edac_mod: Unknown symbol amd_register_ecc_decoder (err 0) . . .
These errors occur because the module code for the kernel
erroneously returns
-EEXIST
for modules
that failed to load and are in the process of being removed
from the module list. The
amd64_edac_mod
module will not be loaded in a VM. These errors can be
ignored, as they do not impact functionality in any way.
This issue occurs on Oracle Linux 8 hosts that are running RHCK only and is not encountered on UEK R6 hosts.
(Bug ID 29853602)
A bug in the Oracle Linux 8 code causes Retropline support to not be
displayed in the output of the
modinfo -F
retpoline
command, even though the
CONFIG_RETPOLINE
flag is set to
Y
, for example:
/usr/lib/modules/4.18.0-80.el8.x86_64/kernel/sound/usb/usx2y/snd-usb-us122l.ko.xz
The
CONFIG_RETPOLINE=Y
flag is still
required to add and display Retpoline support. If the
parameter is enabled, the kernel builds with a retpoline
capable compiler.
For example, you would confirm whether the
CONFIG_RETPOLINE
flag is enabled by
searching the configuration file with the
cat
command:
cat /boot/config-5.4.17-2011.7.4.el8uek.x86_64 | grep RETPOLINE.
The output should be as follows:
CONFIG_RETPOLINE=y
(Bug ID 29894295)
Kdump might fail on some AMD hardware that is running Oracle Linux 8.5 with the default RHCK kernel. Impacted hardware includes the AMD EPYC CPU (codename Naples and Rome) servers.
To work around this issue, modify the
/etc/sysconfig/kdump
configuration file and
remove the
iommu=off
command-line option
from the
KDUMP_COMMANDLINE_APPEND
variable.
Then, restart the
kdump
service for the
changes to take effect.
Note that the issue does not occur on this particular hardware if you are running UEK R6 with Oracle Linux 8.5.
(Bug ID 31274238)
The new LVM
dm-writecache
caching method
has certain limitations that do not exist with the
dm-cache
method, including the following:
Cannot attach or detach
dm-writecache
when a logical volume is active.
Cannot take a snapshot of a logical volume when the
logical volume is using
dm-writecache
.
Must use a
dm-writecache
block size
that matches the existing file system block size when
attaching
dm-writecache
to an inactive
logical volume.
Cannot resize a logical volume when
dm-writecache
is attached to the
volume.
Cannot use
pvmove
commands on devices
that are used with
dm-writecache
.
Cannot use logical volumes with
dm-writecache
when using thin pools or
the virtual data optimizer (VDO).
For more information about the
dm-writecache
caching method, see the the
Section 4.10, “File Systems and Storage”
features section of
these release notes. See also the
lvmcache(7)
manual page.
Running the
tracepath6
command fails to parse
the destination IPv6 address correctly. Consequently, the tool
traces a route to the wrong host.
To work around this issue, you can use a tool with similar
capabilities to the
tracepath6
command.
(Bug ID 29540588)
If you run the nohup command on an Oracle Linux 8.5 system, and then attempt to remotely connect to that system by using the ssh command, the ssh command hangs, for example:
/usr/bin/nohup ./myscript > nohup.out &
To work around for this issue, modify the nohup command as follows:
/usr/bin/nohup ./myscript > nohup.out 2>&1 &
(Bug ID 30287091)
An error indicating that the mcelog service does not support the processor can appear in the system log on systems with AMD processors, such as some Oracle Server hardware. The message might be displayed as follows:
mcelog: ERROR: AMD Processor family 23: mcelog does not support this processor. Please use the edac_mce_amd module instead.
The
mcelog
daemon is a service that is used
on x86_64 platforms to log and handle hardware error messaging,
but it is not required on AMD systems, where the
edac_mce_amd
kernel module handles machine
exception logging. This error should be downgraded to a warning.
(Bug ID 29501190)
By default, the Oracle Linux 8 graphical user interface (GUI) console mode treats the hardware power button as the equivalent of the ACPI "Sleep" button, which puts the system into low-power sleep mode. This behavior is specific to the GNOME desktop environment.
In previous Oracle Linux releases, the hardware power button initiated a system shutdown. To ensure that Oracle Linux 8 behaves the same way, do the following:
Create a file named
/etc/dconf/db/local.d/01-shutdown-button-action
with following content:
# cat /etc/dconf/db/local.d/01-power [org/gnome/settings-daemon/plugins/power] power-button-action='interactive' #
Create a file named
/etc/dconf/db/local.d/locks/01-power
with
the following content:
# cat /etc/dconf/db/local.d/locks/01-power /org/gnome/settings-daemon/plugins/power/power-button-action #
Run the following command:
sudo dconf update
Log out of the desktop environment and then log back in for the new settings to take effect.
(Bug ID 25597898)
For information about the Podman container management tool, including any known issues that you may encounter in this release, see the Oracle ® Linux: Podman User's Guide .
Table of Contents
Note the following important information about how the Oracle Linux 8.5 release is made available for installation.
You can download a full Oracle Linux 8.5 installation media image from the Oracle Software Delivery Cloud at https://edelivery.oracle.com/ . Note that a smaller boot ISO is also available to perform a network-based installation.
For convenience, the three most recent Oracle Linux installation media images, for each release, are also available from the Oracle Linux yum server at https://yum.oracle.com/oracle-linux-isos.html .
You can also install a full Oracle Linux 8.5 media image for the x86_64 platform on a compute instance on Oracle Cloud Infrastructure. To access the image, you must first obtain an Oracle Cloud Infrastructure account. For more information, visit https://www.oracle.com/index.html .
The latest Oracle Linux 8.5 packages are also available on ULN and the Oracle Linux yum server.
To obtain the latest packages from ULN and install additional software for Oracle Linux 8.5, subscribe to the different channels on ULN by logging in to https://linux.oracle.com and then select the View Channels option.
To install additional software for Oracle Linux 8.5 from the Oracle Linux yum server, enable the required repositories within your yum configuration. To view the Oracle Linux yum repositories that are available for Oracle Linux 8.5, visit https://yum.oracle.com/ .
The Oracle Linux yum server does not provide equivalent repositories for some of the channels that are available on ULN. These channels provide non-open source packages.
Oracle also makes the Oracle Linux 8.5 (aarch64) release available at https://www.oracle.com/linux/downloads/linux-arm-downloads.html . See Chapter 7, Release-Specific Information for Oracle Linux 8.5 (aarch64) for more information.
You can upgrade an Oracle Linux 7 system to the latest Oracle Linux 8 release by using the leapp utility. For step-by-step instructions, as well as information about any known issues that you might encounter when upgrading your system, see Oracle ® Linux 8: Performing System Upgrades With Leapp .
Oracle Linux 8.5 (aarch64) ships with UEK R6 as the default kernel.
Oracle also provides Remote Direct Memory Access (RDMA) packages for use with UEK R6. The RDMA feature enables direct memory access between two systems that are connected by a network. RDMA facilitates high-throughput and low-latency networking in clusters.
To use RDMA features, you must first install the Oracle-supported RDMA packages. To do so, ensure that your system is subscribed to the appropriate channels on ULN or that you have enabled the appropriate repositories on the Oracle Linux yum server.
If you are subscribed to ULN, enable the
ol8_x86_64_UEKR6
,
ol8_x86_64_baseos_latest
,
ol8_x86_64_appstream
, and
ol8_x86_64_UEKR6_RDMA
channels. Note that if
your system is newly registered on ULN, it is already subscribed
to the
ol8_x86_64_UEKR6
,
ol8_x86_64_baseos_latest
, and
ol8_x86_64_appstream
channels by default.
However, you must explicitly subscribe to the
ol8_x86_64_UEKR6_RDMA
channel prior to
installing RDMA packages.
If you are using the Oracle Linux yum server, enable the
ol8_UEKR6
,
ol8_baseos_latest
,
ol8_appstream
, and
ol8_UEKR6_RDMA
repositories. Note that if
your system already uses the Oracle Linux yum server, the
ol8_UEKR6
,
ol8_baseos_latest
, and
ol8_appstream
repositories are enabled by
default. However, you must explicitly enable the
ol8_UEKR6_RDMA
repository prior to installing
RDMA packages.
For additional information about RDMA, including any known issues, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
Table of Contents
The following information applies specifically to the Oracle Linux 8.5 (aarch64) release.
For general information and instructions, as well as any known issues that may apply to the 64-bit Arm (aarch64) platform, refer to the previous chapters of these release notes.
To determine whether your hardware is supported on the current Oracle Linux 8 release, check the Hardware Certification List at https://linux.oracle.com/hardware-certifications . Note that hardware is added to the list as it becomes available and is validated on Oracle Linux.
The Oracle Linux 8.5 (aarch64) release ships with Unbreakable Enterprise Kernel Release 6 (UEK R6). This kernel is currently the only kernel that is supported on the 64-bit Arm (aarch64) platform.
The default UEK kernel version that is shipped with Oracle Linux 8.5 (aarch64) is:
kernel-uek-5.4.17-2136.300.7.el8uek
Unbreakable Enterprise Kernel Release 6 (UEK R6)
The Oracle Linux release is tested as a bundle, as shipped on the installation media image. When installed from the installation media image, the minimum kernel version that is supported is the kernel that is included in the image. Note that downgrading kernel packages is not supported, unless specifically recommended by Oracle Support.
The following new features are specific to the 64-bit Arm (aarch64) platform. See Chapter 4, New Features and Changes for all of the new features in Oracle Linux 8.5, most of which are also supported on the 64-bit Arm (aarch64) platform.
The Virtual Network Computing (VNC) remote console is available as a technology preview on the 64-bit Arm (aarch64) platform only . The remaining components of the graphics stack are unverified on this platform.
Currently, there are no known issues that apply to the 64-bit Arm (aarch64) platform only . For known issues that apply to the x86_64 platform, which may also apply the 64-bit Arm (aarch64) platform, see Chapter 5, Known Issues .
For known issues that you might encounter when running UEK R6 on the 64-bit Arm (aarch64) platform, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
The following information applies to installing Oracle Linux 8.5 (aarch64). For general installation and availability information, and information that applies specifically to the x86_64 platform, see Chapter 6, Installation and Availability .
Oracle Linux 8.5 (aarch64) is made available as an ISO image
(
OracleLinux-R8-U5-Server-aarch64-dvd.iso
),
which can be used for a standard installation on generic 64-bit
Armv8 hardware. This ISO has been tested on Arm hardware and is
engineered for use with the Ampere® Altra® processor and
the Marvell ThunderX2® processor. For the latest hardware
that is validated for Oracle Linux 8.5 (aarch64), refer to the Hardware
Certification List at
https://linux.oracle.com/hardware-certifications
.
Note that hardware is listed as it becomes available.
You can load the ISO image from local media, such as DVD-ROM or
USB flash drive; or, you can perform a network-based kickstart
installation by using PXE. If you perform a network-based
installation and you want to access the graphical interface for
the installer, you must change the kernel boot parameters to
enable VNC. For example, to enable VNC, set the
inst.vnc
boot option, and then set the
network address to
ip=eth0:dhcp
at boot.
The Oracle Linux 8.5 (aarch64) ISO image is also available from the Oracle Software Delivery Cloud at https://edelivery.oracle.com/ .
The latest Oracle Linux 8.5 (aarch64) packages are available from ULN. To explore the channels that are available on ULN, log in to https://linux.oracle.com/ and then view the Channels option.
You can also obtain the latest Oracle Linux 8 (aarch64) packages from the Oracle Linux yum server at https://yum.oracle.com/ . Note that the Oracle Linux yum server does not provide equivalent repositories for some of the channels that are available on ULN. These channels provide non-open source packages.
The default boot kernel for fresh installations of Oracle Linux 8.5 (aarch64) is Unbreakable Enterprise Kernel Release 6 (UEK R6). Note that UEK R6 is the only supported kernel for the aarch64 platform in this release. For more detailed information about UEK R6, see Unbreakable Enterprise Kernel: Release Notes for Unbreakable Enterprise Kernel Release 6 Update 3 .
Table of Contents
The following sections list the changes to binary and source packages from the upstream release.
This section contains information about the removed, modified, and new binary packages in this release. For information about the source package changes, see Section A.2, “Changes to Source Packages” .
The following binary packages have been added to the BaseOS by Oracle:
bcache-tools
btrfs-progs
dtrace
kernel-uek
kernel-uek-debug
kernel-uek-debug-devel
kernel-uek-devel
kernel-uek-doc
NetworkManager-config-connectivity-oracle
ocfs2-tools
oracle-backgrounds
oraclelinux-release
oraclelinux-release-el8
oracle-logos
oracle-logos-httpd
oracle-logos-ipa
The following binary packages have been added to AppStream by Oracle:
dtrace-devel
dtrace-testsuite
libblockdev-btrfs
oracle-database-preinstall-21c
python3-dnf-plugin-ulninfo
The following binary packages from the BaseOS upstream release have been modified:
autofs
binutils
boom-boot
boom-boot-conf
boom-boot-grub2
chkconfig
chrony
cockpit
cockpit-bridge
cockpit-doc
cockpit-system
cockpit-ws
coreutils
coreutils-common
coreutils-single
dbus
dbus-common
dbus-daemon
dbus-libs
dbus-tools
dbxtool
dnf
dnf-automatic
dnf-data
dnf-plugins-core
dracut
dracut-caps
dracut-config-generic
dracut-config-rescue
dracut-live
dracut-network
dracut-squash
dracut-tools
efibootmgr
efi-filesystem
firewalld
firewalld-filesystem
fuse
fuse3
fuse3-devel
fuse3-libs
fuse-common
fuse-devel
fuse-libs
fwupd
fwupdate
fwupdate-efi
fwupdate-libs
glibc
glibc-all-langpacks
glibc-common
glibc-devel
glibc-headers
glibc-langpack-aa
glibc-langpack-af
glibc-langpack-agr
glibc-langpack-ak
glibc-langpack-am
glibc-langpack-an
glibc-langpack-anp
glibc-langpack-ar
glibc-langpack-as
glibc-langpack-ast
glibc-langpack-ayc
glibc-langpack-az
glibc-langpack-be
glibc-langpack-bem
glibc-langpack-ber
glibc-langpack-bg
glibc-langpack-bhb
glibc-langpack-bho
glibc-langpack-bi
glibc-langpack-bn
glibc-langpack-bo
glibc-langpack-br
glibc-langpack-brx
glibc-langpack-bs
glibc-langpack-byn
glibc-langpack-ca
glibc-langpack-ce
glibc-langpack-chr
glibc-langpack-cmn
glibc-langpack-crh
glibc-langpack-cs
glibc-langpack-csb
glibc-langpack-cv
glibc-langpack-cy
glibc-langpack-da
glibc-langpack-de
glibc-langpack-doi
glibc-langpack-dsb
glibc-langpack-dv
glibc-langpack-dz
glibc-langpack-el
glibc-langpack-en
glibc-langpack-eo
glibc-langpack-es
glibc-langpack-et
glibc-langpack-eu
glibc-langpack-fa
glibc-langpack-ff
glibc-langpack-fi
glibc-langpack-fil
glibc-langpack-fo
glibc-langpack-fr
glibc-langpack-fur
glibc-langpack-fy
glibc-langpack-ga
glibc-langpack-gd
glibc-langpack-gez
glibc-langpack-gl
glibc-langpack-gu
glibc-langpack-gv
glibc-langpack-ha
glibc-langpack-hak
glibc-langpack-he
glibc-langpack-hi
glibc-langpack-hif
glibc-langpack-hne
glibc-langpack-hr
glibc-langpack-hsb
glibc-langpack-ht
glibc-langpack-hu
glibc-langpack-hy
glibc-langpack-ia
glibc-langpack-id
glibc-langpack-ig
glibc-langpack-ik
glibc-langpack-is
glibc-langpack-it
glibc-langpack-iu
glibc-langpack-ja
glibc-langpack-ka
glibc-langpack-kab
glibc-langpack-kk
glibc-langpack-kl
glibc-langpack-km
glibc-langpack-kn
glibc-langpack-ko
glibc-langpack-kok
glibc-langpack-ks
glibc-langpack-ku
glibc-langpack-kw
glibc-langpack-ky
glibc-langpack-lb
glibc-langpack-lg
glibc-langpack-li
glibc-langpack-lij
glibc-langpack-ln
glibc-langpack-lo
glibc-langpack-lt
glibc-langpack-lv
glibc-langpack-lzh
glibc-langpack-mag
glibc-langpack-mai
glibc-langpack-mfe
glibc-langpack-mg
glibc-langpack-mhr
glibc-langpack-mi
glibc-langpack-miq
glibc-langpack-mjw
glibc-langpack-mk
glibc-langpack-ml
glibc-langpack-mn
glibc-langpack-mni
glibc-langpack-mr
glibc-langpack-ms
glibc-langpack-mt
glibc-langpack-my
glibc-langpack-nan
glibc-langpack-nb
glibc-langpack-nds
glibc-langpack-ne
glibc-langpack-nhn
glibc-langpack-niu
glibc-langpack-nl
glibc-langpack-nn
glibc-langpack-nr
glibc-langpack-nso
glibc-langpack-oc
glibc-langpack-om
glibc-langpack-or
glibc-langpack-os
glibc-langpack-pa
glibc-langpack-pap
glibc-langpack-pl
glibc-langpack-ps
glibc-langpack-pt
glibc-langpack-quz
glibc-langpack-raj
glibc-langpack-ro
glibc-langpack-ru
glibc-langpack-rw
glibc-langpack-sa
glibc-langpack-sah
glibc-langpack-sat
glibc-langpack-sc
glibc-langpack-sd
glibc-langpack-se
glibc-langpack-sgs
glibc-langpack-shn
glibc-langpack-shs
glibc-langpack-si
glibc-langpack-sid
glibc-langpack-sk
glibc-langpack-sl
glibc-langpack-sm
glibc-langpack-so
glibc-langpack-sq
glibc-langpack-sr
glibc-langpack-ss
glibc-langpack-st
glibc-langpack-sv
glibc-langpack-sw
glibc-langpack-szl
glibc-langpack-ta
glibc-langpack-tcy
glibc-langpack-te
glibc-langpack-tg
glibc-langpack-th
glibc-langpack-the
glibc-langpack-ti
glibc-langpack-tig
glibc-langpack-tk
glibc-langpack-tl
glibc-langpack-tn
glibc-langpack-to
glibc-langpack-tpi
glibc-langpack-tr
glibc-langpack-ts
glibc-langpack-tt
glibc-langpack-ug
glibc-langpack-uk
glibc-langpack-unm
glibc-langpack-ur
glibc-langpack-uz
glibc-langpack-ve
glibc-langpack-vi
glibc-langpack-wa
glibc-langpack-wae
glibc-langpack-wal
glibc-langpack-wo
glibc-langpack-xh
glibc-langpack-yi
glibc-langpack-yo
glibc-langpack-yue
glibc-langpack-yuw
glibc-langpack-zh
glibc-langpack-zu
glibc-locale-source
glibc-minimal-langpack
grub2-common
grub2-efi-aa64-modules
grub2-efi-ia32
grub2-efi-ia32-cdboot
grub2-efi-ia32-modules
grub2-efi-x64
grub2-efi-x64-cdboot
grub2-efi-x64-modules
grub2-pc
grub2-pc-modules
grub2-tools
grub2-tools-efi
grub2-tools-extra
grub2-tools-minimal
grubby
iproute
iproute-tc
iptables
iptables-arptables
iptables-devel
iptables-ebtables
iptables-libs
iptables-services
iptables-utils
iscsi-initiator-utils
iscsi-initiator-utils-iscsiuio
iwl1000-firmware
iwl100-firmware
iwl105-firmware
iwl135-firmware
iwl2000-firmware
iwl2030-firmware
iwl3160-firmware
iwl3945-firmware
iwl4965-firmware
iwl5000-firmware
iwl5150-firmware
iwl6000-firmware
iwl6000g2a-firmware
iwl6000g2b-firmware
iwl6050-firmware
iwl7260-firmware
kexec-tools
kmod
kmod-kvdo
kmod-libs
kmod-redhat-oracleasm
ksc
libasan
libatomic
libatomic-static
libdnf
libertas-sd8686-firmware
libertas-sd8787-firmware
libertas-usb8388-firmware
libertas-usb8388-olpc-firmware
libgcc
libgcrypt
libgcrypt-devel
libgfortran
libgomp
libgomp-offload-nvptx
libipa_hbac
libitm
libkcapi
libkcapi-hmaccalc
liblsan
libnsl
libquadmath
libreport-filesystem
libsss_autofs
libsss_certmap
libsss_idmap
libsss_nss_idmap
libsss_simpleifp
libsss_sudo
libstdc++
libtirpc
libtirpc-devel
libtsan
libubsan
libxml2
libxslt
libzstd
libzstd-devel
linux-firmware
mcelog
microcode_ctl
mokutil
mozjs52
mozjs60
NetworkManager
NetworkManager-adsl
NetworkManager-bluetooth
NetworkManager-config-connectivity-oracle
NetworkManager-config-server
NetworkManager-dispatcher-routing-rules
NetworkManager-libnm
NetworkManager-ovs
NetworkManager-ppp
NetworkManager-team
NetworkManager-tui
NetworkManager-wifi
NetworkManager-wwan
nscd
nss_db
ntsysv
nvmetcli
opa-address-resolution
opa-basic-tools
opa-fastfabric
opa-fm
opa-libopamgt
OpenIPMI
OpenIPMI-lanserv
OpenIPMI-libs
OpenIPMI-perl
oracle-backgrounds
oraclelinux-release
oraclelinux-release-el8
oracle-logos
oracle-logos-httpd
oracle-logos-ipa
os-prober
parted
platform-python
policycoreutils
policycoreutils-dbus
policycoreutils-devel
policycoreutils-newrole
policycoreutils-python-utils
policycoreutils-restorecond
polkit
polkit-devel
polkit-docs
polkit-libs
procps-ng
procps-ng-i18n
python3-boom
python3-configshell
python3-dnf
python3-dnf-plugin-post-transaction-actions
python3-dnf-plugins-core
python3-dnf-plugin-versionlock
python3-firewall
python3-hawkey
python3-iscsi-initiator-utils
python3-libdnf
python3-libipa_hbac
python3-libs
python3-libsss_nss_idmap
python3-libxml2
python3-openipmi
python3-policycoreutils
python3-rtslib
python3-sss
python3-sssdconfig
python3-sss-murmur
python3-test
redhat-indexhtml
redhat-release
sanlock-lib
selinux-policy
selinux-policy-devel
selinux-policy-doc
selinux-policy-minimum
selinux-policy-mls
selinux-policy-sandbox
selinux-policy-targeted
shim-ia32
shim-x64
sos
sos-audit
sssd
sssd-ad
sssd-client
sssd-common
sssd-common-pac
sssd-dbus
sssd-ipa
sssd-kcm
sssd-krb5
sssd-krb5-common
sssd-ldap
sssd-nfs-idmap
sssd-polkit-rules
sssd-proxy
sssd-tools
sssd-winbind-idmap
systemd
systemd-container
systemd-devel
systemd-journal-remote
systemd-libs
systemd-pam
systemd-tests
systemd-udev
target-restore
trace-cmd
tuned
tuned-profiles-atomic
tuned-profiles-compat
tuned-profiles-cpu-partitioning
tuned-profiles-mssql
tuned-profiles-oracle
vim-minimal
yum
yum-utils
The following binary packages to CodeReady Linux Builder by Oracle have been modified:
crash-devel
cups-filters-devel
dotnet5.0-build-reference-packages
gcc-plugin-devel
gcc-toolset-10-gcc-plugin-devel
glibc-benchtests
glibc-nss-devel
glibc-static
guile-devel
iproute-devel
iscsi-initiator-utils-devel
kmod-devel
libblockdev-crypto-devel
libblockdev-devel
libblockdev-fs-devel
libblockdev-loop-devel
libblockdev-lvm-devel
libblockdev-mdraid-devel
libblockdev-part-devel
libblockdev-swap-devel
libblockdev-utils-devel
libblockdev-vdo-devel
libbytesize-devel
libcephfs2
libcephfs-devel
librados-devel
libradosstriper1
libradosstriper-devel
librbd-devel
libreoffice-sdk
libreoffice-sdk-doc
libsss_nss_idmap-devel
libstdc++-static
mozjs52-devel
mozjs60-devel
nss_hesiod
ocaml-libguestfs
ocaml-libguestfs-devel
OpenIPMI-devel
openscap-engine-sce-devel
PackageKit-glib-devel
parted-devel
python3-mpich
sanlock-devel
sblim-cmpi-devel
shim-unsigned-ia32
shim-unsigned-x64
tog-pegasus-devel
The following binary packages from the AppStream upstream release have been modified:
abrt
abrt-addon-ccpp
abrt-addon-coredump-helper
abrt-addon-kerneloops
abrt-addon-pstoreoops
abrt-addon-vmcore
abrt-addon-xorg
abrt-cli
abrt-cli-ng
abrt-console-notification
abrt-dbus
abrt-desktop
abrt-gui
abrt-gui-libs
abrt-java-connector
abrt-libs
abrt-plugin-machine-id
abrt-plugin-sosreport
abrt-tui
adwaita-gtk2-theme
anaconda
anaconda-core
anaconda-dracut
anaconda-gui
anaconda-install-env-deps
anaconda-tui
anaconda-user-help
anaconda-widgets
aspnetcore-runtime-3.0
aspnetcore-runtime-3.1
aspnetcore-runtime-5.0
aspnetcore-targeting-pack-3.0
aspnetcore-targeting-pack-3.1
aspnetcore-targeting-pack-5.0
authd
autocorr-af
autocorr-bg
autocorr-ca
autocorr-cs
autocorr-da
autocorr-de
autocorr-en
autocorr-es
autocorr-fa
autocorr-fi
autocorr-fr
autocorr-ga
autocorr-hr
autocorr-hu
autocorr-is
autocorr-it
autocorr-ja
autocorr-ko
autocorr-lb
autocorr-lt
autocorr-mn
autocorr-nl
autocorr-pl
autocorr-pt
autocorr-ro
autocorr-ru
autocorr-sk
autocorr-sl
autocorr-sr
autocorr-sv
autocorr-tr
autocorr-vi
autocorr-zh
binutils-devel
blivet-data
buildah
buildah-tests
clang
clang-analyzer
clang-devel
clang-libs
clang-resource-filesystem
clang-tools-extra
cloud-init
cockpit-composer
cockpit-machines
cockpit-packagekit
cockpit-pcp
cockpit-session-recording
cockpit-storaged
compat-libgfortran-48
compat-libpthread-nonshared
composer-cli
containers-common
cpp
crash
cups-filters
cups-filters-libs
dbus-devel
dbus-x11
delve
dnf-plugin-spacewalk
dotnet
dotnet-apphost-pack-3.0
dotnet-apphost-pack-3.1
dotnet-apphost-pack-5.0
dotnet-host
dotnet-hostfxr-3.0
dotnet-hostfxr-3.1
dotnet-hostfxr-5.0
dotnet-runtime-3.0
dotnet-runtime-3.1
dotnet-runtime-5.0
dotnet-sdk-3.0
dotnet-sdk-3.1
dotnet-sdk-5.0
dotnet-targeting-pack-3.0
dotnet-targeting-pack-3.1
dotnet-targeting-pack-5.0
dotnet-templates-3.0
dotnet-templates-3.1
dotnet-templates-5.0
eclipse-ecf-core
eclipse-ecf-runtime
eclipse-emf-core
eclipse-emf-runtime
eclipse-emf-xsd
eclipse-equinox-osgi
eclipse-jdt
eclipse-p2-discovery
eclipse-pde
eclipse-platform
eclipse-swt
efi-srpm-macros
fapolicyd
fapolicyd-selinux
firefox
firewall-applet
firewall-config
gcc
gcc-c++
gcc-gdb-plugin
gcc-gfortran
gcc-offload-nvptx
gcc-toolset-10-gcc
gcc-toolset-10-gcc-c++
gcc-toolset-10-gcc-gdb-plugin
gcc-toolset-10-gcc-gfortran
gcc-toolset-10-libasan-devel
gcc-toolset-10-libatomic-devel
gcc-toolset-10-libitm-devel
gcc-toolset-10-liblsan-devel
gcc-toolset-10-libquadmath-devel
gcc-toolset-10-libstdc++-devel
gcc-toolset-10-libstdc++-docs
gcc-toolset-10-libtsan-devel
gcc-toolset-10-libubsan-devel
gcc-toolset-11-binutils
gcc-toolset-11-binutils-devel
gcc-toolset-11-gcc
gcc-toolset-11-gcc-c++
gcc-toolset-11-gcc-gdb-plugin
gcc-toolset-11-gcc-gfortran
gcc-toolset-11-gcc-plugin-devel
gcc-toolset-11-libasan-devel
gcc-toolset-11-libatomic-devel
gcc-toolset-11-libgccjit
gcc-toolset-11-libgccjit-devel
gcc-toolset-11-libgccjit-docs
gcc-toolset-11-libitm-devel
gcc-toolset-11-liblsan-devel
gcc-toolset-11-libquadmath-devel
gcc-toolset-11-libstdc++-devel
gcc-toolset-11-libstdc++-docs
gcc-toolset-11-libtsan-devel
gcc-toolset-11-libubsan-devel
gdb
gdb-doc
gdb-gdbserver
gdb-headless
git-clang-format
glibc-utils
gnome-boxes
gnome-session
gnome-session-kiosk-session
gnome-session-wayland-session
gnome-session-xsession
gnome-themes-standard
guile
httpd
httpd-devel
httpd-filesystem
httpd-manual
httpd-tools
icedtea-web
icedtea-web-javadoc
initial-setup
initial-setup-gui
ipa-client
ipa-client-common
ipa-client-epn
ipa-client-samba
ipa-common
ipa-python-compat
ipa-selinux
ipa-server
ipa-server-common
ipa-server-dns
ipa-server-trust-ad
kernel-rpm-macros
kernelshark
ksh
libasan6
libblockdev
libblockdev-btrfs
libblockdev-crypto
libblockdev-dm
libblockdev-fs
libblockdev-kbd
libblockdev-loop
libblockdev-lvm
libblockdev-lvm-dbus
libblockdev-mdraid
libblockdev-mpath
libblockdev-nvdimm
libblockdev-part
libblockdev-plugins-all
libblockdev-swap
libblockdev-utils
libblockdev-vdo
libcmpiCppImpl0
libguestfs
libguestfs-bash-completion
libguestfs-benchmarking
libguestfs-devel
libguestfs-gfs2
libguestfs-gobject
libguestfs-gobject-devel
libguestfs-inspect-icons
libguestfs-java
libguestfs-java-devel
libguestfs-javadoc
libguestfs-man-pages-ja
libguestfs-man-pages-uk
libguestfs-rescue
libguestfs-rsync
libguestfs-tools
libguestfs-tools-c
libguestfs-xfs
libitm-devel
libquadmath-devel
librados2
librbd1
libreoffice-base
libreoffice-calc
libreoffice-core
libreoffice-data
libreoffice-draw
libreoffice-emailmerge
libreoffice-filters
libreoffice-gdb-debug-support
libreoffice-graphicfilter
libreoffice-gtk3
libreoffice-help-ar
libreoffice-help-bg
libreoffice-help-bn
libreoffice-help-ca
libreoffice-help-cs
libreoffice-help-da
libreoffice-help-de
libreoffice-help-dz
libreoffice-help-el
libreoffice-help-en
libreoffice-help-es
libreoffice-help-et
libreoffice-help-eu
libreoffice-help-fi
libreoffice-help-fr
libreoffice-help-gl
libreoffice-help-gu
libreoffice-help-he
libreoffice-help-hi
libreoffice-help-hr
libreoffice-help-hu
libreoffice-help-id
libreoffice-help-it
libreoffice-help-ja
libreoffice-help-ko
libreoffice-help-lt
libreoffice-help-lv
libreoffice-help-nb
libreoffice-help-nl
libreoffice-help-nn
libreoffice-help-pl
libreoffice-help-pt-BR
libreoffice-help-pt-PT
libreoffice-help-ro
libreoffice-help-ru
libreoffice-help-si
libreoffice-help-sk
libreoffice-help-sl
libreoffice-help-sv
libreoffice-help-ta
libreoffice-help-tr
libreoffice-help-uk
libreoffice-help-zh-Hans
libreoffice-help-zh-Hant
libreoffice-impress
libreofficekit
libreoffice-langpack-af
libreoffice-langpack-ar
libreoffice-langpack-as
libreoffice-langpack-bg
libreoffice-langpack-bn
libreoffice-langpack-br
libreoffice-langpack-ca
libreoffice-langpack-cs
libreoffice-langpack-cy
libreoffice-langpack-da
libreoffice-langpack-de
libreoffice-langpack-dz
libreoffice-langpack-el
libreoffice-langpack-en
libreoffice-langpack-es
libreoffice-langpack-et
libreoffice-langpack-eu
libreoffice-langpack-fa
libreoffice-langpack-fi
libreoffice-langpack-fr
libreoffice-langpack-ga
libreoffice-langpack-gl
libreoffice-langpack-gu
libreoffice-langpack-he
libreoffice-langpack-hi
libreoffice-langpack-hr
libreoffice-langpack-hu
libreoffice-langpack-id
libreoffice-langpack-it
libreoffice-langpack-ja
libreoffice-langpack-kk
libreoffice-langpack-kn
libreoffice-langpack-ko
libreoffice-langpack-lt
libreoffice-langpack-lv
libreoffice-langpack-mai
libreoffice-langpack-ml
libreoffice-langpack-mr
libreoffice-langpack-nb
libreoffice-langpack-nl
libreoffice-langpack-nn
libreoffice-langpack-nr
libreoffice-langpack-nso
libreoffice-langpack-or
libreoffice-langpack-pa
libreoffice-langpack-pl
libreoffice-langpack-pt-BR
libreoffice-langpack-pt-PT
libreoffice-langpack-ro
libreoffice-langpack-ru
libreoffice-langpack-si
libreoffice-langpack-sk
libreoffice-langpack-sl
libreoffice-langpack-sr
libreoffice-langpack-ss
libreoffice-langpack-st
libreoffice-langpack-sv
libreoffice-langpack-ta
libreoffice-langpack-te
libreoffice-langpack-th
libreoffice-langpack-tn
libreoffice-langpack-tr
libreoffice-langpack-ts
libreoffice-langpack-uk
libreoffice-langpack-ve
libreoffice-langpack-xh
libreoffice-langpack-zh-Hans
libreoffice-langpack-zh-Hant
libreoffice-langpack-zu
libreoffice-math
libreoffice-ogltrans
libreoffice-opensymbol-fonts
libreoffice-pdfimport
libreoffice-pyuno
libreoffice-ure
libreoffice-ure-common
libreoffice-wiki-publisher
libreoffice-writer
libreoffice-x11
libreoffice-xsltfilter
libreport
libreport-anaconda
libreport-cli
libreport-gtk
libreport-newt
libreport-plugin-bugzilla
libreport-plugin-kerneloops
libreport-plugin-logger
libreport-plugin-mailx
libreport-plugin-reportuploader
libreport-plugin-ureport
libreport-web
libreswan
libstdc++-devel
libstdc++-docs
libvirt
libvirt-admin
libvirt-bash-completion
libvirt-client
libvirt-daemon
libvirt-daemon-config-network
libvirt-daemon-config-nwfilter
libvirt-daemon-driver-interface
libvirt-daemon-driver-network
libvirt-daemon-driver-nodedev
libvirt-daemon-driver-nwfilter
libvirt-daemon-driver-qemu
libvirt-daemon-driver-secret
libvirt-daemon-driver-storage
libvirt-daemon-driver-storage-core
libvirt-daemon-driver-storage-disk
libvirt-daemon-driver-storage-gluster
libvirt-daemon-driver-storage-iscsi
libvirt-daemon-driver-storage-iscsi-direct
libvirt-daemon-driver-storage-logical
libvirt-daemon-driver-storage-mpath
libvirt-daemon-driver-storage-rbd
libvirt-daemon-driver-storage-scsi
libvirt-daemon-kvm
libvirt-devel
libvirt-docs
libvirt-libs
libvirt-lock-sanlock
libvirt-nss
libxml2-devel
libxslt-devel
llvm
llvm-devel
llvm-doc
llvm-googletest
llvm-libs
llvm-static
llvm-test
lorax
lorax-composer
lorax-lmc-novirt
lorax-lmc-virt
lorax-templates-generic
lorax-templates-rhel
lua-guestfs
mecab-ipadic
mecab-ipadic-EUCJP
mod_ldap
mod_proxy_html
mod_session
mod_ssl
mpich
mpich-devel
mpich-doc
nbdkit
nbdkit-bash-completion
nbdkit-basic-filters
nbdkit-basic-plugins
nbdkit-curl-plugin
nbdkit-devel
nbdkit-example-plugins
nbdkit-gzip-plugin
nbdkit-linuxdisk-plugin
nbdkit-python-plugin
nbdkit-server
nbdkit-ssh-plugin
nbdkit-vddk-plugin
nbdkit-xz-filter
netstandard-targeting-pack-2.1
NetworkManager-cloud-setup
nginx
nginx-all-modules
nginx-filesystem
nginx-mod-http-image-filter
nginx-mod-http-perl
nginx-mod-http-xslt-filter
nginx-mod-mail
nginx-mod-stream
nodejs
nodejs-devel
nodejs-docs
nodejs-full-i18n
openchange
openscap
openscap-devel
openscap-engine-sce
openscap-python3
openscap-scanner
openscap-utils
open-vm-tools
open-vm-tools-desktop
open-vm-tools-sdmp
osbuild-composer
osbuild-composer-core
osbuild-composer-worker
osinfo-db
pacemaker-cluster-libs
pacemaker-libs
pacemaker-schemas
PackageKit
PackageKit-command-not-found
PackageKit-cron
PackageKit-glib
PackageKit-gstreamer-plugin
PackageKit-gtk3-module
perl-Sys-Guestfs
perl-XML-Parser
pesign
pki-acme
pki-base
pki-base-java
pki-ca
pki-kra
pki-server
pki-symkey
pki-tools
platform-python
platform-python-debug
platform-python-devel
plymouth
plymouth-core-libs
plymouth-graphics-libs
plymouth-plugin-fade-throbber
plymouth-plugin-label
plymouth-plugin-script
plymouth-plugin-space-flares
plymouth-plugin-throbgress
plymouth-plugin-two-step
plymouth-scripts
plymouth-system-theme
plymouth-theme-charge
plymouth-theme-fade-in
plymouth-theme-script
plymouth-theme-solar
plymouth-theme-spinfinity
plymouth-theme-spinner
podman
podman-catatonit
podman-docker
podman-gvproxy
podman-plugins
podman-remote
podman-tests
policycoreutils-gui
policycoreutils-sandbox
pykickstart
python2
python2-debug
python2-devel
python2-libs
python2-test
python2-tkinter
python2-tools
python36
python36-debug
python36-devel
python36-rpm-macros
python3-abrt
python3-abrt-addon
python3-abrt-container-addon
python3-abrt-doc
python3-blivet
python3-blockdev
python3-clang
python3-dnf-plugin-spacewalk
python3-idle
python3-ipaclient
python3-ipalib
python3-ipaserver
python3-ipatests
python3-kickstart
python3-libguestfs
python3-libreport
python3-pki
python3-rhncfg
python3-rhncfg-actions
python3-rhncfg-client
python3-rhncfg-management
python3-rhn-check
python3-rhn-client-tools
python3-rhnlib
python3-rhnpush
python3-rhn-setup
python3-rhn-setup-gnome
python3-sanlock
python3-spacewalk-backend-libs
python3-spacewalk-oscap
python3-spacewalk-usix
python3-test
python3-tkinter
rear
redfish-finder
redhat-lsb
redhat-lsb-core
redhat-lsb-cxx
redhat-lsb-desktop
redhat-lsb-languages
redhat-lsb-printing
redhat-lsb-submod-multimedia
redhat-lsb-submod-security
redhat-rpm-config
rhel-system-roles
rhncfg
rhncfg-actions
rhncfg-client
rhncfg-management
rhn-check
rhn-client-tools
rhn-custom-info
rhnlib
rhnpush
rhnsd
rhn-setup
rhn-setup-gnome
rpmdevtools
rsyslog
rsyslog-crypto
rsyslog-doc
rsyslog-elasticsearch
rsyslog-gnutls
rsyslog-gssapi
rsyslog-kafka
rsyslog-mmaudit
rsyslog-mmjsonparse
rsyslog-mmkubernetes
rsyslog-mmnormalize
rsyslog-mmsnmptrapd
rsyslog-mysql
rsyslog-omamqp1
rsyslog-openssl
rsyslog-pgsql
rsyslog-relp
rsyslog-snmp
rsyslog-udpspoof
ruby-libguestfs
sanlk-reset
sanlock
scap-security-guide
scap-security-guide-doc
scap-workbench
setroubleshoot
setroubleshoot-plugins
setroubleshoot-server
skopeo
skopeo-tests
sos-collector
spacewalk-oscap
spacewalk-remote-utils
spacewalk-usix
spice-streaming-agent
sysstat
systemtap
systemtap-client
systemtap-devel
systemtap-exporter
systemtap-initscript
systemtap-runtime
systemtap-runtime-java
systemtap-runtime-python3
systemtap-runtime-virtguest
systemtap-runtime-virthost
systemtap-sdt-devel
systemtap-server
thunderbird
tog-pegasus
tog-pegasus-libs
tuned-gtk
tuned-utils
tuned-utils-systemtap
vim-common
vim-enhanced
vim-filesystem
vim-X11
virt-dib
virt-install
virt-manager
virt-manager-common
virt-p2v-maker
virt-v2v
WALinuxAgent
WALinuxAgent-udev
wget
xsane
xsane-common
xsane-gimp
zstd
The following binary packages from the BaseOS upstream release have been removed:
dnf-plugin-subscription-manager
grub2-ppc64le-modules
kpatch
kpatch-dnf
NetworkManager-config-connectivity-redhat
python3-cloud-what
python3-subscription-manager-rhsm
python3-syspurpose
redhat-logos
redhat-logos-httpd
redhat-release-eula
rhsm-icons
subscription-manager
subscription-manager-cockpit
subscription-manager-plugin-ostree
subscription-manager-rhsm-certificates
The following binary packages from the AppStream upstream release have been removed:
ansible-collection-microsoft-sql
ansible-collection-redhat-rhel_mgmt
aspnetcore-runtime-6.0
aspnetcore-targeting-pack-6.0
coreos-installer
coreos-installer-bootinfra
dotnet-apphost-pack-6.0
dotnet-hostfxr-6.0
dotnet-runtime-6.0
dotnet-sdk-6.0
dotnet-sdk-6.0-source-built-artifacts
dotnet-targeting-pack-6.0
dotnet-templates-6.0
insights-client
libreport-plugin-rhtsupport
libreport-rhel
libreport-rhel-anaconda-bugzilla
libreport-rhel-bugzilla
redhat-backgrounds
redhat-logos-ipa
redhat-support-lib-python
redhat-support-tool
rhc
rhc-worker-playbook
rhsm-gtk
rt-tests
spice-client-win-x64
spice-client-win-x86
spice-qxl-wddm-dod
spice-vdagent-win-x64
spice-vdagent-win-x86
subscription-manager-initial-setup-addon
subscription-manager-migration
subscription-manager-migration-data
toolbox
toolbox-tests
virtio-win
virt-who
This section contains information about the removed, modified, and new source packages in this release. For information about the binary package changes, see Section A.1, “Changes to Binary Packages” .
The following source packages have been added to the BaseOS by Oracle:
bcache-tools
btrfs-progs
dtrace
kernel-uek
ocfs2-tools
oraclelinux-release
oraclelinux-release-el8
oracle-logos
NetworkManager
The following source packages have been added to AppStream by Oracle:
dtrace
oracle-database-preinstall-21c
python3-dnf-plugin-ulninfo
The following source packages from the BaseOS upstream release have been modified:
autofs
binutils
boom-boot
chkconfig
chrony
cockpit
coreutils
dbus
dbxtool
dnf
dnf-plugins-core
dracut
efibootmgr
efi-rpm-macros
firewalld
fuse
fwupd
fwupdate
gcc
glibc
grub2
grubby
iproute
iptables
iscsi-initiator-utils
kexec-tools
kmod
kmod-kvdo
kmod-redhat-oracleasm
ksc
libdnf
libgcrypt
libkcapi
libmicrohttpd
libreport
libtirpc
libxml2
libxslt
linux-firmware
mcelog
microcode_ctl
mksh
mokutil
mozjs52
mozjs60
NetworkManager
nvmetcli
opa-ff
opa-fm
OpenIPMI
oraclelinux-release
oraclelinux-release-el8
oracle-logos
os-prober
parted
policycoreutils
polkit
procps-ng
python3
python-configshell
python-kmod
python-rtslib
redhat-indexhtml
redhat-release
sanlock
selinux-policy
shim
sos
sssd
systemd
trace-cmd
tuned
vim
zstd
The following source packages from the AppStream upstream release have been modified:
abrt
abrt-java-connector
anaconda
anaconda-user-help
ansible-freeipa
authd
binutils
buildah
ceph
clang
cloud-init
cockpit-appstream
cockpit-composer
cockpit-podman
cockpit-session-recording
compat-libgfortran-48
crash
cups-filters
dbus
delve
dleyna-connector-dbus
dnf-plugin-spacewalk
dotnet3.0
dotnet3.1
dotnet5.0
eclipse
eclipse-ecf
eclipse-emf
efi-rpm-macros
fapolicyd
firefox
firewalld
gcc
gcc-toolset-10-binutils
gcc-toolset-10-gcc
gcc-toolset-10-gdb
gcc-toolset-10-systemtap
gcc-toolset-11-binutils
gcc-toolset-11-gcc
gcc-toolset-11-gdb
gcc-toolset-11-systemtap
gcc-toolset-9-binutils
gcc-toolset-9-gcc
gcc-toolset-9-gdb
gcc-toolset-9-systemtap
gdb
glibc
gnome-abrt
gnome-boxes
gnome-initial-setup
gnome-session
gnome-themes-standard
guile
httpd
icedtea-web
initial-setup
ipa
ksh
libblockdev
libguestfs
libreoffice
libreport
libreswan
libvirt
libvirt-dbus
libxml2
libxslt
llvm
lorax
lorax-templates-rhel
mecab-ipadic
mpich
nbdkit
NetworkManager
NetworkManager-libreswan
nginx
nodejs
openchange
openscap
open-vm-tools
osbuild-composer
osinfo-db
pacemaker
PackageKit
perl-XML-Parser
pesign
pki-core
plymouth
podman
policycoreutils
pykickstart
pyparted
python2
python3
python36
python-blivet
python-podman
python-pydbus
python-systemd
rear
redfish-finder
redhat-lsb
redhat-rpm-config
rhel-system-roles
rhncfg
rhn-client-tools
rhn-custom-info
rhnlib
rhnpush
rhnsd
rpmdevtools
rshim
rsyslog
rubygem-abrt
sanlock
sblim-cmpi-devel
scap-security-guide
scap-workbench
setroubleshoot
setroubleshoot-plugins
skopeo
sos-collector
spacewalk-abrt
spacewalk-backend
spacewalk-oscap
spacewalk-remote-utils
spacewalk-usix
spice-streaming-agent
sysstat
systemtap
thunderbird
tog-pegasus
trace-cmd
tuned
vim
virt-manager
virt-p2v
WALinuxAgent
wget
xsane
zstd
The following source packages from the BaseOS upstream release have been removed:
kpatch
redhat-logos
subscription-manager
subscription-manager-migration-data
The following source packages from the AppStream upstream release have been removed:
dotnet6.0
insights-client
redhat-logos
redhat-support-lib-python
redhat-support-tool
rhc
rhc-worker-playbook
rt-tests
spice-qxl-wddm-dod
subscription-manager
subscription-manager-migration-data
toolbox
virtio-win
virt-who
, Oracle and/or its affiliates. Legal Notices