Inkampani yezigqoko ezibomvu
Igatsha le-RHEL 7.x ligcinwa lihambisana negatsha
main
- Usekelo olugcwele lokusebenzisa indlela ye-Live patch lunikeziwe (
kpatch ) ukususa ubungozi ku-Linux kernel ngaphandle kokuqalisa kabusha uhlelo nangaphandle kokumisa umsebenzi. Ngaphambilini, i-kpatch kwakuyisici sokuhlola; - Kungezwe amaphakheji e-python3 anotolika we-Python 3.6. Ngaphambilini, i-Python 3 ibitholakala kuphela njengengxenye ye-Red Hat Software Collections. I-Python 2.7 isanikezwa ngokuzenzakalelayo (ukushintshela ku-Python 3 kwenziwa ku-RHEL 8);
- Ukusetha ngaphambilini kwesikrini kwengezwe kumphathi wewindi le-Mutter (/etc/xdg/monitors.xml) kubo bonke abasebenzisi ohlelweni (akusadingeki ukuthi ulungiselele ngokuhlukile izilungiselelo zesikrini kumsebenzisi ngamunye;
- Ukutholwa okungeziwe kokunika amandla imodi ye-Multithreading (SMT) ngesikhathi esisodwa kusistimu nokubonisa isixwayiso esihambisanayo kusifaki sesithombe;
- Inikeza ukusekelwa okugcwele kwe-Image Builder, umakhi wezithombe zesistimu zezindawo zamafu, okuhlanganisa i-Amazon Web Services, i-Microsoft Azure ne-Google Cloud Platform;
- I-SSSD (I-System Security Services Daemon) inikeza ukwesekwa okugcwele kokugcina imithetho ye-sudo ku-Active Directory;
- Isistimu yesitifiketi esizenzakalelayo ingeze usekelo lwamasudi e-cipher engeziwe, okuhlanganisa i-TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_CBC/GCM_SHA384,
TLS_ECDHE_RSA_WITH_AES_128_CBC/GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC/GCM_SHA384 kanye ne-TLS_RSA_WITH_AES_256_GCM_SHA384; - Iphakheji ye-samba ibuyekezelwe kunguqulo 4.9.1 (inguqulo 4.8.3 inikezwe ekukhishweni kwangaphambilini). Iseva yohlu lwemibhalo 389 ibuyekeziwe yaba yinguqulo 1.3.9.1;
- Inombolo enkulu yama-node kuqoqo le-failover esekelwe ku-RHEL inyusiwe isuka ku-16 yaya ku-32;
- Zonke izakhiwo zisekela i-IMA (Integrity Measurement Architecture) ukuze kuqinisekiswe ubuqotho bamafayela nemethadatha ehlobene kusetshenziswa isizindalwazi samahashi agcinwe ngaphambili kanye ne-EVM (imojula yokuqinisekisa eyandisiwe) ukuze kuvikelwe izibaluli zefayela ezinwetshiwe (xattrs) ekuhlaselweni okuhloselwe ukwephula ubuqotho bawo (EVM). ngeke ivumele ukuhlasela okungaxhunyiwe ku-inthanethi, lapho umhlaseli angashintsha imethadatha, ngokwesibonelo, ngokuqalisa kudrayivu yakhe);
- Kwengezwe ikhithi yamathuluzi engasindi yokuphatha iziqukathi ezingazodwa, ezisetshenziselwa ukwakha iziqukathi
Buildah , okokuqala -I-Podman kanye nokusesha izithombe esezilungile -Skopeo ; - Ukufakwa okusha kokuvikela ukuhlasela kwe-Specter V2 manje kusebenzisa i-Retpoline (βspectre_v2=retpolineβ) esikhundleni se-IBRS ngokuzenzakalelayo;
- Ikhodi yomthombo yenguqulo yesikhathi sangempela ye-kernel-rt kernel ivunyelaniswa ne-kernel eyinhloko;
- Ukubophezela kweseva ye-DNS kubuyekezwe kugatsha
9.11 , kanye ne-ipset ngaphambi kokukhululwa kwe-7.1. Kwengezwe umthetho we-rpz-drop ukuze uvimbele ukuhlaselwa okusebenzisa i-DNS njenge-traffic amplifier; - I-NetworkManager ingeze ikhono lokusetha imithetho yomzila ngekheli lomthombo (umzila wenqubomgomo) kanye nokusekelwa kokuhlunga kwe-VLAN ku-interface yebhuloho lenethiwekhi;
- I-SELinux yengeze uhlobo olusha lwe-boltd_t lwedaemon yebhawudo elawula amadivayisi we-Thunderbolt 3 Isigaba esisha somthetho we-bpf sengeziwe ukuze sihlole izinhlelo zokusebenza ezisekelwe ku-Berkeley Packet Filter (BPF).
- Izinguqulo ezibuyekeziwe ze-shadow-utils 4.6, ghostscript 9.25, chrony 3.4, libssh2 1.8.0, eshunwe 2.11;
- Kubandakanya uhlelo lwe-xorriso lokudala nokukhohlisa izithombe ze-ISO 9660 CD/DVD;
- Ukwesekwa okwengeziwe Kwezandiso Zobuqotho Bedatha, ezikuvumela ukuthi uvikele idatha emonakalweni lapho ubhalela endaweni yokugcina ngokulondoloza amabhulokhi okulungisa engeziwe;
- Isisetshenziswa se-virt-v2v sengeze ukusekelwa kokuguqulwa kokusebenzisa i-SUSE Linux Enterprise Server (SLES) kanye nemishini ebonakalayo ye-SUSE Linux Enterprise Desktop (SLED) ngaphansi kwe-KVM uma isetshenziswa nama-hypervisors angewona awe-KVM. Ukusebenza okuthuthukisiwe nokuthembeka kokuguqula imishini ebonakalayo ye-VMWare. Ukwesekwa okwengeziwe kokuguqula imishini ebonakalayo esebenzisa i-firmware ye-UEFI ukuze isebenze ku-Red Hat Virtualization (RHV);
- Iphakheji ye-gcc-libraries ibuyekezelwe kunguqulo 8.3.1. Kwengezwe iphakheji ye-comat-sap-c++-8 enenguqulo ye-libstdc++ yelabhulali yesikhathi sokusebenza ehambisana nezinhlelo zokusebenza ze-SAP;
- Isizindalwazi se-Geolite2 sifakiwe, ngaphezu kwesizindalwazi se-Geolite esiyifa esinikezwa kuphakheji ye-GeoIP;
- Ikhithi yamathuluzi yokulandela umkhondo ye-SystemTap ibuyekeziwe ukuze ibe yigatsha 4.0, futhi ikhithi yamathuluzi yokulungisa iphutha yememori ye-Valgrind iye yabuyekezwa ukuze ibe yinguqulo 3.14;
- Umhleli we-vim ubuyekeziwe waba yinguqulo 7.4.629;
- Isethi yezihlungi zesistimu yokuphrinta ye-cups-filters ibuyekeziwe ukuze ibe yinguqulo 1.0.35. Inqubo yangemuva epheqululwe ngezinkomishi ibuyekeziwe yaba yinguqulo 1.13.4. Kwengezwe i-backend entsha ye-imlicitclass;
-
Kwengeziwe inethiwekhi entsha kanye nezithombe abashayeli. Kubuyekeziwe abashayeli abakhona;
Source: opennet.ru