#13595: NetworkManager-1.24.2
-------------------------+-----------------------
Reporter: renodr | Owner: blfs-book
Type: enhancement | Status: new
Priority: high | Milestone: 9.2
Component: BOOK | Version: SVN
Severity: normal | Keywords:
-------------------------+-----------------------
New point version
{{{
Overview of changes since NetworkManager-1.24.0
===============================================
This is a new stable release of NetworkManager. Notable changes include:
* Add a new build option 'firewalld-zone'; when enabled,
NetworkManager installs a firewalld zone for connection sharing and
puts interfaces using IPv4 or IPv6 shared mode in this zone during
activation. The option is enabled by default.
Note that NetworkManager still calls to iptables to enable
masquerading and open needed ports for DHCP and DNS. The new option
is useful on systems using firewalld with the nftables backend,
where the iptables rules would not be sufficient.
* ifcfg-rh: handle "802-1x.{,phase2-}ca-path". Otherwise setting this
property silently fails and a profile might accidentally not perform
any authentication (CVE-2020-10754).
* ifcfg-rh: handle 802-1x.pin properties.
* platform: fix crash detecting device type from netlink.
* ip-tunnel: only set cloned-mac-address for layer 2 tunnels.
* Fixes for sanitizer build and valgrind.
* Various other bugfixes.
}}}
CVE-2020-10754 allows wireless configuration without authentication.
--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/13595>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
--
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
