Home

My Favorites

Close

Please to see your favorites.

Patches released for Open Enterprise Server 11 Support Pack 2 (OES11 SP2).

This document (7014420) is provided subject to the disclaimer at the end of this document.

Environment

Novell Open Enterprise Server 11 (OES 11) Linux Support Pack 2

Situation

Novell has released Open Enterprise Server 11 (OES 11) Linux Support Pack 2 on January 28th, 2014.

This is an overview of the patches that have been released for Open Enterprise Server 11 (OES11) Support Pack 2.
Note 1:
See TID 7008280 for a list of patches released for Open Enterprise Server 11 (OES11).
See TID 7010867 for a list of patches released for Open Enterprise Server 11 SP1 (OES11 SP1).

Disclaimer : The list above does not pretend to be a full list of down-loadable software as has been released for the OES11 platform. For that detail, please consult the official Novell download site.
Additional software may have been released, but not be listed here once it is considered to be beyond the scope of what this document tries to provide, being an overview of the bugs fixed with the various patch releases that have been released for OES11 SP2.

Resolution

For the readers convenience, below each released patch, you will find an overview of the bugs that are fixed in that patch for OES11 SP2, and if it is known, a link to the TID that belongs to that bug as well.

I tried to be as complete as possible by also adding the same list of patches and bug fixes for other released iPrint and eDir patches, and have verified accurateness of the same with the respective team members.


  • February 2014 OES11 SP2 eDirectory 8.8 SP8 Patch 1 Hot Patch - 8911

For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x


  • March 2014 OES11 SP2 Scheduled Maintenance Update - 8934
Bug 804813 - OES:iFolder Reports use US date format regardless of system locale.
Bug 827306 - Winbind crashes in dcerpc_lsa_lookup_sids () in ADC - TID 7014259.
Bug 838472 - Client trying to delete print job fails: Samba returns: WERR_INVALID_PRINTER_NAME.
Bug 844720 - VUL-0: CVE-2013-4408: samba: DCERPC frag_len not checked.
Bug 845531 - CIFS very slow in listing files in directory with 240000 files.
Bug 845999 - SMB client occasionally shows duplicate files when listing a subdirectory on an OES CIFS share.
Bug 848101 - VUL-0: CVE-2013-4475: samba: No access check verification on stream files.
Bug 848628 - pure-ftpd processes LIST command incorrectly when pathname argument contains a space character.
Bug 849226 - upstream fixes tracker bug for Oct/Nov 2013 update.
Bug 851118 - OES11 CIFS logging " Invalid Patth" instead of "Invalid Path".
Bug 851121 - OES11 CIFS Time to build trustees in micro-seconds is inaccurate.
Bug 852364 - iprintman is unable to delete Printer in eDir.
Bug 853021 - libsmbclient0 package description contains comments.
Bug 853347 - VUL-0: CVE-2012-6150: samba: winbind pam security problem.
Bug 853958 - oes pure-ftpd count.txt reached negative count.
Bug 854520 - upstream fixes tracker bug for Dec 2013 update.
Bug 855593 - ""AWT-EventQueue-0" java.lang.IllegalArgumentException: dash lengths all zero" Exception thrown while opening saved project in miggui.
Bug 856008 - NRM: NCP Inventory Reports Page and Help - Contains information about sending email based on Email Notification commands in the httpstkd.conf file.
Bug 857184 - NRM:Ganglia "Server health values" is not displaying the graph for the current server.
Bug 857595 - NRM: NCP Trustee Reports Page and Help - Contains information about sending email based on Email Notification commands in the httpstkd.conf file.
Bug 857665 - NDSD crashes in libxadsdk.so with empty SID in ldapsearch.
Bug 857825 - NRM: Group Operations Configuration page and Help - Contains information about sending email based on Email Notification commands in the httpstkd.conf file.
Bug 859134 - Default value for novcifs --csc option should be change to '0' in novcifs man page.
Bug 859839 - OES11SP2_LOC:GMC1:JA:Truncated string in DSFW Configuration screen.
Bug 861198 - Vlog: Man page of VLOG needs correction to read Modify event as "MODIFY" and not "MODIFYMETADATA ".
Bug 861245 - novcifs -h refers to 'sharepoint' and not 'share point'.
Bug 862283 - For March,2014 Patch - Merging sles11sp3 / sles11sp2 samba security patch to novell-oes-samba in oes11sp2 / oes11sp1.
Bug 862793 - AFP is dumping core when afptcpd service is restarted.

Security Issues:

    CVE-2013-4408
    CVE-2013-4475
    CVE-2012-6150

  • April 2014 OES11SP2 Hot Patch - 9140
Bug 868625 - Placeholder bug regarding 3rd party vendor problems following tsands branding change - TID 7014933.
Bug 870298 - Placeholder bug regarding 3rd party vendor problems following tsands branding change - TID 7014933.


  • April 2014 OES11SP2 Hot Patch - 9163
Bug 872796: Using nwrights to set file scan rights, sets supervisor right - TID 7014932.

Security Issues:

    CVE-2014-0595

  • May 2014 OES11SP2 Scheduled Maintenance for eDirectory 8.8 SP8 patch 2 - 9156

For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x


  • May 2014 OES11SP2 Scheduled Maintenance Update - 9157
Bug 778627 - Empty IRM Rights not getting populated for root directory on the volume.       
Bug 823951 - Trustee assignments are constantly getting out of sync.
Bug 842213 - Clicking the IP/Cluster_name of the mapped CIFS server on MAC 10.9 would fail to access the mapped volume - TID 7005113.
Bug 843854 - For DST configured volumes, opening new directory is causing error.
Bug 845142 - Linux workstations/servers error out while trying to join a DSfW domain.
Bug 850529 - CIFS NMAS Authentication Method for Linux fails authentication when user password has expired, but user still has remaining grace logins.
Bug 852321 - bad status code (0x400) from iprintman when creating printer.
Bug 853391 - Old NetBIOS Name (nfapCIFSServerName) remains in NODE STATUS RESPONSE (NBSTAT) after having renamed the CIFS Server Name in iManager.
Bug 857388 - ndsd core GetVolumeFlags.
Bug 858886 - Can not specify full context in the apple login for user lookup and authentication.
Bug 859412 - Change_proxy_pwd.sh fails when ran via cron, "NDS error failed authentication -669".
Bug 860485 - Folder gets created in wrong case when volume mounted in long name space.
Bug 861618 - pure-ftpd processes LIST command with absolute path in pathname argument incorrectly when "ChrootEveryone" is "no".
Bug 861900 - iPrint Appliance fails to write all data to padbtxt.xml.
Bug 862261 - CIFS core on startup 1.3.1-35.52.69.1 core analysis.
Bug 863188 - syslog is getting filled with XTCOM pam authentication failure every half an hour - TID 7014798.
Bug 864018 - Novell Client for Linux order 4 page allocation failures - TID 7014973.
Bug 864421 - Calling the YaST module 'inst_oes_preconfig has failed - TID 7014597.
Bug 868625 - Placeholder bug regarding 3rd party vendor problems following tsands branding change - TID 7014933.
Bug 868796 - csmport -i fails with "Cluster ID doesn't match".
Bug 869970 - Security Vuln - iPrint Directory traversal Vulnerability.
Bug 869975 - Security Vuln - iPrint stored XSS Vulnerability.
Bug 870766 - "xtier seg faulting".
Bug 872182 - Short (DOS) names are not returned when queried.
Bug 872914 - Merging apr,2014 samba sles11sp3 patch to novell-oes-samba on oes11sp2 patch.
Bug 879413 - Post Patch build update Netstorage Server received internal error.

  • OpenSSL - 9354
This patch release addresses multiple OpenSSL related security vulnerabilities for SLES 11 SP2 as described in the OpenSSL Security advisory http://www.openssl.org/news/secadv_20140605.txt.

Please refer to TID 7015264 for details on the security vulnerabilities fixed with this patch release.

  • July 2014 OES11 SP2 Hot Patch for iPrint Client - 9479

Bug 845513 - Random issue:Print spooler is crashing when installing ipp direct printers through iprntcmd command - TID 7014728.
Bug 857992 - printers installed to Mac auto delete with blank database - TID 7015048.
Bug 858272 - Dell Printer install with profile crashed the windows spooler in XP - TID 7014728.
Bug 858447 - PaperCut Direct Print Accounting failed.
Bug 859473 - Windows client -papercut:Accounting not working while installing printer through iprntcmd in standard windows user account.
Bug 859685 - (Random)Windows client for papercut:Printers not getting installed through icm settings.
Bug 860065 - iPrint Client 5.95: Copyright need to be updated.
Bug 860068 - (Random)Windows client 5.95 for papercut:Accounting not working after installing direct printer in windows 8.1.
Bug 861064 - Windows client 5.95:Installation of printer fails while reconnecting to remote desktop session.
Bug 863255 - iPrint Mac client 5.74:(Macintosh 10.9)Not able to print to printers having space in its name - TID 7014704.
Bug 863561 - The TraceLevel text under About | Configuration is incorrect.
Bug 865327 - iprint client 5.94 slow updating windows printer properties page.
Bug 867351 - LdapImport_AD_Realm:Secure Printer installation asks for authentication even after connecting Desktop to same Realm.
Bug 873926 - iPrint Mac client 5.76:Copyright need to be updated.
Bug 874560 - iPrint Mac client 5.74:Updating from 5.74 client to 5.76 client removes printers which has space in its name.
Bug 875127 - MSR Multi Driver: Auto driver update is failing for MSR drivers if multple drivers (of different Windows flavours) are associated with a PA.
Bug 881998 - iPrint windows client need to rebuild with new OpenSSL library i.e OpenSSL v0.9.8za.
Bug 883514 - Installation of latest iPrint client (5.98) fails with error saying "The Program can't start because SSLEAY32.dll is missing from your computer.

Security Issues:

CVE-2014-0224
CVE-2014-0221
CVE-2014-0195
CVE-2014-3470

  • July 2014 OES11 SP2 eDirectory 8.8 SP8 Patch 2 Hot Patch - 9407

For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x

  • August 2014 OES11 SP2 Scheduled Maintenance update - 9413
This 'August 2014 Scheduled Maintenance patch' release was initially the 'July 2014 Scheduled Maintenance patch', however, since there was a security update that needed to be tested and incorporated for release, the initial July 2014 Scheduled Maintenance patch was renamed to August 2014 Scheduled Maintenance patch and release a week later than expected.

As part of the fix for Bug 885791, comprehensive checks are added to ensure that users with the right privilege can access _admin volume on OES using CIFS.
This fix addresses a security issue that might get exposed through _admin volume over CIFS protocol access.

This fix ensures that only LUM-enabled users can access _admin volume. Therefore, this might cause errors while using Archive and Version services by users that are not LUM-enabled. To address this issue, ensure that the users are LUM-enabled.

Bug 792583 - Get file or directory information verb from NCP returns a long name instead of a DOS name for directories when the target name space requested is DOS - TID 7015161.
Bug 818564 - Delete driver profile error message does not reflect the printer agents associated with the driver profile.
Bug 820645 - Missing help for 'iPrint Manager Accounting Status' page.
Bug 837155 - Removal of cache entry from NCP cache and failure to remove cache from the open file list leads to a crash.
Bug 842642 - Cluster resource fails to register with SLP.
Bug 844132 - When using shadow volumes and CIFS on Windows 7, files become inaccessible - TID 7015611.
Bug 847008 - Change in the OES 11 getfattr implementation results in backup errors while trying to access the /var/opt/novell/nclmnt/ folder - TID 7014386.
Bug 853700 - For the ncpcon commands executed, no validation is done against input data entered by the user which eventually resulted in core.
Bug 854672 - The rights command with -S option fails to work for broken softlinks.
Bug 863260 - The iprintman printer --info command does not prompt for a certificate.
Bug 868979 - The novcifs command manpage does not describe the --share-vols-default option adequately.
Bug 869184 - Filenames that are long and contain Cyrillic characters cannot be deleted from the volume.
Bug 870070 - Recovered directories become invisible after salvaging, unless touched by another API - TID 7015273.
Bug 870386 - Trust between an Active Directory domain and a DSfW domain is broken every 30 days - TID 7015252.
Bug 872108 - While using the iprintman --grant-access option, the printer FDN fails to resolve.
Bug 873058 - Cleanup of the modified system objects is not successful when the pool expansion fails.
Bug 873212 - Missing ACLs on Computer objects are causing secure channel to break - TID 7013205.
Bug 873283 - Managing user quotas using iManager 2.7.7 on a Volume that is hosted on a OES 2 SP3 server leads to error.
Bug 874287 - While migrating data between volumes, stopping the migration fails to terminate nbackup jobs.
Bug 875846 - The /var/log/messages file floods with buffer overflow messages - TID 7015651.
Bug 876738 - Modified retrive_proxy_cred to read as retrieve_proxy_cred.
Bug 878131 - Copying a file from Mac 10.9 to a volume shared using CIFS for a user without delete rights leads to a samba lock on the file that cannot be released.
Bug 879891 - Incomplete listing of sub directories on a DST shadow volume since shadow path is not generated properly if mount point is other than root volume.
Bug 881269 - New iPrintman option added to set auto-driver update during printer creation and Printer modification through iPrintman.
Bug 884695 - NSS volumes mounted in UNIX name space losing trustee assignments - TID 7015344.
Bug 885791 - Unprivileged users get privilege access over _ADMIN volume on OES using CIFS.
Bug 887128 - Unable to manage OES using iManager after applying tomcat 6.0.41 security patch.
Bug 889783 - iManager fails to launch after 'novell-tomcat6' goes to 'DEAD' state.

Security Issues:

CVE-2014-0609

  • September 2014 OES11SP2 Scheduled Maintenance for eDirectory 8.8 SP8 patch 3 - 9593

For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x

  • September 2014 OES 11 SP2 Scheduled Maintenance Update - 9650
Bug 753235 - Unable to read login scripts greater than 512 MB in size when a workstation logs in to a system - TID 7014074.
Bug 810250 - Performance of NetStorage server gradually scales down.
Bug 847302 - IDM iManager plug-in stops responding after an upgrade from v10.7.20120601 to 10.7.20130307.
Bug 849216 - Remote Desktop Access to a workstation fails with lowercase characters in domain names - TID 7015592.
Bug 854834 - The NSS volume mount operation becomes very slow while processing purge log - TID 7015314..
Bug 865164 - iManager groups plug-in throws an error if there are unspecified addresses in the ldapInterfaces attribute of the LDAP server.
Bug 866556 - Software installation using GPO fails - TID 7015617.
Bug 872284 - iManager build version numbers has to be modified from 2.7.7 Patch1 to 2.7.7 Patch 2.
Bug 874117 - ncpcon man page updates in the scripting section.
Bug 876213 - NLVM fails to handle loop devices correctly.
Bug 876657 - Copying a folder fails in nautilus - Linux file browser, when it is mapped via SMB.
Bug 876890 - OES 2 SP3 to OES 11 SP2 DNS and DHCP proxy user migration using move_to_common_proxy.sh fails - TID 7015249.
Bug 877015 - The receive buffer becomes NULL unexpectedly causing NDSD to crash - TID 7015250..
Bug 880036 - The help icon on the Login page does not link to the iManager help.
Bug 880099 - Windows Explorer does not display a complete list of sub directories when browsing a large directory on a CIFS share.
Bug 880398 - Copying multiple files to an NSS volume is very slow when User Quota has been configured.
Bug 880970 - Zero byte packets cause CIFS server to go down.
Bug 881940 - In a different tree scenario, when a user maps a file or folder with no trustee rights, the migration GUI throws an exception.
Bug 882504 - Novell Remote Manager removes packages without performing a proper dependency check.
Bug 883301 - Users not able to access their home directories after a prolonged CIFS session.
Bug 883315 - Kernel core is seen in the node 2 when RAID5 restripe tests are done on node1.
Bug 884106 - The nagiosadmin user fails to log in using a password with special characters.
Bug 884412 - CIFS cores at random, terminates with signal 6.
Bug 886815 - Kernel OOPS in NSS cacheAllocBufferForUserData - TID 7015357.
Bug 887444 - Job gets canceled when accounting module changes the job size.
Bug 888007 - Moving or renaming a folder on an NSS volume causes NCP and NSS trustee files to get out of sync.
Bug 888539 - OES 11 SP2 NCS and clustered LDAP (no SBD and NSS) does not fence nodes - TID 7015426.
Bug 888696 - System with NCS, but without NSS installed reports nlvm Error 20897 when NCS is running.
Bug 888796 - The NRM File System Management page displays no data, if the NFS share is not mounted.
Bug 889413 - Default password policy not properly configured.
Bug 890686 - Using EAS 4.5, no event sources are connected for iManager, eDirectory, and NMAS.
  • December 2014 OES11SP2 Scheduled Maintenance for eDirectory 8.8 SP8 patch 4 - 9923

For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x

  • December 2014 OES 11 SP2 Scheduled Maintenance Update - 9879
Bug 846006 - When migrating resources (unloading volumes), the system generates a kernel core - TID 7015685.
Bug 856749 - During a RAID operation (create/delete) using iManager, parallel access to the RAID device using NSSMU results in kernel core.
Bug 892365 - NLVM rescan of RAID devices hangs intermittently.
Bug 888099, 902892, 904630 - Enhance the NSSMU user experience by adding short-cut keys so that NSSMU is easy to work using popular Windows SSH clients.
Bug 895488 - Unable to create a pool snapshot that is greater than 2 TB.
Bug 897237 - 'nlvm expand pool' allows a pool to expand using the partition that is used by the same pool or other pools.
Bug 899518 - Deleting an NSS volume through NSSMU changes the permissions on /etc/fstab and /etc/mtab from 644 to 600.
Bug 900643 - Quota management using iManager results in “adminusd - page allocation failure - order:5” - TID 7015901.
Bug 894753 - Server crashes with out_of_memory when a snapshot is created for snapshot using NLVM.
Bug 865938 - The Object Selector and History buttons are missing after applying the iManager 2.7.7.1 patches.
Bug 894364 - Change the build version from iManager 2.7.7 Patch2 to iManager 2.7.7 Patch 3.
Bug 904669 - XML eXternal Entity Injection (XXE) vulnerability - Authenticated administrative users can download the arbitrary files from the Access Manager administration interface as "novlwww" user.
Bug 906293 - The java.lang.NumberFormatException :For input string - "7.3" error is printed in the catalina.out log file.
Bug 656527 - When installing a printer, you might see a message “Reading driver file failed with 0” despite the printer getting successfully installed.
Bug 819805 - Banner printing garbage with non English iprint clients.
Bug 889375 - Installing the OES 11 SP2 May 2014 patch causes high utilization of CPU when the print server handles non-English characters on audit-enabled printers - TID 7015475.
Bug 886150 - Redirection of the direct printer to any other IPP printer fails on the iPrint Mac client 5.76.
Bug 895034 - The iPrint Mac client fails to print jobs submitted to the secure printer on OS X 10.10 Yosemite.
Bug 901330 - Xclient: iPrint sends the authorization credentials in a Base64 encoded text for some non-https connection.
Bug 901412 - 5.76 iPrint Client for Mac abuses Apache.
Bug 903212 - Poodle Vulnerability , need to disable sslv3 on 631 port.
Bug 808199 - Remote file operations fail because of synchronization issue caused when the scripts use the same FTP user account to login or logout of the FTP server in a very quick succession.
Bug 838414 - Unable to add cifs share longer than 75 characters with novcifs.
Bug 848628 - pure-ftpd processes the LIST command incorrectly if the pathname argument contains a space character.
Bug 849659 - Server becomes unresponsive as the NCP threads are in busy loop.
Bug 867137 - AFP service crashes due to improper handling of queued requests.
Bug 867635 - AFP service cores due to improper lock sequence while removing the expired sessions.
Bug 870067 - Renaming file in a DOS only name space problem.
Bug 873552 - novcifs -sap fails with error number 2
Bug 876396, 876397 - AFP cores frequently due to improper handling of file Handle IDs.
Bug 877030 - CIFS incorrectly registers Work Group or Domain Name as NetBIOS service types 0x00 (Workstation Service) and 0x20 (Server Service) when it is configured to use a WINS server for registrations.
Bug 882418 - File operations on an .odt file fails if the share mount point is some folder inside a volume and if the file is moved to shadow volume.
Bug 882952 - Space restrictions are not reported correctly for quotas greater than 2 TB.
Bug 889387 - Novell CIFS server returns duplicate search identifier in SMB_COM_TRANS2_FIND_FIRST2 response causing the Windows Explorer to show files of another subdirectory.
Bug 893032 - NCPCON connection list shows wrong time as 12:00 AM when a user logs in at the noon hour.
Bug 895949 - When the file name does not exist, pure-ftpd does not handle the LIST FILENAME using ftp-tls.
Bug 896192 - Cat'ting through the /admin/Novell/Cluster/EventLog.xml file crashes the cluster node - TID 7015908.
Bug 899748 - CIFS service does not accept new connections after running for a while with September 2014 maintenance patch.
Bug 900400 - pure-ftpd processes the LIST command incorrectly if the pathname argument contains a space character.
Bug 897010 - Random number of items During sync of two Netfolder connected to same vol on the backend.
Bug 903956 - Padding Oracle On Downgraded Legacy Encryption attack through SSLv3 (CVE-2014-3566).
Bug 877492 - The smdrd daemon crashes with segmentation fault - TID 7015266.
Bug 902594 - Novell Remote Manager (NRM) vulnerable to POODLE security issue.
Bug 902839 - Storage Management Services (SMS) vulnerable to POODLE security issue.
Bug 878879 - Novell Remote Manager returns HTTP error 400 when checking the properties of a file in a subdirectory with more than 2000 files.
Bug 828600 - XTier is coring in Filr server.
Bug 849216 - Remote Desktop Login from a Windows workstation to a DSfW domain fails when domain credentials are specified in lower case - TID 7015592.
Bug 879530 - If the master DNS server is a Microsoft DNS server and the OES 11 SP2 DNS server is secondary, the zone represented by these servers will not load.
Bug 886467 - Memory leak fixes in novell-named.
Bug 890617 - Adding the "Domain Admins" group from an AD server to "cn=Administrators,cn=Builtin,dc=dsfwtrust,dc=edu" on a OES 11 SP2 DSfW server fails in a cross-forest trust environment - TID 7015507.
Bug 894284 - Domain Services for Windows Daemon crashes frequently.
Bug 895254 - VMware view 5.3.0 linked clone creation fails with error status_invalid_parameter.
Bug 903956 - Padding Oracle On Downgraded Legacy Encryption attack through SSLv3(CVE-2014-3566).
Bug 838320 - The "Nagios User Management" strings in the NRM help files are not localized.

  • December 2014 OES11 SP2 Hot Patch - 10084 
Bug 896331 - count.txt becomes wrong after nwlogin error
Bug 904669 - XML eXternal Entity Injection (XXE) vulnerability: Authenticated administrative users can download arbitrary files from the Access Manager administration interface as the user "novlwww"
Bug 907953 - VUL-0: CVE-2014-3566: OES-pure-ftpd: FTP susceptible to SSLV3 vulnerability (POODLE)
Bug 908355 - Conflict of command line option with suse:pure-ftpd and oes:pure-ftpd
Bug 908537 - IBM java-1_6_0-ibm-1.6.0_sr16.2-0.3.1 (patch 9992) breaks SFCB SSL connections - TID 7015980.
Bug 908988 - 'ciphers' for SSL/TLS is been added by suse:ftp hence oes:ftp should present this switch during ftp upgrade.

Security Issues:


  • January 2015 OES 11 SP2 Scheduled Maintenance Update - 10105
Bug 523289 - Hard link upgrade fails on a specific volume.
Bug 747464 - Re-import of already exported DHCP configuration renames custom named pools.
Bug 788727 - Clicking Clear Password button under the iPrint Settings does not remove the saved passwords.
Bug 818535 - Clicking the Clear History button under the iPrint Document Status does not remove the history.
Bug 827902 - On OES 11 SP2, executing the iprntcmd -v command does not show the correct server version.
Bug 828646 - The Passwords tab under iPrint Settings incorrectly displays the LDAP User Name.
Bug 829459 - Provisioning of a DSfW user group with Solid works EPDM tool fails as DSfW is failing for "queryuseraliases domain/builtin" commands in smb.
Bug 845513 - Print spooler crashes when the IPP-enabled iPrint Direct printers are installed through the iprntcmd command - TID 845513.
Bug 871841 - Upgrade of DSfW servers from OES 2 SP1 to OES 11 SP2 fails as the server object is in a mapped container instead of ou=OESSystemObject inside mapped container.
Bug 879896 - iPrint client on OES 11 SP2 sometimes displays Interactive Services Detection dialog box.
Bug 882261 - iPrint client 5.96 and Novell Client 2 SP3 IR7a are not sharing the credentials, resulting in authentication failure.
Bug 883347 - NCP server is coring as NCP engine is closing the connection by one thread while another thread is in progress to reply on the same socket.
Bug 885817 - Managing large quotas results in iManager 2.7.7 storage error - TID 7015901.
Bug 886080 - After restarting the iPrint client, cores in iPrint gateway are reported.
Bug 887541 - With iPrint client 5.98 installed, after a print job is submitted, the values in the Handles column of iprntctl.exe increases significantly.
Bug 888099 - NSSMU user experience for popular Windows SSH clients needs improvement.
Bug 889080 - The OES server slows down due to memory pressure.
Bug 890147 - Transfer ID fails during preparation phase in the Migration Tool Utility.
Bug 892064 - /proc/nll/statistics NLS_KmallocSize reports erratic memory values intermittently.
Bug 894207 - Getting 20801 errors when accessing Volumes with DST configured.
Bug 894546 - LockCache Errors in the CIFS log while performing file I/O in the scale setup.
Bug 895572 - NCP segfaults in EnumConnectionInformation() function while a connection being enumerated and if the connection is removed at the same time - TID 7015704.
Bug 897052 - The OES server crashes due to the Watchdog timer overflow - TID 7015901.
Bug 897999 - Invalid Message - Failed to Delete Directory. CIFS does not log proper messages with proper log levels.
Bug 898634 - NCPCON output redirection is not working as expected.
Bug 898966 - Deleter Name "Not Available" with salvageable files deleted by CIFS users.
Bug 899008 - On Mac OS X, the iPrint client fails to print to secure printers after saving the iPrint credentials to the keychain.
Bug 899520 - While responding to the NCPCON request, the NCP server will overwrite the default reply buffer size of 64k if the response size is more than the default buffer size that causes ndsd to core.
Bug 900261 - cifsd does not respond with STATUS_DIRECTORY_NOT_EMPTY when client marks a subdirectory with entries for deletion per SMB_COM_TRANS2_SET_FILE_INFORMATION2 of InformationLevel SMB_SET_FILE_DISPOSITION_INFO.
Bug 900643 - Quota management using iManager results in Order 5 page allocation failures for adminusd.
Bug 900751 - Some NSSMU screens do not get resized properly.
Bug 900927 - Upgrading from OES 11 SP1 to OES 11 SP2 on a volume with DIR QUOTAS _disabled_ causes the nvm_quota_limit to change - TID 7015758.
Bug 900930 - Upgrading from OES 11 SP1 to OES 11 SP2 on a volume with DIR QUOTAS _disabled_ causes the nvm_quota_limit to change - TID 7015758.
Bug 901286 - CIFS strings need to be changed for command line error and success cases.
Bug 901445 - change_proxy_pwd.sh script causes 255 error if LUM is not configured to use proxy user - TID 7015775.
Bug 901978 - Allow users to select a specific size multiplier in lists using the nlvm utility.
Bug 902194 - Cannot copy files from a CIFS share if the directory structure is not DOS (8.3 filename regulations).
Bug 904193 - The iPrint Mac client 5.78 on Yosemite 10.9 and 10.10 fails to print to SSL-enabled printers with the error message "Backend failed".
Bug 904293 - The iPrint Mac client 5.78 on Yosemite fails to print to SSL-enabled Printer Agents whose names are longer than 20 characters.
Bug 904630 - The NSSMU man page must be updated to include the latest shortcut keys.
Bug 905094 - Remove the inappropriate error message "NLL::/usr/src/packages/BUILD/nss/modules-build/nsslnxlib/nssLnxLibLKM.c[115] counts are (621,184)" that gets added to the messages file every time the statistics file is read.
Bug 905717 - Novell Remote Manager displays incorrect message when files are listed by using the "View File system > View File System Listing" option.
Bug 906115 - After an upgrade to OES 11 SP2, the system is unable to allocate memory and OOM killer is invoked.
Bug 906596 - Novell Remote Manager does not display partition size correctly when the volume size is greater than 2 TB.
Bug 908316 - Common proxy scripts return 255 or -1 instead of positive values for certain services.
  • March 2015 OES11SP2 Scheduled Maintenance for eDirectory 8.8 SP8 patch 5 - 10291
For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x

  • March 2015 OES 11 SP2 Scheduled Maintenance Update - 10332
Bug 818535 - Clicking the Clear History button under the iPrint Document status does not remove the history.
Bug 841509 - When installing a secure printer, the iPrint client displays an error message if the Fully Qualified Distinguished Name that has been provided is wrong - TID 7013446.
Bug 917356 - On iPrint client 5.99, temporary user credentials are not getting removed from the Passwords tab under iPrint settings.
Bug 785315 - NCP combines unrelated directories and files that do not exist in primary and shadow volumes, and displays them as an entity.
Bug 888015 - NCPSERV.LOG is filling up with synchronous I/O multiplexing error:9 messages.
Bug 852793 - Cluster resources take minutes to mount. Due to long mount delays, the resources go into a comatose state on fail-over.
Bug 898634 - ncpcon output redirection does not work as expected.
Bug 866069 - Novell CIFS on an OES11 SP2 cluster node still shares volumes of resources, where CIFS protocol has not been enabled.
Bug 891987 - Novell CIFS (Novell-cifs-1.3.2-0.90.9) on an OES11 SP2 server consumes about 7 GB of memory after applying the May 2014 scheduled maintenance update.
Bug 905286 - Novell CIFS crashes while mounting or dismounting continuously from a Linux client.
Bug 907498 - Links created on CIFS shares from a Windows Client are hidden, because the Novell CIFS server was not setting the archive attribute while creating a new file using SMB_COM_NT_CREATE_ANDX.
Bug 872558 - The afp_create_proxy_user.sh script does not provide the log filename and its path. The script does not provide an example of the input and proxy _fdn and bind_fdn format.
Bug 910784 - When the IP address of a cluster resource is changed, it is not reflected in the nfapCIFSAttach attribute of the Virtual NCP Server object.
Bug 909927 - In NSSMU, the deleted volumes are not displayed when there is a faulty pool.
Bug 870053 - In NSSMU, the F9(Deleted Vols) option lists the deleted volumes from all pools.
Bug 908489 - Unable to activate the pool on RAID 5 devices.
Bug 917997 - Incorrect NSS header information is displayed in the create new volume window.
Bug 858107 - The file overwrite vulnerability: Using the schema plug-in, a user can overwrite any file that belongs to the novlwww user.
Bug 858132 - The XSS vulnerability exists in the schema plug-in for iManager.
Bug 865164 - The iManager group plug-in throws an error when there are unspecified addresses in the ldapInterfaces attribute of the LDAP server.
Bug 903969 - The RegEX validation on multivalued attributes is applied to the wrong attributes.
Bug 904674 - Reflected Cross Site Scripting (XSS) vulnerability: Multiple reflected cross-site scripting vulnerabilities allow effective attacks of administrative and SSLVPN sessions.
Bug 904679 - Cross-Site Request Forgery: The Admin Console password can be changed via URL.
Bug 907640 - A change in build version numbers from 2.7.7. 3 to 2.7.7.4.
Bug 918810 - naudit does not work on iManager 2.7.7.4.
Bug 864053 - The DNS/DHCP Java Management Console fails to set a pool's Range Type value to "Excluded" and defaults to "DHCP."
Bug 878375 - The DNS/DHCP Java Management Console fails to import Class Declarations from the dhcpd configuration file.
Bug 893246 - Having multiple zones and allow-recursion values leads to a DNS server crash.
Bug 904854 - The DNS server crashes with an Assertion Failure during dynamic reconfiguration when the Zone Type is toggled between Primary and Secondary servers.
Bug 913626 - The DNS/DHCP Java Management Console deletes the "option space" dhcpOption from the dhcpService object.
Bug 899196 - Logging in to a DSfW domain from Mac 10.10 prompts for a password reset.
Bug 896356 - After upgrading to OES 11 SP2 QuickFinder, the Document Index is causing Tomcat to crash.
Bug 911382 - Links in the Search Results page for a few non-English file names are not working.
Bug 920201 - QuickFinder Admin login fails after installing a patch.
Bug 891911 - Trustees are not syncing when the "Copy Trustees Only at the Directory Level" option is enabled for migrating data.
Bug 908968 - SMS fails to restore the user quota when the data backed up on the OES 2015 NSS-AD volume is restored to the OES 11 SP2 NSS volume.
Bug 901710 - DFS junctions stop working.
Bug 912706 - NRM is not using the ?secure? attribute for any cookies sent over an SSL connection.
Bug 922187 - The Novell CIFS service fails when NCS is installed and not configured.

Security Issues:

CVE-2014-5216

  • May 2015 OES 11 SP2 Scheduled Maintenance Update - 10648
Bug 894359 - Back up and restore of user quota greater than 8 TB quota size does not work properly.
Bug 918774 - Migration tool synchronizes all the data in a volume instead of the modified data.
Bug 924475 - Backing up user quota greater than 8 TB size on the OES 2015 volume and restoring it on the OES 11 SP2 volume does not work properly.
Bug 918306 - In the Manage Junctions page, the junction status displays as Broken.
Bug 872780 - NSS Audit populates the /var/log/message with “COMN_Open - 2925357760 Error initializing audit messages”.
Bug 907395 - Menu changes in NSSMU.
Bug 911963 & 923105 - Multiple issues related to resizing the NSSMU screens.
Bug 912631 - Creating RAID0 devices with more segments causes segmentation fault in NSSMU and NLVM.
Bug 916456 - The NFS client malfunctions when NSS volume is mounted using NFS mount.
Bug 916789 - Renaming a volume or volume mount point changes the permissions on /etc/fstab from 644 to 600.
Bug 918047 - The deleted volumes page does not get updated when the volumes are purged from NSSMU.
Bug 920872 - NSSMU and NLVM failed to dismount the volume when pool is deactivated.
Bug 925106 - Disable the unsupported file snapshot (File COW) feature in NSSCON.
Bug 910280 - Winsock 10060 error installing printer thru IE and iprntcmd if ipsmd is not restarted and printer has been created with iprintman.
Bug 915560 - iprntman fails to accept the certificate if there is a mismatch in the server name URL.
Bug 918269 - Printers having driver and driver profiles assigned to them display incorrect information when generating a report from the PsmStatus page.
Bug 923001 - Installing the printer agents fail with Windows Socket error if the driver store is not reachable.
Bug 923115 - Copying the driver profile from source to target causes reinstallation of the printers due to change in the timestamps.
Bug 926371 - New printer pool management capabilities with the iprntman command - adding a pool, deleting a pool, adding printers to a pool, and deleting printers from a pool.
Bug 926504 - While executing the iprntman command across the eDirectory tree, it displays the IPPTrustManager error if the certificate is not present in the iprntman keystore.
Bug 916021 - The McAfee Web Gateway Appliance fails to join the DSfW domain.
Bug 712498 - The "Options" column in the Available DHCP Options list of the Java Management Console is not expandable.
Bug 844026 - Unable to set the DHCP Option 121 using Java Console.
Bug 874529 - The DHCP option 121 does not accept duplicate values of IP address.
Bug 668859 - Incorrect free space is displayed for a sub directory - TID 7008199.
Bug 912794 - Occasionally, listing of directory never completes when browsed through Novell Client - TID 7016264.
Bug 914349 - The renamed subdirectory on a DST volume is temporarily listed twice in Windows Explorer.
Bug 915203 - Copying large files using Novell Client is slower than CIFS clients - TID 7016266.
Bug 918049 - NDSD crashes in NCP whenever the rename operation is performed - TID 7016196.
Bug 926998 - Files with filenames > 128 characters become invalid after applying recent patches - TID 7016443.
Bug 892956 - Non-root users have read, write permissions on CIFS configuration file.
Bug 921848 - User name mismatch errors appear in cifs.log file.
Bug 922187 - The CIFS service is stopped gracefully if NCS-SDK registration fails.
Bug 922528 - Users are not able to delete a read-only subdirectory from an SMB client.
Bug 909245 - Installation of OES 11 SP2 creates actual certificates in /etc/sfcb instead of softlinks pointing to the /etc/ssl/servercerts locations.
Bug 926799 - The NCS hashed queue could overwrite the messages in some rare conditions and that could lead to NCS killing the node with a message.

  • July 2015 OES11 SP2 eDirectory 8.8 SP8 Patch 5 Hot Patch - 10828
For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x

Note : The 8.8 SP8 Patch 5 Hot Patch release does not list bug #932268 as fixed, whereas the rpm change log indicate this as fixed.

The solution to the following bug however is confirmed to be released with this patch :
Bug 932268 - Deleted servers come back as unknown objects and subordinate replicas report -618 errors.

  • July 2015 OES11 SP2 eDirectory 8.8 SP8 Patch 5 Hot Patch 2 - 10846
For an overview of the bugs released with this patch, kindly refer to the documentation as maintained by the eDirectory team :

TID 3426981 - History of Issues Resolved in eDirectory 8.8.x

  • July 2015 OES 11 SP2 Scheduled Maintenance Update - 10820
Bug 907565 - novcifs throws "Invalid configuration option is requested" error, even though it successfully enables or disables dynamic file handle pool.
Bug 911157 - Deadlock in Novell CIFS Opportunistic Locking leads to degrade in Windows client performance.
Bug 922090 - NCP write performance is slower on large files in comparison to CIFS **
                       (**Note : The fix for bug 922090 requires Novell Client 2.4 and newer to benefit from this improved performance.)
Bug 926697 - NCP server should display proper error messages to the client if reading and sending data to the client fails.
Bug 930223 - Using the "ncpcon quotas sync ALL NSSVOL d" command creates empty directories on the shadow volumes.
Bug 933038 - NCP server crashes when trying to de-reference the connection object - TID 7016549.
Bug 914408, 921671, 922185 - In iPrint Windows Client, the tabs "Terminal Services", "Passwords", and "About" of the "iPrint Client Settings" dialog boxes overlaps for the following languages - zh_CN, zh_TW, and JA.
Bug 917438 - On upgrading to 5.80 clients, printing fails.
Bug 919792 - iPrint Direct and User printers installed on Windows 2008 R2 displays the status as "Paper Out".
Bug 922673 - The last page fails to print when printed using iPrint direct and RAW.
Bug 923143 - Printing labels fail intermittently when printed using iPrint direct and RAW.
Bug 923886 - iPrint Client 6.0.0 fails to create driver profiles on Non-English Windows OS (64-bit only).
Bug 924863 - FAX Printer Status in Winword "Nicht bereit" (not ready).
Bug 924873 - Print jobs to direct iPrint printers are not part of the print queue on workstation when printer is powered of
Bug 925372 - Using Windows client 6.00, Mac drivers cannot be uploaded from Windows 64-bit machine.
Bug 926595 - Installation of iPrint client version 6.0.0 triggers "Unquoted Service Path Enumeration" detection.
Bug 926717 - Labels are printed out of order.
Bug 927403 - The iPrint client plugin is blocked by Chrome version 42.
Bug 929064 - Using iPrint Client 6.0, modification of printer driver profile fails.
Bug 929615 - Printer installation fails for a newly created Mac local user. It works only after the user logs off and logs in again.
Bug 929669 - For iPrint Mac Client 6.0, the printer installation after a client uninstallation is not handled properly in the same browser session.
Bug 931984 - Using the "iprintman" command, adding same printer to multiple pools should not be allowed.
Bug 932587 & 932588 & 932591 - The "iprintman" command must have the following options - "--list", "--info", and options to select the profile to be copied.
Bug 933505 - After installing the May patch for OES 11 SP2, the print manager is not accessible due to a certificate error.
Bug 933585 - In iPrint Windows client, garbage characters appear in EULA for the following languages :zh_CN and zh_TW.
Bug 933596 & 933600 & 933706 - In iPrint Windows client, the following dialog boxes of the "iPrint Client Settings" overlap - "About" tab for JA; "iCM" tab for JA and zh_CN; and "Tray Icon" tab for zh_CN.
Bug 933719 - In iPrint Windows client, over localized strings "ABOUT, PROXY,PASSWORD..." for the following languages - ES and zh_TW.
Bug 933729 - In the "iprintman" command, the profile copy feature should work with all the platform versions.
Bug 926925 - The sync operation hangs when the Migration tool is used.
Bug 929097 - The "smdrd.conf" is referring to a wrong path /etc/opt/novell/sms/smdrd.conf.
Bug 930989 - On renaming the junction target folder, the junction status displays as 'Available' instead of 'Broken' even after performing scan.
Bug 834305 - The metamig restore does not handle special characters.
Bug 857905 - The visibility right on the parent directories is preserved until the file or directory is purged.
Bug 890396 - Unable to change the "Times to shred data" attribute for a volume using NSSMU.
Bug 926931 - The VLOG filter file and output redirection to the CSV file do not work as expected for CIFS access.
Bug 930563 - Kernel core in VLOG "RIP - 0010:[] [] strcmp+0xc/0x30".
Bug 931471 - Information related to the snapshot feature must be removed from the help and man pages.
Bug 896994 - User password change from the Kanaka client on Mac does not update the Universal Password.
Bug 904882 & 651268 - While migrating large number of pools and volumes, the adminusd may get hung due to race conditions between pool, volume and superblock locks.


Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7014420
  • Creation Date:16-JAN-14
  • Modified Date:05-AUG-15
    • NovellCluster Services
      iPrint
      Open Enterprise Server
    • NetIQeDirectory

Did this document solve your problem? Provide Feedback