File _patchinfo of Package patchinfo.8052

<patchinfo incident="8052">
  <issue tracker="bnc" id="1098986">firewalld: remove world-readable bit from logfile</issue>
  <issue tracker="bnc" id="1099698">firewalld puts icmp into ip6tables</issue>
  <issue tracker="bnc" id="1096542">translations break firewalld UI when creating rich rules</issue>
  <issue tracker="bnc" id="1105170">Update to firewalld 0.5.4 bug fix release</issue>
  <issue tracker="bnc" id="1105157">/usr/sbin/susefirewall2-to-firewalld -c run into an unexpected problem.</issue>
  <category>recommended</category>
  <rating>moderate</rating>
  <packager>markoschandras</packager>
  <description>This update for firewalld and susefirewall2-to-firewalld fixes the following issues:

firewalld:

- Drop global read permissions from the log file (bsc#1098986)
- Add missing ipv6-icmp protocol to UI drop-down list (bsc#1099698)
- Fix some untranslated strings in the creation of rich rules and firewall-config. (bsc#1096542)
- fw: If failure occurs during startup set state to FAILED.
- fw_direct: Avoid log for untracked passthrough queries.
- Rich Rule Masquerade inverted source-destination in Forward Chain.
- Don't forward interface to zone requests to NM for generated interfaces.
- firewall-cmd, firewall-offline-cmd: Add --check-config option.
- ipset: Check type when parsing ipset definition.
- firewall-config: Add ipv6-icmp to the protocol dropdown box.
- core/logger: Remove world-readable bit from logfile.
- IPv6 rpfilter: Explicitly allow neighbor solicitation.

susefirewall2-to-firewalld:

- Do not try to handle unknown iptables chains.
- Handle source whitelisting. (bsc#1105157)
</description>
  <summary>Recommended update for firewalld and susefirewall2-to-firewalld</summary>
</patchinfo>