8717 moderate openSUSE Leap 15.0 Update This update for firewalld and susefirewall2-to-firewalld fixes the following issues: firewalld: - Drop global read permissions from the log file (bsc#1098986) - Add missing ipv6-icmp protocol to UI drop-down list (bsc#1099698) - Fix some untranslated strings in the creation of rich rules and firewall-config. (bsc#1096542) - fw: If failure occurs during startup set state to FAILED. - fw_direct: Avoid log for untracked passthrough queries. - Rich Rule Masquerade inverted source-destination in Forward Chain. - Don't forward interface to zone requests to NM for generated interfaces. - firewall-cmd, firewall-offline-cmd: Add --check-config option. - ipset: Check type when parsing ipset definition. - firewall-config: Add ipv6-icmp to the protocol dropdown box. - core/logger: Remove world-readable bit from logfile. - IPv6 rpfilter: Explicitly allow neighbor solicitation. susefirewall2-to-firewalld: - Do not try to handle unknown iptables chains. - Handle source whitelisting. (bsc#1105157) This update was imported from the SUSE:SLE-15:Update update project. firewall-applet-0.5.4-lp150.2.6.1.noarch.rpm firewall-config-0.5.4-lp150.2.6.1.noarch.rpm firewall-macros-0.5.4-lp150.2.6.1.noarch.rpm firewalld-0.5.4-lp150.2.6.1.noarch.rpm firewalld-lang-0.5.4-lp150.2.6.1.noarch.rpm python3-firewall-0.5.4-lp150.2.6.1.noarch.rpm susefirewall2-to-firewalld-0.0.3-lp150.2.3.1.noarch.rpm firewalld-0.5.4-lp150.2.6.1.src.rpm