Risk Factor: high (inhibitor)

Title: Leapp detected loaded kernel drivers which have been removed in RHEL 8.
Upgrade cannot proceed.
Summary: Support for the following RHEL 7 device drivers has been removed in RHEL
8:
- pata_acpi

Key: f08a07da902958defa4f5c2699fae9ec2eb67c5b
----------------------------------------
Risk Factor: high (inhibitor)
Title: Deprecated XFS mount options present in FSTAB.
Summary: Some XFS mount options are not supported on RHEL 8 and prevent system from
booting correctly if any of the reported XFS options are used. filesystem:
- irixsgid
- barrier
- ihashsize
- osyncisdsync
- delaylog
- nobarrier
- nodelaylog
- osyncisosync.
Remediation: [hint] Drop the following mount options from the /etc/fstab file for
any XFS filesystem: nobarrier.
Key: bf735cd06346cf3794b670646d307d6faaa14a80
----------------------------------------
Risk Factor: high
Title: Packages available in excluded repositories will not be installed
Summary: 3 packages will be skipped because they are available only in target
system repositories that are intentionally excluded from the list of repositories
used during the upgrade. See the report message titled "Excluded target system
repositories" for details.
The list of these packages:
- ldns-utils (repoid: codeready-builder-for-rhel-8-x86_64-rpms)
- python3-pyxattr (repoid: codeready-builder-for-rhel-8-x86_64-rpms)
- rpcgen (repoid: codeready-builder-for-rhel-8-x86_64-rpms)
Key: 2437e204808f987477c0e9be8e4c95b3a87a9f3e
----------------------------------------
Risk Factor: high
Title: Difference in Python versions and support in RHEL 8
Summary: In RHEL 8, there is no 'python' command. Python 3 (backward incompatible)
is the primary Python version and Python 2 is available with limited support and
limited set of packages. If you no longer require Python 2 packages following the
upgrade, please remove them. Read more here:
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html-
single/configuring_basic_system_settings/#using-python3
Remediation: [hint] Please run "alternatives --set python /usr/bin/python3" after
upgrade
Key: 0c98585b1d8d252eb540bf61560094f3495351f5
----------------------------------------
Risk Factor: high
Title: Packages not signed by Red Hat found on the system
Summary: The following packages have not been signed by Red Hat and may be removed
during the upgrade process in case Red Hat-signed packages to be removed during the
upgrade depend on them:
- AGENT-WINCOLLECT
- ContentPackage-CustomProperties-HealthMetrics
- CustomPropertiesScript
- DSM-3ComSwitch
- DSM-APCUPS
- DSM-AWSVerifiedAccess
- DSM-AhnLabPolicyCenter
- DSM-AkamaiKona
- DSM-AmazonAWSALBAccessLogs
- DSM-AmazonAWSCloudTrail
- DSM-AmazonAWSKubernetes
- DSM-AmazonAWSNetworkFirewall
- DSM-AmazonAWSRoute53
- DSM-AmazonAWSSecurityHub
- DSM-AmazonAWSWAF
- DSM-AmazonCloudFront
- DSM-AmazonGuardDuty
- DSM-AmbironTrustwaveIpAngel
- DSM-ApacheWebserver
- DSM-AppSecDbProtect
- DSM-AppleOSX
- DSM-ArborNetworksPeakflowSp
- DSM-ArborNetworksPravail
- DSM-ArpeggioSIFTIT
- DSM-ArrayNetworksSSLVPN
- DSM-ArubaClearPass
- DSM-ArubaIntrospect
- DSM-ArubaMobility
- DSM-AssetProfiler
- DSM-AvayaVPNGateway
- DSM-BarracudaSpamVirusFirewall
- DSM-BarracudaWebApplicationFirewall
- DSM-BarracudaWebFilter
- DSM-BeyondTrustPowerBroker
- DSM-Bit9Parity
- DSM-BlueCatNetworksAdonis
- DSM-BlueCoatProxySG
- DSM-BlueCoatWebSecurityService
- DSM-BoxBox
- DSM-BridgewaterAAA
- DSM-BrocadeFabricOS
- DSM-CAAcf2
- DSM-CASiteMinder
- DSM-CATopSecret
- DSM-CRYPTOCardCRYPTOShield
- DSM-CarbonBlackCarbonBlack
- DSM-CarbonBlackProtection
- DSM-CentrifyIdentityPlatform
- DSM-CentrifyInfrastructureServices
- DSM-CheckPoint
- DSM-CilasoftQJRN400
- DSM-CiscoACS
- DSM-CiscoAMP
- DSM-CiscoAironet
- DSM-CiscoCSA
- DSM-CiscoCallManager
- DSM-CiscoCatOS
- DSM-CiscoCloudWebSecurity
- DSM-CiscoDuoSecurity
- DSM-CiscoFirepowerManagementCenter
- DSM-CiscoFirepowerThreatDefense
- DSM-CiscoFirewallDevices
- DSM-CiscoIOSFamily
- DSM-CiscoIPS
- DSM-CiscoISE
- DSM-CiscoIronPort
- DSM-CiscoMeraki
- DSM-CiscoNAC
- DSM-CiscoNexus
- DSM-CiscoSecureWorkload
- DSM-CiscoStealthwatch
- DSM-CiscoUmbrella
- DSM-CiscoVPNConcentrator
- DSM-CiscoWLC
- DSM-CiscoWism
- DSM-CitrixAccessGateway
- DSM-CitrixNetScaler
- DSM-CloudLockCloudSecurityFabric
- DSM-CloudPassageHalo
- DSM-ClouderaNavigator
- DSM-CloudflareLogs
- DSM-CorreLogzOSAgent
- DSM-CrowdStrikeFalconDataReplicator
- DSM-CrowdStrikeFalconHost
- DSM-CyberArkPrivilegedThreatAnalytics
- DSM-CyberArkVault
- DSM-DGTechnologyMEAS
- DSM-DSMCommon
- DSM-DamballaFailsafe
- DSM-DigitalChinaDCRSSeries
- DSM-EMCVMWare
- DSM-ESETRemoteAdministrator
- DSM-EnterpriseITSecuritySFSherlock
- DSM-EpicSIEM
- DSM-ExabeamExabeam
- DSM-Extreme800SeriesSwitch
- DSM-ExtremeDragon
- DSM-ExtremeHiGuard
- DSM-ExtremeHiPath
- DSM-ExtremeMatrixE1Switch
- DSM-ExtremeNAC
- DSM-ExtremeNSeries
- DSM-ExtremeNetsightASM
- DSM-ExtremeNetworksExtremeWare
- DSM-ExtremeSecurestack
- DSM-ExtremeXSRSecurityRouters
- DSM-F5ASM
- DSM-F5BigIPAFM
- DSM-F5FirePass
- DSM-F5NetworksAPM
- DSM-F5NetworksBigIP
- DSM-FairWarning
- DSM-FasooFED
- DSM-FidelisXPS
- DSM-FireEyeMPS
- DSM-ForcepointSidewinder
- DSM-ForcepointVseries
- DSM-ForescoutCounterACT
- DSM-FortinetFortiGate
- DSM-FoundryFastiron
- DSM-FreeRADIUSFreeRADIUS
- DSM-GNULinuxDHCP
- DSM-GNULinuxIptables
- DSM-GNULinuxServer
- DSM-GenuaGenugate
- DSM-GoogleCloudAudit
- DSM-GoogleCloudDNS
- DSM-GoogleCloudPlatformFirewall
- DSM-GoogleGSuiteActivityReports
- DSM-GreatBayBeacon
- DSM-H3CComware
- DSM-HBGaryActiveDefense
- DSM-HPNetworkAutomation
- DSM-HPTandem
- DSM-HoneycombLexiconFileIntegrityMonitor
- DSM-HpProcurve
- DSM-HpUx
- DSM-HuaweiARSeriesRouter
- DSM-HuaweiSSeriesSwitch
- DSM-HyTrustCloudControl
- DSM-IBMAIXAudit
- DSM-IBMAIXServer
- DSM-IBMBigFix
- DSM-IBMBigFixDetect
- DSM-IBMBluemixPlatform
- DSM-IBMCICS
- DSM-IBMCloudActivityTracker
- DSM-IBMCloudIdentity
- DSM-IBMCustomDSM
- DSM-IBMDLCMetrics
- DSM-IBMDataPower
- DSM-IBMDb2
- DSM-IBMDomino
- DSM-IBMFederatedDirectoryServer
- DSM-IBMFiberlinkMaaS360
- DSM-IBMGuardium
- DSM-IBMHealthMetrics
- DSM-IBMIMS
- DSM-IBMManageVirtualServer
- DSM-IBMPrivilegedSessionRecorder
- DSM-IBMProventiaManagementProtector
- DSM-IBMQRadarNetworkSecurityXGS
- DSM-IBMQRadarPacketCapture
- DSM-IBMRACF
- DSM-IBMRedHatOpenShift
- DSM-IBMSANVolumeController
- DSM-IBMSecurityAccessManagerESSO
- DSM-IBMSecurityAccessManagerForMobile
- DSM-IBMSecurityDirectoryServer
- DSM-IBMSecurityGuardiumInsights
- DSM-IBMSecurityIdentityGovernance
- DSM-IBMSecurityIdentityManager
- DSM-IBMSecurityNetworkIPS
- DSM-IBMSecurityPrivilegedIdentityManager
- DSM-IBMSecurityRandoriRecon
- DSM-IBMSecurityReaQta
- DSM-IBMSecurityTrusteer
- DSM-IBMSense
- DSM-IBMSiteProtector
- DSM-IBMSmartCloudOrchestrator
- DSM-IBMTivoliAccessManager
- DSM-IBMWebSphere
- DSM-IBMi
- DSM-IBMzOS
- DSM-IBMzSecureAlert
- DSM-ITCubeAgileSI
- DSM-IbmInformixAudit
- DSM-IllumioAdaptiveSecurityPlatform
- DSM-ImpervaIncapsula
- DSM-ImpervaSecuresphere
- DSM-InfoBloxNIOS
- DSM-IscBind
- DSM-ItronSmartMeter
- DSM-JuniperAltorVGW
- DSM-JuniperAvt
- DSM-JuniperBinary
- DSM-JuniperDX
- DSM-JuniperInfranetController
- DSM-JuniperJunOS
- DSM-JuniperMykonosWebSecurity
- DSM-JuniperNetScreenFirewall
- DSM-JuniperNetScreenIDP
- DSM-JuniperNetScreenNSM
- DSM-JuniperSBR
- DSM-JuniperWirelessLAN
- DSM-KasperskyCyberTrace
- DSM-KasperskySecurityCenter
- DSM-KiscoInformationSystemsSafeNetI
- DSM-KubernetesAuditing
- DSM-LastlineEnterprise
- DSM-LiebermanRandomPasswordManager
- DSM-LightCyberMagna
- DSM-McAfeeApplicationChangeControl
- DSM-McAfeeEpo
- DSM-McAfeeNetworkSecurityPlatform
- DSM-McAfeeWebGateway
- DSM-MetainfoMetaIP
- DSM-MicrosoftAzureActiveDirectory
- DSM-MicrosoftAzurePlatform
- DSM-MicrosoftAzureSecurityCenter
- DSM-MicrosoftDHCPServer
- DSM-MicrosoftDNS
- DSM-MicrosoftExchange
- DSM-MicrosoftFEP
- DSM-MicrosoftHyperV
- DSM-MicrosoftIAS
- DSM-MicrosoftIIS
- DSM-MicrosoftISA
- DSM-MicrosoftOffice365
- DSM-MicrosoftOffice365MessageTrace
- DSM-MicrosoftOperationsManager
- DSM-MicrosoftSCOM
- DSM-MicrosoftSQL
- DSM-MicrosoftSharePoint
- DSM-MicrosoftWindows
- DSM-MicrosoftWindowsDefenderATP
- DSM-MotorolaSymbolAP
- DSM-NCCGroupDDoSSecure
- DSM-NGINXHTTPServer
- DSM-NameValuePair
- DSM-NetAppDataONTAP
- DSM-NetgatePfSense
- DSM-NetskopeActive
- DSM-Niksun
- DSM-NominumVantio
- DSM-NortelARN
- DSM-NortelContivity
- DSM-NortelERS25_45_5500
- DSM-NortelEthernetRS83_8600
- DSM-NortelFirewall5100
- DSM-NortelFirewall6000
- DSM-NortelNAS
- DSM-NortelSNAS
- DSM-NortelSR
- DSM-NortelTPS
- DSM-NortelVPNGateway
- DSM-NovellEDirectory
- DSM-OSSECOSSEC
- DSM-ObserveITObserveIT
- DSM-OktaIdentityManagement
- DSM-OnapsisIncOnapsisSecurityPlatform
- DSM-OpenBSD
- DSM-OpenLDAPOpenLDAP
- DSM-OpenStackCeilometer
- DSM-OracleAuditvault
- DSM-OracleDbAudit
- DSM-OracleDbListener
- DSM-OracleEnterpriseManager
- DSM-OracleFineGrainedAuditing
- DSM-OracleOSAudit
- DSM-OracleSessionBorderController
- DSM-OracleWebLogic
- DSM-PaloAltoEndpointSecurityManager
- DSM-PaloAltoPaSeries
- DSM-PingFederate
- DSM-PireanAccessOne
- DSM-PostFixMailTransferAgent
- DSM-ProFTPD
- DSM-ProofpointEnterprise
- DSM-PulseSecurePulseConnectSecure
- DSM-Q1LabsRiskManager
- DSM-QRadarAppLogger
- DSM-RSAAuthenticationManager
- DSM-RadwareAppWall
- DSM-RadwareDefensePro
- DSM-RedHatAdvancedClusterSecurityForKubernetes
- DSM-RedbackASE
- DSM-Resolution1CyberSecurity
- DSM-RiverbedSteelCentralNetProfiler
- DSM-RiverbedSteelCentralNetProfilerAudit
- DSM-SAPEnterpriseThreatDetection
- DSM-SIMAudit
- DSM-SIMGenericLog
- DSM-SIMNotification
- DSM-SIMUniversal
- DSM-SNAREReflector
- DSM-SSHCryptoAuditor
- DSM-STEALTHbitsStealthINTERCEPT
- DSM-STEALTHbitsStealthINTERCEPTAlerts
- DSM-STEALTHbitsStealthINTERCEPTAnalytics
- DSM-SafeNetDataSecure
- DSM-SalesforceSecurity
- DSM-SalesforceSecurityAuditing
- DSM-SamhainHIDS
- DSM-SearchResults
- DSM-SeculertSeculert
- DSM-SecureComputingCyberguard
- DSM-SentrigoHedgehog
- DSM-SkyhighNetworksCloudSecurityPlatform
- DSM-Snowflake
- DSM-SolarWindsOrion
- DSM-SolarisBSM
- DSM-SonicWallUTMFirewallVPN
- DSM-SophosAstaroSecurityGateway
- DSM-SophosCentral
- DSM-SophosEnterpriseConsole
- DSM-SophosPureMessage
- DSM-SophosWebSecurityAppliance
- DSM-SourceFireSnort
- DSM-SquidWebProxy
- DSM-StarentHA
- DSM-StonesoftManagementCenter
- DSM-SunONELDAP
- DSM-SunSolarisDHCP
- DSM-SunSolarisOS
- DSM-SunSolarisSendmail
- DSM-Suricata
- DSM-SybaseAse
- DSM-SymantecCriticalSystemProtection
- DSM-SymantecDLP
- DSM-SymantecEncryptionManagementServer
- DSM-SymantecEndpointProtection
- DSM-SymantecFirewall
- DSM-SymantecSystemCenter
- DSM-SysFlow
- DSM-ThreatGRIDMalwareThreatIntelligencePlatform
- DSM-TippingPointUnityOne
- DSM-TippingPointXSeries
- DSM-TopLayerIPS
- DSM-TrendControlmanager
- DSM-TrendISVW
- DSM-TrendMicroApexCentral
- DSM-TrendMicroDeepDiscovery
- DSM-TrendMicroDeepDiscoveryAnalyzer
- DSM-TrendMicroDeepDiscoveryDirector
- DSM-TrendMicroDeepDiscoveryEmailInspector
- DSM-TrendMicroDeepSecurity
- DSM-TrendOfficeScan
- DSM-TripwireEnterprise
- DSM-TroposControl
- DSM-TrusteerApex
- DSM-UniversalCEF
- DSM-UniversalLEEF
- DSM-VMwareAppDefense
- DSM-VMwarevCloud
- DSM-VMwarevShield
- DSM-VectraNetworksVectra
- DSM-VenustechVenusense
- DSM-VerdasysDigitalGuardian
- DSM-VericeptContent360
- DSM-VmWareVCenter
- DSM-VormetricDataSecurity
- DSM-WatchGuardFirewareOS
- DSM-WinCollect
- DSM-ZscalerNss
- DSM-ZscalerPrivateAccess
- DSM-osquery
- IBM_dojo
- Lib_Utils
- MegaCli
- PROTOCOL-AhnLabPolicyCenterJdbc
- PROTOCOL-AkamaiKonaRESTAPI
- PROTOCOL-AlibabaCloudSimpleLogService
- PROTOCOL-AmazonAWSRESTAPI
- PROTOCOL-AmazonWebServices
- PROTOCOL-ApacheKafka
- PROTOCOL-ArielRESTAPI
- PROTOCOL-BlueCoatWSSRESTAPI
- PROTOCOL-BoxRESTAPI
- PROTOCOL-CentrifyRedrockRESTAPI
- PROTOCOL-CertificatUtilsCommon
- PROTOCOL-CiscoDuo
- PROTOCOL-CiscoFirepowerEstreamer
- PROTOCOL-Common
- PROTOCOL-EMCVMWareProtocol
- PROTOCOL-FlowCommon
- PROTOCOL-GoogleCloudPubSub
- PROTOCOL-GoogleCommon
- PROTOCOL-GoogleGSuiteActivityReportsRESTAPI
- PROTOCOL-HTTPReceiver
- PROTOCOL-IBMBigFixEDRRESTAPI
- PROTOCOL-IBMBigFixSOAP
- PROTOCOL-IBMCloudIdentityEventService
- PROTOCOL-IBMFiberlinkRESTAPI
- PROTOCOL-IBMQRadarDLC
- PROTOCOL-IBMSIMJDBC
- PROTOCOL-IBMSecurityRandoriRESTAPI
- PROTOCOL-IBMSecurityReaQtaRESTAPI
- PROTOCOL-IBMSmartCloudOrchestratorRESTAPI
- PROTOCOL-JDBC
- PROTOCOL-JdbcSophos
- PROTOCOL-JuniperNSM
- PROTOCOL-JuniperSecurityBinary
- PROTOCOL-LEA
- PROTOCOL-LogFileProtocol
- PROTOCOL-MQJMS
- PROTOCOL-MicrosoftAzureEventHubs
- PROTOCOL-MicrosoftGraphSecurityAPI
- PROTOCOL-NSEL
- PROTOCOL-NetskopeActiveRESTAPI
- PROTOCOL-ObserveITJdbc
- PROTOCOL-Office365MessageTraceRESTAPI
- PROTOCOL-Office365RESTAPI
- PROTOCOL-OktaRESTAPI
- PROTOCOL-OracleDatabaseListener
- PROTOCOL-PCAP
- PROTOCOL-RabbitMQ
- PROTOCOL-SAPETDAlertAPI
- PROTOCOL-SDEE
- PROTOCOL-SNMP
- PROTOCOL-SalesforceRESTAPI
- PROTOCOL-SeculertProtectionRESTAPI
- PROTOCOL-SmbTailProtocol
- PROTOCOL-SophosCentral
- PROTOCOL-SyslogRedirect
- PROTOCOL-TCPMultilineSyslog
- PROTOCOL-TCPSyslog
- PROTOCOL-TLSSyslog
- PROTOCOL-UDPMultilineSyslog
- PROTOCOL-UniversalCloudRESTAPI
- PROTOCOL-VMWareAppDefense
- PROTOCOL-VMwarevCloudProtocol
- PROTOCOL-WinCollectConfigServer
- PROTOCOL-WinCollectFileForwarder
- PROTOCOL-WinCollectJuniperSBR
- PROTOCOL-WinCollectMicrosoftDHCP
- PROTOCOL-WinCollectMicrosoftDNS
- PROTOCOL-WinCollectMicrosoftExchange
- PROTOCOL-WinCollectMicrosoftIAS
- PROTOCOL-WinCollectMicrosoftIIS
- PROTOCOL-WinCollectMicrosoftISA
- PROTOCOL-WinCollectMicrosoftSQL
- PROTOCOL-WinCollectNetAppDataONTAP
- PROTOCOL-WinCollectWindowsEventLog
- PROTOCOL-WindowsDHCPProtocol
- PROTOCOL-WindowsDefenderATPRESTAPI
- PROTOCOL-WindowsEventLog
- PROTOCOL-WindowsEventRPC
- PROTOCOL-WindowsExchangeProtocol
- PROTOCOL-WindowsIISProtocol
- VIS-Axis
- VIS-BeyondSecurityAVDS
- VIS-DigitalDefenseIncAVS
- VIS-IBMAppScan
- VIS-IBMBigFix
- VIS-IBMGuardiumSCAP
- VIS-IBMSiteProtector
- VIS-JuniperNSMProfiler
- VIS-McAfeeVulnerabilityManager
- VIS-MicrosoftSCCM
- VIS-NmapNmap
- VIS-Outpost24VulnerabilityScanner
- VIS-QualysQualysGuard
- VIS-QualysQualysGuardDetection
- VIS-Rapid7Nexpose
- VIS-SaintSaint
- VIS-TenableIO
- VIS-TenableNessus
- VIS-TenableSecurityCenter
- VIS-eEyeRem
- VIS-nCircleIP360
- VIS-netVigilanceSecureScout
- adapters-common
- adapters.brocade.vrouter
- adapters.checkpoint.cpsms
- adapters.checkpoint.https
- adapters.checkpoint.opsec
- adapters.checkpoint.secureplatform
- adapters.cisco.catos
- adapters.cisco.ios
- adapters.cisco.nexus
- adapters.cisco.ngips
- adapters.cisco.securityappliance
- adapters.f5.bigip
- adapters.fortinet.fortios
- adapters.generic.snmp
- adapters.generic.xml
- adapters.hp.provision
- adapters.ibm.iss_gx
- adapters.ibm.iss_siteprotector
- adapters.juniper.junos
- adapters.juniper.nsm
- adapters.juniper.screenos
- adapters.mcafee.sidewinder
- adapters.nokia.checkpoint
- adapters.paloalto.panos
- adapters.sourcefire.3d
- adapters.sourcefire.defensecenter
- adapters.tippingpoint.ips
- adminconsole
- apache-tomcat
- app-image-build-files
- assetprofiler
- assetprofiler-jars
- autoupdate
- auxiliary
- base_app_template
- bbperf
- conman
- containerd.io
- content-management-toolkit
- content_management
- conwrap
- customaction-chrootjail
- datanode
- dbdoracle
- dbfiles
- diagnostiq
- diagnostiq-deployment
- diagnostiq-ha
- diagnostiq-patch
- disasterrecovery
- docker-ce
- docker-ce-cli
- docker-ce-rootless-extras
- docker-distribution
- docker-distribution-qconf
- docker-scan-plugin
- drbd84-utils
- drq
- ecs
- ecs-ec-2021.6.7.20231125162043
- ecs-ec-ingress-2021.6.7.20231125162043
- ecs-ec-ingress-systemd
- ecs-ec-systemd
- ecs-ep-2021.6.7.20231125162043
- ecs-ep-systemd
- ecs-qconf
- elxocmcore
- elxocmlibhbaapi
- eventlog
- fips-qconf
- flowfields
- forensics
- forensics-DB
- forensics-setup
- forensics_analysis
- forensics_decapper_qni
- forensics_foremost
- forensics_html
- forensics_indexer_tomcat
- forensics_inspectors
- forensics_qni_applications
- forensics_workflow
- freetds
- gd3php
- geoipupdate
- gpg-pubkey
- hostcontext
- httpd-qconf
- ibm-java-x86_64-sdk
- ibm-java-x86_64-sdk-qconf
- ibm-jtzu
- ibm-si-mks
- ibm_sas2ircu
- ibmxfesdk
- ibmxfesdk-part_00
- ibmxfesdk-part_01
- ibmxfesdk-part_02
- ibmxfesdk-part_03
- ibmxfesdk-part_04
- ibmxfesdk-part_05
- ibmxfesdk-part_06
- ibmxfesdk-part_07
- ibmxfesdk-part_08
- ibmxfesdk-part_09
- ibmxfesdk-part_10
- ibmxfesdk-part_11
- ibmxfesdk-part_12
- ibmxfesdk-part_13
- ibmxfesdk-part_14
- ibmxfesdk-part_15
- ibmxfesdk-part_16
- ibmxfesdk-part_17
- ibmxfesdk-part_18
- ibmxfpam
- ice
- icmpquery
- if_dpdk
- imq
- imq-qconf
- ivykis
- jars-FastInfoset
- jars-JavaFastPFOR
- jars-aalto-xml
- jars-acme
- jars-activation
- jars-antlr
- jars-antlr-runtime
- jars-aopalliance
- jars-apacheds-protocol-dhcp
- jars-args4j
- jars-asm
- jars-aspectjrt
- jars-avalon-framework-api
- jars-avalon-framework-impl
- jars-batik-all
- jars-batik-anim
- jars-batik-awt-util
- jars-batik-bridge
- jars-batik-codec
- jars-batik-constants
- jars-batik-css
- jars-batik-dom
- jars-batik-ext
- jars-batik-extension
- jars-batik-gui-util
- jars-batik-gvt
- jars-batik-i18n
- jars-batik-parser
- jars-batik-rasterizer
- jars-batik-rasterizer-ext
- jars-batik-script
- jars-batik-shared-resources
- jars-batik-slideshow
- jars-batik-squiggle
- jars-batik-svg-dom
- jars-batik-svgbrowser
- jars-batik-svggen
- jars-batik-svgpp
- jars-batik-svgrasterizer
- jars-batik-swing
- jars-batik-transcoder
- jars-batik-ttf2svg
- jars-batik-util
- jars-batik-xml
- jars-bcpkix-jdk15to18
- jars-bcprov-jdk15to18
- jars-bcutil-jdk15to18
- jars-btf
- jars-c3p0
- jars-c3p0_ap
- jars-cglib-nodep
- jars-chart
- jars-chart-ext
- jars-chart-server
- jars-commons-beanutils
- jars-commons-cli
- jars-commons-codec
- jars-commons-collections
- jars-commons-collections4
- jars-commons-daemon
- jars-commons-dbcp
- jars-commons-dbutils
- jars-commons-digester
- jars-commons-discovery
- jars-commons-email
- jars-commons-exec
- jars-commons-fileupload
- jars-commons-httpclient
- jars-commons-io
- jars-commons-json4j
- jars-commons-jxpath
- jars-commons-lang
- jars-commons-lang3
- jars-commons-logging
- jars-commons-math
- jars-commons-math3
- jars-commons-pool
- jars-commons-text
- jars-commons-validator
- jars-concurrent
- jars-cryptacular
- jars-cxf-core
- jars-cxf-rt-bindings-soap
- jars-cxf-rt-bindings-xml
- jars-cxf-rt-databinding-jaxb
- jars-cxf-rt-frontend-jaxrs
- jars-cxf-rt-frontend-jaxws
- jars-cxf-rt-frontend-simple
- jars-cxf-rt-management
- jars-cxf-rt-transports-http
- jars-cxf-rt-transports-http-jetty
- jars-cxf-rt-wsdl
- jars-dnsjava
- jars-dom4j
- jars-email
- jars-failureaccess
- jars-fastutil
- jars-fontbox
- jars-fop
- jars-freemarker
- jars-fscontext
- jars-geoip2
- jars-geronimo-jms_1.1_spec
- jars-geronimo-jpa_2.0_spec
- jars-geronimo-jta_1.1_spec
- jars-gson
- jars-gson-fire
- jars-guava
- jars-guice
- jars-guice-assistedinject
- jars-guice-jmx
- jars-guice-jndi
- jars-guice-multibindings
- jars-guice-servlet
- jars-guice-throwingproviders
- jars-hamcrest-all
- jars-http
- jars-httpclient
- jars-httpcore
- jars-icu4j
- jars-icu4j-charset
- jars-icu4j-localespi
- jars-j-interop
- jars-j-interopdeps
- jars-jaaslounge
- jars-jackson-annotations
- jars-jackson-core
- jars-jackson-coreutils
- jars-jackson-databind
- jars-jackson-dataformat-yaml
- jars-jakarta-oro
- jars-java-support
- jars-javahelp
- jars-javassist
- jars-javax.mail
- jars-javax.mail-api
- jars-jax-qname
- jars-jaxb-api
- jars-jaxb-impl
- jars-jaxb-libs
- jars-jaxb1-impl
- jars-jaxb2-activation
- jars-jaxb2-api
- jars-jaxb2-impl
- jars-jaxp-ri
- jars-jaxrpc-api
- jars-jaxrpc-impl
- jars-jaxrpc-spi
- jars-jaxws-api
- jars-jaxws-rt
- jars-jaxws-spring
- jars-jaxws-tools
- jars-jcifs
- jars-jcifs-krb
- jars-jcs
- jars-jdom2
- jars-jettison
- jars-jetty-continuation
- jars-jetty-http
- jars-jetty-io
- jars-jetty-security
- jars-jetty-server
- jars-jetty-util
- jars-jgraph
- jars-jgraph-addons
- jars-jide-common
- jars-jide-components
- jars-jide-dialogs
- jars-jide-grids
- jars-jline
- jars-joda-time
- jars-jsch
- jars-json-schema-core
- jars-json-schema-validator
- jars-jsr173_api
- jars-jsr181-api
- jars-jsr250-api
- jars-jta
- jars-jython
- jars-kafka-clients
- jars-libphonenumber
- jars-libthrift
- jars-log4j-api
- jars-log4j-core
- jars-log4j-jcl
- jars-log4j-slf4j2-impl
- jars-logging-interceptor
- jars-lucene-analyzers-common
- jars-lucene-backward-codecs
- jars-lucene-core
- jars-lucene-memory
- jars-lucene-queries
- jars-lucene-queryparser
- jars-lucene-sandbox
- jars-lz4
- jars-maxmind-db
- jars-mchange-commons-java
- jars-metrics-core
- jars-mimepull
- jars-msg-simple
- jars-namespace
- jars-neethi
- jars-nekohtml
- jars-ognl
- jars-okhttp-ibm-jsse
- jars-okio
- jars-opencsv
- jars-openid4java
- jars-openjpa
- jars-opensaml-core
- jars-opensaml-messaging-api
- jars-opensaml-messaging-impl
- jars-opensaml-profile-api
- jars-opensaml-profile-impl
- jars-opensaml-saml-api
- jars-opensaml-saml-impl
- jars-opensaml-security-api
- jars-opensaml-security-impl
- jars-opensaml-soap-api
- jars-opensaml-soap-impl
- jars-opensaml-storage-api
- jars-opensaml-xmlsec-api
- jars-opensaml-xmlsec-impl
- jars-org.apache.oltu.oauth2.client
- jars-oscache
- jars-osgi
- jars-poi
- jars-postgresql
- jars-proxool
- jars-quartz
- jars-quartz-jobs
- jars-radius3
- jars-re2j
- jars-relaxngDatatype
- jars-resolver
- jars-rhino
- jars-rome
- jars-rome-utils
- jars-saaj-api
- jars-saaj-impl
- jars-serializer
- jars-serp
- jars-servlets-cgi
- jars-slf4j-api
- jars-smtp
- jars-snappy-java
- jars-snmp4j
- jars-spring-aop
- jars-spring-aspects
- jars-spring-beans
- jars-spring-context
- jars-spring-context-support
- jars-spring-core
- jars-spring-expression
- jars-spring-jdbc
- jars-spring-tx
- jars-spring-web
- jars-sqlite-jdbc
- jars-stax-ex
- jars-stax2-api
- jars-stream
- jars-streambuffer
- jars-struts2-core
- jars-swagger-annotations
- jars-swt
- jars-swt-win32-native
- jars-tacclient
- jars-taglibs-standard-impl
- jars-taglibs-standard-spec
- jars-tar
- jars-threetenbp
- jars-trove
- jars-trove3
- jars-uri-template
- jars-velocity
- jars-vt-ldap
- jars-woodstox-core
- jars-wsdl4j
- jars-xalan
- jars-xbean-asm5-shaded
- jars-xercesImpl
- jars-xml-apis
- jars-xml-apis-ext
- jars-xml-resolver
- jars-xmlgraphics-commons
- jars-xmlschema-core
- jars-xmlsec
- jars-xsdlib
- jars-xstream
- jars-zstd-jni
- jitterentropy-rngd
- jq
- jre-font-fallback
- kmod-drbd84
- kmod-megaraid_sas
- kmod-napatech3
- kmod-pf_ring
- libnapatech3
- libraqm
- libsodium
- libwebp7
- libxmlwrapp
- libzip-last
- libzip5
- libzstd
- lnvgy-utl-release-rhel
- lnvgy_utl_asu
- logaggr
- logrotate-qconf
- masterdaemon
- misc_utilities
- mlnx-en-utils
- mlnx-tools
- mlocate-qconf
- napatech3-base
- napatech3-firmware-pack
- oniguruma
- openssh-qconf
- openvpn
- oracle-instantclient11.2-basic
- pcidashboards
- perccli
- performance_monitor
- perl-Apache-Htpasswd
- perl-Class-ErrorHandler
- perl-Class-Gomor
- perl-Class-Loader
- perl-Convert-ASCII-Armour
- perl-Convert-BinHex
- perl-Convert-PEM
- perl-Crypt-Blowfish
- perl-Crypt-Curve25519
- perl-Crypt-DES
- perl-Crypt-DES_EDE3
- perl-Crypt-DH
- perl-Crypt-DSA
- perl-Crypt-Ed25519
- perl-Crypt-IDEA
- perl-Crypt-OpenSSL-AES
- perl-Crypt-Primes
- perl-Crypt-RSA
- perl-Crypt-Random
- perl-CryptX
- perl-DBD-Sybase
- perl-Data-Buffer
- perl-Digest-BubbleBabble
- perl-Digest-MD2
- perl-Email-Date-Format
- perl-Expect
- perl-File-Iterator
- perl-IO-Interface
- perl-IO-SessionData
- perl-IO-Socket-Socks
- perl-IO-Stty
- perl-JSON-XS
- perl-MIME-Lite
- perl-MIME-Types
- perl-MIME-tools
- perl-Math-Base85
- perl-Math-BigInt-GMP
- perl-Math-GMP
- perl-Math-Pari
- perl-Net-CIDR-Lite
- perl-Net-CIDR-Set
- perl-Net-Finger
- perl-Net-Frame
- perl-Net-INET6Glue
- perl-Net-IP
- perl-Net-IPv4Addr
- perl-Net-IPv6Addr
- perl-Net-Netmask
- perl-Net-SNMP
- perl-Net-SSH-Expect
- perl-Net-SSH-Perl
- perl-Net-TFTP
- perl-Net-Traceroute
- perl-SOAP-Lite
- perl-Term-ShellUI
- perl-Term-VT102
- perl-Text-CSV
- perl-Tie-EncryptedHash
- perl-Types-Serialiser
- perl-XML-SAX-Expat
- perl-XML-SemanticDiff
- perl-ZipTie-Client
- perl-common-sense
- pf_ring
- pg_top_11
- php81
- php81-php
- php81-php-cli
- php81-php-common
- php81-php-fpm
- php81-php-gd
- php81-php-ldap
- php81-php-pdo
- php81-php-pear
- php81-php-pecl-zip
- php81-php-pgsql
- php81-php-process
- php81-php-sodium
- php81-php-xml
- php81-php-zstd
- php81-runtime
- pkcs11-helper
- postgresql11
- postgresql11-contrib
- postgresql11-libs
- postgresql11-server
- python-ipaddress
- python-kitchen-qconf
- python3-psycopg2
- python3-urwid
- python36-asn1crypto
- python36-bsddb3
- python36-cffi
- python36-chardet
- python36-cryptography
- python36-future
- python36-idna
- python36-lxml
- python36-ply
- python36-pycparser
- python36-pysocks
- python36-requests
- python36-six
- python36-urllib3
- q1labs-storetmp
- q1labs_ale_remote_management
- q1labs_application
- q1labs_ariel
- q1labs_assetprofile
- q1labs_configservices_common
- q1labs_configservices_proper
- q1labs_console
- q1labs_content_management
- q1labs_core
- q1labs_core_vis_snmp
- q1labs_cre
- q1labs_cve
- q1labs_dal
- q1labs_data_ingestion
- q1labs_ec
- q1labs_ecingress
- q1labs_ep
- q1labs_eula
- q1labs_forensics
- q1labs_frameworks
- q1labs_hc
- q1labs_hostcontext
- q1labs_jstl
- q1labs_jstl_annotations
- q1labs_masterdaemon
- q1labs_mpc
- q1labs_oemmerger
- q1labs_proxy_api
- q1labs_proxy_internal
- q1labs_qinfo
- q1labs_qradarapi_common
- q1labs_qradarapi_v100
- q1labs_qradarapi_v101
- q1labs_qrmreporting
- q1labs_qvmadaptor
- q1labs_qvmappscan
- q1labs_qvmassetupdates
- q1labs_qvmconsole
- q1labs_qvmiemclient
- q1labs_qvmvaultservice
- q1labs_qvmworkflow
- q1labs_reporting
- q1labs_restapi_qradar_plugins
- q1labs_rightclickplugin
- q1labs_security_model_plugins
- q1labs_sem
- q1labs_sem_device_extensions
- q1labs_sem_device_statistics
- q1labs_sem_dsm
- q1labs_semsources_protocol_base
- q1labs_simulator
- q1labs_simulator_api
- q1labs_simulator_webapp
- q1labs_srmconsole
- q1labs_srmconsole_api
- q1labs_srmconsole_util
- q1labs_system_api
- q1labs_system_dao
- q1labs_uiframeworks
- q1labs_utils_qidmap_importer
- q1labs_vis
- q1labs_vis_osvdb
- q1labs_vis_qvdb_importer
- q1labs_ziptie_logging
- qappframework
- qbase
- qconsole
- qcore
- qdebug-tools
- qflow
- qgpg13
- qhelpfiles
- qiso27001
- qjars
- qlibs
- qlocalization
- qperl
- qpython
- qradar-graphql
- qradar-ui
- qradar_61904_identity_minint_exclusion
- qradar_84679_asset_growth_searches
- qradar_baseline_content
- qradar_ucapl_content
- qradar_uis
- qradar_visHostDiscoveryRules
- qreferencedata
- qrm_risk_manager
- qrm_risk_manager_database
- qrm_risk_manager_plugin
- qrm_risk_manager_tomcat
- qsetup
- qtuning
- query_builder
- query_services
- qupgrade
- qutils
- qvm
- qvm-adaptor
- qvm-assetupdates
- qvm-cis-reports
- qvm-db
- qvm-iemclient
- qvm-jars
- qvm-mslagent
- qvm-mslagent-app
- qvm-perl-FusionVM-scanner
- qvm-reports
- qvm-reports2
- qvm-scan-tools
- qvm-spring-jars
- qvm-ui
- qvm-workflow
- qvmwarecontent
- qwww
- qxforcerules
- referencedata
- restapi
- restapi-brand-qradar
- restapi-qradar-plugins
- scaserver
- security_model_siem
- sem
- si-accumulator
- si-accumulator_rollup
- si-arc_builder
- si-ariel
- si-ariel_proxy_server
- si-ariel_query_server
- si-assetprofiler
- si-boot-tasks
- si-certs
- si-core
- si-datanode
- si-db
- si-disaster_recovery_services
- si-docker
- si-ecosystem
- si-eula
- si-filesystem
- si-firewall
- si-ha
- si-historical_correlation_server
- si-hostservices
- si-ibm-jdk-virtual
- si-java
- si-offboard_storage
- si-offline_forwarder
- si-postfix
- si-postfix-ui
- si-qflow
- si-qinit
- si-qradarca
- si-qvm-admin
- si-qvm-db-utilities
- si-qvm-filesystem
- si-qvm-perl
- si-qvm-perl-base
- si-react
- si-reporting_executor
- si-risk_application_base
- si-risk_database_base
- si-risk_httpd
- si-risk_tomcat_base
- si-saas
- si-snmpd
- si-stig
- si-syslog
- si-systemd
- si-timeserver
- si-tomcat
- si-tunnels
- si-voltran
- si-workload-api-client-jar
- siemctl
- sisetup
- skipfish
- solr
- storcli
- sudoers-qconf
- supportability-data
- supportability-tools
- swid
- syslog-ng
- tlsdate
- traefik
- tunnel_manager
- uiframeworks
- vis
- vmwarebb
- wkhtmltox
- worldtype-japanese-fonts
- worldtype-simplified-chinese-extension-b-fonts
- worldtype-southeast-asia-fonts
- xforcesdkrules
- yara-python
- ziptie-bundle
- ziptie-server
Key: 13f0791ae5f19f50e7d0d606fb6501f91b1efb2c
----------------------------------------
Risk Factor: high
Title: Leapp detected loaded kernel drivers which are no longer maintained in RHEL
8.
Summary: The following RHEL 7 device drivers are no longer maintained RHEL 8:
- e1000
- mptspi
- mptbase
- mptspi
- mptscsih
- e1000

Key: 0ff2413fd3cb0358736bf9be597f4dbdf58f2c4d
----------------------------------------
Risk Factor: high
Title: GRUB core will be updated during upgrade
Summary: On legacy (BIOS) systems, GRUB core (located in the gap between the MBR
and the first partition) does not get automatically updated when GRUB is upgraded.
Key: baa75fad370c42fd037481909201cde9495dacf4
----------------------------------------
Risk Factor: medium
Title: Module pam_pkcs11 will be removed from PAM configuration
Summary: Module pam_pkcs11 was surpassed by SSSD and therefore it was removed from
RHEL-8. Keeping it in PAM configuration may lock out the system thus it will be
automatically removed from PAM configuration before upgrading to RHEL-8. Please
switch to SSSD to recover the functionality of pam_pkcs11.
Remediation: [hint] Configure SSSD to replace pam_pkcs11
Key: bf47e7305d6805e8bbeaa7593cf01e38030c23f3
----------------------------------------
Risk Factor: low
Title: Grep has incompatible changes in the next major version
Summary: If a file contains data improperly encoded for the current locale, and
this is discovered before any of the file's contents are output, grep now treats
the file as binary.
The 'grep -P' no longer reports an error and exits when given invalid UTF-8 data.
Instead, it considers the data to be non-matching.
In locales with multibyte character encodings other than UTF-8, grep -P now reports
an error and exits instead of misbehaving.
When searching binary data, grep now may treat non-text bytes as line terminators.
This can boost performance significantly.
The 'grep -z' no longer automatically treats the byte '\200' as binary data.
Context no longer excludes selected lines omitted because of -m. For example, 'grep
"^" -m1 -A1' now outputs the first two input lines, not just the first line.

Remediation: [hint] Please update your scripts to be compatible with the changes.
Key: 94665a499e2eeee35eca3e7093a7abe183384b16
----------------------------------------
Risk Factor: low
Title: Postfix has incompatible changes in the next major version
Summary: Postfix 3.x has so called "compatibility safety net" that runs Postfix
programs with backwards-compatible default settings. It will log a warning whenever
backwards-compatible default setting may be required for continuity of service.
Based on this logging the system administrator can decide if any backwards-
compatible settings need to be made permanent in main.cf or master.cf, before
turning off the backwards-compatibility safety net.
The backward compatibility safety net is by default turned off in Red Hat
Enterprise Linux 8.
It can be turned on by running: "postconf -e compatibility_level=0
It can be turned off by running: "postconf -e compatibility_level=2

In the Postfix MySQL database client, the default "option_group" value has changed
to "client", i.e. it now reads options from the [client] group from the MySQL
configuration file. To disable it, set "option_group" to the empty string.

The postqueue command no longer forces all message arrival times to be reported in
UTC. To get the old behavior, set TZ=UTC in main.cf:import_environment.

Postfix 3.2 enables elliptic curve negotiation. This changes the default
smtpd_tls_eecdh_grade setting to "auto", and introduces a new parameter
"tls_eecdh_auto_curves" with the names of curves that may be negotiated.

The "master.cf" chroot default value has changed from "y" (yes) to "n" (no). This
applies to master.cf services where chroot field is not explicitly specified.

The "append_dot_mydomain" default value has changed from "yes" to "no". You may
need changing it to "yes" if senders cannot use complete domain names in e-mail
addresses.

The "relay_domains" default value has changed from "$mydestination" to the empty
value. This could result in unexpected "Relay access denied" errors or ETRN errors,
because now will postfix by default relay only for the localhost.

The "mynetworks_style" default value has changed from "subnet" to "host". This
parameter is used to implement the "permit_mynetworks" feature. The change could
result in unexpected "access denied" errors, because postfix will now by default
trust only the local machine, not the remote SMTP clients on the same IP
subnetwork.

Postfix now supports dynamically loaded database plugins. Plugins are shipped in
individual RPM sub-packages. Correct database plugins have to be installed,
otherwise the specific database client will not work. For example for PostgreSQL
map to work, the postfix-pgsql RPM package has to be installed.

Key: 5721e0a07a67d82cf7e5ea6f17662cd4f82e0a33
----------------------------------------
Risk Factor: low
Title: OpenSSH configured with removed configuration Protocol
Summary: OpenSSH is configured with removed configuration option Protocol. If this
used to be for enabling SSHv1, this is no longer supported in RHEL 8. Otherwise
this option can be simply removed.
Key: 5744a935aab15fe2386ea52849d21edd6525e4d7
----------------------------------------
Risk Factor: low
Title: chrony using non-default configuration
Summary: chrony behavior will not change in RHEL8
Key: 9acbfcce3d310a70b602c7ab0a9c2cb94eb6b63f
----------------------------------------
Risk Factor: info
Title: Excluded target system repositories
Summary: The following repositories are not supported by Red Hat and are excluded
from the list of repositories used during the upgrade.
- codeready-builder-beta-for-rhel-8-s390x-rpms
- rhui-codeready-builder-for-rhel-8-x86_64-rhui-rpms
- codeready-builder-for-rhel-8-aarch64-eus-rpms
- codeready-builder-for-rhel-8-ppc64le-eus-rpms
- codeready-builder-beta-for-rhel-8-x86_64-rpms
- codeready-builder-for-rhel-8-aarch64-rpms
- codeready-builder-for-rhel-8-s390x-rpms
- codeready-builder-for-rhel-8-s390x-eus-rpms
- codeready-builder-for-rhel-8-x86_64-eus-rpms
- codeready-builder-beta-for-rhel-8-aarch64-rpms
- codeready-builder-for-rhel-8-rhui-rpms
- codeready-builder-beta-for-rhel-8-ppc64le-rpms
- codeready-builder-for-rhel-8-x86_64-rpms
- codeready-builder-for-rhel-8-x86_64-eus-rhui-rpms
- codeready-builder-for-rhel-8-ppc64le-rpms
Remediation: [hint] If some of excluded repositories are still required to be used
during the upgrade, execute leapp with the --enablerepo option with the repoid of
the repository required to be enabled as an argument (the option can be used
multiple times).
Key: 1b9132cb2362ae7830e48eee7811be9527747de8
----------------------------------------
Risk Factor: info
Title: Current PAM and nsswitch.conf configuration will be kept.
Summary: There is a new tool called authselect in RHEL8 that replaced authconfig.
The upgrade process was unable to find an authselect profile that would be
equivalent to your current configuration. Therefore your configuration will be left
intact.
Key: 40c4ab1da4a30dc1ca40e543f6385e1336d8810c
----------------------------------------
Risk Factor: info
Title: SElinux disabled
Summary: SElinux disabled, continuing...
Key: 4f25fea9b15b9d1d07d52cc1de02073f295dac3d
----------------------------------------