openSUSE Factory
Threads by month
- ----- 2024 -----
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
March 2022
- 80 participants
- 81 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
PackageKit
checkpolicy (3.1 -> 3.2)
cppcheck (2.3 -> 2.4.1)
cups
e2fsprogs (1.46.1 -> 1.46.2)
elfutils
elfutils-debuginfod
emacs-w3m (1.4.632 -> 1.4.632+396+g051dba16)
enchant (2.2.8 -> 2.2.15)
evolution-data-server
evolution-ews
ffmpeg-4 (4.3.1 -> 4.3.2)
gnome-shell
java-11-openjdk
kernel-firmware (20210208 -> 20210315)
libnettle (3.7.1 -> 3.7.2)
libnice (0.1.17 -> 0.1.18)
libselinux (3.1 -> 3.2)
libselinux-bindings (3.1 -> 3.2)
libsemanage (3.1 -> 3.2)
libtpms (0.7.4 -> 0.7.7)
libvirt
links (2.21 -> 2.22)
man-pages (5.10 -> 5.11)
mc (4.8.25 -> 4.8.26)
openblas_pthreads (0.3.13 -> 0.3.14)
p7zip
perl-Net-HTTP (6.20 -> 6.21)
policycoreutils (3.1 -> 3.2)
python-semanage (3.1 -> 3.2)
redis
rng-tools (6.11 -> 6.12)
rubygem-bootsnap (1.7.2 -> 1.7.3)
rubygem-rspec-rails (5.0.0 -> 5.0.1)
setools (4.3.0 -> 4.4.0)
snapper (0.8.15 -> 0.8.16)
spirv-tools
taglib (1.11.2~git20190725.79bc9ccf -> 1.12)
thunar (4.16.5 -> 4.16.6)
=== Details ===
==== PackageKit ====
Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0
- Add PackageKit-remove-transaction-size-limit.patch: Remove large transaction
size sanity check (gh#hughsie/PackageKit/commit#ac5c8660)
==== checkpolicy ====
Version update (3.1 -> 3.2)
- Update to version 3.2
* Fix a memleak and an integer overflow
==== cppcheck ====
Version update (2.3 -> 2.4.1)
- update to 2.4.1:
* fix for windows installer, no other changes
- update to 2.4:
* Detect one definition rule violations
* MISRA improvements
* ImportProject fixes
* Various bug hunting improvements
* Fixes when importing AST from clang
==== cups ====
Subpackages: cups-client cups-config libcups2 libcups2-32bit libcupsimage2
- fix-negotiate-authentication-between-CGIs-and-scheduler.patch
fixes web UI Kerberos authentication (bsc#1175960)
- Remove code comments from expanded scriptlets to reduce size
==== e2fsprogs ====
Version update (1.46.1 -> 1.46.2)
Subpackages: e2fsprogs-scrub libcom_err2 libcom_err2-32bit libext2fs2
- e2fsprogs 1.46.2:
* tune2fs -c now takes "random" argument
* Add support for the FS_NOCOMP_FL flag to chattr and lsattr
* Fix warnings when resizing small file systems to a super-large
* Fix the debugfs rdump and ls commands so they will work correctly
for uid's and gid's => 65536
* Fix the debugfs write and symlink commands so they support
targets which contain a pathname
* Fix Direct I/O support on block devices where the logical block
size is greater 1k
* Fix debugfs's logdump so it works on file systems whose block
size is greater than 8k
* Fix a crash when there is error while e2fsck is trying to open
the file system, and e2fsck calls ext2fs_mmp_stop() before MMP
has been initialized
* Improved error checking in the fast commit replay code in e2fsck
* Fix various compiler and Coverity warnings
* Update the Spanish translation from the translation project
==== elfutils ====
Subpackages: elfutils-lang libasm1 libdw1 libelf1
- Add disable-run-readelf-self-test.patch in order to disable
a failing test-case with GCC 11 (PR27367).
==== elfutils-debuginfod ====
- Enable https://debuginfod.opensuse.org/ debuginfod server
by default now.
- Add disable-run-readelf-self-test.patch in order to disable
a failing test-case with GCC 11 (PR27367).
==== emacs-w3m ====
Version update (1.4.632 -> 1.4.632+396+g051dba16)
- Update to version 1.4.632+396+g051dba16:
* Don't show a backstage while performing `text-scale-adjust'
* Make text-scale-adjust work
* Fix it again
* shimbun.el (shimbun-xml-parse-buffer): Fix typo
* ChangeLog: fix date entries
* * shimbun.el (shimbun-xml-parse-buffer): Work around malformed xml
* Update copyright years
* Docfix so not to be wider than 80 chars
* Bugfix 'w3m-previous-image doesn't work' ([emacs-w3m:13747])
* Fix typo in ChangeLog
==== enchant ====
Version update (2.2.8 -> 2.2.15)
Subpackages: enchant-2-backend-hunspell enchant-data libenchant-2-2
- Update to version 2.2.15:
+ Specify that nuspell >= 4.1.0 is required.
+ Fix some space leaks in the tests.
+ The nuspell backend is updated for newer versions.
+ Make the enchant program output its version to standard output,
not standard error. This may help some programs that use this
output.
+ Fix a bug in the Voikko and Zemberek back-ends that could cause
spell checking and suggestion to fail.
+ Make enchant silently ignore -B flag, for better Emacs
compatibility.
+ Make enchant_broker_list_dicts sort the tags, so that
enchant-lsmod?s output is sorted.
+ Minor build system improvement: don?t use -D_FORTIFY_SOURCE,
which can cause problems on Windows, and should be configured
by the compiler vendor if desired.
+ Fix Hunspell backend to treat apostrophes as Hunspell does: if
either straight or curly apostrophe is a word character, allow
both.
+ Fix a couple of space leaks in the Nuspell back end.
- Drop Fix_back-ends_that_want_a_NUL-terminated_string.patch: fixed
upstream.
==== evolution-data-server ====
Subpackages: evolution-data-server-lang libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-25 libedataserverui-1_2-2
- Add evolution-data-server-boo1182882.patch: fix buffer overrun
when parsing base64 data (boo#1182882).
==== evolution-ews ====
Subpackages: evolution-ews-lang
- Add evolution-ews-boo1182882.patch: fix buffer overrun when
parsing base64 data (boo#1182882).
==== ffmpeg-4 ====
Version update (4.3.1 -> 4.3.2)
Subpackages: libavcodec58_91 libavdevice58_10 libavfilter7_85 libavformat58_45 libavresample4_0 libavutil56_51 libpostproc55_7 libswresample3_7 libswscale5_7
- update to 4.3.2:
* lots of oss-fuzz reported overflow fixes, see included ChangeLog
- drop
ffmpeg.git-ba3e771a42c29ee02c34e7769cfc1b2dbc5c760a.patch
0001-lavf-srt-fix-build-fail-when-used-the-libsrt-1.4.1.patch
0001-avformat-vividas-improve-extradata-packing-checks-in.patch: upstream
==== gnome-shell ====
Subpackages: gnome-shell-calendar gnome-shell-lang
- Disable
gnome-shell-jsc#SLE-16051-Input-method-recommendation.patch:
Clears existing keyboard on gnome-shell restart (boo#1183823).
- Update gnome-shell-jsc#SLE-16051-Input-method-recommendation.patch:
Modify the Japanese input engine load order which will more fit
for our community(bnc#1183475);
==== java-11-openjdk ====
Subpackages: java-11-openjdk-headless
- Added patches:
* system-crypto-policy.patch
+ Let OpenJDK use system crypto policies unless explicitely told
not to
* nss-security-provider.patch
+ Add the NSS security provider with configuration in generated
nss.cfg file
* keytool-default-rsa.patch
+ Make keytool generate RSA keys by default, since only the
LEGACY system crypto policy allows DSA
==== kernel-firmware ====
Version update (20210208 -> 20210315)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20210315 (git commit 3568f962908c):
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* rtw88: 8822c: Update normal firmware to v9.9.6
* iwlwifi: add new FWs from core59-66 release
* iwlwifi: update 9000-family firmwares
* iwlwifi: update 7265D firmware
* Mellanox: Add new mlxsw_spectrum firmware xx.2008.2406
* linux-firmware: add frimware for mediatek bluetooth chip (MT7921)
* rtw89: 8852a: add firmware v0.9.12.2
* WHENCE: add missing symlink for BananaPi M3
* Add symlink for BananaPi M2 to brcmfmac43430-sdio config
* brcm: Fix Raspberry Pi 4B NVRAM file
* silabs: add new firmware for WF200
* amdgpu: add initial firmware for green sardine
* rtw88: RTL8822C: Update normal firmware to v9.9.5
- Drop obsoleted patch:
Revert-brcm-rpi4-boardflags3-bit.patch
- Update topics and aliases
==== libnettle ====
Version update (3.7.1 -> 3.7.2)
Subpackages: libhogweed6 libhogweed6-32bit libnettle8 libnettle8-32bit
- GNU Nettle 3.7.2:
* fix a bug in ECDSA signature verification that could lead to a
denial of service attack (via an assertion failure) or possibly
incorrect results (boo#1183835)
* fix a few related problems where scalars are required to be
canonically reduced modulo the ECC group order, but in fact may
be slightly larger
==== libnice ====
Version update (0.1.17 -> 0.1.18)
Subpackages: gstreamer-libnice libnice10
- Update descriptions to be closer to the other GNOME packages.
- Update to 0.1.18:
* Remove the autotools build system, now only meson is available
* Accept receiving messages in multiple steps over TCP
* Accept duplicated ports as last option instead of spinning forever
* Use sendmmsg if possible to send multiple packets in one call
* Fail gathering if no port is available
* Hide the implementation of NiceCandidate, this hides some parts
that were previously visible
* Enable TURN server connects where both TCP and UDP use the same
port number
* Don't count rejected STUN messages as keepalive packets
* On Windows, the improvements and fixes
- use crypto library instead of CryptGenRandom() which
is deprecated
- use GetBestInterfaceEx() for UWP compatibility
- fix the listing of interfaces to use the correct APIs
- implement ignoring interfaces
* Add buildrquires: gobject-introspection-devel and meson
* The move from autoFOO to meson
==== libselinux ====
Version update (3.1 -> 3.2)
Subpackages: libselinux1 libselinux1-32bit selinux-tools
- Switch to pcre2:
+ Replace pcre-devel BuildRequires with pkgconfig(libpcre2-8)
+ Pass USE_PCRE2=y to make.
+ Replace pkgconfig(libpcre) Requires in -devel static with
pkgconfig(libpcre2-8).
- Update to version 3.2:
* Use mmap()'ed kernel status page instead of netlink by default.
See "KERNEL STATUS PAGE" section in avc_init(3) for more details.
* New log callback levels for enforcing and policy load notices -
SELINUX_POLICYLOAD, SELINUX_SETENFORCE
* Changed userspace AVC setenforce and policy load messages to audit
format.
==== libselinux-bindings ====
Version update (3.1 -> 3.2)
- Switch to pcre2:
+ Replace pcre-devel BuildRequires with pkgconfig(libpcre2-8)
+ Pass USE_PCRE2=y to make.
- Update to version 3.2:
* Use mmap()'ed kernel status page instead of netlink by default.
See "KERNEL STATUS PAGE" section in avc_init(3) for more details.
* New log callback levels for enforcing and policy load notices -
SELINUX_POLICYLOAD, SELINUX_SETENFORCE
* Changed userspace AVC setenforce and policy load messages to audit
format.
==== libsemanage ====
Version update (3.1 -> 3.2)
- Link to correct so version
- Minor spec file cleanups
- Move configuration file to separate libsemanage-conf package to allow
for parallel installation in future versions
- Update to version 3.2
* dropped old and deprecated symbols and functions
libsemanage version was bumped to libsemanage.so.2
* libsemanage tries to sync data to prevent empty files in SELinux module
store
==== libtpms ====
Version update (0.7.4 -> 0.7.7)
- Update to version 0.7.7
* CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
* tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
* tpm2: Address some Coverity issues (false positives)
* tpm1.2: Backported ASAN/UBSAN related fixes
* tpm2: Return properly sized array for b parameter for NIST P521
(HLK)
* tpm2: Addressed issues detected by UBSAN
* tpm2: Addressed issues detected by cppcheck (false positives)
==== libvirt ====
Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs
- spec: Fix exec-restart of virtlockd and virtlogd on package upgrade
bsc#1183411
- spec: Move netcat-openbsd requirement from the libs to the daemon
subpackage. It is only needed by the daemon and introduces an
unneeded dependency for users of libvirt-libs.
==== links ====
Version update (2.21 -> 2.22)
- update to 2.22:
* Save and restore the terminal using xterm escape codes
* Save and restore the console using "cons.saver" from
Midnight Commander
* Support UTF-8 frames
* Fixed a bug in displaying non-printable characters
==== man-pages ====
Version update (5.10 -> 5.11)
- version update to 5.11
http://linux-man-pages.blogspot.com/2021/03/man-pages-511-is-released.html
- modified patches
% man-pages-tty_ioctl.patch (refreshed)
==== mc ====
Version update (4.8.25 -> 4.8.26)
Subpackages: mc-lang
- Midnight Commander 4.8.26:
* Support file names of any length
* Implement persistent command line buffer for subshell
(bash >= 4, zsh and fish are supported)
* Implement shadows of dialog windows and menus
* Allow running clipboard commands if DISPLAY is not set
* Add support of "alacritty", "tmux", and "tmux-256color" terminals
* VFS: Support wim archive format (using wimtools)
* VFS: Support pak archive format (using unar)
* Editor: Add Swift syntax highlighting
* Various bug fixes
==== openblas_pthreads ====
Version update (0.3.13 -> 0.3.14)
- Update openblas-ppc64be_up2_p8.patch trimed by previous sr
(still need changes in Makefile.system)
- Update to version 0.3.14
common:
* Fixed a race condition on thread shutdown in non-OpenMP builds
* Fixed custom BUFFERSIZE option getting ignored in gmake builds
* Fixed CMAKE compilation of the TRMM kernels for GENERIC platforms
* Added CBLAS interfaces for CROTG, ZROTG, CSROT and ZDROT
* Improved performance of OMATCOPY_RT across all platforms
* Changed perl scripts to use env instead of a hardcoded /usr/bin/perl
* Fixed potential misreading of the GCC compiler version in the build scripts
* Fixed convergence problems in LAPACK complex GGEV/GGES (Reference-LAPACK #477)
* Reduced the stacksize requirements for running the LAPACK testsuite (Reference-LAPACK #335)
RISC V:
* Fixed compilation on RISCV (missing entry in getarch)
POWER:
* Fixed compilation for DYNAMIC_ARCH with clang and with older gcc versions
* Added support for compilation on FreeBSD/ppc64le
* Added optimized POWER10 kernels for SSCAL, DSCAL, CSCAL, ZSCAL
* Added optimized POWER10 kernels for SROT, DROT, CDOT, SASUM, DASUM
* Improved SSWAP, DSWAP, CSWAP, ZSWAP performance on POWER10
* Improved SCOPY and CCOPY performance on POWER10
* Improved SGEMM and DGEMM performance on POWER10
* Added support for compilation with the NVIDIA HPC compiler
x86_64:
* Added an optimized bfloat16 GEMM kernel for Cooperlake
* Added CPUID autodetection for Intel Rocket Lake and Tiger Lake cpus
* Improved the performance of SASUM,DASUM,SROT,DROT on AMD Ryzen cpus
* Added support for compilation with the NAG Fortran compiler
* Fixed recognition of the AMD AOCC compiler
* Fixed compilation for DYNAMIC_ARCH with clang on Windows
* Added support for running the BLAS/CBLAS tests on Windows
* Fixed signatures of the tls callback functions for Windows x64
* Fixed various issues with fma intrinsics support handling
ARM:
* Support compilation for embedded Cortex M4 targets via a new option EMBEDDED
ARM64:
* Fixed the THUNDERX2T99 and NEOVERSEN1 DNRM2/ZNRM2 kernels for inputs with Inf
* Added support for the DYNAMIC_LIST option
* Added support for compilation with the NVIDIA HPC compiler
* Added support for compiling with the NAG Fortran compiler
- Remove 0001-Require-gcc-11-for-builtin_cpu_is-power10.patch
0002-patch-to-support-power10-in-builtin_cpu_is-was-backp.patch
Upstream fixed in a different way.
==== p7zip ====
Subpackages: p7zip-full
- Add patch from Debian to fix build with GCC 11 (boo#1181880)
* 0001-Fix-g-warning.patch
==== perl-Net-HTTP ====
Version update (6.20 -> 6.21)
- updated to 6.21
see /usr/share/doc/packages/perl-Net-HTTP/Changes
6.21 2021-03-18 21:56:42Z
- Accept PeerAddr of 0. (GH#72) (trwyant)
==== policycoreutils ====
Version update (3.1 -> 3.2)
Subpackages: policycoreutils-lang python3-policycoreutils
- Update to version 3.2
* Tools using sepolgen, e.g. audit2allow, print extended permissions in
hexadecimal
* sepolgen sorts extended rules like normal ones
* `setfiles` doesn't abort on labeling errors
- Refreshed get_os_version.patch
==== python-semanage ====
Version update (3.1 -> 3.2)
- Minor spec file cleanups
- Update to version 3.2
* dropped old and deprecated symbols and functions
libsemanage version was bumped to libsemanage.so.2
* libsemanage tries to sync data to prevent empty files in SELinux module
store
==== redis ====
- replaced /var/run with /run for all PID file paths
==== rng-tools ====
Version update (6.11 -> 6.12)
- update to 6.12:
* Fix compiler warning over log message format
* Fix some typos in force-reseed documentation in rngd man page
* Improve --list option so that we properly capture entropy sources
that are available and configured on at build time, but failed
initalization at run time (due to lack of hw, or some other error, etc)
* Drop the use of libsysfs - we only used it to access a single file,
and we can do so with a simple open/read/close.
Given the lack of maintenance of libsysfs, we can save lots of
effort by dropping this lib
==== rubygem-bootsnap ====
Version update (1.7.2 -> 1.7.3)
Subpackages: ruby2.7-rubygem-bootsnap ruby3.0-rubygem-bootsnap
- updated to version 1.7.3
* Disable YAML precompilation when encountering YAML tags. (#351)
==== rubygem-rspec-rails ====
Version update (5.0.0 -> 5.0.1)
- updated to version 5.0.1
[Full Changelog](https://github.com/rspec/rspec-rails/compare/v5.0.0...v5.0.1)
Bug Fixes:
* Limit multibyte example descriptions when used in system tests for #method_name
which ends up as screenshot names etc. (@y-yagi, #2405, #2487)
==== setools ====
Version update (4.3.0 -> 4.4.0)
- Update to the version 4.4.0:
* Added support for old Boolean name substitution in seinfo and sesearch.
* Added sechecker tool which is a configuration file driven analysis tool.
==== snapper ====
Version update (0.8.15 -> 0.8.16)
Subpackages: libsnapper5 snapper-zypp-plugin
- fixed creating root config (root prefix handling)
(gh#openSUSE/snapper#627)
==== spirv-tools ====
- Add -Wno-error
==== taglib ====
Version update (1.11.2~git20190725.79bc9ccf -> 1.12)
Subpackages: libtag1 libtag_c0
- Add missing zlib dependency in devel package
- reference download url of tarball
- Update to version 1.12:
* Added support for WinRT.
* Added support for Linux on POWER.
* Added support for classical music tags of iTunes 12.5.
* Added support for file descriptor to FileStream.
* Added support for 'cmID', 'purl', 'egid' MP4 atoms.
* Added support for 'GRP1' ID3v2 frame.
* Added support for extensible WAV subformat.
* Enabled FileRef to detect file types based on the stream content.
* Dropped support for Windows 9x and NT 4.0 or older.
* Check for mandatory header objects in ASF files.
* More tolerant handling of RIFF padding, WAV files, broken MPEG streams.
* Improved calculation of Ogg, Opus, Speex, WAV, MP4 bitrates.
* Improved Windows compatibility by storing FLAC picture after comments.
* Fixed numerical genres in ID3v2.3.0 'TCON' frames.
* Fixed consistency of API removing MP4 items when empty values are set.
* Fixed consistency of API preferring COMM frames with no description.
* Fixed OOB read on invalid Ogg FLAC files (CVE-2018-11439).
* Fixed handling of empty MPEG files.
* Fixed parsing MP4 mdhd timescale.
* Fixed reading MP4 atoms with zero length.
* Fixed reading FLAC files with zero-sized seektables.
* Fixed handling of lowercase field names in Vorbis Comments.
* Fixed handling of 'rate' atoms in MP4 files.
* Fixed handling of invalid UTF-8 sequences.
* Fixed possible file corruptions when saving Ogg files.
* Fixed handling of non-audio blocks, sampling rates, DSD audio in WavPack files.
* TableOfContentsFrame::toString() improved.
* UserTextIdentificationFrame::toString() improved.
* Marked FileRef::create() deprecated.
* Marked MPEG::File::save() with boolean parameters deprecated,
provide overloads with enum parameters.
* Several smaller bug fixes and performance improvements.
- Remove obsolete patches:
* taglib-versionbump.patch
* 0001-Changed-libdir-includedir-variables-to-change-based-.patch
==== thunar ====
Version update (4.16.5 -> 4.16.6)
Subpackages: libthunarx-3-0 thunar-lang
- Update to version 4.16.6
* Reload current directory before selecting new files
(gxo#xfce/thunar#524)
* tree-view: Hide menu-item "properties" for unmounted devices
* Removed 'the root folder has no parent' dialog box
* Revamp documentation to modernize/uniformize accross components
* Remove watches on shortcuts (gxo#xfce/thunar#513,
gxo#xfce/thunar#47)
* Translation Updates
7
9
19 Mar '22
In case the technology stack of the replacement service hasn't already been selected, I think Drupal <https://drupal.org/> could be a good choice.
It is a solid open source CMS and framework that offers, out of the box, a special focus on security, accessibility, i18n and a REST API.
I'm sorry if this is not the correct channel to suggest this though 🙂
1
0
Dear Tumbleweed users and hackers,
Another week filled with 7 snapshots, and this despite of one snapshot
being discarded. We have published 0310, 0311, 0312, 0313, 0314, 0316,
and 0317 (0315 was skipped due to some elevated risk of braking systems
with a dracut update; maintainers are looking into this)
The 7 published snapshots contained these changes:
* dbus 1.14.0
* KDE Plasma 5.24.3
* KDE Frameworks 5.92.0
* Mozilla Firefox 98.0 & Thunderbird 91.7.0
* cURL 7.82.0
* Linux kernel 5.16.14
* Pipewire 0.3.48
* util-linux 2.37.4
* Mesa 22.0
* Node.JS 17.7.1
* SQLite 3.38.1
* openSSL 1.1.1n
As you can see, a lot of things are happening – and changes keep on
coming. Currently, we have these items in Staging projects being
tested:
* systemd 250.4: staging is finishing the QA, should happen rather
soon
* Linux kernel 5.16.15
* Kubernetes 1.23.4 & 1.22.7
* NetworkManager 1.36.2
* Podman 4.0.2
Let’s see what else is being thrown at staging over the next few days –
some things can pass rather quickly
Cheers,
Dominique
1
0
I found in my pc an outgoing and constant traffic of about 180
kbits/sec and a cpu usagge of about 4.9% for pulseaudio when I execute
top in konsole, before starting any application in KDE:
With "netstat -anp" I got:
udp 0 0 192.168.1.3:58978 224.0.0.56:46058
ESTABLISHED 6338/pulseaudio
udp 0 0 224.0.0.56:9875 0.0.0.0:*
6338/pulseaudio
udp 0 0 192.168.1.3:51941 224.0.0.56:9875
ESTABLISHED 6338/pulseaudio
With Wireshark obtained a similar result:
No. Time Source Destination Protocol Length Info
1 0.000000000 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
2 0.007332847 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
3 0.014873637 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
4 0.022377510 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
5 0.026154002 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
6 0.033521088 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
7 0.040643769 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
8 0.048071838 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
9 0.055113545 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
10 0.062537718 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
11 0.069951504 192.168.1.5 224.0.0.56 UDP 1334 35637 → 46622 Len=1292
I find that could disable this traffic with the command as user:
pactl unload-module module-rtp-send
After executing this command, pulseaudio does not appear anymore in
the top window.
But I must do this anytime I switch off and on my pc.
In which configuration file can I disable the loading of this pulseaudio module
module-rtp-send?
Thanks,
Juan
--
USA LINUX OPENSUSE QUE ES SOFTWARE LIBRE, NO NECESITAS PIRATEAR NADA Y
NI TE VAS A PREOCUPAR MAS POR LOS VIRUS Y SPYWARES:
http://www.opensuse.org/es/
Puedes visitar mi blog en:
http://jerbes.blogspot.com.ar/
2
3
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
binutils
fdupes
iproute2
ncurses (6.3.20220226 -> 6.3.20220312)
openssl (1.1.1m -> 1.1.1n)
openssl-1_1 (1.1.1m -> 1.1.1n)
python-Beaker
python-more-itertools
python-py
rpm
rubygem-formatador (0.3.0 -> 1.1.0)
zlib-ng-compat (2.0.5 -> 2.0.6)
=== Details ===
==== binutils ====
Subpackages: libctf-nobfd0 libctf0
- Update binutils-skip-rpaths.patch: add back fix for boo#1191473,
which got lost in the update to 2.38.
==== fdupes ====
- A more correct approach to creating symlinks (old bug actually):
Do not link the files as given by fdupes, but turn them into
relative links (it works by chance if given a buildroot, but
fails if running on a subdirectory)
- Support multiple directories given (as glob to the macro)
- Handle symlinks (-s argument) correctly
- Simplify macros.fdupes with a call to a C++ program that does
the same within a fraction of a second what the shell loop did
in many seconds (bsc#1195709)
==== iproute2 ====
- Add eBPF(libbpf) support
- Adjust NETNS_RUN_DIR from /var/run to /run
==== ncurses ====
Version update (6.3.20220226 -> 6.3.20220312)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20220312
+ add xterm+acs building-block -TD
+ add xterm-p370, for use in older terminals -TD
+ add dec+sl to xterm-new, per patch #371 -TD
+ add mosh and mosh-256color -TD
- Correct offsets of patches
* ncurses-5.9-ibm327x.dif
* ncurses-6.3.dif
- Add ncurses patch 20220305
+ replace obsolescent "-gnatg" option with "-gnatwa" and "-gnatyg", to
work around build problems with gnat 12.
+ update external links in Ada95.html
+ trim unused return-value from canonical_name().
==== openssl ====
Version update (1.1.1m -> 1.1.1n)
- Update to 1.1.1n release
==== openssl-1_1 ====
Version update (1.1.1m -> 1.1.1n)
Subpackages: libopenssl1_1 libopenssl1_1-32bit libopenssl1_1-hmac
- Update to 1.1.1n: [bsc#1196877, CVE-2022-0778]
* Security fix [CVE-2022-0778]: Infinite loop for non-prime moduli
in BN_mod_sqrt() reachable when parsing certificates.
* Add ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK
(RFC 5489) to the list of ciphersuites providing Perfect Forward
Secrecy as required by SECLEVEL >= 3.
* Rebase openssl-1.1.1-fips.patch openssl-1.1.1-evp-kdf.patch
==== python-Beaker ====
- python-mock is actually not required for build
==== python-more-itertools ====
- use python_expand for fdupes
==== python-py ====
- use %python_expand for %fdupes
==== rpm ====
Subpackages: librpmbuild9
- drop rpm-deptracking.patch, this is already upstream and
we were just adding it twice
- use fileprovide /usr/bin/gzip for "rpm-build" to make alternative
providers possible
- add leave-malloc-check-set.diff to actually use MALLOC_CHECK_ during
build
==== rubygem-formatador ====
Version update (0.3.0 -> 1.1.0)
updated to version 1.1.0
see installed changelog.txt
v1.0.0 01/20/21
===============
release v1, it's been stable for ages
==== zlib-ng-compat ====
Version update (2.0.5 -> 2.0.6)
- Update to 2.0.6:
* Fix hangs on macOS #1031
* Fix minideflate write buffers being overwritten #1060
* Fix deflateBound and compressBound returning too small size estimates #1049 #1071
* Fix incorrect function declaration warning #1080
* Fix build problems when building outside of source dir #1049
* Fix build problems on arm2-7 #1030
* Fixed some compile warnings #1020 #1036 #1037 #1048
* Improved posix memalign support #888
* Improvements to testing #637 #1026 #1032 #1035 #1049 #1051 #1056 #1063 #1067
* Improvements for integration into other projects #1022 #1042
* Code style fixes #637 #1040 #1050 #1075
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.0.26 -> 7.1.0.27)
Mesa (21.3.7 -> 22.0.0)
Mesa-drivers (21.3.7 -> 22.0.0)
NetworkManager-openconnect (1.2.6 -> 1.2.8)
NetworkManager-openvpn (1.8.16 -> 1.8.18)
alpine (2.25 -> 2.25.1)
apache2 (2.4.52 -> 2.4.53)
apache2-manual (2.4.52 -> 2.4.53)
apache2-prefork (2.4.52 -> 2.4.53)
apache2-utils (2.4.52 -> 2.4.53)
appstream-glib (0.7.18+30 -> 0.7.18+31)
at
bluez (5.62 -> 5.63)
boost-base
boost-extra
dbus-1
ffmpeg-4
glib2-branding-openSUSE
grub2
guile
harfbuzz (4.0.0 -> 4.0.1)
kernel-firmware (20220224 -> 20220309)
kfilemetadata5
libHX (4.2 -> 4.4)
libreoffice (7.3.1.3 -> 7.3.2.1)
librsvg (2.52.6 -> 2.52.7)
libsolv (0.7.20 -> 0.7.21)
libuv (1.43.0 -> 1.44.1)
libyui (4.3.2 -> 4.3.3)
libyui-ncurses (4.3.2 -> 4.3.3)
libyui-ncurses-pkg (4.3.2 -> 4.3.3)
libyui-qt (4.3.2 -> 4.3.3)
libyui-qt-graph (4.3.2 -> 4.3.3)
libyui-qt-pkg (4.3.2 -> 4.3.3)
libzypp (17.29.5 -> 17.29.6)
nodejs17 (17.7.0 -> 17.7.1)
openSUSE-xfce-icon-theme (4.16.1+git5.e82fd05 -> 4.16.1+git.5.e82fd05)
pam_mount
pam_ssh
perl-DBD-SQLite
ppp
publicsuffix (20220202 -> 20220304)
qemu
rsyslog
rubygem-bundler
sqlite3 (3.37.2 -> 3.38.1)
tuned (2.16.0 -> 2.18.0.8+git.6f907c9)
xen
xfce4-screenshooter (1.9.9 -> 1.9.10)
xorg-x11-server
yast2-country (4.4.11 -> 4.4.12)
yast2-installation (4.4.46 -> 4.4.48)
yast2-network (4.4.44 -> 4.4.45)
yast2-trans (84.87.20220305.ba29422b84 -> 84.87.20220313.3dfcfc0d1f)
z3
=== Details ===
==== ImageMagick ====
Version update (7.1.0.26 -> 7.1.0.27)
Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.0.27
see ChangeLog.md for details
(https://github.com/ImageMagick/ImageMagick/blob/main/ChangeLog.md)
==== Mesa ====
Version update (21.3.7 -> 22.0.0)
Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- U_meson-restore-private-requires-to-libdrm-in-dri.pc-f.patch
* Due to a typo the private requires to libdrm were lost in dri.pc.
Fixed another typo (only comment).
- enabled "i915" Gallium-based Intel Gen3 driver
- fixed llvm/clang buildrequires for sle15-sp4/Leap 15.4
- no longer try to build classic non-Gallium OpenGL drivers
i915, i965, nouveau, r100 and r200, which have been dropped with
Mesa 22.0.0; see also some documentation on Phoronix
https://www.phoronix.com/scan.php?page=news_item&px=Mesa-Classic-Retired
- update to 22.0.0
* lavapipe,radv,anv KHR_dynamic_rendering
* radv EXT_image_view_min_lod
* VK_KHR_synchronization2 on RADV.
* OpenSWR has been moved to the Amber branch
* radeonsi, zink ARB_sparse_texture
* d3d12 GLES3.1 (shader storage buffers, images, compute, indirect draw, draw params,
ARB_framebuffer_no_attachments, ARB_sample_shading, and GLSL400)
* radeonsi, zink ARB_sparse_texture2
* zink EXT_memory_object, EXT_memory_object_fd, EXT_semaphore, EXT_semaphore_fd
* anv VK_VALVE_mutable_descriptor_type
* Vulkan 1.3 on RADV,Anv.
* radeonsi, zink ARB_sparse_texture_clamp
==== Mesa-drivers ====
Version update (21.3.7 -> 22.0.0)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libxatracker2
- U_meson-restore-private-requires-to-libdrm-in-dri.pc-f.patch
* Due to a typo the private requires to libdrm were lost in dri.pc.
Fixed another typo (only comment).
- enabled "i915" Gallium-based Intel Gen3 driver
- fixed llvm/clang buildrequires for sle15-sp4/Leap 15.4
- no longer try to build classic non-Gallium OpenGL drivers
i915, i965, nouveau, r100 and r200, which have been dropped with
Mesa 22.0.0; see also some documentation on Phoronix
https://www.phoronix.com/scan.php?page=news_item&px=Mesa-Classic-Retired
- update to 22.0.0
* lavapipe,radv,anv KHR_dynamic_rendering
* radv EXT_image_view_min_lod
* VK_KHR_synchronization2 on RADV.
* OpenSWR has been moved to the Amber branch
* radeonsi, zink ARB_sparse_texture
* d3d12 GLES3.1 (shader storage buffers, images, compute, indirect draw, draw params,
ARB_framebuffer_no_attachments, ARB_sample_shading, and GLSL400)
* radeonsi, zink ARB_sparse_texture2
* zink EXT_memory_object, EXT_memory_object_fd, EXT_semaphore, EXT_semaphore_fd
* anv VK_VALVE_mutable_descriptor_type
* Vulkan 1.3 on RADV,Anv.
* radeonsi, zink ARB_sparse_texture_clamp
==== NetworkManager-openconnect ====
Version update (1.2.6 -> 1.2.8)
Subpackages: NetworkManager-openconnect-gnome NetworkManager-openconnect-lang
- Update to version 1.2.8:
+ Gtk4 version of the editor plugin is now available (for use
with Control Center of GNOME 42 or later).
+ Fix SNI and authgroup problems.
+ Handle IPv6 nameservers.
+ Allow IP prefixes of 0 for routing rules.
+ Updated translations.
- Add pkgconfig(gtk4) and pkgconfig(libnma-gtk4) BuildRequires and
pass --with-gtk4=yes to configure, build the gtk4 version.
- Stop passing --without-libnm-glib to configure, no longer
needed, nor recognized.
- Add optional libxml2-tools BuildRequires, build runs
xml-stripblanks preprocessing if available.
==== NetworkManager-openvpn ====
Version update (1.8.16 -> 1.8.18)
Subpackages: NetworkManager-openvpn-gnome NetworkManager-openvpn-lang
- Update to version 1.8.18:
+ Gtk4 version of the editor plugin is now available (for use
with Control Center of GNOME 42 or later).
+ Updated translations.
- Drop nm-openvpn-bsc#1186091.patch: Fixed upstream.
- Rebase patch with quilt.
- Add pkgconfig(gtk4) and pkgconfig(libnma-gtk4) BuildRequires and
pass --with-gtk4=yes to configure, build the gtk4 version.
- Stop passing --without-libnm-glib to configure, no longer
needed, nor recognized.
- Pass --enable-lto=yes to configure, build using LTO support.
- Add optional libxml2-tools BuildRequires, build runs
xml-stripblanks preprocessing if available.
==== alpine ====
Version update (2.25 -> 2.25.1)
Subpackages: pico
- Update to release 2.25.1
* In the past, Alpine did not recognize images embedded in an
HTML file, so now it does and a link to open them is given.
* Support for code_verifier and code_challenge when generating
a refresh token and access token in Gmail and Outlook using
the S256 method and plain method.
* Alpine is modified to not to attempt to continue a draft
message if the draft folder is empty. (Some servers do not
allow the Drafts folder to be removed, even when it is
empty.)
* Improvements to the screen that allows a user to select the
client-id when a user attempts to login to a server and more
than one client-id is available for that server.
- Delete chappa-WrtAcc.patch. Under Linux, one can use the Compose
key feature. (And for Windows, the putty client can provide an
equivalent Compose key feature.)
==== apache2 ====
Version update (2.4.52 -> 2.4.53)
- httpd-framework updated to svn1898917
- deleted patches
- apache-test-DirectorySlash-NotFound-logic.patch (upstreamed)
- apache2-perl-io-socket.patch (upstreamed)
- version update to 2.4.53
* ) SECURITY: CVE-2022-23943: mod_sed: Read/write beyond bounds
(cve.mitre.org)
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP
Server allows an attacker to overwrite heap memory with possibly
attacker provided data.
This issue affects Apache HTTP Server 2.4 version 2.4.52 and
prior versions.
Credits: Ronald Crane (Zippenhop LLC)
* ) SECURITY: CVE-2022-22721: core: Possible buffer overflow with
very large or unlimited LimitXMLRequestBody (cve.mitre.org)
If LimitXMLRequestBody is set to allow request bodies larger
than 350MB (defaults to 1M) on 32 bit systems an integer
overflow happens which later causes out of bounds writes.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Anonymous working with Trend Micro Zero Day Initiative
* ) SECURITY: CVE-2022-22720: HTTP request smuggling vulnerability
in Apache HTTP Server 2.4.52 and earlier (cve.mitre.org)
Apache HTTP Server 2.4.52 and earlier fails to close inbound
connection when errors are encountered discarding the request
body, exposing the server to HTTP Request Smuggling
Credits: James Kettle <james.kettle portswigger.net>
* ) SECURITY: CVE-2022-22719: mod_lua Use of uninitialized value of
in r:parsebody (cve.mitre.org)
A carefully crafted request body can cause a read to a random
memory area which could cause the process to crash.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Chamal De Silva
* ) core: Make sure and check that LimitXMLRequestBody fits in system memory.
[Ruediger Pluem, Yann Ylavic]
* ) core: Simpler connection close logic if discarding the request body fails.
[Yann Ylavic, Ruediger Pluem]
* ) mod_http2: preserve the port number given in a HTTP/1.1
request that was Upgraded to HTTP/2. Fixes PR65881.
[Stefan Eissing]
* ) mod_proxy: Allow for larger worker name. PR 53218. [Yann Ylavic]
* ) dbm: Split the loading of a dbm driver from the opening of a dbm file. When
an attempt to load a dbm driver fails, log clearly which driver triggered
the error (not "default"), and what the error was. [Graham Leggett]
* ) mod_proxy: Use the maxium of front end and backend timeouts instead of the
minimum when tunneling requests (websockets, CONNECT requests).
Backend timeouts can be configured more selectively (per worker if needed)
as front end timeouts and typically the backend timeouts reflect the
application requirements better. PR 65886 [Ruediger Pluem]
* ) ap_regex: Use Thread Local Storage (TLS) to recycle ap_regexec() buffers
when an efficient TLS implementation is available. [Yann Ylavic]
* ) core, mod_info: Add compiled and loaded PCRE versions to version
number display. [Rainer Jung]
* ) mod_md: do not interfere with requests to /.well-known/acme-challenge/
resources if challenge type 'http-01' is not configured for a domain.
Fixes <https://github.com/icing/mod_md/issues/279>.
[Stefan Eissing]
* ) mod_dav: Fix regression when gathering properties which could lead to huge
memory consumption proportional to the number of resources.
[Evgeny Kotkov, Ruediger Pluem]
* ) Support pcre2 (10.x) library in place of the now end-of-life pcre (8.x)
for regular expression evaluation. This depends on locating pcre2-config.
[William Rowe, Petr Pisar <ppisar redhat.com>, Rainer Jung]
* ) Add the ldap function to the expression API, allowing LDAP filters and
distinguished names based on expressions to be escaped correctly to
guard against LDAP injection. [Graham Leggett]
* ) mod_md: the status description in MDomain's JSON, exposed in the
md-status handler (if configured) did sometimes not carry the correct
message when certificates needed renew.
[Stefan Eissing]
* ) mpm_event: Fix a possible listener deadlock on heavy load when restarting
and/or reaching MaxConnectionsPerChild. PR 65769. [Yann Ylavic]
==== apache2-manual ====
Version update (2.4.52 -> 2.4.53)
- httpd-framework updated to svn1898917
- deleted patches
- apache-test-DirectorySlash-NotFound-logic.patch (upstreamed)
- apache2-perl-io-socket.patch (upstreamed)
- version update to 2.4.53
* ) SECURITY: CVE-2022-23943: mod_sed: Read/write beyond bounds
(cve.mitre.org)
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP
Server allows an attacker to overwrite heap memory with possibly
attacker provided data.
This issue affects Apache HTTP Server 2.4 version 2.4.52 and
prior versions.
Credits: Ronald Crane (Zippenhop LLC)
* ) SECURITY: CVE-2022-22721: core: Possible buffer overflow with
very large or unlimited LimitXMLRequestBody (cve.mitre.org)
If LimitXMLRequestBody is set to allow request bodies larger
than 350MB (defaults to 1M) on 32 bit systems an integer
overflow happens which later causes out of bounds writes.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Anonymous working with Trend Micro Zero Day Initiative
* ) SECURITY: CVE-2022-22720: HTTP request smuggling vulnerability
in Apache HTTP Server 2.4.52 and earlier (cve.mitre.org)
Apache HTTP Server 2.4.52 and earlier fails to close inbound
connection when errors are encountered discarding the request
body, exposing the server to HTTP Request Smuggling
Credits: James Kettle <james.kettle portswigger.net>
* ) SECURITY: CVE-2022-22719: mod_lua Use of uninitialized value of
in r:parsebody (cve.mitre.org)
A carefully crafted request body can cause a read to a random
memory area which could cause the process to crash.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Chamal De Silva
* ) core: Make sure and check that LimitXMLRequestBody fits in system memory.
[Ruediger Pluem, Yann Ylavic]
* ) core: Simpler connection close logic if discarding the request body fails.
[Yann Ylavic, Ruediger Pluem]
* ) mod_http2: preserve the port number given in a HTTP/1.1
request that was Upgraded to HTTP/2. Fixes PR65881.
[Stefan Eissing]
* ) mod_proxy: Allow for larger worker name. PR 53218. [Yann Ylavic]
* ) dbm: Split the loading of a dbm driver from the opening of a dbm file. When
an attempt to load a dbm driver fails, log clearly which driver triggered
the error (not "default"), and what the error was. [Graham Leggett]
* ) mod_proxy: Use the maxium of front end and backend timeouts instead of the
minimum when tunneling requests (websockets, CONNECT requests).
Backend timeouts can be configured more selectively (per worker if needed)
as front end timeouts and typically the backend timeouts reflect the
application requirements better. PR 65886 [Ruediger Pluem]
* ) ap_regex: Use Thread Local Storage (TLS) to recycle ap_regexec() buffers
when an efficient TLS implementation is available. [Yann Ylavic]
* ) core, mod_info: Add compiled and loaded PCRE versions to version
number display. [Rainer Jung]
* ) mod_md: do not interfere with requests to /.well-known/acme-challenge/
resources if challenge type 'http-01' is not configured for a domain.
Fixes <https://github.com/icing/mod_md/issues/279>.
[Stefan Eissing]
* ) mod_dav: Fix regression when gathering properties which could lead to huge
memory consumption proportional to the number of resources.
[Evgeny Kotkov, Ruediger Pluem]
* ) Support pcre2 (10.x) library in place of the now end-of-life pcre (8.x)
for regular expression evaluation. This depends on locating pcre2-config.
[William Rowe, Petr Pisar <ppisar redhat.com>, Rainer Jung]
* ) Add the ldap function to the expression API, allowing LDAP filters and
distinguished names based on expressions to be escaped correctly to
guard against LDAP injection. [Graham Leggett]
* ) mod_md: the status description in MDomain's JSON, exposed in the
md-status handler (if configured) did sometimes not carry the correct
message when certificates needed renew.
[Stefan Eissing]
* ) mpm_event: Fix a possible listener deadlock on heavy load when restarting
and/or reaching MaxConnectionsPerChild. PR 65769. [Yann Ylavic]
==== apache2-prefork ====
Version update (2.4.52 -> 2.4.53)
- httpd-framework updated to svn1898917
- deleted patches
- apache-test-DirectorySlash-NotFound-logic.patch (upstreamed)
- apache2-perl-io-socket.patch (upstreamed)
- version update to 2.4.53
* ) SECURITY: CVE-2022-23943: mod_sed: Read/write beyond bounds
(cve.mitre.org)
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP
Server allows an attacker to overwrite heap memory with possibly
attacker provided data.
This issue affects Apache HTTP Server 2.4 version 2.4.52 and
prior versions.
Credits: Ronald Crane (Zippenhop LLC)
* ) SECURITY: CVE-2022-22721: core: Possible buffer overflow with
very large or unlimited LimitXMLRequestBody (cve.mitre.org)
If LimitXMLRequestBody is set to allow request bodies larger
than 350MB (defaults to 1M) on 32 bit systems an integer
overflow happens which later causes out of bounds writes.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Anonymous working with Trend Micro Zero Day Initiative
* ) SECURITY: CVE-2022-22720: HTTP request smuggling vulnerability
in Apache HTTP Server 2.4.52 and earlier (cve.mitre.org)
Apache HTTP Server 2.4.52 and earlier fails to close inbound
connection when errors are encountered discarding the request
body, exposing the server to HTTP Request Smuggling
Credits: James Kettle <james.kettle portswigger.net>
* ) SECURITY: CVE-2022-22719: mod_lua Use of uninitialized value of
in r:parsebody (cve.mitre.org)
A carefully crafted request body can cause a read to a random
memory area which could cause the process to crash.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Chamal De Silva
* ) core: Make sure and check that LimitXMLRequestBody fits in system memory.
[Ruediger Pluem, Yann Ylavic]
* ) core: Simpler connection close logic if discarding the request body fails.
[Yann Ylavic, Ruediger Pluem]
* ) mod_http2: preserve the port number given in a HTTP/1.1
request that was Upgraded to HTTP/2. Fixes PR65881.
[Stefan Eissing]
* ) mod_proxy: Allow for larger worker name. PR 53218. [Yann Ylavic]
* ) dbm: Split the loading of a dbm driver from the opening of a dbm file. When
an attempt to load a dbm driver fails, log clearly which driver triggered
the error (not "default"), and what the error was. [Graham Leggett]
* ) mod_proxy: Use the maxium of front end and backend timeouts instead of the
minimum when tunneling requests (websockets, CONNECT requests).
Backend timeouts can be configured more selectively (per worker if needed)
as front end timeouts and typically the backend timeouts reflect the
application requirements better. PR 65886 [Ruediger Pluem]
* ) ap_regex: Use Thread Local Storage (TLS) to recycle ap_regexec() buffers
when an efficient TLS implementation is available. [Yann Ylavic]
* ) core, mod_info: Add compiled and loaded PCRE versions to version
number display. [Rainer Jung]
* ) mod_md: do not interfere with requests to /.well-known/acme-challenge/
resources if challenge type 'http-01' is not configured for a domain.
Fixes <https://github.com/icing/mod_md/issues/279>.
[Stefan Eissing]
* ) mod_dav: Fix regression when gathering properties which could lead to huge
memory consumption proportional to the number of resources.
[Evgeny Kotkov, Ruediger Pluem]
* ) Support pcre2 (10.x) library in place of the now end-of-life pcre (8.x)
for regular expression evaluation. This depends on locating pcre2-config.
[William Rowe, Petr Pisar <ppisar redhat.com>, Rainer Jung]
* ) Add the ldap function to the expression API, allowing LDAP filters and
distinguished names based on expressions to be escaped correctly to
guard against LDAP injection. [Graham Leggett]
* ) mod_md: the status description in MDomain's JSON, exposed in the
md-status handler (if configured) did sometimes not carry the correct
message when certificates needed renew.
[Stefan Eissing]
* ) mpm_event: Fix a possible listener deadlock on heavy load when restarting
and/or reaching MaxConnectionsPerChild. PR 65769. [Yann Ylavic]
==== apache2-utils ====
Version update (2.4.52 -> 2.4.53)
- httpd-framework updated to svn1898917
- deleted patches
- apache-test-DirectorySlash-NotFound-logic.patch (upstreamed)
- apache2-perl-io-socket.patch (upstreamed)
- version update to 2.4.53
* ) SECURITY: CVE-2022-23943: mod_sed: Read/write beyond bounds
(cve.mitre.org)
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP
Server allows an attacker to overwrite heap memory with possibly
attacker provided data.
This issue affects Apache HTTP Server 2.4 version 2.4.52 and
prior versions.
Credits: Ronald Crane (Zippenhop LLC)
* ) SECURITY: CVE-2022-22721: core: Possible buffer overflow with
very large or unlimited LimitXMLRequestBody (cve.mitre.org)
If LimitXMLRequestBody is set to allow request bodies larger
than 350MB (defaults to 1M) on 32 bit systems an integer
overflow happens which later causes out of bounds writes.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Anonymous working with Trend Micro Zero Day Initiative
* ) SECURITY: CVE-2022-22720: HTTP request smuggling vulnerability
in Apache HTTP Server 2.4.52 and earlier (cve.mitre.org)
Apache HTTP Server 2.4.52 and earlier fails to close inbound
connection when errors are encountered discarding the request
body, exposing the server to HTTP Request Smuggling
Credits: James Kettle <james.kettle portswigger.net>
* ) SECURITY: CVE-2022-22719: mod_lua Use of uninitialized value of
in r:parsebody (cve.mitre.org)
A carefully crafted request body can cause a read to a random
memory area which could cause the process to crash.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credits: Chamal De Silva
* ) core: Make sure and check that LimitXMLRequestBody fits in system memory.
[Ruediger Pluem, Yann Ylavic]
* ) core: Simpler connection close logic if discarding the request body fails.
[Yann Ylavic, Ruediger Pluem]
* ) mod_http2: preserve the port number given in a HTTP/1.1
request that was Upgraded to HTTP/2. Fixes PR65881.
[Stefan Eissing]
* ) mod_proxy: Allow for larger worker name. PR 53218. [Yann Ylavic]
* ) dbm: Split the loading of a dbm driver from the opening of a dbm file. When
an attempt to load a dbm driver fails, log clearly which driver triggered
the error (not "default"), and what the error was. [Graham Leggett]
* ) mod_proxy: Use the maxium of front end and backend timeouts instead of the
minimum when tunneling requests (websockets, CONNECT requests).
Backend timeouts can be configured more selectively (per worker if needed)
as front end timeouts and typically the backend timeouts reflect the
application requirements better. PR 65886 [Ruediger Pluem]
* ) ap_regex: Use Thread Local Storage (TLS) to recycle ap_regexec() buffers
when an efficient TLS implementation is available. [Yann Ylavic]
* ) core, mod_info: Add compiled and loaded PCRE versions to version
number display. [Rainer Jung]
* ) mod_md: do not interfere with requests to /.well-known/acme-challenge/
resources if challenge type 'http-01' is not configured for a domain.
Fixes <https://github.com/icing/mod_md/issues/279>.
[Stefan Eissing]
* ) mod_dav: Fix regression when gathering properties which could lead to huge
memory consumption proportional to the number of resources.
[Evgeny Kotkov, Ruediger Pluem]
* ) Support pcre2 (10.x) library in place of the now end-of-life pcre (8.x)
for regular expression evaluation. This depends on locating pcre2-config.
[William Rowe, Petr Pisar <ppisar redhat.com>, Rainer Jung]
* ) Add the ldap function to the expression API, allowing LDAP filters and
distinguished names based on expressions to be escaped correctly to
guard against LDAP injection. [Graham Leggett]
* ) mod_md: the status description in MDomain's JSON, exposed in the
md-status handler (if configured) did sometimes not carry the correct
message when certificates needed renew.
[Stefan Eissing]
* ) mpm_event: Fix a possible listener deadlock on heavy load when restarting
and/or reaching MaxConnectionsPerChild. PR 65769. [Yann Ylavic]
==== appstream-glib ====
Version update (0.7.18+30 -> 0.7.18+31)
Subpackages: appstream-glib-lang libappstream-glib8
- Update to version 0.7.18+31:
* Fix extracting relative symlinks (boo#1196459)
==== at ====
- Drop systemd hardening as it breaks some jobs, fixes bsc#1196219
* Remove harden_atd.service.patch
==== bluez ====
Version update (5.62 -> 5.63)
Subpackages: libbluetooth3
- Add code to restore user modifications for modprobe.d %config files
after moving the files to %_modprobedir
- Use %_modprobedir (jsc#SLE-20639)
- update to version 5.63:
* Fix issue with storing IRK causing invalid read access.
* Fix issue with disconnecting due to GattCharacteristic1.MTU.
* Add support for Device{Found,Lost} of advertising monitoring.
==== boost-base ====
Subpackages: boost-license1_78_0 libboost_date_time1_78_0 libboost_filesystem1_78_0 libboost_iostreams1_78_0 libboost_locale1_78_0 libboost_program_options1_78_0 libboost_thread1_78_0
- add dependency on libzstd and libzstd-devel to get on-the-fly
zstd compression in boost-iostreams
==== boost-extra ====
- add dependency on libzstd and libzstd-devel to get on-the-fly
zstd compression in boost-iostreams
==== dbus-1 ====
Subpackages: libdbus-1-3 libdbus-1-3-32bit
- set runstatedir correctly
==== ffmpeg-4 ====
Subpackages: libavcodec58_134 libavdevice58_13 libavfilter7_110 libavformat58_76 libavresample4_0 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9
- Fix OS version check, so nvcodec is enabled for Leap too.
==== glib2-branding-openSUSE ====
- Update .gschema.override.in: Change default libreoffice startup
entry to libreoffice-startcenter.desktop according to the
libreoffice update (bsc#1195836, bsc#1196951).
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen
- Fix grub-install error when efi system partition is created as mdadm software
raid1 device (bsc#1179981) (bsc#1195204)
* 0001-install-fix-software-raid1-on-esp.patch
- Fix riscv64 build error
* 0001-RISC-V-Adjust-march-flags-for-binutils-2.38.patch
- Fix error in grub-install when linux root device is on lvm thin volume
(bsc#1192622) (bsc#1191974)
* 0001-grub-install-bailout-root-device-probing.patch
==== guile ====
Subpackages: guile-modules-3_0 libguile-3_0-1
- Add patch to fix build on 32-bit big-endian targets
* adjust-32bit-big-endian-build-flags.patch
- Run aclocal before %configure to regenerate aclocal.m4
==== harfbuzz ====
Version update (4.0.0 -> 4.0.1)
Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 libharfbuzz0-32bit typelib-1_0-HarfBuzz-0_0
- Update to version 4.0.1:
+ Update OpenType to AAT mappings for ?hist? and ?vrtr? features
+ Update IANA Language Subtag Registry to 2022-03-02
+ Update USE shaper to allow any non-numeric tail in a symbol
cluster, and remove obsolete data overrides
+ Fix handling of baseline variations to return correctly scaled
values
==== kernel-firmware ====
Version update (20220224 -> 20220309)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20220309 (git commit cd01f857da28):
* iwlwifi: add new FWs from core68-60 release
* ath11k: add links for WCN6855 hw2.1
* ath11k: WCN6855 hw2.0: add WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3
* ath11k: WCN6855 hw2.0: add board-2.bin and regdb.bin
* ath10k/ath11k: mark notice.txt as "File:"
* linux-firmware: add firmware for MT7986
* amdgpu: add firmware for SDMA 5.2.7 IP block
* amdgpu: add firmware for PSP 13.0.8 IP block
* amdgpu: add firmware for DCN 3.1.6 IP block
* amdgpu: add firmware for GC 10.3.7 IP block
* rtw89: 8852a: update fw to v0.13.36.0
* iwlwifi: update 9000-family firmwares to core68-60
* amdgpu: update raven2 VCN firmware
* amdgpu: update raven VCN firmware
* amdgpu: update picasso VCN firmware
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth 9260
* linux-firmware: Update AMD SEV firmware
* rtw89: 8852a: update fw to v0.13.35.0
==== kfilemetadata5 ====
Subpackages: kfilemetadata5-lang
- Build the optional mobipocket extractor.
QMobipocket only depends on Qt and shouldn't cause any issue.
==== libHX ====
Version update (4.2 -> 4.4)
Subpackages: libHX32 libHX32-32bit
- Update to release 4.4
* Build fixes for mingw environments.
- Update to release 4.3
* string: New functions ``HX_strtoull_sec``,
``HX_unit_seconds`` for converting between second-based time
durations and human-readable durations like 129600 <-> 1d12h.
* io: New function ``HX_sendfile``.
==== libreoffice ====
Version update (7.3.1.3 -> 7.3.2.1)
Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Update to 7.3.2.1
- Refresh patches:
* 0001-Revert-java-9-changes.patch
* fix_gtk_popover_on_3.20.patch
==== librsvg ====
Version update (2.52.6 -> 2.52.7)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0
- Update to version 2.52.7:
+ Backport a fix for the regression that was introduced in the
last release: Output filled text as text for PDF; fixes
regression due to outputting all text as paths.
==== libsolv ====
Version update (0.7.20 -> 0.7.21)
Subpackages: libsolv-tools python3-solv ruby-solv
- fix segfault on conflict resolution when using bindings
- fix split provides not working if the update includes a forbidden
vendor change
- support strict repository priorities
new solver flag: SOLVER_FLAG_STRICT_REPO_PRIORITY
- support zstd compressed control files in debian packages
- add an ifdef allowing to rename Solvable dependency members
("requires" is a keyword in C++20)
- support setting/reading userdata in solv files
new functions: repowriter_set_userdata, solv_read_userdata
- support queying of the custom vendor check function
new function: pool_get_custom_vendorcheck
- support solv files with an idarray block
- allow accessing the toolversion at runtime
- bump version to 0.7.21
==== libuv ====
Version update (1.43.0 -> 1.44.1)
- update to 1.44.1:
* fix a hang after NOTE_EXIT
- inclues changes from 1.44.0:
* Support for poxix_spawn API
* updates to documentation, tests, benchmarks and build scripts
==== libyui ====
Version update (4.3.2 -> 4.3.3)
- Fixed release notes dialog in YQWizard clearing content on click
(bsc#1195158)
- Documented the different ways of displaying release notes in the UI
- 4.3.3
==== libyui-ncurses ====
Version update (4.3.2 -> 4.3.3)
- Fixed release notes dialog in YQWizard clearing content on click
(bsc#1195158)
- Documented the different ways of displaying release notes in the UI
- 4.3.3
==== libyui-ncurses-pkg ====
Version update (4.3.2 -> 4.3.3)
- Fixed release notes dialog in YQWizard clearing content on click
(bsc#1195158)
- Documented the different ways of displaying release notes in the UI
- 4.3.3
==== libyui-qt ====
Version update (4.3.2 -> 4.3.3)
- Fixed release notes dialog in YQWizard clearing content on click
(bsc#1195158)
- Documented the different ways of displaying release notes in the UI
- 4.3.3
==== libyui-qt-graph ====
Version update (4.3.2 -> 4.3.3)
- Fixed release notes dialog in YQWizard clearing content on click
(bsc#1195158)
- Documented the different ways of displaying release notes in the UI
- 4.3.3
==== libyui-qt-pkg ====
Version update (4.3.2 -> 4.3.3)
- Fixed release notes dialog in YQWizard clearing content on click
(bsc#1195158)
- Documented the different ways of displaying release notes in the UI
- 4.3.3
==== libzypp ====
Version update (17.29.5 -> 17.29.6)
- Fix package signature check (bsc#184501)
Pay attention that header and payload are secured by a valid
signature and report more detailed which signature is missing.
- Retry umount if device is busy (bsc#1196061, closes #381)
A previously released ISO image may need a bit more time to
release it's loop device. So we wait a bit and retry.
- Fix serializing/deserializing type mismatch in zypp-rpm
protocol (bsc#1196925)
- Fix handling of ISO media in releaseAll (bsc#1196061)
- Hint on common ptf resolver conflicts (bsc#1194848)
- version 17.29.6 (22)
==== nodejs17 ====
Version update (17.7.0 -> 17.7.1)
Subpackages: npm17
- update to 17.7.1:
* url: revert fix url.parse() for @hostname
- 42342.patch: fix expired certificates in unit tests
==== openSUSE-xfce-icon-theme ====
Version update (4.16.1+git5.e82fd05 -> 4.16.1+git.5.e82fd05)
- Remove deprecated macros from spec
- Update Upstream URL
==== pam_mount ====
Subpackages: libcryptmount0 libcryptmount0-32bit pam_mount-32bit
- Add tmpfiles.d conf for /run/pam_mount
==== pam_ssh ====
Subpackages: pam_ssh-32bit
- Update source packages from upstream
- Add tmpfiles.d conf for /run/pam_ssh
==== perl-DBD-SQLite ====
- link embedded sqlite devel files to system files
- build with internal sqlite on Leap systems
==== ppp ====
- Removed Wants=network.target from modem@.service (bsc#1196359).
==== publicsuffix ====
Version update (20220202 -> 20220304)
- Update to version 20220304:
* Add deta.app and deta.dev (#1511)
* Add typedream.app (#1509)
* Add `musician.io` - updates Staclar entry from #1331 (#1532)
* Remove couk.me and ukco.me from private section (#1519)
* add `*.build.run`, `*.database.run` and `*.migration.run` to PSL (#1498)
* Add ktistory.com (#1493)
* Remove WapBlog Suffix (#1510)
* Add `aivencloud.com` (#1508)
* Add site.transip.me (#1524)
* Add 105 `lolipop` and `heteml` domains to private section for GMO (#1522)
* Add `tech.orange` (#1526)
* Add rocky.page (#1491)
* Add messwithdns.com (#1490)
* Revise policy links for `.ac` `.io` `.sh` (#1528)
* Add kapsi.fi to PSL (#1476)
* Add translated.page (#1478)
* Add discordsays.com and discordsez.com (#1474)
* Add `onporter.run` (#1483)
* util: gTLD data autopull updates for 2022-02-18T15:13:38 UTC (#1525)
* Update `.cy` per request from nic.cy in Issue 1516 (#1517)
* add `*.beget.app` (#1470)
* Add `vultrobjects.com` and future regional subdomains (#1472)
==== qemu ====
Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86
Fix bsc#1189702 CVE-2021-3713
* Patches added:
hw-nvram-at24-return-0xff-if-1-byte-addr.patch
==== rsyslog ====
- remove invalid dependencies from systemd service unit
(bsc#1196795, bsc#1196359)
==== rubygem-bundler ====
- only limit to ruby 2.7 on sle 12
==== sqlite3 ====
Version update (3.37.2 -> 3.38.1)
- update to 3.38.1:
* Fix problems with the new Bloom filter optimization that might
cause some obscure queries to get an incorrect answer.
* Fix the localtime modifier of the date and time functions so
that it preserves fractional seconds.
* Fix the sqlite_offset SQL function so that it works correctly
even in corner cases such as when the argument is a virtual
column or the column of a view.
* Fix row value IN operator constraints on virtual tables so that
they work correctly even if the virtual table implementation
relies on bytecode to filter rows that do not satisfy the
constraint.
* Other minor fixes to assert() statements, test cases, and
documentation. See the source code timeline for details.
- add upstream patch to run atof1 tests only on x86_64
sqlite-src-3380100-atof1.patch
- update to 3.38.0
* Add the -> and ->> operators for easier processing of JSON
* The JSON functions are now built-ins
* Enhancements to date and time functions
* Rename the printf() SQL function to format() for better
compatibility, with alias for backwards compatibility.
* Add the sqlite3_error_offset() interface for helping localize
an SQL error to a specific character in the input SQL text
* Enhance the interface to virtual tables
* CLI columnar output modes are enhanced to correctly handle tabs
and newlines embedded in text, and add options like "--wrap N",
"--wordwrap on", and "--quote" to the columnar output modes.
* Query planner enhancements using a Bloom filter to speed up
large analytic queries, and a balanced merge tree to evaluate
UNION or UNION ALL compound SELECT statements that have an
ORDER BY clause.
* The ALTER TABLE statement is changed to silently ignores
entries in the sqlite_schema table that do not parse when
PRAGMA writable_schema=ON
==== tuned ====
Version update (2.16.0 -> 2.18.0.8+git.6f907c9)
- Add new openshift platform profiles
- Instead of adding all profiles to main package and exclude subpackage
profiles, explicitly mention all added profiles in %files section
- Sort (alphabetically) profiles and packages
- Update to version 2.18.0.8+git.6f907c9:
* beakerlib: fix systemd rate limiting for variables-support-in-profiles
* scheduler: fix construction of the process name regex
* Added more conflicting implementations to the systemd unit file.
* raise the netfilter hash table size in openshift/atomic-{host,guest} to match the max netfilter conntrack entries, reducing such hash table load.
* Fixing save call and comments in tuned gui
* Adding option "txqueuelen" to net_plugin
* bootloader: on s390(x) remove TuneD variables from the BLS
* daemon: don't do full rollback on systemd failure
* profiles: use cstate.id_no_zero instead of the cstate.id
* Expanding cpu plugin force_latency option syntax
* Adding support for nvme subsystem block devices and adding tests so it won't throw errors on hdparms commands.
* Fix improper parsing of include directive
* application: log TuneD and kernel version
* readme: mention conflicting cpupower and power-profiles-daemon
* dbus: fix traceback on python-2.7
* cpu_partitioning: fixed no_balance_cores on newer kernels
* spec: do not require subscription-manager on CentOS
* Add conditional profile loading
* openshift profile: workaround high CPU utilization of [scheduler] plug-in.
* scheduler: new option cgroup_ps_blacklist
* breaking up various modules and implementing neccessary new syntax used downstream to keep docs repos synced
==== xen ====
Subpackages: xen-libs xen-tools xen-tools-domU
- bsc#1196915 - VUL-0: CVE-2022-0001, CVE-2022-0002,CVE-2021-26401:
xen: BHB speculation issues (XSA-398)
62278667-Arm-introduce-new-processors.patch
62278668-Arm-move-errata-CSV2-check-earlier.patch
62278669-Arm-add-ECBHB-and-CLEARBHB-ID-fields.patch
6227866a-Arm-Spectre-BHB-handling.patch
6227866b-Arm-allow-SMCCC_ARCH_WORKAROUND_3-use.patch
6227866c-x86-AMD-cease-using-thunk-lfence.patch
==== xfce4-screenshooter ====
Version update (1.9.9 -> 1.9.10)
Subpackages: xfce4-screenshooter-lang xfce4-screenshooter-plugin
- Update to version 1.9.10
* Use symbolic icons
* Bump Xfce dependencies to 4.14
* _NET_FRAME_EXTENTS support
* Add back button to take new screenshot
(gxo#apps/xfce4-screenshooter!29)
* Fix Imgur upload via CLI (gxo#apps/xfce4-screenshooter!26)
* Set up ScreenshotData after commandline parsing
* Fix compile warning (#62)
* Update to description and addition of donate and translate links
* Replace link to bugzilla with gitlab
(gxo#apps/xfce4-screenshooter!25)
* Translation Updates
==== xorg-x11-server ====
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra xorg-x11-server-sdk
- u_sync-pci-ids-with-Mesa-22.0.0.patch
* sync pci ids with Mesa 22.0.0
==== yast2-country ====
Version update (4.4.11 -> 4.4.12)
Subpackages: yast2-country-data
- Fixed French (Canada) keyboard layout (bsc#1196891):
Use "ca", not "ca-fr-legacy"
- 4.4.12
==== yast2-installation ====
Version update (4.4.46 -> 4.4.48)
- Prevent getty auto-generation because it makes xvnc to fail when
it is started in YaST second stage (bsc#1196614).
- 4.4.48
- Avoid terminal login prompt when running Second Stage service
(bsc#1196594 and related to bsc#1195059).
- 4.4.47
==== yast2-network ====
Version update (4.4.44 -> 4.4.45)
- Display the network configuration in the AutoYaST user interface
(see bsc#1197019).
- 4.4.45
==== yast2-trans ====
Version update (84.87.20220305.ba29422b84 -> 84.87.20220313.3dfcfc0d1f)
Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu
- Update to version 84.87.20220313.3dfcfc0d1f:
* Translated using Weblate (Hindi)
* Translated using Weblate (Polish)
* New POT for text domain 'base'.
* Translated using Weblate (Hindi)
* Translated using Weblate (Hindi)
* Translated using Weblate (Hindi)
* Translated using Weblate (Hindi)
* Translated using Weblate (Hindi)
* Translated using Weblate (Hindi)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
* New POT for text domain 'packager'.
* New POT for text domain 'autoinst'.
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Chinese (Taiwan) (zh_TW))
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Indonesian)
==== z3 ====
- fix python3-z3 requirement
1
0
Matrix chat client element-desktop: help needed for further availability in openSUSE
by Dominik Heidler 16 Mar '22
by Dominik Heidler 16 Mar '22
16 Mar '22
Hi,
element-desktop in an electron application.
Building javascript applications in a defined and offline build environment is a nightmare
as not only package managers like yarn or npm but also the install scripts of some packages
as well as the build scripts itself try to download stuff from the internet.
Therefore the element-web and element-desktop (which depends on element-web) were "built"
locally and the resulting files were packaged.
Of course this is no ideal solution which is why there is currently a delete request pending for that package.
It is possible to bundle the yarn dependencies and workaround some other issues,
but my knowledge of tools like electron-builder is limited.
I managed to bundle the dependencies of element-web and get it actually building inside OBS,
but it seems to be harder to do the same for element-desktop as it is using electron-builder
which behaves as if it was deliberately written to make the life of a packager miserable.
For some reason it tries to download a prebuilt electron zip from github during build,
and I wasn't able to fix this so far.
https://build.opensuse.org/package/live_build_log/home:dheidler:branches:de…
My current state of work can be found in [1] and any help with getting this fixed would be appreciated.
Regards,
Dominik
[1] https://build.opensuse.org/package/show/home:dheidler:branches:devel:langua…
4
5
All meeting minutes can be found here:
https://etherpad.opensuse.org/p/ReleaseEngineering-meeting
Meeting is hosted here
https://meet.opensuse.org/ReleaseEngineeringMeeting
## Attendees
guillaumeg, DimStar, deneb_alpha, maurizio (m4u),maxlin, gp, rbrown
## Leap
Visiting Prague office today. I might not make it to this meeting as
I'm traveling most of the morning.
New Leap build 181.1 published at night looks good.
Added boo#1197080 to
https://en.opensuse.org/openSUSE:Most_annoying_bugs_15.4
Shared with marketing a concern about too workstation/laptop centric
annoucements .
This one is loud on openQA
https://bugzilla.opensuse.org/show_bug.cgi?id=1196549 is a problem with
Migration scenarios for Leap older than 15.2. Suggesting migration to
15.2 prior to 15.4. Technically this is what we recommend, and anything
older than 15.2 is already unsupported. The price for keeping these old
unsupported scenarios is getting higher and higher.
software-o-o - Talked to Lars about openning a hackweek project for the
rewrite
https://etherpad.opensuse.org/p/softwareworkshop
openh264
SUSE's TAM for Cisco has asked for more priority on
https://github.com/cisco/openh264/issues/3480
No update since then, I did contact Heroes to assist with any guidance
for prefered rsync solution in between OBS and ciscobinary.openh264.org
GNUHealth - pending legal review prioritized and contacted legal team
aside from that staging seems to be green/acceptable
MyGNUHealth - https://code.opensuse.org/leap/features/issue/64 /
I did email python(a)lists.opensuse.org with ask for help.
Issue with Backports:Update repo during Leap to SLE migration should be
fixed with the new build
https://bugzilla.opensuse.org/show_bug.cgi?id=1196630
Update on bugzilla / PUBLIC SLE* product exposure
We have a fixed date for deployment to production 23.3.2022 - 10AM CET
Leap micro
* Requested addition of openSUSE Leap Micro to bugzilla
* Pending work on InstallerBranding/EULA for Leap Micro we have the
ones from Leap 15.3, as well as ensuring that we use correct repo for
Beta updates and then we can annouce Beta.
I was officially on first SLE Next related talk for project management
last week. It is perhaps a good time to start collecting
wishlist/features/feedback for user stories that might otherwise be
underrepresented. Example: Workstation is not a strong side of SLE but
I'd say it is a still big user story for Leap.
## openSUSE Tumbleweed
So far, in March, TW is rolling with daily snapshots (actually since
Feb 21 without interruption)
openSUSE:Factory build fail stats: 87 failed, 18 unresolvable
https://tinyurl.com/ysy4nnnz
* Kernel 5.16.14
* Firefox 98
* KDE Frameworks and Plasma updates
* systemd 250 in the makings: one build failure (python-pyudev) and a
lot of openQA fails
* GNOME 42 rc is happening in the GNOME:Next branch - so far looking
good
* GCC 12 pre-integration tests progressing (Staging:Gcc7); Scheduled
for actual merge in April/May
## Richard (Kubic/TW MicroOS)
Working on various interesting MicroOS research tracks:
- kiwi-less/container first VM image building Status: POC
- nerdctl support in toolbox Status: Broken prototype
- buildkit and its limit as a container builder
- TW-to-MicroOS conversion
- curl-minimal and making it default (like Fedora) Status:
Investigating
- Re-arranging Factory so products like MicroOS can build with
different PrjConf than Tumbleweed
- MicroOS Desktop using TIU instead of transactional-update (ie.
remove all individual rpm package management)
Please ping rbrown(a)suse.com if you are interested/have opinions on any
of the above, feedback/thoughts/existing knowledge is welcome.
## Max
15.4
* Looking into installcheck problem according to ftp-tree, most of them
are python2 removal related
LeapMicro 5.2
* Set up test project and verified release path, now prouct and SUSE-
MicroOS would release to openSUSE:Leap:Micro:5.2:ToTest, container
files would release to openSUSE:Containers:Leap-Micro:5.2
(Cloud team is working on initial openQA test suite for Leap Micro 5.2)
On the GNUHealth in Leap 15.4 staging please check the python related
issues in the staging project.
## Guillaume - Arm
Tumbleweed:
* Rolling
* Firefox 98 is broken on aarch64:
https://bugzilla.mozilla.org/show_bug.cgi?id=1757571
* openQA still shows random issues with DNS (especially on
MultiMachine): https://progress.opensuse.org/issues/105295
* Upcoming GCC 12 tested for aarch64:
https://build.opensuse.org/project/show/home:dirkmueller:branches:openSUSE:…
* armv6 fixes: See Dirk section.
Leap 15.4:
* aarch64:
* Go compiler from SLE still lacks ld.gold which is still
required. This make some packages to fail to build (e.g.
openSUSE:Backports:SLE-15-SP4/rclone). Bug opened since Leap 15.3:
https://bugzilla.opensuse.org/show_bug.cgi?id=1183043
* armv7:
* the kernel to fix the bug with btrfs and lzo compression is
not released yet: https://bugzilla.opensuse.org/show_bug.cgi?id=1193852
* scc product class looks wrong (Marina/Marcus) (for all non-intel
arches). x86_64 has OPENSUSE-BETA while for the others the class is
SLES-ARM64-BETA, SLES-PPC-BETA, SLES-Z-BETA.
Lubos will reach out to SCC, we should use the same OPENSUSE-BETA
for all I suppose. Was this set correctly in 15.3? unfortunately no.
the product class is the same for 15.3
lkocman: will check on the status with SCC (I believe that I've openned
an issue for that).
qemu/io issues - reference TBD
we're trying to collect data long-term
## Sarah - s390x
On vacation - no new updates
Tumbleweed:
* Is rolliing again
openSUSE Leap Beta:
* no issues at the moment
* you'll be affected by same issue as Guillaume in SCC
## Doug
On PTO - No updates
* Community meeting
* Discussed the next steps for the proposed Code of Conduct
* Added GSoC issue to modernise TSP website for next year. Could use a
mentor https://github.com/openSUSE/mentoring/issues/185
* GSoC
* openSUSE accepted as mentor organization
* Added project for Rancher.
* oSC22
* 38 registrations, 12 submissions, 8 hours
* CfP goes until April 14
* OSCAL oSC22
* 7 registrations, 1 submissions, x hours
* CfP goes until April 26
* ddemaio will be gone until April 18
sasi and cboltz can still release on news-o-o, otherwise there is no
offical backup.
Collbaration on any sort of annoucements can still be done as part of
community meetings on Tuesdays/Thursdays.
^ Doug feel free to change this
## Dirk
* GPLv3 free busybox container work in progress (busybox-links was the
last found offender)
* Still on progress on rust 1.58/rust 1.59 / ghc issues on armv6 and
armv7: all have the same root cause, use of SWP/SWPB instructions which
is imperfectly emulated by the aarch64 host kernel. works fine with
armv6/v7 kernel.
* Another build time improvement on post-build-checks, ~ factor 10
speedup in one of the scripts leading to a few seconds saved on every
build.
## Wolfgang (Package Hub), Scott Bahling
short discussion devel:LEO devel:ALP, not much to see now. But it's
public.
## Maintenance team (Marina or Marcus, Maurizio (m4u))
- Marcus: 15.4 is set up channel wise, updates will go in testing
occasionaly, if you need more ping me, no openqa setup yet
- Marcus: 15.3 openQA is ok again.
- Marina: SLE-PackageHub overlaps
(https://github.com/openSUSE/openSUSE-release-process/issues/71) work
in progress following the initial list of overlapping packages
(https://progress.opensuse.org/issues/106610#note-3). More incidents
are under QA. Work is going on and under control (and tracked
internally as jsc#MSC-303).
Already released:
SUSE:Maintenance:22929:265929 (babl libbabl-0_1-0 typelib-1_0-Babl-0_1)
SUSE:Maintenance:23000:266006 (MozillaThunderbird enigmail)
Leap Micro 5.2 - Maintenance setup should be rather small, as we do
override only branding.
https://build.opensuse.org/project/show/openSUSE:Leap:Micro:5.2
Lubos to open a progres-o-o ticket for the maintenance update. Marcus
would also prefer as small overhead as possible. Adrian: we could have
a policy that if there is an updated for Micro it should go only to the
official code-stream even if the package didn't exist there yet.
## Adrian - OBS
Clarification on obs-publishing for 15.4
1
0
Dear Package maintainers and hackers.
Below package(s) in openSUSE:Factory have been failing to build for at
least 4 weeks. We tried to send out notifications to the
configured bugowner/maintainers of the package(s), but so far no
fix has been submitted. This probably means that the
maintainer/bugowner did not yet find the time to look into the
matter and he/she would certainly appreciate help to get this
sorted.
- gr-fcdproplus
- preinstallimage-base
- preinstallimage-minimal
Unless somebody is stepping up and submitting fixes, the listed
package(s) are going to be removed from openSUSE:Factory.
Kind regards,
DimStar / Dominique Leuenberger <dimstar(a)opensuse.org>
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
attica-qt5 (5.91.0 -> 5.92.0)
bluez-qt (5.91.0 -> 5.92.0)
breeze5-icons (5.91.0 -> 5.92.0)
bubblewrap (0.5.0 -> 0.6.1)
frameworkintegration (5.91.0 -> 5.92.0)
kactivities-stats (5.91.0 -> 5.92.0)
kactivities5 (5.91.0 -> 5.92.0)
karchive (5.91.0 -> 5.92.0)
kbookmarks (5.91.0 -> 5.92.0)
kcalendarcore (5.91.0 -> 5.92.0)
kcmutils (5.91.0 -> 5.92.0)
kcodecs (5.91.0 -> 5.92.0)
kcompletion (5.91.0 -> 5.92.0)
kconfig (5.91.0 -> 5.92.0)
kconfigwidgets (5.91.0 -> 5.92.0)
kcontacts (5.91.0 -> 5.92.0)
kcoreaddons (5.91.0 -> 5.92.0)
kcrash (5.91.0 -> 5.92.0)
kdav (5.91.0 -> 5.92.0)
kdbusaddons (5.91.0 -> 5.92.0)
kdeclarative (5.91.0 -> 5.92.0)
kded (5.91.0 -> 5.92.0)
kdesu (5.91.0 -> 5.92.0)
kdnssd-framework (5.91.0 -> 5.92.0)
kdoctools (5.91.0 -> 5.92.0)
kemoticons (5.91.0 -> 5.92.0)
kfilemetadata5 (5.91.0 -> 5.92.0)
kglobalaccel (5.91.0 -> 5.92.0)
kguiaddons (5.91.0 -> 5.92.0)
kholidays (5.91.0 -> 5.92.0)
khtml (5.91.0 -> 5.92.0)
ki18n (5.91.0 -> 5.92.0)
kiconthemes (5.91.0 -> 5.92.0)
kidletime (5.91.0 -> 5.92.0)
kimageformats (5.91.0 -> 5.92.0)
kinit (5.91.0 -> 5.92.0)
kio (5.91.0 -> 5.92.0)
kirigami2 (5.91.0 -> 5.92.0)
kitemmodels (5.91.0 -> 5.92.0)
kitemviews (5.91.0 -> 5.92.0)
kitinerary
kjobwidgets (5.91.0 -> 5.92.0)
kjs (5.91.0 -> 5.92.0)
knewstuff (5.91.0 -> 5.92.0)
knotifications (5.91.0 -> 5.92.0)
knotifyconfig (5.91.0 -> 5.92.0)
kpackage (5.91.0 -> 5.92.0)
kparts (5.91.0 -> 5.92.0)
kpeople5 (5.91.0 -> 5.92.0)
kplotting (5.91.0 -> 5.92.0)
kpty (5.91.0 -> 5.92.0)
kquickcharts (5.91.0 -> 5.92.0)
kross (5.91.0 -> 5.92.0)
krunner (5.91.0 -> 5.92.0)
kservice (5.91.0 -> 5.92.0)
ktexteditor (5.91.0 -> 5.92.0)
ktextwidgets (5.91.0 -> 5.92.0)
kunitconversion (5.91.0 -> 5.92.0)
kwallet (5.91.0 -> 5.92.0)
kwidgetsaddons (5.91.0 -> 5.92.0)
kwindowsystem (5.91.0 -> 5.92.0)
kxmlgui (5.91.0 -> 5.92.0)
libKF5ModemManagerQt (5.91.0 -> 5.92.0)
libKF5NetworkManagerQt (5.91.0 -> 5.92.0)
libnvme (1.0~5 -> 1.0~6)
lvm2
lvm2-device-mapper
mdevctl (0.81 -> 1.1.0)
nvme-cli (2.0~5 -> 2.0~6)
pam
pam-full-src
permissions (1599_20210901 -> 1599_20220309)
plasma-framework (5.91.0 -> 5.92.0)
prison-qt5 (5.91.0 -> 5.92.0)
purpose (5.91.0 -> 5.92.0)
python-SQLAlchemy (1.4.31 -> 1.4.32)
qqc2-desktop-style (5.91.0 -> 5.92.0)
remmina (1.4.24 -> 1.4.25)
solid (5.91.0 -> 5.92.0)
sonnet (5.91.0 -> 5.92.0)
syndication (5.91.0 -> 5.92.0)
syntax-highlighting (5.91.0 -> 5.92.0)
threadweaver (5.91.0 -> 5.92.0)
util-linux (2.37.3 -> 2.37.4)
util-linux-systemd (2.37.3 -> 2.37.4)
=== Details ===
==== attica-qt5 ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Attica5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== bluez-qt ====
Version update (5.91.0 -> 5.92.0)
Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Port to ecm_add_qml_module
==== breeze5-icons ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add app icon for TeXstudio (kde#391459)
==== bubblewrap ====
Version update (0.5.0 -> 0.6.1)
Subpackages: bubblewrap-zsh-completion
- Update to 0.6.1:
- Add a release checklist
- completions: Make zsh completion non-executable
The Autotools build system installed it with 0644 permissions because
it's listed as DATA, but the Meson build system installs executable
files as executable by default.
zsh completions don't need to be executable to work, and this one doesn't
have the `#!` marker that should start an executable script.
- update to 0.6.0:
- meson: Improve compatibility with Meson 0.49
That version doesn't allow more than two arguments for define_variable.
- Disable test-specifying-pidns.sh under 'meson dist' while I investigate
This test is hanging when run under 'meson dist' for some reason, but
not when run under 'meson test', and not locally, only in the Github
Workflow-based CI. Disable it for now.
- meson: Actually build and run the tests
- tests: Fix compiler warnings for unused arguments
- meson: Run test scripts from $srcdir
- meson: Make G_TEST_SRCDIR, G_TEST_BUILDDIR match Autotools
- meson: Run the Python test script with Python, not bash
The python build option can be used to swap to a different interpreter,
for environments like the Steam Runtime where the python3 executable in
the PATH is extremely old but there is a better interpreter available.
This is treated as non-optional, because Meson is written in Python,
so the situation where there is no Python interpreter at build-time
shouldn't arise.
- meson: Build the try-syscall helper
- meson: Build tests with equivalent of -I$(top_srcdir) -I$(top_builddir)
- meson.build: Remove unnecessary check for sh
- Add a Meson build system
This allows bwrap to be built as a subproject in larger Meson projects.
When built as a subproject, we install into the --libexecdir and
require a program prefix to be specified: for example, Flatpak would use
program_prefix=flatpak- to get /usr/libexec/flatpak-bwrap. Verified to
be backwards-compatible as far as Meson 0.49.0 (Debian 9 backports).
Loosely based on previous work by Jussi Pakkanen (see #133).
Differences between the Autotools and Meson builds:
The Meson build requires a version of libcap that has pkg-config
metadata (introduced in libcap 2.23, in 2013).
The Meson build has no equivalent of --with-priv-mode=setuid. On
distributions like Debian <= 10 and RHEL <= 7 that require a setuid bwrap
executable, the sysadmin or distribution packaging will need to set the
correct permissions on the bwrap executable; Debian already did this via
packaging rather than the upstream build system.
The Meson build supports being used as a subproject, and there is CI
for this. It automatically disables shell completions and man pages,
moves the bubblewrap executable to ${libexecdir}, and renames the
bubblewrap executable according to a program_prefix option that the
caller must specify (for example, Flatpak would use
- Dprogram_prefix=flatpak- to get /usr/libexec/flatpak-bwrap). See the
tests/use-as-subproject/ directory for an example.
- Use HEAD to refer to other projects' default branches in documentation
This makes the URL independent of the name they have chosen for their
default branches.
- workflows: Update for rename of default branch to main
- tests: Exercise seccomp filters
- Allow loading more than one seccomp program
This will allow Flatpak to combine an allow-list (default-deny) of
known system calls with a deny-list (default-allow) of system calls
that are undesired.
Resolves: https://github.com/containers/bubblewrap/issues/453
- Generalize linked lists of LockFile and SetupOp
I'm about to add a third linked list, for seccomp programs, which would
seem like too much duplication.
- Handle argc == 0 better
Unfortunately it's possible for argc to be 0, so error out pretty early
on in that case. I don't think this is a security issue in this case.
- Fix typo
- Remove trailing whitespace
- Fix spelling
- bash: Fix shellcheck warnings
- bash: Invoke bash using /usr/bin/env
- bubblewrap: Avoid a -Wjump-misses-init false-positive
When building with -Wjump-misses-init as part of a larger project, gcc
reports that we jump past initialization of cover_proc_dirs. This is
technically true, but we only use this variable in the case where it's
initialized, so that's harmless.
However, we can avoid this altogether by making the array static and
constant, which allows it to be moved from initialized data to read-only
data.
- bind-mount: Be more const-correct
When compiled with -Wwrite-strings as part of a larger project, gcc and
clang both warn that we're assigning a string constant to a mutable
struct member. There's actually no reason why it should be mutable, so
make it const.
- die_with_error: Save errno sooner
We need to save errno immediately, otherwise it could be overwritten
by a failing library call somewhere in the implementation of fprintf.
- main: Warn when non-repeatable options are repeated
A user might reasonably expect that `bwrap --seccomp 3 --seccomp 4 ...`
would load seccomp programs from both fds 3 and 4, but in fact it only
loads the program from fd 4.
Helps: https://github.com/containers/bubblewrap/issues/453
Resolves: https://github.com/containers/bubblewrap/issues/454
- utils: Add warn()
- Add SPDX-License-Identifier for files that already specify license
This is a step towards REUSE compliance. Third-party files that we do
not otherwise edit (git.mk, m4/attributes.m4) are excluded here.
- tests: Use preferred spelling for SPDX license identifiers
- Remove obsolete .travis.yml
We no longer use Travis-CI.
- Remove obsolete papr CI
We no longer use this.
==== frameworkintegration ====
Version update (5.91.0 -> 5.92.0)
Subpackages: frameworkintegration-plugin libKF5Style5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kactivities-stats ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Move Boost dependency to BUILD_TESTING block
==== kactivities5 ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kactivities5-imports libKF5Activities5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Check executables exist in PATH before passing them to QProcess
* Port to ecm_add_qml_module
==== karchive ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== kbookmarks ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Bookmarks5 libKF5Bookmarks5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Check executables exist in PATH before passing them to QProcess
==== kcalendarcore ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Compare timeSpecs when comparing incidences for equality
* Add Qt6 Android CI
* Preserve timeSpec of all-day event's dtEnd
==== kcmutils ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5KCMUtils5 libKF5KCMUtils5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kcodecs ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Codecs5 libKF5Codecs5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
==== kcompletion ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Completion5 libKF5Completion5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
==== kconfig ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigCore5-lang libKF5ConfigGui5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Remove broken Python bindings generation
* Add KWindowStateSaver
* Remove warning from kauthorized.h
* KConfigCompiler: support ItemAccessors=true with signalling items
* Add Qt6 Android CI
* Use our deprecation macros rather than Q_DECL_DEPRECATED directly
* KConfigPropertyMap: Clean up internal leftovers of autosave feature
* QMake pri files: fix missing new path to version header
* Support build without Qt session manager
* Add KConfig GUI logging category
==== kconfigwidgets ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5ConfigWidgets5 libKF5ConfigWidgets5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
* KHamburgerMenu: Avoid null receiver warning upon showing menubar
* Port away from deprecated KAuth includes
* Add @since 5.92 in KColorScheme::operator== API docs
* Add a KColorScheme::operator==
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
* Add explicit CMake option HAVE_KAUTH
* KHambugerMenu: Fix crash on windows when showing the window menubar
from the KHamburgerMenu (kde#449806)
==== kcontacts ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kcontacts-lang libKF5Contacts5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Split internal and external API into different files
* Also install the address format API header
* Improve output for incomplete addresses and formats with 3+ fields per line
* Rewrite the address formatter
==== kcoreaddons ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kcoreaddons-lang libKF5CoreAddons5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Deprecate KPluginMetaData::fromDesktopFile
* KPluginMetaDataTest: Explicitly call dedicated constructors
* KPluginMetaData: Emit runtime deprecation warnings for deprecated code path
* KPluginMetaData: Add note for deprecated code paths to constructor
* KPluginMetaData: Use QFileInfo::completeBaseName for deriving plugin id
* Remove broken Python bindings generation
* Downgrade mismatched host tool version to WARNING
* Add a way to indicate to not show a notification on finished
* Allow to create valid KPluginMetaData for plugins without embedded JSON metadata
* Add an OUTPUT_FILE argument to kcoreaddons_desktop_to_json()
* KSignalHandler: attempt to fix Windows build
* Add KSignalHandler
* Build benchmarks of kdirwatch test as separate lib
* Build benchmarks of ktexttohtml as separate executable
==== kcrash ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== kdav ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kdav-lang libKF5DAV5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Fix the Qt6 Android build
* Add iCloud info to README
* Fix variable name typo
* Replace absolute URIs with relative ones in calendar-multiget request
==== kdbusaddons ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kdbusaddons-tools libKF5DBusAddons5 libKF5DBusAddons5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Remove broken Python bindings generation
==== kdeclarative ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5Declarative5-lang libKF5QuickAddons5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Fix double deleting of NetworkAccessManagerFactory (kde#450507)
* Delete networkAccessManagerFactory when we delete the engine
* Improve Open[app]() functions (kde#443984)
==== kded ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kdesu ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Su5 libKF5Su5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Drop obsolete KF5Service and add KF5Config dependency
==== kdnssd-framework ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5DNSSD5 libKF5DNSSD5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kdoctools ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kdoctools-lang libKF5DocTools5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* [ca@valencia] Add Catalan (Valencian) Language
==== kemoticons ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kfilemetadata5 ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kfilemetadata5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Port to KPluginMetaData::findPlugins for plugin querying
* enable mobipocket extractor by default
* Use std::unique_ptr to manage lifetime of d-ptr
==== kglobalaccel ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccel5-lang libKF5GlobalAccelPrivate5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kguiaddons ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5GuiAddons5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
* [KOverlayIconEngine] Implement ScaledPixmapHook for high-dpi support
==== kholidays ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Holidays5 libKF5Holidays5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* holiday_pl_pl - add Fat Thursday and State Holidays w/o day-off (kde#447201)
==== khtml ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5KHtml5 libKF5KHtml5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== ki18n ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5I18n5 libKF5I18n5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
==== kiconthemes ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5IconThemes5 libKF5IconThemes5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
* Fix pixelated icons in item views (kde#450336)
* [KIconEngine] Create high-dpi pixmap in paint
* Read the reference icon already scaled
==== kidletime ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* General code clean-up
==== kimageformats ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Add write tests for heif/avif/jxl
* jxl: encoding improvements
* avif: adjust dimension and memory limits
==== kinit ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kinit-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Check executables exist in PATH before passing them to QProcess
==== kio ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kio-core kio-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Too many changes since 5.91.0, only listing bugfixes:
* KFilePlacesView: Fix crash when dragging over topmost section header (kde#450813)
* Hide mount point labels if mount point can't be found (kde#449791)
* Fix trash KCM not having any icon on wayland (kde#449859)
* Fix potential crash in pastejob (kde#439948)
* [KFilePlacesView] Mount place when dropping onto it (kde#206629)
* [knewfilemenu] Bind stat job connection lifetime to dialog, not the whole menu (kde#433347)
==== kirigami2 ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kirigami2-lang libKF5Kirigami2-5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Dialog: Accommodate vertical scrollbars widths properly
* Dialog: Fix implicitWidth binding loop when absolute maximum size used
* consider visibility when calculating page content positions
* Add Qt6 Android CI
* update commandlink url to a working one
* Dialog: Fix wrong import version in documentation
* Documentation: Add Dialog and NavigationTabBar to homepage
* Dialog: Fix padding
* FormLayout: make section headings slightly smaller but bolder
* NavigationTabBar: check checkedButton state before updating currentIndex
* Drawer should not eat mouse events at edges (kde#438017)
* Add a CI job to build and test the static build
* Use extra spacing to distinguish narrow-mode form labels and UI controls
* Revert "Bold labels for narrow FormLayout" (kde#450105)
* fix autotests/wheelhandler/tst_scrolling.qml after commit de215e19
* Units: add mediumSpacing property
* Use a nested toolbutton instead
* Ensure OverlayDrawer handles is keyboard navigable
* CheckableListItem: Reset list item's checked property when checking box
* CheckableListItem: Only conditionally trigger action when checked
* comment over the class
* PageRow: properly handle back button
* WheelHandler: Round contentX/contentY positions (kde#449884)
* Fix some more installation paths
* Allow compiling against Qt configured with -no-opengl
* Fix install path of settings and swipe navigator components
==== kitemmodels ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kitemmodels-imports libKF5ItemModels5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
* Fix proxy model smoke test with Qt6
==== kitemviews ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5ItemViews5 libKF5ItemViews5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Remove broken Python bindings generation
* Add Android Qt6 CI
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
==== kitinerary ====
Subpackages: libKPimItinerary5 libKPimItinerary5-lang
- Exclude test known to fail with kcontacts 5.92.
==== kjobwidgets ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5JobWidgets5 libKF5JobWidgets5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Remove broken Python bindings generation
==== kjs ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5JS5 libKF5JSApi5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== knewstuff ====
Version update (5.91.0 -> 5.92.0)
Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuff5-lang libKF5NewStuffCore5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* kmoretools: Fix OBS appstream id (kde#414533)
* Add conditional cache preference to http requests
* Engine: Ensure we are not using the wrong ProvidersUrl
* Add http2 to KNewStuff requests
* Engine::atticaProviders is being added in 5.92
* KNSCore::Engine: Expose our Attica::Provider
==== knotifications ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Notifications5 libKF5Notifications5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Allow to build the Java parts with Gradle from both Qt5 and Qt6
* Fix compilation on Android with Qt6
==== knotifyconfig ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5NotifyConfig5 libKF5NotifyConfig5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kpackage ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kpackage-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kparts ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Parts5 libKF5Parts5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== kpeople5 ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kpeople5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== kplotting ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Android Qt6 CI
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
==== kpty ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Pty5 libKF5Pty5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Fix FindUTEMPTER when cross-compiling
==== kquickcharts ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kross ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kross-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== krunner ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Bundle plasma-runner.desktop into a qrc, for CI and Windows
==== kservice ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kservice-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Use :/kservicetypes5 instead of :/kf/kservicetypes5
* Add Qt6 Android CI
* Explicitely call KPluginMetaData::fromDesktopFile instead of
KPluginMetaData(QString fileName) constructor
==== ktexteditor ====
Version update (5.91.0 -> 5.92.0)
Subpackages: ktexteditor-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Too many changes since 5.91.0, only listing bugfixes:
* vimode: implement hlsearch (kde#449641, kde#449643)
* view: fix buggy scrolling on macOS (kde#442060)
* Guard against null widgets (kde#450094)
* use the url of the latest used document for save (kde#448618)
* Differentiate docs with identical filenames (kde#381532)
==== ktextwidgets ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5TextWidgets5 libKF5TextWidgets5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
==== kunitconversion ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5UnitConversion5 libKF5UnitConversion5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Add teaspoon (tsp) and tablespoon (tbsp) units (kde#450908)
==== kwallet ====
Version update (5.91.0 -> 5.92.0)
Subpackages: kwallet-tools kwallet-tools-lang kwalletd5 kwalletd5-lang libKF5Wallet5 libkwalletbackend5-5
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== kwidgetsaddons ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5WidgetsAddons5 libKF5WidgetsAddons5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* KCharSelect: connect to the appropriate QFontComboBox signal (kde#445477)
* Remove broken Python bindings generation
* Check executables exist in PATH before passing them to QProcess
* Add Android Qt6 CI
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
* Make KSqueezedTextLabel more robust wrt QFontMetrics
==== kwindowsystem ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5WindowSystem5 libKF5WindowSystem5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* Ensure that xdgActivationTokenArrived is always emitted asynchronously (kde#450342)
==== kxmlgui ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5XmlGui5 libKF5XmlGui5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Remove outdated readme file
* Add Qt6 Android CI
* Add an old formatting commit to git blame ignore file
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
* Support build without Qt session manager
* Add an action in help menu for command bar
* Update translation context of two strings
==== libKF5ModemManagerQt ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Fix typo
* Normalise where headers are installed with the rest of KF
==== libKF5NetworkManagerQt ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- No code change since 5.91.0
==== libnvme ====
Version update (1.0~5 -> 1.0~6)
- Update to version 1.0-rc6:
* tree: add nvme_ctrl_get_ana_state() (bsc#1195938)
* tree: link paths to namespaces in nvme_subsystem_scan_namespace() (bsc#1195938)
* ioctl.h: ns list bug fix (wrong cns value)
* types.h: Key Value Command Set Identifier added (NVME_CSI_KV)
* types: fix status code type bug (wrong masking)
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- Udev database has incomplete information about device /dev/sda. (bsc#1181242)
+ 0024-pvscan-don-t-use-udev-for-external-device-info.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit
- Udev database has incomplete information about device /dev/sda. (bsc#1181242)
+ 0024-pvscan-don-t-use-udev-for-external-device-info.patch
==== mdevctl ====
Version update (0.81 -> 1.1.0)
- spec: Add /etc/mdevctl.d/scripts.d directory to %files
- Update to version v1.1.0 (jsc#SLE-18449):
* use imported std::env for CARGO_PKG_VERSION in build.rs directly
* fix build.rs to allow specify exact path or name of the rst2man
* Don't call unnecessary to_string()
* Report a useful error when /etc/mdevctl.d doesn't exist
* Handle FS permissions problems for defined devices
* Fix needless borrow warning from clippy
* tests: read stdin in callout test scripts
* Report root error when a callout can't be executed
* Don't emit warning for files in /etc/mdevctl.d/scripts.d
* env: add function to get base scripts directory
==== nvme-cli ====
Version update (2.0~5 -> 2.0~6)
Subpackages: nvme-cli-bash-completion nvme-cli-zsh-completion
- Update to version 2.0-rc6:
* nvme: print out ANA state for 'list-subsys' (bsc#1195938)
* nvme: Explicit initialize all command line options (bsc#1195945)
* nvme: Explicit initialize passthru command line options
* nvme: list_ns bug fix (csi option enable)
* nvme: nvme write bug fix (no parse for option)
* documenation updates
==== pam ====
Subpackages: pam-32bit pam_unix
- pam-hostnames-in-access_conf.patch: update with upstream
submission. Fixes several bugs including memory leaks.
- Move group.conf and faillock.conf to /usr/etc/security
- Update to current git for enhanced vendordir support (pam-git.diff)
Obsoletes:
- 0001-Include-pam_xauth_data.3.xml-in-source-archive-400.patch
- 0002-Only-include-vendordir-in-manual-page-if-set-401.patch
- 0003-Use-vendor-specific-limits.conf-as-fallback-402.patch
==== pam-full-src ====
- pam-hostnames-in-access_conf.patch: update with upstream
submission. Fixes several bugs including memory leaks.
- Move group.conf and faillock.conf to /usr/etc/security
- Update to current git for enhanced vendordir support (pam-git.diff)
Obsoletes:
- 0001-Include-pam_xauth_data.3.xml-in-source-archive-400.patch
- 0002-Only-include-vendordir-in-manual-page-if-set-401.patch
- 0003-Use-vendor-specific-limits.conf-as-fallback-402.patch
==== permissions ====
Version update (1599_20210901 -> 1599_20220309)
Subpackages: chkstat permissions-config
- Update to version 20220309:
* apptainer whitelisting (bsc#1196145)
- Update to version 20220202:
* mount.nfs: switch from migration mode to fixed path in /usr/sbin
* changed gendered pronouns
* mgetty: faxq-helper now finally reside in /usr/libexec
==== plasma-framework ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* KPluginMetaData::serviceTypes() is gone in KF6
* Remove or upgrade QQC1 imports from tests where possible
* Port away from QXcbWindowFunctions for Qt6
* show the header if both this and dialog background fallback
* Fix a -Wint-to-void-pointer-cast warning
* breeze: Clean up SVG Tiny 1.2 errors in button
* Units: add mediumSpacing
* Units: update smallSpacing and largeSpacing documentation
* Use POSITION_INDEPENDENT_CODE for static lib (qt6)
* Use KConfigPropertyMap instead of KDeclarative::ConfigPropertyMap for KF6
* Remove the use of the QtQml namespace
* Adapt to the new location of the Qt namespace meta object in Qt6
* Adapt to native event filter signature changes in Qt6
* Adapt to the removed of QtX11Extras in Qt6
* Adapt to QQuickItem::geometryChanged being renamed in Qt6
* Port to QRegularExpression
* Adapt to Qt6 container sizes no longer being a 32bit integer
==== prison-qt5 ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Prison5 prison-qt5-imports
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
* For KF6 use the more idiomatic include files installation layout
* Fix include dir for .pri file
* Normalise where headers are installed with the rest of KF
==== purpose ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 purpose-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Remove call to ecm_find_qmlmodule(org.kde.kdeconnect)
==== python-SQLAlchemy ====
Version update (1.4.31 -> 1.4.32)
- update to version 1.4.32:
* orm
+ [orm] [bug] [regression] Fixed regression where the ORM
exception that is to be raised when an INSERT silently fails to
actually insert a row (such as from a trigger) would not be
reached, due to a runtime exception raised ahead of time due to
the missing primary key value, thus raising an uninformative
exception rather than the correct one. For 1.4 and above, a new
FlushError is added for this case that?s raised earlier than the
previous ?null identity? exception was for 1.3, as a situation
where the number of rows actually INSERTed does not match what
was expected is a more critical situation in 1.4 as it prevents
batching of multiple objects from working correctly. This is
separate from the case where a newly fetched primary key is
fetched as NULL, which continues to raise the existing ?null
identity? exception. References: #7594
+ [orm] [bug] Fixed issue where using a fully qualified path for
the classname in relationship() that nonetheless contained an
incorrect name for path tokens that were not the first token,
would fail to raise an informative error and would instead fail
randomly at a later step. References: #7697
* engine
+ [engine] [bug] Adjusted the logging for key SQLAlchemy
components including Engine, Connection to establish an
appropriate stack level parameter, so that the Python logging
tokens funcName and lineno when used in custom logging
formatters will report the correct information, which can be
useful when filtering log output; supported on Python 3.8 and
above. Pull request courtesy Markus Gerstel. References: #7612
* sql
+ [sql] [bug] Fixed type-related error messages that would fail
for values that were tuples, due to string formatting syntax,
including compile of unsupported literal values and invalid
boolean values. References: #7721
+ [sql] [bug] [mysql] Fixed issues in MySQL SET datatype as well
as the generic Enum datatype where the __repr__() method would
not render all optional parameters in the string output,
impacting the use of these types in Alembic autogenerate. Pull
request for MySQL courtesy Yuki Nishimine. References: #7598,
[#7720], #7789
+ [sql] [bug] The Enum datatype now emits a warning if the
Enum.length argument is specified without also specifying
Enum.native_enum as False, as the parameter is otherwise
silently ignored in this case, despite the fact that the Enum
datatype will still render VARCHAR DDL on backends that don?t
have a native ENUM datatype such as SQLite. This behavior may
change in a future release so that ?length? is honored for all
non-native ?enum? types regardless of the ?native_enum? setting.
+ [sql] [bug] Fixed issue where the HasCTE.add_cte() method as
called upon a TextualSelect instance was not being accommodated
by the SQL compiler. The fix additionally adds more
?SELECT?-like compiler behavior to TextualSelect including that
DML CTEs such as UPDATE and INSERT may be accommodated.
References: #7760
* asyncio
+ [asyncio] [bug] Fixed issues where a descriptive error message
was not raised for some classes of event listening with an async
engine, which should instead be a sync engine instance.
+ [asyncio] [bug] Fixed issue where the AsyncSession.execute()
method failed to raise an informative exception if the
Connection.execution_options.stream_results execution option
were used, which is incompatible with a sync-style Result object
when using an asyncio calling style, as the operation to fetch
more rows would need to be awaited. An exception is now raised
in this scenario in the same way one was already raised when the
Connection.execution_options.stream_results option would be used
with the AsyncConnection.execute() method. Additionally, for
improved stability with state-sensitive database drivers such as
asyncmy, the cursor is now closed when this error condition is
raised; previously with the asyncmy dialect, the connection
would go into an invalid state with unconsumed server side
results remaining. References: #7667
* postgresql
+ [postgresql] [usecase] Added compiler support for the PostgreSQL
NOT VALID phrase when rendering DDL for the CheckConstraint,
ForeignKeyConstraint and ForeignKey schema constructs. Pull
request courtesy Gilbert Gilb?s. References: #7600
* mysql
+ [mysql] [bug] [regression] Fixed regression caused by #7518
where changing the syntax ?SHOW VARIABLES? to ?SELECT @@? broke
compatibility with MySQL versions older than 5.6, including
early 5.0 releases. While these are very old MySQL versions, a
change in compatibility was not planned, so version-specific
logic has been restored to fall back to ?SHOW VARIABLES? for
MySQL server versions < 5.6. References: #7518
* mariadb
+ [mariadb] [bug] [regression] Fixed regression in
mariadbconnector dialect as of mariadb connector 1.0.10 where
the DBAPI no longer pre-buffers cursor.lastrowid, leading to
errors when inserting objects with the ORM as well as causing
non-availability of the CursorResult.inserted_primary_key
attribute. The dialect now fetches this value proactively for
situations where it applies. References: #7738
* sqlite
+ [sqlite] [usecase] Added support for reflecting SQLite inline
unique constraints where the column names are formatted with
SQLite ?escape quotes? [] or `, which are discarded by the
database when producing the column name. References: #7736
+ [sqlite] [bug] Fixed issue where SQLite unique constraint
reflection would fail to detect a column-inline UNIQUE
constraint where the column name had an underscore in its name.
References: #7736
* oracle
+ [oracle] [bug] Fixed issue in Oracle dialect where using a
column name that requires quoting when written as a bound
parameter, such as "_id", would not correctly track a Python
generated default value due to the bound-parameter rewriting
missing this value, causing an Oracle error to be raised.
References: #7676
+ [oracle] [bug] [regression] Added support to parse ?DPI? error
codes from cx_Oracle exception objects such as DPI-1080 and
DPI-1010, both of which now indicate a disconnect scenario as of
cx_Oracle 8.3. References: #7748
* tests
+ [tests] [bug] Improvements to the test suite?s integration with
pytest such that the ?warnings? plugin, if manually enabled,
will not interfere with the test suite, such that third parties
can enable the warnings plugin or make use of the -W parameter
and SQLAlchemy?s test suite will continue to pass. Additionally,
modernized the detection of the ?pytest-xdist? plugin so that
plugins can be globally disabled using
PYTEST_DISABLE_PLUGIN_AUTOLOAD=1 without breaking the test suite
if xdist were still installed. Warning filters that promote
deprecation warnings to errors are now localized to
SQLAlchemy-specific warnings, or within SQLAlchemy-specific
sources for general Python deprecation warnings, so that
non-SQLAlchemy deprecation warnings emitted from pytest plugins
should also not impact the test suite. References: #7599
+ [tests] [bug] Made corrections to the default pytest
configuration regarding how test discovery is configured, to fix
issue where the test suite would not configure warnings
correctly and also attempt to load example suites as tests, in
the specific case where the SQLAlchemy checkout were located in
an absolute path that had a super-directory named ?test?.
References: #7045
==== qqc2-desktop-style ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Thicken menus on transient touch as well as being in Tablet Mode
* PlasmaDesktopTheme: ensure we initialise the colours
* Fix typo
* PlasmaDesktopTheme: Do not compute the colors for invisible items
* PlasmaDesktopTheme: Do not call syncColors after syncWindow
* Menu: use hmargin and vmargin from QStyle
* Support displaying icons in ItemDelegate (kde#425867)
* fix checkbox position for CheckDelegate
* Drop lib prefix when building for Windows
* KQuickStyleItem: Simplify the updatePolish
* Use correct DBus signal for listening for font changes
* Use raw pointer instead of QPointer to track watchers
==== remmina ====
Version update (1.4.24 -> 1.4.25)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc
- Updated to remmina version 1.4.25
* kiosk: Drop GNOME MediaKeys plugin !2377
* Honour soft links target in SFTP !2379
* Optional close confirmation !2380
* Fix some build warnings !2382
* Fix manpages !2378
* Snap cleanup + kwallet support !2381
* Deprecations and amend g_date_time_format_iso8601 !2383
* Fixes to snap build !2384
* Removing dependencies that are available as extensions !2385
* FreeRDP_OffscreenSupportLevel is of type UINT32 !2386
* Minor fixes !2387
* Get the right value for FreeRDP_AutoReconnectMaxRetries !2388
==== solid ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5Solid5 libKF5Solid5-lang solid-imports solid-tools
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Use enum in switch instead of raw int
* Add Qt6 Android CI
* udisks backend: Add UD2_DBUS_PATH_BLOCKDEVICES and use more constants
* udev: Do not ignore joysticks
* Check executables exist in PATH before passing them to QProcess
==== sonnet ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5SonnetCore5 libKF5SonnetCore5-lang libKF5SonnetUi5 sonnet-imports
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* settings: Emit `autodetectLanguageChanged`
* Add Qt6 Android CI
* Make the BUILD_DESIGNERPLUGIN option dependent on not cross-compiling
* QMake pri files: fix missing new path to version header
==== syndication ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== syntax-highlighting ====
Version update (5.91.0 -> 5.92.0)
Subpackages: libKF5SyntaxHighlighting5 libKF5SyntaxHighlighting5-lang
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* increment bash version number
* Bash: fix parameter expansion replacement with path without extended glob
* Lua: fix function highlighting with local function (#17)
* Add Android Qt6 CI
* Propagate Qt major version to external project build of the host tools
* increment versions
* Bash/Zsh: fix keyword ! in ! cmd
==== threadweaver ====
Version update (5.91.0 -> 5.92.0)
- Update to 5.92.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.92.0
- Changes since 5.91.0:
* Add Qt6 Android CI
==== util-linux ====
Version update (2.37.3 -> 2.37.4)
Subpackages: libblkid1 libblkid1-32bit libfdisk1 libmount1 libmount1-32bit libsmartcols1 libuuid-devel libuuid1 libuuid1-32bit util-linux-lang
- Update to version 2.37.4:
* Fix security issue in chsh(1) and chfn(8) (CVE-2022-0563).
SUSE is not affected (bsc#1196241).
- Fix "su -s" bash completion
(bsc#1172427, util-linux-bash-completion-su-chsh-l.patch).
==== util-linux-systemd ====
Version update (2.37.3 -> 2.37.4)
- Update to version 2.37.4:
* Fix security issue in chsh(1) and chfn(8) (CVE-2022-0563).
SUSE is not affected (bsc#1196241).
- Fix "su -s" bash completion
(bsc#1172427, util-linux-bash-completion-su-chsh-l.patch).
- update to 2.37.3 (bsc#1194976):
This release fixes two security mount(8) and umount(8) issues:
* CVE-2021-3996
Improper UID check in libmount allows an unprivileged user to unmount FUSE
filesystems of users with similar UID.
* CVE-2021-3995
This issue is related to parsing the /proc/self/mountinfo file allows an
unprivileged user to unmount other user's filesystems that are either
world-writable themselves or mounted in a world-writable directory.
1
0