Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20181107
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaThunderbird (60.2.1 -> 60.3.0)
alsa-plugins
apache2
at (3.1.20 -> 3.1.23)
babl (0.1.56 -> 0.1.58)
bash-completion
bluez-qt
cairo (1.15.14 -> 1.16.0)
ccache (3.4.2 -> 3.5)
cryptsetup (2.0.4 -> 2.0.5)
cups
curl (7.61.1 -> 7.62.0)
dmidecode
dnsmasq (2.78 -> 2.80)
dracut
emacs
ffmpegthumbs
frei0r-plugins
fribidi (1.0.1 -> 1.0.5)
gnome-photos
gnome-software (3.30.2 -> 3.30.5)
gptfdisk (1.0.1 -> 1.0.4)
graphite2 (1.3.11 -> 1.3.12)
hdparm (9.56 -> 9.57)
iproute2 (4.18 -> 4.19)
ipset (6.38 -> 7.0)
iptables (1.8.0.g85 -> 1.8.1)
java-11-openjdk
javapackages-tools (5.2.0+git20180620.70fa2258 -> 5.3.0)
jemalloc
jing-trang
kiconthemes
kscreenlocker
ktextwidgets
libburn (1.4.8 -> 1.5.0)
libinput (1.12.1 -> 1.12.2)
libisofs (1.4.8 -> 1.5.0)
libmspack (0.6 -> 0.8)
libndp (1.6 -> 1.7)
libopenmpt (0.3.12 -> 0.3.13)
libreoffice (6.1.3.1 -> 6.1.3.2)
libva (2.2.0 -> 2.3.0)
libva-gl (2.2.0 -> 2.3.0)
libvirt (4.8.0 -> 4.9.0)
lightdm (1.26.0 -> 1.28.0)
lightdm-gtk-greeter (2.0.5 -> 2.0.6)
llvm6
log4j
mozjs60 (60.1.0 -> 60.2.2)
mtools (4.0.18 -> 4.0.19)
myspell-dictionaries (20180704 -> 20181025)
netpbm (10.83.2 -> 10.84.2)
nodejs10 (10.12.0 -> 10.13.0)
opencv (3.4.1 -> 3.4.3)
orca (3.30.0 -> 3.30.1)
os-prober
osinfo-db (20180920 -> 20181011)
pcre2 (10.31 -> 10.32)
pesign-obs-integration
postfix
psmisc (23.0 -> 23.2)
publicsuffix (20181003 -> 20181030)
python-pip (18.0 -> 18.1)
python-qt5 (5.10.1 -> 5.11.3)
python-requests (2.19.1 -> 2.20.0)
python-rpm-macros (2017.12.22.d9968ab -> 2018.08.15.ada6d63)
python-setuptools (40.4.3 -> 40.5.0)
python-sip (4.19.8 -> 4.19.13)
python-urllib3 (1.23 -> 1.24)
qalculate (2.6.2 -> 2.8.0)
rdma-core (18.1 -> 20.1)
ruby2.5 (2.5.0 -> 2.5.1)
rubygem-nokogiri (1.8.4 -> 1.8.5)
samba (4.9.1+git.96.c3bff26bf16 -> 4.9.1+git.101.212e237d8ef)
simple-scan (3.30.1.1 -> 3.30.2)
strace (4.24 -> 4.25)
systemd-presets-branding-transactional-server
systemd-presets-common-SUSE
unbound
unixODBC (2.3.6 -> 2.3.7)
upower
vsftpd
xapian-core (1.4.6 -> 1.4.7)
xdg-user-dirs (0.16 -> 0.17)
xfsprogs (4.16.1 -> 4.18.0)
xmlgraphics-fop
zimg (2.7.5 -> 2.8)
zstd (1.3.5 -> 1.3.7)
=== Details ===
==== MozillaThunderbird ====
Version update (60.2.1 -> 60.3.0)
Subpackages: MozillaThunderbird-translations-common
- update to Thunderbird 60.3.0
* various theme fixes
* Shift+PageUp/PageDown in Write window
* Gloda attachment filtering
* Mailing list address auto-complete enter/return handling
* Thunderbird hung if HTML signature references non-existent image
* Filters not working for headers that appear more than once
- Security fixes for the Mozilla platform picked up from 60.3
(Firefox ESR release). In general, these flaws cannot be exploited
through email in Thunderbird because scripting is disabled when
reading mail, but are potentially risks in browser or browser-like
contexts (MFSA 2018-28) (bsc#1112852)
* CVE-2018-12391 (bmo#1478843) (Android only)
HTTP Live Stream audio data is accessible cross-origin
* CVE-2018-12392 (bmo#1492823)
Crash with nested event loops
* CVE-2018-12393 (bmo#1495011)
Integer overflow during Unicode conversion while loading JavaScript
* CVE-2018-12389 (bmo#1498460, bmo#1499198)
Memory safety bugs fixed in Firefox ESR 60.3
* CVE-2018-12390 (bmo#1487098, bmo#1487660, bmo#1490234, bmo#1496159,
bmo#1443748, bmo#1496340, bmo#1483905, bmo#1493347, bmo#1488803,
bmo#1498701, bmo#1498482, bmo#1442010, bmo#1495245, bmo#1483699,
bmo#1469486, bmo#1484905, bmo#1490561, bmo#1492524, bmo#1481844)
Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3
- Update _constraints for armv6/7
- Add patch to fix build on armv7:
* mozilla-bmo1463035.patch
- Add memory-constraints to avoid OOM errors
==== alsa-plugins ====
Subpackages: alsa-plugins-pulse alsa-plugins-pulse-32bit
- Backport of yet another regression fixes in upstream:
0005-Revert-jack-Fix-leaks-when-jack_set_hw_constraint-fa.patch
0006-Revert-usb_stream-Fix-leaks-when-us_set_hw_constrain.patch
0007-Revert-oss-Fix-leaks-when-oss_hw_constraint-fails.patch
- Backport upstream commits:
fix memory leaks and other minor issues in usb_stream plugin,
fix a regression (appearins in PulseAudio) with a52 plugin:
0001-pcm_usb_stream-fix-another-leak-in-snd_pcm_us_open.patch
0002-pcm_usb_stream-remove-unused-parameter-in-snd_pcm_us.patch
0003-pcm_usb_stream-fix-signess-issues.patch
0004-a52_close-set-slave-to-NULL-to-avoid-double-pcm-free.patch
==== apache2 ====
Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils
- the "event" MPM is fully supported since 2.4
- configure an OCSP stapling cache by default (still requires enabling
SSLUseStapling in vhost)
==== at ====
Version update (3.1.20 -> 3.1.23)
- Version update to at 3.1.23 [bsc#1112660]
* 832368-Using_of_the_meaningless_fcntl: Fix call of fcntl by
replacing (long) 1 with FD_CLOEXEC
* 892819-at__improvements_to_atd.service: Improve atd.service,
see bug report 892819
* 885891-at__stale_batchjobs_after_reboot: Remove stale at jobs
after a boot.
* 897669-897670-Some_fixes_in_the_manuals: Fix some warnings in
manpages at.1 and atd.8
* 883730-Remove_invalid_email_from_man_page: Remove invalid email
from man pages.
* Draft of a release script
* Finalised script to release software.
- refresh at-atq-timeformat.patch
- refresh at-adjust_load_to_cpu_count.patch
==== babl ====
Version update (0.1.56 -> 0.1.58)
- Update to version 0.1.58:
+ Preserve color of transparent pixels in conversion to premultiplied alpha
+ Added single precision code-paths for faster fallback/reference conversions
+ New BABL_ICC_INTENT_PERFORMANCE bitflag for combing with intent as bitflags
==== bash-completion ====
- Modify patch PS1-completion-boo903362.patch to make it work with
mksh as well (boo#1104531)
==== bluez-qt ====
Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6
- Use %{_udevrulesdir} macro to specify the install directory for
udev rules instead of a hard-coded path
==== cairo ====
Version update (1.15.14 -> 1.16.0)
Subpackages: libcairo-gobject2 libcairo2 libcairo2-32bit
- Update to version 1.16.0:
+ test: Free resources in pdf2png.
+ Drop skia backend.
+ Revert "Correctly decode Adobe CMYK JPEGs in PDF export".
==== ccache ====
Version update (3.4.2 -> 3.5)
- Make sure bundled zlib is not used
- Make building more verbose
- Update to version 3.5
* Added a boolean debug (CCACHE_DEBUG) configuration option
* Renamed CCACHE_CC to CCACHE_COMPILER
* Added a new command-line option -k/--get-config
* Improved performance substantially when using hash_dir = false
* Renamed "stats zero time" to "stats zeroed"
* Added file_state_matches_ctime option to disable ctime check
==== cryptsetup ====
Version update (2.0.4 -> 2.0.5)
Subpackages: libcryptsetup12 libcryptsetup12-32bit
- Suggest hmac package (boo#1090768)
- remove old upgrade hack for upgrades from 12.1
- New version 2.0.5
Changes since version 2.0.4
~~~~~~~~~~~~~~~~~~~~~~~~~~~
* Wipe full header areas (including unused) during LUKS format.
Since this version, the whole area up to the data offset is zeroed,
and subsequently, all keyslots areas are wiped with random data.
This ensures that no remaining old data remains in the LUKS header
areas, but it could slow down format operation on some devices.
Previously only first 4k (or 32k for LUKS2) and the used keyslot
was overwritten in the format operation.
* Several fixes to error messages that were unintentionally replaced
in previous versions with a silent exit code.
More descriptive error messages were added, including error
messages if
- a device is unusable (not a block device, no access, etc.),
- a LUKS device is not detected,
- LUKS header load code detects unsupported version,
- a keyslot decryption fails (also happens in the cipher check),
- converting an inactive keyslot.
* Device activation fails if data area overlaps with LUKS header.
* Code now uses explicit_bzero to wipe memory if available
(instead of own implementation).
* Additional VeraCrypt modes are now supported, including Camellia
and Kuznyechik symmetric ciphers (and cipher chains) and Streebog
hash function. These were introduced in a recent VeraCrypt upstream.
Note that Kuznyechik requires out-of-tree kernel module and
Streebog hash function is available only with the gcrypt cryptographic
backend for now.
* Fixes static build for integritysetup if the pwquality library is used.
* Allows passphrase change for unbound keyslots.
* Fixes removed keyslot number in verbose message for luksKillSlot,
luksRemoveKey and erase command.
* Adds blkid scan when attempting to open a plain device and warn the user
about existing device signatures in a ciphertext device.
* Remove LUKS header signature if luksFormat fails to add the first keyslot.
* Remove O_SYNC from device open and use fsync() to speed up
wipe operation considerably.
* Create --master-key-file in luksDump and fail if the file already exists.
* Fixes a bug when LUKS2 authenticated encryption with a detached header
wiped the header device instead of dm-integrity data device area (causing
unnecessary LUKS2 header auto recovery).
- make parallell installable version for SLE12
==== cups ====
Subpackages: cups-client cups-config libcups2 libcups2-32bit libcupscgi1 libcupsimage2 libcupsmime1 libcupsppdc1
- Add patch let-cupsd-start-after-network.patch
Let cuspd start after possible network connection (boo#1111351)
This let cupsd also stop before a used network connection goes
down, hence the cusp does not lock due waiting on remote printers.
==== curl ====
Version update (7.61.1 -> 7.62.0)
Subpackages: libcurl4
- Update to version 7.62.0
Changes:
* multiplex: enable by default
* url: default to CURL_HTTP_VERSION_2TLS if built h2-enabled
* setopt: add CURLOPT_DOH_URL
* curl: --doh-url added
* setopt: add CURLOPT_UPLOAD_BUFFERSIZE: set upload buffer size
* imap: change from "FETCH" to "UID FETCH"
* configure: add option to disable automatic OpenSSL config loading
* upkeep: add a connection upkeep API: curl_easy_upkeep()
* URL-API: added five new functions
* vtls: MesaLink is a new TLS backend
Bugfixes:
* CVE-2018-16839: SASL password overflow via integer overflow [bsc#1112758]
* CVE-2018-16840: use-after-free in handle close [bsc#1113029]
* CVE-2018-16842: warning message out-of-buffer read [bsc#1113660]
* CURLOPT_DNS_USE_GLOBAL_CACHE: deprecated
* Curl_dedotdotify(): always nul terminate returned string
* Curl_follow: Always free the passed new URL
* Curl_http2_done: fix memleak in error path
* Curl_retry_request: fix memory leak
* Curl_saferealloc: Fixed typo in docblock
* FILE: fix CURLOPT_NOBODY and CURLOPT_HEADER output
* GnutTLS: TLS 1.3 support
* SECURITY-PROCESS: mention the bountygraph program
* VS projects: add USE_IPV6:
* certs: generate tests certs with sha256 digest algorithm
* checksrc: enable strict mode and warnings
* checksrc: handle zero scoped ignore commands
* cmake: Backport to work with CMake 3.0 again
* cmake: Improve config installation
* cmake: add support for transitive ZLIB target
* cmake: disable -Wpedantic-ms-format
* cmake: don't require OpenSSL if USE_OPENSSL=OFF
* cmake: fixed path used in generation of docs/tests
* cmake: remove unused *SOCKLEN_T variables
* cmake: suppress MSVC warning C4127 for libtest
* cmake: test and set missed defines during configuration
* config: Remove unused SIZEOF_VOIDP
* configure: force-use -lpthreads on HPUX
* configure: remove CURL_CONFIGURE_CURL_SOCKLEN_T
* configure: s/AC_RUN_IFELSE/CURL_RUN_IFELSE
* cookies: Remove redundant expired check
* cookies: fix leak when writing cookies to file
* curl-config.in: remove dependency on bc
* curl.1: --ipv6 mutexes ipv4 (fixed typo)
* curl: update the documentation of --tlsv1.0
* curl_multi_wait: call getsock before figuring out timeout
* curl_ntlm_wb: check aprintf() return codes
* data-binary.d: clarify default content-type is x-www-form-urlencoded
* docs/CIPHERS: Mention the options used to set TLS 1.3 ciphers
* docs/CIPHERS: fix the TLS 1.3 cipher names
* docs/CIPHERS: mention the colon separation for OpenSSL
* docs/examples: URL updates
* docs: add "see also" links for SSL options
* example/asiohiper: insert warning comment about its status
* example/htmltidy: fix include paths of tidy libraries
* examples/http2-pushinmemory: receive HTTP/2 pushed files in memory
* examples/parseurl.c: show off the URL API
* examples: Fix memory leaks from realloc errors
* examples: do not wait when no transfers are running
* ftp: include command in Curl_ftpsend sendbuffer
* gskit: make sure to terminate version string
* gtls: Values stored to but never read
* hostip: fix check on Curl_shuffle_addr return value
* http2: fix memory leaks on error-path
* http: fix memleak in rewind error path
* krb5: fix memory leak in krb_auth
* memory: add missing curl_printf header
* memory: ensure to check allocation results
* multi: Fix error handling in the SENDPROTOCONNECT state
* multi: fix memory leak in content encoding related error path
* multi: make the closure handle "inherit" CURLOPT_NOSIGNAL
* netrc: free temporary strings if memory allocation fails
* nss: try to connect even if libnssckbi.so fails to load
* ntlm_wb: Fix memory leaks in ntlm_wb_response
* ntlm_wb: bail out if the response gets overly large
* openssl: assume engine support in 0.9.8 or later
* openssl: enable TLS 1.3 post-handshake auth
* openssl: fix gcc8 warning
* openssl: load built-in engines too
* openssl: make 'done' a proper boolean
* openssl: output the correct cipher list on TLS 1.3 error
* openssl: return CURLE_PEER_FAILED_VERIFICATION on failure to parse issuer
* openssl: show "proper" version number for libressl builds
* pipelining: deprecated
* rand: add comment to skip a clang-tidy false positive
* rtmp: fix for compiling with lwIP
* runtests: ignore disabled even when ranges are given
* schannel: unified error code handling
* sendf: Fix whitespace in infof/failf concatenation
* ssh: free the session on init failures
* ssl: deprecate CURLE_SSL_CACERT in favour of a unified error code
* system.h: use proper setting with Sun C++ as well
* test1299: use single quotes around asterisk
* test1452: mark as flaky
* test1651: unit test Curl_extract_certinfo()
* test320: strip out more HTML when comparing
* tests/negtelnetserver.py: fix Python2-ism in neg TELNET server
* tests: add unit tests for url.c
* tool_cb_hdr: handle failure of rename()
* travis: add a "make tidy" build that runs clang-tidy
* travis: add build for "configure --disable-verbose"
* travis: bump the Secure Transport build to use xcode
* travis: make distcheck scan for BOM markers
* unit1300: fix stack-use-after-scope AddressSanitizer warning
* urldata: Fix "connecting" comment
* urlglob: improve error message on bad globs
* vtls: fix ssl version "or later" behavior change for many backends
* x509asn1: Fix SAN IP address verification
* x509asn1: always check return code from getASN1Element()
* x509asn1: return CURLE_PEER_FAILED_VERIFICATION on failure to parse cert
* x509asn1: suppress left shift on signed value
- Rebased patches after update:
* curl-disabled-redirect-protocol-message.patch
* curl-use_OPENSSL_config.patch
==== dmidecode ====
- dmidecode-fix-redfish-hostname-print-length.patch: Fix Redfish
Hostname print length (bsc#1112755).
==== dnsmasq ====
Version update (2.78 -> 2.80)
- Ensure neutrality of descriptions. / Replace description with
new upstream description.
- Do not hide failures from user/group additions.
- Replace old $RPM_* shell vars by macros.
- Updated to dnsmasq 2.80
* Add support for RFC 4039 DHCP rapid commit
* Alter the default for dnssec-check-unsigned
* Fix DHCP when --no-ping and --dhcp-sequential-ip are set
* Allow zone transfer in authoritative mode if auth-peer is specified
* FIx missing fatal errors with some malformed options
* Fix crash on startup with a --synth-domain which has no prefix
- enabled lua scripting interface
==== dracut ====
- 98dracut-systemd: Start systemd-vconsole-setup before dracut-cmdline-ask
(bsc#1055834)
* adds 0582-98dracut-systemd-Start-systemd-vconsole-setup-before.patch
- Fixed Patch 581 to apply cleanly
* Updates 0581-kernel-modules-add-nfit.patch
- Mark the DASD udev rules host-only and handle backslashes in paths for
hostonly files (bsc#1090884)
* adds 0583-99base-Allow-files-with-backslashes-in-hostonly-file.patch
* adds 0584-95dasd_rules-mark-dasd-rules-host_only.patch
==== emacs ====
Subpackages: emacs-info emacs-nox emacs-x11 etags
- Let ispell.el perform even on older systems without default
hunspell dictionary as otherwise this leades to wrong type
error as nil is not a pointer to a string
- Let site-start.el also seek for hunspell to load the ispell
lisp library (boo#1110387)
- Help ispell(.el) to find and provide the usable dictionaries
even for hunspell (boo#1110387)
==== ffmpegthumbs ====
- Add patch to fix crash on video files without a suitable codec installed:
* 0001-Don-t-crash-if-initializeVideo-fails.patch
==== frei0r-plugins ====
- Add frei0r-plugins-openCV-3.4.2-compatibility.patch to fix a
build failure with openCV > 3.4.1
- Run spec-cleaner
==== fribidi ====
Version update (1.0.1 -> 1.0.5)
Subpackages: libfribidi0 libfribidi0-32bit
- Update to version 1.0.5:
+ Updated unicode tables to version 11
+ Bugfix release - character tests were not running previously
+ Small speedup due to small arrays being allocated on the stack
==== gnome-photos ====
Subpackages: gnome-photos-lang gnome-shell-search-provider-gnome-photos
- Add gnome-photos-on-demand-activate-dleyna.patch: Don't activate
dleyna-renderer-service when Photos starts up (bsc#992420,
glgo#GNOME/gnome-photos#75).
==== gnome-software ====
Version update (3.30.2 -> 3.30.5)
Subpackages: gnome-software-lang
- Update to version 3.30.5:
+ Fix build with appstream-glib 0.7.14.
- Changes from version 3.30.4:
+ Add a separate "Download" step for packagekit offline updates,
so that "Restart & Update" is instant.
+ Fix a version comparison issue that led to package updates
sometimes showing as downgrades in the OS Updates section (this
needs latest appstream-glib).
+ Show the refresh button when the updates page is in the failed
state.
+ Notify about offline updates only after they are fully
downloaded.
+ Updated translations.
- Update to version 3.30.3:
+ Fix a memory corruption issue on 32-bit arches that made
gnome-software very crashy.
+ Fix an issue with stuck back button on the details page after
closing and reopening gnome-software.
+ Make distro upgrades to Fedora N+2 release show up correctly.
+ Various flatpak plugin fixes.
+ Allow opening CAB files that include more than one update.
+ Fix critical warnings when quickly switching between category
pages.
+ Small memory leak fixes.
+ Updated translations.
==== gptfdisk ====
Version update (1.0.1 -> 1.0.4)
- Update to 1.0.4
* 74 new type codes added
* Search/filter function to the type code list
* GPT fdisk now reports more details about data structures
* Misc bug fixes
==== graphite2 ====
Version update (1.3.11 -> 1.3.12)
Subpackages: libgraphite2-3 libgraphite2-3-32bit
- Update to 1.3.12:
. Graphite no longer does dumb rendering for fonts with no smarts
. Segment caching code removed. Anything attempting to use the
segment cache gets given a regular face instead
. Add libfuzzer support
. Builds now require C++11
. Improvements to Windows 64 bit builds
. Support different versions of python including 32 bit and python 3
. Various minor bug fixes
- refreshed patch
% link-gcc-shared.diff
- removed patch
- graphite2-CVE-2018-7999.patch (upstreamed)
==== hdparm ====
Version update (9.56 -> 9.57)
- Update to 9.57:
* Added --set-sector-size flag, used to change logical sector
size for drives which support multiple sector sizes.
* Also updated various bits of hdparm to better cope with
non-512 byte sectors.
* Various other minor fixes/enhancements.
- Update hdparm-leak-fix.patch
==== iproute2 ====
Version update (4.18 -> 4.19)
- Update to new upstream release 4.19
* Support new features in Linux 4.19 such as the CAKE qdisc.
==== ipset ====
Version update (6.38 -> 7.0)
- Update to new upstream release 7.0
* A new internal protocol version between the kernel and
userspace is used. This is required in order to support two
new functions and the extendend LIST operation, which makes
possible to run ipset in every case entirely over netlink,
without the need to use getsockopt().
* The userspace library was reworked so it can be embedded
without calling the binary.
==== iptables ====
Version update (1.8.0.g85 -> 1.8.1)
Subpackages: libiptc0 libxtables12 xtables-plugins
- Update to new upstream release 1.8.1
* New cgroup match revision with reduced memory footprint
==== java-11-openjdk ====
Subpackages: java-11-openjdk-headless
- Merge into the JDK following modules from github.com/javaee:
* com.sum.xml.fastinfoset
* org.jvnet.staxex
* com.sun.istack.runtime
* com.sun.xml.txw2
* com.sun.xml.bind
+ This provides a default implementation of JAXB-API that
existed in JDK before Java 11 and that some applications
depend on.
==== javapackages-tools ====
Version update (5.2.0+git20180620.70fa2258 -> 5.3.0)
- Replace the occurences of /usr/lib by libdir in configuration
files too
- Update to version 5.3.0
- Modified patch:
* suse-no-epoch.patch
+ rediff to changed code
- Build the :extras flavour as noarch
- Added patch:
* suse-no-epoch.patch
+ we did not bump epoch of OpenJDK packages in SUSE
+ fix a potential generation of unresolvable requires
+ adapt the tests to not expect the epoch
==== jemalloc ====
- Disable profiling on ppc until boo#1105633 get fixed
==== jing-trang ====
- Change to build against bsh2 instead of the old bsh
==== kiconthemes ====
Subpackages: libKF5IconThemes5 libKF5IconThemes5-lang
- Add Fixing-a-copy-paste-error.patch to fix crashes when opening
the icon dialog (kde#398766)
==== kscreenlocker ====
Subpackages: kscreenlocker-lang libKScreenLocker5
- Mark /etc/pam.d/kscreenlocker as %config(noreplace) so that
modifications don't get lost when installing updates (boo#1114258)
==== ktextwidgets ====
Subpackages: libKF5TextWidgets5 libKF5TextWidgets5-lang
- Add Qt5TextToSpeech BuildRequires to enable text-to-speech support
==== libburn ====
Version update (1.4.8 -> 1.5.0)
- Update to 1.5.0:
* User defined padding was moved after appended partitions
* xorriso and libisoburn make user of the new xattr capability of libisofs
* libburn got some rarely triggered bugs fixed
==== libinput ====
Version update (1.12.1 -> 1.12.2)
Subpackages: libinput-udev libinput10
- Update to new upstream release 1.12.2
* The Lenovo x220t and x60t do not disable the keyboard in
tablet-mode anymore.
* Button debouncing is now disabled on VMware virtual devices.
* The Wacom Intuos Pro PTH-660 palm threshold was restored to
the original value, it was changed accidentally.
* libinput now assumes that you only have one thumb per hand,
which is a statistically well-supported approximation.
* A 2-finger movement out of the software button area now will
no longer trigger spurious pointer motion events if one
finger exits the button area before the other one.
* The Wacom Intuos Pro PTH-660, when connected over Bluetooth,
sometimes caused an invalid event sequence that caused
libinput to lose track of the tap counter which again
triggered an assertion later.
==== libisofs ====
Version update (1.4.8 -> 1.5.0)
- Update to 1.5.0:
* Bug fix: Multi-session emulation was not recognized with non-zero partition
* New bit10 of isoburn_drive_acquire() to accept all xattr namespaces
* New -xattr mode "any" to process all xattr namespaces of local filesystem
* New -as mkisofs option --xattr-any
* New -as mkisofs options -uid and -gid
==== libmspack ====
Version update (0.6 -> 0.8)
- Update to version 0.8:
* New parameter MSCABD_PARAM_SALVAGE which permits salvaging
badly damaged files rather than rejecting them outright.
* Fix the above 38912-byte Quantum CAB block bug.
* Reject blank CHM filenames that are blank because they have
embedded null bytes.
* chmextract: Protect from absolute/relative pathnames in CHM
files.
- Update to version 0.7 (bsc#1103032):
* Fix 1 or 2 byte overwrite by bad KWAJ file header extensions
(CVE-2018-14681).
* Fix 1 byte overread by character U+0100 in a CHM filename
(CVE-2018-14682).
* Reject blank CHM filenames (CVE-2018-14680).
* Fix off-by-1 in CHM PMGI/PMGL chunk number validity checks,
which could cause a crash (CVE-2018-14679).
==== libndp ====
Version update (1.6 -> 1.7)
- Update to version 1.7
* fix socket fd missing for O_CLOEXEC
* Fix issue where not sending all IPs to an interface
* typo in ndptool.c fixed
==== libopenmpt ====
Version update (0.3.12 -> 0.3.13)
Subpackages: libmodplug1 libopenmpt0
- Update to version 0.3.13:
* [Sec] Crash with malformed MED files.
* Transposed samples in AMF ASYLUM modules were not played
correctly.
* Notes triggered by libopenmpt_ext play_note could be played
with a panbrello effect if the same virtual channel was
previously used with panbrello.
* Clicks when stopping channels that didn?t end at zero volume.
* XM: Do not import non-standard commands N and M as channel
volume commands.
==== libreoffice ====
Version update (6.1.3.1 -> 6.1.3.2)
Subpackages: libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Honorably mention all the now dropped patches from 6.0 series that
are merged by the 6.1 already and as such never entered TW:
* bnc1088262.patch
* bsc1088263.patch
* bsc1095601.patch
* bsc1095639.patch
* bsc1098891.patch
- Remove libreofficekit files that are not supposed to be
installed when the feature is disabled
- Update to 6.1.3.2:
* 6.1.3 Final
* In this release we have fixes for bsc#1079744 bsc#1088266
bsc#1095755 bsc#1110345 bsc#1107012
- Use turkish spellcheck that is now provided by myspell-dictionaries
==== libva ====
Version update (2.2.0 -> 2.3.0)
Subpackages: libva-drm2 libva-x11-2 libva2
- Update to 2.3.0
* Bump VA-API version to 1.3.0 and libva to 2.3.0
* Add max frame size parameters for multiple pass case in legacy mode
* Add new BRC mode AVBR
* Add new interface for High Dynamic Range tone mapping
* Add missing enum to string conversions
* Add hevc subsets parameters structure
* Add Customized Noise Reduction (HVS) interfaces
* Add new BRC mode definition QVBR
* Add more complete colour properties for use in VPP
==== libva-gl ====
Version update (2.2.0 -> 2.3.0)
Subpackages: libva-glx2 libva-wayland2
- Update to 2.3.0
* Bump VA-API version to 1.3.0 and libva to 2.3.0
* Add max frame size parameters for multiple pass case in legacy mode
* Add new BRC mode AVBR
* Add new interface for High Dynamic Range tone mapping
* Add missing enum to string conversions
* Add hevc subsets parameters structure
* Add Customized Noise Reduction (HVS) interfaces
* Add new BRC mode definition QVBR
* Add more complete colour properties for use in VPP
==== libvirt ====
Version update (4.8.0 -> 4.9.0)
Subpackages: libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs
- Update to libvirt 4.9.0
- Many incremental improvements and bug fixes, see
http://libvirt.org/news.html
- FATE#326371
- Update SLE15 SP1 with openSUSE Factory package
FATE#325848, FATE#326368
- FATE and bug references made in the SLE15 package since the last
Factory update: FATE#325817, bsc#959329, bsc#1074014,
bsc#1106420, bsc#1108395
- Patches in SLE15 package that are dropped by this update:
1b0c42ff-libvirtd-depend-machined.patch,
ac4a12db-libxl-fix-hasManagedSave.patch
==== lightdm ====
Version update (1.26.0 -> 1.28.0)
Subpackages: liblightdm-gobject-1-0 lightdm-lang
- Update to version 1.28.0:
* Continue to shutdown session if removing X authority fails.
* Set XDG_SEAT env variable in script hooks.
* Fix small leak in XDMCP server.
* liblightdm-qt: Mark class PowerInterface as exported.
* Fix one qt5 test being run instead of a qt4 one.
* Remove use of deprecated g_type_class_add_private.
* Modernise private data in objects.
* Document XDG_SEAT_PATH in man page.
* Fix install failing if link already exists.
* Remove bashisms in configure.ac.
- Rebase lightdm-sysconfig-support.patch,
lightdm-xauthlocalhostname-support.patch.
- Use GPG signing.
==== lightdm-gtk-greeter ====
Version update (2.0.5 -> 2.0.6)
Subpackages: lightdm-gtk-greeter-lang
- Update to version 2.0.6:
* Multi seat support: Store state for each seat (lp#1641335).
* Updated translations.
==== llvm6 ====
Subpackages: libLLVM6 libclang6
- opt-viewer-Find-style-css-in-usr-share.patch
* Make sure opt-viewer installed in /usr/bin can find resources
from /usr/share/opt-viewer. (boo#1112730)
==== log4j ====
- Install and package the maven pom and metadata files
==== mozjs60 ====
Version update (60.1.0 -> 60.2.2)
- Update to version 60.2.2:
* Bug fix release.
- Drop mozjs60-fix-memory-leak-in-LCovCompartment-esr60.patch and
mozjs60-prevent-an-internal-gcc-8_0_1-error.patch: Fixed upstream
==== mtools ====
Version update (4.0.18 -> 4.0.19)
- patches unversioned; makes update and reviews easier
* mtools-4.0.18-fat-bits.diff -> mtools-fat-bits.diff
* mtools-4.0.18-conf.diff -> mtools-conf.diff
* mtools-4.0.18-aliasing.diff -> mtools-aliasing.diff
* mtools-4.0.18-prototypes.diff -> mtools-prototypes.diff
* mtools-4.0.18-autoconf.diff -> mtools-autoconf.diff
- Update to 4.0.19:
* Fix for short file names starting with character 0xE5
* mpartition: Partition types closer to what Microsoft uses
* mformat: figure out LBA geometry as last resort if geometry is unspecified
* mformat: use same default cluster size as Microsoft for FAT32
* additional sanity checks
* document how clutser size is picked in mformat.c man page
* document how partition types are picked in mpartition.c man page
==== myspell-dictionaries ====
Version update (20180704 -> 20181025)
Subpackages: myspell-cs_CZ myspell-da_DK myspell-de myspell-de_DE myspell-el_GR myspell-en myspell-en_GB myspell-en_US myspell-es myspell-es_ES myspell-fr_FR myspell-hu_HU myspell-it_IT myspell-lightproof-en myspell-lightproof-hu_HU myspell-lightproof-pt_BR myspell-lightproof-ru_RU myspell-pl_PL myspell-pt_BR myspell-ru_RU
- Update to 20181025:
* Turkish dictionary added
* Updated French dictionary
==== netpbm ====
Version update (10.83.2 -> 10.84.2)
Subpackages: libnetpbm11
- updated to 10.84.02
* libnetpbm: Fix invalid memory reference in color name processing
when trivial memory allocation fails.
pamtojpeg2k: fix incorrect interpretation of -ilyrrates option
when it contains multiple delimiter characters in a row. Always
broken (pamtojpeg2k was new in Netpbm 10.12 (November 2002)).
* pnmtojbig: fix incorrect handling of -x option. Always broken
(pnmtojbig was new in Netpbm 9.2 (May 2000)).
Add pamaltsat. Thanks Anton Shepelev