Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20191207
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.0.9.1 -> 7.0.9.6)
binutils
ceph (14.2.4.373+gc3e67ed133 -> 15.0.0.7456+ge089cead79)
cyrus-sasl
dnsmasq
dwz
fribidi
git
gpg2 (2.2.17 -> 2.2.18)
hwdata (0.329 -> 0.330)
icewm (1.5.4 -> 1.6.3)
libnftnl (1.1.4 -> 1.1.5)
libsndfile
libsolv (0.7.7 -> 0.7.9)
libvirt (5.9.0 -> 5.10.0)
libvirt-glib (2.0.0 -> 3.0.0)
libxml2 (2.9.9 -> 2.9.10)
libxml2-python (2.9.9 -> 2.9.10)
libxslt (1.1.33 -> 1.1.34)
libyui-qt-graph (2.45.3 -> 2.45.5)
libzypp (17.15.0 -> 17.17.0)
linux-glibc-devel (5.3 -> 5.4)
lirc
mariadb-connector-c (3.1.4 -> 3.1.5)
nano (4.5 -> 4.6)
openssl
ovmf (201908 -> 201911)
perl
perl-HTTP-Cookies (6.07 -> 6.08)
perl-Socket6 (0.28 -> 0.29)
perl-X500-DN
perl-XML-LibXML (2.0134 -> 2.0201)
perl-XML-LibXSLT
permissions (1550_20191118 -> 1550_20191205)
postfix (3.4.7 -> 3.4.8)
python
python-PyYAML (5.1.2 -> 5.2)
python-base
python-h2
python-libvirt-python (5.9.0 -> 5.10.0)
python-lxml
python-psutil (5.6.5 -> 5.6.7)
python-pywbem (0.11.0 -> 0.14.6)
python-simplejson (3.16.1 -> 3.17.0)
rdma-core
read-only-root-fs (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)
salt (2019.2.0 -> 2019.2.2)
sensors (3.5.0 -> 3.6.0)
sssd (2.2.0 -> 2.2.2)
tcsh (6.21.00 -> 6.22.02)
transactional-update (2.17 -> 2.20)
v4l2loopback (0.12.2_k5.3.12_1 -> 0.12.3_k5.3.12_1)
vim (8.1.2233 -> 8.1.2383)
xfce4-branding-openSUSE (4.14+20191008 -> 4.14+20191207)
zypper (1.14.32 -> 1.14.33)
=== Details ===
==== ImageMagick ====
Version update (7.0.9.1 -> 7.0.9.6)
Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI7 libMagickWand-7_Q16HDRI7 perl-PerlMagick
- version update to 7.0.9.6
* Increase the maximum number of bezier coordinates (reference
https://github.com/ImageMagick/ImageMagick/issues/1784).
* Santize "'" from SHOW and WIN delegates under Linux, '"\' for Windows
(thanks to Enzo Puig).
* Correct for TGA orientation (reference
https://imagemagick.org/discourse-server/viewtopic.php?f=3&t=34757).
* The result for -compose Copy -extent on a MYK image is CMYK (reference
https://imagemagick.org/discourse-server/viewtopic.php?f=3&t=37118).
* Fix potential buffer overflow when reading a fax image (alert from
Justin).
* Support dng:use-camera-wb option.
- added patches
https://github.com/ImageMagick/ImageMagick/issues/1792
+ ImageMagick-targa.patch
- version update to 7.0.9.5
* Ensure Ascii85 compression is thread safe.
* Santize ';' from SHOW and WIN delegates.
* Add exception parameter to CMS transform methods.
* Output exception there is an attempt to perform an operation not allowed by
the security policy
* JPEG and JPG are aliases in coder security policy.
* Fixed numerous issues posted to GitHub
==== binutils ====
Subpackages: binutils-devel
- Add binutils-fix-invalid-op-errata.diff to fix various
build fails on aarch64 (PR25210, bsc#1157755).
- Add add-ulp-section.diff for user space live patching.
==== ceph ====
Version update (14.2.4.373+gc3e67ed133 -> 15.0.0.7456+ge089cead79)
Subpackages: librados2 librbd1
- Update to 15.0.0-7456-ge089cead79:
+ rebase on tip of upstream master, SHA1 e4b3036422df70e3c911240e3bba6a8bd3e9c792
- Update to 15.0.0-7219-g353896020b:
+ rebase on tip of upstream master, SHA1 7ffb5d9e79207da81af933f4e95655e16558c739
- Update to 14.2.4-386-g73475e3ee1:
+ os/bluestore: consolidate extents from the same device only (bsc#1156282)
- Update to 14.2.4-378-gac1bcd6547:
+ qa/suse: move dashboard-e2e to tier3 and add debugging code to
src/script/dashboard_e2e_tests.sh
==== cyrus-sasl ====
Subpackages: cyrus-sasl-crammd5 cyrus-sasl-devel cyrus-sasl-digestmd5 cyrus-sasl-gssapi cyrus-sasl-plain libsasl2-3 libsasl2-3-32bit
- added backport-patch cyrus-sasl-bug587.patch which fixes
off-by-one error in _sasl_add_string function
(see https://github.com/cyrusimap/cyrus-sasl/issues/587)
==== dnsmasq ====
- Remove redundant %else without meaning (if/else/else/endif?)
==== dwz ====
- Fix assertion failure 'refd != NULL' in write_die [swo#24169].
* dwz-fix-refd-NULL-assertion-in-write_die.patch
- Fix assertion failure 'off == cu_size' in recompute_abbrevs
[swo#24764].
* dwz-fix-assertion-off-cu_size-in-recompute_abbrevs.patch
==== fribidi ====
Subpackages: libfribidi0 libfribidi0-32bit
- Use %make_build macros.
==== git ====
Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk
- Guard xmlto/sgml-skel BuildRequires by docs bcond.
- Fix building with asciidoctor and without DocBook4 stylesheets:
* Add 0002-Also-use-DocBook-5-stylesheet-when-generating-HTML-o.patch
* Refresh 0001-DOC-Move-to-DocBook-5-when-using-asciidoctor.patch
- Spec file cleanup, remove conditionals for obsolete/EOLed distros.
- Drop curl (executable) BuildRequires, only required by some skipped
tests (skipped as these have an apache2 prerequisite).
- added patch git-skip-test-s390x-aarch64-fail.patch
* workaround for bsc#1156651
==== gpg2 ====
Version update (2.2.17 -> 2.2.18)
Subpackages: gpg2-lang
- Update to 2.2.18 [bsc#1157900, CVE-2019-14855]
* gpg: Changed the way keys are detected on a smartcards; this
allows the use of non-OpenPGP cards. In the case of a not very
likely regression the new option --use-only-openpgp-card is
available. [#4681]
* gpg: The commands --full-gen-key and --quick-gen-key now allow
direct key generation from supported cards. [#4681]
* gpg: Prepare against chosen-prefix SHA-1 collisions in key
signatures. This change removes all SHA-1 based key signature
newer than 2019-01-19 from the web-of-trust. Note that this
includes all key signature created with dsa1024 keys. The new
option --allow-weak-key-signatues can be used to override the new
and safer behaviour. [#4755,CVE-2019-14855]
* gpg: Improve performance for import of large keyblocks. [#4592]
* gpg: Implement a keybox compression run. [#4644]
* gpg: Show warnings from dirmngr about redirect and certificate
problems (details require --verbose as usual).
* gpg: Allow to pass the empty string for the passphrase if the
'--passphase=' syntax is used. [#4633]
* gpg: Fix printing of the KDF object attributes.
* gpg: Avoid surprises with --locate-external-key and certain
- -auto-key-locate settings. [#4662]
* gpg: Improve selection of best matching key. [#4713]
* gpg: Delete key binding signature when deletring a subkey.
[#4665,#4457]
* gpg: Fix a potential loss of key sigantures during import with
self-sigs-only active. [#4628]
* gpg: Silence "marked as ultimately trusted" diagnostics if
option --quiet is used. [#4634]
* gpg: Silence some diagnostics during in key listsing even with
option --verbose. [#4627]
* gpg, gpgsm: Change parsing of agent's pkdecrypt results. [#4652]
* gpgsm: Support AES-256 keys.
* gpgsm: Fix a bug in triggering a keybox compression run if
- -faked-system-time is used.
* dirmngr: System CA certificates are no longer used for the SKS
pool if GNUTLS instead of NTBTLS is used as TLS library. [#4594]
* dirmngr: On Windows detect usability of IPv4 and IPv6 interfaces
to avoid long timeouts. [#4165]
* scd: Fix BWI value for APDU level transfers to make Gemalto Ezio
Shield and Trustica Cryptoucan work. [#4654,#4566]
* wkd: gpg-wks-client --install-key now installs the required policy
file.
- Rebase patches:
* gnupg-2.2.8-files-are-digests.patch
* gnupg-add_legacy_FIPS_mode_option.patch
==== hwdata ====
Version update (0.329 -> 0.330)
- Update to version 0.330:
* Updated pci, usb and vendor ids.
==== icewm ====
Version update (1.5.4 -> 1.6.3)
Subpackages: icewm-config-upstream icewm-default icewm-lang icewm-lite
- Update to 1.6.3
* Much improved 32-bit icon drawing
* Add --trace=conf,icon option for path logging
* Several portability fixes for FreeBSD
* Update taskbar geometry on screen resize
* Support PNG format for theme image files
* Improved support for depcrecated linux.xpm
* Highlight current workspace on startup
* Fix for themable cursors
* Fix for cmake build
* Fix for rpm build
* Updated man pages
* Updated translations
- Changes from 1.5.4
* Configurable X11 terminal to avoid dependency on xterm
* Fix support for themable cursors for gdk-pixbuf
* Fix Xft font corruption in 32-bit alpha mode
* Fix frame depth for 32-bit apps in 24-bit mode
* Enable tilde and $HOME expansion for icon paths
* Restore old behavior of ColorQuickSwitchActive for vertical switching
* IceSh addWorkspace, prop commands plus -Prop, -Role options
* IceSh fix getWorkspace for sticky windows, fix getOpacity, improve sync
* Expand installation prefix in default configuration files and manpages
* Fix typos in documentation and update Spanish translation
* Better icewm-session manpage
* Compile on GCC 9.2 without warning
* Improve CMake compilation
* IceWM splash image
* Silence icehelp
* Allow a taskbarbg.xpm or taskbarbg.png with transparency for a translucent taskbar
* Don't use composite on systray when using 24-bit RGB visuals for issue #374
* Update translations
* Use lzip instead of xz
* Add support for 32-bit RGBA visuals if Alpha is enabled.
* Colors can have a [100] opacity prefix, where 100 is a percentage from 1 to 100.
* Colors can also be specified in "rgba:" form.
* Alpha channels in icons are preserved and drawn if Alpha is enabled.
* Support showing a splash image on startup.
* Icesh has new commands sizeto, pid, systray, xembed, motif, symbols.
* Icesh supports filtering on and modifying gravity properties.
* New winoption "startClose" to immediately close unwanted windows.
* Several improvements to CMake builds.
* _NET_SYSTEM_TRAY_ORIENTATION and _NET_SYSTEM_TRAY_VISUAL are now supported.
* Nearly unlimited number of workspaces.
* New option TaskBarWorkspacesLimit to limit number of workspaces shown on taskbar.
* Workspace names can be edited on taskbar.
* Change default WorkspaceStatusTime to 700 milliseconds.
* Optimizations of resource usage on startup of icewm.
* Restore TaskBarFullscreenAutoShow for issue #361.
* Don't focus frame under mouse for ClickToFocus in issues #355 and #358.
* Only update if WM_NORMAL_HINTS has really changed for Xephyr in #353.
* Only update if WIN_HINTS has really changed.
* Fix icesh -last filter. Fix icesh toggleState for #354.
* Add another xrandr setup where second screen is primary.
* Remove support for EsounD.
* Add many new icesh features.
* Support opacity in icesh, icewmhint, winoptions.
* Set window type on all icewm windows.
* Set WM_CLASS on all icewm windows.
* Updated translations.
* More support for clang C++11.
==== libnftnl ====
Version update (1.1.4 -> 1.1.5)
- Update to release 1.1.5
* flowtable: add support for handle attribute
* obj/ct_timeout: Avoid array overrun in timeout_parse_attr_data()
==== libsndfile ====
- Remove build dependencies for progs subpackage from library:
* alsa-devel, only needed for the examples
* sqlite3-devel, only needed for the regression test
- Only build library, pass --disable-full-suite to configure
==== libsolv ====
Version update (0.7.7 -> 0.7.9)
Subpackages: libsolv-devel libsolv-tools python3-solv ruby-solv
- support conda constrains dependencies
- bump version to 0.7.9
- support arch<->noarch package changes when creating patch
conflicts from the updateinfo data
- support for SOLVER_BLACKLIST jobs that block the installation
of matched packages unless they are directly selected by an
SOLVER_INSTALL job
- libsolv now also parses the patch status in the updateinfo
parser
- new solvable_matchessolvable() function
- bump version to 0.7.8
==== libvirt ====
Version update (5.9.0 -> 5.10.0)
Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs
- Update to libvirt 5.10.0
- bsc#1157149
- Many incremental improvements and bug fixes, see
https://libvirt.org/news.html
- Dropped patches:
2552752f-libxl-fix-lock-manager-lock-ordering.patch
- Added patches:
0a65cba4-news-fix.patch
- spec: Enable 'libvirt' firewalld zone for firewalld >= 0.7.0
boo#1157766
==== libvirt-glib ====
Version update (2.0.0 -> 3.0.0)
Subpackages: libvirt-glib-1_0-0 typelib-1_0-LibvirtGLib-1_0
- Update to version 3.0.0
+ Add support for bochs video device
+ Add API to query firmware config
+ Improve testing coverage
+ Validate min/max glib API versions in use
+ Remove deprecated G_PARAM_PRIVATE
+ Fix docs build linking problems
+ Convert python demos to be python 3 compatible & use
modern best practice for pyobject introspection bindings
+ Add API to query domain capaibilities
+ Refresh translations
+ Simplify build process for handling translations
+ Fix some memory leaks
+ Add API for setting storage volume features
+ boo#1158282
==== libxml2 ====
Version update (2.9.9 -> 2.9.10)
Subpackages: libxml2-2 libxml2-2-32bit libxml2-devel libxml2-tools
- Since libxml2-2.9.10 perl-XML-LibXSLT fails to build: [bsc#1157450]
* Revert upstream commit to make xmlFreeNodeList non-recursive
https://github.com/GNOME/libxml2/commit/0762c9b69ba01628f72eada1c64ff3d361fb...
- Add patch libxml2-xmlFreeNodeList-recursive.patch
- Version update to 2.9.10:
* Portability:
+ Fix exponent digits when running tests under old MSVC
+ Work around buggy ceil() function on AIX
+ Don't call printf with NULL string in runtest.c
+ Switched from unsigned long to ptrdiff_t in parser.c
+ timsort.h: support older GCCs
+ Make configure.ac work with older pkg-config
* Bug Fixes:
+ Fix for conditional sections at end of document
+ Make sure that Python tests exit with error code
+ Audit memory error handling in xpath.c
+ Fix error code in xmlTextWriterStartDocument
+ Fix integer overflow when counting written bytes
+ Fix uninitialized memory access in HTML parser
+ Fix memory leak in xmlSchemaValAtomicType
+ Disallow conditional sections in internal subset
+ Fix use-after-free in xmlTextReaderFreeNodeList
+ Fix Regextests
+ Fix empty branch in regex
+ Fix integer overflow in entity recursion check
+ Don't read external entities or XIncludes from stdin
+ Fix Schema determinism check of ##other namespaces
+ Fix potential null deref in xmlSchemaIDCFillNodeTables
+ Fix potential memory leak in xmlBufBackToBuffer
+ Fix error message when processing XIncludes with fallbacks
+ Fix memory leak in xmlRegEpxFromParse
+ 14:00 is a valid timezone for xs:dateTime
+ Fix memory leak in xmlParseBalancedChunkMemoryRecover
+ Fix potential null deref in xmlRelaxNGParsePatterns
+ Misleading error message with xs:{min|max}Inclusive
+ Fix memory leak in xmlXIncludeLoadTxt
+ Partial fix for comparison of xs:durations
+ Fix null deref in xmlreader buffer
+ Fix unability to RelaxNG-validate grammar with choice-based name class
+ Fix unability to validate ambiguously constructed interleave for RelaxNG
+ Fix possible null dereference in xmlXPathIdFunction
+ fix memory leak in xmlAllocOutputBuffer
+ Fix unsigned int overflow
+ dict.h: gcc 2.95 doesn't allow multiple storage classes
+ Fix another code path in xmlParseQName
+ Make sure that xmlParseQName returns NULL in error case
+ Fix build without reader but with pattern
+ Fix memory leak in xmlAllocOutputBufferInternal error path
+ Fix unsigned integer overflow
+ Fix return value of xmlOutputBufferWrite
+ Fix parser termination from "Double hyphen within comment" error
+ Fix call stack overflow in xmlFreePattern
+ Fix null deref in previous commit
+ Fix memory leaks in xmlXPathParseNameComplex error paths
+ Check for integer overflow in xmlXPtrEvalChildSeq
+ Fix xmllint dump of XPath namespace nodes
+ Fix float casts in xmlXPathSubstringFunction
+ Fix null deref in xmlregexp error path
+ Fix null pointer dereference in xmlTextReaderReadOuterXml
+ Fix memory leaks in xmlParseStartTag2 error paths
+ Fix memory leak in xmlSAX2StartElement
+ Fix commit "Memory leak in xmlFreeID (xmlreader.c)"
+ Fix NULL pointer deref in xmlTextReaderValidateEntity
+ Memory leak in xmlFreeTextReader
+ Memory leak in xmlFreeID (xmlreader.c)
* Improvements:
+ Propagate memory errors in valuePush
+ Propagate memory errors in xmlXPathCompExprAdd
+ Make xmlFreeDocElementContent non-recursive
+ Avoid ignored attribute warnings under GCC
+ Make xmlDumpElementContent non-recursive
+ Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE
+ Mark xmlExp* symbols as removed
+ Make xmlParseConditionalSections non-recursive
+ Adjust expected error in Python tests
+ Make xmlTextReaderFreeNodeList non-recursive
+ Make xmlFreeNodeList non-recursive
+ Make xmlParseContent and xmlParseElement non-recursive
+ Remove executable bit from non-executable files
+ Fix expected output of test/schemas/any4
+ Optimize build instructions in README
+ xml2-config.in: Output CFLAGS and LIBS on the same line
+ xml2-config: Add a --dynamic switch to print only shared libraries
+ Annotate functions with __attribute__((no_sanitize))
+ Fix warnings when compiling without reader or push parser
+ Remove unused member `doc` in xmlSaveCtxt
+ Limit recursion depth in xmlXPathCompOpEvalPredicate
+ Remove -Wno-array-bounds
+ Remove unreachable code in xmlXPathCountFunction
+ Improve XPath predicate and filter evaluation
+ Limit recursion depth in xmlXPathOptimizeExpression
+ Disable hash randomization when fuzzing
+ Optional recursion limit when parsing XPath expressions
+ Optional recursion limit when evaluating XPath expressions
+ Use break statements in xmlXPathCompOpEval
+ Optional XPath operation limit
+ Fix compilation with --with-minimum
+ Check XPath stack after calling functions
+ Remove debug printf in xmlreader.c
+ Always define LIBXML_THREAD_ENABLED when enabled
+ Fix unused function warning in testapi.c
+ Remove unneeded function pointer casts
+ Fix -Wcast-function-type warnings (GCC 8)
+ Fix -Wformat-truncation warnings (GCC 8)
* Cleanups:
+ Rebuild docs
+ Disable xmlExp regex code
+ Remove redundant code in xmlRelaxNGValidateState
+ Remove redundant code in xmlXPathCompRelationalExpr
- Rebase patch fix-perl.diff
==== libxml2-python ====
Version update (2.9.9 -> 2.9.10)
- Since libxml2-2.9.10 perl-XML-LibXSLT fails to build: [bsc#1157450]
* Revert upstream commit to make xmlFreeNodeList non-recursive
https://github.com/GNOME/libxml2/commit/0762c9b69ba01628f72eada1c64ff3d361fb...
- Add patch libxml2-xmlFreeNodeList-recursive.patch
- Version update to 2.9.10:
* Portability:
+ Fix exponent digits when running tests under old MSVC
+ Work around buggy ceil() function on AIX
+ Don't call printf with NULL string in runtest.c
+ Switched from unsigned long to ptrdiff_t in parser.c
+ timsort.h: support older GCCs
+ Make configure.ac work with older pkg-config
* Bug Fixes:
+ Fix for conditional sections at end of document
+ Make sure that Python tests exit with error code
+ Audit memory error handling in xpath.c
+ Fix error code in xmlTextWriterStartDocument
+ Fix integer overflow when counting written bytes
+ Fix uninitialized memory access in HTML parser
+ Fix memory leak in xmlSchemaValAtomicType
+ Disallow conditional sections in internal subset
+ Fix use-after-free in xmlTextReaderFreeNodeList
+ Fix Regextests
+ Fix empty branch in regex
+ Fix integer overflow in entity recursion check
+ Don't read external entities or XIncludes from stdin
+ Fix Schema determinism check of ##other namespaces
+ Fix potential null deref in xmlSchemaIDCFillNodeTables
+ Fix potential memory leak in xmlBufBackToBuffer
+ Fix error message when processing XIncludes with fallbacks
+ Fix memory leak in xmlRegEpxFromParse
+ 14:00 is a valid timezone for xs:dateTime
+ Fix memory leak in xmlParseBalancedChunkMemoryRecover
+ Fix potential null deref in xmlRelaxNGParsePatterns
+ Misleading error message with xs:{min|max}Inclusive
+ Fix memory leak in xmlXIncludeLoadTxt
+ Partial fix for comparison of xs:durations
+ Fix null deref in xmlreader buffer
+ Fix unability to RelaxNG-validate grammar with choice-based name class
+ Fix unability to validate ambiguously constructed interleave for RelaxNG
+ Fix possible null dereference in xmlXPathIdFunction
+ fix memory leak in xmlAllocOutputBuffer
+ Fix unsigned int overflow
+ dict.h: gcc 2.95 doesn't allow multiple storage classes
+ Fix another code path in xmlParseQName
+ Make sure that xmlParseQName returns NULL in error case
+ Fix build without reader but with pattern
+ Fix memory leak in xmlAllocOutputBufferInternal error path
+ Fix unsigned integer overflow
+ Fix return value of xmlOutputBufferWrite
+ Fix parser termination from "Double hyphen within comment" error
+ Fix call stack overflow in xmlFreePattern
+ Fix null deref in previous commit
+ Fix memory leaks in xmlXPathParseNameComplex error paths
+ Check for integer overflow in xmlXPtrEvalChildSeq
+ Fix xmllint dump of XPath namespace nodes
+ Fix float casts in xmlXPathSubstringFunction
+ Fix null deref in xmlregexp error path
+ Fix null pointer dereference in xmlTextReaderReadOuterXml
+ Fix memory leaks in xmlParseStartTag2 error paths
+ Fix memory leak in xmlSAX2StartElement
+ Fix commit "Memory leak in xmlFreeID (xmlreader.c)"
+ Fix NULL pointer deref in xmlTextReaderValidateEntity
+ Memory leak in xmlFreeTextReader
+ Memory leak in xmlFreeID (xmlreader.c)
* Improvements:
+ Propagate memory errors in valuePush
+ Propagate memory errors in xmlXPathCompExprAdd
+ Make xmlFreeDocElementContent non-recursive
+ Avoid ignored attribute warnings under GCC
+ Make xmlDumpElementContent non-recursive
+ Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE
+ Mark xmlExp* symbols as removed
+ Make xmlParseConditionalSections non-recursive
+ Adjust expected error in Python tests
+ Make xmlTextReaderFreeNodeList non-recursive
+ Make xmlFreeNodeList non-recursive
+ Make xmlParseContent and xmlParseElement non-recursive
+ Remove executable bit from non-executable files
+ Fix expected output of test/schemas/any4
+ Optimize build instructions in README
+ xml2-config.in: Output CFLAGS and LIBS on the same line
+ xml2-config: Add a --dynamic switch to print only shared libraries
+ Annotate functions with __attribute__((no_sanitize))
+ Fix warnings when compiling without reader or push parser
+ Remove unused member `doc` in xmlSaveCtxt
+ Limit recursion depth in xmlXPathCompOpEvalPredicate
+ Remove -Wno-array-bounds
+ Remove unreachable code in xmlXPathCountFunction
+ Improve XPath predicate and filter evaluation
+ Limit recursion depth in xmlXPathOptimizeExpression
+ Disable hash randomization when fuzzing
+ Optional recursion limit when parsing XPath expressions
+ Optional recursion limit when evaluating XPath expressions
+ Use break statements in xmlXPathCompOpEval
+ Optional XPath operation limit
+ Fix compilation with --with-minimum
+ Check XPath stack after calling functions
+ Remove debug printf in xmlreader.c
+ Always define LIBXML_THREAD_ENABLED when enabled
+ Fix unused function warning in testapi.c
+ Remove unneeded function pointer casts
+ Fix -Wcast-function-type warnings (GCC 8)
+ Fix -Wformat-truncation warnings (GCC 8)
* Cleanups:
+ Rebuild docs
+ Disable xmlExp regex code
+ Remove redundant code in xmlRelaxNGValidateState
+ Remove redundant code in xmlXPathCompRelationalExpr
- Rebase patch fix-perl.diff
==== libxslt ====
Version update (1.1.33 -> 1.1.34)
Subpackages: libxslt-tools libxslt1
- Update to 1.1.34: Oct 30 2019
* Documentation:
- Fix EXSLT web pages, Regenerate web pages
- Fix Git link in news.html
- Minor documentation fixes after recent changes
- Regenerate symbols and API docs
- Regenerate EXSLT website
* Portability:
- Remove stubs when compiling without debugger or profiler
- configure.ac: Invoke PKG_CHECK_MODULES for building shared libraries
- configure.ac: Conditionally determine whether xml2-config should pass
shared libraries or static libraries
- xslt-config.in: Fix broken --prefix=DIR support
- libexslt.pc.in: Do not expose private library dependencies unless invoked
- libxslt.pc.in: Do not expose private library dependencies unless invoked
- Fix -Wformat-overflow warning (GCC 9)
- Stop including ansidecl.h
- Remove WIN32_EXTRA_* variables
- Build without winsock
* Bug Fixes:
- xsl:template without name and match attributes should not be allowed
- Make sure that Python tests exit with error code
- Improve handling of invalid UTF-8 in format-number
- Fix dangling pointer in xsltCopyText
- Fix memory leak in pattern compilation error path
- Fix uninitialized read with UTF-8 grouping chars
- Fix integer overflow in FORMAT_GYEAR
- Fix performance regression with xsl:number
- Backup XPath context node in xsltInitCtxtKey
- Fix unsigned integer overflow in date.c
- Fix insertion of xsl:fallback content
- Avoid quadratic behavior in xsltSaveResultTo
- Fix numbering in non-Latin scripts
- Fix uninitialized read of xsl:number token
- Fix integer overflow in _exsltDateDayInWeek
- Rework xsltAttrVT allocation
- Fix check of xsltTestCompMatch return value
- Fix security framework bypass
- Use xmlNewTextChild in EXSLT dyn:map
- Fix float casts in exsltDateDuration
- Always set context node before calling XPath iterators
- Fix attribute precedence with xsl:use-attribute-sets
- Backup context node in exsltFuncFunctionFunction
- Initialize ctxt->output before evaluating global vars
- Fix memory leak in EXSLT functions error path
* Improvements:
- Fix -Wimplicit-fallthrough warnings
- Adjust number of API index pages
- Make xsltCompileRelativePathPattern non-recursive
- Check that crypto:rc4_decrypt produces valid UTF-8
- Avoid recursion in keys.c:skipPredicate
- xslt-config.in: Simply handling of $all_flags
- xslt-config.in: Add a --dynamic option to --libs
- xslt-config.in: Simplify basic library handling
- xslt-config.in: Remove unused variable
- xslt-config: Simply handling of --cflags
- Improve fuzzers
- Always reuse XPath context
- Compile with -Wextra
- Make profiler support optional
- Hide unused code when compiling without debugger
- Reorganize fuzzing code
- Optional operation limit
- Improve seed corpus and dictionary
- Reuse XPath context when compiling stylesheets
- Reuse XPath context in dyn:map
- Reuse XPath context in saxon:expression
- Add libFuzzer targets
- Adjust error message in expected test output
- Change bug tracker URL
- Change git repo URL
- Regenerate NEWS
- Fix misleading indentation in security.c
* Cleanups:
- Remove empty TODO file
- Remove generated file libxsltclass.txt from version control
- Rebuild docs
- Rebase patch libxslt-config-fixes.patch
- Remove patches fixed upstream:
* libxslt-CVE-2019-11068.patch
* libxslt-CVE-2019-13117.patch
* libxslt-CVE-2019-13118.patch
* libxslt-CVE-2019-18197.patch
==== libyui-qt-graph ====
Version update (2.45.3 -> 2.45.5)
- Do not require graphviz-devel for the doc package (bsc#1157916)
- 2.45.5
- Respect backslashes (graphviz escString) in texts (bsc#1157916)
- 2.45.4
==== libzypp ====
Version update (17.15.0 -> 17.17.0)
- Introduce PurgeKernels class (bsc#1155198)
Adds libzypp API to mark all obsolete kernels according to the
existing purge-kernel script rules.
- Add solver jobs for retracted packages and ptfs.
Support for ptf packages and retract ed patches.
- Do not enforce 'en' being in RequestedLocales (bsc#1155678)
If the user decides to have a system without explicit language
support he may do so.
- Pass correct posttrans script argument (fixes #190)
- BuildRequires: libsolv-devel >= 0.7.8.
- version 17.17.0 (12)
- Expose new libsolv API via C++ counterparts
(openSUSE/zypper#214)
- BuildRequires: libsolv-devel >= 0.7.7
- version 17.16.0 (12)
==== linux-glibc-devel ====
Version update (5.3 -> 5.4)
- Update to kernel headers 5.4
==== lirc ====
- Use python3-base BuildRequires instead of full python3
- Drop doxygen BuildRequires, the api-docs are bundled in the
source tarball and not regenerated, and are not even packaged.
- Move the portaudio based IR receiver driver behind a bcond - the
alsa based driver does the same, uses less resources, and does
not need an extra library.
==== mariadb-connector-c ====
Version update (3.1.4 -> 3.1.5)
- New upstream version 3.1.5 [bsc#1156669]
* MDEV-20469: Plugin dialog could not be loaded (wrong path)
* ODBC-440: Fixed typo in sha256_password cmake configuration
* CONC-418: For unknown/not handled schannel error codes
FormatMessage function will be used instead of returning
"Unknown error" message.
==== nano ====
Version update (4.5 -> 4.6)
Subpackages: nano-lang
- update to 4.6:
* re-introduce the formatter command (M-F)
* ^T will try to run 'hunspell' before 'spell', because it checks
spelling for the locale's language and understands UTF-8
* Multiple errors or warnings on startup will no longer slow nano
down but will be indicated on the status bar with trailing dots
==== openssl ====
Subpackages: libopenssl-devel
- Remove Obsoletes: pkgconfig(*): Only package names can be
obsoleted. Until RPM 4.15, those lines were simply ineffective
and being ignored, but with RPM 4.15 they result in an error.
==== ovmf ====
Version update (201908 -> 201911)
Subpackages: qemu-ovmf-x86_64
- Update to edk2-stable201911
+ SecurityPkg: Fix TPM2 ACPI measurement
+ MdeModulePkg: Enable variable runtime cache by default
+ OvmfPkg: Disable variable runtime cache
+ MdeModulePkg/Variable: Add RT GetVariable() cache support
+ CryptoPkg: Upgrade OpenSSL to 1.1.1d
+ MdePkg-UefiSpec.h: Add UEFI 2.8 new memory attributes
+ MdePkg/UefiFileHandleLib: Fix potential NULL dereference
+ NetworkPkg/HttpDxe: Set the HostName for the verification
(CVE-2019-14553)
+ NetworkPkg/TlsDxe: Add the support of host validation to TlsDxe
driver (CVE-2019-14553)
+ CryptoPkg/TlsLib: TlsSetVerifyHost: parse IP address literals
as such (CVE-2019-14553)
+ CryptoPkg/TlsLib: Add the new API "TlsSetVerifyHost"
(CVE-2019-14553)
+ MdePkg/Include/Protocol/Tls.h: Add the data type of
EfiTlsVerifyHost (CVE-2019-14553)
+ MdeModulePkg/BdsDxe: Fix PlatformRecovery issue
+ NetworkPkg/SnpDxe: Add PCD to remove ExitBootServices event
from SNP driver
+ MdeModulePkg: Update to support SmBios 3.3.0
+ UefiCpuPkg/MpInitLib: honor the platform's boot CPU count in AP
detection
+ SecurityPkg/Tcg2: Add Support Laml, Lasa for TPM2 ACPI
+ OvmfPkg/PlatformDxe: fix EFI_HII_HANDLE parameters of internal
functions
+ OvmfPkg/VirtioNetDxe: fix SignalEvent() call
+ OvmfPkg/XenBusDxe: fix UninstallMultipleProtocolInterfaces()
call
+ NetworkPkg/Ip4Dxe: fix NetLibDestroyServiceChild() call
+ MdeModulePkg/ScsiDiskDxe: Support Storage Security Command
Protocol
+ MdePkg: Implement SCSI commands for Security Protocol In/Out
+ MdeModulePkg/TerminalDxe: Enhance the arrow keys support
+ MdeModulePkg/UefiBootManager: Unload image on
EFI_SECURITY_VIOLATION
+ MdeModulePkg/DxeCapsuleLibFmp: Unload image on
EFI_SECURITY_VIOLATION
+ MdeModulePkg: Extend the support keyboard type of Terminal
console
+ UefiCpuPkg/CpuExceptionHandlerLib: Fix split lock
+ UefiCpuPkg: Fix potential spinLock issue in SmmStartupThisAp
+ UefiCpuPkg/PiSmmCpu: Enable 5L paging only when phy addr line
> 48
+ OvmfPkg/EnrollDefaultKeys: clean up Base64Decode() retval
handling
+ ArmVirtPkg/PlatformBootManagerLib: unload image on
EFI_SECURITY_VIOLATION
+ ShellPkg/ShellPkg.dsc AARCH64: enable stack protector
+ ArmVirtPkg/ArmVirtPrePiUniCoreRelocatable: revert to PIE
linking
+ BaseTools/GenFw AARCH64: fix up GOT based relative relocations
+ ShellPkg/Pci.c: Update supported link speed to PCI5.0
+ PcAtChipsetPkg: add PcdRealTimeClockUpdateTimeout
+ UefiCpuPkg: Add PcdCpuSmmRestrictedMemoryAccess
+ ShellPkg/CommandLib: avoid NULL derefence and memory leak
+ MdePkg/DxeHstiLib: Added checks to improve error handling
+ BaseTools: Support more file types in build cache
+ UefiCpuPkg/SecCore: get AllSecPpiList after SecPlatformMain
- Update openssl to 1.1.1d
+ Add openssl-fix-syntax-error.patch to fix a syntax error
- Drop ovmf-bsc1153072-fix-invalid-https-cert.patch
+ Already upstreamed
==== perl ====
Subpackages: perl-base perl-doc
- Add perl-Adapt-Configure-to-GCC-version-10.patch in order
to fix boo#1158254.
==== perl-HTTP-Cookies ====
Version update (6.07 -> 6.08)
- updated to 6.08
see /usr/share/doc/packages/perl-HTTP-Cookies/Changes
6.08 2019-12-02 15:58:32Z
- allow different "ignore_discard" value at save() time (GH#2) (Alex Peters)
==== perl-Socket6 ====
Version update (0.28 -> 0.29)
- Add manual license BSD-3-Clause to cpanspec.yml
Limit description to 2 paragraphs
- updated to 0.29
see /usr/share/doc/packages/perl-Socket6/ChangeLog
2018-09-30 Hajimu UMEMOTO