Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&version=Tumbleweed&build=20210223 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream (0.13.1 -> 0.14.1) ImageMagick (7.0.10.62 -> 7.0.11.0) MozillaFirefox (85.0.1 -> 85.0.2) avahi binutils (2.35.1 -> 2.36) ca-certificates-mozilla (2.44 -> 2.46) dracut (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) drpm e2fsprogs (1.45.6 -> 1.46.1) ell (0.36 -> 0.38) filesystem flex gdb glibc gnome-control-center (3.38.3 -> 3.38.4) gnome-desktop (3.38.3 -> 3.38.4) gnome-photos (3.38.0 -> 3.38.1) grub2 gtk3 (3.24.24 -> 3.24.25) highlight (3.60 -> 3.62) ipset (7.10 -> 7.11) kernel-firmware kmod korganizer ldacBT libaio (0.3.112 -> 0.3.112+29.696a5e6483ba) libgcrypt (1.9.1 -> 1.9.2) libnettle (3.7 -> 3.7.1) libpcap (1.9.1 -> 1.10.0) libpst (0.6.71 -> 0.6.75) libqt5-qtwebengine libraw libsolv (0.7.16 -> 0.7.17) libvirt libzypp (17.25.6 -> 17.25.7) linux-glibc-devel (5.10 -> 5.11) llvm11 mariadb milou5 mpg123 myspell-dictionaries nodejs-common nodejs15 openafs pam patterns-base pcre pcsc-lite (1.9.0 -> 1.9.1) pipewire plasma5-openSUSE plasma5-workspace plymouth postgresql13 (13.1 -> 13.2) python-M2Crypto python-py (1.9.0 -> 1.10.0) qemu rdma-core (31.0 -> 31.3) redis rygel (0.40.0 -> 0.40.1) seahorse (3.38.0.1 -> 3.38.1) strace (5.10 -> 5.11) systemd tar (1.33 -> 1.34) u-boot-rpiarm64 (2020.10 -> 2021.01) util-linux (2.36.1 -> 2.36.2) util-linux-systemd (2.36.1 -> 2.36.2) vim webkit2gtk3 wireless-regdb (20201120 -> 20210129) xdelta3 xkeyboard-config (2.31 -> 2.32) xmlsec1 zbar (0.23.1 -> 0.23.90) === Details === ==== AppStream ==== Version update (0.13.1 -> 0.14.1) Subpackages: libAppStreamQt2 libappstream4 - Update to version 0.14.1: + Features: - Switch back from Soup to cURL for HTTP(S). - validator: Check a few more things on requires/recommends items. - Only download the first bytes of a file when checking URLs for validity. + Specification: spec: Officially mark <mimetypes/> tag as deprecated. + Bugfixes: - qt: Return better errors in AppStream::Metadata. - Do not automatically clean up errors that will be propagated. - Remove overall extern "C" to make very new (2.67+) GLib versions happy. - ascli: Don?t use GNU C extension type names. - build: Use c11 rather than gnu11 and define vendor extensions separately. - Changes from version 0.14.0: + Features: - news-to-metainfo: Interpret placeholder release dates as denoting a dev version. - Make as_utils_build_data_id public API. - Add AsReview for attaching user reviews to software components. - Add a branch element to component data-IDs. - utils: Add data-ID hashing and matching functions. - utils: Make as_gstring_replace public API. - Add branch info to on-disk cached components. - content-rating: Add as_content_rating_add_attribute API. - Rename INPUTMETHOD component kind enum to INPUT_METHOD. - Add "cabinet" bundle type for firmware deployments. - Make AsTokenMatch public API. - Add function to AsScreenshot to get image closest to preferred size. - Allow AsComponent to directly ingest desktop-entry data. - Make as_pool_build_search_tokens API public. - Add "origin" token match. - Make as_component_add_provided_item API public. - Add some useful image dimension constants. - compose: Add blur function from asglib. - Add more efficient load_from_bytes method to AsComponent. + Updated translations. - Drop fix-build-gcc7.patch: no longer applicable. - Replace pkgconfig(libsoup-2.4) with pkgconfig(libcurl) BuildRequires: follow upstreams switch back to cURL. ==== ImageMagick ==== Version update (7.0.10.62 -> 7.0.11.0) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagick++-7_Q16HDRI5 libMagickCore-7_Q16HDRI9 libMagickWand-7_Q16HDRI9 - version update to 7.0.11.0 * bump minor version # * allow reading multichannel PSD files with 1 or 2 channels. * respect masks when computing SSIM metric (reference https://github.com/ImageMagick/ImageMagick/discussions/3212). - build against libraw [bsc#1182229] ==== MozillaFirefox ==== Version update (85.0.1 -> 85.0.2) Subpackages: MozillaFirefox-translations-common - Mozilla Firefox 85.0.2 * Fixed: Fixed a deadlock during startup (bmo#1679933) - Use %limit_build macros for PowerPC to avoid oom build failure ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Rebase avahi-daemon-check-dns-suse.patch, and drop privileges when invoking avahi-daemon-check-dns.sh (boo#1180827 CVE-2021-26720). - Add sudo to requires: used to drop privileges. ==== binutils ==== Version update (2.35.1 -> 2.36) Subpackages: libctf-nobfd0 libctf0 - Bump 2.36 branch diff. - Update 2.36 branch diff which should fix PR27311 completely. It fixes also PR27284. - Remove temporary fix 0001-PR27311-ld.bfd-symbol-from-plugin-undefined-referenc.patch. - Add temporary upstream fix for PR27311 0001-PR27311-ld.bfd-symbol-from-plugin-undefined-referenc.patch. - Update to binutils 2.36: New features in the Assembler: General: * When setting the link order attribute of ELF sections, it is now possible to use a numeric section index instead of symbol name. * Added a .nop directive to generate a single no-op instruction in a target neutral manner. This instruction does have an effect on DWARF line number generation, if that is active. * Removed --reduce-memory-overheads and --hash-size as gas now uses hash tables that can be expand and shrink automatically. X86/x86_64: * Add support for AVX VNNI, HRESET, UINTR, TDX, AMX and Key Locker instructions. * Support non-absolute segment values for lcall and ljmp. * Add {disp16} pseudo prefix to x86 assembler. * Configure with --enable-x86-used-note by default for Linux/x86. ARM/AArch64: * Add support for Cortex-A78, Cortex-A78AE and Cortex-X1, Cortex-R82, Neoverse V1, and Neoverse N2 cores. * Add support for ETMv4 (Embedded Trace Macrocell), ETE (Embedded Trace Extension), TRBE (Trace Buffer Extension), CSRE (Call Stack Recorder Extension) and BRBE (Branch Record Buffer Extension) system registers. * Add support for Armv8-R and Armv8.7-A ISA extensions. * Add support for DSB memory nXS barrier, WFET and WFIT instruction for Armv8.7. * Add support for +csre feature for -march. Add CSR PDEC instruction for CSRE feature in AArch64. * Add support for +flagm feature for -march in Armv8.4 AArch64. * Add support for +ls64 feature for -march in Armv8.7 AArch64. Add atomic 64-byte load/store instructions for this feature. * Add support for +pauth (Pointer Authentication) feature for - march in AArch64. New features in the Linker: * Add --error-handling-script=<NAME> command line option to allow a helper script to be invoked when an undefined symbol or a missing library is encountered. This option can be suppressed via the configure time switch: --enable-error-handling-script=no. * Add -z x86-64-{baseline|v[234]} to the x86 ELF linker to mark x86-64-{baseline|v[234]} ISA level as needed. * Add -z unique-symbol to avoid duplicated local symbol names. * The creation of PE format DLLs now defaults to using a more secure set of DLL characteristics. * The linker now deduplicates the types in .ctf sections. The new command-line option --ctf-share-types describes how to do this: its default value, share-unconflicted, produces the most compact output. * The linker now omits the "variable section" from .ctf sections by default, saving space. This is almost certainly what you want unless you are working on a project that has its own analogue of symbol tables that are not reflected in the ELF symtabs. New features in other binary tools: * The ar tool's previously unused l modifier is now used for specifying dependencies of a static library. The arguments of this option (or --record-libdeps long form option) will be stored verbatim in the __.LIBDEP member of the archive, which the linker may read at link time. * Readelf can now display the contents of LTO symbol table sections when asked to do so via the --lto-syms command line option. * Readelf now accepts the -C command line option to enable the demangling of symbol names. In addition the --demangle=<style>, - -no-demangle, --recurse-limit and --no-recurse-limit options are also now availale. - Includes fixes for these CVEs: bnc#1179898 aka CVE-2020-16590 aka PR25821 bnc#1179899 aka CVE-2020-16591 aka PR25822 bnc#1179900 aka CVE-2020-16592 aka PR25823 bnc#1179901 aka CVE-2020-16593 aka PR25827 bnc#1179902 aka CVE-2020-16598 aka PR25840 bnc#1179903 aka CVE-2020-16599 aka PR25842 bnc#1180451 aka CVE-2020-35493 aka PR25307 bnc#1180454 aka CVE-2020-35496 aka PR25308 bnc#1180461 aka CVE-2020-35507 aka PR25308 - Rebase the following patches: * binutils-fix-relax.diff * binutils-revert-nm-symversion.diff * binutils-revert-plt32-in-branches.diff - Add missing dependency on bc (ld.gold testsuite uses it). - Use --enable-obsolete for cross builds as ia64 is deprecated now. - Add binutils-2.36-branch.diff.gz. - Add binutils-fix-relax.diff to fix linking relaxation problems with old object files hitting some enterprise software. [bsc#1179341] - Update binutils-2.35-branch.diff.gz to commit 1c5243df: * Fixes PR26520, aka [bsc#1179036], a problem in addr2line with certain DWARF variable descriptions. * Also fixes PR26711, PR26656, PR26655, PR26929, PR26808, PR25878, PR26740, PR26778, PR26763, PR26685, PR26699, PR26902, PR26869, PR26711 * The above includes fixes for dwo files produced by modern dwp, fixing several problems in the DWARF reader. ==== ca-certificates-mozilla ==== Version update (2.44 -> 2.46) - Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994) - Added new root CAs: - NAVER Global Root Certification Authority - Removed old root CA: - GeoTrust Global CA - GeoTrust Primary Certification Authority - GeoTrust Primary Certification Authority - G3 - GeoTrust Universal CA - GeoTrust Universal CA 2 - thawte Primary Root CA - thawte Primary Root CA - G2 - thawte Primary Root CA - G3 - VeriSign Class 3 Public Primary Certification Authority - G4 - VeriSign Class 3 Public Primary Certification Authority - G5 ==== dracut ==== Version update (051+suse.85.g04886430 -> 052+suse.93.g7bfaa6d9) - Update to version 052+suse.93.g7bfaa6d9: * fix(dbus-daemon): make sure that dbus.socket is stopped before switch root (bsc#1181167) - Update to version 052+suse.91.gb30dce3c: * chore: update suse/dracut.spec - Update to version 052+suse.88.gc78b4ac8: * fix(i18n): get rid of `eval` calls * fix(i18n): create the keyboard symlinks again * docs: update NEWS.md and AUTHORS * chore: add `CONTRIBUTORS` target to Makefile * fix: shellcheck across multipl emodules * docs: fix dracut.cmdline.7 * fix: update dbus module directory in spec file * fix: add sdaskpw and sdsyctl to spec file * fix: cosmetic comment fixes * feat(systemd-ask-password): introducing systemd-ask-password module * Revert "nbd: use systemd-run to start nbd-client" * dmsquash-live-root: squashfs in bare device * feat(systemd-sysctl): introducing systemd-sysctl module * fix: adding missing efi paths * fix: correct the squash quirk * feat(systemd-modules-load): introducing systemd-modules-load module * fix(shutdown): add timeout to umount calls * fix: revise all module checks * fix: add missing line continuation * fix: BuildRequiring git-core is enough in dracut.spec * fix(kernel-modules): add reset controllers for arm * 35network-legacy: discard pointless RTNETLINK message * fix(plymouth): install binaries with dependencies * fix: correct the line continuation * fix(dbus-daemon): use uid/gid from sysroot is dracutsysrootdir is set * fix(network-manager): allow override network manager version * feat(dracut.sh): allow overriding the systemctl command for sysroot * fix: use find_binary * fix(dracut.sh): don't override path with foreign sysroot * fix: quote globbing in module-setup.sh for inst_multiple * fix(dracut-install): allow globbing for multiple sources * Fix bad ls parsing * fix: move ldconfig after library workaround * feat(kernel-modules): add driver memory * feat(systemd-repart): introducing systemd-repart module * feat(dbus-daemon): introducing the dbus-daemon module * feat(dbus-broker): introducing the dbus-broker module * feat(dbus): introducing a meta module for dbus * fix(network-legacy): silent check for leaseinfo * 95nfs: fix rpc.statd installation * fix: do not set cmdline for uefi images unless asked * feat(network-legacy): send dhcp in parallel on all devices * fix(mdraid): remove offroot * fix(mdraid): add grow continue service * fix(spec): add new systemd-coredump module to spec * fix(watchdog): replace return with echo * feat(systemd-coredump): introducing systemd-coredump module * prepare usrmerge (boo#1029961) * test: incr. disk size for TEST 35 ISCSI-MULTI * fix(skipcpio): edit skipcpio.c: strstr -> memmem * fix(1007): adding shared keyring mode to type unit * feat(systemd-sysusers): introducing systemd-sysuser module * feat(systemd-sysusers): introducing systemd-sysuser module * fix(1001): use efivars fs over the deprecated sysfs entries * fix(kernel-network-modules): also install modules from mdio subdirectory * fix(06dbus): do not hardcode path to dbus utils * fix(06dbus): do not hardcode path to systemd unit * fix(dracut-init.sh): make inst_libdir_file work with dracutsysrootdir set * fix(99squash): use kernel config instead of modprobe to check modules * fix(dracut-functions.sh): check kernel config from $dracutsysrootdir * fix(90kernel-modules): install generic crypto modules with hostonly unset * feat: add addional global variables * fix: add a missing efi support * chore(removal): eliminate bootchart module * feat: add addional global variables * feat(cli): add --no-uefi option * chore(github): add CODEOWNERS file * chore(cleanup): remove logrotate file * fix(35network-manager): avoid restarting NetworkManager * chore: Add configuration for vim * chore: Add editorconfig * chore: Editors * test(conventional): add Conventional Commits PR github action * docs(development): add HACKING.md ==== drpm ==== - skip valgrind checking on aarch64 (bsc#1182493) ==== e2fsprogs ==== Version update (1.45.6 -> 1.46.1) Subpackages: e2fsprogs-scrub libcom_err2 libext2fs2 - Remove autoreconf (and resulting dependencies) from the spec file. The upstream configure script should be fine. - Update to 1.46.1: * Fix setting extended attributes in libext2fs and debugfs * Fix e2fsck to accept large_dir directories greater than 4G * Fix fast commit support on big endian architectures * Fix mke2fs -d to correctly import a small file stored using inline_data feature and which has ACL or extended attribute * Various compilation fixes * Speedup bitmap loading for large filesystems using multiple threads * Speedup mke2fs for bigalloc filesystems * E2fsck fixes when rehashing directories * Fix e2fsck crashes on maliciously corrupted filesystems * Fix e2fsck handling of duplicated case-folded file names * Implement hashed directory support in libext2fs * Support for fast commit feature * Support for combination of casefolding and encryption * Support for stable inodes feature * Add support for per-inode DAX flag * Fix tune2fs to unlock MMP on failure * Fix e2fsck buffer overflow when scanning directory blocks * Fix resize2fs overflowing block group descriptors with 1k block size - delete e2fsprogs-1.45.2-gettext.patch - it was merged upstream - Add autoconf-archive to build requirements - Fix installation of info files for older distros ==== ell ==== Version update (0.36 -> 0.38) - Update to release 0.38 : * Fix issue with DHCP v6 Rapid Commit option check. * Fix issue with handling RFC8018/RFC1423 padding. * Fix issue with D-Bus filter messages with no interfaces set. * Add support for PKCS#12 certification loading. ==== filesystem ==== - Add Ukrainian to the list of localized man directories. ==== flex ==== Subpackages: libfl-devel libfl2 - Update project url ==== gdb ==== - Replace tentative fix with upstreamed fix [swo#26881]: Remove: * gdb-fix-assert-in-process-event-stop-test.patch Add: * gdb-fix-internal-error-in-process_event_stop_test.patch * gdb-breakpoints-handle-glibc-with-debuginfo-in-create_exception_master_breakpoint.patch - Fix license [bsc#1180786]. ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd - Prepare for usrmerge (bsc#1029961) - Add --enable-memory-tagging for aarch64 ==== gnome-control-center ==== Version update (3.38.3 -> 3.38.4) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Update to version 3.38.4: + User Accounts: - Properly handle claiming errors if we're already claiming. - Always call EnrollStop on enrollment complete. + Updated translations. ==== gnome-desktop ==== Version update (3.38.3 -> 3.38.4) Subpackages: gnome-version libgnome-desktop-3-19 libgnome-desktop-3_0-common typelib-1_0-GnomeDesktop-3_0 - Update to version 3.38.4: + Updated translations. ==== gnome-photos ==== Version update (3.38.0 -> 3.38.1) Subpackages: gnome-shell-search-provider-gnome-photos - Update to version 3.38.1: + Bugs fixed: appdata: Add release notes for 3.38.0. + Updated translations. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix build error in binutils 2.36 (bsc#1181741) * 0001-Fix-build-error-in-binutils-2.36.patch - Fix executable stack in grub-emu (bsc#1181696) * 0001-emu-fix-executable-stack-marking.patch - Restore compatibilty sym-links * grub2.spec - Use rpmlintrc to filter out rpmlint 2.0 error (bsc#1179044) * grub2.rpmlintrc ==== gtk3 ==== Version update (3.24.24 -> 3.24.25) Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.25: + Settings: Make cursor aspect ratio setting work. + Broadway: - Fix touchscreen event handling. - Support Android / Chrome on-screen keyboard. + Wayland: - Avoid crashes with tablet input. - Add api to support clients with subsurfaces better. + Inspector: Make the inspector available in non-debug builds. + Theme: - Make scrollbars larger. - Disable shadows on maximized, fullscreen and tiled windows. + Printing: Support Avahi-discovered printers better. + Input: - Show preedit for compose sequences. - Support long compose sequences. - Support compose sequences producing multiple characters. + Updated translations. ==== highlight ==== Version update (3.60 -> 3.62) - Update to version 3.62: * Fixed `--list-scripts` output. - Update to version 3.61: * Added `--syntax-supported` option * Fixed indentation of Plain TeX output - Drop makefile patches since build can actually be configured without them: * highlight-3.45-fix-doc-dir.patch * highlight-3.59-use_optflags.patch ==== ipset ==== Version update (7.10 -> 7.11) Subpackages: libipset13 - Update to release 7.11 * Argument parsing buffer overflow in ipset_parse_argv fixed ==== kernel-firmware ==== Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Correct the RPi4 brcm config to recover the WiFi breakage (bsc#1182320): Revert-brcm-rpi4-boardflags3-bit.patch ==== kmod ==== Subpackages: kmod-bash-completion libkmod2 - Fix grub's requoted kernel parameters (bsc#1181111) * 0001-libkmod-config-revamp-kcmdline-parsing-into-a-state-.patch * 0002-libkmod-config-re-quote-option-from-kernel-cmdline.patch ==== korganizer ==== Subpackages: korganizer-lang - Add patch to allow creating custom pages: * 0001-Look-for-designer-qt5-on-openSUSE.patch ==== ldacBT ==== - Exclude building in big-endian architectures (s390 s390x ppc64) since ldacBT requires a little-endian cpu to build. ==== libaio ==== Version update (0.3.112 -> 0.3.112+29.696a5e6483ba) - Update to version libaio0.3.112+29.696a5e6483ba: * Fix test issue with gcc-11 (bsc#1181869) * harness: Skip the test if io_pgetevents() is not implemented * harness: Print better error messages on error conditions in 22.t * harness: Fix PROT_WRITE mmap check * harness: fix read into PROT_WRITE mmap test * harness: skip 22.p if async_poll isn't supported * harness: Handle -ENOTSUP from io_submit() with RWF_NOWAIT * harness: Add fallback code for filesystems not supporting O_DIRECT * harness: add support for skipping tests * harness: Make the test exit with a code matching the pass/fail state ==== libgcrypt ==== Version update (1.9.1 -> 1.9.2) Subpackages: libgcrypt20 libgcrypt20-hmac - libgcrypt 1.9.2: * Fix building with --disable-asm on x86 * Check public key for ECDSA verify operation * Make sure gcry_get_config (NULL) returns a nul-terminated string * Fix a memory leak in the ECDH code * Fix a reading beyond end of input buffer in SHA2-avx2 - remove obsolete texinfo packaging macros ==== libnettle ==== Version update (3.7 -> 3.7.1) Subpackages: libhogweed6 libnettle8 - GNU Nettle 3.7.1: * Fix bug in chacha counter update logic (ppc64 and ppc64el) * Restore support for big-endian ARM platforms * Fix corner case bug in ECDSA verify, it would produce incorrect result in the unlikely case of an all-zero message hash * Support for pbkdf2_hmac_sha384 and pbkdf2_hmac_sha512 * Remove poorly performing ARM Neon code for doing single-block Salsa20 and Chacha ==== libpcap ==== Version update (1.9.1 -> 1.10.0) - Update to 1.10.0 * Require, and assume, some level of C99 support in the C compiler * Add support for capturing on DPDK devices * rpcap: support rpcap-over-TLS * Fix some memory leaks, including in pcap_compile() * Linux: handle systems without AF_INET or AF_UNIX socket support * Catch invalid IPv4 addresses in filters * Show special Linux BPF offsets symbolically in bpf_image() and bpf_dump() * Linux: get rid of Wireless Extensions for turning monitor mode on * Linux: proper memory sync for PACKET_MMAP * Linux: drop support for libnl 1 and 2. * Linux: Require PF_PACKET support, and kernel 2.6.27 or later * Add DLT_LINUX_SLL2 * Add a new filter "ifindex" for DLT_LINUX_SLL2 files and live Linux captures * optimizer: add a hack to try to catch certain optimizer loops * Probe CONFIGURATION descriptor of connected USB devices * Linux: return error on interface going away, but not if it just went down * Linux: set socket protocol only after packet ring configured, reducing bogus packet drop reports * Linux: get ifdrop stats from sysfs. * Fix various security issues reported by Charles Smith at Tangible Security * Fix various security issues reported by Include Security * rpcapd: on UN*X, don't tell the client why authentication failed * Linux: when adjusting BPF programs, do not subtract the SLL[2]_HDR_LEN if the location is negative (special metadata offset) * Linux: with a timeout of zero, wait indefinitely * Linux: clean up support for some non-GNU libc C libraries * Increase the maximum snaplen for LINKTYPE_USBPCAP/DLT_USBPCAP * Fix handling of some ioctls that fail with "permission denied" even when the ioctl isn't supported at all * Added support for ICMPv6 types 1-4 as tokens in filters * Report the DLT description in error messages * Linux: Add support for DSA data link types * Linux USB: use the snapshot length to set the buffer size, and set the len field to reflect the length in the URB * rpcapd: allow rpcapd to rebind more rapidly * Add Haiku pcap implementation * rpcap: redo protocol version negotiation to avoid problems with old servers (it still works with servers using the old negotiation, as well as servers not supporting negotiation) * Remove (unused) SITA support here. * Correctly handle pcapng captures with more than one IDB with a snspshot length greater than the supported maximum - Remove libpcap-no-old-socket.patch - Rebase libpcap-1.0.0-s390.patch ==== libpst ==== Version update (0.6.71 -> 0.6.75) - Update to version 0.6.75: + Fix from Debian for vcard version format. - Changes from version 0.6.74: + Many changes for Debian. - Changes from version 0.6.73: + Fix segfault in pst_close(). - Changes from version 0.6.72: + Add -l and -f options to lspst. ==== libqt5-qtwebengine ==== - Add patch to fix sandbox with glibc 2.33 on 32bit: * sandbox-statx-futex_time64.patch - Relax constraints for armv6 and armv7 ==== libraw ==== - baselibs required by ImageMagick - added sources + baselibs.conf ==== libsolv ==== Version update (0.7.16 -> 0.7.17) Subpackages: libsolv-tools python3-solv ruby-solv - repo_write: fix handling of nested flexarray - improve choicerule generation a bit more to cover more cases - harden testcase parser against repos being added too late - support python-3.10 - check %_dbpath macro in rpmdb code - handle default/visible/langonly attributes in comps parser - support multiple collections in updateinfo parser - add '-D' option in rpmdb2solv to set the dbpath - bump version to 0.7.17 ==== libvirt ==== Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-libs - qemu: Add virtio related options to vsock 8a4b8996-conf-move-virDomainCheckVirtioOptions.patch, c05f0066-conf-drop-empty-virDomainNetDefPostParse.patch, 19d4e467-conf-improve-virDomainVirtioOptionsCheckABIStability.patch, bd112c9e-qemu-virtio-options-vsock.patch bsc#1182365 ==== libzypp ==== Version update (17.25.6 -> 17.25.7) - Patch: Identify well-known category names (bsc#117984) This allows to use the RH and SUSE patch categrory names synonymously: (recommendedi = bugfix) and (optional = feature = enhancement). - Add missing includes for GCC 11 compatibility. - Fix %posttrans script execution (fixes #265) The scripts are execuable. No need to call them through 'sh -c'. - Commit: Fix rpmdb compat symlink in case rpm got removed. - Repo: Allow multiple baseurls specified on one line (fixes #285) - Regex: Fix memory leak and undefined behavior. - Add rpm buildrequires for test suite (fixes #279) - Use rpmdb2solv new -D switch to tell the location ob the rpmdatabase to use. - BuildRequires: libsolv-devel >= 0.7.17. - version 17.25.7 (22) ==== linux-glibc-devel ==== Version update (5.10 -> 5.11) - Update to kernel headers 5.11 ==== llvm11 ==== Subpackages: clang-tools clang11 clang11-doc libLLVM11 libLTO11 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang11 - Don't use gold and ThinLTO on ppc64le because of boo#1181621. - Fix-missing-include.patch: fix build with GCC 11. (boo#1181875) - CMake-Look-up-target-subcomponents-in-LLVM_AVAILABLE_LIBS.patch: Fix target component lookup. (boo#1180748) ==== mariadb ==== Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - update the list of the skipped tests ==== milou5 ==== Subpackages: milou5-lang - Add patch to avoid empty queries, which causes runners to misbehave: * 0001-Fix-launching-empty-query.patch ==== mpg123 ==== Subpackages: libmpg123-0 mpg123-openal - Avoid unconditional Supplements ==== myspell-dictionaries ==== Subpackages: myspell-en myspell-en_US myspell-lightproof-en - use github repo [bsc#1182375] - modified sources % update.sh ==== nodejs-common ==== - Fix typo in Requires ==== nodejs15 ==== Subpackages: npm15 - relax OpenSSL cipher suite policies for unit tests ==== openafs ==== Subpackages: openafs-client openafs-kmp-64kb openafs-kmp-default - kernel-source.build-modules.sh: choose safe CWD while executing the build to prevent files being created in unsafe locations. Use new SUSE naming convention and rely on /etc/os-release, since /etc/SuSE-release no longer exists. ==== pam ==== Subpackages: pam-doc - Add missing conflicts for pam_unix-nis - Split out pam_unix module and build without NIS support ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-documentation patterns-base-enhanced_base patterns-base-minimal_base patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - Don't pull in update_test pattern from sw_management - Move aaa_base-malloccheck from update_test to base ==== pcre ==== Subpackages: libpcre1 libpcreposix0 - package testsuite in a separate RPM (boo#1182235) ==== pcsc-lite ==== Version update (1.9.0 -> 1.9.1) Subpackages: libpcsclite1 - version 1.9.1 * Do not (possibly) lock a reader if allocating hCard fails * Fix a hang in SCardTransmit() * Do not report an error if the wrong interface is used by the driver * Update reader state when a card is removed during an exchange * readerfactory: Make sure a freed Reader Context is not accessed * PHSetProtocol(): supports T=0&1 cards on T=0 reader * hotplug-libusb: . support CCIDCLASSDRIVER . add interface name to reader name . remove obsolete libhal scheme * Some other minor improvements ==== pipewire ==== Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - ldacBT only builds on little endian architectures, so we can't buildrequire it on big endian systems like s390, s390x or ppc64. ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Drop update_diffs.sh, broken and unused ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - Add patch to fix krunner crash caused by mismatched quotes: * 0001-locations-runner-Fix-empty-list-on-invalid-shell-quo.patch - Add patch to fix starting applications with arguments from krunner (kde#433053): * 0001-locations-runner-Fix-absolute-filepath-arguments.patch - Add patch to fix race on logout (kde#432460): * 0001-libkworkspace-Interim-fix-for-the-logout-issue.patch ==== plymouth ==== Subpackages: libply-boot-client5 libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner - Fix broken use of %service_add_post and %service_del_postun. Without any services specified, the first is a no-op, the latter will only execute systemctl daemon-reload (boo#1179849). - Use %ldconfig_scriptlets macro in Tumbleweed ==== postgresql13 ==== Version update (13.1 -> 13.2) Subpackages: libpq5 postgresql13-contrib postgresql13-docs postgresql13-llvmjit postgresql13-server - boo#1179945: Disable icu for PostgreSQL 10 (and older) on TW. - Upgrade to version 13.2: * https://www.postgresql.org/docs/13/release-13-2.html * Updating stored views and reindexing might be needed after applying this update. * CVE-2021-3393, bsc#1182040: Fix information leakage in constraint-violation error messages. * CVE-2021-20229, bsc#1182039: Fix failure to check per-column SELECT privileges in some join queries. * Obsoletes postgresql-icu68.patch. ==== python-M2Crypto ==== - Add 293_sslv23_padding.patch to avoid using RSA_SSLV23_PADDING (gl#m2crypto/m2crypto#293, gh#openssl/openssl#14216). - OpenSSL allows the verificaton to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE * This unifies the behaviour of a single certificate with an unknown CA certificate with a self-signed certificate. - Add python-M2Crypto-Allow-on-UNABLE_TO_VERIFY_LEAF_SIGNATURE.patch (Thanks for Debian, https://salsa.debian.org/python-team/packages/m2crypto/-/commit/e0e9ad5cfff8) - Add source signature file ==== python-py ==== Version update (1.9.0 -> 1.10.0) - Update to 1.10.0 * Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651) - Devendor apipkg and iniconfig - Add pr_222.patch to activate test suite ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-lang qemu-microvm qemu-ppc qemu-s390x qemu-seabios qemu-sgabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vhost-user-gpu qemu-x86 - Fix uninitialized variable in ipxe driver code (boo#1181922) ath5k-Add-missing-AR5K_EEPROM_READ-in-at.patch - Add a few improvements to the git-based package workflow scripts - Include additional upstream patches designated as stable material and reviewed for applicability to include here blockjob-Fix-crash-with-IOthread-when-bl.patch monitor-Fix-assertion-failure-on-shutdow.patch qemu-nbd-Use-SOMAXCONN-for-socket-listen.patch qemu-storage-daemon-Enable-object-add.patch ==== rdma-core ==== Version update (31.0 -> 31.3) Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Update to rdma-core v31.3 - No release notes available - Fix patch to systemd-modules-load script (bsc#1178539) - Drop srp_daemon-Fix-systemd-dependency.patch as it was merged upstream ==== redis ==== - Enable TLS support and add BuildRequires libopenssl-devel (bsc#1181830) - Make tests run by adding BuildRequires tcl and procps ==== rygel ==== Version update (0.40.0 -> 0.40.1) Subpackages: librygel-core-2_6-2 librygel-server-2_6-2 - Update to version 0.40.1: + Server: Set albumArtUri on Videos to provide thumbnails for the PS4 + MediaExport: Strip xml suffix when generating titles from filenames + Documentation: Fix generation and install location + Tracker3: Add section to the default configuration file + Updated translations. ==== seahorse ==== Version update (3.38.0.1 -> 3.38.1) Subpackages: gnome-shell-search-provider-seahorse - Update to version 3.38.1: + ui: Bind to list item to listen to changes. + Updated translations. ==== strace ==== Version update (5.10 -> 5.11) - Add strace-readelf-debug-dump-info-wide-output-changes-in-2.36.patch in order to workaround gh#171 issue related to the latest binutils release (https://sourceware.org/bugzilla/show_bug.cgi?id=27309). - Update to strace 5.11 * Improvements * Implemented poke injection (--inject=SET:poke_enter= and - -inject=SET:poke_exit= options). * Implemented decoding of epoll_pwait2 syscall introduced in Linux 5.11. * Implemented decoding of GPIO_* ioctl commands. * Implemented decoding of FS_IOC_FS[GS]ETXATTR, FS_IOC_[GS]ETFLAGS, and FS_IOC32_[GS]ETFLAGS ioctl commands. * Implemented decoding of SIOCADDMULTI, SIOCDELMULTI, SIOCGIFENCAP, SIOCOUTQNSD, SIOCSIFENCAP, and SIOCSIFHWBROADCAST ioctl commands. * Implemented decoding of UBI_IOCRPEB and UBI_IOCSPEB ioctl commands. * Implemented decoding of V4L2_BUF_TYPE_META_CAPTURE, V4L2_BUF_TYPE_META_OUTPUT, and VIDIOC_QUERY_EXT_CTRL ioctl commands. * Updated lists of BPF_*, BTRFS_*, CLOSE_RANGE_*, ETH_*, IORING_*, KVM_*, PR_*, PTRACE_*, RTA_*, RTAX_*, RTM_*, RTNH_*, SCTP_*, SO_*, SYS_*, UFFD_*, and V4L2_* constants. * Updated lists of ioctl commands from Linux 5.11. * Bug fixes * Fixed decoding of SIOCGIFINDEX, SIOCBRADDIF, and SIOCBRDELIF ioctl commands. ==== systemd ==== Subpackages: libsystemd0 libudev-devel libudev1 systemd-container systemd-doc systemd-logger systemd-sysvinit udev - Add 0001-conf-parser-introduce-early-drop-ins.patch Introduce early configuration drop-in file. This type of drop-ins are reserved for vendor own purposes only and should never been used by users. It might be removed in the future without any notice. - Drop use of %systemd_postun in %postun This macro is supposed to operate on units but it was used without passing any parameters. This call was probably used for issuing a daemon-reload but the following calls to %systemd_postun_with_restart imply that already. So let's simply drop it. ==== tar ==== Version update (1.33 -> 1.34) Subpackages: tar-rmt - GNU tar 1.34: * Fix extraction over pipe * Fix memory leak in read_header * Fix extraction when . and .. are unreadable * Gracefully handle duplicate symlinks when extracting * Re-initialize supplementary groups when switching to user privileges ==== u-boot-rpiarm64 ==== Version update (2020.10 -> 2021.01) Subpackages: u-boot-rpiarm64-doc Fix boot for BananaPi R2 (bsc#1180732). Speed up boot time for RPi2. Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches added: 0032-configs-BPI-R2-Disable-EFI-Grub-wor.patch 0033-configs-RPi2-Disable-EFI-Grub-worka.patch - Add qemu-riscv64spl Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches added: 0031-efi_loader-Avoid-emitting-efi_var_b.patch - Drop pcm051rev3 for Phytec Wega board - Fix binary extension for sunxi based boards - Add Pinephone - Fix documentation location Update to v2021.01. Patch queue updated from git://github.com/openSUSE/u-boot.git tumbleweed-2021.01 * Patches dropped: 0028-usb-xhci-xhci_bulk_tx-Don-t-BUG-whe.patch 0029-Revert-Fix-data-abort-caused-by-mis.patch 0030-usb-xhci-pci-Add-DM_FLAG_OS_PREPARE.patch 0031-pci-brcmstb-Cleanup-controller-stat.patch * Patches added: 0028-usb-xhci-pci-Add-DM_FLAG_OS_PREPARE.patch 0029-pci-brcmstb-Cleanup-controller-stat.patch 0030-fs-btrfs-Select-SHA256-in-Kconfig.patch ==== util-linux ==== Version update (2.36.1 -> 2.36.2) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid-devel libuuid1 - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== util-linux-systemd ==== Version update (2.36.1 -> 2.36.2) - Update to version 2.36.2: * agetty: tty eol defaults to REPRINT * fsck.cramfs: fix fsck.cramfs crashes on blocksizes > 4K * lib/caputils: add fall back for last cap using prctl. * lib/signames: change license to public domain * libfdisk: * (dos) fix last possible sector calculation * (script) ignore empty values for start and size * ignore 33553920 byte optimal I/O size * libmount: * add vboxsf, virtiofs to pseudo filesystems * do not canonicalize ZFS source dataset * don't use "symfollow" for helpers on user mounts (boo#1181750, obsoletes util-linux-libmount-dont-use-symfollow.patch) * fix /{etc,proc}/filesystems use * login: use full tty path for PAM_TTY * lsblk: read SCSI_IDENT_SERIAL also from udev * rfkill: stop execution when rfkill device cannot be opened * setpriv: allow using [-+]all for capabilities. * su: use full tty path for PAM_TTY * switch_root: check if mount point to move even exists * umount: * ignore --no-canonicalize,-c for non-root users * Show the 'r' option in the help menu * Code cleanups and documentation improvements. * Translation updates. ==== vim ==== Subpackages: gvim vim-data vim-data-common - source correct suse.vimrc file (boo#1182324) ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles - Update _constraints for armv6/armv7 ==== wireless-regdb ==== Version update (20201120 -> 20210129) - Update to version 20210129: * wireless-regdb: Update regulatory rules for Ukraine (UA) * wireless-regdb: update CNAF regulation url for ES ==== xdelta3 ==== - Do not build with profiling for ppc64 & s390x to avoid build failure for those big-endian arches; this is a bypass only for bug https://bugzilla.opensuse.org/show_bug.cgi?id=1182016 ==== xkeyboard-config ==== Version update (2.31 -> 2.32) - Update to version 2.32 * latest bugfix release ==== xmlsec1 ==== Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1 - Relax the crypto policies for the test-suite. This allows the tests using certificates with small key lengths to pass. ==== zbar ==== Version update (0.23.1 -> 0.23.90) - Update to version 0.23.90 * Fixed several issues with configure.ac, making it auto-detect most things, when possible * Fixed some build issues * Make it compatible with Python 3.9 * Fixed some Python 3.9 and Qt5 warnings * Typo fixes * Several fixes at zbarcam * zbarimg: fix stderr output when symbols are found - Drop 0001-Create-correct-pkconfig-file-for-zbar-qt5.patch and 0002-get-rid-of-gettext_h.patch (merged upstream) - Enable python3 module