Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&version=Tumbleweed&build=20210401 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ImageMagick (7.0.11.3 -> 7.0.11.5) Mesa (20.3.4 -> 20.3.5) Mesa-drivers (20.3.4 -> 20.3.5) QR-Code-generator (1.5.0 -> 1.6.0) corosync emacs (27.1 -> 27.2) ilmbase (2.5.4 -> 2.5.5) javapackages-tools libXaw (1.0.13 -> 1.0.14) libcdr (0.1.6 -> 0.1.7) libnumbertext (1.0.6 -> 1.0.7) miniupnpc nodejs15 (15.11.0 -> 15.12.0) okteta (0.26.5 -> 0.26.6) openexr (2.5.4 -> 2.5.5) ovmf procps protobuf publicsuffix (20210221 -> 20210330) python-h2 qemu sendmail vlc yast2-firewall (4.3.10 -> 4.3.11) yast2-firstboot (4.3.10 -> 4.3.11) === Details === ==== ImageMagick ==== Version update (7.0.11.3 -> 7.0.11.5) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagick++-7_Q16HDRI5 libMagickCore-7_Q16HDRI9 libMagickWand-7_Q16HDRI9 - version update to 7.0.11.5 * OpenCL will be disable by default, use the environment variable MAGICK_OCL_DEVICE to turn it on or select the device to use. - modified patches % ImageMagick-library-installable-in-parallel.patch (refreshed) - update to 7.0.11.4: * support caption:split define (reference * avoid an omp deadlock with policy string ==== Mesa ==== Version update (20.3.4 -> 20.3.5) Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 20.3.5 * fith bugfix release for the 20.3 branch * This is a quite large release with a huge number of fixes in it, and is the last planned release for the 20.3.x series. Radv and ACO dominate the changes for this release, but there are some other things mixed in there. ==== Mesa-drivers ==== Version update (20.3.4 -> 20.3.5) Subpackages: Mesa-dri Mesa-dri-nouveau Mesa-gallium Mesa-libva libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi - update to 20.3.5 * fith bugfix release for the 20.3 branch * This is a quite large release with a huge number of fixes in it, and is the last planned release for the 20.3.x series. Radv and ACO dominate the changes for this release, but there are some other things mixed in there. ==== QR-Code-generator ==== Version update (1.5.0 -> 1.6.0) - update to 1.6.0: * https://github.com/nayuki/QR-Code-generator/compare/v1.5.0...v1.6.0 - drop cflags.patch (upstream) ==== corosync ==== Subpackages: libcfg6 libcmap4 libcorosync_common4 libcpg4 libquorum5 - Drop the script-dependencies on /sbin/chkconfig: deprecated - Drop the main package's dependency on /usr/sbin/adduser: the main package does not call this in the pre scripts. - Change Requires(pre): shadow in corosync-qdevice to Requires(pre): /usr/sbin/adduser (support alternartive implementations). - Use %systemd_ordering for the various, too strict, systemd script dependencies. ==== emacs ==== Version update (27.1 -> 27.2) Subpackages: emacs-info emacs-nox emacs-x11 etags - Update emacs.keyring - Update to GNU Emacs version 27.2 * Changes in Emacs 27.2 This is a bug-fix release with no new features. * Lisp Changes in Emacs 27.2 The behavior of the user option 'resize-mini-frames' has changed. If set to a non-nil value which isn't a function, resize the mini frame using the new function 'fit-mini-frame-to-buffer' which won't skip leading or trailing empty lines of the buffer. * Changes in Specialized Modes and Packages in Emacs 27.2 Tramp: The user option 'tramp-completion-reread-directory-timeout' is now obsolete. - Remove patches now upstream * emacs-27.1-gif.patch * emacs-27.1-home.patch - Port patches * emacs-24.3-iconic.patch * emacs-24.4-ps-bdf.patch * emacs-25.2-ImageMagick7.patch * pdump.patch ==== ilmbase ==== Version update (2.5.4 -> 2.5.5) Subpackages: libHalf-2_5-25 libIex-2_5-25 libIlmThread-2_5-25 - version update to 2.5.5 Patch release with various bug/sanitizer/security fixes, primarily related to reading corrupted input files, but also a fix for universal build support on macOS. - see CHANGES.md for details ==== javapackages-tools ==== Subpackages: javapackages-filesystem - Can't assume non-existence of python38 macros in Leap. gh#openSUSE/python-rpm-macros#107 Test for suse_version instead. Only Tumbleweed has and needs the python_subpackage_only support. ==== libXaw ==== Version update (1.0.13 -> 1.0.14) - Update to version 1.0.14 * bugfix release - supersedes U_NULL-pointer-dereference-in-XawAsciiSinkInitialize.patch ==== libcdr ==== Version update (0.1.6 -> 0.1.7) - Version update to 0.1.7 * Extend support to the newest CDR format versions + Supports currently CDR1 to 23, which is all released versions to date. * Improve conversion of paragraph text in versions 5 to 23 * Improve conversion of text on path for versions 6 to 15 - Removed patches: * icu-68.patch + Integrated upstream * libcdr-0.1.1-pkgconfig.patch + This was a workaround for SLE11 build failures, not needed any more ==== libnumbertext ==== Version update (1.0.6 -> 1.0.7) Subpackages: libnumbertext-1_0-0 libnumbertext-data - update to 1.0.7: * ga.sor: new module Irish by László Németh * lg.sor: new module Luganda by Phillip Samuel * mr.sor: new module Marathi by Ankur Heramb Joshi * mt.sor: new module Maltase by László Németh * fi.sor: fix ordinal 0, bug report by Tuomas Hietala * hu_Hung.sor: - fix transliteration of Vörösmarty, bug report by Zoltán Óvári - replace ü and ? by Viktor Kovács - fix transliteration of dates with affixation * th.sor: fix big (>999,999) numbers by Vladislav Kiper * ua.sor: fix euro cent, bug report by Kty0mka ==== miniupnpc ==== - Can't assume non-existence of python38 macros in Leap. gh#openSUSE/python-rpm-macros#107 Test for suse_version instead. Only Tumbleweed has and needs the python_subpackage_only support. ==== nodejs15 ==== Version update (15.11.0 -> 15.12.0) Subpackages: npm15 - New upstream version 15.12.0: * crypto: + add optional callback to crypto.sign and crypto.verify + support JWK objects in create*Key * deps: + update to cjs-module-lexer@1.1.0 * fs: improve fsPromises writeFile and writeFile performance * lib: implement AbortSignal.abort() * node-api: define version 8 * worker: add setEnvironmentData/getEnvironmentData - fix_ci_tests.patch npm_search_paths.patch: refreshed ==== okteta ==== Version update (0.26.5 -> 0.26.6) Subpackages: libKasten4 libOkteta3 libkasten-lang libokteta-lang okteta-data okteta-lang - Update to 0.26.6 * Improved: translations * Changed: touch screen input now handled explicitly, not as simulated mouse Initial set of support: + pinch gesture for zooming + tap gesture for setting cursor + tap & hold gesture for context menu + flick gesture for scrolling * Fixed: cursor after replacing inserts always positioned after new content * Fixed: cursor no longer displays value for 0x20 byte in some non-positions * Fixed: "Cut" menu entry now disabled in overwrite mode, being ignored action * Fixed: modification status icons update on app color theme change * Fixed: current cursor colors updated right after app color theme change ==== openexr ==== Version update (2.5.4 -> 2.5.5) - version update to 2.5.5 Patch release with various bug/sanitizer/security fixes, primarily related to reading corrupted input files, but also a fix for universal build support on macOS. - see CHANGES.md for details ==== ovmf ==== Subpackages: qemu-ovmf-x86_64 qemu-uefi-aarch64 - Add ovmf-bsc1183713-fix-gcc10-brotli-errors.patch to fix the gcc10 error from brotli (bsc#1183713) ==== procps ==== Subpackages: libprocps8 - Add upstream patch procps-3.3.17-bsc1181976.patch based on commit 3dd1661a to fix bsc#1181976 that is change descripton of psr, which is for 39th field of /proc/[pid]/stat ==== protobuf ==== Subpackages: libprotobuf-lite26 libprotobuf26 python38-protobuf - Can't assume non-existence of python38 macros in Leap. gh#openSUSE/python-rpm-macros#107 Test for suse_version instead. Only Tumbleweed has and needs the python_subpackage_only support. ==== publicsuffix ==== Version update (20210221 -> 20210330) - Update to version 20210330: * Fix-up ordering of entries (#1255) * Adding mazeplay.com (#1253) * Adding Tradable Bits (#1240) * Update forgeblocks, add subdomain to psl (#1252) * Additional suffix `id.repl.co` for Repl.it (#1239) * Add ravpage.co.il (#1250) * accesso - Adding devcdnaccesso (#1248) * util: gTLD data autopull updates for 2021-03-27T15:15:49 UTC (#1249) * Added forgeblocks.com to psl (#1238) * Update atl/njs/ric.jelastic.vps host.net (#1242) * util: gTLD data autopull updates for 2021-03-24T15:07:34 UTC (#1243) * add paywhirl.com for site users (#1237) * Add shiftcrypto.dev and shiftcrypto.io (#1236) * Add hra.health to PSL (#1234) * Add multibaas.app and multibaas.com (#1233) * added service magnet to PSL (#1232) * Add subdomains of pythonanywhere.com and eu.pythonanywhere.com (#1229) * Add cafjs.com (#1228) * Update public_suffix_list.dat (#1225) * Switch the TLD update workflow to daily (#1226) * util: gTLD data autopull updates for 2021-03-04T15:37:37 UTC (#1224) * Update Email address for GOV.UK PaaS (#1220) * Add Clerk staging domains, change email to systems@ (#1222) * sourcehut: add srht.site (#1218) * Add cloudsite.builders (#1219) * Add service.gov.scot (#1221) * Add framer.app and framercanvas.com to PSL (#1217) ==== python-h2 ==== - Add h2-pr1248-disable-hypothesis-healthcheck.patch to disable hypthesis health check failures. Thanks to the Fedora maintainer. gh#python-hyper/h2#1248 ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-lang qemu-microvm qemu-ppc qemu-s390x qemu-seabios qemu-sgabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vhost-user-gpu qemu-x86 - Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream (bsc#1181103) * Patches dropped: hw-s390x-modularize-virtio-gpu-ccw.patch * Patches added: s390x-add-have_virtio_ccw.patch s390x-modularize-virtio-gpu-ccw.patch s390x-move-S390_ADAPTER_SUPPRESSIBLE.patch - Fix OOB access in sdhci interface (CVE-2020-17380, bsc#1175144, CVE-2020-25085, bsc#1176681, CVE-2021-3409, bsc#1182282) hw-sd-sd-Actually-perform-the-erase-oper.patch hw-sd-sd-Fix-build-error-when-DEBUG_SD-i.patch hw-sd-sdhci-Correctly-set-the-controller.patch hw-sd-sdhci-Don-t-transfer-any-data-when.patch hw-sd-sdhci-Don-t-write-to-SDHC_SYSAD-re.patch hw-sd-sdhci-Limit-block-size-only-when-S.patch hw-sd-sdhci-Reset-the-data-pointer-of-s-.patch hw-sd-sd-Move-the-sd_block_-read-write-a.patch hw-sd-sd-Skip-write-protect-groups-check.patch - Fix potential privilege escalation in virtiofsd tool (CVE-2021-20263, bsc#1183373) tools-virtiofsd-Replace-the-word-whiteli.patch viriofsd-Add-support-for-FUSE_HANDLE_KIL.patch virtiofsd-extract-lo_do_open-from-lo_ope.patch virtiofsd-optionally-return-inode-pointe.patch virtiofsd-prevent-opening-of-special-fil.patch virtiofs-drop-remapped-security.capabili.patch virtiofsd-Save-error-code-early-at-the-f.patch - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) net-introduce-qemu_receive_packet.patch rtl8139-switch-to-use-qemu_receive_packe.patch - Fix OOB access (stack overflow) in other NIC emulations (CVE-2021-3416) cadence_gem-switch-to-use-qemu_receive_p.patch dp8393x-switch-to-use-qemu_receive_packe.patch e1000-switch-to-use-qemu_receive_packet-.patch lan9118-switch-to-use-qemu_receive_packe.patch msf2-mac-switch-to-use-qemu_receive_pack.patch pcnet-switch-to-use-qemu_receive_packet-.patch sungem-switch-to-use-qemu_receive_packet.patch tx_pkt-switch-to-use-qemu_receive_packet.patch - Fix heap overflow in MSIx emulation (CVE-2020-27821, bsc#1179686) memory-clamp-cached-translation-in-case-.patch - Include upstream patches designated as stable material and reviewed for applicability to include here hw-arm-virt-Disable-pl011-clock-migratio.patch xen-block-Fix-removal-of-backend-instanc.patch - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) ==== sendmail ==== Subpackages: libmilter1_0 - Make IPv6 work even with IPv4 in parallel ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt vlc-vdpau - Guard post scriptlets to only run %{_libdir}/vlc/vlc-cache-gen if it already (or still, in case of uninstall) exists. - Add vlc-gcc11.patch: Fix build using gcc11 (boo#1181918). - Drop libpcre-devel BuildRequires: not been used in a while. - Limit libplacebo to is_openssue: vlc does not exist in SLE, which makes the usage of is_opensuse valid; backports has is_opensuse set to 1. This is mostly interesting for 3rd party build service instances. ==== yast2-firewall ==== Version update (4.3.10 -> 4.3.11) - Do not display "No widget..." error messages when opening a firewall zone widget (bsc#1184115). - 4.3.11 ==== yast2-firstboot ==== Version update (4.3.10 -> 4.3.11) - Revert adding starting YaST2 Control Center after first boot as it does not have production quality and just confuse users (bsc#1180266) - 4.3.11