openSUSE Factory
Threads by month
- ----- 2024 -----
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
December 2014
- 68 participants
- 61 discussions
For MySQL: switch to Oracle Mysql Community server. MariaDB is a
disaster to work with!! Oracle Mysql is much widely supported, much
easier to download/update etc.
--
_____________________________________________________________________________________
Thank you for reading this message, I will send a reply As soon as
possible...
Thank you
_____________________________________________________________________________________
My Twitter Page (follow me please)
http://twitter.com/OpenSimFan
My Facebook page (Become my friend please...:) )
http://www.facebook.com/andre.verwijs
My Google+ page (Follow me please...:) )
https://plus.google.com/111310545842863442992
..
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
5
5
[opensuse-factory] Tweed : LibreOffice Version: 4.3.5.2.0+,Build ID: 430m0(Build:2)
by ellanios82 27 Dec '14
by ellanios82 27 Dec '14
27 Dec '14
- in case of interest, from time to time, the Spreadsheet
Paste-Special Dialog-Box gets stuck with :
LibreOffice Version: 4.3.5.2.0+,Build ID: 430m0(Build:2)
............
regards
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
22 Dec '14
Tumbleweed
Rebooted desktop today and another supprise. No network (wired). So I
manually checked, ifconfig, and found no device but lo.
ran ifstatus all
ran ifup all
and eth0 connected
previous had been enp0s25
When the new naming scheme started sometime back, I forced the system as
this forum advised (method only) to eth0, but three or four months ago the
system automagically changed to enp0s25 by it's own accord :^(
So I lived with it.
Today I had occasion to reboot and had no network as noted above.
Glad I didn't do this remotely :^(
Does this need to be reported elsewhere/bug report ??? If so where to get
records or what to report. I have no way of repeating....
Joe SixPack would have been up the proverbial creek sans paddle!
--
(paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri
http://en.opensuse.org openSUSE Community Member facebook/ptilopteri
http://wahoo.no-ip.org Photo Album: http://wahoo.no-ip.org/gallery2
Registered Linux User #207535 @ http://linuxcounter.net
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
5
8
22 Dec '14
Changed packages:
==== NetworkManager ====
Subpackages: NetworkManager-devel libnm-glib-vpn1 libnm-glib4 libnm-util2 typelib-1_0-NMClient-1_0 typelib-1_0-NetworkManager-1_0
- Add 0001-core-don-t-auto-launch-logind-bgo-741572.patch: do not
trigger logind start on system startup to avoid deadlock
(boo#905639).
==== aqbanking ====
Version update (5.4.3beta -> 5.5.0.2)
Subpackages: aqbanking-devel aqbanking-lang
- Update to version 5.5.0.2
+ Shorten paths of some AqHBCI files.
"tar" has a filename limit of 99, so we need to shorten the total
path, otherwise "make dist" will fail.
- Add a dependency on cmake; aqbanking now provides cmake configuration
files for development
==== augeas-lenses ====
Version update (1.2.0 -> 1.3.0)
Subpackages: libaugeas0
- restore keyring and .sig file, as this is checked by the OBS
source service
- Update to version 1.3.0
+ General changes/additions
* Add missing cp entry in manpage (GH issue #78)
* Add seq to vim syntax highlight (Robert Drake)
* Update augtool.1 man page with new commands and --span, RHBZ#1100077
* augtool autocomplete includes command aliases, RHBZ#1100184
* Remove unused "filename" argument from dump-xml command, RHBZ#1100106
* aug_save returns non-zero result when unable to delete files,
RHBZ#1091143
+ Lens changes/additions
* Aliases: permit missing whitespace between colon and recipients
* AptPreferences: Support spaces in origin fields
* Cgconfig: handle additional valid controllers (Andy Grimm)
* Chrony: New lens to parse /etc/chrony.conf (Pat Riehecky)
* CPanel: New lens to parse cpanel.config files
* Desktop: Allow @ in keys (GH issue #92)
* Device_map: Parse all device.map files under /boot (Mike Latimer)
* Dhclient: Add support for option modifiers (Robert Drake,
GH issue #95)
Parse hash statements with dhcp-eval strings
* Dhcpd: stmt_string quoted blocks no longer store quote marks
(incompatible change),
many changes to support more record types (Robert Drake)
* Group: NIS support (KaMichael)
* Grub: handle "foreground" option, RHBZ#1059383 (Miguel Armas)
* Gshadow: New lens (Lorenzo Catucci)
* Httpd: Allow eol comments after section tags
Allow continued lines inside quoted value (GH issue #104)
Allow comparison operators in tags (GH issue #154)
* IPRoute2: handle "/" in protocol name, swap ID and name fields
(incompatible change), RHBZ#1063968,
handle hex IDs and hyphens, as present in
rt_dsfield, RHBZ#1063961
* Iptables: parse /etc/sysconfig/iptables.save, RHBZ#1144651
* Kdump: parse new options, permit EOL comments, refactor, RHBZ#1139298
* Keepalived: Add more virtual/real server settings and checks, RHBZ#1064388
* Known_Hosts: New lens for SSH known hosts files
* Krb5: permit braces in values when not in sub-section, RHBZ#1066419
* Ldso: handle "hwcap" lines (GH issue #100)
* Lvm: support negative numbers, parse /etc/lvm/lvm.conf (Pino Toscano)
* Multipath: add support for rr_min_io_rq (Joel Loudermilk)
* NagiosConfig and NagiosObjects: Fix documentation (Simon Sehier)
* NetworkManager: Use the Quote module, support # in values (no eol comments)
* OpenVPN: Add support for fragment, mssfix, and script-security
(Frank Gr�tzner)
* Pagekite: New lens (Michael Pimmer)
* Pam: Add partial support for arguments enclosed in [] (Vincent Brillault)
* Passwd: Refactor lens (Lorenzo Catucci)
* Redis: Allow empty quoted values (GH issue #115)
* Rmt: New lens to parse /etc/default/rmt, RHBZ#1100549
* Rsyslog: support complex $template lines, property filters and file
actions with templates, RHBZ#1083016
* Services: permit colons in service name, RHBZ#1121263
* Shadow: New lens (Lorenzo Catucci)
* Shellvars: Handle case statements with same-line ';;', RHBZ#1033799
Allow any kind of quoted values in block
conditions (GH issue #118)
Support $(( .. )) arithmetic expansion in variable
assignment, RHBZ#1100550
* Simplevars: Support flags and empty values
* Sshd: Allow all types of entries in Match groups (GH issue #75)
* Sssd: Allow ; for comments
* Squid: Support configuration files for squid 3 (Mykola Nikishov)
* Sudoers: Allow wuoted string in default str/bool params (Nick Piacentine)
* Syslog: Support "# !" style comments (Robert Drake, GH issue #65)
Permit IPv6 loghost addresses, RHBZ#1129388
* Systemd: Allow quoted Environment key=value pairs, RHBZ#1100547
Parse /etc/sysconfig/*.systemd, RHBZ#1083022
Parse semicolons inside entry values, RHBZ#1139498
* Tuned: New lens for /etc/tuned/tuned-main.conf (Pat Riehecky)
* UpdateDB: New lens to parse /etc/updatedb.conf
(incompatible change as this file used to be processed with
Simplevars)
* Xml: Allow backslash in #attribute values (GH issue #145)
Parse CDATA elements (GH issue #80)
* Xymon_Alerting: refactor lens (GH issue #89)
- Remove the sig and the keyring file as there is no gpg verification
anyway
- Remove augeas-device_map-grub2.patch, fixed on upstream release
==== bluedevil ====
Version update (2.0~rc1 -> 2.0)
Subpackages: bluedevil-lang
- Update to 2.0 Final:
* Full Bluez5 support
- Removed checks for ancient openSUSE versions
- Added patches from upstream:
0001-KCM-Adapters-Adapt-to-changes-in-libbluedevil.patch
0002-Bluedevil-daemon-Save-and-restore-adapters-state.patch
0003-daemon-Use-new-functions-for-restoring-adapters-stat.patch
0004-Monolithic-Don-t-go-online-on-startup-when-there-is-.patch
0005-daemon-Fix-killing-monolithic-when-there-are-no-adap.patch
0006-wizard-Fix-accepting-PIN-in-SSP-pairing.patch
==== calibre ====
Version update (2.12.0 -> 2.13.0)
- Update to version 2.13.0:
* Driver for the new CYBOOK MUSE ebook reader
* Edit metadata dialog: Allow editing identifiers in a dedicated window by right clicking on the identifiers edit box.
* Allow generating a cover from metadata by right clicking the cover are in the book details panel also.
* Content server: Server KEPUB files with the extension kepub.epu when connecting to the browser on Kobo devices
* Kobo driver: Add support for new firmware version 3.12
* Edit metadata dialog: Add a keyboard shortcut to swap title and author [Alt+Down]
* Bugfixes
* For details, see http://calibre-ebook.com/whats-new
==== dmraid ====
- Split off dmraid-devel subpackage
==== file ====
Version update (5.20 -> 5.21)
Subpackages: file-devel file-magic libmagic1 libmagic1-32bit
- Drop patch file-5.20-CVE-2014-3710.patch as now part of upstream
- Update to file version 5.21
* Fix CVE-2014-8116 and CVE-2014-8117 (bsc#910252 and bsc#910253)
* there was an incorrect free in magic_load_buffers()
* there was an out of bounds read for some pascal strings
* there was a memory leak in magic lists
* don't interpret strings printed from files using the current
locale, convert them to ascii format first.
* there was an out of bounds read in elf note reads
* fix MacOS/X locale.h vs. xlocale.h issues
- Add patch file-5.20-CVE-2014-3710.patch to fic bsc#902367
CVE-2014-3710: file: out-of-bounds read in elf note headers
==== glib-networking ====
Version update (2.42.0 -> 2.42.1)
- Update to version 2.42.1:
+ The GTlsClientConnection "use-ssl3" property now falls back to
TLS 1.0 if SSL 3.0 has been disabled, rather than just failing.
Also, we now use the gnutls %LATEST_RECORD_VERSION option by
default (to allow connecting to certain servers that were
incorrectly patched for the POODLE attack), but also make sure
to remove that option in the fallback ("use-ssl3") mode (to
allow connecting to other servers that are differently broken).
(bgo#738633, bgo#740087).
+ tls/gnutls: Miscellaneous warning, debugging, and leak fixes
(bgo#736757, bgo#736809, bgo#737106).
+ Updated translations.
==== gnome-shell ====
Version update (3.14.2 -> 3.14.3)
Subpackages: gnome-shell-browser-plugin
- Update to version 3.14.3:
+ Properly remove network connections from list (bgo#740227).
+ Fix handling of cancel button on login screen (bgo#740141).
+ Fix build when using dash as default shell (bgo#739241).
+ Make event list in calendar scrollable (bgo#705115).
+ Fix calendar-server crash on DBus timeout (bgo#735308).
+ Fix gestures triggering erroneously (bgo#740237).
- Add gnome-shell-fix-week-count.patch: Fix week count in top-bar
calendar; patch taken from upstream git master and edited to
apply cleanly against current version (bgo#736722, boo#910069).
==== gnome-user-share ====
Version update (3.14.1 -> 3.14.2)
- Update to version 3.14.2:
+ Fix crasher in gsettings-data-convert.
+ Updated translations.
==== gstreamer-0_10 ====
Subpackages: gstreamer-0_10-devel gstreamer-0_10-utils libgstreamer-0_10-0 libgstreamer-0_10-0-32bit typelib-1_0-Gst-0_10
- Remove self-obsoletes in utils-unversioned
==== inn ====
- enable IPv6
- get rid of gpg-offline as we nowadays check signatures in
the source validator
==== libjasper-devel ====
Subpackages: libjasper1 libjasper1-32bit
- fixed CVE-2014-8137, CVE-2014-8137 (bnc#909474, bnc#909475)
+ jasper-CVE-2014-8137.patch
+ jasper-CVE-2014-8138.patch
- fixed possible overflow CVE-2014-9029 (bnc#906364)
+ jasper-overflow-bnc906364.patch
==== less ====
- build with PIE
==== libbluedevil-devel ====
Version update (2.0~rc1 -> 2.0)
Subpackages: libbluedevil2
- Update to 2.0 Final:
* Do not set the Adapter back to powered, kde#329411
* Check adapter for nullptr in
interfacesAdded/interfacesRemoved slots, kde#340577
- Added 0001-Adapter-name-now-returns-alias-of-adapter.patch
- Replace the tarball generated from tag, to the official one, from
KDE mirrors
==== libbluray1 ====
Version update (0.4.0 -> 0.6.2)
- Enable BD-J support.
- Update to version 0.6.2:
+ Fix possible subtitle corruption after seek.
+ Fix some main path embedded HDMV menus.
+ Fix reading outside of source image in BD-J drawImage().
+ Fix missing BD_EVENT_ERROR when BD-J is not supported.
+ Several stability and code quality fixes.
- Version 0.6.1:
+ Fix stream position when seamless angle change point is at
clip boundary.
+ Fix Mac OS X jni compilation
+ Fix bd_seek() jumping outside of clip/playlist.
+ Fix crash when stream selection is changed after playlist end.
+ Fix J2ME build.
+ Fix seamless angle change.
+ Fix freetype2 resource leaks on shutdown.
+ Improve duplicate playlist detection.
- Version 0.6.0:
+ Improved BD-J support (Most BD-J discs are correctly played).
+ Mark BD-J titles supported in BLURAY_DISC_INFO if BD-J is
functional.
+ Install .jar files to datadir (/usr/share/java/) instead of
libdir.
+ Added version number to .jar file names.
+ Added JNI headers for BD-J (cross) compilation.
+ Added HDMV/BD-J title information to BLURAY_DISC_INFO.
+ Added disc application info to BLURAY_DISC_INFO.
+ Added bd_set_rate().
+ Added color keys (RED, GREEN, YELLOW, BLUE).
+ Improved error resilence.
+ Fix build without libxml.
- Version 0.5.0:
+ Portability fixes.
+ Build system updates.
+ Improved BD-J support (still alpha).
+ Improved updating of application-allocated ARGB frame buffer.
+ Get JRE library location from registry (Windows).
+ Added bd_get_main_title().
+ Added BD_EVENT_ERROR when title playback fails.
+ Added BD-J flags to disc info.
+ Added support for user timeout in HDMV menus.
+ Added cropping of RLE images. Cropping values in overlay are
now always 0.
+ Added support for LIBAACS_PATH and LIBBDPLUS_PATH environment
variables.
+ Added timestamp based m2ts stream filtering.
- Removed patch use-recommended-freetype-include.patch,
fixed upstream.
==== libdvdnav4 ====
Version update (4.2.1 -> 5.0.1)
- Update to version 5.0.1:
+ removed assert on unknown VM commands, fixing playback of
some DVDs
+ fixed a double free in dvdnav_free_dup
+ fixed an integer overflow, a data race condition and return
inconsistency
- Version 5.0.0:
+ Android support
+ fixed numerous crashes, assertions and corruptions
+ rewrite of the build-system, including silent rules
+ clean code, simplify and remove warnings
+ fix compilation in C++ applications
+ removal of remap .MAP files unused feature
+ remove the dvdnavmini library
+ fix compilation on OS/2 and Hurd
==== libdvdread-devel ====
Version update (4.9.9 -> 5.0.0)
Subpackages: libdvdread4
- Update to version 5.0.0:
* added support for Android
* fix build support for OS/2
* fix crashes in IFO parsing (Shark Week The Great Bites Collection)
==== libgusb2 ====
Version update (0.1.6 -> 0.2.3)
- Update to version 0.2.3:
+ Bugfixes: Correctly terminate the libusb event thread.
- Changes from version 0.2.2:
+ New Features: Official Windows support!
+ Bugfixes:
- No longer require G_USB_API_IS_SUBJECT_TO_CHANGE.
- Use a thread to process libusb1 events.
- Changes from version 0.2.1:
+ Bugfixes:
- Always set a device platform ID.
- Ignore 'unsupported' as a return value for kernel drivers.
- Changes from version 0.2.0:
+ Notes:
- This release raises the GLib requirement to 2.32 and libusb
to 1.0.19.
- No GUdev functionality is now required.
+ New Features:
- Add g_usb_device_get_device_class().
- Use the native hotplug support in libusb 1.0.19.
+ Bugfixes:
- Fix a crash where libusb_get_pollfds() is unavailable.
- Manually coldplug devices and poll if hotplugging is not
available.
==== libinput-devel ====
Version update (0.6.0 -> 0.7.0)
Subpackages: libinput5
- Update to new upstream release 0.7.0
* Devices can be disabled/enabled at runtime. This includes smart
disabling of touchpads when a USB mouse is plugged in, and smart
disabling of the T440 touchpads so that the top buttons still
work even when the touchpad is disabled.
* Edge scrolling is available on some devices, and the scroll
method can be switched at runtime
* Trackpoints can scroll by pressing the middle button and moving
the stick. This button-scrolling method is also available on
other devices on request.
* Pointer acceleration is becoming device-resolution independent,
provided your device has a DPI entry in the udev hwdb. This makes
high-resolution gaming mice behave normally. See this post for
more details:
http://who-t.blogspot.com/2014/12/building-a-dpi-database-for-mice.html
* Pointer speed can be changed at runtime.
* Natural scrolling is now available, for touchpads and mice.
* Devices can be switched to left-handed, libinput handles the
details.
* Devices can be asked to change their assigned logical seat at
runtime.
* Relative pointer events also provide unaccelerated motion. Note
that this is _not_ raw data as it comes from the device, it is
normalized to 1000dpi.
==== libQt5Core5 ====
Version update (5.3.2 -> 5.4.0)
Subpackages: libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Test5 libQt5Widgets5 libQt5Xml5
- Don't override the shlib generator, but split gtk platformtheme
into platformtheme-gtk2 subpackage, the former approach is creating
problems with other dependant packages
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Added Handle-SelectionClientClose-in-QXcbClipboard.patch, kde#329174
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- New libQt5PlatformHeaders-devel subpackage
- Use one global define for gles on arm and aarch
- (Build)Require Mesa-libGLESv3-devel when building with gles
- Use system harfbuzz on 13.2 and newer
- Filter out requires obtained by dependency generators.
gtk platformtheme now won't pull in gtk libraries, so users can
have a gtk-free envirement if wanted. Those DE's that do need that
platformplugin will already have gtk present
- Drop patches merged upstream:
0001-Add-QFont-strategy-to-disable-subpixel-antialiasing.patch
0001-Allow-panels-outside-of-availableGeometry.patch
0001-QFileDialog-emit-urlsSelected-urlSelected-in-accept.patch
0001-QKdeTheme-use-system-wide-kdeglobals-as-a-fallback.patch
00010-Replace-the-const-QString-global-static-with-a-QStri.patch
00011-Use-correct-signal-name-when-disconnecting.patch
0002-Always-lock-the-DBus-dispatcher-before-dbus_connecti.patch
0002-Move-SubpixelAntialiasingType-from-QFontEngineFT-to-.patch
0002-QUrl-fromLocalFile-QString-should-lead-to-an-empty-U.patch
0003-QDBusConnection-Merge-the-dispatch-and-the-watch-and.patch
0003-QFileDialog-turn-workingDirectory-into-a-QUrl.patch
0003-Support-autohint-and-lcdfilter-fontconfig-configurat.patch
0004-GTK2-theme-should-use-GTK-configured-font-variant.patch
0004-Partially-revert-Fix-a-deadlock-introduced-by-the-ra.patch
0004-QFileDialog-implement-getOpenFileUrl-and-friends-for.patch
f1ee10f81ac18789e9a7dc715b464415ba2bc2b8.patch
libqt5-add-support-for-byte-swapping.patch
libqt5-byte-order-byte-is-address0.patch
==== libQtQuick5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Drop patches merged upstream:
0005-Fix-crash-with-foreach-on-arguments-object.patch
0004-QML-parse-.js-files-as-JavaScript-not-QML.patch
0006-Move-syncTimer-measurment-to-the-correct-place.patch
0003-Fix-crashes-when-calling-Array.sort-with-imperfect-s.patch
0001-Fix-crash-with-cleanup-of-animators.patch
0002-Support-padding-in-images-stored-in-atlas-texture.patch
==== libqt5-qtimageformats ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libQt5Positioning5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- New libQt5Location5 subpackage
- Don't BuildRequire pkgconfig(gypsy) for SLE
- Downgrade external packages to suggests of the devel package, they
are private deps
==== libQt5Multimedia5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Add pkgconfig(gstreamer-plugins-bad-1.0) BuildRequires
- Swap Initial-porting-effort-to-GStreamer-1.0.patch for
0001-GStreamer-port-to-1.0.patch, which was commited upstream
for Qt 5.5
- Don't BuildRequire openal-soft-devel for SLE
- Downgrade external packages to suggests of the devel package, they
are private deps
==== libQt5Sensors5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libQt5SerialPort5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libQt5Svg5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libQt5CLucene5 ====
Version update (5.3.2 -> 5.4.0)
Subpackages: libQt5Designer5 libQt5Help5
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Make linguist and main subpackages also own hicolor directory
==== libQt5WebKit5 ====
Version update (5.3.2 -> 5.4.0)
Subpackages: libQt5WebKitWidgets5
- Comment out Qt5WebChannel BuildRequires for now
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Drop ppc64le-support.patch, merged upstream
- Add pkgconfig(Qt5Location) and pkgconfig(Qt5WebChannel) BuildRequires
- Explicitly pass production_build to qmake
- Install licenses
==== libQt5WebSockets5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libQt5X11Extras5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libQt5XmlPatterns5 ====
Version update (5.3.2 -> 5.4.0)
- Update to 5.4 Final
* For more details please see:
http://blog.qt.digia.com/blog/2014/12/10/qt-5-4-released/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
- Update to 5.4 RC
* For more details please see:
http://blog.qt.digia.com/blog/2014/11/27/qt-5-4-release-candidate-available/
and http://qt-project.org/wiki/New-Features-in-Qt-5.4
==== libreoffice ====
Version update (4.3.4.1 -> 4.3.5.2)
Subpackages: libreoffice-base libreoffice-base-drivers-mysql libreoffice-calc libreoffice-calc-extensions libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-icon-theme-galaxy libreoffice-icon-theme-hicontrast libreoffice-icon-theme-oxygen libreoffice-icon-theme-sifr libreoffice-icon-theme-tango libreoffice-impress libreoffice-kde4 libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-ru libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-writer libreoffice-writer-extensions
- Version bump to 4.3.5 release:
* Various small fixes
* Fix for CVE-2014-9093 bnc#907636
==== libsolv-devel ====
Version update (0.6.6 -> 0.6.7)
Subpackages: libsolv-tools perl-solv python-solv
- add product:regflavor attribute [bnc#896224]
- bump version to 0.6.7
==== libsoup-2_4-1 ====
Version update (2.48.0 -> 2.48.1)
Subpackages: libsoup-devel typelib-1_0-Soup-2_4
- Update to version 2.48.1:
+ Fixed a bug in the SoupMessage:event signal that broke
evolution's ability to connect to https hosts with "bad"
certificates (bgo#739951).
+ Fixed a case where the async codepaths could potentially
block on a synchronous write (bgo#727138).
+ Fixed the symbol soup_server_set_ssl_cert_file() to get
exported, and added soup_server_get_uris() to the
documentation.
+ Improved a bunch of introspection annotations (bgo#729987).
+ Clarified some documentation.
+ Fixed Windows build, twice (bgo#738003, bgo#738551).
+ Updated translations.
==== libtirpc1 ====
Version update (0.2.3 -> 0.2.5)
- Update to upstream 0.2.5 release
- Add symbol versioning to fix symbol conflicts
(001-symbol-versions-v2.patch), but disable until commited upstream
- Adjust libtirpc-clnt_broadcast_fix.patch and rename to
002-clnt_broadcast_fix.patch
- Adjust libtirpc-rpc_broadcast_misformed_replies.patch and rename
to 003-rpc_broadcast_misformed_replies.patch
- Rename libtirpc-getpmaphandle.patch to 004-getpmaphandle.patch
- Adjust libtirpc-bindresvport_blacklist.patch and rename to
000-bindresvport_blacklist.patch
- Drop libtirpc-pmap-setunset.patch, not needed anymore
- Apply libtirpc-new-path-rpcbindsock.patch only on openSUSE 13.1
and later
==== libvirt-glib-1_0-0 ====
Version update (0.1.9 -> 0.2.0)
Subpackages: typelib-1_0-LibvirtGLib-1_0
- Update to version 0.2.0:
+ Support keyboard input device config.
+ Annotate some unused parameters.
+ Add support for new graphics attach API.
==== libzypp ====
Version update (14.32.0 -> 14.33.0)
- Parse and offer productRegisterFlavor attribute (bnc#896224)
- version 14.33.0 (30)
- Update zypp-po.tar.bz2
- Improve conflict message for locked packages (bnc#828631)
- Fix broken de-escaping in str::splitEscaped (bnc#909772)
- cleanup loging
- version 14.32.2 (30)
- CheckAccessDeleted: Filter PIDs running in a container (bnc#909143)
- version 14.32.1 (30)
==== media-player-info ====
Version update (21 -> 22)
- Update to version 22:
+ Terminate udev rules with an empty line (lp#1364747).
+ Add Sandisk Sansa Clip Sport (lp#1296418).
+ Remove ZTE Score (deb#748647).
- Drop fix-udev-rules-creator.patch: Fixed upstream.
==== libmutter0 ====
Version update (3.14.2 -> 3.14.3)
Subpackages: mutter mutter-data typelib-1_0-Meta-3_0
- Update to version 3.14.3:
+ Fix crash when trying to unredirect a destroyed window
(bgo#740133).
+ Fix "flicker" during startup transition (bgo#740377).
+ Don't leave left-over frames queued (bgo#738686).
+ Set CRTC configuration even if it might be redundant
(bgo#740838).
- Drop upstreamed patches:
+ mutter-black-screen-during-login.patch.
+ mutter-window-actor-unredirection-when-destroyed.patch.
+ mutter-empty-input-shapes-windows.patch.
+ mutter-left-over-queued-frames.patch.
+ mutter-dont-overwrite-send_frame_messages_timer.patch.
==== openconnect ====
Version update (7.01 -> 7.02)
Subpackages: openconnect-devel
- Update to Version 7.02
* Add PKCS#11 support for OpenSSL.
* Fix handling of select options in openconnect_set_option_value().
==== os-prober ====
Version update (1.61 -> 1.65)
- Version bujmp to 1.65:
* use latest in debian to be up par patch wise
* Drop reiserfs, it's no longer supported.
- we actually still support it as we patch this class away
anyway, but still they have it in their changes...
* Add ppc64el support. Closes: #752416.
* Recognise the new ignore_uefi flag from partman-efi.
- Refresh all patches to still apply:
* os-prober-1.49-grub2-mount.patch
* os-prober-call-dmraid-once.patch
* os-prober-dont-load-all-fs-module-and-dont-test-mount.patch
- Always delete all the .orig files as sometimes even upstream
put them to tarball :)
==== python ====
Version update (2.7.8 -> 2.7.9)
Subpackages: python-curses python-gdbm
- update to 2.7.9
==== libpython2_7-1_0 ====
Version update (2.7.8 -> 2.7.9)
Subpackages: libpython2_7-1_0-32bit python-base python-devel python-xml
- update to 2.7.9
* contains full backport of ssl module from Python 3.4 (PEP466)
* HTTPS certificate validation enabled by default (PEP476)
* SSLv3 disabled by default (bnc#901715)
* backported ensurepip module (PEP477)
* fixes several missing CVEs from last release: CVE-2013-1752,
CVE-2013-1753
* dozens of minor bugfixes
- dropped upstreamed patches: python-2.7.6-poplib.patch,
smtplib_maxline-2.7.patch, xmlrpc_gzip_27.patch
- dropped patch python-2.7.3-ssl_ca_path.patch because we don't need it
with ssl module from Python 3
- libffi was upgraded upstream, seems to contain our changes,
so dropping libffi-ppc64le.diff as well
- python-2.7-urllib2-localnet-ssl.patch - properly remove unconditional
"import ssl" from test_urllib2_localnet that caused it to fail without ssl
==== python-doc ====
Version update (2.7.8 -> 2.7.9)
- update to 2.7.9
- drop HTML doc tarball, build HTML documentation from source
- set fixed doc build date, lower sphinx requirement (for older openSUSE)
==== libspice-client-glib-2_0-8 ====
Version update (0.25 -> 0.27)
Subpackages: libspice-client-gtk-2_0-4 libspice-client-gtk-3_0-4 libspice-controller0 python-SpiceClientGtk typelib-1_0-SpiceClientGlib-2_0 typelib-1_0-SpiceClientGtk-3_0
- Update to version 0.27:
+ Add GStreamer 1.0 audio support.
+ Add LZ4 compression algorithm support.
+ Learn to release the keyboard grab on release keys pressed
(ctrl+alt by default), to let alt+f4/alt-tab and others for
client side.
+ Session and channels life-cycle changes: a channel will no
longer hold a reference after session disconnection.
+ Migration fixes, fail early on client provided fds (this is
left to solve in the future).
+ Fix support for Gtk+ 3.0 on Windows.
+ Clipboard size fixes.
+ Server-side pointer drawing on grab.
+ Build-sys improvements.
+ New APIs:
- spice_usb_device_get_libusb_device()
- spice_session_is_for_migration()
==== sudo ====
- correctly parse /proc/stat for boottime (bnc#899252)
* added sudo-parse_boottime_properly.patch from Debian
==== libgudev-1_0-0 ====
Subpackages: libgudev-1_0-devel libudev-devel libudev1 libudev1-32bit systemd systemd-32bit systemd-bash-completion systemd-logger systemd-sysvinit typelib-1_0-GUdev-1_0 udev
- Use Robert's latest patch
1098-udev-link_setup-respect-kernel-name-assign-policy.patch
which drops NAMEPOLICY_KERNEL as this breaks all on current
systems out there
- remove 0022-systemd-tmpfiles-ownerkeep.patch since this is now
implemented into the systemd-tmpfiles binary
- add user based ignore statements in tmpfiles removal directives
(bnc#903009)
add systemd-add-user-keep.patch
- use --boot option in systemd-tmpfiles-setup-dev.service (bnc#908476)
add upstream patches:
0001-units-tmpfiles-setup-dev-allow-unsafe-file-creation-.patch
0002-man-tmpfiles.d-recommend-using-b-and-c.patch (adapted)
- Update patch
1098-udev-link_setup-respect-kernel-name-assign-policy.patch
to Robert's version
- Add upstream patches
0001-selinux-access-fix-broken-ternary-operator.patch
0002-systemctl-show-BindsTo-BoundBy-in-list-dependencies.patch
0003-cryptsetup-default-to-no-hash-when-keyfile-is-specif.patch
0004-core-fix-transaction-destructiveness-check-once-more.patch
- Avoid old net devices naming scheme on openSUSE 13.2 and less
maybe caused by patch
1098-udev-link_setup-respect-kernel-name-assign-policy.patch
==== tmpwatch ====
- fix bashisms in tmpwatch.daily cron script
==== libudisks2-0 ====
Version update (2.1.3 -> 2.1.4)
Subpackages: udisks2
- Update to version 2.1.4:
+ Add GPT partition types from the Discoverable Partitions
Specification.
+ Remove newly-added "Auto-enabled swap" GTP partition type.
+ Fine-tune GTP partitions some more.
+ Send SCSI SYNCHRONIZE CACHE before powering down a drive.
+ Fix buffer overflow in pick_word_at().
+ Add Intel Fast Flash Standby partition GPT type.
+ Skip password strength checks when changing LUKS passphrase.
+ Fix build with clang.
+ Revert "Fix standby timers".
+ integration-test:
- Update for logind.
- Fix code formatting.
- sync file systems in sync().
- integration-test: Drop sync_workaround, fix property testing.
- integration-test: Better failure messages.
- integration-test: Fix btrfs test.
+ Fix display ID for generic FAT.
+ Update obsolete gnome-common and automake macros.
+ build:
- Use config-aux/ directory.
- Enable gcc colors.
+ Drop obsolete g_type_init().
+ Drop obsolete polkit_unix_process_new().
+ Fix docs for SmartUpdate().
+ Hide Microsoft reserved partition.
+ Identify JetFlash Transcend drives as thumb drives.
+ Fix sorting of mount points.
+ Fix fallback media icons for nonremovable media.
+ Fix polkit auth string.
+ Hide DIAGS and IntelRST partitions.
+ Add a man page for umount.udisks2.
+ Support building against libsystemd library.
+ udisks: Change name for Intel SW RAID.
+ Use internal pm check for smart poll.
+ Fix standby timers.
+ Fix TOCTOU race when making directories.
+ Add missing #include.
+ Properly initialize all used variables.
+ udiskslinuxmanager.c: Don't use uninitialized wait_data struct.
+ Remove useless assignments.
+ udisks_linux_drive_object_uevent(): Handle null device.
+ Hide Windows Recovery Environment partitions.
+ Updated translations.
==== libupower-glib3 ====
Version update (0.99.2~git20141204 -> 0.99.2)
Subpackages: typelib-1_0-UpowerGlib-1_0 upower
- Update to version 0.99.2:
+ Bugfixes:
- Avoid unaligned memory access in hidpp-device
- Bump GLib min req to 2.34
- Correct check to prevent the display of invalid ASCII codes
- Fencepost array access error
- Fix cleanup in up_device_idevice_coldplug/finalize
- Fix crash if there is no session D-BUS
- Fix error handling for Python 3.4
- Fix various memory and reference leaks
- Release resources at shutdown
- Respect the CriticalPowerAction config option
- Set update-time on the aggregate device
- Split out updating on_battery and warning_level
- Update aggregate device on battery removal
- Update display device when battery is removed
- Use g_get_real_time() when possible
- Restore Source URL
- Remove autoconf, automake and libtool BuildRequires, not needed
==== libjavascriptcoregtk-4_0-18 ====
Version update (2.6.3 -> 2.6.4)
Subpackages: libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- Update to version 2.6.4:
+ Fix SSL connection issues with some websites after the POODLE
vulnerability fix.
+ Fix several crashes in accessibility implementation.
+ Fix XMLHttpRequest with a timeout when using the network
process.
+ Fix XMLHttpRequest with cookies disabled when using the network
process.
+ Fix a crash in the network process when a synchronous load
redirects to a new url in a different security origin.
+ Fix documentation of webkit_print_operation_get_page_setup().
+ Allow to build with GObject introspection disabled.
+ Fix the remote inspector when settings don't change after page
initialization.
==== libwicked-0-6 ====
Version update (0.6.13 -> 0.6.14)
Subpackages: wicked wicked-service
- version 0.6.14
- client: fixed segfault in status (bsc#908554)
- bonding: add new/missed bonding options (bsc#905750)
- systemd: service ordering dependencies (bsc#895600,bsc#901337)
==== yast2 ====
Version update (3.1.114 -> 3.1.115)
Subpackages: yast2-devel-doc
- 3.1.115
- Add Arch.aarch64
==== yast2-hardware-detection ====
Version update (3.1.4 -> 3.1.5)
- 3.1.5
- Handle arch_aarch64 in .probe.architecture
==== yast2-installation ====
Version update (3.1.124 -> 3.1.125)
- Fix bashisms and shebangs in scripts (by "Ledest")
- 3.1.125
==== yast2-schema ====
Version update (3.1.1 -> 3.1.2)
- Replacing dropped yast2-all-packages with list of packages
that contain RNG files needed for AutoYaST
- 3.1.2
==== yast2-sound ====
Version update (3.1.5 -> 3.1.6)
- fixed bashism in "alsadrivers" script (authored by "Ledest")
- 3.1.6
==== yast2-trans-af ====
Subpackages: yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-en_US yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu
- Updated languages: af am ar be bg bn bs ca cs cy da de el eo es et eu
fa fi fr gl gu he hi hr hu id it ja jv ka km kn ko ku lo lt mk mr ms my
nb nl nn pa pl pt ro ru si sk sl sr sv sw ta tg th tk tr uk vi wa xh zu
en_GB en_US pt_BR zh_CN zh_TW ast nds.
==== libnis1 ====
Subpackages: yp-tools
- Avoid error from bad cast
==== zypper ====
Version update (1.11.17 -> 1.11.19)
Subpackages: zypper-aptitude zypper-log
- info: show new product:registerflavor attribute (bnc#896224)
- version 1.11.19
- Update zypper-po.tar.bz2
- Update zypper-po.tar.bz2
- Enhance 'Digest verification failed' message (FATE#315008)
- Enhance message text when skipping repos due to an error (bnc#909244)
- zypper.conf: fix wrong default mentioned in comment
- zypper-log(8): Update man page
- version 1.11.18
Removed packages:
libQt5Sql5-postgresql
Added packages:
bundle-lang-common-fi
libQt5Sql5-sqlite
> libqt5-qtbase-platformtheme-gtk2
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
22 Dec '14
Changed packages:
==== PackageKit ====
Subpackages: PackageKit-backend-zypp PackageKit-browser-plugin PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0
- fix using 'echo' command in search-name.sh script
- add patches:
* PackageKit-1.0.1-fix-bashisms.patch
==== acpid ====
Version update (2.0.22 -> 2.0.23)
- Update to version 2.0.23
+ Avoid using KEY_MICMUTE if it doesn't exist.
(input_layer.c) (Lonnie Abelbeck)
+ Add troubleshooting section to man page.
(acpid.8) (Ted Felix)
==== aria2 ====
Version update (1.18.5 -> 1.18.8)
- Update to version 1.18.8
+ WinTLS: Fix abrupt connection closing and closing in general.
+ Fixes GH-277
+ LibsslTLSSession: Treat 0 from readData as EOF
+ Enable dynamicbase and nxcompat in Windows binaries
+ Fix crash in OpenedFileCounter::ensureMaxOpenFileLimit()
+ The crash happens if PieceStorage and/or DiskAdaptor are not
initialized in one of active RequestGroups.
+ mingw32: Fix bug that aria2 does not read piped stdin
+ Fix std::length_error when no_proxy is used
+ This is regression introduced in 8cada497.
+ Try to set sane limits for RLIMIT_NO_FILE
E.g. on OSX the default is 256, which isn't exactly compatible
with torrent downloads.
Closes GH-257
+ Delay auth failures instead of PBKDF2
Closes GH-256
- Split out language files and recommend the subpackage
==== bind ====
Version update (9.9.5P1 -> 9.10.1P1)
Subpackages: bind-chrootenv bind-doc bind-utils
- Corrections to baselibs.conf
- Update to version 9.10.1-P1
- A flaw in delegation handling could be exploited to put named into an
infinite loop. This has been addressed by placing limits on the number of
levels of recursion named will allow (default 7), and the number of
iterative queries that it will send (default 50) before terminating a
recursive query (CVE-2014-8500); (bnc#908994).
The recursion depth limit is configured via the "max-recursion-depth"
option, and the query limit via the "max-recursion-queries" option.
[RT #37580]
- When geoip-directory was reconfigured during named run-time, the
previously loaded GeoIP data could remain, potentially causing wrong ACLs
to be used or wrong results to be served based on geolocation
(CVE-2014-8680). [RT #37720]; (bnc#908995).
- Lookups in GeoIP databases that were not loaded could cause an assertion
failure (CVE-2014-8680). [RT #37679]; (bnc#908995).
- The caching of GeoIP lookups did not always handle address families
correctly, potentially resulting in an assertion failure (CVE-2014-8680).
[RT #37672]; (bnc#908995).
- Convert some hard PreReq to leaner Requires(pre).
- Typographical and orthographic fixes to description texts.
- Fix bashisms in the createNamedConfInclude script.
- Post scripts: remove '-e' option of 'echo' that may be unsupported
in some POSIX-compliant shells.
- Add openssl engines to the lwresd chroot.
- Add /etc/lwresd.conf with attribute ghost to the list of files.
- Add /run/lwresd to the list of files of the lwresd package.
- Shift /run/named from the chroot sub to the main bind package.
- Drop /proc from the chroot as multi CPU systems work fine even without it.
- Add a versioned dependency when obsoleting packages.
- Remove superfluous obsoletes *-64bit in the ifarch ppc64 case; (bnc#437293).
- Fix gssapi_krb configure time header detection.
- Update root zone (dated Nov 5, 2014).
- Update to version 9.10.1
- This release addresses the security flaws described in CVE-2014-3214 and
CVE-2014-3859.
- Update to version 9.10.0
- DNS Response-rate limiting (DNS RRL), which blunts the impact of
reflection and amplification attacks, is always compiled in and no longer
requires a compile-time option to enable it.
- An experimental "Source Identity Token" (SIT) EDNS option is now available.
- A new zone file format, "map", stores zone data in a
format that can be mapped directly into memory, allowing
significantly faster zone loading.
- "delv" (domain entity lookup and validation) is a new tool with dig-like
semantics for looking up DNS data and performing internal DNSSEC
validation.
- Improved EDNS(0) processing for better resolver performance
and reliability over slow or lossy connections.
- Substantial improvement in response-policy zone (RPZ) performance. Up to
32 response-policy zones can be configured with minimal performance loss.
- To improve recursive resolver performance, cache records which are still
being requested by clients can now be automatically refreshed from the
authoritative server before they expire, reducing or eliminating the time
window in which no answer is available in the cache.
- New "rpz-client-ip" triggers and drop policies allowing
response policies based on the IP address of the client.
- ACLs can now be specified based on geographic location using the MaxMind
GeoIP databases. Use "configure --with-geoip" to enable.
- Zone data can now be shared between views, allowing multiple views to serve
the same zones authoritatively without storing multiple copies in memory.
- New XML schema (version 3) for the statistics channel includes many new
statistics and uses a flattened XML tree for faster parsing. The older
schema is now deprecated.
- A new stylesheet, based on the Google Charts API, displays XML statistics
in charts and graphs on javascript-enabled browsers.
- The statistics channel can now provide data in JSON format as well as XML.
- New stats counters track TCP and UDP queries received
per zone, and EDNS options received in total.
- The internal and export versions of the BIND libraries (libisc, libdns,
etc) have been unified so that external library clients can use the same
libraries as BIND itself.
- A new compile-time option, "configure --enable-native-pkcs11", allows BIND
9 cryptography functions to use the PKCS#11 API natively, so that BIND can
drive a cryptographic hardware service module (HSM) directly instead of
using a modified OpenSSL as an intermediary.
- The new "max-zone-ttl" option enforces maximum TTLs for zones. This can
simplify the process of rolling DNSSEC keys by guaranteeing that cached
signatures will have expired within the specified amount of time.
- "dig +subnet" sends an EDNS CLIENT-SUBNET option when querying.
- "dig +expire" sends an EDNS EXPIRE option when querying.
- New "dnssec-coverage" tool to check DNSSEC key coverage for a zone and
report if a lapse in signing coverage has been inadvertently scheduled.
- Signing algorithm flexibility and other improvements
for the "rndc" control channel.
- "named-checkzone" and "named-compilezone" can now read
journal files, allowing them to process dynamic zones.
- Multiple DLZ databases can now be configured. Individual zones can be
configured to be served from a specific DLZ database. DLZ databases now
serve zones of type "master" and "redirect".
- "rndc zonestatus" reports information about a specified zone.
- "named" now listens on IPv6 as well as IPv4 interfaces by default.
- "named" now preserves the capitalization of names
when responding to queries.
- new "dnssec-importkey" command allows the use of offline
DNSSEC keys with automatic DNSKEY management.
- New "named-rrchecker" tool to verify the syntactic
correctness of individual resource records.
- When re-signing a zone, the new "dnssec-signzone -Q" option drops
signatures from keys that are still published but are no longer active.
- "named-checkconf -px" will print the contents of configuration files with
the shared secrets obscured, making it easier to share configuration (e.g.
when submitting a bug report) without revealing private information.
- "rndc scan" causes named to re-scan network interfaces for
changes in local addresses.
- On operating systems with support for routing sockets, network interfaces
are re-scanned automatically whenever they change.
- "tsig-keygen" is now available as an alternate command
name to use for "ddns-confgen".
- Update to version 9.9.6
New Features
- Support for CAA record types, as described in RFC 6844 "DNS
Certification Authority Authorization (CAA) Resource Record",
was added. [RT#36625] [RT #36737]
- Disallow "request-ixfr" from being specified in zone statements where it
is not valid (it is only valid for slave and redirect zones) [RT #36608]
- Support for CDS and CDNSKEY resource record types was added. For
details see the proposed Informational Internet-Draft "Automating
DNSSEC Delegation Trust Maintenance" at
http://tools.ietf.org/html/draft-ietf-dnsop-delegation-trust-maintainance-14.
[RT #36333]
- Added version printing options to various BIND utilities. [RT #26057]
[RT #10686]
- Added a "no-case-compress" ACL, which causes named to use case-insensitive
compression (disabling change #3645) for specified clients. (This is useful
when dealing with broken client implementations that use case-sensitive
name comparisons, rejecting responses that fail to match the capitalization
of the query that was sent.) [RT #35300]
Feature Changes
- Adds RPZ SOA to the additional section of responses to clearly
indicate the use of RPZ in a manner that is intended to avoid
causing issues for downstream resolvers and forwarders [RT #36507]
- rndc now gives distinct error messages when an unqualified zone
name matches multiple views vs. matching no views [RT #36691]
- Improves the accuracy of dig's reported round trip times. [RT #36611]
- When an SPF record exists in a zone but no equivalent TXT record
does, a warning will be issued. The warning for the reverse
condition is no longer issued. See the check-spf option in the
documentation for details. [RT #36210]
- "named" will now log explicitly when using rndc.key to configure
command channel. [RT #35316]
- The default setting for the -U option (setting the number of UDP
listeners per interface) has been adjusted to improve performance.
[RT #35417]
- Aging of smoothed round-trip time measurements is now limited
to no more than once per second, to improve accuracy in selecting
the best name server. [RT #32909]
- DNSSEC keys that have been marked active but have no publication
date are no longer presumed to be publishable. [RT #35063]
Bug Fixes
- The Makefile in bin/python was changed to work around a bmake
bug in FreeBSD 10 and NetBSD 6. [RT #36993] (**)
- Corrected bugs in the handling of wildcard records by the DNSSEC
validator: invalid wildcard expansions could be treated as valid
if signed, and valid wildcard expansions in NSEC3 opt-out ranges
had the AD bit set incorrectly in responses. [RT #37093] [RT #37072]
- When resigning, dnssec-signzone was removing all signatures from
delegation nodes. It now retains DS and (if applicable) NSEC
signatures. [RT #36946]
- The AD flag was being set inappopriately on RPZ responses. [RT #36833]
- Updates the URI record type to current draft standard,
draft-faltstrom-uri-08, and allows the value field to be zero
length [RT #36642] [RT #36737]
- RRSIG sets that were not loaded in a single transaction at start
up were not being correctly added to re-signing heaps. [RT #36302]
- Setting '-t aaaa' in .digrc had unintended side-effects. [RT #36452]
- A race condition could cause a crash in isc_event_free during
shutdown. [RT #36720]
- Addresses a race condition issue in dispatch. [RT #36731]
- acl elements could be miscounted, causing a crash while loading
a config [RT #36675]
- Corrects a deadlock between view.c and adb.c. [RT #36341]
- liblwres wasn't properly handling link-local addresses in
nameserver clauses in resolv.conf. [RT #36039]
- Buffers in isc_print_vsnprintf were not properly initialized
leading to potential overflows when printing out quad values.
[RT #36505]
- Don't call qsort() with a null pointer, and disable the GCC 4.9
"delete null pointer check" optimizer option. This fixes problems
when using GNU GCC 4.9.0 where its compiler code optimizations
may cause crashes in BIND. For more information, see the operational
advisory at https://kb.isc.org/article/AA-01167/. [RT #35968]
- Fixed a bug that could cause repeated resigning of records in
dynamically signed zones. [RT #35273]
- Fixed a bug that could cause an assertion failure after forwarding
was disabled. [RT #35979]
- Fixed a bug that caused SERVFAILs when using RPZ on a system
configured as a forwarder. [RT #36060]
- Worked around a limitation in Solaris's /dev/poll implementation
that could cause named to fail to start when configured to use
more sockets than the system could accomodate. [RT #35878]
- Remove merged rpz2+rl-9.9.5.patch and obsoleted rpz2+rl-9.9.5.patch
- Removed pid-path.diff patch as /run/{named,lwresd}/ are used by default.
- Update baselibs.conf (added libirs and library interface version updates).
- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.
- Implement shlib packaging guidelines and give an improved
description on the library components
- Put idnkit components in separate packages
- Add runidn.diff to resolve runidn not working at all
==== dracut ====
- 0001-kernel-modules-Fix-storage-module-selection-for-sdhc.patch: fix
storage module selection for sdhci/mmc/ahci
==== libfbembed2_5 ====
Version update (2.5.2.26539 -> 2.5.4.26821)
- upgrade to upstream version 2.5.4.26821
* server crash by malformed packet (bnc#908127, CORE-4029,
CORE-4030)
* various functional fixes
- removed patches merged into upstream:
* Firebird-2.5.2.26539-0-fix-bashisms.patch:
* aarch64-support.patch
* firebird-2.5.2-CORE-4058.patch
* firebird-2.5.2-icu49.patch
* firebird-2.5.2-runlevel.patch
* firebird-fix-unsigned-char.diff
* firebird-s390x-fix_libdir.patch
* ppc64-libdir.patch
- replace remaining patches by git based ones:
* firebird-2.5.1-chown.patch
- > allow-creating-buildRoot-as-non-root-user.patch
* firebird-2.5.1-config.patch
- > do-not-use-DatabaseAccess-Full-in-default-config.patch
* firebird-2.5.1-disable.patch
- > disable-xinetd-service-by-default.patch
* firebird-2.5.2-gpidfile.patch
- > fbguard-allow-creating-a-guard-pidfile.patch
* firebird-2.5.2-init.patch
- > use-killproc-in-stop-branch-of-SuSE-init-script.patch
(remaining part not upstreamed)
* firebird-2.5.2-isqlalign.patch
- > Fixed-CORE-3431-ISQL-pads-UTF-8-data-incorrectly.patch
* firebird-2.5.2-isqllocale.patch
- > isql-fix-output-if-charset-is-different-from-locale.patch
* firebird-2.5.2-isqlwidth.patch
- > isql-fix-buffer-overflow-when-set-width-sets-bigger-.patch
* firebird-2.5.2-pkgconfig.patch
- > add-pkgconfig-files.patch
* m68k-support.patch
- > add-experimental-support-for-m68k-architecture.patch
- use xz compressed tarball
- fix bashisms in scripts
- add patches:
* Firebird-2.5.2.26539-0-fix-bashisms.patch
==== gnome-chess ====
Version update (3.14.1 -> 3.14.2)
- Update to version 3.14.2:
+ Regression: broken timer after Resign -> Keep Playing.
+ Regression: broken timer after Pause -> Unpause.
+ Updated translations.
==== gpgme ====
Version update (1.5.1 -> 1.5.2)
Subpackages: libgpgme-devel libgpgme11
- gpgme 1.5.2:
+ gpgme-tool is now installed.
+ Fix external listing for modern keyservers.
+ Minor other fixes.
- disable failing unit tests
==== hyper-v ====
- Start hv_kvp_daemon after network-online.target (bnc#910353)
- ignore ENOBUFS and ENOMEM in the KVP daemon
- vssdaemon: skip all filesystems mounted readonly (bnc#909864)
- vssdaemon: report freeze errors
==== install-initrd-openSUSE ====
Version update (14.150 -> 14.155)
- Drop bind-libs from BuildRequires as they got separated into single packages.
- i586: give up on xen-kmp
- improve git2log to work with sub-branches
- 14.155
- Rescue: bind-libs is in fact just a collection of libraries, that are automatically required by dependencies.
- 14.154
- No longer exclude valgrind and ltrace on ppc64le and aarch64
- adjust s390x module config
- 14.153
- fix Makefile
- 14.152
- aarch64: move kernel and initrd back to boot/aarch64
- 14.151
==== lftp ====
- build with openssl instead of gnutls as suggested in bnc#792456
* don't default to /etc/ssl/ca-bundle.pem (bnc#907803)
* drop lftp-ca-bundle-path.patch
- fix a "curl" vulnerability CVE-2014-0139
* that's because lftp uses code borrowed from curl 7.21.3 which
contains this incorrect wildcard certificate validation
* added lftp-CVE-2014-0139.patch
==== libwnck-3-0 ====
Version update (3.4.9 -> 3.14.0)
Subpackages: libwnck-devel typelib-1_0-Wnck-3_0
- Update to version 3.14.0:
+ Fixes:
- xutils:
. Support non-standard depths for icon pixmaps.
. Correctly link against libXrender.
- pager: don't return invalid workspace rect.
- tasklist:
. Fix missing icon in tasklist button.
. Don't use deprecated GtkImageMenuItem.
- window-action-menu: don't use deprecated GtkImageMenuItem.
+ Updated translations.
==== libyaml-0-2 ====
- fix CVE-2014-9130: libyaml: assert failure when processing
wrapped strings (bnc#907809)
CVE-2014-9130.patch contains the fix
==== mailx ====
- Add patches
0001-outof-Introduce-expandaddr-flag.patch
0002-unpack-Disable-option-processing-for-email-addresses.patch
0003-fio.c-Unconditionally-require-wordexp-support.patch
0004-globname-Invoke-wordexp-with-WRDE_NOCMD-CVE-2004-277.patch
to fix bsc#909208 -- CVE-2004-2771, CVE-2014-7844: mailx: shell
command injection via crafted email addresses
==== netcfg ====
- Try different approach to fix failing migration from 13.1.
This one is from locilka
- Keep the condition posix as it is shorter :)
==== patterns-openSUSE-apparmor ====
Subpackages: patterns-openSUSE-apparmor_opt patterns-openSUSE-base patterns-openSUSE-books patterns-openSUSE-console patterns-openSUSE-devel_C_C++ patterns-openSUSE-devel_basis patterns-openSUSE-devel_gnome patterns-openSUSE-devel_ide patterns-openSUSE-devel_java patterns-openSUSE-devel_kde patterns-openSUSE-devel_kernel patterns-openSUSE-devel_perl patterns-openSUSE-devel_python patterns-openSUSE-devel_qt4 patterns-openSUSE-devel_rpm_build patterns-openSUSE-devel_ruby patterns-openSUSE-devel_web patterns-openSUSE-dhcp_dns_server patterns-openSUSE-directory_server patterns-openSUSE-enhanced_base patterns-openSUSE-enhanced_base_opt patterns-openSUSE-file_server patterns-openSUSE-fonts patterns-openSUSE-fonts_opt patterns-openSUSE-games patterns-openSUSE-gateway_server patterns-openSUSE-gnome patterns-openSUSE-gnome_admin patterns-openSUSE-gnome_basis patterns-openSUSE-gnome_basis_opt patterns-openSUSE-gnome_games patterns-openSUSE-gnome_ide patterns-openSUSE-gnome_imaging patterns-ope
nSUSE-gnome_imaging_opt patterns-openSUSE-gnome_internet patterns-openSUSE-gnome_laptop patterns-openSUSE-gnome_multimedia patterns-openSUSE-gnome_multimedia_opt patterns-openSUSE-gnome_office patterns-openSUSE-gnome_office_opt patterns-openSUSE-gnome_utilities patterns-openSUSE-gnome_yast patterns-openSUSE-imaging patterns-openSUSE-imaging_opt patterns-openSUSE-kde patterns-openSUSE-kde4_admin patterns-openSUSE-kde4_basis patterns-openSUSE-kde4_edutainment patterns-openSUSE-kde4_games patterns-openSUSE-kde4_ide patterns-openSUSE-kde4_imaging patterns-openSUSE-kde4_internet patterns-openSUSE-kde4_laptop patterns-openSUSE-kde4_multimedia patterns-openSUSE-kde4_office patterns-openSUSE-kde4_utilities patterns-openSUSE-kde4_utilities_opt patterns-openSUSE-kde4_yast patterns-openSUSE-kvm_server patterns-openSUSE-lamp_server patterns-openSUSE-laptop patterns-openSUSE-lxde patterns-openSUSE-lxde_laptop patterns-openSUSE-lxde_office patterns-openSUSE-mail_server patterns-openSUSE-minimal_b
ase patterns-openSUSE-minimal_base-conflicts patterns-openSUSE-misc_server patterns-openSUSE-multimedia patterns-openSUSE-multimedia_opt patterns-openSUSE-network_admin patterns-openSUSE-non_oss patterns-openSUSE-non_oss_opt patterns-openSUSE-office patterns-openSUSE-office_opt patterns-openSUSE-print_server patterns-openSUSE-remote_desktop patterns-openSUSE-rest_dvd patterns-openSUSE-sw_management patterns-openSUSE-sw_management_gnome patterns-openSUSE-sw_management_kde4 patterns-openSUSE-tabletpc patterns-openSUSE-technical_writing patterns-openSUSE-x11 patterns-openSUSE-x11_opt patterns-openSUSE-x11_yast patterns-openSUSE-xen_server patterns-openSUSE-xfce patterns-openSUSE-xfce_basis patterns-openSUSE-xfce_laptop patterns-openSUSE-xfce_office patterns-openSUSE-yast2_basis patterns-openSUSE-yast2_install_wf
- Reorder patterns in the Desktop Environment group: GNOME. KDE4,
Plasma5, XFCE, LXDE, Enlightment, MATE, Fonts, X Windows System.
==== perl-Bootloader ====
Version update (0.826 -> 0.827)
Subpackages: perl-Bootloader-YAML
- Add armv7l support for grub2
- 0.827
==== pm-utils ====
- fix bashisms in sleep.d/* scripts
- add patches:
* pm-utils-fix-bashisms.patch
==== powertop ====
Version update (2.6.1 -> 2.7)
- Update to version 2.7
+ RAPL: powercap sysfs used for power measurements.
+ Arm support for devfreq stats.
+ Added support to new Intel platforms.
+ Several bug fixes
==== libsqlite3-0 ====
Version update (3.8.7.2 -> 3.8.7.4)
Subpackages: libsqlite3-0-32bit sqlite3 sqlite3-devel sqlite3-doc
- SQLite 3.8.7.4:
* Bug fix: Add in a mutex that was omitted from the previous
release.
- SQLite 3.8.7.3:
* Ensure the cached KeyInfo objects (an internal abstraction not
visible to the application) do not go stale when operating in
shared cache mode and frequently closing and reopening some
database connections while leaving other database connections
on the same shared cache open continuously.
* Recognize that any column in the right-hand table of a LEFT
JOIN can be NULL even if the column has a NOT NULL constraint.
Do not apply optimizations that assume the column is never
NULL.
==== subversion ====
Version update (1.8.10 -> 1.8.11)
Subpackages: subversion-devel subversion-perl subversion-python subversion-server subversion-tools
- Apache Subversion 1.8.11
- This release addresses two security issues: [boo#909935]
* CVE-2014-3580: mod_dav_svn DoS from invalid REPORT requests.
* CVE-2014-8108: mod_dav_svn DoS from use of invalid transaction
names.
- Client-side bugfixes:
* checkout/update: fix file externals failing to follow history
and subsequently silently failing
* patch: don't skip targets in valid --git difs
* diff: make property output in diffs stable
* diff: fix diff of local copied directory with props
* diff: fix changelist filter for repos-WC and WC-WC
* remove broken conflict resolver menu options that always error
out
* improve gpg-agent support
* fix crash in eclipse IDE with GNOME Keyring
* fix externals shadowing a versioned directory
* fix problems working on unix file systems that don't support
permissions
* upgrade: keep external registrations
* cleanup: iprove performance of recorded timestamp fixups
* translation updates for German
- Server-side bugfixes:
* disable revprop caching feature due to cache invalidation
problems
* skip generating uniquifiers if rep-sharing is not supported
* mod_dav_svn: reject requests with missing repository paths
* mod_dav_svn: reject requests with invalid virtual transaction
names
* mod_dav_svn: avoid unneeded memory growth in resource walking
==== libtracker-common-1_0 ====
Version update (1.2.4 -> 1.2.5)
Subpackages: libtracker-control-1_0-0 libtracker-miner-1_0-0 libtracker-sparql-1_0-0 tracker tracker-devel tracker-miner-files typelib-1_0-Tracker-1_0 typelib-1_0-TrackerControl-1_0 typelib-1_0-TrackerMiner-1_0
- Update to version 1.2.5:
+ tracker-extract:
- Fixed potential use of uninitialised hash table in
persistence_invalidate().
- Fixed possible invalid memory read/write in
tracker_keywords_parse().
- Fixed memory leak of MediaArt object for TrackerExtractInfo.
+ libtracker-fts:
- Make property list per-thread data to fix uninitialisation
issues.
- Fixed compilation errors when --disable-tracker-fts is used.
+ Bugs fixed: bgo#741141, bgo#733536, bgo#740268, bgo#739149,
rh#1133042.
==== nautilus-extension-tracker-tags ====
Version update (1.2.4 -> 1.2.5)
Subpackages: tracker-gui
- Update to version 1.2.5:
+ tracker-extract:
- Fixed potential use of uninitialised hash table in
persistence_invalidate().
- Fixed possible invalid memory read/write in
tracker_keywords_parse().
- Fixed memory leak of MediaArt object for TrackerExtractInfo.
+ libtracker-fts:
- Make property list per-thread data to fix uninitialisation
issues.
- Fixed compilation errors when --disable-tracker-fts is used.
+ Bugs fixed: bgo#741141, bgo#733536, bgo#740268, bgo#739149,
rh#1133042.
==== libupower-glib3 ====
Version update (0.99.1 -> 0.99.2~git20141204)
Subpackages: typelib-1_0-UpowerGlib-1_0 upower
- Update to latest git head, to resolve various memleaks,
(fdo#82659, boo#904520)
- Added autoconf, automake and libtool BuildRequires, needed with
git packaging
- Comment out the full Source URL, the updated tarball is not
available at fdo URL
==== gvim ====
Subpackages: vim vim-data
- use SUSE LINUX GmbH everywhere
==== xf86-input-mouse ====
Version update (1.9.0 -> 1.9.1)
- Update to version 1.9.1:
+ Update some outdated language in a comment on obsolete
hardware.
+ Make absolute input reporting in Solaris aware of resolution
changes.
+ Do not drop the result of protocol detection.
+ Add support for absolute positioning (tablets).
+ For wsmouse, keep 3-button emulation status.
+ Make wsmouse (re-)init the version.
+ Enable MSE_MISC on NetBSD as well. Otherwise we can't find
WSMouse.
+ Add AC_SYSTEM_EXTENSIONS to expose asprintf with GNU libc.
+ Use asprintf (or Xprintf on old servers) instead of
strdup+sprintf.
+ Wrap some overly long lines.
==== yast2-firstboot ====
Version update (3.1.6 -> 3.1.7)
- fixed bashisms in "S09-cleanup" script (authored by "Ledest")
- 3.1.7
==== yast2-services-manager ====
Version update (3.1.38 -> 3.1.39)
- AutoYaST import: initialize Yast::I18n correctly
(bnc#909768)
- 3.1.38
Removed packages:
bind-libs
Added packages:
aria2-lang
libbind9-140
> libdns146
> libirs141
> libisc142
> libisccc140
> libisccfg140
> liblwres141
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
7
11
19 Dec '14
Changed packages:
==== ImageMagick ====
Subpackages: ImageMagick-devel ImageMagick-doc ImageMagick-extra libMagick++-6_Q16-5 libMagickCore-6_Q16-2 libMagickWand-6_Q16-2 perl-PerlMagick
- do not use -march/-mtune [bnc#904545]
==== LibVNCServer-devel ====
Version update (0.9.9 -> 0.9.10)
Subpackages: libvncclient0 libvncserver0
- Update to version 0.9.10
+ Moved the whole project from sourceforge to https://libvnc.github.io/.
+ Cleaned out the autotools build system which now uses autoreconf.
+ Updated noVNC HTML5 client to latest version.
+ Split out x11vnc sources into separate repository at
https://github.com/LibVNC/x11vnc
+ Split out vncterm sources into separate repository at
https://github.com/LibVNC/vncterm
+ Split out VisualNaCro sources into separate repository at
https://github.com/LibVNC/VisualNaCro
+ Merged Debian patches.
+ Fixed some security-related buffer overflow cases.
+ Added compatibility headers to make LibVNCServer/LibVNCClient
build on native Windows 8.
+ Update LZO to version 2.07, fixing CVE-2014-4607.
+ Merged patches from KDE/krfb.
+ Can now do IPv6 without IPv4.
+ Fixed a use-after-free issue in scale.c.
- Update Url and download source to new project home
- Remove LibVNCServer-0.9.9-no_x11vnc.patch; upstream splited it
out of main tarball
- Rebase libvncserver-ossl.patch to upstream changes
> libvncserver-0.9.10-ossl.patch
- Remove linuxvnc subpackage; like x11vnc, it has been splited out
but is depreciated and unmaintained.
==== Mesa ====
Version update (10.3.3 -> 10.4.0)
Subpackages: Mesa-32bit Mesa-devel Mesa-dri-devel Mesa-libEGL-devel Mesa-libEGL1 Mesa-libEGL1-32bit Mesa-libGL-devel Mesa-libGL1 Mesa-libGL1-32bit Mesa-libGLESv1_CM-devel Mesa-libGLESv1_CM1 Mesa-libGLESv2-2 Mesa-libGLESv2-devel Mesa-libglapi-devel Mesa-libglapi0 Mesa-libglapi0-32bit libOSMesa-devel libOSMesa9 libOSMesa9-32bit libgbm-devel libgbm1 libgbm1-32bit libvdpau_nouveau libvdpau_r600 libvdpau_radeonsi libwayland-egl-devel libwayland-egl1 libxatracker2
- Update to version 10.4.0 (10.4 Final):
- New features:
+ GL_ARB_conditional_render_inverted on nv50
+ GL_ARB_sample_shading on r600
+ GL_ARB_texture_view on nv50, nvc0
+ GL_ARB_clip_control on nv50, nvc0, r300, r600, radeonsi, llvmpipe, softpipe
+ GL_KHR_context_flush_control on all drivers
- Changes:
+ Removed patch17: u_Suppress-any-libGL-.-warnings-when-LIBGL_DEBUG-is-se.patch
This patch was upstreamed
+ Build without "--enable-gallium-egl"
This buildoption was removed upstream
+ Add subpackage libvdpau_r300
==== amavisd-new ====
Version update (2.9.1 -> 2.10.1)
Subpackages: amavisd-new-docs
- Update to version 2.10.1
+ fixed a missing import of mail_addr_idn_to_ascii() and idn_to_utf8()
when SQL is in use
+ void warnings issued by perl 5.21.5:
- Changes from version 2.10
COMPATIBILITY
- New requirement: perl module Net::LibIDN needs to be installed.
- Uses a perl module File::LibMagic if installed, instead of spawning
a file(1) utility.
- Support for international email relies heavily on perl to do the
right thing in its support of Unicode, so using a reasonably recent
version of perl is recommended. Amavisd was tested with perl 5.18
and 5.20.1. Versions of perl older than 5.12 may cause problems
with handling, encoding, and decoding of Unicode characters.
It is reasonable to expect that versions 5.14 and 5.16 are fine too,
but have not been tested extensively.
- Default log templates and notification templates have changed
in details (like in decoding of international e-mail addresses), so
if locally customized templates are in use these will benefit from
updating - otherwise expect some mojibake in log and notifications.
- International domain names (IDN) encoded in ASCII-compatible encoding
found in e-mail addresses and in Message-ID header field will be decoded
to Unicode for presentation purposes (syslog, JSON structured log,
notifications). This decoding does not affect a mail message itself.
- Logging via syslog expects that syslogd (or equivalent) will not
clobber UTF-8 octets. It may be necessary to tell syslogd to accept
C1 control characters unchanged, e.g. by adding a command line option
"-8" to syslogd. Failing to do so may leave logged entries (like
sender and recipient address, From, Subject) in international mail
garbled or poorly readable in syslog.
On FreeBSD one should add: syslogd_flags="-8" to /etc/rc.conf.
- Third party log parsers may need updating to accept logs with Unicode
characters in UTF-8 encoding.
- A SMTP response to an EHLO command will now announce SMTPUTF8 capability
by default.
BUG FIXES
- releasing a message from an SQL quarantine was broken in version 2.9.1
due to introduction of parent_mail_id(); patches provided by Stef Simoens
and Gionatan Danti;
- if checking of a message was aborted prematurely (like due to a timeout
or some fatal error), JSON log could receive a copy of a previous
log entry;
- prevent non-ASCII non-UTF-8 octets from reaching a JSON log/report
(which produced an invalid JSON object and Elasticsearch complaining);
- allow SMTP commands MAIL FROM and RCPT TO to accept options without
values, as allowed by the RFC 5321 syntax;
- in delivery status notification (DSN) the field Received-From-MTA
specified 'smtp' as mta-name-type, instead of a 'dns' as prescribed
in RFC 3464;
- releasing from a quarantine left envelope sender address as '<>'
instead of using the address found in a Return-Path header field
of a quarantined message, while also logging a warning:
Quarantine release $QID: missing X-Envelope-From or Return-Path
reported by Pascal Volk;
- avoid failure in os_fingerprint or in smtp forwarding in certain cases
where the $os_fingerprint_method or $forward_method or $notify_method
uses an asterisk in place of a host IP address or port number.
The reported error in os_fingerprint (reported by -ben) was:
os_fingerprint FAILED: Insecure dependency in socket
while running with -T switch
at /usr/lib/perl/5.18/IO/Socket.pm line 80
and in SMTP forwarding or notification (reported by Dennis Boone):
(!)connect to *:10025 attempt #1:
Insecure dependency in socket while running with -T switch
at /usr/lib/perl/5.18/IO/Socket.pm line 80.
- files LDAP.ldif and LDAP.schema: added a missing attribute
amavisDisclaimerOptions to objectClass; reported by Quanah Gibson-Mount;
NEW FEATURES
- added support for Internationalized Email:
* RFC 6530 - Overview and Framework for Internationalized Email
* RFC 6531 - SMTP Extension for Internationalized Email (SMTPUTF8)
* RFC 6532 - Internationalized Email Headers
* RFC 6533 - Internationalized Delivery Status Notifications
This supports UTF-8 (EAI) in SMTP/LMTP sender addresses, recipient
addresses, and message header section. Feature parity with Postfix
version 2.12 (support introduced in development snapshot 20140715).
The SMTPUTF8 extension is supported by Gmail since 2014-08-05:
http://googleblog.blogspot.com/2014/08/a-first-step-toward-more-global-emai…
- added support for Internationalized Domain Names (IDN) according
to IDNA (RFC 5890, RFC 5891; RFC 3490);
* A-labels in ASCII-compatible encoding of domain names are converted
to U-labels for presentation/logging purposed;
* U-labels are converted to A-labels when feeding a mail message
to an MTA which does not announce support for SMTPUTF8 extension
(instead of rejecting them as invalid mail address);
* For lookup purposes an international domain name is converted to
ASCII-compatible encoding when used as a query key in DNS lookups
and in lookups into hash, list, SQL and LDAP lookup tables (but not
in regexp table lookups). These tables are expected to contain domain
names in their ASCII representation (ACE). For convenience of config
files subroutines idn_to_ascii() and mail_idn_to_ascii() are available,
which encode a Unicode domain name to ACE (like ToASCII in RFC 3490);
* Many configuration settings may have their domain names in UTF-8.
These will be converted to ACE automatically where necessary
(e.g. when creating a Received and Authentication-Results header
fields, DKIM signatures, mail addresses in notifications, ...).
These settings include:
$myhostname, $localhost_name, $myauthservid, $mydomain,
notification sender and recipient mail addresses
($mailfrom_notify_*, $hdrfrom_notify_*, @*_admin_maps),
domain names and selectors in DKIM signing keys (in calls
to dkim_key() );
- delivery notifications and admin notifications now show the following
information encoded as UTF-8 (which is a default $bdy_encoding) in the
plain text part of the message: IDN domain names in sender and recipient
mail addresses and Message-ID are first decoded to Unicode, Subject and
author display names are MIME-decoded;
- 'amavisd showkeys' and 'amavisd testkeys' can now deal with IDN
(international domain names): domain names in DNS zone comments
end up as UTF-8, DNS labels are in ASCII (A-labels); domain names in
calls to dkim_key() may be specified either as UTF-8 or in ASCII (ACE);
- new macro 'mail_addr_decode' takes an e-mail address as a string of
octets, where a local part may be encoded as UTF-8, and the domain part
may be an international domain name (IDN) consisting either of U-labels
or A-labels or NR-LDH labels. Decodes A-labels to U-labels in domain
name. Returns a string of logical characters (Unicode), suitable for
notification templates. If the mail address is not a valid UTF-8 string,
it is interpreted as ISO-8859-1 (Latin-1).
- new macro 'mail_addr_decode_octets' is like 'mail_addr_decode', except
that the result is a string of octets, only valid as UTF-8 if the
provided address was a valid UTF-8 (garbage-in/garbage-out);
- new macro 'header_field_octets' is like 'header_field', except that
a result is a string of octets in UTF-8 encoding, suitable for a log
template;
- new macro 'ip_proto_trace_all' expands into a list of information
items from a Received header trace; each item consists of a protocol
name (the WITH clause) and an IP address, optionally followed by a
source port number if known;
Example:
ESMTP://[2001:db8::143:1]:39141 < ESMTP://2001:db8::25 <
esmtps://203.0.113.172 < ESMTPSA://192.168.9.9
or:
UTF8SMTP://[203.0.113.172]:51208 < UTF8SMTPSA://192.168.9.9
- new macro 'ip_proto_trace_public' is like ip_proto_trace_all, except
that entries with non-public IP address are excluded from the list;
'Received' trace information in $log_verbose_templ and in notifications
now include results from this macro call;
- new macro 'protocol' evaluates to a protocol name by which a message
was received by amavisd, according to RFC 3848 ("Transmission Types
Registration") and "Mail Transmission Types" / "WITH protocol types"
IANA registration
http://www.iana.org/assignments/mail-parameters/mail-parameters.xhtml
e.g.: SMTP, ESMTP, ESMTPA, ESMTPS, ESMTPSA, LMTP, LMTPA, LMTPS, LMTPSA,
UTF8SMTP, UTF8SMTPA, UTF8SMTPS, UTF8SMTPSA,
UTF8LMTP, UTF8LMTPA, UTF8LMTPS, UTF8LMTPSA, ...
- new macro 'client_protocol' expands into a protocol name by which
a message was received from a client by MTA; the information is passed
from MTA to amavisd through XFORWARD PROTO SMTP protocol extension or
through AM.PDP (milter); typical values are 'ESMTP' or 'SMTP';
- use a perl module File::LibMagic when available, instead of spawning
a file(1) utility for classifying contents of mail parts.
By using a direct interface to a libmagic library the startup cost
of spawning an external process is avoided. Benchmarking shows that
using libmagic is significantly faster especially for checking a small
number of files - takes 4 ms for checking one file with libmagic
vs. 27 ms with a spawned file(1); based on a patch by Markus Benning;
OTHER
- RFC 6533: recognize a MIME type 'message/global' as similar
to 'message/rfc822', and 'message/global-headers' as similar
to 'text/rfc822-headers' where appropriate (e.g. in bounce killer);
- header validity check now distinguishes 'non-ASCII and invalid UTF-8'
from 'non-ASCII but valid UTF-8' characters in a mail header section.
By default valid UTF-8 strings in a mail header section are not treated
as error even if mail is not flagged as international mail (SMTPUTF8),
as these are quite common in practice. To treat non- MIME-encoded UTF-8
in a header section as error the test can be enabled by:
$allowed_header_tests{'utf8'} = 1;
- ORCPT attribute in SMTP 'RCPT TO' command now accepts the original
recipient mail address in any of these encodings: utf-8-address,
utf-8-addr-unitext, utf-8-addr-xtext, or as a legacy xtext,
as required by RFC 6533;
- updated do_cabextract (extraction of Microsoft cabinet .cab archives)
to recognize a slightly changed output of cabextract version 1.2;
patch by Thomas Jarosch;
- adjusted some timeouts to leave more reserve for later stages of
mail processing and forwarding;
- prefer sanitizing/protecting control characters as hex code (like \x7F)
instead of octal (like \177) (e.g. in logging and DSN);
- Use dowload Url as source
- Add a requirement on perl-Net-LibIDN; new upstream dependency
==== bluez ====
Version update (5.25 -> 5.26)
Subpackages: bluez-cups bluez-devel libbluetooth3
- update to version 5.26
This release is for the most part a bug-fix release with fixes in
A2DP and OBEX related functionality, but there?s also an added
features for get/set reports for HID over GATT as well as
Phonebook Access Profile 1.2 support
The Bluetooth 4.2 specification went public in early December and
BlueZ 5.26 is the first release with support for its features.
Perhaps the most notable one of these is Low Energy Secure
Connections which will require a 3.19 or newer kernel. This
feature brings LE pairing to the same level of security as it has
been for BR/EDR. LE SC also brings along with it so-called
cross-transport pairing, which means that you only need to pair
once over LE or BR/EDR to get the necessary keys for both
transports between two dual-mode devices.
==== libchromaprint0 ====
Version update (0.7 -> 1.1)
- Update to version 1.1
- Fixed potential DoS attack in fingerprint decompression code. (#6)
- Fixed invalid memory read with some fingerprinter configurations. (#5)
- Added support for audio format conversion with libav. (#2, Gordon Pettey)
- Add baselibs.conf
- Update to version 1.0
- Support for the latest FFmpeg API.
- Support for reading audio from stdin in fpcalc.
- Changed fpcalc to return non-zero status on failure.
==== clutter-devel ====
Subpackages: libclutter-1_0-0 typelib-1_0-Clutter-1_0
- Disable wayland on SLE12.
==== cogl-devel ====
Subpackages: libcogl-pango20 libcogl20 typelib-1_0-Cogl-1_0 typelib-1_0-Cogl-2_0 typelib-1_0-CoglPango-1_0 typelib-1_0-CoglPango-2_0
- Disable wayland backend on SLE12.
==== colord ====
Version update (1.2.6 -> 1.2.7)
Subpackages: libcolord2 libcolorhug2
- Update to version 1.2.7:
+ Bugfixes:
- Don't build the daemon when compiling for MinGW.
- Use wine to run the client build tools when compiling under
MinGW.
==== libcolord-gtk1 ====
Version update (0.1.25 -> 0.1.26)
- Update to version 0.1.26:
+ New Features:
- Actually install the cd-convert utility.
- Provide an optional Gtk2 version of libcolord-gtk.
+ Bugfixes:
- Do not link against the unused gio-unix-2.0.
- Fix cd-convert to work with multiple sensors attached.
==== dhcp ====
Subpackages: dhcp-client dhcp-doc dhcp-relay dhcp-server
- Applied fix by Jiri Slaby to not crash in interface discovery
when the interface address is NULL, which has been introduced
by the infiniband support patch (bsc#909189,bsc#870535).
[+ 0027-dhcp-4.2.x-handle-ifa_addr-NULL.909189.patch]
- fix bashisms in dhcprelay script
- Applied contrib/ldap/dhcpd-conf-to-ldap patch by Ales Novak to
reorder config to add all global options or option declarations
to the dhcpService object instead to create new service object
(bsc#886094,ISC-Bugs#37876).
[+ 0022-dhcp-4.2.x-contrib-conf-to-ldap-reorder.886094.patch]
- Applied an upstream patch by Thomas Markwalder adding missed
mapping of SHA TSIG algorithm names to their constants to enable
hmac-sha1, hmac_sha224, hmac_sha256, hmac_sha384 and hmac_sha512
authenticated dynamic DNS updates (bsc#890731, ISC-Bugs#36947).
[+ 0023-dhcp-4.2.x-ddns-tsig-hmac-sha-support.890731.patch]
- Decline IPv6 addresses on Duplicate Address Detection failure
and stop client message exchanges on reached MRD rather than
at some point after it. Applied fedora patches by Jiri Popelka
and added DAD reporting via exit 3 to the dhclient-script and
a fix to use correct address variables in the DEPREF6 action
(bsc#872609,ISC-Bugs#26735,ISC-Bugs#21238).
[+ 0024-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch,
+ 0025-dhcp-4.2.x-dhcpv6-retransmission-until-MRD.872609.patch]
- Applied backport patch by William Preston avoiding to bind ddns
socket in the server when ddns-update-style is none (bsc#891655).
[+ 0026-dhcp-4.2.x-disable-unused-ddns-port-in-server.891655.patch]
- Applied patch for the contrib/ldap/dhcpd-conf-to-ldap script
fixing subclass statement handling (bnc#878846,[ISC-Bugs #36409])
[+ 0021-dhcp-4.2.4-P2-bnc878846-conf-to-ldap.patch]
- Updated licence statement and FSF address in our scripts.
- Added missed service_add_pre macro calls for dhcrelay services
- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.
- sanitize release line in specfile
- Disabled /sbin/service legacy-action hooks on openSUSE <= 13.1,
which does not support it and causes build failure (bnc#891961).
- Fixed to require iproute2 in dhcp-client package (bnc#885399)
- Disarmed dhclient-script when wicked is the network service,
as wicked is using an another dhcp client (runtime conflict),
NetworkManager an own script and sysconfig-network is gone on
sles12 and opensuse > 13.1, so it is obsolete and unsupported.
- Fixed /etc/sysconfig/dhcpd fillup in dhcp server post-install.
- Fixed dhcp server start script to use correct libdir (bnc#868250)
- Fixed dhcp server to chown leases to run user at start (bnc#868253)
[+ 0020-dhcp-4.2.x-chown-server-leases.bnc868253.patch]
- Fixed to write missed dhcp-ldap debug level messages (bnc#835818)
[+ 0019-dhcp-4.2.x-ldap-debug-write.bnc835818.patch]
- Fixed unsupported dhclient-script used by sysconfig ifup to provide
a function to calculate netmask. NetworkManager provides an own one.
- added necessary macros for systemd files
- remove gpg-offline dependency (blocks rebuilds) as checking
is already done by source validator
- Applied fixes for DHCP over IPoIB by Mellanox (bnc#870535)
[+ 0017-dhcp-4.2.6-lpf-ip-over-ib-support.patch,
+ 0018-dhcp-4.2.6-improved-xid.patch]
- Added support for custom for rcdhcpd[6] check-syntax,check-lease
and syntax-check actions (bnc#868713).
- Initially switched to use systemd service files under systemd
and enabled Restart=on-abort (fate#315133).
- Update to ISC dhcp-4.2.6 release. See RELNOTES file for the
complete list of changes -- digest of fixes not in dhcp-4.2.5:
- Tidy up receive packet processing.
Thanks to Brad Plank of GTA for reporting the issue and
suggesting a possible patch. [ISC-Bugs #34447]
- Fix the socket handling for DHCPv6 clients to allow multiple
instances of a client on a single machine to work properly.
Previously only one client would receive the packets.
Thanks to Jiri Popelka at Red Hat for the bug report and a
potential patch. [ISC-Bugs #34784]
- Added support for gentle shutdown after signal is received.
[ISC-Bugs #32692] [ISC-Bugs 34945]
- Enhance the DHCPv6 server logging to include the addresses
that are assigned to the clients. This can be enabled by
defining LOG_V6_ADDRESSES in site.h. [ISC-Bugs #26377]
- Fix an operation in the DDNS code to be a bitwise instead
of logical or. [ISC-Bugs #35138]
- Merged patches for dhcp-4.2.6 version to apply without fuzzy,
prepended patch number prefixes to match spec file patch nr,
added patch markup tags / bug numbers to the spec file.
- Applied contrib-lease-path pach to contrib.tar.gz
[- contrib-lease-path.diff]
- Changed to require automake and use its config.sub and guess
files instead of maintaining a patch.
[- config-guess-sub-update.patch]
- Enabled to log DHCPv6 addresses assigned by server to clients
[+ 0016-server-log-DHCPv6-addresses-assigned-to-clients.patch]
- Cleaned up documentation, rpmlint adjustments.
- Test if /etc/sysconfig/network/scripts/functions exists before
sourcing it (fate#316768,bnc#856591).
- Fixed path to systemctl in dhclient-script (bnc#847778).
- Added /etc/bindresvport.blacklist to dhcp server chroot file
lists as it seems to block its start in some cases (bnc#842360).
- Fixed to reload syslog on hostname changes using systemctl as
there is no /etc/init.d/syslog script since syslog-service-2.0
(bnc#830467).
- Added autoreconf -i option to fix build for the new automake
- Install missed bind include files and libraries in dhcp-devel;
conflicts to bind-devel providing different versions (bnc#805162).
- Use manual patch command for config-guess-sub-update.patch
again as patch macro does not work on older distributions.
- Update to ISC dhcp-4.2.5-P1 release, which contains updated
bind-9.8.4-P2 sources with removed regex.h check in configure
(bnc#811934, CVE-2013-2266).
- Changed spec make the bind export library build output visible.
- Added dhcp6-server service template for SuSEfirewall2 (bnc#783002)
- config-guess-sub-update.patch:
Update config.guess/sub for aarch64
- Update to ISC dhcp-4.2.5 release. See RELNOTES file for the
complete list of changes -- digest of fixes not in dhcp-4.2.4-P2:
- Correct code to calculate rebind timing values in client
[ISC-Bugs #29062]
- Fix some issues in the code for parsing and printing options.
[ISC-Bugs #22625,#27289,#27296,#27314]
- Update the memory leakage debug code to work with v6.
[ISC-Bugs #30297]
- Relax the requirements for deleting an A or AAAA record.
This relaxation was codified in RFC 4703. [ISC-Bugs #30734]
- Modify the failover code to handle incorrect peer names better.
[ISC-Bugs #30320]
- Fix a set of issues that were discovered via a code inspection
tool. [ISC-Bugs #23833]
- Parsing unquoted base64 strings improved. [ISC-Bugs #23048]
- The client now passes information about the options it requested
from the server to the script code via environment variables.
These variables are of the form requested_<option_name>=1 with
the option name being the same as used in the new_* and old_*
variables. [ISC-Bugs #29068]
- Check the status value when trying to read from a connection to
see if it may have been closed. If it appears closed don't try
to read from it again. This avoids a potential busy-wait like
loop when the peer names are mismatched. [ISC-Bugs #31231]
- Remove an unused variable to keep compilers happy.
[ISC-Bugs #31983]
- Removed obsolete parsing and printing option patch
[dhcp-4.2.4-parsing-and-printing-options.patch]
- Merged dhcp-4.2.2-dhclient-send-hostname-rml.diff
[dhcp-4.2.5-dhclient-send-hostname-rml.patch]
- Fixed discovery of interfaces, which have only addresses with
a label assigned (linux 2.0 "alias interfaces" compatibility)
by switching to use the getifaddrs() as on BSD (bnc#791289,
reported upstream as [ISC-Bugs #31992]).
[dhcp-4.2.4-interface-discovery-using-getifaddrs.patch]
- Applied a patch to ignore SIGPIPE instead to die in socket code
before the errno==EPIPE checks are reached (bnc#794578, upstream
report [ISC-Bugs #32222])
[dhcp-4.2.4-P2-do-not-die-on-sigpipe.patch]
- Updated ldap patch to 4.2.5-ldap-mt01 providing following fixes:
- Fixed parse buffer handling code to not avoid truncation of
config > ~8k from bigger ldap objects. Fixed to free the ldap
config buffer passed to the config parser and append new config,
while the parser is in saved state (bnc#788787).
- Fixed subclass name-ref and data quoting/escaping (bnc#788787).
- Fixed memory leaks on ldap_read_config errors (bnc#788787).
- Fixed a memleak while subnet range processing, fixed to reset
bufix variable in ldap_read_function to 0 and to set buflen to
the complete length (do not discard last character, usually \n).
This caused a parsing error at further run of the function,
e.g. while processing the second dhcpService container that the
dhcpServer object may refer to (bnc#784640).
[dhcp-4.2.5-ldap-mt01.patch.bz2]
- Fixed dhclient-script to discard MTU lower-equal 576 rather
than lower-than (bnc#791280).
- Verify GPG source archive signatures.
- Update to ISC dhcp-4.2.4-P2 release, providing a security fix for
an issue with the use of lease times was found and fixed. Making
certain changes to the end time of an IPv6 lease could cause the
server to abort. Thanks to Glen Eustace of Massey University,
New Zealand for finding this issue.
([ISC-Bugs #30281], CVE: CVE-2012-3955, bnc#780167)
- Update to ISC dhcp-4.2.4-P1 release, providing following security
fixes (bnc#772924):
- Previously the server code was relaxed to allow packets with zero
length client ids to be processed. Under some situations use of
zero length client ids can cause the server to go into an infinite
loop. As such ids are not valid according to RFC 2132 section 9.14
the server no longer accepts them. Client ids with a length of 1
are also invalid but the server still accepts them in order to
minimize disruption. The restriction will likely be tightened in
the future to disallow ids with a length of 1.
Thanks to Markus Hietava of Codenomicon CROSS project for the
finding this issue and CERT-FI for vulnerability coordination.
[ISC-Bugs #29851] CVE: CVE-2012-3571
- When attempting to convert a DUID from a client id option
into a hardware address handle unexpected client ids properly.
Thanks to Markus Hietava of Codenomicon CROSS project for the
finding this issue and CERT-FI for vulnerability coordination.
[ISC-Bugs #29852] CVE: CVE-2012-3570
- A pair of memory leaks were found and fixed. Thanks to Glen
Eustace of Massey University, New Zealand for finding this issue.
[ISC-Bugs #30024] CVE: CVE-2012-3954
- Moved lease file check to a separate action so it is not used in
restart -- it can fail when the daemon rewrites the lease causing
a restart failure then (bnc#762108 regression).
- Request dhcp6.sntp-servers in /etc/dhclient6.conf and forward to
netconfig for processing (bnc#770236).
- Removed RFC 4833 TZ options from client requests [unused].
- Update to ISC dhcp-4.2.4 release, fixing a dhcpv6 server assert
crash while accessing lease on heap (bnc#767661) and providing
the following fixes:
- Rotate the lease file when running in v6 mode.
Thanks to Christoph Moench-Tegeder at Astaro for the
report and the first version of the patch. [ISC-Bugs #24887]
- Fixed the code that checks if an address the server is planning
to hand out is in a reserved range. This would appear as the
server being out of addresses in pools with particular ranges.
[ISC-Bugs #26498]
- In the DDNS code handle error conditions more gracefully and
add more logging code. The major change is to handle unexpected
cancel events from the DNS client code. [ISC-Bugs #26287]
- Tidy up the receive calls and eliminate the need for found_pkt.
[ISC-Bugs #25066]
- Add support for Infiniband over sockets to the server and
relay code. We've tested this on Solaris and hope to expand
support for Infiniband in the future. This patch also corrects
some issues we found in the socket code. [ISC-Bugs #24245]
- Add a compile time check for the presence of the noreturn attribute
and use it for log_fatal if it's available. This will help code
checking programs to eliminate false positives. [ISC-Bugs #27539]
- Fixed many compilation problems ("set, but not used" warnings) for
gcc 4.6 that may affect Ubuntu 11.10 users. [ISC-Bugs #27588]
- Modify the code that determines if an outstanding DDNS request
should be cancelled. This patch results in cancelling the
outstanding request less often. It fixes the problem caused
by a client doing a release where the TXT and PTR records
weren't removed from the DNS. [ISC-BUGS #27858]
- Use offsetof() instead of sizeof() to get the sizes for
dhcpv6_relay_packet and dhcpv6_packet in several more places.
Thanks to a report from Bruno Verstuyft and Vincent Demaertelaere
of Excentis. [ISC-Bugs #27941]
- Remove outdated note in the description of the bootp keyword about
the option not satisfying the requirement of failover peers for
denying dynamic bootp clients. [ISC-bugs #28574]
- Multiple items to clean up IPv6 address processing. When processing
an IA that we've seen check to see if the addresses are usable
(not in use by somebody else) before handing it out.
When reading in leases from the file discard expired addresses.
When picking an address for a client include the IA ID in
addition to the client ID to generally pick different addresses
for different IAs. [ISC-Bugs #23138] [ISC-Bugs #27945]
[ISC-Bugs #25586] [ISC-Bugs #27684]
- Remove unnecessary checks in the lease query code and clean up
several compiler issues (some dereferences of NULL and treating
an int as a boolean). [ISC-Bugs #26203]
- Fix the NA and PD allocation code to handle the case where a client
provides a preference and the server doesn't have any addresses or
prefixes available. Previoulsy the server ignored the request with
this patch it replies with a NoAddrsAvail or NoPrefixAvail response.
By default the code performs according to the errata of August 2010
for RFC 3315 section 17.2.2; to enable the previous style see the
section on RFC3315_PRE_ERRATA_2010_08 in includes/site.h.
This option may be removed in the future. Thanks to Jiri Popelka at
Red Hat for the patch. [ISC-Bugs #22676]
- Fix up some issues found by static analysis. A potential memory leak
and NULL dereference in omapi. The use of a boolean test instead of
a bitwise test in dst. [ISC-Bugs #28941]
- Replaced our patches with a complete and upstream verified patch:
- Fix some issues in the code for parsing and printing options.
[ISC-Bugs #27314] - properly parse a zero length option from
a lease file.
[ISC-Bugs #22796] - properly determine if we parsed a 16 or
32 bit value in evaluate_numeric_expression (extract-int).
[ISC-Bugs #22625] - properly print options that have several
fields followed by an array of something for example "fIa"
[ISC-Bugs #27289] - properly parse options in declarations
that have several fields followed by an array of something
for example "fIa"
This patch obsoletes the following (bnc#739696) patches:
- dhclient: parse_option_param: Bad format a
- zero-length option lease parse error in dhclient6
- Merged ldap and options check patches for the new version
- Fixed dhcp-server init script to check syntax and fail while
force-reload and restart to avoid stopping of running daemon
followed by start failure (bnc#762108). Added libgcc_s.so to
chroot, so the server can report assert/crash line.
- Added RFC 4833 TimeZone PosixString and Name declarations to
server and client configs [not used yet].
- dhcp-server: fixed to escape all values used in constructed
ldap filters as a DN may contain e.g. asterisks (bnc#721829,
[ISC-Bugs #28545]).
- Updated to ISC dhcp-4.2.3-P2 release, providing a DDNS security fix:
Modify the DDNS handling code. In a previous patch we added logging
code to the DDNS handling. This code included a bug that caused it
to attempt to dereference a NULL pointer and eventually segfault.
While reviewing the code as we addressed this problem, we determined
that some of the updates to the lease structures would not work as
planned since the structures being updated were in the process of
being freed: these updates were removed. In addition we removed an
incorrect call to the DDNS removal function that could cause a failure
during the removal of DDNS information from the DNS server.
Thanks to Jasper Jongmans for reporting this issue.
([ISC-Bugs #27078], CVE: CVE-2011-4868, bnc#741239)
- Fixed close-on-exec patch to not set it on stderr (bnc#732910)
- Fixed incorrect "a" array type option parsing causing to discard
e.g. classless static routes from lease file [reported as ISC-Bug
27289] and zero-length option parsing such as dhcp6.rapid-commit
in dhclient6 [reported as ISC-Bug 27314] (bnc#739696).
- Fixed dhclient to include its pid number in syslog messages.
- Fixed to use P2 in the spec version, not in the release tag.
- Updated to ISC dhcp-4.2.3-P1 release, providing security fix for
a DoS due to processing certain regular expressions (bnc#735610)
and several important DDNS related fixes:
* Add a check for a null pointer before calling the regexec function.
Without out this check we could, under some circumstances, pass
a null pointer to the regexec function causing it to segfault.
Thanks to a report from BlueCat Networks. [ISC-Bugs #26704]
CVE-2011-4539.
* Fix the code that checks for an existing DDNS transaction to
cancel when removing DDNS information, so that we will continue
with the processing if we have a lease even if it doesn't have an
outstanding transaction. [ISC-Bugs #24682]
* Add AM_MAINTAINER_MODE to configure.ac to avoid rebuilding
configuration files. [ISC-Bugs #24107]
* Add support for passing DDNS information to a DNS server over
an IPv6 address. [ISC-Bugs #22647]
* Enhanced patch for 23595 to handle IPv4 fixed addresses more
cleanly. [ISC-Bugs #23595]
- Refreshed ldap patch
- add libtool as buildrequire to make the spec file more reliable
- Commented out all configuration examples in /etc/dhcpd.conf and
dhcp6.conf (bnc#715473).
- Enabled dhcp6.rapid-commit in /etc/dhclient6.conf config file.
- Removed useless provides/obsoletes from spec file.
- Set the DHCPD_CONF_INCLUDE_FILES and the DHCPD6_CONF_INCLUDE_FILES
variables to /etc/dhcpd.d and /etc/dhcpd6.d by default, so there
are well-defined directories expected to contain additional config
files (bnc#690585).
- Updated to ISC dhcp-4.2.2 release, providing two security fixes
(CVE-2011-2748,CVE-2011-2749,[ISC-Bugs #24960],bnc#712653), that
allowed remote attackers to cause a denial of service (a daemon
exit) via crafted BOOTP packets. Further also DNS update fix to
detect overlapping pools or misconfigured fixed-address entries,
that caused a server crash during DNS update and other fixes.
For a complete list, please see the RELNOTES file provided in
the package and also available online at http://www.isc.org/.
- Merged/adopted dhclient option-checks, send-hostname-rml, ldap
patch, xen-checksum, close-on-exec patches and removed obsolete
in6_pktinfo-prototype and relay-no-ip-on-interface patches.
- Moved server pid files into chroot directory even chroot is
not used and create a link in /var/run, so it can write one
when started as user without chroot and avoid stop problems
when the chroot sysconfig setting changed (bnc#712438).
- Disabled log-info level messages in dhclient(6) quiet mode to
avoid excessive logging of non-critical messages (bnc#711420).
- Fixed dhclient-script to not remove alias IP when it didn't
changed to not wipe out iptables connmark when renewing the
lease (bnc#700771). Thanks to James Carter for the patch.
- Fixed DDNS-howto.txt reference in the config file; it has been
moved to the dhcp-doc package (bnc#697279).
- Removed GPL licensed files (bind-*/contrib/dbus) from bind.tgz
to ensure, they're not used to build non-GPL dhcp (bnc#714004).
- Changed to apply strict-aliasing/RELRO for >= 12.x only
- Correct previous change.
- THis is a long running network daemon, link with
full RELRO security enhancements.
- remove -fno-strict-aliasing from CFLAGS, no longer needed.
- Import redhat's patch to open all needed FDs with O_CLOEXEC
so they dont leak.
- Removed obsolete sles8 compatibility dependencies, fixed
to avoid non-functional sles_version conditionals.
- Fixed to not introduce separate dhcp-doc package on sles,
use versioned provides/obsoletes, improved conditionals.
- Fixed dhclient-script typo causing ISC DHCPv6 client to execute
ifup pre-down scripts also while renew, when the ipv6 address
did not changed (bnc#690859).
- Implemented optional ldap connect retry loop during the initial
startup of the dhcp server in cases where the ldap server is not
yet started. Set the ldap-init-retry <num> option in dhcpd.conf
to enable it (bnc#627617). Merged in the actual ldap patch.
- Cleaned up init script error reporting, no -TERM for killproc.
- Updated to ISC dhcp-4.2.1-P1 release, that provides most of the
dhclient pretty escape and string option checks. Merged to use
relaxed domain-name option check causing a regression, when the
server is misusing it to provide a domain list (compatibility to
attic clients) and does not provide it via domain-search option;
pretty escape semicolon as well (bnc#675052, CVE-2011-0997).
- Discard string options such as host and domain names containing
disallowed characters or beeing too long. This proctive patch
limits root-path to a-zA-Z0-9, #%+-_:.,@~/\[]= and a space
(bnc#675052, CVE-2011-0997).
- Updated to ISC DHCP 4.2.1 release (bnc#680298), that provides
following fixes (digest):
* Several fixes to OMAPI, cleanup of dereferenced pointers in
the omapi handle, handling of pipe failures and status code
in omapi signal handler that may cause connect failure and
100% CPU use.
* Handle some DDNS corner cases better
* Several fixes to lease input and output
* Corrected side effect of printing all data strings as hex.
* Host record references leaks causing applying config to all
innocent clients.
* Memory leak when parsing a domain name
* Fixes to configuration parsing including infinite loop.
* Fixed for unexpected abort caused by a DHCPv6 decline.
For the complete list see the RELNOTES file, that is available
also online at http://ftp.isc.org/isc/dhcp/dhcp-4.2.1-RELNOTES.
- Removed obsolete optional-value-infinite-loop, no-libcrypto
and CVE-2011-0413.bnc667655 patches.
- Merged the dhclient-send-hostname and ldap patches.
- dhclient-script: fixed typo causing that only global settings
to set hostname and default route were applied for primary
and never per interface settings (bnc#673792).
- Added dhcp-4.2.0-xen-checksum.patch by David Cantrell to handle
xen partial UDP checksums (bnc#668194).
- Applied security fix for unexpected abort caused by a DHCPv6
decline message (CVE-2011-0413, VU#686084, bnc#667655).
- Fixed dhclient.conf to request the domain-search option.
- Updated to ISC DHCP 4.2.0-P2, a security release fixing the
handling of connection requests on the failover port.
Previously a connection request from a source that wasn't
listed as a failover peer would cause the server to become
non-responsive. ([ISC-Bugs #22679] CERT: VU#159528 CVE:
CVE-2010-3616, bnc#659059).
- Enable ldap CASA support on SLE only.
- Fixed to use same/correct dhcrelay6 interface variables in the
sysconfig file and in the dhcrelay6 init script.
- Updated to ISC DHCP 4.2.0-P1 release, providing a security fix to
handle a relay forward message with an unspecified address in the
link address field. Previously such a message would cause the
server to crash. Thanks to a report from John Gibbons.
[ISC-Bugs #21992] CERT: VU#102047 CVE: CVE-2010-3611 (bnc#650902)
The 4.2.0 version is a feature release, implementing asynchronous
DDNS processing and includes "The LDAP Patch".
For a complete list of changes from any previous release, please
consult the RELNOTES file within the source distribution or on
the ISC website: http://www.isc.org/software/dhcp/420
- Fixed compilation to avoid segfaults as soon as ldap is enabled,
merged our ldap patches from 4.1.x branch.
- Fixed a dhcrelay segfault while receiving packets on interfaces
without any IPv4 address assigned (bnc#631305, reported upsteam
as [ISC-Bugs #22409]).
- Fixed a common infinite loop while parsing options with optional
parts in the value such as in slp-service-scope option (bnc#643845,
reported upsteam as [ISC-Bugs #22410]).
- Fixed init scripts to report correct LSB codes in status action,
when the config file or the binary do not exists (bnc#640336).
- Fixed syntax of a check in the rcdhcrelay[6] (bnc#648580)
- Avoid pid check error message in the rcdhcpd[6] (bnc#646875)
- Fixed server lease file path in contrib/listlease and leasestate
changed to extract contrib and examples using setup macro.
- Renamed rfc3442-classless-static-routes_raw in /etc/dhclient.conf
to rfc3442-classless-static-routes for compatibility with the
NetworkManager making use of /etc/dhclient.conf now and adopted
/sbin/dhclient-script (bnc#625770).
- Fixed ldap option number conflicting with new options (bnc#625358)
- Added a fix for an lpf bind error messages making it easier to
localize problems (bnc#617795)
- Updated to ISC DHCP 4.1.1-P1 patch release, which contains
a pair of bug fixes including one for a security related bug
(bnc#612546, CVE-2010-2156):
* A bug was fixed that could cause the DHCPv6 server to
advertise/assign a previously allocated (active) lease to a
client that has changed subnets, despite being on different
shared networks. Dynamic prefixes specifically allocated in
shared networks also now are not offered if the client has
moved. [ISC-Bugs #21152]
* Accept a client id of length 0 while hashing. Previously the
server would exit if it attempted to hash a zero length client
id, providing attackers with a simple denial of service attack.
[ISC-Bugs #21253]
- Added rc.dhcrelay6 as source in the spec file
- Fixed dhcprelay scripts to source sysconfig file correctly
- Fixed spec file typo in arping path require, enabled ldap
- Fixed a dhclient option name and new/old ip address check
- Updated to ISC DHCP 4.1.1, the current 4.x series production
release, providing DHCPv6 client/server/relay implementation.
The programs act in DHCPv6 mode, when the -6 start option is set.
We install separate init scripts with a 6 at the end to handle
them, that is /etc/init.d/dhcpd6 and dhrelay6. Further, there is
also a link to the binaries with a 6 at the end, e.g. dhclient6,
making it visible, that the installed version supports DHCPv6.
- Moved additional documentation to a separate dhcp-doc package.
- Changed to provide config files and scripts as source files
instead of patches to the ISC scripts.
- Adopted spec file and config/scripts, merged in all patches.
- Implemented RFC 3442 classless static routes support in the
dhclient-script (bnc#555870).
- Updated to ISC DHCP 3.1-ESV, an extended support version release
which includes a small number of bug fixes (bnc#592178) over the
3.1.3 version:
* Modified the handling of a connection to avoid releasing the
omapi io object for the connection while it is still in use.
One symptom from this error was a segfault when a failover
secondary attempted to connect to the failover primary if
their clocks were not synchronized.
* Fix test in dhcp_interface_signal_handler to check that the
inner handler has a signal_handler before calling it.
* When using 'ignore client-updates;', the FQDN returned to the
client is no longer truncated to one octet.
* Clean up some compiler warnings - ticket 19054.
- Fixed vlan interface check in dhcpd-restart-hook if-up.d script
(bnc#599702)
- Touch dhclient.leases in post-install script instead to provide
an empty file, versioned provides/obsoletes (rpmlint warnings).
- Fixed dhclient-script to call ifup -o dhcp and signal "complete"
to ifup when all configuration is done (bnc#585380,bnc#518219).
- Enable parallel building
- Use large PIE model on all SPARC flavors
- Fixed dhclient-script to use correct sysconfig run dir path
to not to break the defaultroute/hostname setup (bnc#555095).
- Don't request any specific lease-time by default (bnc#516459).
- Fixed dhclient-script to forward new_domain_search as DNSSEARCH
to netconfig.
- Updated to dhcp-3.1.3 maintenance release fixing several issues
(a digest, see RELNOTES for the complete list):
* Remove infinite loop in token_print_indent_concat().
* A parser bug was fixed that segfaulted if site-option-space
was tried to be used interchangeably with vendor-option-space.
* Two uninitialized stack structures are now memset to zero,
thanks to patch from David Cantrell at Red Hat.
* Memory leak in the load_balance_mine() function is fixed. This
would leak ~20-30 octets per DHCPDISCOVER packet while failover
was in use and in normal state.
* Fixed setting hostname in Linux hosts that require hostname
argument to be double-quoted. Also allow server-provided
hostname to override hostnames 'localhost' and '(none)'.
* Added client support for setting interface MTU and metric,
thanks to Roy "UberLord" Marples <roy(a)marples.name>.
* Fixed failover reconnection retry code to continue to retry to
reconnect rather than restarting the listener.
* Fixed a bug where an OMAPI socket disconnection message would
not result in scheduling a failover reconnection, if the link
had not negotiated a failover connect yet (e.g.: connection
refused, asynch socket connect() timeouts).
* Versions 3.0.x syntax with multiple name->code option
definitions is now supported. Note that, similarly to 3.0.x,
for by-code lookups only the last option definition is used.
* Fixed a fenceposting bug when a client had two host records
configured, one using 'uid' and the other using 'hardware
ethernet'. CVE-2009-1892
- Updated to dhcp-3.1.3-ldap-patch-mt-01 including previous fixes.
- Merged dhclient script, removed obsolete CVE-2009-1892 fix.
- Replaced mt-02 ldap patch from old git repository with equivalent
one (dhcp-3.1.2p1-ldap-patch-mt-02) from a new repository with
fixed patch history (http://www.suse.de/~mt/git/dhcp-ldap.git/)
- Added dhcpd-restart-hook if-up.d script that restarts dhcp server
while network restart when a virtual interfaces as bridge, bond
or vlan goes up again (bnc#517810).
- Applied fix for a dhcp client id DoS (CVE-2009-1892, bnc#519413).
- Updated to dhcp-3.1.2p1 maintenance release fixing following
issues:
* A stack overflow vulnerability was fixed in dhclient that could
allow remote attackers to execute arbitrary commands as root on
the system, or simply terminate the client, by providing an
over-long subnet-mask option.
* A double-dereference in dhclient transmission of DHCPDECLINEs
was repaired.
* Fix handling of -A and -a flags in dhcrelay; it was failing
to expand packet size as needed to add relay agent options.
* Corrected list of failover state values in dhcpd man page.
* Fixed a bug that caused some request types to be logged
incorrectly.
* Fixed a coredump when adding a class via OMAPI.
* Clients that sent a parameter request list containing the
routers option before the subnet mask option were receiving
only the latter. Fixed.
* The server wasn't always sending the FQDN option when it should.
* A partner-down failover server no longer emits 'peer holds all
free leases' if it is able to newly-allocate one of the peer's
leases.
* A cosmetic bug in DHCPDECLINE processing was fixed which caused
all successful DHCPDECLINEs to be logged as "not found" rather
than "abandoned".
* Some failover debugging #defines have been better defined and
some high frequency messages moved to a deeper debugging symbol.
* The CLTT parameter in failover is now only updated by client
activity, and not by failover binding updates.
* Failover BNDUPD messages are now discarded if they conflict with
an update that has been trasnmitted, but not acknowledged.
* A bug cleaning up unknown-xxx temporary option definitions was
fixed.
- Removed obsolete dhclient-no-dereference-twice patch
- Improved dhclient-script to apply global dhcp settings, when
there is no interface config (bnc#480922).
- Enabled casa support in dhcp-ldap for >= sles 10 and => 11.1.
- Updated dhcp-3.1.2p1-ldap-patch-mt.11.2-02 merging all patches
flying around -- see http://www.suse.de/~mt/git/dhcp-ldap.git
and the git changelog at the begin of the patch.
==== evolution ====
Version update (3.12.8 -> 3.12.9)
- Update to version 3.12.9:
+ Offer only enabled accounts as meeting organizers.
+ Odd cross line when drawing an ECalendar with multiple
columns
+ mail_regen_list: Fix a memory leak.
+ Use EClientCache to open calendars in plugins.
+ [Alarm-notify] Do not show "Not supported" error on an alarm
dismiss.
+ Automatic Contacts can duplicate recipients in the set book.
+ EWebView - Increase minimum zoom level for zoom out.
+ Calendar events/tasks/memos not removed from UI on the source
removal.
+ Bugs fixed: bgo#739708, bgo#700778, bgo#736947, bgo#736950
bgo#740197, bgo#740577, bgo#734646, bgo#740244, bgo#734530
bgo#524365, bgo#706993.
+ Updated translations.
- Add post-release patches from upstream:
+ evolution-no-DTEND-set.patch: Fix calendar issues when DTEND
is not set
+ evolution-protected-login-PIN.patch: Prompts for login PIN
with CKF_PROTECTED_AUTHENTICATION_PATH (bgo#741059)
+ evolution-crash-sending-simultaneous-emails.patch: [SMTP] Fix
crash when sending two messages at once (bgo#740297)
+ evolution-wrong-message-preview.patch: Message preview shows
a wrong message (bgo#724039).
==== evolution-data-server ====
Version update (3.12.8 -> 3.12.9)
Subpackages: evolution-data-server-devel libcamel-1_2-49 libebackend-1_2-7 libebook-1_2-14 libebook-contacts-1_2-0 libecal-1_2-16 libedata-book-1_2-20 libedata-cal-1_2-23 libedataserver-1_2-18 typelib-1_0-EBook-1_2 typelib-1_0-EBookContacts-1_2 typelib-1_0-EDataServer-1_2
- Update to version 3.12.9:
+ ECalBackendFile: Stops refresh thread too late
+ ECalComponent: Recurrence ID not rescan properly
+ Limit SQLite busy-wait for a lock
+ IMAPx: Speed-up folder cache removal on folder sync
+ IMAPx: Enhance and make work namespace override options
+ IMAPx: Runtime warning on inactivity timeout with IDLE enabled
+ SQLite VFS: Track pending sync requests
+ Bugs fixed: bgo#739904, bgo#678398, bgo#739610, bgo#736011,
bgo#736947, bgo#732717, bgo#733518, bgo#732018, bgo#740627,
bgo#701138, bgo#740585, bgo#740843.
+ Updated translations.
- Add post-release fix from upstream:
+ evolution-data-server-fix-use-after-free.patch: Fix errors
resulting from use-after-free (bgo#695754, bgo#741434).
==== evolution-ews ====
Version update (3.12.8 -> 3.12.9)
Subpackages: evolution-ews-lang libeews-1_2-0 libewsutils0
- Update to version 3.12.9:
+ Set max-width-chars to wrapped GtkLabel-s.
+ Bugs fixed: bgo#738945, bgo#738093, bgo#734747, bgo#740772.
- Add post-release fix from upstream:
+ evolution-ews-reuse-from-EmailSession.patch: Reuse existing
ESourceRegistry from EMailSession, if possible (bgo#695754).
==== gnome-online-miners ====
Version update (3.14.0 -> 3.14.1)
- Update to version 3.14.1:
+ Wrong author shown for Google albums (bgo#740423).
+ facebook: Don't use the time as a fallback for the title
(bgo#740869).
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi grub2-x86_64-xen
- Require efibootmgr also on aarch64
- grub2-snapper-plugin.sh: fix use of printf without format string; fix
quoting
- grub2-arm64-Reduce-timer-event-frequency-by-10.patch: fix periodic timer
on arm64
==== gstreamer-plugins-bad ====
Subpackages: libgstbadbase-1_0-0 libgstbadvideo-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstgl-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgsturidownloader-1_0-0
- Disable BuildRequires on libchromaprint, fluidsynth and openAL on
SLE12.
==== gtk3-data ====
Version update (3.14.5 -> 3.14.6)
Subpackages: gtk3-devel gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0
- Update to version 3.14.6:
+ Redraw problems with cairo 1.14.
+ Avoid excessive redraws due to CSD shadows.
+ Bugs fixed: bgo#364566, bgo#461249, bgo#721939, bgo#722781,
bgo#730232, bgo#739453, bgo#739885, bgo#739977, bgo#740287,
bgo#740374, bgo#740612, bgo#740613, bgo#740642, bgo#740742,
bgo#740770, bgo#740896, bgo#741249, bgo#741250, bgo#741251,
bgo#741252, bgo#741254, bgo#741314.
+ Updated translations.
- Add gtk3-Dont-crash-if-invisible-files-are-deleted.patch: Do not
crash application using gtk file chooser when deleting file via
an other app (patch from upstream git).
- Disable wayland on SLE12.
==== hicolor-icon-theme ====
Version update (0.13 -> 0.14)
- Update to version 0.14:
+ Use automake to generate VPATH-compatible makefiles.
==== ispell ====
Subpackages: ispell-american ispell-british
- fix bashism in SuSEconfig.ispell (update) script
==== kernel-firmware ====
- Require coreutils for %pre scripts. In some instances (mainly
kiwi builds) this package can end up being installed before
coreutils, having some errors spit in the %pre phase.
==== kopete ====
- remove libmsn-devel from BuildRequires and therefore MSN
support, service officially shut down October 2014 and MSFT
blacklisted known clients, as of today, the service remain
up but requires playing cat & mouse games with application
UUIDs that has not been banned yet.
==== libcamgm100 ====
Subpackages: perl-camgm
- libcamgm-openssl1.0.1i.patch: adjust the testsuite to match
the current openssl version (it reports less errors).
==== libcryptui-data ====
Subpackages: libcryptui0 seahorse-daemon
- Inject version 2.1 as acceptable gpg version into configure:
GPG 2.1 is verified to be compatible and supported.
==== libmnl0 ====
- Remove extra directory pkg, one level is enough.
==== libLLVM ====
Subpackages: libLLVM-32bit
- Conditionalize libcxx{abi} build on build_libcxx variable
- Turn libc++.so into an ldscript so it links to libc++abi
automatically.
==== mercurial ====
Subpackages: mercurial-lang
- properly replaced previously dropped mercurial-2.8-ssl.diff with cacerts.rc
==== libmutter0 ====
Subpackages: mutter mutter-data typelib-1_0-Meta-3_0
- Disable wayland on SLE12.
- Remove BuildRequires pkgconfig(gbm), not needed unless building
native backend.
- Add post-release fixes from upstream:
+ mutter-black-screen-during-login.patch: Disable ugly black
screen during login (bgo#740377).
+ mutter-window-actor-unredirection-when-destroyed.patch:
window-actor: Do not request unredirection when destroyed
(bgo#740133).
+ mutter-empty-input-shapes-windows.patch: window-x11: Fix
windows that set empty input shapes.
+ mutter-left-over-queued-frames.patch: Fix problems resulting
in left-over queued frames (bgo#738686).
+ mutter-dont-overwrite-send_frame_messages_timer.patch:
MetaWindowActor: don't overwrite send_frame_messages_timer
(bgo#738686).
==== libopenssl-devel ====
Version update (1.0.1i -> 1.0.1j)
Subpackages: libopenssl1_0_0 libopenssl1_0_0-32bit openssl
- suse_version 10.1 & 10.2 x86_64 can not enable-ec_nistp_64_gcc_128
- openssl-1.0.1i-noec2m-fix.patch: only report the Elliptic Curves
we actually support (not the binary ones) (bnc#905037)
- openSUSE < 11.2 doesn't have accept4()
- openSSL 1.0.1j
* Fix SRTP Memory Leak (CVE-2014-3513)
* Session Ticket Memory Leak (CVE-2014-3567)
* Add SSL 3.0 Fallback protection (TLS_FALLBACK_SCSV)
* Build option no-ssl3 is incomplete (CVE-2014-3568)
==== polkit-default-privs ====
- added firewalld (bnc#907625) polkit actions
==== libpoppler-cpp0 ====
Subpackages: libpoppler-devel libpoppler-glib8 libpoppler47 poppler-tools
- BuildRequire libcurl so the library can operate on remote
HTTP documents.
==== libpoppler-qt4-4 ====
Subpackages: libpoppler-qt4-devel
- BuildRequire libcurl so the library can operate on remote
HTTP documents.
==== quilt ====
- Update upstream references.
- hackweek-11-11-setup-alternative-implementation.patch: Delete,
replaced with new implementation.
- hackweek-11-11-setup-trace-call-first.patch: inspect-wrapper:
Trace calls earlier.
- hackweek-11-12-setup-alternative-implementation-v2.patch: New
implementation of "setup --fast" option.
- quilt.spec: Only use Recommends for SUSE targets, as it was not
supported upstream until very recently so it breaks the build
on Fedora_18, RHEL_6 and CentOS_6.
- quilt-check-modified-series.patch: Add upstream reference.
- quilt-check-modified-series-rearm.patch: pop: Rearm consistency
check if needed.
- hackweek-11-01-comment-update.patch: inspect: Comment update.
- hackweek-11-02-cleanups.patch: setup/inspect: Cleanups.
- hackweek-11-03-inspect-list-all-options.patch: inspect: List all
options in usage text.
- hackweek-11-04-pass-through.patch: inspect: Pass through the
wrappers when appropriate.
- hackweek-11-05-no-explicit-rm.patch: inspect: Don't explicitly
delete the temporary data file.
- hackweek-11-06-exclude-from-md5sums.patch: inspect: Exclude more
files from md5sums.
- hackweek-11-07-normalize-path.patch: setup: Introduce function
normalize_path.
- hackweek-11-08-inspect-split-wrapper-script.patch: inspect: Split
the patch/tar/unzip wrapper to a separate script.
- hackweek-11-09-inspect-temporary-data-file.patch:
inspect-wrapper: Minor code optimization.
- hackweek-11-10-setup-fix-path-to-extra-patches.patch: setup: Fix
path to extra patches in series file.
- hackweek-11-11-setup-alternative-implementation.patch: setup: Add
- -fast option.
==== nautilus-extension-seahorse ====
- Inject version 2.1 as acceptable gpg version into configure:
GPG 2.1 is verified to be compatible and supported.
==== seahorse-sharing ====
Subpackages: seahorse-sharing-lang
- Inject version 2.1 as acceptable gpg version into configure:
GPG 2.1 is verified to be compatible and supported.
==== libnfsidmap-sss ====
Subpackages: libsss_idmap0 libsss_nss_idmap0 libsss_sudo sssd sssd-32bit sssd-krb5-common sssd-ldap
- fix bashism in postun script
==== vinagre ====
Version update (3.14.2 -> 3.14.3)
Subpackages: vinagre-lang
- Update to version 3.14.3:
+ Fix freeing of RDP events during dispose.
+ Updated translations.
==== virt-install ====
Subpackages: virt-manager virt-manager-common
- bnc#907958 - virt-manager --debug with no screen SIGABRT
virtman-check-for-valid-display.patch
- bnc#907324 - libvirt: unsupported configuration: native I/O needs
either no disk cache or directsync cache mode, QEMU will fallback
to aio=threads
virtinst-set-cache-mode-unsafe-for-install.patch updated
- bnc#907319 - virt-manager: Unable to complete install: 'local
variable 'distro_distro' referenced before assignment
virtinst-detect-suse-distros.patch updated
==== glade-catalog-vte ====
Version update (0.38.2 -> 0.38.3)
Subpackages: gnome-pty-helper libvte-2_91-0 typelib-1_0-Vte-2.91 vte-devel
- Update to version 0.38.3:
+ widget:
- Fix installing the CJK ambiguous width property.
- Do not leave behind a zombie child when closing a terminal.
- Reap only when a child is present.
==== xalan-j2 ====
- Revert last commit, causes cycles.
- Replace java-1_5_0-gcj-compat-devel with javapackages-tools
==== xdm ====
- fix bashisms in /etc/X11/xdm/* scripts
- unset TMPDIR before executing the final user scripts/shell
(boo#907041)
- start a login shell when using lksh/mksh
==== xf86-input-evdev ====
Version update (2.9.0 -> 2.9.1)
- Update to version 2.9.1:
This release fixes a couple of bugs with absolute devices that
have scroll wheels (such as the qemu tablets devices) and avoids
the "unable to find touch point 0" warnings previously caused by
a touch starting before the device was enabled.
==== xf86-video-intel ====
- U_uxa-Stub-out-intel_sync_init-fini-when-not-compiled-.patch
Fix the missing intel_sync_close() w/o DRI3 (bnc#908323)
- U_Disable-DRI3-by-default.patch
Disable DRI3 (bnc#908323)
- U_sna-gen8-BLT-broken-when-address-has-bit-4-set.patch
Fix SNA BLT on BDW/CHV (bnc#908326)
==== xkbcomp ====
Version update (1.2.4 -> 1.3.0)
- Update to version 1.3.0:
+ Support for multiple keysyms per level (#25025).
+ Misc fixes and changes all over the place.
+ UNIXOS2 support was dropped.
==== xterm ====
- Split the desktop launcher from the binaries: there are users
that want to clean up their desktop launchers and also remove
xterm launchers (but xterm is a deep dependency of xinit, used
for fallback situations). The package 'xterm' is the 'app
launcher', which depends on xterm-bin. Installing xterm does, as
it did in the past, pull a FULL package installation. But the
user will be free to remove xterm and only keep xterm-bin (once
the dependencies in xinit are corrected as well) (boo#906598).
==== yast2-installation ====
Version update (3.1.123 -> 3.1.124)
- drop check for Gtk since Gtk UI of YaST is no longer supported
(bsc#908607)
- 3.1.124
Removed packages:
bundle-lang-common-sv
libupnp6
libmediastreamer_base3
> libmediastreamer_voip3
libortp9
Added packages:
libvdpau_r300
perl-Net-LibIDN
xterm-bin
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
Sehr geehrter Kunde,
Vielen Dank für die Bestellung.
Bitte überprüfen Sie die Bestellmenge, die Bestellsumme und die
Lieferadresse.
Die Rechnung finden Sie im Anhang.
Bei Fragen stehen wir Ihnen gern zu Verfügung.
Mit freundlichen Grüßen
Geschäftsführer. Dirk Schirakowski ; Schütze Uwe
Vertreter Schütze Uwe ; Schirakowski Dirk
Umsatzsteuer-Identifikationsnummer gemäß § 27a
Umsatzsteuergesetz: DE189964006 Stnr.: 2636530279
Registernummer: KS HR A8707
Inhaltlich Verantwortlicher gemäß § 6 MDStV: Dirk Schirakowski
1
0
18 Dec '14
Changed packages:
==== a2ps ====
Version update (4.13 -> 4.14)
- Removed pkgconfig entries from Requires: section, per OBS
request 243897
- Do not buildrequire xorg-x11-devel, never used.
- Fixed license in .spec file to reflect upstream changing to GPLv3
(sr#248177)
- Updated to 4.14
* No UTF-8 Support yet, Basically a maintenance release.
* GNU a2ps is now licensed under GPLv3 or later
* Can now be built with Modern GNU Autotools, and gcc>=3.4
* Numerous minor bugfixes, including:
* input buffer overflow
* IA64, PPC, and AMD64 fixes
* Several security issues (CVE-2004-1377)
* Addition of a number of new stylesheets
* Translations for Japanese, Dutch, and French added/updated
- Patches rebased for 4.14 sources
* Added:
a2ps-4.14-acroread.patch
a2ps-4.14-linker.patch
a2ps-4.14-ogonkify.patch
a2ps-4.14-tempfile.patch
a2ps-4.14.diff
* Deleted:
a2ps-4.13-acroread.patch
a2ps-4.13-linker.patch
a2ps-4.13-ogonkify.patch
a2ps-4.13-tempfile.patch
a2ps-4.13.dif
a2ps-4.13-gv-arguments.patch
a2ps-4.13-nb.patch
a2ps-4.13-space.patch
* Modified:
CVE-2014-0466.diff
- Deleted a2ps-4.13.tar.gz, replaced with a2ps-4.14.tar.gz
- a2ps.spec cleanup, and updating to work with new sources.
==== alsa ====
Subpackages: alsa-devel libasound2 libasound2-32bit
- Backport upstream fixes:
A couple of USB-audio config addition/fix, dmix PCM stop fix,
a memory leak fix, DSD format endianess fix, PCM timestamp fixes, etc.
0050-USB-Audio-Add-Scarlett-2i4-USB-to-S-PDIF-blacklist.patch
0051-snd_user_file-fix-memory-leak.patch
0052-pcm-dmix-Don-t-ignore-SND_TIMER_EVENT_MSTOP.patch
0053-snd_dlsym-only-do-versioning-checks-if-built-with-ve.patch
0054-dlmisc-Remove-unused-label.patch
0055-USB-audio-Add-five-more-cards-to-IEC958-blacklist.patch
0056-pcm-Fix-DSD-sample-format-endianess-and-add-big-endi.patch
0057-mixer-Fix-inclusion-of-config.h.patch
0058-mixer-Fix-unused-parameter-warnings.patch
0059-ucm-Fix-uninitialized-err-in-snd_use_case_set.patch
0060-pcm-Fix-assorted-tstamp_type-bugs-omissions.patch
==== alsa-utils ====
- Backport upstream fixes: rubustify dB value handling in amixer
0014-amixer-Make-dB-case-insensitive-in-set-commands.patch
0015-amixer-Parse-the-value-more-strictly.patch
==== apache-commons-codec ====
Version update (1.8 -> 1.10)
- Update to version 1.10
New features:
+ Add Daitch-Mokotoff Soundex
Issue: CODEC-192.
+ QuotedPrintableCodec does not support soft line break per the
'quoted-printable' example on Wikipedia
Issue: CODEC-121.
+ Make possible to provide padding byte to BaseNCodec in constructor
Issue: CODEC-181.
Fixed Bugs:
+ Added clarification to Javadoc of Base64 concerning the use of the
urlSafe parameter
Issue: CODEC-185.
+ Added clarification to the Javadoc of Base[32|64]OutputStream that it
is mandatory to call close()
Issue: CODEC-191.
+ Add support for HMAC Message Authentication Code (MAC) digests
Issue: CODEC-188.
+ Beider Morse Phonetic Matching producing incorrect tokens
Issue: CODEC-187.
+ NullPointerException in DoubleMetaPhone.isDoubleMetaphoneEqual when
using empty strings
Issue: CODEC-184.
+ Fix Javadoc 1.8.0 errors
Issue: CODEC-180.
+ Fix Java 8 build Javadoc errors
Issue: CODEC-189.
Changes:
+ Deprecate Charsets Charset constants in favor of Java 7's
java.nio.charset.StandardCharsets
Issue: CODEC-178.
+ Update from commons-parent 34 to 35
Issue: CODEC-190.
- Use javapackages-tools instead of java-devel
- Remove gpg_verify usage; let obs handle it
==== apache2 ====
Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils
- fixed start at boot for ssl and encrypted key [bnc#792309]
==== arpwatch ====
- Removed executable permission bits from arpwatch@.service file.
==== b43-fwcutter ====
- fix bashism in install_bcm43xx_firmware script
==== binutils ====
Version update (2.24 -> 2.24.90)
Subpackages: binutils-devel
- Update to current 2.25 pre-release branch, at 127a4644.
- binutils-fix-gold-aarch64.diff: fixing build temporarily broken
on brach.
- Remove obsolete patches: binutils-2.24-branch.diff.gz,
pie-m68k.patch, binutils-2.24-auto-plugin.diff, ld-testsuite.patch,
binutils-2.24-bso16746.diff .
- Enable Adapteva Epiphany target
==== brltty ====
Subpackages: brltty-driver-at-spi2 brltty-driver-brlapi brltty-driver-espeak brltty-driver-speech-dispatcher brltty-driver-xwindow libbrlapi0_6 python3-brlapi xbrlapi
- fix bashisms in brltty-install script
- add patches:
* brltty-5.1-fix-bashisms.patch
==== bundle-lang-common-cs ====
Subpackages: bundle-lang-common-da bundle-lang-common-de bundle-lang-common-el bundle-lang-common-en bundle-lang-common-es bundle-lang-common-fr bundle-lang-common-hu bundle-lang-common-it bundle-lang-common-ja bundle-lang-common-pl bundle-lang-common-pt bundle-lang-common-ru bundle-lang-common-zh
- Update package list.
==== bundle-lang-gnome-cs ====
Subpackages: bundle-lang-gnome-da bundle-lang-gnome-de bundle-lang-gnome-el bundle-lang-gnome-en bundle-lang-gnome-es bundle-lang-gnome-fr bundle-lang-gnome-hu bundle-lang-gnome-it bundle-lang-gnome-ja bundle-lang-gnome-pl bundle-lang-gnome-pt bundle-lang-gnome-ru bundle-lang-gnome-zh
- Update package list.
- update package list
==== bundle-lang-kde-cs ====
Subpackages: bundle-lang-kde-da bundle-lang-kde-de bundle-lang-kde-el bundle-lang-kde-en bundle-lang-kde-es bundle-lang-kde-fr bundle-lang-kde-hu bundle-lang-kde-it bundle-lang-kde-ja bundle-lang-kde-pl bundle-lang-kde-pt bundle-lang-kde-ru bundle-lang-kde-zh
- Update package list.
- update package list
==== bzr ====
Subpackages: bzr-lang
- Remove timestamp from docs to reduce buildcompare noise:
bzr-doc-timestamp.patch
==== capi4hylafax ====
- Use source URL, use rpm macros.
- Add capi4hylafax-01.03.00-fix-bashisms.patch to fix bashisms in
setupconffile (faxaddmodem.capi_dia) script
==== choqok ====
- Correct usage of fdupes macro
==== libcloog-isl4 ====
- Add cloog-isl-0.18.1-isl14-1.patch, cloog-isl-0.18.1-isl14-2.patch,
cloog-isl-0.18.1-isl14-3.patch and cloog-isl-0.18.1-isl14-4.patch
to make cloog-isl compile with ISL 0.14.
==== cpio ====
- fix an OOB write with cpio -i (bnc#907456) (CVE-2014-9112)
* added 0001-Fix-memory-overrun-on-reading-improperly-created-lin.patch
==== cyradm ====
Subpackages: cyrus-imapd perl-Cyrus-IMAP perl-Cyrus-SIEVE-managesieve
- Changed cyrus-imapd-rc-2.tar.gz/cron.daily.cyrus to use 'su -s
/bin/bash - cyrus', as the default shell is now /sbin/nologin
[boo#908014]
- Changed cyrus-imapd-rc-2.tar.gz/rc.cyrus to set
/var/run/cyrus-master.pid as the PID file (was: /var/run/cyrus.pid)
[boo#908006]
==== cyrus-sasl ====
Subpackages: cyrus-sasl-crammd5 cyrus-sasl-devel cyrus-sasl-digestmd5 cyrus-sasl-gssapi cyrus-sasl-plain libsasl2-3 libsasl2-3-32bit
- Make sure /usr/sbin/rcsaslauthd exists
==== ding ====
Version update (1.7 -> 1.8)
- Update to new upstream release 1.8
* New version of German-English translation file,
now over 326,000 entries (up from 270,000).
* Minor bug fixes.
- Split the dictionary file so as to not mandate installation of
the Tk frontend.
- Downgrade ispell dictionary requirements into recommendations;
ding works without them, too.
- Add missing ispell Recommends (just having the dictionaries does
not help, the program is needed).
- Also recommend agrep, which the Tk frontend prefers for full
functionality (approximate matching).
- Suggest fortune, because ding even supports searching that.
- Minor cleanups: use rpm macros in place of rpm shell vars.
==== enblend-enfuse ====
- no more upstream tarball signatures, no need for gpg offline
==== fdupes ====
- sort the output of fdupes by filename to make it deterministic
for parallel builds
* 0011-add-an-option-to-sort-duplicate-files-by-name.patch
==== fetchmail ====
- Removed executable permission bits from fetchmail.service file.
- Update the project url in the spec file after Berlios shutdown.
- Remove dependency on gpg-offline as signature checking is implemented in the
source validator.
==== fonts-config ====
Version update (20140604 -> 20141207)
- updated to 20141207
added --info option (will be required by yast fonts)
==== freetype2-devel ====
Version update (2.5.3 -> 2.5.4)
Subpackages: libfreetype6 libfreetype6-32bit
- Update to version 2.5.4
* IMPORTANT BUG FIXES
- A variant of vulnerability CVE-2014-2240 was identified
(cf. http://savannah.nongnu.org/bugs/?43661) and fixed
in the new CFF driver. All users should upgrade.
- The new auto-hinter code using HarfBuzz crashed for some
invalid fonts.
- Many fixes to better protect against malformed input.
* IMPORTANT CHANGES
- Full auto-hinter support of the Devanagari script.
- Experimental auto-hinter support of the Telugu script.
- CFF stem darkening behaviour can now be controlled at
build time using the eight macros
CFF_CONFIG_OPTION_DARKENING_PARAMETER_{X,Y}{1,2,3,4} .
- Some fields in the `FT_Bitmap' structure have been changed
from signed to unsigned type, which better reflects
the actual usage. It is also an additional means to
protect against malformed input. This change doesn't break
the ABI; however, it might cause compiler warnings.
* MISCELLANEOUS
- Improvements to the auto-hinter's algorithm to recognize
stems and local extrema.
- Function `FT_Get_SubGlyph_Info' always returned an error
even in case of success.
- Version 2.5.1 introduced major bugs in the cjk part of
the auto-hinter, which are now fixed.
- The `FT_Sfnt_Tag' enumeration values have been changed to
uppercase, e.g. `FT_SFNT_HEAD'. The lowercase variants
are deprecated. This is for orthogonality with all other
enumeration (and enumeration-like) values in FreeType.
- `cmake' now supports builds of FreeType as an OS X framework
and for iOS.
- Improved project files for vc2010,
introducing a property file
- The documentation generator for the API reference has been
updated to produce better HTML code (with proper CSS).
At the same time, the documentation got a better structure.
- The FT_LOAD_BITMAP_CROP flag is obsolete; it is not used
by any driver.
- The TrueType DELTAP[123] bytecode instructions now work in
subpixel hinting mode as described in the ClearType
whitepaper (i.e., for touched points in the
non-subpixel direction).
- Many small improvements to the internal arithmetic routines.
- Rebase don-t-mark-libpng-as-required-library.patch,
bugzilla-308961-cmex-workaround.patch, freetype2-subpixel.patch,
freetype2-bitmap-foundry.patch and overflow.patch
- Add freetype2-2.5.3-fix-pcf.patch from upstream to resolve
http://savannah.nongnu.org/bugs/?43774, "Freetype 2.5.4 does not
load ungzipped PCF fonts"
==== ft2demos ====
Version update (2.5.3 -> 2.5.4)
- Update to version 2.5.4
* IMPORTANT BUG FIXES
- A variant of vulnerability CVE-2014-2240 was identified
(cf. http://savannah.nongnu.org/bugs/?43661) and fixed
in the new CFF driver. All users should upgrade.
- The new auto-hinter code using HarfBuzz crashed for some
invalid fonts.
- Many fixes to better protect against malformed input.
* IMPORTANT CHANGES
- Full auto-hinter support of the Devanagari script.
- Experimental auto-hinter support of the Telugu script.
- CFF stem darkening behaviour can now be controlled at
build time using the eight macros
CFF_CONFIG_OPTION_DARKENING_PARAMETER_{X,Y}{1,2,3,4} .
- Some fields in the `FT_Bitmap' structure have been changed
from signed to unsigned type, which better reflects
the actual usage. It is also an additional means to
protect against malformed input. This change doesn't break
the ABI; however, it might cause compiler warnings.
* MISCELLANEOUS
- Improvements to the auto-hinter's algorithm to recognize
stems and local extrema.
- Function `FT_Get_SubGlyph_Info' always returned an error
even in case of success.
- Version 2.5.1 introduced major bugs in the cjk part of
the auto-hinter, which are now fixed.
- The `FT_Sfnt_Tag' enumeration values have been changed to
uppercase, e.g. `FT_SFNT_HEAD'. The lowercase variants
are deprecated. This is for orthogonality with all other
enumeration (and enumeration-like) values in FreeType.
- `cmake' now supports builds of FreeType as an OS X framework
and for iOS.
- Improved project files for vc2010,
introducing a property file
- The documentation generator for the API reference has been
updated to produce better HTML code (with proper CSS).
At the same time, the documentation got a better structure.
- The FT_LOAD_BITMAP_CROP flag is obsolete; it is not used
by any driver.
- The TrueType DELTAP[123] bytecode instructions now work in
subpixel hinting mode as described in the ClearType
whitepaper (i.e., for touched points in the
non-subpixel direction).
- Many small improvements to the internal arithmetic routines.
- Rebase don-t-mark-libpng-as-required-library.patch,
bugzilla-308961-cmex-workaround.patch, freetype2-subpixel.patch,
freetype2-bitmap-foundry.patch and overflow.patch
- Add freetype2-2.5.3-fix-pcf.patch from upstream to resolve
http://savannah.nongnu.org/bugs/?43774, "Freetype 2.5.4 does not
load ungzipped PCF fonts"
==== fuse ====
Subpackages: libfuse2
- include commented default fuse.conf (bnc#908292)
==== cpp48 ====
Version update (4.8.3+r212056 -> 4.8.3+r218481)
Subpackages: gcc48 gcc48-c++ gcc48-fortran gcc48-info gcc48-locale gcc48-objc libasan0 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran3 libgomp1 libitm1 libobjc4 libquadmath0 libstdc++48-devel libstdc++6 libstdc++6-32bit libstdc++6-locale libtsan0
- Update to gcc-4_8-branch head (r218481).
* Includes patches to allow building against ISL 0.14.
* Includes patches gcc48-bnc887141.patch, gcc48-ppc64le-abi-warnings.diff,
gcc48-ppc64le-abi-warnings-fix.diff and gcc48-libgfortran-CVE-2014-5044.diff.
==== geany-plugins ====
Subpackages: geany-plugins-lang
- Debugger
+ Add geany-plugins-GCond-usage.patch: Fixed bug SF#116
that made the whole application crash because of GLib (bnc#906659).
+ Add geany-plugins-gdb-7_7.patch: Fixed bug SF#112 that
made the whole application crash because of GDB (bnc#906659).
==== gedit ====
Version update (3.14.1 -> 3.14.2)
Subpackages: python3-gedit
- Update to version 3.14.2:
+ External tools plugin: fix document saving.
+ Various other bug fixes.
+ Updated translations.
==== getdata ====
Version update (0.8.5 -> 0.8.6)
Subpackages: getdata-devel getdata-doc libgetdata++3 libgetdata5
- update to 0.8.6
* BUG FIX: Computation of LINCOMs with complex valued input fields now
correctly happens in the complex plane. As a side effect, gd_native_type()
now also correctly reports such LINCOM fields to be complex valued.
* BUG FIX: The gd_[m]add() functions now ignore zero-length scalar strings.
Previously they would store these invalid field codes, causing problems
later.
* BUG FIX: Returning complex-valued CARRAYs as purely real now works.
Previously only the first element requested would be returned, the remaining
output buffer containing uninitialised data.
* BUG FIX: Entry members spf, bitnum, numbits, and period are now completely
ignored by gd_[m]add() when corresponding named scalars are specified.
Previously, an invalid value in these members would result in the entry
being rejected, even though the rest of GetData ignored the invalid, unsued
value.
* BUG FIX: The parsing of the \x and \u escape sequences is now correct.
* BUG FIX: A scalar field code specified for the last factor in a POLYNOM
entry is no longer ignored by gd_[m]add().
* BUG FIX: gd_[m]add() no longer rejects MPLEX fields with negative count_val.
* BUG FIX: DIVIDE fields with complex-valued divisors are now properly
computed.
* BUG FIX: Complex-valued POLYNOM and RECIP fields are now computed properly
when the library is built in ANSI C mode.
* BUG FIX: gd_alter_entry() no longer corrupts the DIRFILE when modifying
named scalars of MPLEX fields.
* BUG FIX: Writing complex-valued MPLEX fields no longer corrupts the stored
data.
* BUG FIX: gd_bof() now returns the correct number (i.e.: zero) when reporting
the beginning of field of derived fields shifted to before the start of the
dirfile. Previously, this function incorrectly returned values ranging from
zero to one less than the samples-per-frame of the requested field.
* BUG FIX: gd_flush(), gd_sync(), gd_raw_close() no longer segfault when
operating on a LINCOM with only one input field.
* BUG FIX: gd_seek() now works correctly on PHASE fields; previously, the
sign of the PHASE shift was flipped.
* BUG FIX: gd_seek() now correctly positions the virtual I/O pointer of the
INDEX field.
* BUG FIX: gd_framenum_subset() now returns the correct value when passed a
field_end which is beyond the end of field, and then is required to
extrapolate outside of the specified frame range.
* BUG FIX: gd_error_string() now produces the correct string when reporting
an out-of-range poly_ord encountered by gd_add_polynom() and similar.
* BUG FIX: gd_[m]alter_spec() no longer ignore co-efficients specified for
POLYNOM entries.
* BUG FIX: gd_alter_encoding() now deletes the internal cache of RAW filenames
of the affected fragment; previously, these old, cached filenames could lead
to I/O errors when reading and writing the re-encoded RAW data files.
* BUG FIX: Calling the Legacy API function GetFormat() on a Dirfile with MPLEX
or WINDOW fields no longer results in a segmentation fault.
* BUG FIX: Attempts to read past the EOF of a gzipped field no longer results
in an I/O error, but successfully returns no data.
* BUG FIX: The internal recursion counter wasn't being properly reset on
certain error conditions, leading to spurious GD_E_RECURSE_LEVEL errors
being returned from valid calls.
==== gitg ====
Version update (3.14.0 -> 3.14.1)
Subpackages: gitg-lang libgitg-1_0-0 libgitg-ext-1_0-0
- Update to version 3.14.1:
+ Fix building with vala 0.27.
+ Fix warning when unbinding property.
+ Change emblem-system-symbolic to open-menu-symbolic.
+ Add gdesktop-enums-3.0.vapi to EXTRA_DIST.
+ Updated translations.
==== gperf ====
- Remove ancient specfile tags, and provide homepage URL.
==== gpg2 ====
Version update (2.0.26 -> 2.1.0)
- update build requirement versions that changed with 2.1.0
- fix buffer overflow in OID to string conversion function
[boo#907198], adding
gnupg-2.1.0-boo-907198-openpgp_oid_to_str-buffer-overflow.patch
- obsolete dirmngr (shipped with gpg since 2.1.0)
- spec cleanup after previous update
- get rid of "THIS IS A DEVELOPMENT VERSION" warning
http://lists.gnupg.org/pipermail/gnupg-devel/2014-November/029065.html
* added gnupg-remove_development_version_warning.patch
- upgrade to 2.1.0 (modern)
- The file "secring.gpg" is not anymore used to store the secret
keys. Merging of secret keys is now supported.
- All support for PGP-2 keys has been removed for security reasons.
- The standard key generation interface is now much leaner. This
will help a new user to quickly generate a suitable key.
- Support for Elliptic Curve Cryptography (ECC) is now available.
- Commands to create and sign keys from the command line without any
extra prompts are now available.
- The Pinentry may now show the new passphrase entry and the
passphrase confirmation entry in one dialog.
- There is no more need to manually start the gpg-agent. It is now
started by any part of GnuPG as needed.
- Problems with importing keys with the same long key id have been
addressed.
- The Dirmngr is now part of GnuPG proper and also takes care of
accessing keyserver.
- Keyserver pools are now handled in a smarter way.
- A new format for locally storing the public keys is now used.
This considerable speeds up operations on large keyrings.
- Revocation certificates are now created by default.
- Card support has been updated, new readers and token types are
supported.
- The format of the key listing has been changed to better identify
the properties of a key.
- The gpg-agent may now be used on Windows as a Pageant replacement
for Putty in the same way it is used for years on Unix as
ssh-agent replacement.
- Creation of X.509 certificates has been improved. It is now also
possible to export them directly in PKCS#8 and PEM format for use
on TLS servers.
- dropped patches:
* gnupg-2.0.20-automake113.diff
* gnupg-2.0.18-tmpdir.diff (socket is created in homedir now)
- refresh most of the remaining patches
- added new BuildRequires: gnutls-devel, pkg-config, npth-devel
==== hdparm ====
- Use preferred download URL; replace only rpm shell vars with
macros to go in line with the rest.
==== java-1_8_0-openjdk ====
Subpackages: java-1_8_0-openjdk-headless
- Require version of tzdata-java compatible with this version
of Java.
==== javapackages-tools ====
- Added patch:
* javapackages-2.0.1-java9.patch: create directories for java,
so that ant build works
- Add virtual provide jpackage-utils-java9 to be able to
distinguish the presence of java9 compatibility
==== konsole ====
- Split out the konsole binary and related files for coinstallability
with the Frameworks based version
==== libestr0 ====
Version update (0.1.9 -> 0.1.10)
- libestr 0.1.10:
+ changed some functions that don't modify their arg to take
const arg
+ bugfix: str2num did not convert hex values correctly
+ bugfix: problems with trailing incomplete hex sequence
+ bugfixes to StrFromNumber
+ some checks for potential overflows with giantic strings (>2GB)
==== libffi4 ====
Version update (4.8.3+r212056 -> 4.8.3+r218481)
Subpackages: libffi4-32bit libffi48-devel
- Update to gcc-4_8-branch head (r218481).
* Includes patches to allow building against ISL 0.14.
* Includes patches gcc48-bnc887141.patch, gcc48-ppc64le-abi-warnings.diff,
gcc48-ppc64le-abi-warnings-fix.diff and gcc48-libgfortran-CVE-2014-5044.diff.
==== gcc48-gij ====
Version update (4.8.3+r212056 -> 4.8.3+r218481)
Subpackages: gcc48-java libgcj48 libgcj48-devel libgcj48-jar libgcj_bc1
- Update to gcc-4_8-branch head (r218481).
* Includes patches to allow building against ISL 0.14.
* Includes patches gcc48-bnc887141.patch, gcc48-ppc64le-abi-warnings.diff,
gcc48-ppc64le-abi-warnings-fix.diff and gcc48-libgfortran-CVE-2014-5044.diff.
==== libkolab0 ====
- Reenable building for non-Factory openSUSE
==== libkolabxml1 ====
Version update (1.0.2 -> 1.0.3)
- Reenable building for non-Factory openSUSE
- Revert the added Requires in devel subpackage from previous change:
if someone needs bindings explicitly, they can buildrequire them
explicitly
- Version bump to 1.0.3
- Cleanup with spec-cleaner
- no-undefined disabled as php-bindings cant cope with it
==== liblogging0 ====
Version update (1.0.4 -> 1.0.5)
- liblogging 1.0.5:
+ cleanup for systemd-journal >= 209
+ bugfix: date stamp was incorrectly formatted
==== libnetfilter_conntrack3 ====
- Drop %version from subincludedir, it tends to break recompiles of
already-built trees on library updates.
==== libnfnetlink0 ====
- Drop %version from subincludedir, it tends to break recompiles of
already-built trees on library updates.
==== gdk-pixbuf-loader-rsvg ====
Version update (2.40.5 -> 2.40.6)
Subpackages: librsvg-2-2 librsvg-devel typelib-1_0-Rsvg-2_0
- Update to version 2.40.6:
+ MinGW build fixes.
+ Fix path data number parsing.
+ Fix build with newer libtool.
==== libvirt ====
Version update (1.2.10 -> 1.2.11)
Subpackages: libvirt-client libvirt-daemon libvirt-daemon-config-network libvirt-daemon-config-nwfilter libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-uml libvirt-daemon-driver-vbox libvirt-daemon-driver-xen libvirt-daemon-qemu libvirt-daemon-xen
- Update to libvirt 1.2.11
- Implement public API for virDomainGetFSInfo
- qemu: Add define for the new throttle options
- CVE-2014-8131: Fix possible deadlock and segfault in qemuConnectGetAllDomainStats()
- CVE-2014-7823: dumpxml: security hole with migratable flag
- Drop upstream patches: 2222123-virt-aa-helper-crash.patch,
433b427-iplink-name.patch,
52691f99-qemu-mig-crash.patch,
72fecf1-lxc-resolve-symlinks.patch,
b1674ad5-CVE-2014-7823.patch,
ba9b7252-sys-net-rw.patch,
c264eea-virt-aa-helper-sandbox.patch,
e50457d-lxc-unmount-check.patch,
cgroup-all-devices.patch,
libvirt-ppc64le-support.patch
- Get /proc/sys/net/ipv[46] read-write for wicked to work in
containers. bsc#904432. ba9b7252-sys-net-rw.patch
- Fixed allowing devices for containers.
cgroup-all-devices.patch
==== libzypp ====
Version update (14.30.2 -> 14.32.0)
- suppress informal license (no need to accept) upon update (bnc#908976)
- version 14.32.0 (30)
- Adapt to gpg-2.1 (bnc#908135)
- rpm: do not obsolete yast2-packagemanager-devel by libzypp-devel-doc
- replaceAll: fix endless loop on empty search string
- version 14.31.0 (30)
==== liblirc_client0 ====
Subpackages: lirc lirc-devel lirc-remotes
- fix bashism in lirc-codecs-regression-test.sh script
- add patches:
* lirc-0.9.1a-fix-bashisms.patch
==== device-mapper ====
Subpackages: device-mapper-32bit lvm2
- spec: replace some shell variables and paths by rpm macros
- shorten filelists by using wildcards
==== lxpanel ====
Version update (0.7.2 -> 0.8.0)
Subpackages: lxpanel-lang
- New upstream version 0.8.0
* complete multi-monitor support
* improve and further simplify plugins API
* full changelog at http://blog.lxde.org/?p=1323
==== mercurial ====
Version update (3.1.2 -> 3.2.2)
Subpackages: mercurial-lang
- update to v3.2.2
* see changelog at http://mercurial.selenic.com/wiki/WhatsNew#Mercurial_3.2.2_.282014-12-01.29
- update to 3.2.1
* see changelog for v3.2.1 at http://mercurial.selenic.com/wiki/WhatsNew#Mercurial_3.2.1_.282014-11-11.29
- refreshed mercurial-locale-path-fix.patch
- dropped obsolete mercurial-2.8-ssl.diff
- dropped outdated contrib stuff from spec
==== g3utils ====
Subpackages: mgetty sendfax
- fix bashisms in faxback.sh script
- add patches:
* mgetty-1.1.36-fix-bashisms.patch
==== mutt ====
- Add patch bsc907453-CVE-2014-9116-jessie.patch to fix bsc#907453
CVE-2014-9116: heap-based buffer overflow in mutt_substrdup()
==== gnome-shell-search-provider-nautilus ====
Version update (3.14.1 -> 3.14.2)
Subpackages: libnautilus-extension1 nautilus
- Update to version 3.14.2:
+ Fix new window activation with desktop icons enabled.
+ Updated translations.
- Drop nautilus-as-desktop-launch.patch: Fixed upstream, workaround
in our patch no longer needed.
==== openconnect ====
Version update (7.00 -> 7.01)
Subpackages: openconnect-devel
- Update to Version 7.01
* Try harder to find a PKCS#11 key to match a given certificate.
* Handle 'Connection: close' from proxies correctly.
* Warn when MTU is set too low (<1280) to permit IPv6 connectivity.
* Add support for X-CSTP-DynDNS, to trigger DNS lookup on each reconnec
==== orca ====
Version update (3.14.2 -> 3.14.3)
- Update to version 3.14.3:
+ Gecko:
- Fix several issues related to focus mode toggling on pages
which set focus upon page load.
- Exclude layout-only/presentational tables in structural
navigation.
+ LibreOffice: Handle a false positive in isSameObject() which
prevented paragraph presentation.
+ Updated translations.
==== osc ====
- fix bash completion (complete is not propagated into subshells,
but PROFILEREAD is, so the setup script is never executed)
==== libparted0 ====
Subpackages: parted
- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.
==== perl-Net-DNS ====
Version update (0.74 -> 0.81)
- update to 0.81
* new features:
Feature rt.cpan.org #98149
Add support for Android platform.
Feature rt.cpan.org #79568
Implement prefer_v6 resolver configuration attribute.
Feature
Implement TSIG verified zone transfer.
* and numerous bugfixes
==== permissions ====
Version update (2014.11.05.1706 -> 2014.12.03.1512)
- Added iouyap capabilities (bnc#904060)
==== polari ====
Subpackages: typelib-1_0-Polari-1_0
- Add gjs Requires: polari requires gjs-console binary at
runtime.
==== postfix ====
Version update (2.11.0 -> 2.11.3)
Subpackages: postfix-doc
- Remove keyring and things as it is md5 based one no longer
accepted by gpg 2.1
- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.
- restore previously lost fix:
Fri Oct 11 13:32:32 UTC 2013 - matz(a)suse.de
- Ignore errors in %pre/%post.
- postfix 2.11.3:
* Fix for configurations that prepend message headers with Postfix
access maps, policy servers or Milter applications. Postfix now
hides its own Received: header from Milters and exposes prepended
headers to Milters, regardless of the mechanism used to prepend
a header. This fix reverts a partial solution that was released
on October 13, 2014, and replaces it with a complete solution.
* Portability fix for MacOS X 10.7.x (Darwin 11.x) build procedure.
- postfix 2.11.2:
* Fix for DMARC implementations based on SPF policy plus DKIM
Milter. The PREPEND access/policy action added headers ABOVE
Postfix's own Received: header, exposing Postfix's own Received:
header to Milters (protocol violation) and hiding the PREPENDed
header from Milters. PREPENDed headers are now added BELOW
Postfix's own Received: header and remain visible to Milters.
* The Postfix SMTP server logged an incorrect client name in
reject messages for check_reverse_client_hostname_access and
check_reverse_client_hostname_{mx,ns}_access. They replied with
the verified client name, instead of the name that was rejected.
* The qmqpd daemon crashed with null pointer bug when logging a
lost connection while not in a mail transaction.
- switch from md5 based signature to one using the SHA-512 digest
algorithm supplied by maintainer on ML to pass source_validator
- postfix 2.11.1:
* With connection caching enabled (the default), recipients could
be given to the wrong mail server.
* Enforce TLS when TLSA records exist, but all are unusable.
* Don't leak memory when TLSA records exist, but all are unusable.
* Prepend "-I. -I../../include" to the compiler command-line
options, to avoid name clashes with non-Postfix header files.
* documentation fixes
* logging fixes
==== psgml ====
Version update (1.3.2 -> 1.4.1)
- Update from https://marmalade-repo.org/packages/psgml-1.4.1.tar;
bnc#909627.
- Cleanup spec file.
==== pwgen ====
Version update (2.06 -> 2.07)
- updated to version 2.07 (bsc#908992):
* New upstream version
* Remove backwards compatibility for no-tty mode. Addresses
CVE-2013-4440 (Closes: #725507) (bsc#846397)
* Fail hard if /dev/urandom and /dev/random are not available.
Addresses CVE-2013-4442 and Launchpad #1183213 (Closes: #767008)
(bsc#846397)
* Fix pwgen -B so that it doesn't accidentally generate passwords with
ambiguous characters after changing the case of some letters.
Addresses Launchpad Bugs #638418 and #1349863
* Fix potential portability bug on architectures where unsgined ints
are not 4 bytes long
==== re2c ====
Version update (0.13.6 -> 0.13.7.5)
- make test currently does nothing, make check however
executes the test suite.
- version 0.13.7.5
* Added UTF-8 and UTF-16 support.
* fixed PHP HEREDOC problems.
==== rpcbind ====
Version update (0.2.1_rc4 -> 0.2.2)
- 0002-rpcinfo_warmstart-no_warning_about_missing_file.patch: fix
merge issue causing segfaults on missing file (bnc#909619).
- Split off 0003-systemd-no-dualmode.patch from
0001-systemd-enhancements.patch for easier upstream submission.
- Split off 0004-systemd-sd_notify.patch from
0001-systemd-enhancements.patch for easier upstream submission.
- Rename 0001-systemd-enhancements.patch to 0001-systemd-unit-files.patch
- Update to latest rpcbind 0.2.2 upstream release.
- Following patches are upstream:
- 0001-Fix-building-one-systems-w-out-nss.h.patch
- 0002-Rename-configure.in-to-configure.ac.patch
- 0003-rpcbind-rpcuser-not-being-set-in-Makefile.am.patch
- 0004-Silence-a-warning-about-setgroups-being-implicitly-d.patch
- Adjust following patches:
- 0005-Remove-obsolete-function-in6_fillscopeid.patch
- 0006-In-init_transport-move-creation-of-COTS-sockets-clos.patch
- 0018-configure-check-for-nss.h.patch
- Obsolete patches:
- 0015-When-using-systemd-activation-make-rpcbind-notify-sy.patch
- 0016-Notify-systemd-unconditionally.patch
- 0012-Support-systemd-activation.patch
- 0013-socket-activation-Fix-rpcbind.service-to-use-separat.patch
- 0017-Pull-the-sysconfig-file-into-rpcbind.service-and-use.patch
- 0025-rpcinfo-warmstat_no-warning-about-missing-file.patch
- 0026-systemd-no-default-dep
- 0027-socket-before-service.patch
- 0028-rpcbind-after-var-run.patch
- 0029-rpcbind-sd-notify-stupid-errmsg.patch
- New patches:
- 0001-systemd-enhancements.patch
- 0002-rpcinfo_warmstart-no_warning_about_missing_file.patch
- Disabled patches:
- 0008-First-part-of-init_transport-refactoring.patch
- 0009-init_transport-move-the-registration-code-into-a-sep.patch
- 0010-Fix-the-behavior-when-specifying-the-h-option.patch
- 0011-Clean-up-the-way-we-handle-the-h-option-in-init_tran.patch
- 0014-When-using-systemd-redirect-syslog-calls-to-the-syst.patch
- 0024-rpcinfo-remove-obsolete-function-get_inet_address.patch
==== s2tc ====
- Fix baselibs and try to recommend our own 32b version as you
usually play 32bit games where you want texture compression
anyway
==== libdcerpc-binding0 ====
Subpackages: libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libgensec0 libgensec0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libpdb0 libpdb0-32bit libregistry0 libsamba-credentials0 libsamba-credentials0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient-devel libsmbclient-raw0 libsmbclient-raw0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap0 libsmbldap0-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba samba-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit
- Lookup FSRVP share snums at runtime rather than storing them persistently;
(bnc#908627).
==== sblim-sfcb ====
Version update (1.4.8 -> 1.4.9)
- Update to 1.4.9
New features:
- [sfcb-tix:#97] Add a select timeout for req handlers
see httpReqHandlerTimeout in sfcb.cfg
Bugs fixed:
- [sfcb-tix:#106] CMPIRole not passed to provider context
- [sfcb-tix:#107] Quietly unpack schema at make postinstall
- [sfcb-tix:#108] Some associatorname CIM operations hang
- new patches
* 0002-providerMgr-add-prototypes.patch
* 0004-Check-for-existance-of-autoconfiscate.sh-before-call.patch
* 0009-Improvide-error-message-if-ClassProvider-for-root-in.patch
* 0010-Enable-authentication-by-default.patch
- obsolete/rebased patches
* 0002-Enable-broker.LogMessage-and-broker.trace.patch renamed to
0003-Enable-broker.LogMessage-and-broker.trace.patch
* 0002-Enable-broker.LogMessage-and-broker.trace.patch renamed to
0003-Enable-broker.LogMessage-and-broker.trace.patch
* 0006-Define-YYPARSE_PARAM-early-for-cimXmlOps-and-cimXmlP.patch
renamed to 0005-Define-YYPARSE_PARAM-early-for-cimXmlOps-and-cimXmlP.patch
* 0007-Don-t-crash-if-class-repo-is-not-initialized.patch renamed
to 0006-Don-t-crash-if-class-repo-is-not-initialized.patch
* 0008-Increase-max-trace-msg-len-to-4096.patch renamed to
0007-Increase-max-trace-msg-len-to-4096.patch
* 0010-Properly-shut-down-if-provider-crashed.patch renamed to
0008-Properly-shut-down-if-provider-crashed.patch
==== smartmontools ====
- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.
==== libsnapper2 ====
Subpackages: snapper snapper-zypp-plugin
- improved error messages (bsc#889928 and bsc#903834)
- support weekly snapshots in cleanup algorithm (see
gh#openSUSE/snapper#135)
- use boost unit test framework and automake check feature
- improved fadvise usage
==== libgudev-1_0-0 ====
Subpackages: libgudev-1_0-devel libudev-devel libudev1 libudev1-32bit systemd systemd-32bit systemd-bash-completion systemd-logger systemd-sysvinit typelib-1_0-GUdev-1_0 udev
- fix systemd-nspawn network-veth support (bnc#906709)
add 513-nspawn-veth.patch
- Add upstream patch
1098-udev-link_setup-respect-kernel-name-assign-policy.patch
which may solve bsc#907318
- Add upstream patches
0001-units-make-sure-rfkill-service-is-bount-to-the-actua.patch
0002-rfkill-rework-how-we-generate-file-names-from-rfkill.patch
1097-udev-link_setup-respect-kernel-name-assign-policy.patch
==== whois ====
- whois-nobsdsource.patch: get rid of warnings about
BSD_SOURCE deprecatation , just define GNU_SOURCE
globally instead of any other C library feature macro.
==== libwicked-0-6 ====
Version update (0.6.12 -> 0.6.13)
Subpackages: wicked wicked-service
- version 0.6.13
- sysctl: do not fail on read-only proc e.g. in LXC (bsc#904432)
- netlink: recover from netlink event socket errors and allow to
configure the event socket buffer sizes (bsc#905421)
- fixed some memory and a file descriptor leak
- bonding: add encap2+3 and 3+4 xmit-hash-policies (bsc#905750)
- client: apply suse ifcfg alias label (bsc#907683)
- netlink: retry on DUMP_INTR and AGAIN (bsc#904776)
- gcrypt: do not fail when wicked has been build using a newer
but compatible library than the currently used (bsc#906217)
- compat: use info level on unspecified ip (bsc#904903)
- compat: fix tap group node generation (bsc#904380)
- sit,ipip,gre: generate tunnel config on change (bsc#901402)
- fsm: always refresh worker on device-ready event and match only
ready devices against config workers (bsc#904061)
- fsm: perform tentative check on all started interfaces with
nanny (bsc#900951)
==== wine ====
Version update (1.7.32 -> 1.7.33)
Subpackages: wine-32bit
- Updated to 1.7.33 development snapshot
- Support for copy/paste commands in MSHTML.
- Some more font support in DirectWrite.
- Better handling for loss of focus in Direct3D windows.
- Several more API Sets DLLs.
- Various bug fixes.
==== wireshark ====
Subpackages: wireshark-ui-gtk
- Allow build with functions deprecated in gdk-pixbuf 2.31.2,
fixing build for openSUSE Factory,
add wireshark-1.12.x-allow-gdk-pixbuf-deprecation.patch
==== words ====
- fix bashism in SuSEconfig.words (update) script
==== wsdl4j ====
- Replace java2-devel-packages with javapackages-tools
==== xfsprogs ====
Version update (3.2.1 -> 3.2.2)
- Updated to 3.2.2
- xfs_repair, mkfs.xfs stripe geometry fixes
- libxcmd path handling fixes
- xfs_crash crash fix
- xfs_logprint AGI/AGF handling improvements
- libhandle support for symlinked /usr
- fix multiple Coverity and sparse reported issues
- new mremap, sync, syncfs commands for xfs_io
- man page updates
- xfs_repair sets ftype in lost+found dirents
- xfs_repair handles bad inodes better
- xfs_repair freelist rebuild improvements
- xfs_repair finobt crash fixes
- xfs_copy handles 4k sector devices better
logprint-Fix-printing-of-AGF-and-AGI-buffers.patch: Removed (merged upstream)
==== xmlbeans ====
- Try to fix the cycle, put back gcj compat dep
- Remove java-1_5_0-gcj-compat-devel/java-devel dependency; not
needed anymore
==== xmlgraphics-batik ====
- spec-cleanify
- Use javapackages-tools instead of java-devel
==== xmlgraphics-fop ====
- Spec-cleanify
- Do not ever run tests, we lack quite packages to do so anyway
- Drop fop-1.1-src.tar.gz.asc xmlgraphics-fop.keyring as upstream
does not provide those anymore
- Apply patch to build with new xmlgraphics-commons:
* fop-commons-2.0.patch
==== yast2-dns-server ====
Version update (3.1.8 -> 3.1.10)
- Fixed handling of zones (bnc#898659)
- Checking for system zones was moved to separate function
- Extended list of zones marked as system (internal) ones with
(0\.)+ip6.arpa
- Not allowing to edit system zones (belong to bind package)
- Added check for 'bind' package to be installed before writing
the configuration
- Marking all imported zones as 'modified' to be written later
- Marking all imported non-system zones as 'is_new' to create
a zone file for them
- Flushing /etc/named.conf cache 'after' writing zones (instead
of 'before')
- Using "" as the default NETCONFIG_DNS_POLICY (instead of 0)
- Do not write system zones to LDAP (bnc#746401)
- If systems zones are marked as modified, they are written to
named configuration (if LDAP is not in use)
- 3.1.10
- Fixed Import() and Write() in AutoYast (bnc#898659)
- Imported zones were not written to the system as they were not
marked as 'modified'
- Directory /etc/named.d/ was used even if it didn't exist
- The whole named.conf was rewritten from scratch as Yast thought
that something has changed that file while Yast was running
- 3.1.9
- remove X-KDE-Library from desktop file (bnc#899104)
- 3.1.8
- Use a more flexible rubygem requirement syntax (bnc#895069)
- 3.1.7
- Fix failing testsuite
- 3.1.6
- Fixed splitting/joining longer TXT and SPF records (bnc#867596)
- 3.1.5
- Use new yast2-ldap instead of yast2-ldap-client
- 3.1.4
- Added possibility to set local DNS forwarder (FATE#309036)
- 3.1.3
- Switched to using Service library instead of calling init script
directly
- 3.1.2
- Add explicit COPYING file
- 3.1.1
- do not use *.spec.in template, use *.spec file with RPM macros
instead
- 3.1.0
- Added missing SPF record handling
- 3.0.1
- converted from YCP to Ruby by YCP Killer
(https://github.com/yast/ycp-killer)
- version 3.0.0
- Enhanced checking for errors while writing to LDAP (bnc#768708)
- 2.23.4
- Checking for return values while writing into LDAP and reporting
errors (bnc#768708).
- Additional fix for (bnc#765445). No error reported to stdout
even while writing /etc/named.conf without having bind package
installed.
- Handling missing /etc/named.conf (BNC #765445)
- 2.23.3
- Fixed setting up the LDAP (BNC #690237)
- Fixed redrawing records settings UI entries when deleting
records (BNC#758745).
- 2.23.2
- Fixed removing RRs from LDAP when they share the same LDAP
object with another non-deleted RRs (BNC#755592).
- Triggering the global "modified" flag while adding/modifying
a zone to be correctly stored later (BNC#753038).
- Fixed zone-file agent to handle semicolons in TXT records
correctly instead of considering them to represent comments
(bnc#755766).
- 2.23.1
- Checking for and adding required LDAP schemas (yast, dnszone)
while writing the configuration. Fixed handling if configuration
cannot be written to LDAP (bnc#690237).
- 2.22.1
- Fixed transforming records from absolute to relative format
while they are listed in UI (bnc#746363).
- Fixed saving the current status of all zones to LDAP/files while
switching from using files to LDAP and vice versa (bnc#746401).
- Fixed transforming records from relative to absolute format.
The final dot is added only to records including a zone name
(bnc#745560).
- merged texts from proofreading
- 2.22.0
- updated testsuite (systemd support)
- 2.21.3
- fixed .desktop file (bnc #681249)
- Fixed a typo (BNC #703099)
- Texts changed to be easily translatable - not to confuse
translators with constant strings
- Fixed RPM requirements
- Added testsuites
- 2.21.2
- Automatically changing entered forwarder to a localhost IP if
the server would forward to itself (non-local IP) (BNC #676676).
- Handling unknown error in LDAP initialization (BNC #679960).
- 2.21.1
- Fixed help text (BNC #620101)
- Allowing wildcard '*' for some resource records (BNC #646895).
- 2.20.2
- Implemented less strict TXT record check (BNC #620480).
- 2.20.1
- Adjusted .desktop file(s) to wrap /sbin/yast2/ calls in xdg-su
where root privileges are needed, removed X-KDE-SubstituteUID key
(bnc#540627)
- Fixed LDAP initialization (bnc #557090).
- Correcting the last change: forwarders.conf is always included.
Netconfig is called before starting named (bnc #484736).
- Adjusted testsuites.
- 2.18.3
- Fixed handling forwarders in netconfig, forwarders.conf have to
be included if some forwarders are defined (bnc #484736).
- Adjusted testsuites.
- 2.18.2
==== yast2-schema ====
Version update (3.1.0 -> 3.1.1)
- Ignoring more packages that do not contain any AutoYaST support
during build to shorten the build cycle and to remove unneeded
dependencies
- 3.1.1
==== yast2-snapper ====
Version update (3.1.4 -> 3.1.5)
- handle invalid UTF-8 in file diff (bsc#907679)
- 3.1.5
==== libyaz-devel ====
Version update (5.1.2 -> 5.7.1)
Subpackages: libyaz4 yaz
- Update to 5.7.1:
+ Various enhancements and bug fixes; for more info, see
http://www.indexdata.com/yaz/doc/NEWS.
==== libnis1 ====
Subpackages: yp-tools
- Corrections to the description
==== ypbind ====
- fix bashism in ypbind-systemd-post script
- fix using 'echo' command in ypbind-systemd-pre script
==== ypserv ====
- Run build in parallel. Specfile cleanups: reduce filelists by
using wildcards, remove %doc (it is implicit for documentation
paths), use rpm macros in place of expansions.
==== zypper ====
Version update (1.11.16 -> 1.11.17)
Subpackages: zypper-aptitude zypper-log
- Add --[no-]color global option
- Fix additional spaces in zypper output and
new colorization code (bnc#908345)
- properly reset auto-retry counter (bnc#906549)
- man: improve patch description (bnc#904737)
- version 1.11.17
Removed packages:
FastCGI
libadns1
dirmngr
exim
libfox1_6
libisl10
Added packages:
libfcgi++-0
NetworkManager-openconnect
> NetworkManager-openconnect-gnome
> NetworkManager-openconnect-lang
bundle-lang-common-sv
ding-dict-de_en
libFOX-1_6-0
libisl13
konsole-part
liblxpanel0
libnpth0
s2tc-32bit
agrep
> libtre5
> tre
> tre-lang
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi everyone,
I just sr'ed lxc into Virtualization, which updates to the latest
bugfix release 1.0.7 (sr#264323).
Due to bug #905638, building openSUSE containers on 13.2 or Tumbleweed
is still disabled. Any help with finding the issue (something with
init_buildsystem or expanddeps in newer releases of build) would be
appreciated...
Upstream is preparing for the 1.1 release, I'll start testing that one
soon. I'll send an e-mail as soon as I got packages.
Regards,
Johannes
- --
`...a very ancient wizarding family noted for a vein of instability
and violence that flourished through the generations due to their
habit of merrying their own cousins.´
(Albus Dumbledore in Harry Potter and the Half-Blood Prince)
-----BEGIN PGP SIGNATURE-----
Comment: Using GnuPG with SeaMonkey - http://www.enigmail.net/
iEYEARECAAYFAlSEkaYACgkQzi3gQ/xETbJSpACeI1zNe95meX38H4EyvqxNCE8X
A28AnAs8x3vQkXV+7hMVGA7OOBzUDnoT
=rTsQ
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
2
3
13 Dec '14
Hello List Mates,
Is it possible to use the same snapshot id number after
deleting a range of snapshots?
Example
I have a range of snapshots from 1 > 20
If I delete snapshot ids 11 to 20, I want to create a new snapshot id 11?
Snapper automatically starts at 21 and keeps increasing.
Since the old snapshot id 11 no longer exists, I should be able
to create a new one with the same id number.
There is no explanation for this in any documentation.
Cheers!
Roman
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
9