November 2018 - openSUSE Factory - openSUSE Mailing Lists

[opensuse-factory] set CONFIG_RANDOM_TRUST_CPU in the kernel
by Cristian Rodríguez 11 Nov '18

11 Nov '18

Hi: An increasing number of components are using getrandom() and the libc wrapper getentropy() , but getrandom() may block at boot affecting startup performance, including but not limited to any software linking to openssl >= 1.1.1, libgcrypt, systemd itself and its libraries, QT5, Xorg and a long etc. In recent kernels, it is possible for getrandom not to block if one trusts the CPU to seed the CSPRNG. Paranoid people should set random.trust_cpu=0 boot option to disable this behaviour (and possibly wait several seconds for some services to start) and always remember that they are already trusting userspace components like haveged, rngd to do this job (albeit too late) and other hardware events that may not be "THAT random" either.. This also gives the nice advantage haveged, rngd or whatever do not need to normally be running and can be disabled by default. This option ideally has to be set in kernel-default but it got to be at least set in kernel-obs-build so build vms never block due to this condition if running on hardware that supports RDSEED, RDRAND or whatever hardware RNGD the kernel supports now or in the future. Looking forward to hear your opinion on this. Chers. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

2 1

[opensuse-factory] Unbranded HP Portia mouse HP 697738-001 in your possession?
by Sebastian Parschauer 09 Nov '18

09 Nov '18

Hi all, I'm trying to fix the remaining PixArt OEM mice with disconnection issue > https://github.com/sriemer/fix-linux-mouse#usb-mouse-disconnectsreconnects-… We just fixed a Microsoft PixArt mouse as well, I've identified and ordered the old Dell standard mouse Dell MS111. GitHub issue: https://github.com/sriemer/fix-linux-mouse/issues/11 But the suspected "unbranded HP Portia mouse HP 697738-001" which should have idVendor 0x0461 and idProduct 0x4d0f has only cheap stocks in the US. If you have one of those, then I need you to test switching to the virtual terminal (Ctrl+Alt+F1) with deactivated gpm service and to check the kernel log for disconnects every 30 or 60 seconds. If that is the case, please try if kernel boot option "usbhid.quirks=0x0461:0x4d0f:0x00000400" fixes this issue (activates HID_QUIRK_ALWAYS_POLL). If you have similar mouse issues or can contribute to my howto, then please get in touch. Thanks in advance! Cheers, Sebastian -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

1 0

[opensuse-factory] GtkSourceView - It is possible to change buffers in TextView and continue Word-Completion?
by David C. Rankin 08 Nov '18

08 Nov '18

All, I have been wrestling with this issue for a month (not continually, but as time and curiosity permit). I have posted to the gtk-app list (see thread: "Howto register/unregister words completion provider on buffer changein textview?"), but so far there has been no solution. So I thought I would take a stab on factory and see if there were any GTK wizards here. The basic background is have built a single-document interface editor (similar to gedit/kwrite) in gtk and use gtksourceview for word-completion (it works fine). (e.g. http://download.opensuse.org/repositories/home:/drankinatty/openSUSE_Leap_1…) I have now branched tha project to create a multi-document interface editor similar to kate, the basic layout being: +===================================================+ |menu | +------------+--------------------------------------+ | file_a | | | file_b | | | file_c | TextView | | | with | | | WordCompletion | | | | | | | | | | | | | +------------+--------------------------------------+ Here completion works fine for the first buffer bound to the completion object, and for additional buffers activated in split windows on the right, but with a multi-document interface, I need to be able to change the buffer visible any given textview and change the buffer used as the source of the word-completion (which the gtksourceview functions to either register/unregisters words used for completion or add/remove the completion providers seemed tailor made for) However, there seems to be a private binding created at the time the completion object and provider are first created binding the original buffer to the completion object that I have not found a way to alter. I have boiled it down to a simple question: "Is it possible to change the buffer shown in a TextView (using gtksourceview) and have word-completion continue to work within that TextView?" The reason I ask is that it appears the completion is indelibly bound to the original buffer when word-completion is first activated. There does not seemto be a way to: gtk_source_completion_remove_provider /* removing and unreffing all */ and then after gtk_text_view_set_buffer (view, newbuf); gtk_source_completion_add_provider and have word-completion function. Similarly, there seems to be no way to retain the same completion provider (so remove/add is unnecessary) and simply: gtk_source_completion_words_unregister (prov_words, oldbuf); and then to update the words in the provider: gtk_source_completion_words_register (prov_words, newbuf); In all cases, the exact same behavior is observed. When the buffer is changed and all GtkSourceCompletionWords providers removed and a new provider created, words registered and added with the new buffer in the textview, word completion is non functional, no popup, no nothing. However if I go through the same process again and change the buffer shown in the textview from newbuf to original, remove all providers, creating a new provider, registering words (in the exact same order), then Walah! completion is magically working again. I've looked at the source code for GtkSourceView and unfortunately, most of it is bewildering, but it does appear there is a binding between the original buffer and the GtkSourceCompletion for the textview and the original buffer in the textview whencompletion is first activated. Is this right?? And, if it is, doesn't that effectively prevent changing buffers in a sourceview and having completion continue to function? And if that is the case, is this a gtksourceview bug or a feature? The code is currently written using GtkSourceView 2.11.2, but 3.23.2 and 4.0.2 seem identical in this regard. If nobody knows, is there a GtkSourceView specific list I can follow up on? It just doesn't seem right that I would need to destroy the entire textview widget just to keep completion working with a new buffer. Sorry of the long post, but I was hoping to avoid having to pull the GtkSourceView source completely apart to find out whether changing a buffer with word-completion is possible. Any help or links or other list suggestions greatly appreciated. -- David C. Rankin, J.D.,P.E. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

7 8

[opensuse-factory] Enabling CONFIG_BPF_KPROBE_OVERRIDE in tumbleweed
by Nicolas Saenz Julienne 08 Nov '18

08 Nov '18

Hi, lately I've been using this BPF feature to override the return value on some memory allocations. It's very powerful, FYI see bcc's inject tool[1]. Sadly it isn't enabled in tumbleweed nor trough the debug configuration. So I was wondering if anyone had an opinion/objects enabling it by default or at least in the debug configuration. Regards, Nicolas [1] https://github.com/iovisor/bcc/blob/master/tools/inject_example.txt

2 3

[opensuse-factory] New Tumbleweed snapshot 20181107 released!
by Dominique Leuenberger 08 Nov '18

08 Nov '18

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaThunderbird (60.2.1 -> 60.3.0) alsa-plugins apache2 at (3.1.20 -> 3.1.23) babl (0.1.56 -> 0.1.58) bash-completion bluez-qt cairo (1.15.14 -> 1.16.0) ccache (3.4.2 -> 3.5) cryptsetup (2.0.4 -> 2.0.5) cups curl (7.61.1 -> 7.62.0) dmidecode dnsmasq (2.78 -> 2.80) dracut emacs ffmpegthumbs frei0r-plugins fribidi (1.0.1 -> 1.0.5) gnome-photos gnome-software (3.30.2 -> 3.30.5) gptfdisk (1.0.1 -> 1.0.4) graphite2 (1.3.11 -> 1.3.12) hdparm (9.56 -> 9.57) iproute2 (4.18 -> 4.19) ipset (6.38 -> 7.0) iptables (1.8.0.g85 -> 1.8.1) java-11-openjdk javapackages-tools (5.2.0+git20180620.70fa2258 -> 5.3.0) jemalloc jing-trang kiconthemes kscreenlocker ktextwidgets libburn (1.4.8 -> 1.5.0) libinput (1.12.1 -> 1.12.2) libisofs (1.4.8 -> 1.5.0) libmspack (0.6 -> 0.8) libndp (1.6 -> 1.7) libopenmpt (0.3.12 -> 0.3.13) libreoffice (6.1.3.1 -> 6.1.3.2) libva (2.2.0 -> 2.3.0) libva-gl (2.2.0 -> 2.3.0) libvirt (4.8.0 -> 4.9.0) lightdm (1.26.0 -> 1.28.0) lightdm-gtk-greeter (2.0.5 -> 2.0.6) llvm6 log4j mozjs60 (60.1.0 -> 60.2.2) mtools (4.0.18 -> 4.0.19) myspell-dictionaries (20180704 -> 20181025) netpbm (10.83.2 -> 10.84.2) nodejs10 (10.12.0 -> 10.13.0) opencv (3.4.1 -> 3.4.3) orca (3.30.0 -> 3.30.1) os-prober osinfo-db (20180920 -> 20181011) pcre2 (10.31 -> 10.32) pesign-obs-integration postfix psmisc (23.0 -> 23.2) publicsuffix (20181003 -> 20181030) python-pip (18.0 -> 18.1) python-qt5 (5.10.1 -> 5.11.3) python-requests (2.19.1 -> 2.20.0) python-rpm-macros (2017.12.22.d9968ab -> 2018.08.15.ada6d63) python-setuptools (40.4.3 -> 40.5.0) python-sip (4.19.8 -> 4.19.13) python-urllib3 (1.23 -> 1.24) qalculate (2.6.2 -> 2.8.0) rdma-core (18.1 -> 20.1) ruby2.5 (2.5.0 -> 2.5.1) rubygem-nokogiri (1.8.4 -> 1.8.5) samba (4.9.1+git.96.c3bff26bf16 -> 4.9.1+git.101.212e237d8ef) simple-scan (3.30.1.1 -> 3.30.2) strace (4.24 -> 4.25) systemd-presets-branding-transactional-server systemd-presets-common-SUSE unbound unixODBC (2.3.6 -> 2.3.7) upower vsftpd xapian-core (1.4.6 -> 1.4.7) xdg-user-dirs (0.16 -> 0.17) xfsprogs (4.16.1 -> 4.18.0) xmlgraphics-fop zimg (2.7.5 -> 2.8) zstd (1.3.5 -> 1.3.7) === Details === ==== MozillaThunderbird ==== Version update (60.2.1 -> 60.3.0) Subpackages: MozillaThunderbird-translations-common - update to Thunderbird 60.3.0 * various theme fixes * Shift+PageUp/PageDown in Write window * Gloda attachment filtering * Mailing list address auto-complete enter/return handling * Thunderbird hung if HTML signature references non-existent image * Filters not working for headers that appear more than once - Security fixes for the Mozilla platform picked up from 60.3 (Firefox ESR release). In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts (MFSA 2018-28) (bsc#1112852) * CVE-2018-12391 (bmo#1478843) (Android only) HTTP Live Stream audio data is accessible cross-origin * CVE-2018-12392 (bmo#1492823) Crash with nested event loops * CVE-2018-12393 (bmo#1495011) Integer overflow during Unicode conversion while loading JavaScript * CVE-2018-12389 (bmo#1498460, bmo#1499198) Memory safety bugs fixed in Firefox ESR 60.3 * CVE-2018-12390 (bmo#1487098, bmo#1487660, bmo#1490234, bmo#1496159, bmo#1443748, bmo#1496340, bmo#1483905, bmo#1493347, bmo#1488803, bmo#1498701, bmo#1498482, bmo#1442010, bmo#1495245, bmo#1483699, bmo#1469486, bmo#1484905, bmo#1490561, bmo#1492524, bmo#1481844) Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3 - Update _constraints for armv6/7 - Add patch to fix build on armv7: * mozilla-bmo1463035.patch - Add memory-constraints to avoid OOM errors ==== alsa-plugins ==== Subpackages: alsa-plugins-pulse alsa-plugins-pulse-32bit - Backport of yet another regression fixes in upstream: 0005-Revert-jack-Fix-leaks-when-jack_set_hw_constraint-fa.patch 0006-Revert-usb_stream-Fix-leaks-when-us_set_hw_constrain.patch 0007-Revert-oss-Fix-leaks-when-oss_hw_constraint-fails.patch - Backport upstream commits: fix memory leaks and other minor issues in usb_stream plugin, fix a regression (appearins in PulseAudio) with a52 plugin: 0001-pcm_usb_stream-fix-another-leak-in-snd_pcm_us_open.patch 0002-pcm_usb_stream-remove-unused-parameter-in-snd_pcm_us.patch 0003-pcm_usb_stream-fix-signess-issues.patch 0004-a52_close-set-slave-to-NULL-to-avoid-double-pcm-free.patch ==== apache2 ==== Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils - the "event" MPM is fully supported since 2.4 - configure an OCSP stapling cache by default (still requires enabling SSLUseStapling in vhost) ==== at ==== Version update (3.1.20 -> 3.1.23) - Version update to at 3.1.23 [bsc#1112660] * 832368-Using_of_the_meaningless_fcntl: Fix call of fcntl by replacing (long) 1 with FD_CLOEXEC * 892819-at__improvements_to_atd.service: Improve atd.service, see bug report 892819 * 885891-at__stale_batchjobs_after_reboot: Remove stale at jobs after a boot. * 897669-897670-Some_fixes_in_the_manuals: Fix some warnings in manpages at.1 and atd.8 * 883730-Remove_invalid_email_from_man_page: Remove invalid email from man pages. * Draft of a release script * Finalised script to release software. - refresh at-atq-timeformat.patch - refresh at-adjust_load_to_cpu_count.patch ==== babl ==== Version update (0.1.56 -> 0.1.58) - Update to version 0.1.58: + Preserve color of transparent pixels in conversion to premultiplied alpha + Added single precision code-paths for faster fallback/reference conversions + New BABL_ICC_INTENT_PERFORMANCE bitflag for combing with intent as bitflags ==== bash-completion ==== - Modify patch PS1-completion-boo903362.patch to make it work with mksh as well (boo#1104531) ==== bluez-qt ==== Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Use %{_udevrulesdir} macro to specify the install directory for udev rules instead of a hard-coded path ==== cairo ==== Version update (1.15.14 -> 1.16.0) Subpackages: libcairo-gobject2 libcairo2 libcairo2-32bit - Update to version 1.16.0: + test: Free resources in pdf2png. + Drop skia backend. + Revert "Correctly decode Adobe CMYK JPEGs in PDF export". ==== ccache ==== Version update (3.4.2 -> 3.5) - Make sure bundled zlib is not used - Make building more verbose - Update to version 3.5 * Added a boolean debug (CCACHE_DEBUG) configuration option * Renamed CCACHE_CC to CCACHE_COMPILER * Added a new command-line option -k/--get-config * Improved performance substantially when using hash_dir = false * Renamed "stats zero time" to "stats zeroed" * Added file_state_matches_ctime option to disable ctime check ==== cryptsetup ==== Version update (2.0.4 -> 2.0.5) Subpackages: libcryptsetup12 libcryptsetup12-32bit - Suggest hmac package (boo#1090768) - remove old upgrade hack for upgrades from 12.1 - New version 2.0.5 Changes since version 2.0.4 ~~~~~~~~~~~~~~~~~~~~~~~~~~~ * Wipe full header areas (including unused) during LUKS format. Since this version, the whole area up to the data offset is zeroed, and subsequently, all keyslots areas are wiped with random data. This ensures that no remaining old data remains in the LUKS header areas, but it could slow down format operation on some devices. Previously only first 4k (or 32k for LUKS2) and the used keyslot was overwritten in the format operation. * Several fixes to error messages that were unintentionally replaced in previous versions with a silent exit code. More descriptive error messages were added, including error messages if - a device is unusable (not a block device, no access, etc.), - a LUKS device is not detected, - LUKS header load code detects unsupported version, - a keyslot decryption fails (also happens in the cipher check), - converting an inactive keyslot. * Device activation fails if data area overlaps with LUKS header. * Code now uses explicit_bzero to wipe memory if available (instead of own implementation). * Additional VeraCrypt modes are now supported, including Camellia and Kuznyechik symmetric ciphers (and cipher chains) and Streebog hash function. These were introduced in a recent VeraCrypt upstream. Note that Kuznyechik requires out-of-tree kernel module and Streebog hash function is available only with the gcrypt cryptographic backend for now. * Fixes static build for integritysetup if the pwquality library is used. * Allows passphrase change for unbound keyslots. * Fixes removed keyslot number in verbose message for luksKillSlot, luksRemoveKey and erase command. * Adds blkid scan when attempting to open a plain device and warn the user about existing device signatures in a ciphertext device. * Remove LUKS header signature if luksFormat fails to add the first keyslot. * Remove O_SYNC from device open and use fsync() to speed up wipe operation considerably. * Create --master-key-file in luksDump and fail if the file already exists. * Fixes a bug when LUKS2 authenticated encryption with a detached header wiped the header device instead of dm-integrity data device area (causing unnecessary LUKS2 header auto recovery). - make parallell installable version for SLE12 ==== cups ==== Subpackages: cups-client cups-config libcups2 libcups2-32bit libcupscgi1 libcupsimage2 libcupsmime1 libcupsppdc1 - Add patch let-cupsd-start-after-network.patch Let cuspd start after possible network connection (boo#1111351) This let cupsd also stop before a used network connection goes down, hence the cusp does not lock due waiting on remote printers. ==== curl ==== Version update (7.61.1 -> 7.62.0) Subpackages: libcurl4 - Update to version 7.62.0 Changes: * multiplex: enable by default * url: default to CURL_HTTP_VERSION_2TLS if built h2-enabled * setopt: add CURLOPT_DOH_URL * curl: --doh-url added * setopt: add CURLOPT_UPLOAD_BUFFERSIZE: set upload buffer size * imap: change from "FETCH" to "UID FETCH" * configure: add option to disable automatic OpenSSL config loading * upkeep: add a connection upkeep API: curl_easy_upkeep() * URL-API: added five new functions * vtls: MesaLink is a new TLS backend Bugfixes: * CVE-2018-16839: SASL password overflow via integer overflow [bsc#1112758] * CVE-2018-16840: use-after-free in handle close [bsc#1113029] * CVE-2018-16842: warning message out-of-buffer read [bsc#1113660] * CURLOPT_DNS_USE_GLOBAL_CACHE: deprecated * Curl_dedotdotify(): always nul terminate returned string * Curl_follow: Always free the passed new URL * Curl_http2_done: fix memleak in error path * Curl_retry_request: fix memory leak * Curl_saferealloc: Fixed typo in docblock * FILE: fix CURLOPT_NOBODY and CURLOPT_HEADER output * GnutTLS: TLS 1.3 support * SECURITY-PROCESS: mention the bountygraph program * VS projects: add USE_IPV6: * certs: generate tests certs with sha256 digest algorithm * checksrc: enable strict mode and warnings * checksrc: handle zero scoped ignore commands * cmake: Backport to work with CMake 3.0 again * cmake: Improve config installation * cmake: add support for transitive ZLIB target * cmake: disable -Wpedantic-ms-format * cmake: don't require OpenSSL if USE_OPENSSL=OFF * cmake: fixed path used in generation of docs/tests * cmake: remove unused *SOCKLEN_T variables * cmake: suppress MSVC warning C4127 for libtest * cmake: test and set missed defines during configuration * config: Remove unused SIZEOF_VOIDP * configure: force-use -lpthreads on HPUX * configure: remove CURL_CONFIGURE_CURL_SOCKLEN_T * configure: s/AC_RUN_IFELSE/CURL_RUN_IFELSE * cookies: Remove redundant expired check * cookies: fix leak when writing cookies to file * curl-config.in: remove dependency on bc * curl.1: --ipv6 mutexes ipv4 (fixed typo) * curl: update the documentation of --tlsv1.0 * curl_multi_wait: call getsock before figuring out timeout * curl_ntlm_wb: check aprintf() return codes * data-binary.d: clarify default content-type is x-www-form-urlencoded * docs/CIPHERS: Mention the options used to set TLS 1.3 ciphers * docs/CIPHERS: fix the TLS 1.3 cipher names * docs/CIPHERS: mention the colon separation for OpenSSL * docs/examples: URL updates * docs: add "see also" links for SSL options * example/asiohiper: insert warning comment about its status * example/htmltidy: fix include paths of tidy libraries * examples/http2-pushinmemory: receive HTTP/2 pushed files in memory * examples/parseurl.c: show off the URL API * examples: Fix memory leaks from realloc errors * examples: do not wait when no transfers are running * ftp: include command in Curl_ftpsend sendbuffer * gskit: make sure to terminate version string * gtls: Values stored to but never read * hostip: fix check on Curl_shuffle_addr return value * http2: fix memory leaks on error-path * http: fix memleak in rewind error path * krb5: fix memory leak in krb_auth * memory: add missing curl_printf header * memory: ensure to check allocation results * multi: Fix error handling in the SENDPROTOCONNECT state * multi: fix memory leak in content encoding related error path * multi: make the closure handle "inherit" CURLOPT_NOSIGNAL * netrc: free temporary strings if memory allocation fails * nss: try to connect even if libnssckbi.so fails to load * ntlm_wb: Fix memory leaks in ntlm_wb_response * ntlm_wb: bail out if the response gets overly large * openssl: assume engine support in 0.9.8 or later * openssl: enable TLS 1.3 post-handshake auth * openssl: fix gcc8 warning * openssl: load built-in engines too * openssl: make 'done' a proper boolean * openssl: output the correct cipher list on TLS 1.3 error * openssl: return CURLE_PEER_FAILED_VERIFICATION on failure to parse issuer * openssl: show "proper" version number for libressl builds * pipelining: deprecated * rand: add comment to skip a clang-tidy false positive * rtmp: fix for compiling with lwIP * runtests: ignore disabled even when ranges are given * schannel: unified error code handling * sendf: Fix whitespace in infof/failf concatenation * ssh: free the session on init failures * ssl: deprecate CURLE_SSL_CACERT in favour of a unified error code * system.h: use proper setting with Sun C++ as well * test1299: use single quotes around asterisk * test1452: mark as flaky * test1651: unit test Curl_extract_certinfo() * test320: strip out more HTML when comparing * tests/negtelnetserver.py: fix Python2-ism in neg TELNET server * tests: add unit tests for url.c * tool_cb_hdr: handle failure of rename() * travis: add a "make tidy" build that runs clang-tidy * travis: add build for "configure --disable-verbose" * travis: bump the Secure Transport build to use xcode * travis: make distcheck scan for BOM markers * unit1300: fix stack-use-after-scope AddressSanitizer warning * urldata: Fix "connecting" comment * urlglob: improve error message on bad globs * vtls: fix ssl version "or later" behavior change for many backends * x509asn1: Fix SAN IP address verification * x509asn1: always check return code from getASN1Element() * x509asn1: return CURLE_PEER_FAILED_VERIFICATION on failure to parse cert * x509asn1: suppress left shift on signed value - Rebased patches after update: * curl-disabled-redirect-protocol-message.patch * curl-use_OPENSSL_config.patch ==== dmidecode ==== - dmidecode-fix-redfish-hostname-print-length.patch: Fix Redfish Hostname print length (bsc#1112755). ==== dnsmasq ==== Version update (2.78 -> 2.80) - Ensure neutrality of descriptions. / Replace description with new upstream description. - Do not hide failures from user/group additions. - Replace old $RPM_* shell vars by macros. - Updated to dnsmasq 2.80 * Add support for RFC 4039 DHCP rapid commit * Alter the default for dnssec-check-unsigned * Fix DHCP when --no-ping and --dhcp-sequential-ip are set * Allow zone transfer in authoritative mode if auth-peer is specified * FIx missing fatal errors with some malformed options * Fix crash on startup with a --synth-domain which has no prefix - enabled lua scripting interface ==== dracut ==== - 98dracut-systemd: Start systemd-vconsole-setup before dracut-cmdline-ask (bsc#1055834) * adds 0582-98dracut-systemd-Start-systemd-vconsole-setup-before.patch - Fixed Patch 581 to apply cleanly * Updates 0581-kernel-modules-add-nfit.patch - Mark the DASD udev rules host-only and handle backslashes in paths for hostonly files (bsc#1090884) * adds 0583-99base-Allow-files-with-backslashes-in-hostonly-file.patch * adds 0584-95dasd_rules-mark-dasd-rules-host_only.patch ==== emacs ==== Subpackages: emacs-info emacs-nox emacs-x11 etags - Let ispell.el perform even on older systems without default hunspell dictionary as otherwise this leades to wrong type error as nil is not a pointer to a string - Let site-start.el also seek for hunspell to load the ispell lisp library (boo#1110387) - Help ispell(.el) to find and provide the usable dictionaries even for hunspell (boo#1110387) ==== ffmpegthumbs ==== - Add patch to fix crash on video files without a suitable codec installed: * 0001-Don-t-crash-if-initializeVideo-fails.patch ==== frei0r-plugins ==== - Add frei0r-plugins-openCV-3.4.2-compatibility.patch to fix a build failure with openCV > 3.4.1 - Run spec-cleaner ==== fribidi ==== Version update (1.0.1 -> 1.0.5) Subpackages: libfribidi0 libfribidi0-32bit - Update to version 1.0.5: + Updated unicode tables to version 11 + Bugfix release - character tests were not running previously + Small speedup due to small arrays being allocated on the stack ==== gnome-photos ==== Subpackages: gnome-photos-lang gnome-shell-search-provider-gnome-photos - Add gnome-photos-on-demand-activate-dleyna.patch: Don't activate dleyna-renderer-service when Photos starts up (bsc#992420, glgo#GNOME/gnome-photos#75). ==== gnome-software ==== Version update (3.30.2 -> 3.30.5) Subpackages: gnome-software-lang - Update to version 3.30.5: + Fix build with appstream-glib 0.7.14. - Changes from version 3.30.4: + Add a separate "Download" step for packagekit offline updates, so that "Restart & Update" is instant. + Fix a version comparison issue that led to package updates sometimes showing as downgrades in the OS Updates section (this needs latest appstream-glib). + Show the refresh button when the updates page is in the failed state. + Notify about offline updates only after they are fully downloaded. + Updated translations. - Update to version 3.30.3: + Fix a memory corruption issue on 32-bit arches that made gnome-software very crashy. + Fix an issue with stuck back button on the details page after closing and reopening gnome-software. + Make distro upgrades to Fedora N+2 release show up correctly. + Various flatpak plugin fixes. + Allow opening CAB files that include more than one update. + Fix critical warnings when quickly switching between category pages. + Small memory leak fixes. + Updated translations. ==== gptfdisk ==== Version update (1.0.1 -> 1.0.4) - Update to 1.0.4 * 74 new type codes added * Search/filter function to the type code list * GPT fdisk now reports more details about data structures * Misc bug fixes ==== graphite2 ==== Version update (1.3.11 -> 1.3.12) Subpackages: libgraphite2-3 libgraphite2-3-32bit - Update to 1.3.12: . Graphite no longer does dumb rendering for fonts with no smarts . Segment caching code removed. Anything attempting to use the segment cache gets given a regular face instead . Add libfuzzer support . Builds now require C++11 . Improvements to Windows 64 bit builds . Support different versions of python including 32 bit and python 3 . Various minor bug fixes - refreshed patch % link-gcc-shared.diff - removed patch - graphite2-CVE-2018-7999.patch (upstreamed) ==== hdparm ==== Version update (9.56 -> 9.57) - Update to 9.57: * Added --set-sector-size flag, used to change logical sector size for drives which support multiple sector sizes. * Also updated various bits of hdparm to better cope with non-512 byte sectors. * Various other minor fixes/enhancements. - Update hdparm-leak-fix.patch ==== iproute2 ==== Version update (4.18 -> 4.19) - Update to new upstream release 4.19 * Support new features in Linux 4.19 such as the CAKE qdisc. ==== ipset ==== Version update (6.38 -> 7.0) - Update to new upstream release 7.0 * A new internal protocol version between the kernel and userspace is used. This is required in order to support two new functions and the extendend LIST operation, which makes possible to run ipset in every case entirely over netlink, without the need to use getsockopt(). * The userspace library was reworked so it can be embedded without calling the binary. ==== iptables ==== Version update (1.8.0.g85 -> 1.8.1) Subpackages: libiptc0 libxtables12 xtables-plugins - Update to new upstream release 1.8.1 * New cgroup match revision with reduced memory footprint ==== java-11-openjdk ==== Subpackages: java-11-openjdk-headless - Merge into the JDK following modules from github.com/javaee: * com.sum.xml.fastinfoset * org.jvnet.staxex * com.sun.istack.runtime * com.sun.xml.txw2 * com.sun.xml.bind + This provides a default implementation of JAXB-API that existed in JDK before Java 11 and that some applications depend on. ==== javapackages-tools ==== Version update (5.2.0+git20180620.70fa2258 -> 5.3.0) - Replace the occurences of /usr/lib by libdir in configuration files too - Update to version 5.3.0 - Modified patch: * suse-no-epoch.patch + rediff to changed code - Build the :extras flavour as noarch - Added patch: * suse-no-epoch.patch + we did not bump epoch of OpenJDK packages in SUSE + fix a potential generation of unresolvable requires + adapt the tests to not expect the epoch ==== jemalloc ==== - Disable profiling on ppc until boo#1105633 get fixed ==== jing-trang ==== - Change to build against bsh2 instead of the old bsh ==== kiconthemes ==== Subpackages: libKF5IconThemes5 libKF5IconThemes5-lang - Add Fixing-a-copy-paste-error.patch to fix crashes when opening the icon dialog (kde#398766) ==== kscreenlocker ==== Subpackages: kscreenlocker-lang libKScreenLocker5 - Mark /etc/pam.d/kscreenlocker as %config(noreplace) so that modifications don't get lost when installing updates (boo#1114258) ==== ktextwidgets ==== Subpackages: libKF5TextWidgets5 libKF5TextWidgets5-lang - Add Qt5TextToSpeech BuildRequires to enable text-to-speech support ==== libburn ==== Version update (1.4.8 -> 1.5.0) - Update to 1.5.0: * User defined padding was moved after appended partitions * xorriso and libisoburn make user of the new xattr capability of libisofs * libburn got some rarely triggered bugs fixed ==== libinput ==== Version update (1.12.1 -> 1.12.2) Subpackages: libinput-udev libinput10 - Update to new upstream release 1.12.2 * The Lenovo x220t and x60t do not disable the keyboard in tablet-mode anymore. * Button debouncing is now disabled on VMware virtual devices. * The Wacom Intuos Pro PTH-660 palm threshold was restored to the original value, it was changed accidentally. * libinput now assumes that you only have one thumb per hand, which is a statistically well-supported approximation. * A 2-finger movement out of the software button area now will no longer trigger spurious pointer motion events if one finger exits the button area before the other one. * The Wacom Intuos Pro PTH-660, when connected over Bluetooth, sometimes caused an invalid event sequence that caused libinput to lose track of the tap counter which again triggered an assertion later. ==== libisofs ==== Version update (1.4.8 -> 1.5.0) - Update to 1.5.0: * Bug fix: Multi-session emulation was not recognized with non-zero partition * New bit10 of isoburn_drive_acquire() to accept all xattr namespaces * New -xattr mode "any" to process all xattr namespaces of local filesystem * New -as mkisofs option --xattr-any * New -as mkisofs options -uid and -gid ==== libmspack ==== Version update (0.6 -> 0.8) - Update to version 0.8: * New parameter MSCABD_PARAM_SALVAGE which permits salvaging badly damaged files rather than rejecting them outright. * Fix the above 38912-byte Quantum CAB block bug. * Reject blank CHM filenames that are blank because they have embedded null bytes. * chmextract: Protect from absolute/relative pathnames in CHM files. - Update to version 0.7 (bsc#1103032): * Fix 1 or 2 byte overwrite by bad KWAJ file header extensions (CVE-2018-14681). * Fix 1 byte overread by character U+0100 in a CHM filename (CVE-2018-14682). * Reject blank CHM filenames (CVE-2018-14680). * Fix off-by-1 in CHM PMGI/PMGL chunk number validity checks, which could cause a crash (CVE-2018-14679). ==== libndp ==== Version update (1.6 -> 1.7) - Update to version 1.7 * fix socket fd missing for O_CLOEXEC * Fix issue where not sending all IPs to an interface * typo in ndptool.c fixed ==== libopenmpt ==== Version update (0.3.12 -> 0.3.13) Subpackages: libmodplug1 libopenmpt0 - Update to version 0.3.13: * [Sec] Crash with malformed MED files. * Transposed samples in AMF ASYLUM modules were not played correctly. * Notes triggered by libopenmpt_ext play_note could be played with a panbrello effect if the same virtual channel was previously used with panbrello. * Clicks when stopping channels that didn?t end at zero volume. * XM: Do not import non-standard commands N and M as channel volume commands. ==== libreoffice ==== Version update (6.1.3.1 -> 6.1.3.2) Subpackages: libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Honorably mention all the now dropped patches from 6.0 series that are merged by the 6.1 already and as such never entered TW: * bnc1088262.patch * bsc1088263.patch * bsc1095601.patch * bsc1095639.patch * bsc1098891.patch - Remove libreofficekit files that are not supposed to be installed when the feature is disabled - Update to 6.1.3.2: * 6.1.3 Final * In this release we have fixes for bsc#1079744 bsc#1088266 bsc#1095755 bsc#1110345 bsc#1107012 - Use turkish spellcheck that is now provided by myspell-dictionaries ==== libva ==== Version update (2.2.0 -> 2.3.0) Subpackages: libva-drm2 libva-x11-2 libva2 - Update to 2.3.0 * Bump VA-API version to 1.3.0 and libva to 2.3.0 * Add max frame size parameters for multiple pass case in legacy mode * Add new BRC mode AVBR * Add new interface for High Dynamic Range tone mapping * Add missing enum to string conversions * Add hevc subsets parameters structure * Add Customized Noise Reduction (HVS) interfaces * Add new BRC mode definition QVBR * Add more complete colour properties for use in VPP ==== libva-gl ==== Version update (2.2.0 -> 2.3.0) Subpackages: libva-glx2 libva-wayland2 - Update to 2.3.0 * Bump VA-API version to 1.3.0 and libva to 2.3.0 * Add max frame size parameters for multiple pass case in legacy mode * Add new BRC mode AVBR * Add new interface for High Dynamic Range tone mapping * Add missing enum to string conversions * Add hevc subsets parameters structure * Add Customized Noise Reduction (HVS) interfaces * Add new BRC mode definition QVBR * Add more complete colour properties for use in VPP ==== libvirt ==== Version update (4.8.0 -> 4.9.0) Subpackages: libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - Update to libvirt 4.9.0 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - FATE#326371 - Update SLE15 SP1 with openSUSE Factory package FATE#325848, FATE#326368 - FATE and bug references made in the SLE15 package since the last Factory update: FATE#325817, bsc#959329, bsc#1074014, bsc#1106420, bsc#1108395 - Patches in SLE15 package that are dropped by this update: 1b0c42ff-libvirtd-depend-machined.patch, ac4a12db-libxl-fix-hasManagedSave.patch ==== lightdm ==== Version update (1.26.0 -> 1.28.0) Subpackages: liblightdm-gobject-1-0 lightdm-lang - Update to version 1.28.0: * Continue to shutdown session if removing X authority fails. * Set XDG_SEAT env variable in script hooks. * Fix small leak in XDMCP server. * liblightdm-qt: Mark class PowerInterface as exported. * Fix one qt5 test being run instead of a qt4 one. * Remove use of deprecated g_type_class_add_private. * Modernise private data in objects. * Document XDG_SEAT_PATH in man page. * Fix install failing if link already exists. * Remove bashisms in configure.ac. - Rebase lightdm-sysconfig-support.patch, lightdm-xauthlocalhostname-support.patch. - Use GPG signing. ==== lightdm-gtk-greeter ==== Version update (2.0.5 -> 2.0.6) Subpackages: lightdm-gtk-greeter-lang - Update to version 2.0.6: * Multi seat support: Store state for each seat (lp#1641335). * Updated translations. ==== llvm6 ==== Subpackages: libLLVM6 libclang6 - opt-viewer-Find-style-css-in-usr-share.patch * Make sure opt-viewer installed in /usr/bin can find resources from /usr/share/opt-viewer. (boo#1112730) ==== log4j ==== - Install and package the maven pom and metadata files ==== mozjs60 ==== Version update (60.1.0 -> 60.2.2) - Update to version 60.2.2: * Bug fix release. - Drop mozjs60-fix-memory-leak-in-LCovCompartment-esr60.patch and mozjs60-prevent-an-internal-gcc-8_0_1-error.patch: Fixed upstream ==== mtools ==== Version update (4.0.18 -> 4.0.19) - patches unversioned; makes update and reviews easier * mtools-4.0.18-fat-bits.diff -> mtools-fat-bits.diff * mtools-4.0.18-conf.diff -> mtools-conf.diff * mtools-4.0.18-aliasing.diff -> mtools-aliasing.diff * mtools-4.0.18-prototypes.diff -> mtools-prototypes.diff * mtools-4.0.18-autoconf.diff -> mtools-autoconf.diff - Update to 4.0.19: * Fix for short file names starting with character 0xE5 * mpartition: Partition types closer to what Microsoft uses * mformat: figure out LBA geometry as last resort if geometry is unspecified * mformat: use same default cluster size as Microsoft for FAT32 * additional sanity checks * document how clutser size is picked in mformat.c man page * document how partition types are picked in mpartition.c man page ==== myspell-dictionaries ==== Version update (20180704 -> 20181025) Subpackages: myspell-cs_CZ myspell-da_DK myspell-de myspell-de_DE myspell-el_GR myspell-en myspell-en_GB myspell-en_US myspell-es myspell-es_ES myspell-fr_FR myspell-hu_HU myspell-it_IT myspell-lightproof-en myspell-lightproof-hu_HU myspell-lightproof-pt_BR myspell-lightproof-ru_RU myspell-pl_PL myspell-pt_BR myspell-ru_RU - Update to 20181025: * Turkish dictionary added * Updated French dictionary ==== netpbm ==== Version update (10.83.2 -> 10.84.2) Subpackages: libnetpbm11 - updated to 10.84.02 * libnetpbm: Fix invalid memory reference in color name processing when trivial memory allocation fails. pamtojpeg2k: fix incorrect interpretation of -ilyrrates option when it contains multiple delimiter characters in a row. Always broken (pamtojpeg2k was new in Netpbm 10.12 (November 2002)). * pnmtojbig: fix incorrect handling of -x option. Always broken (pnmtojbig was new in Netpbm 9.2 (May 2000)). Add pamaltsat. Thanks Anton Shepelev <anton.txt(a)gmail.com>. * Add pamtris. Thanks Lucas Brunno Luna <lucaslunar32(a)hotmail.com>. * libpbmfont, pbmtext: fix bugs with BDF file lines with insufficient number of fields. Unknown effect. * pbmtext: -wchar works with built-in fonts. * pbmtext: improved -verbose information about BDF fonts: include CHARSET_REGISTRY, CHARSET_ENCODING. * libnetpbm font facilities: built-in fonts work with wide characters. * pbmtext; libnetpbm BDF font processing: fix invalid memory reference when BDF font file has invalid syntax. Broken in primordial Netpbm, ca 1993. * pamgetcolor: fix bug: gets color of only the top half of a region. * pnmfiasco, fiascotopnm: Fix trivial memory leak. Always broken (programs were new in Netpbm 9.6, July 2000). ==== nodejs10 ==== Version update (10.12.0 -> 10.13.0) Subpackages: nodejs10-devel npm10 - New upstream LTS 10.13.0: (bsc#1112438, FATE#326776) * buffer: fix crash for invalid index types * deps: fix wrong default for v8 handle zapping - env_shebang.patch: dropped - skip_test_on_lowmem.patch: skip some build tests on low-memory build machines ==== opencv ==== Version update (3.4.1 -> 3.4.3) - Update to 3.4.3 * Compatibility fixes with python 3.7 * Added a new computational target DNN_TARGET_OPENCL_FP16 * Extended support of Intel's Inference Engine backend * Enabled import of Intel's OpenVINO pre-trained networks from intermediate representation (IR). * tutorials improvements Check https://github.com/opencv/opencv/wiki/ChangeLog#version343 for the complete changelog. - Drop fix-build-i386-nosse.patch, build-workaround-issues-with-c.patch (fixed upstream) - Refresh patches ==== orca ==== Version update (3.30.0 -> 3.30.1) Subpackages: orca-lang - Update to version 3.30.1: + General: - Fix presentation of nameless menu items in certain gnome-shell extesions. - Improve presentation of Pluma spell-check dialog. - Fix bug in sentence echo. - Fix issue with profile names containing XML special characters. + Web: Fix some chattiness with SayAll in web content. + LibreOffice: Work around Writer issue preventing presentation of selected text. + Updated translations. ==== os-prober ==== - Fix missing grub-probe command that caused linux-boot-probe to abort prematurely. It is a mistake while rebasing patch to 1.76 (bsc#1113615) * os-prober-1.49-grub2-mount.patch ==== osinfo-db ==== Version update (20180920 -> 20181011) - Update database to version 20181011 osinfo-db-20181011.tar.xz - Drop add-caasp-support.patch - Drop modify-volume-id-for-windows.patch ==== pcre2 ==== Version update (10.31 -> 10.32) Subpackages: libpcre2-16-0 libpcre2-8-0 - pcre2 10.32: * pcre2grep now supports the inclusion of binary zeros in patterns that are read from files via the -f option. * In pcre2_dfa_match(), internal recursive calls no longer use the stack for local workspace and local ovectors * Updated to Unicode version 11.0.0. * (*ACCEPT:ARG), (*FAIL:ARG), and (*COMMIT:ARG) are now supported. * Add support for \N{U+dddd}, but only in Unicode mode. * Addesupport for (?^) to unset all imnsx options ==== pesign-obs-integration ==== - rpm: properly forward dep flags - Fix new Lintian Error from Debian 10 ==== postfix ==== Subpackages: postfix-doc - update config.postfix * don't reject mail from authenticated users even if reject_unknown_client_hostname would match, add permit_sasl_authenticated to all restrictions requires smtpd_delay_reject = yes - update postfix-main.cf.patch * recover removed setting smtpd_sasl_path and smtpd_sasl_type, set to default value config.postfix will not 'enable' (remove #) var, but place modified (enabled) var at end of file, far away from place where it should be - rebase patches * fix-postfix-script.patch * postfix-vda-v14-3.0.3.patch * postfix-linux45.patch * postfix-master.cf.patch * pointer_to_literals.patch * postfix-no-md5.patch ==== psmisc ==== Version update (23.0 -> 23.2) Subpackages: psmisc-lang - Modify patch 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch to support older systems with statx kernel support - Modify patch 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch to respect autofs as well as afs file system - Add patch 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch to use statx(2) system call since kernel 4.12. Now it is possible to avoid sync with remote file servers as well as trigger autofs mounts due stat(x) calls. - Support also btrFS entries in mountinfo, that is use stat(2) to determine the device of the mounted subvolume (bsc#1098697, bsc#1112780) - Update to version 23.2 * misc: Command names increased from 16 to 64 characters * buildsys: signals.c depends on signames.h !16 * docs: Fix fuser.1 groff errors Debian #900225 * killall: look at all namespaces by default * killall: Fix -INT option parsing #11 * killall: ignore -n 0 #15 * killall: another crack at fixing getopt #12 #13 * peekfd: Attach to all threads option !15 * pslog: Define PATH_MAX if required Debian:#905797 - Modify patch 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch - Remove patches now upstream solved * psmisc-23.0-killall-signals.patch * psmisc-23.0-killall.patch - Modify and rename patch psmisc-23.0.dif which now becomes psmisc-v23.2.dif ==== publicsuffix ==== Version update (20181003 -> 20181030) - Update to version 20181030: * Add readthedocs.io (#722) * Remove trailing whitespace from L11948 (#721) * Add krasnik.pl, leczna.pl, lubartow.pl, lublin.pl, poniatowa.pl and swidnik.pl domains to the Public Suffix List (#670) * Add instantcloud.cn by Redstar Consultants (#696) * Add Fermax and mydobiss.com domain (#706) * Add shop.th & online.th (#716) * Add siteleaf.net (#655) * Add wpcomstaging.com and go-vip.co to the PSL (#719) ==== python-pip ==== Version update (18.0 -> 18.1) - specfile: * remove devel from noarch - update to version 18.1: * Features + Allow PEP 508 URL requirements to be used as dependencies. + As a security measure, pip will raise an exception when installing packages from PyPI if those packages depend on packages not also hosted on PyPI. In the future, PyPI will block uploading packages with such external URL dependencies directly. (#4187) + Upgrade pyparsing to 2.2.1. (#5013) + Allows dist options (?abi, ?python-version, ?platform, ?implementation) when installing with ?target (#5355) + Support passing svn+ssh URLs with a username to pip install - e. (#5375) + pip now ensures that the RECORD file is sorted when installing from a wheel file. (#5525) + Add support for Python 3.7. (#5561) + Malformed configuration files now show helpful error messages, instead of tracebacks. (#5798) * Bug Fixes + Checkout the correct branch when doing an editable Git install. (#2037) + Run self-version-check only on commands that may access the index, instead of trying on every run and failing to do so due to missing options. (#5433) + Allow a Git ref to be installed over an existing installation. (#5624) + Show a better error message when a configuration option has an invalid value. (#5644) + Always revalidate cached simple API pages instead of blindly caching them for up to 10 minutes. (#5670) + Avoid caching self-version-check information when cache is disabled. (#5679) + Avoid traceback printing on autocomplete after flags in the CLI. (#5751) + Fix incorrect parsing of egg names if pip needs to guess the package name. (#5819) * Vendored Libraries + Upgrade certifi to 2018.8.24 + Upgrade packaging to 18.0 + Add pep517 version 0.2 + Upgrade pytoml to 0.1.19 + Upgrade pkg_resources to 40.4.3 (via setuptools) * Improved Documentation + Fix ?Requirements Files? reference in User Guide (#user_guide_fix_requirements_file_ref) ==== python-qt5 ==== Version update (5.10.1 -> 5.11.3) Subpackages: python-qt5-utils python3-qt5 - Make sure python-enum34 is installed when building packages depending on python-qt5. - Add fix-sip-detection.patch. Picked from the Fedora package - Update to 5.11.3 * Fixed a build problem with Python v2. * Removed the checks for PyQt5.sip * Fix issues with out of source builds ==== python-requests ==== Version update (2.19.1 -> 2.20.0) Subpackages: python2-requests python3-requests - specfile: * remove devel for noarch * remove restriction for urllib3 < 1.24 * HISTORY and README changed from .rst to .md - update to version 2.20.0: * Bugfixes + Content-Type header parsing is now case-insensitive (e.g. charset=utf8 v Charset=utf8). + Fixed exception leak where certain redirect urls would raise uncaught urllib3 exceptions. + Requests removes Authorization header from requests redirected from https to http on the same hostname. (CVE-2018-18074) + should_bypass_proxies now handles URIs without hostnames (e.g. files). * Dependencies + Requests now supports urllib3 v1.24. * Deprecations + Requests has officially stopped support for Python 2.6. ==== python-rpm-macros ==== Version update (2017.12.22.d9968ab -> 2018.08.15.ada6d63) - version bump to 2018.08.15.ada6d63 ==== python-setuptools ==== Version update (40.4.3 -> 40.5.0) Subpackages: python2-setuptools python3-setuptools - update to version 40.5.0: * #1335: In pkg_resources.normalize_path, fix issue on Cygwin when cwd contains symlinks. * #1502: Deprecated support for downloads from Subversion in package_index/easy_install. * #1517: Dropped use of six.u in favor of u"" literals. * #1520: Added support for data_files in setup.cfg. * #1525: Fixed rendering of the deprecation warning in easy_install doc. ==== python-sip ==== Version update (4.19.8 -> 4.19.13) Subpackages: python-sip-common python3-sip - Add disable-strip.diff to fix the -debuginfo creation. - Update to 4.19.13: * Build system fixes * Removed support in the XML/API export for deprecated features * Pass the fully qualified Python names of types for arguments and results. * Various fixes for the XML export * Fixed a bug when arguments that were templates could lose their type hints - Update to 4.19.12: * Added the /ScopesStripped/ argument annotation. * The members of traditional C/C++ enums are now also visible within the scope of the enum itself. This means that members of scoped and unscoped enums can be accessed in the same way from Python. * Private copies of the sip module are now easier to configure and use. SIP v5 will only support private copies. * Added the -n option to the sip code generator to support private copies of the sip module. See https://www.riverbankcomputing.com/static/Downloads/sip/ChangeLog for the complete changelog. - Run spec-cleaner ==== python-urllib3 ==== Version update (1.23 -> 1.24) Subpackages: python2-urllib3 python3-urllib3 - Update to 1.24: * Allow key_server_hostname to be specified when initializing a PoolManager to allow custom SNI to be overridden. (Pull #1449) * Test against Python 3.7 on AppVeyor. (Pull #1453) * Early-out ipv6 checks when running on App Engine. (Pull #1450) * Change ambiguous description of backoff_factor (Pull #1436) * Add ability to handle multiple Content-Encodings (Issue #1441 and Pull #1442) * Skip DNS names that can't be idna-decoded when using pyOpenSSL (Issue #1405). * Add a server_hostname parameter to HTTPSConnection which allows for overriding the SNI hostname sent in the handshake. (Pull #1397) * Drop support for EOL Python 2.6 (Pull #1429 and Pull #1430) * Fixed bug where responses with header Content-Type: message/* erroneously raised HeaderParsingError, resulting in a warning being logged. (Pull #1439) * Move urllib3 to src/urllib3 (Pull #1409) - Drop patch 1414.patch merged upstream - Refresh patches: * python-urllib3-recent-date.patch * urllib3-ssl-default-context.patch ==== qalculate ==== Version update (2.6.2 -> 2.8.0) - Update to 2.8.0 * Equation solved and improved simplification for expressions with trigonometric functions. * General improvements to simplification and equation solving. * Improved factorization. * New magnitude(), entrywise() and hadamard() functions, and new n variable (unknown integer). * Parse |x| and ||x|| as abs(x) and magnitude(x). * Use kilo as prefix for gram if automatic prefix is off. ==== rdma-core ==== Version update (18.1 -> 20.1) Subpackages: libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Update to rdma-core v20.1 (fate#325887, fate#325919, fate#326000) * No release notes available - Drop patches merged upstream: * suse-Add-recommends-for-rxe_cfg-requirements.patch adds recommends for the relevant packages * rxe-switch-to-iproute2-for-rxe_cfg.patch switches to iproute2 commands ==== ruby2.5 ==== Version update (2.5.0 -> 2.5.1) Subpackages: libruby2_5-2_5 ruby2.5-devel ruby2.5-stdlib - backport 450160263aed8c446ce5b142d71f921ab4118f3a.patch: Include the alternative malloc header instead of malloc.h - update to 2.5.1 This release includes some bug fixes and some security fixes. - CVE-2017-17742: HTTP response splitting in WEBrick - CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir - CVE-2018-8777: DoS by large request in WEBrick - CVE-2018-8778: Buffer under-read in String#unpack - CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket - CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir - Multiple vulnerabilities in RubyGems https://github.com/ruby/ruby/compare/v2_5_0...v2_5_1 - added frozen-pop3.patch: Net::POPMail methods modify frozen literal when using default arg https://redmine.ruby-lang.org/issues/14416 ==== rubygem-nokogiri ==== Version update (1.8.4 -> 1.8.5) - updated to version 1.8.5 [#]# Security Notes [MRI] Pulled in upstream patches from libxml2 that address CVE-2018-14404 and CVE-2018-14567. Full details are available in [#1785](https://github.com/sparklemotion/nokogiri/issues/1785). Note that these patches are not yet (as of 2018-10-04) in an upstream release of libxml2. [#]# Bug fixes * [MRI] Fix regression in installation when building against system libraries, where some systems would not be able to find libxml2 or libxslt when present. (Regression introduced in v1.8.3.) [#1722] * [JRuby] Fix node reparenting when the destination doc is empty. [#1773] ==== samba ==== Version update (4.9.1+git.96.c3bff26bf16 -> 4.9.1+git.101.212e237d8ef) Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2 libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit - lib:socket: If returning early, set ifaces; (bso#13665); (bsc#1111373); - winbind requires latest version of libtevent-util0 to start ==== simple-scan ==== Version update (3.30.1.1 -> 3.30.2) Subpackages: simple-scan-lang - Update to version 3.30.2: + Updated translations. ==== strace ==== Version update (4.24 -> 4.25) - Update to strace 4.25 * Improvements * Implemented decoding of KVM_CHECK_EXTENSION and NBD_* ioctl commands. * Implemented decoding of SOL_XDP socket option names. * Implemented decoding of AF_PACKET protocols in socket syscall. * Implemented decoding of AF_AX25 and AF_X25 addresses, protocols, and options. * Implemented stack trace printing on receiving signals. * Enhanced xlat styles support configured by -X option. * Enhanced decoding of IFLA_*, NETCONFA_*, and SMC_DIAG_* netlink attributes. * Wired up io_pgetevents syscall on arm, sparc, and sparc64. * Updated lists of AF_*, AUDIT_*, BPF_*, IFLA_*, IN_*, IPSTATS_*, IPV4_DEVCONF_*, NT_*, SCTP_*, SO_*, SOCK_*, SOL_*, and V4L2_* constants. * Updated lists of ioctl commands from Linux 4.19. * Bug fixes * Fixed decoding of bit sets in evdev ioctl commands. * Fixed decoding of EVIOCGBIT(0, ...) ioctl commands. * Fixed test suite for the case when mlockall and unimplemented syscalls are explicitly disabled by a seccomp filter. ==== systemd-presets-branding-transactional-server ==== - enable ca-certificates.service for transactional server. Normal systems don't need it at boot (boo#1088378). ==== systemd-presets-common-SUSE ==== - disable ca-certificates.service as it needlessly slows down boot (boo#1088378). update-ca-certificates will still be triggered by the path when there are actual changes. ==== unbound ==== Subpackages: libunbound2 unbound-anchor - Drop pre-rollover key 19036 from 2010, only leave 2017/2018 rollover key 20326 (bsc#1112009, bsc#1004165) - Removed intermediate certificates from certificate bundle (bsc#1112033) ==== unixODBC ==== Version update (2.3.6 -> 2.3.7) - Update to 2.3.7: * Fix for pkg-config file update on no linux platforms * Add W entry for GUI work * Various fixes for SQLBrowseConnect/W, SQLGetConnectAttr/W,and SQLSetConnectAttr/W * Fix buffer overflows in SQLConnect/W and refine behaviour of SQLGet/WritePrivateProfileString * SQLBrowseConnect/W allow disconnecting a started browse session after error * Add --with-stats-ftok-name configure option to allow the selection of a file name used to generate the IPC id when collecting stats. Default is the system odbc.ini file * Improve diag record handling with the behavior of Windows DM and export SQLCancelHandle * bug fix when SQLGetPrivateProfileString() is called to get a list of sections or a list of keys * Connection pooling: Fix liveness check for Unicode drivers - Add unixODBC-2.3.7-warning-cleanup.patch: 2.3.7 a 64bit protability error See https://github.com/lurcher/unixODBC/issues/18 ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang - Add upower-fix-keyboard-backlight.patch: daemon: Fix upower's keyboard backlight support. Disabling kernel tunables blocked us from accessing /sys, meaning we couldn't change keyboard backlight levels. ==== vsftpd ==== - firewall-macros should be BuildRequires, not Requires(post) (the macro gets expanded during package build) ==== xapian-core ==== Version update (1.4.6 -> 1.4.7) - Update to 1.4.7: * API: + Database::check(): Fix bogus error reports for documents with length zero due to a new check added in 1.4.6 that the doclength was between the stored upper and lower bounds, which failed to allow for the lower bound ignoring documents with length zero (since documents indexed only by boolean terms aren't involved in weighted searches). + Query: Use of Query::MatchAll in multithreaded code causes problems because the reference counting gets messed up by concurrent updates. Document that Query(string()) should be used instead of MatchAll in multithreaded code, and avoid using it in library code. * Stem: + Stemming algorithms added for Irish, Lithuanian, Nepali and Tamil. + Merge Snowball compiler changes which improve code generation. + Merge optimisations to the Arabic and Turkish stemmers. * testsuite: + Fix duplicate test in apitest closedb10 testcase. * See also https://xapian.org/docs/xapian-core-1.4.7/NEWS ==== xdg-user-dirs ==== Version update (0.16 -> 0.17) Subpackages: xdg-user-dirs-lang - update to 0.17: + Respect $HOME in favor of getpwuid() + Updated translations + Documentation spelling fixes ==== xfsprogs ==== Version update (4.16.1 -> 4.18.0) Subpackages: libhandle1 - Update to v4.18.0 * xfs_repair: notify user if free inodes are corrupt * xfs_repair: use extent size validation helpers * xfs_quota: don't stop the directory tree walk at DEPTH * xfs_scrub: ongoing updates * xfs_io: document shutdown -f * xfs_io: wire up online repair ioctls * misc: adddebian initramfs hook to package * misc: remove unused macros * misc: remove many XFS_BUF macros * Majority of 4.18 libxfs changes merged from kernel - Update to v4.17.0 * mkfs.xfs: only stat block devices during mkfs init * xfs_repair: multiple fixes and improvements * xfs_repair: check and repair quota metadata * xfs_repair: fix shortform root inode parent * xfs_db: don't ASSERT on unrecognized metadata * xfs_db: add superblock info command ala xfs_info * xfs_spaceman: add superblock info command ala xfs_info * xfs_info: call xfs_db for unmounted devices * xfs_io: add online label command * xfs_io: add O_PATH and O_NOFOLLOW options * xfs_io: recognize *iB units in copy_range - Removed now-obsolete patches: * xfsprogs-mkfs-avoid-divide-by-zero-when-hardware-reports-opti.patch ==== xmlgraphics-fop ==== - Add reproducible-build-manifest.patch: Remove custom "Build-Id" from manifests. It contains date and other information making the build unreproducible (boo#1110024). ==== zimg ==== Version update (2.7.5 -> 2.8) - Update to version 2.8: * api: rename colorspace enum values * colorspace: AVX-512 code paths for commonly used transfer functions * colorspace: optimize SSE2 LUT-based transfer functions * common: reduce execution overhead * depth: increase ordered dither pattern from 8x8 to 16x16 * depth: use blue noise instead of white for random dither * depth: use different dither pattern on each color component * resize: optimize x86 SIMD horizontal downsampling with >8 taps * x86: cache detection on AMD processors * x86: optimizations for AMD Excavator processors ==== zstd ==== Version update (1.3.5 -> 1.3.7) - zstd 1.3.7: * fix ratio for dictionary compression at levels 9 and 10 * add man pages for zstdless and zstdgrep - includes changes from zstd 1.3.6: * faster dictionary builder, also the new default for --train * previous (slower, slightly higher quality) dictionary builder to be selected via --train-cover * Faster dictionary decompression and compression under memory limits with many dictionaries used simultaneously * New command --adapt for compressed network piping of data adjusted to the perceived network conditions - drop zstd-1.3.5-fix-list-stdin.patch, upstream - switch from git tag snaphshot to bootstrapped tarball -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

1 0

[opensuse-factory] Linux 4.12.14-lp150.12.25-default [openSUSE Leap 15.0] - getty's show problematic behavior
by H.Merijn Brand 08 Nov '18

08 Nov '18

After this CVE announcement: Subject: [security-announce] openSUSE-SU-2018:3658-1: important: Security update for the Linux Kernel Date: Wed, 7 Nov 2018 21:11:37 +0100 (CET) From: opensuse-security(a)opensuse.org To: opensuse-security-announce(a)opensuse.org Message-Id: <20181107201137.4437EFCBE(a)maintenance.suse.de> I did a # zypper patch # zypper up # zypper dup and I notice that all my ASCII terminals (Alt-Ctrl-F1 .. F6) show problematic behavior, as if they loose input after a random time sometimes I cannot login, sometimes I can, but than I cannot type after one or two commands. Sometime the session stays irresponsive for 20 minutes or more, sometimes I can type again after 5 minutes I also noted the same behavior in one or two regular xterm sessions Any known issues? -- H.Merijn Brand http://tux.nl Perl Monger http://amsterdam.pm.org/ using perl5.00307 .. 5.29 porting perl5 on HP-UX, AIX, and openSUSE http://mirrors.develooper.com/hpux/ http://www.test-smoke.org/ http://qa.perl.org http://www.goldmark.org/jeff/stupid-disclaimers/

2 2

[opensuse-factory] New packages for Factory: keybase-client and kbfs
by Matthias Bach 07 Nov '18

07 Nov '18

Hi all, I am sending two new packages on their way to Factory: keybase-client and kbfs. Keybase [1] provides a functionality to get somewhat trustworthy crypto keys of others based on their presences on the internet (e.g. Homepage, Social Media Account). Obviously this is not as good as a fully handvalidated PGP key but much better than just grabbing the first key matching an Email address of a Key Server. Especially if you only have a Github account name and no mail address. keybase-client [2] is the official, open-source command line client for Keybase and enables using the core functionality, including tracking other accounts, pulling PGP keys for those, and binding the account to presences on the web by generating proofs. kbfs [3] supplements the keybase-client by also providing the open-source FUSE service and Git remote helper required to use Keybase's add-on functionality of the Keybase Filesystem and Keybase Git repositories. In both cases data is stored signed and encrypted on Keybase servers with keys being managed on the client via the keybase accounts. Some of this functionality is also exposed via the command-line client but won't work unless kbfs is also installed. As these are crypto-related packages, the security project is used as a devel project. I hope these prove useful to some. Kind Regards, Matthias [1]: https://keybase.io [2]: https://github.com/keybase/client [3]: https://github.com/keybase/kbfs -- Dr. Matthias Bach www.marix.org „Der einzige Weg, die Grenzen des Möglichen zu finden, ist ein klein wenig über diese hinaus in das Unmögliche vorzustoßen.“ - Arthur C. Clarke

2 1

[opensuse-factory] New package: denyhosts
by Javier Llorente 07 Nov '18

07 Nov '18

Hello! I would like to get denyhosts into Factory For those who don't know, DenyHosts is a Python script intended to prevent brute force attacks on SSH severs. It monitors login attempts and blocks the IP if necessary (based on configuration). https://github.com/denyhosts/denyhosts Latest release: 3.1 beta Devel project: network:utilities License: GPL v2.0 Greetings, -- Javier Llorente

4 6

[opensuse-factory] New Tumbleweed snapshot 20181105 released!
by Dominique Leuenberger 07 Nov '18

07 Nov '18

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: build (20180830 -> 20181022) expect (5.45.3 -> 5.45.4) gcc8 (8.2.1+r264010 -> 8.2.1+r265487) hostname (3.20 -> 3.21) pam (1.3.0 -> 1.3.1) permissions (20180827 -> 20181030) === Details === ==== build ==== Version update (20180830 -> 20181022) Subpackages: build-mkbaselibs build-mkdrpms - require psmisc util for fuser - Start debian support for kiwi images/containers - Support building with unordered repositories for kiwi/docker builds - Write the package list of the base container in kiwi container builds - Support kiwi's "additionaltags" attribute (added in kiwi 9.15.3) - Add some substitutes for the extra container tags - Support "OBS-AddTag" directive to set multiple container tags in kiwi builds - Archlinux updates - SLE 12 SP4 config - Appimage: support source file parsing ==== expect ==== Version update (5.45.3 -> 5.45.4) - New version 5.45.4: * Fix two bugs in EOF handling. ==== gcc8 ==== Version update (8.2.1+r264010 -> 8.2.1+r265487) Subpackages: cpp8 gcc8-c++ gcc8-fortran gcc8-info gcc8-locale gcc8-objc libasan5 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libmpx2 libmpxwrappers2 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc8 libtsan0 libubsan1 - Add gcc8-pr86751.patch, revert fix for PR86751 which breaks the ABI. - Update to gcc-8-branch head (r265487). * Pulls in libbacktrace fix. [bnc#1112690] - Add gcc8-pr87642.patch to fix multibyte thousands separator printing. [bnc#1112361] - Fix AVR configuration to not use __cxa_atexit or libstdc++ headers. Point to /usr/avr/sys-root/include as system header include directory. ==== hostname ==== Version update (3.20 -> 3.21) - Update to 3.21: * Minor fixes to the manpage ==== pam ==== Version update (1.3.0 -> 1.3.1) Subpackages: pam-32bit pam-devel - Upgrade to 1.3.1 * pam_motd: add support for a motd.d directory * pam_umask: Fix documentation to align with order of loading umask * pam_get_user.3: Fix missing word in documentation * pam_tally2 --reset: avoid creating a missing tallylog file * pam_mkhomedir: Allow creating parent of homedir under / * access.conf.5: Add note about spaces around ':' * pam.8: Workaround formatting problem * pam_unix: Check return value of malloc used for setcred data * pam_cracklib: Drop unused prompt macros * pam_tty_audit: Support matching users by uid range * pam_access: support parsing files in /etc/security/access.d/*.conf * pam_localuser: Correct documentation * pam_issue: Fix no prompting in parse escape codes mode * Unification and cleanup of syslog log levels Also: removed nproc limit, referred to systemd instead. Patch5 (pam-fix-config-order-in-manpage.patch) not needed any more. [bsc#1112508, pam-fix-config-order-in-manpage.patch] ==== permissions ==== Version update (20180827 -> 20181030) - Update to version 20181030: * capability whitelisting: allow cap_net_bind_service for ns-slapd from 389-ds - Update to version 20181029: * setuid whitelisting: add fusermount3 (bsc#1111230) - Update to version 20181025: * setuid whitelisting: add authbind binary (bsc#1111251) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

1 0

[opensuse-factory] New Tumbleweed snapshot 20181103 released!
by Dominique Leuenberger 06 Nov '18

06 Nov '18

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apache-commons-logging autoyast2 (4.0.61 -> 4.0.65) bcm20702a1-firmware digikam installation-images-Kubic (14.387 -> 14.388) libstorage-ng (4.1.24 -> 4.1.53) libyui-ncurses-pkg (2.48.8 -> 2.48.9) libyui-qt (2.49.5 -> 2.49.7) libyui-qt-pkg (2.45.20 -> 2.45.22) oprofile patterns-xfce (20171113 -> 20181030) rubygem-autoprefixer-rails (9.1.4 -> 9.3.1) rubygem-mail (2.7.0 -> 2.7.1) rubygem-rspec (3.7.0 -> 3.8.0) rubygem-rspec-core (3.7.1 -> 3.8.0) rubygem-rspec-expectations (3.7.0 -> 3.8.2) rubygem-rspec-mocks (3.7.0 -> 3.8.0) rubygem-rspec-support (3.7.1 -> 3.8.0) rubygem-yast-rake (0.2.26 -> 0.2.28) snapper (0.6.1 -> 0.8.0) squid (4.3 -> 4.4) yast2 (4.1.6 -> 4.1.32) yast2-add-on (4.1.5 -> 4.1.7) yast2-bootloader (4.1.8 -> 4.1.11) yast2-control-center (4.1.1 -> 4.1.2) yast2-core (4.0.3 -> 4.1.0) yast2-country (4.0.23 -> 4.1.0) yast2-dhcp-server (4.1.2 -> 4.1.3) yast2-firewall (4.0.26 -> 4.0.33) yast2-fonts (4.0.0 -> 4.0.1) yast2-installation (4.1.13 -> 4.1.24) yast2-instserver (4.1.1 -> 4.1.2) yast2-network (4.1.6 -> 4.1.15) yast2-ntp-client (4.1.0 -> 4.1.3) yast2-packager (4.1.4 -> 4.1.11) yast2-pkg-bindings (4.0.13 -> 4.1.0) yast2-ruby-bindings (4.0.6 -> 4.1.0) yast2-samba-client (4.0.2 -> 4.0.3) yast2-samba-server (4.1.0 -> 4.1.1) yast2-services-manager (4.1.7 -> 4.1.8) yast2-snapper (4.0.4 -> 4.0.5) yast2-storage-ng (4.1.13 -> 4.1.29) yast2-theme (4.1.1 -> 4.1.4) yast2-update (4.1.1 -> 4.1.4) yast2-users (4.0.5 -> 4.0.7) yast2-x11 (4.0.0 -> 4.0.1) yast2-ycp-ui-bindings (4.0.0 -> 4.1.0) === Details === ==== apache-commons-logging ==== - Cleanup of maven pom files installation ==== autoyast2 ==== Version update (4.0.61 -> 4.0.65) Subpackages: autoyast2-installation - Saving y2logs after the installation has been finished. (fate#325737) - 4.0.65 - Adapt schema to support the new way of defining a software RAID (fate#326573). - 4.0.64 - Added license file to spec. - AutoInstallRules: Do a cleanup of the profile being merged with (bsc#1108933). - 4.0.63 - AutoYaST configuration module: Enable edit action for firewall module (fate#324662). - 4.0.62 ==== bcm20702a1-firmware ==== - Avoid bashisms in %post - Fetch & install another variant firmware (0a5c:21e8) (bsc#1087996) ==== digikam ==== Subpackages: kipi-plugins kipi-plugins-lang - Add Add-QtWebEngine-support.patch to allow building with QtWebEngine instead of QtWebKit - Use QtWebEngine on platforms where it is available - Add some necessary build requirements to avoid relying on other packages pulling them in - Remove unused libqca-qt5-devel BuildRequires - Add Lower-minimum-exiv2-version.patch to make it build on Leap 42.3 - Remove some build requirements that are not used anymore since a long time - Remove unnecessary ENABLE_OPENCV3 and ENABLE_MYSQLSUPPORT cmake options, they are ON by default since 5.7.0 - Remove obsolete ENABLE_LCMS2 option, LCMS2 is mandatory since 5.0 ==== installation-images-Kubic ==== Version update (14.387 -> 14.388) - merge gh#openSUSE/installation-images#270 - Kubic has its own skelcd package now (bsc#1114455) - 14.388 - Use skelcd-control-Kubic for Kubic flavour (boo#1114455) - Handle aarch64 and ppc64/ppc64le repos ==== libstorage-ng ==== Version update (4.1.24 -> 4.1.53) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Japanese) - 4.1.53 - Translated using Weblate (Italian) - 4.1.52 - Translated using Weblate (Catalan) - 4.1.51 - merge gh#openSUSE/libstorage-ng#588 - Regenerated potfiles - 4.1.50 - merge gh#openSUSE/libstorage-ng#585 - Fixed broken autobuild environment - Support for StrayBlkDevices in CompoundActions (bsc#1085134) - Moved predicates to base class - New unit test for Bcache compound actions - Use new check from superclass - Removed unnecessary include - Support for Bcache in CompoundActions - First (incomplete) CompoundAction formatter for Bcache - Fixed broken English - Use inherited methods - Use actual output for translator examples - Use multiple lines, not one neverending line - First complete CompoundAction formatter for Bcache - First unit test for MD-RAID compound actions - Added CompoundActions formatter for MD-RAIDs - More test cases for MD-RAID - User sanity check - Coding style cleanup - Updated year in useless legalese - Added missing sformat parameter - Added missing parameter doc in translator comment - Fixed translator comments - Moved device list formatting out to separate common function - Use better comparision function - Use existing constants - New CompoundActions - merge gh#openSUSE/libstorage-ng#587 - extended documentation - ported check from snapper - minor improvements - 4.1.49 - merge gh#openSUSE/libstorage-ng#586 - mark AUTHORS as %doc - merge gh#openSUSE/libstorage-ng#584 - mark LICENSE file as license - 4.1.48 - merge gh#openSUSE/libstorage-ng#583 - Use predicates to make the code much better readable - Added missing return - Use speaking function names for getters - Moved methods to base class - Use predicates and speaking getters to make the code much better readable (bsc#1085134) - 4.1.47 - merge gh#openSUSE/libstorage-ng#582 - make format of po files consistent with gettext - 4.1.46 - merge gh#openSUSE/libstorage-ng#580 - add bcache attributes (fate#325346) - [RFC] add bcache attributes (fate#325346) - 4.1.45 - Translated using Weblate (Chinese (China)) - 4.1.44 - merge gh#openSUSE/libstorage-ng#581 - Added test case for weird UUID (bsc#1102572) - Whitespace - Fixed blkid output parser to honor escaped quotes (bsc#1102572) - Fixed blkid output parser to honor escaped quotes - 4.1.43 - Translated using Weblate (Dutch) - 4.1.42 - Translated using Weblate (Indonesian) - 4.1.41 - Translated using Weblate (Indonesian) - merge gh#openSUSE/libstorage-ng#579 - Use for bcache cset as display name string "bcache cache" (fate#325346) - 4.1.40 - merge gh#openSUSE/libstorage-ng#578 - use predefined constants - 4.1.39 - Translated using Weblate (Russian) - 4.1.38 - merge gh#openSUSE/libstorage-ng#577 - implement searching for free name for bcache (fate#325346) - 4.1.37 - Translated using Weblate (Dutch) - 4.1.36 - merge gh#openSUSE/libstorage-ng#576 - Added Travis ccache documentation - Added Travis ccache documentation and cache cleanup - 4.1.35 - Translated using Weblate (Chinese (China)) - 4.1.34 - merge gh#openSUSE/libstorage-ng#575 - Use ccache in Travis builds - Use ccache in Travis builds (up to 4x faster) - 4.1.33 - merge gh#openSUSE/libstorage-ng#574 - Allow to set Md uuid for testing - 4.1.32 - Translated using Weblate (Danish) - 4.1.31 - merge gh#openSUSE/libstorage-ng#573 - extended documentation - 4.1.30 - merge gh#openSUSE/libstorage-ng#572 - Allow bcache to have partitions (fate#325346) - Allow bcache to have partitions - 4.1.29 - merge gh#openSUSE/libstorage-ng#571 - do not translate snapshot description (bsc#1092757) - updated pot und po files - 4.1.28 - Translated using Weblate (German) - 4.1.27 - Translated using Weblate (Portuguese (Brazil)) - 4.1.26 - merge gh#openSUSE/libstorage-ng#570 - merge gh#openSUSE/libstorage-ng#569 - fixed variable scope to fix temporary mounting (bsc#1099144) - added unit test - 4.1.25 ==== libyui-ncurses-pkg ==== Version update (2.48.8 -> 2.48.9) - Remove the RPM Groups view (FATE#326485). - 2.48.9 ==== libyui-qt ==== Version update (2.49.5 -> 2.49.7) - Fix style disappearing from sidebar (boo#1111720) - 2.49.7 - Enable HiDPI (bsc#1089886) - 2.49.6 ==== libyui-qt-pkg ==== Version update (2.45.20 -> 2.45.22) - New way of handling emblems with theming support (boo#1109382) - 2.45.22 - Remove the RPM Groups view (FATE#326485). - 2.45.21 ==== oprofile ==== Subpackages: libopagent1 - Handle empty event name gracefully on ppc. New patch: oprofile-handle-empty-event-name-spec-gracefully-for-ppc.patch ==== patterns-xfce ==== Version update (20171113 -> 20181030) Subpackages: patterns-xfce-xfce patterns-xfce-xfce_basis patterns-xfce-xfce_laptop patterns-xfce-xfce_office - changes in Recommends as per ML thread: https://lists.opensuse.org/opensuse-factory/2018-10/msg00271.html - added recommends menulibre - mousepad replaces leafpad - xreader replaces evince - engrampa replaces file-roller - parole replaces totem ==== rubygem-autoprefixer-rails ==== Version update (9.1.4 -> 9.3.1) - updated to version 9.3.1 * Fix Grid prefixes with `repeat()` value (by Bogdan Dolin). [#] Fixes in previous versions [#]# 9.3 ?Labor omnia vincit? * Add `place-self` support (by Bogdan Dolin). * Fix Grid row/column span inheritance bug (by Bogdan Dolin). [#]# 9.2.1 * Update Can I Use data. [#]# 9.2 ?Ony est glavnaya krepost? * Add `/* autoprefixer grid: on */` control comment (by Andrey Alexandrov). * Add duplicate `grid-area` support (by Bogdan Dolin). * Fix `grid-gap` support for rules with different specifity (by Bogdan Dolin). * Disable Grid in `@supports` at-rule with non-supported Grid features. * Improve Grid warnings (by Daniel Tonon). ==== rubygem-mail ==== Version update (2.7.0 -> 2.7.1) - updated to version 2.7.1 Compatibility: * Restore LF=>CRLF conversions for properly encoded non-binary emails. (rubys) * Gracefully parse certain invalid Content-Type headers. (rafbm) * Support `x-uue` transfer encoding as uuencoding. (jkraemer) Features: * Expose Mail::Field#unparsed_value to read the raw field value, before parsing. (Tensho) Performance: * Speed up message encoding, especially with large attachments. (dalibor) Bugs: * Fix transfer encoding when message encoding is blank. (jakubonty, saks) * Fix 7bit/base64 content transfer encoding mismatch. (ahorek) * Fix UTF-8 attachment filename quoting. (ahorek) * Fix `delete_all` using a readonly IMAP connection. (kimromi) ==== rubygem-rspec ==== Version update (3.7.0 -> 3.8.0) - updated to version 3.8.0 no changelog found ==== rubygem-rspec-core ==== Version update (3.7.1 -> 3.8.0) - updated to version 3.8.0 [Full Changelog](http://github.com/rspec/rspec-core/compare/v3.7.1...v3.8.0) Enhancements: * Improve shell escaping used by `RSpec::Core::RakeTask` and `--bisect` so that it works on `Pathname` objects. (Andrew Vit, #2479) * Nicely format errors encountered while loading files specified by `--require` option. (Myron Marston, #2504) * Significantly improve the performance of `--bisect` on platforms that support forking by replacing the shell-based runner with one that uses forking so that RSpec and the application environment can be booted only once, instead of once per spec run. (Myron Marston, #2511) * Provide a configuration API to pick which bisect runner is used for `--bisect`. Pick a runner via `config.bisect_runner = :shell` or `config.bisect_runner = :fork` in a file loaded by a `--require` option passed at the command line or set in `.rspec`. (Myron Marston, #2511) * Support the [XDG Base Directory Specification](https://specifications.freedesktop.org/basedir-spec/latest/) for the global options file. `~/.rspec` is still supported when no options file is found in `$XDG_CONFIG_HOME/rspec/options` (Magnus Bergmark, #2538) * Extract `RSpec.world.prepare_example_filtering` that sets up the example filtering for custom RSpec runners. (Oleg Pudeyev, #2552) Bug Fixes: * Prevent an `ArgumentError` when truncating backtraces with two identical backtraces. (Systho, #2515, Benoit Tigeot, #2539) ==== rubygem-rspec-expectations ==== Version update (3.7.0 -> 3.8.2) - updated to version 3.8.2 [Full Changelog](http://github.com/rspec/rspec-expectations/compare/v3.8.1...v3.8… Bug Fixes: * Change `include` matcher to rely on a `respond_to?(:include?)` check rather than a direct Hash comparison before calling `to_hash` to convert to a hash. (Jordan Owens, #1073) * Prevent unexpected call stack jumps from causing an obscure error (`IndexError`), and replace that error with a proper informative message. (Jon Rowe, #1076) - updated to version 3.8.1 [Full Changelog](http://github.com/rspec/rspec-expectations/compare/v3.8.0...v3.8… Bug Fixes: * Fix regression in `include` matcher so stopped `expect(hash.with_indifferent_access).to include(:symbol_key)` from working. (Eito Katagiri, #1069) - updated to version 3.8.0 [Full Changelog](http://github.com/rspec/rspec-expectations/compare/v3.7.0...v3.8… Enhancements: * Improve failure message of `change(receiver, :message)` by including the receiver as `SomeClass#some_message`. (Tomohiro Hashidate, #1005) * Improve `change` matcher so that it can correctly detect changes in deeply nested mutable objects (such as arrays-of-hashes-of-arrays). The improved logic uses the before/after `hash` value to see if the object has been mutated, rather than shallow duping the object. (Myron Marston, #1034) * Improve `include` matcher so that pseudo-hash objects (e.g. objects that decorate a hash using a `SimpleDelegator` or similar) are treated as a hash, as long as they implement `to_hash`. (Pablo Brasero, #1012) * Add `max_formatted_output_length=` to configuration, allowing changing the length at which we truncate large output strings. (Sam Phippen #951, Benoit Tigeot #1056) * Improve error message when passing a matcher that doesn't support block expectations to a block based `expect`. (@nicktime, #1066) ==== rubygem-rspec-mocks ==== Version update (3.7.0 -> 3.8.0) - updated to version 3.8.0 [Full Changelog](http://github.com/rspec/rspec-mocks/compare/v3.7.0...v3.8.0) Bug Fixes: * Issue error when encountering invalid "counted" negative message expectations. (Sergiy Yarinovskiy, #1212) * Ensure `allow_any_instance_of` and `expect_any_instance_of` can be temporarily supressed. (Jon Rowe, #1228) * Ensure `expect_any_instance_of(double).to_not have_received(:some_method)` fails gracefully (as its not supported) rather than issuing a `NoMethodError`. (Maxim Krizhanovsky, #1231) ==== rubygem-rspec-support ==== Version update (3.7.1 -> 3.8.0) - updated to version 3.8.0 [Full Changelog](http://github.com/rspec/rspec-support/compare/v3.7.1...v3.8.0) Bug Fixes: * Order hash keys before diffing to improve diff accuracy when using mocked calls. (James Crisp, #334) ==== rubygem-yast-rake ==== Version update (0.2.26 -> 0.2.28) - Changed the SLE12-SP4 SR target to the :Update subproject (bsc#1113887) - 0.2.28 - Added CASP-4.0 target (needed for fate#325834) - 0.2.27 - Removed installation of file COPYING into the doc directory. This file will be packed by the %license tag in the spec files. ==== snapper ==== Version update (0.6.1 -> 0.8.0) Subpackages: libsnapper4 snapper-zypp-plugin - extended space aware cleanup algorithm to ensure minimal free space for btrfs (within known ranges) (fate#325774) - version 0.8.0 - fixed querying default and active snapshot if compiled without rollback support (gh#openSUSE/snapper#442) - version 0.7.2 - disallow to delete special (for btrfs currently mounted and next to be mounted) snapshots (fate#326479) - version 0.7.1 - mark active and default btrfs subvolume in list output (fate#326479) - reorder columns in snapper list output (fate#326479) - version 0.7.0 ==== squid ==== Version update (4.3 -> 4.4) - New upstream stable version 4.4: + Fix memory leak when parsing SNMP packet (bsc#1113669) + Fixed display of error page by quoting certificate fields before displaying them (bsc#1113668) + Malformed %>ru URIs for CONNECT requests ==== yast2 ==== Version update (4.1.6 -> 4.1.32) - view_anymsg: allow user to switch to yast2-journal if file does not exist or is empty (bsc#948729) - 4.1.32 - Added flag save_y2logs to control.xml file in order to save YaST logs at the end of installation (fate#325737) - 4.1.31 - Ensure that Installation.sourcedir exists (bsc#1097700) - Use LSB compliant Installation.sourcedir - 4.1.30 - CWMFirewallInterfaces: make some "current state" methods public needed by yast2-rmt (fate#326634) - 4.1.29 - Network (Firewall): Added modify_masquerade method to zones API unifying the way changes are applied to single value attributes. (bsc#1112547) - 4.1.28 - adapted to extended output of snapper (fate#326479, bsc#1111831) - 4.1.27 - Small CWM optimization by avoiding deep_copy on big data (bsc#1112402). - 4.1.26 - CWMFirewallInterfaces: Improved the user UX replacing the api calls for checking supported services once the list supported ones are already known by the firewalld instance (fate#324662) - 4.1.25 - Splitting yast2 package into yast2 and yast2-logs. yast2-logs contains only scripts for handling YaST logs (fate#325737). - 4.1.24 - Added tags full_system_media_name and full_system_download_url in control.xml which describe the location for the "all-packages" medium. This information will be shown if the registration has been scipped by the user. No hint will be shown if these tags have not been defined. (fate#325834) - 4.1.23 - Added new methods to firewalld_wrapper in order to switch yast2-dhcp-server to new firewall module. (bsc#1108942) - 4.1.22 - Log viewer: replace invalid UTF-8 characters from the displayed log to avoid a crash (bsc#1110549) - 4.1.21 - Network (Firewall): - Added some methods needed for AutoYaST configuration (fate#324662) - Make the service status label stretchable so the updated status is displayed correctly (bsc#1110407) - 4.1.20 - bnc#964856 - fixed internal error - do not crash when updating device config - 4.1.19 - Y2Firewall::Firewalld: Single attributes setter will not modify the value of the attribute in case it is the same (bsc#1109812) - 4.1.18 - Improve Y2Firewall::Firewalld::Interface#zone to return an Zone object (fate#324662). - 4.1.17 - bnc#964856 - removed obsolete parts of NetworkInterfaces API: ifcfg_part, device_type, device_num, alias_num, GetFreeDevices, GetFreeDevice, LocateNOT, ListDevicesExcept - 4.1.16 - Network (Firewall) - Added Y2Firewall::Firewalld::Interface class. - Adapted interfaces helpers to work with the new class. (fate#324662) - 4.1.15 - Add a new popup widget (fate#324662). - Add a helper class UIState to keep the UI states when using CWM. - Y2Firewall::Firewalld: Added convenience method to obtain the firewalld service object (fate#324662) - 4.1.14 - Allow reading the installation.xml (skelcd-* package) from other repository than the initial one (e.g. the self update), select the highest version of the package (instead of the first found) (bsc#1101016) - 4.1.13 - Firewalld: Fixed the API cmd call for removing services from zones when the firewall is in offline mode (bsc#1108628) - 4.1.12 - CWM: avoid to always return :next when accepting a dialog. - Needed for Expert Partitioner (fate#318196). - 4.1.11 - Added the missing SuSEFirewallProposal.rb file to the Makefile (bsc#1087867) - 4.1.10 - Bring back the SuSEFirewallProposal fixing the class unit tests until yast2-network drops the import of the module completely. (bsc#1087867) - 4.1.9 - Extended the firewall API supporting the use of single-value attributes and also prepared it for introducing more complex relations like 'forward-ports' and 'rich-rules' in the future. (fate#324662) - Improved the parser for zones and added a parser for services. - Improved test mocking fixing a Polkit popup shown when running the test (bsc#1087867) - 4.1.8 - CWM: allow to define next handler for CWM#show. - CWM: define default next handler in CWM::Dialog. - Needed for Expert Partitioner (fate#318196). - 4.1.7 ==== yast2-add-on ==== Version update (4.1.5 -> 4.1.7) - Fixed path to license file. . Build error in bsc#1108139. - 4.1.7 - Fix and improve the repo name selection in the AddOn auto client (bsc#1108139) - 4.1.6 ==== yast2-bootloader ==== Version update (4.1.8 -> 4.1.11) - Do not crash if an unknown device is found in a cloned configuration (bsc#1111236) - 4.1.11 - Fixed path to license file. . Build error in bsc#1089829. - 4.1.10 - Do not crash when required package is not installed (bsc#1089829) - 4.1.9 ==== yast2-control-center ==== Version update (4.1.1 -> 4.1.2) Subpackages: yast2-control-center-qt - Enable HiDPI (bsc#1089886) - 4.1.2 - Switched license in spec file from SPDX2 to SPDX3 format. - Changed dir of COPYING file. ==== yast2-core ==== Version update (4.0.3 -> 4.1.0) - Added license file to spec. - Use an exclusive lock when rotating the YaST logs to avoid race conditions when several YaST processes run in paralell (related to bsc#1094875) - 4.1.0 - Reduced risk of race condition between getenv and setenv while logging (bsc#1103076) - 4.0.4 - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-country ==== Version update (4.0.23 -> 4.1.0) Subpackages: yast2-country-data - Console: Use empty string instead of none for FONTMAP (bsc#1013573) - 4.1.0 - Set only system time if no hardware clock available (bsc#1103744) - 4.0.24 - Changed dir of COPYING file. - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-dhcp-server ==== Version update (4.1.2 -> 4.1.3) - Added license file to spec. - Adapting to new firewall API (bsc#1108942) - 4.1.3 ==== yast2-firewall ==== Version update (4.0.26 -> 4.0.33) - Added missing interfaces helpers requirement (fate#324662) - 4.0.33 - Fixed zone_options widget test mocking (fate#324662) - 4.0.32 - Small improvements to the widget for modifying the assignation of interfaces to zones (fate##324662): - Permits to split the input field entry by any combination of spaces or commas. - Initialize the zone selector with the default zone. - 4.0.31 - Alert the user about unsaved changes when leaving the zone services configuration without applying changes (fate#324662) - 4.0.30 - AutoYaST configuration: Added support to editing and resetting the current configuration. Improved the writing process (fate324662). - 4.0.29 - AutoYast schema: - Allowed the new 'description', 'short' and 'target' elements in zone entries (bsc#1108199) - 4.0.28 - Add a new user interface to manage firewalld configuration (fate#324662). - Supported featues: - Manage the firewalld service. - Browse interfaces and assign them to firewall zones. - List zones and design one of them as the default. - Assign services to zones. - Open ports. - 4.0.27 - Switched license in spec file from SPDX2 to SPDX3 format. - Changed dir of COPYING file. ==== yast2-fonts ==== Version update (4.0.0 -> 4.0.1) - Added %license tag in spec file. Needed to build fix for bnc#1087957 again. - 4.0.1 ==== yast2-installation ==== Version update (4.1.13 -> 4.1.24) - extra_urls: compare unexpanded urls, so two identical repositories with variables are detected (bsc#1090193) - 4.1.24 - Added save_y2logs client. (fate#325737) - 4.1.23 - Remember the selected role (related to FATE#325834) - 4.1.22 - Saving y2logs after the installation has been finished. (fate#325737) - 4.1.21 - Fixed path to license file. . Build error in fate#324713 - 4.1.20 - Skip the roles' dialog selection when there is only one available (fate#324713) - 4.1.19 - Fix syntax error (bsc#1109659) - 4.1.18 - Updated docu for add_on_products.xml: Added tag "confirm_license" to handle Add-On-products licenses which will be added while installation. (bsc#1105758) - 4.1.17 - Avoid to restore old backups when upgrade fails (bsc#1097297) - 4.1.16 - Copy the selected packages from the self-update repository to an additional add-on repository, allow updating the installation workflow from the self-update repository (bsc#1101016) - 4.1.15 - do not translate snapshot description (bsc#1092757) - 4.1.14 ==== yast2-instserver ==== Version update (4.1.1 -> 4.1.2) - Fixed path to license file. . Build error in bsc#1110037. - 4.1.2 ==== yast2-network ==== Version update (4.1.6 -> 4.1.15) - bnc#1111925 - always propose wpa_supplicant when configuring wlan - bsc#1113080 - Fix detection of peap mode (jreidinger(a)suse.com) - Propose most commonly used setup for WPA by default - 4.1.15 - Fix detection of peap mode (bsc#1113080) - 4.1.14 - Simplified the installation network proposal collecting all the configured dhcp interfaces in a single entry (fate#326480) - 4.1.13 - bsc#1110598 - fixed path to license file - 4.1.12 - fate#323454 - wicked compatible parsing of NTP servers from dhcp leases - 4.1.11 - Fixes to the networking AY schema (bsc#1108852) - Added missed s390 device 'layer2' boolean element. - 4.1.10 - bnc#1105230 - do not crash with internal error when 0.0.0.0 netmask is used in the routing tab - Activate s390 network devices before applying udev naming rules, avoiding "Invalid key/value pair in /etc/udev/rules.d/70-persistent-net.rules" (bsc#1095761) (by mvidner(a)suse.com) - 4.1.9 - bnc#1109312 - fixed internal error (replaced calls to LanItems::FreeDevices which was removed) - 4.1.8 - bnc#964856 - adapted to changes in NetworkInterfaces API - GetFreeDevice and GetFreeDevices was dropped - 4.1.7 ==== yast2-ntp-client ==== Version update (4.1.0 -> 4.1.3) - Fixed license path. Build error for bsc#1110598. - 4.1.3 - AutoYaST: Do not show the progress when merging the configuration before writing it (bsc#1110598) - 4.1.2 - Save the service status according to the user preferences (bsc#1075039) - 4.1.1 ==== yast2-packager ==== Version update (4.1.4 -> 4.1.11) - Set during upgrade proper release version for newly added repos (bsc#1090193) - 4.1.11 - Allow specify alias for online repos (bsc#1017823) - Do not depend on yast2-installation (bsc#876533) - 4.1.10 - Fixed path to license file. Build error in bsc#1110913. - 4.1.9 - Ignore a read failure when backing up /var/log/YaST2, YaST might be updating the logs while the archive is being created (bsc#1110913) - 4.1.8 - Copy also the role packages from the self-update repository (bsc#1101016) - 4.1.7 - add_on_products.xml : Added tag "confirm_license" to handle Add-On-products licenses which will be added while installation. (bsc#1105758) - 4.1.6 - Copy the selected packages from the self-update repository to an additional add-on repository, allow updating the installation workflow from the self-update repository (bsc#1101016) - 4.1.5 ==== yast2-pkg-bindings ==== Version update (4.0.13 -> 4.1.0) - Fix probing repository with URL including variable (bsc#1090193) - 4.1.0 - Drop no longer used methods: -- SetArchitecture and SystemArchitecture as only user Product Creator is dropped -- AddLock, GetLocks, RemoveLock as it was needed only once for specific architecture that is no longer supported -- TargetRebuildInit as recreating rpm database is no longer used during upgrade -- TargetFileHasOwner as old workaround for upgrade no longer needed -- TargetBlockSize as it is not longer needed to count disk usage - Added license file to spec. - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-ruby-bindings ==== Version update (4.0.6 -> 4.1.0) - Fix encoding-related problems by assuming that file contents is always UTF-8. (bsc#1111367) - 4.1.0 - adapted testsuite to glibc translation change (bsc#1107953) - 4.0.7 - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-samba-client ==== Version update (4.0.2 -> 4.0.3) - Added license file to spec. - Fix reading the permitted group to create "user shares"; (bsc#1107574). - 4.0.3 - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-samba-server ==== Version update (4.1.0 -> 4.1.1) - Added license file to spec. - Fix configuration not saved after new service status management (bsc#1106876) - 4.1.1 ==== yast2-services-manager ==== Version update (4.1.7 -> 4.1.8) - Added license file to spec. - Adapted to use the Y2Firewall::Firewalld::Zone object returned by Y2Firewall::Firewalld::Interface#zone instead of a String. - Adapted to use the new Y2Firewall::Firewalld::Interface objects instead of a hash (fate#324662) - 4.1.8 ==== yast2-snapper ==== Version update (4.0.4 -> 4.0.5) - Better module description for YaST control center (bsc#1085071) - 4.0.5 - Added license file to spec. - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-storage-ng ==== Version update (4.1.13 -> 4.1.29) - Format the new multi-line compound actions correctly (bsc#1085134) - 4.1.29 - do not include 'Partition' in partition type names - allow creation of partitions starting before 1 MiB in expert partitioner - Fixes and improvements to AutoYaST partitioning: - Improve support to reuse a disk as a PV (bsc#1107298). - Resize and then create new devices (bsc#1112545). - Warn the user when trying to reuse a non-existent filesystem. - Fix support of old format to specify several software RAIDs (bsc#1112546). - Proper support for Xen virtual partitions (bsc#1105350). - Export enable_snapshots element properly (related to bsc#1073544). - Allow to format a whole disk and use it as a filesystem. - Add support for partitioned software RAIDs (fate#326573). - Allow to use a whole disk as a software RAID member (related to fate#326573). - 4.1.28 - Add support for selecting cache mode during bcache creation (fate#325346) - 4.1.27 - Improved UI responsiveness by caching the value of some internal methods (bsc#1112402): * StorageClassWrapper.downcasted_new * StorageEnv#active? * DiskDevice#types_for_is - Improved compatibility with RSpec 3.8 by caching the objects used to wrap libstorage-ng enum values. - 4.1.26 - Improve filtering of possible backing devices for bcache and limit deletion of bcache to only safe cases (fate#325346) - 4.1.25 - Improved the warning messages about missing BIOS Boot partition, both in the Partitioner and in AutoYaST (bsc#1087275). - Improved other AutoYaST warning messages related to the partitions needed for booting. - 4.1.24 - Implement creating and deleting bcache devices (fate#325346) - 4.1.23 - Fixed flickering testcase. Maybe produced by the fix of bsc#1108831. - 4.1.22 - Partitioner: make it possible to directly format a disk (with no partitions). - Partitioner: reorganized the user interface by grouping options to ensure all the new possibilities (like formatting a whole disk or creating partitions on an MD RAID) fit into text mode 80x24 (part of fate#318196 and of fate#326573). - 4.1.21 - AutoYaST proposal: Do not crash if existing boot partition cannot be used without formatting it. (bsc#1108831) - 4.1.20 - Partitioner: ask for unmounting when deleting a device. - Partitioner: ask for unmounting when resizing a device. - Part of fate#318196 - 4.1.19 - AutoYaST: Allow to use whole disk as PV by indicating a partition with number 0 (bsc#1107298). - When trying to reuse a partition, AutoYaST will consider only those partitions from the right disk (bsc#1106774). - Do not crash when a partition content info cannot be detected (bsc#1101979). - 4.1.18 - Add read-only support for Bcache (fate#325346) - 4.1.17 - Partitioner: allow to manage partitions in software MD RAIDs (fate#318196, bsc#1094933 and bsc#1092417). - 4.1.16 - Partitioner: do not offer partitions of other RAIDs as available devices to create MD RAID arrays (fate#318196). - 4.1.15 - Partitioner: allow to add full disks and multipath devices (with no partition table) to MD RAID arrays (fate#318196). - Partitioner: improved checks and workflow for "Create New Partition Table" - More informative message when a device is in use. - 4.1.14 ==== yast2-theme ==== Version update (4.1.1 -> 4.1.4) Subpackages: yast2-branding-openSUSE yast2-branding-openSUSE-Oxygen - Added license file to spec. - Changed icons to Gnome spec (boo#1110241) - Added hicolor/scalable/devices (boo#1109382) - New files in devices directory have been named according to the suggested schema (boo#1110236) - Optipng'd all the pngs and scroted all new icons for space saving - 4.1.4 - Add KDE PIM icon (boo#1107103) - 4.1.3 - Unify icon location for SLES and OpenSUSE (bsc#1104067). - 4.1.2 - Switched license in spec file from SPDX2 to SPDX3 format. ==== yast2-update ==== Version update (4.1.1 -> 4.1.4) - Added license file to spec. - Fixed crash while writing backup (bsc#1108934) - 4.1.4 - Avoid to restore old backups when upgrade fails (bsc#1097297) - 4.1.3 - do not translate snapshot description (bsc#1092757) - 4.1.2 ==== yast2-users ==== Version update (4.0.5 -> 4.0.7) - read ssh keys from root user only if the user exists (bsc#1112119, bsc#1107456) - 4.0.7 - Fixed conflicting shortcuts in plugin module (bsc#1095320). - 4.0.6 - Switched license in spec file from SPDX2 to SPDX3 format. - Changed dir of COPYING file. ==== yast2-x11 ==== Version update (4.0.0 -> 4.0.1) - xkbctrl: sort hash keys (boo#1109534) - 4.0.1 - Switched license in spec file from SPDX2 to SPDX3 format. - Changed dir of COPYING file. ==== yast2-ycp-ui-bindings ==== Version update (4.0.0 -> 4.1.0) - Added license file to spec. - increase version to correspond to the libyui version increase (related to bsc#991090) - 4.1.0 - Switched license in spec file from SPDX2 to SPDX3 format. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

1 0

[opensuse-factory] Why not installed w/caps and GL-enhanced-kernel config?
by L A Walsh 02 Nov '18

02 Nov '18

> sudo wireshark QStandardPaths: wrong ownership on runtime directory /var/run/user/5013, 5013 instead of 0 QStandardPaths: wrong ownership on runtime directory /var/run/user/5013, 5013 instead of 0 nl80211 not found. libGL error: No matching fbConfigs or visuals found libGL error: failed to load driver: swrast ...hmmmm.... 💡 (Ah!) (rpm -qf wireshark + -qi :) Name : wireshark-ui-qt Version : 2.6.2 Release : 2.1 Distribution: openSUSE Tumbleweed > sudo setcap cap_net_raw+ep /usr/bin/wireshark > wireshark& [1] 31423 Ishtar:law/bin> nl80211 not found. libGL error: No matching fbConfigs or visuals found libGL error: failed to load driver: swrast So why isn't wireshark installed with cap_net_raw? At least it gets rid of 1 error message. This one: libGL error: No matching fbConfigs or visuals found libGL error: failed to load driver: swrast seems pervasive -- even doing a "make xconfig" for kernel configuration. I keep wondering what the GL-enhanced kernel-config does? Anyone know or why libGL would be needed for an X-GUI ("make xconfig") of the kernel? -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

5 8