openSUSE Factory
Threads by month
- ----- 2024 -----
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
February 2018
- 174 participants
- 191 discussions
10 Feb '18
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.
Packages changed:
aaa_base (84.87+git20180130.ae1f262 -> 84.87+git20180205.2d2832f)
automake
cppunit
filesystem
issue-generator (1.3 -> 1.4)
libkate
python-rpm (4.14.0 -> 4.14.1)
python-setuptools (38.4.1 -> 38.5.1)
rpm (4.14.0 -> 4.14.1)
systemd-presets-branding-openSUSE
v4l-utils (1.12.5 -> 1.14.1)
=== Details ===
==== aaa_base ====
Version update (84.87+git20180130.ae1f262 -> 84.87+git20180205.2d2832f)
Subpackages: aaa_base-extras
- Update to version 84.87+git20180205.2d2832f:
* Move /lib/aaa_base/convert_sysctl to /usr/lib/base-scripts/convert_sysctl
to cleanup filesystem.
* Don't create /etc/init.d/{boot.local,after.local,halt.local} in
aaa_base.pre section.
* Remove dead code from pre/post install sections.
- Add /var/adm/backup subdirectories to aaa_base-extras, they are
only needed by this package.
- Update to version 84.87+git20180204.875cba8:
* Move sysconfig.backup into extra subpackage, where all the
scripts using it are, too.
* Create systemd timer for the cron.daily scripts for backup-rpmdb,
backup-sysconfig and check-battery. Move scripts to
/usr/lib/base-scripts.
* Remove suse.de-cron-local. If somebody really still has a
/root/cron.daily.local file, he can move it to /etc/cron.daily.
* Don't modify data in root's home directory
* Don't create userdel.local, this isn't in use since many years
==== automake ====
- Avoid bashisms in test-driver:
* 0001-correct-parameter-parsing-in-test-driver-script.patch
Use test's = operator instead of ==; use '[' instead of '[['.
This avoids 'make check' failures of distribution tarballs (built on
openSUSE) on platforms not supporting bashisms, e.g. NetBSD-7.1.
==== cppunit ====
Subpackages: cppunit-devel libcppunit-1_14-0
- Fix RPM group of shlib subpackage.
- Fix description bsc#1079783
==== filesystem ====
- Adjust aaa_base test for latest aaa_base changes
- Remove /var/adm/fillup-templates, already prohibited by rpmlint
- Remove /var/adm/backup/{rpmdb,sysconfig}, they belong to
aaa_base-extras only.
==== issue-generator ====
Version update (1.3 -> 1.4)
- Update to version 1.4
- check if agetty is available
- adjust to changed ssh-keygen output
==== libkate ====
Subpackages: libkate1 liboggkate1
- Allow Leap:42.3 to build by defining %python2_sitearch to
python_sitearch.
- Use %license on license file.
- Mention baselibs.conf
- Make python2 dependency conditional bsc#1076407
- Remove few path based requires/etc
- Conflict properly with older libkate in order to allow migration
and not clash with liboggkate1 library
==== python-rpm ====
Version update (4.14.0 -> 4.14.1)
Subpackages: python2-rpm python3-rpm
- update to rpm-4.14.1
==== python-setuptools ====
Version update (38.4.1 -> 38.5.1)
Subpackages: python2-setuptools python3-setuptools
- update to version 38.5.1:
* #1271: Revert to Cython legacy build_ext behavior for
compatibility.
- changes from version 38.5.0:
* #1229: Expand imports in build_ext to refine detection of Cython
availability.
* #1270: When Cython is available, build_ext now uses the
new_build_ext.
==== rpm ====
Version update (4.14.0 -> 4.14.1)
Subpackages: rpm-build rpm-devel
- Update %remove_and_set: This macro needs no fallback to
/var/adm/fillup-templates, as it does not work on files provided
by the packages, but rather constructs temporary files inside
fillup_dir.
- remove shebang from python-macro-helper
- update to rpm-4.14.1
* Fix arbitrary code execution when evaluating common
python-related macros
* new artifact file marker
* less strict signature header verification [bnc#1078284]
- dropped patches:
* bigarchive.diff
* editdwarf.diff
* hardlink.diff
* rofs.diff
* transfiletriggerpostun.diff
==== systemd-presets-branding-openSUSE ====
- Enable backup-rpmdb.timer, backup-sysconfig.timer and
check-battery.timer, previously cron.daily jobs.
==== v4l-utils ====
Version update (1.12.5 -> 1.14.1)
Subpackages: libv4l libv4l-devel libv4l1-0 libv4l2-0 libv4l2rds0 libv4lconvert0
- Update to version 1.14.1:
* Lot of changes, see ChangeLog for details.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
Everyone,
I have a bit of a problem after 20180206 snapshot on a Tumbleweed
server installation. First, I haven't been able to upgrade to any of
the 4.14 kernels for some reason (I've had text color corruption on my
tty and very common kernel panics, this is on a server installation so
no display manager). So, I can't that it was this specific snapshot
that caused the problem. I'm just looking for help to get my system
back to a working state.
Since I skipped the entire set of updates with a 4.14 kernel, it has
been a couple of months since I've updated. I did a zypper dup to
20180206 since the kernel was now 4.15.1 and I wanted to see if the
new kernel had fixed my problem. After the zypper dup, I did a
rpmconfigcheck to see what config files needed attention, and there
were a number that seemed innocuous (samba and the like), but there
was also an entry for "/etc/default/grub.rpmnew".
I looked briefly at the diff between /etc/default/grub.rpmnew and the
old grub, and I hadn't really customized it outside of some kernel
parameters given through yast, so I replaced the old grub with the
grub.rpmnew (renaming the old grub to grub.old), and I used yast to
set the kernel parameters back to what I had them as.
Then I restarted the computer. The computer boots to the grub menu,
but no matter if I choose to boot the current kernel or the old
kernel, I get the following error:
Loading Linux 4.15.1-1-default
error: can't find command `linux'.
Loading initial ramdisk...
error: can't find command `initrd'.
Press any key to continue...
Then I'm spit back to the grub menu. Moreover, there is no option to
boot a snapshot, so I can't rollback (which I would consider to be a
fine solution to my problem).
Something has gone wrong with grub, and I'm not sure how to fix it. I
use BTRFS, and I use the standard filesystem layout (the old one, I've
seen that there is a new layout in more recent snapshots). I can make
a rescue cd from the most recent snapshot, but I'm not certain exactly
how I would manually mount the btrfs filesystem in order to chroot
into it correctly. I'm also not certain what I should do after
chrooting into the old filesystem.
Any help on this would be greatly appreciated. Also, any insight on
what I did wrong in the update would be valuable information for the
future.
Thanks in advance!
Michael
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
4
7
Re: [opensuse-factory] Re: Issue with Kernel 4.15.1 from the Kernel:stable Repo
by Andrei Borzenkov 10 Feb '18
by Andrei Borzenkov 10 Feb '18
10 Feb '18
On Fri, Feb 9, 2018 at 3:19 PM, Mischa Salle <mischa.salle(a)gmail.com> wrote:
> Also, why is extract-cert now build, which it wasn't before?
It was always built, just Factory now switched to openssl 1.1.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
5
5
09 Feb '18
The highlights from the last two weeks:
2018w05-06: package drop list, Tumbleweed snapshots update, leaper no longer
requires maintainer review, and more [1]
[1] http://release-tools.opensuse.org/2018/02/09/w05-06.html
--
Jimmy
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
Hi there
Given today's kernel stable repo update to 4.15.2,
"grep . /sys/devices/system/cpu/vulnerabilities/*
gives
/sys/devices/system/cpu/vulnerabilities/meltdown:Mitigation: PTI
/sys/devices/system/cpu/vulnerabilities/spectre_v1:Mitigation: __user
pointer sanitization
/sys/devices/system/cpu/vulnerabilities/spectre_v2:Mitigation: Full
generic retpoline
What does "_user pointer sanitization" mean?
Thank you.
Regards, Frank
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
3
Hi list,
I just had a try at converting my old TW installation on the laptop (installed
2016.08) to the new one-var-only subvolume scheme.
(I have deleted all snapshots except the currently used one before starting,
maybe daring, but I didn't want that to interfere. In hindsight leaving one
around should be the safer option? But you cannot roll back to those anyhow
after the subvolumes are deleted...)
/var is in use permanently, so I decided to do this offline, booting from
another system (install system / USB should be fine) I used the test install I
did yesterday, on external USB disk /dev/sdb.
My old, main system (i.e., the btrfs root) is on disk /dev/sda4
Here's what I did:
# mount top level
mount -o subvol=/ /dev/sda4 /mnt
# /var exists, so new name
btrfs subvolume create /mnt/@/newvar
# Now fill the new /var with old content from snapshot and var subvolumes.
# I'm still on the original snapshot, never did a rollback. So:
rsync -avr /mnt/(a)/.snapshots/1/snapshot/var/ /mnt/@/newvar/
rsync -avr /mnt/@/var/ /mnt/@/newvar/
# Set the no-copy-on-write flag
chattr -fR +C /mnt/@/newvar
# adapt fstab to the new layout
vi /mnt/(a)/.snapshots/1/snapshot/etc/fstab
# comment out all the old /var/* subvolume mounts, and add
UUID=<your-uuid-same-as-others> /var btrfs subvol=@/newvar 0 0
At this stage I rebooted back to the old system, which is where I'm typing now
I got a complaint that /var was not empty when @/newvar was mounted over, but
that is harmless (and expected). So far I have no issues at all, and I will now
continue to remove the old subvolume and double data.
This can in principle be done from the running system, but I also want to change
the name of newvar to var, after all subvolumes are deleted. So I'll boot the
other system once more and
mount -o subvol=/ /dev/sda4 /mnt
btrfs subvolume list / | grep /var/ | cut -d@ -f2 | \
while read v; do brtfs subvolume delete /mnt/@${v} ; done
btrfs subvolume sync /mnt
rm -rf /mnt/@/var
mv /mnt/@/newvar /mnt/@/var # official(?) way to rename subvolumes
# the snapshot still has some data in /var. Delete it
rm -rf /mnt/(a)/.snapshots/1/snapshot/var/*
# Dont forget to change mount entry
sed -i -e 's/newvar/var/' /mnt/(a)/.snapshots/1/snapshot/etc/fstab # newvar->var
umount /mnt
reboot
curageous people might do this already in the first part - I wanted the old
stuff to be around in case I mess up....
Don't follow this blindly, but maybe some find it usefull to convert their own
system without re-installing from scratch...
Cheers,
Pit
--
Dr. Peter "Pit" Suetterlin http://www.astro.su.se/~pit
Institute for Solar Physics
Tel.: +34 922 405 590 (Spain) P.Suetterlin(a)royac.iac.es
+46 8 5537 8558 (Sweden) Peter.Suetterlin(a)astro.su.se
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
6
YaST development keeps moving in several areas, and last sprint we
released several features to SLES 15.
Check the latest sprint report at:
https://lizards.opensuse.org/2018/02/09/highlights-of-yast-development-
sprint-50/
BRs,
Gilson Souza
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
Hi list,
today I decided to have a look at the new btrfs layout of Tumbleweed.
To be on the safe side I removed the current SDD of my laptop and put an
identical, empty one in, and then did a new install of the most recent TW
(20180206). Only thing I changed from the default is increase the rootfs size
to 80GiB, I just selected 'KDE/Plasma system' and installed.
This went fine, I looked around the system, and then shut it down to put my old
SDD back in.
¡IT DOESN'T BOOT ANYMORE!
Immediately after the POST screens of the BIOS I get a message
error: file '/boot/grub/x86_64-efi/normal.mod' not found
Entering rescue mode...
grub rescue>
I checked BIOS, but didn't see obvious places where to change things (and have
not changed anything)
What did the install do? It must have changed something in the laptop BIOS, but
what and where, and how can I revert it back to the old setting?
Boot is UEFI, Secure Boot is disabled.
Going to look at the two disks from a separate system now, but any guidance is
highly welcome...
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
8
18
So I have a bit different problem, than white screen.
I have Radeon RX 470. Running plasma session with i3 as a window
manager, with disabled plasma desktop.
Here how it looks like: http://susepaste.org/35963166
It affects Qt applications, window decorations and pop-ups (like when
drag-and-dropping).
Cleaning cache does not help.
--
Adam Mizerski
1
1
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&version=15.0&bui…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Distribution&q…
When you reply to discuss some issues, make sure to change the subject.
Please use the test plan at
https://docs.google.com/spreadsheets/d/1AGKijKpKiJCB616-bHVoNQuhWHpQLHPWCb3…
to record your testing efforts and use bugzilla to report bugs.
Packages changed:
ImageMagick (7.0.7.21 -> 7.0.7.22)
NetworkManager (1.8.4 -> 1.8.6)
OpenIPMI
SDL2
SUSEConnect
acpica (20170531 -> 20180105)
alsa
audit-secondary
autoyast2 (4.0.24 -> 4.0.27)
babl (0.1.38 -> 0.1.42)
bash
bind
binutils
boost
boost-base
btrfsmaintenance
ca-certificates-mozilla (2.11 -> 2.22)
ceph (13.0.0 -> 13.0.0.5171+g4d4101fe78)
cryptsetup (1.7.5 -> 2.0.0)
cups-filters (1.17.6 -> 1.19.0)
deltarpm
device-mapper
digikam (5.7.0 -> 5.8.0)
dracut
e2fsprogs
enscript (1.6.4 -> 1.6.6)
fftw3
file
gcab (0.7 -> 0.8)
gcc7 (7.2.1+r256737 -> 7.3.0+r257042)
gd
gdm
gegl
glibc
glibc
gnome-contacts (3.26 -> 3.26.1)
gnome-software (3.26.4 -> 3.26.5)
gnumeric
graphite2
graphviz
graphviz-addons
gstreamer-plugins-libav
hugin
ibus
installation-images-openSUSE (14.354 -> 14.358)
ipset
iso-codes (3.76 -> 3.77)
jack (1.9.10 -> 1.9.12)
java-1_8_0-openjdk
javapackages-tools (4.7.0+git20170331.ef4057e7 -> 5.0.0+git20180104.9367c8f6)
kactivitymanagerd
kbd
kdeconnect-kde (1.2 -> 1.2.1)
kernel-firmware (20180104 -> 20180119)
kexec-tools (2.0.14 -> 2.0.16)
konsole
libbsd (0.8.6 -> 0.8.7)
libcaca (0.99.beta19 -> 0.99.beta19+git20171002.da28e96)
libdvdread (5.0.3 -> 6.0.0)
libexif
libexttextcat (3.4.4 -> 3.4.5)
libfastjson (0.99.7 -> 0.99.8)
libgepub (0.5.2 -> 0.5.3)
libgme (0.6.1 -> 0.6.2)
libmbim (1.14.2 -> 1.16.0)
libmspack (0.5 -> 0.6)
libpng16 (1.6.31 -> 1.6.34)
libqmi (1.18.0 -> 1.20.0)
libraw (0.18.6 -> 0.18.7)
libreoffice
libsolv (0.6.30 -> 0.6.31)
libsoup (2.60.2 -> 2.60.3)
libssh2_org
libstorage-ng (3.3.140 -> 3.3.145)
libtasn1 (4.12 -> 4.13)
libunwind (1.2~rc1 -> 1.2.1)
libvpx
libwmf
libxcb
libzio (1.05 -> 1.06)
llvm5
logrotate (3.12.3 -> 3.13.0)
lttng-ust
lvm2
lzip (1.18 -> 1.19)
make
mdadm
mozilla-nss (3.33 -> 3.34.1)
mozjs52 (52.3.0 -> 52.6.0)
multipath-tools (0.7.3+31+suse.6804bb73f72d -> 0.7.3+38+suse.a16beed5280a)
nano (2.9.1 -> 2.9.3)
ncurses (6.0 -> 6.1)
newt
nghttp2 (1.28.0 -> 1.29.0)
open-iscsi
openCOLLADA (1.6.51 -> 1.6.62)
openssh
openssh-askpass-gnome
openssl-1_1_0
p7zip
parted
perl
perl-Socket6 (0.25 -> 0.28)
perl-Try-Tiny (0.28 -> 0.30)
permissions (20171129 -> 20180125)
plasma5-openSUSE
plasma5-pk-updates
plymouth (0.9.3+git20171130.fa66a5b -> 0.9.3+git20171220.6e9e95d)
poppler-qt5
postgresql
procps
protobuf
publicsuffix (20171228 -> 20180125)
python-base
python-cairocffi
python-pycurl
python-pyudev
qpdf (7.0.0 -> 7.1.0)
rollback-helper
rpm (4.13.0.1 -> 4.14.0)
rsyslog (8.30.0 -> 8.32.0)
simple-scan (3.26.2 -> 3.26.3)
snapper (0.5.3 -> 0.5.4)
spamassassin
strace
supportutils (3.0 -> 3.1)
texinfo
texlive
texlive-filesystem (2017.133.svn41616 -> 2017.135.svn41616)
texlive-specs-b (2017.133.svn15878 -> 2017.135.svn15878)
timezone (2017c -> 2018c)
timezone-java (2017c -> 2018c)
totem
util-linux (2.30.1 -> 2.31)
util-linux-systemd (2.30.1 -> 2.31)
vim (8.0.1417 -> 8.0.1442)
virtualbox
w3m (0.5.3.git20161120 -> 0.5.3+git20180125)
webkit2gtk3 (2.18.5 -> 2.18.6)
wireless-tools
xorg-x11-libs (7.6 -> 7.6.1)
xtables-addons
yast2 (4.0.38 -> 4.0.45)
yast2-bootloader (4.0.13 -> 4.0.14)
yast2-country (4.0.16 -> 4.0.19)
yast2-drbd (4.0.0 -> 4.0.1)
yast2-firewall (4.0.8 -> 4.0.9)
yast2-installation (4.0.26 -> 4.0.28)
yast2-pkg-bindings (4.0.6 -> 4.0.7)
yast2-squid (4.0.0 -> 4.0.1)
yast2-storage-ng (4.0.76 -> 4.0.81)
zypp-plugin (0.6.2 -> 0.6.3)
zziplib (0.13.62 -> 0.13.67)
=== Details ===
==== ImageMagick ====
Version update (7.0.7.21 -> 7.0.7.22)
Subpackages: ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI5 libMagickWand-7_Q16HDRI5
- update to 7.0.7.22
* Support aspect ratio geometry, e.g. -crop 3:2.
* Add support for reading the HEIC image format (reference
https://github.com/ImageMagick/ImageMagick/issues/507).
* Fixed numerous memory leaks, credit to OSS Fuzz.
==== NetworkManager ====
Version update (1.8.4 -> 1.8.6)
Subpackages: NetworkManager-lang libnm-glib-vpn1 libnm-glib4 libnm-util2 libnm0 typelib-1_0-NM-1_0 typelib-1_0-NMClient-1_0 typelib-1_0-NetworkManager-1_0
- Update to version 1.8.6:
+ Fix a daemon crash on permission check (bgo#787897).
+ Fix a daemon crash on VPN state change (bgo#787893).
+ Fix a nmcli crash in interactive mode's describe command
(bgo#788104).
+ Fix termination of the nmcli interactive mode (rh#1517401).
+ Properly handle route metric of zero in keyfiles.
+ Add support for DSA switch devices (rh#1371289).
+ Fix a memory leak of connection D-Bus objects (rh#1461643).
+ A double close that could potentially race with the D-Bus
thread reusing the same file descriptor (rh#1451236).
+ Connectivity check fixes (bgo#785281) (bgo#784629).
+ Fix the metered properties handling in libnm.
+ Avoid dropping agent secrets unnecessarily (bgo#789383).
+ Fix the asynchronous initialization of a secret agent in libnm.
- Drop nm-disconnect-proxy-signals.patch and
nm-vpn-remote-connection-disconnect-signals.patch: Fixed
upstream.
- Minor spec cleaning, tweak spec to silence a few rpm lint
warnings.
- Replace addFilter("dbus-policy-missing-allow") with
addFilter("dbus-policy-allow-without-destination"), filter out
the current rpmlint warning.
- Add addFilter("suse-branding-unversioned-requires*") to
rpmlintrc, we have this unversioned on purpose.
- Add
addFilter("systemd-service-without-service_add_post NetworkManager-wait-online.service")
addFilter("systemd-service-without-service_add_pre NetworkManager-wait-online.service")
addFilter("systemd-service-without-service_del_postun NetworkManager-wait-online.service")
addFilter("systemd-service-without-service_del_preun NetworkManager-wait-online.service")
to rpmlintrc, filter out warnings we do not care about nor want
as we do not want to enable this service by default.
- "Mark" %%{_sysconfdir}/dbus-1/system.d/org.freedesktop.NetworkManager.conf
and %%config %{_sysconfdir}/dbus-1/system.d/nm-dispatcher.conf as
config files in spec, silence rpmlint.
==== OpenIPMI ====
- * added a section defining IPMI_SI_MODULE_NAME to sysconfig.ipmi
* added code to OpenIPMI.spec/%install to modify sysconfig.ipmi
according to architecture
* modified openipmi-helper to load "sysconfig.ipmi" AFTER setting
default IPMI_SI_MODULE_NAME=ipmi_si
[bsc#1059820, OpenIPMI.spec, openipmi-helper, sysconfig.ipmi]
==== SDL2 ====
- Add sdl2-symvers.patch.
==== SUSEConnect ====
- Repackage gem
==== acpica ====
Version update (20170531 -> 20180105)
- Update to latest version 20180105
D revert_62ca7996_build_date_and_time.patch
D revert_cdd3c612d4230bbb_build_date_and_time.patch
A do_not_use_build_date_and_time.patch
- pass --jobs from build service to make for much faster building
- Changed shebang path in wmidump_add_she_bang.patch
to /usr/bin/python3
[bsc#1075687,wmidump_add_she_bang.patch]
==== alsa ====
Subpackages: libasound2
- Upstream fixes:
* Add the new ucm for Cherrytrail devices (bsc#1068546):
0005-conf-ucm-Add-chtrt5645-mono-speaker-analog-mic-confi.patch
* Fix for error code from PCM API functions at unexpected states:
0006-pcm-Return-the-consistent-error-code-for-unexpected-.patch
==== audit-secondary ====
- Add conditions around python plugins to allow us to conditionalize
them in enviroment without python2
==== autoyast2 ====
Version update (4.0.24 -> 4.0.27)
Subpackages: autoyast2-installation
- Speed optimization for the previous fix, the "clone_system"
client spent several minutes processing the packages
(related to bsc#1077882)
- 4.0.27
- Avoid using Pkg.ResolvableProperties("", :package, "") calls
which require too much memory (bsc#1077882)
- 4.0.26
- Reporting packages which cannot be selected for installation.
(bnc#1077292)
- 4.0.25
==== babl ====
Version update (0.1.38 -> 0.1.42)
- Update to version 0.1.42:
+ Fully initialize fishes when loading from cache.
- Update to version 0.1.40:
+ Added:
- Format "CIE XYZ alpha" color model and formats;
- Meson build; being tested in parallel with automake.
+ New API babl_process_rows for reduced overhead in some
scenarios; though bigger gains seen also for regular
babl_process with reimplemented branch-free dispatch, and
faster cbrt.
+ Improved reference conversions for formats skipping some of
models components.
+ Fixed gamma handling in indexed/palettized formats and improved
gamma precision consistenct in sse2 conversions.
==== bash ====
Subpackages: bash-doc bash-lang libreadline7 readline-doc
- Modify patch bash-4.3-pathtemp.patch to avoid crash at full
file system (boo#1076909)
==== bind ====
Subpackages: bind-chrootenv bind-utils libbind9-160 libdns169 libirs160 libisc166 libisccc160 libisccfg160 liblwres160 python3-bind
- Apply bind-CVE-2017-3145.patch to fix CVE-2017-3145 (bsc#1076118)
==== binutils ====
- Drop bc BuildRequires: no longer needed.
- Add riscv64 to %target_list
- Add arm-none-eabi symlinks (bsc#1074741)
==== boost ====
- Multibuild requires versioned Name: tag and doesn't seem to do
this automatically. (bnc#1076640)
==== boost-base ====
Subpackages: boost-license1_66_0 libboost_atomic1_66_0 libboost_chrono1_66_0 libboost_date_time1_66_0 libboost_filesystem1_66_0 libboost_iostreams1_66_0 libboost_locale1_66_0 libboost_regex1_66_0 libboost_signals1_66_0 libboost_system1_66_0 libboost_thread1_66_0
- Multibuild requires versioned Name: tag and doesn't seem to do
this automatically. (bnc#1076640)
==== btrfsmaintenance ====
- Move the defrag plugin over to Python 3. (bsc#1070322)
- update to version 0.4
- add support for systemd timers and use them by default; the alternative
cron scripts are still present (#29, #36)
- add automatic monitoring (via systemd.path) of the config file,
no manual updates by btrfsmaintenance-refresh.service needed (#38)
- fix RPM database path detection
- spec file cleanups
- documentation updates
- removed patches:
- btrfsmaintenance-0.3.1-fix-rpm-db-path.patch (upstream)
- btrfsmaintenance-switch-to-timer.patch (upstream)
- pull-request-36.patch (upstream)
- Fix systemd timers enabled even if period is set to none:
* Micro change in pull-request-36.patch (bsc#1075884)
- Clean spec file:
* Removed support for suse_version <= 1210.
* Removed call to btrfsmaintenance-refresh-cron.sh upon deletion
(not needed anymore since we use systemd timers which are
handled by macros).
* Ran spec-cleaner.
- Switch default of btrfsmaintenance-refresh.service to systemd-timer,
too (btrfsmaintenance-switch-to-timer.patch) [bsc#1073204]
- pull-request-36.patch: update patch
- Don't call btrfsmaintenance-refresh-cron.sh in %post, this is
done already by the systemd macros
- Add patch to use systemd timer instead of cron (pull-request-36.patch)
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
- Fix cron symlinks removal upon package upgrade (boo#904518):
* The problem was in the preun section (in the old RPM).
* This means the symlinks are removed by this update, but won't
be by the next ones.
* Please run 'systemctl start btrfsmaintenance-refresh' one more
time to fix your symlinks.
- Add btrfsmaintenance-0.3.1-fix-rpm-db-path.patch:
* Change RPM database path to /usr/lib/sysimage/rpm for
Tumbleweed.
- Require btrfsprogs (bsc#1047226)
- version 0.3.1
- dist-install: fix installation paths, install functions
- functions: fix syntax to be compatible with dash
- spec: install functions file
- version 0.3
- add syslog to logging targets
- add none target (/dev/null)
- autodetect btrfs filesystems for balance, scrub and trim
- detect mixed blockgroups and use correct balance filters
- fix uninstall rules
- fix capturing entire output to the log
- fix when cron files are symlinks
- add generic installation script
- doc updates: retention policy tuning
- version 0.2
- updated documentation
- support debian-like configuration paths
- no hardcoded paths to external utilities
- fixed logger name typos for 'journal' target
- defrag fixes (sysconfig, find arguments)
- version 0.1.2
- change default config for trim: off
- journal loggin should work (fixed a typo)
- version 0.1.1
- fix typo and make journal logging target work
- cron refresh: remove bashism
- cron refresh: remove debugging messages
- post installation must create the cron links (bsc#904518)
- Removed patches:
* btrfsmaintenance-0.1-fix-bashisms.patch
- fix bashism in btrfsmaintenance-refresh-cron.sh script
- add patches:
* btrfsmaintenance-0.1-fix-bashisms.patch
- add COPYING, README.md
- add config option to specify log target (stdout, or journal)
- clean spec
- add Url tag
- fix sysconfig file Path: tags
- initial import 0.1
==== ca-certificates-mozilla ====
Version update (2.11 -> 2.22)
- Updated to 2.22 state of the Mozilla NSS Certificate store.
- Removed CAs:
* ACEDICOM Root
* AddTrust Public CA Root
* AddTrust Qualified CA Root
* ApplicationCA - Japanese Government
* CA Disig Root R1
* CA WoSign ECC Root
* Certification Authority of WoSign G2
* Certinomis - Autorit� Racine
* China Internet Network Information Center EV Certificates Root
* CNNIC ROOT
* Comodo Secure Certificate Services
* Comodo Trusted Certificate Services
* ComSign Secured CA
* DST ACES CA X6
* GeoTrust Global CA 2
* StartCom Certification Authority
* StartCom Certification Authority
* StartCom Certification Authority G2
* Swisscom Root CA 1
* T�B?TAK UEKAE K�k Sertifika Hizmet Sa?lay?c?s? - S�r�m 3
* T�RKTRUST Elektronik Sertifika Hizmet Sa?lay?c?s?
* T�RKTRUST Elektronik Sertifika Hizmet Sa?lay?c?s? H6
* UTN USERFirst Hardware Root CA
* UTN USERFirst Object Root CA
* VeriSign Class 3 Secure Server CA - G2
* WellsSecure Public Root Certificate Authority
* Certification Authority of WoSign
* WoSign China
- Added CAs:
* D-TRUST Root CA 3 2013
* GDCA TrustAUTH R5 ROOT
* SSL.com EV Root Certification Authority ECC
* SSL.com EV Root Certification Authority RSA R2
* SSL.com Root Certification Authority ECC
* SSL.com Root Certification Authority RSA
* TrustCor RootCert CA-1
* TrustCor RootCert CA-2
* TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1
==== ceph ====
Version update (13.0.0 -> 13.0.0.5171+g4d4101fe78)
- Update to version 13.0.0-5171-g4d4101fe78:
+ spec file:
* change version number format
* define _defined_if_python2_absent if, and only if, building without
python2 bcond
- Update to version 13.0.0-5169-g26918cdcc9:
+ rebase to latest upstream master, including spec file changes:
* eliminate Python 2 dependencies (bsc#1076403)
N.B.: this has the consequence that we no longer build or ship
Python 2 versions of the Python bindings for librados, librbd,
libcephfs and librgw
* drop lowmem_builder bcond and rewrite associated code to be distro-agnostic
* move distro-conditional BuildRequires to appropriate section
* use more recent toolchain on RHEL 7
* ceph-base: put runtime dependencies in alphabetical order
* correct Group for python bindings subpackages
* move ceph-volume to ceph-osd and adjust systemd macros accordingly
* ceph-osd subpackage now requires lvm2 for ceph-volume
* ceph-test: peg version of ceph-common dependency
* drop deprecated scripts rcceph and ceph-crush-location
* fix permissions of rbd resource agent
- ceph-rpmlintrc: add lines to quash RPMLINT warnings
+ ceph-base.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/ceph/crypto/libceph_crypto_isal.so
+ librados2.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/ceph/libceph-common.so
+ ceph-base.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/libos_tp.so
+ ceph-base.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/libosd_tp.so
==== cryptsetup ====
Version update (1.7.5 -> 2.0.0)
- Update to version 2.0.0:
* Add support for new on-disk LUKS2 format
* Enable to use system libargon2 instead of bundled version
* Install tmpfiles.d configuration for LUKS2 locking directory
* New command integritysetup: support for the new dm-integrity kernel target
* Support for larger sector sizes for crypt devices
* Miscellaneous fixes and improvements
==== cups-filters ====
Version update (1.17.6 -> 1.19.0)
- Update to 1.19.0:
* See the detailed stuff in NEWS file
* New filters and poppler compatibility as always
- Do not require python-cups but rather python3-cups in order to
allow build on python2 less system
- Explicitly enable ijs and opvp filters
==== deltarpm ====
- Make python2 and python3 conditional to ensure we can build with
python3 only
==== device-mapper ====
Subpackages: libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit
- clvmd: try to refresh device cache on the first failure
(bsc#978055, bsc#1076042)
+ bug-978055_clvmd-try-to-refresh-device-cache-on-the-first-failu.patch
==== digikam ====
Version update (5.7.0 -> 5.8.0)
Subpackages: digikam-doc digikam-lang kipi-plugins kipi-plugins-lang libdigikamcore5 showfoto
- Add digikam-5.8.0.fix-db-migration-0001.patch (adapted to 5.8.0),
digikam-5.8.0.fix-db-migration-0002.patch,
digikam-5.8.0.fix-db-migration-0003.patch, and
digikam-5.8.0.fix-db-migration-0004.patch to fix MySQL DB
migration issues (kde#388824, kde#388867, kde#388977)
- Add fix-font-size-in-tooltips.patch to make tooltips respect the
configured font size (kde#337243)
- Remove some no longer respected cmake options
- Update to 5.8.0:
* https://www.digikam.org/news/2018-01-14-5.8.0_release_announcement/
- New features (from NEWS):
General : Add support to OpenCV 3.4.x.
General : Updated internal Libraw to last 0.18.6.
General : New Upnp/Dlna media server to share collections on local network.
Image Editor : New clone tool to replace old CImg in-painting tool.
DropBox : tool ported AuthO2 API.
- 231 bugs fixed
- Remove unneeded libkface-devel build requirement, it's not used
anymore since over 2 years
- Add 0001-Revert-replace-obsolete-qSort-function.patch and
0002-Revert-replace-obsolete-qSort-function.patch to fix build
with gcc 4.8 on Leap 42
- Add fix-italian-docs-with-older-kdoctools.patch to make it build
on Leap 42.2
- Pass --without-kde to %find_lang to prevent the docs being added
to the lang package, we have a separate docs subpackage
(it supports the KF5 docs location starting with rpm 4.14.0, and
that would break the build)
- Drop upstream patches:
* Adapt-to-KCalCore-API-changes.patch
* fix-Qt-5.9.3-empty-album-problem.patch
- Add fix-Qt-5.9.3-empty-album-problem.patch to fix albums showing
up empty with Qt 5.9.3 or higher (kde#387373)
==== dracut ====
- support validating the IMA policy file signature, needed since Kernel 4.7
* Adds 0552-98integrity-support-validating-the-IMA-policy-file-s.patch
- IMA: improve support for evm key loading (bsc#1077359, fate#323906)
* Adds 0553-98integrity-support-loading-x509-into-the-trusted-bu.patch
* Adds 0554-98integrity-support-X.509-only-EVM-configuration.patch
- FIPS: Adjust dependencies to work for cryptsetup 2.0 (bsc#1077070)
- Added a few more patch annotations
- Fix typo for ima dependency (evmtcl vs evmctl) (bsc#1073466)
- Updated Patch annotation regarding their upstream state
- FIPS: Try to fetch list of fips modules from the kernel's modules dir (bsc#1074984)
* Adds 0551-fips-use-lib-modules-uname-r-modules.fips.patch
- Annotated patches regarding their upstream state
- dracut-ima requires evmctl and keyutils (bsc#1073466)
==== e2fsprogs ====
Subpackages: libcom_err2 libcom_err2-32bit libext2fs2
- libext2fs-fix-build-failure-in-swapfs.c-on-big-endia.patch:
libext2fs: fix build failure in swapfs.c on big-endian systems (bsc#1077420)
==== enscript ====
Version update (1.6.4 -> 1.6.6)
- Add missing scan vor LC_PAPER in patch enscript-1.6.6-encoding+paper.patch
- Add enscript-1.6.6-ghostscript.patch to get correct support for
ghostscript back
- Add enscript-1.6.6-silent-warns.patch to silent gcc
- Move %install_info_delete from %postun to %preun
- Add patch enscript-1.6.6-helper-apps.patch to mention
helper app support again
- Add patch enscript-1.6.6-mailto.patch to get mailto support with
optional address back
- Add patch enscript-1.6.6-encoding+paper.patch to get better
encoding and automatic paper size support back
- Add patch enscript-1.6.6-euro+baltic.patch to get support for the
Euro symbol as well as the Baltic language support back
- update to 1.6.6
* Add afm/MustRead.html, containing licensing information for
Adobe AFM files.
* Sync all translations from the Translation Project. Visit
http://translationproject.org/ to help translate Enscript
* Add documented but missing '-w' option as an alias for
'--language'
* Apply sliceprint patch from Debian
- includes 1.6.5.2:
* Fix CFG_FATAL macro in util.c-- prevents a segfault when the
config file contains unknown parameters
* Fix segfault with line lengths over 90 characters
- includes 1.6.5.1:
* Typo corrections in the manual pages
* Actually ship f90.st in the tarball
* Better organization for ChangeLog, INSTALL and README
- includes 1.6.5:
* Licensing change: GNU Enscript is now distributed under
version 3 or later of the GNU GPL
* Build system fixes - distcheck now passes
* At least four security bug fixes:
- CAN-2004-1184
- CAN-2004-1185
- CAN-2004-1186
- CVE-2008-3863, CVE-2008-4306
* Syntax highlighting fixes
- shell escaping rules from Shawn McMahon
- JavaScript regexps now recognised
- New highlighting rules for Fortran 90 from David Bowler
- rebase enscript-automake.diff
- remove enscript-1.6.4-CAN-2004-1184.patch
* upstreamed in 9510e4315705329e51b27fa2f3f688989b9fb37f
- remove enscript-1.6.4-CAN-2004-1185.patch
* fixed in a3e6bf57e48bb7434cdd590732e221fd2e0b4c17
- remove enscript-1.6.4-CAN-2004-1186.patch
* fixed in 0acc7b63a1be9f5d02f1a21d6df52cb5a9ce7e58
- remove enscript-1.6.4-CVE-2008-3863.patch
* upstreamed in 94135714871a735e3fe624eaf37901bbb6314e05
- remove enscript-1.6.4-fdleak.patch
* fixed in f2bfb5ead29048ce42000e4796383a4406b069f6
- remove enscript-1.6.4.dif
- renumber patches
- cleanup with spec-cleaner
==== fftw3 ====
Subpackages: libfftw3-3 libfftw3_threads3
- Fix typo in flavor gnu7-hpc settings.
- Change the name of the MPI version of the module file directory
to pfftw3 to distinguish it from the 'serial' one (boo#1075933).
- Disable the openmpi3 flavor in some products.
- Add gcc7 as additional compiler flavor for HPC on SLES.
- Fix library package requires - use HPC macro (boo#1074890).
- Add support for mpich and openmpi3 for HPC.
==== file ====
Subpackages: file-magic libmagic1 libmagic1-32bit
- Add patch file-5.32-ncurses-6.1.patch to support extend magic
format for new ncurses 6.1
==== gcab ====
Version update (0.7 -> 0.8)
Subpackages: gcab-lang libgcab-1_0-0
- Update to version 0.8 (CVE-2018-5345):
+ This fixes the security bug known as CVE-2018-5345.
+ Always check the return value when writing to the stream.
+ Do not crash when ncbytes is larger than the buffer size.
+ Don't encode timezone in generated files.
+ Don't use version script if unsupported.
+ Explicitly enable C99 support.
+ Fix a few 'Dereference of null pointer' warnings.
+ Fix buffer overrun when generating Huffman codes.
+ Fix builddir != srcdir builds.
+ Fix dependency on generated .h file.
+ Fix invalid return annotation.
+ Fix the calculation of the checksum on big endian machines.
+ Fix -Wimplicit-fallthrough=.
+ Use glib-mkenum's prefixes to avoid sed.
+ Updated translations.
- Minor spec cleanup, use autosetup macro.
==== gcc7 ====
Version update (7.2.1+r256737 -> 7.3.0+r257042)
Subpackages: cpp7 gcc7-info gcc7-locale libasan4 libatomic1 libcilkrts5 libgcc_s1 libgcc_s1-32bit libgfortran4 libgomp1 libitm1 liblsan0 libmpx2 libmpxwrappers2 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-locale libtsan0 libubsan0
- Update to GCC 7.3 release.
- Move misplaced %endif
- Update to GCC 7.3.0 RC1 (r256792).
==== gd ====
- security update:
* CVE-2018-5711 [bsc#1076391]
+ gd-CVE-2018-5711.patch
==== gdm ====
Subpackages: gdm-lang gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Add back translation-update-upstream as BuildRequires since
SLE still needs it.
- Update gdm-disable-wayland-on-unsupported-chipsets.patch: examine
filename argument in gdm_settings_desktop_backend_new instead of
examining GDM_RUNTIME_CONF (bsc#1078030).
- Add gdm-disable-wayland-on-unsupported-chipsets.patch: let udev
write to a runtime config file to disable Wayland for gdm on
chipsets where Wayland is not supported yet, e.g. Cirrus
(boo#1059356, bgo#789081).
- Update gdm-sysconfig-settings.patch: parts of this openSUSE
specific patch are splitted and merged into
gdm-disable-wayland-on-unsupported-chipsets.patch to push to
upstream,
- Add gdm-nb-translations.patch: Update Norwegian Bokm�l
translations.
- Drop gdmflexiserver Obsoletes from main package, we ship
gdmflexiserver again, so this is not needed nor wanted.
- Do minor spec-cleanup, silence a couple of rpmlint warnings.
- Add gdm-not-run-with-bogus-DISPLAY-XAUTHORITY.patch: When run
PreSession script, don't set DISPLAY and XAUTHORITY environment
variable, avoiding environment variable equal (null)
(bsc#1068016 bgo#792150).
- Remove gdm-ignore-SLE-CLASSIC-MODE.patch: SLE-Classic doesn't use
environment variable SLE_CLASSIC_MODE anymore.
==== gegl ====
Subpackages: gegl-0_2 gegl-0_2-lang libgegl-0_2-0
- require liberation-fonts instead of liberation2-fonts, it is dead
[bsc#1077375] [rh#856239]
==== glibc ====
Subpackages: glibc-32bit glibc-locale-32bit
- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an
absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)
- dl-init-paths-overflow.patch: Count components of the expanded path in
_dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ
[#22607], BZ #22627)
- fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic
string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)
==== glibc ====
Subpackages: glibc-devel glibc-extra glibc-locale nscd
- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an
absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)
- dl-init-paths-overflow.patch: Count components of the expanded path in
_dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ
[#22607], BZ #22627)
- fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic
string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)
==== gnome-contacts ====
Version update (3.26 -> 3.26.1)
Subpackages: gnome-contacts-lang gnome-shell-search-provider-contacts
- Update to version 3.26.1:
+ Makefile.am: add README.md. Fixes bgo#792768.
+ Updated translations.
- Drop gnome-contacts-nb-translations.patch: Fixed upstream.
==== gnome-software ====
Version update (3.26.4 -> 3.26.5)
Subpackages: gnome-software-lang
- Update to version 3.26.5:
+ Add missing locking to gs_plugin_cache_remove(), fixing a
possible crash.
+ Fix various memory leaks spotted by valgrind.
+ Fix a possible crash triggered by the fwupd plugin.
+ Do not emit critical warnings when reviewing OS Updates.
+ fwupd: Use the custom user-agent when downloading firmware.
+ overview page: Fix a crash when we have no featured apps.
+ packagekit: Implement repository enabling.
+ Fix hover CSS for "unknown" and "nonfree" license buttons.
+ Updated translations.
==== gnumeric ====
Subpackages: gnumeric-doc gnumeric-lang
- Recommen liberation-fonts instead of liberation2-fonts,
liberation2-fonts is dead (bsc#1077375, rh#856239).
==== graphite2 ====
Subpackages: libgraphite2-3 libgraphite2-3-32bit
- Do not BR asciidoc as we do not install the generated html page
==== graphviz ====
Subpackages: graphviz-plugins-core libgraphviz6
- Disable building the graphviz-ocaml package: we have no consumer
of it, but not building it allows us to elminiate a build cycle.
==== graphviz-addons ====
Subpackages: graphviz-gd graphviz-gnome
- Disable building the graphviz-ocaml package: we have no consumer
of it, but not building it allows us to elminiate a build cycle.
==== gstreamer-plugins-libav ====
- Add conditional libavcodec.so(unrestricted) Requires, pull in the
full codecpack when installing package from third party repos who
build libavcodec.
==== hugin ====
- Pass -DPYTHON_EXECUTABLE=/usr/bin/python2 to CMake, ensuring we
use the python2 interpreter.
==== ibus ====
Subpackages: ibus-gtk ibus-gtk3 ibus-lang libibus-1_0-5 typelib-1_0-IBus-1_0
- Fix boo#1073524: IBus does not work on Qt5 applicatin under
Qt5 only environment
* do not set QT_IM_MODULE=xim for Qt5 applications
* use QT4_IM_MODULE for Qt4 applications
- Enable emoji support for openSUSE.
- Use %fdupes in python3-ibus.
==== installation-images-openSUSE ====
Version update (14.354 -> 14.358)
- merge gh#openSUSE/installation-images#233
- add missing drivers for ppc (bsc#1077546)
- 14.358
- merge gh#openSUSE/installation-images#232
- add full open-iscsi package to zenworks image (bsc# 1077301)
- 14.357
- merge gh#openSUSE/installation-images#231
- mk_image: /var/lib/rpm/alternatives was moved to
/var/lib/alternatives
- 14.356
- Do not explicitly BuildRequire libcryptsetup4-hmac and
libgcrypt20-hmac: since those packages change sonmae every now
and then, it makes it only difficult to follow it. They are
already pulled in by dracut-fips, so we still have them in the
buildroot available.
- merge gh#openSUSE/installation-images#229
- make cypto lib dependencies more flexible
- make dependency on bash explicit
- 14.355
- Own /usr/lib/skelcd if skelcd_compat is set: until the products
are fully migrated to the product builder rewrite, some still use
the legacy /CD1 path. They advertise this by defining
skelcd_compat=1.
==== ipset ====
Subpackages: libipset11
- Add 0001-build-do-install-libipset-args.h.patch.
==== iso-codes ====
Version update (3.76 -> 3.77)
Subpackages: iso-codes-lang
- Update to version 3.77:
+ Updated translations for ISO 3166-1, ISO 3166-2, ISO 4217,
ISO 3166-3, ISO 639-2, ISO 639-5, ISO 639-3, ISO 15924.
- Cleanup with spec-cleaner.
==== jack ====
Version update (1.9.10 -> 1.9.12)
- Build with _smp_mflags
- Split off libjacknet0 and libjackserver0 into subpackages.
- Update to version 1.9.12 and use python3 instead of python2 for
the build.
- Removed jack-sparcv9.diff and jack-ppc64-long.patch, the file
that is patched - linux/cycles.h no longer exists.
- Removed reproducible.patch, gcc6-fixes.diff and jack-fixgcc7.patch
they are all now upstream.
- Upstream changes:
* Various corrections in NetJack2 code.
* Partial buffers can now be transmitted with libjacknet API.
* Including S24_LE/BE formats to linux ALSA driver.
* More robust shared memory allocator.
* Correct CoreAudio devices aggregation code.
* Waf and wscripts improvement and update.
* New JackProxyDriver.
* Various fixes in JACK MIDI code.
* Fix return value of SetTimebaseCallback().
* Correct netmanager latency reporting.
* Implement new jack_port_rename and JackPortRenameCallback API.
* Fix CPU hogging of the midi_thread().
* Release audio devices when alsa_driver_new fails.
* String management fix.
* Correct JackDriver::Open : call to fGraphManager->SetBufferSize
has to use current fEngineControl->fBufferSize value.
* Use ARM neon intrinsics for AudioBufferMixdown.
* Fix Netjack alignment.
* Various wscript improvements and cleanup.
* Fix initialization of several class variables.
* Heap-allocate client matrix in topo sort.
* Add a toggle command to transport utility, to allow toggling
between play and stop state.
* Avoid side effects from parsing of "version" option in jackd.
* Allow firewire device be selected via -d.
* Add ARM-NEON acceleration for all non-dithering sample
conversion functions.
* Add jack_simdtest utility.
* Use Linux futex as JackSynchro.
* Add autoclose option to jack_load.
* Fix build with gcc-7.
* Show hint when DBus device reservation fails.
* Add support for internal session files.
==== java-1_8_0-openjdk ====
Subpackages: java-1_8_0-openjdk-headless
- Fix build with gcc 7.3
* add -fno-delete-null-pointer-checks -fno-lifetime-dse and
- std=gnu++98
==== javapackages-tools ====
Version update (4.7.0+git20170331.ef4057e7 -> 5.0.0+git20180104.9367c8f6)
- Update to version 5.0.0+git20180104.9367c8f6:
* [java-functions] Avoid colons in jar names
* Workaround for SCL enable scripts not working with -e
* Second argument to pom_xpath_inject is mandatory
* [mvn_artifact] Provide more helpful error messages
* Fix traceback on corrupt zipfile
* [test] Add reproducer for rhbz#1481005
* [spec] Fix default JRE path
* [readme] Fix typo
* Add initial content to README.md (#21)
* Decouple JAVA_HOME setting from java command alternatives
- Rebase patches:
* python-optional.patch
* suse-use-libdir.patch
- Drop merged patch fix-abs2rel.patch
==== kactivitymanagerd ====
Subpackages: kactivitymanagerd-lang
- Require libQt5Sql5-sqlite, apparently it crashes without it, and
even if not it would probably not work properly (boo#1078173)
==== kbd ====
Subpackages: kbd-legacy
- Move initial NumLock handling from systemd back to kbd:
* Add kbdsettings service written by Thomas Blume (boo#1010880,
kbdsettings, kbdsettings.service, numlockbios.c,
update sysconfig.console and sysconfig.keyboard).
* Exclude numlockbios support for non x86 platforms
(kbdsettings-nox86.patch).
- Drop references to KEYTABLE and COMPOSETABLE (boo#1010880#c32,
boo#1010880#c54, sysconfig.keyboard.del, README.SUSE,
drop kbd.fillup).
- Fix paths in kbd.pl.
==== kdeconnect-kde ====
Version update (1.2 -> 1.2.1)
Subpackages: kdeconnect-kde-lang
- Update to 1.2.1
* Require the latest version of KF5
* Was getting a double-delete, now it won't crash
* Get rid of ProcessRunner
* Add album art to mpris network packets
* Add title, artist and album to MPRIS network packets
* Fix information leak via /tmp (kde#383144)
* Add support for new Android 2.3 (API 9+) cipher
* Fix kdeconnect-cli device list
* Fix "error activiting kdeconnectd" for kdeconnect-cli
* Delay kdeconnectd autostart phase
* Fix Notifications in Plasmoid
* Make sure there's not a path within the filename
* share plugin: fix path display
* Use pactl instead of KMix in PauseMusic Plugin
- needs KDE Frameworks 5.42 now
==== kernel-firmware ====
Version update (20180104 -> 20180119)
Subpackages: ucode-amd
- Update to version 20180119:
* amdgpu: update uvd firmware for polaris asics
* amdgpu: update vce firmware for Fiji
* amdgpu: update vcn firmware for raven
* amdgpu: update vce and uvd firmware for Vega10
* mediatek: update MT8173 VPU firmware to 1.0.8 [decoder h264] Fix h264 decoder output delay for some low latency bitstreams
* cxgb4: update firmware to revision 1.17.14.0
* linux-firmware: update Marvell PCIe-USB8897/8997 firmware image to add WPA2 vulnerability fix
* linux-firmware: intel: Update Geminilake audio firmware
==== kexec-tools ====
Version update (2.0.14 -> 2.0.16)
- Create compat link for rckexec-loader systemd service
- Convert the asciidoc file to normal man in order to drop asciidoc dep
* python2 only obsoletion and upstream has only raw manpages too
- Properly state all post/postun dependencies (systemd, suse-module-tools)
- There is no reason for exclusive arch if we state all archs
- Bump to version 2.0.16
Changelog: http://git.kernel.org/cgit/utils/kernel/kexec/kexec-tools.git/log/?id=refs/…
- Remove support for older products to trivialize spec file
- Make sure to not pull python2 via asciidoc
- Drop merged patch 0001-kexec-tools-2.0.14.git.patch
- Drop all patches from upstream git:
* 0002-ppc64-Reduce-number-of-ELF-LOAD-segments.patch
* 0003-kexec-Increase-the-upper-limit-for-RAM-segments.patch
* 0004-alpha-add-missing-__NR_kexec_load-definition.patch
* 0005-kexec-implemented-XEN-KEXEC-STATUS-to-determine-if-a.patch
* 0006-kexec-Remove-redundant-space-from-help-message.patch
* 0007-purgatory-Add-purgatory.map-and-purgatory.ro.sym-to-.patch
* 0008-kexec-Add-option-to-get-crash-kernel-region-size.patch
* 0009-crashdump-arm-Add-get_crash_kernel_load_range-functi.patch
* 0010-crashdump-arm64-Add-get_crash_kernel_load_range-func.patch
* 0011-crashdump-cris-Add-get_crash_kernel_load_range-funct.patch
* 0012-crashdump-ia64-Add-get_crash_kernel_load_range-funct.patch
* 0013-crashdump-m68k-Add-get_crash_kernel_load_range-funct.patch
* 0014-crashdump-mips-Add-get_crash_kernel_load_range-funct.patch
* 0015-crashdump-ppc-Add-get_crash_kernel_load_range-functi.patch
* 0016-crashdump-ppc64-Add-get_crash_kernel_load_range-func.patch
* 0017-crashdump-s390-Add-get_crash_kernel_load_range-funct.patch
* 0018-crashdump-sh-Add-get_crash_kernel_load_range-functio.patch
* 0019-gitignore-add-two-generated-files-in-purgatory.patch
* 0020-Only-print-debug-message-when-failed-to-serach-for-k.patch
* 0021-build_mem_phdrs-check-if-p_paddr-is-invalid.patch
* 0022-uImage-fix-realloc-pointer-confusion.patch
* 0023-uImage-Fix-uImage_load-for-little-endian-machines.patch
* 0024-uImage-Add-new-IH_ARCH_xxx-definitions.patch
* 0025-uImage-use-char-instead-of-unsigned-char-for-uImage_.patch
* 0026-uImage-use-char-instead-of-unsigned-char-for-uImage_.patch
* 0027-arm64-add-uImage-support.patch
* 0028-vmcore-dmesg-Define-_GNU_SOURCE.patch
* 0029-Don-t-use-L-width-specifier-with-integer-values.patch
* 0030-x86-x86_64-Fix-format-warning-with-die.patch
* 0031-ppc-Fix-format-warning-with-die.patch
* 0032-crashdump-Remove-stray-get_crashkernel_region-declar.patch
* 0033-x86-Support-large-number-of-memory-ranges.patch
* 0034-Fix-broken-Xen-support-in-configure.ac.patch
* 0035-kexec-extend-the-semantics-of-kexec_iomem_for_each_l.patch
* 0036-kexec-generalize-and-rename-get_kernel_stext_sym.patch
* 0037-arm64-identify-PHYS_OFFSET-correctly.patch
* 0038-arm64-change-return-values-on-error-to-negative.patch
* 0039-arm64-kdump-identify-memory-regions.patch
* 0040-arm64-kdump-add-elf-core-header-segment.patch
* 0041-arm64-kdump-set-up-kernel-image-segment.patch
* 0042-arm64-kdump-set-up-other-segments.patch
* 0043-arm64-kdump-add-DT-properties-to-crash-dump-kernel-s.patch
* 0044-arm64-kdump-Add-support-for-binary-image-files.patch
* 0045-Handle-additional-e820-memmap-type-strings.patch
* 0046-powerpc-fix-command-line-overflow-error.patch
* 0047-fix-how-RMA-top-is-deduced.patch
==== konsole ====
Subpackages: konsole-part konsole-part-lang
- Temporary add patch konsole-D10064.id25855.diff which is based on
the Diff 25855 from https://phabricator.kde.org/D10064 for Support
of ECMA-48 REP (boo#1054448, bsc#1078565, and kde#384620)
==== libbsd ====
Version update (0.8.6 -> 0.8.7)
- Update to version 0.8.7:
* Fix <sys/cdefs.h> for gcc with no __has_include or
__has_include_next support
* man: Document on what other BSDs arc4random(3) is present
* Handle several functions now being provided by glibc
* test: Fix nlist(3) unit test on IA64
- switch to mirror temporarily, per announce:
https://lists.freedesktop.org/archives/libbsd/2018-January/000166.html
==== libcaca ====
Version update (0.99.beta19 -> 0.99.beta19+git20171002.da28e96)
- Drop the py2 bindings they fail to build using rpm macros and
somehow ingnore LD_LIBRARY_PATH, anyway provide py3 variant and
stick with that
- Switch to git repack service in order to get all the latest fixes
* like python3 porting of the bindings
- Update to version 0.99.beta19+git20171002.da28e96:
* img2text.c: fix width arg case in example
* ruby: require 'caca' instead of 'caca.so'
* Only fail the check-copyright test if more than 10 files are affected.
* Try to run Coverity from Travis CI.
* Add some missing breaks (thanks coverity)
* Fix header copyright.
* Fix a bug into the autorepeat trigger.
- Refresh patches:
* libcaca-ruby_am_cflags.patch
* libcaca-ruby_vendor_install.patch
- Fix URL
- Mention github repo containing more changes
- Format with spec-cleaner
- Remove support for older distros lets stick with latest only
- Remove for years disabled mono and java integration code snippets
- Use python macros to build python instead of waiting for autotools
- Convert to pkgconfig style dependencies
==== libdvdread ====
Version update (5.0.3 -> 6.0.0)
- Update to version 6.0.0:
* restrict the number of symbols to be exposed to the
shared-object
* remove dvdinput_error function
* improve compatibility with some DVDs (notably the eOne ones)
* fix write after free in ifoFree functions
* fix possible buffer overflow in open
* additional checks on DVDReadBytes arguments
* fix leaks
- Removed libdvdread-no-internal-crypto.patch because it's not
applied anymore.
==== libexif ====
- Remove %__-type macro indirections. Fix SRPM group.
- Use %_smp_mflags for parallel build.
- Drop pointless --with-pic (no effect since --disable-static).
- Add CVE-2016-6328.patch: Fix integer overflow in parsing MNOTE
entry data of the input file (bnc#1055857)
- Add CVE-2017-7544.patch: Fix vulnerable out-of-bounds heap read
vulnerability (bnc#1059893)
==== libexttextcat ====
Version update (3.4.4 -> 3.4.5)
Subpackages: libexttextcat-2_0-0
- Version bump to 3.4.5
* fixed broken uk.lm langclass
* Fix -fsanitize=shift-base errors
- use new URL
- cleanup with spec-cleaner
==== libfastjson ====
Version update (0.99.7 -> 0.99.8)
- update to 0.99.8:
* make build under gcc7 with strict settings (warning==error)
* bugfix: constant key names not properly handled
* fix potentially invalid return value of fjson_object_iter_begin
* fix small potential memory leak in json_tokener
==== libgepub ====
Version update (0.5.2 -> 0.5.3)
- Update to version 0.5.3:
+ Fixed SVG image resource replacement.
+ Rename introspection build option.
+ Removed autotools.
+ build:
- Conform to build-api expectations.
- Remove default warning level.
- Remove unused defines.
- Improved linker script handling.
- Set prefix-relative install_dir for libgepub.
- Fix typo in symbol path creation.
+ tests:
- Fix crash on exit.
- Replace "100" with a constant.
- widget: Don't change LC_NUMERIC at runtime.
- Pass introspection=true to meson, ensure we build the features
we want.
- Minor spec cleanup, use autosetup macro.
==== libgme ====
Version update (0.6.1 -> 0.6.2)
- Update to 0.6.2:
* fix crashes in nsfe emulator
==== libmbim ====
Version update (1.14.2 -> 1.16.0)
Subpackages: libmbim-glib4 mbimcli-bash-completion
- Update to version 1.16.0:
+ All the code base was ported to use the GTask based
asynchronous operations support instead of the deprecated
GSimpleAsyncResult.
+ New support for AT&T Device Service and Intel Firmware Update
Service.
+ libmbim-glib:
- Added:
. MBIM_STATUS_ERROR_CONTEXT_NOT_SUPPORTED to MbimStatusError.
. Support to detect already open MBIM channels on the Sierra
Wireless EM7345.
- Avoid using iconv() directly for the UTF-16BE conversions,
which makes it possible to use libmbim on systems with a stub
iconv() implementation.
- Prefer realpath() to canonicalize_file_name().
- Added MBIM_READY_INFO_FLAG_NONE to MbimReadyInfoFlag.
+ mbimcli:
- New: --query-ip-packet-filters, --query-pin-list action,
- -atds-query-signal, --atds-query-location and
- -intel-modem-reboot actions.
- Add cancellability to the query-ip-configuration action.
+ mbim-proxy: Avoid receiving signals from the parent process.
- Add pkgconfig(gio-unix-2.0) BuildRequires: it was being pulled
by another pkgconfig module that live in glib2-devel package and
used already.
==== libmspack ====
Version update (0.5 -> 0.6)
- Correct mspack-tools group to Productivity/File utilities
- Correct SRPM group.
- Fix typo
- Update to version 0.6
* read_spaninfo(): a CHM file can have no ResetTable and have a
negative length in SpanInfo, which then feeds a negative output
length to lzxd_init(), which then sets frame_size to a value of
your choosing, the lower 32 bits of output length, larger than
LZX_FRAME_SIZE. If the first LZX block is uncompressed, this
writes data beyond the end of the window.
This issue was raised by ClamAV as CVE-2017-6419.
* lzxd_init(), lzxd_set_output_length(), mszipd_init(): due to the
issue mentioned above, these functions now reject negative lengths
* cabd_read_string(): add missing error check on result of read().
If an mspack_system implementation returns an error, it's
interpreted as a huge positive integer, which leads to reading
past the end of the stack-based buffer.
This issue was raised by ClamAV as CVE-2017-11423
- Add subpackage for helper tools
- Run spec-cleaner
==== libpng16 ====
Version update (1.6.31 -> 1.6.34)
Subpackages: libpng16-16 libpng16-16-32bit
- check with -j1
- Fix SRPM group and grammar issues.
- removed obsoleted Obsoletes
- update to 1.6.34:
* Removed contrib/pngsuite/i*.png; some of these were incorrect
and caused test failures.
- includes 1.6.33:
* Added PNGMINUS_UNUSED macro to contrib/pngminus/p*.c and added
missing parenthesis in contrib/pngminus/pnm2png.c
* Fixed off-by-one error in png_do_check_palette_indexes()
* Initialize png_handler.row_ptr in libpng_read_fuzzer.cc
to fix shortlived oss-fuzz issue 3234.
* Compute a larger limit on IDAT because some applications write
a deflate buffer for each row
* Use current date (DATE) instead of release-date (RDATE) in last
changed date of contrib/oss-fuzz files.
* Enabled ARM support in CMakeLists.txt
* Fixed incorrect typecast of some arguments to png_malloc() and
png_calloc() that were png_uint_32 instead of png_alloc_size_t
* Use pnglibconf.h.prebuilt when building for ANDROID with cmake
* Initialize memory allocated by png_inflate to zero, using
memset, to stop an oss-fuzz "use of uninitialized value"
detection in png_set_text_2() due to truncated iTXt or zTXt
chunk.
* Initialize memory allocated by png_read_buffer to zero, using
memset, to stop an oss-fuzz "use of uninitialized value"
detection in png_icc_check_tag_table() due to truncated iCCP
chunk.
* Removed redundant tests
* Added an interlaced version of each file in contrib/pngsuite.
* Relocate new memset() call in pngrutil.c
* Add support for loading images with associated alpha in the
Simplified API
* Revert contrib/oss-fuzz/libpng_read_fuzzer.cc to libpng-1.6.32
state
* Initialize png_handler.row_ptr in libpng_read_fuzzer.cc
* Add end_info structure and png_read_end() to the libpng fuzzer
- includes 1.6.32:
* Avoid possible NULL dereference in png_handle_eXIf when
benign_errors are allowed. Avoid leaking the input buffer
"eXIf_buf".
* Eliminated png_ptr->num_exif member from pngstruct.h and added
num_exif to arguments for png_get_eXIf() and png_set_eXIf().
* Added calls to png_handle_eXIf(() in pngread.c and
png_write_eXIf() in pngwrite.c, and made various other fixes
to png_write_eXIf().
* Changed name of png_get_eXIF and png_set_eXIf() to
png_get_eXIf_1() and png_set_eXIf_1(), respectively, to avoid
breaking API compatibility with libpng-1.6.31.
* Updated contrib/libtests/pngunknown.c with eXIf chunk.
* Initialized btoa[] in pngstest.c
* Stop memory leak when returning from png_handle_eXIf() with an
error
* Replaced local eXIf_buf with info_ptr-eXIf_buf in png_handle_eXIf().
* Update libpng.3 and libpng-manual.txt about eXIf functions.
* Restored png_get_eXIf() and png_set_eXIf() to maintain API
compatability.
* Removed png_get_eXIf_1() and png_set_eXIf_1().
* Check length of all chunks except IDAT against user limit to
fix an OSS-fuzz issue (Fixes CVE-2017-12652)
* Check length of IDAT against maximum possible IDAT size,
accounting for height, rowbytes, interlacing and zlib/deflate
overhead.
* Restored png_get_eXIf_1() and png_set_eXIf_1(), because
strlen(eXIf_buf) does not work (the eXIf chunk data can
contain zeroes).
* Revised symlink creation, no longer using deprecated cmake
LOCATION feature
* Fixed five-byte error in the calculation of IDAT maximum
possible size.
* Moved chunk-length check into a png_check_chunk_length()
private function
* Moved bad pngs from tests to contrib/libtests/crashers
* Moved testing of bad pngs into a separate
tests/pngtest-badpngs script
* Added the --xfail (expected FAIL) option to pngtest.c. It
writes XFAIL in the output but PASS for the libpng test.
* Require cmake-3.0.2 in CMakeLists.txt
* Fix "const" declaration info_ptr argument to png_get_eXIf_1()
and the num_exif argument to png_get_eXIf_1()
* Added "eXIf" to "chunks_to_ignore[]" in png_set_keep_unknown_chunks().
* Added huge_IDAT.png and empty_ancillary_chunks.png to
testpngs/crashers.
* Make pngtest --strict, --relax, --xfail options imply -m
(multiple).
* Removed unused chunk_name parameter from png_check_chunk_length().
* Relocated setting free_me for eXIf data, to stop an OSS-fuzz'
leak.
* Initialize profile_header[] in png_handle_iCCP() to fix
OSS-fuzz issue.
* Initialize png_ptr->row_buf[0] to 255 in png_read_row() to fix
OSS-fuzz UMR.
* Attempt to fix a UMR in png_set_text_2() to fix OSS-fuzz issue.
* Increase minimum zlib stream from 9 to 14 in png_handle_iCCP(),
to account for the minimum 'deflate' stream, and relocate the
test to a point after the keyword has been read.
* Check that the eXIf chunk has at least 2 bytes and begins with
"II" or "MM".
* Added a set of "huge_xxxx_chunk.png" files to
contrib/testpngs/crashers, one for each known chunk type, with
length = 2GB-1.
* Check for 0 return from png_get_rowbytes() and added some
(size_t) typecasts in contrib/pngminus/*.c to stop some Coverity
issues (162705, 162706, and 162707).
* Renamed chunks in contrib/testpngs/crashers to avoid having
files whose names differ only in case; this causes problems with
some platforms
* Added contrib/oss-fuzz directory which contains files used by
the oss-fuzz project
- cleanup with spec-cleaner
==== libqmi ====
Version update (1.18.0 -> 1.20.0)
Subpackages: libqmi-glib5 libqmi-tools
- Update to version 1.20.0:
+ New services: loc - new "LOC" (location) service, which e.g.
allows controlling GPS devices in newer modules that don't
implement the PDS service. Just some very basic implementation
for now.
+ New request/responses:
- nas: new "Attach/Detach" request/response messages.
- wds: new "Get Channel Rates" request/response messages.
- dms: new 'Swi Get/Set USB Composition' request/response
messages.
+ New TLVs supported in existing messages:
- nas: new 'Extended LTE Band Preference' TLV in "Set/Get SSP".
- dms: new 'Extended LTE Band Capability' TLV in "Get Band
Capabilities".
+ libqmi:
- New:
. QMI_DEVICE_SIGNAL_REMOVED signal in the QmiDevice
object, propagated through the qmi-proxy.
. QMI_CLIENT_VALID property in the QmiClient that allows
detecting whether the underlying QmiDevice is usable or not.
- Defined additional LTE bands.
+ qmicli:
- New: --wds-set-ip-family, --wds-get-channel-rates,
- -uim-read-record, --dms-swi-get-usb-composition and
- -dms-swi-set-usb-composition commands.
+ libqmi-glib:
- Prefer realpath() to canonicalize_file_name().
- Avoid signals sent to the qmi-proxy process.
+ qmi-firmware-update: Support USB3->USB2 mode changes during
upgrade.
- Update Url to https://www.freedesktop.org/wiki/Software/libqmi/:
current libqmi's web page.
- Add pkgconfig(gio-unix-2.0) BuildRequires: it was being pulled
by another pkgconfig module that live in glib2-devel package and
used already.
==== libraw ====
Version update (0.18.6 -> 0.18.7)
- updated to 0.18.7:
* All legacy (RGB raw) image loaders checks for imgdata.image is
not NULL
* kodak_radc_load_raw: check image size before processing
* legacy memory allocator:
allocate max(widh, raw_width) * max(height, raw_height)
- partial cleanup with spec-cleaner
- other spec fixes:
* switch to https site
* remove executable bit from copyright
* remove outdated comment about build parallelism
==== libreoffice ====
Subpackages: libreoffice-base libreoffice-base-drivers-mysql libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-kde4 libreoffice-l10n-en libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-writer libreofficekit
- Require xorg-x11-fonts otherwise nothing is shown
- Do not pull in liberation2-fonts wrt bsc#1077375#c5
==== libsolv ====
Version update (0.6.30 -> 0.6.31)
Subpackages: libsolv-tools python-solv
- new ENABLE_RPMDB_LIBRPM/ENABLE_RPMPKG_LIBRPM config options
- new pool_set_whatprovides function to change the whatprovides
data
- much improved selection code
- bump version to 0.6.31
==== libsoup ====
Version update (2.60.2 -> 2.60.3)
Subpackages: libsoup-2_4-1 libsoup-lang typelib-1_0-Soup-2_4
- Update to version 2.60.3:
+ heap-buffer-overflow in soup_ntlm_parse_challenge()
(bgo#788037).
+ session: don't request Keep-Alive for upgraded connections
(bgo#788723).
+ soup-headers: accept any 3 digit number as message status code
(bgo#792124).
==== libssh2_org ====
- Drop openssh BuildRequires: this is only used for one of the
minor self-tests.
==== libstorage-ng ====
Version update (3.3.140 -> 3.3.145)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#439
- start rpcbind before doing NFS mounts
- cleanup
- added integration-test
- 3.3.145
- Translated using Weblate (Arabic)
- merge gh#openSUSE/libstorage-ng#438
- extended documentation
- 3.3.144
- merge gh#openSUSE/libstorage-ng#437
- distinguish between mounted and unounted in supports_shrink/grow
- 3.3.143
- Translated using Weblate (Korean)
- Fixed an Arabic format string typo
- 3.3.142
- Translated using Weblate (Arabic)
- 3.3.141
==== libtasn1 ====
Version update (4.12 -> 4.13)
Subpackages: libtasn1-6 libtasn1-6-32bit
- update to 4.13
* On indefinite string decoding, set a maximum level of allowed
recursions (3) to protect the BER decoder from a stack exhaustion.
(CVE-2018-6003 boo#1076832)
==== libunwind ====
Version update (1.2~rc1 -> 1.2.1)
- Update keyring
- Upgrade to 1.2.1
* minor package fixes for tilegx, mips, others
* fix missing include file issues
- cleanup with spec-cleaner
- do not ship static libraries
==== libvpx ====
- cleanup traces for testing, we don't have the >400MB test data here
- Fix OOB caused by odd frame width with patch from android
Adding patch CVE-2017-13194.patch (CVE-2017-13194)
- this changelog entry also contains the new scheme with full name
and "umlaut" to test which tools may break with it in our distro.
Please track problems here: https://github.com/openSUSE/obs-build/pull/214
==== libwmf ====
Subpackages: libwmf-0_2-7 libwmf-tools
- removed unneeded 'BuildRequires: xorg-x11-util-devel' (bsc#1077489)
==== libxcb ====
Subpackages: libxcb-composite0 libxcb-damage0 libxcb-devel libxcb-dpms0 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-render0-32bit libxcb-res0 libxcb-screensaver0 libxcb-shape0 libxcb-shm0 libxcb-shm0-32bit libxcb-sync1 libxcb-xf86dri0 libxcb-xfixes0 libxcb-xinerama0 libxcb-xkb1 libxcb-xtest0 libxcb-xv0 libxcb-xvmc0 libxcb1 libxcb1-32bit
- Really conditionalize the python3 option to allow us building
without any python2 present
* u_build_python3.patch
- Convert to pkgconfig style deps
- Format bit with spec-cleaner
- Enable xinput extension. (bnc#1074249)
- U_add-support-for-eventstruct.patch
* Update xinput to the state when it was enabled by default
upstream.
- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch
* Prevent infinite loop also in case DISPLAY is non-local.
- Use spaces instead of tabs in the patches (as does the original
source code) to avoid confusion.
- n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch
* If authentication (with *stage == 0) failed and the variable
XAUTHLOCALHOSTNAME wasn't set, we were never getting to stage 2
in the original patch, causing calls to xcb_connect_to_display
to be stuck in an infinite loop.
Now we also go to stage 2 if the variable isn't set.
==== libzio ====
Version update (1.05 -> 1.06)
- Version 1.06: Add changes from Jerrell Watts which has kindly
provided his changes for lzma/xz support with large I/O buffers
==== llvm5 ====
- n_clang_allow_BUILD_SHARED_LIBRARY.patch
* Allow buildling clang with BUILD_SHARED_LIBRARY while the rest
is built with LLVM_LINK_LLVM_DYLIB. (bnc#1065464)
- Remove clang-devel-static.
==== logrotate ====
Version update (3.12.3 -> 3.13.0)
- Version update to 3.13.0:
* make distribution tarballs report logrotate version properly
* make (un)compress work even if stdin and/or stdout are closed (#154)
* remove -s from DEFAULT_MAIL_COMMAND and improve its documenation (#152)
* uncompress logs before mailing them even if delaycompress is enabled (#151)
* handle unlink of a non-existing log file as a warning only (#144)
* include compile-time options in the output of logrotate --version (#145)
* make logrotate --version print to stdout instead of stderr (#145)
* flush write buffers before syncing state file (#148)
* specify (un)compress utility explicitly in tests (#137)
* enable running tests in parallel (#132)
* explicitly map root UID/GID to 0 on Cygwin (#133)
* add .dpkg-bak and .dpkg-del to default tabooext list (#134)
==== lttng-ust ====
- Format with spec-cleaner
- Drop tex/asciidoc/xmlto dependencies as the manpages are already
generated in the tarball so we produce the same result and this
way we are not pulling in python2
==== lvm2 ====
Subpackages: liblvm2app2_2 liblvm2cmd2_02
- clvmd: try to refresh device cache on the first failure
(bsc#978055, bsc#1076042)
+ bug-978055_clvmd-try-to-refresh-device-cache-on-the-first-failu.patch
==== lzip ====
Version update (1.18 -> 1.19)
- Update to version 1.19
* The option '-l, --list' has been ported from lziprecover.
* Don't allow mixing different operations (-d, -l or -t).
* Compression time of option '-0' has been slightly reduced.
* Decompression time has been reduced by 2%.
* main.cc: Continue testing if any input file is a terminal.
* main.cc: Show trailing data in both hexadecimal and ASCII.
* encoder.cc (Matchfinder_base): Verify size passed to new.
* file_index.cc: Improve detection of bad dict and trailing data.
* lzip.h: Unified messages for bad magic, trailing data, etc.
- switch to https in source urls
==== make ====
Subpackages: make-lang
- test-driver.patch: let perl find test_driver.pl
- glob-interface.patch: Support GLIBC glob interface version 2
==== mdadm ====
- 0208-mdadm-grow-correct-the-s-size-1-to-make-max-work.patch
(bsc#1074949)
==== mozilla-nss ====
Version update (3.33 -> 3.34.1)
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs
- update to NSS 3.34.1
Changes in 3.34:
Notable changes
* The following CA certificates were Added:
GDCA TrustAUTH R5 ROOT
SSL.com Root Certification Authority RSA
SSL.com Root Certification Authority ECC
SSL.com EV Root Certification Authority RSA R2
SSL.com EV Root Certification Authority ECC
TrustCor RootCert CA-1
TrustCor RootCert CA-2
TrustCor ECA-1
* The following CA certificates were Removed:
Certum CA, O=Unizeto Sp. z o.o.
StartCom Certification Authority
StartCom Certification Authority G2
T�B?TAK UEKAE K�k Sertifika Hizmet Sa?lay?c?s? - S�r�m 3
ACEDICOM Root
Certinomis - Autorit� Racine
T�RKTRUST Elektronik Sertifika Hizmet Sa?lay?c?s?
PSCProcert
CA ?????, O=WoSign CA Limited
Certification Authority of WoSign
Certification Authority of WoSign G2
CA WoSign ECC Root
* libfreebl no longer requires SSE2 instructions
New functionality
* When listing an NSS database using certutil -L, but the database
hasn't yet been initialized with any non-empty or empty password,
the text "Database needs user init" will be included in the listing.
* When using certutil to set an inacceptable password in FIPS mode,
a correct explanation of acceptable passwords will be printed.
* SSLKEYLOGFILE is now supported with TLS 1.3, see bmo#1287711 for details.
* SSLChannelInfo has two new fields (bmo#1396525):
SSLNamedGroup originalKeaGroup holds the key exchange group of
the original handshake when the session was resumed.
PRBool resumed is PR_TRUE when the session is resumed and PR_FALSE
otherwise.
* RSA-PSS signatures are now supported on certificates. Certificates
with RSA-PSS or RSA-PKCS#1v1.5 keys can be used to create an RSA-PSS
signature on a certificate using the --pss-sign argument to certutil.
Changes in 3.34.1:
* The following CA certificate was Re-Added. It was removed in NSS
3.34, but has been re-added with only the Email trust bit set.
(bmo#1418678):
libfreebl no longer requires SSE2 instructionsCN = Certum CA, O=Unizeto Sp. z o.o.
* Removed entries from certdata.txt for actively distrusted
certificates that have expired (bmo#1409872)
* The version of the CA list was set to 2.20.
==== mozjs52 ====
Version update (52.3.0 -> 52.6.0)
- Update to 52.6.0
- Drop fix-64bit-archs.patch and bmo1379539.patch, fixed upstream
- Update Source url.
==== multipath-tools ====
Version update (0.7.3+31+suse.6804bb73f72d -> 0.7.3+38+suse.a16beed5280a)
Subpackages: kpartx multipath-tools-rbd
- Update to version 0.7.3+38+suse.a16beed5280a:
* kpartx: don't delete partitions from partitions (bsc#1078362)
* hwtable: add latest updates (bsc#1078363)
* multipathd.service: set TasksMax=infinity (bsc#1060616)
==== nano ====
Version update (2.9.1 -> 2.9.3)
Subpackages: nano-lang
- GNU nano 2.9.3:
* fix a segfault with trimblanks that could occur when a typed
space caused the word after it to be pushed to the next line
* make macros work also when your keyboard still emits escape
sequences
* add the options -M and --trimblanks for the command line
* recognizeskey combos with Shift on a few more terminals
* no longer show dots in certain prompt texts when visible
witespace is turned on
* fix two corner cases when doing replacements in a marked region
* allow to open a named pipe again when using --noread
* accurately detect a needed color change when a line contains
a start match but not a corresponding end match any more
- includes changes gom 2.9.2:
* correctly display the Modified state when undoing/redoing
(also when the file was saved somewhere midway)
* improve the undoing of an automatic linefeed at EOF
* show the cursor again when compiled with --withslang
* rename the option 'justifytrim' to 'trimblanks' because it
will now snip trailing whitespace also while you are typing
(and hard-wrapping is enabled)
* continue pushing words to the next line much longer (when
hard-wrapping)
* make <Tab> and <Shift+Tab> indent and unindent a marked region
* allow unindenting when not all lines are indented
* let a region marked with Shift persist when indenting/
unindenting or commenting/uncommenting it
==== ncurses ====
Version update (6.0 -> 6.1)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base
- Correct include path for wide chraracter header files for ABI 6.1
- Update to ncurses 6.1 (patch 20180127)
+ updated release notes
+ amend a warning message from tic which should have flagged misuse
of "XT" capability in "screen" terminal description.
> terminfo changes:
+ trim "XT" from screen entry, add comments to explain why it was
not suitable -TD
+ modify iterm to use xterm+sl-twm building block -TD
+ mark konsole-420pc, konsole-vt100, konsole-xf3x obsolete reflecting
konsole's removal in 2008 -TD
+ expanded the history section of konsole to explain its flawed
imitation of xterm's keyboard -TD
+ use xterm+x11mouse in screen.* entries because screen does not yet
support xterm's 1006 mode -TD
+ add nsterm-build400 for macOS 10.13 -TD
+ add ansi+idc1, use that in ansi+idc adding dch for consistency -TD
+ update vte to vte-2017 -TD
+ add ecma+strikeout to vte-2017 -TD
+ add iterm2-direct -TD
+ updated teraterm, added teraterm-256color -TD
+ add mlterm-direct -TD
+ add descriptions for ANSI building-blocks -TD
- Modify patch ncurses-5.9-ibm327x.dif
- Rename patch ncurses-6.0.dif to new name ncurses-6.1.dif
- Modify patch ncurses-6.1.dif
- Add ncurses patch 20180121 pre-release 6.1
> terminfo changes:
+ add xterm+noalt, xterm+titlestack, xterm+alt1049, xterm+alt+title
blocks from xterm #331 -TD
+ add xterm+direct, xterm+indirect, xterm-direct entries from xterm
[#331] -TD
+ modify xterm+256color and xterm+256setaf to use correct number of
color pairs, for ncurses 6.1 -TD
+ add rs1 capability to xterm-256color -TD
+ modify xterm-r5, xterm-r6 and xterm-xf86-v32 to use xterm+kbs to
match xterm #272, reflecting packager's changes -TD
+ remove "boolean" Se, Ss from st-0.7 -TD
+ add konsole-direct and st-direct -TD
+ remove unsupported "Tc" capability from st-0.7; use st-direct if
direct-colors are wanted -TD
+ add vte-direct -TD
+ add XT, hpa, indn, and vpa to screen, and invis, E3 to tmux (patch by
Pierre Carru)
+ use xterm+sm+1006 in xterm-new, vte-2014 -TD
+ use xterm+x11mouse in iterm, iterm2, mlterm3 because xterm's 1006
mode does not work with those programs. konsole is debatable -TD
+ add "termite" entry (report by Markus Pfeiffer) -TD
> merge branch begun April 2, 2017 which provides these features:
+ support read/write new binary-format for terminfo which stores
numeric capabilities as a signed 32-bit integer. The test programs
such as picsmap, ncurses were created or updated during 2017 to use
this feature.
+ the new format is written by the wide-character configuration of
tic when it finds a numeric capability larger than 32767.
+ other applications such as infocmp built with the wide-character
ncurses library work as expected.
+ applications built with the "narrow" (8-bit) configuration will
read the new format, but will limit those extended values to 32767.
+ in either wide/narrow configuration, the structure defined in
term.h still uses signed 16-bit values.
+ because it is incompatible with the legacy (mid-1980s) binary format,
a new magic value is provided for the "file" program.
+ the term.5 manual page is updated to describe this new format.
+ the limit on file-size for compiled terminfo is increased in the
wide-character configuration to 32768.
- Add ncurses patch 20180120
+ build-fix in picsmap.c for stdint.h existence.
+ add --disable-stripping option to configure scripts.
+ modify ncurses-examples to install test-scripts in the data directory.
+ work around tool-breakage in Debian 9 and later by invoking
gprconfig to specify the C compiler to be used by gnatmake,
and conditionally suppressing Library_Options line for static
libraries.
+ bump the compat level for test-packages to 7, i.e., Debian 5.
- Add tack patch 1.08-20170818
==== newt ====
- Build without py2 if needed
- Fix upstream url
==== nghttp2 ====
Version update (1.28.0 -> 1.29.0)
- Update to version 1.29.0:
* lib: Use NGHTTP2_REFUSED_STREAM for streams which are closed by
GOAWAY
* build: Remove SPDY
* build: Fix CMAKE_MODULE_PATH
* nghttpx: Revert "nghttpx: Use an existing h2 backend connection
as much as possible"
* nghttpx: Write API request body in temporary file
* nghttpx: Increase api-max-request-body
* nghttpx: Faster configuration loading with lots of backends
* nghttpx: Fix crash with --backend-http-proxy-uri option
==== open-iscsi ====
Subpackages: iscsiuio
- Removed the "rpm/" source directory from both the
open-iscsi-2.0.876-suse.tar.bz2 and open-iscsi-SUSE-latest.diff.bz2
files, since they are not needed for building and are not part
of the upstream sources. They are still available under the
git repository at github.com/hreinecke/open-iscsi.git. This means
that changes to the spec file or the changes file will no longer
require a change to the "*SUSE-latest*" file.
- Update to latest upstream vesion 2.0.876, with very few
SUSE-specific modifications, namely around things upstream
does not care about, like SUSE-specific systemd files. Also,
version number modified to add "-suse", as usual. See
the Changelog file for more details on changes in this
upstream version.
This replaces open-iscsi-2.0.875-suse.tar.bz2 with
open-iscsi-2.0.876-suse.tar.bz2, and resets
open-iscsi-SUSE-latest.diff.bz2 to contain only changes
since the 2.0.876-suse tag.
These changes added a new libopeniscsiusr.so library, as
well as include files under a new open-iscsi-dev package,
if you want to link against this library.
The SPEC file was also cleaned up using spec-cleaner.
- Fix vulnerabilities found in iscsiuio by qualsys (bsc#1072312),
updating: open-iscsi-SUSE-latest.diff.bz2
==== openCOLLADA ====
Version update (1.6.51 -> 1.6.62)
Subpackages: libGeneratedSaxParser0_3 libMathMLSolver0_3 libOpenCOLLADABaseUtils0_3 libOpenCOLLADAFramework0_3 libOpenCOLLADASaxFrameworkLoader0_3 libOpenCOLLADAStreamWriter0_3 libUTF0_3 libbuffer0_3 libftoa0_3
- Update to version 1.6.62, removed incorporated
openCOLLADA-signed-char.patch.
- Upstream changes:
* Add signed char keyword
* Expose COLLADASaxFWL::Loader string ID -> UniqueId map
* Export "Force to sleep" attribute.
* Consistent use of std::abs
- Remove conflicts with old libOpenCOLLADA0 to allow parallel
installation of different so versions.
==== openssh ====
Subpackages: openssh-helpers
- Add missing crypto hardware enablement patches for IBM mainframes
(FATE#323902)
- add missing part of systemd integration (unit type)
- Replace forgotten references to /var/adm/fillup-templates
with new %_fillupdir macro (boo#1069468)
- tighten configuration access rights
- Update to vanilla 7.6p1
Most important changes (more details below):
* complete removal of the ancient SSHv1 protocol
* sshd(8) cannot run without privilege separation
* removal of suport for arcfourm blowfish and CAST ciphers
and RIPE-MD160 HMAC
* refuse RSA keys shorter than 1024 bits
Distilled upstream log:
- OpenSSH 7.3
- --- Security
* sshd(8): Mitigate a potential denial-of-service attack
against the system's crypt(3) function via sshd(8). An
attacker could send very long passwords that would cause
excessive CPU use in crypt(3). sshd(8) now refuses to accept
password authentication requests of length greater than 1024
characters. Independently reported by Tomas Kuthan (Oracle),
Andres Rojas and Javier Nieto.
* sshd(8): Mitigate timing differences in password
authentication that could be used to discern valid from
invalid account names when long passwords were sent and
particular password hashing algorithms are in use on the
server. CVE-2016-6210, reported by EddieEzra.Harari at
verint.com
* ssh(1), sshd(8): Fix observable timing weakness in the CBC
padding oracle countermeasures. Reported by Jean Paul
Degabriele, Kenny Paterson, Torben Hansen and Martin
Albrecht. Note that CBC ciphers are disabled by default and
only included for legacy compatibility.
* ssh(1), sshd(8): Improve operation ordering of MAC
verification for Encrypt-then-MAC (EtM) mode transport MAC
algorithms to verify the MAC before decrypting any
ciphertext. This removes the possibility of timing
differences leaking facts about the plaintext, though no such
leakage has been observed. Reported by Jean Paul Degabriele,
Kenny Paterson, Torben Hansen and Martin Albrecht.
* sshd(8): (portable only) Ignore PAM environment vars when
UseLogin=yes. If PAM is configured to read user-specified
environment variables and UseLogin=yes in sshd_config, then a
hostile local user may attack /bin/login via LD_PRELOAD or
similar environment variables set via PAM. CVE-2015-8325,
found by Shayan Sadigh.
- --- New Features
* ssh(1): Add a ProxyJump option and corresponding -J
command-line flag to allow simplified indirection through a
one or more SSH bastions or "jump hosts".
* ssh(1): Add an IdentityAgent option to allow specifying
specific agent sockets instead of accepting one from the
environment.
* ssh(1): Allow ExitOnForwardFailure and ClearAllForwardings to
be optionally overridden when using ssh -W. bz#2577
* ssh(1), sshd(8): Implement support for the IUTF8 terminal
mode as per draft-sgtatham-secsh-iutf8-00.
* ssh(1), sshd(8): Add support for additional fixed
Diffie-Hellman 2K, 4K and 8K groups from
draft-ietf-curdle-ssh-kex-sha2-03.
* ssh-keygen(1), ssh(1), sshd(8): support SHA256 and SHA512 RSA
signatures in certificates;
* ssh(1): Add an Include directive for ssh_config(5) files.
* ssh(1): Permit UTF-8 characters in pre-authentication banners
sent from the server. bz#2058
- --- Bugfixes
* ssh(1), sshd(8): Reduce the syslog level of some relatively
common protocol events from LOG_CRIT. bz#2585
* sshd(8): Refuse AuthenticationMethods="" in configurations
and accept AuthenticationMethods=any for the default
behaviour of not requiring multiple authentication. bz#2398
* sshd(8): Remove obsolete and misleading "POSSIBLE BREAK-IN
ATTEMPT!" message when forward and reverse DNS don't match.
bz#2585
* ssh(1): Close ControlPersist background process stderr except
in debug mode or when logging to syslog. bz#1988
* misc: Make PROTOCOL description for
direct-streamlocal(a)openssh.com channel open messages match
deployed code. bz#2529
* ssh(1): Deduplicate LocalForward and RemoteForward entries to
fix failures when both ExitOnForwardFailure and hostname
canonicalisation are enabled. bz#2562
* sshd(8): Remove fallback from moduli to obsolete "primes"
file that was deprecated in 2001. bz#2559.
* sshd_config(5): Correct description of UseDNS: it affects ssh
hostname processing for authorized_keys, not known_hosts;
bz#2554
* ssh(1): Fix authentication using lone certificate keys in an
agent without corresponding private keys on the filesystem.
bz#2550
* sshd(8): Send ClientAliveInterval pings when a time-based
RekeyLimit is set; previously keepalive packets were not
being sent. bz#2252
- --- Portability
* ssh(1), sshd(8): Fix compilation by automatically disabling
ciphers not supported by OpenSSL. bz#2466
* misc: Fix compilation failures on some versions of AIX's
compiler related to the definition of the VA_COPY macro.
bz#2589
* sshd(8): Whitelist more architectures to enable the
seccomp-bpf sandbox. bz#2590
* ssh-agent(1), sftp-server(8): Disable process tracing on
Solaris using setpflags(__PROC_PROTECT, ...). bz#2584
* sshd(8): On Solaris, don't call Solaris setproject() with
UsePAM=yes it's PAM's responsibility. bz#2425
- OpenSSH 7.4
- --- Potentially-incompatible changes
* ssh(1): Remove 3des-cbc from the client's default proposal.
64-bit block ciphers are not safe in 2016 and we don't want
to wait until attacks like SWEET32 are extended to SSH. As
3des-cbc was the only mandatory cipher in the SSH RFCs, this
may cause problems connecting to older devices using the
default configuration, but it's highly likely that such
devices already need explicit configuration for key exchange
and hostkey algorithms already anyway.
* sshd(8): Remove support for pre-authentication compression.
Doing compression early in the protocol probably seemed
reasonable in the 1990s, but today it's clearly a bad idea in
terms of both cryptography (cf. multiple compression oracle
attacks in TLS) and attack surface. Pre-auth compression
support has been disabled by default for >10 years. Support
remains in the client.
* ssh-agent will refuse to load PKCS#11 modules outside a
whitelist of trusted paths by default. The path whitelist may
be specified at run-time.
* sshd(8): When a forced-command appears in both a certificate
and an authorized keys/principals command= restriction, sshd
will now refuse to accept the certificate unless they are
identical. The previous (documented) behaviour of having the
certificate forced-command override the other could be a bit
confusing and error-prone.
* sshd(8): Remove the UseLogin configuration directive and
support for having /bin/login manage login sessions.
- --- Security
* ssh-agent(1): Will now refuse to load PKCS#11 modules from
paths outside a trusted whitelist (run-time configurable).
Requests to load modules could be passed via agent forwarding
and an attacker could attempt to load a hostile PKCS#11
module across the forwarded agent channel: PKCS#11 modules
are shared libraries, so this would result in code execution
on the system running the ssh-agent if the attacker has
control of the forwarded agent-socket (on the host running
the sshd server) and the ability to write to the filesystem
of the host running ssh-agent (usually the host running the
ssh client). Reported by Jann Horn of Project Zero.
* sshd(8): When privilege separation is disabled, forwarded
Unix- domain sockets would be created by sshd(8) with the
privileges of 'root' instead of the authenticated user. This
release refuses Unix-domain socket forwarding when privilege
separation is disabled (Privilege separation has been enabled
by default for 14 years). Reported by Jann Horn of Project
Zero.
* sshd(8): Avoid theoretical leak of host private key material
to privilege-separated child processes via realloc() when
reading keys. No such leak was observed in practice for
normal-sized keys, nor does a leak to the child processes
directly expose key material to unprivileged users. Reported
by Jann Horn of Project Zero.
* sshd(8): The shared memory manager used by pre-authentication
compression support had a bounds checks that could be elided
by some optimising compilers. Additionally, this memory
manager was incorrectly accessible when pre-authentication
compression was disabled. This could potentially allow
attacks against the privileged monitor process from the
sandboxed privilege-separation process (a compromise of the
latter would be required first). This release removes
support for pre-authentication compression from sshd(8).
Reported by Guido Vranken using the Stack unstable
optimisation identification tool
(http://css.csail.mit.edu/stack/)
* sshd(8): Fix denial-of-service condition where an attacker
who sends multiple KEXINIT messages may consume up to 128MB
per connection. Reported by Shi Lei of Gear Team, Qihoo 360.
* sshd(8): Validate address ranges for AllowUser and DenyUsers
directives at configuration load time and refuse to accept
invalid ones. It was previously possible to specify invalid
CIDR address ranges (e.g. user(a)127.1.2.3/55) and these would
always match, possibly resulting in granting access where it
was not intended. Reported by Laurence Parry.
- --- New Features
* ssh(1): Add a proxy multiplexing mode to ssh(1) inspired by
the version in PuTTY by Simon Tatham. This allows a
multiplexing client to communicate with the master process
using a subset of the SSH packet and channels protocol over a
Unix-domain socket, with the main process acting as a proxy
that translates channel IDs, etc. This allows multiplexing
mode to run on systems that lack file- descriptor passing
(used by current multiplexing code) and potentially, in
conjunction with Unix-domain socket forwarding, with the
client and multiplexing master process on different machines.
Multiplexing proxy mode may be invoked using "ssh -O proxy
..."
* sshd(8): Add a sshd_config DisableForwarding option that
disables X11, agent, TCP, tunnel and Unix domain socket
forwarding, as well as anything else we might implement in
the future. Like the 'restrict' authorized_keys flag, this is
intended to be a simple and future-proof way of restricting
an account.
* sshd(8), ssh(1): Support the "curve25519-sha256" key exchange
method. This is identical to the currently-supported method
named "curve25519-sha256(a)libssh.org".
* sshd(8): Improve handling of SIGHUP by checking to see if
sshd is already daemonised at startup and skipping the call
to daemon(3) if it is. This ensures that a SIGHUP restart of
sshd(8) will retain the same process-ID as the initial
execution. sshd(8) will also now unlink the PidFile prior to
SIGHUP restart and re-create it after a successful restart,
rather than leaving a stale file in the case of a
configuration error. bz#2641
* sshd(8): Allow ClientAliveInterval and ClientAliveCountMax
directives to appear in sshd_config Match blocks.
* sshd(8): Add %-escapes to AuthorizedPrincipalsCommand to
match those supported by AuthorizedKeysCommand (key, key
type, fingerprint, etc.) and a few more to provide access to
the contents of the certificate being offered.
* Added regression tests for string matching, address matching
and string sanitisation functions.
* Improved the key exchange fuzzer harness.
- --- Bugfixes
* ssh(1): Allow IdentityFile to successfully load and use
certificates that have no corresponding bare public key.
bz#2617 certificate id_rsa-cert.pub (and no id_rsa.pub).
* ssh(1): Fix public key authentication when multiple
authentication is in use and publickey is not just the first
method attempted. bz#2642
* regress: Allow the PuTTY interop tests to run unattended.
bz#2639
* ssh-agent(1), ssh(1): improve reporting when attempting to
load keys from PKCS#11 tokens with fewer useless log messages
and more detail in debug messages. bz#2610
* ssh(1): When tearing down ControlMaster connections, don't
pollute stderr when LogLevel=quiet.
* sftp(1): On ^Z wait for underlying ssh(1) to suspend before
suspending sftp(1) to ensure that ssh(1) restores the
terminal mode correctly if suspended during a password
prompt.
* ssh(1): Avoid busy-wait when ssh(1) is suspended during a
password prompt.
* ssh(1), sshd(8): Correctly report errors during sending of
ext- info messages.
* sshd(8): fix NULL-deref crash if sshd(8) received an out-of-
sequence NEWKEYS message.
* sshd(8): Correct list of supported signature algorithms sent
in the server-sig-algs extension. bz#2547
* sshd(8): Fix sending ext_info message if privsep is disabled.
* sshd(8): more strictly enforce the expected ordering of
privilege separation monitor calls used for authentication
and allow them only when their respective authentication
methods are enabled in the configuration
* sshd(8): Fix uninitialised optlen in getsockopt() call;
harmless on Unix/BSD but potentially crashy on Cygwin.
* Fix false positive reports caused by explicit_bzero(3) not
being recognised as a memory initialiser when compiled with
- fsanitize-memory.
* sshd_config(5): Use 2001:db8::/32, the official IPv6 subnet
for configuration examples.
- --- Portability
* On environments configured with Turkish locales, fall back to
the C/POSIX locale to avoid errors in configuration parsing
caused by that locale's unique handling of the letters 'i'
and 'I'. bz#2643
* sftp-server(8), ssh-agent(1): Deny ptrace on OS X using
ptrace(PT_DENY_ATTACH, ..)
* ssh(1), sshd(8): Unbreak AES-CTR ciphers on old (~0.9.8)
OpenSSL.
* Fix compilation for libcrypto compiled without RIPEMD160
support.
* contrib: Add a gnome-ssh-askpass3 with GTK+3 support. bz#2640
* sshd(8): Improve PRNG reseeding across privilege separation
and force libcrypto to obtain a high-quality seed before
chroot or sandboxing.
* All: Explicitly test for broken strnvis. NetBSD added an
strnvis and unfortunately made it incompatible with the
existing one in OpenBSD and Linux's libbsd (the former having
existed for over ten years). Try to detect this mess, and
assume the only safe option if we're cross compiling.
- OpenSSH 7.5
- --- Potentially-incompatible changes
* This release deprecates the sshd_config
UsePrivilegeSeparation option, thereby making privilege
separation mandatory. Privilege separation has been on by
default for almost 15 years and sandboxing has been on by
default for almost the last five.
* The format of several log messages emitted by the packet code
has changed to include additional information about the user
and their authentication state. Software that monitors
ssh/sshd logs may need to account for these changes. For
example:
Connection closed by user x 1.1.1.1 port 1234 [preauth]
Connection closed by authenticating user x 10.1.1.1 port 1234
[preauth] Connection closed by invalid user x 1.1.1.1 port
1234 [preauth]
Affected messages include connection closure, timeout, remote
disconnection, negotiation failure and some other fatal
messages generated by the packet code.
* [Portable OpenSSH only] This version removes support for
building against OpenSSL versions prior to 1.0.1. OpenSSL
stopped supporting versions prior to 1.0.1 over 12 months ago
(i.e. they no longer receive fixes for security bugs).
- --- Security
* ssh(1), sshd(8): Fix weakness in CBC padding oracle
countermeasures that allowed a variant of the attack fixed in
OpenSSH 7.3 to proceed. Note that the OpenSSH client
disables CBC ciphers by default, sshd offers them as
lowest-preference options and will remove them by default
entriely in the next release. Reported by Jean Paul
Degabriele, Kenny Paterson, Martin Albrecht and Torben Hansen
of Royal Holloway, University of London.
* sftp-client(1): [portable OpenSSH only] On Cygwin, a client
making a recursive file transfer could be maniuplated by a
hostile server to perform a path-traversal attack. creating
or modifying files outside of the intended target directory.
Reported by Jann Horn of Google Project Zero.
- --- New Features
* ssh(1), sshd(8): Support "=-" syntax to easily remove methods
from algorithm lists, e.g. Ciphers=-*cbc. bz#2671
- --- Bugfixes
* sshd(1): Fix NULL dereference crash when key exchange start
messages are sent out of sequence.
* ssh(1), sshd(8): Allow form-feed characters to appear in
configuration files.
* sshd(8): Fix regression in OpenSSH 7.4 support for the
server-sig-algs extension, where SHA2 RSA signature methods
were not being correctly advertised. bz#2680
* ssh(1), ssh-keygen(1): Fix a number of case-sensitivity bugs
in known_hosts processing. bz#2591 bz#2685
* ssh(1): Allow ssh to use certificates accompanied by a
private key file but no corresponding plain *.pub public key.
bz#2617
* ssh(1): When updating hostkeys using the UpdateHostKeys
option, accept RSA keys if HostkeyAlgorithms contains any RSA
keytype. Previously, ssh could ignore RSA keys when only the
ssh-rsa-sha2-* methods were enabled in HostkeyAlgorithms and
not the old ssh-rsa method. bz#2650
* ssh(1): Detect and report excessively long configuration file
lines. bz#2651
* Merge a number of fixes found by Coverity and reported via
Redhat and FreeBSD. Includes fixes for some memory and file
descriptor leaks in error paths. bz#2687
* ssh-keyscan(1): Correctly hash hosts with a port number.
bz#2692
* ssh(1), sshd(8): When logging long messages to stderr, don't
truncate "\r\n" if the length of the message exceeds the
buffer. bz#2688
* ssh(1): Fully quote [host]:port in generated ProxyJump/-J
command- line; avoid confusion over IPv6 addresses and shells
that treat square bracket characters specially.
* ssh-keygen(1): Fix corruption of known_hosts when running
"ssh-keygen -H" on a known_hosts containing already-hashed
entries.
* Fix various fallout and sharp edges caused by removing SSH
protocol 1 support from the server, including the server
banner string being incorrectly terminated with only \n
(instead of \r\n), confusing error messages from ssh-keyscan
bz#2583 and a segfault in sshd if protocol v.1 was enabled
for the client and sshd_config contained references to legacy
keys bz#2686.
* ssh(1), sshd(8): Free fd_set on connection timeout. bz#2683
* sshd(8): Fix Unix domain socket forwarding for root
(regression in OpenSSH 7.4).
* sftp(1): Fix division by zero crash in "df" output when
server returns zero total filesystem blocks/inodes.
* ssh(1), ssh-add(1), ssh-keygen(1), sshd(8): Translate OpenSSL
errors encountered during key loading to more meaningful
error codes. bz#2522 bz#2523
* ssh-keygen(1): Sanitise escape sequences in key comments sent
to printf but preserve valid UTF-8 when the locale supports
it; bz#2520
* ssh(1), sshd(8): Return reason for port forwarding failures
where feasible rather than always "administratively
prohibited". bz#2674
* sshd(8): Fix deadlock when AuthorizedKeysCommand or
AuthorizedPrincipalsCommand produces a lot of output and a
key is matched early. bz#2655
* Regression tests: several reliability fixes. bz#2654 bz#2658
bz#2659
* ssh(1): Fix typo in ~C error message for bad port forward
cancellation. bz#2672
* ssh(1): Show a useful error message when included config
files can't be opened; bz#2653
* sshd(8): Make sshd set GSSAPIStrictAcceptorCheck=yes as the
manual page (previously incorrectly) advertised. bz#2637
* sshd_config(5): Repair accidentally-deleted mention of %k
token in AuthorizedKeysCommand; bz#2656
* sshd(8): Remove vestiges of previously removed LOGIN_PROGRAM;
bz#2665
* ssh-agent(1): Relax PKCS#11 whitelist to include libexec and
common 32-bit compatibility library directories.
* sftp-client(1): Fix non-exploitable integer overflow in
SSH2_FXP_NAME response handling.
* ssh-agent(1): Fix regression in 7.4 of deleting
PKCS#11-hosted keys. It was not possible to delete them
except by specifying their full physical path. bz#2682
- --- Portability
* sshd(8): Avoid sandbox errors for Linux S390 systems using an
ICA crypto coprocessor.
* sshd(8): Fix non-exploitable weakness in seccomp-bpf sandbox
arg inspection.
* ssh(1): Fix X11 forwarding on OSX where X11 was being started
by launchd. bz#2341
* ssh-keygen(1), ssh(1), sftp(1): Fix output truncation for
various that contain non-printable characters where the
codeset in use is ASCII.
* build: Fix builds that attempt to link a kerberised libldns.
bz#2603
* build: Fix compilation problems caused by unconditionally
defining _XOPEN_SOURCE in wide character detection.
* sshd(8): Fix sandbox violations for clock_gettime VSDO
syscall fallback on some Linux/X32 kernels. bz#2142
- OpenSSH 7.6
- --- Potentially-incompatible changes
This release includes a number of changes that may affect
existing configurations:
* ssh(1): delete SSH protocol version 1 support, associated
configuration options and documentation.
* ssh(1)/sshd(8): remove support for the hmac-ripemd160 MAC.
* ssh(1)/sshd(8): remove support for the arcfour, blowfish and
CAST ciphers.
* Refuse RSA keys <1024 bits in length and improve reporting
for keys that do not meet this requirement.
* ssh(1): do not offer CBC ciphers by default.
- --- Security
* sftp-server(8): in read-only mode, sftp-server was
incorrectly permitting creation of zero-length files.
Reported by Michal Zalewski.
- --- New Features
* ssh(1): add RemoteCommand option to specify a command in the
ssh config file instead of giving it on the client's command
line. This allows the configuration file to specify the
command that will be executed on the remote host.
* sshd(8): add ExposeAuthInfo option that enables writing
details of the authentication methods used (including public
keys where applicable) to a file that is exposed via a
$SSH_USER_AUTH environment variable in the subsequent
session.
* ssh(1): add support for reverse dynamic forwarding. In this
mode, ssh will act as a SOCKS4/5 proxy and forward
connections to destinations requested by the remote SOCKS
client. This mode is requested using extended syntax for the
- R and RemoteForward options and, because it is implemented
solely at the client, does not require the server be updated
to be supported.
* sshd(8): allow LogLevel directive in sshd_config Match
blocks; bz#2717
* ssh-keygen(1): allow inclusion of arbitrary string or flag
certificate extensions and critical options.
* ssh-keygen(1): allow ssh-keygen to use a key held in
ssh-agent as a CA when signing certificates. bz#2377
* ssh(1)/sshd(8): allow IPQoS=none in ssh/sshd to not set an
explicit ToS/DSCP value and just use the operating system
default.
* ssh-add(1): added -q option to make ssh-add quiet on success.
* ssh(1): expand the StrictHostKeyChecking option with two new
settings. The first "accept-new" will automatically accept
hitherto-unseen keys but will refuse connections for changed
or invalid hostkeys. This is a safer subset of the current
behaviour of StrictHostKeyChecking=no. The second setting
"off", is a synonym for the current behaviour of
StrictHostKeyChecking=no: accept new host keys, and continue
connection for hosts with incorrect hostkeys. A future
release will change the meaning of StrictHostKeyChecking=no
to the behaviour of "accept-new". bz#2400
* ssh(1): add SyslogFacility option to ssh(1) matching the
equivalent option in sshd(8). bz#2705
- --- Bugfixes
* ssh(1): use HostKeyAlias if specified instead of hostname for
matching host certificate principal names; bz#2728
* sftp(1): implement sorting for globbed ls; bz#2649
* ssh(1): add a user@host prefix to client's "Permission
denied" messages, useful in particular when using "stacked"
connections (e.g. ssh -J) where it's not clear which host is
denying. bz#2720
* ssh(1): accept unknown EXT_INFO extension values that contain
\0 characters. These are legal, but would previously cause
fatal connection errors if received.
* ssh(1)/sshd(8): repair compression statistics printed at
connection exit
* sftp(1): print '?' instead of incorrect link count (that the
protocol doesn't provide) for remote listings. bz#2710
* ssh(1): return failure rather than fatal() for more cases
during session multiplexing negotiations. Causes the session
to fall back to a non-mux connection if they occur. bz#2707
* ssh(1): mention that the server may send debug messages to
explain public key authentication problems under some
circumstances; bz#2709
* Translate OpenSSL error codes to better report incorrect
passphrase errors when loading private keys; bz#2699
* sshd(8): adjust compatibility patterns for WinSCP to
correctly identify versions that implement only the legacy DH
group exchange scheme. bz#2748
* ssh(1): print the "Killed by signal 1" message only at
LogLevel verbose so that it is not shown at the default
level; prevents it from appearing during ssh -J and
equivalent ProxyCommand configs. bz#1906, bz#2744
* ssh-keygen(1): when generating all hostkeys (ssh-keygen -A),
clobber existing keys if they exist but are zero length.
zero-length keys could previously be made if ssh-keygen
failed or was interrupted part way through generating them.
bz#2561
* ssh(1): fix pledge(2) violation in the escape sequence "~&"
used to place the current session in the background.
* ssh-keyscan(1): avoid double-close() on file descriptors;
bz#2734
* sshd(8): avoid reliance on shared use of pointers shared
between monitor and child sshd processes. bz#2704
* sshd_config(8): document available AuthenticationMethods;
bz#2453
* ssh(1): avoid truncation in some login prompts; bz#2768
* sshd(8): Fix various compilations failures, inc bz#2767
* ssh(1): make "--" before the hostname terminate argument
processing after the hostname too.
* ssh-keygen(1): switch from aes256-cbc to aes256-ctr for
encrypting new-style private keys. Fixes problems related to
private key handling for no-OpenSSL builds. bz#2754
* ssh(1): warn and do not attempt to use keys when the public
and private halves do not match. bz#2737
* sftp(1): don't print verbose error message when ssh
disconnects from under sftp. bz#2750
* sshd(8): fix keepalive scheduling problem: activity on a
forwarded port from preventing the keepalive from being sent;
bz#2756
* sshd(8): when started without root privileges, don't require
the privilege separation user or path to exist. Makes running
the regression tests easier without touching the filesystem.
* Make integrity.sh regression tests more robust against
timeouts. bz#2658
* ssh(1)/sshd(8): correctness fix for channels implementation:
accept channel IDs greater than 0x7FFFFFFF.
- --- Portability
* sshd(9): drop two more privileges in the Solaris sandbox:
PRIV_DAX_ACCESS and PRIV_SYS_IB_INFO; bz#2723
* sshd(8): expose list of completed authentication methods to
PAM via the SSH_AUTH_INFO_0 PAM environment variable. bz#2408
* ssh(1)/sshd(8): fix several problems in the tun/tap
forwarding code, mostly to do with host/network byte order
confusion. bz#2735
* Add --with-cflags-after and --with-ldflags-after configure
flags to allow setting CFLAGS/LDFLAGS after configure has
completed. These are useful for setting sanitiser/fuzzing
options that may interfere with configure's operation.
* sshd(8): avoid Linux seccomp violations on ppc64le over the
socketcall syscall.
* Fix use of ldns when using ldns-config; bz#2697
* configure: set cache variables when cross-compiling. The
cross- compiling fallback message was saying it assumed the
test passed, but it wasn't actually set the cache variables
and this would cause later tests to fail.
* Add clang libFuzzer harnesses for public key parsing and
signature verification.
- packaging:
* moving patches into a separate archive
* first round of rebased patches:
[-X11_trusted_forwarding]
[-allow_root_password_login]
[-blocksigalrm]
[-cavstest-ctr]
[-cavstest-kdf]
[-disable_short_DH_parameters]
[-eal3]
[-enable_PAM_by_default]
[-fips]
[-fips_checks]
[-gssapi_key_exchange]
[-hostname_changes_when_forwarding_X]
[-lastlog]
[-missing_headers]
[-pam_check_locks]
[-pts_names_formatting]
[-remove_xauth_cookies_on_exit]
[-seccomp_geteuid]
[-seccomp_getuid]
[-seccomp_stat]
[-seed-prng]
[-send_locale]
[-systemd-notify]
* not rebased (obsoleted) patches (so far):
[-additional_seccomp_archs]
[-allow_DSS_by_default]
[-default_protocol]
[-dont_use_pthreads_in_PAM]
[-eal3_obsolete]
[-gssapimitm]
[-saveargv-fix]
* obviously removing all standalone patch files:
[openssh-7.2p2-allow_root_password_login.patch]
[openssh-7.2p2-allow_DSS_by_default.patch]
[openssh-7.2p2-X11_trusted_forwarding.patch]
[openssh-7.2p2-lastlog.patch]
[openssh-7.2p2-enable_PAM_by_default.patch]
[openssh-7.2p2-dont_use_pthreads_in_PAM.patch]
[openssh-7.2p2-eal3.patch]
[openssh-7.2p2-blocksigalrm.patch]
[openssh-7.2p2-send_locale.patch]
[openssh-7.2p2-hostname_changes_when_forwarding_X.patch]
[openssh-7.2p2-remove_xauth_cookies_on_exit.patch]
[openssh-7.2p2-pts_names_formatting.patch]
[openssh-7.2p2-pam_check_locks.patch]
[openssh-7.2p2-disable_short_DH_parameters.patch]
[openssh-7.2p2-seccomp_getuid.patch]
[openssh-7.2p2-seccomp_geteuid.patch]
[openssh-7.2p2-seccomp_stat.patch]
[openssh-7.2p2-additional_seccomp_archs.patch]
[openssh-7.2p2-fips.patch]
[openssh-7.2p2-cavstest-ctr.patch]
[openssh-7.2p2-cavstest-kdf.patch]
[openssh-7.2p2-seed-prng.patch]
[openssh-7.2p2-gssapi_key_exchange.patch]
[openssh-7.2p2-audit.patch]
[openssh-7.2p2-audit_fixes.patch]
[openssh-7.2p2-audit_seed_prng.patch]
[openssh-7.2p2-login_options.patch]
[openssh-7.2p2-disable_openssl_abi_check.patch]
[openssh-7.2p2-no_fork-no_pid_file.patch]
[openssh-7.2p2-host_ident.patch]
[openssh-7.2p2-sftp_homechroot.patch]
[openssh-7.2p2-sftp_force_permissions.patch]
[openssh-7.2p2-X_forward_with_disabled_ipv6.patch]
[openssh-7.2p2-ldap.patch]
[openssh-7.2p2-IPv6_X_forwarding.patch]
[openssh-7.2p2-ignore_PAM_with_UseLogin.patch]
[openssh-7.2p2-prevent_timing_user_enumeration.patch]
[openssh-7.2p2-limit_password_length.patch]
[openssh-7.2p2-keep_slogin.patch]
[openssh-7.2p2-kex_resource_depletion.patch]
[openssh-7.2p2-verify_CIDR_address_ranges.patch]
[openssh-7.2p2-restrict_pkcs11-modules.patch]
[openssh-7.2p2-prevent_private_key_leakage.patch]
[openssh-7.2p2-secure_unix_sockets_forwarding.patch]
[openssh-7.2p2-ssh_case_insensitive_host_matching.patch]
[openssh-7.2p2-disable_preauth_compression.patch]
[openssh-7.2p2-s390_hw_crypto_syscalls.patch]
[openssh-7.2p2-s390_OpenSSL-ibmpkcs11_syscalls.patch]
==== openssh-askpass-gnome ====
- .spec file cleanup
==== openssl-1_1_0 ====
Subpackages: libopenssl1_1_0 libopenssl1_1_0-32bit
- Don't disable afalgeng on aarch64
==== p7zip ====
- remove CPP/7zip/Compress/Rar* files from the tar archive as they
have incompatible license [bnc#1077978]
* also remove DOC/unRarLicense.txt
* add p7zip_16.02_norar.patch to adjust makefile according to it
* remove no longer used Codecs
==== parted ====
Subpackages: libparted0 parted-lang
- libparted: dasd: Use BLKRRPART only when needed (bsc#1065197,
bsc#1067435)
- add: libparted-use-BLKRRPART-only-when-needed.patch
==== perl ====
Subpackages: perl-base perl-doc
- posix-sigaction.patch: make sure Perl_sighandler is always installed
with SA_SIGINFO (bsc#1064697)
==== perl-Socket6 ====
Version update (0.25 -> 0.28)
- updated to 0.28
* aclocal.m4 (IPv6_CHECK_INET_NTOP): inet_ntop(3) may returns
IPv4-compatible IPv6 address. [cpan #113950]
- includes fix from 0.27
* t/use.t: We still support an environment where AF_INET6 is
not defined
- includes changes from 0.26
* Makefile.PL: Make Socket6 buildable on Android. [cpan #98181]
* system inet_ntop broken in darwin. [cpan #113005]
* gailookup.pl.in: Add -r option to do reverse lookup
* gailookup.pl.in: Add awareness of AI_ALL and AI_V4MAPPED
* gailookup.pl.in: Add -P option to ease to specify port number
- cleanup spec file with spec-cleaner
- split tests into %check section
==== perl-Try-Tiny ====
Version update (0.28 -> 0.30)
- updated to 0.30
see /usr/share/doc/packages/perl-Try-Tiny/Changes
0.30 2017-12-21 07:23:03Z
- expand "when" test skippage to more perl versions
- updated to 0.29
see /usr/share/doc/packages/perl-Try-Tiny/Changes
0.29 2017-12-19 03:51:26Z
- skip tests of "when" and "given/when" usage for perl 5.27.7 *only* (see
RT#123908)
==== permissions ====
Version update (20171129 -> 20180125)
- Update to version 20180125:
* the eror should be reported for permfiles[i], not argv[i], as these are not the same files. (bsc#1047247)
* make btmp root:utmp (bsc#1050467)
- Update to version 20180115:
* - polkit-default-privs: usbauth (bsc#1066877)
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Provide the KDE4 branding and plasma5-desktop-branding-openSUSE
in version 43 and obsolete (or conflict with) < 43 to prevent
upgrade problems from Leap 42 to 15, which has a lower version
(boo#1077854)
==== plasma5-pk-updates ====
Subpackages: plasma5-pk-updates-lang
- Update translations (boo#1077851)
==== plymouth ====
Version update (0.9.3+git20171130.fa66a5b -> 0.9.3+git20171220.6e9e95d)
Subpackages: libply-boot-client4 libply-splash-core4 libply-splash-graphics4 libply4 plymouth-dracut plymouth-plugin-label plymouth-plugin-label-ft plymouth-plugin-script plymouth-plugin-two-step plymouth-scripts
- Update to version 0.9.3+git20171220.6e9e95d:
* device-manager: drop superfluous
create_pixel_displays_for_renderer call
* x11: don't call gdk_display_get_name before gtk_init
==== poppler-qt5 ====
- make introspection scanner (g-ir-scanner) work with older build envs
==== postgresql ====
Subpackages: postgresql-server
- postgresql-script: /etc/sysconfig/language is deprecated, use the
locale that was inherited from systemd instead for initializing
a new database instance (boo#1074988).
==== procps ====
Subpackages: libprocps6
- Remove patch procps-ng-3.3.12-sysctl-iobuf-write.patch (bsc#1077746)
- Add patches
0001-Preload-sysctl-lines-even-if-longer-than-stdio-buffe.patch
0002-Add-flexible-buffered-I-O-based-on-fopencookie-3.patch
0003-Use-new-standard-I-O-for-reading-writing-sysctl-valu.patch
from my project https://gitlab.com/bitstreamout/procps/tree/procio
which implements a flexible buffer for reading and writing values
below /proc/sys (bsc#1039941)
==== protobuf ====
- Conditionalize python2 and python3 in order to be able to build
without python2 present in distribution
* Use singlespec macros to simplify the logic
- Run fdupes on python modules to avoid duplicates
- Remove shebangs from import-only code
==== publicsuffix ====
Version update (20171228 -> 20180125)
- Update to version 20180125:
* .br updated - 12 new 2nd level city domains
* Update .ke suffixes to include second-level domains
* Remove myfusion.cloud domain
==== python-base ====
Subpackages: libpython2_7-1_0 libpython2_7-1_0-32bit python-xml
- Add python-skip_random_failing_tests.patch bypass boo#1078485
and exclude many tests for PowerPC
- Add patch python-fix-shebang.patch to fix bsc#1078326
==== python-cairocffi ====
- Add xcffib support
- Spec file cleaned
==== python-pycurl ====
- Disable tests on arm platforms as they are very flaky there,
on multiple runs always different failures
- Disable strict aliasing as reported by the rpm checks
- Since version 7.58.0, curl may be compiled with libssh instead of
libssh2 which differ in supported functionality (bsc#1078329)
* add pycurl-libssh.patch
- update license
==== python-pyudev ====
- Require libudev (bsc#1077282)
Otherwise, an pyudev import fails with:
ImportError: No library named udev
==== qpdf ====
Version update (7.0.0 -> 7.1.0)
- Update to version 7.1.0
* Allow raw encryption key to be specified in libary and command
line with the QPDF::setPasswordIsHexKey method and
- -password-is-hex-key option. Allow encryption key to be displayed
with --show-encryption-key option. See
https://blog.didierstevens.com/2017/12/28/cracking-encrypted-pdfs-part-3/
for a discussion of using this for cracking encrypted PDFs. I hope
that a future release of qpdf will include some additional
recovery options that may also make use of this capability.
* Fix lexical error: the PDF specification allows floating point
numbers to end with "."
* Fix link order in the build to avoid conflicts when building
from source while an older version of qpdf is installed
* Add support for TIFF predictor for LZW and Flate streams. Now
* Clarify documentation around options that control parsing but
not output creation. Two options: --suppress-recovery and
- -ignore-xref-streams, were documented in the "Advanced
Transformation Options" section of the manual and --help output
even though they are not related to output. These are now
described in a separate section called "Advanced Parsing Options."
* Implement remaining PNG filters for decode. Prior versions could
decode only the "up" filter. Now all PNG filters (sub, up,
average, Paeth, optimal) are supported for decoding.
The implementation of the remaining PNG filters changed the
interface to the private Pl_PNGFilter class, but this class's
header file is not in the installation, and there is no public
interface to the class. Within the library, the class is never
allocated on the stack; it is only ever dynamically allocated. As
such, this does not actually break binary compatibility of the
library. all predictor functions are supported
- cleanup with spec-cleaner
==== rollback-helper ====
- check if current btrfs snapshot is the production snapshot before
re-registering (bsc#1068947)
- unified branching versions (Jul 27 2017 vs. May 22 2017)
==== rpm ====
Version update (4.13.0.1 -> 4.14.0)
Subpackages: rpm-32bit
- fix debugedit relocation offset computation (boo#1076819)
new patch: debugedit-bnc1076819.diff
- fix signature header writing if the archive size is bigger
than 2 GByte
new patch: bigarchive.diff
- remove shebang from pythondistdeps.py
new patch: pythondistdeps.diff
- Update RPM groups
- patch debugedit so that it also handles the .debug.macro section
new patch: debugedit-macro.diff
- switch build id generation to "alldebug" mode
- Replace PreReq fillup with Requires(post), so that we can
deinstall it later if we don't need it anymore
- update to rpm-4.14.0
* new with/without/unless rich dependencies
* multifile optimized debuginfo packages
* much improved macro engine
- dropped patches:
* 0001-set-SOURCE_DATE_EPOCH-from-changelog.patch
* 0002-Extend-changelog-to-support-full-timestamps-903.patch
* 0003-Allow-SOURCE_DATE_EPOCH-to-override-file-timestamps.patch
* 0004-Allow-SOURCE_DATE_EPOCH-to-override-RPMTAG_BUILDTIME.patch
* buildidprov.diff
* changes-doc.diff
* convertdb1static.diff
* debugedit-canon-fix.diff
* debugedit-comp-dir.diff
* debugsource-package.diff
* find-lang-python.patch
* nobfd.diff
* normalize_blocksize.diff
* perlprov-package.diff
* perlprov.diff
* python3-abi-kind.diff
* rpmrctests.diff
- new patches (backports from master):
* editdwarf.diff
* rofs.diff
* transfiletriggerpostun.diff
* hardlink.diff
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
- Introduce new %_fillupdir macro for fillup-templates location
- Set %_fillupdir macro to /usr/share/fillup-templates
- Change fillup macros to support new %_fillupdir in addition
to old /var/adm/fillup-templates location
- Make %post compatibility symlink creation more resiliant
- Correct %post compatibility symlink for /usr/lib/sysimage/rpm
- Remove usr-lib-rpmdb.patch
- Add usr-lib-sysimage-rpm.patch to locate rpmdb to
/usr/lib/sysimage/rpm after discussions with upstream
- Migrates existing rpmdb in /var/lib/rpm to /usr/lib/sysimage/rpm
- Add usr-lib-rpmdb.patch to locate rpmdb to /usr/lib/rpmdb
- Migrates existing rpmdb in /var/lib/rpm to /usr/lib/rpmdb
- Generate ksym() dependencies for SLE if %is_opensuse is unset
(bsc#981083).
- Drop %supplements_kernel_module, as it is broken, undocumented
and is not used by anybody (bsc#981083).
dropped: modalias-kernel_module.diff
refreshed: modalias-encode.diff
- Split fileattrs for kernel and kmps, do not pass around %name and
simplify the helpers
refreshed: fileattrs.diff, modalias.diff
dropped: symset-table, helperenv.diff, modalias-no-kgraft.diff
- Change Supplements in rpm-suse_macros to not depend on bundle-lang-other
anymore, it does not exist in Leap and will likely be dropped from TW.
- Amend finddebuginfo.diff to adjust readelf -Wn pattern matching
to account for fixed readelf no longer emitting spurious newlines
with -W.
- Drop net-tools Requires from rpm-build: net-tools only ships
uninteresting binaries. Most people would probably rather have
net-tools-depreacted expected (e.g. ifconfig), but as we did not
pull this in neither, we can just ignore this.
- Define %_sharedstatedir as /var/lib, which is the path for
shared state content in Red Hat/Fedora; Mageia; and Debian/Ubuntu.
The old path (/usr/com) isn't recognized by FHS, whereas /var/lib
is recognized as suitable for this purpose.
- Change the RPM binary payload from old-lzma to xz,
in line with payload settings for RH/Fedora and Mageia
- Backport upstream commit to read changelog entries with full
timestamps
New patch: changes-doc.diff
- Added a %rpm_vercmp macro which accepts two versions as parameters and
returns -1, 0, 1 if the first version is less than, equal or
greater than the second version respectively.
- Added a %pkg_version macro that accepts a package or capability name
as argument and returns the version number of the installed package. If
no package provides the argument, it returns the string ~~~
- Added a %pkg_vcmp macro that accepts 3 parameters. The first parameter
is a package name or provided capability name, the second argument is an
operator ( < <= = >= > != ) and the third parameter is a version string
to compare the installed version of the first argument with.
- Added a %pkg_version_cmp macro which accepts a package or capability name
as first argument and a version number as second argument and returns
- 1, 0, 1 or ~~~ . The number values have the same meaning as in %rpm_vercmp
and the ~~~ string is returned if the package or capability can't be found.
- Add patch to handle newer package statement variations for Perl
5.12+
* perlprov-package.diff
- Add patch to handle special case of .qm file paths correctly (boo#1027925):
* find-lang-qt-qm.patch
- Convert rpmconfigcheck init script to systemd unit
- Tweak debugsubpkg.diff to no longer use obsoleted RPM interfaces
and add support for debuginfo compressed by DWZ.
- Add %_find_debuginfo_dwz_opts and DWZ limits to macrosin.diff.
- Add dwz requires to rpm-build. [fate#322957]
- Tweak debugedit-comp-dir patch so that debugedit does not crash
with a NULL comp_dir [bnc#1027228]
- Fix debugedit-canon-fix.diff to handle directory table size
shrinking by 1 byte correctly.
- Add upstream patches 0001-set-SOURCE_DATE_EPOCH-from-changelog.patch
0002-Extend-changelog-to-support-full-timestamps-903.patch
0003-Allow-SOURCE_DATE_EPOCH-to-override-file-timestamps.patch
0004-Allow-SOURCE_DATE_EPOCH-to-override-RPMTAG_BUILDTIME.patch
in order to allow for building bit-identical rpms as described in
https://github.com/rpm-software-management/rpm/pull/144
- update to rpm-4.13.0.1
* fix several out of bounds reads in the OpenPGP parser
* fix handling of OpenPGP reserved tag (should be rejected)
* fix various crashes from malformed packages with invalid tags
* fix transfiletriggerpostun nondeterministic behavior
- update to rpm-4.13.0
* support of rich (boolean) dependencies
* support of file triggers
- new patches:
* nobfd.diff
* emptymanifest.diff
- dropped patches:
* rpm-4.12.0.1-lua-5.3.patch
* fixsizeforbigendian.diff
* repackage-nomd5.diff
- Correct summary/description of -lang subpackages
- add is_opensuse and leap_version macros to suse_macros
[bnc#940315]
- Add rpm-findlang-inject-metainfo.patch: allow packagers to inject
a metainfo.xml file for the -lang package, which can then serve
AppStream based Software Centers to show -lang packages as
extensions to applications (boo#980583).
- work around bug in rpm's macro expandsion [bnc#969381]
- tweak rpm-4.12.0.1-lua-5.3.patch so that it does not need
the -p1 option
- add option to make postinstall scriptlet errors fatal
[bnc#967728]
new patch: enable-postin-scripts-error.diff
- rework nfs-blocksize-free.patch to always normalize big
blocksizes to 4096 bytes
[bnc#894610] [bnc#829717] [bnc#965322]
removed patch: nfs-blocksize-free.patch
new patch: normalize_blocksize.diff
- drop service_del_preun, service_del_postun macros, they are
provided by the systemd package
- change restart_on_update and stop_on_removal macros to use
service_del_preun and service_del_postun
[bnc#968405] [bnc#969381]
- add beecrypt-4.1.2-build.diff:
* make sure debug info is not stripped from internal beecrypt
- %install_info_delete: only delete if package is removed
- Add nfs-blocksize-free.patch:
* Blocksize of NFS shouldn't be used directly
- Fixes bsc#894610 and bsc#829717
- Add armv6hl to %arml macro
- add patch: rpm-4.12.0.1-lua-5.3.patch
* replace luaL_optint/luaL_checkint w/ (int)luaL_optinteger
(int)luaL_checkinteger for compatibility w/ lua 5.3
- add a space when printing information about updating a sysconfig file
- apply db.diff from the subdir to avoid patching through a symlink
(to please new patch)
- comment gcc-PIE for now
- add gcc-PIE to requires of rpm-build to make PIE building
default. bsc#912298
- fix bashisms in brp-compress, symset-table and check-rpaths
scripts
- fix shebang in find-supplements.ksyms script that contains
bash-specific constructions
- updated patches:
* modalias.diff
* modalias-kernel_module.diff
* brpcompress.diff
- add patches:
* rpm-4.12.0.1-fix-bashisms.patch
- Do not generate supplements for kgraft patches (bnc#904848)
new patch: modalias-no-kgraft.diff
- fix size and payloadsize generation for big endian platforms
new patch: fixsizeforbigendian.diff
- update to rpm-4.12.0.1
* fixes archivesize being off a couple of bytes
- update to rpm-4.12.0
* weakdeps support is now upstream
* new optional payload format to support files > 4GB
* lots of cleanups all over the codebase
- dropped patches:
autodeps.diff, psm-errno.diff, exportoldtags.diff, pythondeps.diff,
newweakdeps.diff, findsupplements.diff, rpm-gst-provides.patch,
noposttrans.diff, fontprovides.diff
- update to rpm-4.11.3
* consists of cherry picked bug fixes
* fix double-free on malformed signature header (RhBug:1133885)
* fix curl globbing being enabled on remote retrieval (RhBug:1076277)
* fix verification of SHA224 signatures (RhBug:1066494)
* fix buffer overflows on malformed macro define/undefine (RhBug:1087000)
* fix buffer overflow on unterminated macro options
* fix file actions sometimes carrying state across multiple
rpmtsRun() calls (RhBug:1076552, RhBug:1128359)
* fix %autopatch options getting expanded twice
* add support for %autosetup -S git_am (RhBug:1082038)
- dropped patches: gentlyadjustmacros.diff, rundir.diff,
m68k.patch, debugedit-m68k.patch
- rename SuSE to SUSE [bnc#888990]
- add correct self-provides to debuginfo subpackages
- adapt restart_on_update and stop_on_removal to use
systemctl [bnc#878255]
- fix macro adjusting in installplatform
the old code broke macos like GNUconfigure [bnc#874897]
new patch: gentlyadjustmacros.diff
- make _rundir configurable
new patch: rundir.diff
- offer a %_rundir to avoid hardcoding /run - and packages wanting
to support older distros, can have /var/run as fallback for the macro
- export the old weak dependency tags so that they are
accessible from python
new patch: exportoldtags.diff
- fix bug in weakdepscompa.diff patch
- make the 'douple separator' error a warning
new patch: checksepwarn.diff
- cherry-pick new weakdeps tags from upstream
new patch: newweakdeps.diff
dropped: weakdeps.diff
- add weakdepscompat.diff to support querying the old tags
- drop outdated and non-free RPM-Tips tarball [bnc#849465]
- update to rpm-4.11.2
* dropped patches: appdata_provides.diff, application_provides.diff,
beedigest.diff, debug_gdb_scripts.diff, getauxval.diff,
ignore_poolstr_dummy_entries.diff, ppc64le.diff,
selfconflicts.diff, strpoolrehash.diff
- package /usr/lib/rpm/macros.d
- activate config.guess and config.sub update also for ppc64le
- Rename and extend auto-config-update-aarch64.diff to
auto-config-update-aarch64-ppc64le.diff to apply same hack to
powerpc64le architecture
- Substitute current values of %suse_release, %sles_release, %ul_release
into suse_macros (bnc#851877)
- Add find-lang-python.patch: Support for finding translations in
%python_sitelib/python_sitearch.
- Add support for ppc64le (ppc64le.diff)
those are upstream commits:
ef1497b1f81966fed56f008bc8ee8ba42102efd6
cf07feda05822377d62b973adc4010c0d7f9eaa0
- debugedit-m68k.patch: Add support for m68k
- m68k.patch: Add support for m68k
- add application_provides.diff and appdata_provides.diff to
generate provides for .desktop files
(both patches are sent to upstream)
- add selfconflicts.diff: fix self-conflicts and self-obsoletes
handling for verify operations [bnc#838133]
- replace obsoleted "find -perm +NNN" syntax [bnc#842004]
to "-perm /NNN" in debugsource-package.diff and
finddebuginfo.diff.
- fix two bugs in the rpmstrPoolRehash() function:
adding strpoolrehash.diff and ignore_poolstr_dummy_entries.diff
- brp-compress-no-img.patch: don't compress image files
- add beedigest.diff to plug memory leaks and support DSA signatures
with hashes other than sha-1 (already upstream)
- weakdeps.diff: readd support for recommends, suggests, enhances
supplements
- fix typo in .debug_gdb_scripts name [bnc#818502]
- backport noposttrans.diff from rpm master [bnc#773575]
==== rsyslog ====
Version update (8.30.0 -> 8.32.0)
- rsyslog 8.32.0
* libfastjson 0.99.8 required
* libczmq >= 3.0.2 is now required for omczmq
* libcurl is now needed for rsyslog core
* rsyslogd: add capability to specify that no pid file shall be written
* core improvements and bug fixes
* RainerScript improvements and bug fixes
* build fixes, including gcc7 fixes
drop 0001-imgssapi-fix-compiler-warnings.patch
* various bug fixes in multiple modules
- remove build dependency on libee
==== simple-scan ====
Version update (3.26.2 -> 3.26.3)
Subpackages: simple-scan-lang
- Update to version 3.26.3:
+ Fix email sending failing with PDF attachments.
==== snapper ====
Version update (0.5.3 -> 0.5.4)
Subpackages: libsnapper4 snapper-zypp-plugin
- create subvolume instead of snapshot for initial system
(bsc#1077240)
- version 0.5.4
- improved error handling for systemd services
(gh#openSUSE/snapper#382)
==== spamassassin ====
Subpackages: perl-Mail-SpamAssassin
- bsc#1059210 spamassassin perl dns resolver recursion desired not set
o add DNS-resolver-recursion-desired-not-set.patch
- Replace %__-type macro indirections.
Replace old $RPM_ shell variables.
==== strace ====
- add update-futex-test-in-accordance-with-kernel-s-v4.15-.patch
==== supportutils ====
Version update (3.0 -> 3.1)
- Includes X without display issue (bsc#1077813)
- Fixes for Infiniband (bsc#1071294)
- Using chrony for NTP (bsc#1077818)
- Added os-release processing (bsc#1077758)
- Removed invalid string tty string (bsc#1077681)
- Added SLE15 taint values (bsc#1077683)
- Added transactional update with OPTION_TRANSACTIONAL=1
- Updated supportconfig.conf.5 with OPTION_TRANSACTIONAL
- Fixed docker package detection (bsc#1069457)
- Replaced route with ip route (bsc#1070379)
- Added systemd-delta to systemd.txt (bsc#1071924)
- Changed repos -u to repos -d (bsc#1071926)
- Added rdma-core for infiniband (bsc#1071294)
- Branding updates fate#324067
- Fixed piped spelling error
- Separated core supportconfig function into resources/supportconfig.rc
- Removed virtualization functions
- Removed OES functions
- Removed eDirectory functions
- Initial commit
==== texinfo ====
- Do not require bash for package info (boo#1077744)
==== texlive ====
Subpackages: libkpathsea6 libsynctex1 libtexlua52-5 libtexluajit2 texlive-a2ping-bin texlive-accfonts-bin texlive-adhocfilelist-bin texlive-afm2pl-bin texlive-amstex-bin texlive-arara-bin texlive-asymptote-bin texlive-bibtex-bin texlive-bibtex8-bin texlive-bibtexu-bin texlive-bundledoc-bin texlive-checkcites-bin texlive-checklistings-bin texlive-chktex-bin texlive-context-bin texlive-cslatex-bin texlive-csplain-bin texlive-ctanify-bin texlive-ctanupload-bin texlive-ctie-bin texlive-cweb-bin texlive-de-macro-bin texlive-detex-bin texlive-dosepsbin-bin texlive-dtl-bin texlive-dtxgen-bin texlive-dviasm-bin texlive-dvicopy-bin texlive-dvidvi-bin texlive-dviinfox-bin texlive-dviljk-bin texlive-dvipdfmx-bin texlive-dvipng-bin texlive-dvipos-bin texlive-dvips-bin texlive-dvisvgm-bin texlive-epstopdf-bin texlive-findhyph-bin texlive-fontinst-bin texlive-fontools-bin texlive-fontware-bin texlive-fragmaster-bin texlive-gsftopk-bin texlive-kpathsea-bin texlive-lacheck-bin texlive-latex-bin-bin
texlive-latex-git-log-bin texlive-latex-papersize-bin texlive-latex2man-bin texlive-latex2nemeth-bin texlive-latexdiff-bin texlive-latexfileversion-bin texlive-latexindent-bin texlive-latexmk-bin texlive-latexpand-bin texlive-lcdftypetools-bin texlive-listings-ext-bin texlive-ltxfileinfo-bin texlive-ltximg-bin texlive-lua2dox-bin texlive-luaotfload-bin texlive-luatex-bin texlive-lwarp-bin texlive-make4ht-bin texlive-makeindex-bin texlive-match_parens-bin texlive-metafont-bin texlive-metapost-bin texlive-mex-bin texlive-mf2pt1-bin texlive-mflua-bin texlive-mfware-bin texlive-mkjobtexmf-bin texlive-mptopdf-bin texlive-patgen-bin texlive-pdfbook2-bin texlive-pdfcrop-bin texlive-pdfjam-bin texlive-pdflatexpicscale-bin texlive-pdftex-bin texlive-pdftools-bin texlive-pdfxup-bin texlive-pfarrei-bin texlive-pkfix-bin texlive-pkfix-helper-bin texlive-ps2pk-bin texlive-pst-pdf-bin texlive-pstools-bin texlive-purifyeps-bin texlive-pygmentex-bin texlive-pythontex-bin texlive-seetexk-bin texlive
-srcredact-bin texlive-sty2dtx-bin texlive-synctex-bin texlive-tetex-bin texlive-tex-bin texlive-tex4ebook-bin texlive-tex4ht-bin texlive-texconfig-bin texlive-texcount-bin texlive-texdef-bin texlive-texdiff-bin texlive-texdirflatten-bin texlive-texdoc-bin texlive-texfot-bin texlive-texliveonfly-bin texlive-texloganalyser-bin texlive-texosquery-bin texlive-texware-bin texlive-thumbpdf-bin texlive-tie-bin texlive-tpic2pdftex-bin texlive-ttfutils-bin texlive-typeoutfileinfo-bin texlive-ulqda-bin texlive-vlna-bin texlive-web-bin texlive-xdvi-bin texlive-xetex-bin
- removed unneeded 'BuildRequires: xorg-x11-util-devel' (bsc#1077489)
- For Leap 42.3 build without biber as the perl version does not fit
==== texlive-filesystem ====
Version update (2017.133.svn41616 -> 2017.135.svn41616)
Subpackages: texlive-collection-basic texlive-collection-binextra texlive-collection-context texlive-collection-fontsrecommended texlive-collection-fontutils texlive-collection-langczechslovak texlive-collection-langenglish texlive-collection-langeuropean texlive-collection-langfrench texlive-collection-langgerman texlive-collection-langitalian texlive-collection-langpolish texlive-collection-langportuguese texlive-collection-langspanish texlive-collection-latex texlive-collection-latexrecommended texlive-collection-luatex texlive-collection-mathscience texlive-collection-metapost texlive-collection-plaingeneric texlive-collection-xetex texlive-extratools texlive-scheme-medium
- Switch over to python 3 (boo#1077170)
==== texlive-specs-b ====
Version update (2017.133.svn15878 -> 2017.135.svn15878)
Subpackages: texlive-around-the-bend texlive-arphic texlive-arphic-doc texlive-arphic-fonts texlive-arydshln texlive-arydshln-doc texlive-ascii-chart texlive-asymptote texlive-asymptote-doc texlive-autoaligne texlive-autoaligne-doc texlive-autobreak texlive-autobreak-doc texlive-automata texlive-automata-doc texlive-avantgar texlive-avantgar-fonts texlive-awesomebox texlive-awesomebox-doc texlive-axodraw2 texlive-axodraw2-doc texlive-babel texlive-babel-albanian texlive-babel-albanian-doc texlive-babel-basque texlive-babel-basque-doc texlive-babel-bosnian texlive-babel-bosnian-doc texlive-babel-breton texlive-babel-breton-doc texlive-babel-catalan texlive-babel-catalan-doc texlive-babel-croatian texlive-babel-croatian-doc texlive-babel-czech texlive-babel-czech-doc texlive-babel-danish texlive-babel-danish-doc texlive-babel-doc texlive-babel-dutch texlive-babel-dutch-doc texlive-babel-english texlive-babel-english-doc texlive-babel-estonian texlive-babel-estonian-doc texlive-babel-fi
nnish texlive-babel-finnish-doc texlive-babel-french texlive-babel-french-doc texlive-babel-friulan texlive-babel-friulan-doc texlive-babel-galician texlive-babel-galician-doc texlive-babel-german texlive-babel-german-doc texlive-babel-hebrew texlive-babel-hebrew-doc texlive-babel-hungarian texlive-babel-hungarian-doc texlive-babel-icelandic texlive-babel-icelandic-doc texlive-babel-irish texlive-babel-irish-doc texlive-babel-italian texlive-babel-italian-doc texlive-babel-kurmanji texlive-babel-kurmanji-doc texlive-babel-latin texlive-babel-latin-doc texlive-babel-latvian texlive-babel-latvian-doc texlive-babel-macedonian texlive-babel-macedonian-doc texlive-babel-norsk texlive-babel-norsk-doc texlive-babel-occitan texlive-babel-occitan-doc texlive-babel-piedmontese texlive-babel-piedmontese-doc texlive-babel-polish texlive-babel-polish-doc texlive-babel-portuges texlive-babel-portuges-doc texlive-babel-romanian texlive-babel-romanian-doc texlive-babel-romansh texlive-babel-romansh
-doc texlive-babel-samin texlive-babel-samin-doc texlive-babel-scottish texlive-babel-scottish-doc texlive-babel-slovak texlive-babel-slovak-doc texlive-babel-slovenian texlive-babel-slovenian-doc texlive-babel-spanglish texlive-babel-spanglish-doc texlive-babel-spanish texlive-babel-spanish-doc texlive-babel-swedish texlive-babel-swedish-doc texlive-babel-turkish texlive-babel-turkish-doc texlive-babel-welsh texlive-babel-welsh-doc texlive-babelbib texlive-babelbib-doc texlive-background texlive-background-doc texlive-backnaur texlive-backnaur-doc texlive-barr texlive-barr-doc texlive-basque-book texlive-basque-book-doc
- Switch over to python 3 (boo#1077170)
- Avoid nasty warning about missing batchmode in ENVironment
==== timezone ====
Version update (2017c -> 2018c)
- timezone update 2018c:
* S�o Tom� and Pr�ncipe switched from +00 to +01 on 2018-01-01
* Southern Brazil's DST will now start on November's first Sunday
(bsc#1073275)
* New zic option -t to specify the time zone file if TZ is unset
==== timezone-java ====
Version update (2017c -> 2018c)
- timezone update 2018c:
* S�o Tom� and Pr�ncipe switched from +00 to +01 on 2018-01-01
* Southern Brazil's DST will now start on November's first Sunday
(bsc#1073275)
* New zic option -t to specify the time zone file if TZ is unset
==== totem ====
Subpackages: nautilus-totem totem-lang totem-plugins
- Drop python-beautifulsoup and python-httplib2 recommends: BBC
rewrote the iplayer plugin and as such the recommends do not make
sense anymore.
==== util-linux ====
Version update (2.30.1 -> 2.31)
Subpackages: libblkid1 libblkid1-32bit libfdisk1 libmount1 libmount1-32bit libsmartcols1 libuuid1 libuuid1-32bit util-linux-lang
- Combine %service_* calls again.
- Provide /usr/sbin/rfkill from rfkill package (boo#1076134)
- Add util_linux_bigendian.patch solve two failing tests on ppc64
(sha1, uuid/oids)
- Integrate rfkill-block@.service and rfkill-unblock@.service from
rfkill package (boo#1074250#c4).
- Remove unneeded release based conflicts and obsolescences
(boo#1074250#c18).
- Remove sysvinit requirement.
- Fix Obsoletes for rfkill (boo#1074250).
- Update bash completion conflict to cover rfkill file conflict.
- lsmem: Add support for zone awareness (bsc#1065471, FATE#324252,
util-linux-lsmem-memory-zone-1.patch,
util-linux-lsmem-memory-zone-2.patch,
util-linux-lsmem-memory-zone-3.patch).
- Drop util-linux-losetup-Add-support-for-setting-logical-blocksize.patch.
Different implementations exists in the new kernel, and it has
a conflicting implementation in util-linux.
- Update to version 2.31:
* New utilities: uuidparse, rfkill.
* su has been refactored and extended to create pseudo terminal
(new option --pty, CVE-2016-2779, bsc#968674). This new
EXPERIMENTAL feature provides better isolation between root's
terminal and an unprivileged su.
* libuuid: Improved to match
* libuuid, uuidgen: support hash-based UUIDs v3 (md5) and v5
(sha1) as specified by RFC-4122. Provide UUID templates for
dns, url, oid, or x500.
* libblkid: Extended support for DM-integrity, HPE (aka
extended-XFS) and UBI superblock. New API to hide already
detected signatures.
* libfdisk: New API to modify grain, make possible to completely
disable dialog driven partitioning.
* libsmartcols: New API to move columns.
* column: --table-header-repeat to repeat table headers.
* libfdisk: Use BLKPG ioctls to inform the kernel about changes.
* fdisk: Improved ^C and ^D behavior.
* cfdisk: Dialog to resize partition.
* look: Follow the WORDLIST environment variable.
* losetup: Added support for --sector-size (FATE#319010).
* script: Follow the usual semantics for stop/continue signals.
* setpriv: New command line options --ambient-caps and
- -init-groups.
* hwclock: Reduce system shutdown times, log --systz when using
libaudit.
* Other bug fixes.
- Drop upstreamed util-linux-use-tinfow.patch.
- Refreshed make-sure-sbin-resp-usr-sbin-are-in-PATH.diff.
==== util-linux-systemd ====
Version update (2.30.1 -> 2.31)
- Combine %service_* calls again.
- Provide /usr/sbin/rfkill from rfkill package (boo#1076134)
- Add util_linux_bigendian.patch solve two failing tests on ppc64
(sha1, uuid/oids)
- Integrate rfkill-block@.service and rfkill-unblock@.service from
rfkill package (boo#1074250#c4).
- Remove unneeded release based conflicts and obsolescences
(boo#1074250#c18).
- Remove sysvinit requirement.
- Fix Obsoletes for rfkill (boo#1074250).
- Update bash completion conflict to cover rfkill file conflict.
- lsmem: Add support for zone awareness (bsc#1065471, FATE#324252,
util-linux-lsmem-memory-zone-1.patch,
util-linux-lsmem-memory-zone-2.patch,
util-linux-lsmem-memory-zone-3.patch).
- Drop util-linux-losetup-Add-support-for-setting-logical-blocksize.patch.
Different implementations exists in the new kernel, and it has
a conflicting implementation in util-linux.
- Update to version 2.31:
* New utilities: uuidparse, rfkill.
* su has been refactored and extended to create pseudo terminal
(new option --pty, CVE-2016-2779, bsc#968674). This new
EXPERIMENTAL feature provides better isolation between root's
terminal and an unprivileged su.
* libuuid: Improved to match
* libuuid, uuidgen: support hash-based UUIDs v3 (md5) and v5
(sha1) as specified by RFC-4122. Provide UUID templates for
dns, url, oid, or x500.
* libblkid: Extended support for DM-integrity, HPE (aka
extended-XFS) and UBI superblock. New API to hide already
detected signatures.
* libfdisk: New API to modify grain, make possible to completely
disable dialog driven partitioning.
* libsmartcols: New API to move columns.
* column: --table-header-repeat to repeat table headers.
* libfdisk: Use BLKPG ioctls to inform the kernel about changes.
* fdisk: Improved ^C and ^D behavior.
* cfdisk: Dialog to resize partition.
* look: Follow the WORDLIST environment variable.
* losetup: Added support for --sector-size (FATE#319010).
* script: Follow the usual semantics for stop/continue signals.
* setpriv: New command line options --ambient-caps and
- -init-groups.
* hwclock: Reduce system shutdown times, log --systz when using
libaudit.
* Other bug fixes.
- Drop upstreamed util-linux-use-tinfow.patch.
- Refreshed make-sure-sbin-resp-usr-sbin-are-in-PATH.diff.
==== vim ====
Version update (8.0.1417 -> 8.0.1442)
Subpackages: gvim vim-data
- Updated to revision 1442, fixes the following problems
* Crash when calling term_start() with empty argument.
* Crash when term_start() fails.
* MS-Windows: vimtutor fails if %TMP% has special chars.
* After ":copen" can't get the window-ID of the quickfix
window. (FalacerSelene)
* Illegal memory access after undo. (Dominique Pelle)
* GTK: :promtfind does not put focus on text input. (Adam Novak)
* Memory leak in test_arabic.
* Not enough information about what Python version may work.
* Pkg-config doesn't work with cross compiling.
* Filetype detection test not updated for change.
* If cscope fails a search Vim may hang.
* Terminal window: some vterm responses are delayed.
* Using ":undo 0" leaves undo in wrong state.
* Using pointer before it is set.
- Make vim require vim-data bsc#1077352 bsc#1075541 bsc#1074790
- Sort with spec-cleaner
- Add conditional to build with python2 in order to build with py3
only enviroment
- Convert dependencies to pkgconfig style
- Updated to revision 1428, fixes the following problems
* No test for expanding backticks.
* Cursor column is not updated after ]s. (Gary Johnson)
* Accessing freed memory in vimgrep.
* Accessing invalid memory with overlong byte sequence.
* No fallback to underline when undercurl is not set. (Ben Jackson)
* Error in return not caught by try/catch.
* The timer_pause test is flaky on Travis.
* execute() does not work in completion of user command. (thinca)
* "gf" and <cfile> don't accept ? and & in URL. (Dmitrii Tcyganok)
* The :leftabove modifier doesn't work for :copen.
* Compiler warning on 64 bit MS-Windows system.
- ignore make check transient errors for PowerPC
bypass boo#1072651
- Update apparmor.vim (taken from AppArmor 2.12)
* add support for the "smc" network keyword
==== virtualbox ====
Subpackages: virtualbox-guest-kmp-default virtualbox-host-kmp-default
- Update "fixes_for_4.15.patch": remove useless log statement that
broke building the vboxvideo guest kernel module
- Build and install it again, it's needed for KMS support, i.e. for
Xorg's "modesetting" driver to work in the guest (boo#1079221)
==== w3m ====
Version update (0.5.3.git20161120 -> 0.5.3+git20180125)
- add git ChangeLog to /usr/share/doc/w3m/
- update to version 0.5.3+git20180125
addressed security issue:
CVE-2018-6196: w3m: an infinite recursion flaw in HTMLlineproc0
because the feed_table_block_tag function in table.c does not
prevent a negative indent value allows for (bsc#1077559)
CVE-2018-6197: w3m: NULL pointer dereference flaw in formUpdateBuffer
in form.c (bsc#1077568)
CVE-2018-6198: w3m: does not properly handle temporary files when
the ~/.w3m directory is unwritable, which allows a local attacker to
craft a symlink attack to overwrite arbitrary files (bsc#1077572)
other changes, bugfixes see: /usr/share/doc/w3m/ChangeLog
==== webkit2gtk3 ====
Version update (2.18.5 -> 2.18.6)
Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 libwebkit2gtk3-lang typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- even on recent codestreams there is no binutils gold on s390
only on s390x
- Update to version 2.18.6:
+ Fix deadlock in GStreamer video sink during shutdown when
accelerated compositing is disabled.
+ Several fixes and improvements in WebDriver.
+ Security fixes: CVE-2018-4088, CVE-2017-13885, CVE-2017-7165,
CVE-2017-13884, CVE-2017-7160, CVE-2017-7153, CVE-2017-7153,
CVE-2017-7161, CVE-2018-4096.
==== wireless-tools ====
Subpackages: libiw30
- improved install scripts (using install instead of mv and using $UID:
* install_acx100_firmware
* install_intersil_firmware
- updated URL in install_acx100_firmware script (bnc#1004577)
- improved spec file
* removed obsolete openSUSE Versions checks
* replaced bash variables with macros
* removed obsolete tags and macros
* cleaned spec file with spec-cleaner
==== xorg-x11-libs ====
Version update (7.6 -> 7.6.1)
- raised version number of package; improved definitions for
provide/obsolete of xorg-x11-util-devel so makedepend, lndir,
gccmakedep, xorg-cf-files and xorg-sgml-doctools no longer
conflict with xorg-x11-devel package (bsc#1077489)
- Directly require packages, which were required by
xorg-x11-util-devel meta package; provide/obsolete
xorg-x11-util-devel now (bsc#1077489)
==== xtables-addons ====
- Backport from upstream
* Support for Linux 4.15 (add init_timer.patch)
==== yast2 ====
Version update (4.0.38 -> 4.0.45)
- Firewalld API: Cache whether the configuration has been read
(fate#323460)
- 4.0.45
- Installation::AutoClient: modified packages default and improved
documentation (fate#323460 bsc#1077987)
- 4.0.44
- Fixed a bug causing pages of all CWM::TreePager to be rendered
twice on every page switch (bsc#1078212)
- 4.0.43
- Firewalld API: reload and complete reload return true in offline
mode (fate#323460)
- 4.0.42
- Fixed logging typo (fate#1076513)
- 4.0.41
- Improved base product detection at upgrade (fate#1076513)
- 4.0.40
==== yast2-bootloader ====
Version update (4.0.13 -> 4.0.14)
- fix crash when clicking link in proposal (bsc#1078227)
- 4.0.14
==== yast2-country ====
Version update (4.0.16 -> 4.0.19)
Subpackages: yast2-country-data
- Lnaguage: nicer handling of dbus timeout (bsc#1076804)
- 4.0.19
- Reimplemented package reset to require less memory
(related to bsc#1076768)
- 4.0.18
- Unify openSUSE and SLE console fonts maps (bsc#1068814).
- 4.0.17
==== yast2-drbd ====
Version update (4.0.0 -> 4.0.1)
- SuSEFirewall2 replace by firewalld(fate#323460)
- Version 4.0.1
==== yast2-firewall ====
Version update (4.0.8 -> 4.0.9)
- AutoYaST: fixed default valur for log denied packets when using
SuSEFIrewall2 profiles (fate#323460)
- 4.0.9
==== yast2-installation ====
Version update (4.0.26 -> 4.0.28)
- Do not enable xvnc.socket for second installation stage.
Xvnc will be started by a direct call in vnc.sh. (bnc#1077236)
- 4.0.28
- Reimplemented finding package upgrades to require less memory
(related to bsc#1076768)
- 4.0.27
==== yast2-pkg-bindings ====
Version update (4.0.6 -> 4.0.7)
- Added "transact_by" key to the PkgPropertiesAll call
(improvement for bsc#1077882)
- 4.0.7
==== yast2-squid ====
Version update (4.0.0 -> 4.0.1)
- Replace SuSEFirewall2 by firewalld (fate#323460)
- 4.0.1
==== yast2-storage-ng ====
Version update (4.0.76 -> 4.0.81)
- Partitioner: list all LVM thin volumes to delete when an LVM thin
pool is going to be deleted.
- Partitioner: show warning when an LVM thin pool is overcommitted
after resizing.
- Part of fate#318196.
- 4.0.81
- AutoYaST: try to shrink new partitions/logical volumes
proportionally when there is not enough space (bsc#1078418).
- 4.0.80
- Partitioner: initial support for NFS (part of fate#318196)
- Partitioner: removed useless tmpfs option
- 4.0.79
- Partitioner: allow to create LVM thin pools and volumes.
- Fix transactions of devicegraphs.
- Part of fate#318196.
- 4.0.78
- Partitioner: improve error message when trying to remove an used
physical volume.
- Add default mount options for /etc/fstab for ext2/3/4 and vfat
(bsc#1066076)
- 4.0.77
==== zypp-plugin ====
Version update (0.6.2 -> 0.6.3)
- Disable singlespec packaging in SLE12* and older distros while it's
not working there. They provide python2 packages only.
- Fix a bit the obsoletes/provides to allow migration, previously
was overwritten by macros
- BR python-rpm-macros to build on older distributions
- Fix bit python detection conditions on install phase to be better
readable and uniform
- Switch to singlespec packaging to make it easy to disable either
python3 or python2 plugin and make sure all is buildable
- version 0.6.3
==== zziplib ====
Version update (0.13.62 -> 0.13.67)
- Drop tests as they fail completely anyway, not finding lib needing
zip command, this should allow us to kill python dependency
- Also drop docs subdir avoiding python dependency for it
* The generated xmls were used for mans too but we shipped those
only in devel pkg and as such we will live without them
- Version update to 0.13.67:
* Various fixes found by fuzzing
* Merged bellow patches
- Remove merged patches:
* zziplib-CVE-2017-5974.patch
* zziplib-CVE-2017-5975.patch
* zziplib-CVE-2017-5976.patch
* zziplib-CVE-2017-5978.patch
* zziplib-CVE-2017-5979.patch
* zziplib-CVE-2017-5981.patch
- Switch to github tarball as upstream seem no longer pull it to
sourceforge
- Remove no longer applying patch zziplib-unzipcat-NULL-name.patch
* The sourcecode was quite changed for this to work this way
anymore, lets hope this is fixed too
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
Hi
Currently mysql-worbench is not working [1], and I don't have time to
spend on it - so either someone sends maintainership request or I will
create deleterequest for Factory and Leap-15.
Cheers
Martin
P.S Based on previous experience, I woyld like to clarify that I am
looking for someone to take over maintainership, not someone whom I
would have to tutor on packaging.
1. https://bugzilla.opensuse.org/show_bug.cgi?id=1071576
3
6
09 Feb '18
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.
Packages changed:
MozillaFirefox (57.0.4 -> 58.0.1)
autoyast2 (4.0.28 -> 4.0.29)
evolution (3.26.4 -> 3.26.5)
evolution-data-server (3.26.4 -> 3.26.5)
evolution-ews (3.26.4 -> 3.26.5)
gnome-music (3.26.1 -> 3.26.2)
gnome-photos
gupnp-igd (0.2.4 -> 0.2.5)
gvfs (1.34.1 -> 1.34.2)
hugin (2017.0.0 -> 2018.0.0)
libgexiv2 (0.10.6 -> 0.10.7)
libstorage-ng (3.3.145 -> 3.3.149)
mysql-connector-cpp
perl-MIME-Types (2.14 -> 2.17)
texlive
texlive-specs-m (2017.133.20170101_pl1svn43813 -> 2017.136.20170101_pl1svn43813)
texlive-specs-n (2017.133.2.004svn28119 -> 2017.136.2.004svn28119)
tracker (2.0.2 -> 2.0.3)
tracker-miners (2.0.3 -> 2.0.4)
vala (0.38.6 -> 0.38.7)
xdg-desktop-portal-kde (5.11.95 -> 5.12.0)
yast2-bootloader (4.0.14 -> 4.0.15)
yast2-firewall (4.0.10 -> 4.0.11)
yast2-installation (4.0.30 -> 4.0.31)
yast2-kdump (4.0.0 -> 4.0.1)
yast2-nis-client (4.0.1 -> 4.0.2)
yast2-storage-ng (4.0.82 -> 4.0.84)
=== Details ===
==== MozillaFirefox ====
Version update (57.0.4 -> 58.0.1)
Subpackages: MozillaFirefox-translations-common
- Added patch:
* mozilla-alsa-sandbox.patch: Fix bmo#1430274, ALSA sound (still
or again?) not working in Firefox 58 due to sandboxing.
- update to Firefox 58.0.1
MFSA 2018-05
* Arbitrary code execution through unsanitized browser UI (bmo#1432966)
- use correct language packs
- readd mozilla-enable-csd.patch as it only lands for FF59 upstream
- allow larger number of nested elements (mozilla-bmo256180.patch)
- update to Firefox 58.0 (bsc#1077291)
* Added Nepali (ne-NP) locale
* Added support for form autofill for credit card
* Optimize page load by caching JavaScript internal representation
MFSA 2018-02
* CVE-2018-5091 (bmo#1423086)
Use-after-free with DTMF timers
* CVE-2018-5092 (bmo#1418074)
Use-after-free in Web Workers
* CVE-2018-5093 (bmo#1415291)
Buffer overflow in WebAssembly during Memory/Table resizing
* CVE-2018-5094 (bmo#1415883)
Buffer overflow in WebAssembly with garbage collection on
uninitialized memory
* CVE-2018-5095 (bmo#1418447)
Integer overflow in Skia library during edge builder allocation
* CVE-2018-5097 (bmo#1387427)
Use-after-free when source document is manipulated during XSLT
* CVE-2018-5098 (bmo#1399400)
Use-after-free while manipulating form input elements
* CVE-2018-5099 (bmo#1416878)
Use-after-free with widget listener
* CVE-2018-5100 (bmo#1417405)
Use-after-free when IsPotentiallyScrollable arguments are freed
from memory
* CVE-2018-5101 (bmo#1417661)
Use-after-free with floating first-letter style elements
* CVE-2018-5102 (bmo#1419363)
Use-after-free in HTML media elements
* CVE-2018-5103 (bmo#1423159)
Use-after-free during mouse event handling
* CVE-2018-5104 (bmo#1425000)
Use-after-free during font face manipulation
* CVE-2018-5105 (bmo#1390882)
WebExtensions can save and execute files on local file system
without user prompts
* CVE-2018-5106 (bmo#1408708)
Developer Tools can expose style editor information cross-origin
through service worker
* CVE-2018-5107 (bmo#1379276)
Printing process will follow symlinks for local file access
* CVE-2018-5108 (bmo#1421099)
Manually entered blob URL can be accessed by subsequent private browsing tabs
* CVE-2018-5109 (bmo#1405599)
Audio capture prompts and starts with incorrect origin attribution
* CVE-2018-5110 (bmo#1423275) (affects only OS X)
Cursor can be made invisible on OS X
* CVE-2018-5111 (bmo#1321619)
URL spoofing in addressbar through drag and drop
* CVE-2018-5112 (bmo#1425224)
Extension development tools panel can open a non-relative URL in the panel
* CVE-2018-5113 (bmo#1425267)
WebExtensions can load non-HTTPS pages with browser.identity.launchWebAuthFlow
* CVE-2018-5114 (bmo#1421324)
The old value of a cookie changed to HttpOnly remains accessible to scripts
* CVE-2018-5115 (bmo#1409449)
Background network requests can open HTTP authentication in unrelated foreground tabs
* CVE-2018-5116 (bmo#1396399)
WebExtension ActiveTab permission allows cross-origin frame content access
* CVE-2018-5117 (bmo#1395508)
URL spoofing with right-to-left text aligned left-to-right
* CVE-2018-5118 (bmo#1420049)
Activity Stream images can attempt to load local content through file:
* CVE-2018-5119 (bmo#1420507)
Reader view will load cross-origin content in violation of CORS headers
* CVE-2018-5121 (bmo#1402368) (affects only OS X)
OS X Tibetan characters render incompletely in the addressbar
* CVE-2018-5122 (bmo#1413841)
Potential integer overflow in DoCrypt
* CVE-2018-5090
Memory safety bugs fixed in Firefox 58
* CVE-2018-5089
Memory safety bugs fixed in Firefox 58 and Firefox ESR 52.6
- requires NSS 3.34.1
- requires rust 1.21
- removed obsolete patches:
mozilla-bindgen-systemlibs.patch
mozilla-bmo1360278.patch
mozilla-bmo1399611-csd.patch
mozilla-rust-1.23.patch
- rebased patches
- updated man-page
==== autoyast2 ====
Version update (4.0.28 -> 4.0.29)
Subpackages: autoyast2-installation
- fate#323460
- support for disabling edit action per module. Currently used
mainly by the new firewall module
- 4.0.29
==== evolution ====
Version update (3.26.4 -> 3.26.5)
Subpackages: evolution-lang evolution-plugin-bogofilter evolution-plugin-pst-import evolution-plugin-spamassassin
- Update to version 3.26.5:
+ Crash under message-list.c:free_message_info_data().
+ Indentation in plain text adds unwanted spaces around links.
+ Composer-autosave: Use-after-free during snapshot save to file.
+ Bugs fixed: bgo#339675, bgo#792343, bgo#792385, bgo#792480,
bgo#792781, bgo#792736, bgo#792909, bgo#788589, bgo#788823,
bgo#720387.
+ Updated translations.
==== evolution-data-server ====
Version update (3.26.4 -> 3.26.5)
Subpackages: evolution-data-server-lang libcamel-1_2-60 libebackend-1_2-10 libebook-1_2-19 libebook-contacts-1_2-2 libecal-1_2-19 libedata-book-1_2-25 libedata-cal-1_2-28 libedataserver-1_2-22 libedataserverui-1_2-1
- Update to version 3.26.5:
+ Prevent early free of an ESource when it has pending
operations.
+ IMAPx:
- Select destination mailbox only when permanentflags not known
yet.
- Sort array of UIDs before syncing changes to the server.
+ Prevent passing NULL ldap handle into LDAP functions ][.
+ Bugs fixed: bgo#792513, bgo#789522.
==== evolution-ews ====
Version update (3.26.4 -> 3.26.5)
Subpackages: evolution-ews-lang
- Update to version 3.26.5:
+ Bugs fixed: bgo#793037.
==== gnome-music ====
Version update (3.26.1 -> 3.26.2)
Subpackages: gnome-music-lang
- Update to version 3.26.2:
+ Bugs fixed:
- Block spotify plugin (glgo#gnome-music#132).
- DiscListBoxWidget: Update favorites playlist (bgo#784998).
- Albumartcache: Fix order in method call.
- Flatpak: Update music repository URL (glgo#gnome-music#138).
- Misc flatpak fixes.
+ Updated translations.
==== gnome-photos ====
Subpackages: gnome-photos-lang gnome-shell-search-provider-gnome-photos
- Add gnome-photos-Dont-leak-thumbnailer-path-string.patch:
thumbnail-factory: Don't leak the thumbnailer path string.
- Add gnome-photos-application-fixes.patch: application: Avoid
CRITICALs.
- Add gnome-photos-Check-RDF-type-before-using-it.patch: utils:
Check the RDF type before using it, not the MIME type.
==== gupnp-igd ====
Version update (0.2.4 -> 0.2.5)
- Update to version 0.2.5:
+ Update gtk-doc to newer version to fix build failures.
- Update Url to https://wiki.gnome.org/Projects/GUPnP: current
GUPnP's web page.
==== gvfs ====
Version update (1.34.1 -> 1.34.2)
Subpackages: gvfs-backend-afc gvfs-backend-samba gvfs-backends gvfs-fuse gvfs-lang
- Update to version 1.34.2:
+ Recent: Prevent crash when recent file changed.
+ Trash: Fix trash::orig-path for relative paths.
+ Mtp:
- Handle read-past-EOF ourselves to prevent hangs.
- Fix volume removal with current udev behavior.
+ Gphoto2: Fix volume removal with current udev behavior.
+ Updated translations.
- Drop gvfs-fix-mtp-volume-removal.patch and
gvfs-mtp-handle-read-past-eof.patch: Fixed upstream.
==== hugin ====
Version update (2017.0.0 -> 2018.0.0)
- update to version 2018.0.0
The version 2018.0 is mainly a bug fix release and introduce some minor new features.
Several improvements for optimizer tabs:
* mark deselected images
* allow changing optimizer variables for all selected images at once
* option to ignore line cp
* hugin_stacker: New tool to stack overlapping images with several
averaging modes (e.g. mean, median).
* Hugin: Added option to disable auto-rotation of images in control
point and mask editor.
* Nona, verdandi and hugin_stacker can now write BigTIFF images
* Added expression parser to GUI: This allows to manipulate several
image variables at once. (This is the same as running pto_var
- -set from the command line.) This can be used e.g. to prealigns
the images in a given setup and then run cpfind --prealigned to
search control points only in overlapping images.
* Add user-defined assistant and expose it in the GUI. It allows
to set up different assistant strategies without the need to
recompiling. Provide also some examples (scanned images,
multi-row panoramas with orphaned images, single-shot panorama
cameras).
- drop python dependencies
==== libgexiv2 ====
Version update (0.10.6 -> 0.10.7)
- Update to version 0.10.7:
+ Add meson build support.
+ Use glib-mkenums for enum types.
+ Fix make check when running out of tree.
+ Use version script to clean up exported functions.
+ Fix --disable-vala.
+ Bugs fixed: bgo#784045, bgo#787455.
==== libstorage-ng ====
Version update (3.3.145 -> 3.3.149)
Subpackages: libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#450
- Ensure not to write malformed /etc/fstab entries (bsc#1066763)
- 3.3.149
- merge gh#openSUSE/libstorage-ng#451
- work on error handling
- 3.3.148
- merge gh#openSUSE/libstorage-ng#449
- fixed default value
- 3.3.147
- merge gh#openSUSE/libstorage-ng#448
- Add GraphvizFlags::DISPLAYNAME to Devicegraph
- merge gh#openSUSE/libstorage-ng#447
- allow finer control of flags in write_graphviz
- merge gh#openSUSE/libstorage-ng#446
- use sid as vertex id
- Translated using Weblate (Hungarian)
- Translated using Weblate (Hungarian)
- Translated using Weblate (Afrikaans)
- merge gh#openSUSE/libstorage-ng#444
- added Mountable::remove_mount_point()
- merge gh#openSUSE/libstorage-ng#443
- added PRETTY_CLASSNAME to GraphvizFlags
- Translated using Weblate (Chinese (Taiwan))
- merge gh#openSUSE/libstorage-ng#442
- renamed integration tests
- added integration tests
- Translated using Weblate (Chinese (Taiwan))
- merge gh#openSUSE/libstorage-ng#441
- added integration test
- added udevadm settle call
- Translated using Weblate (Korean)
- Translated using Weblate (Korean)
==== mysql-connector-cpp ====
- add mysql-connector-cpp-mariadb.patch
to fix compatibility with MariaDB, not supported options removed
==== perl-MIME-Types ====
Version update (2.14 -> 2.17)
- updated to 2.17
see /usr/share/doc/packages/perl-MIME-Types/ChangeLog
==== texlive ====
- drop freetype-devel buildrequires, we use freetype2 here.
==== texlive-specs-m ====
Version update (2017.133.20170101_pl1svn43813 -> 2017.136.20170101_pl1svn43813)
- Avoid broken scripts due former env correction, only repair
those scripts where the shebang exists
- Switch over to python 3 (boo#1077170)
- Avoid nasty warning about missing batchmode in ENVironment
==== texlive-specs-n ====
Version update (2017.133.2.004svn28119 -> 2017.136.2.004svn28119)
- Avoid broken scripts due former env correction, only repair
those scripts where the shebang exists
- Switch over to python 3 (boo#1077170)
- Avoid nasty warning about missing batchmode in ENVironment
==== tracker ====
Version update (2.0.2 -> 2.0.3)
Subpackages: libtracker-common-2_0 libtracker-control-2_0-0 libtracker-miner-2_0-0 libtracker-sparql-2_0-0 tracker-lang typelib-1_0-Tracker-2_0 typelib-1_0-TrackerControl-2_0
- Update to version 2.0.3:
+ build:
- Improvements in meson support.
- Remove stale dependencies after Tracker miners split.
+ tests:
- Many fixes to functional tests.
- Remove old checks for maemo-specific features.
+ libtracker-miner: Small code improvements.
+ libtracker-sparql: use gint32 to unpack 'i' GVariant format.
+ Updated translations.
- Drop tracker-nb-translations.patch: Fixed upstream.
- Minor spec-clean, use autosetup and make_build macros.
==== tracker-miners ====
Version update (2.0.3 -> 2.0.4)
Subpackages: tracker-miner-files tracker-miners-lang
- Update to version 2.0.4:
+ build: Allow building tracker repo as a meson subproject.
+ libtracker-common: Rename to libtracker-miners-common.
+ libtracker-miners-common: Whitelist arm_fadvise64_64, getegid
and getegid32 syscalls.
+ tracker-extract:
- Add GExiv2-based extractor module for RAW files.
- Blacklist gstreamer modules via plugin instead of via
feature.
- Blacklist video4linux2 gstreamer plugin.
- Use enumerations for EXIF values.
- Fix image pixel density conversions.
+ tracker-miner-fs: Avoid setting rdf:types on empty files.
+ meson: dependency check fixes.
+ Updated translations.
- Drop tracker-miners-nb-translations.patch: Fixed upstream.
==== vala ====
Version update (0.38.6 -> 0.38.7)
Subpackages: libvala-0_38-0
- Update to version 0.38.7:
+ Regression fix: codegen: Don't try to infer error argument on
async begin methods (bgo#793158). This was a regression
introduced by (bgo#614294).
==== xdg-desktop-portal-kde ====
Version update (5.11.95 -> 5.12.0)
Subpackages: xdg-desktop-portal-kde-lang
- Add patch to fix build with latest Qt dev version where
QCUPSSupport::cupsOptionsList was removed from the private API
(kde#389825):
* 0001-Fix-build-with-Qt-dev-branch-where-QCUPSSupport-cups.patch
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== yast2-bootloader ====
Version update (4.0.14 -> 4.0.15)
- Fix activating partition by UUID or label (bsc#1077427,
bsc#1076424)
- 4.0.15
==== yast2-firewall ====
Version update (4.0.10 -> 4.0.11)
- AutoYaST: When a profile using the SuSEFirewall2 schema is used,
the user is reported with an error if some property is not
supported or with a warning in other case. (fate#323460)
- 4.0.11
==== yast2-installation ====
Version update (4.0.30 -> 4.0.31)
- Added requirement iproute2 to spec file. This is needed by
the VNC AutoYaST installation in the second stage.
(Follow up of bnc#1077236)
- 4.0.31
==== yast2-kdump ====
Version update (4.0.0 -> 4.0.1)
- added supplements for yast2 and kdump (bsc#1070423)
- 4.0.1
==== yast2-nis-client ====
Version update (4.0.1 -> 4.0.2)
- Replace SuSEFirewall2 by firewalld (fate#323460)
- 4.0.2
==== yast2-storage-ng ====
Version update (4.0.82 -> 4.0.84)
- Partitioner: fixed 'Device Graph' section (part of fate#318196).
- 4.0.84
- Added a new 'disk' client, alias for 'partitioner' (bsc#1078900).
- 4.0.83
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
2
1
I get frequentially:
The locking of the screen is broken and unlock is not possible anymore
To unlock switch to a virtual terminal, for instance
Ctrl+Alt+F2
Do loginctl unlock-session 1
I get Password:
After that I switch back to active session with Ctrl+Alt+F7
And get the first message again
What to do?
André den Oudsten
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
2
09 Feb '18
On kmail I get following info after a akonadictll restart:
akonadi.tagtypetable OK
Connecting to deprecated signal
QDBusConnectionInterface::serviceOwnerChanged(QString,QString,QString)
org.kde.pim.akonadicontrol: "AgentManager::agentInstanceSynchronizeCollection"
Agent instance "akonadi_maildir_resource_0" has no resource interface!
org.kde.pim.akonadiserver: "Cannot connect to agent instance with identifier
'akonadi_maildir_resource_0', error message: ''"
org.kde.pim.akonadiserver: "Cannot connect to agent instance with identifier
'akonadi_maildir_resource_0', error message: ''"
org.kde.pim.akonadiserver: "Cannot connect to agent instance with identifier
'akonadi_maildir_resource_0', error message: ''"
org.kde.pim.akonadiserver: "Cannot connect to agent instance with identifier
'akonadi_maildir_resource_0', error message: ''"
org.kde.pim.akonadiserver: "Cannot connect to agent instance with identifier
'akonadi_maildir_resource_0', error message: ''"
How do I solve this problem?
My Tumbleweed is freshly installed with openSUSE-20180202-0 and updated with
snapshot 20180207.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
[opensuse-factory] Maintainer of Yast2-Fonts declined to submit the module for Leap 15
by Roman Bysh 08 Feb '18
by Roman Bysh 08 Feb '18
08 Feb '18
Hi,
The maintainer declined to submit the yast2-fonts package for Leap 15 unless
someone else can manually submit the package due to time and work.
Ref: https://forums.opensuse.org/showthread.php/529428-Leap-15-Beta-Please-post-…
Can someone provide this package for Leap 15? I will help test it.
--
Cheers!
Roman
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
4
5
08 Feb '18
Since the update to 20180203 (I updated from 20180131) my touchpad does not work
anymore after a resume.
HW is a Lenovo Thinkpad T460p
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
2
08 Feb '18
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.
Packages changed:
AppStream (0.11.1 -> 0.11.8)
Mesa (17.3.3 -> 18.0.0)
Mesa-drivers (17.3.3 -> 18.0.0)
NetworkManager (1.8.6 -> 1.10.2)
SUSEConnect
apr
bash
bluez
ceph (13.0.0 -> 13.0.0.5171+g4d4101fe78)
corosync
device-mapper
evince (3.26.0+20171120.3955d480 -> 3.26.0+20180128.1bd86963)
fltk
gc (7.4.2 -> 7.6.4)
gdm
gegl-unstable (0.3.26 -> 0.3.28)
gjs (1.50.2 -> 1.50.4)
glib2 (2.54.2 -> 2.54.3)
gmime (3.0.5 -> 3.2.0)
gnome-builder (3.26.3 -> 3.26.4)
gnome-color-manager
gnome-documents (3.26.1 -> 3.26.2)
gnome-logs (3.26.2 -> 3.26.3)
gnome-online-accounts
gnome-power-manager (3.25.90 -> 3.26.0)
gnome-shell (3.26.2+20171218.15b1810a6 -> 3.26.2+20180130.0d9c74212)
gstreamer-plugins-ugly
ibus
libcaca (0.99.beta19+git20171002.da28e96 -> 0.99.beta19.git20171003)
libchamplain
libdazzle (3.26.2 -> 3.26.3)
libgexiv2
liborcus (0.13.1 -> 0.13.2)
libpng12
libqt5-qtbase
librsvg (2.42.0 -> 2.42.2)
libzypp (17.1.1 -> 17.1.2)
linux-glibc-devel (4.14 -> 4.15)
llvm5
lvm2
mutter (3.26.2+20171231.0bd1d7cf0 -> 3.26.2+20180127.d32d358a6)
ncurses (6.0 -> 6.1)
procps
python-pyudev
rsync (3.1.2 -> 3.1.3)
vala (0.38.5 -> 0.38.6)
vim (8.0.1428 -> 8.0.1442)
wicked (0.6.43 -> 0.6.44)
xkeyboard-config (2.22 -> 2.23.1)
yast2-ftp-server (3.3.0 -> 4.0.0)
=== Details ===
==== AppStream ====
Version update (0.11.1 -> 0.11.8)
Subpackages: AppStream-lang libAppStreamQt2 libappstream4
- Now the appstream cache is refreshed in %post. The update to 0.11.8
plus the refresh fixes kde#389531.
- Headers are now installed to /usr/include/appstream instead of
/usr/inlude/AppStream
- New package AppStream-doc with the html documentation for AppStream
- Use meson to build instead of cmake
- Update to version 0.11.8:
Features:
* validator: Emit a hint in case a discouraged AppStream ID style is used (Matthias Klumpp)
* l10n: Renamed Norwegian Bokm�l language file (Matthias Klumpp)
Specification:
* docs: Add quickstart instructions for intltool (David Steele)
* spec: Discourage use of hyphens and digit-started segments for IDs (Matthias Klumpp)
Bugfixes:
* qt: Export the AppStreamQt target (Aleix Pol)
* Various string improvements (Allan Nordh�y)
* validator: Don't make HEAD requests for URL checks, fetch first byte instead (Matthias Klumpp)
* Enforce a non-broken version of gobject-introspection (Matthias Klumpp)
* Ensure LINGUAS update is only run explicitly (Matthias Klumpp)
* Fix a minor memory and fd leak (Matthias Klumpp)
- Update to version 0.11.7:
Notes:
* The appstreamcli validation commands now use curl if it is available to check all
URLs in the metadata for existence.
If you don't want this behavior, pass "--nonet" to appstreamcli. There might also
be false positives (one is known with the KDE bugtracker) that need to be investigated,
so feedback on this new feature is welcome.
Features:
* validator: Check all urls for validity (Matthias Klumpp)
* validator: Check web-application components for missing tags (Matthias Klumpp)
* Add API to retrieve the AppStream library version (Matthias Klumpp)
* apt: Allow fetching 128x128@2 HiDPI icons (Rico Tzschichholz)
Specification:
* Add the "url" launchable type (Dimitrios Christidis)
* spec: Clarify some icon details in the collection data (Marius Vollmer)
* spec: Allow <icon> tags in generic components (Marius Vollmer)
* spec: Specify the web-application component type (Matthias Klumpp)
Bugfixes:
* Fix endless loop when validating screenshots (Matthias Klumpp)
* ascli: Show a list of component-types when --help is passed to new-template (Matthias Klumpp)
* validator: Drop the wget fallback, making missing curl only an info (Matthias Klumpp)
* meson: Properly define header-file in gir (Rico Tzschichholz)
- Update to version 0.11.6:
Features:
* Improve screenshot validation (Matthias Klumpp)
* Allow to disable introspection (Matthias Klumpp)
Bugfixes:
* Revert back to the old build option names (Matthias Klumpp)
* Apply maintainer flags equally to C++ and C (Matthias Klumpp)
* Explicitly set C/C++ standard versions (Matthias Klumpp)
* vapi: Include the right header (Matthias Klumpp)
* xml: Correctly write screenshots tag again (Matthias Klumpp)
* Do not cache a screenshot that doesn't have images (Matthias Klumpp)
* xml: Support legacy screenshot tags again (Matthias Klumpp)
- Update to version 0.11.5:
Features:
* Restructure build feature flags (Matthias Klumpp)
* Allow disabling API documentation build (Matthias Klumpp)
Bugfixes:
* qt: Don't check bitness when finding AppStreamQt (Matthias Klumpp)
- Update to version 0.11.4:
Notes:
* This release switches the build system from CMake to Meson. You will need
Meson (>= 0.42) in order to build AppStream. Please test for any regressions.
Features:
* Implement Meson support (Matthias Klumpp)
* meson: Make build with sanitizers (partially) work again (Matthias Klumpp)
* meson: Add helper script for building documentation (Matthias Klumpp)
* docs: Always rebuild documentation on-demand (Matthias Klumpp)
* Update README for Meson (Matthias Klumpp)
* Implement cockpit-manifest launchable type (Matthias Klumpp)
* validator: Actually validate the type property of "launchable" tags (Matthias Klumpp)
* Allow to search the pool for components that provide a launchable (Matthias Klumpp)
* qt: Add new function to search components by launchable (Matthias Klumpp)
Specification:
* spec: New "cockpit-manifest" launchable type (Marius Vollmer)
Bugfixes:
* validator: Complain if a component has no ID (Matthias Klumpp)
- Update to version 0.11.3:
Bugfixes:
* qt: Don't crash when an error is found and no error string is passed (Aleix Pol)
* Propagate document context to the context object for XML files (Matthias Klumpp)
* validator: Correctly recognize "launchable" as valid tag (Matthias Klumpp)
- Update to version 0.11.2:
Features:
* cache: Refactor cache functions (Matthias Klumpp)
* Deduplicate origin/locale/arch with AsContext (Matthias Klumpp)
* Get rid of a couple of internal helper methods (Matthias Klumpp)
* cli: When using convert, always assume collection style for YAML (Matthias Klumpp)
Specification:
* Adjust docs to clearly state that licenses are SPDX expressions (Harald Sitter)
Bugfixes:
* qt: Improve Icon QDebug information (Aleix Pol)
* Resolve crash when serializing lots of XML documents (Matthias Klumpp)
* xml: Don't truncate translated entries after encounting a wrong locale (Matthias Klumpp)
* Set a real locale if locale is set to "ALL" (Matthias Klumpp)
* validator: Make ending dot in component name only a pedantic issue (Matthias Klumpp)
- Add patch to export the AppStreamQt target correctly:
* 0001-Fix-regression-from-153.patch
==== Mesa ====
Version update (17.3.3 -> 18.0.0)
Subpackages: Mesa-dri-devel Mesa-libEGL-devel Mesa-libEGL1 Mesa-libGL-devel Mesa-libGL1 Mesa-libglapi0 libgbm1 libwayland-egl1
- Update to 18.0.0-rc3
* includes significant improvements for OpenGL and Vulkan support
and performance.
- supersedes U_intel-Add-more-Coffee-Lake-PCI-IDs.patch
- Remove dependency on clang-devel-static. (bnc#1065464)
* It was removed, clang-devel now again provides everything
necessary as shared libraries.
- Require Mesa-dri-32bit and Mesa-gallium-32bit by Mesa-32bit. It
mirrors the requirement of the normal packages. (bnc#1078261)
==== Mesa-drivers ====
Version update (17.3.3 -> 18.0.0)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_radeon libxatracker2
- Update to 18.0.0-rc3
* includes significant improvements for OpenGL and Vulkan support
and performance.
- supersedes U_intel-Add-more-Coffee-Lake-PCI-IDs.patch
- Remove dependency on clang-devel-static. (bnc#1065464)
* It was removed, clang-devel now again provides everything
necessary as shared libraries.
- Require Mesa-dri-32bit and Mesa-gallium-32bit by Mesa-32bit. It
mirrors the requirement of the normal packages. (bnc#1078261)
==== NetworkManager ====
Version update (1.8.6 -> 1.10.2)
Subpackages: NetworkManager-devel NetworkManager-lang libnm-glib-vpn1 libnm-glib4 libnm-util2 libnm0 typelib-1_0-NM-1_0 typelib-1_0-NMClient-1_0 typelib-1_0-NetworkManager-1_0
- Replace sysconfig with sysconfig-netconfig BuildRequires and
Requires, this is what we in reality need.
- Update to version 1.10.2:
+ Added support for 'onlink' IPv4 routes attribute.
+ Wait longer for the carrier to come up after a MTU change.
+ Implemented abstraction for team connections that exposes team
configuration items as distinct properties.
+ Added basic support for tc queueing disciplines and filters.
+ Introduced an Update2() D-Bus method to update connection
settings with more flexibility.
+ Many bug fixes and improvements.
- Changes from version 1.10.0:
+ NetworkManager includes now basic OpenVSwitch support, good
enough to be capable of setting up simple OpenVSwitch
configurations.
+ Added support for activating PPP connections on non-Ethernet
interfaces.
+ It is now possible to authenticate to a Wi-Fi network using WPS
(Wi-Fi Protected Setup).
+ Implemented support for Wi-Fi PMF (Protected Management Frames,
802.11w), which can be configured via the wifi-sec.pmf
property.
+ Now the maximum rate of wireless access points supporting
802.11 is properly calculated and exposed on D-Bus.
+ Background scanning is now disabled for non-WPA-Enterprise
Wi-Fi networks.
+ Added support for the Bluetooth NAP (Network Access Point)
profile.
+ Added support for disabling connectivity checking via the D-Bus
interface.
+ The internal DHCP client now understands the domain-search
option.
+ Bridge connections support the group-forward-mask property.
+ NetworkManager can now configure multiple IPv6 default routes
received through RA and each gets configured with the announced
preference.
+ It is possible to specify the routing table for each static
route.
+ Support specifying a explicit routing table for any
non-static-route, including routes from DHCP, device-routes,
IPv6 autoconf.
+ Device are left configured when a user sets them as unmanaged
by NetworkManager.
+ New connection.auth-retry property to configure how often
authentication is prompted before failing the configuration.
+ The platform code that handles synchronization with kernel
status via netlink has been reworked and is more efficient.
+ Allowed the update of connections that have an associated
ifcfg-rh routing rules file.
+ Non-UTF8 properties are now escaped when they are exported on
D-Bus.
+ NetworkManager-wait-online.service now starts
NetworkManager.service if needed.
+ The MAC address for bond connections can be changed in nmtui.
+ Fixed dependency problems when setting the MTU of VLAN and
master devices.
+ The systemd-resolved DNS plugin properly handles the DNS
priority setting.
+ Fixed setting a DHCP timeout greater than 60 seconds
(dhclient).
+ Fixed some memory leaks.
+ Many other bug fixes and improvements.
- Rebase networkmanager-obs-net.patch and
nm-dont-overwrite-resolv-conf.patch.
- Drop nm-disconnect-proxy-signals.patch and
nm-vpn-remote-connection-disconnect-signals.patch: Fixed
upstream.
==== SUSEConnect ====
- Repackage gem
==== apr ====
Subpackages: apr-devel libapr1
- ignore PowerPC transient test failures
==== bash ====
Subpackages: bash-doc bash-lang libreadline7 readline-devel readline-doc
- Add patches 13-18 to bash-4.4-patches.tar.bz2
* 13: If a here-document contains a command substitution, the
command substitution can get access to the file descriptor used
to write the here-document.
* 14: Under some circumstances, functions that return via the
`return' builtin do not clean up memory they allocated to keep
track of FIFOs.
* 15: Process substitution can leak internal quoting to the
parser in the invoked subshell.
* 16: Bash can perform trap processing while reading command
substitution output instead of waiting until the command
completes.
* 17: There is a memory leak when `read -e' is used to read a
line using readline.
* 18: Under certain circumstances (e.g., reading from /dev/zero),
read(2) will not return -1 even when interrupted by a signal.
The read builtin needs to check for signals in this case.
- partial cleanup with spec-cleaner
==== bluez ====
Subpackages: bluez-cups bluez-devel libbluetooth3
- Add disable_some_obex_tests.patch bypass boo#1078285 for PowerPC
==== ceph ====
Version update (13.0.0 -> 13.0.0.5171+g4d4101fe78)
Subpackages: librados2 librbd1
- Update to version 13.0.0-5171-g4d4101fe78:
+ spec file:
* change version number format
* define _defined_if_python2_absent if, and only if, building without
python2 bcond
- Update to version 13.0.0-5169-g26918cdcc9:
+ rebase to latest upstream master, including spec file changes:
* eliminate Python 2 dependencies (bsc#1076403)
N.B.: this has the consequence that we no longer build or ship
Python 2 versions of the Python bindings for librados, librbd,
libcephfs and librgw
* drop lowmem_builder bcond and rewrite associated code to be distro-agnostic
* move distro-conditional BuildRequires to appropriate section
* use more recent toolchain on RHEL 7
* ceph-base: put runtime dependencies in alphabetical order
* correct Group for python bindings subpackages
* move ceph-volume to ceph-osd and adjust systemd macros accordingly
* ceph-osd subpackage now requires lvm2 for ceph-volume
* ceph-test: peg version of ceph-common dependency
* drop deprecated scripts rcceph and ceph-crush-location
* fix permissions of rbd resource agent
- ceph-rpmlintrc: add lines to quash RPMLINT warnings
+ ceph-base.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/ceph/crypto/libceph_crypto_isal.so
+ librados2.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/ceph/libceph-common.so
+ ceph-base.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/libos_tp.so
+ ceph-base.x86_64: E: devel-file-in-non-devel-package (Badness: 50) /usr/lib64/libosd_tp.so
==== corosync ====
Subpackages: libcmap4 libcorosync_common4
- corosync exposes itself for a self-crash under rare circumstance(bsc#1078412)
Added: 0013-logging-Make-blackbox-configurable.patch
0014-logging-Close-before-and-open-blackbox-after-fork.patch
Modified: remove unncessary git commit messages
0001-coroapi-Use-size_t-for-private_data_size.patch
0002-fix-ifdown-udp.patch
0005-do-not-convert-empty-uid-gid-to-0.patch
0008-wd-fix-snprintf-warnings.patch
0010-qdevice-mv-free-str-after-port-validation.patch
0011-libcpg-Fix-issue-with-partial-big-packet-assembly.patch
0012-totemudp-u-Drop-truncated-packets-on-receive.patch
==== device-mapper ====
Subpackages: libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit
- clvmd: try to refresh device cache on the first failure
(bsc#978055, bsc#1076042)
+ bug-978055_clvmd-try-to-refresh-device-cache-on-the-first-failu.patch
==== evince ====
Version update (3.26.0+20171120.3955d480 -> 3.26.0+20180128.1bd86963)
Subpackages: evince-lang evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-psdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 nautilus-evince typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0
- Update to version 3.26.0+20180128.1bd86963:
+ shell: Fix media-player keys not working.
==== fltk ====
- added xcursor dependency [bsc#1077881]
==== gc ====
Version update (7.4.2 -> 7.6.4)
- Update to new upstream release 7.6.4
* Also enable the TSX workaround for i386 (Linux)
* Relax mark_mutex attribute needed to disable elision (Linux/x64)
* Process all PT_LOAD segments before PT_GNU_RELRO segments (Glibc)
* Add API function to calculate total memory in use by all GC blocks
* Add API function to set/modify GC log file descriptor (Unix)
* Add alt-stack registration support
* Implement the finalization extension API
* Implement thread suspend/resume API (Linux threads only)
==== gdm ====
Subpackages: gdm-lang gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Add back translation-update-upstream as BuildRequires since
SLE still needs it.
- Update gdm-disable-wayland-on-unsupported-chipsets.patch: examine
filename argument in gdm_settings_desktop_backend_new instead of
examining GDM_RUNTIME_CONF (bsc#1078030).
==== gegl-unstable ====
Version update (0.3.26 -> 0.3.28)
Subpackages: gegl-0_3 gegl-0_3-lang libgegl-0_3-0
- Update to version 0.3.28:
+ Core: A new GeglStats object, which provides realtime
statistics/profiling for use in UIs. Automatically
copy-on-write clone input buffers for auto-threading of
operations.
+ Buffer:
- Many significant optimizations as well as a correctness
improvement, mipmap scaling and rendering is now done
correctly in linear space, thus GIMP will not only produce
the right results but also avoid gamma errors in thumbnails
and viewport.
- Among the signifcant performance boosters are per
buffer-instance tile queues, adaptive sampler pre-fetch
caching and dedicated code paths for fetching columns of
pixels. Along with many multi-threadedness improvements due
to more significant testing.
+ Operations:
- Mipmap tuning and performance improvements to gaussian blur
added dedicated code paths for nearest sampler in transform
ops.
- More generic RGBE file handling.
- ff-load: permit decoding audio files as well as video files.
- Various code cleanups.
==== gjs ====
Version update (1.50.2 -> 1.50.4)
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Update to version 1.50.4:
+ Gnome Shell crash with places-status extension when you plug an
USB device (glgo#gjs#33 and glgo#gjs#38).
- Changes from version 1.50.3:
+ GJS will now log a warning when a GObject is accessed in
Javascript code after the underlying object has been freed in
C. (This used to work most of the time, but crash
unpredictably.) We now prevent this situation which, is usually
by caused a memory management bug in the underlying C library.
+ Closed bugs and merge requests:
- Add checks for GObjects that have been finalized
(glgo#gjs#21, glgo#gjs#23, glgo#gjs#25, glgo#gjs#28,
glgo#gjs#33).
- Test "Cairo context has methods when created from a C
function" fails (glgo#gjs#27, glgo#gjs#35).
- Various fixes from the master branch for rare crashes.
==== glib2 ====
Version update (2.54.2 -> 2.54.3)
Subpackages: glib2-devel glib2-lang glib2-tools libgio-2_0-0 libgio-2_0-0-32bit libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgmodule-2_0-0-32bit libgobject-2_0-0 libgobject-2_0-0-32bit libgthread-2_0-0 libgthread-2_0-0-32bit
- Update to version 2.54.3:
+ Bugs fixed: bgo#691436, bgo#761102, bgo#776147, bgo#779182,
bgo#782057, bgo#785113, bgo#788990, bgo#789637, bgo#789894,
bgo#790030, bgo#790093, bgo#790126, bgo#790829, bgo#790934,
bgo#791235, bgo#791267, bgo#791296, bgo#791325, bgo#791334,
bgo#791337, bgo#791720, bgo#791744, bgo#791754, bgo#791906.
+ Updated translations.
- Drop glib2-gtester-report-py3.patch: Fixed upstream.
- Add glib2-gmain-partial-revert.patch: gmain: Partial revert of
recent wakeup changes to gmain.c (bgo#761102).
==== gmime ====
Version update (3.0.5 -> 3.2.0)
- Update to version 3.2.0:
+ No news available.
==== gnome-builder ====
Version update (3.26.3 -> 3.26.4)
Subpackages: gnome-builder-lang gnome-builder-plugin-beautifier gnome-builder-plugin-clang gnome-builder-plugin-cmake gnome-builder-plugin-ctags gnome-builder-plugin-devhelp gnome-builder-plugin-gettext gnome-builder-plugin-gnome-code-assistance gnome-builder-plugin-html-completion gnome-builder-plugin-jedi gnome-builder-plugin-jhbuild gnome-builder-plugin-mingw gnome-builder-plugin-symbol-tree gnome-builder-plugin-sysmon gnome-builder-plugin-todo gnome-builder-plugin-vala-pack gnome-builder-plugin-xml-pack
- Update to version 3.26.4:
+ A number of correctness and memory leaks were fixed in the
semantic highlighter, project tree, clang, rustup, vala-pack,
code-index, config manager and configs, and git.
+ The meson plugin now uses "meson" "introspect" instead of the
legacy "mesonintrospect" utility.
+ Fixes for deprecated API usage in Gtk+.
+ Block selection has been fixed in the terminal plugin.
+ Postbuild support in configurations was fixed to no longer
run prebuild commands a second time.
+ The flatpak plugin now passes --command to build-finish. This
fixes an issue where the wrong binary would get activated when
exporting a project.
+ Fixes for -Wincompatible-pointer-type changes from recently
upstreamed type propagation in g_object_ref().
+ Updated translations.
==== gnome-color-manager ====
Subpackages: gnome-color-manager-lang
- Add 0001-build-Set-PKGDATADIR-to-gnome-color-manager.patch:
data files where looked up in the wrong directory
==== gnome-documents ====
Version update (3.26.1 -> 3.26.2)
Subpackages: gnome-documents-lang gnome-documents_books-common gnome-shell-search-provider-documents
- Update to version 3.26.2:
+ Use 'var' for symbols that are exported.
+ Use the standard dialect of String.prototype.replace.
+ Explicitly specify the Gepub API version.
+ Updated translations.
==== gnome-logs ====
Version update (3.26.2 -> 3.26.3)
Subpackages: gnome-logs-lang
- Update to version 3.26.3:
+ Avoid using hard-coded colors.
+ Updated translations.
- Drop gnome-logs-nb-translations.patch: Fixed upstream.
==== gnome-online-accounts ====
Subpackages: gnome-online-accounts-lang libgoa-1_0-0 libgoa-backend-1_0-1 typelib-1_0-Goa-1_0
- Don't enable Media Server option. It is an experimental untested
feature that was only used in GNOME Photos and the GNOME Photos
maintainer recommended we disable it, so stop passing
- -enable-media-server to configure, pass --disable-media-server
instead.
==== gnome-power-manager ====
Version update (3.25.90 -> 3.26.0)
Subpackages: gnome-power-manager-lang
- Update to version 3.26.0:
+ trivial: Remove the build-api helper script.
+ Remove po/Makevars.
+ build: Install appstream metadata to non-deprecated location.
+ Updated translations.
- Drop gnome-patch-translation BuildRequires: We do not have any
patches, so not needed.
- Drop gnome-applets-brightness and gnome-applets-inhibit-powersave
Obsoletes: No current openSUSE or SUSE have ever provided them.
- Conditionally apply translations-update-upstream BuildRequires
and macro for non-openSUSE only.
- Drop update-desktop-files BuildRequires and stop using
suse_update_desktop_file macro, no longer needed.
- Pass enable-tests=false to meson, ensure we do not build the
tests.
- Do minor spec cleanup.
==== gnome-shell ====
Version update (3.26.2+20171218.15b1810a6 -> 3.26.2+20180130.0d9c74212)
Subpackages: gnome-shell-browser-plugin gnome-shell-calendar gnome-shell-lang
- Update to version 3.26.2+20180130.0d9c74212:
+ padOsd: Ensure to pick pad devices only.
+ network: Fix visibility of VPN section.
+ dnd: Declare restore location variables.
+ appDisplay: don't try to close the popup menu that is already
destroyed.
+ background: don't leak wall clock when background changes.
+ dateMenu:
- Fix possible crash with unknown locations.
- Ignore malformed world-clocks settings.
+ dash: Do not shadow ClutterActor's destroy().
+ Updated translations.
- Update _service url to new gitlab home.
- Drop gnome-shell-network-fix-visibility-VPN.patch: Fixed
upstream.
==== gstreamer-plugins-ugly ====
Subpackages: gstreamer-plugins-ugly-lang
- Add gst-ugly-amrnwbdec-fixes.patch: Fixes for amr plugins, only
built on third party.
==== ibus ====
Subpackages: ibus-branding-openSUSE-KDE ibus-gtk ibus-gtk-32bit ibus-gtk3 ibus-lang libibus-1_0-5 libibus-1_0-5-32bit python-ibus typelib-1_0-IBus-1_0
- Change xim.d-ibus-121: Unset LC_CTYPE to make LANG variable
can change system locale successful(boo#1076854).
==== libcaca ====
Version update (0.99.beta19+git20171002.da28e96 -> 0.99.beta19.git20171003)
- Deleted _service and use spec file to download git version.
- Shorten version field to joliet usable length.
- Change python headers to allow bindings to build normally with
python3.
- Use %license for license document.
==== libchamplain ====
Subpackages: libchamplain-0_12-0 typelib-1_0-Champlain-0_12
- Add
libchamplain-Fix-wrapping-champlain_view_x_to_longitude.patch:
Fix wrapping in champlain_view_x_to_longitude. Previous
implementation assumed that after using x_to_wrap_x further
wrapping would be needed only if x + priv->viewport_x >= width.
- Do minor spec cleanup, use autosetup, make_build and make_install
macros, drop obsolete and unused BUILD_FROM_VCS conditional
gnome-common and gtk-doc BuildRequires and autogen.sh call.
==== libdazzle ====
Version update (3.26.2 -> 3.26.3)
Subpackages: libdazzle-1_0-0 typelib-1_0-libdazzle-1_0
- Update to vresion 3.26.3:
+ A number of fixes to DzlSignalGroup to be more re-entrant safe
and handle disposal cycles better.
+ DzlPreferences is more aggressive about protecting against
widget disposal.
+ A static inline dzl_clear_signal_handler() was backported for
use in other backports from master.
+ A number of protections were added to DzlDirectoryReaper to
protect against potentially following through symlinks.
+ Max age in DzlDirectoryReaper was changed to always ensure a
positive value for use in date comparisons.
+ A leak of GFile instances in the directory reaper was fixed.
- Drop unused base define.
==== libgexiv2 ====
- Allow to enable/disable building of python2/python3 bindings via
build conditions to accomodate potential python2-less products:
+ BuildRequire python-rpm-macros: helper macros from the
python-singlespec initiative. Even though the package can't be
built completley with singlespec due to the additional
libraries, we can still make good use of the helpers.
+ Replace python-devel and python3-devel BuildRequires with
python_module devel.
+ Replace python-gobject and python3-gobject BuildRequires with
python_module gobjecta.
- Run test suite in %check section.
- Correct URL to point to https://wiki.gnome.org/Projects/gexiv2.
==== liborcus ====
Version update (0.13.1 -> 0.13.2)
- Version update to 0.13.2:
* Various small fixes
* Improvements in Excel 2003 XML import iflter
==== libpng12 ====
Subpackages: libpng12-0 libpng12-0-32bit libpng12-devel
- check with -j1, be explicit
- Fix SRPM group and grammar issues.
==== libqt5-qtbase ====
Subpackages: libQt5Concurrent-devel libQt5Concurrent5 libQt5Core-devel libQt5Core-private-headers-devel libQt5Core5 libQt5DBus-devel libQt5DBus5 libQt5Gui-devel libQt5Gui-private-headers-devel libQt5Gui5 libQt5Network-devel libQt5Network5 libQt5OpenGL-devel libQt5OpenGL5 libQt5PlatformHeaders-devel libQt5PrintSupport-devel libQt5PrintSupport5 libQt5Sql-devel libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-postgresql libQt5Sql5-sqlite libQt5Sql5-unixODBC libQt5Test-devel libQt5Test5 libQt5Widgets-devel libQt5Widgets5 libQt5Xml-devel libQt5Xml5 libqt5-qtbase-common-devel libqt5-qtbase-devel libqt5-qtbase-platformtheme-gtk3
- Add 0001-QSimpleDrag-Fix-mouse-release-coords-for-delayed-eve.patch
to fix a bug causing the wrong desktop icon to look hovered
after dragging an icon on the desktop in plasma (QTBUG-66103).
- Moved 0001-Avoid-providing-bad-pixelDeltas-on-X11.patch to use a patch
number in the 1000-1999 range since it was approved in the 5.9 branch
upstream.
- Add 0001-Avoid-providing-bad-pixelDeltas-on-X11.patch to avoid using
the hardcoded resolution that libinput is giving as a real pixel
delta (QTBUG-59261).
- Add patches to fix the custom page size handling in the print dialog as
well as other printer issues (QTBUG-58733, boo#994809):
* 0002-CUPS-Use-default-cups-job-priority-instead-of-50.patch
* 0003-QPageSetupWidget-setPrinter-Use-printdevice-default-paper-size.patch
* 0004-Fix-custom-page-size-handling-in-the-Unix-print-dial.patch
* 0005-CUPS-Refactor-the-code-a-bit.patch
* 0006-Refactor-QPPDOptionsModel-a-bit.patch
* 0007-CUPS-Fix-advanced-options-cancel-of-the-print-properties-dialog.patch
* 0008-CUPS-Fix-conflict-handling.patch
* 0009-CUPS-Use-printer-job-sheets-as-default-instead-of-none-none.patch
* 0010-CUPS-Use-printer-job-billing-as-default-instead-of-the-empty-string.patch
* 0011-CUPS-Use-printer-job-hold-until-as-default-instead-of-the-nohold.patch
* 0012-Unix-Fix-usability-of-the-print-properties-dialog.patch
* 0013-cups-Dont-show-InstallableOptions-in-the-advanced-properties-tab.patch
* 0014-CUPS-Enable-printing-arbitrary-pages-and-page-ranges.patch
* 0015-CUPS-Dont-show-choices-that-conflict-with-the-printer-installed-options.patch
* 0016-CUPS-Rework-set-clearCupsOption-API.patch
* 0017-Cups-Print-Dialog-Change-the-message-box-titles-to-C.patch
* 0018-Fix-build-due-to-missing-QDebug-include.patch
- Dropped 0001-Fix-custom-page-size-handling-in-the-Unix-print-dial.patch
which is now included in the previous patchset with order 0004.
==== librsvg ====
Version update (2.42.0 -> 2.42.2)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0
- Update to version 2.42.2:
+ Don't crash when feConvolveMatrix doesn't specify orderx/ordery
attributes (glgo#librsvg#193).
+ Parse stroke-dasharray property correctly. This code is in Rust
now; yay! (glgo#librsvg#136).
+ Don't render markers if they are zero-sized, per the spec.
+ Performance: eliminate a bunch of string copies during parsing.
+ Update rust-cssparser to 0.23.
- Update to version 2.42.1:
+ Parse the transform attribute in a faster/simpler way. We now
use rust-cssparser instead of lalrpop. This is especially
noticeable on SVGs with lots of "transform" attributes
(glgo#librsvg#182).
+ Don't crash when setting a gradient on a zero-sized object
(glgo#librsvg#187).
+ Inherit attributes in the <svg> element properly
(glgo#librsvg#181).
+ rsvg-convert - fix error reporting when reading from stdin
(glgo#librsvg#160).
+ Fix detection of image type in "data:" URIs when they don't
specify a MIME type (glgo#librsvg#152).
+ More stringent parsing of path data; better tests
(glgo#librsvg#133).
+ Fix typos and links in the .md files.
==== libzypp ====
Version update (17.1.1 -> 17.1.2)
- Fix crash when installing broken rpm packages (bsc#1078284)
- Testcase: Minor fix writing update testcases
- version 17.1.2 (0)
==== linux-glibc-devel ====
Version update (4.14 -> 4.15)
- Update to kernel headers 4.15
- Add support for riscv
==== llvm5 ====
Subpackages: clang5 libLLVM5 libLTO5 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang5 libomp5-devel
- Cleanup %ifarch conditions, remove targets unintentionally added
to s390/s390x. (bnc#1078436)
- Limit the amount of parallel link jobs, but no longer limit
compile jobs. This should prevent running out of memory during
linking while not longer slowing down compilation.
- Remove build dependency on procps
- Reduce disk size requirement to 30GB in _constraints. We no
longer need that much since we stopped building static libraries.
==== lvm2 ====
Subpackages: liblvm2app2_2 liblvm2cmd2_02
- clvmd: try to refresh device cache on the first failure
(bsc#978055, bsc#1076042)
+ bug-978055_clvmd-try-to-refresh-device-cache-on-the-first-failu.patch
==== mutter ====
Version update (3.26.2+20171231.0bd1d7cf0 -> 3.26.2+20180127.d32d358a6)
Subpackages: libmutter-1-0 mutter-data mutter-lang
- Update to version 3.26.2+20180127.d32d358a6:
+ monitor: Set MINIMUM_LOGICAL_HEIGHT to 480.
+ Don't attempt to get monitor geometry on non-existent monitors.
+ wayland:
- Shortcuts inhibitor requires a window.
- Ensure wl_shell_surfaces are set reactive.
- Only send full sequences of touch events to clients.
+ input-settings/x11: Fix tap-and-drag libinput property name
+ clutter/evdev: Ignore unknown touch points
+ Revert "window: Raise and lower tile match in tandem"
+ Updated translations.
- Update _service url to new gitlab home.
==== ncurses ====
Version update (6.0 -> 6.1)
Subpackages: libncurses6 ncurses-devel ncurses-utils tack terminfo terminfo-base
- Correct include path for wide chraracter header files for ABI 6.1
- Update to ncurses 6.1 (patch 20180127)
+ updated release notes
+ amend a warning message from tic which should have flagged misuse
of "XT" capability in "screen" terminal description.
> terminfo changes:
+ trim "XT" from screen entry, add comments to explain why it was
not suitable -TD
+ modify iterm to use xterm+sl-twm building block -TD
+ mark konsole-420pc, konsole-vt100, konsole-xf3x obsolete reflecting
konsole's removal in 2008 -TD
+ expanded the history section of konsole to explain its flawed
imitation of xterm's keyboard -TD
+ use xterm+x11mouse in screen.* entries because screen does not yet
support xterm's 1006 mode -TD
+ add nsterm-build400 for macOS 10.13 -TD
+ add ansi+idc1, use that in ansi+idc adding dch for consistency -TD
+ update vte to vte-2017 -TD
+ add ecma+strikeout to vte-2017 -TD
+ add iterm2-direct -TD
+ updated teraterm, added teraterm-256color -TD
+ add mlterm-direct -TD
+ add descriptions for ANSI building-blocks -TD
- Modify patch ncurses-5.9-ibm327x.dif
- Rename patch ncurses-6.0.dif to new name ncurses-6.1.dif
- Modify patch ncurses-6.1.dif
- Add ncurses patch 20180121 pre-release 6.1
> terminfo changes:
+ add xterm+noalt, xterm+titlestack, xterm+alt1049, xterm+alt+title
blocks from xterm #331 -TD
+ add xterm+direct, xterm+indirect, xterm-direct entries from xterm
[#331] -TD
+ modify xterm+256color and xterm+256setaf to use correct number of
color pairs, for ncurses 6.1 -TD
+ add rs1 capability to xterm-256color -TD
+ modify xterm-r5, xterm-r6 and xterm-xf86-v32 to use xterm+kbs to
match xterm #272, reflecting packager's changes -TD
+ remove "boolean" Se, Ss from st-0.7 -TD
+ add konsole-direct and st-direct -TD
+ remove unsupported "Tc" capability from st-0.7; use st-direct if
direct-colors are wanted -TD
+ add vte-direct -TD
+ add XT, hpa, indn, and vpa to screen, and invis, E3 to tmux (patch by
Pierre Carru)
+ use xterm+sm+1006 in xterm-new, vte-2014 -TD
+ use xterm+x11mouse in iterm, iterm2, mlterm3 because xterm's 1006
mode does not work with those programs. konsole is debatable -TD
+ add "termite" entry (report by Markus Pfeiffer) -TD
> merge branch begun April 2, 2017 which provides these features:
+ support read/write new binary-format for terminfo which stores
numeric capabilities as a signed 32-bit integer. The test programs
such as picsmap, ncurses were created or updated during 2017 to use
this feature.
+ the new format is written by the wide-character configuration of
tic when it finds a numeric capability larger than 32767.
+ other applications such as infocmp built with the wide-character
ncurses library work as expected.
+ applications built with the "narrow" (8-bit) configuration will
read the new format, but will limit those extended values to 32767.
+ in either wide/narrow configuration, the structure defined in
term.h still uses signed 16-bit values.
+ because it is incompatible with the legacy (mid-1980s) binary format,
a new magic value is provided for the "file" program.
+ the term.5 manual page is updated to describe this new format.
+ the limit on file-size for compiled terminfo is increased in the
wide-character configuration to 32768.
- Add ncurses patch 20180120
+ build-fix in picsmap.c for stdint.h existence.
+ add --disable-stripping option to configure scripts.
+ modify ncurses-examples to install test-scripts in the data directory.
+ work around tool-breakage in Debian 9 and later by invoking
gprconfig to specify the C compiler to be used by gnatmake,
and conditionally suppressing Library_Options line for static
libraries.
+ bump the compat level for test-packages to 7, i.e., Debian 5.
- Add tack patch 1.08-20170818
==== procps ====
Subpackages: libprocps6
- Remove patch procps-ng-3.3.12-sysctl-iobuf-write.patch (bsc#1077746)
- Add patches
0001-Preload-sysctl-lines-even-if-longer-than-stdio-buffe.patch
0002-Add-flexible-buffered-I-O-based-on-fopencookie-3.patch
0003-Use-new-standard-I-O-for-reading-writing-sysctl-valu.patch
from my project https://gitlab.com/bitstreamout/procps/tree/procio
which implements a flexible buffer for reading and writing values
below /proc/sys (bsc#1039941)
==== python-pyudev ====
- fix Requires and BuiildRequires
==== rsync ====
Version update (3.1.2 -> 3.1.3)
- Update to version 3.1.3 [bsc#1076503]:
Protocol: 31 (unchanged)
- SECURITY FIXES:
* Fixed a buffer overrun in the protocol's handling of xattr names and
ensure that the received name is null terminated.
* Fix an issue with --protect-args where the user could specify the arg
in the protected-arg list and short-circuit some of the arg-sanitizing
code.
- BUG FIXES:
* Don't output about a new backup dir without appropriate info verbosity.
* Fixed some issues with the sort functions in support/rsyncstats script.
* Added a way to specify daemon config lists (e.g. users, groups, etc)
* that contain spaces (see "auth users" in the latest rsyncd.conf manpage).
* If a backup fails (e.g. full disk) rsync exits with an error.
* Fixed a problem with a doubled --fuzzy option combined with --link-dest.
* Avoid invalid output in the summary if either the start or end time had
an error.
* We don't allow a popt alias to affect the --daemon or --server options.
* Fix daemon exclude code to disallow attribute changes in addition to
disallowing transfers.
* Don't force nanoseconds to match if a non-transferred, non-checksummed
file only passed the quick-check w/o comparing nanosecods.
- ENHANCEMENTS:
* Added the ability for rsync to compare nanosecond times in its
file-check
comparisons, and added support nanosecond times on Mac OS X.
* Added a short-option (-@) for --modify-window.
* Added the --checksum-choice=NAME[,NAME] option to choose the checksum
algorithms.
* Added hashing of xattr names (with using -X) to improve the handling of
files with large numbers of xattrs.
* Added a way to filter xattr names using include/exclude/filter rules
(see the --xattrs option in the manpage for details).
* Added "daemon chroot|uid|gid" to the daemon config (in addition to the
old chroot|uid|gid settings that affect the daemon's transfer process).
* Added "syslog tag" to the daemon configuration.
* Some manpage improvements.
- DEVELOPER RELATED:
* Tweak the "make" output when yodl isn't around to create the man pages.
* Changed an obsolete autoconf compile macro.
* Support newer yodl versions when converting man pages.
- Dropped patches fixed upstream:
* rsync-CVE-2017-16548.patch
* rsync-3.1.2-CVE-2018-5764.patch
- Refreshed patches:
* rsync-send_error_to_sender.patch
==== vala ====
Version update (0.38.5 -> 0.38.6)
Subpackages: libvala-0_38-0
- Update to version 0.38.6:
+ Various bug fixes:
- girparser:
. Set NoAccessorMethod for non-readable and construct-only
properties.
. Ignore conflicting closure/destroy indexes.
. Don't accept methods as property-accessor which throw
errors (bgo#792998).
- codegen:
. Infer error parameter from abstract/virtual base methods
(bgo#614294).
. Fix return-type for cancelled async creation methods of
classes (bgo#792942).
- vala: Variadic constructors without a real first parameter
are not allowed.
- libvaladoc: Keep bootstrap-support with valac >= 0.16.1.
+ Bindings:
- gstreamer-1.0: Update from 1.13+ git master.
- gtk+-4.0: Only override type of "event" parameters.
==== vim ====
Version update (8.0.1428 -> 8.0.1442)
Subpackages: gvim vim-data
- Updated to revision 1442, fixes the following problems
* Crash when calling term_start() with empty argument.
* Crash when term_start() fails.
* MS-Windows: vimtutor fails if %TMP% has special chars.
* After ":copen" can't get the window-ID of the quickfix
window. (FalacerSelene)
* Illegal memory access after undo. (Dominique Pelle)
* GTK: :promtfind does not put focus on text input. (Adam Novak)
* Memory leak in test_arabic.
* Not enough information about what Python version may work.
* Pkg-config doesn't work with cross compiling.
* Filetype detection test not updated for change.
* If cscope fails a search Vim may hang.
* Terminal window: some vterm responses are delayed.
* Using ":undo 0" leaves undo in wrong state.
* Using pointer before it is set.
==== wicked ====
Version update (0.6.43 -> 0.6.44)
Subpackages: libwicked-0-6 wicked-service
- version 0.6.44
- dhcp4: use rfc4361 client-id as new default for ethernet on sle15
(fate#323576). It can be also enabled/disabled in wicked-config(5).
- client: fixed broken wicked arp utility command (bsc#1078245)
- cleanup: add mising/explicit designated field initializers
- pkgconfig: fix to request libnl3 instead of libnl1
- dbus: add missing DBUS_ERROR_FAILED type to a dbus_set_error call
and enforce formatting input as string when an extension did not
returned any error message.
- Removed patch included in the source archive
[- 0001-wickedd-explicitly-unbind-slaves-on-deletion.patch]
==== xkeyboard-config ====
Version update (2.22 -> 2.23.1)
Subpackages: xkeyboard-config-lang
- U_Fix-typo-in-Polish-symbols-file.patch
* fixes broken polish symbols file (fdo#104904)
- Update to version 2.23.1
* Fixing the build
- Update to version 2.23
* Added it(intl), it(scn) and us(scn)
* Minor fidvorak adjustment
* Typo fixed
* Refreshed the default Arabic keyboard layout
* more robust comment handling
* replace '?' (0x10002bc) with '?' (0x100055a) in armenian layout
* Add polish layout for use glagolica script
* Use default compose key with Finnish keyboard
* incomplete Finnish fix patch
* Prerelease translation sync
* Added International Phonetic Alphabet
- supersedes U_xkeyboard-config_fix-typo-hungarian.patch
==== yast2-ftp-server ====
Version update (3.3.0 -> 4.0.0)
- SuSEFirewall2 replaced by firewalld (fate#323460)
- 4.0.0
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
4
7
08 Feb '18
On Thursday, 8 February 2018 8:39 Dreyer, Dr. Joern wrote:
> Hi I just checked:
> > zypper dup
>
> Loading repository data...
> Reading installed packages...
> Computing distribution upgrade...
>
> Nothing to do
You didn't actually answer my question.
Please stop replying off-list. Next time you do, I'm going to ignore the
reply.
Michal Kubeček
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
3
08 Feb '18
On Thursday, 8 February 2018 8:29 Dreyer, Dr. Joern wrote:
> Hi,
>
> I have the same problem here but with older Intel graphics HD4000.
>
> I removed /var/lib/sddm/.cache. ~/.cache/mesa_shader_cache did not
> exist on my system. Now after reboot I get normal login screen from
> KDE, but after login background is black, konsole terminals open, but
> panel crashes. In kontact, the panels showing kmail and news are
> black. All other display correctly. Firefox works as normal.
>
> Any further ideas?
You don't mention if you have updated Mesa packages to those with
bsc#1079465 fixed (check the changelog).
Michal Kubeček
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
08 Feb '18
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.
Packages changed:
Mesa
Mesa-drivers
bluedevil5 (5.11.95 -> 5.12.0)
breeze (5.11.95 -> 5.12.0)
breeze-gtk (5.11.95 -> 5.12.0)
breeze4-style (5.11.95 -> 5.12.0)
ccache (3.3.4 -> 3.3.6)
discover (5.11.95 -> 5.12.0)
drbd-utils
drkonqi5 (5.11.95 -> 5.12.0)
gfxboot (4.5.26 -> 4.5.29)
icecream-monitor (3.0.1 -> 3.1.0)
jhead
kactivitymanagerd (5.11.95 -> 5.12.0)
kcm_sddm (5.11.95 -> 5.12.0)
kde-cli-tools5 (5.11.95 -> 5.12.0)
kde-gtk-config5 (5.11.95 -> 5.12.0)
kde-user-manager (5.11.95 -> 5.12.0)
kernel-source (4.15.0 -> 4.15.1)
kgamma5 (5.11.95 -> 5.12.0)
khotkeys5 (5.11.95 -> 5.12.0)
kinfocenter5 (5.11.95 -> 5.12.0)
kmenuedit5 (5.11.95 -> 5.12.0)
kmod (24 -> 25)
kscreen5 (5.11.95 -> 5.12.0)
kscreenlocker (5.11.95 -> 5.12.0)
ksshaskpass5 (5.11.95 -> 5.12.0)
ksysguard5 (5.11.95 -> 5.12.0)
kwayland-integration (5.11.95 -> 5.12.0)
kwin5 (5.11.95 -> 5.12.0)
libkdecoration2 (5.11.95 -> 5.12.0)
libkscreen2 (5.11.95 -> 5.12.0)
libksysguard5 (5.11.95 -> 5.12.0)
libqt5-qtlocation
libqt5-qtwebengine
mercurial (4.4.1 -> 4.5)
milou5 (5.11.95 -> 5.12.0)
oxygen5 (5.11.95 -> 5.12.0)
plasma-nm5 (5.11.95 -> 5.12.0)
plasma5-addons (5.11.95 -> 5.12.0)
plasma5-desktop (5.11.95 -> 5.12.0)
plasma5-integration (5.11.95 -> 5.12.0)
plasma5-openSUSE
plasma5-pa (5.11.95 -> 5.12.0)
plasma5-workspace (5.11.95 -> 5.12.0)
polkit-kde-agent-5 (5.11.95 -> 5.12.0)
powerdevil5 (5.11.95 -> 5.12.0)
python-cryptography
qpdf (7.1.0 -> 7.1.1)
rdesktop
shotwell (0.27.2 -> 0.27.4)
squid
systemsettings5 (5.11.95 -> 5.12.0)
yast2-instserver (4.0.0 -> 4.0.1)
=== Details ===
==== Mesa ====
Subpackages: Mesa-dri-devel Mesa-libEGL-devel Mesa-libEGL1 Mesa-libGL-devel Mesa-libGL1 Mesa-libglapi0 libgbm1 libwayland-egl1
- u_mesa-st-shader_cache-restore-num_tgsi_tokens-when-loading.patch
* Fix crash when loading shader. (bnc#1079465)
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_radeon libxatracker2
- u_mesa-st-shader_cache-restore-num_tgsi_tokens-when-loading.patch
* Fix crash when loading shader. (bnc#1079465)
==== bluedevil5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: bluedevil5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== breeze ====
Version update (5.11.95 -> 5.12.0)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== breeze-gtk ====
Version update (5.11.95 -> 5.12.0)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== breeze4-style ====
Version update (5.11.95 -> 5.12.0)
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== ccache ====
Version update (3.3.4 -> 3.3.6)
- Update to version 3.3.6:
* Improved instructions on how to get cache hits between different
working directories.
- Changes for version 3.3.5:
* Documented how automatic cache cleanup works.
* Fixed a regression where the original order of debug options
could be lost. This reverts the ?Improved parsing of -g*
options? feature in ccache 3.3.
* Multiple -fdebug-prefix-map options should now be handled
correctly.
* Fixed matching of directories in the ignore_headers_in_manifest
configuration option.
* Fixed detection of missing argument to -opt/--options-file.
* ccache now bails out when building a precompiled header if any
of the corresponding header files have an updated timestamp.
This fixes complaints from clang.
* Fixed a bug related to erroneously storing a dependency file
with absolute paths in the cache on a preprocessed hit.
* ccache -c/--cleanup now works like documented: it just
recalculates size counters and trims the cache to not exceed
the max size and file number limits. Previously, the forced
cleanup took ?limit_multiple? into account, so that ccache
- c/--cleanup by default would trim the cache to 80% of the max
limit.
* ccache no longer ignores linker arguments for clang since clang
warns about them.
* Plugged a couple of file descriptor leaks.
* Fixed a bug where ccache would skip hashing the compiler
argument following a -fno-working-directory,
- fworking-directory, -nostdinc, -nostdinc++, -remap or
- trigraphs option in preprocessor mode.
- cleanup with spec-cleaner
==== discover ====
Version update (5.11.95 -> 5.12.0)
Subpackages: discover-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Too many changes to list here
- Build with gcc7 on Leap 42.3, gcc6 no longer works because of a
change to the default compiler flags in openSUSE:Leap:42.3:Update
(boo#1077345)
==== drbd-utils ====
- bsc#1077176, pass the string to backend.
- bsc#1058770, fix kernel trace while starting
sync stacked drbd
- Add patch Fix-no-bitmap-allocate-for-stacked-res.patch
- Add patch Support-pass-force-to-dump-md.patch
==== drkonqi5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: drkonqi5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== gfxboot ====
Version update (4.5.26 -> 4.5.29)
- Translated using Weblate (Indonesian)
- 4.5.29
- Translated using Weblate (Danish)
- 4.5.28
- Translated using Weblate (Catalan)
- 4.5.27
==== icecream-monitor ====
Version update (3.0.1 -> 3.1.0)
- Update to version 3.1.0:
- added scheduler option
- summary view improvements
- bugfixes
==== jhead ====
- Added CVE-2018-6612.patch: Fix of a heap-based buffer over-read
(boo#1079349 CVE-2018-6612)
==== kactivitymanagerd ====
Version update (5.11.95 -> 5.12.0)
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Actually quit threads nicely (kde#385533)
==== kcm_sddm ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kcm_sddm-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kde-cli-tools5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kde-cli-tools5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Require KDE Frameworks 5.42 and Qt 5.9
==== kde-gtk-config5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kde-gtk-config5-gtk2 kde-gtk-config5-gtk3 kde-gtk-config5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kde-user-manager ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kde-user-manager-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kernel-source ====
Version update (4.15.0 -> 4.15.1)
Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms
- Linux 4.15.1 (bnc#1012628).
- x86/efi: Clarify that reset attack mitigation needs appropriate
userspace (bnc#1012628).
- Input: synaptics-rmi4 - do not delete interrupt memory too early
(bnc#1012628).
- Input: synaptics-rmi4 - unmask F03 interrupts when port is
opened (bnc#1012628).
- test_firmware: fix missing unlock on error in
config_num_requests_store() (bnc#1012628).
- iio: chemical: ccs811: Fix output of IIO_CONCENTRATION channels
(bnc#1012628).
- iio: adc: stm32: fix scan of multiple channels with DMA
(bnc#1012628).
- spi: imx: do not access registers while clocks disabled
(bnc#1012628).
- serial: imx: Only wakeup via RTSDEN bit if the system has
RTS/CTS (bnc#1012628).
- serial: 8250_dw: Revert "Improve clock rate setting"
(bnc#1012628).
- serial: 8250_uniphier: fix error return code in
uniphier_uart_probe() (bnc#1012628).
- serial: 8250_of: fix return code when probe function fails to
get reset (bnc#1012628).
- mei: me: allow runtime pm for platform with D0i3 (bnc#1012628).
- android: binder: use VM_ALLOC to get vm area (bnc#1012628).
- ANDROID: binder: remove waitqueue when thread exits
(bnc#1012628).
- usb/gadget: Fix "high bandwidth" check in
usb_gadget_ep_match_desc() (bnc#1012628).
- usb: uas: unconditionally bring back host after reset
(bnc#1012628).
- usb: f_fs: Prevent gadget unbind if it is already unbound
(bnc#1012628).
- USB: serial: simple: add Motorola Tetra driver (bnc#1012628).
- usbip: list: don't list devices attached to vhci_hcd
(bnc#1012628).
- usbip: prevent bind loops on devices attached to vhci_hcd
(bnc#1012628).
- USB: serial: io_edgeport: fix possible sleep-in-atomic
(bnc#1012628).
- CDC-ACM: apply quirk for card reader (bnc#1012628).
- USB: cdc-acm: Do not log urb submission errors on disconnect
(bnc#1012628).
- USB: serial: pl2303: new device id for Chilitag (bnc#1012628).
- usb: option: Add support for FS040U modem (bnc#1012628).
- tty: fix data race between tty_init_dev and flush of buf
(bnc#1012628).
- staging: ccree: fix fips event irq handling build (bnc#1012628).
- staging: ccree: NULLify backup_info when unused (bnc#1012628).
- staging: lustre: separate a connection destroy from free struct
kib_conn (bnc#1012628).
- scsi: storvsc: missing error code in storvsc_probe()
(bnc#1012628).
- scsi: aacraid: Fix hang in kdump (bnc#1012628).
- scsi: aacraid: Fix udev inquiry race condition (bnc#1012628).
- ima/policy: fix parsing of fsuuid (bnc#1012628).
- igb: Free IRQs when device is hotplugged (bnc#1012628).
- mtd: nand: denali_pci: add missing
MODULE_DESCRIPTION/AUTHOR/LICENSE (bnc#1012628).
- gpio: ath79: add missing MODULE_DESCRIPTION/LICENSE
(bnc#1012628).
- gpio: iop: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE
(bnc#1012628).
- power: reset: zx-reboot: add missing
MODULE_DESCRIPTION/AUTHOR/LICENSE (bnc#1012628).
- HID: wacom: Fix reporting of touch toggle
(WACOM_HID_WD_MUTE_DEVICE) events (bnc#1012628).
- HID: wacom: EKR: ensure devres groups at higher indexes are
released (bnc#1012628).
- crypto: af_alg - whitelist mask and type (bnc#1012628).
- crypto: sha3-generic - fixes for alignment and big endian
operation (bnc#1012628).
- crypto: inside-secure - avoid unmapping DMA memory that was
not mapped (bnc#1012628).
- crypto: inside-secure - fix hash when length is a multiple of
a block (bnc#1012628).
- crypto: aesni - Fix out-of-bounds access of the AAD buffer in
generic-gcm-aesni (bnc#1012628).
- crypto: aesni - Fix out-of-bounds access of the data buffer
in generic-gcm-aesni (bnc#1012628).
- crypto: aesni - add wrapper for generic gcm(aes) (bnc#1012628).
- crypto: aesni - fix typo in generic_gcmaes_decrypt
(bnc#1012628).
- crypto: aesni - handle zero length dst buffer (bnc#1012628).
- crypto: ecdh - fix typo in KPP dependency of CRYPTO_ECDH
(bnc#1012628).
- ALSA: hda - Reduce the suspend time consumption for ALC256
(bnc#1012628).
- gpio: Fix kernel stack leak to userspace (bnc#1012628).
- gpio: stmpe: i2c transfer are forbiden in atomic context
(bnc#1012628).
- tools/gpio: Fix build error with musl libc (bnc#1012628).
- Bluetooth: hci_serdev: Init hci_uart proto_lock to avoid oops
(bnc#1012628).
- commit 622b47a
- config: arm64: Enable RockChip 8xx
We need RockChip RK-808 support to run openSUSE on Rock64 board (RK3328).
Currently, even voltage regulator is missed.
- commit a348749
==== kgamma5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kgamma5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== khotkeys5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: khotkeys5-devel khotkeys5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kinfocenter5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kinfocenter5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kmenuedit5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kmenuedit5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kmod ====
Version update (24 -> 25)
Subpackages: kmod-compat libkmod2
- Update to kmod v25
* Fix resolving symbols with MODULE_REL_CRCS (bsc#1077867)
- Drop depmod-Don-t-add-.TOC.-when-it-s-in-the-kernel.patch
==== kscreen5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kscreen5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* KDED: respond to output being completely removed
* KDED: restore output scale from config
==== kscreenlocker ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kscreenlocker-lang libKScreenLocker5
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Fix brightness shortcuts in the whitelist
* Add touchpad shortcuts to the whitelist
* Fix building autotest on platforms where syscalls are not available
==== ksshaskpass5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: ksshaskpass5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Make it compile with QT_NO_CAST_FROM_ASCII
* make it work with with git-lfs
* Fix executable name in README
==== ksysguard5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: ksysguard5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kwayland-integration ====
Version update (5.11.95 -> 5.12.0)
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== kwin5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: kwin5-devel kwin5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* [libinput] Ensure Event::device returns a proper Device (kde#389674)
* Acknowledge the server side deco mode in WaylandServer not ShellClient (kde#389117)
* From 22% of cpu in hasTransientInternal to 0.2x%
* [autotests/integration] Add test for broken quick tiling for xdg_shell
* [effects/blur] Disable texture cache on Wayland
- Build with gcc7 on Leap 42.3, gcc6 no longer works because of a
change to the default compiler flags in openSUSE:Leap:42.3:Update
(boo#1077345)
==== libkdecoration2 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: libkdecoration2-devel libkdecorations2-5 libkdecorations2private5
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== libkscreen2 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: libKF5Screen7 libkscreen2-devel libkscreen2-plugin
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Fix tests after recent changes
* Wayland: add support for output type detection
* Wayland: don't update output configuration if there are no changes
* Don't create multiple in-process backend instances
* Wayland: don't share the same Config between backend and clients
==== libksysguard5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: libksysguard5-devel libksysguard5-helper libksysguard5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Remove usage of deprecated QString::null
==== libqt5-qtlocation ====
Subpackages: libQt5Location5 libQt5Positioning5 libqt5-qtlocation-devel
- Eliminate build dependency on procps: we only used it to run
'free', in order to find out how much RAM we have available. We
can get this information directly from the kernel, from
/proc/meminfo.
==== libqt5-qtwebengine ====
- Eliminate build dependency on procps: we only used it to run
'free', in order to find out how much RAM we have available. We
can get this information directly from the kernel, from
/proc/meminfo.
==== mercurial ====
Version update (4.4.1 -> 4.5)
Subpackages: mercurial-lang
- Mercurial 4.5
See full changelog on
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.5-rc_.282018-01-22.…
1. New Features
1.1. revert --interactive
The revert command now accepts the flag --interactive to allow reverting
only some of the changes to the specified files.
1.2. Accessing hidden changesets
Set config option `experimental.directaccess = True` to access hidden
changesets from read only commands.
1.3. githelp extension
The githelp extension provides the `hg githelp` command. This command
attempts to convert a git command to its Mercurial equivalent. The
extension can be useful to Git users new to Mercurial.
1.4. Largefiles changes
largefiles: add a 'debuglfput' command to put largefile into the store
largefiles: add support for 'largefiles://' url scheme
largefiles: allow to run 'debugupgraderepo' on repo with largefiles
largefiles: convert EOL of hgrc before appending to bytes IO
largefiles: explicitly set the source and sink types to 'hg' for lfconvert
largefiles: modernize how capabilities are added to the wire protocol
2. hgweb changes
hgweb now shows more information about commits: phase (if it's not public),
obsolescence status (with a short explanation and links to the successors)
and instabilities (e.g. orphan, phase-divergent or content-divergent).
Client-side graph code has been simplified by delegating more work to the
backend, so /graph page is now more in sync with /log page, visually and
feature-wise. Unfortunately, this code change means that 3rd-party themes
for 4.5+ are required to have graphentry.tmpl template available (copy it
from the base theme if you don't use %include and then reference it in map
file) and render entries in graph.tmpl -- look at one of the core themes to
see what it needs to look like. JS functions that create graph vertices and
edges are now available in Graph.prototype, making it possible to call the
original functions from custom theme-specific functions if needed.
Graph now shows different symbols for normal, branch-closing, obsolete and
unstable commits, and marks currently checked out commit with a circle
around its graph node.
There's also now json-graph API endpoint that can be used for rendering
commit graph in 3rd-party applications.
2.1. Other Changes
When interactive revert is run against a revision other than the working
directory parent, the diff shown is the diff to _apply_ to the working
directory, rather than the diff to _discard_ from the working copy. This is
in line with related user experiences with 'git' and appears to be less
confusing with 'ui.interface=curses'.
Let 'hg rebase' avoid content-divergence by skipping obsolete changesets
(and their descendants) when they are present in the rebase set along with
one of their successors but none of their successors is in destination.
A new experimental config flag, `rebase.experimental.inmemory`, makes
rebase perform an in-memory merge instead of doing it on-disk in the
working copy.
The `HGPLAINEXCEPT` environment variable can now include color to allow
automatic output colorization in otherwise automated environments.
A new `unamend` command in `uncommit` extension which undoes the effect of
the amend command by creating a new changeset which was there before amend
and moving the changes that were amended to the working directory.
A '--abort' flag to merge command to abort the ongoing merge.
An experimental flag '--rev' to 'hg branch' which can be used to change
branch of changesets.
bundle2 read I/O significantly improved
bundle2 memory use significantly reduced during read
clonebundle: it is now possible to serve the clonebundle using a git-lfs
compatible server.
templatefilters: add slashpath() to convert path separator to slash
(issue5572)
A new experimental config flag, 'inline-color-diff', adds within-line color
diff capacity
histedit: add support to output nodechanges using formatter to help with
editor integrations
3. Backwards Compatibility Changes
`log --follow-first -rREV`, which is deprecated, now follows the first
parent of merge revisions from the specified REV just like
`log --follow -rREV`.
`log --follow -rREV FILE..` now follows file history across copies and
renames.
transaction: register summary callbacks only at start of transaction
hgweb's graph view no longer supports browsers that lack <canvas> support
hgweb: only include graph-related data in jsdata variable on /graph pages
graphlog: add another graph node type, unstable, using character *
remove: print message for each file in verbose mode only while using '-A'
==== milou5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: milou5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Include ECMAddTests after KDECompilerSettings, for policy covering
* Require KDE Frameworks 5.42 and Qt 5.9
* Move cmake_minimum_required to top
* Prevent cmake 3.10+ warning with automoc & MILOU_EXPORT_PREVIEW
==== oxygen5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: oxygen5-cursors oxygen5-decoration oxygen5-devel oxygen5-lang oxygen5-sounds oxygen5-style
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== plasma-nm5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: plasma-nm5-lang plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== plasma5-addons ====
Version update (5.11.95 -> 5.12.0)
Subpackages: plasma5-addons-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Use PURPOSE property with Qt5WebEngine to note reason for dependency
* [konsoleprofiles applet] Fix name of translations catalog
* [mediaframe applet] Fix creation of file search filter by QImageReader data
* Remove unused old pre-plasma5 file binaryclock.cpp
* Remove bogus additional cmake project() calls in subdirs
* Remove dead groupingdesktop containment code, replaced by applets//grouping
* [comic applet] Don't compare iterators from different return values
* Removal of all unported/unbuilt applets, dataengines, runners, wallpapers
* Make WebEngine really optional
* Skip the dict applet if Qt5WebEngine isn't available
* [binary clock] Fix some broken entries in metadata
* [weather applet] Fix badly sized comboboxes in config by switching to QQC2 (kde#389474)
* Dump unported code of contactsrunner, akonadi-search has pimcontactsrunner
* [katesessions runner] Fix unwanted creation of multiple KDirWatch'ers
* Bump Qt version to 5.9
* Require KDE Frameworks 5.42
==== plasma5-desktop ====
Version update (5.11.95 -> 5.12.0)
Subpackages: plasma5-desktop-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Require KDE Frameworks 5.42
* fix applying color effects of the theme
* Fix iterator
* [Look and feel KCM] Destroy and recreate GHNS button when palette changes (kde#389351)
* [Look and feel KCM] Keep cursor size when applying theme
* [Look and feel KCM] Sync color group after copying over color file values (kde#370162)
* Remove QT_VERSION checks
* Bump Qt version to 5.9
* Make sure the search result that Return will run is highlighted
* Don't close plasmoid when closing a subdialog (kde#388669)
* Fix missing action arguments. (kde#389234)
* [Folder View] Don't trash local files
* [Style KCM] Sync KConfig before announcing change
==== plasma5-integration ====
Version update (5.11.95 -> 5.12.0)
Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* [KFileTreeView] Manually expand tree when model tells us to (kde#389305)
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Update to 5.12.0
==== plasma5-pa ====
Version update (5.11.95 -> 5.12.0)
Subpackages: plasma5-pa-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* Fix drag cursor
* Fix moving streams by drag and drop (kde#389402)
- Drop patches, now upstream:
* 0001-Fix-moving-streams-by-drag-and-drop.patch
==== plasma5-workspace ====
Version update (5.11.95 -> 5.12.0)
Subpackages: plasma5-session plasma5-session-wayland plasma5-workspace-devel plasma5-workspace-lang plasma5-workspace-libs
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* [Notifications] Fix grouping
* Make sure device paths are quoted
* Add license header to test
* Revert "Set GTK scaling env vars" (kde#389523)
* Revert "Replace bc with awk"
* Sanitise notification HTML
* Add missing find_dependency calls to libs' CMake config files
* Fix krunner's alt+f2 on wayland (kde#385693)
* Further improve quality of images in notifications (kde#385097)
* Fix autohide panels on wayland (kde#377838)
* Improve quality of images in notifications (Bug 385097) (kde#385097)
* [Notifications] Unset Heading default height (kde#381154)
* [Notifications] Unset Heading default height (kde#381154)
* [Notifications] Put history into a ListView (kde#389132)
* [Notifications] Disable history check box when notifications are disabled
* [PanelView] Also requestActivate config dialog
* Require KDE Frameworks 5.42
* [Calculator Runner] Fix unused variable warning
* [Calculator Runner] Move action check outside of ifdef
==== polkit-kde-agent-5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: polkit-kde-agent-5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== powerdevil5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: powerdevil5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* None
==== python-cryptography ====
Subpackages: python2-cryptography python3-cryptography
- Fix the previous change to not pull in py2 on py3 enviroment
- fix requires on python ssl once more after the last change
==== qpdf ====
Version update (7.1.0 -> 7.1.1)
- Update to version 7.1.1
* Fix one linearization bug affecting files whose first /ID
component is not 16 bytes long
* Fix some build issues
- Add signature and keyring
==== rdesktop ====
- Added rdesktop-Fix-OpenSSL-1.1-compability-issues.patch
and rdesktop-Fix-crash-in-rdssl_cert_to_rkey.patch to fix
Factory build
- Added rdesktop-Fix-keymap-script.patch
==== shotwell ====
Version update (0.27.2 -> 0.27.4)
Subpackages: shotwell-lang
- Update to version 0.27.4:
+ Fix a crash when importing in-place from DAV.
+ Fix a crash when removing the last photo of an event.
+ Bugs fixed: bgo#786531, bgo#792498.
+ Updated translations.
- Changes from version 0.27.3:
+ Fix upgrading from Shotwell 0.7.2.
+ Make Histogram widget accessible by keyboard.
+ Add F4 as shortcut for the Date/Time dialog.
+ Fix an issue where the date/time picker was out-of-sync with
the calendar widget.
+ Refactor shotwell.ui into smaller ui files and make some of the
dialogs templated.
+ Rewrite saved search dialog to use GtkListBox.
+ Add a very simple Piwigo server to do offline testing.
+ Add labels to sliders in adjustment tool.
+ Fix issue where Shotwell would fall back to the internal
developer if the RAW+JPEG pair did not contain an embedded
development in the RAW files.
+ Fix showing the help when running from build folder.
+ Fix issue with linking the plugin interfaces multiple times.
+ Fix install location for appdata.
+ Bugs fixed: bgo#716431, bgo#717126, bgo#753943, bgo#790185,
bgo#790469, bgo#791893, bgo#792058.
+ Updated translations.
==== squid ====
- Change default error pages symlink from German to English.
==== systemsettings5 ====
Version update (5.11.95 -> 5.12.0)
Subpackages: systemsettings5-devel systemsettings5-lang
- Update to 5.12.0
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.12.0.php
- Changes since 5.11.95:
* use kcrash so we get drkonqi to pop up on crashes
==== yast2-instserver ====
Version update (4.0.0 -> 4.0.1)
- Replace SuSEFirewall2 by firewalld (fate#323460)
- 4.0.1
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
07 Feb '18
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.
Packages changed:
ImageMagick
alkimia (5.0.0 -> 7.0)
apache2
btrfsprogs (4.14.1 -> 4.15)
gnu-unifont-bitmap-fonts (10.0.04 -> 10.0.07)
kernel-firmware (20180104 -> 20180119)
libreoffice (6.0.0.2 -> 6.0.0.3)
libsolv (0.6.30 -> 0.6.31)
lzip (1.18 -> 1.19)
os-prober
php7
polkit-default-privs
python-base
python-certifi (2017.11.5 -> 2018.1.18)
python-pyOpenSSL (17.2.0 -> 17.5.0)
python-pycurl
python-setuptools (38.4.0 -> 38.4.1)
re2 (20180101 -> 20180201)
sha1collisiondetection
skopeo
sqlite3 (3.21.0 -> 3.22.0)
systemd
=== Details ===
==== ImageMagick ====
Subpackages: ImageMagick-devel ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI5 libMagickWand-7_Q16HDRI5 perl-PerlMagick
- update context for ImageMagick-s390-disable-tests.patch
==== alkimia ====
Version update (5.0.0 -> 7.0)
Subpackages: libalkimia-devel libalkimia7
- Rename package to alkimia, following the upstream name
- update to version 7.0:
* Fix AlkValue::operator=(QString) w/ valueRef()
* Ported to Qt5, supports both Qt4 and Qt5 now
- thanks to users 'tittiatcoke' and 'wolfi323' for creating the
initial unstable package out of the git repository
- enable package builds for both Qt4 and Qt5
- remove Fix-AlkValue-operator-QString-w-valueRef.patch (applied
upstream)
==== apache2 ====
Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils
- remove NameVirtualHost from documentation [bsc#1078557]
- for older distros, still use SuSEFirewall2 [bsc#1071548c#7]
- Replace SuSEFirewall2 by firewalld (fate#323460)
==== btrfsprogs ====
Version update (4.14.1 -> 4.15)
Subpackages: btrfsprogs-udev-rules libbtrfs0
- update to version 4.15
* mkfs --rootdir reworked, does not minimize the final image but can be still
done using a new option --shrink
* fix allocation of system chunk, don't allocate from the reserved area
* other
* new and updated tests
* cleanups, refactoring
* doc updates
==== gnu-unifont-bitmap-fonts ====
Version update (10.0.04 -> 10.0.07)
- unifont 10.0.07:
* Additions and updates to various scripts and glyphs
==== kernel-firmware ====
Version update (20180104 -> 20180119)
Subpackages: ucode-amd
- Update to version 20180119:
* amdgpu: update uvd firmware for polaris asics
* amdgpu: update vce firmware for Fiji
* amdgpu: update vcn firmware for raven
* amdgpu: update vce and uvd firmware for Vega10
* mediatek: update MT8173 VPU firmware to 1.0.8 [decoder h264] Fix h264 decoder output delay for some low latency bitstreams
* cxgb4: update firmware to revision 1.17.14.0
* linux-firmware: update Marvell PCIe-USB8897/8997 firmware image to add WPA2 vulnerability fix
* linux-firmware: intel: Update Geminilake audio firmware
==== libreoffice ====
Version update (6.0.0.2 -> 6.0.0.3)
Subpackages: libreoffice-base libreoffice-base-drivers-mysql libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-kde4 libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-writer libreofficekit
- Disable one more test that fails
- Do not depend on procps
- Version update to 6.0.0.3:
* RC3 phase of libreoffice 6.0.0 release
==== libsolv ====
Version update (0.6.30 -> 0.6.31)
Subpackages: libsolv-devel libsolv-tools perl-solv python-solv
- new ENABLE_RPMDB_LIBRPM/ENABLE_RPMPKG_LIBRPM config options
- new pool_set_whatprovides function to change the whatprovides
data
- much improved selection code
- bump version to 0.6.31
==== lzip ====
Version update (1.18 -> 1.19)
- Update to version 1.19
* The option '-l, --list' has been ported from lziprecover.
* Don't allow mixing different operations (-d, -l or -t).
* Compression time of option '-0' has been slightly reduced.
* Decompression time has been reduced by 2%.
* main.cc: Continue testing if any input file is a terminal.
* main.cc: Show trailing data in both hexadecimal and ASCII.
* encoder.cc (Matchfinder_base): Verify size passed to new.
* file_index.cc: Improve detection of bad dict and trailing data.
* lzip.h: Unified messages for bad magic, trailing data, etc.
- switch to https in source urls
==== os-prober ====
- Fix Windows not listed in grub menu after install or upgrade (bsc#1076779)
* os-prober-05efi-udevinfo.patch
==== php7 ====
Subpackages: apache2-mod_php7 php7-bcmath php7-bz2 php7-calendar php7-ctype php7-curl php7-dba php7-devel php7-dom php7-exif php7-fastcgi php7-ftp php7-gd php7-gettext php7-gmp php7-iconv php7-imap php7-json php7-ldap php7-mbstring php7-mysql php7-odbc php7-openssl php7-pdo php7-pear php7-pear-Archive_Tar php7-pgsql php7-shmop php7-snmp php7-sockets php7-sqlite php7-sysvsem php7-sysvshm php7-tidy php7-tokenizer php7-wddx php7-xmlreader php7-xmlwriter php7-xsl php7-zlib
- do not build against system gd when suse_version < 1500
- fix build for SLE12*
==== polkit-default-privs ====
- polkit-default-privs: adding more NM actions (bsc#1077504)
==== python-base ====
Subpackages: libpython2_7-1_0 libpython2_7-1_0-32bit python-devel python-xml
- Add python-skip_random_failing_tests.patch bypass boo#1078485
and exclude many tests for PowerPC
==== python-certifi ====
Version update (2017.11.5 -> 2018.1.18)
- specfile:
* update copyright year
- update to version 2018.1.18:
* Remove 1024-bit root certificates
* Include license in the list of trove classifiers
* Include license file in the generated wheel package
==== python-pyOpenSSL ====
Version update (17.2.0 -> 17.5.0)
- Update to 17.5.0:
* The minimum cryptography version is now 2.1.4.
* Fixed various memory leaks
* Various fuzz fixes
* See CHANGELOG.rst
==== python-pycurl ====
Subpackages: python2-pycurl python3-pycurl
- Disable tests on arm platforms as they are very flaky there,
on multiple runs always different failures
- Disable strict aliasing as reported by the rpm checks
==== python-setuptools ====
Version update (38.4.0 -> 38.4.1)
Subpackages: python2-setuptools python3-setuptools
- update to version 38.4.1:
* #1257: In bdist_egg.scan_module, fix ValueError on Python 3.7.
==== re2 ====
Version update (20180101 -> 20180201)
- update to 2018-01-02:
* developer visible changes only
==== sha1collisiondetection ====
- cleaner solution for the endian detection issue:
include the proper header file
- add sha1collisiondetection-endian_detection.patch
fix detection of endianness at compile time
==== skopeo ====
- do not build on s390, only on s390x (no go on s390)
==== sqlite3 ====
Version update (3.21.0 -> 3.22.0)
Subpackages: libsqlite3-0 libsqlite3-0-32bit sqlite3-devel sqlite3-doc
- update to 3.22.0:
* Add Zipfile virtual table to read and write a ZIP Archive.
* Improved handling of WAL mode databases
* various improvements, optimizations and bug fixes
==== systemd ====
Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1 libudev1-32bit systemd-32bit systemd-bash-completion systemd-logger systemd-sysvinit udev
- Import commit 8ec9f58d334c76e736957812d9e57151502a6f63
07c6ee3eb compat-rules: get rid of scsi_id when generating compat symlinks for NVMe devices (bsc#1051465)
261a4ef38 compat-rules: generate compat by-id symlinks with 'nvme' prefix missing (bsc#1063249)
- Drop 0001-compat-rules-get-rid-of-scsi_id-when-generating-comp.patch
It's been imported in branch "compats/udev-compat-symlinks" which
has been merged in branch "openSUSE-Factory" in its turn.
- Import commit c516268845b0fd0683cef2e491b84077371e8f01
37da1facb core: disable session keyring per system sevice entirely for now (bnc#1045886)
8a1ae0449 strv: fix buffer size calculation in strv_join_quoted()
- Drop 0001-core-disable-session-keyring-per-system-sevice-entir.patch
It's been merged in branch "SUSE/v234".
- Import commit 2087a80d56bb6f8c7fb74a19172259bc9d9af866
2b8971b8a tmpfiles: refuse to chown()/chmod() files which are hardlinked, unless protected_hardlinks sysctl is on (bsc#1077925 CVE-2017-18078)
8c2bcac25 tmpfiles: change ownership of symlinks too
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
5
5
[opensuse-factory] Failure when starting virtual machines in recent tumbleweed versions
by Roger Whittaker 07 Feb '18
by Roger Whittaker 07 Feb '18
07 Feb '18
This appeared I think a couple of versions ago.
$ virsh start sles11sp4
error: Failed to start domain sles11sp4
error: internal error: /usr/lib/qemu-bridge-helper --br=br0 --fd=25: failed to communicate with bridge helper: Transport endpoint is not connected
stderr=access denied by acl file
Have others seen something like this?
I haven't really investigated yet, but I don't see a relevant bug
report - I'll open one if necessary.
--
============================
Roger Whittaker
roger(a)disruptive.org.uk
============================
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
2
4
Re: [opensuse-factory] Failure when starting virtual machines in recent tumbleweed versions
by Jiri Slaby 07 Feb '18
by Jiri Slaby 07 Feb '18
07 Feb '18
On 02/06/2018, 10:16 PM, Matthias Eliasson wrote:
> Hi
>
> If I am not mistaken it must be %config(more
> place) %_sysconfdir/%name/bridge.conf
> In order for rpm not to replace config and create a rpm new file.
noreplace creates .rpmnew from the *upstream* config. Without noreplace,
it should create .rpmsave from *your* config.
thanks,
--
js
suse labs
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
Hi
After recent updates I found that mc doesn't work in 256 color
terminals:
export TERM='xterm-256color'
run mc and select xoria256 skin
basic test of color term is successful, FE:
https://gist.github.com/hSATAC/1095100
if anyone can confirm that - I'll submit bugreport.
Thanks.
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
3
[opensuse-factory] Correct project for BitTorrent-related application (mktorrent)?
by Martin Herkt 06 Feb '18
by Martin Herkt 06 Feb '18
06 Feb '18
I’d like to maintain mktorrent, but I’ve noticed that BT stuff seems to be all
over the place at OBS. Some packages are in “network:utilities” (rtorrent),
some are in “network” (qbittorrent), and then there’s the “filesharing”
project, too.
I’m confused. Which one should I submit my package to?
2
3