openSUSE Factory
Threads by month
- ----- 2024 -----
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
February 2019
- 112 participants
- 82 discussions
05 Feb '19
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
kanagram
kernel-source (4.20.4 -> 4.20.6)
libyaml (0.1.7 -> 0.2.1)
perl-Encode (2.99 -> 3.00)
python-PyYAML
python-Twisted
python-cryptography (2.4.2 -> 2.5)
python-gevent (1.3.5 -> 1.4.0)
python-msgpack
python-pyasn1 (0.4.4 -> 0.4.5)
python-pyasn1-modules (0.2.2 -> 0.2.4)
python-tornado
python3
python3-base
remmina (1.3.1 -> 1.3.2)
rtl8812au (5.2.20.2+git20190117.edcd447_k4.20.4_1 -> 5.2.20.2+git20190117.edcd447_k4.20.6_1)
virt-manager
vm-install (0.10.05 -> 0.10.06)
=== Details ===
==== kanagram ====
Subpackages: kanagram-lang
- Update/cleanup build requirements
- Add Qt5TextToSpeech BuildRequires to enable text-to-speech
==== kernel-source ====
Version update (4.20.4 -> 4.20.6)
Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms kernel-vanilla-base
- Linux 4.20.6 (bnc#1012628).
- amd-xgbe: Fix mdio access for non-zero ports and clause 45 PHYs
(bnc#1012628).
- net: bridge: Fix ethernet header pointer before check skb
forwardable (bnc#1012628).
- net: Fix usage of pskb_trim_rcsum (bnc#1012628).
- net: phy: marvell: Errata for mv88e6390 internal PHYs
(bnc#1012628).
- net: phy: mdio_bus: add missing device_del() in
mdiobus_register() error handling (bnc#1012628).
- net: phy: phy driver features are mandatory (bnc#1012628).
- net/sched: act_tunnel_key: fix memory leak in case of action
replace (bnc#1012628).
- net_sched: refetch skb protocol for each filter (bnc#1012628).
- openvswitch: Avoid OOB read when parsing flow nlattrs
(bnc#1012628).
- vhost: log dirty page correctly (bnc#1012628).
- mlxsw: pci: Increase PCI SW reset timeout (bnc#1012628).
- net: ipv4: Fix memory leak in network namespace dismantle
(bnc#1012628).
- mlxsw: spectrum_fid: Update dummy FID index (bnc#1012628).
- mlxsw: pci: Ring CQ's doorbell before RDQ's (bnc#1012628).
- net/sched: cls_flower: allocate mask dynamically in fl_change()
(bnc#1012628).
- udp: with udp_segment release on error path (bnc#1012628).
- ip6_gre: fix tunnel list corruption for x-netns (bnc#1012628).
- erspan: build the header with the right proto according to
erspan_ver (bnc#1012628).
- net: phy: marvell: Fix deadlock from wrong locking
(bnc#1012628).
- ip6_gre: update version related info when changing link
(bnc#1012628).
- tcp: allow MSG_ZEROCOPY transmission also in CLOSE_WAIT state
(bnc#1012628).
- ARM: fix the cockup in the previous patch (bnc#1012628).
- SUNRPC: Address Kerberos performance/behavior regression
(bnc#1012628).
- mei: me: mark LBG devices as having dma support (bnc#1012628).
- mei: me: add denverton innovation engine device IDs
(bnc#1012628).
- USB: leds: fix regression in usbport led trigger (bnc#1012628).
- USB: EHCI: ehci-mv: add MODULE_DEVICE_TABLE (bnc#1012628).
- USB: serial: ftdi_sio: fix GPIO not working in autosuspend
(bnc#1012628).
- USB: serial: simple: add Motorola Tetra TPG2200 device id
(bnc#1012628).
- USB: serial: pl2303: add new PID to support PL2303TB
(bnc#1012628).
- ceph: clear inode pointer when snap realm gets dropped by its
inode (bnc#1012628).
- ASoC: atom: fix a missing check of snd_pcm_lib_malloc_pages
(bnc#1012628).
- ASoC: rt5514-spi: Fix potential NULL pointer dereference
(bnc#1012628).
- ASoC: tlv320aic32x4: Kernel OOPS while entering DAPM standby
mode (bnc#1012628).
- clk: zynqmp: Fix memory allocation in zynqmp_clk_setup
(bnc#1012628).
- clk: socfpga: stratix10: fix rate calculation for pll clocks
(bnc#1012628).
- clk: socfpga: stratix10: fix naming convention for the
fixed-clocks (bnc#1012628).
- inotify: Fix fd refcount leak in inotify_add_watch()
(bnc#1012628).
- ALSA: hda/realtek - Fix typo for ALC225 model (bnc#1012628).
- ALSA: hda - Add mute LED support for HP ProBook 470 G5
(bnc#1012628).
- ARCv2: lib: memeset: fix doing prefetchw outside of buffer
(bnc#1012628).
- ARC: adjust memblock_reserve of kernel memory (bnc#1012628).
- ARC: perf: map generic branches to correct hardware condition
(bnc#1012628).
- s390/vdso: correct vdso mapping for compat tasks (bnc#1012628).
- s390/mm: always force a load of the primary ASCE on context
switch (bnc#1012628).
- s390/early: improve machine detection (bnc#1012628).
- s390/smp: fix CPU hotplug deadlock with CPU rescan
(bnc#1012628).
- s390/smp: Fix calling smp_call_ipl_cpu() from ipl CPU
(bnc#1012628).
- misc: ibmvsm: Fix potential NULL pointer dereference
(bnc#1012628).
- char/mwave: fix potential Spectre v1 vulnerability
(bnc#1012628).
- mmc: sdhci-iproc: handle mmc_of_parse() errors during probe
(bnc#1012628).
- mmc: dw_mmc-bluefield: : Fix the license information
(bnc#1012628).
- mmc: meson-gx: Free irq in release() callback (bnc#1012628).
- staging: rtl8188eu: Add device code for D-Link DWA-121 rev B1
(bnc#1012628).
- tty: Handle problem if line discipline does not have receive_buf
(bnc#1012628).
- uart: Fix crash in uart_write and uart_put_char (bnc#1012628).
- tty/n_hdlc: fix __might_sleep warning (bnc#1012628).
- hv_balloon: avoid touching uninitialized struct page during
tail onlining (bnc#1012628).
- Drivers: hv: vmbus: Check for ring when getting debug info
(bnc#1012628).
- vgacon: unconfuse vc_origin when using soft scrollback
(bnc#1012628).
- CIFS: Fix possible hang during async MTU reads and writes
(bnc#1012628).
- CIFS: Fix credits calculations for reads with errors
(bnc#1012628).
- CIFS: Fix credit calculation for encrypted reads with errors
(bnc#1012628).
- CIFS: Do not reconnect TCP session in add_credits()
(bnc#1012628).
- smb3: add credits we receive from oplock/break PDUs
(bnc#1012628).
- Input: xpad - add support for SteelSeries Stratus Duo
(bnc#1012628).
- Input: input_event - provide override for sparc64 (bnc#1012628).
- Input: uinput - fix undefined behavior in
uinput_validate_absinfo() (bnc#1012628).
- acpi/nfit: Block function zero DSMs (bnc#1012628).
- acpi/nfit: Fix command-supported detection (bnc#1012628).
- scsi: ufs: Use explicit access size in ufshcd_dump_regs
(bnc#1012628).
- dm thin: fix passdown_double_checking_shared_status()
(bnc#1012628).
- dm crypt: fix parsing of extended IV arguments (bnc#1012628).
- drm/amdgpu: Add APTX quirk for Lenovo laptop (bnc#1012628).
- EDAC, altera: Fix S10 persistent register offset (bnc#1012628).
- KVM: x86: Fix single-step debugging (bnc#1012628).
- KVM: x86: Fix PV IPIs for 32-bit KVM host (bnc#1012628).
- KVM: x86: WARN_ONCE if sending a PV IPI returns a fatal error
(bnc#1012628).
- kvm: x86/vmx: Use kzalloc for cached_vmcs12 (bnc#1012628).
- x86/pkeys: Properly copy pkey state at fork() (bnc#1012628).
- x86/selftests/pkeys: Fork() to check for state being preserved
(bnc#1012628).
- x86/kaslr: Fix incorrect i8254 outb() parameters (bnc#1012628).
- x86/entry/64/compat: Fix stack switching for XEN PV
(bnc#1012628).
- posix-cpu-timers: Unbreak timer rearming (bnc#1012628).
- net: sun: cassini: Cleanup license conflict (bnc#1012628).
- irqchip/gic-v3-its: Align PCI Multi-MSI allocation on their size
(bnc#1012628).
- can: dev: __can_get_echo_skb(): fix bogous check for
non-existing skb by removing it (bnc#1012628).
- can: bcm: check timer values before ktime conversion
(bnc#1012628).
- can: flexcan: fix NULL pointer exception during bringup
(bnc#1012628).
- vt: make vt_console_print() compatible with the unicode screen
buffer (bnc#1012628).
- vt: always call notifier with the console lock held
(bnc#1012628).
- vt: invoke notifier on screen size change (bnc#1012628).
- drm/meson: Fix atomic mode switching regression (bnc#1012628).
- bpf: move {prev_,}insn_idx into verifier env (bnc#1012628).
- bpf: move tmp variable into ax register in interpreter
(bnc#1012628).
- nvmet-rdma: Add unlikely for response allocated check
(bnc#1012628).
- nvmet-rdma: fix null dereference under heavy load (bnc#1012628).
- bpf: enable access to ax register also from verifier rewrite
(bnc#1012628).
- bpf: restrict map value pointer arithmetic for unprivileged
(bnc#1012628).
- bpf: restrict stack pointer arithmetic for unprivileged
(bnc#1012628).
- bpf: restrict unknown scalars of mixed signed bounds for
unprivileged (bnc#1012628).
- bpf: fix check_map_access smin_value test when pointer contains
offset (bnc#1012628).
- bpf: prevent out of bounds speculation on pointer arithmetic
(bnc#1012628).
- bpf: fix sanitation of alu op with pointer / scalar type from
different paths (bnc#1012628).
- bpf: fix inner map masking to prevent oob under speculation
(bnc#1012628).
- Drivers: hv: vmbus: Remove the useless API
vmbus_get_outgoing_channel() (bnc#1012628).
- vmbus: fix subchannel removal (bnc#1012628).
- Revert "mm, memory_hotplug: initialize struct pages for the
full memory section" (bnc#1012628).
- usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup
(bnc#1012628).
- mt76x0: do not overwrite other MT_BBP(AGC, 8) fields
(bnc#1012628).
- mt76x0: use band parameter for LC calibration (bnc#1012628).
- mt76x02: run calibration after scanning (bnc#1012628).
- mt76x02: assure we update gain after scan (bnc#1012628).
- mt76x0: do not perform MCU calibration for MT7630 (bnc#1012628).
- mt76x0: antenna select corrections (bnc#1012628).
- mt76x0: phy: unify calibration between mt76x0u and mt76x0e
(bnc#1012628).
- ide: fix a typo in the settings proc file name (bnc#1012628).
- Input: input_event - fix the CONFIG_SPARC64 mixup (bnc#1012628).
- Refresh
patches.suse/0005-x86-enter-Use-IBRS-on-syscall-and-interrupts.patch.
- commit 463cfd2
- config files: set CONFIG_SCSI_MQ_DEFAULT=y (bsc#1122182)
Kernel 4.20 and newer use blk_mq for device mapper exclusively.
Thus stacking device mapper on SCSI devices fails unless we
use blk_mq for SCSI devices as well.
- commit 0a5bbbc
- Linux 4.20.5 (bnc#1012628).
- ipmi:ssif: Fix handling of multi-part return messages
(bnc#1012628).
- ipmi: Prevent use-after-free in deliver_response (bnc#1012628).
- ipmi: msghandler: Fix potential Spectre v1 vulnerabilities
(bnc#1012628).
- ipmi: Don't initialize anything in the core until something
uses it (bnc#1012628).
- ipmi: fix use-after-free of user->release_barrier.rda
(bnc#1012628).
- Bluetooth: Fix unnecessary error message for HCI request
completion (bnc#1012628).
- drm/amd/display: Fix disabled cursor on top screen edge
(bnc#1012628).
- mm/memblock.c: skip kmemleak for kasan_init() (bnc#1012628).
- mm, proc: be more verbose about unstable VMA flags in
/proc/<pid>/smaps (bnc#1012628).
- userfaultfd: clear flag if remap event not enabled
(bnc#1012628).
- mm/swap: use nr_node_ids for avail_lists in swap_info_struct
(bnc#1012628).
- mm/page-writeback.c: don't break integrity writeback on
- >writepage() error (bnc#1012628).
- ocfs2: fix panic due to unrecovered local alloc (bnc#1012628).
- iomap: don't search past page end in iomap_is_partially_uptodate
(bnc#1012628).
- scsi: megaraid: fix out-of-bound array accesses (bnc#1012628).
- KVM: PPC: Book3S HV: Apply combination of host and l1 pte rc
for nested guest (bnc#1012628).
- KVM: PPC: Book3S HV: Align gfn to L1 page size when inserting
nest-rmap entry (bnc#1012628).
- scsi: smartpqi: call pqi_free_interrupts() in pqi_shutdown()
(bnc#1012628).
- ath10k: fix peer stats null pointer dereference (bnc#1012628).
- scsi: smartpqi: correct lun reset issues (bnc#1012628).
- scsi: mpt3sas: fix memory ordering on 64bit writes
(bnc#1012628).
- IB/usnic: Fix potential deadlock (bnc#1012628).
- sysfs: Disable lockdep for driver bind/unbind files
(bnc#1012628).
- ALSA: bebob: fix model-id of unit for Apogee Ensemble
(bnc#1012628).
- Bluetooth: btusb: Add support for Intel bluetooth device
8087:0029 (bnc#1012628).
- dm: Check for device sector overflow if CONFIG_LBDAF is not set
(bnc#1012628).
- clocksource/drivers/integrator-ap: Add missing of_node_put()
(bnc#1012628).
- quota: Lock s_umount in exclusive mode for Q_XQUOTA{ON,OFF}
quotactls (bnc#1012628).
- perf tools: Add missing open_memstream() prototype for systems
lacking it (bnc#1012628).
- perf tools: Add missing sigqueue() prototype for systems
lacking it (bnc#1012628).
- perf cs-etm: Correct packets swapping in cs_etm__flush()
(bnc#1012628).
- dm snapshot: Fix excessive memory usage and workqueue stalls
(bnc#1012628).
- tools lib subcmd: Don't add the kernel sources to the include
path (bnc#1012628).
- perf stat: Avoid segfaults caused by negated options
(bnc#1012628).
- dm kcopyd: Fix bug causing workqueue stalls (bnc#1012628).
- dm crypt: use u64 instead of sector_t to store iv_offset
(bnc#1012628).
- x86/topology: Use total_cpus for max logical packages
calculation (bnc#1012628).
- netfilter: ipt_CLUSTERIP: fix deadlock in netns exit routine
(bnc#1012628).
- netfilter: ipt_CLUSTERIP: remove wrong WARN_ON_ONCE in netns
exit routine (bnc#1012628).
- netfilter: ipt_CLUSTERIP: check MAC address when duplicate
config is set (bnc#1012628).
- perf vendor events intel: Fix Load_Miss_Real_Latency on SKL/SKX
(bnc#1012628).
- perf parse-events: Fix unchecked usage of strncpy()
(bnc#1012628).
- perf svghelper: Fix unchecked usage of strncpy() (bnc#1012628).
- perf tests ARM: Disable breakpoint tests 32-bit (bnc#1012628).
- perf intel-pt: Fix error with config term "pt=0" (bnc#1012628).
- tools lib traceevent: Fix compile warnings in
tools/lib/traceevent/event-parse.c (bnc#1012628).
- tty/serial: do not free trasnmit buffer page under port lock
(bnc#1012628).
- btrfs: improve error handling of btrfs_add_link (bnc#1012628).
- btrfs: fix use-after-free due to race between replace start
and cancel (bnc#1012628).
- btrfs: alloc_chunk: fix more DUP stripe size handling
(bnc#1012628).
- btrfs: volumes: Make sure there is no overlap of dev extents
at mount time (bnc#1012628).
- mmc: atmel-mci: do not assume idle after atmci_request_end
(bnc#1012628).
- kconfig: fix memory leak when EOF is encountered in quotation
(bnc#1012628).
- kconfig: fix file name and line number of
warn_ignored_character() (bnc#1012628).
- x86/resctrl: Fix rdt_find_domain() return value and checks
(bnc#1012628).
- usb: dwc2: Fix disable all EP's on disconnect (bnc#1012628).
- bpf: relax verifier restriction on BPF_MOV | BPF_ALU
(bnc#1012628).
- arm64: Fix minor issues with the dcache_by_line_op macro
(bnc#1012628).
- clk: imx6q: reset exclusive gates on init (bnc#1012628).
- arm64: kasan: Increase stack size for KASAN_EXTRA (bnc#1012628).
- selftests: do not macro-expand failed assertion expressions
(bnc#1012628).
- scsi: target/core: Make sure that target_wait_for_sess_cmds()
waits long enough (bnc#1012628).
- scsi: target: use consistent left-aligned ASCII INQUIRY data
(bnc#1012628).
- net: call sk_dst_reset when set SO_DONTROUTE (bnc#1012628).
- staging: erofs: fix use-after-free of on-stack
`z_erofs_vle_unzip_io' (bnc#1012628).
- media: venus: core: Set dma maximum segment size (bnc#1012628).
- coresight: tmc: Fix bad register address for CLAIM
(bnc#1012628).
- ASoC: use dma_ops of parent device for acp_audio_dma
(bnc#1012628).
- media: firewire: Fix app_info parameter type in
avc_ca{,_app}_info (bnc#1012628).
- arm64: relocatable: fix inconsistencies in linker script and
options (bnc#1012628).
- powerpc/pseries/cpuidle: Fix preempt warning (bnc#1012628).
- powerpc/xmon: Fix invocation inside lock region (bnc#1012628).
- media: uvcvideo: Refactor teardown of uvc on USB disconnect
(bnc#1012628).
- pstore/ram: Do not treat empty buffers as valid (bnc#1012628).
- clk: imx: make mux parent strings const (bnc#1012628).
- kbuild: let fixdep directly write to .*.cmd files (bnc#1012628).
- jffs2: Fix use of uninitialized delayed_work, lockdep breakage
(bnc#1012628).
- efi/libstub: Disable some warnings for x86{,_64} (bnc#1012628).
- rxe: IB_WR_REG_MR does not capture MR's iova field
(bnc#1012628).
- drm/amdgpu: Reorder uvd ring init before uvd resume
(bnc#1012628).
- net: ethernet: ave: Set initial wol state to disabled
(bnc#1012628).
- scsi: qedi: Check for session online before getting iSCSI TLV
data (bnc#1012628).
- ASoC: pcm3168a: Don't disable pcm3168a when CONFIG_PM defined
(bnc#1012628).
- arm64: Use a raw spinlock in __install_bp_hardening_cb()
(bnc#1012628).
- selinux: always allow mounting submounts (bnc#1012628).
- fpga: altera-cvp: fix probing for multiple FPGAs on the bus
(bnc#1012628).
- usb: gadget: udc: renesas_usb3: add a safety connection way
for forced_b_device (bnc#1012628).
- samples: bpf: fix: error handling regarding kprobe_events
(bnc#1012628).
- clk: meson: meson8b: fix incorrect divider mapping in
cpu_scale_table (bnc#1012628).
- clk: meson: meson8b: add support for more M/N values in sys_pll
(bnc#1012628).
- drm/atomic-helper: Complete fake_commit->flip_done potentially
earlier (bnc#1012628).
- MIPS: Loongson: Add Loongson-3A R2.1 basic support
(bnc#1012628).
- arm64: perf: set suppress_bind_attrs flag to true (bnc#1012628).
- drm/scheduler: Fix bad job be re-processed in TDR (bnc#1012628).
- crypto: ecc - regularize scalar for scalar multiplication
(bnc#1012628).
- MIPS: SiByte: Enable swiotlb for SWARM, LittleSur and BigSur
(bnc#1012628).
- x86/mce: Fix -Wmissing-prototypes warnings (bnc#1012628).
- ALSA: oxfw: add support for APOGEE duet FireWire (bnc#1012628).
- bpf: Allow narrow loads with offset > 0 (bnc#1012628).
- serial: set suppress_bind_attrs flag only if builtin
(bnc#1012628).
- writeback: don't decrement wb->refcnt if !wb->bdi (bnc#1012628).
- of: overlay: add missing of_node_put() after add new node to
changeset (bnc#1012628).
- selftests/bpf: enable (uncomment) all tests in test_libbpf.sh
(bnc#1012628).
- usb: typec: tcpm: Do not disconnect link for self powered
devices (bnc#1012628).
- e1000e: allow non-monotonic SYSTIM readings (bnc#1012628).
- platform/x86: asus-wmi: Tell the EC the OS will handle the
display off hotkey (bnc#1012628).
- ixgbe: allow IPsec Tx offload in VEPA mode (bnc#1012628).
- qtnfmac: fix error handling in control path (bnc#1012628).
- drm/amdkfd: fix interrupt spin lock (bnc#1012628).
- drm/amd/display: Guard against null stream_state in
set_crc_source (bnc#1012628).
- ASoC: wm97xx: fix uninitialized regmap pointer problem
(bnc#1012628).
- gpio: pl061: Move irq_chip definition inside struct pl061
(bnc#1012628).
- netfilter: ipset: Allow matching on destination MAC address
for mac and ipmac sets (bnc#1012628).
- net: clear skb->tstamp in bridge forwarding path (bnc#1012628).
- openvswitch: Fix IPv6 later frags parsing (bnc#1012628).
- octeontx2-af: Fix a resource leak in an error handling path in
'cgx_probe()' (bnc#1012628).
- netlink: fixup regression in RTM_GETADDR (bnc#1012628).
- ipv6: Fix dump of specific table with strict checking
(bnc#1012628).
- ipv6: Take rcu_read_lock in __inet6_bind for mapped addresses
(bnc#1012628).
- r8169: Add support for new Realtek Ethernet (bnc#1012628).
- qmi_wwan: add MTU default to qmap network interface
(bnc#1012628).
- net, skbuff: do not prefer skb allocation fails early
(bnc#1012628).
- net: dsa: mv88x6xxx: mv88e6390 errata (bnc#1012628).
- mlxsw: spectrum_switchdev: Set PVID correctly during VLAN
deletion (bnc#1012628).
- mlxsw: spectrum: Disable lag port TX before removing it
(bnc#1012628).
- ipv6: Consider sk_bound_dev_if when binding a socket to a v4
mapped address (bnc#1012628).
- commit 34ae151
==== libyaml ====
Version update (0.1.7 -> 0.2.1)
- --with-pic is useless without static libs, remove it.
- Update RPM groups and descriptions.
- Add libyaml-revert-emitter-changes.patch: Revert "This code is
not needed and breaks tests" (gh#yaml/libyaml#122).
- update to 0.2.1
* Fixed most compiler warnings -Wall -Wextra
* Support static and dynamic libraries
* Add support for `make test`
* Apply old fix for `\/` that is not in master.
* Port bug fix from Perl binding
* Removed trailing-whitespaces
* Fix -Wformat compilation errors in tests
* Added missing Cflags path in pkg-config file
* Forbid escaped singlequote in doublequotes
==== perl-Encode ====
Version update (2.99 -> 3.00)
- updated to 3.00
see /usr/share/doc/packages/perl-Encode/Changes
==== python-PyYAML ====
Subpackages: python2-PyYAML python3-PyYAML
- Use %license instead of %doc [bsc#1082318]
==== python-Twisted ====
- test-mktime-invalid-tm_isdst.patch: don't pass invalid tm_isdst value to
mktime (see also bpo-15750)
==== python-cryptography ====
Version update (2.4.2 -> 2.5)
Subpackages: python2-cryptography python3-cryptography
- Dependency on python-idna changed to "Recommends" aligned with
change in upstream source (see below)
- update to 2.5:
* BACKWARDS INCOMPATIBLE: U-label strings were deprecated in version 2.1,
but this version removes the default idna dependency as well. If you still
need this deprecated path please install cryptography with the idna extra:
pip install cryptography[idna].
* BACKWARDS INCOMPATIBLE: The minimum supported PyPy version is now 5.4.
* Numerous classes and functions have been updated to allow bytes-like
types for keying material and passwords, including symmetric algorithms,
AEAD ciphers, KDFs, loading asymmetric keys, and one time password classes.
* Updated Windows, macOS, and manylinux1 wheels to be compiled with OpenSSL 1.1.1a.
* Added support for SHA512_224 and SHA512_256 when using OpenSSL 1.1.1.
* Added support for SHA3_224, SHA3_256, SHA3_384, and SHA3_512 when using OpenSSL 1.1.1.
* Added support for X448 key exchange when using OpenSSL 1.1.1.
* Added support for SHAKE128 and SHAKE256 when using OpenSSL 1.1.1.
* Added initial support for parsing PKCS12 files with load_key_and_certificates().
* Added support for IssuingDistributionPoint.
* Added rfc4514_string() method to x509.Name,
x509.RelativeDistinguishedName, and x509.NameAttribute to format the name
or component an RFC 4514 Distinguished Name string.
* Added from_encoded_point(), which immediately checks if the point is on
the curve and supports compressed points. Deprecated the previous method
from_encoded_point().
* Added signature_hash_algorithm to OCSPResponse.
* Updated X25519 key exchange support to allow additional serialization
methods. Calling public_bytes() with no arguments has been deprecated.
* Added support for encoding compressed and uncompressed points via
public_bytes(). Deprecated the previous method encode_point().
==== python-gevent ====
Version update (1.3.5 -> 1.4.0)
- Version update to 1.4.0:
* generate with cython 0.29
* Refactored the gevent test runner and test suite to make them more reusable. In particular, the tests are now run with python -m gevent.tests. See issue #1293.
* Formatting run info no longer includes gevent.local.local objects that have no value in the greenlet. See issue #1275.
* Fixed negative length in pywsgi?s Input read functions for non chunked body. Reported in issue #1274 by tzickel.
* Fix opening files in text mode in CPython 2 on Windows by patching libuv. See issue #1282 reported by wiggin15.
* gevent now depends on greenlet 0.4.14 or above.
* gevent.local.local subclasses correctly supports @staticmethod functions. Reported by Brendan Powers in issue #1266.
- Do NOT bundle c-ares and libev
==== python-msgpack ====
- Use %license
==== python-pyasn1 ====
Version update (0.4.4 -> 0.4.5)
Subpackages: python2-pyasn1 python3-pyasn1
- update to 0.4.5
* Debug logging refactored for more efficiency when disabled and for more
functionality when in use. Specifically, the global LOG object can easily
be used from any function/method, not just from codec main loop as it used
to be.
* More debug logging added to BER family of codecs to ease encoding problems
troubleshooting.
* Copyright notice extended to the year 2019
* Fixed defaulted constructed SEQUENCE component initialization.
==== python-pyasn1-modules ====
Version update (0.2.2 -> 0.2.4)
- update to version 0.2.4
Revision 0.2.4:
- Added modules for RFC8226 implementing JWT Claim Constraints
and TN Authorization List for X.509 certificate extensions
- Fixed bug in `rfc5280.AlgorithmIdentifier` ANY type definition
Revision 0.2.3:
- Added modules for RFC5083 and RFC5084 (CMS)
- Copyright notice extended to the year 2019
==== python-tornado ====
- Add patch to skip tests failing with openss-1.1.1; this happens
only when using TLS 1.3 so if user wants to use tornado they
can hand disable the TLS and continue:
* skip-failing-tests.patch
- Import necessary dependencies on Red Hat platforms
==== python3 ====
Subpackages: python3-curses python3-dbm
- Put LICENSE file where it belongs (bsc#1121852)
- bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch
fixing bpo-35746.
An exploitable denial-of-service vulnerability exists in the
X509 certificate parser of Python.org Python 2.7.11 / 3.7.2.
A specially crafted X509 certificate can cause a NULL pointer
dereference, resulting in a denial of service. An attacker can
initiate or accept TLS connections using crafted certificates
to trigger this vulnerability.
==== python3-base ====
Subpackages: libpython3_7m1_0
- Put LICENSE file where it belongs (bsc#1121852)
- bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch
fixing bpo-35746.
An exploitable denial-of-service vulnerability exists in the
X509 certificate parser of Python.org Python 2.7.11 / 3.7.2.
A specially crafted X509 certificate can cause a NULL pointer
dereference, resulting in a denial of service. An attacker can
initiate or accept TLS connections using crafted certificates
to trigger this vulnerability.
==== remmina ====
Version update (1.3.1 -> 1.3.2)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc remmina-plugin-xdmcp
- Upgraded to 1.3.2
* Change rcw size allocation wait algorithm, see issue #1809
* Fix a couple of VNCI crashes, see issue #1821
* Fix spice authentication, issue #1820
* Update translations script fixes
* Add a missing end point in an SSH error message
* Translation Updates: fr, it
* Cosmetic fixes
==== rtl8812au ====
Version update (5.2.20.2+git20190117.edcd447_k4.20.4_1 -> 5.2.20.2+git20190117.edcd447_k4.20.6_1)
- Add fix-backported-ndo_select_queue.patch to fix building with
SLE-15-SP1's 4.12 kernel with backported features from 4.19.
==== virt-manager ====
Subpackages: virt-install virt-manager-common
- bsc#1123942 - [XEN][Build157.1] failed to open file
'/usr/lib/grub2/x86_64-xen/grub.xen during bootup PV guest
virtinst-change-location-for-grub_xen.patch
==== vm-install ====
Version update (0.10.05 -> 0.10.06)
- bsc#1123942 - [XEN][Build157.1] failed to open file
'/usr/lib/grub2/x86_64-xen/grub.xen during bootup PV guest
- Version 0.10.06
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
4
3
05 Feb '19
sudo zypper dup --no-allow-vendor-change
Loading repository data...
Reading installed packages...
Warning: You are about to do a distribution upgrade with all enabled
repositories. Make sure these repositories are compatible before you
continue. See 'man zypper' for more information about this command.
Computing distribution upgrade...
2 Problems:
Problem: python3-pykwalify-1.6.0-2.1.noarch requires python(abi) = 3.6,
but this requirement cannot be provided
Problem: borgmatic-1.2.14-1.1.noarch requires python(abi) = 3.6, but
this requirement cannot be provided
Problem: python3-pykwalify-1.6.0-2.1.noarch requires python(abi) = 3.6,
but this requirement cannot be provided
deleted providers: python3-base-3.6.5-3.3.x86_64
Solution 1: deinstallation of python3-pykwalify-1.6.0-2.1.noarch
Solution 2: keep obsolete python3-base-3.6.5-3.3.x86_64
Solution 3: break python3-pykwalify-1.6.0-2.1.noarch by ignoring some
of its dependencies
What should I do ?
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
3
[opensuse-factory] Cast Your Vote: 2018-2019 openSUSE Board Elections
by election-officials@opensuse.org 05 Feb '19
by election-officials@opensuse.org 05 Feb '19
05 Feb '19
IMPORTANT: DO NOT REPLY ON THIS LIST!!!
IMPORTANT: DO NOT REPLY ON THIS LIST!!!
Replies or comments should be made on the openSUSE Project Mailing List.
================
<url>https://news.opensuse.org/2019/02/05/voting-gets-underway-for-the-2018-2019…</url>
<url>https://en.opensuse.org/openSUSE:Board_election</url>
--
from:
The Elections Committee:
M. Edwin Zakaria
Ish Sookun
Gerry Makaro
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0
[opensuse-factory] Recent update of python from 3.6 to 3.7 broke FreeCAD dependency
by andythe_great 04 Feb '19
by andythe_great 04 Feb '19
04 Feb '19
FreeCAD (3D CAD software) needs libpython 3.6
# zypper in FreeCAD
Problem: nothing provides libpython3.6m.so.1.0()(64bit) needed by FreeCAD-0.17.1534399137.9948ee4f1-57.16.x86_64
Thank you,
Andy
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
3
4
[opensuse-factory] Move of resolv.conf to /run not fully implemented or buggy.
by Thorsten Kukuk 04 Feb '19
by Thorsten Kukuk 04 Feb '19
04 Feb '19
Hi,
on all of my machines netconfig is now creating /run/netconfig/resolv.conf,
and the file starts with:
### /etc/resolv.conf is a symlink to /var/run/netconfig/resolv.conf
### autogenerated by netconfig!
Needless to say, that on none of my openSUSE installations /etc/resolv.conf
is a symlink. As result, no nameservers ...
Thorsten
--
Thorsten Kukuk, Distinguished Engineer, Senior Architect SLES & MicroOS
SUSE LINUX GmbH, Maxfeldstr. 5, 90409 Nuernberg, Germany
GF: Felix Imendoerffer, Jane Smithard, Graham Norton, HRB 21284 (AG Nuernberg)
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
7
14
04 Feb '19
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
aaa_base (84.87+git20181210.841bf8f -> 84.87+git20190109.b66cf03)
bash (4.4 -> 5.0)
binutils
build (20181206 -> 20190122)
ca-certificates-mozilla (2.26 -> 2.30)
dbus-1
dbus-1-x11
dhcp
dmidecode
dracut
e2fsprogs (1.44.4 -> 1.44.5)
elementary-xfce-icon-theme (0.13.1~git6.c377da86 -> 0.13.1~git11.25ff77b0)
epiphany
flac
flatpak-builder (1.0.1 -> 1.0.3)
fwupd (1.1.2 -> 1.2.3)
hardlink
hdf5
iproute2 (4.19 -> 4.20)
issue-generator (1.6 -> 1.7)
kernel-source (4.20.2 -> 4.20.4)
libcontainers-common (0.0.1 -> 20190125)
libgpg-error (1.33 -> 1.35)
libva (2.3.0 -> 2.4.0)
libva-gl (2.3.0 -> 2.4.0)
mc (4.8.21 -> 4.8.22)
multipath-tools
ncurses
nghttp2 (1.34.0 -> 1.36.0)
openblas_pthreads (0.3.4 -> 0.3.5)
pcsc-gempc (1.0.7 -> 1.0.8)
perl-Encode (2.98 -> 2.99)
perl-Test-Simple (1.302141 -> 1.302160)
polkit-default-privs (13.2 -> 13.2+20190128.da9c3c6)
publicsuffix
python-MarkupSafe
python-certifi
python-psutil (5.4.8 -> 5.5.0)
python-pycryptodome
python-pyparsing (2.3.1~test5 -> 2.3.0+git.1546912853.bf348d6)
python-requests
python-setuptools
python-six
python-tornado
python3 (3.6.5 -> 3.7.2)
python3-base (3.6.5 -> 3.7.2)
rdesktop (1.8.3 -> 1.8.4)
readline (7.0 -> 8.0)
remmina (1.3.0 -> 1.3.1)
rpm
rubygem-i18n (1.5.2 -> 1.5.3)
salt
shadow
shotwell
sqlite3
sudo (1.8.26 -> 1.8.27)
sysconfig (0.84.3 -> 0.85.0)
systemd
systemd-presets-branding-openSUSE
systemd-presets-common-SUSE
tcl (8.6.7 -> 8.6.9)
thunar (1.8.2 -> 1.8.4)
tk (8.6.7 -> 8.6.9)
udisks2 (2.7.6 -> 2.7.8)
update-alternatives
upower
util-linux (2.33 -> 2.33.1)
util-linux-systemd (2.33 -> 2.33.1)
xfce4-panel-plugin-mpc (0.5.0 -> 0.5.1)
yast2-python-bindings (4.0.7 -> 4.0.8)
=== Details ===
==== aaa_base ====
Version update (84.87+git20181210.841bf8f -> 84.87+git20190109.b66cf03)
Subpackages: aaa_base-extras
- Update to version 84.87+git20190109.b66cf03:
* Restore old position of ssh/sudo source of profile
for bug bsc#1118364 but hopefully do not reintroduce
bug boo#1088524
==== bash ====
Version update (4.4 -> 5.0)
Subpackages: bash-doc bash-lang
- Update to bash 5.0 (final)
a. Tilde expansion isn't performed on indexed array subscripts, even for
backwards compatibility.
b. The shell doesn't exit in posix mode if the eval builtin gets a parse
error when run by the command builtin.
c. Fixed a bug that caused a shell comment in an alias to not find the end
of the alias properly.
d. Reverted a change from April, 2018 that caused strings containing
backslashes to be flagged as glob patterns.
- Modify patches
* bash-2.03-manual.patch
* bash-4.3-loadables.dif
* bash-5.0.dif
- Update to bash 5.0 rc1
a. Fix to initial word completion detection code.
b. Fixed a bug that caused issues with assignment statements containing ^A in
the value assigned when IFS contains ^A.
c. Added a fallback to fnmatch() when strcoll can't correctly deal with
bracket expression character equivalence classes.
d. Fixed a bug that caused $BASH_COMMAND to contain the trap handler command
when running a trap handler containing [[ or (( commands.
e. Fixed a bug that caused nameref assignments in the temporary environment
to potentially create variables with invalid names.
f. Fixed a bug that caused `local -' to turn off alias expansion in scripts.
g. Fixed a parser issue with a command string containing EOF after an invalid
command as an argument to a special builtin not causing a posix-mode shell
to exit.
h. Made a slight change to the FNV-1 string hash algorithm used for associative
arrays (corrected the initial seed).
a. The `select' command now supports command forms without a word list
following `in'.
- Update to bash 5.0 beta2
ii. Associative and indexed arrays now allow subscripts consisting solely of
whitespace.
jj. `checkwinsize' is now enabled by default.
kk. The `localvar_unset' shopt option is now visible and documented.
ll. The `progcomp_alias' shopt option is now visible and documented.
mm. The signal name processing code now understands `SIGRTMIN+n' all the way
up to SIGRTMAX.
nn. There is a new `seq' loadable builtin.
oo. Trap execution now honors the (internal) max invocations of `eval', since
traps are supposed to be executed as if using `eval'.
pp. The $_ variable doesn't change when the shell executes a command that forks.
qq. The `kill' builtin now supports -sSIGNAME and -nSIGNUM, even though
conforming applications aren't supposed to use them.
rr. POSIX mode now enables the `shift_verbose' option.
- Modify patches
* bash-2.03-manual.patch
* bash-3.0-evalexp.patch
* bash-3.2-printf.patch
* bash-4.0-security.patch
* bash-4.1-completion.dif
* bash-4.3-2.4.4.patch
* bash-4.3-SJIS.patch
* bash-4.3-extra-import-func.patch
* bash-4.3-sigrestart.patch
* bash-5.0.dif
- Add temporary upstream patch upstream.patch
- Update to bash 5.0 beta
a. The `wait' builtin can now wait for the last process substitution created.
b. There is an EPOCHSECONDS variable, which expands to the time in seconds
since the Unix epoch.
c. There is an EPOCHREALTIME variable, which expands to the time in seconds
since the Unix epoch with microsecond granularity.
d. New loadable builtins: rm, stat, fdflags.
e. BASH_ARGV0: a new variable that expands to $0 and sets $0 on assignment.
f. When supplied a numeric argument, the shell-expand-line bindable readline
command does not perform quote removal and suppresses command and process
substitution.
g. `history -d' understands negative arguments: negative arguments offset from
the end of the history list.
h. The `name' argument to the `coproc' reserved word now undergoes word
expansion, so unique coprocs can be created in loops.
i. A nameref name resolution loop in a function now resolves to a variable by
that name in the global scope.
j. The `wait' builtin now has a `-f' option, which signfies to wait until the
specified job or process terminates, instead of waiting until it changes
state.
k. There is a define in config-top.h that allows the shell to use a static
value for $PATH, overriding whatever is in the environment at startup, for
use by the restricted shell.
l. Process substitution does not inherit the `v' option, like command
substitution.
m. If a non-interactive shell with job control enabled detects that a foreground
job died due to SIGINT, it acts as if it received the SIGINT.
n. The SIGCHLD trap is run once for each exiting child process even if job
control is not enabled when the shell is in Posix mode.
o. A new shopt option: localvar_inherit; if set, a local variable inherits the
value of a variable with the same name at the nearest preceding scope.
p. `bind -r' now checks whether a key sequence is bound before binding it to
NULL, to avoid creating keymaps for a multi-key sequence.
q. A numeric argument to the line editing `operate-and-get-next' command
specifies which history entry to use.
r. The positional parameters are now assigned before running the shell startup
files, so startup files can use $@.
s. There is a compile-time option that forces the shell to disable the check
for an inherited OLDPWD being a directory.
t. The `history' builtin can now delete ranges of history entries using
`-d start-end'.
u. The `vi-edit-and-execute-command' bindable readline command now puts readline
back in vi insertion mode after executing commands from the edited file.
v. The command completion code now matches aliases and shell function names
case-insensitively if the readline completion-ignore-case variable is set.
w. There is a new `assoc_expand_once' shell option that attempts to expand
associative array subscripts only once.
x. The shell only sets up BASH_ARGV and BASH_ARGC at startup if extended
debugging mode is active. The old behavior of unconditionally setting them
is available as part of the shell compatibility options.
y. The `umask' builtin now allows modes and masks greater than octal 777.
z. The `times' builtin now honors the current locale when printing a decimal
point.
aa. There is a new (disabled by default, undocumented) shell option to enable
and disable sending history to syslog at runtime.
bb. Bash no longer allows variable assignments preceding a special builtin that
changes variable attributes to propagate back to the calling environment
unless the compatibility level is 44 or lower.
cc. You can set the default value for $HISTSIZE at build time in config-top.h.
dd. The `complete' builtin now accepts a -I option that applies the completion
to the initial word on the line.
ee. The internal bash malloc now uses mmap (if available) to satisfy requests
greater than 128K bytes, so free can use mfree to return the pages to the
kernel.
ff. The shell doesn't automatically set BASH_ARGC and BASH_ARGV at startup
unless it's in debugging mode, as the documentation has always said, but
will dynamically create them if a script references them at the top level
without having enabled debugging mode.
gg. The localvar_inherit option will not attempt to inherit a value from a
variable of an incompatible type (indexed vs. associative arrays, for
example).
hh. The `globasciiranges' option is now enabled by default; it can be set to
off by default at configuration time.
- Modify and port patches
* bash-2.03-manual.patch
* bash-3.0-evalexp.patch
* bash-3.0-warn-locale.patch
* bash-3.2-printf.patch
* bash-4.0-security.patch
* bash-4.0-setlocale.dif
* bash-4.1-bash.bashrc.dif
* bash-4.1-completion.dif
* bash-4.2-nscdunmap.dif
* bash-4.3-2.4.4.patch
* bash-4.3-extra-import-func.patch
* bash-4.3-loadables.dif
* bash-4.3-sigrestart.patch
* bash-4.3-winch.dif
- Port and rename bash-4.4.dif which is now bash-5.0.dif
- Delete not used patch bash-4.2-endpw.dif
- Remove patch bash-memmove.patch now upstream
- Add patch bash-4.3-SJIS.patch which is disabled by default
==== binutils ====
Subpackages: binutils-devel
- Add s390-relro.diff to improve relro support on s390
[fate#326356]
- Fix the fix for PR23919 [bsc#1118644]:
rename handle-ELF-compressed-header-alignment-correctly-by-.patch
to fix-pr23919-1.diff and add fix-pr23919-2.diff
and fix-pr23919-3.diff .
==== build ====
Version update (20181206 -> 20190122)
Subpackages: build-mkbaselibs build-mkdrpms
- update factory config for libreadline8 switch
- cleanup 15.1 config with OBS specific stuff
* should not be used for plain build usage
* workarounds for kiwi should be fixed in packages
==== ca-certificates-mozilla ====
Version update (2.26 -> 2.30)
- updated to 2.30 state of the Mozilla NSS Certificate store. (bsc#1121446)
- Removed CAs:
- AC Raiz Certicamara S.A.
- Certplus Root CA G1
- Certplus Root CA G2
- OpenTrust Root CA G1
- OpenTrust Root CA G2
- OpenTrust Root CA G3
- Visa eCommerce Root
- Added Root CAs:
- Certigna Root CA (email and server auth)
- GTS Root R1 (server auth)
- GTS Root R2 (server auth)
- GTS Root R3 (server auth)
- GTS Root R4 (server auth)
- OISTE WISeKey Global Root GC CA (email and server auth)
- UCA Extended Validation Root (server auth)
- UCA Global G2 Root (email and server auth)
==== dbus-1 ====
Subpackages: libdbus-1-3 libdbus-1-3-32bit
- Make libdbus-1-3 own the %{_datadir}/dbus-1/system.d directory
- Use %license instead of %doc [bsc#1082318]
==== dbus-1-x11 ====
- Make libdbus-1-3 own the %{_datadir}/dbus-1/system.d directory
- Use %license instead of %doc [bsc#1082318]
==== dhcp ====
Subpackages: dhcp-client dhcp-doc dhcp-relay dhcp-server
- Remove wrong path to documentation in the description of the
server package
==== dmidecode ====
- dmidecode-add-logical-non-volatile-device.patch: Add "Logical
non-volatile device" to the memory device types (bsc#1120149).
- Use %doc directly on files instead of installing them explicitly.
- Don't overwrite the path of license (boo#1121851).
==== dracut ====
- Remove invalid "FONT_MAP=none" from vconsole.conf (osc#1013573)
- Ensure mmc host modules get included properly (bsc#1119037)
* adds 0588-Ensure-mmc-host-modules-get-included-properly.patch
- Fix a missing space in example configs (boo#1121251)
* adds 0587-Fix-a-missing-space-in-example-configs.patch
- 95zfcp_rules/parse-zfcp.sh: remove rule existence check (bsc#1008352).
* adds 0586-95zfcp_rules-parse-zfcp.sh-remove-rule-existence-check.patch
- dracut-installkernel: Stop keeping old kernel files as .old
(boo#1112327)
The .old kernel files are confusing grub2 which can't find a
matching directory under /lib/modules. Furthermore, there is no
guarantee that the new modules are fully compatible with the old
kernel.
If anything goes wrong with a new self-compiled kernel, the user
can always boot back to the distribution kernel, so the .old
backup files are not needed in the first place. Get rid of them
to simplify and speed up the whole process.
- emergency mode: bring shell and all vital information to
all ttys specified as console devices
(FATE#325386, bsc#1053248, bsc#937555)
* Adds 0585-emergency-mode-use-sulogin.patch
==== e2fsprogs ====
Version update (1.44.4 -> 1.44.5)
Subpackages: e2fsprogs-devel libcom_err-devel libcom_err2 libcom_err2-32bit libext2fs-devel libext2fs2
- Update to 1.44.5
* use 64-bit counters to track number of defragged files
* correctly traslate Posix ACLs
* Use the online free block counts
* Fix a false warning that tune2fs will take along time to change UUID
* e2fsck will only offer to set the inline_data feature flag sometimes
* e4defrag running as root but can't find file system
* resize2fs was failing to update extent tree checksums
* fuse2fs command line parsing fixed
* e2fs segfault fix when corrupted journal file-system is too large
* e2image now includes the mmp block
* fix various verity handling bugs which made it unusable
* fix a bug in tune2fs to dereference freed memory after replay
==== elementary-xfce-icon-theme ====
Version update (0.13.1~git6.c377da86 -> 0.13.1~git11.25ff77b0)
- Update to version 0.13.1~git11.25ff77b0:
* Ensure we're inheriting Adwaita (gh#shimmerproject/elementary-xfce#139)
* Respect the CC variable, if defined.
* Avoid race condition when using parallelization.
* Add symlinks for media-flash-sd
==== epiphany ====
Subpackages: epiphany-lang gnome-shell-search-provider-epiphany
- Add epiphany-bookmark-ensure-tags-sequence-is-created.patch:
bookmark: ensure tags sequence is always created. Somehow we are
getting EphyBookmarks objects deserialized without initializing
the tags property.
==== flac ====
Subpackages: libFLAC++6 libFLAC8
- Remove useless --with-pic (only useful for --enable-static).
- Trim authorship and licensing info from description,
this is metadata.
- Drop doxygen dependency to reduce python3 buildcycle
==== flatpak-builder ====
Version update (1.0.1 -> 1.0.3)
- Update to version 1.0.3:
+ Compress changes in cache, fixing the build of large
applications like libreoffice in some cases.
+ Add new default-branch manifest option to allow overridable
branch name.
- Changes from version 1.0.2:
+ Print a warning when a YAML document has a float-like string
value.
+ Handle .txz archive suffixes.
+ Set SOURCE_DATE_EPOCH to the mtime of the manifest in the
build.
+ Update python post-processor to handle python 3.7 pyc files.
+ Allow unsetting env vars in the build options by setting them
to null.
+ Documentation improvements.
==== fwupd ====
Version update (1.1.2 -> 1.2.3)
Subpackages: fwupd-lang libfwupd2
- Update to version 1.2.3:
* Correctly migrate the history database
* trivial: Add some debugging data to wacom-usb
- Changes from version 1.2.2:
* Log an error if started with an incompatible locale
* Fix building with -Wl,-z,defs
* ebitdo: Fix the reported version number if the daemon locale is
not C.UTF-8
* Add Dell TB18DC to the known devices list
* trivial: Don't show 'Update Duration: 49710 days'
* Allow replacing the last byte in the image when using 'dfu-tool
replace-data'
* trivial: Fix an error code if a search string is unfound
* trivial: Fix a memory leak if dfu-tool returns with an error
* trivial: Check the GUID length before attempting to parse it
* Check the device checksum as well as the content checksum
during verify
* Submit the device firmware checksum and update protocol in the
submitted report
* trivial: Don't invalidate the current checksums for fw that
requries a reboot
* trivial: Clear the device checksums only if the plugin
implements verify()
* Include the device checksum and update protocol in the
historydb
* uefi: Add the PCR0 value as the device checksum for system
firmware
* Add new API to get the release protocol from the metadata
* Allow plugins to define support for a 'well-known' protocol
* uefi: When adding headers set the header size to 4k
* uefi: Append the header on capsules without headers from Linux
* trivial: uefi: correct a logic error in setting variable
* trivial: dell-dock: Correct variable for turning off HDCP 2.2
* flashrom: Ensure the quirks database is set on the new object
* uefi: Do not add devices with invalid GUIDs
* Do not allow a GUID of zero
* Add shared functionality for reading and writing with
O_NONBLOCK
* Only run attach and detach if the device is in the wrong mode
* trivial: snap: move to efivar 37
* trivial: Add fu_common_dump_raw()
* Sanitize the version if the version format has been specified
* wacom-usb: Remove the DTH generation hardware as it will not
work with fwupd
* trivial: Add a snap badge for fwupd
* trivial: dell-dock: reverse MST update order for I2C
* thunderbolt: Remove a superfluous boundary condition when
verifying update
* Add a plugin to update hardware that supports fastboot
* trivial: Speed up daemon startup
* Fix a regression when doing GetReleases on unsupported hardware
* trivial: Document the expected plugin firmware formats
* dfu: Require a specific USB class and subclass for DFU mode
* Correctly parse format the version numbers correctly using old
metadata
* trivial: Correctly calculate the erase length for all locales
* amt: Fix a crash if AMT returns an empty response
* Check plugins set error on failure
* contrib: Add a simple python3 client
* trivial: Allow loading archives ignoring the path
* installed-tests: Adjust to actually use a remote for installed
tests
* Add more standard USB identifier GUIDs
* wacomhid: Rename to wacom-usb
* trivial: Allow calling fu_device_has_guid() with non-GUID text
* trivial: Don't ask translators to translate the release notes
* trivial: Update two release note typos
* Provide a way for plugins to decompress a custom archive to ram
- Changes from version 1.2.1:
* trivial: dell-dock: Set EC version to daemon before EC reset
* trivial: dell-dock: fail when EC indicates flashing an
invalid/unsigned image
* trivial: Fix regression when switching to indexed strings
* Remove DaemonVersionFormat=quad
* Shut down the daemon after 2h of inactivity
* Create a silo index to speed up GUID queries
* trivial: Move the release descriptions to the metainfo.xml file
* Fix flashing the 8bitdo SF30
* trivial: Do a single query when getting a component by a set of
GUIDs
* trivial: Add InstallDuration values for 8bitdo devices
* trivial: Add InstallDuration values for Unifying devices
* trivial: Add InstallDuration values for ColorHug devices
* Speed up fwupd startup by loading less thunderbolt firmware
* trivial: Fix some function prefixes for Thunderbolt
* trivial: Do not show all the HWIDs at daemon startup
* Query the XbSilo when calling fu_plugin_check_supported()
* trivial: Remove unused functionality
* trivial: Mark GParamSpec values as static to reduce RSS
* Guess the version format when it is not provided
* Fix a use-after-free when using valgrind and --immediate-exit
* trivial: Add quirk documentation
* Add per-release install duration values
* trivial: Create an empty tree before tests start
* trivial: Fix a possible critical warning when parsing invalid
metadata
* Fix showing the custom remote agreements
* trivial: Only include a single language in the metainfo silo
* Be more explicit setting the update state
* Include the os-release information in the release metadata
* trivial: Store the AppStream component metadata correctly
* trivial: ci: fix flatpak build
* trivial: Drop the libxmlb insertion into the flathub manifest
* trivial: Relax the timing requirements on the FuDevice poll
test
* trivial: Document the GUID generation scheme
* trivial: Sync example spec file with downstream
* trivial: Bump meson dependency to 0.47.0
* trivial: post release version bump
- Changes from version 1.2.0:
* trivial: Fix some NULL/FALSE confusion
* trivial: Fix a typo in the verification store export
* ebitdo: remove SF30/SN30 pro device ids
* dell-dock: Drop delayed MST callback routine
* trivial: Fix some NULL/FALSE confusion
* synapticsmst: Adjust EVB board handling
* synapticsmst: Remove the content checking of firmware
* synapticsmst: Access Board ID through memory instead In
firmware images HDCP 2.2 will be enabled by default,so access
to flash region will fail.
* trivial: fu-tool: Try to stop systemd even if not compiled with
systemd
* trivial: fu-tool: use `g_variant_unref` instead of
`g_object_clear`
* contrib: Adjust flatpak build for moving to flathub
* dell-dock: Prefer to flash VMM5331 via I2C instead of DP aux
* trivial: fu-engine: Increase the priority on a device if it has
children
* trivial: fu-device-list: Return devices by priority
* Use HTTPS_PROXY if set
* firmware-packager: Make it clearer to use
* Sort the firmware sack by component priority
* flatpak: Update gnu-efi to latest version
* trivial: dell-dock: Lower MST communication speed to 400 KHz
* trivial: debian: Make control file statement more generic
* trivial: snap: Use libxmlb subproject instead
* amt: Set the full device version including the BuildNum
* fwupdmgr/fwupdtool: Move monitor command to fwupdtool
* fwupdmgr/fwupdtool: Move firmware builder from fwupdmgr to
fwupdtool
* trivial: Add VersionFormat to the fu_device_to_string() output
* Add version format quirks for several Lenovo machines
* uefi: Set the quirks on created devices
* trivial: Add yet another version encoding
* dell_dock: Use correct offset for finding version of MST
* dell-dock: Add missing unlock call for MST via dell_dock plugin
* Support the Intel ME version format
* Port from libappstream-glib to libxmlb
* trivial: Rename a function to better explain what it does
* Bump requirement to meson 0.46.0
* fu-main: Catch SIGTERM while update is in progress
* fu-tool: Stop any running daemon over dbus before loading
engine
* meson: Bump dependency to 0.44 and adjust sysconfdir handling
* dell-dock: If marketing name is invalid don't fail
initialization
* Readme Updated: Added KDE Discover as one more graphical
front-end available for fwupd.
* dell-dock: Correct a situation that error wasn't propagating
* trivial: snap: drop the stable symlink
* trivial: snap: Swap the type of snap/snapcraft.yaml to be a
real file
* trivial: bump master to 1.2.0
* Don't segfault if a plugin returns FALSE from UpdateFunc with
no error set
* dell-dock: Use different debug strings for each device type
* trivial: Remove some pretty intense debugging that crept in
* dell-dock: Don't use the VLA feature in the new dock
* trivial: Do not allow VLA features in plugins
* Add a plugin for an upcoming Dell USB-C dock
* contrib: Add information on how to use debugging scripts
* trivial: Hardcode the AppStream-glib version
* trivial: Don't care so much about the AppStream-glib version
* Allow setting the version format from a quirk entry
* Don't use AppStream-glib for string helpers
* Don't use AppStream-glib for version helpers
* Don't use AppStream-glib for the GUID helpers
* trivial: Don't use AppStream-glib in libfwupd
* trivial: Remove unused header
* fu-device: Ensure that parent ID is created before creating
quirked children
* trivial: libfwupd: correct documentation for
fwupd_device_set_install_duration
* trivial: correct a memory leak of the FuDevice when replugging
* Update all sub-devices for a composite update
* Stop showing the current release during updates in fwupdmgr
* uefi: Move the TPM unlocking functionality from the Dell to
UEFI plugin
* Run the Dell plugin initialization after the UEFI plugin
* trivial: Add ESP path into fu_uefi_device_to_string()
* thunderbolt-power: Fix possible linker problem
* trivial: Sync the flatpak manifest with the one from flathub
* trivial: Be more explicit when building the snap packages
* trivial: Include libuuid specifically on Centos
* trivial: Be more explicit when building on Centos
* trivial: Be more explicit when building the Arch package
* trivial: nvme: Allow quirking the NVME write block size
* Allow firmware files to depend on versions from other devices
* trivial: fu-engine: downgrade couldn't find new device message
to debug
* trivial: Show a critical warning rather than crashing
* fu-debug: Redirect all debugging output to stderr instead of
stdout
* trivial: synapticsmst: clarify some error flows
* synapticsmst: Adjust panamera ESM update routine for some
reported issues
* trivial: synapticsmst: downgrade remote control retry statement
to debug
* trivial: Update FU_DEVICE_REMOVE_DELAY_USER_REPLUG from 20s to
40s
* fu-engine: Optionally wait for replug before updating a device
* fu-device-list: Use delayed device removal when removing the
tree
* thunderbolt: Use replugging from the daemon
* trivial: device-list: Correct a minor logic error
* Add support for devices to show an estimated flash time
* Marked some CL options for translation
* trivial: uefi: Only set EFI variables on real systems
* trivial: wacom: correct some errors caught by static analysis
* trivial: dell: Assert true in self tests
* trivial: amt: correct a situation that might overwrite error
* trivial: amt: correct a potential lack of error
* ci: Run clang static analysis for Ubuntu build rather than just
clang compiler
* trivial: standalone: Check argument make sense with command
* trivial: standalone: If missing flatpak dependencies, download
them
* trivial: Fix a tiny memory leak on startup
* nvme: Initialize the buffer before reading the contents
* trivial: thunderbolt: don't reuse GError error_local in update
function
* trivial: Do not use AsProfile
* trivial: nvme: Remove quirk for Hynix SSD
* contrib: Add a standalone installer creation script
* trivial: fu-util/fu-tool: Move --version into a common shared
function
* rts54hid: Add support for Realtek USB devices using vendor HID
commands
* fu-engine: Don't show devices pending a reboot in GetUpgrades
* Add FuMutex helper to make various parts of the daemon
thread-safe
* trivial: Return reference counted devices from FuDeviceList
* rts54hub: Add support for Realtek USB devices using vendor HUB
commands
* uefi: Check the amount of free space on the ESP
* fu-tool: Import debugging options from fu-debug like fu-main
* trivial: Skip debugging messages for skipped releases
* dell: Stop showing errors when no dock plugged in
* trivial: Allow specifying --daemon-verbose to set the log
handler
* trivial: Add the components to the daemon store in one
operation
* trivial: Only show the number of loaded components at startup
* trivial: Remove overzealous debugging
* trivial: Set a log domain for each file
* trivial: Remove an assert statement from the daemon
* superio: Set the physical and logical IDs
* trivial: Use a fixed GUID for superio
* trivial: snap: fix TLS communications in classic snap
* trivial: snap: sync up some missing changes in master snap
* trivial: snap: Correct bash completion path
* trivial: snap: Install dbus service in classic snap
- Add pkgconfig(xmlb) BuildRequires: New dependency.
==== hardlink ====
- Use %license instead of %doc [bsc#1082318]
==== hdf5 ====
Subpackages: libhdf5-103 libhdf5_hl100
- Remove dependency to the hdf5-devel-data file for HPC:
Currently, there are no macro files for HPC - these files
will have to be handled differently.
- Re-disable all non-HPC builds for SLE.
==== iproute2 ====
Version update (4.19 -> 4.20)
- Update to new upstream release 4.20
* lwtunnel: allow src for encap ip/ip6
* tc netem: add slot parameter
* ip: add ipvtap support
* ip neigh: support NTF_ROUTER and NTF_EXT_LEARNED flags
* bridge fdb: support sticky flag
* tc flower: geneve option match
* tc: show TCA_STATS_BASIC_HW statistics
* libnetlink: use correct message types for dump requests
* tc flower: expose hardware offload count
* tc: allow configuring taprio qdisc
* bridge: support backup port
* ss: support bytes_sent, bytes_retrans, dsack_dups, reord_seen
* bridge: make -c match -compressvlans first instead of -color
* fix build errors (old glibc, new llvm, no mnl, 32-bit archs)
* various minor fixes
* testsuite improvements
- refresh split-link-and-compile-steps-for-binaries.patch
==== issue-generator ====
Version update (1.6 -> 1.7)
- Update to version 1.7
- automatically generate issue file [bsc#1116825]
==== kernel-source ====
Version update (4.20.2 -> 4.20.4)
Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms kernel-vanilla-base
- Linux 4.20.4 (bnc#1012628).
- tty/ldsem: Wake up readers after timed out down_write()
(bnc#1012628).
- tty: Hold tty_ldisc_lock() during tty_reopen() (bnc#1012628).
- tty: Simplify tty->count math in tty_reopen() (bnc#1012628).
- tty: Don't hold ldisc lock in tty_reopen() if ldisc present
(bnc#1012628).
- can: gw: ensure DLC boundaries after CAN frame modification
(bnc#1012628).
- netfilter: nf_conncount: replace CONNCOUNT_LOCK_SLOTS with
CONNCOUNT_SLOTS (bnc#1012628).
- netfilter: nf_conncount: don't skip eviction when age is
negative (bnc#1012628).
- netfilter: nf_conncount: split gc in two phases (bnc#1012628).
- netfilter: nf_conncount: restart search when nodes have been
erased (bnc#1012628).
- netfilter: nf_conncount: merge lookup and add functions
(bnc#1012628).
- netfilter: nf_conncount: move all list iterations under spinlock
(bnc#1012628).
- netfilter: nf_conncount: speculative garbage collection on
empty lists (bnc#1012628).
- netfilter: nf_conncount: fix argument order to find_next_bit
(bnc#1012628).
- mmc: sdhci-msm: Disable CDR function on TX (bnc#1012628).
- arm64/kvm: consistently handle host HCR_EL2 flags (bnc#1012628).
- arm64: Don't trap host pointer auth use to EL2 (bnc#1012628).
- ipv6: fix kernel-infoleak in ipv6_local_error() (bnc#1012628).
- net: bridge: fix a bug on using a neighbour cache entry without
checking its state (bnc#1012628).
- packet: Do not leak dev refcounts on error exit (bnc#1012628).
- tcp: change txhash on SYN-data timeout (bnc#1012628).
- tun: publish tfile after it's fully initialized (bnc#1012628).
- net: phy: add missing phy driver features (bnc#1012628).
- net: phy: Add missing features to PHY drivers (bnc#1012628).
- net: phy: meson-gxl: Use the genphy_soft_reset callback
(bnc#1012628).
- lan743x: Remove phy_read from link status change function
(bnc#1012628).
- IN_BADCLASS: fix macro to actually work (bnc#1012628).
- r8169: load Realtek PHY driver module before r8169
(bnc#1012628).
- bonding: update nest level on unlink (bnc#1012628).
- ip: on queued skb use skb_header_pointer instead of
pskb_may_pull (bnc#1012628).
- r8169: don't try to read counters if chip is in a PCI power-save
state (bnc#1012628).
- smc: move unhash as early as possible in smc_release()
(bnc#1012628).
- crypto: sm3 - fix undefined shift by >= width of value
(bnc#1012628).
- crypto: caam - fix zero-length buffer DMA mapping (bnc#1012628).
- crypto: authencesn - Avoid twice completion call in decrypt path
(bnc#1012628).
- crypto: ccree - convert to use crypto_authenc_extractkeys()
(bnc#1012628).
- crypto: bcm - convert to use crypto_authenc_extractkeys()
(bnc#1012628).
- crypto: authenc - fix parsing key with misaligned rta_len
(bnc#1012628).
- crypto: talitos - reorder code in talitos_edesc_alloc()
(bnc#1012628).
- crypto: talitos - fix ablkcipher for CONFIG_VMAP_STACK
(bnc#1012628).
- xen: Fix x86 sched_clock() interface for xen (bnc#1012628).
- Revert "btrfs: balance dirty metadata pages in
btrfs_finish_ordered_io" (bnc#1012628).
- btrfs: wait on ordered extents on abort cleanup (bnc#1012628).
- Yama: Check for pid death before checking ancestry
(bnc#1012628).
- scsi: core: Synchronize request queue PM status only on
successful resume (bnc#1012628).
- scsi: sd: Fix cache_type_store() (bnc#1012628).
- virtio: don't allocate vqs when names[i] = NULL (bnc#1012628).
- virtio-balloon: tweak config_changed implementation
(bnc#1012628).
- mips: fix n32 compat_ipc_parse_version (bnc#1012628).
- MIPS: BCM47XX: Setup struct device for the SoC (bnc#1012628).
- MIPS: lantiq: Fix IPI interrupt handling (bnc#1012628).
- MIPS: OCTEON: fix kexec support (bnc#1012628).
- drm/i915/gvt: Fix mmap range check (bnc#1012628).
- drm/rockchip: add missing of_node_put (bnc#1012628).
- OF: properties: add missing of_node_put (bnc#1012628).
- mfd: tps6586x: Handle interrupts on suspend (bnc#1012628).
- media: v4l: ioctl: Validate num_planes for debug messages
(bnc#1012628).
- media: vim2m: only cancel work if it is for right context
(bnc#1012628).
- RDMA/nldev: Don't expose unsafe global rkey to regular user
(bnc#1012628).
- RDMA/vmw_pvrdma: Return the correct opcode when creating WR
(bnc#1012628).
- kbuild: Disable LD_DEAD_CODE_DATA_ELIMINATION with ftrace &
GCC <= 4.7 (bnc#1012628).
- kbuild: fix single target build for external module
(bnc#1012628).
- kbuild: mark prepare0 as PHONY to fix external module build
(bnc#1012628).
- net: dsa: realtek-smi: fix OF child-node lookup (bnc#1012628).
- pstore/ram: Avoid allocation and leak of platform data
(bnc#1012628).
- SUNRPC: Fix TCP receive code on archs with flush_dcache_page()
(bnc#1012628).
- powerpc/tm: Limit TM code inside PPC_TRANSACTIONAL_MEM
(bnc#1012628).
- arm64: kaslr: ensure randomized quantities are clean to the PoC
(bnc#1012628).
- arm64: dts: marvell: armada-ap806: reserve PSCI area
(bnc#1012628).
- fbdev: offb: Fix OF node name handling (bnc#1012628).
- Disable MSI also when pcie-octeon.pcie_disable on (bnc#1012628).
- fix int_sqrt64() for very large numbers (bnc#1012628).
- omap2fb: Fix stack memory disclosure (bnc#1012628).
- media: vivid: fix error handling of kthread_run (bnc#1012628).
- media: vivid: set min width/height to a value > 0 (bnc#1012628).
- bpf: in __bpf_redirect_no_mac pull mac only if present
(bnc#1012628).
- ipv6: make icmp6_send() robust against null skb->dev
(bnc#1012628).
- LSM: Check for NULL cred-security on free (bnc#1012628).
- media: vb2: vb2_mmap: move lock up (bnc#1012628).
- sunrpc: handle ENOMEM in rpcb_getport_async (bnc#1012628).
- netfilter: ebtables: account ebt_table_info to kmemcg
(bnc#1012628).
- block: use rcu_work instead of call_rcu to avoid sleep in
softirq (bnc#1012628).
- drm/vkms: Fix plane duplicate_state (bnc#1012628).
- gpu/drm: Fix lock held when returning to user space
(bnc#1012628).
- selinux: fix GPF on invalid policy (bnc#1012628).
- blockdev: Fix livelocks on loop device (bnc#1012628).
- sctp: allocate sctp_sockaddr_entry with kzalloc (bnc#1012628).
- tipc: fix uninit-value in in tipc_conn_rcv_sub (bnc#1012628).
- tipc: fix uninit-value in tipc_nl_compat_link_reset_stats
(bnc#1012628).
- tipc: fix uninit-value in tipc_nl_compat_bearer_enable
(bnc#1012628).
- tipc: fix uninit-value in tipc_nl_compat_link_set (bnc#1012628).
- tipc: fix uninit-value in tipc_nl_compat_name_table_dump
(bnc#1012628).
- tipc: fix uninit-value in tipc_nl_compat_doit (bnc#1012628).
- block/loop: Don't grab "struct file" for vfs_getattr() operation
(bnc#1012628).
- block/loop: Use global lock for ioctl() operation (bnc#1012628).
- loop: Fold __loop_release into loop_release (bnc#1012628).
- loop: Get rid of loop_index_mutex (bnc#1012628).
- loop: Push lo_ctl_mutex down into individual ioctls
(bnc#1012628).
- loop: Split setting of lo_state from loop_clr_fd (bnc#1012628).
- loop: Push loop_ctl_mutex down into loop_clr_fd() (bnc#1012628).
- loop: Push loop_ctl_mutex down to loop_get_status()
(bnc#1012628).
- loop: Push loop_ctl_mutex down to loop_set_status()
(bnc#1012628).
- loop: Push loop_ctl_mutex down to loop_set_fd() (bnc#1012628).
- loop: Push loop_ctl_mutex down to loop_change_fd()
(bnc#1012628).
- loop: Move special partition reread handling in loop_clr_fd()
(bnc#1012628).
- loop: Move loop_reread_partitions() out of loop_ctl_mutex
(bnc#1012628).
- loop: Fix deadlock when calling blkdev_reread_part()
(bnc#1012628).
- loop: Avoid circular locking dependency between loop_ctl_mutex
and bd_mutex (bnc#1012628).
- loop: Get rid of 'nested' acquisition of loop_ctl_mutex
(bnc#1012628).
- loop: Fix double mutex_unlock(&loop_ctl_mutex) in
loop_control_ioctl() (bnc#1012628).
- loop: drop caches if offset or block_size are changed
(bnc#1012628).
- drm/fb-helper: Ignore the value of fb_var_screeninfo.pixclock
(bnc#1012628).
- media: vb2: be sure to unlock mutex on errors (bnc#1012628).
- nbd: Use set_blocksize() to set device blocksize (bnc#1012628).
- Refresh
patches.suse/kernel-add-product-identifying-information-to-kernel-build.patch.
- commit b458db8
- media: usb: pwc: Don't use coherent DMA buffers for ISO transfer
(bsc#1054610).
- commit 4ac37bd
- Linux 4.20.3 (bnc#1012628).
- Btrfs: use nofs context when initializing security xattrs to
avoid deadlock (bnc#1012628).
- Btrfs: fix deadlock when enabling quotas due to concurrent
snapshot creation (bnc#1012628).
- Btrfs: fix access to available allocation bits when starting
balance (bnc#1012628).
- sunrpc: use-after-free in svc_process_common() (bnc#1012628).
- mm: page_mapped: don't assume compound page is huge or THP
(bnc#1012628).
- ext4: fix special inode number checks in __ext4_iget()
(bnc#1012628).
- ext4: track writeback errors using the generic tracking
infrastructure (bnc#1012628).
- ext4: use ext4_write_inode() when fsyncing w/o a journal
(bnc#1012628).
- ext4: avoid kernel warning when writing the superblock to a
dead device (bnc#1012628).
- ext4: fix a potential fiemap/page fault deadlock w/ inline_data
(bnc#1012628).
- ext4: make sure enough credits are reserved for dioread_nolock
writes (bnc#1012628).
- rbd: don't return 0 on unmap if RBD_DEV_FLAG_REMOVING is set
(bnc#1012628).
- drm/amdgpu: Don't fail resume process if resuming atomic state
fails (bnc#1012628).
- drm/amdgpu: Don't ignore rc from
drm_dp_mst_topology_mgr_resume() (bnc#1012628).
- drm/i915: Unwind failure on pinning the gen7 ppgtt
(bnc#1012628).
- drm/fb-helper: Partially bring back workaround for bugs of
SDL 1.2 (bnc#1012628).
- drm/amd/display: Fix MST dp_blank REG_WAIT timeout
(bnc#1012628).
- PCI: dwc: Move interrupt acking into the proper callback
(bnc#1012628).
- PCI: dwc: Take lock when ACKing an interrupt (bnc#1012628).
- PCI: dwc: Use interrupt masking instead of disabling
(bnc#1012628).
- drm/amdgpu: Add new VegaM pci id (bnc#1012628).
- vfio/type1: Fix unmap overflow off-by-one (bnc#1012628).
- mtd: rawnand: qcom: fix memory corruption that causes panic
(bnc#1012628).
- i2c: dev: prevent adapter retries and timeout being set as
minus value (bnc#1012628).
- ACPI/IORT: Fix rc_dma_get_range() (bnc#1012628).
- ACPI / PMIC: xpower: Fix TS-pin current-source handling
(bnc#1012628).
- ACPI: power: Skip duplicate power resource references in _PRx
(bnc#1012628).
- mm, memcg: fix reclaim deadlock with writeback (bnc#1012628).
- mm/usercopy.c: no check page span for stack objects
(bnc#1012628).
- slab: alien caches must not be initialized if the allocation
of the alien cache failed (bnc#1012628).
- fork, memcg: fix cached_stacks case (bnc#1012628).
- USB: Add USB_QUIRK_DELAY_CTRL_MSG quirk for Corsair K70 RGB
(bnc#1012628).
- USB: storage: add quirk for SMI SM3350 (bnc#1012628).
- USB: storage: don't insert sane sense for SPC3+ when bad sense
specified (bnc#1012628).
- usb: cdc-acm: send ZLP for Telit 3G Intel based modems
(bnc#1012628).
- ARM: davinci: da830-evm: fix label names in GPIO lookup entries
(bnc#1012628).
- ARM: davinci: dm644x-evm: fix label names in GPIO lookup entries
(bnc#1012628).
- ARM: davinci: omapl138-hawk: fix label names in GPIO lookup
entries (bnc#1012628).
- ARM: davinci: da850-evm: fix label names in GPIO lookup entries
(bnc#1012628).
- ARM: davinci: dm355-evm: fix label names in GPIO lookup entries
(bnc#1012628).
- cifs: check kzalloc return (bnc#1012628).
- cifs: Fix potential OOB access of lock element array
(bnc#1012628).
- CIFS: Fix credit computation for compounded requests
(bnc#1012628).
- CIFS: Do not hide EINTR after sending network packets
(bnc#1012628).
- CIFS: Do not set credits to 1 if the server didn't grant
anything (bnc#1012628).
- CIFS: Fix adjustment of credits for MTU requests (bnc#1012628).
- ALSA: hda/realtek - Disable headset Mic VREF for headset mode
of ALC225 (bnc#1012628).
- ALSA: hda/realtek - Add unplug function into unplug state of
Headset Mode for ALC225 (bnc#1012628).
- ALSA: hda/realtek - Support Dell headset mode for New AIO
platform (bnc#1012628).
- x86, modpost: Replace last remnants of RETPOLINE with
CONFIG_RETPOLINE (bnc#1012628).
- cpufreq: scmi: Fix frequency invariance in slow path
(bnc#1012628).
- cpufreq: scpi/scmi: Fix freeing of dynamic OPPs (bnc#1012628).
- staging: rtl8188eu: Fix module loading from tasklet for WEP
encryption (bnc#1012628).
- staging: rtl8188eu: Fix module loading from tasklet for CCMP
encryption (bnc#1012628).
- usbcore: Select only first configuration for non-UAC3 compliant
devices (bnc#1012628).
- Btrfs: fix deadlock when using free space tree due to block
group creation (bnc#1012628).
- powerpc/tm: Unset MSR[TS] if not recheckpointing (bnc#1012628).
- commit 4b478de
==== libcontainers-common ====
Version update (0.0.1 -> 20190125)
- Upgrade to storage v1.8
* Check for the OS when setting btrfs/libdm/ostree tags
- Upgrade to image v1.3
* vendor: use github.com/klauspost/pgzip instead of compress/gzip
* vendor latest ostree
- Refactor specfile to use versioned tarballs
- Established package versioning scheme (ISODATE of change)
- Remove non-upstream storage.conf
- Set btrfs as default driver if /var/lib is on btrfs [boo#1123119]
- Version 20190125
- Upgrade to storage v1.6
* Remove private mount from zfs driver
* Update zfs driver to be closer to moby driver
* Use mount options when mounting the chown layer.
==== libgpg-error ====
Version update (1.33 -> 1.35)
Subpackages: libgpg-error0 libgpg-error0-32bit
- Update to 1.35:
* Distribute the correct gpgrt-config
- update to 1.34:
* Support for riscv32
* New API to allow emergency cleanup after internal fatal errors
* Minor bug and portability fixes
==== libva ====
Version update (2.3.0 -> 2.4.0)
Subpackages: libva-drm2 libva-x11-2 libva2
- Update to version 2.4.0:
* va_TraceSurface support for VA_FOURCC_P010
* Add pointer to struct wl_interface for driver to use
* (integrate) va: fix new line symbol in error message
* av: avoid driver path truncation
* Fix compilation warning (uninit and wrong variable types) for
Android O MR1
* Allow import of the DRM PRIME 2 memory type
* android: ignore unimportant compile warnnings
* compile: fix sign/unsign compare in va_trace.c
* android: replace utils/Log.h with log/log.h
* High Dynamic Range Tone Mapping: Add a new filter for input
metadata and some comments
* Remove restrictions on vaSetDriverName()
==== libva-gl ====
Version update (2.3.0 -> 2.4.0)
Subpackages: libva-glx2 libva-wayland2
- Update to version 2.4.0:
* va_TraceSurface support for VA_FOURCC_P010
* Add pointer to struct wl_interface for driver to use
* (integrate) va: fix new line symbol in error message
* av: avoid driver path truncation
* Fix compilation warning (uninit and wrong variable types) for
Android O MR1
* Allow import of the DRM PRIME 2 memory type
* android: ignore unimportant compile warnnings
* compile: fix sign/unsign compare in va_trace.c
* android: replace utils/Log.h with log/log.h
* High Dynamic Range Tone Mapping: Add a new filter for input
metadata and some comments
* Remove restrictions on vaSetDriverName()
==== mc ====
Version update (4.8.21 -> 4.8.22)
Subpackages: mc-lang
- update to 4.8.22
* Core
- Support BTRFS's file clone operation
- Find file: show pattern and content in the results window title
- Find file: remember state (empty or not) of Content field
- Improve support IBM i
- Improve handling of hard link creation errors
- Support user-defined prompt in the Fish subshell
* VFS - sftp: preserve atime and mtime (#3917)
* Editor
- man page cleanup (#3918)
- syntax:
PHP - highlight keyword 'null' (#3920)
Meson - initial implementation (#3940)
* Misc
- ext.d: use MPV as a fallback for mplayer -identify (#3919)
- ext.d: improve recognition of MS Office formats (#3929)
* Fixes
- "Cannot create target file" when target has backslash space
in the name (#3923)
- Quiet single file overwrite (#3908)
- Show error message for each not-installed program when view
documents in MS Word and Excel formats (#3926)
- Crash when trying some sftp connections (#3937)
- Crash when return to filemanager from subshell (#3943)
- mc-extd-doc.patch: refreshed
- mc-extd-video.patch: refreshed
- mc-vfs-fish-deleted_source_file.patch: refreshed
- xls2csv_update.patch: refreshed
==== multipath-tools ====
Subpackages: kpartx
- Add BuildRequires on suse-module-tools
* we need it for regenerate_initrd_posttrans
==== ncurses ====
Subpackages: libncurses6 ncurses-devel ncurses-utils tack terminfo terminfo-base terminfo-screen
- Add ncurses patch 20190112
+ fix typo in term(5), improve explanation of format (report by Otto
Modinos).
+ add nsterm-direct -TD
+ use SGR 1006 mouse for konsole-base -TD
+ use SGR 1006 mouse for putty -TD
+ add ti703/ti707, ti703-w/ti707-w (Robert Clausecker)
- Add ncurses patch 20190105
+ add dummy "check" rule in top-level and test-Makefile to simply
building test-packages for Arch.
+ modify configure script to avoid conflict with a non-POSIX feature
that enables all parts of the system headers by default. Some
packagers have come to rely upon this behavior (FreeBSD #234049).
+ update config.guess, config.sub
==== nghttp2 ====
Version update (1.34.0 -> 1.36.0)
- Update to 1.36.0
* build: disable shared library if ENABLE_SHARED_LIB is off
* third-party: use http-parser to v2.9.0 (GH-1294)
* third-party: Update mruby to 2.0.0
* nghttpx: Pool h1 backend connection per address (GH-1292)
* nghttpx: Randomize backend address round robin order per thread
(GH-1291)
* nghttpx: Fix getting long SNs for openssl < 1.1 (GH-1287)
* h2load: add an option to write per-request logs (GH-1256)
* asio: added access to # of the current server port (GH-1257)
- Use multibuild to not pull in python3 in first build, nghttp2
is low in the system
- Update to version 1.35.1:
* nghttpx: Fix broken trailing slash handling (GH-1276)
- Changes for version 1.35:
* build: cmake: Fix libevent version detection (Patch from Jan Kundr�t) (GH-1238)
* lib: Use __has_declspec_attribute for shared builds (Patch from Don) (GH-1222)
* src: Require C++14 language feature
* nghttpx: Write mruby send_info early
* nghttpx: Fix assertion failure on mruby send_info with HTTP/1 frontend
* h2load: Handle HTTP/1 non-final response (GH-1259)
* h2load: Clarify that time for connect includes TLS handshake
==== openblas_pthreads ====
Version update (0.3.4 -> 0.3.5)
- Update to versiom 0.3.5
common:
* Loop unrolling in TRMV has been enabled again.
* A domain error in the thread workload distribution for SYRK
has been fixed.
* gmake builds will now automatically add -fPIC to the build
options if the platform requires it.
* A pthreads key leakage (and associate crash on dlclose) in
the USE_TLS codepath was fixed.
* Building of the utest cases on systems that do not provide
an implementation of complex.h was fixed.
x86_64:
* The SkylakeX code was changed to compile on OSX.
* Unwanted application of the -march=skylake-avx512 option
to the common code parts of a DYNAMIC_ARCH build was fixed.
* Improved performance of SGEMM for small workloads on Skylake X.
* Performance of SGEMM and DGEMM was improved on Haswell.
armv8:
* A configuration error that broke the CNRM2 kernel was corrected.
* Compilation of the GEMM kernels with CMAKE was fixed.
* DYNAMIC_ARCH builds are now available with CMAKE as well.
* Using CMAKE for cross-compilation to the new cpu TARGETs
introduced in 0.3.4 now works.
power:
* A problem in cpu autodetection for AIX has been corrected.
==== pcsc-gempc ====
Version update (1.0.7 -> 1.0.8)
- Updated to version 1.0.8:
* Fix typo in log message.
- Add GPG verification files.
==== perl-Encode ====
Version update (2.98 -> 2.99)
- updated to 2.99
see /usr/share/doc/packages/perl-Encode/Changes
==== perl-Test-Simple ====
Version update (1.302141 -> 1.302160)
- updated to 1.302160
see /usr/share/doc/packages/perl-Test-Simple/Changes
1.302160 2019-01-18 11:44:33-08:00 America/Los_Angeles
- No Changes since last trial release
1.302159 2019-01-09 13:21:37-08:00 America/Los_Angeles (TRIAL RELEASE)
- Add table support to ctx->fail and ctx->fail_and_return
- Fix Instance.t on haiku-os
1.302158 2019-01-08 15:36:24-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix TAP test on windows
- Fix math errors in table indentation
- Devel requires Term::Table
1.302157 2019-01-08 14:10:29-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix minor typos and missing doc sections
- Add table support in info facet and TAP formatter
- updated to 1.302156
see /usr/share/doc/packages/perl-Test-Simple/Changes
1.302156 2019-01-07 11:13:07-08:00 America/Los_Angeles
- No changes from last trial
1.302155 2019-01-04 11:25:17-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix test not to fail in non-english locales
1.302154 2019-01-04 10:20:54-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix SHM pid checking for some platforms in Instance.t
- Add SHM errno/msg to warning about SHM going away
1.302153 2019-01-03 08:39:42-08:00 America/Los_Angeles (TRIAL RELEASE)
- Improve SHM verification and state awareness
1.302152 2018-12-26 12:21:32-08:00 America/Los_Angeles (TRIAL RELEASE)
- More Instance.t improvements
- Add trace to SHM error when possible
1.302151 2018-12-20 11:05:47-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix another locale error in Instance.t
1.302150 2018-12-20 10:57:09-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix locale error in Instance.t
- Windows test fixes
- perl 5.6 test fixes
1.302149 2018-12-20 09:47:31-08:00 America/Los_Angeles (TRIAL RELEASE)
- Even more SHM error improvements
1.302148 2018-12-17 13:08:23-08:00 America/Los_Angeles (TRIAL RELEASE)
- Further Improve SHM error message
1.302147 2018-12-17 12:59:14-08:00 America/Los_Angeles (TRIAL RELEASE)
- Improve SHM error message
1.302146 2018-12-17 09:06:44-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix SHM test to work on machines without SHM
1.302145 2018-12-12 11:26:32-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix localization error in new test (#820)
1.302144 2018-12-12 09:51:25-08:00 America/Los_Angeles (TRIAL RELEASE)
- Add tests for shmwrite fix (#815)
1.302143 2018-12-11 19:10:37-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix failure to check error code on shmwrite (#815)
1.302142 2018-12-11 11:55:22-08:00 America/Los_Angeles (TRIAL RELEASE)
- Fix #814 Windows fork+test failure
- Fix #819 Documentation updates
- Fix #810 Verbose TAP newline regression
- Fix #817 local $TODO bug
- Fix #812 Another local $TODO bug
- Fix #815 shm read warning
- Merge doc fix PR's from magnolia-k (thanks!)
==== polkit-default-privs ====
Version update (13.2 -> 13.2+20190128.da9c3c6)
- whitelist newly introduced network manager wifi-scan action (bsc#1122262)
- Be explicit in service file about master branch is the one in use
for tarball generation via revision parameter.
- introduce service file for pulling new releases from git upstream instead of
using the old mkchanges script from the git repo (bsc#1121841). This changes
the version number of the package but nothing else.
==== publicsuffix ====
- Do not pull in full python3, psl-make-dafsa already pulls in
what it needs to generate the things
==== python-MarkupSafe ====
- Use %license instead of %doc [bsc#1082318]
==== python-certifi ====
- Limit SUSE certificate patch to exclude Red Hat platforms since
the relevant /etc/ssl/ca-bundle.pem does not exist there
- %py_compile and %py3_compile macros do not exist on Red Hat;
substitute them with equivalent %python_exec invocations
==== python-psutil ====
Version update (5.4.8 -> 5.5.0)
- specfile:
* update copyright year
- update to version 5.5.0:
* Enhancements
+ 1350: [FreeBSD] added support for sensors_temperatures(). (patch
by Alex Manuskin)
+ 1352: [FreeBSD] added support for CPU frequency. (patch by Alex
Manuskin)
* Bug fixes
+ 1111: Process.oneshot() is now thread safe.
+ 1354: [Linux] disk_io_counters() fails on Linux kernel 4.18+.
+ 1357: [Linux] Process' memory_maps() and io_counters() method
are no longer exposed if not supported by the kernel.
+ 1368: [Windows] fix psutil.Process().ionice(...)
mismatch. (patch by EccoTheFlintstone)
+ 1370: [Windows] improper usage of CloseHandle() may lead to
override the original error code when raising an exception.
+ 1373: incorrect handling of cache in Process.oneshot() context
causes Process instances to return incorrect results.
+ 1376: [Windows] OpenProcess() now uses
PROCESS_QUERY_LIMITED_INFORMATION access rights wherever
possible, resulting in less AccessDenied exceptions being thrown
for system processes.
+ 1376: [Windows] check if variable is NULL before free()ing
it. (patch by EccoTheFlintstone)
==== python-pycryptodome ====
Subpackages: python2-pycryptodome python3-pycryptodome
- Protect older platforms from encountering "Suggests:" keyword
==== python-pyparsing ====
Version update (2.3.1~test5 -> 2.3.0+git.1546912853.bf348d6)
Subpackages: python2-pyparsing python3-pyparsing
- BuildIgnore python[23]-pyparsing: python-packaging requires it
for some actions it could perform, but we don't make use of these
here. Ignoring this dependency allows us to break open a
BuildCycle.
- Update to version 2.3.0+git.1546912853.bf348d6:
* Update CHANGES to include note on fixing issue #65; generalized the note about the decaf language example; added sample code from the statemachine examples.
* Unit test to test fix for issue #65
* Fix inconsistency between Keyword(caseless=True) and CaselessKeyword (issue #65)
* Fix typo: 'chemcialFormulas.py' -> 'chemicalFormulas.py'
* Convert exception logging to use ParseException.explain()
* Add experimental ParseException.explain() method, to return a multiline string showing the parse expressions leading to a parsing failure
* Clean up CHANGES notes for new examples
* Add document signoff and library book state examples;
* Update statemachine demo code to Py3
* Update Lucene grammar example, but remove from Travis-CI acceptance scripts
==== python-requests ====
- Support older Red Hat platforms that don't offer "Recommends:"
==== python-setuptools ====
Subpackages: python2-setuptools python3-setuptools
- BuildIgnore python[23]-pyparsing: python-packaging requires it
for some actions it could perform, but we don't make use of these
here. Ignoring this dependency allows us to break open a
BuildCycle.
==== python-six ====
Subpackages: python2-six python3-six
- Change %pretrans back to %pre to fix bootstrap issue (boo#1123064)
- Require just base python module, even full python is too much
and it is not required here
==== python-tornado ====
- Add patch really fixing the tests/tool to work on py3.7:
* asyncio.patch
- Add patch to enlarge key size for openssl 1.1.1:
* openssl-cert-size.patch
- Drop patch tornado-async-deprecations.patch that does not fix
stuff on py3.7
==== python3 ====
Version update (3.6.5 -> 3.7.2)
Subpackages: python3-curses python3-dbm
- Do not require full gettext in order to avoid pulling in the
glib2 as a dependency
- Update to 3.7.2:
* bugfix release:
https://docs.python.org/3.7/whatsnew/changelog.html#changelog
- Stop applying python-3.6.0-multilib-new.patch (which is still
WIP), and apply the old proven python-3.6.0-multilib.patch
instead.
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
- Upgrade to 3.7.2rc1:
* bugfix release, for the full list of all changes see
https://docs.python.org/3.7/whatsnew/changelog.html#changelog
- Make run of the test suite more verbose
- Write summaries without em dashes.
- Remove python-3.3.0b1-curses-panel.patch it is unnecessary anymore.
- Add boo1071941-make-install-in-sep-loc.patch to make pip and
distutils in user environment install into separate location
(boo#1071941)
Set values of prefix and exec_prefix in distutils install
command to /usr/local if executable is /usr/bin/python* and RPM
build is not detected to make pip and distutils install into
separate location
- Remove finally python-3.3.3-skip-distutils-test_sysconfig_module.patch
- Remove distutils-reproducible-compile.patch which doesn't make
really much difference in reproducibility (see
gh#python/cpython#8057 and discussion there).
- Rename Stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
to bpo34022-stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
- Add dependency on bluez-devel to build support for Bluetooth
(boo#1109998)
- Add devhelp subpackage and split qthelp into another
subpackage.
- Remove python-3.0b1-record-rpm.patch and
Python-3.0b1-record-rpm.patch, as they are not needed anymore
- Switch off test_threading for optimization builds.
- Update to python-3.7.1. This is just a brief overview, complete
changelog available at
https://docs.python.org/3.7/whatsnew/changelog.html#python-3-7-1-final:
Library
bpo-34970: Protect tasks weak set manipulation in asyncio.all_tasks()
- Patches already accepted upstream are removed:
* 00307-allow-to-call-Py_Main-after-Py_Initialize.patch
* 00308-tls-1.3.patch
- New patches added:
* Stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
* raise_SIGING_not_handled.patch
- All other patches refreshed via quilt.
- Add raise_SIGING_not_handled.patch to fix bsc#1094814
- Add patch to fix importlib return types:
* python3-imp-returntype.patch
- bpo-34022 still not completely fixed, so we have to keep
excluding test_cmd_line_script,
test_multiprocessing_main_handling, and test_runpy from the
test suite.
- Update to python 3.7.1~rc2:
Core and Builtins
bpo-34879: Fix a possible null pointer dereference in
bytesobject.c. Patch by Zackery Spytz.
bpo-34854: Fixed a crash in compiling string annotations
containing a lambda with a keyword-only argument that
doesn?t have a default value.
bpo-34320: Fix dict(od) didn?t copy iteration order of
OrderedDict.
Library
bpo-34769: Fix for async generators not finalizing when event
loop is in debug mode and garbage collector runs in another
thread.
bpo-34922: Fixed integer overflow in the digest() and
hexdigest() methods for the SHAKE algorithm in the hashlib
module.
bpo-34900: Fixed unittest.TestCase.debug() when used to call
test methods with subtests. Patch by Bruno Oliveira.
bpo-34871: Fix inspect module polluted sys.modules when parsing
__text_signature__ of callable.
bpo-34872: Fix self-cancellation in C implementation of
asyncio.Task
bpo-34819: Use a monotonic clock to compute timeouts in
Executor.map() and as_completed(), in order to prevent
timeouts from deviating when the system clock is adjusted.
bpo-34334: In QueueHandler, clear exc_text from LogRecord to
prevent traceback from being written twice.
bpo-6721: Acquire the logging module?s commonly used internal
locks while fork()ing to avoid deadlocks in the child
process.
bpo-34172: Fix a reference issue inside multiprocessing.Pool
that caused the pool to remain alive if it was deleted
without being closed or terminated explicitly.
Documentation
bpo-32174: chm document displays non-ASCII charaters properly on
some MBCS Windows systems.
Tests
bpo-32962: Fixed test_gdb when Python is compiled with flags
- mcet -fcf-protection -O0.
C API
bpo-34910: Ensure that PyObject_Print() always returns -1 on
error. Patch by Zackery Spytz.
- Add Stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch to
fix problems with SOURCE_DATE_EPOCH variable (bpo-34022)
- Add patch to fix build with tls1.3 supported openssl
* 00308-tls-1.3.patch
- Add patch to fix Py_Main calls after Py_initialize
* 00307-allow-to-call-Py_Main-after-Py_Initialize.patch
- Add -fwrapv to OPTS, which is default for python3 anyway
See for example https://github.com/zopefoundation/persistent/issues/86
for bugs which are caused by avoiding it.
- Fix ownership of _contextvars, _queue, and _xxtestfuzz
- Switch off LTO for distros with older GCC
- Fix %files
- Add dependency over libuuid-devel
- update to python 3.7.0
Complete overview of changes is available on
https://docs.python.org/3/whatsnew/3.7.html, these are just
highlights:
* PEP 563, postponed evaluation of type annotations.
* async and await are now reserved keywords.
* New library modules:
contextvars: PEP 567 ? Context Variables
dataclasses: PEP 557 ? Data Classes
importlib.resources
* New built-in features:
PEP 553, the new breakpoint() function.
* Python data model improvements:
PEP 562, customization of access to module attributes.
PEP 560, core support for typing module and generic types.
the insertion-order preservation nature of dict objects
has been declared to be an official part of the Python
language spec.
* Significant improvements in the standard library:
The asyncio module has received new features, significant
usability and performance improvements.
The time module gained support for functions with
nanosecond resolution.
* CPython implementation improvements:
Avoiding the use of ASCII as a default text encoding:
PEP 538, legacy C locale coercion
PEP 540, forced UTF-8 runtime mode
PEP 552, deterministic .pycs
the new development runtime mode
PEP 565, improved DeprecationWarning handling
* C API improvements:
PEP 539, new C API for thread-local storage
* Documentation improvements:
PEP 545, Python documentation translations
New documentation translations: Japanese, French, and Korean.
- drop python3-sorted_tar.patch
- drop 0001-allow-for-reproducible-builds-of-python-packages.patch
- refresh python-3.6.0-multilib-new.patch
- refresh subprocess-raise-timeout.patch
* new C API for thread-local storage
* Deterministic pyc files
* Built-in breakpoint()
* Data Classes
* Core support for typing module and generic types
* Customization of access to module attributes
* Postponed evaluation of annotations
* Time functions with nanosecond resolution
* Improved DeprecationWarning handling
* Context Variables
* Avoiding the use of ASCII as a default text encoding
(PEP 538, legacy C locale coercion and PEP 540, forced UTF-8 runtime mode)
* The insertion-order preservation nature of dict objects is now
an official part of the Python language spec.
* Notable performance improvements in many areas.
==== python3-base ====
Version update (3.6.5 -> 3.7.2)
- Do not require full gettext in order to avoid pulling in the
glib2 as a dependency
- Update to 3.7.2:
* bugfix release:
https://docs.python.org/3.7/whatsnew/changelog.html#changelog
- Stop applying python-3.6.0-multilib-new.patch (which is still
WIP), and apply the old proven python-3.6.0-multilib.patch
instead.
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
- Upgrade to 3.7.2rc1:
* bugfix release, for the full list of all changes see
https://docs.python.org/3.7/whatsnew/changelog.html#changelog
- Make run of the test suite more verbose
- Write summaries without em dashes.
- Remove python-3.3.0b1-curses-panel.patch it is unnecessary anymore.
- Add boo1071941-make-install-in-sep-loc.patch to make pip and
distutils in user environment install into separate location
(boo#1071941)
Set values of prefix and exec_prefix in distutils install
command to /usr/local if executable is /usr/bin/python* and RPM
build is not detected to make pip and distutils install into
separate location
- Remove finally python-3.3.3-skip-distutils-test_sysconfig_module.patch
- Remove distutils-reproducible-compile.patch which doesn't make
really much difference in reproducibility (see
gh#python/cpython#8057 and discussion there).
- Rename Stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
to bpo34022-stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
- Add dependency on bluez-devel to build support for Bluetooth
(boo#1109998)
- Add devhelp subpackage and split qthelp into another
subpackage.
- Remove python-3.0b1-record-rpm.patch and
Python-3.0b1-record-rpm.patch, as they are not needed anymore
- Switch off test_threading for optimization builds.
- Update to python-3.7.1. This is just a brief overview, complete
changelog available at
https://docs.python.org/3.7/whatsnew/changelog.html#python-3-7-1-final:
Library
bpo-34970: Protect tasks weak set manipulation in asyncio.all_tasks()
- Patches already accepted upstream are removed:
* 00307-allow-to-call-Py_Main-after-Py_Initialize.patch
* 00308-tls-1.3.patch
- New patches added:
* Stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch
* raise_SIGING_not_handled.patch
- All other patches refreshed via quilt.
- Add raise_SIGING_not_handled.patch to fix bsc#1094814
- Add patch to fix importlib return types:
* python3-imp-returntype.patch
- bpo-34022 still not completely fixed, so we have to keep
excluding test_cmd_line_script,
test_multiprocessing_main_handling, and test_runpy from the
test suite.
- Update to python 3.7.1~rc2:
Core and Builtins
bpo-34879: Fix a possible null pointer dereference in
bytesobject.c. Patch by Zackery Spytz.
bpo-34854: Fixed a crash in compiling string annotations
containing a lambda with a keyword-only argument that
doesn?t have a default value.
bpo-34320: Fix dict(od) didn?t copy iteration order of
OrderedDict.
Library
bpo-34769: Fix for async generators not finalizing when event
loop is in debug mode and garbage collector runs in another
thread.
bpo-34922: Fixed integer overflow in the digest() and
hexdigest() methods for the SHAKE algorithm in the hashlib
module.
bpo-34900: Fixed unittest.TestCase.debug() when used to call
test methods with subtests. Patch by Bruno Oliveira.
bpo-34871: Fix inspect module polluted sys.modules when parsing
__text_signature__ of callable.
bpo-34872: Fix self-cancellation in C implementation of
asyncio.Task
bpo-34819: Use a monotonic clock to compute timeouts in
Executor.map() and as_completed(), in order to prevent
timeouts from deviating when the system clock is adjusted.
bpo-34334: In QueueHandler, clear exc_text from LogRecord to
prevent traceback from being written twice.
bpo-6721: Acquire the logging module?s commonly used internal
locks while fork()ing to avoid deadlocks in the child
process.
bpo-34172: Fix a reference issue inside multiprocessing.Pool
that caused the pool to remain alive if it was deleted
without being closed or terminated explicitly.
Documentation
bpo-32174: chm document displays non-ASCII charaters properly on
some MBCS Windows systems.
Tests
bpo-32962: Fixed test_gdb when Python is compiled with flags
- mcet -fcf-protection -O0.
C API
bpo-34910: Ensure that PyObject_Print() always returns -1 on
error. Patch by Zackery Spytz.
- Add Stop_hash-based_invalidation_w_SOURCE_DATE_EPOCH.patch to
fix problems with SOURCE_DATE_EPOCH variable (bpo-34022)
- Add patch to fix build with tls1.3 supported openssl
* 00308-tls-1.3.patch
- Add patch to fix Py_Main calls after Py_initialize
* 00307-allow-to-call-Py_Main-after-Py_Initialize.patch
- Add -fwrapv to OPTS, which is default for python3 anyway
See for example https://github.com/zopefoundation/persistent/issues/86
for bugs which are caused by avoiding it.
- Fix ownership of _contextvars, _queue, and _xxtestfuzz
- Switch off LTO for distros with older GCC
- Fix %files
- Add dependency over libuuid-devel
- update to python 3.7.0
Complete overview of changes is available on
https://docs.python.org/3/whatsnew/3.7.html, these are just
highlights:
* PEP 563, postponed evaluation of type annotations.
* async and await are now reserved keywords.
* New library modules:
contextvars: PEP 567 ? Context Variables
dataclasses: PEP 557 ? Data Classes
importlib.resources
* New built-in features:
PEP 553, the new breakpoint() function.
* Python data model improvements:
PEP 562, customization of access to module attributes.
PEP 560, core support for typing module and generic types.
the insertion-order preservation nature of dict objects
has been declared to be an official part of the Python
language spec.
* Significant improvements in the standard library:
The asyncio module has received new features, significant
usability and performance improvements.
The time module gained support for functions with
nanosecond resolution.
* CPython implementation improvements:
Avoiding the use of ASCII as a default text encoding:
PEP 538, legacy C locale coercion
PEP 540, forced UTF-8 runtime mode
PEP 552, deterministic .pycs
the new development runtime mode
PEP 565, improved DeprecationWarning handling
* C API improvements:
PEP 539, new C API for thread-local storage
* Documentation improvements:
PEP 545, Python documentation translations
New documentation translations: Japanese, French, and Korean.
- drop python3-sorted_tar.patch
- drop 0001-allow-for-reproducible-builds-of-python-packages.patch
- refresh python-3.6.0-multilib-new.patch
- refresh subprocess-raise-timeout.patch
* new C API for thread-local storage
* Deterministic pyc files
* Built-in breakpoint()
* Data Classes
* Core support for typing module and generic types
* Customization of access to module attributes
* Postponed evaluation of annotations
* Time functions with nanosecond resolution
* Improved DeprecationWarning handling
* Context Variables
* Avoiding the use of ASCII as a default text encoding
(PEP 538, legacy C locale coercion and PEP 540, forced UTF-8 runtime mode)
* The insertion-order preservation nature of dict objects is now
an official part of the Python language spec.
* Notable performance improvements in many areas.
- Use faster find subcommand execution strategies.
==== rdesktop ====
Version update (1.8.3 -> 1.8.4)
- update to 1.8.4
* Add rdp_protocol_error function that is used in several fixes
* Refactor of process_bitmap_updates
* Fix possible integer overflow in s_check_rem() on 32bit arch
* Fix memory corruption in process_bitmap_data - CVE-2018-8794
* Fix remote code execution in process_bitmap_data - CVE-2018-8795
* Fix remote code execution in process_plane - CVE-2018-8797
* Fix Denial of Service in mcs_recv_connect_response - CVE-2018-20175
* Fix Denial of Service in mcs_parse_domain_params - CVE-2018-20175
* Fix Denial of Service in sec_parse_crypt_info - CVE-2018-20176
* Fix Denial of Service in sec_recv - CVE-2018-20176
* Fix minor information leak in rdpdr_process - CVE-2018-8791
* Fix Denial of Service in cssp_read_tsrequest - CVE-2018-8792
* Fix remote code execution in cssp_read_tsrequest - CVE-2018-8793
* Fix Denial of Service in process_bitmap_data - CVE-2018-8796
* Fix minor information leak in rdpsnd_process_ping - CVE-2018-8798
* Fix Denial of Service in process_secondary_order - CVE-2018-8799
* Fix remote code execution in in ui_clip_handle_data - CVE-2018-8800
* Fix major information leak in ui_clip_handle_data - CVE-2018-20174
* Fix memory corruption in rdp_in_unistr - CVE-2018-20177
* Fix Denial of Service in process_demand_active - CVE-2018-20178
* Fix remote code execution in lspci_process - CVE-2018-20179
* Fix remote code execution in rdpsnddbg_process - CVE-2018-20180
* Fix remote code execution in seamless_process - CVE-2018-20181
* Fix remote code execution in seamless_process_line - CVE-2018-20182
* Fix building against OpenSSL 1.1
- remove obsolete patches
* rdesktop-Fix-OpenSSL-1.1-compability-issues.patch
* rdesktop-Fix-crash-in-rdssl_cert_to_rkey.patch
==== readline ====
Version update (7.0 -> 8.0)
Subpackages: readline-devel readline-doc
- Update to readline-8.0 final
- Update to readline-8.0-rc1 for testing
- Update to readline-8.0-beta2 for testing
j. Readline now allows application-defined keymap names; there is a new public
function, rl_set_keymap_name(), to do that.
k. The "Insert" keypad key, if available, now puts readline into overwrite
mode.
readline-5.2-conf.patch
- Port and modify patches
* readline-6.2-metamode.patch
* readline-6.3-input.dif
* readline-7.0-screen.patch
* readline-8.0.dif
==== remmina ====
Version update (1.3.0 -> 1.3.1)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc remmina-plugin-xdmcp
- Removed upstream patch remmina-1.3.0-removed-edit-delete.patch
- Upgraded to 1.3.1
* fixed several typograpic errors
* fixed VNC clipboard bug
* Translations updated: en, de, tr, ru, it, es
* Translations for SSH error messages
* Performance improvement
* Improved CSS Styles
* rcw fixes
* fix scrolling in fullscreen mode
* fixed several issues
==== rpm ====
Subpackages: rpm-build rpm-devel
- update macrosin.diff: Set cutoff date to SLE12 GA to remove
changelogs from 2009-2014 from the generated RPMs.
==== rubygem-i18n ====
Version update (1.5.2 -> 1.5.3)
- updated to version 1.5.3
* Fix issue where localize would return strange messages if the
translation was missing - #464
==== salt ====
Subpackages: python3-salt salt-master salt-minion
- Do not restrict the Python version to < 3.7
- Fix integration tests in state compiler (U#2068)
- Added:
* fix-issue-2068-test.patch
- Fix "pkg.list_pkgs" output when using "attr" to take the arch into account (bsc#1114029)
- Added:
* remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch
- Fix powerpc null server_id_arch (bsc#1117995)
- Added:
* return-the-expected-powerpc-os-arch-bsc-1117995.patch
- Fix module 'azure.storage' has no attribute '__version__'
(bsc#1121091)
- Added:
* azurefs-gracefully-handle-attributeerror.patch
- Add supportconfig module and states for minions and SaltSSH
- Added:
* add-supportconfig-module-for-remote-calls-and-saltss.patch
- Fix FIPS enabled RES clients (bsc#1099887)
- Added:
* retire-md5-checksum-for-pkg-mgmt-plugins.patch
- Add hold/unhold functions. Fix Debian repo "signed-by".
- Added:
* decide-if-the-source-should-be-actually-skipped.patch
* add-hold-unhold-functions.patch
- Fix latin1 encoding problems on file module (bsc#1116837)
- Added:
* fix-latin1-encoding-problems-on-file-module-bsc-1116.patch
- Don't error on retcode 0 in libcrypto.OPENSSL_init_crypto
- Added:
* don-t-error-on-retcode-0-in-libcrypto.openssl_init_c.patch
- Debian info_installed compatibility (U#50453)
- Added:
* debian-info_installed-compatibility-50453.patch
- Add compatibility with other package modules for "list_repos" function
- Bugfix: unable to detect os arch when RPM is not installed (bsc#1114197)
- Added:
* make-aptpkg.list_repos-compatible-on-enabled-disable.patch
* get-os_arch-also-without-rpm-package-installed.patch
- Fix git_pillar merging across multiple __env__ repositories (bsc#1112874)
- Added:
* fix-git_pillar-merging-across-multiple-__env__-repos.patch
- Fix LDAP authentication issue when a valid token is generated
by the salt-api even when invalid user credentials are passed.
(U#48901)
- Added:
* fixing-issue-when-a-valid-token-is-generated-even-wh.patch
- Improved handling of LDAP group id. gid is no longer treated as a
string, which could have lead to faulty group creations. (bsc#1113784)
- Added:
* improved-handling-of-ldap-group-id.patch
- Fix remote command execution and incorrect access control
when using salt-api. (bsc#1113699) (CVE-2018-15751)
- Fix Directory traversal vulnerability when using salt-api.
Allows an attacker to determine what files exist on
a server when querying /run or /events. (bsc#1113698) (CVE-2018-15750)
- Added:
* fixes-cve-2018-15750-cve-2018-15751.patch
- Add multi-file support and globbing to the filetree (U#50018)
- Added:
* add-multi-file-support-and-globbing-to-the-filetree-.patch
- Bugfix: supportconfig non-root permission issues (U#50095)
- Added:
* support-config-non-root-permission-issues-fixes-u-50.patch
- Open profiles permissions to everyone for read-only
- Preserving signature in "module.run" state (U#50049)
- Added:
* preserving-signature-in-module.run-state-u-50049.patch
- Install default salt-support profiles
- Fix unit tests due to merger failure
- Add CPE_NAME for osversion* grain parsing
- Get os_family for RPM distros from the RPM macros
- Install support profiles
- Added:
* get-os_family-for-rpm-distros-from-the-rpm-macros.-u.patch
* add-cpe_name-for-osversion-grain-parsing-u-49946.patch
* make-profiles-a-package.patch
* fix-unit-test-for-grains-core.patch
- Bugfix: any unicode string of length 16 will raise TypeError
- Added:
* bugfix-any-unicode-string-of-length-16-will-raise-ty.patch
- Fix async call to process manager (bsc#1110938)
- Early feature: Salt support-config (salt-support)
- Added:
* fix-async-call-to-process-manager.patch
* early-feature-support-config.patch
- Fix IPv6 scope (bsc#1108557)
- Added:
* fix-ipv6-scope-bsc-1108557.patch
- Handle zypper ZYPPER_EXIT_NO_REPOS exit code (bsc#1108834, bsc#1109893)
- Added:
* update-error-list-for-zypper.patch
- Bugfix for pkg_resources crash (bsc#1104491)
- Added:
* do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch
- Fix loosen azure sdk dependencies in azurearm cloud driver (bsc#1107333)
- Added:
* loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch
- Fix broken "resolve_capabilities" on Python 3 (bsc#1108995)
- Added:
* fix-index-error-when-running-on-python-3.patch
- Allow empty service_account_private_key in GCE driver (bsc#1108969)
- Added:
* support-use-of-gce-instance-credentials-109.patch
==== shadow ====
- btrfs-subvolumes.patch: implement support for creating user home
directories on btrfs subvolumes (fate#316134)
==== shotwell ====
Subpackages: shotwell-lang
- Add shotwell-Adapt-to-gexiv2-changes.patch: Fix build with new
libgexiv2, rebased patch from master branch.
- Add bug fix patches from upstream stable branch:
+ shotwell-Fix_double-click_maximize.patch: Fix double-click
maximize artifacts on Wayland.
+ shotwell-slideshow_Suspend_hiding_cursor.patch: slideshow:
Suspend hiding the cursor.
+ shotwell-vala-fixes.patch: vala: Accept
string.index_of_nth_char() to return long or int for new valac.
+ shotwell-Fix_crash_when_dismissing_modifications.patch: direct:
Fix crash when dismissing modifications.
+ shotwell-authenticator_Fix_google_and_flickr_auth.patch:
authenticator: Fix google and flickr authenticator.
==== sqlite3 ====
Subpackages: libsqlite3-0 libsqlite3-0-32bit
- btree02.test depended on Tcl internals that changed in 8.6.9.
(sqlite3-btree02-100.patch)
==== sudo ====
Version update (1.8.26 -> 1.8.27)
- Update to 1.8.27
* Fixes and clarifications to the sudo plugin documentation
* The sudo manuls no longer require extensive post-processing
* If an I/O logging plugin is configured, sudo will no longer
force the command to be run in a pseudo-tty
* #843 (PAM handling error) correctly fixed.
* In visudo, it's now possible to specify the path to sudoers
without using the -f option (#864)
* Fixed a big introduced in 1.8.22 where utm/p/utmpx would not
be updated when a command was run in a pseudo-tty (#865)
* Sudo now sets the silent flag when opening the PAM session
except when running a shell via sudo -s or sudo -i (#867)
==== sysconfig ====
Version update (0.84.3 -> 0.85.0)
Subpackages: sysconfig-netconfig
- version 0.85.0
- netconfig: change to write resolv.conf,yp.conf,forwarders.conf
to files in /[var/]run/netconfig/ and link in /etc (fate#325872)
- netconfig: add to update ntp servers in chrony (bsc#1099272) and
cleaned up to use start-ntpd addserver to update ntpd servers.
==== systemd ====
Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1 libudev1-32bit systemd-32bit systemd-logger systemd-sysvinit udev
- Import commit ad34cc45f63720ced69960dc66b47bddb146176d
Import a bunch of fixes from stable/v239-stable:
c8293f5af4 Revert "network: set DynamicUser= to systemd-networkd.service"
7f605592e6 Revert "resolve: enable DynamicUser= for systemd-resolved.service"
5a48e92e06 test: Fix networkd test for an already running service
36eae1688b Revert "timesyncd: enable DynamicUser="
3a11f24cf0 Revert "unit: drop After=systemd-sysusers.service from timesyncd"
23cfd15ce9 machinectl: fix verbosity of import-raw or friends
ba037daf29 Make bzip2 an optional dependency for systemd-importd
fb609d2721 pull: initialize libgcrypt before calling any functions provided by libgcrypt
c50857bc6b hwdb: remove stray 'i' in hwdb match string for the HP Spectre (#9571)
9a12fd17f5 man: Mention that paths in unit files must be fully normalized.
76fc2ab4a6 tree-wide: use instead of #ifdef for HAVE_*
fcc699c093 network: update log message
a4f497b2cd Use #if instead of #ifdef for ENABLE_GSHADOW
121c662eb8 man: add missing option for system.conf
564341146e core: add missing option and drop nonexistent option in system.conf
7082a3599f journal: add missing option in journald.conf
3c15efa9c1 basic: add missing comma in raw_clone assembly for sparc
4c210b6dce cryptsetup: Add dependency on loopback setup to generated units
c777fbbe3e journal-gateway: use localStorage["cursor"] only when it has valid value
c5b1bef639 journal-gateway: explicitly declare local variables
2361522ca6 analyze: actually select longest activated-time of services
3e810d92d9 sd-bus: fix implicit downcast of bitfield reported by LGTM
aef660a4cf resolvconf: fixes for the compatibility interface
06b3f54f50 install: fix error handling in is_symlink_with_known_name()
f70ab9a468 portable: fix error handling
d2c40d4e80 resolve: fix return value type of dns_answer_has_dname_for_cname()
6f684e0670 resolve: dns_scope_network_good() does not returns negative errno
15d83e1138 bus-util: fix error handling
ba0a1f3384 core: free lines after reading them
- Import commit 3bece8a25ae11e8ec132cdecc7e72a00ee790994
89a9721a47 Revert "logind: become the controlling terminal process before restoring VT" (bsc#1120836)
c3a8dc821b pam_systemd: reword message about not creating a session
0ba0f5b3ef pam_systemd: suppress LOG_DEBUG log messages if debugging is off
- Import commit a3b059a8c60622e4ec30aabda93c6b41d0953dc4
9dbe9f12ec journal-remote: set a limit on the number of fields in a message (CVE-2018-16865 bsc#1120323)
61d569ab1b journal-remote: verify entry length from header
a08760b26c �httpd: use a cleanup function to call MHD_destroy_response
43f46a1a3d journal-gateway: use _cleanup_ attribute to stop microhttpd daemon
437b0b2d01 journald: lower the maximum entry size limit to � for non-sealed fds
ac9e209710 journald: when processing a native message, bail more quickly on overbig messages
ce103705b9 journald: set a limit on the number of fields (1k) (CVE-2018-16865 bsc#1120323)
35538171c2 coredump: fix message when we fail to save a journald coredump
cfe247b555 basic/process-util: limit command line lengths to _SC_ARG_MAX
9d59e6f6ee journald: do not store the iovec entry for process commandline on stack (CVE-2018-16864 bsc#1120323)
8d650a68d4 journald: remove unnecessary {}
b608f532a4 coredump: remove duplicate MESSAGE= prefix from message
0dbb2dc066 vconsole-setup: fonts copy will fail if the current terminal is in graphical mode (bsc#1114933)
e501d65540 Revert "systemctl: when removing enablement or mask symlinks, cover both /run and /etc"
d3ea69961f fs-util: rename safe_transition() into unsafe_transition()
338470fdc9 tmpfiles: use CHASE_WARN in addition to CHASE_SAFE
d9ae1b30da fs-util: make chase_symlink() returns -ENOLINK when unsafe transitions are met
8b76594d1f fs-util: add new CHASE_WARN flag to chase_symlinks()
==== systemd-presets-branding-openSUSE ====
- hylafax-timers added (boo#1115442)
==== systemd-presets-common-SUSE ====
- Recent versions of mlocate don't use updatedb.timer any more.
Instead, the unit is called mlocate.timer. [boo#1115408]
- branding-preset-states: Apply preset to all unit types
(bsc#1121219).
- Rename 90-default-SUSE.preset to 95-default-SUSE.preset, so
product branding takes precedence over common presets.
- Add default user preset: currently containing only the new
pulseaudio.socket (bsc#1083473)
- Add issue-generator.path to make sure /etc/issue is really
regenerated if snippets change [bsc#1116825]
- Enable new unbound-anchor timer to keep root.key updated
(bsc#1115417)
==== tcl ====
Version update (8.6.7 -> 8.6.9)
- Fix a regression in the handling of denormalized empty lists
(tcl-expand-regression.patch, tcl#cc1e91552c).
- New version: 8.6.9:
* NR-enable [package require]
* (bug)[9fd5c6] crash in object deletion, test oo-11.5
* (bug)[3c32a3] crash deleting object with class mixed in
* (platform) stop using -lieee, removed from glibc-2.27
* (bug)[8e6a9a] bad binary [string match], test string-11.55
* (bug)[1873ea] repair multi-thread std channel init
* (bug)[db36fa] broken bytecode for index values
* (bug) broken compiled [string replace], test string-14.19
* (bug) [string trim*] engine crashed on invalid UTF
* (bug) missing trace in compiled [array set], test var-20.11
* (bug)[46a241] crash in unset array with search, var-13.[23]
* (bug)[27b682] race made [file delete] raise "no such file"
* (bug)[925643] 32/64 cleanup of filesystem DIR operations
* (bug) leaks in TclSetEnv and env cache
* (bug)[3592747] [yieldto] dying namespace, tailcall-14.1
* (bug)[270f78] race in [file mkdir]
* (bug)[3f7af0] [file delete] raised "permission denied"
* (bug)[d051b7] overflow crash in [format]
* revised quoting of [exec] args in generated command line
* HTTP Keep-Alive with pipelined requests
* (new)[TIP 505] [lreplace] accepts all out of range indices
* (bug) Prevent crash from NULL keyName in the registry package
* Update tcltest package for Travis support
* (bug)[35a8f1] overlong string length of some lists
* (bug)[00d04c] Repair [binary encode base64]
- handle s390 like s390x (bnc#1085480)
- Version 8.6.8:
* [array names -regexp] supports backrefs
* Fix gcc build failures due to #pragma placement
* (bug)[b50fb2] exec redir append stdout and stderr to file
* (bug)[2a9465] http state 100 continue handling broken
* (bug)[0e4d88] replace command, delete trace kills namespace
* (bug)[1a5655] [info * methods] includes mixins
* (bug)[fc1409] segfault in method cloning, oo-15.15
* (bug)[3298012] Stop crash when hash tables overflow 32 bits
* (bug)[5d6de6] Close failing case of [package prefer stable]
* (bug)[4f6a1e] Crash when ensemble map and list are same
* (bug)[ce3a21] file normalize failure when tail is empty
* (new)[TIP 477] nmake build system reform
* (bug)[586e71] EvalObjv exception handling at level #0
==== thunar ====
Version update (1.8.2 -> 1.8.4)
Subpackages: libthunarx-3-0 thunar-lang
- fixed bug trackers in latest changelog
- Update to 1.8.4
* Emergency release, triggerd by some trouble with the added support for
org.freedesktop.FileManager1.service in thunar 1.8.3
* Renamed org.freedesktop.FileManager1.service.in to
org.xfce.Thunar.FileManager1.service.in to avoid name clashes (bxo#12414)
* Dont exit when name org.freedesktop.filemanager1 lost on message-dbus
(bxo#15088)
* Translation updates
- Update to 1.8.3:
* Thunar sometimes mounts USB drives with root permission (bxo#14719)
* FreeBSD -Thunar crash due to passing null to strcmp() (bxo#15059)
* Add support for org.freedesktop.FileManager1 (bxo#12414)
* Still 8sec delay on logout when there is an open thunar window (bxo#15008)
* Thunar does not recover directories opened in a previous session (bxo#14969)
* Thunar utilizes 100%CPU when the parent directory is not readable (bxo#14900)
* Add support for CTRL+Z in rename dialog (bxo#14956)
* Thunar rarely freezes when switching to tree-view (bxo#14960)
* Crash in tree-view when multiple windows are open (bxo#14714)
* Improve description of UCA command parameters (bxo#14720)
* Fixed some Warnings and GLib-GObject-CRITICAL messages
* Translation updates
- added %license macro
- added Recommends: catfish for file search
==== tk ====
Version update (8.6.7 -> 8.6.9)
- Version 8.6.9:
* (bug)[aa7679] crash using window after master destroyed
* (bug)[925262] New option -state for ttk::scale
* (bug)[fa8de7] Crash [ttk::checkbutton .x -variable {}]
* (bug)[382712] Crash in [event generate . <KeyPress>]
* (bug)[657c38] Crash in menu destroy with checkbutton entry
* (bug)[de156e] Deny PRIMARY selection access in safe interps
* (bug)[b68710] Fixes in [text] bindings
* (bug)[e20d5c] Stop failures of textTag-18.1
* (bug)[5d991b] Fortify var traces against deleted vars
* (bug)[1821174] Stop RenderBadPicture X error
* (bug)[502e74] Stop X errors on untrusted connections
* (bug)[71b131] Regression in Tk_DrawChars()
* (bug)[59fccb] menu flaws when empty menubar clicked
* (bug)[7423f9] improved legacy support for [tk_setPalette]
* (bug)[de01e2] Crash in [$text replace]
* (bug)[135696] Crash in [wm transient]
* (bug)[309b42] Improve ttk high-contrast-mode support
* (bug)[fabed1] GIF photo support for "deferred clear code"
* (bug)[3441086] error message in layout-2
* (bug)[05bd7f] vista theme for combobox
* (bug)[382712] crash in KeyPress event handling
* (bug)[6fcaaa] insertion cursor visibility in ttk::entry
* (bug)[822923] cascade menu indicator color
* (bug)[9658bc] borderwidth calculations on menu items
* (bug)[ca403f] treeview border drawing
* (bug)[4b555a] hang in [$text search -all]
* (bug)[6b22d4] [treeview] binding fix
- Update tkcon.tcl to CVS revision 1.124:
* Use -underline clearly to disambiguate from new 8.6.6 option
- underlinefg
* prevent file edit from undoing loading of file
- add explicit buildrequire on fontconfig-devel
- Version 8.6.8:
* (bug)[f1a3ca] Memory leak in [text] B-tree
* (bug)[ee40fd] Report [console] init errors
* (bug)[3295446] Improve history visibility in [console]
* (bug)canvas closed polylines fully honor -joinstyle
* (bug)[cc42cc] out of mem crash in tests imgPhoto-18.*
* (bug)[3406785] fix coords rounding when drawing canvas items
* (bug)[8277e1] linux fontchooser sync with available fonts
* (bug)[5239fd] Segfault copying a photo image to itself
* (bug)[514ff6] canvas rotated text overlap detection
* (bug)[1e0db2] canvas rchars artifacts
* (bug)[d9fdfa] display of Long non-wrapped lines in text
* (bug)[dd9667] text anchor not set
* (bug)[bb6b40] ::tk::AmpMenuArgs and 'entryconf'
* (bug)[55b95f] Crash [scale] with a bignum value
* (bug)[ce62c8] text-37.1 fails
* (bug)[0ef1c5] OS X - tests menu-22.[345] hang
* (bug) display of embedded toplevels
* (bug)[73ba07] Correct property type for MULTIPLE conversion
* (bug) Memory leak in tkImgPhoto.c.
* (bug) Defeat zombie toplevels
* (bug) [wm withdraw] on Window and Dock menus
* (new)[TIP 477] nmake build system reform
- Sync SLE12 with Factory to fix a bug in Itcl that was affecting
iwidgets (bsc#903017).
==== udisks2 ====
Version update (2.7.6 -> 2.7.8)
Subpackages: libudisks2-0 libudisks2-0_btrfs udisks2-lang
- Update to version 2.7.8:
+ Fix string format vulnerability (CVE-2018-17336)
==== update-alternatives ====
- Use %license instead of %doc [bsc#1082318]
==== upower ====
Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang
- Add upower_daemon-consider-pending-charge.patch: daemon: Consider
pending-charge when calculating the display state.
==== util-linux ====
Version update (2.33 -> 2.33.1)
Subpackages: libblkid-devel libblkid1 libblkid1-32bit libfdisk1 libmount1 libmount1-32bit libsmartcols1 libuuid-devel libuuid1 libuuid1-32bit util-linux-lang
- Update to version 2.33.1:
* agetty fixes (drop util-linux-agetty-smart-reload-10.patch,
util-linux-agetty-smart-reload-11.patch,
util-linux-agetty-smart-reload-12.patch).
* Other minor fixes and documentation updates.
- agetty: Fixes for reload issue only if it is really needed
(bsc#1085196, boo#1120298,
util-linux-agetty-smart-reload-10.patch,
util-linux-agetty-smart-reload-11.patch,
util-linux-agetty-smart-reload-12.patch).
==== util-linux-systemd ====
Version update (2.33 -> 2.33.1)
- Update to version 2.33.1:
* agetty fixes (drop util-linux-agetty-smart-reload-10.patch,
util-linux-agetty-smart-reload-11.patch,
util-linux-agetty-smart-reload-12.patch).
* Other minor fixes and documentation updates.
- agetty: Fixes for reload issue only if it is really needed
(bsc#1085196, boo#1120298,
util-linux-agetty-smart-reload-10.patch,
util-linux-agetty-smart-reload-11.patch,
util-linux-agetty-smart-reload-12.patch).
==== xfce4-panel-plugin-mpc ====
Version update (0.5.0 -> 0.5.1)
Subpackages: xfce4-panel-plugin-mpc-lang
- update to 0.5.1
* fix a long-standing crasher when using multiple outputs
* improve icon sizing on 4.13 panel
* improve spacing in settings dialog (bxo#14671)
* allow %file% in format_song_display (bxo#12973)
==== yast2-python-bindings ====
Version update (4.0.7 -> 4.0.8)
- Update to 4.0.8
+ Forward port python import capability, with improvements and
code cleanup; (bsc#1122532).
+ Add pydocs to yast python
+ Improve building/packaging of python2/3
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
18
23
Re: [opensuse-factory] Re: [PLEASE SPEAK UP] Disabling legacy file systems by default?
by Jim E Bonfiglio 01 Feb '19
by Jim E Bonfiglio 01 Feb '19
01 Feb '19
Hi everyone- my apologies earlier for a message sent with the From name
as "Computer people". I made a mistake setting up Evolution with the
Account Information/Name and Required Information/Full Name labels in
English. Again, my apologies for any confusion that resulted from my
mistake.
Martin- I haven't seen your proposal you mentioned yesterday so it
appears that everything in this thread is theoretical rather than a
potentiality of an implementation. I am not suggesting that all file
systems should be "fixed"- though I certainly would not complain if
that was selected as a course of action, but by blacklisting some file
systems the attack surface is only reduced instead of eliminated.
To eliminate this risk of attack through the attack surface, I strongly
recommend encapsulating the storage subsystem such that this attack
surface does not exist. There are many methods of accomplishing this
task, however this area lies outside of my core competencies. I would
be doing the distribution a disservice by volunteering to attend to
this issue.
Further, I advocate for the addition of a use case where a disabled
file system is mounted or detected after boot, in addition to the
previously mentioned use case of a dual booted system.
Best, Jim
On Thu, 2019-01-31 at 22:04 +0100, Martin Wilck wrote:
> On Thu, 2019-01-31 at 14:05 -0500, Jim E Bonfiglio wrote:
> > Hi Jim- I do have several horses in this race, and while it may be
> > sensible in the near-term it does not address the underlying issue
> > of
> > insecure file systems regardless of their implementation.
> >
> > Per my previous reply, I strongly recommend the security risk be
> > contained so that any file system regardless of its
> > risks/vulnerabilities can be utilized. Pretty much all file systems
> > have had or eventually will be a security risk regardless of
> > implementation. Addressing this risk now should prevent future
> > issues.
>
> So, what's your proposal for "containing the security risk", rather
> than the blacklisting approach? Fixing all the file systems, and
> keeping them maintained forever? Are you volunteering?
>
> Regards,
> Martin
>
>
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org
1
0