June 2019 - openSUSE Factory - openSUSE Mailing Lists

[opensuse-factory] [PLEASE SPEAK UP] Disabling legacy file systems by default?
by Martin Wilck 09 Jul '19

09 Jul '19

SUSE will blacklist a number of legacy and/or less frequently used file systems by default on SLES for security reasons. The proposed list can be seen here: https://github.com/openSUSE/suse-module-tools/pull/5/commits/8cb42fb6658f21… The question is now whether we should do the same for openSUSE. I figure that while the above list is probably not controversial for enterprise customers, openSUSE users may have objections to some items on the list. Please speak up if you do. In any case, note that even if we do this, you can re-enable the filesystems you need by simply commenting out lines in the blacklist file. Regards, Martin -- Dr. Martin Wilck <mwilck(a)suse.com>, Tel. +49 (0)911 74053 2107 SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton HRB 21284 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

45 209

[opensuse-factory] New Tumbleweed snapshot 20190628 released!
by Dominique Leuenberger 02 Jul '19

02 Jul '19

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: crash (7.2.5_k5.1.10_1 -> 7.2.6_k5.1.10_1) libqt5-qtbase (5.12.3 -> 5.13.0) libqt5-qtconnectivity (5.12.3 -> 5.13.0) libqt5-qtdeclarative (5.12.3 -> 5.13.0) libqt5-qtgraphicaleffects (5.12.3 -> 5.13.0) libqt5-qtimageformats (5.12.3 -> 5.13.0) libqt5-qtlocation (5.12.3 -> 5.13.0) libqt5-qtmultimedia (5.12.3 -> 5.13.0) libqt5-qtnetworkauth (5.12.3 -> 5.13.0) libqt5-qtquickcontrols (5.12.3 -> 5.13.0) libqt5-qtquickcontrols2 (5.12.3 -> 5.13.0) libqt5-qtscript (5.12.3 -> 5.13.0) libqt5-qtsensors (5.12.3 -> 5.13.0) libqt5-qtserialport (5.12.3 -> 5.13.0) libqt5-qtspeech (5.12.3 -> 5.13.0) libqt5-qtsvg (5.12.3 -> 5.13.0) libqt5-qttools (5.12.3 -> 5.13.0) libqt5-qttranslations (5.12.3 -> 5.13.0) libqt5-qtvirtualkeyboard (5.12.3 -> 5.13.0) libqt5-qtwayland (5.12.3 -> 5.13.0) libqt5-qtwebchannel (5.12.3 -> 5.13.0) libqt5-qtwebengine (5.12.3 -> 5.13.0) libqt5-qtwebsockets (5.12.3 -> 5.13.0) libqt5-qtx11extras (5.12.3 -> 5.13.0) libqt5-qtxmlpatterns (5.12.3 -> 5.13.0) postfix vim (8.1.1561 -> 8.1.1600) === Details === ==== crash ==== Version update (7.2.5_k5.1.10_1 -> 7.2.6_k5.1.10_1) - Upgrade source tarball to version 7.2.6 - drop patches obsoleted by version upgrade * crash-xen-invalid-pcpu-vaddr-use-hardware-domain-symbol.patch * crash-fix-for-4.20-without-CONFIG_RANDOMIZE_BASE.patch * crash-fix-for-virsh-dump-dumps-with-KASLR.patch * crash-fix-kmem-z-on-kernel-5.0.patch * crash-fix-kmem-i-on-kernel-5.0.patch * crash-fix-sym-for-module-symbols-on-kernel-5.0.patch * crash-fix-dis-function-for-module-symbols-on-kernel-5.0.patch * crash-handle-radix_tree_root-changes-in-post-5.1-kernels.patch * crash-find-kernel-configuration-data-with-kernel-5.1.patch * crash-fix-dev-dD-on-kernel-5.1.patch ==== libqt5-qtbase ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Add patch to restore compatibility with akonadi's PGSQL backend (see https://bugs.archlinux.org/task/62997): * 0001-Revert-Always-escape-the-table-names-when-creating-t.patch - Disable libzstd support again, it breaks various existing codebases (QTBUG-76521) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtbase.git/plain/dist/changes-5.13.0/?h=5.13 - Remove patches, now upstream: * 0001-Add-quoting-to-deal-with-empty-CMAKE_CXX_STANDARD_LI.patch - Add patches to improve compatibility with Krita: * 0001-Fix-notification-of-QDockWidget-when-it-gets-undocke.patch * 0002-Synthesize-Enter-LeaveEvent-for-accepted-QTabletEven.patch * 0003-Add-an-ID-for-recognition-of-UGEE-tablets.patch - Revert yet another commit to fix linker errors: * 0001-Revert-qmake-link-qt-libraries-by-full-path.patch - Enable libzstd support - Revert some commits in the hope of fixing some broken paths (QTBUG-76255): * 0001-Revert-Fix-QMAKE_PRL_INSTALL_REPLACE-for-macOS.patch * 0002-Revert-Replace-absolute-Qt-lib-dir-in-.prl-files.patch * 0003-Revert-Fix-prl-replacements-if-libdir-is-in-QMAKE_DE.patch - Add patch to fix some cmake module config files (QTBUG-76244): * 0001-Add-quoting-to-deal-with-empty-CMAKE_CXX_STANDARD_LI.patch - Update to 5.13.0-rc: * New bugfix release * No changelog available - Remove patches, now upstream: * 0001-Fix-page-breaking-with-large-images.patch ==== libqt5-qtconnectivity ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5Bluetooth5 libQt5Bluetooth5-imports libQt5Nfc5 libQt5Nfc5-imports libqt5-qtconnectivity-tools - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtconnectivity.git/plain/dist/changes-5.13.0/?h=5… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtdeclarative ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtdeclarative.git/plain/dist/changes-5.13.0/?h=5.… - Remove patches, upstream in 5.13: * Dont-crash-when-accessing-invalid-properties.patch ==== libqt5-qtgraphicaleffects ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtgraphicaleffects.git/plain/dist/changes-5.13.0/… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtimageformats ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtimageformats.git/plain/dist/changes-5.13.0/?h=5… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * Switched to new configuration system * New bugfix release * No changelog available - Refresh jas_version.patch - Add "-mng" to force-enable mng support, was implicitly enabled before - Add "-system-tiff -system-webp" to enforce use of system libs ==== libqt5-qtlocation ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5Location5 libQt5Positioning5 libQt5PositioningQuick5 - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtlocation.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtmultimedia ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtmultimedia.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtnetworkauth ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtnetworkauth.git/plain/dist/changes-5.13.0/?h=5.… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtquickcontrols ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtquickcontrols.git/plain/dist/changes-5.13.0/?h=… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtquickcontrols2 ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5 - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtquickcontrols2.git/plain/dist/changes-5.13.0/?h… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtscript ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtscript.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available ==== libqt5-qtsensors ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5Sensors5 libQt5Sensors5-imports - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtsensors.git/plain/dist/changes-5.13.0/?h=5.13 - Update the license for the example subpackage - Update License tag, no Qt Company exception involved - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtserialport ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtserialport.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtspeech ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtspeech.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtsvg ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtsvg.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qttools ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5Designer5 libQt5Help5 libqt5-qdbus libqt5-qtpaths - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qttools.git/plain/dist/changes-5.13.0/?h=5.13 - Drop patches, now upstream: * 0001-qdoc-Don-t-spam-garbage.patch - Add patch to fix doc builds getting terminated: * 0001-qdoc-Don-t-spam-garbage.patch - Update to 5.13.0-rc: * New bugfix release * No changelog available ==== libqt5-qttranslations ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qttranslations.git/plain/dist/changes-5.13.0/?h=5… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtvirtualkeyboard ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtvirtualkeyboard.git/plain/dist/changes-5.13.0/?… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtwayland ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtwayland.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Drop patches, bug fixed upstream: * 0001-Revert-Fix-compilation-with-QT_NO_WARNING_OUTPUT.patch * 0002-Revert-Client-Don-t-send-illegal-wl_pointer.set_curs.patch * 0003-Revert-Client-tests-Add-convenience-for-getting-curs.patch * 0004-Revert-Client-Decrease-buffer_scale-for-small-cursor.patch * 0005-Revert-Client-Refactor-cursors-and-fix-various-bugs.patch - Revert upstream commits to hopefully fix kscreenlocker crash (kde#407653): * 0001-Revert-Fix-compilation-with-QT_NO_WARNING_OUTPUT.patch * 0002-Revert-Client-Don-t-send-illegal-wl_pointer.set_curs.patch * 0003-Revert-Client-tests-Add-convenience-for-getting-curs.patch * 0004-Revert-Client-Decrease-buffer_scale-for-small-cursor.patch * 0005-Revert-Client-Refactor-cursors-and-fix-various-bugs.patch - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtwebchannel ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtwebchannel.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtwebengine ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtwebengine.git/plain/dist/changes-5.13.0/?h=5.13 - Replace open coded macro for parallel build limit by the one from the memory-constraints package - Update to 5.13.0-rc: * New bugfix release * No changelog available - Fix system_vpx bcond - Update to 5.13.0-beta2: * New bugfix release * No changelog available - Refresh patches: * harmony-fix.diff * chromium-non-void-return.patch (sigh, again) - Fix system_vpx bcond - Disable using the system ICU on Leap < 16, too old ==== libqt5-qtwebsockets ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5WebSockets5 libQt5WebSockets5-imports - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtwebsockets.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtx11extras ==== Version update (5.12.3 -> 5.13.0) - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtx11extras.git/plain/dist/changes-5.13.0/?h=5.13 - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== libqt5-qtxmlpatterns ==== Version update (5.12.3 -> 5.13.0) Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports - Update to 5.13.0: * New bugfix release * No changelog available * For more details about Qt 5.13 please see: * http://code.qt.io/cgit/qt/qtxmlpatterns.git/plain/dist/changes-5.13.0/?h=5.… - Update to 5.13.0-rc: * New bugfix release * No changelog available - Update to 5.13.0-beta2: * New bugfix release * No changelog available ==== postfix ==== Subpackages: postfix-doc - Ensure that postfix is member of all groups as before. ==== vim ==== Version update (8.1.1561 -> 8.1.1600) Subpackages: gvim vim-data vim-data-common - Updated to version 8.1.1600, fixes the following problems * Popup_setoptions() is not implemented yet. * Popup window not always redrawn after popup_setoptions(). * Crash when using closures. * Sign column takes up space. (Adam Stankiewicz) * Error message when terminal closes while it is not in the current tab. * Localtime_r() does not respond to $TZ changes. * Cannot build with signs but without diff feature. * Icon signs not displayed properly in the number column. * textprop highlight starts too early if just after a tab. * Compiler warnings with tiny build. (Tony Mechelynck) * Textprop test fails if screenhots do not work. * Tabpage option not yet implemented for popup window. * Compiler warning for unused argument. * Command line redrawn for +arabic without Arabic characters. (Dominique Pelle) * Dict and list could be GC'ed while displaying error in a timer. (Yasuhiro Matsumoto) * Cannot make part of a popup transparent. * Shared functions for testing are disorganised. * Cannot build with +textprop but without +timers. * Set_ref_in_list() only sets ref in items. * The evalfunc.c file is getting too big. * :let-heredoc does not trim enough. * Error number used in two places. * Redraw problem when sign icons in the number column. * In :let-heredoc line continuation is recognized. * Popup window does not indicate scroll position. * Popup window test fails. * On error garbage collection may free memory in use. * May start file dialog while exiting. * Filetype not detected for C++ header files without extension. * May still start file dialog while exiting. * When resizing the screen may draw popup in wrong position. (Masato Nishihata) * Cannot scroll a popup window with the mouse. * Update to test file missing. * Compiler warning for uninitialized variable. (Tony Mechelynck) * Cannot specify highlighting for popup window scrollbar. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

4 3

[opensuse-factory] New Tumbleweed snapshot 20190626 released!
by Dominique Leuenberger 02 Jul '19

02 Jul '19

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ImageMagick (7.0.8.48 -> 7.0.8.49) MozillaFirefox (67.0 -> 67.0.4) MozillaThunderbird (60.7.1 -> 60.7.2) NetworkManager NetworkManager-applet accerciser (3.32.2 -> 3.32.3) audit audit-secondary bolt (0.7 -> 0.8) btrfsmaintenance ding-libs dleyna-core dleyna-server dnsmasq epiphany evolution (3.32.2 -> 3.32.3) evolution-data-server (3.32.2 -> 3.32.3) ffmpeg-4 filesystem gcc9 (9.1.1+r271393 -> 9.1.1+r272147) gconf2 git (2.21.0 -> 2.22.0) gitg glib-networking (2.60.2 -> 2.60.3) glib2 (2.60.3 -> 2.60.4) gnome-shell google-noto-fonts gupnp-igd hwdata (0.323 -> 0.324) kernel-firmware (20190514 -> 20190618) kernel-source (5.1.7 -> 5.1.10) libXi (1.7.9 -> 1.7.10) libappindicator libcontainers-common libguestfs librevenge libseccomp (2.4.0 -> 2.4.1) libsolv (0.7.4 -> 0.7.5) libssh2_org (1.8.2 -> 1.9.0) libvirt libzypp (17.11.4 -> 17.12.0) linux-glibc-devel (5.0 -> 5.1) man ncurses ntp numad obs-service-tar_scm (0.10.9.1557261720.32a1cdb -> 0.10.9.1559745964.22c86cd) openexr ovmf (2019+git1552059899.89910a39dcfd -> 201905) permissions (1550_20190429 -> 1550_20190521) plasma-browser-integration (5.16.1 -> 5.16.2) pulseaudio python python-base rp-pppoe (3.12 -> 3.13) rubygem-cfa (0.7.0 -> 1.0.0) rubygem-cfa_grub2 (1.0.1 -> 2.0.0) rygel (0.36.2 -> 0.38.1) salt schily sessreg (1.1.1 -> 1.1.2) spamassassin system-config-printer systemd-presets-branding-openSUSE systemd-presets-common-SUSE sysvinit (2.90 -> 2.95) vala (0.44.4 -> 0.44.5) vsftpd webkit2gtk3 xdg-desktop-portal-kde (5.16.1 -> 5.16.2) xfce4-panel-plugin-cpugraph (1.0.90 -> 1.0.91) zlib zypper (1.14.27 -> 1.14.28) === Details === ==== ImageMagick ==== Version update (7.0.8.48 -> 7.0.8.49) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI6 libMagickWand-7_Q16HDRI6 perl-PerlMagick - disable indirect reads [bsc#1138425] (https://imagemagick.org/script/security-policy.php) - modified patches % ImageMagick-configuration-SUSE.patch (refreshed) - version update to 7.0.8.49 * Add support for RGB565 image format (reference https://imagemagick.org/discourse-server/viewtopic.php?f=2&t=36078). * Use user defined allocator instead of `malloc` (reference https://github.com/ImageMagick/ImageMagick6/pull/49/). * Add static decorator to accelerator kernels (reference https://github.com/ImageMagick/ImageMagick/issues/1366). ==== MozillaFirefox ==== Version update (67.0 -> 67.0.4) Subpackages: MozillaFirefox-translations-common - Mozilla Firefox 67.0.4 MFSA 2019-19 (boo#1138872) * CVE-2019-11708 (bmo#1559858) sandbox escape using Prompt:Open - Mozilla Firefox 67.0.3 MFSA 2019-18 (boo#1138614) * CVE-2019-11707 (bmo#1544386) Type confusion in Array.pop - Mozilla Firefox 67.0.2 * Fixed: Fix JavaScript error ("TypeError: data is null in PrivacyFilter.jsm") in console which may significantly degrade sessionstore reliability and performance (bmo#1553413) * Fixed: Proxy authentication dialog box repeatedly pops up asking to authenticate after upgrading to Firefox 67 (bmo#1548804) * Fixed: Pearson MyCloud breaks if FIDO U2F is not Chrome's implementation (bmo#1551282) * Fixed: Starting in safe mode on Linux or macOS causes Firefox to think on the subsequent launch that the profile is too recent to be used with this version of Firefox (bmo#1556612) * Fixed: Linux distribution users can't easily install/use additional/different languages using the built-in preferences UI (bmo#1554744) * Fixed: Developer tools users can't copy the href/src content from various HTML tags via the context menu in the Inspector markup view (bmo#1552275) * Fixed: Custom home page is broken with clearing data on shutdown settings applied (bmo#1554167) * Fixed: Performance-regression for eclipse RAP based applications (bmo#1555962) * Fixed: macOS 10.15 crash fix (bmo#1556076) * Fixed: Can't start two downloads in parallel via <a download> anymore (bmo#1542912) - Mozilla Firefox 67.0.1 * enable enhanced tracking protection by default for new users * upgrade of Facebook container to version 2.0 * new version of Firefox Lockwise (password management) * new version of Firefox Monitor * Firefox Send improvements ==== MozillaThunderbird ==== Version update (60.7.1 -> 60.7.2) Subpackages: MozillaThunderbird-translations-common - Mozilla Thunderbird 60.7.2 MFSA 2019-20 (boo#1138872) * CVE-2019-11707 (bmo#1544386) Type confusion in Array.pop * CVE-2019-11708 (bmo#1559858) sandbox escape using Prompt:Open ==== NetworkManager ==== Subpackages: NetworkManager-lang libnm0 typelib-1_0-NM-1_0 - Add nm-add-CAP_SYS_ADMIN-permission.patch: Add CAP_SYS_ADMIN which netconfig needs to call setdomainname (bsc#1129587). ==== NetworkManager-applet ==== Subpackages: NetworkManager-applet-lang NetworkManager-connection-editor libnma0 nma-data typelib-1_0-NMA-1_0 - Rebase feature-app-indicator-desktop-file.patch (boo#1138523). ==== accerciser ==== Version update (3.32.2 -> 3.32.3) Subpackages: accerciser-lang - Update to version 3.32.3: + Fix showing relations. + Fix support for IPython 7. + Fix build instructions. + Don't crash on empty schema list. + Fix using translations. ==== audit ==== Subpackages: audit-devel libaudit1 libaudit1-32bit libauparse0 - Make use of some %make_install. ==== audit-secondary ==== Subpackages: audit python3-audit - Reduce scriptlets' hard dependency on systemd. ==== bolt ==== Version update (0.7 -> 0.8) - Update to 0.8 * New Features: - IOMMU support: adapt behavior iommu support is present and active * automatically enroll new devices with the new iommu policy when iommu is active * automatically authorize devices with the iommu policy if iommu is active - boltctl config command to describe, get and set global, device and domain properties. - Chain authorization and enrollment via boltctl {enroll, authorize} --chain - bolt-mock script for interactively testing boltd * Improvements: - Automatically import devices that were authorized at boot - Make tests installable - Honour STATE_DIRECTORY and RUNTIME_DIRECTORY - Profiling support via gprof * Bug fixes: - Better handling of random data generation, removed hardening_for_RNG_code.patch - Fix double free in case of client creation failure - Fix invalid format string in warning - dbus configuration moved /usr/share ==== btrfsmaintenance ==== - spec: fix typo in macro name - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== ding-libs ==== Subpackages: libbasicobjects0 libcollection4 libdhash1 libini_config5 libpath_utils1 libref_array1 - Add patch fixing errors writeout to stdout: * INI-Remove-definiton-of-TRACE_LEVEL.patch ==== dleyna-core ==== - Add dleyna-core-port-to-gupnp1_2.patch: Port to gupnp-1.2. Following the above patch, replace pkgconfig(gupnp-1.0) with pkgconfig(gupnp-1.2) BuildRequires. ==== dleyna-server ==== - Add dleyna-server-port-gupnp1_2.patch: Port to gupnp-1.2. Following this: replace pkgconfig(gssdp-1.0) and pkgconfig(gupnp-1.0) with pkgconfig(gssdp-1.2) and pkgconfig(gupnp-1.2) BuildRequires. ==== dnsmasq ==== - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== epiphany ==== Subpackages: epiphany-lang gnome-shell-search-provider-epiphany - Add epiphany-web-app-utils_Fix-crash.patch: Fix crash when web app profile lacks .app file and broken web apps should crash in a nicer way. ==== evolution ==== Version update (3.32.2 -> 3.32.3) Subpackages: evolution-lang evolution-plugin-bogofilter evolution-plugin-pst-import evolution-plugin-spamassassin - Update to version 3.32.3: + Fix a possible memory leak in e-web-view.c:web_view_initialize(). + Reference a GDBusProxy object in the synchronous call wrappers. + Fix a crash when filling mail threaded view. + Change buffer size argument value in call of icalvalue_decode_ical_string(). + Change path where backup/restore searches for the .running file. + Fix several memory leaks in the addressbook code. + Bugs fixed: glgo#GNOME/evolution#400, glgo#GNOME/evolution#405, glgo#GNOME/evolution#432, glgo#GNOME/evolution#433, glgo#GNOME/evolution#437, glgo#GNOME/evolution#439, glgo#GNOME/evolution#445, glgo#GNOME/evolution#446, glgo#GNOME/evolution#454, glgo#GNOME/evolution#472, glgo#GNOME/evolution#474, glgo#GNOME/evolution#479, glgo#GNOME/evolution#481, glgo#GNOME/evolution#484, glgo#GNOME/evolution!13, glgo#GNOME/evolution!14, glgo#GNOME/evolution!16, glgo#GNOME/evolution#112. + Updated translations. - Use modern cmake_build macro. ==== evolution-data-server ==== Version update (3.32.2 -> 3.32.3) Subpackages: evolution-data-server-lang libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-19 libebook-contacts-1_2-2 libecal-1_2-19 libedata-book-1_2-25 libedata-cal-1_2-29 libedataserver-1_2-24 libedataserverui-1_2-2 - Update to version 3.32.3: + [IMAPx] - Fix a leak of CamelMessageInfo when downloading message from a server. - Prefer local search in folders fully synchronized for offline. + EDataBook/EDataCal: Flush GDBus connection on backend property change. + Add workaround for D-Bus property change into get-revision tests. + Expose E-Book/Cal-BackendSExp lock. + Change buffer size argument value in call of icalvalue_decode_ical_string(). + Update overdue time immediately after the reminders' window is mapped. + Correct test for file writable test in On This Computer backend. + CamelOperation can be used by other thread while in its finalize(). + Change how CamelOfflineStore goes online. + Bugs fixed: glgo#GNOME/evolution-data-server#108, glgo#GNOME/evolution-data-server#112, glgo#GNOME/evolution-data-server#114, glgo#GNOME/evolution-data-server#116, glgo#GNOME/evolution-data-server#123, glgo#GNOME/evolution-data-server#190, glgo#GNOME/evolution-data-server#479. - Drop eds-issue-108.patch: Fixed upstream. - Use modern cmake_build macro. - Add eds-issue-108.patch: Folder changes could be claimed in a wrong folder after APPEND, fixes glgo#GNOME/evolution#296, glgo#GNOME/evolution-data-server#108. ==== ffmpeg-4 ==== Subpackages: libavcodec58 libavdevice58 libavfilter7 libavformat58 libavresample4 libavutil56 libpostproc55 libswresample3 libswscale5 - Add ffmpeg-4.1-dlopen-faac-mp3lame-opencore-x264-x265-xvid.patch from OpenMandriva to optionally enable runtime enabling of fdkaac/lame/x264/x265 - Enable runtime enabling for fdkaac via --enable-libfdk-aac-dlopen - Rename bcond fdk_aac to fdk_aac_dlopen - Remove fdk-aac BuildRequires now it's only dlopen'd ==== filesystem ==== - Re-add /var/cache and /var/log (revert [bsc#1078466] because of [bsc#1078466]) - Fix permission of fs-var.conf ==== gcc9 ==== Version update (9.1.1+r271393 -> 9.1.1+r272147) Subpackages: cpp9 gcc9-c++ gcc9-fortran gcc9-info gcc9-locale gcc9-objc libasan5 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc9 libstdc++6-locale libtsan0 libubsan1 - Update to gcc-9-branch head (r272147). * Pulls fix for random debug info differences when compiling D code. [gcc#90778] - Update to gcc-9-branch head (r271995). * installs workaround for broken lapack C interfaces - Drop gcc9-spectrev1.patch, add gcc9-reproducible-builds.patch and gcc9-reproducible-builds-buildid-for-checksum.patch moving reproducible build improvements over from GCC 8 package. - Split out libstdc++ pretty-printers into a separate package supplementing gdb and the installed runtime. [bsc#1135254] - Update to gcc-9-branch head (r271643). ==== gconf2 ==== Subpackages: gconf-polkit gconf2-lang - Run gsettings-schema-convert through 2to3, and adjust to use python 3. Also require python3, rather than python, and remove python-lxml Recommends (boo#1136216). ==== git ==== Version update (2.21.0 -> 2.22.0) Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk - git 2.22.0 * The filter specification "--filter=sparse:path=<path>" used to create a lazy/partial clone has been removed. Using a blob that is part of the project as sparse specification is still supported with the "--filter=sparse:oid=<blob>" option * "git checkout --no-overlay" can be used to trigger a new mode of checking out paths out of the tree-ish, that allows paths that match the pathspec that are in the current index and working tree and are not in the tree-ish. * Four new configuration variables {author,committer}.{name,email} have been introduced to override user.{name,email} in more specific cases. * "git branch" learned a new subcommand "--show-current". * The command line completion (in contrib/) has been taught to complete more subcommand parameters. * The completion helper code now pays attention to repository-local configuration (when available), which allows --list-cmds to honour a repository specific setting of completion.commands, for example. * The list of conflicted paths shown in the editor while concluding a conflicted merge was shown above the scissors line when the clean-up mode is set to "scissors", even though it was commented out just like the list of updated paths and other information to help the user explain the merge better. * "git rebase" that was reimplemented in C did not set ORIG_HEAD correctly, which has been corrected. * "git worktree add" used to do a "find an available name with stat and then mkdir", which is race-prone. This has been fixed by using mkdir and reacting to EEXIST in a loop. - Removed upstreamed patch worktree-fix-worktree-add-race.patch * previous item ==== gitg ==== Subpackages: gitg-lang libgitg-1_0-0 libgitg-ext-1_0-0 - Add gitg-repository-being-null.patch: Support repository being null (boo#1137583, gl#GNOME/gitg#213). ==== glib-networking ==== Version update (2.60.2 -> 2.60.3) Subpackages: glib-networking-lang - Update to version 2.60.3: + Fix clobbering of the thread-default main context after certificate verification failure during async handshakes since 2.60.1. + Fix GTlsDatabase initialization failures in OpenSSL backend due to uninitialized memory use. + Fix minor leak of ALPN protocols. ==== glib2 ==== Version update (2.60.3 -> 2.60.4) Subpackages: glib2-lang glib2-tools libgio-2_0-0 libgio-2_0-0-32bit libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgmodule-2_0-0-32bit libgobject-2_0-0 libgobject-2_0-0-32bit libgthread-2_0-0 libgthread-2_0-0-32bit - Update to version 2.60.4: + Fixes to improved network status detection with NetworkManager. + Leak fixes to some `glib-genmarshal` generated code. + Further fixes to the Happy Eyeballs (RFC 8305) implementation. + File system permissions fix to clamp down permissions in a small time window when copying files (CVE-2019-12450). + Bugs fixed: glgo#GNOME/GLib#1755, glgo#GNOME/GLib#1788, glgo#GNOME/GLib#1792, glgo#GNOME/GLib#1793, glgo#GNOME/GLib#1795, glgo#GNOME/GLib!865, glgo#GNOME/GLib!878. ==== gnome-shell ==== Subpackages: gnome-shell-calendar gnome-shell-lang - Drop gnome-shell-animations-speedup.patch: It causes problems with 3'rd party gnome-shell themes, and was dropped from upstream stable branch due to this. ==== google-noto-fonts ==== Subpackages: google-noto-fonts-doc noto-sans-fonts - Separate Noto Color Emoji and Noto Emoji fonts into a new project due to their different release cycle - Fix the direct changes to spec file at the previous commit ==== gupnp-igd ==== - Add gupnp-igd-port-to-new-gupnp-api.patch: Port to new GUPnP API. - Following the above patch, replace pkgconfig(gssdp-1.0) and pkgconfig(gupnp-1.0) with pkgconfig(gssdp-1.2) and pkgconfig(gupnp-1.2) and add libtool BuildRequires aswell as pass autoreconf, as the patch touches the buildsystem. ==== hwdata ==== Version update (0.323 -> 0.324) - Update to version 0.324: * Updated pci, usb and vendor ids. ==== kernel-firmware ==== Version update (20190514 -> 20190618) Subpackages: ucode-amd - Update to version 20190618: * cavium: Add firmware for CNN55XX crypto driver. * linux-firmware: Update firmware file for Intel Bluetooth 22161 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update AMD SEV firmware * linux-firmware: update licence text for Marvell firmware - Update to version 20190607: * linux-firmware: update firmware for mhdp8546 * linux-firmware: rsi: update firmware images for Redpine 9113 chipset * imx: sdma: update firmware to v3.5/v4.5 * nvidia: update GP10[2467] SEC2 RTOS with the one already used on GP108 ==== kernel-source ==== Version update (5.1.7 -> 5.1.10) Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms kernel-vanilla - move patches from .fixes to .suse There is no patches.fixes in stable. - commit ad24342 - tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() (bsc#1137586 CVE-2019-11479). - tcp: add tcp_min_snd_mss sysctl (bsc#1137586 CVE-2019-11479). - tcp: tcp_fragment() should apply sane memory limits (bsc#1137586 CVE-2019-11478). - tcp: limit payload size of sacked skbs (bsc#1137586 CVE-2019-11477). - commit a5ec6d9 - Linux 5.1.10 (bnc#1012628). - media: rockchip/vpu: Fix/re-order probe-error/remove path (bnc#1012628). - media: rockchip/vpu: Add missing dont_use_autosuspend() calls (bnc#1012628). - rapidio: fix a NULL pointer dereference when create_workqueue() fails (bnc#1012628). - fs/fat/file.c: issue flush after the writeback of FAT (bnc#1012628). - sysctl: return -EINVAL if val violates minmax (bnc#1012628). - ipc: prevent lockup on alloc_msg and free_msg (bnc#1012628). - drm/msm: correct attempted NULL pointer dereference in debugfs (bnc#1012628). - drm/pl111: Initialize clock spinlock early (bnc#1012628). - mm/mprotect.c: fix compilation warning because of unused 'mm' variable (bnc#1012628). - ARM: prevent tracing IPI_CPU_BACKTRACE (bnc#1012628). - mm/hmm: select mmu notifier when selecting HMM (bnc#1012628). - hugetlbfs: on restore reserve error path retain subpool reservation (bnc#1012628). - mm/memory_hotplug: release memory resource after arch_remove_memory() (bnc#1012628). - mem-hotplug: fix node spanned pages when we have a node with only ZONE_MOVABLE (bnc#1012628). - mm/cma.c: fix crash on CMA allocation if bitmap allocation fails (bnc#1012628). - initramfs: free initrd memory if opening /initrd.image fails (bnc#1012628). - mm/compaction.c: fix an undefined behaviour (bnc#1012628). - mm/memory_hotplug.c: fix the wrong usage of N_HIGH_MEMORY (bnc#1012628). - mm/cma.c: fix the bitmap status to show failed allocation reason (bnc#1012628). - mm: page_mkclean vs MADV_DONTNEED race (bnc#1012628). - mm/cma_debug.c: fix the break condition in cma_maxchunk_get() (bnc#1012628). - mm/slab.c: fix an infinite loop in leaks_show() (bnc#1012628). - kernel/sys.c: prctl: fix false positive in validate_prctl_map() (bnc#1012628). - thermal: rcar_gen3_thermal: disable interrupt in .remove (bnc#1012628). - drivers: thermal: tsens: Don't print error message on - EPROBE_DEFER (bnc#1012628). - mfd: tps65912-spi: Add missing of table registration (bnc#1012628). - mfd: intel-lpss: Set the device in reset state when init (bnc#1012628). - drm/nouveau/disp/dp: respect sink limits when selecting failsafe link configuration (bnc#1012628). - mfd: twl6040: Fix device init errors for ACCCTL register (bnc#1012628). - perf/x86/intel: Allow PEBS multi-entry in watermark mode (bnc#1012628). - drm/nouveau/kms/gf119-gp10x: push HeadSetControlOutputResource() mthd when encoders change (bnc#1012628). - drm/nouveau: fix duplication of nv50_head_atom struct (bnc#1012628). - drm/bridge: adv7511: Fix low refresh rate selection (bnc#1012628). - objtool: Don't use ignore flag for fake jumps (bnc#1012628). - drm/nouveau/kms/gv100-: fix spurious window immediate interlocks (bnc#1012628). - bpf: fix undefined behavior in narrow load handling (bnc#1012628). - EDAC/mpc85xx: Prevent building as a module (bnc#1012628). - pwm: meson: Use the spin-lock only to protect register modifications (bnc#1012628). - mailbox: stm32-ipcc: check invalid irq (bnc#1012628). - ntp: Allow TAI-UTC offset to be set to zero (bnc#1012628). - f2fs: fix to avoid panic in do_recover_data() (bnc#1012628). - f2fs: fix to avoid panic in f2fs_inplace_write_data() (bnc#1012628). - f2fs: fix error path of recovery (bnc#1012628). - f2fs: fix to avoid panic in f2fs_remove_inode_page() (bnc#1012628). - f2fs: fix to do sanity check on free nid (bnc#1012628). - f2fs: fix to clear dirty inode in error path of f2fs_iget() (bnc#1012628). - f2fs: fix to avoid panic in dec_valid_block_count() (bnc#1012628). - f2fs: fix to use inline space only if inline_xattr is enable (bnc#1012628). - f2fs: fix to avoid panic in dec_valid_node_count() (bnc#1012628). - f2fs: fix to do sanity check on valid block count of segment (bnc#1012628). - f2fs: fix to avoid deadloop in foreground GC (bnc#1012628). - f2fs: fix to retrieve inline xattr space (bnc#1012628). - f2fs: fix to do checksum even if inode page is uptodate (bnc#1012628). - media: atmel: atmel-isc: fix asd memory allocation (bnc#1012628). - percpu: remove spurious lock dependency between percpu and sched (bnc#1012628). - configfs: fix possible use-after-free in configfs_register_group (bnc#1012628). - uml: fix a boot splat wrt use of cpu_all_mask (bnc#1012628). - PCI: dwc: Free MSI in dw_pcie_host_init() error path (bnc#1012628). - PCI: dwc: Free MSI IRQ page in dw_pcie_free_msi() (bnc#1012628). - fbcon: Don't reset logo_shown when logo is currently shown (bnc#1012628). - ovl: do not generate duplicate fsnotify events for "fake" path (bnc#1012628). - mmc: mmci: Prevent polling for busy detection in IRQ context (bnc#1012628). - netfilter: nf_flow_table: fix missing error check for rhashtable_insert_fast (bnc#1012628). - netfilter: nf_conntrack_h323: restore boundary check correctness (bnc#1012628). - mips: Make sure dt memory regions are valid (bnc#1012628). - netfilter: nf_tables: fix base chain stat rcu_dereference usage (bnc#1012628). - watchdog: imx2_wdt: Fix set_timeout for big timeout values (bnc#1012628). - watchdog: fix compile time error of pretimeout governors (bnc#1012628). - blk-mq: move cancel of requeue_work into blk_mq_release (bnc#1012628). - iommu/vt-d: Set intel_iommu_gfx_mapped correctly (bnc#1012628). - vfio-pci/nvlink2: Fix potential VMA leak (bnc#1012628). - misc: pci_endpoint_test: Fix test_reg_bar to be updated in pci_endpoint_test (bnc#1012628). - PCI: designware-ep: Use aligned ATU window for raising MSI interrupts (bnc#1012628). - nvme-pci: unquiesce admin queue on shutdown (bnc#1012628). - nvme-pci: shutdown on timeout during deletion (bnc#1012628). - netfilter: nf_flow_table: check ttl value in flow offload data path (bnc#1012628). - netfilter: nf_flow_table: fix netdev refcnt leak (bnc#1012628). - ALSA: hda - Register irq handler after the chip initialization (bnc#1012628). - powerpc/pseries: Track LMB nid instead of using device tree (bnc#1012628). - arm64: defconfig: Update UFSHCD for Hi3660 soc (bnc#1012628). - iommu/vt-d: Don't request page request irq under dmar_global_lock (bnc#1012628). - nvmem: core: fix read buffer in place (bnc#1012628). - nvmem: sunxi_sid: Support SID on A83T and H5 (bnc#1012628). - fuse: retrieve: cap requested size to negotiated max_write (bnc#1012628). - nfsd: allow fh_want_write to be called twice (bnc#1012628). - nfsd: avoid uninitialized variable warning (bnc#1012628). - vfio: Fix WARNING "do not call blocking ops when !TASK_RUNNING" (bnc#1012628). - iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel (bnc#1012628). - switchtec: Fix unintended mask of MRPC event (bnc#1012628). - net: thunderbolt: Unregister ThunderboltIP protocol handler when suspending (bnc#1012628). - x86/PCI: Fix PCI IRQ routing table memory leak (bnc#1012628). - soc/tegra: pmc: Remove reset sysfs entries on error (bnc#1012628). - i40e: Queues are reserved despite "Invalid argument" error (bnc#1012628). - power: supply: cpcap-battery: Fix signed counter sample register (bnc#1012628). - platform/chrome: cros_ec_proto: check for NULL transfer function (bnc#1012628). - PCI: keystone: Invoke phy_reset() API before enabling PHY (bnc#1012628). - PCI: keystone: Prevent ARM32 specific code to be compiled for ARM64 (bnc#1012628). - soc: mediatek: pwrap: Zero initialize rdata in pwrap_init_cipher (bnc#1012628). - clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 (bnc#1012628). - usb: ohci-da8xx: disable the regulator if the overcurrent irq fired (bnc#1012628). - iommu/vt-d: Flush IOTLB for untrusted device in time (bnc#1012628). - soc: rockchip: Set the proper PWM for rk3288 (bnc#1012628). - arm64: dts: imx8mq: Mark iomuxc_gpr as i.MX6Q compatible (bnc#1012628). - ARM: dts: imx51: Specify IMX5_CLK_IPG as "ahb" clock to SDMA (bnc#1012628). - ARM: dts: imx50: Specify IMX5_CLK_IPG as "ahb" clock to SDMA (bnc#1012628). - ARM: dts: imx53: Specify IMX5_CLK_IPG as "ahb" clock to SDMA (bnc#1012628). - ARM: dts: imx6sx: Specify IMX6SX_CLK_IPG as "ahb" clock to SDMA (bnc#1012628). - ARM: dts: imx6sll: Specify IMX6SLL_CLK_IPG as "ipg" clock to SDMA (bnc#1012628). - ARM: dts: imx7d: Specify IMX7D_CLK_IPG as "ipg" clock to SDMA (bnc#1012628). - ARM: dts: imx6ul: Specify IMX6UL_CLK_IPG as "ipg" clock to SDMA (bnc#1012628). - ARM: dts: imx6sx: Specify IMX6SX_CLK_IPG as "ipg" clock to SDMA (bnc#1012628). - ARM: dts: imx6qdl: Specify IMX6QDL_CLK_IPG as "ipg" clock to SDMA (bnc#1012628). - PCI: rpadlpar: Fix leaked device_node references in add/remove paths (bnc#1012628). - drm/amd/display: disable link before changing link settings (bnc#1012628). - drm/amd/display: Use plane->color_space for dpp if specified (bnc#1012628). - ARM: OMAP2+: pm33xx-core: Do not Turn OFF CEFUSE as PPA may be using it (bnc#1012628). - pinctrl: pinctrl-intel: move gpio suspend/resume to noirq phase (bnc#1012628). - platform/x86: intel_pmc_ipc: adding error handling (bnc#1012628). - power: supply: max14656: fix potential use-before-alloc (bnc#1012628). - f2fs: fix potential recursive call when enabling data_flush (bnc#1012628). - net: hns3: return 0 and print warning when hit duplicate MAC (bnc#1012628). - PCI: dwc: Remove default MSI initialization for platform specific MSI chips (bnc#1012628). - PCI: rcar: Fix a potential NULL pointer dereference (bnc#1012628). - PCI: rcar: Fix 64bit MSI message address handling (bnc#1012628). - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags (bnc#1012628). - Input: goodix - add GT5663 CTP support (bnc#1012628). - video: hgafb: fix potential NULL pointer dereference (bnc#1012628). - video: imsttfb: fix potential NULL pointer dereferences (bnc#1012628). - block, bfq: increase idling for weight-raised queues (bnc#1012628). - PCI: xilinx: Check for __get_free_pages() failure (bnc#1012628). - arm64: dts: qcom: qcs404: Fix regulator supply names (bnc#1012628). - gpio: gpio-omap: add check for off wake capable gpios (bnc#1012628). - gpio: gpio-omap: limit errata 1.101 handling to wkup domain gpios only (bnc#1012628). - ice: Add missing case in print_link_msg for printing flow control (bnc#1012628). - media: v4l2-ctrl: v4l2_ctrl_request_setup returns with error upon failure (bnc#1012628). - batman-adv: Adjust name for batadv_dat_send_data (bnc#1012628). - ice: Enable LAN_EN for the right recipes (bnc#1012628). - ice: Do not set LB_EN for prune switch rules (bnc#1012628). - dmaengine: idma64: Use actual device for DMA transfers (bnc#1012628). - pwm: tiehrpwm: Update shadow register for disabling PWMs (bnc#1012628). - media: v4l2-fwnode: Defaults may not override endpoint configuration in firmware (bnc#1012628). - ARM: dts: exynos: Always enable necessary APIO_1V8 and ABB_1V8 regulators on Arndale Octa (bnc#1012628). - pwm: Fix deadlock warning when removing PWM device (bnc#1012628). - ARM: exynos: Fix undefined instruction during Exynos5422 resume (bnc#1012628). - usb: typec: fusb302: Check vconn is off when we start toggling (bnc#1012628). - soc: renesas: Identify R-Car M3-W ES1.3 (bnc#1012628). - ARM: shmobile: porter: enable R-Car Gen2 regulator quirk (bnc#1012628). - gpio: vf610: Do not share irq_chip (bnc#1012628). - percpu: do not search past bitmap when allocating an area (bnc#1012628). - Revert "Bluetooth: Align minimum encryption key size for LE and BR/EDR connections" (bnc#1012628). - Revert "drm/nouveau: add kconfig option to turn off nouveau legacy contexts. (v3)" (bnc#1012628). - ovl: check the capability before cred overridden (bnc#1012628). - ovl: support stacked SEEK_HOLE/SEEK_DATA (bnc#1012628). - ALSA: seq: Cover unsubscribe_port() in list_mutex (bnc#1012628). - io_uring: fix failure to verify SQ_AFF cpu (bnc#1012628). - Refresh patches.suse/RFC-Bluetooth-Check-key-sizes-only-when-Secure-Simple-Pairing-is-enabled.patch. - commit 0aa1dd8 - Update config files. The previous commit did not play well. 5.1.9 is broken with =n of that option, so leave it as =y as it was before 5.1.9. - commit e68f829 - Update config files. Set CONFIG_NOUVEAU_LEGACY_CTX_SUPPORT=n, the same as master. - commit cf58ab1 - Linux 5.1.9 (bnc#1012628). - ethtool: fix potential userspace buffer overflow (bnc#1012628). - Fix memory leak in sctp_process_init (bnc#1012628). - ipv4: not do cache for local delivery if bc_forwarding is enabled (bnc#1012628). - ipv6: fix the check before getting the cookie in rt6_get_cookie (bnc#1012628). - net: ethernet: ti: cpsw_ethtool: fix ethtool ring param set (bnc#1012628). - net: mvpp2: Use strscpy to handle stat strings (bnc#1012628). - net: rds: fix memory leak in rds_ib_flush_mr_pool (bnc#1012628). - net: sfp: read eeprom in maximum 16 byte increments (bnc#1012628). - packet: unconditionally free po->rollover (bnc#1012628). - pktgen: do not sleep with the thread lock held (bnc#1012628). - Revert "fib_rules: return 0 directly if an exactly same rule exists when NLM_F_EXCL not supplied" (bnc#1012628). - udp: only choose unbound UDP socket for multicast when not in a VRF (bnc#1012628). - ipv6: use READ_ONCE() for inet->hdrincl as in ipv4 (bnc#1012628). - ipv6: fix EFAULT on sendto with icmpv6 and hdrincl (bnc#1012628). - net: aquantia: fix wol configuration not applied sometimes (bnc#1012628). - neighbor: Reset gc_entries counter if new entry is released before insert (bnc#1012628). - neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit (bnc#1012628). - cls_matchall: avoid panic when receiving a packet before filter set (bnc#1012628). - ipmr_base: Do not reset index in mr_table_dump (bnc#1012628). - net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query (bnc#1012628). - net/tls: replace the sleeping lock around RX resync with a bit lock (bnc#1012628). - rcu: locking and unlocking need to always be at least barriers (bnc#1012628). - habanalabs: fix debugfs code (bnc#1012628). - ARC: mm: SIGSEGV userspace trying to access kernel virtual memory (bnc#1012628). - parisc: Use implicit space register selection for loading the coherence index of I/O pdirs (bnc#1012628). - parisc: Fix crash due alternative coding for NP iopdir_fdc bit (bnc#1012628). - SUNRPC fix regression in umount of a secure mount (bnc#1012628). - SUNRPC: Fix a use after free when a server rejects the RPCSEC_GSS credential (bnc#1012628). - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter (bnc#1012628). - NFSv4.1: Fix bug only first CB_NOTIFY_LOCK is handled (bnc#1012628). - fuse: fallocate: fix return with locked inode (bnc#1012628). - fuse: fix copy_file_range() in the writeback case (bnc#1012628). - pstore: Set tfm to NULL on free_buf_for_compression (bnc#1012628). - pstore/ram: Run without kernel crash dump region (bnc#1012628). - kbuild: use more portable 'command -v' for cc-cross-prefix (bnc#1012628). - memstick: mspro_block: Fix an error code in mspro_block_issue_req() (bnc#1012628). - mmc: tmio: fix SCC error handling to avoid false positive CRC error (bnc#1012628). - mmc: sdhci_am654: Fix SLOTTYPE write (bnc#1012628). - x86/power: Fix 'nosmt' vs hibernation triple fault during resume (bnc#1012628). - x86/insn-eval: Fix use-after-free access to LDT entry (bnc#1012628). - i2c: xiic: Add max_read_len quirk (bnc#1012628). - s390/mm: fix address space detection in exception handling (bnc#1012628). - nvme-rdma: fix queue mapping when queue count is limited (bnc#1012628). - xen-blkfront: switch kcalloc to kvcalloc for large array allocation (bnc#1012628). - MIPS: Bounds check virt_addr_valid (bnc#1012628). - MIPS: pistachio: Build uImage.gz by default (bnc#1012628). - genwqe: Prevent an integer overflow in the ioctl (bnc#1012628). - test_firmware: Use correct snprintf() limit (bnc#1012628). - drm/rockchip: fix fb references in async update (bnc#1012628). - drm/vc4: fix fb references in async update (bnc#1012628). - drm/gma500/cdv: Check vbt config bits when detecting lvds panels (bnc#1012628). - drm/msm: fix fb references in async update (bnc#1012628). - drm: add non-desktop quirk for Valve HMDs (bnc#1012628). - drm/nouveau: add kconfig option to turn off nouveau legacy contexts. (v3) (bnc#1012628). - drm: add non-desktop quirks to Sensics and OSVR headsets (bnc#1012628). - drm: Fix timestamp docs for variable refresh properties (bnc#1012628). - drm/amdgpu/psp: move psp version specific function pointers to early_init (bnc#1012628). - drm/radeon: prefer lower reference dividers (bnc#1012628). - drm/amdgpu: remove ATPX_DGPU_REQ_POWER_FOR_DISPLAYS check when hotplug-in (bnc#1012628). - drm/i915: Fix I915_EXEC_RING_MASK (bnc#1012628). - drm/amdgpu/soc15: skip reset on init (bnc#1012628). - drm/amd/display: Add ASICREV_IS_PICASSO (bnc#1012628). - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) (bnc#1012628). - drm/i915/fbc: disable framebuffer compression on GeminiLake (bnc#1012628). - drm/i915/gvt: emit init breadcrumb for gvt request (bnc#1012628). - drm: don't block fb changes for async plane updates (bnc#1012628). - drm/i915/gvt: Initialize intel_gvt_gtt_entry in stack (bnc#1012628). - drm/amd: fix fb references in async update (bnc#1012628). - ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled (bnc#1012628). - commit 8904439 - Revert "drm: allow render capable master with DRM_AUTH ioctls" (fix radv check). - commit 3ca4077 - drm/i915: Maintain consistent documentation subsection ordering (fix kernel-doc). - Delete patches.rpmify/Revert-doc-Cope-with-the-deprecation-of-AutoReporter.patch. Use usptream fix instead of revert. - commit 4e8aae9 - scsi: mpt3sas_ctl: fix double-fetch bug in _ctl_ioctl_main() (bsc#1136922 cve-2019-12456). - commit 0c3fc9f - Revert "doc: Cope with the deprecation of AutoReporter" (fix kernel-doc). - commit 1c5c2b4 - Linux 5.1.8 (bnc#1012628). - sparc64: Fix regression in non-hypervisor TLB flush xcall (bnc#1012628). - include/linux/bitops.h: sanitize rotate primitives (bnc#1012628). - xhci: update bounce buffer with correct sg num (bnc#1012628). - xhci: Use %zu for printing size_t type (bnc#1012628). - xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic() (bnc#1012628). - usb: xhci: avoid null pointer deref when bos field is NULL (bnc#1012628). - usbip: usbip_host: fix BUG: sleeping function called from invalid context (bnc#1012628). - usbip: usbip_host: fix stub_dev lock context imbalance regression (bnc#1012628). - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor (bnc#1012628). - USB: sisusbvga: fix oops in error path of sisusb_probe (bnc#1012628). - USB: Add LPM quirk for Surface Dock GigE adapter (bnc#1012628). - USB: rio500: refuse more than one device at a time (bnc#1012628). - USB: rio500: fix memory leak in close after disconnect (bnc#1012628). - media: usb: siano: Fix general protection fault in smsusb (bnc#1012628). - media: usb: siano: Fix false-positive "uninitialized variable" warning (bnc#1012628). - media: smsusb: better handle optional alignment (bnc#1012628). - brcmfmac: fix NULL pointer derefence during USB disconnect (bnc#1012628). - scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from port_remove (bnc#1012628). - scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only sdevs) (bnc#1012628). - tracing: Avoid memory leak in predicate_parse() (bnc#1012628). - Btrfs: fix wrong ctime and mtime of a directory after log replay (bnc#1012628). - Btrfs: fix race updating log root item during fsync (bnc#1012628). - Btrfs: fix fsync not persisting changed attributes of a directory (bnc#1012628). - btrfs: correct zstd workspace manager lock to use spin_lock_bh() (bnc#1012628). - btrfs: qgroup: Check bg while resuming relocation to avoid NULL pointer dereference (bnc#1012628). - Btrfs: incremental send, fix file corruption when no-holes feature is enabled (bnc#1012628). - btrfs: reloc: Also queue orphan reloc tree for cleanup to avoid BUG_ON() (bnc#1012628). - iio: dac: ds4422/ds4424 fix chip verification (bnc#1012628). - iio: adc: ads124: avoid buffer overflow (bnc#1012628). - iio: adc: modify NPCM ADC read reference voltage (bnc#1012628). - iio: adc: ti-ads8688: fix timestamp is not updated in buffer (bnc#1012628). - s390/crypto: fix gcm-aes-s390 selftest failures (bnc#1012628). - s390/crypto: fix possible sleep during spinlock aquired (bnc#1012628). - KVM: PPC: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts (bnc#1012628). - KVM: PPC: Book3S HV: Fix lockdep warning when entering guest on POWER9 (bnc#1012628). - KVM: PPC: Book3S HV: Restore SPRG3 in kvmhv_p9_guest_entry() (bnc#1012628). - powerpc/perf: Fix MMCRA corruption by bhrb_filter (bnc#1012628). - powerpc/kexec: Fix loading of kernel + initramfs with kexec_file_load() (bnc#1012628). - ALSA: line6: Assure canceling delayed work at disconnection (bnc#1012628). - ALSA: hda/realtek - Set default power save node to 0 (bnc#1012628). - ALSA: hda/realtek - Improve the headset mic for Acer Aspire laptops (bnc#1012628). - KVM: s390: Do not report unusabled IDs via KVM_CAP_MAX_VCPU_ID (bnc#1012628). - drm/nouveau/i2c: Disable i2c bus access after ->fini() (bnc#1012628). - i2c: mlxcpld: Fix wrong initialization order in probe (bnc#1012628). - i2c: synquacer: fix synquacer_i2c_doxfer() return value (bnc#1012628). - tty: serial: msm_serial: Fix XON/XOFF (bnc#1012628). - tty: max310x: Fix external crystal register setup (bnc#1012628). - mm, memcg: consider subtrees in memory.events (bnc#1012628). - kasan: initialize tag to 0xff in __kasan_kmalloc (bnc#1012628). - kernel/signal.c: trace_signal_deliver when signal_group_exit (bnc#1012628). - signal/arm64: Use force_sig not force_sig_fault for SIGKILL (bnc#1012628). - mm, compaction: make sure we isolate a valid PFN (bnc#1012628). - arm64: Fix the arm64_personality() syscall wrapper redirection (bnc#1012628). - docs: Fix conf.py for Sphinx 2.0 (bnc#1012628). - doc: Cope with the deprecation of AutoReporter (bnc#1012628). - doc: Cope with Sphinx logging deprecations (bnc#1012628). - x86/ima: Check EFI_RUNTIME_SERVICES before using (bnc#1012628). - ima: fix wrong signed policy requirement when not appraising (bnc#1012628). - ima: show rules with IMA_INMASK correctly (bnc#1012628). - evm: check hash algorithm passed to init_desc() (bnc#1012628). - clk: imx: imx8mm: fix int pll clk gate (bnc#1012628). - vt/fbcon: deinitialize resources in visual_init() after failed memory allocation (bnc#1012628). - serial: sh-sci: disable DMA for uart_console (bnc#1012628). - staging: vc04_services: prevent integer overflow in create_pagelist() (bnc#1012628). - staging: wlan-ng: fix adapter initialization failure (bnc#1012628). - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl case (bnc#1012628). - CIFS: cifs_read_allocate_pages: don't iterate through whole page array on ENOMEM (bnc#1012628). - Revert "lockd: Show pid of lockd for remote locks" (bnc#1012628). - gcc-plugins: Fix build failures under Darwin host (bnc#1012628). - drm/tegra: gem: Fix CPU-cache maintenance for BO's allocated using get_pages() (bnc#1012628). - drm/vmwgfx: Fix user space handle equal to zero (bnc#1012628). - drm/vmwgfx: Fix compat mode shader operation (bnc#1012628). - drm/vmwgfx: Don't send drm sysfs hotplug events on initial master set (bnc#1012628). - drm/sun4i: Fix sun8i HDMI PHY clock initialization (bnc#1012628). - drm/sun4i: Fix sun8i HDMI PHY configuration for > 148.5 MHz (bnc#1012628). - drm/imx: ipuv3-plane: fix atomic update status query for non-plus i.MX6Q (bnc#1012628). - drm/fb-helper: generic: Call drm_client_add() after setup is done (bnc#1012628). - drm/atomic: Wire file_priv through for property changes (bnc#1012628). - drm: Expose "FB_DAMAGE_CLIPS" property to atomic aware user-space only (bnc#1012628). - drm/rockchip: shutdown drm subsystem on shutdown (bnc#1012628). - drm/lease: Make sure implicit planes are leased (bnc#1012628). - drm/cma-helper: Fix drm_gem_cma_free_object() (bnc#1012628). - Revert "x86/build: Move _etext to actual end of .text" (bnc#1012628). - x86/kprobes: Set instruction page as executable (bnc#1012628). - commit ed4965b - s390: drop meaningless 'targets' from tools Makefile (s390 kmp build fix). - commit c8cc0ca ==== libXi ==== Version update (1.7.9 -> 1.7.10) Subpackages: libXi6 libXi6-32bit - Update to version 1.7.10 * Fix the FIXME in XIValuatorClass case of copy_classes function in XExtInt.c * _XIPassiveGrabDevice needs to set time value * Replace open-coded FP3232_TO_DOUBLE * autogen: add default patch prefix * autogen.sh: use quoted string variables * autogen.sh: use exec instead of waiting for configure to finish * Update configure.ac bug URL for gitlab migration * Update README for gitlab migration * man: add a bunch of missing spaces * Update XIChangeHierarchy.txt ==== libappindicator ==== - Drop libappindicator-activate-support.patch as it's no longer needed and breaks context menu / actions in fall-back mode (boo#1132659) ==== libcontainers-common ==== - Update to libpod v1.4.0 - The podman checkpoint and podman restore commands can now be used to migrate containers between Podman installations on different systems - The podman cp command now supports a pause flag to pause containers while copying into them - The remote client now supports a configuration file for pre-configuring connections to remote Podman installations - Fixed CVE-2019-10152 - The podman cp command improperly dereferenced symlinks in host context - Fixed a bug where podman commit could improperly set environment variables that contained = characters - Fixed a bug where rootless Podman would sometimes fail to start containers with forwarded ports - Fixed a bug where podman version on the remote client could segfault - Fixed a bug where podman container runlabel would use /proc/self/exe instead of the path of the Podman command when printing the command being executed - Fixed a bug where filtering images by label did not work - Fixed a bug where specifying a bing mount or tmpfs mount over an image volume would cause a container to be unable to start - Fixed a bug where podman generate kube did not work with containers with named volumes - Fixed a bug where rootless Podman would receive permission denied errors accessing conmon.pid - Fixed a bug where podman cp with a folder specified as target would replace the folder, as opposed to copying into it - Fixed a bug where rootless Podman commands could double-unlock a lock, causing a crash - Fixed a bug where Podman incorrectly set tmpcopyup on /dev/ mounts, causing errors when using the Kata containers runtime - Fixed a bug where podman exec would fail on older kernels - The podman commit command is now usable with the Podman remote client - The --signature-policy flag (used with several image-related commands) has been deprecated - The podman unshare command now defines two environment variables in the spawned shell: CONTAINERS_RUNROOT and CONTAINERS_GRAPHROOT, pointing to temporary and permanent storage for rootless containers - Updated vendored containers/storage and containers/image libraries with numerous bugfixes - Updated vendored Buildah to v1.8.3 - Podman now requires Conmon v0.2.0 - The podman cp command is now aliased as podman container cp - Rootless Podman will now default init_path using root Podman's configuration files (/etc/containers/libpod.conf and /usr/share/containers/libpod.conf) if not overridden in the rootless configuration - Update to image v1.5.1 - Vendor in latest containers/storage - docker/docker_client: Drop redundant Domain(ref.ref) call - pkg/blobinfocache: Split implementations into subpackages - copy: progress bar: show messages on completion - docs: rename manpages to *.5.command - add container-certs.d.md manpage - pkg/docker/config: Bring auth tests from docker/docker_client_test - Don't allocate a sync.Mutex separately - Update to storage v1.12.10 - Add function to parse out mount options from graphdriver - Merge the disparate parts of all of the Unix-like lockfiles - Fix unix-but-not-Linux compilation - Return XDG_RUNTIME_DIR as RootlessRuntimeDir if set - Cherry-pick moby/moby #39292 for CVE-2018-15664 fixes - lockfile: add RecursiveLock() API - Update generated files - Fix crash on tesing of aufs code - Let consumers know when Layers and Images came from read-only stores - chown: do not change owner for the mountpoint - locks: correctly mark updates to the layers list - CreateContainer: don't worry about mapping layers unless necessary - docs: fix manpage for containers-storage.conf - docs: sort configuration options alphabetically - docs: document OSTree file deduplication - Add missing options to man page for containers-storage - overlay: use the layer idmapping if present - vfs: prefer layer custom idmappings - layers: propagate down the idmapping settings - Recreate symlink when not found - docs: fix manpage for configuration file - docs: add special handling for manpages in sect 5 - overlay: fix single-lower test - Recreate symlink when not found - overlay: propagate errors from mountProgram - utils: root in a userns uses global conf file - Fix handling of additional stores - Correctly check permissions on rootless directory - Fix possible integer overflow on 32bit builds - Evaluate device path for lvm - lockfile test: make concurrent RW test determinisitc - lockfile test: make concurrent read tests deterministic - drivers.DirCopy: fix filemode detection - storage: move the logic to detect rootless into utils.go - Don't set (struct flock).l_pid - Improve documentation of getLockfile - Rename getLockFile to createLockerForPath, and document it - Add FILES section to containers-storage.5 man page - add digest locks - drivers/copy: add a non-cgo fallback - Add default SLES mounts for container-suseconnect usage ==== libguestfs ==== Subpackages: guestfs-data libguestfs0 python3-libguestfs - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== librevenge ==== Subpackages: librevenge-0_0-0 librevenge-stream-0_0-0 - Co-own %{_datadir}/gdb: so far we just relied on gcc9 in the build stack to coincidentially own this directory for us, but gcc9 split the gdb pretty printers out in a separate sub-package. ==== libseccomp ==== Version update (2.4.0 -> 2.4.1) - Update to new upstream release 2.4.1 * Fix a BPF generation bug where the optimizer mistakenly identified duplicate BPF code blocks. ==== libsolv ==== Version update (0.7.4 -> 0.7.5) Subpackages: libsolv-devel libsolv-tools python3-solv ruby-solv - make cleandeps jobs on patterns work [bnc#1137977] - fix favorq leaking between solver runs if the solver is reused - fix SOLVER_FLAG_FOCUS_BEST updateing packages without reason - be more correct with multiversion packages that obsolete their own name [bnc#1127155] - allow building with swig-4.0.0 [bnc#1135749] - bump version to 0.7.5 - always prefer to stay with the same package name if there are multiple alternatives [bnc#1131823] ==== libssh2_org ==== Version update (1.8.2 -> 1.9.0) - Version update to 1.9.0: Enhancements and bugfixes: * adds ECDSA keys and host key support when using OpenSSL * adds ED25519 key and host key support when using OpenSSL 1.1.1 * adds OpenSSH style key file reading * adds AES CTR mode support when using WinCNG * adds PEM passphrase protected file support for Libgcrypt and WinCNG * adds SHA256 hostkey fingerprint * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() * adds explicit zeroing of sensitive data in memory * adds additional bounds checks to network buffer reads * adds the ability to use the server default permissions when creating sftp directories * adds support for building with OpenSSL no engine flag * adds support for building with LibreSSL * increased sftp packet size to 256k * fixed oversized packet handling in sftp * fixed building with OpenSSL 1.1 * fixed a possible crash if sftp stat gets an unexpected response * fixed incorrect parsing of the KEX preference string value * fixed conditional RSA and AES-CTR support * fixed a small memory leak during the key exchange process * fixed a possible memory leak of the ssh banner string * fixed various small memory leaks in the backends * fixed possible out of bounds read when parsing public keys from the server * fixed possible out of bounds read when parsing invalid PEM files * no longer null terminates the scp remote exec command * now handle errors when diffie hellman key pair generation fails * improved building instructions * improved unit tests - Rebased patch libssh2-ocloexec.patch ==== libvirt ==== Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - api: disallow virConnect*HypervisorCPU, virConnectGetDomainCapabilities, virDomainManagedSaveDefineXML, and virDomainSaveImageGetXMLDesc on read-only connections aed6a032-CVE-2019-10161.patch, db0b7845-CVE-2019-10166.patch, 8afa68ba-CVE-2019-10167.patch, bf6c2830-CVE-2019-10168.patch CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168 bsc#1138301, bsc#1138302, bsc#1138303, bsc#1138305 - Drop systemd BuildRequires: there is already pkgconfig(systemd) present, which is the same package. ==== libzypp ==== Version update (17.11.4 -> 17.12.0) - Drop unused InterProcessMutex class and test - Drop unused WebpinResult class and test - Give posttrans script a parameter of 0 (issue #168) - Use CURL_HTTP_VERSION_2TLS if available (fixes #141) - version 17.12.0 (12) ==== linux-glibc-devel ==== Version update (5.0 -> 5.1) - Update to kernel headers 5.1 ==== man ==== - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== ncurses ==== Subpackages: libncurses6 ncurses-devel ncurses-utils tack terminfo terminfo-base terminfo-screen - Add ncurses patch 20190609 + add mintty, mintty-direct (adapted from patch by Thomas Wolff). Some of the suggested user-defined capabilities are commented-out, to allow builds with ncurses 5.9 and 6.0 + add Smol/Rmol for tmux, vte-2018 (patch by Nicholas Marriott). + add rs1 to konsole, mlterm -TD + modify _nc_merge_entry() to make a copy of the data which it merges, to avoid modifying the source-data when aligning extended names. - Add ncurses patch 20190601 + modify an internal call to vid_puts to pass extended color pairs e.g., from tty_update.c and lib_mvcur.c (report by Niegodziwy Beru). + improve manual page description of init_tabs capability and TABSIZE variable. - Add ncurses patch 20190525 + modify reset_cmd.c to allow for tabstops at intervals other than 8 (report by Vincent Huisman). - Add ncurses patch 20190518 + update xterm-new to xterm patch #345 -TD + add/use xterm+keypad in xterm-new (report by Alain D D Williams) -TD + update terminator entry -TD + remove hard-tabs from ti703 (report by Robert Clausecker) + mention meml/memu/box1 in user_caps manual page. + mention user_caps.5 in tic and infocmp manual pages. - Adopt the patches ncurses-5.9-ibm327x.dif and ncurses-6.1.dif ==== ntp ==== - Drop the omc config fate#301838: * it is obsolete since SLE11 ==== numad ==== - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== obs-service-tar_scm ==== Version update (0.10.9.1557261720.32a1cdb -> 0.10.9.1559745964.22c86cd) Subpackages: obs-service-obs_scm obs-service-obs_scm-common - Update to version 0.10.9.1559745964.22c86cd: * [dist] python3 for SLE12 and openSUSE 42.3 - Update to version 0.10.9.1559647449.d965035: * [dist] enable python3 in SLE >= 12 ==== openexr ==== - security update - added patches CVE-2017-9111 [bsc#1040109], CVE-2017-9113 [bsc#1040113], CVE-2017-9115 [bsc#1040115] + openexr-CVE-2017-9111,9113,9115.patch ==== ovmf ==== Version update (2019+git1552059899.89910a39dcfd -> 201905) Subpackages: qemu-ovmf-x86_64 - Update to edk2-stable201905 + Update OpenSSL version to upcoming 1.1.1 + Delete EdkCompatibilityPkg from edk2/master + Remove .S assembly code for IA32 and X64 arch + Replace BSD 2-Clause License with BSD + Patent Licence + Recovery PEI BlockIO support for ATA device + Add PCD to Enabled/Disabled IPv4/IPv6 PXE Support in NetworkPkg + Remove NetworkPkg/IpSecDxe + Add api to DebubLib to expose a print routine with VaList parameter + Introduce DebugPpi to save the image size with the debug message + ResetSystemLib Adds a new API ResetSystem + ResetUtilityLib Add a new API ResetSystemWithSubtype + Add support for get organization name to x509 in BaseCryptLib + Add support for checking x509 EKUs in BaseCryptLib + Add support for PKCS 1v2 RSAES-OAEP PKI encryption in BaseCryptLib + Remove ShellBinPkg from edk2/master + Enable multiple thread /MP option for MSVC compiler + Upstream the EnrollDefaultKeys application to OvmfPkg + Share code for BaseUefiDecompressLib in MdePkg and MdeModulePkg + Move network related components from MdeModulePkg to NetworkPkg + Move BeagleBoardPkg and Omap35xxPkg from edk2 to edk2-platforms repo + Move MinnowMax and Quark platform to edk2-platforms repo + Move OptionRomPkg into new Drivers directory edk2-platforms repo + Add ACPI6.3 definition + Remove Nt32Pkg from edk2/master + update ArmSoftFloatLib to latest upstream version (= 3e) - Update openssl to 1.1.1b + Add berkeley-softfloat-3-b64af41c3276f.tar.xz since arm7 needs the softfloat implementation for openssl 1.1.1b - Build the varstore templates with EnrollDefaultKeys.efi + Create the iso files for key enrollment - Add gen-key-enrollment-iso.sh to generate the iso file + Drop the non-upstream ovmf-embed-default-keys.patch - Also drop owner-guid-zero.h + Drop the MS keys and dbx since they are already in EnrollDefaultKeys.efi: MicCorKEKCA2011_2011-06-24.crt, MicCorUEFCA2011_2011-06-27.crt, MicWinProPCA2011_2011-10-19.crt, and dbxupdate.zip - Also drop the related script strip_authinfo.pl + Add ovmf-set-fixed-enroll-time.patch to set the fixed enrolling time to make the varstore template reproducible + Require qemu 3.0.0 for fw_cfg - Update the build flags for network functions + For x86_64, only enable TLS for the 4MB image since the code size exceeds the boundary of 2MB image - Refresh patches: + ovmf-add-exclude-shell-flag.patch + ovmf-disable-ia32-firmware-piepic.patch + ovmf-pie.patch - Drop the requirement of xxd - Update README - Update the License tag to BSD-2-Clause-Patent ==== permissions ==== Version update (1550_20190429 -> 1550_20190521) Subpackages: chkstat permissions-config permissions-doc - Update to version 20190521: * singluarity: Add starter-suid for version 3.2.0 * adjust settings for amanda to current binary layout - Move BuildRequires: back to main package - Moved requires to subpackages (bsc#1137257) ==== plasma-browser-integration ==== Version update (5.16.1 -> 5.16.2) Subpackages: plasma-browser-integration-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-bash-completion pulseaudio-gdm-hooks pulseaudio-lang pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils - Rebase qpaeq-shebang.patch to python3 instead of python, as we build pulseaudio with python3 support and not python2. Aka pulseaudio requires /usr/bin/python3 and not /usr/bin/python. - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== python ==== Subpackages: python-curses python-tk - Set _lto_cflags to nil as it will prevent to propage LTO for Python modules that are built in a separate package. ==== python-base ==== Subpackages: libpython2_7-1_0 python-xml - Set _lto_cflags to nil as it will prevent to propage LTO for Python modules that are built in a separate package. - bsc#1130840 (CVE-2019-9947): add CVE-2019-9947-no-ctrl-char-http.patch Address the issue by disallowing URL paths with embedded whitespace or control characters through into the underlying http client request. Such potentially malicious header injection URLs now cause a ValueError to be raised. ==== rp-pppoe ==== Version update (3.12 -> 3.13) - Refresh spec-file via spec-cleaner and manual optimisations. * New URL and Source project. * Add pkgconfig for BuildRequires. - Update rp-pppoe to version 3.13. * Fix potential use-after-free bug. * Properly detecte kernel-mode PPPoE. - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== rubygem-cfa ==== Version update (0.7.0 -> 1.0.0) - Dropped the changes_only argument of BaseModel#save, it does not work in the generic case. - Fixed NameError in AugeasTree#replace_entry (bsc#1137948) - Drop support for Ruby 2.2 and 2.3; add 2.6. - 1.0.0 ==== rubygem-cfa_grub2 ==== Version update (1.0.1 -> 2.0.0) - Dropped the changes_only argument of Default,DeviceMap#save following the same change in BaseModel#save in cfa-1.0.0 because the merging was not working anyway (bsc#1137948) - Drop support for Ruby 2.2 and 2.3; add 2.6. - 2.0.0 ==== rygel ==== Version update (0.36.2 -> 0.38.1) Subpackages: librygel-core-2_6-2 librygel-server-2_6-2 - Drop systemd BuildRequires: there is already pkgconfig(systemd) present, which is sufficient. - Replace systemd_requires macro with systemd_ordering: systemd is not strictly required for rygel to be usable, but if systemd and rygel are installed as part of one transaction, we would like to see systemd installed first. - Update to version 0.38.1: + Several build fixes for recent vala. + Updated translations. - Update to version 0.38.0: + Examples: - Fix crash if logo is missing in full-screen renderer. - Fix missing GResource for full-screen renderer. + Renderer: Fix a critical if mime type is not present. - Add libtool BuildRequires and pass autogen.sh, bootstrap tarball. - Drop api documentation, no longer provided in tarball. - Update to version 0.37.2: + Build: - Bump GLib dependency to 2.44. - Drop Valac requirement to 0.36. + Server: - Fix @ADDRESS@ replacement for proxy or transcoded urls. - Use a proper check for localhost. - Add some hacks for LG devices. + MediaExport: Document blacklisting behaviour. + Updated translations. - Update to version 0.37.1: + Add meson build files. + Port to GSSDP and GUPnP 1.2 API. + Preliminary IPv6 support. - Changes from version 0.37.0: + All: - Update URLs for gitlab - Fix compiler warnings in C code - Documentation updates - Fix several deprecated functions + Renderer: Fix type argument mismatch of return value + GStreamer Media Engine: Implement JPEG transcoding + GStreamer Renderer: - Make sinks configurable - Add support for audio/aac mime type + Server: Move engine intialization into server plugin + MediaExport: Remove dead code + Updated/added dependencies: - Vala version requirement bumped to 0.40 - GTK+ requirement bumped to 3.22 - GStreamer requirement bumped to 1.12 + Bugs fixed: glgo#GNOME/rygel#120, glgo#GNOME/rygel#7. + Updated translations. - Replace libgupnp-devel, libgupnp-av-devel, libsoup-devel and sqlite3-devel with pkgconfig(gupnp-1.2), pkgconfig(gupnp-av-1.0), pkgconfig(libsoup-2.4) and pkgconfig(sqlite3) BuildRequires: Align with what configure checks for. - Add pkgconfig(gio-2.0), pkgconfig(gio-unix-2.0), pkgconfig(gmodule-2.0), pkgconfig(gssdp-1.2) and pkgconfig(gupnp-dlna-2.0): Align with what configure checks for. ==== salt ==== Subpackages: python3-salt salt-master salt-minion - Provide the missing features required for Yomi (Yet one more installer) - Added: * provide-the-missing-features-required-for-yomi-yet-o.patch ==== schily ==== Subpackages: cdda2wav cdrecord libcdrdeflt1_0 libdeflt1_0 libedc_ecc1_0 libedc_ecc_dec1_0 libfile1_0 libfind3_0 libparanoia1_0 librmt1_0 librscg1_0 libscg1_0 libscgcmd1_0 libschily2_0 mkisofs readcd spax star - Update to new upstream release 2019.06.13 * cdrecord: The manpage now lists all supported media types and which media types are preferred over others. * star 1.6.1: fixed a bug in the FIFO code where star reported "star: Implementation botch: with FIFO_MEOF" as the tar side of the FIFO did sometimes not wait for the FIFO_IWAIT state when called as "star -multivolume -tv f=... f=... ..." * bsh: When expanding file names, the directory entries "." and ".." are now skipped and not part of the results. This is to make bsh to behave similar to the Bourne Shell with respect to globbing. ==== sessreg ==== Version update (1.1.1 -> 1.1.2) - Update to version 1.1.2 * Update README for gitlab migration * Update configure.ac bug URL for gitlab migration * Add comment about why safe_strncpy isn't replaced with strlcpy * Fix missing defines _PATH_WTMPX/_PATH_UTMPX in musl * Replace strncpy calls with a sane version that always terminates ==== spamassassin ==== Subpackages: perl-Mail-SpamAssassin - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== system-config-printer ==== Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-common-lang system-config-printer-dbus-service udev-configure-printer - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== systemd-presets-branding-openSUSE ==== - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== systemd-presets-common-SUSE ==== - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== sysvinit ==== Version update (2.90 -> 2.95) - Remove logsave as well as the manual page as those as part of package e2fsprogs already - Update to sysvinit 2.95 * new logsave helper - Update to startpar-0.63 * move startpar from /sbin to /bin - Port our patches * startpar-0.58.dif * sysvinit-2.88dsf-suse.patch * sysvinit-2.90-no-kill.patch * sysvinit-2.90.dif ==== vala ==== Version update (0.44.4 -> 0.44.5) Subpackages: libvala-0_44-0 - Update to version 0.44.5: + Various improvements and bug fixes: - Only warn about imcompatible type of external construct property. - codegen: Use array_length of collection variable instead of expression. - girparser: Skip 'attribute' elements. - girwriter: Report error on secondary top-level namespace. + Bindings: - gtk+-3.0: Update to 3.24.9~18177388. - gtk4: Update to 3.96.0+8cfdd6c5. ==== vsftpd ==== - Apply "vsftpd-avoid-bogus-ssl-write.patch" to fix a segmentation fault that occurred while trying to write to an invalid TLS context. [bsc#1125951] - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 libwebkit2gtk3-lang typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles - Add webkit2gtk3-bug196440-build-fix.patch and webkit2gtk3-bug198080-build-fix.patch: fix build failures on SLE/Leap 15 and SLE 12. ==== xdg-desktop-portal-kde ==== Version update (5.16.1 -> 5.16.2) Subpackages: xdg-desktop-portal-kde-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== xfce4-panel-plugin-cpugraph ==== Version update (1.0.90 -> 1.0.91) Subpackages: xfce4-panel-plugin-cpugraph-lang - update to version 1.0.91 * Add option to disable the graph (bxo#15163) * Use css to change bar colors (bxo#15186) * Fix bars in horizontal mode * Updated translations ==== zlib ==== Subpackages: libminizip1 libz1 libz1-32bit zlib-devel - Do not enable the previous patchset on s390 but just s390x bsc#1137624 - Add patchset for s390 improvements jsc#SLE-5807 bsc#1136717: * 410.patch ==== zypper ==== Version update (1.14.27 -> 1.14.28) Subpackages: zypper-aptitude zypper-log zypper-needs-restarting - man: split '--with[out]' like options to ease searching. - Unhide 'ps' command in help - Add option to show more conflict information - Rephrased `zypper ps` hint (bsc#859480) - Fix repo refresh not returning 106-ZYPPER_EXIT_INF_REPOS_SKIPPED if --root is used (bsc#1134226) - Fix unknown package handling in zypper install (fixes bsc#1127608) - Fix the package build failure with CMake 3.14. - Re-show progress bar after pressing retry upon install error (bsc#1131113) - version 1.14.28 - Fix build with CMake >= 3.14 Starting with CMake 3.14, EXCLUDE_FROM_ALL now spreads from directories to targets. 'make -C someSubdir' when 'someSubdir' uses the 'EXCLUDE_FROM_ALL' keyword does nothing. - Remove unneeded CMake commands. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

2 1

[opensuse-factory] Making sense of patterns and yast patterns
by Stasiek Michalski 02 Jul '19

02 Jul '19

Hi, I want to make some changes to patterns, so users have more freedom to select the patterns that they want. Remove dependency on patterns that are visible in YaST Packager, hide a few patterns, split YaST patterns depending on DE, so only tools that are missing from DE are installed. Let's look at the state of patterns visible on the YaST sidebar now (without recommends, best case scenario): * GNOME Desktop Environment (Basic) selects: X Window System, Minimal Base System, Minimal Appliance Base * GNOME Desktop Environment (Wayland) selects: GNOME Desktop Environment (Basic), GNOME Desktop Environment (X11), X Window System, Minimal Base System, Minimal Appliance Base * GNOME Desktop Environment (X11) selects: GNOME Desktop Environment (Basic), X Window System, Minimal Base System, Minimal Appliance Base * KDE Plasma 5 Desktop Base selects: X Window System, Minimal Base System, Minimal Appliance Base * KDE Applications and Plasma 5 Desktop selects: KDE Plasma 5 Desktop Base, X Window System, Minimal Base System, Minimal Appliance Base * XFCE Desktop Environment selects: X Window System, Minimal Base System, Minimal Appliance Base * LXDE Desktop Environment selects: X Window System, Minimal Base System, Minimal Appliance Base * LXQt Desktop Environment selects: X Window System, Minimal Base System, Minimal Appliance Base * Enlightenment selects: X Window System, Minimal Base System, Minimal Appliance Base * MATE Desktop Environment selects: X Window System, Minimal Base System, Minimal Appliance Base * Fonts selects: NAN * X Window System selects: Minimal Base System, Minimal Appliance Base * Multimedia selects: NAN * Office Software selects: NAN * Graphics selects: X Window System, Minimal Base System, Minimal Appliance Base * Games selects: X Window System, Minimal Base System, Minimal Appliance Base * Technical Writing selects: NAN * KDE PIM Suite selects: NAN * HPC Basic Compute Node selects: NAN * HPC Workload Manager selects: NAN * HPC modularized Libraries selects: HPC Basic Compute Node * File Server selects: Minimal Appliance Base * Network Administration selects: Minimal Appliance Base * Print Server selects: Minimal Appliance Base * Mail and News Server selects: Minimal Appliance Base * Web and LAMP Server selects: Minimal Appliance Base * Internet Gateway selects: Minimal Appliance Base * DHCP and DNS Server selects: Minimal Appliance Base * Directory Server (LDAP) selects: Minimal Appliance Base * Xen Virtual Machine Host Server selects: Minimal Appliance Base * KVM Host Server selects: Minimal Appliance Base * HPC Development Packages selects: HPC Basic Compute Node, HPC modularized Libraries, Base Development, C/C++ Development, Perl Development, Python 3 Development, Minimal Appliance Base * Base Development selects: Minimal Appliance Base * GNOME Development selects: X Window System, Base Development, C/C++ Development, Minimal Base System, Minimal Appliance Base * KDE Frameworks and Plasma Development selects: Base Development, C/C++ Development, Minimal Appliance Base * .NET Development selects: NAN * C/C++ Development selects: Base Development, Minimal Appliance Base * Tools for Packaging with Open Build Service selects: Minimal Appliance Base * RPM Build Environment selects: Minimal Appliance Base * Java Development selects: NAN * Linux Development selects: Base Development, Minimal Appliance Base * Perl Development selects: NAN * Python 3 Development selects: NAN * Qt 5 Development selects: Base Development, C/C++ Development, Minimal Appliance Base * Ruby Development selects: NAN * Web Development selects: Web and LAMP Server, Minimal Appliance Base * YaST Development selects: NAN * Tcl/Tk Development selects: NAN * Minimal Base System selects: Minimal Appliance Base * Enhanced Base System selects: Minimal Base System, Minimal Appliance Base * XEN Virtualization Host and tools selects: Xen Virtual Machine Host Server, Minimal Appliance Base * KVM Virtualization Host and tools selects: KVM Host Server, Minimal Appliance Base * AppArmor selects: Minimal Appliance Base * Console Tools selects: Minimal Base System, Enhanced Base System, Minimal Appliance Base * 32-Bit Runtime Environment selects: NAN * Laptop selects: Minimal Base System, Minimal Appliance Base * YaST System Administration selects: NAN * Software Management selects: NAN * Tests for the Update Stack selects: NAN * Minimal Appliance Base selects: NAN * Help and Support Documentation selects: Minimal Appliance Base * Documentation selects: NAN * Kubic Admin Node selects: Minimal Appliance Base, kubeadm Stack, Container Runtime for kubernetes clustered systems * Kubic Worker Node selects: Minimal Appliance Base, kubeadm Stack, Container Runtime for kubernetes clustered systems * kubeadm Stack selects: Minimal Appliance Base * Container Runtime for non-clustered systems selects: Minimal Appliance Base * Container Runtime for kubernetes clustered systems selects: Minimal Appliance Base * openSUSE MicroOS selects: NAN * Hardware Support selects: NAN * Apparmor Support selects: NAN * LDAP client selects: NAN * IMA/EVM Support selects: NAN * Support for Cloud selects: NAN Patterns visibly selecting other patterns is a little limiting to the user that might want one pattern but not the other (which is either not possible, or possible if pattern is just recommended and the pattern is locked). The solution I want to implement as a replacement: * remove all the visible pattern dependencies (including recommends), so everything can be selected independently * hide "Minimal Appliance Base"/"Minimal Base System" pattern, so it's not selectable, considering it's the default base for most of openSUSE, so it has to be installed either way * hide "Base Development", it's already required by most development patterns * hide "GNOME Desktop Environment (Basic)", X11/Wayland split should be enough for selecting the base DE * split desktop environments into desktop base and applications That solution will obviously require changes to roles, which will need to depend on wider range of patterns, but that's fairly easy to do. After this change however, user will be free to go to Software in summary screen, disable patterns like Games or Office, without disabling recommends or removing GNOME patterns. I'm also in favour of making more `supplement` patterns, that expand the scope of visible patterns depending on other installed patterns (that schema is already largely in place, thankfully). Now the hardest part, DE specific YaST modules. Many of the functions provided by YaST are now handled by the desktops themselves, and on the desktop, YaST still tends to install quite a bunch of server software. As functionality provided by desktops vary quite a bit, deciding on what exactly needs to go into YaST will need to be decided on desktop-by-desktop basis. Right now I believe the only YaST modules that are required on every desktop are Package Manager (yast-packager module), Release Notes (yast-installation module), Firewall (yast-firewall module) and Bootloader (yast-bootloader module). I would argue as far as to say that in cases where there are not that many modules, YaST Control Center is not really required, considering modules are accessible from the desktop provided menus, but that might be too big of a change for now. Desktop discoverability of YaST modules will soon improve due to providing appstream add-on metainfo for every YaST module, which will enable easy installation of modules from the software centers like GNOME Software and KDE Discover. I have some more changes planned to improve desktop state of YaST, like providing WM_CLASS and appid based on desktop files, which will fix icon scaling and icon display in DEs, but this is not for this email ;) There was also an idea to provide patterns with appstream metainfo on their own, label them as package groups in PackageKit and make them installable from software centers that way as well, but that's very much still early stages, considering it would require changes in quite a few stacks to work. LCP [Stasiek] https://lcp.world -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

4 5

[opensuse-factory] New Tumbleweed snapshot 20190627 released!
by Dominique Leuenberger 28 Jun '19

28 Jun '19

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (19.0.5 -> 19.1.0) Mesa-drivers (19.0.5 -> 19.1.0) PackageKit autofs bluedevil5 (5.16.1 -> 5.16.2) breeze (5.16.1 -> 5.16.2) breeze-gtk (5.16.1 -> 5.16.2) breeze4-style (5.16.1 -> 5.16.2) brltty discover (5.16.1 -> 5.16.2) drkonqi5 (5.16.1 -> 5.16.2) fwupd (1.2.8 -> 1.2.9) gnome-settings-daemon (3.32.0 -> 3.32.1) gpg2 gtk3 (3.24.8 -> 3.24.9) kactivitymanagerd (5.16.1 -> 5.16.2) kcm_sddm (5.16.1 -> 5.16.2) kde-cli-tools5 (5.16.1 -> 5.16.2) kde-gtk-config5 (5.16.1 -> 5.16.2) kde-user-manager (5.16.1 -> 5.16.2) kdump kgamma5 (5.16.1 -> 5.16.2) khotkeys5 (5.16.1 -> 5.16.2) kinfocenter5 (5.16.1 -> 5.16.2) kmenuedit5 (5.16.1 -> 5.16.2) kscreen5 (5.16.1 -> 5.16.2) kscreenlocker (5.16.1 -> 5.16.2) ksshaskpass5 (5.16.1 -> 5.16.2) ksysguard5 (5.16.1 -> 5.16.2) kwayland-integration (5.16.1 -> 5.16.2) kwin5 (5.16.1 -> 5.16.2) libdmtx (0.7.4 -> 0.7.5) libkdecoration2 (5.16.1 -> 5.16.2) libkscreen2 (5.16.1 -> 5.16.2) libksysguard5 (5.16.1 -> 5.16.2) llvm8 mercurial (5.0 -> 5.0.1) milou5 (5.16.1 -> 5.16.2) mobile-broadband-provider-info (20190116 -> 20190618) multipath-tools (0.8.1+8+suse.8c11498 -> 0.8.1+28+suse.fea562a) oxygen5 (5.16.1 -> 5.16.2) plasma-nm5 (5.16.1 -> 5.16.2) plasma5-addons (5.16.1 -> 5.16.2) plasma5-desktop (5.16.1 -> 5.16.2) plasma5-integration (5.16.1 -> 5.16.2) plasma5-openSUSE plasma5-pa (5.16.1 -> 5.16.2) plasma5-workspace (5.16.1 -> 5.16.2) polkit-kde-agent-5 (5.16.1 -> 5.16.2) powerdevil5 (5.16.1 -> 5.16.2) presage python-py samba (4.10.2+git.94.31fb5e37171 -> 4.10.5+git.105.2bd98587873) sssd (2.1.0 -> 2.2.0) systemsettings5 (5.16.1 -> 5.16.2) unbound (1.9.1 -> 1.9.2) === Details === ==== Mesa ==== Version update (19.0.5 -> 19.1.0) Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - reverted latest change in specfile; it's not needed; llvm8 is already been chosen on factory/TW by default ... - use llvm8 on factory/TW - n_glesv1_cm-glesv2.patch * reenables build of GLESv1_CM and GLESv2 ... - readded pkgconfig files for GLESv1_CM and GLESv2 to filelists - removed again virtual provides for * pkgconfig(glesv1_cm) * pkgconfig(glesv2) - reenable LTO with Mesa 19.1 (boo#1133265, comment#5) - enabled new gallium drivers * iris (newer Intel GPUs) * lima, panfrost on ARM64 - virtually provide * pkgconfig(glesv1_cm) * pkgconfig(glesv2) in libGLESv1_CM-devel/libGLESv2-devel packages, since these files have been removed from Mesa via git commit #1587586 - Update to 19.1.0: * Mesa 19.1.0 implements the OpenGL 4.5 API, but the version reported by glGetString(GL_VERSION) or glGetIntegerv(GL_MAJOR_VERSION) / glGetIntegerv(GL_MINOR_VERSION) depends on the particular driver being used. Some drivers don't support all the features required in OpenGL 4.5. OpenGL 4.5 is only available if requested at context creation. Compatibility contexts may report a lower version depending on each driver. * The top highlights include: - GL_ARB_parallel_shader_compile for all drivers. - GL_EXT_gpu_shader4 on all GL 3.1 drivers. - GL_EXT_shader_image_load_formatted on radeonsi. - GL_EXT_texture_buffer_object on all GL 3.1 drivers. - GL_EXT_texture_compression_s3tc_srgb on Gallium and i965 drivers (ES extension). - GL_NV_compute_shader_derivatives on Iris and i965 drivers. - GL_KHR_parallel_shader_compile on all drivers. - GL_INTEL_conservative_rasterization on Iris. - Refresh patches with quilt. - Clean-up spec files for .pc and other files no longer built. ==== Mesa-drivers ==== Version update (19.0.5 -> 19.1.0) Subpackages: Mesa-dri Mesa-dri-nouveau Mesa-gallium Mesa-libva libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_intel libvulkan_radeon libxatracker2 - reverted latest change in specfile; it's not needed; llvm8 is already been chosen on factory/TW by default ... - use llvm8 on factory/TW - n_glesv1_cm-glesv2.patch * reenables build of GLESv1_CM and GLESv2 ... - readded pkgconfig files for GLESv1_CM and GLESv2 to filelists - removed again virtual provides for * pkgconfig(glesv1_cm) * pkgconfig(glesv2) - reenable LTO with Mesa 19.1 (boo#1133265, comment#5) - enabled new gallium drivers * iris (newer Intel GPUs) * lima, panfrost on ARM64 - virtually provide * pkgconfig(glesv1_cm) * pkgconfig(glesv2) in libGLESv1_CM-devel/libGLESv2-devel packages, since these files have been removed from Mesa via git commit #1587586 - Update to 19.1.0: * Mesa 19.1.0 implements the OpenGL 4.5 API, but the version reported by glGetString(GL_VERSION) or glGetIntegerv(GL_MAJOR_VERSION) / glGetIntegerv(GL_MINOR_VERSION) depends on the particular driver being used. Some drivers don't support all the features required in OpenGL 4.5. OpenGL 4.5 is only available if requested at context creation. Compatibility contexts may report a lower version depending on each driver. * The top highlights include: - GL_ARB_parallel_shader_compile for all drivers. - GL_EXT_gpu_shader4 on all GL 3.1 drivers. - GL_EXT_shader_image_load_formatted on radeonsi. - GL_EXT_texture_buffer_object on all GL 3.1 drivers. - GL_EXT_texture_compression_s3tc_srgb on Gallium and i965 drivers (ES extension). - GL_NV_compute_shader_derivatives on Iris and i965 drivers. - GL_KHR_parallel_shader_compile on all drivers. - GL_INTEL_conservative_rasterization on Iris. - Refresh patches with quilt. - Clean-up spec files for .pc and other files no longer built. ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Add PackageKit-zypp-fix-newest-filter.patch: zypp: Emit installed package for newest filter (bsc#1125434, gh#hughsie/PackageKit#329). ==== autofs ==== - BuildRequire pkgconfig(libsystemd) instead of systemd-devel: allow OBS to shortcut by using systemd-devel-mini. ==== bluedevil5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: bluedevil5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== breeze ==== Version update (5.16.1 -> 5.16.2) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5 - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== breeze-gtk ==== Version update (5.16.1 -> 5.16.2) Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== breeze4-style ==== Version update (5.16.1 -> 5.16.2) Subpackages: libbreezecommon4-5 - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== brltty ==== Subpackages: brltty-driver-at-spi2 brltty-driver-brlapi brltty-driver-speech-dispatcher brltty-driver-xwindow brltty-lang libbrlapi0_7 python3-brlapi xbrlapi - BuildRequire pkgconfig(libsystemd) instead of systemd-devel: allow OBS to shortcut by using systemd-devel-mini. ==== discover ==== Version update (5.16.1 -> 5.16.2) Subpackages: discover-backend-flatpak discover-backend-packagekit discover-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * make appstream files validate * odrs: delay QNAM initialization ==== drkonqi5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: drkonqi5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== fwupd ==== Version update (1.2.8 -> 1.2.9) Subpackages: fwupd-lang libfwupd2 - Update to version 1.2.9: * Release fwupd 1.2.9 * trivial: Add two new translatable strings for new category types * Check if the system is offline during install, rather than at startup * Prompt the user to shutdown if requried when installing by ID * Use the correct file extension for the offline updates cache * trivial: Allow using --force to use the wrong daemon version * trivial: Display the correct expected command * standalone-installer: Be smarter about existing installed fwupd * Add a plugin to update Synaptics Prometheus fingerprint readers * trivial: standalone-installer: rename uninstall argument to cleanup * fu-util: Check the daemon version is at least the client version * fu-util: Check that daemon is started by expected unit * fu-util-common: when stopping a daemon, check for snap too * Allow using --force to trigger a duplicate offline update * trivial: Allow using FuUsbDevice without a GUsbDevice * trivial: Copy the icons if unset for the device child * trivial: Copy the physical ID if unset for the device child * trivial: Ensure the parent ID is up to date if the device ID changes * trivial: Fix typo when setting the parent ID * trivial: Disable the flatpak CI build * Allow handling FORCE for devices that subclass FuDevice * uefi: Fix a libasan failure when reading a UEFI variable * trivial: Fix a memory leak found using libasan * trivial: Fix an libasan failure in the dell plugin * trivial: Fix some dead code spotted by coverity * trivial: Fix a typo spotted by coverity * trivial: Fix a missing config.h include in a new source file * Dynamically read path to use for /system-update * Display the remote warning on the console in an easy-to-read way * ata: Set version format to plain for devices obtained from udev * trivial: Only apply SmbiosManufacturer to release version for internal * trivial: Fix two bugs in the hardware self tests script * Never guess the version format from the version string * Only force a semver when the device opts-in * Export the version-format to clients * Add missing gtk-doc documentation * dfu: Add some trivial, but useful, debugging for AVR DFU devices * dfu: Correctly identify DFU firmware that starts at offset zero * dfu: Don't keep showing trivial debug output * dfu: Reset the forced version during attach and detach * ata/nvme: For devices running Dell firmware, set `VersionFormat` (Fixes: #1169) * fu-engine: Check if VersionFormat is ambiguous when adding devices * trivial: Fix fwupdate --apply * Only use class-based instance IDs for quirk matching * trivial: dell-dock: set minimum board to 6 * trivial: post release version bump ==== gnome-settings-daemon ==== Version update (3.32.0 -> 3.32.1) Subpackages: gnome-settings-daemon-lang - Update to version 3.32.1: + Signal connector rather than output ID for OSDs. + Media-keys: Fix MPRIS issues with disconnecting clients. + Color: Allow night light to be always on. + Power: Only disable Suspend/Hibernate actions inside VM. + Smartcard: Fix cancellation issues. + Updated translations. ==== gpg2 ==== Subpackages: gpg2-lang - Fix secure memory being disabled before fips checks in libgcrypt [boo#1137307] * Added gnupg-2.2.16-secmem.patch ==== gtk3 ==== Version update (3.24.8 -> 3.24.9) Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-lang gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.9: + GTK can now be built with the meson build system. + Wayland: - Support the xdg-output protocol for correct monitor sizes with scaled displays. - Fix handling of cursor hotspots that was reading uninitialized memory. - Update tablet cursors when scale changes. + CSS: Use multiple font-family values. + Emoji: Populate the Emoji chooser incrementally. + Printing: Require CUPS 1.7. + Scrolling: Add a gtk-overlay-scrolling setting that can be used to force traditional (non-overlay) scrollbars. + GtkTreeView: - Update rubberband rectangles more often. - Remove the pixel cache, to avoid the redraw issues that it causes. + Tooling: Support sysprof profiling. + Themes: - Adwaita: Small tweaks to the theme refresh. - Adwaita: Update treeview progress bars. - HighContrast: Improve notebook tabs. + Updated translations. ==== kactivitymanagerd ==== Version update (5.16.1 -> 5.16.2) Subpackages: kactivitymanagerd-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kcm_sddm ==== Version update (5.16.1 -> 5.16.2) Subpackages: kcm_sddm-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kde-cli-tools5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kde-cli-tools5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kde-gtk-config5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kde-gtk-config5-gtk2 kde-gtk-config5-gtk3 kde-gtk-config5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kde-user-manager ==== Version update (5.16.1 -> 5.16.2) Subpackages: kde-user-manager-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kdump ==== - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut the build queues by allowing usage of systemd-mini ==== kgamma5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kgamma5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== khotkeys5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: khotkeys5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kinfocenter5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kinfocenter5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kmenuedit5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kmenuedit5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kscreen5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kscreen5-lang kscreen5-plasmoid - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kscreenlocker ==== Version update (5.16.1 -> 5.16.2) Subpackages: kscreenlocker-lang libKScreenLocker5 - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== ksshaskpass5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: ksshaskpass5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== ksysguard5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: ksysguard5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kwayland-integration ==== Version update (5.16.1 -> 5.16.2) - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== kwin5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: kwin5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * [placement] Avoid smart placement strategy with invalid client sizes (kde#408754) * Make sure we don't resize clients before they've been set up * Avoid crash without XWayland * [wayland] Obey m_requestGeometryBlockCounter inside updateDecoration * [platforms/X11] Disable VSync for QtQuick Windows (kde#406180) ==== libdmtx ==== Version update (0.7.4 -> 0.7.5) - Update to 0.7.5 * Add support for GS-1 encoding via the FCN1 character * Fix dmtxDecodeMatrixRegion returning a freed pointer * makefile: migrating ANSI C -> C99 * Fixed Data Mosaic encoding bug - Change the upstream URL. - Drop patches, now upstream: * libdmtx-mosaic.patch * libdmtx-explicit-cast.patch - Rebase libdmtx-DmtxPropRowPadBytes.patch. - Update the License tag, only BSD-2-Clause files are used. ==== libkdecoration2 ==== Version update (5.16.1 -> 5.16.2) Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private6 - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== libkscreen2 ==== Version update (5.16.1 -> 5.16.2) Subpackages: libKF5Screen7 libkscreen2-plugin - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== libksysguard5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: libksysguard5-helper libksysguard5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== llvm8 ==== Subpackages: clang8 clang8-checker libLLVM8 libLTO8 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang8 - Exclude riscv64 for now since it fails to build. ==== mercurial ==== Version update (5.0 -> 5.0.1) Subpackages: mercurial-lang - Mercurial 5.0.1 A regularly scheduled bugfix release. + commands * bookmark: also make bookmark cache depends of the changelog * commit: allow --interactive to work again when naming a directory (issue6131) + unsorted * manifest: avoid corruption by dropping removed files with pure (issue5801) * sslutil: fsencode path returned by certifi (issue6132) ==== milou5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: milou5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * Don't give up if no results arrive after 500ms (kde#389611) - Remove patches, now upstream: * 0001-Don-t-give-up-if-no-results-arrive-after-500ms.patch ==== mobile-broadband-provider-info ==== Version update (20190116 -> 20190618) - Update to version 20190618: + release: bump version to 20190618 + build: - Remove unused automake flags - Switch dist to xz - Update bug report URL - Fix make distcheck + Added configuration for WinSIM (German provider) + apn-conf: generate Android-compatible APN list + all: remove SVN vestiges + es: new SUOP operator + Move mcc="232" mnc="05" from Orange to Drei + jp: - Add b-mobile visitor sim entry - Add primary markers for NTT DoCoMo and bmobile + fi: Add Moi Mobiili + cz: add T-Mobile balance check and top-up - Add xsltproc BuildRequires: New dependency. ==== multipath-tools ==== Version update (0.8.1+8+suse.8c11498 -> 0.8.1+28+suse.fea562a) Subpackages: kpartx libmpath0 - Update to version 0.8.1+28+suse.fea562a: * mpathpersist: optimize for setups with many LUNs (bsc#1134648) * mpathpersist: add option -f/--batch-file (bsc#1134648) * libmultipath: get_prio(): really don't reset prio for inaccessible paths (bsc#1118495) - Upstream bug fixes from dm-devel (bsc#1139369): * multipath: call store_pathinfo with DI_BLACKLIST * multipathd: fix REALLOC_REPLY with max length reply * libmultipath: make vector_foreach_slot_backwards work as expected * multipathd: fix client response for socket activation * various minor fixes (coverity) ==== oxygen5 ==== Version update (5.16.1 -> 5.16.2) - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== plasma-nm5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: plasma-nm5-lang plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== plasma5-addons ==== Version update (5.16.1 -> 5.16.2) Subpackages: plasma5-addons-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * [Calculator] Fix popup size and minimum size for expanded version ==== plasma5-desktop ==== Version update (5.16.1 -> 5.16.2) Subpackages: plasma5-desktop-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * make appstream validate * [Look and Feel and KSplash KCM] Set sourceSize for thumbnail * [Task Manager] Prefer PID match even when desktop entry doesn't match * Fix merge screwup * [Kickoff/Dash] Show Calculator and Unit Converter runners * Increment iterator before any potential continue * Reject duplicate events with identical coordinates * Fix ocasional crash on the touchpad kded * [Colors KCM] Assign properties in a binding * touchpad: fix some easy warnings * [Touchpad KCM] Do not crash in case there is no touchpad (kde#408325) ==== plasma5-integration ==== Version update (5.16.1 -> 5.16.2) Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Update to 5.16.2 ==== plasma5-pa ==== Version update (5.16.1 -> 5.16.2) Subpackages: plasma5-pa-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== plasma5-workspace ==== Version update (5.16.1 -> 5.16.2) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * [Notifications] Swap configure and clear buttons in full representation header (kde#409140) * do not use long deprecated QString::toAscii * print a warning when invoking the scripting API's sleep() * [Notifications] Don't keep non-configurable notifications in history * [Notifications] Make popup placement more resilient * [Notifications] Don't show remaining time when job is paused * [Notifications] Let plasmashell be the only true owner of notification and job tracker services (kde#408250) * [Klipper] Always restore the last clipbboard item * Handle Gimp 2.10 * Set translation domain * [interactiveconsole] Fix initial load selection (kde#408787) * [Notifications] Read BAMF_DESKTOP_FILE_HINT from environment * Make the icon applet use the same shadow settings as desktop icons ==== polkit-kde-agent-5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: polkit-kde-agent-5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== powerdevil5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: powerdevil5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - Changes since 5.16.1: * [powerdevil] Return battery source monitoring ==== presage ==== Subpackages: libpresage1 presage-data - Split out API doc generation using multibuild. graphviz-gd has become quite heavy as a build dependency. - Cleanup specfile * remove defattr, use license macro * remove conditionals for EOLed distribution versions - Remove gpresagemate, it depends on the long deprecated XEVIE extension - Set she-bang for /usr/bin/presage_dbus_* to /usr/bin/python2 ==== python-py ==== - Switch to multibuild to avoid cycle bsc#1138666 ==== samba ==== Version update (4.10.2+git.94.31fb5e37171 -> 4.10.5+git.105.2bd98587873) Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-policy0-python3 libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2 libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-libs-python3 samba-python3 samba-winbind samba-winbind-32bit - Update to samba-4.10.5 (including updates for 4.10.4, 4.10.3) + CVE-2019-12435 rpc/dns: Avoid NULL deference if zone not found in DnssrvOperation2; (bso#13922); (bsc#1137815). + CVE-2019-12436 dsdb/paged_results: Ignore successful results without messages; (bso#13951); (bsc#1137816). - Update to samba-4.10.4 + s3: SMB1: Don't allow recvfile on stream fsp's; (bso#13938). + py/provision: Fix for Python 2.6; (bso#13882). + netcmd: Fix 'passwordsettings --max-pwd-age' command; (bso#13873). + s3-libnet_join: 'net ads join' to child domain fails when using "-U admin@forestroot"; (bso#13861). + vfs_ceph: Explicitly enable libcephfs POSIX ACL support; (bso#13896); (bsc#1130245). + vfs_ceph: Fix cephwrap_flistxattr() debug message; (bso#13940); (bsc#1134697). + ctdb-common: Avoid race between fd and signal events; (bso#13895). + ctdb-common: Fix memory leak in run_proc; (bso#13943). + lib: Initialize getline() arguments; (bso#13892). + winbind: Fix overlapping id ranges; (bco#13903). + lib util debug: Increase format buffer to 4KiB; (bso#13902). + nsswitch pam_winbind: Fix Asan use after free; (bso#13927). + s4 lib socket: Ensure address string owned by parent struct; (bso#13929). + s3 rpc_client: Fix Asan stack use after scope; (bso#13936). + s3:smbd: Handle IO_REPARSE_TAG_DFS in SMB_FIND_FILE_FULL_DIRECTORY_INFO; (bso#10097). + smb2_tcon: Avoid STATUS_PENDING completely on tdis; (bso#10344). + smb2_sesssetup: avoid STATUS_PENDING responses for session setup; (bso#12845). + smb2_tcon: Avoid STATUS_PENDING completely on tdis; (bso#13698). + smb2_sesssetup: avoid STATUS_PENDING responses for session setup; (bso#13796). + dbcheck: Fix the err_empty_attribute() check; (bso#13843). + vfs_snapper: Drop unneeded fstat handler; (bso#13858). + vfs_default: Fix vfswrap_offload_write_send() NT_STATUS_INVALID_VIEW_SIZE check; (bso#13862). + smb2_server: Grant all 8192 credits to clients; (bso#13863). + smbd: Implement SMB_FILE_NORMALIZED_NAME_INFORMATION handling; (bso#13919). + s3/vfs_glusterfs: Dynamically determine NAME_MAX; (bso#13872). + s3: modules: ceph: Use current working directory instead of share path; (bso#13918); (bsc#1134452). + winbind: Use domain name from lsa query for sid_to_name cache entry; (bso#13831). + memcache: Increase size of default memcache to 512k; (bso#13865). + docs: Update smbclient manpage for "--max-protocol"; (bso#13857). + s3:utils: If share is NULL in smbcacls, don't print it; (bso#13937). + s3:smbspool: Fix regression printing with Kerberos credentials; (bso#13939). + ctdb-scripts: CTDB restarts failed NFS RPC services by hand, which is incompatible with systemd; (bso#13860). + ctdb-daemon: Revert "We can not assume that just because we could complete a TCP handshake"; (bso#13888). + ctdb-daemon: Never use 0 as a client ID; (bso#13930). + ctdb-common: Fix memory leak; (bso#13943). + s3:debug: Enable logging for early startup failures; (bso#13904) - Update to samba-4.10.3 + CVE-2018-16860: Heimdal KDC: Reject PA-S4U2Self with unkeyed checksum; (bso#13685); (bsc#1134024). ==== sssd ==== Version update (2.1.0 -> 2.2.0) Subpackages: libnfsidmap-sss libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-32bit sssd-krb5-common sssd-ldap - Update to new upstream release 2.2.0 * The Kerberos provider can now include more KDC addresses or host names when writing data for the Kerberos locator plugin. * The 2FA prompting can now be configured. * The LDAP authentication provider now allows to use a different method of changing LDAP passwords using a modify operation in addition to the default extended operation. * The "auto_private_groups" configuration option now takes a new value hybrid. * A new option "ad_gpo_ignore_unreadable" was added. * The "cached_auth_timeout" parameter is now inherited by trusted domains. * The "ldap_sasl_mech" option now accepts another mechanism "GSS-SPNEGO" in addition to "GSSAPI". * The sssctl tool has two new commands, "cert-show" and "cert-map". - Create directory to download and cache GPOs (bsc#1132879) ==== systemsettings5 ==== Version update (5.16.1 -> 5.16.2) Subpackages: systemsettings5-lang - Update to 5.16.2 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.16.2.php - No code changes since 5.16.1 ==== unbound ==== Version update (1.9.1 -> 1.9.2) Subpackages: libunbound2 unbound-anchor - update to 1.9.2 Features - add type CAA to libpyunbound (accessing libunbound from python). - Fix #17: Add python module example from Jan Janak, that is a plugin for the Unbound DNS resolver to resolve DNS records in multicast DNS [RFC 6762] via Avahi. The plugin communicates with Avahi via DBus. The comment section at the beginning of the file contains detailed documentation. - travis build file. - PR #16: XoT support, AXFR over TLS, turn it on with master: <ip>#<authname> in unbound.conf. This uses TLS to download the AXFR (or IXFR). Bug Fixes - Fix for #4233: guard use of NDEBUG, so that it can be passed in CFLAGS into configure. - Add log message, at verbosity 4, that says the query is encrypted with TLS, if that is enabled for the query. - Fix #4239: set NOTIMPL when deny-any is enabled, for RFC8482. - Fix #4240: Fix whitespace cleanup in example.conf. - Fix that tls-session-ticket-keys: "" on its own in unbound.conf disables the tls session ticker key calls into the OpenSSL API. - Fix crash if tls-servic-pem not filled in when necessary. - Fix auth-zone NSEC3 response for empty nonterminals with exact match nsec3 records. - Fix for out of bounds integers, thanks to OSTIF audit. It is in allocation debug code. - Fix for auth zone nsec3 ent fix for wildcard nodata. - Move goto label in answer_from_cache to the end of the function where it is more visible. - Fix auth-zone NSEC3 response for wildcard nodata answers, include the closest encloser in the answer. - Fix spelling error in log output for event method. - Fix to reinit event structure for accepted TCP (and TLS) sockets. - Fix to use event_assign with libevent for thread-safety. - verbose information about auth zone lookup process, also lookup start, timeout and fail. - Fix to wipe ssl ticket keys from memory with explicit_bzero, if available. - Fix that auth zone uses correct network type for sockets for SOA serial probes. This fixes that probes fail because earlier probe addresses are unreachable. - Fix that auth zone fails over to next master for timeout in tcp. - Squelch SSL read and write connection reset by peer and broken pipe messages. Verbosity 2 and higher enables them. - Update python documentation for init_standard(). - Typos. - Fix tls write event for read state change to re-call SSL_write and not resume the TLS handshake. - Better braces in if statement in TCP fastopen code. - iana portlist updated. - Scrub RRs from answer section when reusing NXDOMAIN message for subdomain answers. - For harden-below-nxdomain: do not consider a name to be non-exitent when message contains a CNAME record. - Fix wrong query name in local zone redirect answers with a CNAME, the copy of the local alias is in unpacked form. - contrib/fastrpz.patch updated for code changes, and with git diff. - Fix #29: Solaris 11.3 and missing symbols be64toh, htobe64. - Fix #30: AddressSanitizer finding in lookup3.c. This sets the hash function to use a slower but better auditable code that does not read beyond array boundaries. This makes code better security checkable, and is better for security. It is fixed to be slower, but not read outside of the array. - Fix edns-subnet locks, in error cases the lock was not unlocked. - Fix doxygen output error on readme markdown vignettes. - Squelch log messages from tcp send about connection reset by peer. They can be enabled with verbosity at higher values for diagnosing network connectivity issues. - Attempt to fix malformed tcp response. - Fix #31: swig 4.0 and python module. - Note that so-reuseport at extreme load is better turned off, otherwise queries are not distributed evenly, on Linux 4.4.x. - Fix that spoolbuf is not used to store tcp pipelined response between mesh send and callback end. - Fix double file close in tcp pipelined response code. - Fix to define _OPENBSD_SOURCE to get reallocarray on NetBSD. - Fix to guard _OPENBSD_SOURCE from redefinition. - Fix that fixes the Fix that spoolbuf is not used to store tcp pipelined response between mesh send and callback end, this fixes error cases that did not use the correct spoolbuf. - Fix that fixes the Fix that spoolbuf is not used to store tcp pipelined response between mesh send and callback end, this fixes error cases that did not use the correct spoolbuf. - Fix another spoolbuf storage code point, in prefetch. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

1 0

[opensuse-factory] Tumbleweed - Review of the weeks 2019/25 & 26
by Dominique Leuenberger / DimStar 28 Jun '19

28 Jun '19

Dear Tumbleweed users and hackers During the last two weeks, we handed 12 snapshots over to openQA for testing. Of those, 5 have actually been released to the mirrors. Reasons for discarded snapshots can be many: highest up of course is a product issue, that is detected and rated impacting enough to block a snapshot. In some cases it can also be infrastrucure related issues, where openQA simply couldn't perform the tests and come to a reliable conclusion. The five snapshots published were 0614, 0617, 0621, 0623 and 0626, containing those changes: * KDE Frameworks 5.59.0 * KDE Plasma 5.16.1 * KDE Applications 19.04.2 * LLVM 8.0 * openssl 1.1.1c * cmake 3.14.5 * GDM 3.32.0 * GStreamer 1.14.5 * Python 3.7.3 * VLC 3.0.7.1 * polkit 0.116, based on mozjs 60 As usual, more is being forged in staging areas, such as: * TeXLive 2019 * Qt 5.13 * SWIG 4.0 * GStreamer 1.16 * Kernel 5.1.15 * RPM is being enhanced by zstd support * Mesa 19.1.0 * KDE Plasma 5.16.2 Cheers, Dominique

1 0

[opensuse-factory] openSUSE is bloated! (Click-bait intentional)
by Ignacio Taranto 27 Jun '19

27 Jun '19

Before you throw everything at me.... I Love openSUSE, it has one of if not THE the best package management tools available. But the problem is recommended packages. Y You must be tired of reading about this topic right? Today I spent the entire afternoon "cleaning-up" my Tumbleweed installation by removing a ton of packages I didn't installed/I don't use. I get that the default of installing recommended packages is all about user experience, but this has gone to far: - I had three display Managers installed, THREE! SDDM, LightDM, XDM. - I had a ton unneeded of 32bit libraries/binaries, yes I installed Wine, but I removed several libraries/binaries that weren't needed by Wine. I even had systemd-32bit installed! - I'm currently a ZSH user, but when I first installed Tumbleweed I had at least three shells installed (bash, zsh, tcsh) why?! And that's about things I specifically searched for deletion. I'm sure there's a lot more bloat hiding there. So, I'm nowhere near expert about packaging or about zypp/libzypp internals. But this is (kind of) what I propose: - Turn OFF "Recommended Packages" by default - If after this something is broken by missing packages, then those packages should be Dependencies not Recommendations. - Correct me here if I'm wrong, but patterns don't do anything unless the "Recommended Packages" setting is enabled. So, make the packages you want to be in the patterns as Dependencies not Recommendations. Again, I'm sure a lot I'm saying here is probably inaccurate. But I'm addressing a real issue here. I'm not surprised outside users form other distros say "openSUSE is bloated". In conclusion, this isn't just a childish rant. I really want to openSUSE to improve in this matter. I want to help too, please point me in the right direction. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

24 50

[opensuse-factory] Dropping VDR and plugins.
by Stefan Seyfried 27 Jun '19

27 Jun '19

Hi, if nobody wants to maintain VDR and the plugins in Factory and Leap, I'm going to file drop requests for it on Fr 21. Jun 20:00 UTC 2019 VDR will still be available, maintained by me, from the "vdr" and "vdr:plugins" projects. As the minimal number of bug reports I received in the last years shows, there are only an handful of users, and the effort of keeping it in factory is surely spent better elsewhere than obeying crazy rules about changelog entries. -- Stefan Seyfried "For a successful technology, reality must take precedence over public relations, for nature cannot be fooled." -- Richard Feynman -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

9 15

[opensuse-factory] New package: some latte-dock applets
by Cor Blom 26 Jun '19

26 Jun '19

Hi, A couple of months ago I announced that I would like to add applet-window-buttons and applet-window-appmenu to factory. They belong to the world of latte-dock in kde plasma, but can also used (with less functionality) with normal panels. I have now done the sr. A reason to have these available is that with upcoming 0.9 version of latte-dock these applets (together with applet-window-title, directly availabe via store,kde.org) can be successor to the plasmoid-active-window-control (AWC). The latter has not seen active development and I will try to keep it alive as long as I can, but at some point it is going to break. This is nice for those who, for example, like to imitate the unity layout in plasma. Kind regard, Cor https://build.opensuse.org/request/show/712120 https://build.opensuse.org/request/show/712119 -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

1 0

[opensuse-factory] sudo first attempt fails
by Michal Hlavac 25 Jun '19

25 Jun '19

Hi, After some recent releases I started to have problem with sudo. First attempt which ask for user password command fails e.g.: hlavki@hlknb:~> sudo zypper ref [sudo] password for hlavki: sudo: PERM_ROOT: setresuid(0, -1, -1): Operation not permitted sudo: unable to send audit message: Operation not permitted sudo: setuid(0): Operation not permitted sudo: unable to set supplementary group IDs: Operation not permitted sudo: unable to change to runas uid (0, 0): Operation not permitted sudo: unable to execute /usr/bin/zypper: Operation not permitted on next attempts (when password is not asked) it works. I didn't find any bugzilla issue so I don't know if it's by wrong configuration or something else. thanks, m. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org

2 2