January 2021 - openSUSE Factory - openSUSE Mailing Lists

Security: microcode-20201118 / ucode-intel boot problem
by Martin 02 Jan '21

02 Jan '21

Dear openSUSE community, With the latest microcode-20201118 update, my Tumbleweed (on a Thinkpad T460) won't boot anymore. I initially thought that it is kernel-related but it looks like a regression was introduced after updating the intel-microcode from 20201110 to a version after that. It is not openSUSE-related as I can confirm that the same problem occurs with other operating systems (Ubuntu, Solus) too. Ubuntu tracks it here: https://bugs.launchpad.net/ubuntu/+source/intel-microcode/+bug/1882890 Nothing much happens with Intel: https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/… Adding the kernel parameter dis_ucode_ldr via Yast restores boot capability, however leaves me without microcode protection. After adding kernel parameter "dis_ucode_ldr": dmesg | grep microcode [ 0.028313] [Firmware Bug]: TSC_DEADLINE disabled due to Errata; please update microcode to version: 0xb2 (or later) [ 0.116757] SRBDS: Vulnerable: No microcode [ 0.116758] MDS: Vulnerable: Clear CPU buffers attempted, no microcode What is the recommended way to proceed? I looked via https://repology.org/project/intel-microcode/versions to email the packager but it looks like either Repology is configured in a way to not display any email addresses of openSUSE packagers or openSUSE doesn't publish them during the packaging process? Lastly, I went to https://build.opensuse.org/package/show/openSUSE:Factory/ucode-intel to check any current reported issues. Is this issue tracked elsewhere that I'm not aware of? Is anyone familiar whether Ubuntu applies a patch to the microcode they ship or would it rather make sense to rollback to 20201110 (I think this is the last one without the regression)? Information for package ucode-intel: ------------------------------------ Repository : openSUSE-Tumbleweed-Oss Name : ucode-intel Version : 20201118-1.1 Arch : x86_64 Vendor : openSUSE Installed Size : 3.5 MiB Installed : Yes (automatically) Status : up-to-date Source package : ucode-intel-20201118-1.1.src Summary : Microcode Updates for Intel x86/x86-64 CPUs Description : This package contains the microcode update blobs for Intel x86 and x86-64 CPUs. Many thanks for looking into this. Cheers Martin

6 6

openSUSE Pine64 dev telegram group
by Adrian Campos 02 Jan '21

02 Jan '21

Hi all, Currently the main maintainer of the Pinephone image was me, however in the last few days I have come across people who are helping with the development of the image for the Pine64 Pinephone, therefore, since we were filling the chat with messages on this topic from openSUSE, I have created a new group for development. I have created a new group for development, anyone who wants to join the group to contact me via Telegram @hadrianweb or even if you allow me to publish the link in this email thread.

4 4

Tumbleweed - Review of the week 2020/53
by Dominique Leuenberger / DimStar 01 Jan '21

01 Jan '21

Dear Tumbleweed users and hackers, The last week of 2020 has come to an end. Tumbleweed had been rolling steadily throughout the entire year and did went for the big finale of the year with a whopping 7 snapshots (1224, 1225, 1226, 1227, 1228, 1229 and 1231). The main changes included there contained: * Mozilla Firefox 84.0 * gtk+ 2.24.33: the final release of the gtk 2 series * Linux kernel 5.10.3 * Ruby 3.0: rubygems have been enabled, default ruby version is still 2.7 As a lot of maintainers are busy with celebrations, the list of staging projects did not change drastically. As such, we still have these things in the works for 2021: * Linux kernel 5.10.4 * icu 68.1: breaks a few things like postgresql. Staging:I * Multiple python 3 versions parallel installable. Adding to python 3.8, version 3.6 week be reintroduced. Python modules will be built for both versions. * RPM 4.16: all build issues in Staging:A have been fixed, but on upgrades, rpm seems to segfault in some cases. * brp-check-suse: a bug fix in how it detected dangling symlinks (it detected them, but did not fail as it was supposed to) * permissions package: prepares for easier listing, while supporting a full /usr merge * Rpmlint 2.0: experiments ongoing in Staging:M * openssl 3: not much progress, Staging:O still showing a lot of errors. Cheers, and all the best for 2021!

1 0

New Tumbleweed snapshot 20201231 released!
by Dominique Leuenberger 01 Jan '21

01 Jan '21

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: PackageKit aspell-en (2019.10.06 -> 2020.12.07) babl (0.1.82 -> 0.1.84) busybox-links djvulibre (3.5.27 -> 3.5.28) gdbm (1.18.1 -> 1.19) gegl (0.4.26 -> 0.4.28) gnome-shell harfbuzz (2.7.2 -> 2.7.4) kernel-firmware (20201130 -> 20201218) kernel-source (5.10.1 -> 5.10.3) libcdr libe-book libimagequant (2.12.6 -> 2.13.1) libiscsi (1.19.0+git.20201023 -> 1.19.0+git.20201217) libjpeg-turbo (2.0.5 -> 2.0.6) libproxy (0.4.15 -> 0.4.17) libproxy-plugins (0.4.15 -> 0.4.17) libqt5-qtbase libstorage-ng (4.3.75 -> 4.3.76) man-pages (5.09 -> 5.10) mariadb mobile-broadband-provider-info (20190618 -> 20201225) myspell-dictionaries (20201005 -> 20201230) netpbm (10.88.1 -> 10.93.0) nodejs14 (14.15.1 -> 14.15.3) oath-toolkit (2.6.2 -> 2.6.5) perl-Text-CSV_XS (1.44 -> 1.45) plasma5-workspace pngquant (2.12.6 -> 2.13.1) projectM (3.1.3 -> 3.1.7) publicsuffix (20201026 -> 20201223) python-Pillow python-dulwich (0.20.14 -> 0.20.15) python-pytz (2020.4 -> 2020.5) python-qt5 python-typing_extensions system-users tiff (4.1.0 -> 4.2.0) virtualbox virtualbox-kmp (6.1.16_k5.10.1_1 -> 6.1.16_k5.10.3_1) yast2-trans (84.87.20201220.b9bcd0f062 -> 84.87.20201227.aee94d5ba8) === Details === ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Add PackageKit-fix-crash-pre-dbus.patch: Do not crash when calling pk_dbus_get_uid() before D-Bus is setup. ==== aspell-en ==== Version update (2019.10.06 -> 2020.12.07) - version update to 2020.12.07 * Various new words. * Variant cleanups. * Bump irregardless, froward (+ derivatives) and perpend to level 70. ==== babl ==== Version update (0.1.82 -> 0.1.84) - Update to version 0.1.84: * Fixed bug in caching of CMYK ICC profiles. ==== busybox-links ==== Subpackages: busybox-coreutils busybox-findutils busybox-gawk busybox-grep busybox-gzip busybox-patch busybox-psmisc busybox-sed busybox-sendmail busybox-tar busybox-xz - busybox-sendmail also conflicts with the postfix-bdb flavor. ==== djvulibre ==== Version update (3.5.27 -> 3.5.28) - Update to version 3.5.28 * ddjvu: tiff generation improvements * djvumake: security checks on INCL chunks * all: updated for modern compilers * bugs: fixed several crashes on invalid inputs * miniexp: fixed escape printout and macrochars * djvudigital: can use poppler to find text * csepdjvu: handle T comments for page titles * bytestream: fixed 2GB limit * gexception, gthread: cleanup obsolete code - Drop patches incorporated or otherwise fixed upstream: * djvulibre-invalid-tiff.patch * djvulibre-CVE-2019-15144.patch * djvulibre-CVE-2019-15145.patch * djvulibre-CVE-2019-18804.patch * djvulibre-CVE-2019-15143.patch * djvulibre-always-assume-that-cpuid-works-on-x86_64.patch * djvulibre-CVE-2019-15142.patch * reproducible.patch - Only run post(un) scriptlets for desktop database update for openSUSE < 1550, these are void otherwise. - Regenerate configure script as it is no longer supplied with tarball; add BuildRequires: libtool. - Adapt file list for mime file no longer being installed (this is intentional from upstream); accordingly drop shared-mime-info BuildRequires and post(un) scripts. ==== gdbm ==== Version update (1.18.1 -> 1.19) Subpackages: gdbm-lang libgdbm6 libgdbm_compat4 - version update to 1.19 * Pre-read the memory mapped regions on systems that support it. This speeds up operations on big databases. * gdbmtool: tagged initialization of structured data Initializers for structured data can be given in tagged form, e.g.: store somekey { status=2, id={a,u,x}, name="foo" } * Bugfixes: * * Preserve locking type during database reorganization - modified patches % gdbm-no-build-date.patch (refreshed) - deleted patches - gdbm-no-common.patch (upstreamed) ==== gegl ==== Version update (0.4.26 -> 0.4.28) Subpackages: gegl-0_4 gegl-0_4-lang libgegl-0_4-0 - Update to version 0.4.28: + Core: Infrastructure to opt out of listing ops with unmet runtime dependencies. + Build: Set vapi metadata better under meson. Make graphviz' dot library is a run-time not build time dependency. + Operations: - gegl:convert-space and gegl:cast-space operations fixed, and added to build. - icc:load new operation that treats .icc files as images, permitting loading a space into the graph from file. + Workshop: New operation paint-select for an foreground select tool in development. - Add disabled pkgconfig(maxflow) BuildRequires: New dependency. ==== gnome-shell ==== Subpackages: gnome-shell-calendar gnome-shell-lang - Re-enable gnome-shell-private-connection.patch: it was rebased back in October, but not enabled (boo#1180230). - Add missing pkgconfig(libpipewire-0.3) BuildRequires and gstreamer-plugin-pipewire Requires, needed now to build the screen-cast support. ==== harfbuzz ==== Version update (2.7.2 -> 2.7.4) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz0 libharfbuzz0-32bit typelib-1_0-HarfBuzz-0_0 - harfbuzz 2.7.4: - Fix missing --enable-introspection configure option - includes changes from 2.7.3: - Update USE shaper to 2020-08-13 specification, and other improvements - Don?t disable liga feature in myanmar shaper, to match Uniscribe - Improvements to language and script tags handling. - Update language system tag registry to OpenType 1.8.4 - Support for serializing and deserializing Unicode buffers - Increase buffer work limits to handle fonts with many complex lookups - Handle more shaping operations in trace output - Memory access fixes - More OOM fixes - Improved documentation ==== kernel-firmware ==== Version update (20201130 -> 20201218) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20201218 (git commit 646f159690e2): * make AP6212 in bananpi m2 plus/zero work * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: add firmware for Lontium LT9611UXC DSI to HDMI bridge * mediatek: update MT8173 VPU firmware to v1.1.6 * QCA : Updated firmware files for WCN3991 - Remove the already upstreamed extrawhence entry - Update topic entry for lt9611uxc - Update aliases from 5.10.x kernels ==== kernel-source ==== Version update (5.10.1 -> 5.10.3) Subpackages: kernel-default kernel-docs - media: uvcvideo: Accept invalid bFormatIndex and bFrameIndex values (bsc#1180117). - commit b9a0c5f - iwlwifi: dbg: Don't touch the tlv data (bsc#1180344). - commit cd8100a - Linux 5.10.3 (bsc#1012628). - md: fix a warning caused by a race between concurrent md_ioctl()s (bsc#1012628). - nl80211: validate key indexes for cfg80211_registered_device (bsc#1012628). - crypto: af_alg - avoid undefined behavior accessing salg_name (bsc#1012628). - media: msi2500: assign SPI bus number dynamically (bsc#1012628). - fs: quota: fix array-index-out-of-bounds bug by passing correct argument to vfs_cleanup_quota_inode() (bsc#1012628). - quota: Sanity-check quota file headers on load (bsc#1012628). - Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt() (bsc#1012628). - f2fs: prevent creating duplicate encrypted filenames (bsc#1012628). - ext4: prevent creating duplicate encrypted filenames (bsc#1012628). - ubifs: prevent creating duplicate encrypted filenames (bsc#1012628). - fscrypt: add fscrypt_is_nokey_name() (bsc#1012628). - fscrypt: remove kernel-internal constants from UAPI header (bsc#1012628). - serial_core: Check for port state when tty is in error state (bsc#1012628). - HID: i2c-hid: add Vero K147 to descriptor override (bsc#1012628). - scsi: megaraid_sas: Check user-provided offsets (bsc#1012628). - f2fs: init dirty_secmap incorrectly (bsc#1012628). - f2fs: fix to seek incorrect data offset in inline data file (bsc#1012628). - coresight: etm4x: Handle TRCVIPCSSCTLR accesses (bsc#1012628). - coresight: etm4x: Fix accesses to TRCPROCSELR (bsc#1012628). - coresight: etm4x: Fix accesses to TRCCIDCTLR1 (bsc#1012628). - coresight: etm4x: Fix accesses to TRCVMIDCTLR1 (bsc#1012628). - coresight: etm4x: Skip setting LPOVERRIDE bit for qcom, skip-power-up (bsc#1012628). - coresight: etb10: Fix possible NULL ptr dereference in etb_enable_perf() (bsc#1012628). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (bsc#1012628). - coresight: tmc-etr: Check if page is valid before dma_map_page() (bsc#1012628). - coresight: tmc-etf: Fix NULL ptr dereference in tmc_enable_etf_sink_perf() (bsc#1012628). - ARM: dts: exynos: fix USB 3.0 pins supply being turned off on Odroid XU (bsc#1012628). - ARM: dts: exynos: fix USB 3.0 VBUS control and over-current pins on Exynos5410 (bsc#1012628). - ARM: dts: exynos: fix roles of USB 3.0 ports on Odroid XU (bsc#1012628). - usb: chipidea: ci_hdrc_imx: Pass DISABLE_DEVICE_STREAMING flag to imx6ul (bsc#1012628). - USB: gadget: f_rndis: fix bitrate for SuperSpeed and above (bsc#1012628). - usb: gadget: f_fs: Re-use SS descriptors for SuperSpeedPlus (bsc#1012628). - USB: gadget: f_midi: setup SuperSpeed Plus descriptors (bsc#1012628). - USB: gadget: f_acm: add support for SuperSpeed Plus (bsc#1012628). - USB: serial: option: add interface-number sanity check to flag handling (bsc#1012628). - usb: mtu3: fix memory corruption in mtu3_debugfs_regset() (bsc#1012628). - soc/tegra: fuse: Fix index bug in get_process_id (bsc#1012628). - exfat: Avoid allocating upcase table using kcalloc() (bsc#1012628). - x86/split-lock: Avoid returning with interrupts enabled (bsc#1012628). - net: ipconfig: Avoid spurious blank lines in boot log (bsc#1012628). - commit 246b3e0 - reset: raspberrypi: Don't reset USB if already up (bsc#1180336). - commit cbfc03c - series.conf: cleanup - update upstream reference and move to "almost mainline" section: patches.suse/clk-bcm-dvp-add-module_device_table.patch - commit 24deb54 - config: refresh - drop USB_SISUSBVGA_CON (no longer accessible) - commit c403c88 - Linux 5.10.2 (bsc#1012628). - serial: 8250_omap: Avoid FIFO corruption caused by MDR1 access (bsc#1012628). - ALSA: pcm: oss: Fix potential out-of-bounds shift (bsc#1012628). - USB: sisusbvga: Make console support depend on BROKEN (bsc#1012628). - USB: UAS: introduce a quirk to set no_write_same (bsc#1012628). - xhci-pci: Allow host runtime PM as default for Intel Maple Ridge xHCI (bsc#1012628). - xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP (bsc#1012628). - usb: xhci: Set quirk for XHCI_SG_TRB_CACHE_SIZE_QUIRK (bsc#1012628). - xhci: Give USB2 ports time to enter U3 in bus suspend (bsc#1012628). - ALSA: usb-audio: Fix control 'access overflow' errors from chmap (bsc#1012628). - ALSA: usb-audio: Fix potential out-of-bounds shift (bsc#1012628). - USB: add RESET_RESUME quirk for Snapscan 1212 (bsc#1012628). - USB: dummy-hcd: Fix uninitialized array use in init() (bsc#1012628). - USB: legotower: fix logical error in recent commit (bsc#1012628). - ktest.pl: Fix the logic for truncating the size of the log file for email (bsc#1012628). - ktest.pl: If size of log is too big to email, email error message (bsc#1012628). - ptrace: Prevent kernel-infoleak in ptrace_get_syscall_info() (bsc#1012628). - commit 0c7d1c1 - clk: bcm: dvp: Add MODULE_DEVICE_TABLE() (bsc#1180260). - commit fa7a177 ==== libcdr ==== - Add icu-68.patch: fix build with ICU 68 ==== libe-book ==== - Add icu-68.patch: fix build with ICU 68 ==== libimagequant ==== Version update (2.12.6 -> 2.13.1) - update to 2.13.1: * Support OpenMP in clang * speed improvements ==== libiscsi ==== Version update (1.19.0+git.20201023 -> 1.19.0+git.20201217) - Update to version 1.19.0+git.20201217: * Revert "specify number of blocks in write_same command" * iser: fix segmentation fault when task management pdu is received * iser: fix segmentation fault when async message pdu is received ==== libjpeg-turbo ==== Version update (2.0.5 -> 2.0.6) Subpackages: libjpeg8 libjpeg8-32bit libturbojpeg0 - version update to 2.0.6 1. Fixed "using JNI after critical get" errors that occurred on Android platforms when using any of the YUV encoding/compression/decompression/decoding methods in the TurboJPEG Java API. 2. Fixed or worked around multiple issues with `jpeg_skip_scanlines()`: - Fixed segfaults or "Corrupt JPEG data: premature end of data segment" errors in `jpeg_skip_scanlines()` that occurred when decompressing 4:2:2 or 4:2:0 JPEG images using merged (non-fancy) upsampling/color conversion (that is, when setting `cinfo.do_fancy_upsampling` to `FALSE`.) 2.0.0[6] was a similar fix, but it did not cover all cases. - `jpeg_skip_scanlines()` now throws an error if two-pass color quantization is enabled. Two-pass color quantization never worked properly with `jpeg_skip_scanlines()`, and the issues could not readily be fixed. - Fixed an issue whereby `jpeg_skip_scanlines()` always returned 0 when skipping past the end of an image. 3. The Arm 64-bit (Armv8) Neon SIMD extensions can now be built using MinGW toolchains targetting Arm64 (AArch64) Windows binaries. 4. Fixed unexpected visual artifacts that occurred when using `jpeg_crop_scanline()` and interblock smoothing while decompressing only the DC scan of a progressive JPEG image. 5. Fixed an issue whereby libjpeg-turbo would not build if 12-bit-per-component JPEG support (`WITH_12BIT`) was enabled along with libjpeg v7 or libjpeg v8 API/ABI emulation (`WITH_JPEG7` or `WITH_JPEG8`.) - modified sources % libjpeg-turbo.keyring ==== libproxy ==== Version update (0.4.15 -> 0.4.17) - Update to version 0.4.17: + python bindings: fix "TypeError: argtypes must be a sequence of types". - Drop 147.patch: fixed upstream. - Add 147.patch: python bindings: fix "TypeError: _argtypes_ must be a sequence of types". - Update to version 0.4.16: + Port to, and require, SpiderMonkey 6. + Use closesocket() instead of close() on Windows. + Add symbol versions - be ready to introduce new APIs as needed. + Add public px_proxy_factory_free_proxies function. + Add PacRunner config backend (largely untested; feedback welcome!). + Small performance improvements. + pxgsettings: use the correct syntax to connect to the changed signal (silences annoying output on console). + Support python3 up to version 3.9. + Fix buffer overflow when PAC is enabled (CVE-2020-26154). + Rewrite url::recvline to be nonrecursive (CVE-2020-25219). + Remove nonfunctional and crashy pacrunner caching. + Never use system libmodman (no other consumers, not maintained). - Drop upstream merged patches: + libproxy-python3.7.patch + libproxy-pxgsettings.patch + libproxy-CVE-2020-25219.patch libproxy-fix-pac-buffer-overflow.patch - Create new sub-package libproxy1-config-pacrunner. ==== libproxy-plugins ==== Version update (0.4.15 -> 0.4.17) Subpackages: libproxy1-config-gnome3 libproxy1-config-kde libproxy1-networkmanager libproxy1-pacrunner-webkit - Update to version 0.4.17: + python bindings: fix "TypeError: argtypes must be a sequence of types". - Drop 147.patch: fixed upstream. - Add 147.patch: python bindings: fix "TypeError: _argtypes_ must be a sequence of types". - Update to version 0.4.16: + Port to, and require, SpiderMonkey 6. + Use closesocket() instead of close() on Windows. + Add symbol versions - be ready to introduce new APIs as needed. + Add public px_proxy_factory_free_proxies function. + Add PacRunner config backend (largely untested; feedback welcome!). + Small performance improvements. + pxgsettings: use the correct syntax to connect to the changed signal (silences annoying output on console). + Support python3 up to version 3.9. + Fix buffer overflow when PAC is enabled (CVE-2020-26154). + Rewrite url::recvline to be nonrecursive (CVE-2020-25219). + Remove nonfunctional and crashy pacrunner caching. + Never use system libmodman (no other consumers, not maintained). - Drop upstream merged patches: + libproxy-python3.7.patch + libproxy-pxgsettings.patch + libproxy-CVE-2020-25219.patch libproxy-fix-pac-buffer-overflow.patch - Create new sub-package libproxy1-config-pacrunner. ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Add patch to avoid excessive use of memory by lconvert: * 0001-Fix-allocated-memory-of-QByteArray.patch ==== libstorage-ng ==== Version update (4.3.75 -> 4.3.76) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (French) (bsc#1149754) - 4.3.76 ==== man-pages ==== Version update (5.09 -> 5.10) - version update to 5.10 * added documentation of the faccessat2() system call * added a new subsection to the signal(7) manual page that provides a "big picture" of what happens when a signal handler is executed - deleted patches - man-pages-openat2.h-location.patch (upstreamed) ==== mariadb ==== Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - switch to bcond_with to make it easier to enable galera support via the prjconfig - fix non galera case for building ==== mobile-broadband-provider-info ==== Version update (20190618 -> 20201225) - Update to version 20201225: * release: bump version to 20201225 * Add <name> to .doap file * th: add new provider AIS (AWN) * pl/nju mobile: Fix the balance check USSD code * trivial: fix spurious whitespaces * Add Polish MVNOs "nju mobile" and "Virgin Mobile" * Remove defunct Polish MVNOs * Update configuration for Polish operators * pl: fix APN for Polish provider PLUS * Rename Swiss provider Orange to Salt * Add APN Information for Aliv Bahamas * Add China Telecom as LTE carrier * Add SpeedTalk Mobile MVNO * Add gitltab-ci * at: add balance check and top-up code for hot.at * sg/Starhub: Add USSD command to fetch balance info * Add Airtel Malawi settings * Add a new provider: Yota (25011) * Add eSwatini mobile provider info ==== myspell-dictionaries ==== Version update (20201005 -> 20201230) Subpackages: myspell-cs_CZ myspell-da_DK myspell-de myspell-de_DE myspell-el_GR myspell-en myspell-en_GB myspell-en_US myspell-es myspell-es_ES myspell-fr_FR myspell-hu_HU myspell-it_IT myspell-lightproof-en myspell-lightproof-hu_HU myspell-lightproof-pt_BR myspell-lightproof-ru_RU myspell-pl_PL myspell-pt_BR myspell-ru_RU - version update to 20201228 * several updated dictionaries, see https://cgit.freedesktop.org/libreoffice/dictionaries/log/ ==== netpbm ==== Version update (10.88.1 -> 10.93.0) Subpackages: libnetpbm11 - version update to 10.93.0 * lot of bug fixes and features, see HISTORY - modified patches % netpbm-disable-jasper.patch (refreshed) % netpbm-make.patch (refreshed) % netpbm-security-code.patch (refreshed) % netpbm-security-scripts.patch (refreshed) % netpbm-tmpfile.patch (refreshed) % signed-char.patch (refreshed) - deleted patches - netpbm-pbmtonokia-cmdline-txt-null.patch (upstreamed) ==== nodejs14 ==== Version update (14.15.1 -> 14.15.3) Subpackages: npm14 - New upstream LTS version 14.15.3: * deps: + upgrade npm to 6.14.9 + update acorn to v8.0.4 * http2: check write not scheduled in scope destructor * stream: fix regression on duplex end - versioned.patch, sle12_python3_compat.patch: refreshed ==== oath-toolkit ==== Version update (2.6.2 -> 2.6.5) - Update to version 2.6.5 * oathtool: Support for reading KEY and OTP from standard input or filename. KEY and OTP may now be given as '-' to mean stdin, or @FILE to read from a particular file. This is recommended on multi-user systems, since secrets as command line parameters leak. * pam_oath: Fix unlikely logic fail on out of memory conditions. * Doc fixes. - Update to version 2.6.4 * libpskc: New --with-xmlsec-crypto-engine to hard-code crypto engine. Use it like --with-xmlsec-crypto-engine=gnutls or - -with-xmlsec-crypto-engine=openssl if the default dynamic loading fails because of runtime linker search path issues. * oathtool --totp --verbose now prints TOTP hash mode. * oathtool: Hash names (e.g., SHA256) for --totp are now upper case. Lower/mixed case hash names are supported for compatibility. * pam_oath: Fail gracefully for missing users. This allows you to incrementally add support for OATH authentication instead of forcing it on all users. * Fix libpskc memory corruption bug. * Fix man pages. * Build fixes. - Update to version 2.6.3 * pam_oath: Fix self-tests. - Drop not longer needed patches: * 0001-Fix-no-return-in-nonvoid-function-errors-reported-by.patch * 0003-pam_oath-assign-safe-default-to-alwaysok-config-memb.patch * 0002-update_gnulibs_files.patch * gnulib-libio.patch - Use source verification - Use proper source URLs ==== perl-Text-CSV_XS ==== Version update (1.44 -> 1.45) - updated to 1.45 see /usr/share/doc/packages/perl-Text-CSV_XS/ChangeLog 1.45 - 2020-12-24, H.Merijn Brand * Update to Devel::PPPort-3.60 (3.59 was b0rked) * Allow adding to existing data in csv (out => $ref) * examples/csv2xlsx : -L # to limit records to export * examples/csv2xlsx : --de # for possible double-encoding fix * Update to Devel::PPPort-3.61 * Update to Devel::PPPort-3.62 * Add examples/csv-split * examples/csv2xlsx : Check if .xlsx is creatable before conversion * Small doc additions * Fix META issue for bugtracker ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - RPM got fixed, so use %fdupes on TW again ==== pngquant ==== Version update (2.12.6 -> 2.13.1) - update to 2.13.1: - small speed and quality improvements ==== projectM ==== Version update (3.1.3 -> 3.1.7) - Update to version 3.1.7: * Vendoring libglm headers to remove a dependency * Subdirectory scanning for textures and presets * Support for text drawing and feedback in pmSDL (may not be enabled by configuration) macOS should support building with autotools now, not just xcode - Removed patch to reduce build dependencies, as it's no longer required: * 0001-Reduce-dependencies.patch ==== publicsuffix ==== Version update (20201026 -> 20201223) - Update to version 20201223: * gTLD autopull: 2020-12-21 (#1172) * Featherhead: Remove defunct project (#1171) * Add needed suffixes for WPMU DEV hosting and CDNs (#1169) * Add GünstigBestellen domains (#1170) * add deno.dev (#1167) * Update WoltLab Cloud Domains (#1168) * gTLD autopull: 2020-12-11 (#1165) * Update public_suffix_list.dat (#1162) * Add lohmus.me to the private section (#1161) * Add flap.id domain (#1160) * UPDATE TO SLD ON HOSTBIP SECTION (#1130) * Third level .??? domains for the PRIVATE section (#1159) * Add orsites.com to the list of domains (#1157) * Add webthings.io and krellian.net (#1154) * gTLD autopull: 2020-12-10 (#1164) * gTLD autopull: 2020-11-30 (#1155) * The list of Jelastic public domains was extended. Addition to #1023 #1063 #1092 #1095 (#1151) * gTLD autopull: 2020-11-21 (#1152) * Add ondigitalocean.app to the list of domains (#1150) * Add private domains for airy.host (#1149) * gTLD autopull: 2020-11-11 (#1148) * Update public_suffix_list.dat (#1147) * Add of.je (#1131) * Update the existing Names.of.London Public List (#1146) * Del linkitools.space nxd from Private (#1145) * Del ptplus.fit NXD from Private (#1144) * Del cloudeity.net NXD from Private (#1143) * Del uklugs.org NXD from Private section (#1142) * Del xenapponazure.com from Private (#1141) * Added an RSS feed URL (#1140) * gTLD autopull: 2020-11-03 (#1139) * Add secaas.hk (#1138) * Adding qoto.io (#1129) * Add fh-muenster.io to PSL (#1134) * gTLD autopull: 2020-10-28 (#1135) * Update pull_request_template.md (#1116) ==== python-Pillow ==== - fix build with libtiff 4.2.0 - added patches fix https://github.com/python-pillow/Pillow/pull/5153 + python-Pillow-tiff-4.2.0.patch fix https://github.com/python-pillow/Pillow/commit/416f12e772d2b3cb920b18b3625e… + python-Pillow-tiff-fix-oob-read.patch ==== python-dulwich ==== Version update (0.20.14 -> 0.20.15) - update to 0.20.15: * Add some functions for parsing and writing bundles. * Add ``no_verify`` flag to ``porcelain.commit`` and ``Repo.do_commit``. * Remove dependency on external mock module. - drop remove_mock.patch (upstream) ==== python-pytz ==== Version update (2020.4 -> 2020.5) - update to 2020.5: * update to IANA 2020e timezone release ==== python-qt5 ==== - Mark the package as typed for mypy deb#978586 ==== python-typing_extensions ==== - add transitional typing-extensions provides ==== system-users ==== Subpackages: system-group-hardware system-group-kvm system-group-libvirt system-group-wheel system-user-bin system-user-daemon system-user-ftp system-user-games system-user-lp system-user-mail system-user-man system-user-news system-user-nobody system-user-qemu system-user-tftp system-user-upsd system-user-uucp system-user-wwwrun - Add system-user-vscan subpackage with vscan user and group and /var/spool/amavis as home directory ==== tiff ==== Version update (4.1.0 -> 4.2.0) Subpackages: libtiff5 libtiff5-32bit - version update to 4.2.0 Major changes: * Optional support for using libdeflate is added. * Many of the tools now support a memory usage limit. See http://www.simplesystems.org/libtiff/v4.2.0.html for more. ==== virtualbox ==== Subpackages: virtualbox-guest-tools virtualbox-guest-x11 - Fix build for kernel 5.11 - File "fixes-for-5.11.patch" is added. - Disable build of guest modules. These are included in recent kernels and are not needed for Tumbleweed, Leap 15.1 and Leap 15.3. File "vboxguestconfig.sh" is deleted. ==== virtualbox-kmp ==== Version update (6.1.16_k5.10.1_1 -> 6.1.16_k5.10.3_1) - Fix build for kernel 5.11 - File "fixes-for-5.11.patch" is added. - Disable build of guest modules. These are included in recent kernels and are not needed for Tumbleweed, Leap 15.1 and Leap 15.3. File "vboxguestconfig.sh" is deleted. ==== yast2-trans ==== Version update (84.87.20201220.b9bcd0f062 -> 84.87.20201227.aee94d5ba8) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20201227.aee94d5ba8: * Translated using Weblate (Portuguese) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Portuguese) * Translated using Weblate (Portuguese) * Translated using Weblate (Portuguese) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Portuguese) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Catalan) * Translated using Weblate (Japanese) * Translated using Weblate (Indonesian) * New POT for text domain 'network'. * Translated using Weblate (Portuguese) * New POT for text domain 'storage'. * Translated using Weblate (Portuguese) * Translated using Weblate (Slovak) * Translated using Weblate (Portuguese) * Translated using Weblate (Portuguese) * Translated using Weblate (Dutch) * Translated using Weblate (Catalan) * Translated using Weblate (Japanese) * New POT for text domain 'network'. * Translated using Weblate (Italian) * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian)

1 0