openSUSE Factory
Threads by month
- ----- 2025 -----
- January
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
December 2021
- 102 participants
- 97 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apparmor
calligra
gegl (0.4.32 -> 0.4.34)
gnome-settings-daemon
gtk3 (3.24.30 -> 3.24.31)
hivex
libapparmor
libinput
libmbim (1.24.6 -> 1.26.2)
libqmi (1.28.8 -> 1.30.2)
libreoffice (7.2.4.1 -> 7.2.5.1)
libxcrypt (4.4.26 -> 4.4.27)
libyui (4.2.22 -> 4.2.24)
libyui-ncurses (4.2.22 -> 4.2.24)
libyui-ncurses-pkg (4.2.22 -> 4.2.24)
libyui-qt (4.2.22 -> 4.2.24)
libyui-qt-graph (4.2.22 -> 4.2.24)
libyui-qt-pkg (4.2.22 -> 4.2.24)
nghttp2 (1.43.0 -> 1.46.0)
pango (1.50.1 -> 1.50.2)
publicsuffix (20211207 -> 20211213)
python-cryptography (36.0.0 -> 36.0.1)
python-matplotlib (3.4.3 -> 3.5.1)
rubygem-bootsnap (1.9.1 -> 1.9.3)
rubygem-puma (5.5.0 -> 5.5.2)
rubygem-rubocop (1.22.1 -> 1.23.0)
rubygem-rubocop-ast (1.12.0 -> 1.15.0)
rubygem-web-console (4.1.0 -> 4.2.0)
rubygem-zeitwerk (2.4.2 -> 2.5.1)
spice-gtk
squid
sysdig
usbredir (0.11.0 -> 0.12.0)
vim (8.2.3640 -> 8.2.3863)
virt-bootstrap
webkit2gtk3 (2.34.2 -> 2.34.3)
webkit2gtk3-soup2 (2.34.2 -> 2.34.3)
xscreensaver (5.45 -> 6.02)
xwayland (21.1.3 -> 21.1.4)
yast2-configuration-management (4.4.0 -> 4.4.1)
=== Details ===
==== apparmor ====
Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang pam_apparmor pam_apparmor-32bit python3-apparmor
- Modify add-samba-bgqd.diff: Add new rule to fix new "DENIED
operation="file_mmap" violation in SLE15-SP4; (bsc#1192336).
==== calligra ====
- Add dependency on kcoreaddons (boo#1193959)
- Drop Requires(post,postun) of shared-mime-info, not needed
==== gegl ====
Version update (0.4.32 -> 0.4.34)
Subpackages: gegl-0_4 gegl-0_4-lang libgegl-0_4-0
- Update to version 0.4.34:
+ Operations:
- magick-load: use g_spawn_async instead of system to run the
image magick convert fallback - preventing shell expansion on
non-escaped/filtered paths in constructed commandline.
- ripple: avoid a possible division by zero.
+ Build:
- Explicit dependency specification in meson for generated CL
files.
- ctx has been moved to be part of gegl-common.so nearer to the
operations using it avoiding polluting the GEGL library
symbol table with the ctx symbols.
==== gnome-settings-daemon ====
Subpackages: gnome-settings-daemon-lang
- Rebase patches:
+ gnome-settings-daemon-notify-idle-resumed.patch
==== gtk3 ====
Version update (3.24.30 -> 3.24.31)
Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-lang gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0
- Update to version 3.24.31:
+ input: Fix a crash with touch on GtkScale.
+ clipboard: Avoid a double-free.
+ css: Avoid a crash with radial gradients.
+ GtkFileChooser: Don't leak search results.
+ GtkTextView: Support css letterspacing.
+ Wayland:
- Reset position when hiding popups.
- Ignore globals we did not bind ourselves.
- Avoid infinite loops when hiding surfaces.
- Avoid clipboard-related lockups.
+ X11:
- Trap errors while doing XRANDR calls.
- Support touchpad gestures with XI 2.4.
+ Updated translations.
==== hivex ====
Subpackages: libhivex0 perl-Win-Hivex
- Add python-rpm-macros (bsc#1180125)
==== libapparmor ====
Subpackages: libapparmor1 libapparmor1-32bit
- Modify add-samba-bgqd.diff: Add new rule to fix new "DENIED
operation="file_mmap" violation in SLE15-SP4; (bsc#1192336).
==== libinput ====
Subpackages: libinput-udev libinput10
- Add missing pkgconfig(wayland-protocols) BuildRequires:
Previously pulled in by an other package.
==== libmbim ====
Version update (1.24.6 -> 1.26.2)
Subpackages: libmbim-glib4 mbimcli-bash-completion
- Update to version 1.26.2:
+ The GUdev optional build/runtime requirement is now fully
dropped, it's no longer used.
+ Implemented new link management operations, exclusively for the
cdc_mbim driver for now. These new operations allow creating or
deleting VLAN network interfaces in order to run multiplexed
data sessions over one single physical network interface.
+ Added support for the Microsoft-defined SAR service, including
the following operations:
- MBIM_CID_MS_SAR_CONFIG
- MBIM_CID_MS_SAR_TRANSMISSION_STATUS
+ libmbim-glib:
- Logic updated to make sure full packets are written at once,
instead of writing them in chunks.
- Updated the "LTE attach status" APIs in order to avoid
creating unneeded struct types in the interface. The older
methods have been deprecated and maintained in the library
for compatibility purposes only.
+ Bugfixes.
- Drop pkgconfig(gudev-1.0) BuildRequires: no longer used.
==== libqmi ====
Version update (1.28.8 -> 1.30.2)
Subpackages: libqmi-glib5 libqmi-tools
- Mention libqmi.keyring
- update to 1.30.2:
* libqmi-glib:
* * Added support for 'hsic', 'bam-dmux' and 'unknown' endpoint types.
* * Added support for QMAPv2, QMAPv3 and QMAPv4 data aggregation types.
* * Added support for 'NGRAN' access technology identifier.
* * New 'qmi_device_add_link_with_flags()' method, in order to give e.g. rmnet
specific checksum offload related flags when creating a new link.
* qmicli:
* * New '--nas-get-preferred-networks' command.
* * New '--nas-set-preferred-networks' command.
* * New '--uim-get-configuration' command.
* * New '--uim-depersonalization' command.
* * New '--wms-get-routes' command.
* * New '--dpm-open-port' command.
* * New '--dpm-close-port' command.
* * Updated '--wds-create-profile' with an additional 'apn-type-mask' setting.
* * Updated '--wds-modify-profile' with an additional 'apn-type-mask' setting.
* * Updated '--link-add' with an additional optional 'flags' setting.
* qmi-network:
* * New PROFILE configuration setting to allow specifying which WDS profile to
use when connecting.
* * New IP-TYPE configuration setting to allow selecting the IP type requested
* collections:
* * basic: added voice call management operations.
* * basic: added voice supplementary service related operations.
* * basic: added NAS preferred networks related operations.
* * basic: added NAS network reject indications.
* * basic: added UIM depersonalization related operations.
* Several other minor improvements and fixes.
- add gpg validation
==== libreoffice ====
Version update (7.2.4.1 -> 7.2.5.1)
Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Update to 7.2.5.1
- Removed unrecognized option `--disable-vlc`
This option has been removed from upstream in commit
https://gerrit.libreoffice.org/c/core/+/108283
There's no real change in our build given that the
VLC avmedia backend was explicitly disabled.
* Fix provided by Marina Latini
- Fix gtk popover usage on gtk 3.20
* patch provided by Gustavo Boiko fix_gtk_popover_on_3.20.patch
- Revert upstream commit https://gerrit.libreoffice.org/c/core/+/116884
* patch provided by Gustavo Boiko fix_math_desktop_file.patch
- Fix generated list of files for python scripts
- Use older syntax for Supplements on SLE12
- Add and update minimum version of dependencies
- Refresh 0001-Revert-java-9-changes.patch
==== libxcrypt ====
Version update (4.4.26 -> 4.4.27)
Subpackages: libcrypt1 libcrypt1-32bit libxcrypt-devel
- update to 4.4.27:
* Limit the maximum amount of rbytes to 64 bytes (512 bits) for yescrypt,
gost-yescrypt, and scrypt
==== libyui ====
Version update (4.2.22 -> 4.2.24)
- Fix deprecated warning (elevated to error by -Werror)
for libmicrohttpd's MHD_HTTP_UNPROCESSABLE_ENTITY in rest-api
(bsc#1193956)
- 4.2.24
- Fixed YQPkg button redraw problem in dark SLE installation theme:
Use centered button in dialogs with QSizeGrip (bsc#1193808)
- 4.2.23
==== libyui-ncurses ====
Version update (4.2.22 -> 4.2.24)
- Fix deprecated warning (elevated to error by -Werror)
for libmicrohttpd's MHD_HTTP_UNPROCESSABLE_ENTITY in rest-api
(bsc#1193956)
- 4.2.24
- Fixed YQPkg button redraw problem in dark SLE installation theme:
Use centered button in dialogs with QSizeGrip (bsc#1193808)
- 4.2.23
==== libyui-ncurses-pkg ====
Version update (4.2.22 -> 4.2.24)
- Fix deprecated warning (elevated to error by -Werror)
for libmicrohttpd's MHD_HTTP_UNPROCESSABLE_ENTITY in rest-api
(bsc#1193956)
- 4.2.24
- Fixed YQPkg button redraw problem in dark SLE installation theme:
Use centered button in dialogs with QSizeGrip (bsc#1193808)
- 4.2.23
==== libyui-qt ====
Version update (4.2.22 -> 4.2.24)
- Fix deprecated warning (elevated to error by -Werror)
for libmicrohttpd's MHD_HTTP_UNPROCESSABLE_ENTITY in rest-api
(bsc#1193956)
- 4.2.24
- Fixed YQPkg button redraw problem in dark SLE installation theme:
Use centered button in dialogs with QSizeGrip (bsc#1193808)
- 4.2.23
==== libyui-qt-graph ====
Version update (4.2.22 -> 4.2.24)
- Fix deprecated warning (elevated to error by -Werror)
for libmicrohttpd's MHD_HTTP_UNPROCESSABLE_ENTITY in rest-api
(bsc#1193956)
- 4.2.24
- Fixed YQPkg button redraw problem in dark SLE installation theme:
Use centered button in dialogs with QSizeGrip (bsc#1193808)
- 4.2.23
==== libyui-qt-pkg ====
Version update (4.2.22 -> 4.2.24)
- Fix deprecated warning (elevated to error by -Werror)
for libmicrohttpd's MHD_HTTP_UNPROCESSABLE_ENTITY in rest-api
(bsc#1193956)
- 4.2.24
- Fixed YQPkg button redraw problem in dark SLE installation theme:
Use centered button in dialogs with QSizeGrip (bsc#1193808)
- 4.2.23
==== nghttp2 ====
Version update (1.43.0 -> 1.46.0)
- update to 1.46.0:
* see https://nghttp2.org/blog/2021/07/18/nghttp2-v1-44-0/
* see https://nghttp2.org/blog/2021/09/20/nghttp2-v1-45-0/
* see https://nghttp2.org/blog/2021/10/19/nghttp2-v1-46-0/
==== pango ====
Version update (1.50.1 -> 1.50.2)
Subpackages: libpango-1_0-0 libpango-1_0-0-32bit typelib-1_0-Pango-1_0
- Update to version 1.50.2:
+ Fix a problem with font fallback for Arabic.
+ Fix handling of fonts without a space glyph.
+ Various documentation improvements.
+ Fix build issues.
==== publicsuffix ====
Version update (20211207 -> 20211213)
- Update to version 20211213:
* Adding ravendb.cloud domain to allow separation between users (#1468)
==== python-cryptography ====
Version update (36.0.0 -> 36.0.1)
- update to 36.0.1:
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 1.1.1m.
==== python-matplotlib ====
Version update (3.4.3 -> 3.5.1)
Subpackages: python38-matplotlib python38-matplotlib-cairo python38-matplotlib-gtk3 python38-matplotlib-tk
- Skip tests which crash with oom
- Update to version 3.5.1
* https://matplotlib.org/stable/users/prev_whats_new/whats_new_3.5.0.html
* Figure and Axes creation / management
- subplot_mosaic supports simple Axes sharing
- Figure now has draw_without_rendering method
- Figure __init__ passes keyword arguments through to set
* Plotting methods
- Add Annulus patch
- set_data method for FancyArrow patch
- New arrow styles in ArrowStyle and ConnectionPatch
- Setting collection offset transform after initialization
* Colors and colormaps
- Colormap registry (experimental)
- Image interpolation now possible at RGBA stage
- imshow supports half-float arrays
- A callback registry has been added to Normalize objects
* Titles, ticks, and labels
- Settings tick positions and labels simultaneously in
set_ticks
* Fonts and Text
- Triple and quadruple dot mathtext accents
- Font properties of legend title are configurable
- Text and TextBox added parse_math option
- Text can be positioned inside TextBox widget
- Simplifying the font setting for usetex mode
- Type 42 subsetting is now enabled for PDF/PS backends
* rcParams improvements
- Allow setting default legend labelcolor globally
* 3D Axes improvements
- Axes3D now allows manual control of draw order
- Allow changing the vertical axis in 3d plots
- plot_surface supports masked arrays and NaNs
- 3D plotting methods support data keyword argument
* Interactive tool improvements
- Colorbars now have pan and zoom functionality
- Updated the appearance of Slider widgets
- Removing points on a PolygonSelector
- Dragging selectors
- Clearing selectors
- Setting artist properties of selectors
- Ignore events outside selection
- CallbackRegistry objects gain a method to temporarily block
signals
- Directional sizing cursors
* Sphinx extensions
- More configuration of mathmpl sphinx extension
* Backend-specific improvements
- GTK backend
- Qt backends
- HiDPI support in Cairo-based, GTK, and Tk backends
- Qt figure options editor improvements
- WX backends support mouse navigation buttons
- WebAgg uses asyncio instead of Tornado
- Add gtk4 and gtk-common subpackages
==== rubygem-bootsnap ====
Version update (1.9.1 -> 1.9.3)
Subpackages: ruby2.7-rubygem-bootsnap ruby3.0-rubygem-bootsnap
- updated to version 1.9.3
[#] 1.9.3
* Only disable the compile cache for source files impacted by [Ruby 3.0.3 [Bug 18250]](https://bugs.ruby-lang.org/issues/18250).
This should keep the performance loss to a minimum.
[#] 1.9.2
* Disable compile cache if [Ruby 3.0.3's ISeq cache bug](https://bugs.ruby-lang.org/issues/18250) is detected.
AKA `iseq.rb:13 to_binary: wrong argument type false (expected Symbol)`
* Fix `Kernel.load` behavior: before `load 'a'` would load `a.rb` (and other tried extensions) and
wouldn't load `a` unless `development_mode: true`, now only `a` would be loaded and files with
extensions wouldn't be.
==== rubygem-puma ====
Version update (5.5.0 -> 5.5.2)
- Update to version 5.5.2
https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx
Re-allows UTF-8 in HTTP header values
==== rubygem-rubocop ====
Version update (1.22.1 -> 1.23.0)
- updated to version 1.23.0
[#]# 1.23.0 (2021-11-15)
[#]## New features
* [#10202](https://github.com/rubocop/rubocop/issues/10202): Add new `Lint/UselessRuby2Keywords` cop. ([@dvandersluis][])
* [#10217](https://github.com/rubocop/rubocop/pull/10217): Add new `Style/OpenStructUse` cop. ([@mttkay][])
* [#10243](https://github.com/rubocop/rubocop/pull/10243): Add new `Gemspec/RequireMFA` cop. ([@dvandersluis][])
[#]## Bug fixes
* [#10203](https://github.com/rubocop/rubocop/issues/10203): Fix `Style/FormatStringToken` to respect `IgnoredMethods` with nested structures. ([@tejasbubane][])
* [#10242](https://github.com/rubocop/rubocop/pull/10242): Fix `last_column` value for `JSONFormatter`. ([@koic][])
* [#10229](https://github.com/rubocop/rubocop/pull/10229): Fix a false positive for `Style/StringLiterals` when `EnforcedStyle: double_quotes` and using single quoted string with backslash. ([@koic][])
* [#10174](https://github.com/rubocop/rubocop/issues/10174): Fix inherit_from_remote should follow remote includes path starting with `./`. ([@hirasawayuki][])
* [#10234](https://github.com/rubocop/rubocop/pull/10234): Fix an error for `Style/Documentation` when using a cbase class. ([@koic][])
* [#10227](https://github.com/rubocop/rubocop/issues/10227): Fix a false positive for `Style/ParenthesesAroundCondition` when parentheses in multiple expressions separated by semicolon. ([@koic][])
* [#10230](https://github.com/rubocop/rubocop/issues/10230): Fix a false positive for `Lint/AmbiguousRange` when a range is composed of all literals except basic literals. ([@koic][])
[#]## Changes
* [#10221](https://github.com/rubocop/rubocop/issues/10221): Update `Naming::FileName` to recognize `Struct`s as classes that satisfy the `ExpectMatchingDefinition` requirement. ([@dvandersluis][])
* [#10220](https://github.com/rubocop/rubocop/issues/10220): Update `Naming/FileName` to make `CheckDefinitionPathHierarchy` roots configurable. ([@grosser][])
* [#10199](https://github.com/rubocop/rubocop/pull/10199): Change `AllowAdjacentOneLineDefs` config parameter of `Layout/EmptyLineBetweenDefs` to `true` by default . ([@koic][])
* [#10236](https://github.com/rubocop/rubocop/pull/10236): Make `Lint/NumberConversion` aware of `to_r`. ([@koic][])
[#]# 1.22.3 (2021-10-27)
[#]## Bug fixes
* [#10166](https://github.com/rubocop/rubocop/pull/10166): Fix a false positive for `Style/StringLiterals` when using some meta characters (e.g. `'\s'`, `'\z'`) with `EnforcedStyle: double_quotes`. ([@koic][])
* [#10216](https://github.com/rubocop/rubocop/issues/10216): Fix an incorrect autocorrect for `Style/SelectByRegexp` when using `lvar =~ blockvar` in a block. ([@koic][])
* [#10207](https://github.com/rubocop/rubocop/pull/10207): Fix false positive in Layout/DotPosition when the selector is on the same line as the closing bracket of the receiver. ([@mvz][])
[#]## Changes
* [#10209](https://github.com/rubocop/rubocop/pull/10209): Make `Lint/DeprecatedConstants` aware of `Net::HTTPServerException`. ([@koic][])
[#]# 1.22.2 (2021-10-22)
[#]## Bug fixes
* [#10165](https://github.com/rubocop/rubocop/issues/10165): Fix `Layout/DotPosition` false positives when the selector and receiver are on the same line. ([@dvandersluis][])
* [#10171](https://github.com/rubocop/rubocop/pull/10171): Fix `Style/HashTransformKeys` and `Style/HashTransformValues` incorrect auto-correction when inside block body. ([@franzliedke][])
* [#10180](https://github.com/rubocop/rubocop/issues/10180): Fix an error for `Style/SelectByRegexp` when using `match?` without a receiver. ([@koic][])
* [#10193](https://github.com/rubocop/rubocop/pull/10193): Fix an error for `Layout/EmptyLinesAroundExceptionHandlingKeywords` when `begin` and `rescue` are on the same line. ([@koic][])
* [#10185](https://github.com/rubocop/rubocop/issues/10185): Fix a false positive for `Lint/AmbiguousRange` when using `self` in a range literal. ([@koic][])
* [#10200](https://github.com/rubocop/rubocop/issues/10200): Fix an error when inspecting a directory named `*`. ([@koic][])
* [#10149](https://github.com/rubocop/rubocop/pull/10149): Fix `Bundler/GemComment` where it would not detect an offense in some cases when `OnlyFor` is set to `restrictive_version_specifiers`. ([@Drowze][])
[#]## Changes
* [#10157](https://github.com/rubocop/rubocop/pull/10157): Updated `Gemspec/RequiredRubyVersion` handle being set to blank values. ([@dvandersluis][])
* [#10176](https://github.com/rubocop/rubocop/pull/10176): Unmark `AutoCorrect: false` from `Security/JSONLoad`. ([@koic][])
* [#10186](https://github.com/rubocop/rubocop/issues/10186): Explicit block arg is not counted for `Metrics/ParameterLists`. ([@koic][])
==== rubygem-rubocop-ast ====
Version update (1.12.0 -> 1.15.0)
- updated to version 1.15.0
[#]# 1.15.0 (2021-12-12)
[#]## New features
* [#10219](https://github.com/rubocop/rubocop/pull/10219): Add `value_omission` method to `AST::PairNode` for Ruby 3.1's hash value omission. ([@koic][])
[#]# 1.14.0 (2021-12-02)
[#]## New features
* [#218](https://github.com/rubocop/rubocop-ast/pull/218): Support Ruby 3.1's anonymous block forwarding syntax. ([@koic][])
[#]# 1.13.0 (2021-11-07)
[#]## New features
* [#213](https://github.com/rubocop/rubocop-ast/pull/213): Make `Node#numeric_type?` aware of rational and complex literals. ([@koic][])
==== rubygem-web-console ====
Version update (4.1.0 -> 4.2.0)
Subpackages: ruby2.7-rubygem-web-console ruby3.0-rubygem-web-console
- updated to version 4.2.0
* [#308](https://github.com/rails/web-console/pull/308) Fix web-console inline templates rendering ([@voxik])
* [#306](https://github.com/rails/web-console/pull/306) Support Ruby 3.0 and above ([@ruanwood])
==== rubygem-zeitwerk ====
Version update (2.4.2 -> 2.5.1)
Subpackages: ruby2.7-rubygem-zeitwerk ruby3.0-rubygem-zeitwerk
- updated to version 2.5.1
[#]# 2.5.1 (20 October 2021)
* Restores support for namespaces that are not hashable. For example namespaces that override the `hash` method with a different arity as shown in [#188](https://github.com/fxn/zeitwerk/issues/188).
[#]# 2.5.0 (20 October 2021)
[#]## Breaking changes
* Requires Ruby 2.5.
* Deletes the long time deprecated preload API. Instead of:
```ruby
loader.preload("app/models/user.rb")
```
just reference the constant on setup:
```ruby
loader.on_setup { User }
```
If you want to eager load a namespace, use the constants API:
```ruby
loader.on_setup do
Admin.constants(false).each { |cname| Admin.const_get(cname) }
end
```
[#]## Bug fixes
* Fixes a bug in which a certain valid combination of overlapping trees managed by different loaders and ignored directories was mistakenly reported as having conflicting directories.
* Detects external namespaces defined with `Module#autoload`. If your project reopens a 3rd party namespace, Zeitwerk already detected it and did not consider the namespace to be managed by the loader (automatically descends, ignored for reloads, etc.). However, the loader did not do that if the namespace had only an autoload in the 3rd party code yet to be executed. Now it does.
[#]## Callbacks
* Implements `Zeitwerk::Loader#on_setup`, which allows you to configure blocks of code to be executed on setup and on each reload. When the callback is fired, the loader is ready, you can refer to project constants in the block.
See the [documentation](https://github.com/fxn/zeitwerk#the-on_setup-callback) for further details.
* There is a new catch-all `Zeitwerk::Loader#on_load` that takes no argument and is triggered for all loaded objects:
```ruby
loader.on_load do |cpath, value, abspath|
[#] ...
end
```
Please, remember that if you want to trace the activity of a loader, `Zeitwerk::Loader#log!` logs plenty of information.
See the [documentation](https://github.com/fxn/zeitwerk#the-on_load-callback) for further details.
* The block of the existing `Zeitwerk::Loader#on_load` receives also the value stored in the constant, and the absolute path to its corresponding file or directory:
```ruby
loader.on_load("Service::NotificationsGateway") do |klass, abspath|
[#] ...
end
```
Remember that blocks can be defined to take less arguments than passed. So this change is backwards compatible. If you had
```ruby
loader.on_load("Service::NotificationsGateway") do
Service::NotificationsGateway.endpoint = ...
end
```
That works.
* Implements `Zeitwerk::Loader#on_unload`, which allows you to configure blocks of code to be executed before a certain class or module gets unloaded:
```ruby
loader.on_unload("Country") do |klass, _abspath|
klass.clear_cache
end
```
These callbacks are invoked during unloading, which happens in an unspecified order. Therefore, they should not refer to reloadable constants.
You can also be called for all unloaded objects:
```ruby
loader.on_unload do |cpath, value, abspath|
[#] ...
end
```
Please, remember that if you want to trace the activity of a loader, `Zeitwerk::Loader#log!` logs plenty of information.
See the [documentation](https://github.com/fxn/zeitwerk/blob/master/README.md#the-on… for further details.
[#]## Assorted
* Performance improvements.
* Documentation improvements.
* The method `Zeitwerk::Loader#eager_load` accepts a `force` flag:
```ruby
loader.eager_load(force: true)
```
If passed, eager load exclusions configured with `do_not_eager_load` are not honoured (but ignored files and directories are).
This may be handy for test suites that eager load in order to ensure all files define the expected constant.
* Eliminates internal use of `File.realpath`. One visible consequence is that in logs root dirs are shown as configured if they contain symlinks.
* When an autoloaded file does not define the expected constant, Ruby clears state differently starting with Ruby 3.1. Unloading has been revised to be compatible with both behaviours.
* Logging prints a few new traces.
==== spice-gtk ====
Subpackages: libspice-client-glib-2_0-8 libspice-client-glib-helper libspice-client-gtk-3_0-5
- Add explicit pkgconfig(wayland-protocols) BuildRequires, meson
checks for it.
==== squid ====
- Adjust harden_squid.service.patch to resolve boo#1193938
==== sysdig ====
- Add sysdig-0.27.0-fixi586.patch to fix build of armv7 and i586 [#1717]
==== usbredir ====
Version update (0.11.0 -> 0.12.0)
Subpackages: libusbredirhost1 libusbredirparser1
- update to 0.12.0:
* Implement dropping packets from isochronous devices
when buffer is owned by usbredirparser library
* Use packet size limit on deserialization
* Fix possible bad state in deserialization logic
* Fix possible memory leak in serialization logic
* Fix (un)serialization with empty write buffers
* Improvements to usbredirparserfuzz
==== vim ====
Version update (8.2.3640 -> 8.2.3863)
Subpackages: gvim vim-data vim-data-common
- Updated to version 8.2.3863, fixes the following problems
* Freeze when calling term_wait() in a close callback.
* Xxd code has duplicate expressions.
* List of distributed files is outdated.
* Header for source file is outdated.
* Count for 'operatorfunc' in Visual mode is not redone.
* Vim9: The "no effect" error is not given for all registers.
* Using <sfile> in a function gives an unexpected result.
* GTK: when using ligatures the cursor is drawn wrong.
* "verbose pwd" is incorrect after dropping files on Vim.
* Vim9: error for variable declared in while loop.
* Vim9: for loop variable can be a list member.
* Vim9: no error for :lock or :unlock with unknown variable.
* Can only get text properties one line at a time.
* Terminal ANSI colors may be wrong.
* GTK: a touch-drag does not update the selection.
* Compiler warning for using size_t for int.
* Vim9: no error for an evironment variable by itself.
* Vim9: debug text misses one line of return statement.
* Duplicate code in xxd.
* Integer overflow with large line number.
* Overflow check uses wrong number.
* Test for put with large count fails.
* Illegal memory access if malloc() fails.
* Using %S in printf() does not work correctly.
* Cannot adjust sign highlighting for 'cursorline'.
* Cannot use a lambda for 'tagfunc'.
* Libvterm is outdated.
* Building libvterm fails with MSVC.
* Messages may be corrupted.
* Buffer overflow with long help argument.
* Error checks repeated several times.
* Restarting Insert mode in prompt buffer too often when a callback switches
windows and comes back. (Sean Dewar)
* Build failure with unsigned char.
* Crash when allocating signal stack fails.
* When ml_get_buf() fails it messes up IObuff.
* Using freed memory when vim_strsave() fails.
* Unused runtime file.
* After a put the '] mark is on the last byte of a multi-byte character.
* Illegal memory access.
* objc file detected as Octave. (Antony Lee)
* Repeated code in xxd.
* Cannot drag popup window after click on a status line. (Sergey Vlasov)
* Vim9: assigning to a script variable drops the required type.
* Vim9: cannot use `=expr` in :...do commands.
* Blockwise insert does not handle autoindent properly.
* Visual studio project files are not recognized.
* Filetype detection often mixes up Forth and F#.
* Blockwise insert does not handle autoindent properly when tab is inserted.
* The window title is not updated when dragging the scrollbar.
* ex_let_one() is too long.
* Vim9: "filter #pat# cmd" does not work.
* Build failure with small features.
* Vim9: cannot use :func inside a :def function.
* Coverity warns for possibly using a NULL pointer.
* Cannot use quotes in the count of an Ex command.
* Confusing error for missing key.
* Vim9: error for invalid assignment when skipping.
* Cannot drag a popup without a border.
* Match highlighting continues over breakindent.
* The +title feature adds a lot of #ifdef but little code.
* Text property highlighting continues over breakindent.
* Vim9: invalid LHS is not possible.
* First key in dict is seen as curly expression and fails.
* Most people call F# "fsharp" and not "fs".
* Vim9: cannot use a list declaration in a :def function.
* Cannot pass a lambda name to function() or funcref(). (Yegappan Lakshmanan)
* Text property highlighting is used on Tab.
* Vim9: constant expression of elseif not recognized.
* Vim9: test fails with different error.
* Vim9: backtick expression expanded when not desired.
* Vim9: backtick expression expanded for :global.
* Vim9: memory leak when compiling :elseif fails.
* Cannot use Vim9 lambda for 'tagfunc'.
* MS-Windows: No error message if vimgrep pattern is not matching.
* Some unused assignments and ugly code in xxd.
* Vim9: valgrind reports spurious problems for a test.
* Vim9: range without a command is not compiled.
* Vim9: error for constant list size is only given at runtime.
* Compiler warns for unused variable without the +textprop feature. (John
Marriott)
* MS-Windows: test sometimes runs into existing swap file.
* Vim9: Internal error when invoking closure in legacy context.
* Using memory freed by losing the clipboard selection. (Dominique Pellé)
* Amiga: superfluous messages for freeing lots of yanked text.
* When using 'linebreak' a text property starts too early.
* Build error for missing error message in small build.
* Cannot use a lambda for 'completefunc' and 'omnifunc'.
* README file in a config directory gets wrong filetype.
* In a gnome terminal keys are recognized as mouse events.
* Internal error when passing range() to list2blob().
* No support for squirrels.
* "/etc/Muttrc.d/README" gets filetype muttrc.
* "set! termcap" shows codes in one column, but not keys.
* "set! termcap" test fails.
* Vim9: using "legacy" before range does not work.
* Vim9: crash when no pattern match found.
* Cannot use a lambda for 'imactivatefunc'.
* Test fails without the channel feature. (Dominique Pellé)
* Test fails without the 'autochdir' option.
* Screen is cleared when a FocusLost autocommand triggers.
* In wrong directory when using win_execute() with 'acd' set.
* Memory left allocated on exit when using Tcl.
* Using freed memory in open command.
* Dec mouse test fails without gnome terminfo entry.
* ":sign" can add a highlight group without a name.
* E854 is not tested; some spelling suggestions are not tested.
* Autochdir test fails without the +channel feature.
* Cannot disassemble function starting with "debug" or "profile".
* Cannot remove highlight from an existing sign. (James McCoy)
* Giving an error for an empty sign argument breaks a plugin.
* Error messages are everywhere.
* Error messages are everywhere.
* Cannot assign a lambda to an option that takes a function.
* Build error when using Photon GUI.
* Vim9: function unreferenced while called is never deleted.
* Undesired changing of the indent of the first formatted line.
* Coverity warns for using a buffer in another scope.
* might crash when callback is not valid.
* An overlong highlight group name is silently truncated.
* Options that take a function insufficiently tested.
* Quickfix buffer becomes hidden while still in a window.
* Not automatically handling gnome terminal mouse like xterm.
* Focus change is not passed on to a terminal window.
* If the quickfix buffer is wiped out getqflist() still returns its number.
* When editing the command line a FocusLost callback may cause the screen
to scroll up.
* Cannot see any text when window was made zero lines or zero columns.
* Vim9: cannot use a lambda for 'opfunc' and others.
* Converting a funcref to a string leaves out "g:", causing the meaning
of the name depending on the context.
* Crash when using NULL partial.
* timer_info() has the wrong repeat value in a timer callback. (Sergey
Vlasov)
* Zig files are not recognized.
* New compiler warnings from clang-12 and clang-13.
* Vim9: accessing freed memory when checking type.
* Timer info test fails on slow machine.
* Wrong window size when a modeline changes 'columns' and there is more
than one tabpage. (Michael Soyka)
* Test for command line height fails.
* Vim9: lambda compiled without outer context when debugging.
* When a tags file line is long a tag may not be found.
* Spell file write error not checked.
* Lambda debug test fails in some configurations.
* Using freed memory when defining a user command from a user command.
* ":cd" works differently on MS-Windows.
* The option window script is outdated.
* Vim9: no error if a function shadows a script variable.
* Confusing error for using a variable as a function.
* The help for options is outdated.
* Running CI on MacOS with gcc is not useful.
* Test fails because of using Vim9 syntax in legacy function.
* No proper formatting of a C line comment after a statement.
* Lambda for option that is a function may be garbage collected.
* Test_window_minimal_size can fail on a slow machine.
* Test for term_gettitle() fails in some environments.
* Build error with +cindent but without +smartindent.
* Setting *func options insufficiently tested.
* Using "g:Func" as a funcref does not work in script context because "g:"
is dropped.
* Vim9: cannot find script-local func using "s:". (Yegappan Lakshmanan)
* Too many #ifdefs.
* The funcexe_T struct members are not named consistently.
* No good reason to limit the message history in the tiny version.
* A :def callback function postpones an error message.
* Edit test hangs or fails.
* When cross compiling the output of "uname" cannot be set. (Ben Reeves)
* If a terminal shows in two windows, only one is redrawn.
* Terminal in two windows test fails on some systems.
* Crash when 'writedelay' is set and using a terminal window to execute
a shell command.
* Script context not set when copying 'swf' and 'ts'.
* i3config files are not recognized.
* Terminal focus test fails sometimes.
* Vim9: can call import with star directly.
* Vim9: obsolete TODO items
* Vim9: crash when garbage collecting a nested partial. (Virginia Senioria)
* Vim9: expr4 test fails on MS-Windows.
* The opfunc error test fails on a slow machine.
* Vim9: leaking memory in numbered function test.
* confusing error when using :cc without error list. (Gary Johnson)
* .csx files and .sln files are not recognized.
* Vim9: cannot have a multi-line dict inside a block.
* Compiler warning for posible loss of data on MS-Windows.
* Vim9: Not using NL as command end does not work for :autocmd.
* Cannot filter or map characters in a string.
* Test fails because error message changed.
* "vrc" does not replace composing characters, while "rc" does.
* ASAN test run fails.
* Leaking memory in map() and filter(), cannot use a string argument in
Vim9 script.
* Test for visual replace is in wrong function.
* No ASAN support for MSVC.
* Various comments could be improved.
* Vim9: using "g:Func" as a funcref does not work in a :def function.
* Huntr badge does not really fit in the list.
* when opening a terminal from a timer the first typed character is
lost. (Virginia Senioria)
* No error when setting a func option to a script-local function.
* Error messages are spread out.
* Opfunc test fails when missing feature changes function name. (Dominique
Pellé)
* Test fails because of changed error message.
* Error from term_start() not caught by try/catch.
* Test_out_cb often fails on Mac.
* The inline-function example does not work.
* Vim9: comment after expression not skipped to find NL.
* QNX: crash when compiled with GUI but using terminal.
* Cannot use script-local function for setting *func options.
* Using \z() with \z1 not tested for syntax highlighting.
* Useless test for negative index in check functions.
* Vim9: outdated TODO items, disabled tests that work.
* Vim9: can change locked list and list items.
* Dep3patch files are not recognized.
* Vim9: no type error if assigning a value with type func(number) to a
variable of type func(string).
* Vim9: test fails when the channel feature is missing.
* No error when using control character for 'lcs' or 'fcs'.
* Illegal memory access when using a lambda with an error.
* Cannot use reduce() for a string.
* Functions implementing reduce and map are too long.
* Illegal memory access when displaying a partial.
* Vim9: overhead when comparing string, dict or function.
* Vim9: not enough tests.
* Vim9: not enough tests.
* Vim9: inconsistent arguments for test functions.
* Illegal memory access when displaying a blob.
* Vim9: not enough tests.
* Vim9: inconsistent error for using function().
* Vim9: not enough tests.
* Vim9: some code lines not tested.
* Vim9: codecov struggles with the file size.
* List of distributed files is outdated.
* Crash on exit with EXITFREE and using win_execute().
* Various build flags accidentally enabled.
==== virt-bootstrap ====
- Add python-rpm-macros (bsc#1180125)
==== webkit2gtk3 ====
Version update (2.34.2 -> 2.34.3)
Subpackages: WebKit2GTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.34.3:
+ Make audio tools (like mixers) display the actual name of the
application producing sound, instead of a generic one.
+ Fix several crashes and rendering issues.
==== webkit2gtk3-soup2 ====
Version update (2.34.2 -> 2.34.3)
Subpackages: WebKit2GTK-4.0-lang libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- Update to version 2.34.3:
+ Make audio tools (like mixers) display the actual name of the
application producing sound, instead of a generic one.
+ Fix several crashes and rendering issues.
==== xscreensaver ====
Version update (5.45 -> 6.02)
Subpackages: xscreensaver-data xscreensaver-data-extra xscreensaver-lang
- Do not own /usr/share/fonts. It belongs to filesystem.
- Update to version 6.02:
* New hacks, `marbling' and `binaryhorizon'.
* `atlantis' behaviors are more random and lifelike.
* `headroom' is now Mask Headroom.
* `fontglide' skips fonts that can't display ASCII.
* Use asterisks in the password dialog if the system fonts don't
have bullets in them.
* "Disable Screen Saver" was behaving like "Blank Screen Only".
- Fix compilation with older versions of gcc and on aarch64
(xscreensaver-6.02-marbling-std-c.patch).
- Update to version 6.01:
* Major refactor of the `xscreensaver' daemon for improved
security, dividing it into three programs: `xscreensaver',
`xscreensaver-gfx' and `xscreensaver-auth'.
* Renamed `xscreensaver-demo' to `xscreensaver-settings'.
* Unlock dialog has user-selectable color schemes.
* Everything uses XFreeType for fonts now.
* Install a few custom fonts needed by some savers.
* Properly disable the server's built-in screen saver.
* The passwdTimeout option was being ignored.
* The display of the unlock thermometer was weird.
* Fixed password entry on old-school multi-screen setups (:0.1).
* Worked around a KDE 5 compositor bug that caused the desktop
to momentarily become visible when cycling.
* Fixed possible high CPU usage in `xscreensaver-systemd'.
* Fixed some spurious warnings in `xscreensaver-text'.
* Warn when Wayland is in use, since it makes both screen saving
and locking impossible.
* Dropped support for systems older than X11R7 (2009).
* Fading works on systems without gamma (e.g. Raspberry Pi).
* Use EGL instead of GLX when available.
* `xscreensaver-systemd' now detects when a video player has
inhibited screen blanking and then exits without uninhibiting.
* Improved GLSL and GLES3 support: Phong shading in `etruscanvenus',
`hypertorus', `klein', `projectiveplane',`romanboy' and
`sphereeversion'.
* Updates to `cubicgrid'.
- Refresh xscreensaver-disable-upgrade-nagging-message.patch.
- Use default libexecdir.
==== xwayland ====
Version update (21.1.3 -> 21.1.4)
- Update to version 21.1.4
* Fixes for multiple input validation failures in X server extensions:
+ CVE-2021-4008/ZDI-CAN-14192 SProcRenderCompositeGlyphs out-of-bounds access (boo#1193030)
+ CVE-2021-4009/ZDI-CAN 14950 SProcXFixesCreatePointerBarrier out-of-bounds access (boo#1190487)
+ CVE-2021-4010/ZDI-CAN-14951 SProcScreenSaverSuspend out-of-bounds access (boo#1190488)
+ CVE-2021-4011/ZDI-CAN-14952 SwapCreateRegister out-of-bounds access (boo#1190489)
* This release also includes other fixes such as:
+ Store EGLcontext to avoid superfluous eglMakeCurrent() calls
+ Prefer EGLStream with NVIDIA proprietary driver if both GBM and EGLstream are available
==== yast2-configuration-management ====
Version update (4.4.0 -> 4.4.1)
- Adapt to ruby3 (bsc#1193192)
- 4.4.1
1
0
How newlib in cross compilers is built at the moment is missing
libg_nano and libc_nano. possible other bits too.
this is cross-arm-none-newlib-devel
this has a consequence not being able to build qmk for example/
also symling to /usr/bin/arm-suse-linux-gnueabi-size seems to miss.
this is in cross-arm-binutils
Regards,
Alin
Without Questions there are no Answers!
______________________________________________________________________
Dr. Alin Marin ELENA
http://alin.elena.space/
______________________________________________________________________
3
26
Dear Package maintainers and hackers.
Below package(s) in openSUSE:Factory have been failing to build for at
least 4 weeks. We tried to send out notifications to the
configured bugowner/maintainers of the package(s), but so far no
fix has been submitted. This probably means that the
maintainer/bugowner did not yet find the time to look into the
matter and he/she would certainly appreciate help to get this
sorted.
- qore-ssh2-module
Unless somebody is stepping up and submitting fixes, the listed
package(s) are going to be removed from openSUSE:Factory.
Kind regards,
DimStar / Dominique Leuenberger <dimstar(a)opensuse.org>
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apache2 (2.4.51 -> 2.4.52)
apache2-manual (2.4.51 -> 2.4.52)
apache2-mod_php7 (7.4.26 -> 7.4.27)
apache2-prefork (2.4.51 -> 2.4.52)
apache2-utils (2.4.51 -> 2.4.52)
cantarell-fonts (0.301 -> 0.303.1)
epiphany (41.2 -> 41.3)
fwupd (1.6.4 -> 1.7.3)
gnome-shell
harfbuzz (3.1.1 -> 3.2.0)
libinput (1.19.2 -> 1.19.3)
libqt5-qtwayland (5.15.2+kde34 -> 5.15.2+kde37)
librsvg (2.52.4 -> 2.52.5)
libstorage-ng (4.4.66 -> 4.4.68)
live555 (2021.11.23 -> 2021.12.18)
mutter
openvpn (2.5.4 -> 2.5.5)
php7 (7.4.26 -> 7.4.27)
python-chardet
remmina (1.4.22 -> 1.4.23)
squid (5.2 -> 5.3)
suse-module-tools (16.0.16 -> 16.0.17)
xxhash
yast2 (4.4.30 -> 4.4.31)
yast2-storage-ng (4.4.27 -> 4.4.28)
=== Details ===
==== apache2 ====
Version update (2.4.51 -> 2.4.52)
- version update to 2.4.52:
* fix CVE-2021-44224: NULL dereference or SSRF in forward proxy
configurations [boo#1193943]
* fix CVE-2021-44790: buffer overflow when parsing multipart
content in mod_lua [boo#1193942]
* ) http: Enforce that fully qualified uri-paths not to be forward-proxied
have an http(s) scheme, and that the ones to be forward proxied have a
hostname, per HTTP specifications.
* ) OpenSSL autoconf detection improvement: pick up openssl.pc in the
already sent it to the client.
* ) mod_http: Correctly sent a 100 Continue status code when sending an interim
response as result of an Expect: 100-Continue in the request and not the
current status code of the request
* ) mod_dav: Some DAV extensions, like CalDAV, specify both document
elements and property elements that need to be taken into account
when generating a property. The document element and property element
are made available in the dav_liveprop_elem structure by calling
dav_get_liveprop_element()
* ) mod_dav: Add utility functions dav_validate_root_ns(),
dav_find_child_ns(), dav_find_next_ns(), dav_find_attr_ns() and
dav_find_attr() so that other modules get to play too.
* ) mpm_event: Restart stopping of idle children after a load peak
* ) mod_http2: fixes 2 regressions in server limit handling.
1. When reaching server limits, such as MaxRequestsPerChild, the
HTTP/2 connection send a GOAWAY frame much too early on new
connections, leading to invalid protocol state and a client
failing the request
The module now initializes the HTTP/2 protocol correctly and
allows the client to submit one request before the shutdown
via a GOAWAY frame is being announced.
2. A regression in v1.15.24 was fixed that could lead to httpd
child processes not being terminated on a graceful reload or
when reaching MaxConnectionsPerChild. When unprocessed h2
requests were queued at the time, these could stall.
See <https://github.com/icing/mod_h2/issues/212>.
* ) mod_ssl: Add build support for OpenSSL v3
* ) mod_proxy_connect: Honor the smallest of the backend or client timeout
while tunneling
* ) mod_proxy: SetEnv proxy-nohalfclose (or alike) allows to disable TCP
half-close forwarding when tunneling protocols
* ) core: Be safe with ap_lingering_close() called with a socket NULL-ed by
a third-party module. PR 65627.
* ) mod_md: Fix memory leak in case of failures to load the private key.
* ) mod_md: adding v2.4.8 with the following changes
- Added support for ACME External Account Binding (EAB).
Use the new directive `MDExternalAccountBinding` to provide the
server with the value for key identifier and hmac as provided by
your CA.
While working on some servers, EAB handling is not uniform
across CAs. First tests with a Sectigo Certificate Manager in
demo mode are successful. But ZeroSSL, for example, seems to
regard EAB values as a one-time-use-only thing, which makes them
fail if you create a seconde account or retry the creation of the
first account with the same EAB.
- The directive 'MDCertificateAuthority' now checks if its parameter
is a http/https url or one of a set of known names. Those are
'LetsEncrypt', 'LetsEncrypt-Test', 'Buypass' and 'Buypass-Test'
for now and they are not case-sensitive.
The default of LetsEncrypt is unchanged.
- `MDContactEmail` can now be specified inside a `<MDomain dnsname>`
section.
- Treating 401 HTTP status codes for orders like 403, since some ACME
servers seem to prefer that for accessing oders from other accounts.
- When retrieving certificate chains, try to read the repsonse even
if the HTTP Content-Type is unrecognized.
- Fixed a bug that reset the error counter of a certificate renewal
and prevented the increasing delays in further attempts.
- Fixed the renewal process giving up every time on an already existing
order with some invalid domains. Now, if such are seen in a previous
order, a new order is created for a clean start over again.
See <https://github.com/icing/mod_md/issues/268>
- Fixed a mixup in md-status handler when static certificate files
and renewal was configured at the same time.
* ) mod_md: values for External Account Binding (EAB) can
now also be configured to be read from a separate JSON
file. This allows to keep server configuration permissions
world readable without exposing secrets.
* ) mod_proxy_uwsgi: Remove duplicate slashes at the beginning of PATH_INFO.
==== apache2-manual ====
Version update (2.4.51 -> 2.4.52)
- version update to 2.4.52:
* fix CVE-2021-44224: NULL dereference or SSRF in forward proxy
configurations [boo#1193943]
* fix CVE-2021-44790: buffer overflow when parsing multipart
content in mod_lua [boo#1193942]
* ) http: Enforce that fully qualified uri-paths not to be forward-proxied
have an http(s) scheme, and that the ones to be forward proxied have a
hostname, per HTTP specifications.
* ) OpenSSL autoconf detection improvement: pick up openssl.pc in the
already sent it to the client.
* ) mod_http: Correctly sent a 100 Continue status code when sending an interim
response as result of an Expect: 100-Continue in the request and not the
current status code of the request
* ) mod_dav: Some DAV extensions, like CalDAV, specify both document
elements and property elements that need to be taken into account
when generating a property. The document element and property element
are made available in the dav_liveprop_elem structure by calling
dav_get_liveprop_element()
* ) mod_dav: Add utility functions dav_validate_root_ns(),
dav_find_child_ns(), dav_find_next_ns(), dav_find_attr_ns() and
dav_find_attr() so that other modules get to play too.
* ) mpm_event: Restart stopping of idle children after a load peak
* ) mod_http2: fixes 2 regressions in server limit handling.
1. When reaching server limits, such as MaxRequestsPerChild, the
HTTP/2 connection send a GOAWAY frame much too early on new
connections, leading to invalid protocol state and a client
failing the request
The module now initializes the HTTP/2 protocol correctly and
allows the client to submit one request before the shutdown
via a GOAWAY frame is being announced.
2. A regression in v1.15.24 was fixed that could lead to httpd
child processes not being terminated on a graceful reload or
when reaching MaxConnectionsPerChild. When unprocessed h2
requests were queued at the time, these could stall.
See <https://github.com/icing/mod_h2/issues/212>.
* ) mod_ssl: Add build support for OpenSSL v3
* ) mod_proxy_connect: Honor the smallest of the backend or client timeout
while tunneling
* ) mod_proxy: SetEnv proxy-nohalfclose (or alike) allows to disable TCP
half-close forwarding when tunneling protocols
* ) core: Be safe with ap_lingering_close() called with a socket NULL-ed by
a third-party module. PR 65627.
* ) mod_md: Fix memory leak in case of failures to load the private key.
* ) mod_md: adding v2.4.8 with the following changes
- Added support for ACME External Account Binding (EAB).
Use the new directive `MDExternalAccountBinding` to provide the
server with the value for key identifier and hmac as provided by
your CA.
While working on some servers, EAB handling is not uniform
across CAs. First tests with a Sectigo Certificate Manager in
demo mode are successful. But ZeroSSL, for example, seems to
regard EAB values as a one-time-use-only thing, which makes them
fail if you create a seconde account or retry the creation of the
first account with the same EAB.
- The directive 'MDCertificateAuthority' now checks if its parameter
is a http/https url or one of a set of known names. Those are
'LetsEncrypt', 'LetsEncrypt-Test', 'Buypass' and 'Buypass-Test'
for now and they are not case-sensitive.
The default of LetsEncrypt is unchanged.
- `MDContactEmail` can now be specified inside a `<MDomain dnsname>`
section.
- Treating 401 HTTP status codes for orders like 403, since some ACME
servers seem to prefer that for accessing oders from other accounts.
- When retrieving certificate chains, try to read the repsonse even
if the HTTP Content-Type is unrecognized.
- Fixed a bug that reset the error counter of a certificate renewal
and prevented the increasing delays in further attempts.
- Fixed the renewal process giving up every time on an already existing
order with some invalid domains. Now, if such are seen in a previous
order, a new order is created for a clean start over again.
See <https://github.com/icing/mod_md/issues/268>
- Fixed a mixup in md-status handler when static certificate files
and renewal was configured at the same time.
* ) mod_md: values for External Account Binding (EAB) can
now also be configured to be read from a separate JSON
file. This allows to keep server configuration permissions
world readable without exposing secrets.
* ) mod_proxy_uwsgi: Remove duplicate slashes at the beginning of PATH_INFO.
==== apache2-mod_php7 ====
Version update (7.4.26 -> 7.4.27)
- updated to 7.4.27: This is a bug fix release. See
https://www.php.net/ChangeLog-7.php#7.4.27
==== apache2-prefork ====
Version update (2.4.51 -> 2.4.52)
- version update to 2.4.52:
* fix CVE-2021-44224: NULL dereference or SSRF in forward proxy
configurations [boo#1193943]
* fix CVE-2021-44790: buffer overflow when parsing multipart
content in mod_lua [boo#1193942]
* ) http: Enforce that fully qualified uri-paths not to be forward-proxied
have an http(s) scheme, and that the ones to be forward proxied have a
hostname, per HTTP specifications.
* ) OpenSSL autoconf detection improvement: pick up openssl.pc in the
already sent it to the client.
* ) mod_http: Correctly sent a 100 Continue status code when sending an interim
response as result of an Expect: 100-Continue in the request and not the
current status code of the request
* ) mod_dav: Some DAV extensions, like CalDAV, specify both document
elements and property elements that need to be taken into account
when generating a property. The document element and property element
are made available in the dav_liveprop_elem structure by calling
dav_get_liveprop_element()
* ) mod_dav: Add utility functions dav_validate_root_ns(),
dav_find_child_ns(), dav_find_next_ns(), dav_find_attr_ns() and
dav_find_attr() so that other modules get to play too.
* ) mpm_event: Restart stopping of idle children after a load peak
* ) mod_http2: fixes 2 regressions in server limit handling.
1. When reaching server limits, such as MaxRequestsPerChild, the
HTTP/2 connection send a GOAWAY frame much too early on new
connections, leading to invalid protocol state and a client
failing the request
The module now initializes the HTTP/2 protocol correctly and
allows the client to submit one request before the shutdown
via a GOAWAY frame is being announced.
2. A regression in v1.15.24 was fixed that could lead to httpd
child processes not being terminated on a graceful reload or
when reaching MaxConnectionsPerChild. When unprocessed h2
requests were queued at the time, these could stall.
See <https://github.com/icing/mod_h2/issues/212>.
* ) mod_ssl: Add build support for OpenSSL v3
* ) mod_proxy_connect: Honor the smallest of the backend or client timeout
while tunneling
* ) mod_proxy: SetEnv proxy-nohalfclose (or alike) allows to disable TCP
half-close forwarding when tunneling protocols
* ) core: Be safe with ap_lingering_close() called with a socket NULL-ed by
a third-party module. PR 65627.
* ) mod_md: Fix memory leak in case of failures to load the private key.
* ) mod_md: adding v2.4.8 with the following changes
- Added support for ACME External Account Binding (EAB).
Use the new directive `MDExternalAccountBinding` to provide the
server with the value for key identifier and hmac as provided by
your CA.
While working on some servers, EAB handling is not uniform
across CAs. First tests with a Sectigo Certificate Manager in
demo mode are successful. But ZeroSSL, for example, seems to
regard EAB values as a one-time-use-only thing, which makes them
fail if you create a seconde account or retry the creation of the
first account with the same EAB.
- The directive 'MDCertificateAuthority' now checks if its parameter
is a http/https url or one of a set of known names. Those are
'LetsEncrypt', 'LetsEncrypt-Test', 'Buypass' and 'Buypass-Test'
for now and they are not case-sensitive.
The default of LetsEncrypt is unchanged.
- `MDContactEmail` can now be specified inside a `<MDomain dnsname>`
section.
- Treating 401 HTTP status codes for orders like 403, since some ACME
servers seem to prefer that for accessing oders from other accounts.
- When retrieving certificate chains, try to read the repsonse even
if the HTTP Content-Type is unrecognized.
- Fixed a bug that reset the error counter of a certificate renewal
and prevented the increasing delays in further attempts.
- Fixed the renewal process giving up every time on an already existing
order with some invalid domains. Now, if such are seen in a previous
order, a new order is created for a clean start over again.
See <https://github.com/icing/mod_md/issues/268>
- Fixed a mixup in md-status handler when static certificate files
and renewal was configured at the same time.
* ) mod_md: values for External Account Binding (EAB) can
now also be configured to be read from a separate JSON
file. This allows to keep server configuration permissions
world readable without exposing secrets.
* ) mod_proxy_uwsgi: Remove duplicate slashes at the beginning of PATH_INFO.
==== apache2-utils ====
Version update (2.4.51 -> 2.4.52)
- version update to 2.4.52:
* fix CVE-2021-44224: NULL dereference or SSRF in forward proxy
configurations [boo#1193943]
* fix CVE-2021-44790: buffer overflow when parsing multipart
content in mod_lua [boo#1193942]
* ) http: Enforce that fully qualified uri-paths not to be forward-proxied
have an http(s) scheme, and that the ones to be forward proxied have a
hostname, per HTTP specifications.
* ) OpenSSL autoconf detection improvement: pick up openssl.pc in the
already sent it to the client.
* ) mod_http: Correctly sent a 100 Continue status code when sending an interim
response as result of an Expect: 100-Continue in the request and not the
current status code of the request
* ) mod_dav: Some DAV extensions, like CalDAV, specify both document
elements and property elements that need to be taken into account
when generating a property. The document element and property element
are made available in the dav_liveprop_elem structure by calling
dav_get_liveprop_element()
* ) mod_dav: Add utility functions dav_validate_root_ns(),
dav_find_child_ns(), dav_find_next_ns(), dav_find_attr_ns() and
dav_find_attr() so that other modules get to play too.
* ) mpm_event: Restart stopping of idle children after a load peak
* ) mod_http2: fixes 2 regressions in server limit handling.
1. When reaching server limits, such as MaxRequestsPerChild, the
HTTP/2 connection send a GOAWAY frame much too early on new
connections, leading to invalid protocol state and a client
failing the request
The module now initializes the HTTP/2 protocol correctly and
allows the client to submit one request before the shutdown
via a GOAWAY frame is being announced.
2. A regression in v1.15.24 was fixed that could lead to httpd
child processes not being terminated on a graceful reload or
when reaching MaxConnectionsPerChild. When unprocessed h2
requests were queued at the time, these could stall.
See <https://github.com/icing/mod_h2/issues/212>.
* ) mod_ssl: Add build support for OpenSSL v3
* ) mod_proxy_connect: Honor the smallest of the backend or client timeout
while tunneling
* ) mod_proxy: SetEnv proxy-nohalfclose (or alike) allows to disable TCP
half-close forwarding when tunneling protocols
* ) core: Be safe with ap_lingering_close() called with a socket NULL-ed by
a third-party module. PR 65627.
* ) mod_md: Fix memory leak in case of failures to load the private key.
* ) mod_md: adding v2.4.8 with the following changes
- Added support for ACME External Account Binding (EAB).
Use the new directive `MDExternalAccountBinding` to provide the
server with the value for key identifier and hmac as provided by
your CA.
While working on some servers, EAB handling is not uniform
across CAs. First tests with a Sectigo Certificate Manager in
demo mode are successful. But ZeroSSL, for example, seems to
regard EAB values as a one-time-use-only thing, which makes them
fail if you create a seconde account or retry the creation of the
first account with the same EAB.
- The directive 'MDCertificateAuthority' now checks if its parameter
is a http/https url or one of a set of known names. Those are
'LetsEncrypt', 'LetsEncrypt-Test', 'Buypass' and 'Buypass-Test'
for now and they are not case-sensitive.
The default of LetsEncrypt is unchanged.
- `MDContactEmail` can now be specified inside a `<MDomain dnsname>`
section.
- Treating 401 HTTP status codes for orders like 403, since some ACME
servers seem to prefer that for accessing oders from other accounts.
- When retrieving certificate chains, try to read the repsonse even
if the HTTP Content-Type is unrecognized.
- Fixed a bug that reset the error counter of a certificate renewal
and prevented the increasing delays in further attempts.
- Fixed the renewal process giving up every time on an already existing
order with some invalid domains. Now, if such are seen in a previous
order, a new order is created for a clean start over again.
See <https://github.com/icing/mod_md/issues/268>
- Fixed a mixup in md-status handler when static certificate files
and renewal was configured at the same time.
* ) mod_md: values for External Account Binding (EAB) can
now also be configured to be read from a separate JSON
file. This allows to keep server configuration permissions
world readable without exposing secrets.
* ) mod_proxy_uwsgi: Remove duplicate slashes at the beginning of PATH_INFO.
==== cantarell-fonts ====
Version update (0.301 -> 0.303.1)
- Update to version 0.303.1:
+ Add missing font.
- Changes from version 0.303:
+ Actually update the version number in the fonts.
- Changes from version 0.302:
+ Maintenance release: Make the variable font the default, only
build statics on demand. Also build two packages with variable
and static fonts. Packagers can chose the statics package if
they run into problems with the variable font, but you should
probably not install both at the same time.
+ Amended OS/2 super- and subscript values so that new Pango can
use them properly.
+ Update production names for Jacute, bulletoperator,
commercialMinusSign, divisionslash, notidentical,
ringcomb_acutecomb and ringcomb_acutecomb.case.
+ Updated appstream translations.
==== epiphany ====
Version update (41.2 -> 41.3)
Subpackages: epiphany-lang gnome-shell-search-provider-epiphany
- Update to version 41.3:
+ Fix Reload buttons on error pages.
+ Fix delete button in about:applications.
==== fwupd ====
Version update (1.6.4 -> 1.7.3)
Subpackages: fwupd-lang libfwupd2 typelib-1_0-Fwupd-2_0
- Update to version 1.7.3:
* This release adds the following features:
+ Add a sync-bkc subcommand to ensure a known set of firmware
versions
+ Add FuArchiveFirmware for plugins that use archives as
firmware files
+ Add quirkable page and sector size properties to FuCfiDevice
+ Make Upower and powerd support optional
* This release fixes the following bugs:
+ Add some sanity checks to the elanfp firmware parser
+ Add the CFI JEDEC instance ID if using the vendor-extended
version
+ Check the value range when parsing the quirk keys
+ Do not wait for a USB runtime if will-disappear is set
+ Enable the MOTD integration when using pam_motd
+ Fix DFU regression when merging the FuProgress work
+ Fix running the tests when fwupd is not installed
+ Fix the GLib error message when inotify max_user_instances is
too low
+ Fix VLI VL820Q7 detection to fix flashing of the Lenovo TBT3
dock
+ Ignore a USB error for STM32 attach when the device goes away
+ Make the HSI tests optional for embedded targets
+ Make the plugin startup order deterministic
+ Set Thunderbolt ports offline on host controller
+ Use endian-safe version functions when enumerating Logitech
hardware
+ Use lowercase flag names in intel-spi to prevent a runtime
warning
+ Wait for the System76 Launch device to come back from DFU
mode
* This release adds support for the following hardware:
+ Most Nordic Semiconductor nRF Secure devices
- Fix build when not on TW: add BR protobuf-c
- Fix build issue in spec
(references to libfwupdplugin2 -> libfwupdplugin5)
==== gnome-shell ====
Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang
- Add gnome-shell-exit-crash-workaround.patch:
+ Backport from Ubuntu, This is a workaround to maintain a clean
environment for gnome-shell and particularly JavaScript/GJS to
shutdown without crashing.
+ Proper fixes are still pending
https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/1759
https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/648
(bsc#1190878 glgo#GNOME/gnome-shell#4344).
==== harfbuzz ====
Version update (3.1.1 -> 3.2.0)
Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 libharfbuzz0-32bit typelib-1_0-HarfBuzz-0_0
- Update to 3.2.0:
+ Fixed shaping of Apple Color Emoji flags in right-to-left context
+ Fixed positioning of CFF fonts in HB_TINY profile
+ OpenType 1.9 language tags update
+ Add HB_NO_VERTICAL config option
+ Add HB_CONFIG_OVERRIDE_H for easier configuration
+ Improved packing of cmap, loca, and Ligature tables
+ Significantly improved overflow-resolution strategy in the repacker
- Update to 3.1.2:
+ hb-shape / hb-view: revert treating text on the commandline as
single paragraph (was introduced in 3.0.0); add new
- -single-par to do that
+ Subsetter bug fixes
==== libinput ====
Version update (1.19.2 -> 1.19.3)
Subpackages: libinput-udev libinput10
- Update to release 1.19.3
* quirks: add ModelBouncingKeys for A4Tech X-710BK Mouse
* quirks: Dell 15R touchpad settings for firmware v3
* quirks: change touchpad pressure on Lenovo Yoga 2 Pro
* gestures: cancel hold gestures on thumb detection
==== libqt5-qtwayland ====
Version update (5.15.2+kde34 -> 5.15.2+kde37)
Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5
- Update to version 5.15.2+kde37:
* Fix backport, context destruction was omitted
* Client: do not empty clipboard when a new popup/window is opened
* Wayland client: use wl_keyboard to determine active state
- Add patch to fix crashes triggered by unintentional actions when
showing a window (kde#421700):
* 0001-Client-Avoid-processing-of-events-when-showing-windo.patch
==== librsvg ====
Version update (2.52.4 -> 2.52.5)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0
- Update to version 2.52.5:
+ Fix mangled output in rsvg-convert when redirecting output to
a pipe on Windows.
+ When outputting to SVG, rsvg-convert now uses the width/height
units specified in the command line; it always used pixels
before.
+ Fix incorrect top/left margins for SVG/PS/EPS/PDF output.
+ Fix incorrect placement of glyphs when text has non-uniform
scaling in the X/Y axes. This is not a librsvg bug, but is
fixed by Pango 1.49.3 and later. Hopefully Pango 1.48.11 will
be released soon with this fix as well. Note that this release
of librsvg cannot increase the minimum Pango version to 1.48.11
because it is not released yet.
+ Miscellaneous: Updated crate dependencies: assert_cmd, cast,
clap cssparser, float-cmp, itertools, nalgebra, png, proptest,
rctree, selectors, system-deps.
==== libstorage-ng ====
Version update (4.4.66 -> 4.4.68)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#851
- updated pot and po files
- 4.4.68
- merge gh#openSUSE/libstorage-ng#850
- extended callbacks for probing problems
- 4.4.67
==== live555 ====
Version update (2021.11.23 -> 2021.12.18)
Subpackages: libBasicUsageEnvironment1 libUsageEnvironment3 libgroupsock30 libliveMedia102
- Update to version 2021.12.18:
+ Fixed a bug in the way that "RTSPClient" handles its two
separate TCP connections when it does RTSP-over-HTTP.
+ Updated "RTPInterface::sendDataOverTCP()" so that if it's
necessary to do a blocking send(), we call
"makeSocketNonBlocking()" immediately after the call to
"send()".
+ Performed the annual update of the copyright years near the
start of each file.
- update to 2021.12.07:
- Added #ifndef NO_OPENSSL/#endif around "#include <openssl/err.h>" in
"liveMedia/TLSState.cpp", so that the code will compile if you're compiling
with no OpenSSL headers, and NO_OPENSSL
defined.
==== mutter ====
Subpackages: mutter-lang
- Add mutter-allow-disable-hardware-cursors.patch: Add a debug
environment variable MUTTER_DEBUG_DISABLE_HW_CURSORS to disable
hardware cursors and force using software cursors to avoid some
driver or hardware bug (glgo#GNOME/mutter#2045,
glgo#GNOME/mutter!2150).
==== openvpn ====
Version update (2.5.4 -> 2.5.5)
- update to 2.5.5:
* SWEET32/64bit cipher deprecation change was postponed to 2.7
* improve "make check" to notice if "openvpn --show-cipher" crashes
* improve argv unit tests
* ensure unit tests work with mbedTLS builds without BF-CBC ciphers
* include "--push-remove" in the output of "openvpn --help"
* fix error in iptables syntax in example firewall.sh script
* fix "resolvconf -p" invocation in example "up" script
* fix "common_name" environment for script calls when
"--username-as-common-name" is in effect (Trac #1434)
* move "push-peer-info" documentation from "server options" to "client"
* correct "foreign_option_{n}" typo in manpage
* README.down-root: fix plugin module name
==== php7 ====
Version update (7.4.26 -> 7.4.27)
Subpackages: php7-cli php7-ctype php7-dom php7-gd php7-gettext php7-iconv php7-json php7-mbstring php7-mysql php7-openssl php7-pdo php7-sqlite php7-tokenizer php7-xmlreader php7-xmlwriter
- updated to 7.4.27: This is a bug fix release. See
https://www.php.net/ChangeLog-7.php#7.4.27
==== python-chardet ====
- pytest-runner is not required for build
==== remmina ====
Version update (1.4.22 -> 1.4.23)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc
- Updated to remmina version 1.4.23
* Patch for a Remmina segfault and stats code cleaning !2358
* Make Appindicator optional !2359
* Added check-box to force tight encoding for VNC connections !2360
* remote resolution: use multiple of four !2353
* Add Keyboard mapping per client RDP !2361
* Improve TLS error message, fixes #2364 (closed) !2362
* Triage policy language reworked !2363
==== squid ====
Version update (5.2 -> 5.3)
- update to 5.3:
* Bug 5169: StoreMap.cc:517 "!s.reading()" assertion
* Bug 5158: AnyP::Uri::host() mishandles [escaped] IPv6 addresses
* Bug 5060: Parallel builds are not reliable
* Documentation updates for logformat directive
==== suse-module-tools ====
Version update (16.0.16 -> 16.0.17)
- Update to version 16.0.17:
* 60-io-scheduler.rules: add rules for virtual devices
(boo#1193759)
* 60-io-scheduler.rules: enforce "none" for loop devices
(boo#1193759)
* install some modprobe.d files only for relevant architectures
(apm_bios, sonypi, toshiba, legacy rtc) (bsc#1192974)
==== xxhash ====
- fix racy check execution
==== yast2 ====
Version update (4.4.30 -> 4.4.31)
Subpackages: yast2-logs
- Do not reinitialize the packaging system during offline
upgrade (bsc#1193784 and bsc#1192437).
- 4.4.31
==== yast2-storage-ng ====
Version update (4.4.27 -> 4.4.28)
- Partitioner: added a warning if a required mount option, eg.
_netdev, is missing in a mount point (jsc#SLE-20535).
- 4.4.28
1
0
Hi all,
we had a look on how to move from LUKS v1 to LUKS v2 and also how to add
functionality for alternative authentication mechanisms like TPM2 chips
and FIDO devices during the boot process.
While there is no Installer support yet and also no final decision on
how it will be implemented in detail, we already wanted to share the
current status and document what is achievable manually.
For all interested and curious who would like to have a look or want to
directly test it, Antonio Feijoo <antonio.feijoo(a)suse.com> prepared some
step by step guides at https://en.opensuse.org/SDB:LUKS2,_TPM2_and_FIDO2.
The documentation should work on Tumbleweed and later on openSUSE Leap 15.4.
We would really appreciate any feedback, thoughts, or reports in case
you encounter any issues.
Last but not least, a huge thanks to all involved for the feedback and
support!
Regards and thanks
Benni
--
Benjamin Brunner
Engineering Manager System Boot and Init
SUSE Software Solutions Germany GmbH
Maxfeldstr. 5
90409 Nürnberg
Germany
HRB 36809, AG Nürnberg
Geschäftsführer: Ivo Totev
7
15
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apparmor
fetchmail (6.4.22 -> 6.4.25)
heaptrack (1.2.0 -> 1.3.0)
imlib2 (1.7.4 -> 1.7.5)
libapparmor
manpages-l10n (4.11.0 -> 4.12.1)
xfce4-whiskermenu-plugin (2.7.0 -> 2.7.1)
yast2-trans (84.87.20211204.c55adb9b7a -> 84.87.20211219.ed0ba1e469)
=== Details ===
==== apparmor ====
Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang pam_apparmor pam_apparmor-32bit python3-apparmor
- add openssl-engdef-mr818.diff: Allow reading /etc/ssl/engdef.d/ and
/etc/ssl/engines.d/ in abstractions/openssl which were introduced
with the latest openssl update
==== fetchmail ====
Version update (6.4.22 -> 6.4.25)
Subpackages: fetchmailconf
- update to 6.5.25:
* 6.4.24's workaround for OpenSSL 1.0.2's X509_V_FLAG_TRUSTED_FIRST flag
contained a typo and would not kick in properly.
* Library and/or rpath setting from configure.ac was fixed.
* Added an example systemd unit file and instructions to contrib/systemd/
which runs fetchmail as a daemon with 5-minute poll intervals.
* fetchmail can now be used with wolfSSL 5's OpenSSL compatibility layer,
see INSTALL and README.SSL. This is considered experimental.
Feedback solicited.
* Bison 3.8 dropped yytoknum altogether, breaking compilation due to a
warning workaround. Remove the cast of yytoknum to void. This may cause
a compiler warning to reappear with older Bison versions.
* OpenSSL 1.0.2: Workaround for systems that keep the expired DST Root CA X3
certificate in its trust store because OpenSSL by default prefers the
untrusted certificate and fails.
* For common ssh-based IMAP PREAUTH setups (i. e. those that use a plugin
- no matter its contents - and that set auth ssh), change the STARTTLS
error message to suggest sslproto '' instead.
This is a commonly reported issue after the CVE-2021-39272 fix in 6.4.22.
- drop fetchmail-bison-3.8.patch (upstream)
- Rebased patches:
* fetchmail-add-imap-oauthbearer-support.patch
* fetchmail-support-oauthbearer-xoauth2-with-pop3.patch
==== heaptrack ====
Version update (1.2.0 -> 1.3.0)
Subpackages: heaptrack-gui heaptrack-lang
- Update to 1.3.0:
* New features:
+ Allocations can be filtered by time ranges
+ Support for suppression files, including the
__lsan_default_suppressions API
* Fixed bugs:
+ Fails to build on CentOS 7.0 (kde#441125)
+ Crash when filtering on a time range (kde#441132)
+ Heaptrack produces impossible/incorrect stack traces (kde#439897)
+ ERROR: failed to lock heaptrack output file (kde#408547)
+ Attaching to running process generates empty file (kde#394520)
+ heaptrack launch script help text shows wrong option name for --output-file (kde#439307)
+ Can the output file take hostname into account? (kde#435195)
+ Heaptrack GUI crash when opening a zst file (kde#427970)
* More details on https://invent.kde.org/sdk/heaptrack/-/releases/v1.3.0
- Use %autosetup
==== imlib2 ====
Version update (1.7.4 -> 1.7.5)
Subpackages: imlib2-loaders libImlib2-1
- update to 1.7.5:
* Build .xz instead of .bz2 release tarball
* Drop imlib2-config (use pkg-config)
* Test: Add some minimal regression testing
* Test: Fix dist
* imlib2_load: Add option to use imlib_load_image_immediately()
* JPEG loader: Cosmetics
* JPEG loader: Parse EXIF data and handle orientation
* autofoo: Drop support for libungif
* Imlib.h: Add version macros
* imlib2_load: Add verbose option
* Fix build (Imlib2.h is now built)
* test: Add icon-64.pbm
* test: Add test_load_2
* imlib2_view: If verbose show error message on failure
* imlib2_load: Use clock_gettime() when available
* debug: Infrastructure
* debug: Add some debug related to file access and image loading
* Introduce im->fsize
* PNG loader: Cosmetics
* PNG loader: Use mmap() during signature check
* TIFF loader: Use mmap() during signature check
* TGA loader: Use im->fsize, cosmetics, debug
* WEBP loader: Cosmetics
* WEBP loader: Use mmap() for loading
* FF loader: Cosmetics
* FF loader: Use mmap() for loading
* ARGB loader: Cosmetics
* ARGB loader: Use mmap() for loading
* BMP loader: Cosmetics
* BMP loader: Use mmap() for loading
* ICO loader: Cosmetics
* ICO loader: Use mmap() for loading
* LBM loader: Cleanups
* LBM loader: Use mmap() for loading
* PNM loader: Use mmap() for loading
* XBM loader: Fix potential buffer overrun
* XBM loader: Cosmetics
* XBM loader: Use mmap() for loading
* XBM loader: Ignore comments and other stuff in header
* XPM loader: Use mmap() for loading
* test: test_load improvements
* imlib2_view: Add option to cache images
* Introduce UPDATE_FLAG()
* Introduce ARRAY_SIZE()
* Loader cosmetics
* Loader loading: Tweaks
* Loader loading: Move to __imlib_FindBestLoaderForFormat()
* Loader loading: Move __imlib_GetLoaderList()
* Loader loading: Minor loader lookup refactoring
* Loader loading: Avoid always loading all loaders
* Loader loading: Don't bother looking up load() if we have load2()
* WEBP loader: Enable loading animated images (first frame by default)
* configure.ac: Fixup after recent change
* Drop unnecessary free() NULL argument checks
* Remove some unneeded headers
* Rename X11 related files for clarity
* Move ImlibImagePixmap population to __imlib_AddImagePixmapToCache()
* test: Add X11 drawable grabbing test
* Move pixmap stuff to x11_pixmap.c/h
* Trivial changes in __imlib_Grab...() function prototypes
* Refactor imlib_create_scaled_image_from_drawable()
* Revert "Refactor imlib_create_scaled_image_from_drawable()"
* Refactor imlib_create_scaled_image_from_drawable() - take 2
* x11_grab.c: Rename source/destination variables for clarity
* Fix y-upscaling in imlib_create_scaled_image_from_drawable()
* test_grab: Cleanups, cosmetics
* test_grab: Add scale-down tests
* Only set MAINTAINERCLEANFILES in top-level Makefile.am
* imlib2_view: Enable grabbing/viewing drawables
* x11_grab.c: Cosmetics
* x11_grab.c: Introduce function to get shape mask
* Speedup in imlib_create_scaled_image_from_drawable()
* Avoid signedness warning
* Avoid "exceeds maximum object size" warning
* blend.c: Tweaks, cleanups
* Simplify build wrt. asm files
==== libapparmor ====
Subpackages: libapparmor1 libapparmor1-32bit
- add openssl-engdef-mr818.diff: Allow reading /etc/ssl/engdef.d/ and
/etc/ssl/engines.d/ in abstractions/openssl which were introduced
with the latest openssl update
==== manpages-l10n ====
Version update (4.11.0 -> 4.12.1)
Subpackages: man-pages-cs man-pages-da man-pages-de man-pages-es man-pages-fr man-pages-hu man-pages-it man-pages-pl man-pages-pt_BR
- Update to version 4.12.1:
* Bugfix: Enable new languages in po/Makefile.am.
- Changes from version 4.12.0:
* New languages: Finnish, Greek, Indonesian, Norwegian bokmål,
Swedish, Serbian.
* Persian (fa) is in a very early state; still disabled.
* Updated and added many translations.
- Upgrade macros: Build for Leap has been upgraded to 15.4 - build
for 15.3 has been dropped upstream.
==== xfce4-whiskermenu-plugin ====
Version update (2.7.0 -> 2.7.1)
Subpackages: xfce4-whiskermenu-plugin-lang
- Update to version 2.7.1
* Fix not selecting second icon in search results.
(gxo#panel-plugins/xfce4-whiskermenu-plugin#50)
* Fix incorrect selection when leaving treeview.
* Fix skipping first treeview item.
* Fix unnecessary button size changes.
* Translation updates
==== yast2-trans ====
Version update (84.87.20211204.c55adb9b7a -> 84.87.20211219.ed0ba1e469)
Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu
- Update to version 84.87.20211219.ed0ba1e469:
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Slovak)
* Translated using Weblate (Slovak)
* New POT for text domain 'autoinst'.
* Translated using Weblate (German)
* Translated using Weblate (German)
* Translated using Weblate (Catalan)
* Translated using Weblate (Japanese)
* Translated using Weblate (Japanese)
* New POT for text domain 'tune'.
* New POT for text domain 'registration'.
* New POT for text domain 'installation'.
* New POT for text domain 'packager'.
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* New POT for text domain 'registration'.
* New POT for text domain 'installation'.
* New POT for text domain 'bootloader'.
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Catalan)
* New POT for text domain 'installation'.
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
* Translated using Weblate (Ukrainian)
1
0
Year 2021 comes to an end, but not before the YaST Team publishes
another development report covering areas as diverse as:
- Improvements in the installer self-update mechanism
- Better error reporting in storage analysis
- More consistent management of UEFI
- Better handling of the installer boot arguments
- More intuitive representation of thin logical volumes
Check the full post at:
https://yast.opensuse.org/blog/2021-12-20/sprint-137
Cheers
--
Ancor González Sosa
YaST Team at SUSE Linux GmbH
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
erofs-utils (1.1 -> 1.4)
inn (2.6.3 -> 2.6.4)
python-gevent (21.1.2 -> 21.12.0)
=== Details ===
==== erofs-utils ====
Version update (1.1 -> 1.4)
- Update to release 1.4
* mkfs.erofs: support pre-defined UUIDs and SELinux file contexts
* Support new big pcluster feature together with Linux 5.13+
* Added support to override UID/GID
* Introduced preliminary dump.erofs and fsck.erofs
* Introduced MicroLZMA compression support
==== inn ====
Version update (2.6.3 -> 2.6.4)
- Update to version 2.6.4:
+ Bug Fix: nnrpd now adapts the length of the DH parameter used
during a DHE key exchange so as to comply with the security
level OpenSSL 1.1.0 or later expects.
+ New Features:
* Added support for systemd notifications and socket
activation. Use of more features provided by systemd,
including more notifications, will come in future releases.
* cnfsstat now also returns information about retired CNFS
buffers: buffers mentioned in cycbuff.conf as a cycbuff but
not declared in a metacycbuff.
* Switch default innreport behaviour to the common practice of
externalizing CSS into a separate file. Its name can be
configured with the html_css_url parameter in innreport.conf.
If this parameter is unset, the default innreport.css file
name will be used and innreport will generate this CSS file
for you. Previously generated reports are kept untouched,
though, and will still contain inline CSS if you had not
already set the html_css_url parameter in previous INN
versions.
* sm can now read and store any number of articles given in
wire format on its standard input when both -s and -R are
used. Only native format was previously possible.
* Added new -a flag to rnews to disallow, if needed, the use of
additional unpackers from the rnews.libexec sub-directory of
pathbin (as set in inn.conf); only rnews and cunbatch will
then be recognized as valid batch commands.
* Added new -b flag to rnews to save rejected articles in the
bad sub-directory of pathincoming (as set in inn.conf).
Otherwise, rnews just logs and discards any articles that are
rejected or cannot be parsed for some reason.
* Added new -d flag to rnews to log via syslog the message-ID
and the Path header body of each article rejected as a
duplicate.
* Added new --enable-hardening-flags configure-time option,
enabled by default, to use hardening build flags like -fPIE
and -fstack-protector-strong. This option can easily be
disabled if the compiler or the platform does not support
them well. More hardening build flags will eventually be
added in future releases.
- Rename inn-2.6.3.diff to inn-2.6.4.diff.
- Use url in sources as far as possible.
==== python-gevent ====
Version update (21.1.2 -> 21.12.0)
- Update to 21.12.0
* Fix hanging the interpreter on shutdown if gevent monkey
patching occurred on a non-main thread in Python 3.9.8 and
above. (Note that this is not a recommended practice.) See
:issue:`1839`.
* Update the embedded c-ares from 1.16.1 to 1.17.1. See
:issue:`1758`.
* Add support for Python 3.10rc1 and newer. As part of this, the
minimum required greenlet version was increased to 1.1.0 (on
CPython), and the minimum version of Cython needed to build
gevent from a source checkout is 3.0a9. Note that the dnspython
resolver is not available on Python 3.10. See :issue:`1790`.
- Meanwhile Cython 0.29.24 and dnspython are compatible
with python310
- Revert threading test skip, fixed in 21.12
1
0
Hello all,
I just did a zypper dup and now Dovecot's imap process is crashing, thus
I can't access my email. According to the logs, the login seem to be OK,
however /usr/lib/dovecot/imap crashes with a signal 11:
imap(my_user_name)<9471></qQGDnbTCrJ/AAAB>: Fatal: master:
service(imap): child 9471 killed with signal 11 (core dumped)
The package is build on Dec.16. Have anyone seen this and know how to
solve it?
Thanks.
Charles
4
3
Dear Package maintainers and hackers.
Below package(s) in openSUSE:Factory have been failing to build for at
least 4 weeks. We tried to send out notifications to the
configured bugowner/maintainers of the package(s), but so far no
fix has been submitted. This probably means that the
maintainer/bugowner did not yet find the time to look into the
matter and he/she would certainly appreciate help to get this
sorted.
- libqt5-qtquick3d
- mhvtl
Unless somebody is stepping up and submitting fixes, the listed
package(s) are going to be removed from openSUSE:Factory.
Kind regards,
DimStar / Dominique Leuenberger <dimstar(a)opensuse.org>
1
0