Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&version=15.1&build=450.2&groupid=50 https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Distribution&query_format=advanced&resolution=---&version=Leap%2015.1 When you reply to discuss some issues, make sure to change the subject. Please use the test plan at https://docs.google.com/spreadsheets/d/1AGKijKpKiJCB616-bHVoNQuhWHpQLHPWCb3m... to record your testing efforts and use bugzilla to report bugs. Packages changed: kdeclarative tar tracker yast2-trans (84.87.20190406.98502195be -> 84.87.20190410.077cc7c58a) === Details === ==== kdeclarative ==== Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5Declarative5-lang libKF5QuickAddons5 - Add patch to fix some issues with Drag-and-Drop (kde#396011): * 0001-Correct-the-accept-flag-of-the-event-object-on-DragM.patch ==== tar ==== Subpackages: tar-lang tar-rmt - add tar-1.30-CVE-2018-20482.patch to fix a security issue where tar when "--sparse" option is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service (infinite read loop in sparse_dump_region in sparse.c) by modifying a file that is supposed to be archived by a different user's process [bsc#1120610] [CVE-2018-20482] - add tar-1.30-CVE-2019-9923.patch to fix a security issue where pax_decode_header in sparse.c in tar had a NULL pointer dereference when parsing certain archives that have malformed extended headers [bsc#1130496] [CVE-2019-9923] ==== tracker ==== Subpackages: libtracker-common-2_0 libtracker-control-2_0-0 libtracker-miner-2_0-0 libtracker-sparql-2_0-0 tracker-lang typelib-1_0-Tracker-2_0 typelib-1_0-TrackerControl-2_0 - Add tracker-sqlite-3.25-rename-tables.patch: drop FTS table/view before ontology update (glgo#GNOME/tracker#40, boo#1131229) ==== yast2-trans ==== Version update (84.87.20190406.98502195be -> 84.87.20190410.077cc7c58a) Subpackages: yast2-trans-ar yast2-trans-bg yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en yast2-trans-en_GB yast2-trans-en_US yast2-trans-eo yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-ko yast2-trans-lt yast2-trans-nb yast2-trans-nl yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-sk yast2-trans-sl yast2-trans-sv yast2-trans-uk yast2-trans-zh_CN yast2-trans-zh_TW - Update to version 84.87.20190410.077cc7c58a: * New POT for text domain 'control'. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org