Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20210820 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: CoreFreq (1.86.7_k5.13.8_1 -> 1.86.7_k5.13.12_1) Mesa (21.1.6 -> 21.2.0) Mesa-drivers (21.1.6 -> 21.2.0) MozillaFirefox (90.0.2 -> 91.0.1) adobe-sourcesanspro-fonts adobe-sourceserifpro-fonts (4.004 -> 3.000) diffutils (3.7 -> 3.8) dracut (055+suse.115.gf65e559b -> 055+suse.117.ge5fc2048) gdbm (1.19 -> 1.20) graphviz (2.47.1 -> 2.48.0) graphviz-addons (2.47.1 -> 2.48.0) grub2 kernel-firmware (20210719 -> 20210812) kernel-source (5.13.8 -> 5.13.12) krb5 (1.19.1 -> 1.19.2) libstorage-ng (4.4.33 -> 4.4.35) mtools (4.0.34 -> 4.0.35) nodejs16 (16.6.2 -> 16.6.0) okular (21.04.3 -> 21.08.0) pam postfix python python-base python-gcsfs (0.7.1 -> 2021.7.0) python-s3fs (2021.5.0 -> 2021.7.0) python38 (3.8.10 -> 3.8.11) python38-core (3.8.10 -> 3.8.11) python38-documentation (3.8.10 -> 3.8.11) rubygem-excon (0.82.0 -> 0.85.0) rubygem-mime-types-data (3.2021.0225 -> 3.2021.0704) schily selinux-policy soapy-sdr (0.8.0 -> 0.8.1) swtpm (0.5.2 -> 0.6.0) vym (2.8.0 -> 2.8.8) yast2-installation (4.4.15 -> 4.4.16) yast2-nfs-server (4.4.1 -> 4.4.2) yast2-python-bindings (4.4.0 -> 4.4.1) yast2-ruby-bindings (4.4.2 -> 4.4.4) yast2-services-manager (4.4.0 -> 4.4.1) yast2-trans (84.87.20210806.5bda944287 -> 84.87.20210813.9ff5558c9c) === Details === ==== CoreFreq ==== Version update (1.86.7_k5.13.8_1 -> 1.86.7_k5.13.12_1) - Added hardening to systemd service(s). Added harden_corefreqd.service.patch ==== Mesa ==== Version update (21.1.6 -> 21.2.0) Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - fixed build on %ix86 by removing "-flto=auto" from optflags for cpp - enabled build of 'crocus' Gallium3D OpenGL driver for i965 "Gen4" through Haswell "Gen7" graphics (alternative to classic "i965" OpenGL driver); use MESA_LOADER_DRIVER_OVERRIDE=crocus to use it; in case of issues with video hardware acceleration(vaapi driver), set LIBVA_DRIVER_NAME=i965 - update to 21.2.0 * new release ==== Mesa-drivers ==== Version update (21.1.6 -> 21.2.0) Subpackages: Mesa-dri Mesa-gallium Mesa-libva libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_intel libvulkan_radeon libxatracker2 - fixed build on %ix86 by removing "-flto=auto" from optflags for cpp - enabled build of 'crocus' Gallium3D OpenGL driver for i965 "Gen4" through Haswell "Gen7" graphics (alternative to classic "i965" OpenGL driver); use MESA_LOADER_DRIVER_OVERRIDE=crocus to use it; in case of issues with video hardware acceleration(vaapi driver), set LIBVA_DRIVER_NAME=i965 - update to 21.2.0 * new release ==== MozillaFirefox ==== Version update (90.0.2 -> 91.0.1) Subpackages: MozillaFirefox-translations-common - Mozilla Firefox 91.0.1 * Fixed an issue causing buttons on the tab bar to be resized when loading certain websites (bmo#1704404) * Fixed an issue which caused tabs from private windows to be visible in non-private windows when viewing switch-to-tab results in the address bar panel (bmo#1720369) * Various stability fixes MFSA 2021-37 (bsc#1189547) * CVE-2021-29991 (bmo#1724896) Header Splitting possible with HTTP/3 Responses - Mozilla Firefox 91.0 MFSA 2021-33 (bsc#1188891) * CVE-2021-29986 (bmo#1696138) Race condition when resolving DNS names could have led to memory corruption * CVE-2021-29981 (bmo#1707774) Live range splitting could have led to conflicting assignments in the JIT * CVE-2021-29988 (bmo#1717922) Memory corruption as a result of incorrect style treatment * CVE-2021-29983 (bmo#1719088) Firefox for Android could get stuck in fullscreen mode * CVE-2021-29984 (bmo#1720031) Incorrect instruction reordering during JIT optimization * CVE-2021-29980 (bmo#1722204) Uninitialized memory in a canvas object could have led to memory corruption * CVE-2021-29987 (bmo#1716129) Users could have been tricked into accepting unwanted permissions on Linux * CVE-2021-29985 (bmo#1722083) Use-after-free media channels * CVE-2021-29982 (bmo#1715318) Single bit data leak due to incorrect JIT optimization and type confusion * CVE-2021-29989 (bmo#1662676, bmo#1666184, bmo#1719178, bmo#1719998, bmo#1720568) Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 * CVE-2021-29990 (bmo#1544190, bmo#1716481, bmo#1717778, bmo#1719319, bmo#1722073) Memory safety bugs fixed in Firefox 91 - requires * rustc/cargo >= 1.51 * NSPR >= 4.32 * NSS >= 3.68 - force-disable webrender on BE platforms ==== adobe-sourcesanspro-fonts ==== - Revert update to Source Sans 3 and keep the pro versions (boo#1189267) - Add 31-adobe-sourcesanspro.conf so that old name still works - Fixed github URL - Fixed Source URL again; we take the full source zip instead of split release zip - Update to version 3.046 * Roman and Italic now are the same version * The "pro" part of the name has been dropped, internally a number is now used: Source Sans 3 * Update URL * This is a major release with many changes. See the release page for the details: https://github.com/adobe-fonts/source-sans/releases ==== adobe-sourceserifpro-fonts ==== Version update (4.004 -> 3.000) - Revert update to Source Serif 4 and keep the pro version (boo#1189267) ==== diffutils ==== Version update (3.7 -> 3.8) Subpackages: diffutils-lang - diffutils 3.8: * diff no longer treats a closed stdin as representing an absent file in usage like 'diff --new-file - foo <&-' * diff and related programs no longer get confused if stdin, stdout, or stderr are closed * cmp, diff and sdiff no longer treat negative command-line option-arguments as if they were large positive numbers - drop gnulib-test-avoid-FP-perror-strerror.patch, upstream - drop gnulib-c-stack.patch, equivalent change in c-stack - remove deprecated texinfo packaging macros ==== dracut ==== Version update (055+suse.115.gf65e559b -> 055+suse.117.ge5fc2048) Subpackages: dracut-mkinitrd-deprecated - Update to version 055+suse.117.ge5fc2048: * fix(suse-initrd): need to handle relative links too ==== gdbm ==== Version update (1.19 -> 1.20) Subpackages: gdbm-lang libgdbm6 libgdbm_compat4 - version update to 1.20 * New bucket cache The bucket cache support has been rewritten from scratch. The new bucket cache code provides for significant speed up of search operations. * Change mmap prereading strategy Pre-reading of the memory mapper regions, introduced in version 1.19 can be advantageous only when doing intensive look-ups on a read-only database. It degrades performance otherwise, especially if doing multiple inserts. Therefore, this version introduces a new flag to gdbm_open: GDBM_PREREAD. When given, it enables pre-reading of memory mapped regions. - modified patches % gdbm-no-build-date.patch (refreshed) ==== graphviz ==== Version update (2.47.1 -> 2.48.0) Subpackages: graphviz-plugins-core libgraphviz6 - Dropped python2 subpackages as the bindings are removed in 2.48 - Update to version 2.48.0 (changes since 2.47.1) * marginally more accurate computations in Smyrna sphere projection * Perl is no longer required to build Graphviz #2067 * nop more reliably returns success and failure exit statuses * implicit 63 character limit on plugin names is removed in GVC * remove Python 2 bindings #1992 * improved thread-safety in Graphviz bindings Makefile * the CMake build system now enables -Wextra when building C++ * some Cgraph functions that take char* arguments that they do not modify have been updated to take const char* arguments #634 * incorrectly using the layout attribute on anything other than a graph now results in a warning about this being invalid #2078 * edgepaint accepts more standard -- prefixed command line arguments and rejects invalid options #1971 * improved detection of Lefty dependencies in the Autotools build system * Fix: out of bounds read when attempting to load a plugin whose name is ?63 characters * Fix: out of bounds read when examining a registered plugin whose name is ?63 characters * Fix: do not fclose(NULL) in gvmap * Fix: Uninitialized variable read in delaunay_tri potentially mismatched format string in tclpkg * Fix: ortho's eqEndSeg incorrectly modifies its arguments #2047 * Fix: Autotools enables -Wtrampolines and -Wlogical-op for Clang #2066 * Fix: node_distinct_coloring failure due to out-of-memory now reported correctly instead of referring to a failure to open lab_gamut * Fix: a typo GD_LIBS to GDLIB_LIBS in tclpkg/tcldot/Makefile.am !2022 * Fix: Autotools build system sets libgd variables now instead of incorrectly setting GTK variables * Fix: HTML strings used as labels are distinguishable in GXL output by kind="HTML-like string" * Fix: a Bashism removed from the Autotools build system * Fix: when Criterion is available, the command_line test binary is no longer built and installed by default, but rather during make check * Fix: round-tripping a file through gv2gxl and then gxl2gv no longer causes HTML-like labels to become non-HTML like labels #517 * Fix: fix ODR violation by including the ortho object files in the gvc lib also for CMake and MSbuild #2096 ==== graphviz-addons ==== Version update (2.47.1 -> 2.48.0) Subpackages: graphviz-gd graphviz-gnome - Dropped python2 subpackages as the bindings are removed in 2.48 - Update to version 2.48.0 (changes since 2.47.1) * marginally more accurate computations in Smyrna sphere projection * Perl is no longer required to build Graphviz #2067 * nop more reliably returns success and failure exit statuses * implicit 63 character limit on plugin names is removed in GVC * remove Python 2 bindings #1992 * improved thread-safety in Graphviz bindings Makefile * the CMake build system now enables -Wextra when building C++ * some Cgraph functions that take char* arguments that they do not modify have been updated to take const char* arguments #634 * incorrectly using the layout attribute on anything other than a graph now results in a warning about this being invalid #2078 * edgepaint accepts more standard -- prefixed command line arguments and rejects invalid options #1971 * improved detection of Lefty dependencies in the Autotools build system * Fix: out of bounds read when attempting to load a plugin whose name is ?63 characters * Fix: out of bounds read when examining a registered plugin whose name is ?63 characters * Fix: do not fclose(NULL) in gvmap * Fix: Uninitialized variable read in delaunay_tri potentially mismatched format string in tclpkg * Fix: ortho's eqEndSeg incorrectly modifies its arguments #2047 * Fix: Autotools enables -Wtrampolines and -Wlogical-op for Clang #2066 * Fix: node_distinct_coloring failure due to out-of-memory now reported correctly instead of referring to a failure to open lab_gamut * Fix: a typo GD_LIBS to GDLIB_LIBS in tclpkg/tcldot/Makefile.am !2022 * Fix: Autotools build system sets libgd variables now instead of incorrectly setting GTK variables * Fix: HTML strings used as labels are distinguishable in GXL output by kind="HTML-like string" * Fix: a Bashism removed from the Autotools build system * Fix: when Criterion is available, the command_line test binary is no longer built and installed by default, but rather during make check * Fix: round-tripping a file through gv2gxl and then gxl2gv no longer causes HTML-like labels to become non-HTML like labels #517 * Fix: fix ODR violation by including the ortho object files in the gvc lib also for CMake and MSbuild #2096 ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - update grub2-systemd-sleep.sh to fix hibernation by avoiding the error "no kernelfile matching the running kernel found" on usrmerged setup ==== kernel-firmware ==== Version update (20210719 -> 20210812) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20210812 (git commit 24c4a85d8514): * amdgpu: revert back to older raven2 sdma firmware * amdgpu: revert back to older raven sdma firmware * amdgpu: revert back to older picasso sdma firmware * amdgpu: add initial vangogh support * amdgpu: update vega20 firmware from 21.30 * amdgpu: update vega12 firmware from 21.30 * amdgpu: update vega10 firmware from 21.30 * amdgpu: update renoir firmware from 21.30 * amdgpu: update raven2 firmware from 21.30 * amdgpu: update raven firmware from 21.30 * amdgpu: update polaris12 firmware from 21.30 * amdgpu: update picasso firmware from 21.30 * amdgpu: update dimgrey cavefish firmware from 21.30 * amdgpu: update navy flounder firmware from 21.30 * amdgpu: update sienna cichlid firmware from 21.30 * amdgpu: update navi14 firmware from 21.30 * amdgpu: update navi12 firmware from 21.30 * amdgpu: update navi10 firmware from 21.30 * amdgpu: update green sardine firmware from 21.30 * amdgpu: update arcturus firmware from 21.30 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: update frimware for mediatek bluetooth chip (MT7921) * linux-firmware: add firmware for MT7922 * QCA : Updated firmware files for WCN3991 * i915: Add v2.03 DMC for RKL * i915: Add v2.12 DMC for TGL * qca: Add firmware files for BT chip WCN6750. ==== kernel-source ==== Version update (5.13.8 -> 5.13.12) Subpackages: kernel-default kernel-docs - driver core: Add missing kernel doc for device::msi_lock (git-fixes). - commit 33709df - Linux 5.13.12 (bsc#1012628). - lib: use PFN_PHYS() in devmem_is_allowed() (bsc#1012628). - Revert "usb: dwc3: gadget: Use list_replace_init() before traversing lists" (bsc#1012628). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (bsc#1012628). - iio: adis: set GPIO reset pin direction (bsc#1012628). - iio: humidity: hdc100x: Add margin to the conversion time (bsc#1012628). - iio: adc: Fix incorrect exit of for-loop (bsc#1012628). - ASoC: amd: Fix reference to PCM buffer address (bsc#1012628). - ASoC: xilinx: Fix reference to PCM buffer address (bsc#1012628). - ASoC: uniphier: Fix reference to PCM buffer address (bsc#1012628). - ASoC: tlv320aic31xx: Fix jack detection after suspend (bsc#1012628). - ASoC: kirkwood: Fix reference to PCM buffer address (bsc#1012628). - ASoC: intel: atom: Fix reference to PCM buffer address (bsc#1012628). - i2c: dev: zero out array used for i2c reads from userspace (bsc#1012628). - cifs: Handle race conditions during rename (bsc#1012628). - cifs: create sd context must be a multiple of 8 (bsc#1012628). - cifs: Call close synchronously during unlink/rename/lease break (bsc#1012628). - cifs: use the correct max-length for dentry_path_raw() (bsc#1012628). - io_uring: drop ctx->uring_lock before flushing work item (bsc#1012628). - io_uring: fix ctx-exit io_rsrc_put_work() deadlock (bsc#1012628). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (bsc#1012628). - cgroup: rstat: fix A-A deadlock on 32bit around u64_stats_sync (bsc#1012628). - seccomp: Fix setting loaded filter count during TSYNC (bsc#1012628). - net: wwan: mhi_wwan_ctrl: Fix possible deadlock (bsc#1012628). - net: ethernet: ti: cpsw: fix min eth packet size for non-switch use-cases (bsc#1012628). - ARC: fp: set FPU_STATUS.FWE to enable FPU_STATUS update on context switch (bsc#1012628). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1012628). - pinctrl: k210: Fix k210_fpioa_probe() (bsc#1012628). - ACPI: NFIT: Fix support for virtual SPA ranges (bsc#1012628). - libnvdimm/region: Fix label activation vs errors (bsc#1012628). - riscv: kexec: do not add '-mno-relax' flag if compiler doesn't support it (bsc#1012628). - vmlinux.lds.h: Handle clang's module.{c,d}tor sections (bsc#1012628). - drm/i915/gvt: Fix cached atomics setting for Windows VM (bsc#1012628). - drm/i915/display: Fix the 12 BPC bits for PIPE_MISC reg (bsc#1012628). - drm/amd/display: Remove invalid assert for ODM + MPC case (bsc#1012628). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (bsc#1012628). - drm/amdgpu: Add preferred mode in modeset when freesync video mode's enabled (bsc#1012628). - drm/amdgpu: don't enable baco on boco platforms in runpm (bsc#1012628). - drm/amdgpu: handle VCN instances when harvesting (v2) (bsc#1012628). - ieee802154: hwsim: fix GPF in hwsim_set_edge_lqi (bsc#1012628). - ieee802154: hwsim: fix GPF in hwsim_new_edge_nl (bsc#1012628). - drm/mediatek: Fix cursor plane no update (bsc#1012628). - pinctrl: mediatek: Fix fallback behavior for bias_set_combo (bsc#1012628). - ASoC: cs42l42: Correct definition of ADC Volume control (bsc#1012628). - ASoC: cs42l42: Don't allow SND_SOC_DAIFMT_LEFT_J (bsc#1012628). - ASoC: cs42l42: Fix bclk calculation for mono (bsc#1012628). - selftests/sgx: Fix Q1 and Q2 calculation in sigstruct.c (bsc#1012628). - ASoC: SOF: Intel: Kconfig: fix SoundWire dependencies (bsc#1012628). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (bsc#1012628). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (bsc#1012628). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (bsc#1012628). - netfilter: nf_conntrack_bridge: Fix memory leak when error (bsc#1012628). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (bsc#1012628). - ASoC: cs42l42: PLL must be running when changing MCLK_SRC_SEL (bsc#1012628). - ASoC: cs42l42: Fix LRCLK frame start edge (bsc#1012628). - ASoC: cs42l42: Fix mono playback (bsc#1012628). - net: dsa: mt7530: add the missing RxUnicast MIB counter (bsc#1012628). - net: mvvp2: fix short frame size on s390 (bsc#1012628). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (bsc#1012628). - perf/x86/intel: Apply mid ACK for small core (bsc#1012628). - drm/amd/pm: Fix a memory leak in an error handling path in 'vangogh_tables_init()' (bsc#1012628). - libbpf: Fix probe for BPF_PROG_TYPE_CGROUP_SOCKOPT (bsc#1012628). - libbpf: Do not close un-owned FD 0 on errors (bsc#1012628). - net: dsa: qca: ar9331: make proper initial port defaults (bsc#1012628). - net: phy: micrel: Fix link detection on ksz87xx switch" (bsc#1012628). - ppp: Fix generating ifname when empty IFLA_IFNAME is specified (bsc#1012628). - io_uring: clear TIF_NOTIFY_SIGNAL when running task work (bsc#1012628). - net/smc: fix wait on already cleared link (bsc#1012628). - net/smc: Correct smc link connection counter in case of smc client (bsc#1012628). - net: sched: act_mirred: Reset ct info when mirror/redirect skb (bsc#1012628). - ice: Prevent probing virtual functions (bsc#1012628). - ice: Stop processing VF messages during teardown (bsc#1012628). - ice: don't remove netdev->dev_addr from uc sync list (bsc#1012628). - iavf: Set RSS LUT and key in reset handle path (bsc#1012628). - psample: Add a fwd declaration for skbuff (bsc#1012628). - bareudp: Fix invalid read beyond skb's linear data (bsc#1012628). - io-wq: fix bug of creating io-wokers unconditionally (bsc#1012628). - io-wq: fix IO_WORKER_F_FIXED issue in create_io_worker() (bsc#1012628). - net/mlx5: Don't skip subfunction cleanup in case of error in module init (bsc#1012628). - net/mlx5: DR, Add fail on error check on decap (bsc#1012628). - net/mlx5e: Avoid creating tunnel headers for local route (bsc#1012628). - net/mlx5e: Destroy page pool after XDP SQ to fix use-after-free (bsc#1012628). - net/mlx5: Block switchdev mode while devlink traps are active (bsc#1012628). - net/mlx5e: TC, Fix error handling memory leak (bsc#1012628). - net/mlx5: Synchronize correct IRQ when destroying CQ (bsc#1012628). - net/mlx5: Fix return value from tracer initialization (bsc#1012628). - drm/meson: fix colour distortion from HDR set during vendor u-boot (bsc#1012628). - ovl: fix deadlock in splice write (bsc#1012628). - bpf: Fix potentially incorrect results with bpf_get_local_storage() (bsc#1012628). - net: dsa: microchip: Fix ksz_read64() (bsc#1012628). - net: dsa: microchip: ksz8795: Fix PVID tag insertion (bsc#1012628). - net: dsa: microchip: ksz8795: Reject unsupported VLAN configuration (bsc#1012628). - net: dsa: microchip: ksz8795: Fix VLAN untagged flag change on deletion (bsc#1012628). - net: dsa: microchip: ksz8795: Use software untagging on CPU port (bsc#1012628). - net: dsa: microchip: ksz8795: Fix VLAN filtering (bsc#1012628). - net: dsa: microchip: ksz8795: Don't use phy_port_cnt in VLAN table lookup (bsc#1012628). - net: Fix memory leak in ieee802154_raw_deliver (bsc#1012628). - net: igmp: fix data-race in igmp_ifc_timer_expire() (bsc#1012628). - net: dsa: hellcreek: fix broken backpressure in .port_fdb_dump (bsc#1012628). - net: dsa: lan9303: fix broken backpressure in .port_fdb_dump (bsc#1012628). - net: dsa: lantiq: fix broken backpressure in .port_fdb_dump (bsc#1012628). - net: dsa: sja1105: fix broken backpressure in .port_fdb_dump (bsc#1012628). - pinctrl: sunxi: Don't underestimate number of functions (bsc#1012628). - net: bridge: fix flags interpretation for extern learn fdb entries (bsc#1012628). - net: bridge: fix memleak in br_add_if() (bsc#1012628). - net: linkwatch: fix failure to restore device state across suspend/resume (bsc#1012628). - tcp_bbr: fix u32 wrap bug in round logic if bbr_init() called after 2B packets (bsc#1012628). - net: igmp: increase size of mr_ifc_count (bsc#1012628). - drm/i915: Only access SFC_DONE when media domain is not fused off (bsc#1012628). - xen/events: Fix race in set_evtchn_to_irq (bsc#1012628). - vsock/virtio: avoid potential deadlock when vsock device remove (bsc#1012628). - nbd: Aovid double completion of a request (bsc#1012628). - arm64: efi: kaslr: Fix occasional random alloc (and boot) failure (bsc#1012628). - KVM: arm64: Fix off-by-one in range_is_memory (bsc#1012628). - efi/libstub: arm64: Force Image reallocation if BSS was not reserved (bsc#1012628). - efi/libstub: arm64: Relax 2M alignment again for relocatable kernels (bsc#1012628). - powerpc/kprobes: Fix kprobe Oops happens in booke (bsc#1012628). - i2c: iproc: fix race between client unreg and tasklet (bsc#1012628). - x86/tools: Fix objdump version check again (bsc#1012628). - genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1012628). - x86/msi: Force affinity setup before startup (bsc#1012628). - x86/ioapic: Force affinity setup before startup (bsc#1012628). - x86/resctrl: Fix default monitoring groups reporting (bsc#1012628). - genirq/msi: Ensure deactivation on teardown (bsc#1012628). - genirq/timings: Prevent potential array overflow in __irq_timings_store() (bsc#1012628). - powerpc/interrupt: Fix OOPS by not calling do_IRQ() from timer_interrupt() (bsc#1012628). - PCI/MSI: Enable and mask MSI-X early (bsc#1012628). - PCI/MSI: Mask all unused MSI-X entries (bsc#1012628). - PCI/MSI: Enforce that MSI-X table entry is masked for update (bsc#1012628). - PCI/MSI: Enforce MSI[X] entry updates to be visible (bsc#1012628). - PCI/MSI: Do not set invalid bits in MSI mask (bsc#1012628). - PCI/MSI: Correct misleading comments (bsc#1012628). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (bsc#1012628). - PCI/MSI: Protect msi_desc::masked for multi-MSI (bsc#1012628). - powerpc/interrupt: Do not call single_step_exception() from other exceptions (bsc#1012628). - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1012628). - powerpc/32s: Fix napping restore in data storage interrupt (DSI) (bsc#1012628). - powerpc/smp: Fix OOPS in topology_init() (bsc#1012628). - powerpc/xive: Do not skip CPU-less nodes when creating the IPIs (bsc#1012628). - powerpc/32: Fix critical and debug interrupts on BOOKE (bsc#1012628). - efi/libstub: arm64: Double check image alignment at entry (bsc#1012628). - locking/rtmutex: Use the correct rtmutex debugging config option (bsc#1012628). - KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation (bsc#1012628). - KVM: nVMX: Use vmx_need_pf_intercept() when deciding if L0 wants a #PF (bsc#1012628). - KVM: x86/mmu: Don't leak non-leaf SPTEs when zapping all SPTEs (bsc#1012628). - KVM: x86/mmu: Protect marking SPs unsync when using TDP MMU with spinlock (bsc#1012628). - ceph: add some lockdep assertions around snaprealm handling (bsc#1012628). - ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm (bsc#1012628). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1012628). - kasan, slub: reset tag when printing address (bsc#1012628). - KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (bsc#1012628). - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (CVE-2021-3656) (bsc#1012628). - commit e7679db - Bluetooth: btusb: Add support for Foxconn Mediatek Chip (bsc#1188064). - Bluetooth: btusb: Add support for IMC Networks Mediatek Chip (bsc#1188064). - Bluetooth: btusb: Add support for Lite-On Mediatek Chip (bsc#1188064). - commit 18891ce - kernel-binary.spec: Require dwarves for kernel-binary-devel when BTF is enabled (jsc#SLE-17288). About the pahole version: v1.18 should be bare mnimum, v1.22 should be fully functional, for now we ship git snapshot with fixes on top of v1.21. - commit 8ba3382 - Linux 5.13.11 (bsc#1012628). - ovl: prevent private clone if bind mount is not allowed (bsc#1012628). - ppp: Fix generating ppp unit id when ifname is not specified (bsc#1012628). - ALSA: hda: Add quirk for ASUS Flow x13 (bsc#1012628). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (bsc#1012628). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (bsc#1012628). - bpf: Add lockdown check for probe_write_user helper (bsc#1012628). - firmware: tee_bnxt: Release TEE shm, session, and context during kexec (bsc#1012628). - commit 97e7098 - bpf: Fix integer overflow involving bucket_size (bsc#1189233, CVE#CVE-2021-38166). - commit fcfea2b - Linux 5.13.10 (bsc#1012628). - Revert "ACPICA: Fix memory leak caused by _CID repair function" (bsc#1012628). - ALSA: seq: Fix racy deletion of subscriber (bsc#1012628). - bus: ti-sysc: Fix gpt12 system timer issue with reserved status (bsc#1012628). - net: xfrm: fix memory leak in xfrm_user_rcv_msg (bsc#1012628). - arm64: dts: ls1028a: fix node name for the sysclk (bsc#1012628). - dmaengine: idxd: fix array index when int_handles are being used (bsc#1012628). - dmaengine: idxd: fix setup sequence for MSIXPERM table (bsc#1012628). - ARM: imx: add missing iounmap() (bsc#1012628). - ARM: imx: add missing clk_disable_unprepare() (bsc#1012628). - ARM: dts: imx6qdl-sr-som: Increase the PHY reset duration to 10ms (bsc#1012628). - Revert "soc: imx8m: change to use platform driver" (bsc#1012628). - dmaengine: idxd: fix desc->vector that isn't being updated (bsc#1012628). - dmaengine: idxd: fix sequence for pci driver remove() and shutdown() (bsc#1012628). - dmaengine: idxd: fix submission race window (bsc#1012628). - arm64: dts: ls1028: sl28: fix networking for variant 2 (bsc#1012628). - ARM: dts: colibri-imx6ull: limit SDIO clock to 25MHz (bsc#1012628). - ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init (bsc#1012628). - ARM: dts: imx: Swap M53Menlo pinctrl_power_button/pinctrl_power_out pins (bsc#1012628). - arm64: dts: armada-3720-turris-mox: fixed indices for the SDHC controllers (bsc#1012628). - ext4: fix potential uninitialized access to retval in kmmpd (bsc#1012628). - arm64: dts: armada-3720-turris-mox: remove mrvl,i2c-fast-mode (bsc#1012628). - ALSA: usb-audio: fix incorrect clock source setting (bsc#1012628). - riscv: stacktrace: Fix NULL pointer dereference (bsc#1012628). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (bsc#1012628). - ARM: dts: am437x-l4: fix typo in can@0 node (bsc#1012628). - omap5-board-common: remove not physically existing vdds_1v8_main fixed-regulator (bsc#1012628). - dmaengine: uniphier-xdmac: Use readl_poll_timeout_atomic() in atomic state (bsc#1012628). - clk: tegra: Implement disable_unused() of tegra_clk_sdmmc_mux_ops (bsc#1012628). - dmaengine: stm32-dma: Fix PM usage counter imbalance in stm32 dma ops (bsc#1012628). - dmaengine: stm32-dmamux: Fix PM usage counter unbalance in stm32 dmamux ops (bsc#1012628). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (bsc#1012628). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (bsc#1012628). - drm/kmb: Enable LCD DMA for low TVDDCV (bsc#1012628). - media: videobuf2-core: dequeue if start_streaming fails (bsc#1012628). - ARM: dts: stm32: Prefer HW RTC on DHCOM SoM (bsc#1012628). - ARM: dts: stm32: Disable LAN8710 EDPD on DHCOM (bsc#1012628). - ARM: dts: stm32: Fix touchscreen IRQ line assignment on DHCOM (bsc#1012628). - dmaengine: imx-dma: configure the generic DMA type to make it work (bsc#1012628). - net, gro: Set inner transport header offset in tcp/udp GRO hook (bsc#1012628). - net: dsa: sja1105: overwrite dynamic FDB entries with static ones in .port_fdb_add (bsc#1012628). - net: dsa: sja1105: invalidate dynamic FDB entries learned concurrently with statically added ones (bsc#1012628). - net: dsa: sja1105: ignore the FDB entry for unknown multicast when adding a new address (bsc#1012628). - net: dsa: sja1105: be stateless with FDB entries on SJA1105P/Q/R/S/SJA1110 too (bsc#1012628). - net: dsa: sja1105: match FDB entries regardless of inner/outer VLAN tag (bsc#1012628). - net: phy: micrel: Fix detection of ksz87xx switch (bsc#1012628). - net: natsemi: Fix missing pci_disable_device() in probe and remove (bsc#1012628). - gpio: tqmx86: really make IRQ optional (bsc#1012628). - RDMA/mlx5: Delay emptying a cache entry when a new MR is added to it recently (bsc#1012628). - net: bridge: validate the NUD_PERMANENT bit when adding an extern_learn FDB entry (bsc#1012628). - sctp: move the active_key update after sh_keys is added (bsc#1012628). - drm/i915: Call i915_globals_exit() if pci_register_device() fails (bsc#1012628). - nfp: update ethtool reporting of pauseframe control (bsc#1012628). - net: ipv6: fix returned variable type in ip6_skb_dst_mtu (bsc#1012628). - RDMA/hns: Fix the double unlock problem of poll_sem (bsc#1012628). - net: dsa: qca: ar9331: reorder MDIO write sequence (bsc#1012628). - riscv: Disable STACKPROTECTOR_PER_TASK if GCC_PLUGIN_RANDSTRUCT is enabled (bsc#1012628). - net: sched: fix lockdep_set_class() typo error for sch->seqlock (bsc#1012628). - drm/i915: fix i915_globals_exit() section mismatch error (bsc#1012628). - MIPS: check return value of pgtable_pmd_page_ctor (bsc#1012628). - x86/tools/relocs: Fix non-POSIX regexp (bsc#1012628). - mips: Fix non-POSIX regexp (bsc#1012628). - kbuild: cancel sub_make_done for the install target to fix DKMS (bsc#1012628). - bnx2x: fix an error code in bnx2x_nic_load() (bsc#1012628). - net: ethernet: ti: am65-cpsw: fix crash in am65_cpsw_port_offload_fwd_mark_update() (bsc#1012628). - net: pegasus: fix uninit-value in get_interrupt_interval (bsc#1012628). - net: fec: fix use-after-free in fec_drv_remove (bsc#1012628). - net: vxge: fix use-after-free in vxge_device_unregister (bsc#1012628). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1012628). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (bsc#1012628). - io-wq: fix no lock protection of acct->nr_worker (bsc#1012628). - io-wq: fix lack of acct->nr_workers < acct->max_workers judgement (bsc#1012628). - USB: usbtmc: Fix RCU stall warning (bsc#1012628). - USB: serial: option: add Telit FD980 composition 0x1056 (bsc#1012628). - USB: serial: ch341: fix character loss at high transfer rates (bsc#1012628). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (bsc#1012628). - USB: serial: pl2303: fix HX type detection (bsc#1012628). - USB: serial: pl2303: fix GT type detection (bsc#1012628). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (bsc#1012628). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (bsc#1012628). - drm/amdgpu: fix checking pmops when PM_SLEEP is not enabled (bsc#1012628). - drm/amdgpu/display: fix DMUB firmware version info (bsc#1012628). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (bsc#1012628). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (bsc#1012628). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (bsc#1012628). - ALSA: usb-audio: Fix superfluous autosuspend recovery (bsc#1012628). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (bsc#1012628). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (bsc#1012628). - usb: dwc3: gadget: Use list_replace_init() before traversing lists (bsc#1012628). - usb: dwc3: gadget: Avoid runtime resume if disabling pullup (bsc#1012628). - usb: gadget: remove leaked entry from udc driver list (bsc#1012628). - usb: cdns3: Fixed incorrect gadget state (bsc#1012628). - usb: cdnsp: Fixed issue with ZLP (bsc#1012628). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (bsc#1012628). - usb: gadget: f_hid: fixed NULL pointer dereference (bsc#1012628). - usb: gadget: f_hid: idle uses the highest byte for duration (bsc#1012628). - usb: host: ohci-at91: suspend/resume ports after/before OHCI accesses (bsc#1012628). - usb: typec: tcpm: Keep other events when receiving FRS and Sourcing_vbus events (bsc#1012628). - usb: otg-fsm: Fix hrtimer list corruption (bsc#1012628). - clk: fix leak on devm_clk_bulk_get_all() unwind (bsc#1012628). - scripts/tracing: fix the bug that can't parse raw_trace_func (bsc#1012628). - tracing / histogram: Give calculation hist_fields a size (bsc#1012628). - tracing: Reject string operand in the histogram expression (bsc#1012628). - tracing: Fix NULL pointer dereference in start_creating (bsc#1012628). - tracepoint: static call: Compare data on transition from 2->1 callees (bsc#1012628). - tracepoint: Fix static call function vs data state mismatch (bsc#1012628). - tracepoint: Use rcu get state and cond sync for static call updates (bsc#1012628). - arm64: stacktrace: avoid tracing arch_stack_walk() (bsc#1012628). - optee: Clear stale cache entries during initialization (bsc#1012628). - tee: add tee_shm_alloc_kernel_buf() (bsc#1012628). - tee: Correct inappropriate usage of TEE_SHM_DMA_BUF flag (bsc#1012628). - optee: Fix memory leak when failing to register shm pages (bsc#1012628). - optee: Refuse to load the driver under the kdump kernel (bsc#1012628). - optee: fix tee out of memory failure seen during kexec reboot (bsc#1012628). - tpm_ftpm_tee: Free and unregister TEE shared memory during kexec (bsc#1012628). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (bsc#1012628). - staging: rtl8712: get rid of flush_scheduled_work (bsc#1012628). - staging: rtl8712: error handling refactoring (bsc#1012628). - drivers core: Fix oops when driver probe fails (bsc#1012628). - media: rtl28xxu: fix zero-length control request (bsc#1012628). - pipe: increase minimum default pipe size to 2 pages (bsc#1012628). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1012628). - Revert "thunderbolt: Hide authorized attribute if router does not support PCIe tunnels" (bsc#1012628). - serial: tegra: Only print FIFO error message when an error occurs (bsc#1012628). - serial: 8250_mtk: fix uart corruption issue when rx power off (bsc#1012628). - serial: 8250: Mask out floating 16/32-bit bus bits (bsc#1012628). - serial: 8250: fix handle_irq locking (bsc#1012628). - MIPS: Malta: Do not byte-swap accesses to the CBUS UART (bsc#1012628). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (bsc#1012628). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (bsc#1012628). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (bsc#1012628). - timers: Move clearing of base::timer_running under base:: Lock (bsc#1012628). - virt: acrn: Do hcall_destroy_vm() before resource release (bsc#1012628). - perf: Fix required permissions if sigtrap is requested (bsc#1012628). - xfrm: Fix RCU vs hash_resize_mutex lock inversion (bsc#1012628). - net/xfrm/compat: Copy xfrm_spdattr_type_t atributes (bsc#1012628). - pcmcia: i82092: fix a null pointer dereference bug (bsc#1012628). - scsi: ibmvfc: Fix command state accounting and stale response detection (bsc#1012628). - selinux: correct the return value when loads initial sids (bsc#1012628). - bus: ti-sysc: AM3: RNG is GP only (bsc#1012628). - Revert "gpio: mpc8xxx: change the gpio interrupt flags." (bsc#1012628). - arm64: fix compat syscall return truncation (bsc#1012628). - ARM: omap2+: hwmod: fix potential NULL pointer access (bsc#1012628). - md/raid10: properly indicate failure when ending a failed write request (bsc#1012628). - io-wq: fix race between worker exiting and activating free worker (bsc#1012628). - s390/dasd: fix use after free in dasd path handling (bsc#1012628). - KVM: x86: accept userspace interrupt only if no event is injected (bsc#1012628). - KVM: SVM: Fix off-by-one indexing when nullifying last used SEV VMCB (bsc#1012628). - KVM: Do not leak memory for duplicate debugfs directories (bsc#1012628). - KVM: x86/mmu: Fix per-cpu counter corruption on 32-bit builds (bsc#1012628). - soc: ixp4xx: fix printing resources (bsc#1012628). - interconnect: Fix undersized devress_alloc allocation (bsc#1012628). - usb: cdnsp: Fix the IMAN_IE_SET and IMAN_IE_CLEAR macro (bsc#1012628). - usb: cdnsp: Fix incorrect supported maximum speed (bsc#1012628). - spi: meson-spicc: fix memory leak in meson_spicc_remove (bsc#1012628). - interconnect: Zero initial BW after sync-state (bsc#1012628). - interconnect: Always call pre_aggregate before aggregate (bsc#1012628). - interconnect: qcom: icc-rpmh: Ensure floor BW is enforced for all nodes (bsc#1012628). - drm/i915: Correct SFC_DONE register offset (bsc#1012628). - soc: ixp4xx/qmgr: fix invalid __iomem access (bsc#1012628). - perf/x86/amd: Don't touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1012628). - sched/rt: Fix double enqueue caused by rt_effective_prio (bsc#1012628). - riscv: dts: fix memory size for the SiFive HiFive Unmatched (bsc#1012628). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (bsc#1012628). - reiserfs: add check for root_inode in reiserfs_fill_super (bsc#1012628). - reiserfs: check directory items on read from disk (bsc#1012628). - virt_wifi: fix error on connect (bsc#1012628). - net: qede: Fix end of loop tests for list_for_each_entry (bsc#1012628). - alpha: Send stop IPI to send to online CPUs (bsc#1012628). - net/qla3xxx: fix schedule while atomic in ql_wait_for_drvr_lock and ql_adapter_reset (bsc#1012628). - smb3: rc uninitialized in one fallocate path (bsc#1012628). - drm/amdgpu/display: only enable aux backlight control for OLED panels (bsc#1012628). - platform/x86: gigabyte-wmi: add support for B550 Aorus Elite V2 (bsc#1012628). - HID: ft260: fix device removal due to USB disconnect (bsc#1012628). - commit 37b568f - README: Modernize build instructions. - commit 8cc5c28 - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - commit 7f9ade7 - Revert "Revert "UsrMerge the kernel (boo#1184804)"" This reverts commit b6ab3ded319fca797d007c541a190a308f940cf7. By that, we reverted the original commit 6f5ed044f52a. But the two problems were adressed in the meantime, so it's time to try UsrMerge for kernel again. - commit 2e9639b - Fix filesystem requirement and suse-release requires Reduce filesystem conflict to anything less than 16 to allow pulling the change into the next major stable version. Don't require suse-release as that's not technically required. Conflict with a too old one instead. - commit 913f755 - blacklist.conf: add one docs fix - commit 19b1d90 - Revert "qed: fix possible unpaired spin_{un}lock_bh in _qed_mcp_cmd_and_union()" (git-fixes). - commit 27fe085 - Linux 5.13.9 (bsc#1012628). - drm/i915: Revert "drm/i915/gem: Asynchronous cmdparser" (bsc#1012628). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (bsc#1012628). - power: supply: ab8500: Call battery population once (bsc#1012628). - skmsg: Increase sk->sk_drops when dropping packets (bsc#1012628). - skmsg: Pass source psock to sk_psock_skb_redirect() (bsc#1012628). - bpf, sockmap: On cleanup we additionally need to remove cached skb (bsc#1012628). - cifs: use helpers when parsing uid/gid mount options and validate them (bsc#1012628). - cifs: add missing parsing of backupuid (bsc#1012628). - net: dsa: sja1105: parameterize the number of ports (bsc#1012628). - net: dsa: sja1105: fix address learning getting disabled on the CPU port (bsc#1012628). - ASoC: Intel: boards: handle hda-dsp-common as a module (bsc#1012628). - ASoC: Intel: boards: create sof-maxim-common module (bsc#1012628). - ASoC: Intel: boards: fix xrun issue on platform with max98373 (bsc#1012628). - regulator: rtmv20: Fix wrong mask for strobe-polarity-high (bsc#1012628). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (bsc#1012628). - spi: stm32h7: fix full duplex irq handler handling (bsc#1012628). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (bsc#1012628). - regulator: mtk-dvfsrc: Fix wrong dev pointer for devm_regulator_register (bsc#1012628). - qed: fix possible unpaired spin_{un}lock_bh in _qed_mcp_cmd_and_union() (bsc#1012628). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (bsc#1012628). - net: Fix zero-copy head len calculation (bsc#1012628). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (bsc#1012628). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (bsc#1012628). - efi/mokvar: Reserve the table only if it is in boot services data (bsc#1012628). - nvme: fix nvme_setup_command metadata trace event (bsc#1012628). - drm/amd/display: Fix comparison error in dcn21 DML (bsc#1012628). - drm/amd/display: Fix max vstartup calculation for modes with borders (bsc#1012628). - io_uring: never attempt iopoll reissue from release path (bsc#1012628). - io_uring: explicitly catch any illegal async queue attempt (bsc#1012628). - Revert "Bluetooth: Shutdown controller after workqueues are flushed or cancelled" (bsc#1012628). - Revert "watchdog: iTCO_wdt: Account for rebooting on second timeout" (bsc#1012628). - drm/amd/display: Fix ASSR regression on embedded panels (bsc#1012628). - spi: mediatek: Fix fifo transfer (bsc#1012628). - Update config files. - commit ed76d57 ==== krb5 ==== Version update (1.19.1 -> 1.19.2) Subpackages: krb5-32bit krb5-client - Update to 1.19.2 * Fix a denial of service attack against the KDC encrypted challenge code; (CVE-2021-36222); * Fix a memory leak when gss_inquire_cred() is called without a credential handle. ==== libstorage-ng ==== Version update (4.4.33 -> 4.4.35) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#829 - added function BlkFilesystem::supports_tune_options() - coding style - 4.4.35 - merge gh#openSUSE/libstorage-ng#828 - added non-const version of BlkFilesystem::get_blk_devices() - use in-class member initialization - coding style and documentation - 4.4.34 ==== mtools ==== Version update (4.0.34 -> 4.0.35) - mtools 4.0.35: * Fix cluster padding at end of file in batch mode ==== nodejs16 ==== Version update (16.6.2 -> 16.6.0) Subpackages: npm16 - Update to 16.6.0: http2: fixes use after free on close http2 on stream canceling (bsc#1188917, CVE-2021-22930) - legacy_python.patch: fix building with python 3.4 in SLE-12 - Update to 16.5.0: * deps: upgrade npm to 7.19.1 * fs: allow empty string for temp directory prefix * Node.js now exposes an experimental implementation of the Web Streams API - Update to 16.4.1: deps: libuv upgrade - Out of bounds read (Medium) (bsc#1187973, CVE-2021-22918) - node-gyp_7.1.2.tar.xz: for SLE-12, use latest node-gyp that is compatible with python 3.4 - Update to 16.4.0: * async_hooks: stabilize part of AsyncLocalStorage * deps: + upgrade npm to 7.18.1 + update V8 to 9.1.269.36 * dns: allow --dns-result-order to change default dns verbatim - Allow building for Fedora in the OBS - update to 16.3.0: * add -C alias for --conditions flag * add workspaces support to npm install commands - Use libalternatives instead of update-alternatives - New upstream version 16.2.0: * async_hooks: use new v8::Context PromiseHook API * deps: npm updated to 7.13.0 * lib: support setting process.env.TZ on windows * module: add support for URL to import.meta.resolve * process: add 'worker' event * util: add util.types.isKeyObject and util.types.isCryptoKey - New upstream version 16.1.0 fs: allow no-params fsPromises fileHandle read - New upstrean version 16.0.0: For complete list of changes since 15.x, please see https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V16.md#1... - Import staging 16.x ==== okular ==== Version update (21.04.3 -> 21.08.0) Subpackages: okular-lang okular-spectre - Update to 21.08.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/21.08.0 - Changes since 21.07.90: * Take into account the label size while setting size of the page number box. * ToggleActionMenu::createWidget(): Do not crash if parent is not a QToolBar - Update to 21.07.90 * New feature release - Changes since 21.07.80: * Fix Page Up/Down scrolling when scrollbars are turned off (kde#421822) - Update to 21.07.80 * New feature release - Too many changes since 21.04.3, only listing bugfixes: * Fixed encoding detection for small texts (up to 3000 bytes) (kde#334733) * Fix non unique KPlugin Id for fictionbook generator (kde#439807) * CursorWrapHelper: Do not crash on Wayland. (kde#437334) * Uncheck mouse mode action when annotation tool selected (kde#398108) * Create color mode menu. (kde#407217) * doc: Try to make it clearer that one one is used not all three (kde#436820) * Uncheck quick annotation when repopulating the quick tools menu (kde#426026) * Enable horizontal mouse wrap for Browse tool drag scrolling (kde#371904) * Fixes changing continuous mode while on tabs issue (kde#422080) - Only install the license files once ==== pam ==== Subpackages: pam-32bit pam-doc pam_unix - pam_umask-usergroups-login_defs.patch: Deprecate pam_umask explicit "usergroups" option and instead read it from login.def's "USERGROUP_ENAB" option if umask is only defined there. [bsc#1189139] - package man5/motd.5 as a man-pages link to man8/pam_motd.8 [bsc#1188724] ==== postfix ==== Subpackages: postfix-doc - fix config.postfix (follow up of bsc#1188477) ==== python ==== - Add bpo43075-fix-ReDoS-in-request.patch which fixes ReDoS in request (bpo#43075, boo#1189287). - Add missing security announcement to bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch. - Add bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch which fixes http client infinite line reading (DoS) after a http 100 (bpo#44022, boo#1189241). ==== python-base ==== Subpackages: libpython2_7-1_0 python-xml - Add bpo43075-fix-ReDoS-in-request.patch which fixes ReDoS in request (bpo#43075, boo#1189287). - Add missing security announcement to bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch. - Add bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch which fixes http client infinite line reading (DoS) after a http 100 (bpo#44022, boo#1189241). ==== python-gcsfs ==== Version update (0.7.1 -> 2021.7.0) Subpackages: python38-gcsfs python38-gcsfs-fuse - Update to 2021.07.0 * fix find/glob with a prefix (#399) - Release notes between 0.7.1 and 2021.06.0 * kwargs to aiohttpClient session * graceful timeout when disconnecting at finalise (#397) * negative ranges in cat_file (#394) * no credentials bug fix (#390) * use googleapis.com (#388) * more retries (#387, 385, 380) * Code cleanup (#381) * license to match stated one (#378) * deps updated (#376) * switch to calver and fsspec pin * keep up with fsspec 0.9.0 async * one-shot find * consistency checkers * retries for intermittent issues * timeouts * partial cat * http error status - Fix running the testsuite -- gh#dask/gcsfs#292 * drop avoid_network_tests.patch * use the GitHub archive for VCR recordings ==== python-s3fs ==== Version update (2021.5.0 -> 2021.7.0) - Update to 2021.07.0 * make bucket in put(recursive) (#496) * non-truthy prefixes (#497) * implement rm_file (#499) - Release 2021.06.1 * bucket region caching (#495) - Release 2021.06.0 * support "prefix" in directory listings (#486) * support negative index in cat_file (#487, 488) * don't requite ETag in file details (#480) ==== python38 ==== Version update (3.8.10 -> 3.8.11) Subpackages: python38-curses python38-dbm python38-tk - Update to 3.8.11 * Security - bpo-44022 (boo#1189241): mod:http.client now avoids infinitely reading potential HTTP headers after a 100 Continue status response from the server. - bpo-43882: The presence of newline or tab characters in parts of a URL could allow some forms of attacks. Following the controlling specification for URLs defined by WHATWG urllib.parse() now removes ASCII newlines and tabs from URLs, preventing such attacks. - bpo-42800: Audit hooks are now fired for frame.f_code, traceback.tb_frame, and generator code/frame attribute access. * Core and Builtins - bpo-44070: No longer eagerly makes import filenames absolute, except for extension modules, which was introduced in 3.8.10. * Library - bpo-44061: Fix regression in previous release when calling pkgutil.iter_modules() with a list of pathlib.Path objects ==== python38-core ==== Version update (3.8.10 -> 3.8.11) Subpackages: libpython3_8-1_0 python38-base - Update to 3.8.11 * Security - bpo-44022 (boo#1189241): mod:http.client now avoids infinitely reading potential HTTP headers after a 100 Continue status response from the server. - bpo-43882: The presence of newline or tab characters in parts of a URL could allow some forms of attacks. Following the controlling specification for URLs defined by WHATWG urllib.parse() now removes ASCII newlines and tabs from URLs, preventing such attacks. - bpo-42800: Audit hooks are now fired for frame.f_code, traceback.tb_frame, and generator code/frame attribute access. * Core and Builtins - bpo-44070: No longer eagerly makes import filenames absolute, except for extension modules, which was introduced in 3.8.10. * Library - bpo-44061: Fix regression in previous release when calling pkgutil.iter_modules() with a list of pathlib.Path objects ==== python38-documentation ==== Version update (3.8.10 -> 3.8.11) - Update to 3.8.11 * Security - bpo-44022 (boo#1189241): mod:http.client now avoids infinitely reading potential HTTP headers after a 100 Continue status response from the server. - bpo-43882: The presence of newline or tab characters in parts of a URL could allow some forms of attacks. Following the controlling specification for URLs defined by WHATWG urllib.parse() now removes ASCII newlines and tabs from URLs, preventing such attacks. - bpo-42800: Audit hooks are now fired for frame.f_code, traceback.tb_frame, and generator code/frame attribute access. * Core and Builtins - bpo-44070: No longer eagerly makes import filenames absolute, except for extension modules, which was introduced in 3.8.10. * Library - bpo-44061: Fix regression in previous release when calling pkgutil.iter_modules() with a list of pathlib.Path objects ==== rubygem-excon ==== Version update (0.82.0 -> 0.85.0) updated to version 0.85.0 no changelog found ==== rubygem-mime-types-data ==== Version update (3.2021.0225 -> 3.2021.0704) updated to version 3.2021.0704 see installed History.md [#]# 3.2021.0704 / 2021-07-04 - Updated the Apache and IANA media registry entries as of release date. ==== schily ==== Subpackages: cdda2wav cdrecord libcdrdeflt1_0 libdeflt1_0 libedc_ecc1_0 libedc_ecc_dec1_0 libfile1_0 libfind4_0 libparanoia1_0 librmt1_0 librscg1_0 libscg1_0 libscgcmd1_0 libschily2_0 mkisofs readcd spax star - Update to release 2021.08.14 * A new test was added to check whether SIGSTKSZ is a constant. * smake: While expanding the right side of a macro assignment with the operators :::= and +:=, smake no longer expands $$ to $, but rather leaves $$ untouched. * smake: The dynamic macros $? and $^ now work for implicit rules as well. - Add schily-stksz.diff ==== selinux-policy ==== Subpackages: selinux-policy-targeted - Allow systemd-sysctl to read kernel specific sysctl.conf (fix_kernel_sysctl.patch, boo#1184804) - Fix quoting in postInstall macro ==== soapy-sdr ==== Version update (0.8.0 -> 0.8.1) - Update to version 0.8.1 * cmake: + fix use of CMAKE_INSTALL_LIB_DIR when absolute + version policies for subproject compatibility * docs: + fixed spelling mistakes in doxygen comments * python3: + change OUTPUT_NAME in newer versions of cmake * Types: + consistency changes converting strings to bool * Type.hpp: + fixed templated StringToSetting return true * Range: + fixed default constructor not initializing step ==== swtpm ==== Version update (0.5.2 -> 0.6.0) - Update to version 0.6.0: - Addressed potential symlink attack issue (CVE-2020-28407) - Rewritten in 'C'; needs json-glib - Use timeouts for communicating with swtpm (Unix socket) - Fix --print-capabilities for 'swtpm chardev' - Various cleanups and fixes (coverity) - Enable selinux support - Removed swtpm-rename_deprecated_libtasn1_types.patch: upstream - Fix rpmlint errors ==== vym ==== Version update (2.8.0 -> 2.8.8) - Update to upstream version 2.8.8 (Bugfixes) In 2.8.0 vymBaseDir was not set correctly, which made most of vym unusable. See also https://github.com/insilmaril/vym/issues/14 ==== yast2-installation ==== Version update (4.4.15 -> 4.4.16) - only list specific files installed in common directories (metainfo, icons, fillupdir) (bsc#1184786) - 4.4.16 ==== yast2-nfs-server ==== Version update (4.4.1 -> 4.4.2) Subpackages: yast2-nfs-common - Fix the corresponding section name in the package specification (bsc#1188618). - 4.4.2 ==== yast2-python-bindings ==== Version update (4.4.0 -> 4.4.1) - Fix backtrace formatting for Python exceptions (bsc#1181595). - 4.4.1 ==== yast2-ruby-bindings ==== Version update (4.4.2 -> 4.4.4) - Fix dependency on s390 (revealed by previous fix for bsc#972548) - 4.4.4 - Added an unit test for testing empty help text (bsc#972548) - 4.4.3 ==== yast2-services-manager ==== Version update (4.4.0 -> 4.4.1) - Update known systemd states and substates (bsc#1189572) - 4.4.1 ==== yast2-trans ==== Version update (84.87.20210806.5bda944287 -> 84.87.20210813.9ff5558c9c) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20210813.9ff5558c9c: * Translated using Weblate (Japanese) * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Czech) * Translated using Weblate (Catalan) * New POT for text domain 'users'.