New Tumbleweed snapshot 20220328 released!
Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20220328 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaFirefox (98.0 -> 98.0.2) NetworkManager-pptp (1.2.8 -> 1.2.10) NetworkManager-vpnc (1.2.6 -> 1.2.8) aaa_base (84.87+git20211124.5486aad -> 84.87+git20220324.fca4619) apparmor atk (2.36.0 -> 2.38.0) augeas busybox colord (1.4.5 -> 1.4.6) container-selinux cppcheck (2.7.1 -> 2.7.4) desktop-file-utils distribution-logos-openSUSE (20201117 -> 20220322) ed (1.17 -> 1.18) ffmpeg-4 flute folks (0.15.4 -> 0.15.5) freeglut (3.2.1 -> 3.2.2) glib2 (2.70.5 -> 2.72.0) gnutls (3.7.3 -> 3.7.4) google-droid-fonts gtk3 (3.24.33 -> 3.24.33+12) harfbuzz (4.0.1 -> 4.1.0) java-11-openjdk kwin5 libapparmor libbase libfonts libformula libkleo liblayout libloader libnma (1.8.34 -> 1.8.36) libqt5-qtwebengine libreoffice librepository libserializer libsolv (0.7.21 -> 0.7.22) libzypp (17.29.6 -> 17.30.0) lsb-release (3.1 -> 3.2) luajit (2.1.0~beta3+git.1624618403.e9577376 -> 2.1.0~beta3+git.1647772157.43ebb949) monitoring-plugins mutter patterns-gnome pentaho-libxml pentaho-reporting-flow-engine python-Mako python-filetype (1.0.8 -> 1.0.10) python-html5lib python-pygit2 (1.9.0 -> 1.9.1) python-setuptools qemu sac sgml-skel (0.7.1 -> 0.7.2) sudo (1.9.9 -> 1.9.10) systemd (249.10 -> 250.4) texlive timezone (2021e -> 2022a) timezone-java (2021e -> 2022a) transactional-update (3.6.2 -> 4.0.0~rc2) wireplumber xlockmore (5.68 -> 5.69) xml-commons-apis yelp zsh (5.8 -> 5.8.1) === Details === ==== MozillaFirefox ==== Version update (98.0 -> 98.0.2) Subpackages: MozillaFirefox-translations-common - MozillaFirefox 98.0.2: * Fixed: Fixed an issue preventing users from typing in Address Bar after opening new tab and pressing cmd + enter (bmo#1757376) * Fixed: Fixed an issue causing some users to crash in out-of- memory conditions (bmo#1757618) * Fixed: Fixed an issue in session history which caused some sites to fail to load (bmo#1758664) * Fixed: Fixed an add-on specific compatibility issue (bmo#1759162) - Change mozilla-kde.patch to follow the GNOME registry behavior for new MIME types to avoid opening downloaded files without any inquiries (bsc#1197319) - Add patch to fix start-up on aarch64: * mozilla-bmo1757571.patch - exclude slow cpus for building - Add cpu-flag `asimdrdm` to aarch64 constraints, to select newer, faster buildhosts, as the others struggle to build FF. - Mozilla Firefox 98.0.1: * Yandex and Mail.ru have been removed as optional search providers in the drop-down search menu in Firefox ==== NetworkManager-pptp ==== Version update (1.2.8 -> 1.2.10) Subpackages: NetworkManager-pptp-gnome NetworkManager-pptp-lang - Update to version 1.2.10: + libnm-glib compatibility (NetworkManager < 1.0) is disabled by default. + It can be enabled by passing --with-libnm-glib to configure script. Nobody should need it by now. Users that still use this are encourage to let us know before the libnm-glib support is removed for good. + The auth helper in external UI mode can now be run without a display server. This is useful when activating connections with "nmcli --ask". + Gtk4 version of the editor plugin is now available (for use with Control Center of GNOME 42 or later). + Updated translations. - Add pkgconfig(gtk4) and pkgconfig(libnma-gtk4) BuildRequires and pass --with-gtk4=yes to configure, build the gtk4 version. - Stop passing --without-libnm-glib to configure, no longer needed, nor recognized. - Add optional libxml2-tools BuildRequires, build runs xml-stripblanks preprocessing if available. ==== NetworkManager-vpnc ==== Version update (1.2.6 -> 1.2.8) Subpackages: NetworkManager-vpnc-gnome NetworkManager-vpnc-lang - Update to version 1.2.8: + libnm-glib compatibility (NetworkManager < 1.0) is disabled by default. It can be enabled by passing --with-libnm-glib to configure script. Nobody should need it by now. Users that still use this are encourage to let us know before the libnm-glib support is removed for good. + The auth helper in external UI mode can now be run without a display server. This is useful when activating connections with "nmcli --ask". + Gtk4 version of the editor plugin is now available (for use with Control Center of GNOME 42 or later). + Updated translations. - Add pkgconfig(gtk4) and pkgconfig(libnma-gtk4) BuildRequires and pass --with-gtk4=yes to configure, build the gtk4 version. - Stop passing --without-libnm-glib to configure, no longer needed, nor recognized. - Add optional libxml2-tools BuildRequires, build runs xml-stripblanks preprocessing if available. ==== aaa_base ==== Version update (84.87+git20211124.5486aad -> 84.87+git20220324.fca4619) Subpackages: aaa_base-extras - Update to version 84.87+git20220324.fca4619: * No completion in restricted bash * No longer install /usr/lib/restricted/bin/hostname => /bin/hostname symlink - Update to version 84.87+git20220321.f60f2de: * order header in the way spec-cleaner wants it * move changes from package to git * merge audio files highlighting fixes from coreutils 9 * Update from coreutils 9 * Make source validator happy - Update to version 84.87+git20220321.5a5cb79: * DIR_COLORS: lz support * DIR_COLORS: zstd support - Update to version 84.87+git20220221.b62a2cf: * package: Require new enough version of glibc * package: build in place support * drop /etc/ttytype (boo#1191923) - Update to version 84.87+git20211206.de24bdf: * Add "rpm" make target * Remove legacy usrmerged sections * Add rpmlintrc and README from OBS too * Fix osc service instructions * Add obs workflow for git integration * Adopt upstream way of setting rp_filter and promote_secondaries * Don't fail if net.ipv4.ping_group_range can't be set * add spec file ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang pam_apparmor pam_apparmor-32bit python3-apparmor - Add update-samba-bgqd.diff to add new rule to fix 'DENIED' open on /proc/{pid}/fd for samba-bgqd (bnc#1196850). - Add update-usr-sbin-smbd.diff to add new rule to allow reading of openssl.cnf (bnc#1195463). ==== atk ==== Version update (2.36.0 -> 2.38.0) Subpackages: atk-lang libatk-1_0-0 libatk-1_0-0-32bit typelib-1_0-Atk-1_0 - Update to version 2.38.0: + Require Meson 0.56.2 + Add g_autoptr support for ATK types. + Add ATK_STATE_COLLAPSED, matching AT-SPI's state. + Improve support for ATK as a Meson subproject. + Ensure that atk_value_get_value_and_text() can deal with NULL out arguments. + Updated translations. ==== augeas ==== Subpackages: augeas-lenses libaugeas0 - add sysctl_parsing.patch (bsc#1197443) ==== busybox ==== Subpackages: busybox-static - BuildRequire hostname: the test suite wants to compare the output of 'hostname' against 'busybox hostname'. We should not rely hostname to be present in the build environment. ==== colord ==== Version update (1.4.5 -> 1.4.6) Subpackages: colord-color-profiles colord-lang libcolord2 libcolorhug2 - Update to version 1.4.6: + Add missing copyright notices. + Add Spyder X entry. + Document where to send patches. + Don't use exact floating point comparisons. + Drop option for removed reverse engineering tools. + Drop references to hughski.com. + Fix a small memory leak in sqlite3_exec(). + Fix typo in device-removed signal documentation. + Make introspection optional in meson. - Drop -Dreverse=false meson parameter: no longer supported. - Fix a few rpmlint warnings: + Do not self-obsolete shared-color-profiles by providing the symbol with a version. + Call +%tmpfiles_create %{_tmpfilesdir}/colord.conf in %post. + Package /usr/share/bash-completion/completions/colormgr with mode 644: the files are not executed, but sourced. + Own %{_localstatedir}/lib/colord/icc (ghost): this directory is generated by %tmpfiles_create. ==== container-selinux ==== - Add udica templates to the package ==== cppcheck ==== Version update (2.7.1 -> 2.7.4) - update to 2.7.4: * Fixes "undefined reference to `tinyxml2::" * Replace tinyxml2_LIBRARY with tinyxml2_LIBRARIES ==== desktop-file-utils ==== - suse-update-mime-defaults: add Budgie desktop environment ==== distribution-logos-openSUSE ==== Version update (20201117 -> 20220322) - Initial Leap Micro 5.2 branding ==== ed ==== Version update (1.17 -> 1.18) - update to 1.18: * The shell escape command (!) now flushes stdout so that the modified command is always printed before being executed even if standard output is fully buffered (for example, a file). * A couple of harmless memory leaks have been fixed. (They both happened just before ed exits). * The pointer returned by the function 'strip_escapes' is now checked. (It may be null if memory is exhausted). * The shell escape command (!) now removes the backslash from each escaped '%' character within the text of the shell command line. * Case-insensitive regular expressions have been implemented as in GNU sed. * Syntax errors in regular expressions, for example unmatched ( or \(, no longer overwrite a previously compiled regular expression, preventing a "No previous pattern" error. * The option '--strip-trailing-cr', which removes carriage returns at end of text lines, has been added. * Loading a file now fails if a line is longer than INT_MAX bytes or if the file contains more than INT_MAX lines (usually 2 Gi lines). (Instead of overflowing line addresses). * In interactive mode ed now sets final exit status to 1 if a fatal error happens while reading the file passed in the command line. * red now reports "Directory access restricted" instead of "Invalid filename" when trying to edit a file outside of the current directory. * The new chapter "The 's' Command" has been added to the manual. - switch to zstd - remove usrmerged handling ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavdevice58_13 libavfilter7_110 libavformat58_76 libavresample4_0 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Add conflicts for ffmpeg-5's tools ==== flute ==== - Build with java source and target level 8 ==== folks ==== Version update (0.15.4 -> 0.15.5) Subpackages: folks-data folks-lang libfolks-eds26 libfolks26 - Update to version 0.15.5: + Bugs fixed: vapi: Add missing generic type argument. - Drop glib2_gsettings_schema_requires macro from folks-data sub-package, no longer needed. - Drop c44d8e323affd7f1043f300f3325b358cd5b5f0b.patch: Fixed upstream. ==== freeglut ==== Version update (3.2.1 -> 3.2.2) - update to 3.2.2: * Fix netbsd/aarch64 build by including sys/joystick.h instead of machine/joystick.h. * Fix build with gcc >= 10 which made -fno-common the default by no longer relying on COMMON symbols for globals. * Fix android build (default to FREEGLUT_GLES, and check for debug flags). * Add flat shading option to the shapes demo. * Fix crash when calling primitive drawing functions without creating a window first. * Dropped really old and unmaintained doc directory from the source tree. - drop gcc10.patch (obsolete) ==== glib2 ==== Version update (2.70.5 -> 2.72.0) Subpackages: glib2-lang glib2-tools libgio-2_0-0 libgio-2_0-0-32bit libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgmodule-2_0-0-32bit libgobject-2_0-0 libgobject-2_0-0-32bit libgthread-2_0-0 libgthread-2_0-0-32bit - desktop-file-utils: add Budgie desktop environment - Update to version 2.72.0: + Bugs fixed: glgo#GNOME/GLib#2620, glgo#GNOME/GLib!2538, glgo#GNOME/GLib!2542, glgo#GNOME/GLib!2547, glgo#GNOME/GLib!2548, glgo#GNOME/GLib!2551, glgo#GNOME/GLib!2552. + Updated translations. ==== gnutls ==== Version update (3.7.3 -> 3.7.4) Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-32bit libgnutls30-hmac - FIPS: Additional PBKDF2 requirements for KAT [bsc#1184669] * The IG 10.3.A and SP800-132 require some minimum parameters for the salt length, password length and iteration count. These parameters should be also used in the KAT. * Add gnutls-FIPS-PBKDF2-KAT-requirements.patch - Enable to run the regression tests also in FIPS mode. - Update to 3.7.4: * libgnutls: Added support for certificate compression as defined in RFC8879. * certtool: Added option --compress-cert that allows user to specify compression methods for certificate compression. * libgnutls: GnuTLS can now be compiled with --enable-strict-x509 configure option to enforce stricter certificate sanity checks that are compliant with RFC5280. * libgnutls: Removed IA5String type from DirectoryString within issuer and subject name to make DirectoryString RFC5280 compliant. * libgnutls: Added function to retrieve the name of current ciphersuite from session. * Bump libgnutlsxx soname due to ABI break * API and ABI modifications: - GNUTLS_COMP_BROTLI: New gnutls_compression_method_t enum member - GNUTLS_COMP_ZSTD: New gnutls_compression_method_t enum member - gnutls_compress_certificate_get_selected_method: Added - gnutls_compress_certificate_set_methods: Added * Update gnutls.keyring ==== google-droid-fonts ==== - Add sources DroidSansFallback.ttf DroidSansFallbackFull.ttf DroidSansMono.ttf: Merge the latest modification from Android project (bsc#1190886). ==== gtk3 ==== Version update (3.24.33 -> 3.24.33+12) Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-lang gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.33+12: + icons: add legacy icons (boo#1197480). + Updated translations. ==== harfbuzz ==== Version update (4.0.1 -> 4.1.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 libharfbuzz0-32bit typelib-1_0-HarfBuzz-0_0 - Update to version 4.1.0: + Various OSS-Fuzz fixes + Make fallback vertical-origin match FreeType?s + Treat visible viramas like dependent vowels in USE shaper + Apply presentation forms features and discretionary features in one go in Indic shaper, which seems to match Uniscribe and CoreText behaviour + Various bug fixes ==== java-11-openjdk ==== Subpackages: java-11-openjdk-headless - Stop adding the JavaEE modules when building for Factory ==== kwin5 ==== Subpackages: kwin5-lang - Add patch to fix client cursor offset in VMs (kde#427060): * 0001-backends-drm-fall-back-to-legacy-mode-in-virtual-mac.patch ==== libapparmor ==== Subpackages: libapparmor1 libapparmor1-32bit - Add update-samba-bgqd.diff to add new rule to fix 'DENIED' open on /proc/{pid}/fd for samba-bgqd (bnc#1196850). - Add update-usr-sbin-smbd.diff to add new rule to allow reading of openssl.cnf (bnc#1195463). ==== libbase ==== - Modified patch: * libbase-1.1.3-sourcetarget.patch + build with source and target levels 8 ==== libfonts ==== - Modified patch: * libfonts-1.1.3-sourcetarget.patch + build with source and target levels 1.8 ==== libformula ==== - Modified patch: * libformula-1.1.3-sourcetarget.patch + Build with source and target 1.8 ==== libkleo ==== Subpackages: libKF5Libkleo5 libkleo-lang - Add gcc12-fix.patch upstream fix in order to support GCC 12. ==== liblayout ==== - Build with source and target levels 8 ==== libloader ==== - Modified patch: * libloader-1.1.3-sourcetarget.patch + Specify java source and target level 1.8 ==== libnma ==== Version update (1.8.34 -> 1.8.36) Subpackages: libnma-gtk4-0 libnma-lang libnma0 typelib-1_0-NMA-1_0 - Update to version 1.8.36: + Include OWE wireless security option. + Do not allow setting empty 802.1x domain for EAP TLS. + The GtkBuilder files for Gtk4 are now included in the release tarball. ==== libqt5-qtwebengine ==== - Add patch to fix build with GCC 12: * 0001-skia-Some-includes-to-fix-build-with-GCC-12.patch ==== libreoffice ==== Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Also enable gtk3_kde5. The gtk3 interface is more stable than the qt5/kf5 one, this option makes it possible to use gtk3 in kde with the kde filepicker (boo#1197017) ==== librepository ==== - Modified patch: * librepository-1.1.3-sourcetarget.patch + build with source/target levels 8 ==== libserializer ==== - Modified patch: * libserializer-1.1.2-sourcetarget.patch + build with java source/target levels 8 ==== libsolv ==== Version update (0.7.21 -> 0.7.22) Subpackages: libsolv-tools python3-solv ruby-solv - reworked choice rule generation to cover more usecases - support SOLVABLE_PREREQ_IGNOREINST in the ordering code [bsc#1196514] - support parsing of Debian's Multi-Arch indicator - bump version to 0.7.22 ==== libzypp ==== Version update (17.29.6 -> 17.30.0) - ZConfig: Update solver settings if target changes (bsc#1196368) - version 17.30.0 (22) - Fix possible hang in singletrans mode (bsc#1197134) - Do 2 retries if mount is still busy. - version 17.29.7 (22) ==== lsb-release ==== Version update (3.1 -> 3.2) - Update to version 3.2 - Shell script compatibility cleanup ==== luajit ==== Version update (2.1.0~beta3+git.1624618403.e9577376 -> 2.1.0~beta3+git.1647772157.43ebb949) - Update to version 2.1.0~beta3+git.1647772157.43ebb949: * Fix soft-float IR_POW splitting. * Fix BC_UCLO insertion for returns. * Fix compiler warning. * Revert to trival pow() optimizations to prevent inaccuracies. * Fix string buffer COW handling, part 2. * Fix install docs for Android. * *BSD: Fix getentropy() declaration. * Fix string buffer COW handling. * Fix command-line argv handling. * Don't export internal symbol. * Fix pow() optimization inconsistencies. * Always exit after machine code page protection change fails. * Fix FOLD rule for BUFHDR append with intervening buffer use. * Fix compiled error handling for buffer methods. * Prevent unroll across BC_ITERN. * Prevent replay of buffer operation for PHI operands. * Save trace recorder state around VM event call. * Bump copyright date. * FFI: Ensure library is loaded before de-serializing FFI types. * Fix HREFK forwarding vs. table.clear(). * Fix FOLD rule for BUFHDR append. * OSX: Disable unreliable assertion for external frame unwinding. * Limit exponent range in number parsing. * Fix tonumber("-0") in dual-number mode. * Limit work done in SINK pass. * Fix ABC FOLD rule with constants. * Prevent CSE of a REF_BASE operand across IR_RETF. * Windows: Fix binary output of jit.bcsave to stdout. * Fix FOLD rule for x-0. * Update Android build docs. * Update Android build docs. * ARM64: Fix pcall() error case. * OSX/ARM64: Fix external unwinding. * Fix string buffer method recording. * Fix interaction of profiler and ITERN recording. * Fix compilation of multi-result call to next(). * ARM64: Fix IR_HREF code generation. * MIPS64: Fix soft-float IR_TOSTR. * MIPS: Fix register allocation in assembly of HREF. * Fix compiler warning. * Windows/x64: Document MSVC flags for C++ exception interoperability. * FFI: Ensure returned string is alive in ffi.typeinfo(). * OSX/ARM64: Disable unwind info. * Fix stack allocation after on-trace stack check. * Fix ITERN blacklisting. * Ensure ITERN forward progress on interpreter bailout. * ARM64: Reorder interpreter stack frame and fix unwinding. * Don't bail out to interpreter to JLOOP originating from ITERN. * FFI: Don't load PC from non-function object in FFI continuation. * FFI: Don't load PC from non-function object in FFI continuation. * FFI: Fix missing cts->L initialization in argv2ctype(). * OSX/ARM64: Disable external unwinding for now. * Compile table traversals: next(), pairs(), BC_ISNEXT/BC_ITERN. * Use IR_HIOP for generalized two-register returns. * Refactor table traversal. * ARM: Fix symbol display in trace disassembly. * Refactor IR_TMPREF generation. * Refactor IR_VLOAD to take an offset. * MIPS: Fix trace linking. * String buffers, part 4b: Improve de-serialization checks. * String buffers, part 4a: Add metatable serialization dictionary. * Consider slots used by upvalues in use-def analysis. * Prevent loop in snap_usedef(). * Fix io.close() error message. * Fix io.close(). * Fix minilua vararg stack handling. * PS4: Fix compile. * Avoid out-of-range number of results when compiling select(k, ...). * String buffers, part 3d: Compile string buffer methods and functions. * Minor improvements of optimizations. * Fix error message in lj_lib_checkintrange(). * String buffers, part 2f: Prevent self-put of buffer. * String buffers, part 3c: Add IRBUFHDR_WRITE mode. * Fix IRXLOAD_* mode bits description. * String buffers, part 3b: Change IR_BUFHDR op2 mode bits to mode. * String buffers, part 3a: Add IR_TMPREF for passing TValues to helpers. * Add IRCONV_NONE for pass-through INT to I64/U64 type change. * Fix jit.dump() output for IR_CONV. - Patches broken in the need of rebase (temporarily switched off): - 0004-Add-ppc64-support-based-on-koriakin-GitHub-patchset.patch - luajit-ppc64-replace-asserts.patch ==== monitoring-plugins ==== Subpackages: monitoring-plugins-breeze monitoring-plugins-by_ssh monitoring-plugins-cluster monitoring-plugins-common monitoring-plugins-dhcp monitoring-plugins-dig monitoring-plugins-disk monitoring-plugins-disk_smb monitoring-plugins-dns monitoring-plugins-dummy monitoring-plugins-file_age monitoring-plugins-flexlm monitoring-plugins-http monitoring-plugins-icmp monitoring-plugins-ide_smart monitoring-plugins-ifoperstatus monitoring-plugins-ifstatus monitoring-plugins-ircd monitoring-plugins-load monitoring-plugins-log monitoring-plugins-mailq monitoring-plugins-mrtg monitoring-plugins-mrtgtraf monitoring-plugins-nt monitoring-plugins-ntp_peer monitoring-plugins-ntp_time monitoring-plugins-nwstat monitoring-plugins-oracle monitoring-plugins-overcr monitoring-plugins-ping monitoring-plugins-procs monitoring-plugins-real monitoring-plugins-rpc monitoring-plugins-sensors monitoring-plugins-smtp monitoring-plugins-ssh monitoring-plugins-swap monitoring-plugins-tcp monitoring-plugins-time monitoring-plugins-ups monitoring-plugins-users monitoring-plugins-wave - added monitoring-plugins-2.3.1-check_disk_on_btrfs.patch backport fix for check_disk reporting critical on btrfs (nagios-plugins issue %569) ==== mutter ==== Subpackages: mutter-lang - Add mutter-bail-out-on-reentry-into-map-unmap.patch: This fixes gnome-shell crash when dragging close button in overview by bailing out on reentry into map/unmap() (bsc#1197350, glgo#GNOME/mutter!2299). ==== patterns-gnome ==== Subpackages: patterns-gnome-gnome patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_basis_opt patterns-gnome-gnome_games patterns-gnome-gnome_imaging patterns-gnome-gnome_internet patterns-gnome-gnome_multimedia patterns-gnome-gnome_office patterns-gnome-gnome_utilities patterns-gnome-gnome_x11 patterns-gnome-gnome_yast patterns-gnome-sw_management_gnome - Recommend systemd-icon-branding by gnome_x11: try to get the correct branding installed, allowing to show the correct icon in gnome-control-center. ==== pentaho-libxml ==== - Modified patch: * pentaho-libxml-1.1.3-sourcetarget.patch + Build with java source/target levels 8 ==== pentaho-reporting-flow-engine ==== - Build with java source/target levels 8 ==== python-Mako ==== - python-mock is not required for build ==== python-filetype ==== Version update (1.0.8 -> 1.0.10) - update to 1.0.10: * Merge pull request #113 from nottaw/master * Use `==` for string comparisons * Update __init__.py * Merge pull request #111 from asfaltboy/patch-1 * Add python 3.9 to version classifiers * Merge pull request #108 from hannesbraun/aiff-support * Add AIFF support * fix(Readme): rst syntax ==== python-html5lib ==== - do not require python-mock for build - added patches fix https://github.com/html5lib/html5lib-python/issues/541 + python-html5lib-no-mock.patch ==== python-pygit2 ==== Version update (1.9.0 -> 1.9.1) - update to 1.9.1: - Type hints: added to C code and Branches/References - New ``Signature`` supports ``str()`` and ``repr()`` - Fix ODB backend's read in big endian architectures - Fix install with poetry - Wheels: update to libgit2 v1.4.2 - Tests: fix testing ``parse_diff`` - CI: various fixes after migration to libgit2 v1.4 ==== python-setuptools ==== - Refresh remove_mock.patch to add a missing file to it. ==== qemu ==== Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86 - Fix virtiofs crashing with glibc >= 2.35, due to rseq syscall (bsc#1196924) * Patches added: tools-virtiofsd-Add-rseq-syscall-to-the-.patch - Avoid warnings caused by a GCC 12 bug, see https://gcc.gnu.org/bugzilla/show_bug.cgi?id=98503 (bsc#1197018) * Patches added: hw-i386-amd_iommu-Fix-maybe-uninitialize.patch Silence-GCC-12-spurious-warnings.patch Ignore-spurious-GCC-12-warning.patch ==== sac ==== - Build with source/target levels 8 ==== sgml-skel ==== Version update (0.7.1 -> 0.7.2) - Create version 0.7.2 - Ensure resulting file has proper SELinux context (#6) - Apply spec-cleaner ==== sudo ==== Version update (1.9.9 -> 1.9.10) Subpackages: sudo-plugin-python - update to 1.9.10: * Added new log_passwords and passprompt_regex sudoers options. If log_passwords is disabled, sudo will attempt to prevent passwords from being logged. If sudo detects any of the regular expressions in the passprompt_regex list in the terminal output, sudo will log ?*? characters instead of the terminal input until a newline or carriage return is found in the input or an output character is received. * Added new log_passwords and passprompt_regex settings to sudo_logsrvd that operate like the sudoers options when logging terminal input. * Fixed several few bugs in the cvtsudoers utility when merging multiple sudoers sources. * Fixed a bug in sudo_logsrvd parsing the sudo_logsrvd.conf file, where the retry_interval in the [relay] section was not being recognized. * Restored the pre-1.9.9 behavior of not performing authentication when sudo?s -n option is specified. A new noninteractive_auth sudoers option has been added to enable PAM authentication in non-interactive mode. GitHub issue #131. * On systems with /proc, if the /proc/self/stat (Linux) or /proc/pid/psinfo (other systems) file is missing or invalid, sudo will now check file descriptors 0-2 to determine the user?s terminal. Bug #1020. * Fixed a compilation problem on Debian kFreeBSD. Bug #1021. * Fixed a crash in sudo_logsrvd when running in relay mode if an alert message is received. * Fixed an issue that resulting in ?problem with defaults entries? email to be sent if a user ran sudo when the sudoers entry in the nsswitch.conf file includes ?sss? but no sudo provider is configured in /etc/sssd/sssd.conf. * Updated the warning displayed when the invoking user is not allowed to run sudo. If sudo has been configured to send mail on failed attempts (see the mail_* flags in sudoers), it will now print ?This incident has been reported to the administrator.? If the mailto or mailerpath sudoers settings are disabled, the message will not be printed and no mail will be sent. * Fixed a bug where the user-specified command timeout was not being honored if the sudoers rule did not also specify a timeout. * Added support for using POSIX extended regular expressions in sudoers rules. A command and/or arguments in sudoers are treated as a regular expression if they start with a ?^? character and end with a ?$?. The command and arguments are matched separately, either one (or both) may be a regular expression. * A user may now only run sudo -U otheruser -l if they have a ?sudo ALL? privilege where the RunAs user contains either root or otheruser. Previously, having ?sudo ALL? was sufficient, regardless of the RunAs user. GitHub issue [#134]. * The sudo lecture is now displayed immediately before the password prompt. As a result, sudo will no longer display the lecture unless the user needs to enter a password. Authentication methods that don?t interact with the user via a terminal do not trigger the lecture. * Sudo now uses its own closefrom() emulation on Linux systems. The glibc version may not work in a chroot jail where /proc is not available. If close_range(2) is present, it will be used in preference to /proc/self/fd. - drop sudo-1.9.9-honor-T_opt.patch , feature-upstream-restrict-sudo-U-other-l.patch (upstream) ==== systemd ==== Version update (249.10 -> 250.4) Subpackages: libsystemd0 libsystemd0-32bit libudev1 libudev1-32bit systemd-32bit systemd-container systemd-devel systemd-lang udev - spec: cope with %{_modprobedir} being /lib/modprobe.d on SLE - Add 1000-Revert-getty-Pass-tty-to-use-by-agetty-via-stdin.patch A temporary workaround until bsc#1197178 is resolved. - Import commit 8ef8dfd5401ba18caec59e54a05af9f2e0d7ac65 (merge of v250.4) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/ca89b1d1fd1ae86cc1e763d2d01ec280... - Import commit ca89b1d1fd1ae86cc1e763d2d01ec2806f3a4d3a 37b683c832 journal: preserve acls when rotating user journals with NOCOW attribute set d043fabebc journal: when copying journal file to undo NOCOW flag, go via fd 78c2766689 journal-file: explicitly handle file systems that do not support hole punching 7ecfb4b098 journal-file: fix error handling of pread() in journald_file_punch_holes() c4946a412c journal-file: don't use pread() when determining where to append, use mmap as before d3fbd20628 journal: various fixes to journal_file_read_object() 5897a8e8d4 shared: Handle filesystems that don't support hole punching in COPY_HOLES 27746408e2 journal: Truncate file instead of punching hole in final object 59b6130030 shared: Ensure COPY_HOLES copies trailing holes ac9ccba73f journal: stat journal file after truncating 0257283444 journal: Copy holes when archiving BTRFS journal files 26c2a9952d shared: Copy holes in sparse files in copy_bytes_full() 6c7191dece copy: fix wrong argument passed to S_ISREG() in copy_file_fd_full() af0a43024d udev: 60-persistent-storage-tape.rules: handle duplicate device ID (bsc#1195529) - Update Supplements to new format in baselibs.conf - Fix libsystemd-shared exclusion in baselibs.conf - Exclude new cryptsetup libraries in baselibs.conf ==== texlive ==== Subpackages: libkpathsea6 libsynctex2 - Gzip manual page of biber - Do not attach prefix texlive twice in case of texlive-scripts-extra - Also add some obsoletes ==== timezone ==== Version update (2021e -> 2022a) - timezone update 2022a: * Palestine will spring forward on 2022-03-27, not -03-26* * zdump -v now outputs better failure indications * Bug fixes for code that reads corrupted TZif data ==== timezone-java ==== Version update (2021e -> 2022a) - timezone update 2022a: * Palestine will spring forward on 2022-03-27, not -03-26* * zdump -v now outputs better failure indications * Bug fixes for code that reads corrupted TZif data ==== transactional-update ==== Version update (3.6.2 -> 4.0.0~rc2) Subpackages: dracut-transactional-update transactional-update-zypp-config tukit - Version 4.0.0~rc2 - Fix missing prompt in "shell" command [bsc#1196580] - Add output of tukit commands to log file - Fix compilation error with GCC12 [boo#1194876] - Fixed (non-critical) security review comments [boo#1196149] - Fixed selfupdate - Code cleanup - Version 4.0.0~rc1 This release is API, but not ABI compatible with previous releases; existing applications will have to be recompiled against this new version. Major features: - Introduces a D-Bus service to access the libtukit API via the org.opensuse.tukit.Transaction interface - Introduces a C binding via libtukit.h. Other changes: - t-u: Rework --quiet handling to make sure no output is shown even in error cases; this is necessary for automation, e.g. with Salt. [gh#openSUSE/transactional-update#73] - tukit: Allow storing command output into variable by introducing a new optional parameter for "execute" and "callExt". - Replace multiple and non-standalone occurenses of {} in "callExt" argument. - Split transactional-update.timer into transactional-update.timer and transactional-update-cleanup.timer; the later will clean up old snapshots even when the system does not do automatic updates. - tukit: Remove legacy alias "setDiscard" for "setDiscardIfUnchanged". - Throw exception if snapshot is not found. - Fix various compiler warnings - Update spec file: - Include tukitd D-Bus daemon - Only install one version of the library (as there are no breaking API changes yet) - Add %pre scriplets for systemd services - Replace %systemd_postun scriptlets with %systemd_postun_with_restart to satisfy rpmlint checks - Add transactional-update log file as %ghost file ==== wireplumber ==== Subpackages: libwireplumber-0_4-0 wireplumber-audio - Make the wireplumber-audio noarch as it just contains a lua config file. ==== xlockmore ==== Version update (5.68 -> 5.69) - update to 5.69: Patch for xkb groups thanks to Audrey Af, public.irkutsk AT gmail.com. Minor touches for xscreensaver-6.03 port, life and life3d. ==== xml-commons-apis ==== - Build with source/target levels 8 ==== yelp ==== Subpackages: libyelp0 yelp-lang - Add yelp-ghelp.patch: Be even more careful about stripping slashes. Fix applications still using ghelp: URIs. ==== zsh ==== Version update (5.8 -> 5.8.1) - update to 5.8.1 (bsc#1196435, CVE-2021-45444): * CVE-2021-45444: Some prompt expansion sequences, such as %F, support 'arguments' which are themselves expanded in case they contain colour values, etc. This additional expansion would trigger PROMPT_SUBST evaluation, if enabled. This could be abused to execute code the user didn't expect. e.g., given a certain prompt configuration, an attacker could trick a user into executing arbitrary code by having them check out a Git branch with a specially crafted name. This is fixed in the shell itself by no longer performing PROMPT_SUBST evaluation on these prompt-expansion arguments. Users who are concerned about an exploit but unable to update their binaries may apply the partial work-around described in the file Etc/CVE-2021-45444-VCS_Info-workaround.patch included with the shell source. [ Reported by RyotaK <security@ryotak.me>. Additional thanks to Marc Cornellà <hello@mcornella.com>. ]
participants (1)
-
Dominique Leuenberger