[opensuse-factory] Leap 42.3 Build 0313 released!
Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&version=42.3&build=0313&groupid=28 https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Distribution&query_format=advanced&resolution=---&version=Leap%2042.3 When you reply to discuss some issues, make sure to change the subject. Please use the test plan at https://docs.google.com/spreadsheets/d/1AGKijKpKiJCB616-bHVoNQuhWHpQLHPWCb3m... to record your testing efforts and use bugzilla to report bugs. Packages changed: GraphicsMagick emacs kdump libICE libXdmcp libcares2 libgcrypt libqt5-qtbase libquicktime libwacom llvm polkit-gnome systemd xfce4-session yast2-network (3.2.29 -> 3.2.30) yast2-ruby-bindings (3.2.13 -> 3.2.14) === Details === ==== GraphicsMagick ==== Subpackages: GraphicsMagick-devel libGraphicsMagick-Q16-3 libGraphicsMagick3-config libGraphicsMagickWand-Q16-2 - complementary fix for CVE-2017-8350 [bsc#1036985 c13-c21] * modified GraphicsMagick-CVE-2017-8350.patch ==== emacs ==== Subpackages: emacs-info emacs-nox emacs-x11 etags - Port change for boo#943793 back to SLES-12 (bsc#1044093) - Fix small bug in emacs-24.3-gtk-3.10.patch which now allows to scroll even if keyboard is used (boo#1035645) - Use socket activation to get dbus up before starting emacs - Fix emacs.sh wrapper script to check modern dbus session (boo#1032759) ==== kdump ==== - kdump-activate-QETH-devices.patch: Activate QETH network devices (bsc#1038669). - Drop kdump-do-not-reload-FADUMP-on-CPU-memory-hotplug.patch: Reload is needed even with fadmp (bsc#1040567). - kdump-fail-if-fadump-cannot-be-registered.patch: Fail at startup if fadump cannot be registered (bsc#1040567). - kdump-do-not-reload-FADUMP-on-CPU-memory-hotplug.patch: Do not reload on CPU/memory hotplug when using FADUMP (bsc#1040567). ==== libICE ==== Subpackages: libICE-devel libICE6 libICE6-32bit - U_Use-getentropy-if-arc4random_buf-is-not-available.patch * Use getentropy() if arc4random_buf() is not available; further fallbacks to usage of getrandom() and direct read from /dev/urandom if this is not available either (bnc#1025068, CVE-2017-2626) - tagged baselibs.conf as source in specfile ==== libXdmcp ==== Subpackages: libXdmcp-devel libXdmcp6 - U_Use-getentropy-if-arc4random_buf-is-not-available.patch * Use getentropy() if arc4random_buf() is not available; further fallbacks to usage of getrandom() and direct read from /dev/urandom if this is not available either (bsc#1025046, CVE-2017-2625) - U_Fix-compilation-error-when-arc4random_buf-is-not-ava.patch * fix build error * Also rename emulate_getrandom_buf() into insecure_getrandom_buf() as requested in the previous patch reviews. * Last, getbits() expects an unsigned char, so remove the warning. ==== libcares2 ==== - Add patch to fix bsc#1044946 CVE-2017-1000381: * CVE-2017-1000381.patch ==== libgcrypt ==== Subpackages: libgcrypt-devel libgcrypt20 libgcrypt20-32bit - Security fix [CVE-2017-7526, bsc#1046607] * libgcrypt-CVE-2017-7526-1.6.1-2.patch - Hardening against local side-channel attack * libgcrypt-CVE-2017-7526-1.6.1-1.patch - Factored code for function (secret) and added new functions (secret_core_std, secret_core_crt) in cipher/rsa.c ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent-devel libQt5Concurrent5 libQt5Core-devel libQt5Core-private-headers-devel libQt5Core5 libQt5DBus-devel libQt5DBus5 libQt5Gui-devel libQt5Gui-private-headers-devel libQt5Gui5 libQt5Network-devel libQt5Network5 libQt5OpenGL-devel libQt5OpenGL5 libQt5PlatformHeaders-devel libQt5PrintSupport-devel libQt5PrintSupport5 libQt5Sql-devel libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-postgresql libQt5Sql5-sqlite libQt5Sql5-unixODBC libQt5Test-devel libQt5Test5 libQt5Widgets-devel libQt5Widgets5 libQt5Xml-devel libQt5Xml5 libqt5-qtbase-common-devel libqt5-qtbase-devel - Recommend libqt5-qttranslations in libQt5Core5 (boo#1027925) - Fix typo in description (boo#1043338) ==== libquicktime ==== - add libquicktime-1.2.4-multiple_vulnerabilities.patch to fix the following security issues: * CVE-2017-9122 [bsc#1044077] * CVE-2017-9123 [bsc#1044009] * CVE-2017-9124 [bsc#1044008] * CVE-2017-9125 [bsc#1044122] * CVE-2017-9126 [bsc#1044006] * CVE-2017-9127 [bsc#1044002] * CVE-2017-9128 [bsc#1044000] ==== libwacom ==== Subpackages: libwacom-data libwacom2 - Build wacom udev rules (boo#1041714) fixes libinput error: libinput bug: Device 'Wacom BambooPT 2FG Small Pad' does not meet tablet criteria. Ignoring this device. ==== llvm ==== Subpackages: libLLVM libLLVM-32bit - Increase disk requirement to 20G to fix build on i586. ==== polkit-gnome ==== Subpackages: polkit-gnome-lang - patch license to follow spdx.org standard - Update to version 0.105: + Various build fixes + Updated translations. - Update to version 0.104: + Updated translations. - Update to version 0.103: + Drop polkit-gtk library. + Drop support for GTK+ 2. + Build fixes. - Drop libpolkit-gtk-1-0 and libpolkit-gtk-1-devel subpackages, since the library got removed. Note that nothing is using this library in Factory. - Stop passing --with-gtk=3.0 to configure: this option is now gone. - Stop passing --libexecdir=%{_libexecdir}/polkit-gnome to configure: we're happy with the standard libexecdir. - Remove gtk-doc BuildRequires and stop passing --enable-gtk-doc to configure: such documentation only existed with the library. - Re-enable parallel build. - Update polkit-gnome-authentication-agent-1.desktop.in: do not add polkit-gnome in the Exec path, since we changed the libexecdir. - Update to version 0.102: + Use GtkBox instead of GtkHBox + Updated translations. - Fix path for polkit agent on x86_64 in by replacing @LIBDIR@ in polkit-gnome-authentication-agent-1.desktop.in. - Update to version 0.101: + Return error when authentication dialog is dismissed + Fix crashers if icons cannot be loaded + Don't use deprecated polkit API + Fix warnings with gcc 4.6 + Connect to the session bus - Changes from version 0.100: + Make --with-gtk work with introspection + Nuke desktop file for autostart + Don't use a status icon for temporary authorizations + Use avatar-default instead of stock_person + Don't use gtk_dialog_set_has_separator + Don't use gtk_widget_hide_all + Add a --with-gtk configure option - Drop polkit-gnome-OnlyShowIn.patch: this is obsolete now. - Add as a source a .desktop file to start polkit agent: it was removed from tarball, but we still need it. - Use gtk3-devel BuildRequires instead of gtk2-devel, and pass - -with-gtk=3.0 to configure to build with gtk3. - added supplements for xfce4-session and lxsession so polkit-gnome gets installed by default for LXDE/XFCE - Update to version 0.99: + Fix up --string-prefix usage to work with latest gobject-introspection - Recommend instead of require lang package since it's not mandatory. - Update to version 0.97: + Compile with -DGSEAL_ENABLE (bgo#616386) + Remove lock down functionality + Port from dbus-glib to gdbus + Avoid deprecated polkit_authority_get() function + Hide the agent autostart desktop file + Use standard icon names - Changes from version 0.96: + Fix bug with authenticating multiple possible users + Updated translations. - Changes from version 0.95: + Set status icon invisible before unref'ing it + Add test-case for fdo#23867 + Add support for locking down actions + Add GObject Introspection for libpolkit-gtk-1 + In the example, print backend details on stdout + Support multiple outstanding authentication requests + Use new API in polkit 0.95 for lock down + Updated translations. - Rebase polkit-gnome-OnlyShowIn.patch. - Rebase polkit-gnome-alternative-button-order-kde.patch. - Drop polkit-gnome-fix-hide-status-icon-kde.patch: fixed upstream. - Add gobject-introspection-devel BuildRequires to have introspection support. - Change polkit-devel BuildRequires to >= 0.97. - Disable parallel build for now since it fails. - Change Supplements to be on polkit and gnome-session instead of just gnome-session: polkit-gnome is useless if polkit is not installed. - do not use the authentication agent in KDE (bnc#576248) - Rename patches to comply with patch naming policy. - use the authentication agent also in KDE (bnc#538897) - use the proper button order in KDE - fix status icon not hiding - Update to version 0.94: - Add library with a PolkitLockButton widget - Make use of new API to better cope with one-shot authorizations - Create libpolkit-gtk-1-0 package, and devel package. - Add Supplements on gnome-session, since we want this installed by default for GNOME. - update to version 0.93 - Clean up spec file. - initial import of polkit-gnome 0.92 ==== systemd ==== Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1 libudev1-32bit systemd-32bit systemd-bash-completion systemd-logger systemd-sysvinit udev - Import commit 6c14b00040edfe5b60aadb6a195955990e8a423f e2026f234 core:execute: fix fork() fail handling in exec_spawn() (bsc#1040258) - Import commit 20b3d47e6505c3850d1ae175821dc896ea201bd3 d75f37071 only check signature job error if signature job exists (#6118) (boo#1043758) e162b497f job: Ensure JobRunningTimeoutSec= survives serialization (#6128) (bsc#1004995) - Import commit 651d7679b0d4f93aa39557d67dd063f421d63762 e4c5ae561 core/mount: pass "-c" flag to /bin/umount (#6093) c9a8292ad automount: handle expire_tokens when the mount unit changes its state (#3434) (bsc#1040942) 96ff1f249 automount: rework propagation between automount and mount units a9cd26c8a build: *really* install tmpfiles.d/systemd-remote.conf when necessary (#6061) 70ad17e6c build: only install tmpfiles.d/systemd-remote.conf when necessary (#6051) 262879be4 build: fix systemd-journal-upload installation 3798d3737 basic: Bugfix Detect XEN Dom0 as no virtualization (bsc#1036873) 5e11b17b4 basic: Debug-logging of Virtualisation detection e4476be25 virt: make sure we don't ignore some errors 5dd3c811b fstab-generator: do not skip Before= ordering for noauto mountpoints (#5547) 262d95fec resolved: bugfix of null pointer p->question dereferencing (#6020) (bsc#1040614 CVE-2017-9217) 4f398c0e2 fstab-gen: don't convert device timeout into seconds when initializing JobTimeoutSec c45f3c6f0 man: loding.conf RemoveIPC= defaults to no c34a0c88d core/device: Use JobRunningTimeoutSec= for device units (bsc#1004995) 156582042 fstab-generator: Apply _netdev option also to device units (bsc#1004995) 54d2b4e23 job: add JobRunningTimeoutSec for JOB_RUNNING state (bsc#1004995) bd03ae2cc Export NVMe WWID udev attribute (#5348) (bsc#1038865) f7f877939 rules: introduce disk/by-id (model_serial) symlinks for NVMe drives (#3974) ac36e2fe3 rules: add NVMe rules (#3136) e9c9a30ff sysusers: make group shadow support configurable (bsc#1029516) 8e0d295a2 core: when deserializing a unit, fully restore its cgroup state (bsc#1029102) 77cf84419 core: introduce cg_mask_from_string()/cg_mask_to_string() - Fix systemd-sysv-convert when a package starts shipping service units (bsc#982303) The database might be missing when upgrading a package which was shipping no sysv init scripts nor unit files (at the time --save was called) but the new version start shipping unit files. - Fix indentation in systemd-sysv-convert While at it, strip trailing whitespaces. No functional changes. - Disable group shadow support (bsc#1029516) The new configure option will be imported during the next tarball update. ==== xfce4-session ==== Subpackages: libxfsm-4_6-0 xfce4-session-lang - Do not mark %{_datadir}/xsessions/default.desktop as %ghost, it needs to be installed as normal file. ==== yast2-network ==== Version update (3.2.29 -> 3.2.30) - bnc#1046735 - do not update sysconfig when no IP is given in case of static NIC configuration. - 3.2.30 ==== yast2-ruby-bindings ==== Version update (3.2.13 -> 3.2.14) - Set proper title also for YaST2 System Log (bsc#1046153) - 3.2.14 -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
participants (1)
-
Ludwig Nussel