openSUSE Kubic
Threads by month
- ----- 2024 -----
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
June 2020
- 2 participants
- 61 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
findutils
fuse3 (3.9.1 -> 3.9.2)
pam (1.3.1+git20190923.ea78d67 -> 1.4.0)
=== Details ===
==== findutils ====
- findutils.spec: Avoid conditional Patch definition as this breaks
cross-platform building from source RPMs.
- findutils-gnulib-disable-test-float.patch: Add patch to temporarily
disable the gnulib test 'test-float' failing on ppc and ppc64le.
- findutils.spec: Reference the patch.
==== fuse3 ====
Version update (3.9.1 -> 3.9.2)
- Update to version 3.9.2
* Remove obsolete workarounds in examples.
* Do not require C++ compiler for building.
* Minor bugfixes.
- Drop BR on c++_compiler
==== pam ====
Version update (1.3.1+git20190923.ea78d67 -> 1.4.0)
- Update to final 1.4.0 release
- includes pam-check-user-home-dir.patch
- obsoletes fix-man-links.dif
- common-password: remove pam_cracklib, as that is deprecated.
- pam_setquota.so:
When setting quota, don't apply any quota if the user's $HOME is
a mountpoint (ie the user has a partition of his/her own).
[bsc#1171721, pam-check-user-home-dir.patch]
- Update to current Linux-PAM snapshot
- pam_tally* and pam_cracklib got deprecated
- Disable pam_faillock and pam_setquota until they are whitelisted
- Adapted patch pam-hostnames-in-access_conf.patch for new version
New version obsoleted patch use-correct-IP-address.patch
[pam-hostnames-in-access_conf.patch,
use-correct-IP-address.patch]
- Update to current Linux-PAM snapshot
- Obsoletes pam_namespace-systemd.diff
- Update to current Linux-PAM snapshot
- Add pam_faillock
- Multiple minor bug fixes and documentation improvements
- Fixed grammar of messages printed via pam_prompt
- Added support for a vendor directory and libeconf
- configure: Allowed disabling documentation through --disable-doc
- pam_get_authtok_verify: Avoid duplicate password verification
- pam_env: Changed the default to not read the user .pam_environment file
- pam_group, pam_time: Fixed logical error with multiple ! operators
- pam_keyinit: In pam_sm_setcred do the same as in pam_sm_open_session
- pam_lastlog: Do not log info about failed login if the session was opened
with PAM_SILENT flag
- pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs
- pam_lastlog: With 'unlimited' option prevent SIGXFSZ due to reduced 'fsize'
limit
- pam_motd: Export MOTD_SHOWN=pam after showing MOTD
- pam_motd: Support multiple motd paths specified, with filename overrides
- pam_namespace: Added a systemd service, which creates the namespaced
instance parent directories during boot
- pam_namespace: Support for noexec, nosuid and nodev flags for tmpfs mounts
- pam_shells: Recognize /bin/sh as the default shell
- pam_succeed_if: Support lists in group membership checks
- pam_tty_audit: If kernel audit is disabled return PAM_IGNORE
- pam_umask: Added new 'nousergroups' module argument and allowed specifying
the default for usergroups at build-time
- pam_unix: Added 'nullresetok' option to allow resetting blank passwords
- pam_unix: Report unusable hashes found by checksalt to syslog
- pam_unix: Support for (gost-)yescrypt hashing methods
- pam_unix: Use bcrypt b-variant when it bcrypt is chosen
- pam_usertype: New module to tell if uid is in login.defs ranges
- Added new API call pam_start_confdir() for special applications that
cannot use the system-default PAM configuration paths and need to
explicitly specify another path
- pam_namespace-systemd.diff: fix path of pam_namespace.services
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
15 Jun '20
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
alsa (1.2.2 -> 1.2.3)
audit
busybox-links
cogl (1.22.6 -> 1.22.8)
conmon (2.0.16 -> 2.0.17)
dracut (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
ffmpeg-4 (4.2.2 -> 4.2.3)
fonts-config (20190119 -> 20200609+git0.42e2b1b)
ghostscript-fonts
gmp
gnome-software
gnutls (3.6.13 -> 3.6.14)
gstreamer
hunspell
hwdata (0.335 -> 0.336)
icu
installation-images-MicroOS (15.4 -> 15.5)
kernel-64kb (5.6.14 -> 5.7.1)
kernel-source (5.6.14 -> 5.7.1)
konsole
krb5 (1.18.1 -> 1.18.2)
ksysguard5 (5.19.0 -> 5.19.0.1)
libgpg-error (1.37 -> 1.38)
libjcat (0.1.2 -> 0.1.2+3)
libksysguard5 (5.19.0 -> 5.19.0.1)
libnftnl (1.1.6 -> 1.1.7)
libosinfo (1.7.1 -> 1.8.0)
libqt5-qtbase
librsvg (2.48.4 -> 2.48.7)
libseccomp (2.4.2 -> 2.4.3)
libxml2
libzip (1.6.1 -> 1.7.0)
mozjs68 (68.7.0 -> 68.9.0)
multipath-tools (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
ncurses (6.2.20200502 -> 6.2.20200531)
newt
open-iscsi
openssh (8.1p1 -> 8.3p1)
osinfo-db (20200214 -> 20200529)
patterns-base
perl
perl-libwww-perl (6.44 -> 6.45)
permissions (1550_20200520 -> 1550_20200526)
pulseaudio
purge-kernels-service
python-rpm-macros (20200207.5feb6c1 -> 20200529.b301e36)
python3
python3-base
shadow
sqlite3 (3.31.1 -> 3.32.2)
sssd (2.2.3 -> 2.3.0)
suse-module-tools (15.3.2 -> 15.3.3)
systemd
timezone
util-linux
util-linux-systemd
xdg-utils (1.1.3+20190413 -> 1.1.3+20200220)
xdm
xterm
yast2 (4.3.5 -> 4.3.6)
=== Details ===
==== alsa ====
Version update (1.2.2 -> 1.2.3)
- Update to alsa-lib 1.2.3:
including previous fixes, see the detailed changes at:
https://www.alsa-project.org/wiki/Detailed_changes_v1.2.2_v1.2.3
- Drop obsoleted patches:
0001-conf-change-the-order-of-PCM-devices-in-alsa.conf.patch
0002-conf-namehint-add-omit_noargs-to-the-hint-section.patch
0003-Change-PCM-device-number-of-Asus-Xonar-U5.patch
0004-configure-add-embed-for-python3-config-python-3.8.patch
0005-conf-USB-Audio-Add-C-Media-USB-Headphone-Set-to-the-.patch
0006-topology-add-back-asrc-to-widget_map-in-dapm.c.patch
0007-ucm-clarify-the-index-syntax-for-the-device-names.patch
0008-ucm-fix-uc_mgr_scan_master_configs.patch
0009-namehint-remember-the-direction-from-the-upper-level.patch
0010-conf-fix-namehint-for-pcm.front-and-pcm.iec958.patch
0011-pcm-add-chmap-option-to-route-plugin.patch
0012-usecase-allow-indexes-also-for-modifier-names.patch
0013-ucm-fix-the-device-remove-operation.patch
0014-ucm-fix-copy-n-paste-typo-RemoveDevice-list.patch
0015-pcm-dmix-fix-sw_params-handling-of-timestamp-types-i.patch
0016-conf-USB-Audio-Fix-S-PDIF-output-of-ASUS-Xonar-AE.patch
0017-pcm-rate-fix-the-remaining-size-calculation-in-snd_p.patch
0018-use-case.h-add-USB-as-allowed-device-name.patch
0019-topology-Use-bool-parser-to-parse-boolean-value.patch
0020-fix-infinite-draining-of-the-rate-plugin-in-SND_PCM_.patch
0021-test-pcm_min-add-snd_pcm_drain-call-and-indentation-.patch
==== audit ====
Subpackages: libaudit1 libauparse0
- Fix specfile to require libauparse0 and libaudit1 after splitting
audit-libs (bsc#1172295)
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-psmisc busybox-xz
- Create own busybox-adduser sub-package
- Add conflicts: mawk to busybox-gawk
==== cogl ====
Version update (1.22.6 -> 1.22.8)
Subpackages: libcogl-pango20 libcogl20
- Update to version 1.22.8:
+ Fix building against libglvnd-provided EGL headers.
+ Stop checking the Automake version.
+ Fix compiler warnings with GCC ? 9.
+ Ensure we don't close the same X display twice.
+ Test suite fixes.
+ Free pipeline state last.
- Drop cogl-fix-mesa20.patch: Fixed upstream. Following this, drop
libtool BuildRequires and autoreconf call, no longer needed.
==== conmon ====
Version update (2.0.16 -> 2.0.17)
- Update to v2.0.17
- Add option to delay execution of exit command
==== dracut ====
Version update (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
Subpackages: dracut-ima
- Update to version 050+suse.66.g76431c83:
* 95iscsi: fix missing space when compiling cmdline args (bsc#1172816)
==== ffmpeg-4 ====
Version update (4.2.2 -> 4.2.3)
Subpackages: libavcodec58 libavformat58 libavutil56 libswresample3
- Update to version 4.2.3:
* Stable bug fix release, mainly codecs and format fixes.
- Drop 0001-avcodec-cbs_jpeg-Check-length-for-SOS.patch: Fixed
upstream.
==== fonts-config ====
Version update (20190119 -> 20200609+git0.42e2b1b)
- Add a _service file
- Add code in %post to check the value of
FORCE_MODIFY_DEFAULT_FONT_SETTINGS_IN_NEXT_UPDATE and if it's
set to yes, empty or it doesn't exist, then update the values
of FORCE_HINTSTYLE, USE_LCDFILTER and USE_RGBA in
/etc/sysconfig/fonts-config to use the default settings
established in the 20181211 release (boo#1172022)
- Update to 20200609+git0.42e2b1b:
* Add variable to allow fonts-config to update default settings
* Fix en-US, en-GB font matching
==== ghostscript-fonts ====
Subpackages: ghostscript-fonts-other ghostscript-fonts-std
- Add a ghostscript-fonts-std-converted subpackage with fonts from
ghostscript-fonts-std converted to TrueType format (boo#1169444)
==== gmp ====
- correct license statement (library itself is no GPL-3.0)
==== gnome-software ====
- Add gnome-software-failed-offline-update-notification.patch:
plugin-loader: handle offline update errors properly(bsc#1161095,
glgo#GNOME/gnome-software!471).
==== gnutls ====
Version update (3.6.13 -> 3.6.14)
- Fix a memory leak that could lead to a DoS attack against Samba
servers (bsc#1172663)
* add 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
- Temporarily disable broken guile reauth test (bsc#1171565)
* add gnutls-temporarily_disable_broken_guile_reauth_test
- Update to 3.6.14
* libgnutls: Fixed insecure session ticket key construction, since 3.6.4.
The TLS server would not bind the session ticket encryption key with a
value supplied by the application until the initial key rotation, allowing
attacker to bypass authentication in TLS 1.3 and recover previous
conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777)
[GNUTLS-SA-2020-06-03, CVSS: high]
* libgnutls: Fixed handling of certificate chain with cross-signed
intermediate CA certificates (#1008). (bsc#1172461)
* libgnutls: Fixed reception of empty session ticket under TLS 1.2 (#997).
* libgnutls: gnutls_x509_crt_print() is enhanced to recognizes commonName
(2.5.4.3), decodes certificate policy OIDs (!1245), and prints Authority
Key Identifier (AKI) properly (#989, #991).
* certtool: PKCS #7 attributes are now printed with symbolic names (!1246).
* libgnutls: Use accelerated AES-XTS implementation if possible (!1244).
Also both accelerated and non-accelerated implementations check key block
according to FIPS-140-2 IG A.9 (!1233).
* libgnutls: Added support for AES-SIV ciphers (#463).
* libgnutls: Added support for 192-bit AES-GCM cipher (!1267).
* libgnutls: No longer use internal symbols exported from Nettle (!1235)
* API and ABI modifications:
GNUTLS_CIPHER_AES_128_SIV: Added
GNUTLS_CIPHER_AES_256_SIV: Added
GNUTLS_CIPHER_AES_192_GCM: Added
gnutls_pkcs7_print_signature_info: Added
- Add key D605848ED7E69871: public key "Daiki Ueno <ueno(a)unixuser.org>" to
the keyring
- Drop gnutls-fips_correct_nettle_soversion.patch (upstream)
==== gstreamer ====
Subpackages: libgstreamer-1_0-0
- adjust / ship more 32bit stuff for Wine usage (bsc#1172304)
==== hunspell ====
- security update
- added patches
fix CVE-2019-16707 [bsc#1151867], invalid read operation in SuggestMgr:leftcommonsubstring in suggestmgr.cxx
+ hunspell-CVE-2019-16707.patch
==== hwdata ====
Version update (0.335 -> 0.336)
- Update to version 0.336:
+ Updated pci, usb and vendor ids.
==== icu ====
Subpackages: libicu67 libicu67-ledata
- Add the provides for libicu to Make .Net core can install
successfully. (bsc#1167603, bsc#1161007)
==== installation-images-MicroOS ====
Version update (15.4 -> 15.5)
- merge gh#openSUSE/installation-images#384
- Add missed file to instsys. bsc#1158522 [Build 101.1] openQA test
fails in windows_client_remotelogin
- 15.5
==== kernel-64kb ====
Version update (5.6.14 -> 5.7.1)
- syscalls: fix offset type of ksys_ftruncate (bsc#1172699).
- commit 8d4977c
- armv7/ararch64: Update config files.
Enable IOMMU_DEFAULT_PASSTHROUGH; per jsc#SLE-5568 this should be on by
default, like on x86_64.
- commit bb34387
- Refresh
patches.suse/jbd2-avoid-leaking-transaction-credits-when-unreserv.patch.
Update upstream status.
- commit c3ae43f
- KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be
generated (bsc#1171904).
- KVM: x86: only do L1TF workaround on affected processors
(bsc#1171904).
- commit 16721c7
- Linux 5.7.1 (bnc#1012628).
- airo: Fix read overflows sending packets (bnc#1012628).
- net: dsa: mt7530: set CPU port to fallback mode (bnc#1012628).
- media: staging: ipu3-imgu: Move alignment attribute to field
(bnc#1012628).
- media: Revert "staging: imgu: Address a compiler warning on
alignment" (bnc#1012628).
- mmc: fix compilation of user API (bnc#1012628).
- kernel/relay.c: handle alloc_percpu returning NULL in relay_open
(bnc#1012628).
- crypto: api - Fix use-after-free and race in crypto_spawn_alg
(bnc#1012628).
- mt76: mt76x02u: Add support for newer versions of the XBox
One wifi adapter (bnc#1012628).
- p54usb: add AirVasT USB stick device-id (bnc#1012628).
- HID: i2c-hid: add Schneider SCL142ALM to descriptor override
(bnc#1012628).
- HID: multitouch: enable multi-input as a quirk for some devices
(bnc#1012628).
- HID: sony: Fix for broken buttons on DS3 USB dongles
(bnc#1012628).
- mm: Fix mremap not considering huge pmd devmap (bnc#1012628).
- media: dvbdev: Fix tuner->demod media controller link
(bnc#1012628).
- commit cc2f849
- config: refresh with gcc10
gcc10 is default in Tumbleweed now.
- commit 0b1e86b
- Revert "Update config files."
This reverts commit 34be040b91701c047e592935bc2dbb46a3947a56. We now
have a fix (previous commit) in place, so change the configuration back
(bsc#1156053).
- commit f4546fe
- usercopy: mark dma-kmalloc caches as usercopy caches
(bsc#1156053).
- commit d3b5ce7
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- commit 8599ef4
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- Delete
patches.suse/Revert-ext4-make-dioread_nolock-the-default.patch.
Replace revert by the upstream fix.
- commit bfa465b
- Refresh
patches.suse/drm-nouveau-Fix-regression-by-audio-component-transition.patch.
Update upstream status.
- commit 3000ce5
- config: enable DEBUG_INFO_BTF
This was disabled when the option was introduced in 5.2-rc1 but it turned
out there are interesting use cases for having it enabled.
Add pahole to build time dependencies as it is used to extracth the BTF
data. Once we figure out how to make it conditional (only if DEBUG_INFO_BTF
exists and is enabled), it should be done in packaging branch.
- commit 9ddab66
- Updated to 5.7 final
- refresh configs
- commit 7cd0da5
- Update config files.
- commit 6dba057
- Revert "virtio-balloon: Revert "virtio-balloon: Switch back to
OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" (virtio fix).
- commit fe7831e
- Linux 5.6.15 (bnc#1012628).
- blacklist.conf: remove one entry
- sched/fair: Fix enqueue_task_fair() warning some more
(bnc#1012628).
- sched/fair: Fix reordering of enqueue/dequeue_task_fair()
(bnc#1012628).
- sched/fair: Reorder enqueue/dequeue_task_fair path
(bnc#1012628).
- bpf: Prevent mmap()'ing read-only maps as writable
(bnc#1012628).
- rxrpc: Fix ack discard (bnc#1012628).
- rxrpc: Trace discarded ACKs (bnc#1012628).
- x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive
tasks (bnc#1012628).
- flow_dissector: Drop BPF flow dissector prog ref on netns
cleanup (bnc#1012628).
- s390/kexec_file: fix initrd location for kdump kernel
(bnc#1012628).
- tpm: check event log version before reading final events
(bnc#1012628).
- rxrpc: Fix a memory leak in rxkad_verify_response()
(bnc#1012628).
- rxrpc: Fix the excessive initial retransmission timeout
(bnc#1012628).
- iio: imu: st_lsm6dsx: unlock on error in
st_lsm6dsx_shub_write_raw() (bnc#1012628).
- z3fold: fix use-after-free when freeing handles (bnc#1012628).
- sparc32: fix page table traversal in srmmu_nocache_init()
(bnc#1012628).
- sparc32: use PUD rather than PGD to get PMD in
srmmu_nocache_init() (bnc#1012628).
- sh: include linux/time_types.h for sockios (bnc#1012628).
- kasan: disable branch tracing for core runtime (bnc#1012628).
- rapidio: fix an error in get_user_pages_fast() error handling
(bnc#1012628).
- device-dax: don't leak kernel memory to user space after
unloading kmem (bnc#1012628).
- s390/kaslr: add support for R_390_JMP_SLOT relocation type
(bnc#1012628).
- s390/pci: Fix s390_mmio_read/write with MIO (bnc#1012628).
- ipack: tpci200: fix error return code in tpci200_register()
(bnc#1012628).
- mei: release me_cl object reference (bnc#1012628).
- tty: serial: add missing spin_lock_init for SiFive serial
console (bnc#1012628).
- misc: rtsx: Add short delay after exit from ASPM (bnc#1012628).
- driver core: Fix handling of SYNC_STATE_ONLY + STATELESS device
links (bnc#1012628).
- driver core: Fix SYNC_STATE_ONLY device link implementation
(bnc#1012628).
- iio: adc: ti-ads8344: Fix channel selection (bnc#1012628).
- iio: dac: vf610: Fix an error handling path in
'vf610_dac_probe()' (bnc#1012628).
- iio: sca3000: Remove an erroneous 'get_device()' (bnc#1012628).
- iio: adc: stm32-dfsdm: fix device used to request dma
(bnc#1012628).
- iio: adc: stm32-adc: fix device used to request dma
(bnc#1012628).
- staging: greybus: Fix uninitialized scalar variable
(bnc#1012628).
- staging: kpc2000: fix error return code in kp2000_pcie_probe()
(bnc#1012628).
- staging: wfx: unlock on error path (bnc#1012628).
- staging: iio: ad2s1210: Fix SPI reading (bnc#1012628).
- kbuild: Remove debug info from kallsyms linking (bnc#1012628).
- tools/bootconfig: Fix apply_xbc() to return zero on success
(bnc#1012628).
- Revert "driver core: platform: Initialize dma_parms for platform
devices" (bnc#1012628).
- virtio-balloon: Revert "virtio-balloon: Switch back to OOM
handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM" (bnc#1012628).
- Revert "gfs2: Don't demote a glock until its revokes are
written" (bnc#1012628).
- drm/i915: Propagate error from completed fences (bnc#1012628).
- drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead
of inheritance (bnc#1012628).
- vsprintf: don't obfuscate NULL and error pointers (bnc#1012628).
- dmaengine: owl: Use correct lock in owl_dma_get_pchan()
(bnc#1012628).
- dmaengine: idxd: fix interrupt completion after unmasking
(bnc#1012628).
- dmaengine: dmatest: Restore default for channel (bnc#1012628).
- drm/etnaviv: Fix a leak in submit_pin_objects() (bnc#1012628).
- dmaengine: tegra210-adma: Fix an error handling path in
'tegra_adma_probe()' (bnc#1012628).
- apparmor: Fix aa_label refcnt leak in policy_update
(bnc#1012628).
- apparmor: fix potential label refcnt leak in aa_change_profile
(bnc#1012628).
- apparmor: Fix use-after-free in aa_audit_rule_init
(bnc#1012628).
- pinctrl: qcom: Add affinity callbacks to msmgpio IRQ chip
(bnc#1012628).
- drm/etnaviv: fix perfmon domain interation (bnc#1012628).
- powerpc/64s: Disable STRICT_KERNEL_RWX (bnc#1012628).
- arm64: Fix PTRACE_SYSEMU semantics (bnc#1012628).
- scsi: target: Put lun_ref at end of tmr processing
(bnc#1012628).
- scsi: qla2xxx: Do not log message when reading port speed via
sysfs (bnc#1012628).
- ALSA: hda/realtek - Add more fixup entries for Clevo machines
(bnc#1012628).
- ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus
Xtreme (bnc#1012628).
- ALSA: pcm: fix incorrect hw_base increase (bnc#1012628).
- ALSA: iec1712: Initialize STDSP24 properly when using the
model=staudio option (bnc#1012628).
- bpf: Add bpf_probe_read_{user, kernel}_str() to
do_refine_retval_range (bnc#1012628).
- bpf: Restrict bpf_probe_read{, str}() only to archs where they
work (bnc#1012628).
- Update config files.
- ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with
ALC295 (bnc#1012628).
- ALSA: hda/realtek: Add quirk for Samsung Notebook (bnc#1012628).
- ALSA: hda/realtek - Add HP new mute led supported for ALC236
(bnc#1012628).
- ALSA: hda/realtek - Add supported new mute Led for HP
(bnc#1012628).
- scripts/gdb: repair rb_first() and rb_last() (bnc#1012628).
- tools/bootconfig: Fix resource leak in apply_xbc()
(bnc#1012628).
- ARM: futex: Address build warning (bnc#1012628).
- KVM: selftests: Fix build for evmcs.h (bnc#1012628).
- drm/amd/display: Prevent dpcd reads with passive dongles
(bnc#1012628).
- drm/amd/display: fix counter in wait_for_no_pipes_pending
(bnc#1012628).
- iommu/amd: Call domain_flush_complete() in update_domain()
(bnc#1012628).
- iommu/amd: Do not loop forever when trying to increase address
space (bnc#1012628).
- platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
(bnc#1012628).
- USB: core: Fix misleading driver bug report (bnc#1012628).
- stmmac: fix pointer check after utilization in stmmac_interrupt
(bnc#1012628).
- ceph: fix double unlock in handle_cap_export() (bnc#1012628).
- HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A
keyboard-dock (bnc#1012628).
- gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() (bnc#1012628).
- x86/apic: Move TSC deadline timer debug printk (bnc#1012628).
- selftests: fix kvm relocatable native/cross builds and installs
(bnc#1012628).
- ftrace/selftest: make unresolved cases cause failure if
- -fail-unresolved set (bnc#1012628).
- ibmvnic: Skip fatal error reset after passive init
(bnc#1012628).
- HID: i2c-hid: reset Synaptics SYNA2393 on resume (bnc#1012628).
- scsi: ibmvscsi: Fix WARN_ON during event pool release
(bnc#1012628).
- net/ena: Fix build warning in ena_xdp_set() (bnc#1012628).
- component: Silence bind error on -EPROBE_DEFER (bnc#1012628).
- aquantia: Fix the media type of AQC100 ethernet controller in
the driver (bnc#1012628).
- vhost/vsock: fix packet delivery order to monitoring devices
(bnc#1012628).
- configfs: fix config_item refcnt leak in configfs_rmdir()
(bnc#1012628).
- scsi: qla2xxx: Delete all sessions before unregister local
nvme port (bnc#1012628).
- scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
(bnc#1012628).
- HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY
instead (bnc#1012628).
- HID: alps: Add AUI1657 device ID (bnc#1012628).
- HID: logitech: Add support for Logitech G11 extra keys
(bnc#1012628).
- HID: multitouch: add eGalaxTouch P80H84 support (bnc#1012628).
- gcc-common.h: Update for GCC 10 (bnc#1012628).
- net: drop_monitor: use IS_REACHABLE() to guard
net_dm_hw_report() (bnc#1012628).
- kbuild: avoid concurrency issue in parallel building dtbs and
dtbs_check (bnc#1012628).
- iommu: Fix deferred domain attachment (bnc#1012628).
- mtd: Fix mtd not registered due to nvmem name collision
(bnc#1012628).
- afs: Don't unlock fetched data pages until the op completes
successfully (bnc#1012628).
- ubi: Fix seq_file usage in detailed_erase_block_info debugfs
file (bnc#1012628).
- i2c: mux: demux-pinctrl: Fix an error handling path in
'i2c_demux_pinctrl_probe()' (bnc#1012628).
- evm: Fix a small race in init_desc() (bnc#1012628).
- iommu/amd: Fix get_acpihid_device_id() (bnc#1012628).
- iommu/amd: Fix over-read of ACPI UID from IVRS table
(bnc#1012628).
- i2c: fix missing pm_runtime_put_sync in i2c_device_probe
(bnc#1012628).
- ubifs: remove broken lazytime support (bnc#1012628).
- pipe: Fix pipe_full() test in opipe_prep() (bnc#1012628).
- fix multiplication overflow in copy_fdtable() (bnc#1012628).
- mtd: spinand: Propagate ECC information to the MTD structure
(bnc#1012628).
- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
(bnc#1012628).
- ubifs: fix wrong use of crypto_shash_descsize() (bnc#1012628).
- ovl: potential crash in ovl_fid_to_fh() (bnc#1012628).
- ima: Fix return value of ima_write_policy() (bnc#1012628).
- evm: Check also if *tfm is an error pointer in init_desc()
(bnc#1012628).
- ima: Set file->f_mode instead of file->f_flags in
ima_calc_file_hash() (bnc#1012628).
- ARC: [plat-hsdk]: fix USB regression (bnc#1012628).
- i2c: dev: Fix the race between the release of i2c_dev and cdev
(bnc#1012628).
- commit 5afc154
- Update config files.
Remove ACPI_PROCFS_POWER
This should all be in sysfs nowadays. If this is in Tumbleweed for a while,
a patch to totally remove this code will be sent mainline.
Related to bsc#1160977
- commit 96731f2
- rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073).
- commit 6524463
- Update to 5.7-rc7
- refresh configs (ARCH_HAS_STRICT_KERNEL_RWX=n on ppc64/ppc64le)
- commit 67f7fb5
==== kernel-source ====
Version update (5.6.14 -> 5.7.1)
- syscalls: fix offset type of ksys_ftruncate (bsc#1172699).
- commit 8d4977c
- armv7/ararch64: Update config files.
Enable IOMMU_DEFAULT_PASSTHROUGH; per jsc#SLE-5568 this should be on by
default, like on x86_64.
- commit bb34387
- Refresh
patches.suse/jbd2-avoid-leaking-transaction-credits-when-unreserv.patch.
Update upstream status.
- commit c3ae43f
- KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be
generated (bsc#1171904).
- KVM: x86: only do L1TF workaround on affected processors
(bsc#1171904).
- commit 16721c7
- Linux 5.7.1 (bnc#1012628).
- airo: Fix read overflows sending packets (bnc#1012628).
- net: dsa: mt7530: set CPU port to fallback mode (bnc#1012628).
- media: staging: ipu3-imgu: Move alignment attribute to field
(bnc#1012628).
- media: Revert "staging: imgu: Address a compiler warning on
alignment" (bnc#1012628).
- mmc: fix compilation of user API (bnc#1012628).
- kernel/relay.c: handle alloc_percpu returning NULL in relay_open
(bnc#1012628).
- crypto: api - Fix use-after-free and race in crypto_spawn_alg
(bnc#1012628).
- mt76: mt76x02u: Add support for newer versions of the XBox
One wifi adapter (bnc#1012628).
- p54usb: add AirVasT USB stick device-id (bnc#1012628).
- HID: i2c-hid: add Schneider SCL142ALM to descriptor override
(bnc#1012628).
- HID: multitouch: enable multi-input as a quirk for some devices
(bnc#1012628).
- HID: sony: Fix for broken buttons on DS3 USB dongles
(bnc#1012628).
- mm: Fix mremap not considering huge pmd devmap (bnc#1012628).
- media: dvbdev: Fix tuner->demod media controller link
(bnc#1012628).
- commit cc2f849
- config: refresh with gcc10
gcc10 is default in Tumbleweed now.
- commit 0b1e86b
- Revert "Update config files."
This reverts commit 34be040b91701c047e592935bc2dbb46a3947a56. We now
have a fix (previous commit) in place, so change the configuration back
(bsc#1156053).
- commit f4546fe
- usercopy: mark dma-kmalloc caches as usercopy caches
(bsc#1156053).
- commit d3b5ce7
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- commit 8599ef4
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- Delete
patches.suse/Revert-ext4-make-dioread_nolock-the-default.patch.
Replace revert by the upstream fix.
- commit bfa465b
- Refresh
patches.suse/drm-nouveau-Fix-regression-by-audio-component-transition.patch.
Update upstream status.
- commit 3000ce5
- config: enable DEBUG_INFO_BTF
This was disabled when the option was introduced in 5.2-rc1 but it turned
out there are interesting use cases for having it enabled.
Add pahole to build time dependencies as it is used to extracth the BTF
data. Once we figure out how to make it conditional (only if DEBUG_INFO_BTF
exists and is enabled), it should be done in packaging branch.
- commit 9ddab66
- Updated to 5.7 final
- refresh configs
- commit 7cd0da5
- Update config files.
- commit 6dba057
- Revert "virtio-balloon: Revert "virtio-balloon: Switch back to
OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" (virtio fix).
- commit fe7831e
- Linux 5.6.15 (bnc#1012628).
- blacklist.conf: remove one entry
- sched/fair: Fix enqueue_task_fair() warning some more
(bnc#1012628).
- sched/fair: Fix reordering of enqueue/dequeue_task_fair()
(bnc#1012628).
- sched/fair: Reorder enqueue/dequeue_task_fair path
(bnc#1012628).
- bpf: Prevent mmap()'ing read-only maps as writable
(bnc#1012628).
- rxrpc: Fix ack discard (bnc#1012628).
- rxrpc: Trace discarded ACKs (bnc#1012628).
- x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive
tasks (bnc#1012628).
- flow_dissector: Drop BPF flow dissector prog ref on netns
cleanup (bnc#1012628).
- s390/kexec_file: fix initrd location for kdump kernel
(bnc#1012628).
- tpm: check event log version before reading final events
(bnc#1012628).
- rxrpc: Fix a memory leak in rxkad_verify_response()
(bnc#1012628).
- rxrpc: Fix the excessive initial retransmission timeout
(bnc#1012628).
- iio: imu: st_lsm6dsx: unlock on error in
st_lsm6dsx_shub_write_raw() (bnc#1012628).
- z3fold: fix use-after-free when freeing handles (bnc#1012628).
- sparc32: fix page table traversal in srmmu_nocache_init()
(bnc#1012628).
- sparc32: use PUD rather than PGD to get PMD in
srmmu_nocache_init() (bnc#1012628).
- sh: include linux/time_types.h for sockios (bnc#1012628).
- kasan: disable branch tracing for core runtime (bnc#1012628).
- rapidio: fix an error in get_user_pages_fast() error handling
(bnc#1012628).
- device-dax: don't leak kernel memory to user space after
unloading kmem (bnc#1012628).
- s390/kaslr: add support for R_390_JMP_SLOT relocation type
(bnc#1012628).
- s390/pci: Fix s390_mmio_read/write with MIO (bnc#1012628).
- ipack: tpci200: fix error return code in tpci200_register()
(bnc#1012628).
- mei: release me_cl object reference (bnc#1012628).
- tty: serial: add missing spin_lock_init for SiFive serial
console (bnc#1012628).
- misc: rtsx: Add short delay after exit from ASPM (bnc#1012628).
- driver core: Fix handling of SYNC_STATE_ONLY + STATELESS device
links (bnc#1012628).
- driver core: Fix SYNC_STATE_ONLY device link implementation
(bnc#1012628).
- iio: adc: ti-ads8344: Fix channel selection (bnc#1012628).
- iio: dac: vf610: Fix an error handling path in
'vf610_dac_probe()' (bnc#1012628).
- iio: sca3000: Remove an erroneous 'get_device()' (bnc#1012628).
- iio: adc: stm32-dfsdm: fix device used to request dma
(bnc#1012628).
- iio: adc: stm32-adc: fix device used to request dma
(bnc#1012628).
- staging: greybus: Fix uninitialized scalar variable
(bnc#1012628).
- staging: kpc2000: fix error return code in kp2000_pcie_probe()
(bnc#1012628).
- staging: wfx: unlock on error path (bnc#1012628).
- staging: iio: ad2s1210: Fix SPI reading (bnc#1012628).
- kbuild: Remove debug info from kallsyms linking (bnc#1012628).
- tools/bootconfig: Fix apply_xbc() to return zero on success
(bnc#1012628).
- Revert "driver core: platform: Initialize dma_parms for platform
devices" (bnc#1012628).
- virtio-balloon: Revert "virtio-balloon: Switch back to OOM
handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM" (bnc#1012628).
- Revert "gfs2: Don't demote a glock until its revokes are
written" (bnc#1012628).
- drm/i915: Propagate error from completed fences (bnc#1012628).
- drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead
of inheritance (bnc#1012628).
- vsprintf: don't obfuscate NULL and error pointers (bnc#1012628).
- dmaengine: owl: Use correct lock in owl_dma_get_pchan()
(bnc#1012628).
- dmaengine: idxd: fix interrupt completion after unmasking
(bnc#1012628).
- dmaengine: dmatest: Restore default for channel (bnc#1012628).
- drm/etnaviv: Fix a leak in submit_pin_objects() (bnc#1012628).
- dmaengine: tegra210-adma: Fix an error handling path in
'tegra_adma_probe()' (bnc#1012628).
- apparmor: Fix aa_label refcnt leak in policy_update
(bnc#1012628).
- apparmor: fix potential label refcnt leak in aa_change_profile
(bnc#1012628).
- apparmor: Fix use-after-free in aa_audit_rule_init
(bnc#1012628).
- pinctrl: qcom: Add affinity callbacks to msmgpio IRQ chip
(bnc#1012628).
- drm/etnaviv: fix perfmon domain interation (bnc#1012628).
- powerpc/64s: Disable STRICT_KERNEL_RWX (bnc#1012628).
- arm64: Fix PTRACE_SYSEMU semantics (bnc#1012628).
- scsi: target: Put lun_ref at end of tmr processing
(bnc#1012628).
- scsi: qla2xxx: Do not log message when reading port speed via
sysfs (bnc#1012628).
- ALSA: hda/realtek - Add more fixup entries for Clevo machines
(bnc#1012628).
- ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus
Xtreme (bnc#1012628).
- ALSA: pcm: fix incorrect hw_base increase (bnc#1012628).
- ALSA: iec1712: Initialize STDSP24 properly when using the
model=staudio option (bnc#1012628).
- bpf: Add bpf_probe_read_{user, kernel}_str() to
do_refine_retval_range (bnc#1012628).
- bpf: Restrict bpf_probe_read{, str}() only to archs where they
work (bnc#1012628).
- Update config files.
- ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with
ALC295 (bnc#1012628).
- ALSA: hda/realtek: Add quirk for Samsung Notebook (bnc#1012628).
- ALSA: hda/realtek - Add HP new mute led supported for ALC236
(bnc#1012628).
- ALSA: hda/realtek - Add supported new mute Led for HP
(bnc#1012628).
- scripts/gdb: repair rb_first() and rb_last() (bnc#1012628).
- tools/bootconfig: Fix resource leak in apply_xbc()
(bnc#1012628).
- ARM: futex: Address build warning (bnc#1012628).
- KVM: selftests: Fix build for evmcs.h (bnc#1012628).
- drm/amd/display: Prevent dpcd reads with passive dongles
(bnc#1012628).
- drm/amd/display: fix counter in wait_for_no_pipes_pending
(bnc#1012628).
- iommu/amd: Call domain_flush_complete() in update_domain()
(bnc#1012628).
- iommu/amd: Do not loop forever when trying to increase address
space (bnc#1012628).
- platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
(bnc#1012628).
- USB: core: Fix misleading driver bug report (bnc#1012628).
- stmmac: fix pointer check after utilization in stmmac_interrupt
(bnc#1012628).
- ceph: fix double unlock in handle_cap_export() (bnc#1012628).
- HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A
keyboard-dock (bnc#1012628).
- gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() (bnc#1012628).
- x86/apic: Move TSC deadline timer debug printk (bnc#1012628).
- selftests: fix kvm relocatable native/cross builds and installs
(bnc#1012628).
- ftrace/selftest: make unresolved cases cause failure if
- -fail-unresolved set (bnc#1012628).
- ibmvnic: Skip fatal error reset after passive init
(bnc#1012628).
- HID: i2c-hid: reset Synaptics SYNA2393 on resume (bnc#1012628).
- scsi: ibmvscsi: Fix WARN_ON during event pool release
(bnc#1012628).
- net/ena: Fix build warning in ena_xdp_set() (bnc#1012628).
- component: Silence bind error on -EPROBE_DEFER (bnc#1012628).
- aquantia: Fix the media type of AQC100 ethernet controller in
the driver (bnc#1012628).
- vhost/vsock: fix packet delivery order to monitoring devices
(bnc#1012628).
- configfs: fix config_item refcnt leak in configfs_rmdir()
(bnc#1012628).
- scsi: qla2xxx: Delete all sessions before unregister local
nvme port (bnc#1012628).
- scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
(bnc#1012628).
- HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY
instead (bnc#1012628).
- HID: alps: Add AUI1657 device ID (bnc#1012628).
- HID: logitech: Add support for Logitech G11 extra keys
(bnc#1012628).
- HID: multitouch: add eGalaxTouch P80H84 support (bnc#1012628).
- gcc-common.h: Update for GCC 10 (bnc#1012628).
- net: drop_monitor: use IS_REACHABLE() to guard
net_dm_hw_report() (bnc#1012628).
- kbuild: avoid concurrency issue in parallel building dtbs and
dtbs_check (bnc#1012628).
- iommu: Fix deferred domain attachment (bnc#1012628).
- mtd: Fix mtd not registered due to nvmem name collision
(bnc#1012628).
- afs: Don't unlock fetched data pages until the op completes
successfully (bnc#1012628).
- ubi: Fix seq_file usage in detailed_erase_block_info debugfs
file (bnc#1012628).
- i2c: mux: demux-pinctrl: Fix an error handling path in
'i2c_demux_pinctrl_probe()' (bnc#1012628).
- evm: Fix a small race in init_desc() (bnc#1012628).
- iommu/amd: Fix get_acpihid_device_id() (bnc#1012628).
- iommu/amd: Fix over-read of ACPI UID from IVRS table
(bnc#1012628).
- i2c: fix missing pm_runtime_put_sync in i2c_device_probe
(bnc#1012628).
- ubifs: remove broken lazytime support (bnc#1012628).
- pipe: Fix pipe_full() test in opipe_prep() (bnc#1012628).
- fix multiplication overflow in copy_fdtable() (bnc#1012628).
- mtd: spinand: Propagate ECC information to the MTD structure
(bnc#1012628).
- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
(bnc#1012628).
- ubifs: fix wrong use of crypto_shash_descsize() (bnc#1012628).
- ovl: potential crash in ovl_fid_to_fh() (bnc#1012628).
- ima: Fix return value of ima_write_policy() (bnc#1012628).
- evm: Check also if *tfm is an error pointer in init_desc()
(bnc#1012628).
- ima: Set file->f_mode instead of file->f_flags in
ima_calc_file_hash() (bnc#1012628).
- ARC: [plat-hsdk]: fix USB regression (bnc#1012628).
- i2c: dev: Fix the race between the release of i2c_dev and cdev
(bnc#1012628).
- commit 5afc154
- Update config files.
Remove ACPI_PROCFS_POWER
This should all be in sysfs nowadays. If this is in Tumbleweed for a while,
a patch to totally remove this code will be sent mainline.
Related to bsc#1160977
- commit 96731f2
- rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073).
- commit 6524463
- Update to 5.7-rc7
- refresh configs (ARCH_HAS_STRICT_KERNEL_RWX=n on ppc64/ppc64le)
- commit 67f7fb5
==== konsole ====
Subpackages: konsole-part
- Add upstream patches to fix possible crash when closing a session
in KonsolePart (boo#1169408, kde#420817, kde#420695, kde#415762):
* Fix-crash-when-closing-session-in-KonsolePart-via-menu.patch
* Fix-konsolepart-segfault-when-closing-after-showing-context-menu.patch
==== krb5 ====
Version update (1.18.1 -> 1.18.2)
- Update to 1.18.2
* Fix a SPNEGO regression where an acceptor using the default credential
would improperly filter mechanisms, causing a negotiation failure.
* Fix a bug where the KDC would fail to issue tickets if the local krbtgt
principal's first key has a single-DES enctype.
* Add stub functions to allow old versions of OpenSSL libcrypto to link
against libkrb5.
* Fix a NegoEx bug where the client name and delegated credential might
not be reported.
- Update logrotate script, call systemd to reload the services
instead of init-scripts. (boo#1169357)
- Don't add the lto flags to the public link options. (boo#1172038)
==== ksysguard5 ====
Version update (5.19.0 -> 5.19.0.1)
- Update to 5.19.0.1
* New bugfix release
- Changes since 5.19.0:
* Use new name for dbus interface too
* Don't prefix value output with mount point
==== libgpg-error ====
Version update (1.37 -> 1.38)
- Update to 1.38:
* New option parser features to implement system wide
configuration files
* New functions to build file names
* New function to help reallocating arrays
* Protect gpgrt_inc_errorcount against counter overflow
- drop needless autotools build dependencies that were added for
gawk5.patch
==== libjcat ====
Version update (0.1.2 -> 0.1.2+3)
- Update to version 0.1.2+3:
* Validate that gpgme_op_verify_result() returned at least one
signature (CVE-2020-10759).
==== libksysguard5 ====
Version update (5.19.0 -> 5.19.0.1)
Subpackages: libksysguard5-helper libksysguard5-imports
- Update to 5.19.0.1
* New bugfix release
- Changes since 5.19.0:
* Use new name for dbus interface
==== libnftnl ====
Version update (1.1.6 -> 1.1.7)
- Update to release 1.1.7
* udata: add NFTNL_UDATA_SET_DATA_INTERVAL
==== libosinfo ====
Version update (1.7.1 -> 1.8.0)
Subpackages: libosinfo-1_0-0
- Update to version 1.8.0
Changes in this release include:
* Several CI improvements
* Several release scripts improvements
* Several translations improvements
* Several syntax-check improvements
* Code cleanup in order to modernize the GObject usage
* Add API to get whether a firmware is supported or not
* Add API to get "cloud-image-username"
==== libqt5-qtbase ====
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5
- Add patch to fix tool menu placement (boo#1172754, QTBUG-84462):
* 0001-Fix-QToolButton-menus-showing-on-primary-screens-in-.patch
==== librsvg ====
Version update (2.48.4 -> 2.48.7)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 typelib-1_0-Rsvg-2_0
- Update to version 2.48.7:
+ Fix failing tests.
- Update to version 2.48.6:
+ Fix build on big-endian machines.
- Update to version 2.48.5:
+ Support multiple fonts in the font-family property. Previously
in font-family="Foo, Bar, Baz" only Foo would get used.
+ Catch overflow when rendering files with a huge viewBox.
+ Don't panic with an empty objectBoundingBox for a mask.
+ Fix introspection data for rsvg_handle_set_stylesheet.
+ Fixes to the librsvg_crate documentation.
+ Loading raster images for inclusion in an SVG and producing
GdkPixbufs is now faster.
==== libseccomp ====
Version update (2.4.2 -> 2.4.3)
- Update to release 2.4.3
* Add list of authorized release signatures to README.md
* Fix multiplexing issue with s390/s390x shm* syscalls
* Remove the static flag from libseccomp tools compilation
* Add define for __SNR_ppoll
* Fix potential memory leak identified by clang in the
scmp_bpf_sim tool
- Drop no-static.diff, libseccomp-fix_aarch64-test.patch,
SNR_ppoll.patch (merged)
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Fix invalid xmlns references since the fix for CVE-2019-19956 [bsc#1172021]
- Revert upstream commit 5a02583c7e683896d84878bd90641d8d9b0d0549
* Add patch libxml2-CVE-2019-19956.patch
==== libzip ====
Version update (1.6.1 -> 1.7.0)
- libzip 1.7.0:
* Add support for encrypting using traditional PKWare encryption
* Add functions for querying supported compression and encryption
methods
* Add the ZIP_SOURCE_GET_FILE_ATTRIBUTES` source command
* Refactor stdio file backend
* Add CMake find_project() support
==== mozjs68 ====
Version update (68.7.0 -> 68.9.0)
- Update to version 68.9.0esr:
* CVE-2020-12399: Timing attack on DSA signatures in NSS library
* CVE-2020-12405: Use-after-free in SharedWorkerService
* CVE-2020-12406: JavaScript Type confusion with NativeTypes
* CVE-2020-12410: Memory safety bugs fixed in Firefox 77 and
Firefox ESR 68.9
- Changes from version 68.8.0esr:
* CVE-2020-12387: Use-after-free during worker shutdown
* CVE-2020-12388: Sandbox escape with improperly guarded Access
Tokens
* CVE-2020-12389: Sandbox escape with improperly separated
process types
* CVE-2020-6831: Buffer overflow in SCTP chunk input validation
* CVE-2020-12392: Arbitrary local file access with 'Copy as cURL'
* CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully
escape website-controlled data, potentially leading to command
injection
* CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and
Firefox ESR 68.8
- Drop gcc10-include-fix.patch: Fixed upstream.
- Add Drop_backwards_test-Nuuk.patch: This is now Nuuk in tzdata.
==== multipath-tools ====
Version update (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
Subpackages: kpartx libmpath0
- Update to version 0.8.4+43+suse.908383f:
* enable negated regular expression syntax in conf file
* change default devnode blacklist to
'!^(sd[a-z]|dasd[a-z]|nvme[0-9])'
- Update to version 0.8.4+40+suse.b06c2e5a:
- Fix udev rule processing during coldplug (bsc#1172157)
* 11-dm-mpath.rules: Fix udev rule processing during coldplug
- Fix compilation with gcc-10
* fix boolean value with json-c 0.14
* libmultipath: fix condlog NULL argument in uevent_get_env_var
- Reviewed upstream changes:
* simplify failed_wwid code
* centralize path validation code
- Use pkgconfig for BuildRequires
==== ncurses ====
Version update (6.2.20200502 -> 6.2.20200531)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base
- Add ncurses patch 20200531
+ correct configure version-check/warnng for g++ to allow for 10.x
+ re-enable "bel" in konsole-base (report by Nia Huang)
+ add linux-s entry (patch by Alexandre Montaron).
+ drop long-obsolete convert_configure.pl
+ add test/test_parm.c, for checking tparm changes.
+ improve parameter-checking for tparm, adding function _nc_tiparm() to
handle the most-used case, which accepts only numeric parameters
(report/testcase by "puppet-meteor").
+ use a more conservative estimate of the buffer-size in lib_tparm.c's
save_text() and save_number(), in case the sprintf() function
passes-through unexpected characters from a format specifier
(report/testcase by "puppet-meteor").
+ add a check for end-of-string in cvtchar to handle a malformed
string in infotocap (report/testcase by "puppet-meteor").
- Add ncurses patch 20200523
+ update version-check for gnat to allow for gnat 10.x to 99.x
+ fix an uninitialized variable in lib_mouse.c changes (cf: 20200502)
+ add a check in EmitRange to guard against repeat_char emitting digits
which could be interpreted as BSD-style padding when --enable-bsdpad
is configured (report/patch by Hiltjo Posthuma).
+ add --disable-pkg-ldflags to suppress EXTRA_LDFLAGS from the
generated pkg-config and ncurses*-config files, to simplify
configuring in the case where rpath is used but the packager wants
to hide the feature (report by Michael Stapelberg).
> fixes for building with Visual Studio C++ and msys2 (patches by
"Maarten Anonymous"):
+ modify CF_SHARED_OPTS to generate a script which translates linker
options into Visual Studio's dialect.
+ omit parentheses around function-names in generated lib_gen.c to
- Add ncurses patch 20200516
+ add notes on termcap.h header in curs_termcap.3x
+ update notes on vscode / xterm.js -TD
- Add ncurses patch 20200509
+ add "-r" option to the dots test-programs, to help with scripting
a performance comparison.
+ build-fix test/move_field.c for NetBSD curses, whose form headers
use different names than SVr4 or ncurses.
==== newt ====
- Split doc build into separate spec file
- As the example scripts are "pointless", just don't install them
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Merged in latest upstream. Summary:
* Let initiator name be created by iscsi-init.service.
* iscsi: fix fd leak
* iscsi: Add break to while loop
* Fix compiler complaint about string copy in iscsiuio
* Fix a compiler complaint about writing one byte
* Fix issue with zero-length arrays at end of struct
* Add iscsi-init.service
* Proper disconnect of TCP connection
* Fix SIGPIPE loop in signal handler
* Update iscsi-iname.c
* log:modify iSCSI shared memory permissions for logs
* Ignore iface.example in iface match checks
* More changes for musl.
* Fix type mismatch under musl.
* Change include of <sys/poll.h> to <poll.h>
* iscsi-iname: fix iscsi-iname -p access NULL pointer without given IQN prefix
Note that the "Add iscsi-init.service" change adds a new systemd
service called "iscsi-init", that creates the iSCSI initiator name
file /etc/iscsi/initiatorname.iscsi, if and only if it does not
exist. This obviates the need to do this from the SPEC file, now
updated.
Since this was not a version-number update, in addition to modifying
the SPEC file, also updates:
* open-iscsi-SUSE-latest.diff.bz2
==== openssh ====
Version update (8.1p1 -> 8.3p1)
- Version update to 8.3p1:
= Potentially-incompatible changes
* sftp(1): reject an argument of "-1" in the same way as ssh(1) and
scp(1) do instead of accepting and silently ignoring it.
= New features
* sshd(8): make IgnoreRhosts a tri-state option: "yes" to ignore
rhosts/shosts, "no" allow rhosts/shosts or (new) "shosts-only"
to allow .shosts files but not .rhosts.
* sshd(8): allow the IgnoreRhosts directive to appear anywhere in a
sshd_config, not just before any Match blocks.
* ssh(1): add %TOKEN percent expansion for the LocalFoward and
RemoteForward keywords when used for Unix domain socket forwarding.
* all: allow loading public keys from the unencrypted envelope of a
private key file if no corresponding public key file is present.
* ssh(1), sshd(8): prefer to use chacha20 from libcrypto where
possible instead of the (slower) portable C implementation included
in OpenSSH.
* ssh-keygen(1): add ability to dump the contents of a binary key
revocation list via "ssh-keygen -lQf /path".
- Additional changes from 8.2p1 release:
= Potentially-incompatible changes
* ssh(1), sshd(8), ssh-keygen(1): this release removes the "ssh-rsa"
(RSA/SHA1) algorithm from those accepted for certificate signatures
(i.e. the client and server CASignatureAlgorithms option) and will
use the rsa-sha2-512 signature algorithm by default when the
ssh-keygen(1) CA signs new certificates.
* ssh(1), sshd(8): this release removes diffie-hellman-group14-sha1
from the default key exchange proposal for both the client and
server.
* ssh-keygen(1): the command-line options related to the generation
and screening of safe prime numbers used by the
diffie-hellman-group-exchange-* key exchange algorithms have
changed. Most options have been folded under the -O flag.
* sshd(8): the sshd listener process title visible to ps(1) has
changed to include information about the number of connections that
are currently attempting authentication and the limits configured
by MaxStartups.
* ssh-sk-helper(8): this is a new binary. It is used by the FIDO/U2F
support to provide address-space isolation for token middleware
libraries (including the internal one). It needs to be installed
in the expected path, typically under /usr/libexec or similar.
= New features
* This release adds support for FIDO/U2F hardware authenticators to
OpenSSH. U2F/FIDO are open standards for inexpensive two-factor
authentication hardware that are widely used for website
authentication. In OpenSSH FIDO devices are supported by new public
key types "ecdsa-sk" and "ed25519-sk", along with corresponding
certificate types.
* sshd(8): add an Include sshd_config keyword that allows including
additional configuration files via glob(3) patterns.
* ssh(1)/sshd(8): make the LE (low effort) DSCP code point available
via the IPQoS directive.
* ssh(1): when AddKeysToAgent=yes is set and the key contains no
comment, add the key to the agent with the key's path as the
comment.
* ssh-keygen(1), ssh-agent(1): expose PKCS#11 key labels and X.509
subjects as key comments, rather than simply listing the PKCS#11
provider library path.
* ssh-keygen(1): allow PEM export of DSA and ECDSA keys.
* ssh(1), sshd(8): make zlib compile-time optional, available via the
Makefile.inc ZLIB flag on OpenBSD or via the --with-zlib configure
option for OpenSSH portable.
* sshd(8): when clients get denied by MaxStartups, send a
notification prior to the SSH2 protocol banner according to
RFC4253 section 4.2.
* ssh(1), ssh-agent(1): when invoking the $SSH_ASKPASS prompt
program, pass a hint to the program to describe the type of
desired prompt. The possible values are "confirm" (indicating
that a yes/no confirmation dialog with no text entry should be
shown), "none" (to indicate an informational message only), or
blank for the original ssh-askpass behaviour of requesting a
password/phrase.
* ssh(1): allow forwarding a different agent socket to the path
specified by $SSH_AUTH_SOCK, by extending the existing ForwardAgent
option to accepting an explicit path or the name of an environment
variable in addition to yes/no.
* ssh-keygen(1): add a new signature operations "find-principals" to
look up the principal associated with a signature from an allowed-
signers file.
* sshd(8): expose the number of currently-authenticating connections
along with the MaxStartups limit in the process title visible to
"ps".
- Rebased patches:
* openssh-7.7p1-cavstest-ctr.patch
* openssh-7.7p1-cavstest-kdf.patch
* openssh-7.7p1-fips.patch
* openssh-7.7p1-fips_checks.patch
* openssh-7.7p1-ldap.patch
* openssh-7.7p1-no_fork-no_pid_file.patch
* openssh-7.7p1-sftp_print_diagnostic_messages.patch
* openssh-8.0p1-gssapi-keyex.patch
* openssh-8.1p1-audit.patch
* openssh-8.1p1-seccomp-clock_nanosleep.patch
- Removed openssh-7.7p1-seed-prng.patch (bsc#1165158).
==== osinfo-db ====
Version update (20200214 -> 20200529)
- Update database to version 20200529
- Drop 5bbe30db-opensuse-add-info-about-UEFI-support.patch
==== patterns-base ====
Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11
- Suggest postfix from the basesystem pattern: suggested packages
are not flagged for installation, but give the solver a hint. So
in case something wants an MTA (smtp_daemon), openSUSE installs
will all default to postfix (as the base pattern is generally
installed). Users are still free to switch as they wish
(boo#1136078).
==== perl ====
Subpackages: perl-base
- Fixes for %_libexecdir changing to /usr/libexec
==== perl-libwww-perl ====
Version update (6.44 -> 6.45)
- updated to 6.45
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.45 2020-06-08 14:51:28Z
- Fix Client-Warning: Internal response sometimes reset (GH#341) (Jonathan
Dahan and Julien Fiegehenn)
==== permissions ====
Version update (1550_20200520 -> 1550_20200526)
Subpackages: chkstat permissions-config
- Update to version 20200526:
* profiles: add entries for enlightenment (bsc#1171686)
==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils
- for libpulse-devel-32bit, require libpulse0-32bit + libpulse-mainloop-glib0-32bit
to help wine development (bsc#1172301)
==== purge-kernels-service ====
- Add split provides for upgrade from old dracut (boo#1168727).
==== python-rpm-macros ====
Version update (20200207.5feb6c1 -> 20200529.b301e36)
- Update to version 20200529.b301e36:
* update-alternatives are quiet during install
==== python3 ====
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== python3-base ====
Subpackages: libpython3_8-1_0
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== shadow ====
- Use pure #!/bin/sh in:
* useradd.local
* userdel-post.local
* userdel-pre.local
==== sqlite3 ====
Version update (3.31.1 -> 3.32.2)
- SQLite 3.32.2:
* Fix a long-standing bug in the byte-code engine that can cause
a COMMIT command report as success when in fact it failed to commit
- SQLite 3.32.1:
* CVE-2020-13435: Malicious SQL statements could have crashed the
process that is running SQLite (boo#1172091)
- SQLite 3.32.0:
* Add support for approximate ANALYZE using the PRAGMA
analysis_limit command
* Add the bytecode virtual table
* Add the checksum VFS shim to the set of run-time loadable
extensions included in the source tree
* Add the iif() SQL function.
* INSERT and UPDATE statements now always apply column affinity
before computing CHECK constraints
* Increase the default upper bound on the number of parameters
from 999 to 32766
* Add code for the UINT collating sequence as an optional
loadable extension
* multiple enhancements to the CLI
- drop upstreamed patches:
* 04885763c4cd00cb-s390-compatibility.patch
* b20503aaf5b6595a-adapt-FTS-tests-for-big-endian.patch
==== sssd ====
Version update (2.2.3 -> 2.3.0)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Update to release 2.3.0
* SSSD can now handle hosts and networks nsswitch databases
(see resolve_provider option).
* By default, authentication request only refresh user's
initgroups if it is expired or there is not active user's
session (see pam_initgroups_scheme option).
* OpenSSL is used as default crypto provider, NSS is deprecated.
* The AD provider now defaults to GSS-SPNEGO SASL mechanism
(see ldap_sasl_mech option).
* The AD provider can now be configured to use only ldaps port
(see ad_use_ldaps option).
* SSSD now accepts host entries from GPO's security filter.
* New debug level (0x10000) added for low level LDB messages
only (see sssd.conf man page).
- Drop sssd-gpo_host_security_filter-2.2.2.patch,
0001-Resolve-computer-lookup-failure-when-sam-cn.patch,
0001-AD-use-getaddrinfo-with-AI_CANONNAME-to-find-the-FQD.patch (merged)
- Drop 0001-Fix-build-failure-against-samba-4.12.0rc1.patch
(unapplicable)
==== suse-module-tools ====
Version update (15.3.2 -> 15.3.3)
- Reverted back to tar_scm source service
(obs_scm doesn't work well for Ring0 packages)
- Update to version 15.3.3:
* spec: remove SLE/openSUSE difference in allow_unsupported_modules
(jsc#SLE-12255)
* spec: use same fs_blacklist on SLE and openSUSE
(jsc#SLE-12255, jsc#SLE-3926)
* spec: use br_netfilter softdep only for SLE12
(jsc#SLE-12255, bsc#1166531, boo#1158817, bsc#937216)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev
- Import commit a6d31d1a02c2718a064bbbc40d003668acf72769
bb6e2f7906 pid1: update manager settings on reload too (bsc#1163109)
e9e8907b06 watchdog: reduce watchdog pings in timeout interval
385a8f9846 udev: rename the persistent link for ATA devices (bsc#1164538)
66018a12ae tmpfiles: remove unnecessary assert (bsc#1171145)
- Disable bump of /proc/sys/fs/nr-open
Hopefully a _temporary_ workaround until bsc#1165351 is fixed
otherwise user instances crashes the system is using NIS (and the
nscd cache is empty).
==== timezone ====
- timezone modifies a file below /usr/share (boo#1172521)
- zdump --version reported "unknown" (boo#1172055)
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== util-linux-systemd ====
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== xdg-utils ====
Version update (1.1.3+20190413 -> 1.1.3+20200220)
- Update to version 1.1.3+20200220:
* fixed #166: xdg-open dose not search correctly in directories with spaces in the name
==== xdm ====
- Fixes for %_libexecdir changing to /usr/libexec
==== xterm ====
- Fixes for %_libexecdir changing to /usr/libexec
==== yast2 ====
Version update (4.3.5 -> 4.3.6)
- Fix Xen detection (bsc#1172742).
- 4.3.6
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
15 Jun '20
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
audit
busybox-links
ceph (15.2.0.108+g8cf4f02b08 -> 15.2.3.252+gf2237253cd)
cilium
conmon (2.0.16 -> 2.0.17)
dracut (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
gmp
haproxy (2.1.5+git0.36e14bd31 -> 2.1.7+git0.8bebf80fb)
installation-images-MicroOS (15.4 -> 15.5)
kernel-64kb (5.6.14 -> 5.7.1)
kernel-source (5.6.14 -> 5.7.1)
krb5 (1.18.1 -> 1.18.2)
kubernetes (1.18.2 -> 1.18.3)
kubernetes1.17 (1.17.5 -> 1.17.6)
kubernetes1.18 (1.18.2 -> 1.18.3)
kustomize (3.5.4 -> 3.6.1)
libgpg-error (1.37 -> 1.38)
libnftnl (1.1.6 -> 1.1.7)
libseccomp (2.4.2 -> 2.4.3)
libxml2
multipath-tools (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
ncurses (6.2.20200502 -> 6.2.20200531)
nfs-utils
open-iscsi
openssh (8.1p1 -> 8.3p1)
patterns-base
perl
permissions (1550_20200520 -> 1550_20200526)
purge-kernels-service
python-rpm-macros (20200207.5feb6c1 -> 20200529.b301e36)
python3
python3-base
shadow
sqlite3 (3.31.1 -> 3.32.2)
sssd (2.2.3 -> 2.3.0)
suse-module-tools (15.3.2 -> 15.3.3)
systemd
timezone
util-linux
util-linux-systemd
weave (2.6.2 -> 2.6.4)
yast2 (4.3.5 -> 4.3.6)
=== Details ===
==== audit ====
Subpackages: libaudit1 libauparse0
- Fix specfile to require libauparse0 and libaudit1 after splitting
audit-libs (bsc#1172295)
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-xz
- Create own busybox-adduser sub-package
- Add conflicts: mawk to busybox-gawk
==== ceph ====
Version update (15.2.0.108+g8cf4f02b08 -> 15.2.3.252+gf2237253cd)
Subpackages: ceph-common libcephfs2 librados2 librbd1 librgw2 python3-ceph-argparse python3-ceph-common python3-cephfs python3-rados python3-rbd python3-rgw
- Up ceph-test disk constraint to address "no space left on device"
build error seen in OBS
- Update to 15.2.3-252-gf2237253cd:
+ rebase on tip of upstream "octopus" branch, SHA1 22279597fa9ca40ba2f05af9f186a99ce73a6047
* upstream v15.2.3 release
https://ceph.io/releases/v15-2-3-octopus-released/
- Update to 15.2.2-60-gf5864377ab:
+ rebase on tip of upstream "octopus" branch, SHA1 9e890709ef53ce29006c6fc754dd80e25df186d0
- Update to 15.2.2-18-g1dbcddb5d8:
+ rebase on tip of upstream "octopus" branch, SHA1 0c857e985a29d90501a285f242ea9c008df49eb8
* Upstream v15.2.2 release
https://ceph.io/releases/v15-2-2-octopus-released/
* mon, mgr: require all caps for pre-octopus tell commands (bsc#1170021, CVE-2020-10736)
- Update to 15.2.1-277-g17d346932e:
+ rebase on tip of upstream "octopus" branch, SHA1 752b293586d0c8749483e60e43c7a98c1e0d7b19
* rpm: drop "is_opensuse" conditional in SUSE-specific bcond block
(jsc#SLE-11802)
- Update to 15.2.1-246-g66cd0e5497:
+ rebase on tip of upstream "octopus" branch, SHA1 939661f696d3d9eb4d31e998a3ad1487852a4741
- Update to 15.2.1-16-gb3a86250a6:
+ rebase on tip of upstream "octopus" branch, SHA1 9fd2f65f91d9246fae2c841a6222d34d121680ee
* upstream 15.2.1 release
https://ceph.io/releases/v15-2-1-octopus-released/
+ fix Nonce reuse in msgr V2 secure mode (bsc#1166403, CVE-2020-1759)
+ prevent RGW GetObject header-splitting XSS (bsc#1166484, CVE-2020-1760)
==== cilium ====
- add 0002-bpf-re-add-a-proper-types.h-mapper.patch
- add 0001-build-Avoid-using-git-if-not-in-a-git-repo.patch
- add 0001-datapath-Switch-to-upstream-bpftool-remove-additiona.patch
- build BPF_SRCFILES to get the list of bpf files to install
==== conmon ====
Version update (2.0.16 -> 2.0.17)
- Update to v2.0.17
- Add option to delay execution of exit command
==== dracut ====
Version update (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
Subpackages: dracut-ima
- Update to version 050+suse.66.g76431c83:
* 95iscsi: fix missing space when compiling cmdline args (bsc#1172816)
==== gmp ====
- correct license statement (library itself is no GPL-3.0)
==== haproxy ====
Version update (2.1.5+git0.36e14bd31 -> 2.1.7+git0.8bebf80fb)
- Update to version 2.1.7+git0.8bebf80fb:
* [RELEASE] Released version 2.1.7
- Update to version 2.1.6+git1.661c88907:
* BUG/MAJOR: http-htx: Don't forget to copy error messages from defaults sections
- Update to version 2.1.6+git0.34db76106:
* [RELEASE] Released version 2.1.6
* BUG/MINOR: mworker: fix a memleak when execvp() failed
* BUG/MINOR: ssl: fix a trash buffer leak in some error cases
* BUG/MEDIUM: mworker: fix the reload with an -- option
* BUG/MINOR: init: -S can have a parameter starting with a dash
* BUG/MINOR: init: -x can have a parameter starting with a dash
* BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
* BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
* BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
* BUG/MEDIUM: http-htx: Duplicate error messages as raw data instead of string
* BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
* BUG/MINOR: peers: fix internal/network key type mapping.
* SCRIPTS: publish-release: pass -n to gzip to remove timestamp
* Revert "BUG/MEDIUM: connections: force connections cleanup on server changes"
==== installation-images-MicroOS ====
Version update (15.4 -> 15.5)
- merge gh#openSUSE/installation-images#384
- Add missed file to instsys. bsc#1158522 [Build 101.1] openQA test
fails in windows_client_remotelogin
- 15.5
==== kernel-64kb ====
Version update (5.6.14 -> 5.7.1)
- syscalls: fix offset type of ksys_ftruncate (bsc#1172699).
- commit 8d4977c
- armv7/ararch64: Update config files.
Enable IOMMU_DEFAULT_PASSTHROUGH; per jsc#SLE-5568 this should be on by
default, like on x86_64.
- commit bb34387
- Refresh
patches.suse/jbd2-avoid-leaking-transaction-credits-when-unreserv.patch.
Update upstream status.
- commit c3ae43f
- KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be
generated (bsc#1171904).
- KVM: x86: only do L1TF workaround on affected processors
(bsc#1171904).
- commit 16721c7
- Linux 5.7.1 (bnc#1012628).
- airo: Fix read overflows sending packets (bnc#1012628).
- net: dsa: mt7530: set CPU port to fallback mode (bnc#1012628).
- media: staging: ipu3-imgu: Move alignment attribute to field
(bnc#1012628).
- media: Revert "staging: imgu: Address a compiler warning on
alignment" (bnc#1012628).
- mmc: fix compilation of user API (bnc#1012628).
- kernel/relay.c: handle alloc_percpu returning NULL in relay_open
(bnc#1012628).
- crypto: api - Fix use-after-free and race in crypto_spawn_alg
(bnc#1012628).
- mt76: mt76x02u: Add support for newer versions of the XBox
One wifi adapter (bnc#1012628).
- p54usb: add AirVasT USB stick device-id (bnc#1012628).
- HID: i2c-hid: add Schneider SCL142ALM to descriptor override
(bnc#1012628).
- HID: multitouch: enable multi-input as a quirk for some devices
(bnc#1012628).
- HID: sony: Fix for broken buttons on DS3 USB dongles
(bnc#1012628).
- mm: Fix mremap not considering huge pmd devmap (bnc#1012628).
- media: dvbdev: Fix tuner->demod media controller link
(bnc#1012628).
- commit cc2f849
- config: refresh with gcc10
gcc10 is default in Tumbleweed now.
- commit 0b1e86b
- Revert "Update config files."
This reverts commit 34be040b91701c047e592935bc2dbb46a3947a56. We now
have a fix (previous commit) in place, so change the configuration back
(bsc#1156053).
- commit f4546fe
- usercopy: mark dma-kmalloc caches as usercopy caches
(bsc#1156053).
- commit d3b5ce7
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- commit 8599ef4
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- Delete
patches.suse/Revert-ext4-make-dioread_nolock-the-default.patch.
Replace revert by the upstream fix.
- commit bfa465b
- Refresh
patches.suse/drm-nouveau-Fix-regression-by-audio-component-transition.patch.
Update upstream status.
- commit 3000ce5
- config: enable DEBUG_INFO_BTF
This was disabled when the option was introduced in 5.2-rc1 but it turned
out there are interesting use cases for having it enabled.
Add pahole to build time dependencies as it is used to extracth the BTF
data. Once we figure out how to make it conditional (only if DEBUG_INFO_BTF
exists and is enabled), it should be done in packaging branch.
- commit 9ddab66
- Updated to 5.7 final
- refresh configs
- commit 7cd0da5
- Update config files.
- commit 6dba057
- Revert "virtio-balloon: Revert "virtio-balloon: Switch back to
OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" (virtio fix).
- commit fe7831e
- Linux 5.6.15 (bnc#1012628).
- blacklist.conf: remove one entry
- sched/fair: Fix enqueue_task_fair() warning some more
(bnc#1012628).
- sched/fair: Fix reordering of enqueue/dequeue_task_fair()
(bnc#1012628).
- sched/fair: Reorder enqueue/dequeue_task_fair path
(bnc#1012628).
- bpf: Prevent mmap()'ing read-only maps as writable
(bnc#1012628).
- rxrpc: Fix ack discard (bnc#1012628).
- rxrpc: Trace discarded ACKs (bnc#1012628).
- x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive
tasks (bnc#1012628).
- flow_dissector: Drop BPF flow dissector prog ref on netns
cleanup (bnc#1012628).
- s390/kexec_file: fix initrd location for kdump kernel
(bnc#1012628).
- tpm: check event log version before reading final events
(bnc#1012628).
- rxrpc: Fix a memory leak in rxkad_verify_response()
(bnc#1012628).
- rxrpc: Fix the excessive initial retransmission timeout
(bnc#1012628).
- iio: imu: st_lsm6dsx: unlock on error in
st_lsm6dsx_shub_write_raw() (bnc#1012628).
- z3fold: fix use-after-free when freeing handles (bnc#1012628).
- sparc32: fix page table traversal in srmmu_nocache_init()
(bnc#1012628).
- sparc32: use PUD rather than PGD to get PMD in
srmmu_nocache_init() (bnc#1012628).
- sh: include linux/time_types.h for sockios (bnc#1012628).
- kasan: disable branch tracing for core runtime (bnc#1012628).
- rapidio: fix an error in get_user_pages_fast() error handling
(bnc#1012628).
- device-dax: don't leak kernel memory to user space after
unloading kmem (bnc#1012628).
- s390/kaslr: add support for R_390_JMP_SLOT relocation type
(bnc#1012628).
- s390/pci: Fix s390_mmio_read/write with MIO (bnc#1012628).
- ipack: tpci200: fix error return code in tpci200_register()
(bnc#1012628).
- mei: release me_cl object reference (bnc#1012628).
- tty: serial: add missing spin_lock_init for SiFive serial
console (bnc#1012628).
- misc: rtsx: Add short delay after exit from ASPM (bnc#1012628).
- driver core: Fix handling of SYNC_STATE_ONLY + STATELESS device
links (bnc#1012628).
- driver core: Fix SYNC_STATE_ONLY device link implementation
(bnc#1012628).
- iio: adc: ti-ads8344: Fix channel selection (bnc#1012628).
- iio: dac: vf610: Fix an error handling path in
'vf610_dac_probe()' (bnc#1012628).
- iio: sca3000: Remove an erroneous 'get_device()' (bnc#1012628).
- iio: adc: stm32-dfsdm: fix device used to request dma
(bnc#1012628).
- iio: adc: stm32-adc: fix device used to request dma
(bnc#1012628).
- staging: greybus: Fix uninitialized scalar variable
(bnc#1012628).
- staging: kpc2000: fix error return code in kp2000_pcie_probe()
(bnc#1012628).
- staging: wfx: unlock on error path (bnc#1012628).
- staging: iio: ad2s1210: Fix SPI reading (bnc#1012628).
- kbuild: Remove debug info from kallsyms linking (bnc#1012628).
- tools/bootconfig: Fix apply_xbc() to return zero on success
(bnc#1012628).
- Revert "driver core: platform: Initialize dma_parms for platform
devices" (bnc#1012628).
- virtio-balloon: Revert "virtio-balloon: Switch back to OOM
handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM" (bnc#1012628).
- Revert "gfs2: Don't demote a glock until its revokes are
written" (bnc#1012628).
- drm/i915: Propagate error from completed fences (bnc#1012628).
- drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead
of inheritance (bnc#1012628).
- vsprintf: don't obfuscate NULL and error pointers (bnc#1012628).
- dmaengine: owl: Use correct lock in owl_dma_get_pchan()
(bnc#1012628).
- dmaengine: idxd: fix interrupt completion after unmasking
(bnc#1012628).
- dmaengine: dmatest: Restore default for channel (bnc#1012628).
- drm/etnaviv: Fix a leak in submit_pin_objects() (bnc#1012628).
- dmaengine: tegra210-adma: Fix an error handling path in
'tegra_adma_probe()' (bnc#1012628).
- apparmor: Fix aa_label refcnt leak in policy_update
(bnc#1012628).
- apparmor: fix potential label refcnt leak in aa_change_profile
(bnc#1012628).
- apparmor: Fix use-after-free in aa_audit_rule_init
(bnc#1012628).
- pinctrl: qcom: Add affinity callbacks to msmgpio IRQ chip
(bnc#1012628).
- drm/etnaviv: fix perfmon domain interation (bnc#1012628).
- powerpc/64s: Disable STRICT_KERNEL_RWX (bnc#1012628).
- arm64: Fix PTRACE_SYSEMU semantics (bnc#1012628).
- scsi: target: Put lun_ref at end of tmr processing
(bnc#1012628).
- scsi: qla2xxx: Do not log message when reading port speed via
sysfs (bnc#1012628).
- ALSA: hda/realtek - Add more fixup entries for Clevo machines
(bnc#1012628).
- ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus
Xtreme (bnc#1012628).
- ALSA: pcm: fix incorrect hw_base increase (bnc#1012628).
- ALSA: iec1712: Initialize STDSP24 properly when using the
model=staudio option (bnc#1012628).
- bpf: Add bpf_probe_read_{user, kernel}_str() to
do_refine_retval_range (bnc#1012628).
- bpf: Restrict bpf_probe_read{, str}() only to archs where they
work (bnc#1012628).
- Update config files.
- ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with
ALC295 (bnc#1012628).
- ALSA: hda/realtek: Add quirk for Samsung Notebook (bnc#1012628).
- ALSA: hda/realtek - Add HP new mute led supported for ALC236
(bnc#1012628).
- ALSA: hda/realtek - Add supported new mute Led for HP
(bnc#1012628).
- scripts/gdb: repair rb_first() and rb_last() (bnc#1012628).
- tools/bootconfig: Fix resource leak in apply_xbc()
(bnc#1012628).
- ARM: futex: Address build warning (bnc#1012628).
- KVM: selftests: Fix build for evmcs.h (bnc#1012628).
- drm/amd/display: Prevent dpcd reads with passive dongles
(bnc#1012628).
- drm/amd/display: fix counter in wait_for_no_pipes_pending
(bnc#1012628).
- iommu/amd: Call domain_flush_complete() in update_domain()
(bnc#1012628).
- iommu/amd: Do not loop forever when trying to increase address
space (bnc#1012628).
- platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
(bnc#1012628).
- USB: core: Fix misleading driver bug report (bnc#1012628).
- stmmac: fix pointer check after utilization in stmmac_interrupt
(bnc#1012628).
- ceph: fix double unlock in handle_cap_export() (bnc#1012628).
- HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A
keyboard-dock (bnc#1012628).
- gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() (bnc#1012628).
- x86/apic: Move TSC deadline timer debug printk (bnc#1012628).
- selftests: fix kvm relocatable native/cross builds and installs
(bnc#1012628).
- ftrace/selftest: make unresolved cases cause failure if
- -fail-unresolved set (bnc#1012628).
- ibmvnic: Skip fatal error reset after passive init
(bnc#1012628).
- HID: i2c-hid: reset Synaptics SYNA2393 on resume (bnc#1012628).
- scsi: ibmvscsi: Fix WARN_ON during event pool release
(bnc#1012628).
- net/ena: Fix build warning in ena_xdp_set() (bnc#1012628).
- component: Silence bind error on -EPROBE_DEFER (bnc#1012628).
- aquantia: Fix the media type of AQC100 ethernet controller in
the driver (bnc#1012628).
- vhost/vsock: fix packet delivery order to monitoring devices
(bnc#1012628).
- configfs: fix config_item refcnt leak in configfs_rmdir()
(bnc#1012628).
- scsi: qla2xxx: Delete all sessions before unregister local
nvme port (bnc#1012628).
- scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
(bnc#1012628).
- HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY
instead (bnc#1012628).
- HID: alps: Add AUI1657 device ID (bnc#1012628).
- HID: logitech: Add support for Logitech G11 extra keys
(bnc#1012628).
- HID: multitouch: add eGalaxTouch P80H84 support (bnc#1012628).
- gcc-common.h: Update for GCC 10 (bnc#1012628).
- net: drop_monitor: use IS_REACHABLE() to guard
net_dm_hw_report() (bnc#1012628).
- kbuild: avoid concurrency issue in parallel building dtbs and
dtbs_check (bnc#1012628).
- iommu: Fix deferred domain attachment (bnc#1012628).
- mtd: Fix mtd not registered due to nvmem name collision
(bnc#1012628).
- afs: Don't unlock fetched data pages until the op completes
successfully (bnc#1012628).
- ubi: Fix seq_file usage in detailed_erase_block_info debugfs
file (bnc#1012628).
- i2c: mux: demux-pinctrl: Fix an error handling path in
'i2c_demux_pinctrl_probe()' (bnc#1012628).
- evm: Fix a small race in init_desc() (bnc#1012628).
- iommu/amd: Fix get_acpihid_device_id() (bnc#1012628).
- iommu/amd: Fix over-read of ACPI UID from IVRS table
(bnc#1012628).
- i2c: fix missing pm_runtime_put_sync in i2c_device_probe
(bnc#1012628).
- ubifs: remove broken lazytime support (bnc#1012628).
- pipe: Fix pipe_full() test in opipe_prep() (bnc#1012628).
- fix multiplication overflow in copy_fdtable() (bnc#1012628).
- mtd: spinand: Propagate ECC information to the MTD structure
(bnc#1012628).
- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
(bnc#1012628).
- ubifs: fix wrong use of crypto_shash_descsize() (bnc#1012628).
- ovl: potential crash in ovl_fid_to_fh() (bnc#1012628).
- ima: Fix return value of ima_write_policy() (bnc#1012628).
- evm: Check also if *tfm is an error pointer in init_desc()
(bnc#1012628).
- ima: Set file->f_mode instead of file->f_flags in
ima_calc_file_hash() (bnc#1012628).
- ARC: [plat-hsdk]: fix USB regression (bnc#1012628).
- i2c: dev: Fix the race between the release of i2c_dev and cdev
(bnc#1012628).
- commit 5afc154
- Update config files.
Remove ACPI_PROCFS_POWER
This should all be in sysfs nowadays. If this is in Tumbleweed for a while,
a patch to totally remove this code will be sent mainline.
Related to bsc#1160977
- commit 96731f2
- rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073).
- commit 6524463
- Update to 5.7-rc7
- refresh configs (ARCH_HAS_STRICT_KERNEL_RWX=n on ppc64/ppc64le)
- commit 67f7fb5
==== kernel-source ====
Version update (5.6.14 -> 5.7.1)
- syscalls: fix offset type of ksys_ftruncate (bsc#1172699).
- commit 8d4977c
- armv7/ararch64: Update config files.
Enable IOMMU_DEFAULT_PASSTHROUGH; per jsc#SLE-5568 this should be on by
default, like on x86_64.
- commit bb34387
- Refresh
patches.suse/jbd2-avoid-leaking-transaction-credits-when-unreserv.patch.
Update upstream status.
- commit c3ae43f
- KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be
generated (bsc#1171904).
- KVM: x86: only do L1TF workaround on affected processors
(bsc#1171904).
- commit 16721c7
- Linux 5.7.1 (bnc#1012628).
- airo: Fix read overflows sending packets (bnc#1012628).
- net: dsa: mt7530: set CPU port to fallback mode (bnc#1012628).
- media: staging: ipu3-imgu: Move alignment attribute to field
(bnc#1012628).
- media: Revert "staging: imgu: Address a compiler warning on
alignment" (bnc#1012628).
- mmc: fix compilation of user API (bnc#1012628).
- kernel/relay.c: handle alloc_percpu returning NULL in relay_open
(bnc#1012628).
- crypto: api - Fix use-after-free and race in crypto_spawn_alg
(bnc#1012628).
- mt76: mt76x02u: Add support for newer versions of the XBox
One wifi adapter (bnc#1012628).
- p54usb: add AirVasT USB stick device-id (bnc#1012628).
- HID: i2c-hid: add Schneider SCL142ALM to descriptor override
(bnc#1012628).
- HID: multitouch: enable multi-input as a quirk for some devices
(bnc#1012628).
- HID: sony: Fix for broken buttons on DS3 USB dongles
(bnc#1012628).
- mm: Fix mremap not considering huge pmd devmap (bnc#1012628).
- media: dvbdev: Fix tuner->demod media controller link
(bnc#1012628).
- commit cc2f849
- config: refresh with gcc10
gcc10 is default in Tumbleweed now.
- commit 0b1e86b
- Revert "Update config files."
This reverts commit 34be040b91701c047e592935bc2dbb46a3947a56. We now
have a fix (previous commit) in place, so change the configuration back
(bsc#1156053).
- commit f4546fe
- usercopy: mark dma-kmalloc caches as usercopy caches
(bsc#1156053).
- commit d3b5ce7
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- commit 8599ef4
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- Delete
patches.suse/Revert-ext4-make-dioread_nolock-the-default.patch.
Replace revert by the upstream fix.
- commit bfa465b
- Refresh
patches.suse/drm-nouveau-Fix-regression-by-audio-component-transition.patch.
Update upstream status.
- commit 3000ce5
- config: enable DEBUG_INFO_BTF
This was disabled when the option was introduced in 5.2-rc1 but it turned
out there are interesting use cases for having it enabled.
Add pahole to build time dependencies as it is used to extracth the BTF
data. Once we figure out how to make it conditional (only if DEBUG_INFO_BTF
exists and is enabled), it should be done in packaging branch.
- commit 9ddab66
- Updated to 5.7 final
- refresh configs
- commit 7cd0da5
- Update config files.
- commit 6dba057
- Revert "virtio-balloon: Revert "virtio-balloon: Switch back to
OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" (virtio fix).
- commit fe7831e
- Linux 5.6.15 (bnc#1012628).
- blacklist.conf: remove one entry
- sched/fair: Fix enqueue_task_fair() warning some more
(bnc#1012628).
- sched/fair: Fix reordering of enqueue/dequeue_task_fair()
(bnc#1012628).
- sched/fair: Reorder enqueue/dequeue_task_fair path
(bnc#1012628).
- bpf: Prevent mmap()'ing read-only maps as writable
(bnc#1012628).
- rxrpc: Fix ack discard (bnc#1012628).
- rxrpc: Trace discarded ACKs (bnc#1012628).
- x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive
tasks (bnc#1012628).
- flow_dissector: Drop BPF flow dissector prog ref on netns
cleanup (bnc#1012628).
- s390/kexec_file: fix initrd location for kdump kernel
(bnc#1012628).
- tpm: check event log version before reading final events
(bnc#1012628).
- rxrpc: Fix a memory leak in rxkad_verify_response()
(bnc#1012628).
- rxrpc: Fix the excessive initial retransmission timeout
(bnc#1012628).
- iio: imu: st_lsm6dsx: unlock on error in
st_lsm6dsx_shub_write_raw() (bnc#1012628).
- z3fold: fix use-after-free when freeing handles (bnc#1012628).
- sparc32: fix page table traversal in srmmu_nocache_init()
(bnc#1012628).
- sparc32: use PUD rather than PGD to get PMD in
srmmu_nocache_init() (bnc#1012628).
- sh: include linux/time_types.h for sockios (bnc#1012628).
- kasan: disable branch tracing for core runtime (bnc#1012628).
- rapidio: fix an error in get_user_pages_fast() error handling
(bnc#1012628).
- device-dax: don't leak kernel memory to user space after
unloading kmem (bnc#1012628).
- s390/kaslr: add support for R_390_JMP_SLOT relocation type
(bnc#1012628).
- s390/pci: Fix s390_mmio_read/write with MIO (bnc#1012628).
- ipack: tpci200: fix error return code in tpci200_register()
(bnc#1012628).
- mei: release me_cl object reference (bnc#1012628).
- tty: serial: add missing spin_lock_init for SiFive serial
console (bnc#1012628).
- misc: rtsx: Add short delay after exit from ASPM (bnc#1012628).
- driver core: Fix handling of SYNC_STATE_ONLY + STATELESS device
links (bnc#1012628).
- driver core: Fix SYNC_STATE_ONLY device link implementation
(bnc#1012628).
- iio: adc: ti-ads8344: Fix channel selection (bnc#1012628).
- iio: dac: vf610: Fix an error handling path in
'vf610_dac_probe()' (bnc#1012628).
- iio: sca3000: Remove an erroneous 'get_device()' (bnc#1012628).
- iio: adc: stm32-dfsdm: fix device used to request dma
(bnc#1012628).
- iio: adc: stm32-adc: fix device used to request dma
(bnc#1012628).
- staging: greybus: Fix uninitialized scalar variable
(bnc#1012628).
- staging: kpc2000: fix error return code in kp2000_pcie_probe()
(bnc#1012628).
- staging: wfx: unlock on error path (bnc#1012628).
- staging: iio: ad2s1210: Fix SPI reading (bnc#1012628).
- kbuild: Remove debug info from kallsyms linking (bnc#1012628).
- tools/bootconfig: Fix apply_xbc() to return zero on success
(bnc#1012628).
- Revert "driver core: platform: Initialize dma_parms for platform
devices" (bnc#1012628).
- virtio-balloon: Revert "virtio-balloon: Switch back to OOM
handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM" (bnc#1012628).
- Revert "gfs2: Don't demote a glock until its revokes are
written" (bnc#1012628).
- drm/i915: Propagate error from completed fences (bnc#1012628).
- drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead
of inheritance (bnc#1012628).
- vsprintf: don't obfuscate NULL and error pointers (bnc#1012628).
- dmaengine: owl: Use correct lock in owl_dma_get_pchan()
(bnc#1012628).
- dmaengine: idxd: fix interrupt completion after unmasking
(bnc#1012628).
- dmaengine: dmatest: Restore default for channel (bnc#1012628).
- drm/etnaviv: Fix a leak in submit_pin_objects() (bnc#1012628).
- dmaengine: tegra210-adma: Fix an error handling path in
'tegra_adma_probe()' (bnc#1012628).
- apparmor: Fix aa_label refcnt leak in policy_update
(bnc#1012628).
- apparmor: fix potential label refcnt leak in aa_change_profile
(bnc#1012628).
- apparmor: Fix use-after-free in aa_audit_rule_init
(bnc#1012628).
- pinctrl: qcom: Add affinity callbacks to msmgpio IRQ chip
(bnc#1012628).
- drm/etnaviv: fix perfmon domain interation (bnc#1012628).
- powerpc/64s: Disable STRICT_KERNEL_RWX (bnc#1012628).
- arm64: Fix PTRACE_SYSEMU semantics (bnc#1012628).
- scsi: target: Put lun_ref at end of tmr processing
(bnc#1012628).
- scsi: qla2xxx: Do not log message when reading port speed via
sysfs (bnc#1012628).
- ALSA: hda/realtek - Add more fixup entries for Clevo machines
(bnc#1012628).
- ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus
Xtreme (bnc#1012628).
- ALSA: pcm: fix incorrect hw_base increase (bnc#1012628).
- ALSA: iec1712: Initialize STDSP24 properly when using the
model=staudio option (bnc#1012628).
- bpf: Add bpf_probe_read_{user, kernel}_str() to
do_refine_retval_range (bnc#1012628).
- bpf: Restrict bpf_probe_read{, str}() only to archs where they
work (bnc#1012628).
- Update config files.
- ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with
ALC295 (bnc#1012628).
- ALSA: hda/realtek: Add quirk for Samsung Notebook (bnc#1012628).
- ALSA: hda/realtek - Add HP new mute led supported for ALC236
(bnc#1012628).
- ALSA: hda/realtek - Add supported new mute Led for HP
(bnc#1012628).
- scripts/gdb: repair rb_first() and rb_last() (bnc#1012628).
- tools/bootconfig: Fix resource leak in apply_xbc()
(bnc#1012628).
- ARM: futex: Address build warning (bnc#1012628).
- KVM: selftests: Fix build for evmcs.h (bnc#1012628).
- drm/amd/display: Prevent dpcd reads with passive dongles
(bnc#1012628).
- drm/amd/display: fix counter in wait_for_no_pipes_pending
(bnc#1012628).
- iommu/amd: Call domain_flush_complete() in update_domain()
(bnc#1012628).
- iommu/amd: Do not loop forever when trying to increase address
space (bnc#1012628).
- platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
(bnc#1012628).
- USB: core: Fix misleading driver bug report (bnc#1012628).
- stmmac: fix pointer check after utilization in stmmac_interrupt
(bnc#1012628).
- ceph: fix double unlock in handle_cap_export() (bnc#1012628).
- HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A
keyboard-dock (bnc#1012628).
- gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() (bnc#1012628).
- x86/apic: Move TSC deadline timer debug printk (bnc#1012628).
- selftests: fix kvm relocatable native/cross builds and installs
(bnc#1012628).
- ftrace/selftest: make unresolved cases cause failure if
- -fail-unresolved set (bnc#1012628).
- ibmvnic: Skip fatal error reset after passive init
(bnc#1012628).
- HID: i2c-hid: reset Synaptics SYNA2393 on resume (bnc#1012628).
- scsi: ibmvscsi: Fix WARN_ON during event pool release
(bnc#1012628).
- net/ena: Fix build warning in ena_xdp_set() (bnc#1012628).
- component: Silence bind error on -EPROBE_DEFER (bnc#1012628).
- aquantia: Fix the media type of AQC100 ethernet controller in
the driver (bnc#1012628).
- vhost/vsock: fix packet delivery order to monitoring devices
(bnc#1012628).
- configfs: fix config_item refcnt leak in configfs_rmdir()
(bnc#1012628).
- scsi: qla2xxx: Delete all sessions before unregister local
nvme port (bnc#1012628).
- scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
(bnc#1012628).
- HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY
instead (bnc#1012628).
- HID: alps: Add AUI1657 device ID (bnc#1012628).
- HID: logitech: Add support for Logitech G11 extra keys
(bnc#1012628).
- HID: multitouch: add eGalaxTouch P80H84 support (bnc#1012628).
- gcc-common.h: Update for GCC 10 (bnc#1012628).
- net: drop_monitor: use IS_REACHABLE() to guard
net_dm_hw_report() (bnc#1012628).
- kbuild: avoid concurrency issue in parallel building dtbs and
dtbs_check (bnc#1012628).
- iommu: Fix deferred domain attachment (bnc#1012628).
- mtd: Fix mtd not registered due to nvmem name collision
(bnc#1012628).
- afs: Don't unlock fetched data pages until the op completes
successfully (bnc#1012628).
- ubi: Fix seq_file usage in detailed_erase_block_info debugfs
file (bnc#1012628).
- i2c: mux: demux-pinctrl: Fix an error handling path in
'i2c_demux_pinctrl_probe()' (bnc#1012628).
- evm: Fix a small race in init_desc() (bnc#1012628).
- iommu/amd: Fix get_acpihid_device_id() (bnc#1012628).
- iommu/amd: Fix over-read of ACPI UID from IVRS table
(bnc#1012628).
- i2c: fix missing pm_runtime_put_sync in i2c_device_probe
(bnc#1012628).
- ubifs: remove broken lazytime support (bnc#1012628).
- pipe: Fix pipe_full() test in opipe_prep() (bnc#1012628).
- fix multiplication overflow in copy_fdtable() (bnc#1012628).
- mtd: spinand: Propagate ECC information to the MTD structure
(bnc#1012628).
- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
(bnc#1012628).
- ubifs: fix wrong use of crypto_shash_descsize() (bnc#1012628).
- ovl: potential crash in ovl_fid_to_fh() (bnc#1012628).
- ima: Fix return value of ima_write_policy() (bnc#1012628).
- evm: Check also if *tfm is an error pointer in init_desc()
(bnc#1012628).
- ima: Set file->f_mode instead of file->f_flags in
ima_calc_file_hash() (bnc#1012628).
- ARC: [plat-hsdk]: fix USB regression (bnc#1012628).
- i2c: dev: Fix the race between the release of i2c_dev and cdev
(bnc#1012628).
- commit 5afc154
- Update config files.
Remove ACPI_PROCFS_POWER
This should all be in sysfs nowadays. If this is in Tumbleweed for a while,
a patch to totally remove this code will be sent mainline.
Related to bsc#1160977
- commit 96731f2
- rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073).
- commit 6524463
- Update to 5.7-rc7
- refresh configs (ARCH_HAS_STRICT_KERNEL_RWX=n on ppc64/ppc64le)
- commit 67f7fb5
==== krb5 ====
Version update (1.18.1 -> 1.18.2)
- Update to 1.18.2
* Fix a SPNEGO regression where an acceptor using the default credential
would improperly filter mechanisms, causing a negotiation failure.
* Fix a bug where the KDC would fail to issue tickets if the local krbtgt
principal's first key has a single-DES enctype.
* Add stub functions to allow old versions of OpenSSL libcrypto to link
against libkrb5.
* Fix a NegoEx bug where the client name and delegated credential might
not be reported.
- Update logrotate script, call systemd to reload the services
instead of init-scripts. (boo#1169357)
- Don't add the lto flags to the public link options. (boo#1172038)
==== kubernetes ====
Version update (1.18.2 -> 1.18.3)
Subpackages: kubernetes-client kubernetes-kubeadm kubernetes-kubelet
- Bump to kubernetes 1.18.3 and 1.17.6
==== kubernetes1.17 ====
Version update (1.17.5 -> 1.17.6)
- Add reproducible-buildid.patch to make package build reproducible
- Remove %{?_smp_mflags} to make build more reliable [boo#1172744]
- Update to version 1.17.6:
* Azure: support non-VMSS instances removal
* deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0
* build: Add build-image OWNERS to debian-{base,iptables} and pause dirs
* count no nodes scheduling failure as unschedulable instead of error
* base-images: Update to kube-cross:v1.13.9-5
* build: Alpha-sort dependencies.yaml
* Work-around for missing metrics on CRI-O exited containers
* fix: azure disk dangling attach issue
* fix: ACR auth fails in private azure clouds
* Restore cache-control header filter
* bugfix: initcontainer wasn't considered when calculate resource request
* fix: azure file csi migration failure
* Fix flaws in Azure CSI translation
* Update CHANGELOG/CHANGELOG-1.17.md for v1.17.5
* Move PSP tests behind a feature tag
* Fix code for 1.17
* kube-openapi bump to release-1.17
* Do not reset managedFields in status update strategy
* Use discovery to test apply all status
* Preserve int/float distinction when decoding raw values
* All check for instanceID
* Fix AWS eventual consistency of AttachDisk
* fix: update max azure disk max count
* Fix cherry-pick errors
* Fix CSINodeInfo startup
* Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init
- Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372]
==== kubernetes1.18 ====
Version update (1.18.2 -> 1.18.3)
Subpackages: kubernetes1.18-client kubernetes1.18-kubeadm kubernetes1.18-kubelet kubernetes1.18-kubelet-common
- Remove %{?_smp_mflags} to make build more reliable [boo#1172744]
- Add reproducible-buildid.patch to make package build reproducible
- Update to version 1.18.3:
* Move nfs-provisioner from quay.io/kubernetes_incubator to staging-csi
* Use staging-csi to work around quay.io availability
* Azure: support non-VMSS instances removal
* deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0
* build: Add build-image OWNERS to debian-{base,iptables} and pause dirs
* count no nodes scheduling failure as unschedulable instead of error
* kubeadm: fix flakes when performing etcd MemberAdd on slower setups
* base-images: Update to kube-cross:v1.13.9-5
* build: Alpha-sort dependencies.yaml
* fix: azure disk dangling attach issue
* kube-proxy: increase the session affinity timeout to ensure that the test passes in ipvs mode
* cluster: ipvs conntrack module vs kernel version
* allow k8s.io/kubernetes/third_party/forked/ipvs in e2e test framework import restrictions (transitive dep from pkg/kubemark)
* add license headers for third_party/forked/ipvs
* third_party/forked/ipvs: check the address family if the netlink address family attribute is not set
* run hack/update-vendor.sh to remove github.com/docker/libnetwork
* remove github.com/docker/libnetwork from go.mod
* update pkg/util/ipvs to use third_party/forked/ipvs
* move github.com/docker/libnetwork/ipvs to third_party/forked
* fix backoff manager timer initialization race
* fix: ACR auth fails in private azure clouds
* Restore cache-control header filter
* kube-scheduler: compatibility with ServerSideApply
* bugfix: initcontainer wasn't considered when calculate resource request
* fix: azure file csi migration failure
* Fix flaws in Azure CSI translation
* Revert "stop defaulting kubeconfig to http://localhost:8080"
* Update CHANGELOG/CHANGELOG-1.18.md for v1.18.2
* Fix Node initialization for GCP cloud provider
* Simplify unregistration of csiplugin
* Unregister csiplugin even if socket path is gone
* Move PSP tests behind a feature tag
* kube-openapi bump to release-1.18
* Preserve int/float distinction when decoding raw values
* Check Annotations map against nil for ConfigMapLock#Update()
* Fix CSINodeInfo startup
* Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init
- Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372]
==== kustomize ====
Version update (3.5.4 -> 3.6.1)
- Update to version 3.6.1
- pin kustomize to cmd/kubectl_v0_1_0
- Refresh vendor.tar.xz
==== libgpg-error ====
Version update (1.37 -> 1.38)
- Update to 1.38:
* New option parser features to implement system wide
configuration files
* New functions to build file names
* New function to help reallocating arrays
* Protect gpgrt_inc_errorcount against counter overflow
- drop needless autotools build dependencies that were added for
gawk5.patch
==== libnftnl ====
Version update (1.1.6 -> 1.1.7)
- Update to release 1.1.7
* udata: add NFTNL_UDATA_SET_DATA_INTERVAL
==== libseccomp ====
Version update (2.4.2 -> 2.4.3)
- Update to release 2.4.3
* Add list of authorized release signatures to README.md
* Fix multiplexing issue with s390/s390x shm* syscalls
* Remove the static flag from libseccomp tools compilation
* Add define for __SNR_ppoll
* Fix potential memory leak identified by clang in the
scmp_bpf_sim tool
- Drop no-static.diff, libseccomp-fix_aarch64-test.patch,
SNR_ppoll.patch (merged)
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Fix invalid xmlns references since the fix for CVE-2019-19956 [bsc#1172021]
- Revert upstream commit 5a02583c7e683896d84878bd90641d8d9b0d0549
* Add patch libxml2-CVE-2019-19956.patch
==== multipath-tools ====
Version update (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
Subpackages: kpartx libmpath0
- Update to version 0.8.4+43+suse.908383f:
* enable negated regular expression syntax in conf file
* change default devnode blacklist to
'!^(sd[a-z]|dasd[a-z]|nvme[0-9])'
- Update to version 0.8.4+40+suse.b06c2e5a:
- Fix udev rule processing during coldplug (bsc#1172157)
* 11-dm-mpath.rules: Fix udev rule processing during coldplug
- Fix compilation with gcc-10
* fix boolean value with json-c 0.14
* libmultipath: fix condlog NULL argument in uevent_get_env_var
- Reviewed upstream changes:
* simplify failed_wwid code
* centralize path validation code
- Use pkgconfig for BuildRequires
==== ncurses ====
Version update (6.2.20200502 -> 6.2.20200531)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base
- Add ncurses patch 20200531
+ correct configure version-check/warnng for g++ to allow for 10.x
+ re-enable "bel" in konsole-base (report by Nia Huang)
+ add linux-s entry (patch by Alexandre Montaron).
+ drop long-obsolete convert_configure.pl
+ add test/test_parm.c, for checking tparm changes.
+ improve parameter-checking for tparm, adding function _nc_tiparm() to
handle the most-used case, which accepts only numeric parameters
(report/testcase by "puppet-meteor").
+ use a more conservative estimate of the buffer-size in lib_tparm.c's
save_text() and save_number(), in case the sprintf() function
passes-through unexpected characters from a format specifier
(report/testcase by "puppet-meteor").
+ add a check for end-of-string in cvtchar to handle a malformed
string in infotocap (report/testcase by "puppet-meteor").
- Add ncurses patch 20200523
+ update version-check for gnat to allow for gnat 10.x to 99.x
+ fix an uninitialized variable in lib_mouse.c changes (cf: 20200502)
+ add a check in EmitRange to guard against repeat_char emitting digits
which could be interpreted as BSD-style padding when --enable-bsdpad
is configured (report/patch by Hiltjo Posthuma).
+ add --disable-pkg-ldflags to suppress EXTRA_LDFLAGS from the
generated pkg-config and ncurses*-config files, to simplify
configuring in the case where rpath is used but the packager wants
to hide the feature (report by Michael Stapelberg).
> fixes for building with Visual Studio C++ and msys2 (patches by
"Maarten Anonymous"):
+ modify CF_SHARED_OPTS to generate a script which translates linker
options into Visual Studio's dialect.
+ omit parentheses around function-names in generated lib_gen.c to
- Add ncurses patch 20200516
+ add notes on termcap.h header in curs_termcap.3x
+ update notes on vscode / xterm.js -TD
- Add ncurses patch 20200509
+ add "-r" option to the dots test-programs, to help with scripting
a performance comparison.
+ build-fix test/move_field.c for NetBSD curses, whose form headers
use different names than SVr4 or ncurses.
==== nfs-utils ====
Subpackages: libnfsidmap1 nfs-client
- Remove README.NFSv4. It is out dated and not useful. All
the configation described is now done automatically.
(bsc#1171448)
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Merged in latest upstream. Summary:
* Let initiator name be created by iscsi-init.service.
* iscsi: fix fd leak
* iscsi: Add break to while loop
* Fix compiler complaint about string copy in iscsiuio
* Fix a compiler complaint about writing one byte
* Fix issue with zero-length arrays at end of struct
* Add iscsi-init.service
* Proper disconnect of TCP connection
* Fix SIGPIPE loop in signal handler
* Update iscsi-iname.c
* log:modify iSCSI shared memory permissions for logs
* Ignore iface.example in iface match checks
* More changes for musl.
* Fix type mismatch under musl.
* Change include of <sys/poll.h> to <poll.h>
* iscsi-iname: fix iscsi-iname -p access NULL pointer without given IQN prefix
Note that the "Add iscsi-init.service" change adds a new systemd
service called "iscsi-init", that creates the iSCSI initiator name
file /etc/iscsi/initiatorname.iscsi, if and only if it does not
exist. This obviates the need to do this from the SPEC file, now
updated.
Since this was not a version-number update, in addition to modifying
the SPEC file, also updates:
* open-iscsi-SUSE-latest.diff.bz2
==== openssh ====
Version update (8.1p1 -> 8.3p1)
- Version update to 8.3p1:
= Potentially-incompatible changes
* sftp(1): reject an argument of "-1" in the same way as ssh(1) and
scp(1) do instead of accepting and silently ignoring it.
= New features
* sshd(8): make IgnoreRhosts a tri-state option: "yes" to ignore
rhosts/shosts, "no" allow rhosts/shosts or (new) "shosts-only"
to allow .shosts files but not .rhosts.
* sshd(8): allow the IgnoreRhosts directive to appear anywhere in a
sshd_config, not just before any Match blocks.
* ssh(1): add %TOKEN percent expansion for the LocalFoward and
RemoteForward keywords when used for Unix domain socket forwarding.
* all: allow loading public keys from the unencrypted envelope of a
private key file if no corresponding public key file is present.
* ssh(1), sshd(8): prefer to use chacha20 from libcrypto where
possible instead of the (slower) portable C implementation included
in OpenSSH.
* ssh-keygen(1): add ability to dump the contents of a binary key
revocation list via "ssh-keygen -lQf /path".
- Additional changes from 8.2p1 release:
= Potentially-incompatible changes
* ssh(1), sshd(8), ssh-keygen(1): this release removes the "ssh-rsa"
(RSA/SHA1) algorithm from those accepted for certificate signatures
(i.e. the client and server CASignatureAlgorithms option) and will
use the rsa-sha2-512 signature algorithm by default when the
ssh-keygen(1) CA signs new certificates.
* ssh(1), sshd(8): this release removes diffie-hellman-group14-sha1
from the default key exchange proposal for both the client and
server.
* ssh-keygen(1): the command-line options related to the generation
and screening of safe prime numbers used by the
diffie-hellman-group-exchange-* key exchange algorithms have
changed. Most options have been folded under the -O flag.
* sshd(8): the sshd listener process title visible to ps(1) has
changed to include information about the number of connections that
are currently attempting authentication and the limits configured
by MaxStartups.
* ssh-sk-helper(8): this is a new binary. It is used by the FIDO/U2F
support to provide address-space isolation for token middleware
libraries (including the internal one). It needs to be installed
in the expected path, typically under /usr/libexec or similar.
= New features
* This release adds support for FIDO/U2F hardware authenticators to
OpenSSH. U2F/FIDO are open standards for inexpensive two-factor
authentication hardware that are widely used for website
authentication. In OpenSSH FIDO devices are supported by new public
key types "ecdsa-sk" and "ed25519-sk", along with corresponding
certificate types.
* sshd(8): add an Include sshd_config keyword that allows including
additional configuration files via glob(3) patterns.
* ssh(1)/sshd(8): make the LE (low effort) DSCP code point available
via the IPQoS directive.
* ssh(1): when AddKeysToAgent=yes is set and the key contains no
comment, add the key to the agent with the key's path as the
comment.
* ssh-keygen(1), ssh-agent(1): expose PKCS#11 key labels and X.509
subjects as key comments, rather than simply listing the PKCS#11
provider library path.
* ssh-keygen(1): allow PEM export of DSA and ECDSA keys.
* ssh(1), sshd(8): make zlib compile-time optional, available via the
Makefile.inc ZLIB flag on OpenBSD or via the --with-zlib configure
option for OpenSSH portable.
* sshd(8): when clients get denied by MaxStartups, send a
notification prior to the SSH2 protocol banner according to
RFC4253 section 4.2.
* ssh(1), ssh-agent(1): when invoking the $SSH_ASKPASS prompt
program, pass a hint to the program to describe the type of
desired prompt. The possible values are "confirm" (indicating
that a yes/no confirmation dialog with no text entry should be
shown), "none" (to indicate an informational message only), or
blank for the original ssh-askpass behaviour of requesting a
password/phrase.
* ssh(1): allow forwarding a different agent socket to the path
specified by $SSH_AUTH_SOCK, by extending the existing ForwardAgent
option to accepting an explicit path or the name of an environment
variable in addition to yes/no.
* ssh-keygen(1): add a new signature operations "find-principals" to
look up the principal associated with a signature from an allowed-
signers file.
* sshd(8): expose the number of currently-authenticating connections
along with the MaxStartups limit in the process title visible to
"ps".
- Rebased patches:
* openssh-7.7p1-cavstest-ctr.patch
* openssh-7.7p1-cavstest-kdf.patch
* openssh-7.7p1-fips.patch
* openssh-7.7p1-fips_checks.patch
* openssh-7.7p1-ldap.patch
* openssh-7.7p1-no_fork-no_pid_file.patch
* openssh-7.7p1-sftp_print_diagnostic_messages.patch
* openssh-8.0p1-gssapi-keyex.patch
* openssh-8.1p1-audit.patch
* openssh-8.1p1-seccomp-clock_nanosleep.patch
- Removed openssh-7.7p1-seed-prng.patch (bsc#1165158).
==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-base patterns-base-bootloader patterns-base-minimal_base
- Suggest postfix from the basesystem pattern: suggested packages
are not flagged for installation, but give the solver a hint. So
in case something wants an MTA (smtp_daemon), openSUSE installs
will all default to postfix (as the base pattern is generally
installed). Users are still free to switch as they wish
(boo#1136078).
==== perl ====
Subpackages: perl-base
- Fixes for %_libexecdir changing to /usr/libexec
==== permissions ====
Version update (1550_20200520 -> 1550_20200526)
Subpackages: chkstat permissions-config
- Update to version 20200526:
* profiles: add entries for enlightenment (bsc#1171686)
==== purge-kernels-service ====
- Add split provides for upgrade from old dracut (boo#1168727).
==== python-rpm-macros ====
Version update (20200207.5feb6c1 -> 20200529.b301e36)
- Update to version 20200529.b301e36:
* update-alternatives are quiet during install
==== python3 ====
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== python3-base ====
Subpackages: libpython3_8-1_0
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== shadow ====
- Use pure #!/bin/sh in:
* useradd.local
* userdel-post.local
* userdel-pre.local
==== sqlite3 ====
Version update (3.31.1 -> 3.32.2)
- SQLite 3.32.2:
* Fix a long-standing bug in the byte-code engine that can cause
a COMMIT command report as success when in fact it failed to commit
- SQLite 3.32.1:
* CVE-2020-13435: Malicious SQL statements could have crashed the
process that is running SQLite (boo#1172091)
- SQLite 3.32.0:
* Add support for approximate ANALYZE using the PRAGMA
analysis_limit command
* Add the bytecode virtual table
* Add the checksum VFS shim to the set of run-time loadable
extensions included in the source tree
* Add the iif() SQL function.
* INSERT and UPDATE statements now always apply column affinity
before computing CHECK constraints
* Increase the default upper bound on the number of parameters
from 999 to 32766
* Add code for the UINT collating sequence as an optional
loadable extension
* multiple enhancements to the CLI
- drop upstreamed patches:
* 04885763c4cd00cb-s390-compatibility.patch
* b20503aaf5b6595a-adapt-FTS-tests-for-big-endian.patch
==== sssd ====
Version update (2.2.3 -> 2.3.0)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Update to release 2.3.0
* SSSD can now handle hosts and networks nsswitch databases
(see resolve_provider option).
* By default, authentication request only refresh user's
initgroups if it is expired or there is not active user's
session (see pam_initgroups_scheme option).
* OpenSSL is used as default crypto provider, NSS is deprecated.
* The AD provider now defaults to GSS-SPNEGO SASL mechanism
(see ldap_sasl_mech option).
* The AD provider can now be configured to use only ldaps port
(see ad_use_ldaps option).
* SSSD now accepts host entries from GPO's security filter.
* New debug level (0x10000) added for low level LDB messages
only (see sssd.conf man page).
- Drop sssd-gpo_host_security_filter-2.2.2.patch,
0001-Resolve-computer-lookup-failure-when-sam-cn.patch,
0001-AD-use-getaddrinfo-with-AI_CANONNAME-to-find-the-FQD.patch (merged)
- Drop 0001-Fix-build-failure-against-samba-4.12.0rc1.patch
(unapplicable)
==== suse-module-tools ====
Version update (15.3.2 -> 15.3.3)
- Reverted back to tar_scm source service
(obs_scm doesn't work well for Ring0 packages)
- Update to version 15.3.3:
* spec: remove SLE/openSUSE difference in allow_unsupported_modules
(jsc#SLE-12255)
* spec: use same fs_blacklist on SLE and openSUSE
(jsc#SLE-12255, jsc#SLE-3926)
* spec: use br_netfilter softdep only for SLE12
(jsc#SLE-12255, bsc#1166531, boo#1158817, bsc#937216)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev
- Import commit a6d31d1a02c2718a064bbbc40d003668acf72769
bb6e2f7906 pid1: update manager settings on reload too (bsc#1163109)
e9e8907b06 watchdog: reduce watchdog pings in timeout interval
385a8f9846 udev: rename the persistent link for ATA devices (bsc#1164538)
66018a12ae tmpfiles: remove unnecessary assert (bsc#1171145)
- Disable bump of /proc/sys/fs/nr-open
Hopefully a _temporary_ workaround until bsc#1165351 is fixed
otherwise user instances crashes the system is using NIS (and the
nscd cache is empty).
==== timezone ====
- timezone modifies a file below /usr/share (boo#1172521)
- zdump --version reported "unknown" (boo#1172055)
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== util-linux-systemd ====
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== weave ====
Version update (2.6.2 -> 2.6.4)
- Update to version 2.6.4
- Improve the iptables rule to block just the Weave Net control port,
and avoid blocking other uses of 127.0.0.1. #3811
- Update to version 2.6.3
- Block non-local traffic to the Weave control port #3805
- Tell Linux not to accept router advisory messages #3801
- NPC: add a metric to show errors while operating #3804
- NPC: don't treat named port as a fatal error #3790
==== yast2 ====
Version update (4.3.5 -> 4.3.6)
- Fix Xen detection (bsc#1172742).
- 4.3.6
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
busybox-links
kernel-source (5.6.14 -> 5.7.1)
util-linux
util-linux-systemd
=== Details ===
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-psmisc busybox-xz
- Create own busybox-adduser sub-package
==== kernel-source ====
Version update (5.6.14 -> 5.7.1)
- syscalls: fix offset type of ksys_ftruncate (bsc#1172699).
- commit 8d4977c
- armv7/ararch64: Update config files.
Enable IOMMU_DEFAULT_PASSTHROUGH; per jsc#SLE-5568 this should be on by
default, like on x86_64.
- commit bb34387
- Refresh
patches.suse/jbd2-avoid-leaking-transaction-credits-when-unreserv.patch.
Update upstream status.
- commit c3ae43f
- KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be
generated (bsc#1171904).
- KVM: x86: only do L1TF workaround on affected processors
(bsc#1171904).
- commit 16721c7
- Linux 5.7.1 (bnc#1012628).
- airo: Fix read overflows sending packets (bnc#1012628).
- net: dsa: mt7530: set CPU port to fallback mode (bnc#1012628).
- media: staging: ipu3-imgu: Move alignment attribute to field
(bnc#1012628).
- media: Revert "staging: imgu: Address a compiler warning on
alignment" (bnc#1012628).
- mmc: fix compilation of user API (bnc#1012628).
- kernel/relay.c: handle alloc_percpu returning NULL in relay_open
(bnc#1012628).
- crypto: api - Fix use-after-free and race in crypto_spawn_alg
(bnc#1012628).
- mt76: mt76x02u: Add support for newer versions of the XBox
One wifi adapter (bnc#1012628).
- p54usb: add AirVasT USB stick device-id (bnc#1012628).
- HID: i2c-hid: add Schneider SCL142ALM to descriptor override
(bnc#1012628).
- HID: multitouch: enable multi-input as a quirk for some devices
(bnc#1012628).
- HID: sony: Fix for broken buttons on DS3 USB dongles
(bnc#1012628).
- mm: Fix mremap not considering huge pmd devmap (bnc#1012628).
- media: dvbdev: Fix tuner->demod media controller link
(bnc#1012628).
- commit cc2f849
- config: refresh with gcc10
gcc10 is default in Tumbleweed now.
- commit 0b1e86b
- Revert "Update config files."
This reverts commit 34be040b91701c047e592935bc2dbb46a3947a56. We now
have a fix (previous commit) in place, so change the configuration back
(bsc#1156053).
- commit f4546fe
- usercopy: mark dma-kmalloc caches as usercopy caches
(bsc#1156053).
- commit d3b5ce7
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- commit 8599ef4
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- Delete
patches.suse/Revert-ext4-make-dioread_nolock-the-default.patch.
Replace revert by the upstream fix.
- commit bfa465b
- Refresh
patches.suse/drm-nouveau-Fix-regression-by-audio-component-transition.patch.
Update upstream status.
- commit 3000ce5
- config: enable DEBUG_INFO_BTF
This was disabled when the option was introduced in 5.2-rc1 but it turned
out there are interesting use cases for having it enabled.
Add pahole to build time dependencies as it is used to extracth the BTF
data. Once we figure out how to make it conditional (only if DEBUG_INFO_BTF
exists and is enabled), it should be done in packaging branch.
- commit 9ddab66
- Updated to 5.7 final
- refresh configs
- commit 7cd0da5
- Update config files.
- commit 6dba057
- Revert "virtio-balloon: Revert "virtio-balloon: Switch back to
OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" (virtio fix).
- commit fe7831e
- Linux 5.6.15 (bnc#1012628).
- blacklist.conf: remove one entry
- sched/fair: Fix enqueue_task_fair() warning some more
(bnc#1012628).
- sched/fair: Fix reordering of enqueue/dequeue_task_fair()
(bnc#1012628).
- sched/fair: Reorder enqueue/dequeue_task_fair path
(bnc#1012628).
- bpf: Prevent mmap()'ing read-only maps as writable
(bnc#1012628).
- rxrpc: Fix ack discard (bnc#1012628).
- rxrpc: Trace discarded ACKs (bnc#1012628).
- x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive
tasks (bnc#1012628).
- flow_dissector: Drop BPF flow dissector prog ref on netns
cleanup (bnc#1012628).
- s390/kexec_file: fix initrd location for kdump kernel
(bnc#1012628).
- tpm: check event log version before reading final events
(bnc#1012628).
- rxrpc: Fix a memory leak in rxkad_verify_response()
(bnc#1012628).
- rxrpc: Fix the excessive initial retransmission timeout
(bnc#1012628).
- iio: imu: st_lsm6dsx: unlock on error in
st_lsm6dsx_shub_write_raw() (bnc#1012628).
- z3fold: fix use-after-free when freeing handles (bnc#1012628).
- sparc32: fix page table traversal in srmmu_nocache_init()
(bnc#1012628).
- sparc32: use PUD rather than PGD to get PMD in
srmmu_nocache_init() (bnc#1012628).
- sh: include linux/time_types.h for sockios (bnc#1012628).
- kasan: disable branch tracing for core runtime (bnc#1012628).
- rapidio: fix an error in get_user_pages_fast() error handling
(bnc#1012628).
- device-dax: don't leak kernel memory to user space after
unloading kmem (bnc#1012628).
- s390/kaslr: add support for R_390_JMP_SLOT relocation type
(bnc#1012628).
- s390/pci: Fix s390_mmio_read/write with MIO (bnc#1012628).
- ipack: tpci200: fix error return code in tpci200_register()
(bnc#1012628).
- mei: release me_cl object reference (bnc#1012628).
- tty: serial: add missing spin_lock_init for SiFive serial
console (bnc#1012628).
- misc: rtsx: Add short delay after exit from ASPM (bnc#1012628).
- driver core: Fix handling of SYNC_STATE_ONLY + STATELESS device
links (bnc#1012628).
- driver core: Fix SYNC_STATE_ONLY device link implementation
(bnc#1012628).
- iio: adc: ti-ads8344: Fix channel selection (bnc#1012628).
- iio: dac: vf610: Fix an error handling path in
'vf610_dac_probe()' (bnc#1012628).
- iio: sca3000: Remove an erroneous 'get_device()' (bnc#1012628).
- iio: adc: stm32-dfsdm: fix device used to request dma
(bnc#1012628).
- iio: adc: stm32-adc: fix device used to request dma
(bnc#1012628).
- staging: greybus: Fix uninitialized scalar variable
(bnc#1012628).
- staging: kpc2000: fix error return code in kp2000_pcie_probe()
(bnc#1012628).
- staging: wfx: unlock on error path (bnc#1012628).
- staging: iio: ad2s1210: Fix SPI reading (bnc#1012628).
- kbuild: Remove debug info from kallsyms linking (bnc#1012628).
- tools/bootconfig: Fix apply_xbc() to return zero on success
(bnc#1012628).
- Revert "driver core: platform: Initialize dma_parms for platform
devices" (bnc#1012628).
- virtio-balloon: Revert "virtio-balloon: Switch back to OOM
handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM" (bnc#1012628).
- Revert "gfs2: Don't demote a glock until its revokes are
written" (bnc#1012628).
- drm/i915: Propagate error from completed fences (bnc#1012628).
- drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead
of inheritance (bnc#1012628).
- vsprintf: don't obfuscate NULL and error pointers (bnc#1012628).
- dmaengine: owl: Use correct lock in owl_dma_get_pchan()
(bnc#1012628).
- dmaengine: idxd: fix interrupt completion after unmasking
(bnc#1012628).
- dmaengine: dmatest: Restore default for channel (bnc#1012628).
- drm/etnaviv: Fix a leak in submit_pin_objects() (bnc#1012628).
- dmaengine: tegra210-adma: Fix an error handling path in
'tegra_adma_probe()' (bnc#1012628).
- apparmor: Fix aa_label refcnt leak in policy_update
(bnc#1012628).
- apparmor: fix potential label refcnt leak in aa_change_profile
(bnc#1012628).
- apparmor: Fix use-after-free in aa_audit_rule_init
(bnc#1012628).
- pinctrl: qcom: Add affinity callbacks to msmgpio IRQ chip
(bnc#1012628).
- drm/etnaviv: fix perfmon domain interation (bnc#1012628).
- powerpc/64s: Disable STRICT_KERNEL_RWX (bnc#1012628).
- arm64: Fix PTRACE_SYSEMU semantics (bnc#1012628).
- scsi: target: Put lun_ref at end of tmr processing
(bnc#1012628).
- scsi: qla2xxx: Do not log message when reading port speed via
sysfs (bnc#1012628).
- ALSA: hda/realtek - Add more fixup entries for Clevo machines
(bnc#1012628).
- ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus
Xtreme (bnc#1012628).
- ALSA: pcm: fix incorrect hw_base increase (bnc#1012628).
- ALSA: iec1712: Initialize STDSP24 properly when using the
model=staudio option (bnc#1012628).
- bpf: Add bpf_probe_read_{user, kernel}_str() to
do_refine_retval_range (bnc#1012628).
- bpf: Restrict bpf_probe_read{, str}() only to archs where they
work (bnc#1012628).
- Update config files.
- ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with
ALC295 (bnc#1012628).
- ALSA: hda/realtek: Add quirk for Samsung Notebook (bnc#1012628).
- ALSA: hda/realtek - Add HP new mute led supported for ALC236
(bnc#1012628).
- ALSA: hda/realtek - Add supported new mute Led for HP
(bnc#1012628).
- scripts/gdb: repair rb_first() and rb_last() (bnc#1012628).
- tools/bootconfig: Fix resource leak in apply_xbc()
(bnc#1012628).
- ARM: futex: Address build warning (bnc#1012628).
- KVM: selftests: Fix build for evmcs.h (bnc#1012628).
- drm/amd/display: Prevent dpcd reads with passive dongles
(bnc#1012628).
- drm/amd/display: fix counter in wait_for_no_pipes_pending
(bnc#1012628).
- iommu/amd: Call domain_flush_complete() in update_domain()
(bnc#1012628).
- iommu/amd: Do not loop forever when trying to increase address
space (bnc#1012628).
- platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
(bnc#1012628).
- USB: core: Fix misleading driver bug report (bnc#1012628).
- stmmac: fix pointer check after utilization in stmmac_interrupt
(bnc#1012628).
- ceph: fix double unlock in handle_cap_export() (bnc#1012628).
- HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A
keyboard-dock (bnc#1012628).
- gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() (bnc#1012628).
- x86/apic: Move TSC deadline timer debug printk (bnc#1012628).
- selftests: fix kvm relocatable native/cross builds and installs
(bnc#1012628).
- ftrace/selftest: make unresolved cases cause failure if
- -fail-unresolved set (bnc#1012628).
- ibmvnic: Skip fatal error reset after passive init
(bnc#1012628).
- HID: i2c-hid: reset Synaptics SYNA2393 on resume (bnc#1012628).
- scsi: ibmvscsi: Fix WARN_ON during event pool release
(bnc#1012628).
- net/ena: Fix build warning in ena_xdp_set() (bnc#1012628).
- component: Silence bind error on -EPROBE_DEFER (bnc#1012628).
- aquantia: Fix the media type of AQC100 ethernet controller in
the driver (bnc#1012628).
- vhost/vsock: fix packet delivery order to monitoring devices
(bnc#1012628).
- configfs: fix config_item refcnt leak in configfs_rmdir()
(bnc#1012628).
- scsi: qla2xxx: Delete all sessions before unregister local
nvme port (bnc#1012628).
- scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
(bnc#1012628).
- HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY
instead (bnc#1012628).
- HID: alps: Add AUI1657 device ID (bnc#1012628).
- HID: logitech: Add support for Logitech G11 extra keys
(bnc#1012628).
- HID: multitouch: add eGalaxTouch P80H84 support (bnc#1012628).
- gcc-common.h: Update for GCC 10 (bnc#1012628).
- net: drop_monitor: use IS_REACHABLE() to guard
net_dm_hw_report() (bnc#1012628).
- kbuild: avoid concurrency issue in parallel building dtbs and
dtbs_check (bnc#1012628).
- iommu: Fix deferred domain attachment (bnc#1012628).
- mtd: Fix mtd not registered due to nvmem name collision
(bnc#1012628).
- afs: Don't unlock fetched data pages until the op completes
successfully (bnc#1012628).
- ubi: Fix seq_file usage in detailed_erase_block_info debugfs
file (bnc#1012628).
- i2c: mux: demux-pinctrl: Fix an error handling path in
'i2c_demux_pinctrl_probe()' (bnc#1012628).
- evm: Fix a small race in init_desc() (bnc#1012628).
- iommu/amd: Fix get_acpihid_device_id() (bnc#1012628).
- iommu/amd: Fix over-read of ACPI UID from IVRS table
(bnc#1012628).
- i2c: fix missing pm_runtime_put_sync in i2c_device_probe
(bnc#1012628).
- ubifs: remove broken lazytime support (bnc#1012628).
- pipe: Fix pipe_full() test in opipe_prep() (bnc#1012628).
- fix multiplication overflow in copy_fdtable() (bnc#1012628).
- mtd: spinand: Propagate ECC information to the MTD structure
(bnc#1012628).
- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
(bnc#1012628).
- ubifs: fix wrong use of crypto_shash_descsize() (bnc#1012628).
- ovl: potential crash in ovl_fid_to_fh() (bnc#1012628).
- ima: Fix return value of ima_write_policy() (bnc#1012628).
- evm: Check also if *tfm is an error pointer in init_desc()
(bnc#1012628).
- ima: Set file->f_mode instead of file->f_flags in
ima_calc_file_hash() (bnc#1012628).
- ARC: [plat-hsdk]: fix USB regression (bnc#1012628).
- i2c: dev: Fix the race between the release of i2c_dev and cdev
(bnc#1012628).
- commit 5afc154
- Update config files.
Remove ACPI_PROCFS_POWER
This should all be in sysfs nowadays. If this is in Tumbleweed for a while,
a patch to totally remove this code will be sent mainline.
Related to bsc#1160977
- commit 96731f2
- rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073).
- commit 6524463
- Update to 5.7-rc7
- refresh configs (ARCH_HAS_STRICT_KERNEL_RWX=n on ppc64/ppc64le)
- commit 67f7fb5
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== util-linux-systemd ====
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
busybox-links
cilium
kernel-source (5.6.14 -> 5.7.1)
kubernetes (1.18.2 -> 1.18.3)
kubernetes1.17 (1.17.5 -> 1.17.6)
kubernetes1.18 (1.18.2 -> 1.18.3)
util-linux
util-linux-systemd
weave (2.6.2 -> 2.6.4)
=== Details ===
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-xz
- Create own busybox-adduser sub-package
==== cilium ====
- add 0002-bpf-re-add-a-proper-types.h-mapper.patch
- add 0001-build-Avoid-using-git-if-not-in-a-git-repo.patch
- add 0001-datapath-Switch-to-upstream-bpftool-remove-additiona.patch
- build BPF_SRCFILES to get the list of bpf files to install
==== kernel-source ====
Version update (5.6.14 -> 5.7.1)
- syscalls: fix offset type of ksys_ftruncate (bsc#1172699).
- commit 8d4977c
- armv7/ararch64: Update config files.
Enable IOMMU_DEFAULT_PASSTHROUGH; per jsc#SLE-5568 this should be on by
default, like on x86_64.
- commit bb34387
- Refresh
patches.suse/jbd2-avoid-leaking-transaction-credits-when-unreserv.patch.
Update upstream status.
- commit c3ae43f
- KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be
generated (bsc#1171904).
- KVM: x86: only do L1TF workaround on affected processors
(bsc#1171904).
- commit 16721c7
- Linux 5.7.1 (bnc#1012628).
- airo: Fix read overflows sending packets (bnc#1012628).
- net: dsa: mt7530: set CPU port to fallback mode (bnc#1012628).
- media: staging: ipu3-imgu: Move alignment attribute to field
(bnc#1012628).
- media: Revert "staging: imgu: Address a compiler warning on
alignment" (bnc#1012628).
- mmc: fix compilation of user API (bnc#1012628).
- kernel/relay.c: handle alloc_percpu returning NULL in relay_open
(bnc#1012628).
- crypto: api - Fix use-after-free and race in crypto_spawn_alg
(bnc#1012628).
- mt76: mt76x02u: Add support for newer versions of the XBox
One wifi adapter (bnc#1012628).
- p54usb: add AirVasT USB stick device-id (bnc#1012628).
- HID: i2c-hid: add Schneider SCL142ALM to descriptor override
(bnc#1012628).
- HID: multitouch: enable multi-input as a quirk for some devices
(bnc#1012628).
- HID: sony: Fix for broken buttons on DS3 USB dongles
(bnc#1012628).
- mm: Fix mremap not considering huge pmd devmap (bnc#1012628).
- media: dvbdev: Fix tuner->demod media controller link
(bnc#1012628).
- commit cc2f849
- config: refresh with gcc10
gcc10 is default in Tumbleweed now.
- commit 0b1e86b
- Revert "Update config files."
This reverts commit 34be040b91701c047e592935bc2dbb46a3947a56. We now
have a fix (previous commit) in place, so change the configuration back
(bsc#1156053).
- commit f4546fe
- usercopy: mark dma-kmalloc caches as usercopy caches
(bsc#1156053).
- commit d3b5ce7
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- commit 8599ef4
- jbd2: avoid leaking transaction credits when unreserving handle
(bnc#1169774).
- Delete
patches.suse/Revert-ext4-make-dioread_nolock-the-default.patch.
Replace revert by the upstream fix.
- commit bfa465b
- Refresh
patches.suse/drm-nouveau-Fix-regression-by-audio-component-transition.patch.
Update upstream status.
- commit 3000ce5
- config: enable DEBUG_INFO_BTF
This was disabled when the option was introduced in 5.2-rc1 but it turned
out there are interesting use cases for having it enabled.
Add pahole to build time dependencies as it is used to extracth the BTF
data. Once we figure out how to make it conditional (only if DEBUG_INFO_BTF
exists and is enabled), it should be done in packaging branch.
- commit 9ddab66
- Updated to 5.7 final
- refresh configs
- commit 7cd0da5
- Update config files.
- commit 6dba057
- Revert "virtio-balloon: Revert "virtio-balloon: Switch back to
OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" (virtio fix).
- commit fe7831e
- Linux 5.6.15 (bnc#1012628).
- blacklist.conf: remove one entry
- sched/fair: Fix enqueue_task_fair() warning some more
(bnc#1012628).
- sched/fair: Fix reordering of enqueue/dequeue_task_fair()
(bnc#1012628).
- sched/fair: Reorder enqueue/dequeue_task_fair path
(bnc#1012628).
- bpf: Prevent mmap()'ing read-only maps as writable
(bnc#1012628).
- rxrpc: Fix ack discard (bnc#1012628).
- rxrpc: Trace discarded ACKs (bnc#1012628).
- x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive
tasks (bnc#1012628).
- flow_dissector: Drop BPF flow dissector prog ref on netns
cleanup (bnc#1012628).
- s390/kexec_file: fix initrd location for kdump kernel
(bnc#1012628).
- tpm: check event log version before reading final events
(bnc#1012628).
- rxrpc: Fix a memory leak in rxkad_verify_response()
(bnc#1012628).
- rxrpc: Fix the excessive initial retransmission timeout
(bnc#1012628).
- iio: imu: st_lsm6dsx: unlock on error in
st_lsm6dsx_shub_write_raw() (bnc#1012628).
- z3fold: fix use-after-free when freeing handles (bnc#1012628).
- sparc32: fix page table traversal in srmmu_nocache_init()
(bnc#1012628).
- sparc32: use PUD rather than PGD to get PMD in
srmmu_nocache_init() (bnc#1012628).
- sh: include linux/time_types.h for sockios (bnc#1012628).
- kasan: disable branch tracing for core runtime (bnc#1012628).
- rapidio: fix an error in get_user_pages_fast() error handling
(bnc#1012628).
- device-dax: don't leak kernel memory to user space after
unloading kmem (bnc#1012628).
- s390/kaslr: add support for R_390_JMP_SLOT relocation type
(bnc#1012628).
- s390/pci: Fix s390_mmio_read/write with MIO (bnc#1012628).
- ipack: tpci200: fix error return code in tpci200_register()
(bnc#1012628).
- mei: release me_cl object reference (bnc#1012628).
- tty: serial: add missing spin_lock_init for SiFive serial
console (bnc#1012628).
- misc: rtsx: Add short delay after exit from ASPM (bnc#1012628).
- driver core: Fix handling of SYNC_STATE_ONLY + STATELESS device
links (bnc#1012628).
- driver core: Fix SYNC_STATE_ONLY device link implementation
(bnc#1012628).
- iio: adc: ti-ads8344: Fix channel selection (bnc#1012628).
- iio: dac: vf610: Fix an error handling path in
'vf610_dac_probe()' (bnc#1012628).
- iio: sca3000: Remove an erroneous 'get_device()' (bnc#1012628).
- iio: adc: stm32-dfsdm: fix device used to request dma
(bnc#1012628).
- iio: adc: stm32-adc: fix device used to request dma
(bnc#1012628).
- staging: greybus: Fix uninitialized scalar variable
(bnc#1012628).
- staging: kpc2000: fix error return code in kp2000_pcie_probe()
(bnc#1012628).
- staging: wfx: unlock on error path (bnc#1012628).
- staging: iio: ad2s1210: Fix SPI reading (bnc#1012628).
- kbuild: Remove debug info from kallsyms linking (bnc#1012628).
- tools/bootconfig: Fix apply_xbc() to return zero on success
(bnc#1012628).
- Revert "driver core: platform: Initialize dma_parms for platform
devices" (bnc#1012628).
- virtio-balloon: Revert "virtio-balloon: Switch back to OOM
handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM" (bnc#1012628).
- Revert "gfs2: Don't demote a glock until its revokes are
written" (bnc#1012628).
- drm/i915: Propagate error from completed fences (bnc#1012628).
- drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead
of inheritance (bnc#1012628).
- vsprintf: don't obfuscate NULL and error pointers (bnc#1012628).
- dmaengine: owl: Use correct lock in owl_dma_get_pchan()
(bnc#1012628).
- dmaengine: idxd: fix interrupt completion after unmasking
(bnc#1012628).
- dmaengine: dmatest: Restore default for channel (bnc#1012628).
- drm/etnaviv: Fix a leak in submit_pin_objects() (bnc#1012628).
- dmaengine: tegra210-adma: Fix an error handling path in
'tegra_adma_probe()' (bnc#1012628).
- apparmor: Fix aa_label refcnt leak in policy_update
(bnc#1012628).
- apparmor: fix potential label refcnt leak in aa_change_profile
(bnc#1012628).
- apparmor: Fix use-after-free in aa_audit_rule_init
(bnc#1012628).
- pinctrl: qcom: Add affinity callbacks to msmgpio IRQ chip
(bnc#1012628).
- drm/etnaviv: fix perfmon domain interation (bnc#1012628).
- powerpc/64s: Disable STRICT_KERNEL_RWX (bnc#1012628).
- arm64: Fix PTRACE_SYSEMU semantics (bnc#1012628).
- scsi: target: Put lun_ref at end of tmr processing
(bnc#1012628).
- scsi: qla2xxx: Do not log message when reading port speed via
sysfs (bnc#1012628).
- ALSA: hda/realtek - Add more fixup entries for Clevo machines
(bnc#1012628).
- ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus
Xtreme (bnc#1012628).
- ALSA: pcm: fix incorrect hw_base increase (bnc#1012628).
- ALSA: iec1712: Initialize STDSP24 properly when using the
model=staudio option (bnc#1012628).
- bpf: Add bpf_probe_read_{user, kernel}_str() to
do_refine_retval_range (bnc#1012628).
- bpf: Restrict bpf_probe_read{, str}() only to archs where they
work (bnc#1012628).
- Update config files.
- ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with
ALC295 (bnc#1012628).
- ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with
ALC295 (bnc#1012628).
- ALSA: hda/realtek: Add quirk for Samsung Notebook (bnc#1012628).
- ALSA: hda/realtek - Add HP new mute led supported for ALC236
(bnc#1012628).
- ALSA: hda/realtek - Add supported new mute Led for HP
(bnc#1012628).
- scripts/gdb: repair rb_first() and rb_last() (bnc#1012628).
- tools/bootconfig: Fix resource leak in apply_xbc()
(bnc#1012628).
- ARM: futex: Address build warning (bnc#1012628).
- KVM: selftests: Fix build for evmcs.h (bnc#1012628).
- drm/amd/display: Prevent dpcd reads with passive dongles
(bnc#1012628).
- drm/amd/display: fix counter in wait_for_no_pipes_pending
(bnc#1012628).
- iommu/amd: Call domain_flush_complete() in update_domain()
(bnc#1012628).
- iommu/amd: Do not loop forever when trying to increase address
space (bnc#1012628).
- platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
(bnc#1012628).
- USB: core: Fix misleading driver bug report (bnc#1012628).
- stmmac: fix pointer check after utilization in stmmac_interrupt
(bnc#1012628).
- ceph: fix double unlock in handle_cap_export() (bnc#1012628).
- HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A
keyboard-dock (bnc#1012628).
- gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() (bnc#1012628).
- x86/apic: Move TSC deadline timer debug printk (bnc#1012628).
- selftests: fix kvm relocatable native/cross builds and installs
(bnc#1012628).
- ftrace/selftest: make unresolved cases cause failure if
- -fail-unresolved set (bnc#1012628).
- ibmvnic: Skip fatal error reset after passive init
(bnc#1012628).
- HID: i2c-hid: reset Synaptics SYNA2393 on resume (bnc#1012628).
- scsi: ibmvscsi: Fix WARN_ON during event pool release
(bnc#1012628).
- net/ena: Fix build warning in ena_xdp_set() (bnc#1012628).
- component: Silence bind error on -EPROBE_DEFER (bnc#1012628).
- aquantia: Fix the media type of AQC100 ethernet controller in
the driver (bnc#1012628).
- vhost/vsock: fix packet delivery order to monitoring devices
(bnc#1012628).
- configfs: fix config_item refcnt leak in configfs_rmdir()
(bnc#1012628).
- scsi: qla2xxx: Delete all sessions before unregister local
nvme port (bnc#1012628).
- scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
(bnc#1012628).
- HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY
instead (bnc#1012628).
- HID: alps: Add AUI1657 device ID (bnc#1012628).
- HID: logitech: Add support for Logitech G11 extra keys
(bnc#1012628).
- HID: multitouch: add eGalaxTouch P80H84 support (bnc#1012628).
- gcc-common.h: Update for GCC 10 (bnc#1012628).
- net: drop_monitor: use IS_REACHABLE() to guard
net_dm_hw_report() (bnc#1012628).
- kbuild: avoid concurrency issue in parallel building dtbs and
dtbs_check (bnc#1012628).
- iommu: Fix deferred domain attachment (bnc#1012628).
- mtd: Fix mtd not registered due to nvmem name collision
(bnc#1012628).
- afs: Don't unlock fetched data pages until the op completes
successfully (bnc#1012628).
- ubi: Fix seq_file usage in detailed_erase_block_info debugfs
file (bnc#1012628).
- i2c: mux: demux-pinctrl: Fix an error handling path in
'i2c_demux_pinctrl_probe()' (bnc#1012628).
- evm: Fix a small race in init_desc() (bnc#1012628).
- iommu/amd: Fix get_acpihid_device_id() (bnc#1012628).
- iommu/amd: Fix over-read of ACPI UID from IVRS table
(bnc#1012628).
- i2c: fix missing pm_runtime_put_sync in i2c_device_probe
(bnc#1012628).
- ubifs: remove broken lazytime support (bnc#1012628).
- pipe: Fix pipe_full() test in opipe_prep() (bnc#1012628).
- fix multiplication overflow in copy_fdtable() (bnc#1012628).
- mtd: spinand: Propagate ECC information to the MTD structure
(bnc#1012628).
- ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
(bnc#1012628).
- ubifs: fix wrong use of crypto_shash_descsize() (bnc#1012628).
- ovl: potential crash in ovl_fid_to_fh() (bnc#1012628).
- ima: Fix return value of ima_write_policy() (bnc#1012628).
- evm: Check also if *tfm is an error pointer in init_desc()
(bnc#1012628).
- ima: Set file->f_mode instead of file->f_flags in
ima_calc_file_hash() (bnc#1012628).
- ARC: [plat-hsdk]: fix USB regression (bnc#1012628).
- i2c: dev: Fix the race between the release of i2c_dev and cdev
(bnc#1012628).
- commit 5afc154
- Update config files.
Remove ACPI_PROCFS_POWER
This should all be in sysfs nowadays. If this is in Tumbleweed for a while,
a patch to totally remove this code will be sent mainline.
Related to bsc#1160977
- commit 96731f2
- rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073).
- commit 6524463
- Update to 5.7-rc7
- refresh configs (ARCH_HAS_STRICT_KERNEL_RWX=n on ppc64/ppc64le)
- commit 67f7fb5
==== kubernetes ====
Version update (1.18.2 -> 1.18.3)
Subpackages: kubernetes-client kubernetes-kubeadm kubernetes-kubelet
- Bump to kubernetes 1.18.3 and 1.17.6
==== kubernetes1.17 ====
Version update (1.17.5 -> 1.17.6)
- Add reproducible-buildid.patch to make package build reproducible
- Remove %{?_smp_mflags} to make build more reliable [boo#1172744]
- Update to version 1.17.6:
* Azure: support non-VMSS instances removal
* deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0
* build: Add build-image OWNERS to debian-{base,iptables} and pause dirs
* count no nodes scheduling failure as unschedulable instead of error
* base-images: Update to kube-cross:v1.13.9-5
* build: Alpha-sort dependencies.yaml
* Work-around for missing metrics on CRI-O exited containers
* fix: azure disk dangling attach issue
* fix: ACR auth fails in private azure clouds
* Restore cache-control header filter
* bugfix: initcontainer wasn't considered when calculate resource request
* fix: azure file csi migration failure
* Fix flaws in Azure CSI translation
* Update CHANGELOG/CHANGELOG-1.17.md for v1.17.5
* Move PSP tests behind a feature tag
* Fix code for 1.17
* kube-openapi bump to release-1.17
* Do not reset managedFields in status update strategy
* Use discovery to test apply all status
* Preserve int/float distinction when decoding raw values
* All check for instanceID
* Fix AWS eventual consistency of AttachDisk
* fix: update max azure disk max count
* Fix cherry-pick errors
* Fix CSINodeInfo startup
* Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init
- Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372]
==== kubernetes1.18 ====
Version update (1.18.2 -> 1.18.3)
Subpackages: kubernetes1.18-client kubernetes1.18-kubeadm kubernetes1.18-kubelet kubernetes1.18-kubelet-common
- Remove %{?_smp_mflags} to make build more reliable [boo#1172744]
- Add reproducible-buildid.patch to make package build reproducible
- Update to version 1.18.3:
* Move nfs-provisioner from quay.io/kubernetes_incubator to staging-csi
* Use staging-csi to work around quay.io availability
* Azure: support non-VMSS instances removal
* deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0
* build: Add build-image OWNERS to debian-{base,iptables} and pause dirs
* count no nodes scheduling failure as unschedulable instead of error
* kubeadm: fix flakes when performing etcd MemberAdd on slower setups
* base-images: Update to kube-cross:v1.13.9-5
* build: Alpha-sort dependencies.yaml
* fix: azure disk dangling attach issue
* kube-proxy: increase the session affinity timeout to ensure that the test passes in ipvs mode
* cluster: ipvs conntrack module vs kernel version
* allow k8s.io/kubernetes/third_party/forked/ipvs in e2e test framework import restrictions (transitive dep from pkg/kubemark)
* add license headers for third_party/forked/ipvs
* third_party/forked/ipvs: check the address family if the netlink address family attribute is not set
* run hack/update-vendor.sh to remove github.com/docker/libnetwork
* remove github.com/docker/libnetwork from go.mod
* update pkg/util/ipvs to use third_party/forked/ipvs
* move github.com/docker/libnetwork/ipvs to third_party/forked
* fix backoff manager timer initialization race
* fix: ACR auth fails in private azure clouds
* Restore cache-control header filter
* kube-scheduler: compatibility with ServerSideApply
* bugfix: initcontainer wasn't considered when calculate resource request
* fix: azure file csi migration failure
* Fix flaws in Azure CSI translation
* Revert "stop defaulting kubeconfig to http://localhost:8080"
* Update CHANGELOG/CHANGELOG-1.18.md for v1.18.2
* Fix Node initialization for GCP cloud provider
* Simplify unregistration of csiplugin
* Unregister csiplugin even if socket path is gone
* Move PSP tests behind a feature tag
* kube-openapi bump to release-1.18
* Preserve int/float distinction when decoding raw values
* Check Annotations map against nil for ConfigMapLock#Update()
* Fix CSINodeInfo startup
* Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init
- Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372]
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== util-linux-systemd ====
- Add patch to fix sfdisk not reading its own scripts:
* libfdisk-script-accept-sector-size.patch
- Use %autopatch
- Fix verification of mount, su and umount (bsc#1166948)
==== weave ====
Version update (2.6.2 -> 2.6.4)
- Update to version 2.6.4
- Improve the iptables rule to block just the Weave Net control port,
and avoid blocking other uses of 127.0.0.1. #3811
- Update to version 2.6.3
- Block non-local traffic to the Weave control port #3805
- Tell Linux not to accept router advisory messages #3801
- NPC: add a metric to show errors while operating #3804
- NPC: don't treat named port as a fatal error #3790
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
alsa (1.2.2 -> 1.2.3)
audit
busybox-links
cogl (1.22.6 -> 1.22.8)
conmon (2.0.16 -> 2.0.17)
dracut (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
fcoe-utils (1.0.32 -> 1.0.33)
ffmpeg-4 (4.2.2 -> 4.2.3)
fonts-config (20190119 -> 20200609+git0.42e2b1b)
ghostscript-fonts
gmp
gnome-software
gnutls (3.6.13 -> 3.6.14)
gstreamer
hunspell
hwdata (0.335 -> 0.336)
icu
installation-images-MicroOS (15.4 -> 15.5)
konsole
krb5 (1.18.1 -> 1.18.2)
ksysguard5 (5.19.0 -> 5.19.0.1)
libgpg-error (1.37 -> 1.38)
libjcat (0.1.2 -> 0.1.2+3)
libksysguard5 (5.19.0 -> 5.19.0.1)
libnftnl (1.1.6 -> 1.1.7)
libosinfo (1.7.1 -> 1.8.0)
libqt5-qtbase
librsvg (2.48.4 -> 2.48.7)
libseccomp (2.4.2 -> 2.4.3)
libxml2
libzip (1.6.1 -> 1.7.0)
mozjs68 (68.7.0 -> 68.9.0)
multipath-tools (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
ncurses (6.2.20200502 -> 6.2.20200531)
newt
open-iscsi
openssh (8.1p1 -> 8.3p1)
osinfo-db (20200214 -> 20200529)
patterns-base
perl
perl-libwww-perl (6.44 -> 6.45)
permissions (1550_20200520 -> 1550_20200526)
pulseaudio
purge-kernels-service
python-rpm-macros (20200207.5feb6c1 -> 20200529.b301e36)
python3
python3-base
shadow
sqlite3 (3.31.1 -> 3.32.2)
sssd (2.2.3 -> 2.3.0)
suse-module-tools (15.3.2 -> 15.3.3)
systemd
timezone
ucode-intel (20191115 -> 20200609)
vim
xdg-utils (1.1.3+20190413 -> 1.1.3+20200220)
xdm
xen
xterm
yast2 (4.3.5 -> 4.3.6)
=== Details ===
==== alsa ====
Version update (1.2.2 -> 1.2.3)
- Update to alsa-lib 1.2.3:
including previous fixes, see the detailed changes at:
https://www.alsa-project.org/wiki/Detailed_changes_v1.2.2_v1.2.3
- Drop obsoleted patches:
0001-conf-change-the-order-of-PCM-devices-in-alsa.conf.patch
0002-conf-namehint-add-omit_noargs-to-the-hint-section.patch
0003-Change-PCM-device-number-of-Asus-Xonar-U5.patch
0004-configure-add-embed-for-python3-config-python-3.8.patch
0005-conf-USB-Audio-Add-C-Media-USB-Headphone-Set-to-the-.patch
0006-topology-add-back-asrc-to-widget_map-in-dapm.c.patch
0007-ucm-clarify-the-index-syntax-for-the-device-names.patch
0008-ucm-fix-uc_mgr_scan_master_configs.patch
0009-namehint-remember-the-direction-from-the-upper-level.patch
0010-conf-fix-namehint-for-pcm.front-and-pcm.iec958.patch
0011-pcm-add-chmap-option-to-route-plugin.patch
0012-usecase-allow-indexes-also-for-modifier-names.patch
0013-ucm-fix-the-device-remove-operation.patch
0014-ucm-fix-copy-n-paste-typo-RemoveDevice-list.patch
0015-pcm-dmix-fix-sw_params-handling-of-timestamp-types-i.patch
0016-conf-USB-Audio-Fix-S-PDIF-output-of-ASUS-Xonar-AE.patch
0017-pcm-rate-fix-the-remaining-size-calculation-in-snd_p.patch
0018-use-case.h-add-USB-as-allowed-device-name.patch
0019-topology-Use-bool-parser-to-parse-boolean-value.patch
0020-fix-infinite-draining-of-the-rate-plugin-in-SND_PCM_.patch
0021-test-pcm_min-add-snd_pcm_drain-call-and-indentation-.patch
==== audit ====
Subpackages: libaudit1 libauparse0
- Fix specfile to require libauparse0 and libaudit1 after splitting
audit-libs (bsc#1172295)
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-psmisc busybox-xz
- Add conflicts: mawk to busybox-gawk
==== cogl ====
Version update (1.22.6 -> 1.22.8)
Subpackages: libcogl-pango20 libcogl20
- Update to version 1.22.8:
+ Fix building against libglvnd-provided EGL headers.
+ Stop checking the Automake version.
+ Fix compiler warnings with GCC ? 9.
+ Ensure we don't close the same X display twice.
+ Test suite fixes.
+ Free pipeline state last.
- Drop cogl-fix-mesa20.patch: Fixed upstream. Following this, drop
libtool BuildRequires and autoreconf call, no longer needed.
==== conmon ====
Version update (2.0.16 -> 2.0.17)
- Update to v2.0.17
- Add option to delay execution of exit command
==== dracut ====
Version update (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
Subpackages: dracut-ima
- Update to version 050+suse.66.g76431c83:
* 95iscsi: fix missing space when compiling cmdline args (bsc#1172816)
==== fcoe-utils ====
Version update (1.0.32 -> 1.0.33)
- Updated with latest upstream v1.0.33 from v1.0.32:
* Added "-Wextra" and enabled "-Werror" for compiling
* Ignore auto-generated files
* Update systemd service files (several updates)
* A bunch of gcc-10-related fixes, such as marking unused
arguments, fixing strncpy()s, string truncation/overflow
* better error handling/retry for link issues (like EBUSY)
* replace use of "ifconfig" with "ip" in debug scripts
* fix long-standing issue with netlink buffer resizing
* move bash completions to proper system directory
This replaces fcoe-utils-v1.0.32.tar.xz with
fcoe-utils-v1.0.33.tar.xz, and it does away with the
following patches, since they are all fixed upstream:
* 0003-systemctl-cannot-start-fcoemon.socket.patch
* 0004-fcoemon-Correctly-handle-options-in-the-service-file.patch
* 0005-fcoe.service-Add-foreground-to-prevent-fcoemon-to-be.patch
* 0006-fipvlan-fixup-return-value-on-error.patch
* 0008-Use-correct-socket-for-fcoemon.socket.patch
* 0012-fcoemon-Retry-fcm_link_getlink-on-EBUSY.patch
* fcoe-utils-1.0.29-make.patch
* fcoe-utils-stop-using-ifconfig.patch
And the following patch was removed because we can
successfully compile with "-Werror" now:
* 0009-disable-Werror-building.patch
==== ffmpeg-4 ====
Version update (4.2.2 -> 4.2.3)
Subpackages: libavcodec58 libavformat58 libavutil56 libswresample3
- Update to version 4.2.3:
* Stable bug fix release, mainly codecs and format fixes.
- Drop 0001-avcodec-cbs_jpeg-Check-length-for-SOS.patch: Fixed
upstream.
==== fonts-config ====
Version update (20190119 -> 20200609+git0.42e2b1b)
- Add a _service file
- Add code in %post to check the value of
FORCE_MODIFY_DEFAULT_FONT_SETTINGS_IN_NEXT_UPDATE and if it's
set to yes, empty or it doesn't exist, then update the values
of FORCE_HINTSTYLE, USE_LCDFILTER and USE_RGBA in
/etc/sysconfig/fonts-config to use the default settings
established in the 20181211 release (boo#1172022)
- Update to 20200609+git0.42e2b1b:
* Add variable to allow fonts-config to update default settings
* Fix en-US, en-GB font matching
==== ghostscript-fonts ====
Subpackages: ghostscript-fonts-other ghostscript-fonts-std
- Add a ghostscript-fonts-std-converted subpackage with fonts from
ghostscript-fonts-std converted to TrueType format (boo#1169444)
==== gmp ====
- correct license statement (library itself is no GPL-3.0)
==== gnome-software ====
- Add gnome-software-failed-offline-update-notification.patch:
plugin-loader: handle offline update errors properly(bsc#1161095,
glgo#GNOME/gnome-software!471).
==== gnutls ====
Version update (3.6.13 -> 3.6.14)
- Fix a memory leak that could lead to a DoS attack against Samba
servers (bsc#1172663)
* add 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
- Temporarily disable broken guile reauth test (bsc#1171565)
* add gnutls-temporarily_disable_broken_guile_reauth_test
- Update to 3.6.14
* libgnutls: Fixed insecure session ticket key construction, since 3.6.4.
The TLS server would not bind the session ticket encryption key with a
value supplied by the application until the initial key rotation, allowing
attacker to bypass authentication in TLS 1.3 and recover previous
conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777)
[GNUTLS-SA-2020-06-03, CVSS: high]
* libgnutls: Fixed handling of certificate chain with cross-signed
intermediate CA certificates (#1008). (bsc#1172461)
* libgnutls: Fixed reception of empty session ticket under TLS 1.2 (#997).
* libgnutls: gnutls_x509_crt_print() is enhanced to recognizes commonName
(2.5.4.3), decodes certificate policy OIDs (!1245), and prints Authority
Key Identifier (AKI) properly (#989, #991).
* certtool: PKCS #7 attributes are now printed with symbolic names (!1246).
* libgnutls: Use accelerated AES-XTS implementation if possible (!1244).
Also both accelerated and non-accelerated implementations check key block
according to FIPS-140-2 IG A.9 (!1233).
* libgnutls: Added support for AES-SIV ciphers (#463).
* libgnutls: Added support for 192-bit AES-GCM cipher (!1267).
* libgnutls: No longer use internal symbols exported from Nettle (!1235)
* API and ABI modifications:
GNUTLS_CIPHER_AES_128_SIV: Added
GNUTLS_CIPHER_AES_256_SIV: Added
GNUTLS_CIPHER_AES_192_GCM: Added
gnutls_pkcs7_print_signature_info: Added
- Add key D605848ED7E69871: public key "Daiki Ueno <ueno(a)unixuser.org>" to
the keyring
- Drop gnutls-fips_correct_nettle_soversion.patch (upstream)
==== gstreamer ====
Subpackages: libgstreamer-1_0-0
- adjust / ship more 32bit stuff for Wine usage (bsc#1172304)
==== hunspell ====
- security update
- added patches
fix CVE-2019-16707 [bsc#1151867], invalid read operation in SuggestMgr:leftcommonsubstring in suggestmgr.cxx
+ hunspell-CVE-2019-16707.patch
==== hwdata ====
Version update (0.335 -> 0.336)
- Update to version 0.336:
+ Updated pci, usb and vendor ids.
==== icu ====
Subpackages: libicu67 libicu67-ledata
- Add the provides for libicu to Make .Net core can install
successfully. (bsc#1167603, bsc#1161007)
==== installation-images-MicroOS ====
Version update (15.4 -> 15.5)
- merge gh#openSUSE/installation-images#384
- Add missed file to instsys. bsc#1158522 [Build 101.1] openQA test
fails in windows_client_remotelogin
- 15.5
==== konsole ====
Subpackages: konsole-part
- Add upstream patches to fix possible crash when closing a session
in KonsolePart (boo#1169408, kde#420817, kde#420695, kde#415762):
* Fix-crash-when-closing-session-in-KonsolePart-via-menu.patch
* Fix-konsolepart-segfault-when-closing-after-showing-context-menu.patch
==== krb5 ====
Version update (1.18.1 -> 1.18.2)
- Update to 1.18.2
* Fix a SPNEGO regression where an acceptor using the default credential
would improperly filter mechanisms, causing a negotiation failure.
* Fix a bug where the KDC would fail to issue tickets if the local krbtgt
principal's first key has a single-DES enctype.
* Add stub functions to allow old versions of OpenSSL libcrypto to link
against libkrb5.
* Fix a NegoEx bug where the client name and delegated credential might
not be reported.
- Update logrotate script, call systemd to reload the services
instead of init-scripts. (boo#1169357)
- Don't add the lto flags to the public link options. (boo#1172038)
==== ksysguard5 ====
Version update (5.19.0 -> 5.19.0.1)
- Update to 5.19.0.1
* New bugfix release
- Changes since 5.19.0:
* Use new name for dbus interface too
* Don't prefix value output with mount point
==== libgpg-error ====
Version update (1.37 -> 1.38)
- Update to 1.38:
* New option parser features to implement system wide
configuration files
* New functions to build file names
* New function to help reallocating arrays
* Protect gpgrt_inc_errorcount against counter overflow
- drop needless autotools build dependencies that were added for
gawk5.patch
==== libjcat ====
Version update (0.1.2 -> 0.1.2+3)
- Update to version 0.1.2+3:
* Validate that gpgme_op_verify_result() returned at least one
signature (CVE-2020-10759).
==== libksysguard5 ====
Version update (5.19.0 -> 5.19.0.1)
Subpackages: libksysguard5-helper libksysguard5-imports
- Update to 5.19.0.1
* New bugfix release
- Changes since 5.19.0:
* Use new name for dbus interface
==== libnftnl ====
Version update (1.1.6 -> 1.1.7)
- Update to release 1.1.7
* udata: add NFTNL_UDATA_SET_DATA_INTERVAL
==== libosinfo ====
Version update (1.7.1 -> 1.8.0)
Subpackages: libosinfo-1_0-0
- Update to version 1.8.0
Changes in this release include:
* Several CI improvements
* Several release scripts improvements
* Several translations improvements
* Several syntax-check improvements
* Code cleanup in order to modernize the GObject usage
* Add API to get whether a firmware is supported or not
* Add API to get "cloud-image-username"
==== libqt5-qtbase ====
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5
- Add patch to fix tool menu placement (boo#1172754, QTBUG-84462):
* 0001-Fix-QToolButton-menus-showing-on-primary-screens-in-.patch
==== librsvg ====
Version update (2.48.4 -> 2.48.7)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 typelib-1_0-Rsvg-2_0
- Update to version 2.48.7:
+ Fix failing tests.
- Update to version 2.48.6:
+ Fix build on big-endian machines.
- Update to version 2.48.5:
+ Support multiple fonts in the font-family property. Previously
in font-family="Foo, Bar, Baz" only Foo would get used.
+ Catch overflow when rendering files with a huge viewBox.
+ Don't panic with an empty objectBoundingBox for a mask.
+ Fix introspection data for rsvg_handle_set_stylesheet.
+ Fixes to the librsvg_crate documentation.
+ Loading raster images for inclusion in an SVG and producing
GdkPixbufs is now faster.
==== libseccomp ====
Version update (2.4.2 -> 2.4.3)
- Update to release 2.4.3
* Add list of authorized release signatures to README.md
* Fix multiplexing issue with s390/s390x shm* syscalls
* Remove the static flag from libseccomp tools compilation
* Add define for __SNR_ppoll
* Fix potential memory leak identified by clang in the
scmp_bpf_sim tool
- Drop no-static.diff, libseccomp-fix_aarch64-test.patch,
SNR_ppoll.patch (merged)
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Fix invalid xmlns references since the fix for CVE-2019-19956 [bsc#1172021]
- Revert upstream commit 5a02583c7e683896d84878bd90641d8d9b0d0549
* Add patch libxml2-CVE-2019-19956.patch
==== libzip ====
Version update (1.6.1 -> 1.7.0)
- libzip 1.7.0:
* Add support for encrypting using traditional PKWare encryption
* Add functions for querying supported compression and encryption
methods
* Add the ZIP_SOURCE_GET_FILE_ATTRIBUTES` source command
* Refactor stdio file backend
* Add CMake find_project() support
==== mozjs68 ====
Version update (68.7.0 -> 68.9.0)
- Update to version 68.9.0esr:
* CVE-2020-12399: Timing attack on DSA signatures in NSS library
* CVE-2020-12405: Use-after-free in SharedWorkerService
* CVE-2020-12406: JavaScript Type confusion with NativeTypes
* CVE-2020-12410: Memory safety bugs fixed in Firefox 77 and
Firefox ESR 68.9
- Changes from version 68.8.0esr:
* CVE-2020-12387: Use-after-free during worker shutdown
* CVE-2020-12388: Sandbox escape with improperly guarded Access
Tokens
* CVE-2020-12389: Sandbox escape with improperly separated
process types
* CVE-2020-6831: Buffer overflow in SCTP chunk input validation
* CVE-2020-12392: Arbitrary local file access with 'Copy as cURL'
* CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully
escape website-controlled data, potentially leading to command
injection
* CVE-2020-12395: Memory safety bugs fixed in Firefox 76 and
Firefox ESR 68.8
- Drop gcc10-include-fix.patch: Fixed upstream.
- Add Drop_backwards_test-Nuuk.patch: This is now Nuuk in tzdata.
==== multipath-tools ====
Version update (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
Subpackages: kpartx libmpath0
- Update to version 0.8.4+43+suse.908383f:
* enable negated regular expression syntax in conf file
* change default devnode blacklist to
'!^(sd[a-z]|dasd[a-z]|nvme[0-9])'
- Update to version 0.8.4+40+suse.b06c2e5a:
- Fix udev rule processing during coldplug (bsc#1172157)
* 11-dm-mpath.rules: Fix udev rule processing during coldplug
- Fix compilation with gcc-10
* fix boolean value with json-c 0.14
* libmultipath: fix condlog NULL argument in uevent_get_env_var
- Reviewed upstream changes:
* simplify failed_wwid code
* centralize path validation code
- Use pkgconfig for BuildRequires
==== ncurses ====
Version update (6.2.20200502 -> 6.2.20200531)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base
- Add ncurses patch 20200531
+ correct configure version-check/warnng for g++ to allow for 10.x
+ re-enable "bel" in konsole-base (report by Nia Huang)
+ add linux-s entry (patch by Alexandre Montaron).
+ drop long-obsolete convert_configure.pl
+ add test/test_parm.c, for checking tparm changes.
+ improve parameter-checking for tparm, adding function _nc_tiparm() to
handle the most-used case, which accepts only numeric parameters
(report/testcase by "puppet-meteor").
+ use a more conservative estimate of the buffer-size in lib_tparm.c's
save_text() and save_number(), in case the sprintf() function
passes-through unexpected characters from a format specifier
(report/testcase by "puppet-meteor").
+ add a check for end-of-string in cvtchar to handle a malformed
string in infotocap (report/testcase by "puppet-meteor").
- Add ncurses patch 20200523
+ update version-check for gnat to allow for gnat 10.x to 99.x
+ fix an uninitialized variable in lib_mouse.c changes (cf: 20200502)
+ add a check in EmitRange to guard against repeat_char emitting digits
which could be interpreted as BSD-style padding when --enable-bsdpad
is configured (report/patch by Hiltjo Posthuma).
+ add --disable-pkg-ldflags to suppress EXTRA_LDFLAGS from the
generated pkg-config and ncurses*-config files, to simplify
configuring in the case where rpath is used but the packager wants
to hide the feature (report by Michael Stapelberg).
> fixes for building with Visual Studio C++ and msys2 (patches by
"Maarten Anonymous"):
+ modify CF_SHARED_OPTS to generate a script which translates linker
options into Visual Studio's dialect.
+ omit parentheses around function-names in generated lib_gen.c to
- Add ncurses patch 20200516
+ add notes on termcap.h header in curs_termcap.3x
+ update notes on vscode / xterm.js -TD
- Add ncurses patch 20200509
+ add "-r" option to the dots test-programs, to help with scripting
a performance comparison.
+ build-fix test/move_field.c for NetBSD curses, whose form headers
use different names than SVr4 or ncurses.
==== newt ====
- Split doc build into separate spec file
- As the example scripts are "pointless", just don't install them
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Merged in latest upstream. Summary:
* Let initiator name be created by iscsi-init.service.
* iscsi: fix fd leak
* iscsi: Add break to while loop
* Fix compiler complaint about string copy in iscsiuio
* Fix a compiler complaint about writing one byte
* Fix issue with zero-length arrays at end of struct
* Add iscsi-init.service
* Proper disconnect of TCP connection
* Fix SIGPIPE loop in signal handler
* Update iscsi-iname.c
* log:modify iSCSI shared memory permissions for logs
* Ignore iface.example in iface match checks
* More changes for musl.
* Fix type mismatch under musl.
* Change include of <sys/poll.h> to <poll.h>
* iscsi-iname: fix iscsi-iname -p access NULL pointer without given IQN prefix
Note that the "Add iscsi-init.service" change adds a new systemd
service called "iscsi-init", that creates the iSCSI initiator name
file /etc/iscsi/initiatorname.iscsi, if and only if it does not
exist. This obviates the need to do this from the SPEC file, now
updated.
Since this was not a version-number update, in addition to modifying
the SPEC file, also updates:
* open-iscsi-SUSE-latest.diff.bz2
==== openssh ====
Version update (8.1p1 -> 8.3p1)
- Version update to 8.3p1:
= Potentially-incompatible changes
* sftp(1): reject an argument of "-1" in the same way as ssh(1) and
scp(1) do instead of accepting and silently ignoring it.
= New features
* sshd(8): make IgnoreRhosts a tri-state option: "yes" to ignore
rhosts/shosts, "no" allow rhosts/shosts or (new) "shosts-only"
to allow .shosts files but not .rhosts.
* sshd(8): allow the IgnoreRhosts directive to appear anywhere in a
sshd_config, not just before any Match blocks.
* ssh(1): add %TOKEN percent expansion for the LocalFoward and
RemoteForward keywords when used for Unix domain socket forwarding.
* all: allow loading public keys from the unencrypted envelope of a
private key file if no corresponding public key file is present.
* ssh(1), sshd(8): prefer to use chacha20 from libcrypto where
possible instead of the (slower) portable C implementation included
in OpenSSH.
* ssh-keygen(1): add ability to dump the contents of a binary key
revocation list via "ssh-keygen -lQf /path".
- Additional changes from 8.2p1 release:
= Potentially-incompatible changes
* ssh(1), sshd(8), ssh-keygen(1): this release removes the "ssh-rsa"
(RSA/SHA1) algorithm from those accepted for certificate signatures
(i.e. the client and server CASignatureAlgorithms option) and will
use the rsa-sha2-512 signature algorithm by default when the
ssh-keygen(1) CA signs new certificates.
* ssh(1), sshd(8): this release removes diffie-hellman-group14-sha1
from the default key exchange proposal for both the client and
server.
* ssh-keygen(1): the command-line options related to the generation
and screening of safe prime numbers used by the
diffie-hellman-group-exchange-* key exchange algorithms have
changed. Most options have been folded under the -O flag.
* sshd(8): the sshd listener process title visible to ps(1) has
changed to include information about the number of connections that
are currently attempting authentication and the limits configured
by MaxStartups.
* ssh-sk-helper(8): this is a new binary. It is used by the FIDO/U2F
support to provide address-space isolation for token middleware
libraries (including the internal one). It needs to be installed
in the expected path, typically under /usr/libexec or similar.
= New features
* This release adds support for FIDO/U2F hardware authenticators to
OpenSSH. U2F/FIDO are open standards for inexpensive two-factor
authentication hardware that are widely used for website
authentication. In OpenSSH FIDO devices are supported by new public
key types "ecdsa-sk" and "ed25519-sk", along with corresponding
certificate types.
* sshd(8): add an Include sshd_config keyword that allows including
additional configuration files via glob(3) patterns.
* ssh(1)/sshd(8): make the LE (low effort) DSCP code point available
via the IPQoS directive.
* ssh(1): when AddKeysToAgent=yes is set and the key contains no
comment, add the key to the agent with the key's path as the
comment.
* ssh-keygen(1), ssh-agent(1): expose PKCS#11 key labels and X.509
subjects as key comments, rather than simply listing the PKCS#11
provider library path.
* ssh-keygen(1): allow PEM export of DSA and ECDSA keys.
* ssh(1), sshd(8): make zlib compile-time optional, available via the
Makefile.inc ZLIB flag on OpenBSD or via the --with-zlib configure
option for OpenSSH portable.
* sshd(8): when clients get denied by MaxStartups, send a
notification prior to the SSH2 protocol banner according to
RFC4253 section 4.2.
* ssh(1), ssh-agent(1): when invoking the $SSH_ASKPASS prompt
program, pass a hint to the program to describe the type of
desired prompt. The possible values are "confirm" (indicating
that a yes/no confirmation dialog with no text entry should be
shown), "none" (to indicate an informational message only), or
blank for the original ssh-askpass behaviour of requesting a
password/phrase.
* ssh(1): allow forwarding a different agent socket to the path
specified by $SSH_AUTH_SOCK, by extending the existing ForwardAgent
option to accepting an explicit path or the name of an environment
variable in addition to yes/no.
* ssh-keygen(1): add a new signature operations "find-principals" to
look up the principal associated with a signature from an allowed-
signers file.
* sshd(8): expose the number of currently-authenticating connections
along with the MaxStartups limit in the process title visible to
"ps".
- Rebased patches:
* openssh-7.7p1-cavstest-ctr.patch
* openssh-7.7p1-cavstest-kdf.patch
* openssh-7.7p1-fips.patch
* openssh-7.7p1-fips_checks.patch
* openssh-7.7p1-ldap.patch
* openssh-7.7p1-no_fork-no_pid_file.patch
* openssh-7.7p1-sftp_print_diagnostic_messages.patch
* openssh-8.0p1-gssapi-keyex.patch
* openssh-8.1p1-audit.patch
* openssh-8.1p1-seccomp-clock_nanosleep.patch
- Removed openssh-7.7p1-seed-prng.patch (bsc#1165158).
==== osinfo-db ====
Version update (20200214 -> 20200529)
- Update database to version 20200529
- Drop 5bbe30db-opensuse-add-info-about-UEFI-support.patch
==== patterns-base ====
Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11
- Suggest postfix from the basesystem pattern: suggested packages
are not flagged for installation, but give the solver a hint. So
in case something wants an MTA (smtp_daemon), openSUSE installs
will all default to postfix (as the base pattern is generally
installed). Users are still free to switch as they wish
(boo#1136078).
==== perl ====
Subpackages: perl-base
- Fixes for %_libexecdir changing to /usr/libexec
==== perl-libwww-perl ====
Version update (6.44 -> 6.45)
- updated to 6.45
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.45 2020-06-08 14:51:28Z
- Fix Client-Warning: Internal response sometimes reset (GH#341) (Jonathan
Dahan and Julien Fiegehenn)
==== permissions ====
Version update (1550_20200520 -> 1550_20200526)
Subpackages: chkstat permissions-config
- Update to version 20200526:
* profiles: add entries for enlightenment (bsc#1171686)
==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils
- for libpulse-devel-32bit, require libpulse0-32bit + libpulse-mainloop-glib0-32bit
to help wine development (bsc#1172301)
==== purge-kernels-service ====
- Add split provides for upgrade from old dracut (boo#1168727).
==== python-rpm-macros ====
Version update (20200207.5feb6c1 -> 20200529.b301e36)
- Update to version 20200529.b301e36:
* update-alternatives are quiet during install
==== python3 ====
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== python3-base ====
Subpackages: libpython3_8-1_0
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== shadow ====
- Use pure #!/bin/sh in:
* useradd.local
* userdel-post.local
* userdel-pre.local
==== sqlite3 ====
Version update (3.31.1 -> 3.32.2)
- SQLite 3.32.2:
* Fix a long-standing bug in the byte-code engine that can cause
a COMMIT command report as success when in fact it failed to commit
- SQLite 3.32.1:
* CVE-2020-13435: Malicious SQL statements could have crashed the
process that is running SQLite (boo#1172091)
- SQLite 3.32.0:
* Add support for approximate ANALYZE using the PRAGMA
analysis_limit command
* Add the bytecode virtual table
* Add the checksum VFS shim to the set of run-time loadable
extensions included in the source tree
* Add the iif() SQL function.
* INSERT and UPDATE statements now always apply column affinity
before computing CHECK constraints
* Increase the default upper bound on the number of parameters
from 999 to 32766
* Add code for the UINT collating sequence as an optional
loadable extension
* multiple enhancements to the CLI
- drop upstreamed patches:
* 04885763c4cd00cb-s390-compatibility.patch
* b20503aaf5b6595a-adapt-FTS-tests-for-big-endian.patch
==== sssd ====
Version update (2.2.3 -> 2.3.0)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Update to release 2.3.0
* SSSD can now handle hosts and networks nsswitch databases
(see resolve_provider option).
* By default, authentication request only refresh user's
initgroups if it is expired or there is not active user's
session (see pam_initgroups_scheme option).
* OpenSSL is used as default crypto provider, NSS is deprecated.
* The AD provider now defaults to GSS-SPNEGO SASL mechanism
(see ldap_sasl_mech option).
* The AD provider can now be configured to use only ldaps port
(see ad_use_ldaps option).
* SSSD now accepts host entries from GPO's security filter.
* New debug level (0x10000) added for low level LDB messages
only (see sssd.conf man page).
- Drop sssd-gpo_host_security_filter-2.2.2.patch,
0001-Resolve-computer-lookup-failure-when-sam-cn.patch,
0001-AD-use-getaddrinfo-with-AI_CANONNAME-to-find-the-FQD.patch (merged)
- Drop 0001-Fix-build-failure-against-samba-4.12.0rc1.patch
(unapplicable)
==== suse-module-tools ====
Version update (15.3.2 -> 15.3.3)
- Reverted back to tar_scm source service
(obs_scm doesn't work well for Ring0 packages)
- Update to version 15.3.3:
* spec: remove SLE/openSUSE difference in allow_unsupported_modules
(jsc#SLE-12255)
* spec: use same fs_blacklist on SLE and openSUSE
(jsc#SLE-12255, jsc#SLE-3926)
* spec: use br_netfilter softdep only for SLE12
(jsc#SLE-12255, bsc#1166531, boo#1158817, bsc#937216)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev
- Import commit a6d31d1a02c2718a064bbbc40d003668acf72769
bb6e2f7906 pid1: update manager settings on reload too (bsc#1163109)
e9e8907b06 watchdog: reduce watchdog pings in timeout interval
385a8f9846 udev: rename the persistent link for ATA devices (bsc#1164538)
66018a12ae tmpfiles: remove unnecessary assert (bsc#1171145)
- Disable bump of /proc/sys/fs/nr-open
Hopefully a _temporary_ workaround until bsc#1165351 is fixed
otherwise user instances crashes the system is using NIS (and the
nscd cache is empty).
==== timezone ====
- timezone modifies a file below /usr/share (boo#1172521)
- zdump --version reported "unknown" (boo#1172055)
==== ucode-intel ====
Version update (20191115 -> 20200609)
- Updated Intel CPU Microcode to 20200609 (bsc#1172466)
Fixes for:
- CVE-2020-0543: Fixed a side channel attack against special registers
which could have resulted in leaking of read values to cores other
than the one which called it. This attack is known as Special Register
Buffer Data Sampling (SRBDS) or "CrossTalk" (bsc#1154824).
- CVE-2020-0548,CVE-2020-0549: Additional ucode updates were supplied to
mitigate the Vector Register and L1D Eviction Sampling aka "CacheOutAttack"
attacks. (bsc#1156353)
== 20200602_DEMO Release ==
- - Updates upon 20200520 release --
Processor Identifier Version Products
Model Stepping F-MO-S/PI Old->New
- --- new platforms ----------------------------------------
- --- updated platforms ------------------------------------
HSW C0 6-3c-3/32 00000027->00000028 Core Gen4
BDW-U/Y E0/F0 6-3d-4/c0 0000002e->0000002f Core Gen5
HSW-U C0/D0 6-45-1/72 00000025->00000026 Core Gen4
HSW-H C0 6-46-1/32 0000001b->0000001c Core Gen4
BDW-H/E3 E0/G0 6-47-1/22 00000021->00000022 Core Gen5
SKL-U/Y D0 6-4e-3/c0 000000d6->000000dc Core Gen6 Mobile
SKL-U23e K1 6-4e-3/c0 000000d6->000000dc Core Gen6 Mobile
SKX-SP B1 6-55-3/97 01000151->01000157 Xeon Scalable
SKX-SP H0/M0/U0 6-55-4/b7 02000065->02006906 Xeon Scalable
SKX-D M1 6-55-4/b7 02000065->02006906 Xeon D-21xx
CLX-SP B0 6-55-6/bf 0400002c->04002f01 Xeon Scalable Gen2
CLX-SP B1 6-55-7/bf 0500002c->04002f01 Xeon Scalable Gen2
SKL-H/S R0/N0 6-5e-3/36 000000d6->000000dc Core Gen6; Xeon E3 v5
AML-Y22 H0 6-8e-9/10 000000ca->000000d6 Core Gen8 Mobile
KBL-U/Y H0 6-8e-9/c0 000000ca->000000d6 Core Gen7 Mobile
CFL-U43e D0 6-8e-a/c0 000000ca->000000d6 Core Gen8 Mobile
WHL-U W0 6-8e-b/d0 000000ca->000000d6 Core Gen8 Mobile
AML-Y42 V0 6-8e-c/94 000000ca->000000d6 Core Gen10 Mobile
CML-Y42 V0 6-8e-c/94 000000ca->000000d6 Core Gen10 Mobile
WHL-U V0 6-8e-c/94 000000ca->000000d6 Core Gen8 Mobile
KBL-G/H/S/E3 B0 6-9e-9/2a 000000ca->000000d6 Core Gen7; Xeon E3 v6
CFL-H/S/E3 U0 6-9e-a/22 000000ca->000000d6 Core Gen8 Desktop, Mobile, Xeon E
CFL-S B0 6-9e-b/02 000000ca->000000d6 Core Gen8
CFL-H/S P0 6-9e-c/22 000000ca->000000d6 Core Gen9
CFL-H R0 6-9e-d/22 000000ca->000000d6 Core Gen9 Mobile
- Updated Intel CPU Microcode to 20200520
Processor Identifier Version Products
Model Stepping F-MO-S/PI Old->New
- --- new platforms ----------------------------------------
- --- updated platforms ------------------------------------
SNB-E/EN/EP C1/M0 6-2d-6/6d 0000061f->00000621 Xeon E3/E5, Core X
SNB-E/EN/EP C2/M1 6-2d-7/6d 00000718->0000071a Xeon E3/E5, Core X
==== vim ====
Subpackages: vim-data-common
- remove duplicated settings in defaults.vim from SUSE vimrc
- move SUSE vim settings to /usr in data-common package so leave
/etc/vimrc to the admin.
- require data-common in vim-small so it gets the settings
- install spec file template as plugin as vim-small doesn't support
it
==== xdg-utils ====
Version update (1.1.3+20190413 -> 1.1.3+20200220)
- Update to version 1.1.3+20200220:
* fixed #166: xdg-open dose not search correctly in directories with spaces in the name
==== xdm ====
- Fixes for %_libexecdir changing to /usr/libexec
==== xen ====
- Fixes for %_libexecdir changing to /usr/libexec
- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
xsa320-1.patch
xsa320-2.patch
==== xterm ====
- Fixes for %_libexecdir changing to /usr/libexec
==== yast2 ====
Version update (4.3.5 -> 4.3.6)
- Fix Xen detection (bsc#1172742).
- 4.3.6
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
audit
busybox-links
ceph (15.2.0.108+g8cf4f02b08 -> 15.2.3.252+gf2237253cd)
conmon (2.0.16 -> 2.0.17)
dracut (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
fcoe-utils (1.0.32 -> 1.0.33)
gmp
haproxy (2.1.5+git0.36e14bd31 -> 2.1.7+git0.8bebf80fb)
installation-images-MicroOS (15.4 -> 15.5)
krb5 (1.18.1 -> 1.18.2)
kustomize (3.5.4 -> 3.6.1)
libgpg-error (1.37 -> 1.38)
libnftnl (1.1.6 -> 1.1.7)
libseccomp (2.4.2 -> 2.4.3)
libxml2
multipath-tools (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
ncurses (6.2.20200502 -> 6.2.20200531)
nfs-utils
open-iscsi
openssh (8.1p1 -> 8.3p1)
patterns-base
perl
permissions (1550_20200520 -> 1550_20200526)
purge-kernels-service
python-rpm-macros (20200207.5feb6c1 -> 20200529.b301e36)
python3
python3-base
shadow
sqlite3 (3.31.1 -> 3.32.2)
sssd (2.2.3 -> 2.3.0)
suse-module-tools (15.3.2 -> 15.3.3)
systemd
timezone
ucode-intel (20191115 -> 20200609)
vim
xen
yast2 (4.3.5 -> 4.3.6)
=== Details ===
==== audit ====
Subpackages: libaudit1 libauparse0
- Fix specfile to require libauparse0 and libaudit1 after splitting
audit-libs (bsc#1172295)
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-xz
- Add conflicts: mawk to busybox-gawk
==== ceph ====
Version update (15.2.0.108+g8cf4f02b08 -> 15.2.3.252+gf2237253cd)
Subpackages: ceph-common libcephfs2 librados2 librbd1 librgw2 python3-ceph-argparse python3-ceph-common python3-cephfs python3-rados python3-rbd python3-rgw
- Up ceph-test disk constraint to address "no space left on device"
build error seen in OBS
- Update to 15.2.3-252-gf2237253cd:
+ rebase on tip of upstream "octopus" branch, SHA1 22279597fa9ca40ba2f05af9f186a99ce73a6047
* upstream v15.2.3 release
https://ceph.io/releases/v15-2-3-octopus-released/
- Update to 15.2.2-60-gf5864377ab:
+ rebase on tip of upstream "octopus" branch, SHA1 9e890709ef53ce29006c6fc754dd80e25df186d0
- Update to 15.2.2-18-g1dbcddb5d8:
+ rebase on tip of upstream "octopus" branch, SHA1 0c857e985a29d90501a285f242ea9c008df49eb8
* Upstream v15.2.2 release
https://ceph.io/releases/v15-2-2-octopus-released/
* mon, mgr: require all caps for pre-octopus tell commands (bsc#1170021, CVE-2020-10736)
- Update to 15.2.1-277-g17d346932e:
+ rebase on tip of upstream "octopus" branch, SHA1 752b293586d0c8749483e60e43c7a98c1e0d7b19
* rpm: drop "is_opensuse" conditional in SUSE-specific bcond block
(jsc#SLE-11802)
- Update to 15.2.1-246-g66cd0e5497:
+ rebase on tip of upstream "octopus" branch, SHA1 939661f696d3d9eb4d31e998a3ad1487852a4741
- Update to 15.2.1-16-gb3a86250a6:
+ rebase on tip of upstream "octopus" branch, SHA1 9fd2f65f91d9246fae2c841a6222d34d121680ee
* upstream 15.2.1 release
https://ceph.io/releases/v15-2-1-octopus-released/
+ fix Nonce reuse in msgr V2 secure mode (bsc#1166403, CVE-2020-1759)
+ prevent RGW GetObject header-splitting XSS (bsc#1166484, CVE-2020-1760)
==== conmon ====
Version update (2.0.16 -> 2.0.17)
- Update to v2.0.17
- Add option to delay execution of exit command
==== dracut ====
Version update (050+suse.65.ge1e64674 -> 050+suse.66.g76431c83)
Subpackages: dracut-ima
- Update to version 050+suse.66.g76431c83:
* 95iscsi: fix missing space when compiling cmdline args (bsc#1172816)
==== fcoe-utils ====
Version update (1.0.32 -> 1.0.33)
- Updated with latest upstream v1.0.33 from v1.0.32:
* Added "-Wextra" and enabled "-Werror" for compiling
* Ignore auto-generated files
* Update systemd service files (several updates)
* A bunch of gcc-10-related fixes, such as marking unused
arguments, fixing strncpy()s, string truncation/overflow
* better error handling/retry for link issues (like EBUSY)
* replace use of "ifconfig" with "ip" in debug scripts
* fix long-standing issue with netlink buffer resizing
* move bash completions to proper system directory
This replaces fcoe-utils-v1.0.32.tar.xz with
fcoe-utils-v1.0.33.tar.xz, and it does away with the
following patches, since they are all fixed upstream:
* 0003-systemctl-cannot-start-fcoemon.socket.patch
* 0004-fcoemon-Correctly-handle-options-in-the-service-file.patch
* 0005-fcoe.service-Add-foreground-to-prevent-fcoemon-to-be.patch
* 0006-fipvlan-fixup-return-value-on-error.patch
* 0008-Use-correct-socket-for-fcoemon.socket.patch
* 0012-fcoemon-Retry-fcm_link_getlink-on-EBUSY.patch
* fcoe-utils-1.0.29-make.patch
* fcoe-utils-stop-using-ifconfig.patch
And the following patch was removed because we can
successfully compile with "-Werror" now:
* 0009-disable-Werror-building.patch
==== gmp ====
- correct license statement (library itself is no GPL-3.0)
==== haproxy ====
Version update (2.1.5+git0.36e14bd31 -> 2.1.7+git0.8bebf80fb)
- Update to version 2.1.7+git0.8bebf80fb:
* [RELEASE] Released version 2.1.7
- Update to version 2.1.6+git1.661c88907:
* BUG/MAJOR: http-htx: Don't forget to copy error messages from defaults sections
- Update to version 2.1.6+git0.34db76106:
* [RELEASE] Released version 2.1.6
* BUG/MINOR: mworker: fix a memleak when execvp() failed
* BUG/MINOR: ssl: fix a trash buffer leak in some error cases
* BUG/MEDIUM: mworker: fix the reload with an -- option
* BUG/MINOR: init: -S can have a parameter starting with a dash
* BUG/MINOR: init: -x can have a parameter starting with a dash
* BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
* BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
* BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
* BUG/MEDIUM: http-htx: Duplicate error messages as raw data instead of string
* BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
* BUG/MINOR: peers: fix internal/network key type mapping.
* SCRIPTS: publish-release: pass -n to gzip to remove timestamp
* Revert "BUG/MEDIUM: connections: force connections cleanup on server changes"
==== installation-images-MicroOS ====
Version update (15.4 -> 15.5)
- merge gh#openSUSE/installation-images#384
- Add missed file to instsys. bsc#1158522 [Build 101.1] openQA test
fails in windows_client_remotelogin
- 15.5
==== krb5 ====
Version update (1.18.1 -> 1.18.2)
- Update to 1.18.2
* Fix a SPNEGO regression where an acceptor using the default credential
would improperly filter mechanisms, causing a negotiation failure.
* Fix a bug where the KDC would fail to issue tickets if the local krbtgt
principal's first key has a single-DES enctype.
* Add stub functions to allow old versions of OpenSSL libcrypto to link
against libkrb5.
* Fix a NegoEx bug where the client name and delegated credential might
not be reported.
- Update logrotate script, call systemd to reload the services
instead of init-scripts. (boo#1169357)
- Don't add the lto flags to the public link options. (boo#1172038)
==== kustomize ====
Version update (3.5.4 -> 3.6.1)
- Update to version 3.6.1
- pin kustomize to cmd/kubectl_v0_1_0
- Refresh vendor.tar.xz
==== libgpg-error ====
Version update (1.37 -> 1.38)
- Update to 1.38:
* New option parser features to implement system wide
configuration files
* New functions to build file names
* New function to help reallocating arrays
* Protect gpgrt_inc_errorcount against counter overflow
- drop needless autotools build dependencies that were added for
gawk5.patch
==== libnftnl ====
Version update (1.1.6 -> 1.1.7)
- Update to release 1.1.7
* udata: add NFTNL_UDATA_SET_DATA_INTERVAL
==== libseccomp ====
Version update (2.4.2 -> 2.4.3)
- Update to release 2.4.3
* Add list of authorized release signatures to README.md
* Fix multiplexing issue with s390/s390x shm* syscalls
* Remove the static flag from libseccomp tools compilation
* Add define for __SNR_ppoll
* Fix potential memory leak identified by clang in the
scmp_bpf_sim tool
- Drop no-static.diff, libseccomp-fix_aarch64-test.patch,
SNR_ppoll.patch (merged)
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Fix invalid xmlns references since the fix for CVE-2019-19956 [bsc#1172021]
- Revert upstream commit 5a02583c7e683896d84878bd90641d8d9b0d0549
* Add patch libxml2-CVE-2019-19956.patch
==== multipath-tools ====
Version update (0.8.4+31+suse.8f53764 -> 0.8.4+43+suse.908383f)
Subpackages: kpartx libmpath0
- Update to version 0.8.4+43+suse.908383f:
* enable negated regular expression syntax in conf file
* change default devnode blacklist to
'!^(sd[a-z]|dasd[a-z]|nvme[0-9])'
- Update to version 0.8.4+40+suse.b06c2e5a:
- Fix udev rule processing during coldplug (bsc#1172157)
* 11-dm-mpath.rules: Fix udev rule processing during coldplug
- Fix compilation with gcc-10
* fix boolean value with json-c 0.14
* libmultipath: fix condlog NULL argument in uevent_get_env_var
- Reviewed upstream changes:
* simplify failed_wwid code
* centralize path validation code
- Use pkgconfig for BuildRequires
==== ncurses ====
Version update (6.2.20200502 -> 6.2.20200531)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base
- Add ncurses patch 20200531
+ correct configure version-check/warnng for g++ to allow for 10.x
+ re-enable "bel" in konsole-base (report by Nia Huang)
+ add linux-s entry (patch by Alexandre Montaron).
+ drop long-obsolete convert_configure.pl
+ add test/test_parm.c, for checking tparm changes.
+ improve parameter-checking for tparm, adding function _nc_tiparm() to
handle the most-used case, which accepts only numeric parameters
(report/testcase by "puppet-meteor").
+ use a more conservative estimate of the buffer-size in lib_tparm.c's
save_text() and save_number(), in case the sprintf() function
passes-through unexpected characters from a format specifier
(report/testcase by "puppet-meteor").
+ add a check for end-of-string in cvtchar to handle a malformed
string in infotocap (report/testcase by "puppet-meteor").
- Add ncurses patch 20200523
+ update version-check for gnat to allow for gnat 10.x to 99.x
+ fix an uninitialized variable in lib_mouse.c changes (cf: 20200502)
+ add a check in EmitRange to guard against repeat_char emitting digits
which could be interpreted as BSD-style padding when --enable-bsdpad
is configured (report/patch by Hiltjo Posthuma).
+ add --disable-pkg-ldflags to suppress EXTRA_LDFLAGS from the
generated pkg-config and ncurses*-config files, to simplify
configuring in the case where rpath is used but the packager wants
to hide the feature (report by Michael Stapelberg).
> fixes for building with Visual Studio C++ and msys2 (patches by
"Maarten Anonymous"):
+ modify CF_SHARED_OPTS to generate a script which translates linker
options into Visual Studio's dialect.
+ omit parentheses around function-names in generated lib_gen.c to
- Add ncurses patch 20200516
+ add notes on termcap.h header in curs_termcap.3x
+ update notes on vscode / xterm.js -TD
- Add ncurses patch 20200509
+ add "-r" option to the dots test-programs, to help with scripting
a performance comparison.
+ build-fix test/move_field.c for NetBSD curses, whose form headers
use different names than SVr4 or ncurses.
==== nfs-utils ====
Subpackages: libnfsidmap1 nfs-client
- Remove README.NFSv4. It is out dated and not useful. All
the configation described is now done automatically.
(bsc#1171448)
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Merged in latest upstream. Summary:
* Let initiator name be created by iscsi-init.service.
* iscsi: fix fd leak
* iscsi: Add break to while loop
* Fix compiler complaint about string copy in iscsiuio
* Fix a compiler complaint about writing one byte
* Fix issue with zero-length arrays at end of struct
* Add iscsi-init.service
* Proper disconnect of TCP connection
* Fix SIGPIPE loop in signal handler
* Update iscsi-iname.c
* log:modify iSCSI shared memory permissions for logs
* Ignore iface.example in iface match checks
* More changes for musl.
* Fix type mismatch under musl.
* Change include of <sys/poll.h> to <poll.h>
* iscsi-iname: fix iscsi-iname -p access NULL pointer without given IQN prefix
Note that the "Add iscsi-init.service" change adds a new systemd
service called "iscsi-init", that creates the iSCSI initiator name
file /etc/iscsi/initiatorname.iscsi, if and only if it does not
exist. This obviates the need to do this from the SPEC file, now
updated.
Since this was not a version-number update, in addition to modifying
the SPEC file, also updates:
* open-iscsi-SUSE-latest.diff.bz2
==== openssh ====
Version update (8.1p1 -> 8.3p1)
- Version update to 8.3p1:
= Potentially-incompatible changes
* sftp(1): reject an argument of "-1" in the same way as ssh(1) and
scp(1) do instead of accepting and silently ignoring it.
= New features
* sshd(8): make IgnoreRhosts a tri-state option: "yes" to ignore
rhosts/shosts, "no" allow rhosts/shosts or (new) "shosts-only"
to allow .shosts files but not .rhosts.
* sshd(8): allow the IgnoreRhosts directive to appear anywhere in a
sshd_config, not just before any Match blocks.
* ssh(1): add %TOKEN percent expansion for the LocalFoward and
RemoteForward keywords when used for Unix domain socket forwarding.
* all: allow loading public keys from the unencrypted envelope of a
private key file if no corresponding public key file is present.
* ssh(1), sshd(8): prefer to use chacha20 from libcrypto where
possible instead of the (slower) portable C implementation included
in OpenSSH.
* ssh-keygen(1): add ability to dump the contents of a binary key
revocation list via "ssh-keygen -lQf /path".
- Additional changes from 8.2p1 release:
= Potentially-incompatible changes
* ssh(1), sshd(8), ssh-keygen(1): this release removes the "ssh-rsa"
(RSA/SHA1) algorithm from those accepted for certificate signatures
(i.e. the client and server CASignatureAlgorithms option) and will
use the rsa-sha2-512 signature algorithm by default when the
ssh-keygen(1) CA signs new certificates.
* ssh(1), sshd(8): this release removes diffie-hellman-group14-sha1
from the default key exchange proposal for both the client and
server.
* ssh-keygen(1): the command-line options related to the generation
and screening of safe prime numbers used by the
diffie-hellman-group-exchange-* key exchange algorithms have
changed. Most options have been folded under the -O flag.
* sshd(8): the sshd listener process title visible to ps(1) has
changed to include information about the number of connections that
are currently attempting authentication and the limits configured
by MaxStartups.
* ssh-sk-helper(8): this is a new binary. It is used by the FIDO/U2F
support to provide address-space isolation for token middleware
libraries (including the internal one). It needs to be installed
in the expected path, typically under /usr/libexec or similar.
= New features
* This release adds support for FIDO/U2F hardware authenticators to
OpenSSH. U2F/FIDO are open standards for inexpensive two-factor
authentication hardware that are widely used for website
authentication. In OpenSSH FIDO devices are supported by new public
key types "ecdsa-sk" and "ed25519-sk", along with corresponding
certificate types.
* sshd(8): add an Include sshd_config keyword that allows including
additional configuration files via glob(3) patterns.
* ssh(1)/sshd(8): make the LE (low effort) DSCP code point available
via the IPQoS directive.
* ssh(1): when AddKeysToAgent=yes is set and the key contains no
comment, add the key to the agent with the key's path as the
comment.
* ssh-keygen(1), ssh-agent(1): expose PKCS#11 key labels and X.509
subjects as key comments, rather than simply listing the PKCS#11
provider library path.
* ssh-keygen(1): allow PEM export of DSA and ECDSA keys.
* ssh(1), sshd(8): make zlib compile-time optional, available via the
Makefile.inc ZLIB flag on OpenBSD or via the --with-zlib configure
option for OpenSSH portable.
* sshd(8): when clients get denied by MaxStartups, send a
notification prior to the SSH2 protocol banner according to
RFC4253 section 4.2.
* ssh(1), ssh-agent(1): when invoking the $SSH_ASKPASS prompt
program, pass a hint to the program to describe the type of
desired prompt. The possible values are "confirm" (indicating
that a yes/no confirmation dialog with no text entry should be
shown), "none" (to indicate an informational message only), or
blank for the original ssh-askpass behaviour of requesting a
password/phrase.
* ssh(1): allow forwarding a different agent socket to the path
specified by $SSH_AUTH_SOCK, by extending the existing ForwardAgent
option to accepting an explicit path or the name of an environment
variable in addition to yes/no.
* ssh-keygen(1): add a new signature operations "find-principals" to
look up the principal associated with a signature from an allowed-
signers file.
* sshd(8): expose the number of currently-authenticating connections
along with the MaxStartups limit in the process title visible to
"ps".
- Rebased patches:
* openssh-7.7p1-cavstest-ctr.patch
* openssh-7.7p1-cavstest-kdf.patch
* openssh-7.7p1-fips.patch
* openssh-7.7p1-fips_checks.patch
* openssh-7.7p1-ldap.patch
* openssh-7.7p1-no_fork-no_pid_file.patch
* openssh-7.7p1-sftp_print_diagnostic_messages.patch
* openssh-8.0p1-gssapi-keyex.patch
* openssh-8.1p1-audit.patch
* openssh-8.1p1-seccomp-clock_nanosleep.patch
- Removed openssh-7.7p1-seed-prng.patch (bsc#1165158).
==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-base patterns-base-bootloader patterns-base-minimal_base
- Suggest postfix from the basesystem pattern: suggested packages
are not flagged for installation, but give the solver a hint. So
in case something wants an MTA (smtp_daemon), openSUSE installs
will all default to postfix (as the base pattern is generally
installed). Users are still free to switch as they wish
(boo#1136078).
==== perl ====
Subpackages: perl-base
- Fixes for %_libexecdir changing to /usr/libexec
==== permissions ====
Version update (1550_20200520 -> 1550_20200526)
Subpackages: chkstat permissions-config
- Update to version 20200526:
* profiles: add entries for enlightenment (bsc#1171686)
==== purge-kernels-service ====
- Add split provides for upgrade from old dracut (boo#1168727).
==== python-rpm-macros ====
Version update (20200207.5feb6c1 -> 20200529.b301e36)
- Update to version 20200529.b301e36:
* update-alternatives are quiet during install
==== python3 ====
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== python3-base ====
Subpackages: libpython3_8-1_0
- add requires python3-base on libpython subpackage (bsc#1167008)
- build against Sphinx 2.x until python is compatible with
Sphinx 3.x (see gh#python/cpython#19397, bpo#40204)
- Fix build with SQLite 3.32 (bpo#40783)
add bpo40784-Fix-sqlite3-deterministic-test.patch
==== shadow ====
- Use pure #!/bin/sh in:
* useradd.local
* userdel-post.local
* userdel-pre.local
==== sqlite3 ====
Version update (3.31.1 -> 3.32.2)
- SQLite 3.32.2:
* Fix a long-standing bug in the byte-code engine that can cause
a COMMIT command report as success when in fact it failed to commit
- SQLite 3.32.1:
* CVE-2020-13435: Malicious SQL statements could have crashed the
process that is running SQLite (boo#1172091)
- SQLite 3.32.0:
* Add support for approximate ANALYZE using the PRAGMA
analysis_limit command
* Add the bytecode virtual table
* Add the checksum VFS shim to the set of run-time loadable
extensions included in the source tree
* Add the iif() SQL function.
* INSERT and UPDATE statements now always apply column affinity
before computing CHECK constraints
* Increase the default upper bound on the number of parameters
from 999 to 32766
* Add code for the UINT collating sequence as an optional
loadable extension
* multiple enhancements to the CLI
- drop upstreamed patches:
* 04885763c4cd00cb-s390-compatibility.patch
* b20503aaf5b6595a-adapt-FTS-tests-for-big-endian.patch
==== sssd ====
Version update (2.2.3 -> 2.3.0)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Update to release 2.3.0
* SSSD can now handle hosts and networks nsswitch databases
(see resolve_provider option).
* By default, authentication request only refresh user's
initgroups if it is expired or there is not active user's
session (see pam_initgroups_scheme option).
* OpenSSL is used as default crypto provider, NSS is deprecated.
* The AD provider now defaults to GSS-SPNEGO SASL mechanism
(see ldap_sasl_mech option).
* The AD provider can now be configured to use only ldaps port
(see ad_use_ldaps option).
* SSSD now accepts host entries from GPO's security filter.
* New debug level (0x10000) added for low level LDB messages
only (see sssd.conf man page).
- Drop sssd-gpo_host_security_filter-2.2.2.patch,
0001-Resolve-computer-lookup-failure-when-sam-cn.patch,
0001-AD-use-getaddrinfo-with-AI_CANONNAME-to-find-the-FQD.patch (merged)
- Drop 0001-Fix-build-failure-against-samba-4.12.0rc1.patch
(unapplicable)
==== suse-module-tools ====
Version update (15.3.2 -> 15.3.3)
- Reverted back to tar_scm source service
(obs_scm doesn't work well for Ring0 packages)
- Update to version 15.3.3:
* spec: remove SLE/openSUSE difference in allow_unsupported_modules
(jsc#SLE-12255)
* spec: use same fs_blacklist on SLE and openSUSE
(jsc#SLE-12255, jsc#SLE-3926)
* spec: use br_netfilter softdep only for SLE12
(jsc#SLE-12255, bsc#1166531, boo#1158817, bsc#937216)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev
- Import commit a6d31d1a02c2718a064bbbc40d003668acf72769
bb6e2f7906 pid1: update manager settings on reload too (bsc#1163109)
e9e8907b06 watchdog: reduce watchdog pings in timeout interval
385a8f9846 udev: rename the persistent link for ATA devices (bsc#1164538)
66018a12ae tmpfiles: remove unnecessary assert (bsc#1171145)
- Disable bump of /proc/sys/fs/nr-open
Hopefully a _temporary_ workaround until bsc#1165351 is fixed
otherwise user instances crashes the system is using NIS (and the
nscd cache is empty).
==== timezone ====
- timezone modifies a file below /usr/share (boo#1172521)
- zdump --version reported "unknown" (boo#1172055)
==== ucode-intel ====
Version update (20191115 -> 20200609)
- Updated Intel CPU Microcode to 20200609 (bsc#1172466)
Fixes for:
- CVE-2020-0543: Fixed a side channel attack against special registers
which could have resulted in leaking of read values to cores other
than the one which called it. This attack is known as Special Register
Buffer Data Sampling (SRBDS) or "CrossTalk" (bsc#1154824).
- CVE-2020-0548,CVE-2020-0549: Additional ucode updates were supplied to
mitigate the Vector Register and L1D Eviction Sampling aka "CacheOutAttack"
attacks. (bsc#1156353)
== 20200602_DEMO Release ==
- - Updates upon 20200520 release --
Processor Identifier Version Products
Model Stepping F-MO-S/PI Old->New
- --- new platforms ----------------------------------------
- --- updated platforms ------------------------------------
HSW C0 6-3c-3/32 00000027->00000028 Core Gen4
BDW-U/Y E0/F0 6-3d-4/c0 0000002e->0000002f Core Gen5
HSW-U C0/D0 6-45-1/72 00000025->00000026 Core Gen4
HSW-H C0 6-46-1/32 0000001b->0000001c Core Gen4
BDW-H/E3 E0/G0 6-47-1/22 00000021->00000022 Core Gen5
SKL-U/Y D0 6-4e-3/c0 000000d6->000000dc Core Gen6 Mobile
SKL-U23e K1 6-4e-3/c0 000000d6->000000dc Core Gen6 Mobile
SKX-SP B1 6-55-3/97 01000151->01000157 Xeon Scalable
SKX-SP H0/M0/U0 6-55-4/b7 02000065->02006906 Xeon Scalable
SKX-D M1 6-55-4/b7 02000065->02006906 Xeon D-21xx
CLX-SP B0 6-55-6/bf 0400002c->04002f01 Xeon Scalable Gen2
CLX-SP B1 6-55-7/bf 0500002c->04002f01 Xeon Scalable Gen2
SKL-H/S R0/N0 6-5e-3/36 000000d6->000000dc Core Gen6; Xeon E3 v5
AML-Y22 H0 6-8e-9/10 000000ca->000000d6 Core Gen8 Mobile
KBL-U/Y H0 6-8e-9/c0 000000ca->000000d6 Core Gen7 Mobile
CFL-U43e D0 6-8e-a/c0 000000ca->000000d6 Core Gen8 Mobile
WHL-U W0 6-8e-b/d0 000000ca->000000d6 Core Gen8 Mobile
AML-Y42 V0 6-8e-c/94 000000ca->000000d6 Core Gen10 Mobile
CML-Y42 V0 6-8e-c/94 000000ca->000000d6 Core Gen10 Mobile
WHL-U V0 6-8e-c/94 000000ca->000000d6 Core Gen8 Mobile
KBL-G/H/S/E3 B0 6-9e-9/2a 000000ca->000000d6 Core Gen7; Xeon E3 v6
CFL-H/S/E3 U0 6-9e-a/22 000000ca->000000d6 Core Gen8 Desktop, Mobile, Xeon E
CFL-S B0 6-9e-b/02 000000ca->000000d6 Core Gen8
CFL-H/S P0 6-9e-c/22 000000ca->000000d6 Core Gen9
CFL-H R0 6-9e-d/22 000000ca->000000d6 Core Gen9 Mobile
- Updated Intel CPU Microcode to 20200520
Processor Identifier Version Products
Model Stepping F-MO-S/PI Old->New
- --- new platforms ----------------------------------------
- --- updated platforms ------------------------------------
SNB-E/EN/EP C1/M0 6-2d-6/6d 0000061f->00000621 Xeon E3/E5, Core X
SNB-E/EN/EP C2/M1 6-2d-7/6d 00000718->0000071a Xeon E3/E5, Core X
==== vim ====
Subpackages: vim-data-common
- remove duplicated settings in defaults.vim from SUSE vimrc
- move SUSE vim settings to /usr in data-common package so leave
/etc/vimrc to the admin.
- require data-common in vim-small so it gets the settings
- install spec file template as plugin as vim-small doesn't support
it
==== xen ====
- Fixes for %_libexecdir changing to /usr/libexec
- bsc#1172205 - VUL-0: CVE-2020-0543: xen: Special Register Buffer
Data Sampling (SRBDS) aka "CrossTalk" (XSA-320)
xsa320-1.patch
xsa320-2.patch
==== yast2 ====
Version update (4.3.5 -> 4.3.6)
- Fix Xen detection (bsc#1172742).
- 4.3.6
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
11 Jun '20
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
NetworkManager (1.24.0 -> 1.24.2)
PackageKit
bluedevil5 (5.18.5 -> 5.19.0)
breeze (5.18.5 -> 5.19.0)
cups
discover (5.18.5 -> 5.19.0)
dracut (050+suse.63.g796e020e -> 050+suse.65.ge1e64674)
drkonqi5 (5.18.5 -> 5.19.0)
evolution-data-server (3.36.2 -> 3.36.3)
fwupd (1.3.9 -> 1.4.2)
gdm
gjs (1.64.2 -> 1.64.3)
glib-networking (2.64.2 -> 2.64.3)
glib2 (2.64.2 -> 2.64.3)
gnome-control-center (3.36.2 -> 3.36.3)
gnome-shell (3.36.2 -> 3.36.3)
gnome-software (3.36.0 -> 3.36.1)
gnome-system-monitor (3.36.0 -> 3.36.1)
gstreamer-plugins-bad
harfbuzz (2.6.5 -> 2.6.7)
installation-images-MicroOS (15.1 -> 15.4)
iproute2 (5.6.0 -> 5.7.0)
kactivitymanagerd (5.18.5 -> 5.19.0)
kde-cli-tools5 (5.18.5 -> 5.19.0)
kde-user-manager (5.18.5 -> 5.19.0)
kgamma5 (5.18.5 -> 5.19.0)
khotkeys5 (5.18.5 -> 5.19.0)
kinfocenter5 (5.18.5 -> 5.19.0)
kmenuedit5 (5.18.5 -> 5.19.0)
kscreen5 (5.18.5 -> 5.19.0)
kscreenlocker (5.18.5 -> 5.19.0)
ksysguard5 (5.18.5 -> 5.19.0)
kwayland-integration (5.18.5 -> 5.19.0)
kwin5 (5.18.5 -> 5.19.0)
kwrited5 (5.18.5 -> 5.19.0)
libcontainers-common (20200306 -> 20200603)
libgexiv2 (0.12.0 -> 0.12.1)
libjpeg-turbo
libkdecoration2 (5.18.5 -> 5.19.0)
libkscreen2 (5.18.5 -> 5.19.0)
libksysguard5 (5.18.5 -> 5.19.0)
libnma
libopenmpt (0.4.12 -> 0.5.0)
libzypp (17.23.5 -> 17.23.6)
microos-tools (2.0 -> 2.1)
milou5 (5.18.5 -> 5.19.0)
mutter (3.36.2 -> 3.36.3+1)
nautilus (3.36.2 -> 3.36.3)
neon (0.30.2 -> 0.31.1)
openldap2
patterns-base
perl-HTTP-Daemon (6.10 -> 6.12)
plasma-nm5 (5.18.5 -> 5.19.0)
plasma5-addons (5.18.5 -> 5.19.0)
plasma5-desktop (5.18.5 -> 5.19.0)
plasma5-integration (5.18.5 -> 5.19.0)
plasma5-openSUSE
plasma5-pa (5.18.5 -> 5.19.0)
plasma5-workspace (5.18.5 -> 5.19.0)
polkit-kde-agent-5 (5.18.5 -> 5.19.0)
poppler (0.88.0 -> 0.89.0)
poppler-qt5 (0.88.0 -> 0.89.0)
powerdevil5 (5.18.5 -> 5.19.0)
re2 (20200501 -> 20200601)
rebootmgr (1.1 -> 1.2)
shared-mime-info
systemsettings5 (5.18.5 -> 5.19.0)
tallow (21+git20200213.865ec91 -> 21+git20200401.03f4d64)
v4l-utils
vte (0.60.2 -> 0.60.3)
vulkan-loader
xdg-desktop-portal-kde (5.18.5 -> 5.19.0)
xorg-x11-server
yast2 (4.2.84 -> 4.3.5)
=== Details ===
==== NetworkManager ====
Version update (1.24.0 -> 1.24.2)
Subpackages: libnm0 typelib-1_0-NM-1_0
- Update to version 1.24.2:
+ Add a new build option 'firewalld-zone'; when enabled,
NetworkManager installs a firewalld zone for connection sharing
and puts interfaces using IPv4 or IPv6 shared mode in this zone
during activation. The option is enabled by default. Note that
NetworkManager still calls to iptables to enable masquerading
and open needed ports for DHCP and DNS. The new option is
useful on systems using firewalld with the nftables backend,
where the iptables rules would not be sufficient.
+ ifcfg-rh:
- Handle "802-1x.{,phase2-}ca-path". Otherwise setting this
property silently fails and a profile might accidentally not
perform any authentication (CVE-2020-10754).
- Handle 802-1x.pin properties.
+ platform: fix crash detecting device type from netlink.
+ ip-tunnel: only set cloned-mac-address for layer 2 tunnels.
+ Fixes for sanitizer build and valgrind.
+ Various other bugfixes.
==== PackageKit ====
Subpackages: PackageKit-backend-zypp libpackagekit-glib2-18
- Add PackageKit-zypp-ensure-ResPool-before-is_tumbleweed.patch:
zypp: Ensure ResPool is built before is_tumbleweed()
(gh#/hughsie/PackageKit/commit/5c0fd7d7).
==== bluedevil5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* [applet] Show toolbar unless Bluetooth hardware is absent
* [applet] Port to Kirigami.PlaceholderMessage
* [applet] Improve tooltip text for single connected device use case
* Remove too strict Qt/KF5 deprecation rule
* Converted to Page with a PlasmoidHeading in the heading
* [Applet] Port to ExpandableListItem
* bump to require Qt 5.14
* [applet] Fix button bar right margin
* [applet] Add tooltip to enable bluetooth checkbox
* [kcm] Drop 'Enable bluetooth integration' setting
* Use consistent highlight
* Set all labels to plain text
* Make it compile against qt5.15.
* Replace generic "Fix it" text with more descriptive actions as (kde#417376)
==== breeze ====
Version update (5.18.5 -> 5.19.0)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-wallpapers libbreezecommon5-5
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* [kstyle] Ensure that shadows are destroyed after decorated windows
* [style] Reparent window shadows to widgets
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Add mobile-friendly versions
* Revert unnecessary wallpaper plugin name change
* Use "Flow" wallpaper for Plasma 5.19
* Phrase active window titlebar separator option more accurately (kde#420753)
* Use the same icon mode calculation for comboboxes as for buttons
* Fix variable mixup
* Don't set a custom palette if we have the same palette as the currently active one
* Drop QWindow and explicit devicePixelRatio usage for ComboBox
* Color icons in titlebar if possible
* Apply the correct palette to icons
* Remove unused methods
* Add missing includes
* [kstyle] Properly unregister widgets in ShadowHelper
* [kstyle] Use QX11Info::isCompositingManagerRunning()
* [kstyle] Drop Helper::connection()
* [kstyle] Unregister a shadow when it's destroyed (kde#416854)
* Update my last name
* Delete unused property name
* Port connections to new syntax
* now that qt4 was dropped we can use specific ECM/Qt/KF5 version
* [kstyle] Port to KWindowSystem shadows API
* [kstyle] Drop Qt 4 style plugin
* Center only during drawing, not the hit rects (kde#416348)
- Drop Qt4 support:
* breeze4-style.spec
* breeze4-style.changes
* add-support-for-Q3ListView-to-the-KDE4-style.patch
==== cups ====
Subpackages: cups-config libcups2
- Fixes for %_libexecdir changing to /usr/libexec
==== discover ====
Version update (5.18.5 -> 5.19.0)
Subpackages: discover-backend-flatpak
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* Fix a merge conflict in the appdata file
* fwupd: discard search if the url is present but is not for fwupd
* Disable session management for Discover (kde#415874)
* applist: Properly allocate space for the fetching text as well (kde#418304)
* updates: Make sure the progressbar doesn't overflow (kde#421619)
* Hardcode more colorSets
* Hardcode fewer colorSets (kde#421571)
* Make it compile against qt5.15. SkipEmptyParts is part of Qt::.
* flatpak: Don't issue commands when cancelled (kde#404622)
* fix toplevels test
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Too many changes to list here
==== dracut ====
Version update (050+suse.63.g796e020e -> 050+suse.65.ge1e64674)
Subpackages: dracut-ima
- Update to version 050+suse.65.ge1e64674:
* Add wicked specific config files (bsc#1089333)
* Run format_spec_file
==== drkonqi5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* initialize bools to false by default (kde#421187)
* Don't leak DrKonqi dialog / fix crash on wayland
* bump to require Qt 5.14
* Read the new message string after rather than before
* Use SyntaxHighlighter for highlighting
* Adapt to changes in kcrash
* [DrKonqi] Port QRegExp to QRegularExpression
* Bump required version of KF5 to 5.69.0
* Reduce unneeded dependencies
* skip over _start and __libc_start_main
* style++
* Include s_kcrashErrorMessage in our traces
* Make it compile against qt5.15. SkipEmptyParts is part of Qt::.
* Port away from deprecated API on Qt 5.15.0
* fix windows compilation, QString.sprintf() is deprecated
==== evolution-data-server ====
Version update (3.36.2 -> 3.36.3)
Subpackages: libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-24 libedataserverui-1_2-2
- Update to version 3.36.3:
+ CamelFilterDriver: do_shell: NULL-terminate the arguments array
+ CollectionBackend: Limit how often checks for new child sources
+ Bugs fixed: glgo#GNOME/evolution-data-server#101,
glgo#GNOME/evolution-data-server#210,
glgo#GNOME/evolution-data-server#211,
glgo#GNOME/evolution-data-server#212,
glgo#GNOME/evolution-data-server#213,
glgo#GNOME/evolution-data-server#219,
glgo#GNOME/evolution#915.
==== fwupd ====
Version update (1.3.9 -> 1.4.2)
Subpackages: libfwupd2 libfwupdplugin1 typelib-1_0-Fwupd-2_0
- Update to version 1.4.2:
* vli: Add no-guid-matching for all VLI devices
* vli: Remove a copy-and-paste mistake
* Add two OUI quirks
* ata: Add WD OUI quirk 000cca
* synaptics-rmi: Essentially blacklist Dell K12A
* dfu: Avoid communicating when bitManifestationTolerant is off
* ata: Add OUI quirk for Western Digital
* dfu: Support MATEKF722SE quirk
* Fix various build issues with -Wdiscarded-qualifiers
* thunderbolt/dell-dock: Delay activation for Thunderbolt updates
* Switch the default of EnumerateAllDevices to false
* Add OUI quirk for SanDisk
* vli: Add two standard USB instance IDs for shared-PD devices
* vli: Use GPIOB to reset the VL817 found in two Lenovo products
* tpm-eventlog: Correct the display of final calculated PCRs
* wacom-raw: fixup switching to bootloader mode
- Update to version 1.4.1:
* thunderbolt: Don't show safe mode errors for USB4 host controllers
* ep963x: Various changes to make the plugin actually work on real hardware
* Make tss2-esys conditional
* ep963x: Remove some dead code spotted by Coverity
* ccgx: Only update the FW2 partition of the ThinkPad USB-C Dock Gen2
* ccgx: Expand the FWImageType for future hardware
* Allow specifying the device on the command line by GUID
* Fix the DeviceID set by GetDetails
* wacom-usb: Fix a theoretical buffer over-read to make GCC happy
* vli: Only show the i2c devices on the USB3 hub
* Allow devices to be updatable, but only when upgrading a proxy device
* Reset the progressbar time estimate if the percentage is invalid
* ccgx: Always report 100% when finished writing
* Add a device quirk that forces an explicit device-id match
* ccgx: Set the device name and summary from quirk files
* vli: Only do the APP5 FW bug fix on affected hardware
* vli: Show all the buffer when debugging with FWUPD_VLI_USBHUB_VERBOSE
* fu-engine: Refresh device name and format before setting supported flag
* Allow a device to set the logical or physical ID during ->setup()
* ccgx: Split out a trivial helper to set the instance IDs
* ccgx: Set the device name to be more useful
* ccgx: Set the logical ID as the FwMode
* ccgx: Split out a trivial function to set the version
* ccgx: Do not reboot the device write after installing
* ccgx: Do no show the flash parameters when unknown
* Allow devices to match the proxy device by GUID
* Do not skip attach() if the device is marked _WILL_DISAPPEAR
* dell-dock: Port to using fu_device_get_proxy()
* Allow adding a device 'proxy' device that can do actions on it
* vli: Do not show the USB 2 recovery devices for USB 3 hubs
* vli: Add metadata to identify which is the same physical device
* uefi: correctly format firmware version of Dynabook (né Toshiba) X30, X40 and probably others
* synaptics-cxaudio: Use the ->attach() device vfunc
* synaptics-cxaudio: Wait for the device to reboot after writing firmware
* logitech_hidpp: decrease verbosity of messages that hid++ ID is missing
* Prefer to update the child first if the order is unspecified
* Do not modify the device priority for child devices
- Exclude fwupdate from the architectures without UEFI support.
- Update to version 1.4.0:
* Release fwupd 1.4.0
* Allow removing device flags from quirk files
* Use black to format python source in a consistent manner
* Define SOURCE_VERSION when building a package
* Only set the parent when adopting children
* Do not conditionalize attach() and detach() on IS_BOOTLOADER
* Do not crash the daemon if a plugin does something dumb
* wacom-usb: Add more sanity checks in case the daemon goes crazy
* wacom-usb: Use a per-device cleanup function
* Add some more device regression tests
* wacom-usb: Add a lot of missing metadata about the devices
* wacom-usb: Hide a lot of debugging behind FWUPD_WACOM_VERBOSE
* Only auto-add counterpart GUIDs when required
* ccgx: remove update message
* ccgx: add parent guid for hybrid dock
* ccgx: Use a smaller timeout for i2c read and write operations
* ccgx: Retry the register read and write with a i2c reset
* ccgx: Fix buffer overflow when reading out i2c status
* ccgx: Retry the HID disconnect up to 5 times
* ccgx: Show a better error message on failure
* ccgx: Allow forcing firmware of the wrong app_type with fwupdtool
* Modularize the hardware tests
* Ignore indirect devices that replug during the composite firmware update
* Export the device state as part of the D-Bus interface
* Fix devices that use CounterpartGuid when more than one device is installed
* Use the GUID as a fallback rather than the connection ID
* ccgx: Fix critical warning on i2c write failure
* logitech-hidpp: Do not add peripheral devices for receiver in BL mode
* Install the installed-tests only if tests are enabled
* Load the signature to get the aliased CDN-safe version of the metadata
* vli: Only reboot the USB hub once
* synaptics-cxaudio: Only use the PATCH2 address when the patch level is 2
* add STM32F745 stm dfuse quirk
* dfu: Add a way to set the timeout from a quirk
* Export the release urgency
* Export the release creation time
* Check the firmware requirements before adding SUPPORTED
* data/motd/fwupd-refresh: Only order after network.target
* ccgx: Do not add the HID device that will disconnect
* ccgx: Use Silicon ID and Application type to set flash parameters
* Add a new daemon configuration option to control EnumerateAllDevices
* logitech_hidpp: set the bootloader protocol
* Install meson from pip for LGTM
* bash: add completion for fwupdtool reinstall
* fu-tool: add reinstall command
* fu-engine: export fu_engine_get_releases_for_device in header
* vli: Wait for the VL103 to timeout to fix detach
* ccgx: Show the UpdateMessage in the correct device mode
* ccgx: Add extra instance IDs to match specific firmware
* Use a static version number
* thunderbolt: Rather than hardcoding to PCI slot numbers, use domain in GUID
* Revert "thunderbolt: Create a unique GUID including Thunderbolt controller path"
* dell-dock: Port to fu_device_retry()
* nitrokey: Convert to use FuHidDevice
* nitrokey: Port to fu_device_retry()
* vli: Port to fu_device_retry()
* Add fu_device_retry() helper functionality
* ccgx: Implement writing firmware to flash
* ccgx: Add i2c status check when reading or writing registers
* ccgx: Add 5ms delay between read registers to avoid an i2c error
* libfwupdplugin: Use fu_device_locker_close()
* synaptics-mst: Use fu_device_locker_close()
* Add fu_device_locker_close()
* ccgx: Do not store the silicon ID in the image address
* ccgx: Add device quirks for the Lenovo Hybrid Dock
* ccgx: Switch HID mode to HPI mode at startup
* ccgx: Clear the event queue when in startup
* ccgx: Wait for hardware to settle when coming out of reset
* ccgx: Do not mark the device as updatable when in boot mode
* ccgx: Verify the firmware app type when preparing firmware
* ccgx: Set the update message when running in backup firmware
* ccgx: Read the FwAppType from the hardware
* ccgx: Set the HPI version number for the current firmware
* ccgx: Get the silicon ID to map the flash parameters
* ccgx: Read the HPI device mode at startup
* ccgx: Set up the HPI I²C config at startup
* ccgx: Create devices when in HID and I2C modes
* Add a new ChromeOS CI target to build without GPG and PKCS7
* Use Jcat files in firmware archives and for metadata
* csr: Allow truncated HID reads
* vli: Only consider the high nibble when building the sub-version
* csr: Parse the firmware as a DFU file
* Add support for EP963x hardware
* Add FuHidDevice abstraction
* vli: Correctly attach VL103 after a firmware update
* ccgx: Parse the metadata block in the firmware image
* ccgx: Add a firmare parser for cyacd files
* logitech: Correctly set the protocol
* Add the optional device-id to the update --help output
* Fix a difficult-to-trigger daemon hang when replugging devices
* vli: Remove a dock device from the whitelist that is never going to be updated
* vli: Add some trivial debugging to help track down a bug
* vli: Never add USB hub devices that are not upgradable
* uefi: Don't use shim for non-secure boot configurations
* Start fwupd-activate.service after snapd.service
* dfu: Actually reload the DFU device after upgrade has completed
* dfu: Add one more m-stack device requiring a quirk
* Apply version format to releases and devices at same time
* Ensure that the DeviceID is set for child devices
* Fix a daemon crash when removing children
* Allow waiting for the parent device when replugging
* Add fu_device_get_root() shared API
* vli: Fix an error when detaching MSP430
* vli: Fix a critical warning when getting the USB speed
* vli: Fix the error enum values for the MSP430
* Do not add blank lines when tokenizing Intel hex files
* vli: Fix the version calculation for MSP430
* vli: Ignore one more error when attaching
* vli: Always expect the VL103 header at 0x1003 or 0x4000
* vli: Do not fall back to the recovery write for usbhubs
* vli: Only show the 2nd header if the device ID is valid
* vli: Fix VL103 reboot from ROM mode to FW mode
* vli: Add some better comments for writing GPIOs
* Add a helper script to add a DFU header
* Add 'firmware-convert' subcommand to fwupdtool
* fu-engine: Make two passes of requirements checking
* fu-engine: Copy the VersionFormat from the CAB if specified in `get-details`
* Add a new plugin for CPU microcode
* Don't build/install fwupdagent man page if agent build is not requested
* Introduce a new VersionFormat for `hex`
* Drop UEFI quirks we now inherit from metadata
* ci: build Debian using libflashrom
* When TPM PCR0 measurements fail, query if secure boot is available and enabled
* fix fwupd.shutdown.in according to the movement of fwupdtool to bindir
* ata: Add OUI quirk for Western Digital and Intel
* improved fish shell completion
* vli: Set the MSP430 version format to pair
* Always return AppStream markup for remote agreements
* ata: Add trivial OUI quirk for Micron
* added completion script for fish shell
* Do not fail loading in /etc/machine-id is not available
* Use xb_builder_source_add_simple_adapter
* Create FuCabinet and untangle a lot of legacy code
* nvme: Do not try to handle integer version numbers
* Allow server metadata to set the version format on some devices
* fu-tool: Correctly append the release to devices in `get-details`
* For the `get-details` command make sure to always show devices
* fu-engine: Copy the version and format from donor device in get-details
* fu-engine: Use unknown for version format by default on get-details
* Inihbit all power management actions using logind when updating
* Decouple the version format from the version itself
* Add raw versions for bootloader and lowest
* Allow server metadata to set the device name on some devices
* Remove support for GCab less than v1.0
* fu-device-list: Check protocol before de-duping devices
* Do not allow devices that have no vendor ID to be UPDATABLE
* ata: Include a vendor ID for ATA hardware
* ata: Switch off the verbose logging by default
* Always check for PLAIN when doing vercmp() operations
* Discard the reason upgrades aren't available (Fixes: #1678)
* Improve the description of `fwupdtpmevlog` for man page
* Move `fwupdtpmevlog` into `bindir`
* uefi: Move `fwupdate` into `bindir`
* Move `fwupdtool` and `fwupdagent` into `bindir`
* Use the system provided flashrom on Fedora
* Add a plugin vfunc to run after subclassed FuDevice creation
* ci: use standalone script to generate build dependencies
* Move the daemons from /usr/lib/fwupd to /usr/libexec/fwupd
* Use the recently released flashrom v1.2
* Generate an additional UEFI quirk file using the stable LVFS metadata
* uefi: Apply capsule update even with single valid capsule
* Fix a critical warning when installing some firmware
* ebitdo: Fix the endpoint address logged in the error message
* uefi: Find the correct lds and crt name when specifying -Defi_ldsdir
* upower: Move battery threshold declaration into a configuration file
* upower: Decrease minimum battery requirement to 10%
- Refresh fwupd-bsc1130056-change-shim-path.patch
- Add new dependency: jcat
==== gdm ====
Subpackages: gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Update gdm-add-runtime-option-to-disable-starting-X-server-as-u.patch:
When user session reuses tty7 same as greeter session, gdm
doesn't bring up the greeter session after switching from other
tty to tty7 (bsc#1171290).
==== gjs ====
Version update (1.64.2 -> 1.64.3)
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Update to version 1.64.3:
+ Closed bugs and merge requests:
- arg: Don't sink GClosure ref if it's a return value.
- overrides/Gtk: Adjust gtk_container_child_set_property()
check.
- 1.63.3: test suite is failing.
- Simplify private pointers.
+ Various backports:
- Use memory GSettings backend in tests.
- Update debug message from trimLeft/trimRight to
trimStart/trimEnd.
- Various fixes for potential crash and memory issues.
==== glib-networking ====
Version update (2.64.2 -> 2.64.3)
- Update to version 2.64.3:
+ Revert warning when server-identity property is unset.
+ Fix CVE-2020-13645, fail connections when server identity is
unset.
==== glib2 ====
Version update (2.64.2 -> 2.64.3)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.64.3:
+ Stability improvements for various unit tests.
+ Bugs fixed: glgo#GNOME/GLib#1954, glgo#GNOME/GLib#2094,
glgo#GNOME/GLib!1470, glgo#GNOME/GLib!1471,
glgo#GNOME/GLib!1473, glgo#GNOME/GLib!1478,
glgo#GNOME/GLib!1483, glgo#GNOME/GLib!1484,
glgo#GNOME/GLib!1486, glgo#GNOME/GLib!1495,
glgo#GNOME/GLib!1501.
+ Updated translations.
==== gnome-control-center ====
Version update (3.36.2 -> 3.36.3)
Subpackages: gnome-control-center-goa
- Update to version 3.36.3:
+ Users:
- Show add user button also if no users found.
- Show permissions toolbar also if no users found.
+ Updated translations.
==== gnome-shell ====
Version update (3.36.2 -> 3.36.3)
Subpackages: gnome-shell-calendar
- Update to version 3.36.3:
+ Add gnome-shell-extension-prefs wrapper for compatibility.
+ Fix distorted fallback icons in top bar.
+ Lower timeout for scrolling in overview.
+ Only start systemd units when running under systemd.
+ Fix "ghost" media controls.
+ Fix zombie sockets from extensions downloader.
+ Update world clocks offsets when timezone changes.
+ Fix "Do Not Disturb" setting getting reset on startup.
+ Fix pad OSD glitches.
+ Fix matching notifications by PID.
+ Only allow updates for extensions that aren't cached.
+ Fixed various crashes.
+ Misc. bug fixes and cleanups.
+ Updated translations.
- Drop gnome-shell-panel-center-app-icon.patch: Fixed upstream.
==== gnome-software ====
Version update (3.36.0 -> 3.36.1)
- Update to version 3.36.1:
+ Add distro upgrade css for the HC theme.
+ Check if a stock icon actually exists in the theme.
+ Correctly mark layered local packages as removable.
+ Fine-tune F32 upgrade banner position and font.
+ Fix loading if applications directory does not exist.
+ Fix the progress info required for the loading page.
+ Handle invalid snap auth data.
+ Improve performance when showing lots of applications.
+ Only delete the installed firmware archive if we downloaded it.
+ Properly check if an flatpak application is a runtime.
+ Show the correct state for local packages without AppData.
+ Updated translations.
- Re-autostart GNOME Software and re-enable its search extension
(bsc#1168861, bsc#1157928).
==== gnome-system-monitor ====
Version update (3.36.0 -> 3.36.1)
- Update to version 3.36.1:
+ Bugs fixed: glgo#GNOME/gnome-system-monitor#142.
+ Updated translations.
==== gstreamer-plugins-bad ====
Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0
- Add gst-plugins-bad-neon-bump.patch: meson: build with neon 0.31.
==== harfbuzz ====
Version update (2.6.5 -> 2.6.7)
Subpackages: libharfbuzz-icu0 libharfbuzz0
- Update to version 2.6.7:
+ Update to Unicode 13.0.0
+ Fix hb_ot_layout_get_ligature_carets for fonts without lcar
table
- includes fixes from 2.6.6:
* A fix in AAT kerning for Geeza Pro
==== installation-images-MicroOS ====
Version update (15.1 -> 15.4)
- merge gh#openSUSE/installation-images#382
- follow xorg font file shuffle (xorg-x11-legacy, bsc#1169444)
- 15.4
- merge gh#openSUSE/installation-images#378
- ensure there's a writable /var/lib/rpm directory (bsc#1171733)
- 15.3
- merge gh#openSUSE/installation-images#377
- support Leap-based MicroOS (bsc#1171585)
- 15.2
==== iproute2 ====
Version update (5.6.0 -> 5.7.0)
- Update to release 5.7
* macsec: add support for reporting and changing the offloading
mode (`ip macsec offload`).
==== kactivitymanagerd ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove .clang-format
* Remove too strict Qt/KF5 deprecation rule
* bump to require Qt 5.14
* Support execution of shell scripts on activity events
* Require C++17
* No need to use QSet for activity existence checking (kde#418839)
* Remove usage of KDBusConnectionPool
* Port QProcess::startDetached deprecated method
==== kde-cli-tools5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove compile without deprecated method
* bump to require Qt 5.14
* [kioclient] Fix 'kioclient5 --commands' usage messages
* Make it compile against qt5.15. SkipEmptyParts is part of Qt::.
* Remove allowAsDefault() usage, no app is using this
* [kcmshell] Drop kdeinit
==== kde-user-manager ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Add photographic user avatars
* Remove human avatars
* Fix a building issue
* Warn user when changing selected user about potential data loss
* Hide irrevelevant default button, code clean and future proofing
==== kgamma5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove too strict Qt/KF5 deprecation rule
* bump to require Qt 5.14
==== khotkeys5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Port khotkeys to KIO's ApplicationLauncherJob & CommandLauncherJob
* Launch qdbusviewer with CommandLauncherJob. Tested, works.
* bump to require Qt 5.14
- Refresh patches:
* 0001-Use-qdbus-qt5-and-qdbusviewer-qt5.patch
==== kinfocenter5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* use better strings for dri devices
* bump to require Qt 5.14
* view1394: initialize OuiDb only when needed
* view1394: try to load OUI data from system location
* view1394: isolate DB loading in own function
* Optimize message extraction
* don't hold initdness in a static var (kde#417466)
* improve some previously recycled strings
* add gpu entry to about system (kde#355053)
* refactor about-distro to more generically support textual dumps
* cleanup devinfo header includes
* add trivial systemsettings finder and mark it as RUNTIME dep
* Restore config-x11 header file
* Kill the KinfoCenter binary
* Remove unused includes
- Refresh patches:
* plasma-session-name.patch
==== kmenuedit5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove too strict Qt/KF5 deprecation rule
* [KMenuEdit] Port QRegExp to QRegularExpression
* bump to require Qt 5.14
* Drop kdeinit
==== kscreen5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* fix(kcm): avoid recursive OpacityMask which leads to teardown crash (kde#419625)
* fix(kded): center action OSD on wayland (kde#397586)
* refactor(kcm): remove unused QTimer field
* feat(kded): add getAutoRotate method and rename lockAutoRotate
* fix(kcm): show output ids in reference to currently applied config
* fix (kcm): correct output identifier position on wayland (kde#385672)
* bump to require Qt 5.14
* fix(kded): watch config also when known config is applied
* feat(kded): add a dbus method to lock current rotation
* build: ignore clang-format file
* docs: update commit message guideline version
* fix(plasmoid): add smallSpacing to leftMargin
* feat(kcm): show resolution aspect ratio
* refactor: fix various compiler warnings
==== kscreenlocker ====
Version update (5.18.5 -> 5.19.0)
Subpackages: libKScreenLocker5
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* bump to require Qt 5.14
* Add support for logging categories
* Take file descriptor only instead of whole KWayland Display
* Populate Greeter process exit stderr
* Fix disabeling of autolock timeout
* globalaccel: allow sleep and hibernate keyboard shortcuts
* Use K_PLUGIN_CLASS_WITH_JSON
==== ksysguard5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* Rename binary kstats as it causes a conflict with other packages (kde#421532)
* Fix the user message: it is allocated, not used
* ksysguardiface: Also exlude table and listview types from exposed sensors
* ksgrdiface: Revert change to "All" strings
* ksgrdiface: Use translated strings from KSysGuard::SysGuard library
* Add proper names for containers/objects created by ksgrdinterface plugin
* Add sensorinfo for sensorcontainers and sensorobjects
* Cleanup indentation
* Skip loading a plugin if it was already loaded
* Fix Messages.sh v2
* Fix Messages.sh
* Only build autotests when enabled
* Prefix disk name on size labels (kde#421513)
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Fix translation domain for ksysguard plugins
* Exclude all loop devices from partition and disk sensors
* Add context to translated strings and clarify some strings
* Use KSysGuard namespace for KSysGuard targets
* Add a new daemon for stats monitoring
* Remove too strict Qt/KF5 deprecation rule
* Add some new battery sensors : energy_now, energy_full and power_now.
* bump to require Qt 5.14
* Add per-partition total and all partitions sensors
* Add support for power sensors from lm-sensors
* Make it compile against qt5.15. SkipEmptyParts is part of Qt::.
* Linux/cpuinfo.c: grow buffer size as needed for 12+ core CPUs (kde#384515)
* Use safe hardcoded value for ProvidersUrl
* Unify ksysguard cpu clock speed names
==== kwayland-integration ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* bump to require Qt 5.14
* [windowsystem] Provide a KWindowShadow implementation
==== kwin5 ====
Version update (5.18.5 -> 5.19.0)
- Add patch to fix loading the Plastik window decoration (boo#1172615):
* 0001-Fix-the-Plastik-decoration-with-Qt-5.15.patch
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* [KCM] Fix label in Screen Edges system settings
* Capstone commit to prevent force push reversed commits returning accidentally.
* [scene] Avoid a crash when currentPixmap is invalid and previousPixmap is null or invalid
* [kcm/kwinrules] Fix "window role" combo not showing up (kde#422302)
* [kcm/kwinrules] Fix first item position on property list (kde#421583)
* [wayland] Fix misuse of EGL/eglmesaext.h (kde#422131)
* [effects/blur] Don't blur outside the frame rect (kde#422202)
* [kwinrules] Add kconf_update script to fix placement rule
* fix compilation, remove extra parenthesis
* Wayland: avoid binding disabled outputs to surfaces (kde#419749)
* Correctly align natural layout in present windows
* [kcm/kwinrules] Extend upper limit of position and size spinners (kde#421892)
* [decoration] Fix propagation of client size (kde#419080)
* [platforms/drm] show cursor only when it is enabled (kde#418977)
* [scene] Re-build window quads after creating a WindowPixmap
* [kcm/kwinrules] Detect virtual desktops in Wayland (kde#416165)
* [kcm/kwinrules] Fix Placement setting (kde#421586)
* [kcm/kwinrules] Fix size properties not being stored (kde#421055)
* [kcm/kwinrules] Fix placeholder message in RulesEditor
- Remove patches, now upstream:
* 0001-scene-Re-build-window-quads-after-creating-a-WindowP.patch
- Reintroduce patch, apparently still needed:
* 0001-Revert-Make-WindowSwitching-Alt-Tab-the-default-left.patch
- Add patch to fix initial rendering of Xwayland windows:
* 0001-scene-Re-build-window-quads-after-creating-a-WindowP.patch
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Too many changes to list here
- Refresh patches:
* 0001-Bypass-wayland-interface-blacklisting.patch
* 0001-Use-Xauthority-for-Xwayland.patch
- Drop patch, upstream changes made it unnecessary:
* 0001-Revert-Make-WindowSwitching-Alt-Tab-the-default-left.patch
==== kwrited5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove too strict Qt/KF5 deprecation rule
* bump to require Qt 5.14
==== libcontainers-common ====
Version update (20200306 -> 20200603)
- Update to image 5.4.4
- Remove registries.conf VERSION 2 references from man page
- Intial authfile man page
- Add $HOME/.config/containers/certs.d to perHostCertDirPath
- Add $HOME/.config/containers/registries.conf to config path
- registries.conf.d: add stances for the registries.conf
- update to libpod 1.9.3
- userns: support --userns=auto
- Switch to using --time as opposed to --timeout to better match Docker
- Add support for specifying CNI networks in podman play kube
- man pages: fix inconsistencies
- Update to storage 1.19.1
- userns: add support for auto
- store: change the default user to containers
- config: honor XDG_CONFIG_HOME
- Remove the /var/lib/ca-certificates/pem/SUSE.pem workaround again.
It never ended up in SLES and a different way to fix the underlying
problem is being worked on.
==== libgexiv2 ====
Version update (0.12.0 -> 0.12.1)
- Update to version 0.12.1:
+ Support macOS dylib versioning
+ Improve compatibility with current exiv2 development versions
+ Fix compiling on windows
+ Fix issue with problematic symbol visibility of exiv2
+ Fix issues with tests overwriting environment variables
+ Fix exception escaping on division by zero
+ Fix overflow in altitude fraction conversion
+ Fix crash with experimental GIO support
+ Documentation fixes
+ Add gexiv2_metadata_update_gps_info which will not remove all
other GPS information
+ Bugs fixed: glgo#GNOME/gexiv2!41, glgo#GNOME/gexiv2!42,
glgo#GNOME/gexiv2!45, glgo#GNOME/gexiv2!52,
glgo#GNOME/gexiv2!53, glgo#GNOME/gexiv2!54,
glgo#GNOME/gexiv2!55.
==== libjpeg-turbo ====
- security update
- added patches
fix CVE-2020-13790 [bsc#1172491], heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file
+ libjpeg-turbo-CVE-2020-13790.patch
==== libkdecoration2 ====
Version update (5.18.5 -> 5.19.0)
Subpackages: libkdecorations2-5 libkdecorations2private7
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* Remove is-git-checkout condition for applying deprecated API visibility
* Only deprecate up to target frameworks
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* bump to require Qt 5.14
* Only deprecate up to target frameworks
* Improve metainfo.yaml: mention FreeBSD support, drop tier mention, indent
* Use K_DOXYGEN instead of deprecated DOXYGEN_SHOULD_SKIP_THIS
* Enable publication of API dox on api.kde.org
==== libkscreen2 ====
Version update (5.18.5 -> 5.19.0)
Subpackages: libKF5Screen7 libkscreen2-plugin
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* bump to require Qt 5.14
* build: ignore clang-format file
* docs: update commit message guideline version
* fix: transfer tablet mode properties (kde#418739)
* fix: consider DSI display to be embedded panel
* feat(kwayland): enable the auto-rotation and tablet mode
* fix: handle when backend fails to load/initialize
* test: query correct output
* fix: reset doctor output color before exiting
==== libksysguard5 ====
Version update (5.18.5 -> 5.19.0)
Subpackages: libksysguard5-helper
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* properly access savedColors
* Fix sensorColors check
* Add missing formatter lib to sensordatamodel test
* Make SensorDataModel::sensorsChanged more stupid
* Add an autotest for SensorDataModel
* Don't magically add 180 degrees to start angle
* adapt to controller.sensorColors being a map
* Use Kirigami.Units instead of units
* ExtendedLegend: Don't try to access a non-existing sourceModel
* Fix crash on ProcessDataModel creation
* Compute new index as distance between begin and upper bound
* Remove "name" from SensorTreeItem
* SensorFaceController: Sort matches from SensorQuery when loading presets
* Add a simple autotest for sensortreemodel
* Replace TreeItem QVector children with QMap
* Do not have different KF API visible for developer & tarball builds
* Fix typos in BarChart Face
* [sensors] Avoid breaking IDs of nodes within SensorTreeModel (kde#421696)
* Remove stray import
* Add missing var keyword
* Elide sensor names in config view
* Build against correct translation domain
* Replace MapProxySource with some javascript code
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* use kns kpackage integration
* move knsrc files here
* proper color source
* support translations in faces
* fix SensorFaceController::compactRepresentation()
* Use INTERFACE IMPORTED target type instead of ALIAS for compatibility targets
* Add KSysGuard::Sensors library
* Use KSysGuard namespace for KSysGuard library targets
* Add a declarative plugin to ProcessCore
* Add KSysGuard::Sensors library
* [KSysGuardProcessList] Port away from KRun
* bump to require Qt 5.14
* Use non-const iterators
* Make 'nonphysical' spelling consistent
* Introduce ProcessDataModel
* Fix Formatter library CMake
* Properly install the export header for the formatter lib
* Add license header to formatter test
* Separate processcore/{formatter,unit} into its own library
* Add missing includes
* Rename tests to autotests
* [ksgrd] Drop a QWidget dependency
==== libnma ====
Subpackages: libnma0 typelib-1_0-NMA-1_0
- Make libnma require mobile-broadband-provider-info(bsc#1172499).
==== libopenmpt ====
Version update (0.4.12 -> 0.5.0)
- Remove devel packages requirement on obsolete modplug
- Drop libmodpulg-pcfile.patch
- Update to 0.5.0:
* [New] OggMod compressed FastTracker 2 XM (OXM) modules are now
supported.
* [New] The emulated Amiga type when Amiga resampler emulation
is enabled can now be selected via ctl
render.resampler.emulate_amiga_type.
Possible values are: "auto", "a500", "a1200",
and an experimental option "unfiltered".
* [New] libopenmpt: New API
openmpt::module::get_current_estimated_bpm() (C++),
and openmpt_module_get_current_estimated_bpm() (C)
which provides accurate beats per minute information for
module formats with time signature and an educated guess
based on speed and tempo for others.
* [New] libopenmpt: New type-aware ctl APIs that do not require
memory allocations and are thus realtime-safe:
openmpt::module::ctl_get_boolean(),
openmpt::module::ctl_get_integer(),
openmpt::module::ctl_get_floatingpoint(),
openmpt::module::ctl_get_text(),
openmpt::module::ctl_set_boolean(),
openmpt::module::ctl_set_integer(),
openmpt::module::ctl_set_floatingpoint() (C++),
and openmpt_module_ctl_get_boolean(),
openmpt_module_ctl_get_integer(),
openmpt_module_ctl_get_floatingpoint(),
openmpt_module_ctl_get_text(),
openmpt_module_ctl_set_boolean(),
openmpt_module_ctl_set_integer(),
openmpt_module_ctl_set_floatingpoint() (C).
* [New] libopenmpt C++ New API
openmpt::is_extension_supported2() which takes a
std::string_view parameter instead of std::string.
* [New] libopenmpt C++: New API
openmpt::module::module(std::vector<std::byte> data),
openmpt::module::module(const std::byte * data, std::size_t size),
openmpt::module::module(const std::byte * beg, const std::byte * end).
* [New] libopenmpt C++: New API
openmpt::probe_file_header(flags, const std::byte * data, std::size_t size, filesize),
openmpt::probe_file_header(flags, const std::byte * data, std::size_t size).
* [New] libopenmpt_ext C++: New API
openmpt::module_ext::module_ext(std::vector<std::byte> data),
openmpt::module_ext::module_ext(const std::byte * data, std::size_t size),
openmpt::module_ext::module_ext(std::vector<std::uint8_t> data),
openmpt::module_ext::module_ext(const std::uint8_t * data, std::size_t size).
* [Change] std::istream based file I/O has been speed up.
* [Change] Dependency on iconv on Linux has been removed.
* [Regression] libmodplug: The libmodplug emulation layer has
been removed from the libopenmpt tree. Please use the separate
libopenmpt-modplug package instead.
* [Regression] Support for building with C++11 or C++14 has been
removed. C++17 is now required to build libopenmpt.
* [Regression] Support for client code using C++11 or C++ 14 has
been removed. C++17 is now required to build libopenmpt client
applications.
* [Regression] Support for GCC 4.8, 4.9, 5, 6 has been removed.
* [Regression] Support for Clang 3.6, 3.7, 3.8, 3.9, 4 has been
removed.
* [Regression] Support for Emscripten versions older than 1.39.1
has been removed.
* [Regression] openmpt123: Support for SDL1 (but not SDL2) output
has been removed.
* [Regression] openmpt123: Support for SDL2 older than 2.0.4 has
been removed.
* [Regression] It is no longer possible to optionally use iconv
for character set conversions.
* [Bug] openmpt123: openmpt123 now honors the current locale and
outputs text appropriately.
* Greatly improved MED import. Synthesized instruments are still
not supported but support was added for: Multisampled
instruments, delta samples, more pattern commands,
Hold and Decay, VSTi and MIDI output, multiple songs and
many other small changes.
* Improved OPL channel allocation when more than 18 notes are
active, so that channels that have completely faded out are
prioritized over channels that have already been released but
have not faded out yet.
* Interactively triggering an OPL instrument could cause the
first pattern channel to no longer be played back correctly.
* Fix some inaccuracies in OPL emulator.
* Fix overflow of OPL amplification happening at a synth
volume level of 510.
* End-of-sample pop reduction of surround channels was applied
to front channels instead, causing a pop on the front channels
instead of removing it on the back channels.
* IT: Disable retrigger with short notes quirk for modules saved
with Chibi Tracker, as it does not implement that quirk.
* IT: Instrument and sample panning should not override channel
panning for following notes.
* IT: SBx is now prioritized over Bxx commands that are to the
left of it.
* IT: Duplicate Check Type ?Sample? should only be applied if
the instruments match, too.
* IT: Duplicate Check Type ?Note? should compare pattern notes,
but it was comparing the new pattern note against the old
translated note.
* IT: Various fixes for envelope resetting.
* IT / S3M: When combining SBx and EEx effects, don?t skip the
first row of the loop like in FastTracker 2.
* S3M: Empty pattern commands now affect effect memory as well.
* S3M: Offset beyond loop end wraps around to loop start like in
Scream Tracker 3 + GUS (previously it just keep playing from
the loop start, which is neither what GUS nor Sound Blaster
drivers do).
* S3M: Notes cannot be retriggered after they have been cut.
* S3M: Fix portamento after note cut
(fixes antediluvian_song.s3m).
* S3M / MOD: Previous note offset is no longer used for
retriggered notes if there was no instrument number next to
the Qxy effect.
* MOD: Sample swapping now also works if the sample that is being
swapped from does not loop. Swapping to a non-looped sample now
stops playback once the swapped-from sample reaches its (loop)
end.
* MOD: Fix early song ending due to ProTracker pattern jump quirk
(EEx + Dxx on same row) if infinite looping is disabled.
Fixes Haunted Tracks.mod by Triace.
* MOD: Previous note offset is no longer used for retriggered
notes if there was no instrument number next to the E9x effect.
* MOD: Vibrato type ?ramp down? was upside down.
* XM: If a file contains patterns longer than 1024 rows,
they are now clamped to 1024 rows instead of 64 rows.
* XM: Do not reset note-off status on portamento if there is no
instrument number.
==== libzypp ====
Version update (17.23.5 -> 17.23.6)
- Revert "Enable zchunk on SLE-15-SP2".
- version 17.23.6 (22)
==== microos-tools ====
Version update (2.0 -> 2.1)
- Update to version 2.1
- Provide support to use tmpfs for /tmp
==== milou5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove too strict Qt/KF5 deprecation rule
* bump to require Qt 5.14
* Port deprecated method
* Fix minor EBN issues (http -> https)
==== mutter ====
Version update (3.36.2 -> 3.36.3+1)
Subpackages: libmutter-6-0 mutter-data
- Update to version 3.36.3+1:
+ Broadcast clipboard/primary offers.
+ Fix monitor screen cast on X11.
+ Implement touch-mode detecation for the X11 backend.
+ Drop external keyboard detection from touch-mode heuristics.
+ Fix leaked DMA buffers in screencasts.
+ Fixed various crashes.
+ Renderer-native: Don't leak DMA buffer CoglFramebuffer.
==== nautilus ====
Version update (3.36.2 -> 3.36.3)
Subpackages: libnautilus-extension1
- Update to version 3.36.3:
+ Fix broken tracker search engine under some locales.
+ Updated translations.
==== neon ====
Version update (0.30.2 -> 0.31.1)
- Update to 0.31.1
ADMIN: The neon website has moved to https://notroj.github.io/neon/
Restore ne_md5_read_ctx() in OpenSSL build.
Fix gcc warnings on Ubuntu (Jan-Marek Glogowski).
Fix various spelling mistakes in docs and headers (thanks to FOSSIES).
Fix ne_asctime_parse() (Eugenij-W).
Fix build with LibreSSL (Juan RP).
Interface changes:
none, API and ABI backwards-compatible with 0.27.x and later
New interfaces and features:
add more gcc ?nonnull? attributes to ne_request_* functions.
for OpenSSL builds, ne_md5 code uses the OpenSSL implementation
add NE_SESSFLAG_SHAREPOINT session flag which enables workarounds
for RFC non-compliance issues in Sharepoint
ne_uri.h: add ne_path_escapef() in support of above
ne_207.h: add ne_207_set_flags() likewise in support of above
API clarification:
ne_version_match() behaviour now matches actual 0.27+ ABI history
Bug fixes:
fixes for OpenSSL 1.1.1 and TLSv1.3 support
fix crash with GnuTLS in client cert support (Henrik Holst)
fix possible crash in ne_set_request_flag()
fix build with libxml2 2.9.10 and later
fix handling lock timeouts >LONG_MAX (Giuseppe Castagno)
- Upstream has moved to https://notroj.github.io/neon/
* tarball checksums are no longer provided
- Drop upstreamed patches:
* neon-0.30.2-nulcert.patch
* neon-0.30.2_ssl-fix_timeout_retvals.patch
==== openldap2 ====
- Revert changes to libexecdir
- More .spec cleanups
- Fixes for %_libexecdir changing to /usr/libexec
- Spec file cleanups
==== patterns-base ====
Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11
- re-add ppc64-diag on ppc64le (bsc#1098849).
- Suggest xz in base, as it is now required by aaa_base and we don't
want that zypper uses busybox instead [bsc#1172209]
- Re-add purge-kernels-service dependency (boo#1168727).
Support multiversion(kernel) with purge-kernels.service separated from dracut
(jsc#SLE-10162).
- Call perl directly in pre_checkin.sh. create_32bit-patterns_file.pl is not
executable when checked out from OBS.
- Skip bootloader in pre_checkin.sh
- Re-generate 32bit patterns.
==== perl-HTTP-Daemon ====
Version update (6.10 -> 6.12)
- updated to 6.12
see /usr/share/doc/packages/perl-HTTP-Daemon/Changes
6.12 2020-06-04 16:01:31Z
- No changes since TRIAL release 6.11
6.11 2020-06-03 14:47:21Z (TRIAL RELEASE)
- An IPv6 zone separator must be URI-quoted (GH#47) (Petr Pisar and Olaf
Alders)
==== plasma-nm5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Too many changes to list here
- Drop patches, now upstream:
* 0001-Use-system-color-scheme-from-Kirigami-instead-of-Pla.patch
* 0002-KCM-restore-original-color.patch
==== plasma5-addons ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* set AcceptingInputStatus flag only when the text is in the panel (kde#410612)
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Remove remaining icons from applets with custom tooltips
* Konsole Runner: optimize and simplify
* [applets/weather] Improve UX for selecting a weather station
* Port quicklaunch from KRun::run to CommandLauncherJob
* Remove too strict Qt/KF5 deprecation rule
* Port Konsole and Kate runners and dataengine away from KToolInvocation
* [runners/converter] Skip empty parts when splitting units
* Fix build
* Refactor foreach, use Qt5 signal syntax, remove unnecessary method call
* [applets/notes] Actually hide button row when it's not visible
* add missing include to fix freebsd build
* do not link qtest on the runner
* make convertrunner only build once
* use correct locale for thousand separator + force qlocale default
* Refactor converter runner
* characters: Refactoring, improve validation in kcm, optimize
* [applet/notes] Show a "remove" button on the button row
* Make it compile against qt5.15. SkipEmptyParts is part of Qt::.
* [applets/notes] Rename to "Sticky Note"
* [applets/notes] Only show configure button when focussed (kde#417608)
* Fix duplicate results for sessions, simplify and optimize
* Fix minor EBN issues: http -> https, newlines, licenses
* Fix minor EBN issues
==== plasma5-desktop ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* KCM Notifications: Open app page only after model is loaded
* [kimpanel] Make candidate index more visible.
* Emoji Panel: Use the right category component
* [Emoji panel] fix slowness introduced in the last patch
* [Emoji panel] search when the user begins typing
* [kcms/nightcolour] Reset needsSave after loading initial QML properties (kde#411584)
==== plasma5-integration ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Use Standard "Show/Hide Hidden files" shortcuts in directory chooser dialog
* Raise size of default fixed-width font from 9 to 10pt
* Remove too strict Qt/KF5 deprecation rule
* Set cursor size default to 24 to align with KCM default value
* Fix build
* bump to require Qt 5.14
* Make it compile against qt5.15. SkipEmptyParts is part of Qt::.
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE sddm-theme-openSUSE
- Update to 5.19.0
- Update to 5.18.90
==== plasma5-pa ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Converted to page and added heading
* Add options for OSD feedback (kde#363983)
* bump to require Qt 5.14
* [KCM]Align volume controls row
* [KCM]Update Device item layout based on applet (kde#417607)
* [applet] For placeholder labels, disable rather than changing opacity
* [Applet]Improvements for unavailable port.
* [Applet]Correct raise max volume functions for mic
* [Applet]Always get valid device and stream name
* Fix minor EBN issue and typos
* [Applet] Display device name when there is than one device (kde#417079)
* [Applet]Fix device label problems (kde#417074,kde#417106)
* [Applet]Supplementary add port check
* [Applet]Add port check
* [Applet] Remove leftover in config window
* [Applet] Enable new global "Raise maximum volume" checkbox
* [Applet]Hide hamburger menu when empty
* [Applet]Add global mute function (kde#396835)
* [Applet] Make 'raise maximum volume' global
* [Applet]Update layout based on T10470
==== plasma5-workspace ====
Version update (5.18.5 -> 5.19.0)
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* appstreamrunner: do case insensitive comparisons
* Fix many results when query starts with =
* [notifications] don't widen the notifications on the mobile
* Kicker fix KRunner prepare/teardown method calls
* Bookmarks Runner: Fix extraction of firefox profile (kde#418526)
* [applets/systemtray] Fix configuraiton read on Plasma start
* [applets/systemtray] Consistent name/icon in System Tray settings (kde#421561)
* [applets/systemtray] Lazy initialize SystemTray model (kde#420993)
* [applets/mediacontroller] Icon for Playing/Paused
* [applets/mediacontroller] Don't use Album Art for icon (kde#420197)
* Remove useless double line
* Make system tray impossible to resize again
* Revert "[applets/batterymonitor] Collapse inhibitions list properly"
* [Battery Monitor] Fix ScrollView anchoring
* [Notifications] Restore item spacing
* [Notifications] Don't take updated time into account for sorting
* [Kicker] Fix jump list actions in RunnerMatchesModel
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Too many changes to list here
- Drop patches, now upstream:
* 0001-Stop-multiplying-duration-values.patch
==== polkit-kde-agent-5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* bump to require Qt 5.14
==== poppler ====
Version update (0.88.0 -> 0.89.0)
- update to version 0.89.0
+ core:
- Add support for ResetForm action
- Fix crash in PDFDoc::getSignatureFields when there's no Forms
at all
- Fix exporting to PS of some files with CID fonts
- Use ICC profiles in PS output (if new enough lcms is used)
- Allow almost-singular tiling pattern matrices
- Fix memory leak when failing to load some fonts
- CairoOutputDev: Use stroke opacity when clipping to a stroke
path
- CairoOutputDev: Fix tiling patterns when pattern cell is too
far
+ glib: Add poppler_movie_get_aspect
+ cpp: Add the font infos to the text_box object
- Bump poppler_sover following upstream changes.
==== poppler-qt5 ====
Version update (0.88.0 -> 0.89.0)
- update to version 0.89.0
+ core:
- Add support for ResetForm action
- Fix crash in PDFDoc::getSignatureFields when there's no Forms
at all
- Fix exporting to PS of some files with CID fonts
- Use ICC profiles in PS output (if new enough lcms is used)
- Allow almost-singular tiling pattern matrices
- Fix memory leak when failing to load some fonts
- CairoOutputDev: Use stroke opacity when clipping to a stroke
path
- CairoOutputDev: Fix tiling patterns when pattern cell is too
far
+ glib: Add poppler_movie_get_aspect
+ cpp: Add the font infos to the text_box object
- Bump poppler_sover following upstream changes.
==== powerdevil5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- No code changes since 5.18.90
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Close low battery notificaton when showing critical
* Make low battery notification critical
* bump to require Qt 5.14
* Properly store the powerdown action
* Improve powerdevil's main
* Revert "Fix build with Qt 5.15"
* Fix compilation with Qt 5.15, this hit the time bomb too
* Include comment for translators for Power Down
* Port deprecated method
* Fix build with Qt 5.15
* Improve the behaviour of the power button on mobile
* replace Q_FOREACH with for-range loop, should fix freeBSD compilation
* Use directly a QMultiHash here, as it used insertMulti
==== re2 ====
Version update (20200501 -> 20200601)
- Update to version 2020-06-01:
* Various internal changes
==== rebootmgr ====
Version update (1.1 -> 1.2)
- Update to version 1.2
- depend on dbus and not network as we disabled etcd support
[bsc#1172518]
==== shared-mime-info ====
- Revert the previous change, we should not own
/usr/share/mime/application: ref the spec upstream, this is
wrong. Any application depending on this previous error needs to
be fixed on a individual basis. Upstream ref:
https://specifications.freedesktop.org/shared-mime-info-spec/shared-mime-in…
==== systemsettings5 ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* don't try to access invalid modules (kde#422029)
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* Add global shortcut
* Support module commandline paramenter
* Port from KRun::runService to KIO::ApplicationLauncherJob
* Use correct icon for Applications category
* bump to require Qt 5.14
* Hide configure action in Info center mode (kde#417977,kde#417981)
* If KHelpCenter isn't available fallback to opening doc at docs.kde.org (kde#405647)
* Handle spawning kinfocenter with a full path
* delay show window
* Introduce an Info Center mode (kde#412975)
==== tallow ====
Version update (21+git20200213.865ec91 -> 21+git20200401.03f4d64)
- Get rid of pandoc BuildRequires:
- no-pandoc.patch: don't check for pandoc
- tallow-man-pages.tar.gz: prebuild manual pages
- PreRequire mkdir, rm and touch instead of coreutils
- Update to version 21+git20200401.03f4d64:
* Convert to pandoc.
- fwcmd_path.patch: fix default path to firewall-cmd
==== v4l-utils ====
Subpackages: libv4l libv4l1-0 libv4l2-0 libv4lconvert0
- libv4l-devel-32bit needs to require the shared libraries belonging
to it, libv4l1-0-32bit + libv4l2-0-32bit + libv4l2rds0-32bit + libv4lconvert0-32bit.
This helps Wine development (bsc#1172301)
==== vte ====
Version update (0.60.2 -> 0.60.3)
- Update to version 0.60.3:
* widget:
- Fix underlining the space character in a matched regex
- Notify correct property when setting the scroll-on-keystroke
- Set error from vte_terminal_set_encoding when built without
ICU
* pty: Call grantpt/unlockpt when opening the PTY
* icu: glue: Set error callback on the from-unicode conversion
* lib: Fix switching between legacy encodings
* all: Fix the build without ICU
* docs: Add index for API new in 0.60
==== vulkan-loader ====
- added vulkan-devel-xxBIT (bsc#1172301)
==== xdg-desktop-portal-kde ====
Version update (5.18.5 -> 5.19.0)
- Update to 5.19.0
* New bugfix release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.19.0.php
- Changes since 5.18.90:
* Screencast: add information about the source type which is being shared
* Background portal: do not notify about apps in background when we don't track them
* Background portal: correctly send respond whether we allow application in the background
- Update to 5.18.90
* New feature release
* For more details please see:
* https://www.kde.org/announcements/plasma-5.18.90.php
- Changes since 5.18.5:
* FileChooser portal: add support for opening directories
* Screensharing: support variable stride
* Make PipeWire, GBM and Epoxy libs as required dependencies
* Return buffer to pipewire when returning early from recordFrame
* Send notification when screencasting fails
* Add background portal
* ScreenSharing: close dialogs when session is closed
* Send notification when screencasting fails
* bump to require Qt 5.14
* Avoid copying buffer twice (kde#419209)
* Add new Account portal
* Make it possible to stream only input
* Return if the process couldn't be properly registered
==== xorg-x11-server ====
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-wayland
- U_glamor_egl-Reject-OpenGL-2.1-early-on.patch
* GLAMOR: no longer bail out for OpenGL drivers < 2.1 (boo#1172321)
==== yast2 ====
Version update (4.2.84 -> 4.3.5)
- Improve actions to stop and start a system service.
- Related to bsc#1162514.
- 4.3.5
- Drop anyxml agent to unify used xml parsers. All usage replaced
by rubygem-nokogiri
(related to bsc#1170886)
- 4.3.4
- Improved XML validation, raise exception for not well formed
documents (related to bsc#1170886)
- 4.3.3
- autoinst_issues/list.add : Fixed documentation.
(bsc#1171335).
- autoinst_issues/list.add : Changed first parameter from tag to
classes (bsc#1171335).
- Added general AY issue classes: InvalidValue, MissingValue
- 4.3.2
- Restore back the perl-XML-Simple dependency, it is needed for
ag_anyxml (related to bsc#1170886)
- 4.3.1
- Re-implement XML parser (bsc#1170886):
-- use as backend nokogiri instead of hand written libxml2 wrapper
-- Use exceptions instead of silently ignoring issues
-- export map as type to xml
-- add new method #validate to validate against relax-ng schema
- 4.3.0
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cups
installation-images-MicroOS (15.1 -> 15.4)
libjpeg-turbo
libopenmpt (0.4.12 -> 0.5.0)
microos-tools (2.0 -> 2.1)
openldap2
perl-HTTP-Daemon (6.10 -> 6.12)
re2 (20200501 -> 20200601)
rebootmgr (1.1 -> 1.2)
tallow (21+git20200213.865ec91 -> 21+git20200401.03f4d64)
v4l-utils
vulkan-loader
yast2 (4.2.84 -> 4.3.5)
=== Details ===
==== cups ====
Subpackages: cups-config libcups2
- Fixes for %_libexecdir changing to /usr/libexec
==== installation-images-MicroOS ====
Version update (15.1 -> 15.4)
- merge gh#openSUSE/installation-images#382
- follow xorg font file shuffle (xorg-x11-legacy, bsc#1169444)
- 15.4
- merge gh#openSUSE/installation-images#378
- ensure there's a writable /var/lib/rpm directory (bsc#1171733)
- 15.3
- merge gh#openSUSE/installation-images#377
- support Leap-based MicroOS (bsc#1171585)
- 15.2
==== libjpeg-turbo ====
- security update
- added patches
fix CVE-2020-13790 [bsc#1172491], heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file
+ libjpeg-turbo-CVE-2020-13790.patch
==== libopenmpt ====
Version update (0.4.12 -> 0.5.0)
- Remove devel packages requirement on obsolete modplug
- Drop libmodpulg-pcfile.patch
- Update to 0.5.0:
* [New] OggMod compressed FastTracker 2 XM (OXM) modules are now
supported.
* [New] The emulated Amiga type when Amiga resampler emulation
is enabled can now be selected via ctl
render.resampler.emulate_amiga_type.
Possible values are: "auto", "a500", "a1200",
and an experimental option "unfiltered".
* [New] libopenmpt: New API
openmpt::module::get_current_estimated_bpm() (C++),
and openmpt_module_get_current_estimated_bpm() (C)
which provides accurate beats per minute information for
module formats with time signature and an educated guess
based on speed and tempo for others.
* [New] libopenmpt: New type-aware ctl APIs that do not require
memory allocations and are thus realtime-safe:
openmpt::module::ctl_get_boolean(),
openmpt::module::ctl_get_integer(),
openmpt::module::ctl_get_floatingpoint(),
openmpt::module::ctl_get_text(),
openmpt::module::ctl_set_boolean(),
openmpt::module::ctl_set_integer(),
openmpt::module::ctl_set_floatingpoint() (C++),
and openmpt_module_ctl_get_boolean(),
openmpt_module_ctl_get_integer(),
openmpt_module_ctl_get_floatingpoint(),
openmpt_module_ctl_get_text(),
openmpt_module_ctl_set_boolean(),
openmpt_module_ctl_set_integer(),
openmpt_module_ctl_set_floatingpoint() (C).
* [New] libopenmpt C++ New API
openmpt::is_extension_supported2() which takes a
std::string_view parameter instead of std::string.
* [New] libopenmpt C++: New API
openmpt::module::module(std::vector<std::byte> data),
openmpt::module::module(const std::byte * data, std::size_t size),
openmpt::module::module(const std::byte * beg, const std::byte * end).
* [New] libopenmpt C++: New API
openmpt::probe_file_header(flags, const std::byte * data, std::size_t size, filesize),
openmpt::probe_file_header(flags, const std::byte * data, std::size_t size).
* [New] libopenmpt_ext C++: New API
openmpt::module_ext::module_ext(std::vector<std::byte> data),
openmpt::module_ext::module_ext(const std::byte * data, std::size_t size),
openmpt::module_ext::module_ext(std::vector<std::uint8_t> data),
openmpt::module_ext::module_ext(const std::uint8_t * data, std::size_t size).
* [Change] std::istream based file I/O has been speed up.
* [Change] Dependency on iconv on Linux has been removed.
* [Regression] libmodplug: The libmodplug emulation layer has
been removed from the libopenmpt tree. Please use the separate
libopenmpt-modplug package instead.
* [Regression] Support for building with C++11 or C++14 has been
removed. C++17 is now required to build libopenmpt.
* [Regression] Support for client code using C++11 or C++ 14 has
been removed. C++17 is now required to build libopenmpt client
applications.
* [Regression] Support for GCC 4.8, 4.9, 5, 6 has been removed.
* [Regression] Support for Clang 3.6, 3.7, 3.8, 3.9, 4 has been
removed.
* [Regression] Support for Emscripten versions older than 1.39.1
has been removed.
* [Regression] openmpt123: Support for SDL1 (but not SDL2) output
has been removed.
* [Regression] openmpt123: Support for SDL2 older than 2.0.4 has
been removed.
* [Regression] It is no longer possible to optionally use iconv
for character set conversions.
* [Bug] openmpt123: openmpt123 now honors the current locale and
outputs text appropriately.
* Greatly improved MED import. Synthesized instruments are still
not supported but support was added for: Multisampled
instruments, delta samples, more pattern commands,
Hold and Decay, VSTi and MIDI output, multiple songs and
many other small changes.
* Improved OPL channel allocation when more than 18 notes are
active, so that channels that have completely faded out are
prioritized over channels that have already been released but
have not faded out yet.
* Interactively triggering an OPL instrument could cause the
first pattern channel to no longer be played back correctly.
* Fix some inaccuracies in OPL emulator.
* Fix overflow of OPL amplification happening at a synth
volume level of 510.
* End-of-sample pop reduction of surround channels was applied
to front channels instead, causing a pop on the front channels
instead of removing it on the back channels.
* IT: Disable retrigger with short notes quirk for modules saved
with Chibi Tracker, as it does not implement that quirk.
* IT: Instrument and sample panning should not override channel
panning for following notes.
* IT: SBx is now prioritized over Bxx commands that are to the
left of it.
* IT: Duplicate Check Type ?Sample? should only be applied if
the instruments match, too.
* IT: Duplicate Check Type ?Note? should compare pattern notes,
but it was comparing the new pattern note against the old
translated note.
* IT: Various fixes for envelope resetting.
* IT / S3M: When combining SBx and EEx effects, don?t skip the
first row of the loop like in FastTracker 2.
* S3M: Empty pattern commands now affect effect memory as well.
* S3M: Offset beyond loop end wraps around to loop start like in
Scream Tracker 3 + GUS (previously it just keep playing from
the loop start, which is neither what GUS nor Sound Blaster
drivers do).
* S3M: Notes cannot be retriggered after they have been cut.
* S3M: Fix portamento after note cut
(fixes antediluvian_song.s3m).
* S3M / MOD: Previous note offset is no longer used for
retriggered notes if there was no instrument number next to
the Qxy effect.
* MOD: Sample swapping now also works if the sample that is being
swapped from does not loop. Swapping to a non-looped sample now
stops playback once the swapped-from sample reaches its (loop)
end.
* MOD: Fix early song ending due to ProTracker pattern jump quirk
(EEx + Dxx on same row) if infinite looping is disabled.
Fixes Haunted Tracks.mod by Triace.
* MOD: Previous note offset is no longer used for retriggered
notes if there was no instrument number next to the E9x effect.
* MOD: Vibrato type ?ramp down? was upside down.
* XM: If a file contains patterns longer than 1024 rows,
they are now clamped to 1024 rows instead of 64 rows.
* XM: Do not reset note-off status on portamento if there is no
instrument number.
==== microos-tools ====
Version update (2.0 -> 2.1)
- Update to version 2.1
- Provide support to use tmpfs for /tmp
==== openldap2 ====
- Revert changes to libexecdir
- More .spec cleanups
- Fixes for %_libexecdir changing to /usr/libexec
- Spec file cleanups
==== perl-HTTP-Daemon ====
Version update (6.10 -> 6.12)
- updated to 6.12
see /usr/share/doc/packages/perl-HTTP-Daemon/Changes
6.12 2020-06-04 16:01:31Z
- No changes since TRIAL release 6.11
6.11 2020-06-03 14:47:21Z (TRIAL RELEASE)
- An IPv6 zone separator must be URI-quoted (GH#47) (Petr Pisar and Olaf
Alders)
==== re2 ====
Version update (20200501 -> 20200601)
- Update to version 2020-06-01:
* Various internal changes
==== rebootmgr ====
Version update (1.1 -> 1.2)
- Update to version 1.2
- depend on dbus and not network as we disabled etcd support
[bsc#1172518]
==== tallow ====
Version update (21+git20200213.865ec91 -> 21+git20200401.03f4d64)
- Get rid of pandoc BuildRequires:
- no-pandoc.patch: don't check for pandoc
- tallow-man-pages.tar.gz: prebuild manual pages
- PreRequire mkdir, rm and touch instead of coreutils
- Update to version 21+git20200401.03f4d64:
* Convert to pandoc.
- fwcmd_path.patch: fix default path to firewall-cmd
==== v4l-utils ====
Subpackages: libv4l libv4l1-0 libv4l2-0 libv4lconvert0
- libv4l-devel-32bit needs to require the shared libraries belonging
to it, libv4l1-0-32bit + libv4l2-0-32bit + libv4l2rds0-32bit + libv4lconvert0-32bit.
This helps Wine development (bsc#1172301)
==== vulkan-loader ====
- added vulkan-devel-xxBIT (bsc#1172301)
==== yast2 ====
Version update (4.2.84 -> 4.3.5)
- Improve actions to stop and start a system service.
- Related to bsc#1162514.
- 4.3.5
- Drop anyxml agent to unify used xml parsers. All usage replaced
by rubygem-nokogiri
(related to bsc#1170886)
- 4.3.4
- Improved XML validation, raise exception for not well formed
documents (related to bsc#1170886)
- 4.3.3
- autoinst_issues/list.add : Fixed documentation.
(bsc#1171335).
- autoinst_issues/list.add : Changed first parameter from tag to
classes (bsc#1171335).
- Added general AY issue classes: InvalidValue, MissingValue
- 4.3.2
- Restore back the perl-XML-Simple dependency, it is needed for
ag_anyxml (related to bsc#1170886)
- 4.3.1
- Re-implement XML parser (bsc#1170886):
-- use as backend nokogiri instead of hand written libxml2 wrapper
-- Use exceptions instead of silently ignoring issues
-- export map as type to xml
-- add new method #validate to validate against relax-ng schema
- 4.3.0
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0
11 Jun '20
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
dracut (050+suse.63.g796e020e -> 050+suse.65.ge1e64674)
etcd
glib2 (2.64.2 -> 2.64.3)
installation-images-MicroOS (15.1 -> 15.4)
iproute2 (5.6.0 -> 5.7.0)
libcontainers-common (20200306 -> 20200603)
libzypp (17.23.5 -> 17.23.6)
microos-tools (2.0 -> 2.1)
openldap2
patterns-base
rebootmgr (1.1 -> 1.2)
shared-mime-info
tallow (21+git20200213.865ec91 -> 21+git20200401.03f4d64)
yast2 (4.2.84 -> 4.3.5)
=== Details ===
==== dracut ====
Version update (050+suse.63.g796e020e -> 050+suse.65.ge1e64674)
Subpackages: dracut-ima
- Update to version 050+suse.65.ge1e64674:
* Add wicked specific config files (bsc#1089333)
* Run format_spec_file
==== etcd ====
- update home-page url
==== glib2 ====
Version update (2.64.2 -> 2.64.3)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.64.3:
+ Stability improvements for various unit tests.
+ Bugs fixed: glgo#GNOME/GLib#1954, glgo#GNOME/GLib#2094,
glgo#GNOME/GLib!1470, glgo#GNOME/GLib!1471,
glgo#GNOME/GLib!1473, glgo#GNOME/GLib!1478,
glgo#GNOME/GLib!1483, glgo#GNOME/GLib!1484,
glgo#GNOME/GLib!1486, glgo#GNOME/GLib!1495,
glgo#GNOME/GLib!1501.
+ Updated translations.
==== installation-images-MicroOS ====
Version update (15.1 -> 15.4)
- merge gh#openSUSE/installation-images#382
- follow xorg font file shuffle (xorg-x11-legacy, bsc#1169444)
- 15.4
- merge gh#openSUSE/installation-images#378
- ensure there's a writable /var/lib/rpm directory (bsc#1171733)
- 15.3
- merge gh#openSUSE/installation-images#377
- support Leap-based MicroOS (bsc#1171585)
- 15.2
==== iproute2 ====
Version update (5.6.0 -> 5.7.0)
- Update to release 5.7
* macsec: add support for reporting and changing the offloading
mode (`ip macsec offload`).
==== libcontainers-common ====
Version update (20200306 -> 20200603)
- Update to image 5.4.4
- Remove registries.conf VERSION 2 references from man page
- Intial authfile man page
- Add $HOME/.config/containers/certs.d to perHostCertDirPath
- Add $HOME/.config/containers/registries.conf to config path
- registries.conf.d: add stances for the registries.conf
- update to libpod 1.9.3
- userns: support --userns=auto
- Switch to using --time as opposed to --timeout to better match Docker
- Add support for specifying CNI networks in podman play kube
- man pages: fix inconsistencies
- Update to storage 1.19.1
- userns: add support for auto
- store: change the default user to containers
- config: honor XDG_CONFIG_HOME
- Remove the /var/lib/ca-certificates/pem/SUSE.pem workaround again.
It never ended up in SLES and a different way to fix the underlying
problem is being worked on.
==== libzypp ====
Version update (17.23.5 -> 17.23.6)
- Revert "Enable zchunk on SLE-15-SP2".
- version 17.23.6 (22)
==== microos-tools ====
Version update (2.0 -> 2.1)
- Update to version 2.1
- Provide support to use tmpfs for /tmp
==== openldap2 ====
- Revert changes to libexecdir
- More .spec cleanups
- Fixes for %_libexecdir changing to /usr/libexec
- Spec file cleanups
==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-base patterns-base-bootloader patterns-base-minimal_base
- re-add ppc64-diag on ppc64le (bsc#1098849).
- Suggest xz in base, as it is now required by aaa_base and we don't
want that zypper uses busybox instead [bsc#1172209]
- Re-add purge-kernels-service dependency (boo#1168727).
Support multiversion(kernel) with purge-kernels.service separated from dracut
(jsc#SLE-10162).
- Call perl directly in pre_checkin.sh. create_32bit-patterns_file.pl is not
executable when checked out from OBS.
- Skip bootloader in pre_checkin.sh
- Re-generate 32bit patterns.
==== rebootmgr ====
Version update (1.1 -> 1.2)
- Update to version 1.2
- depend on dbus and not network as we disabled etcd support
[bsc#1172518]
==== shared-mime-info ====
- Revert the previous change, we should not own
/usr/share/mime/application: ref the spec upstream, this is
wrong. Any application depending on this previous error needs to
be fixed on a individual basis. Upstream ref:
https://specifications.freedesktop.org/shared-mime-info-spec/shared-mime-in…
==== tallow ====
Version update (21+git20200213.865ec91 -> 21+git20200401.03f4d64)
- Get rid of pandoc BuildRequires:
- no-pandoc.patch: don't check for pandoc
- tallow-man-pages.tar.gz: prebuild manual pages
- PreRequire mkdir, rm and touch instead of coreutils
- Update to version 21+git20200401.03f4d64:
* Convert to pandoc.
- fwcmd_path.patch: fix default path to firewall-cmd
==== yast2 ====
Version update (4.2.84 -> 4.3.5)
- Improve actions to stop and start a system service.
- Related to bsc#1162514.
- 4.3.5
- Drop anyxml agent to unify used xml parsers. All usage replaced
by rubygem-nokogiri
(related to bsc#1170886)
- 4.3.4
- Improved XML validation, raise exception for not well formed
documents (related to bsc#1170886)
- 4.3.3
- autoinst_issues/list.add : Fixed documentation.
(bsc#1171335).
- autoinst_issues/list.add : Changed first parameter from tag to
classes (bsc#1171335).
- Added general AY issue classes: InvalidValue, MissingValue
- 4.3.2
- Restore back the perl-XML-Simple dependency, it is needed for
ag_anyxml (related to bsc#1170886)
- 4.3.1
- Re-implement XML parser (bsc#1170886):
-- use as backend nokogiri instead of hand written libxml2 wrapper
-- Use exceptions instead of silently ignoring issues
-- export map as type to xml
-- add new method #validate to validate against relax-ng schema
- 4.3.0
--
To unsubscribe, e-mail: opensuse-kubic+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-kubic+owner(a)opensuse.org
1
0