openSUSE Kubic
Threads by month
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
January 2021
- 12 participants
- 54 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
btrfsprogs
c-ares (1.17.0 -> 1.17.1)
conmon (2.0.21 -> 2.0.22)
dosfstools (4.1 -> 4.1+git.1610658652.9443732)
gpg2 (2.2.25 -> 2.2.27)
iptables (1.8.6 -> 1.8.7)
kustomize (3.9.1 -> 3.9.2)
libcontainers-common (20200727 -> 20210112)
libnftnl (1.1.8 -> 1.1.9)
libusb-1_0
openssh (8.3p1 -> 8.4p1)
python-jsonschema
=== Details ===
==== btrfsprogs ====
Subpackages: btrfsprogs-udev-rules libbtrfs0
- prepare usrmerge (boo#1029961)
- Update to 5.9:
* mkfs:
* switch default to single profile for multi-device filesystem, up to
now it was raid0 that may not be simple to convert to some other profile
as raid0 needs a workspace on all device for that
* new option -R for run-time options (eg. mount time enabled), now
understands free-space-tree
* subvolume delete:
* refuse to delete the default subvolume (kernel will not allow that but
the error reason is not obvious)
* warn on EPERM, eg. if send is on progress on the subvolume
* convert:
* fix 32bit overflows on large filesystems
* improved error handling and error messages
* check free space taking fragmentation into account
* check:
* detect and repair wrong inode generation
* minor improvement in error reporting on roots
* libbtrfsutils: follow main package versioning (5.9)
* add pkg-config file definitions
* python-btrfsutil: follow main package versioning (5.9)
* inspect tree-stats: print node counts for each level, fanout
* other:
* docs:
* remove obsolete mount options (alloc_start, subvolrootid)
* deleting default subvolume is not permitted
* updated or fixed tests
* .editorconfig updates
* move files to kernel-shared/
* CI:
* updated to use zstd 1.4.5
* fix reiserfs build
* more builds with asan, ubsan
* sb-mod updates
* build:
* print .so versions of libraries in configure summary
- Update to 5.7:
* mkfs:
* new option to enable features otherwise enabled at runtime, now
implemented for quotas, 'mkfs.btrfs -R quota'
* fix space accounting for small image, DUP and --rootdir
* option -A removed
* check: detect ranges with overlapping csum items
* fi usage: report correct numbers when plain RAID56 profiles are used
* convert: ensure the data chunks size never exceed device size
* libbtrfsutil: update documentation regarding subvolume deletion
* build: support libkcapi as implementation backend for cryptographic
primitives
* core: global options for verbosity (-v, -q), subcommands -v or -q are
aliases and will continue to work but are considered deprecated,
current command output is preserved to keep scripts working
* other:
* build warning fixes
* btrfs-debugfs ported to python 3
- Update to 5.6.1:
* print warning when multiple block group profiles exist, update 'fi usage'
summary, add docs to maual page explaining the situation
* build: optional support for libgcrypt or libsodium, providing hash
implementations
* updated docs
- Fix content of _dracutmodulesdir variable: this definitively does
not belong to libexecdir.
- Update to 5.6:
* inspect logical-resolve: support LOGICAL_INO_V2 as new option '-o',
helps advanced dedupe tools
* inspect: user larger buffer (64K) for results
* subvol delete: support deletion by id (requires kernel 5.7+)
* dump-tree: new option --hide-names, replace any names
(file, directory, subvolume, xattr) in the output with stubs
* various fixes
- Update to 5.4.1
* build: fix docbook5 build
* check: do extra verification of extent items, inode items and chunks
* qgroup: return ENOTCONN if quotas not running (needs updated kernel)
* other: various test fixups
- BuildRequire pkgconfig(udev) instead of udev: Allow OBS to
shortcut through the -mini flavor.
- Use pkg-config --modversion udev to identify the current udev
version. This is more portable and supports the -mini flavors.
- Update to 5.4
* support new hash algorithms (kernel 5.5):
* mkfs.btrfs and btrfs-convert with --csum, crc32c, xxhash, sha256, blake2
* mkfs: support new raid1c3 and raid1c4 block group profiles (kernel 5.5)
* check:
* --repair delays start with a warning, can be skipped using --force
* enhanced detetion of inode types from partial data, more options for
repair
* receive: fix quiet option
* image: speed up chunk loading
* fi usage:
* sort devices by id
* print ratio of used/total per block group type
* rescue zero-log: reset the log pointers directly, avoid reading some other
potentially damaged structures
* new make target install-static to install only static binaries/libraries
* other
* docs updates
* new tests
* cleanups and refactoring
- Update to 5.3.1:
* libbtrfs: fix link breakage due to missing symbols
- Updaet to 5.3:
* mkfs:
* new option to specify checksum algorithm (only crc32c)
* fix xattr enumeration
* dump-tree: BFS (breadth-first) traversal now default
* libbtrfsutil: remove stale BTRFS_DEV_REPLACE_ITEM_STATE_x defines
* ci: add support for gitlab
* other:
* preparatory work for more checksum algorithms
* docs update
* switch to docbook5 backend for asciidoc
* fix build on uClibc due to missing backtrace()
* lots of printf format fixups
- Enable build of python-bindings for libbtrfsutil
- Update to 5.2.2:
* check:
* fix false report of wrong byte count for orphan inodes
* option -E was not handled correctly
* new check and repair for root item generation
* balance: check for full-balance before background fork
* mkfs: check that total device size does not overflow 16EiB
* dump-tree: print DEV_STATS key type
* other:
* new and updated tests
* doc fixups and updates
- update to 5.2.1
* scrub status: fix ETA calculation after resume
* check: fix crash when using -Q
* restore: fix symlink owner restoration
* mkfs: fix regression with mixed block groups
* core: fix commit to process all delayed refs
* other:
* minor cleanups
* test updates
- update to 5.2
* subvol show: print qgroup information when available
* scrub:
* status: show ETA, revamp the whole output
* fix reading/writing of last position on resume/cancel, potentially
skipping part of the filesystem on next resume
* dump-tree: add new option --noscan to use only devices given on the
commandline
* all-in-one binary (busybox style) with mkfs.btrfs, btrfs-image,
btrfs-convert, btrfstune
* image: fix hang when there are more than 32 cpus online and compression is
requested
* convert: fix some false ENOSPC errors when --rootdir is used
* build: fix gcc9 warnings
* core changes
* command handling cleanups
* dead code removal
* cmds-* files moved to cmds/
* other shared userspace files moved to common/
* utils.c split into more files
* preparatory work for more output formats
* libbtrfsutil: fix unaligned access
* other
* new and updated tests
* fix tests so CI passes again
* sb-mod can modify more superblock items
- update to version 5.1
* repair: flush/FUA support to avoid breaking metadata COW
* file extents repair no longer relies on data in extent tree
* lowmem: fix false error reports about gaps between extents
* add inode mode check and repair for various objects
* add check for invalid combination of nocow/compressed extents
* device scan option to forget scanned devices [new]
* mkfs: use same chunk size as kernel for initial creation
* dev-repace: better report when other exclusive operation runs
* help for sntax errors on command lines, print relevant msgs
* defrag: able to open files in RO mode
* dump-tree: --block can be specified multiple times
- update to version 4.20.2
* dump-super: minor output fixup
* revert fix for prefix detection of receive path, this is temporary and
unbreaks existing user setups
- Use correct path for dracut-fsck-help.txt in module-setup.sh (bsc#1122539)
* Remove module-setup.sh
* Add module-setup.sh.in
- Advise user of fs recovery options when we fail to mount (fate#320443,
bsc#1122539)
* Add dracut-fsck-help.txt
* Add module-setup.sh
- update to version 4.20.1
* libbtrfs: fix build of external tools due to missing symbols
* ci: enable library test
- update to version 4.20
* new feature: metadata uuid
* lightweight change of UUID without rewriting all metadata
(incompatible change)
* done by btrfstune -m/-M, needs kernel support, 5.0+
* image:
* fix block groups when restoring from multi-device image
* only enlarge result image if it's a regular file
* check
* more device extent checks and fixes
* can repair dir item with mismatched hash
* mkfs: uuid tree created with proper contents
* fix mount point detection due to partial prefix match
* other:
* new tests, build fixes, doc updates
* libbtrfsutil: fix tests if kernel lacks support for new
subvolume ioctls
- partial cleanup with spec-cleaner
- drop 0001-btrfs-progs-Add-support-for-metadata_uuid-field.patch
- drop 0002-btrfs-progs-btrfstune-Add-support-for-changing-the-u.patch
- drop 0003-btrfs-progs-Remove-fsid-metdata_uuid-fields-from-fs_.patch
- drop 0004-btrfs-progs-Remove-btrfs_fs_info-new_fsid.patch
- drop 0005-btrfs-progs-Directly-pass-root-to-change_devices_uui.patch
- Use %license instead of %doc [bsc#1082318]
- Implement fate#325871
* Added 0001-btrfs-progs-Add-support-for-metadata_uuid-field.patch
* Added 0002-btrfs-progs-btrfstune-Add-support-for-changing-the-u.patch
* Added 0003-btrfs-progs-Remove-fsid-metdata_uuid-fields-from-fs_.patch
* Added 0004-btrfs-progs-Remove-btrfs_fs_info-new_fsid.patch
* Added 0005-btrfs-progs-Directly-pass-root-to-change_devices_uui.patch
- update to version 4.19.1
* check
* many lowmem mode improvements
* properly report qgroup mismatch errors
* check symlinks with append/immutable flags
* fi usage
* correctly calculate allocated/unallocated for raid10
* minor output updates
* mkfs
* detect ENOSPC on thinly provisioned devices
* fix spurious EEXIST during directory traversal
* restore: fix relative path for restore target
* dump-tree: print symbolic tree names for backrefs
* send: fix regression preventing send -p with subvolumes mounted on "/"
* corrupt-tree: refactoring and command line updates
* build
* make it work with e2fsprogs < 1.42 again
* restore support for autoconf 2.63
* detect if -std=gnu90 is supported
* other
* new tests
* cleanups
- update to version 4.19
* check: support repair of fs with free-space-tree feature
* core:
* port delayed ref infrastructure from kernel
* support write to free space tree
* dump-tree: new options for BFS and DFS enumeration of b-trees
* quota: rescan is now done automatically after 'assign'
* btrfstune: incomplete fix to uuid change
* subvol: fix 255 char limit checks
* completion: complete block devices and now regular files too
* docs:
* ship uncompressed manual pages
* btrfsck uses a manual page link instead of symlink
* other
* improved error handling
* docs
* new tests
- update to version 4.17.1
* check:
* add ability to fix wrong ram_bytes for compressed inline files
* beautify progress output
* btrfstune: allow to continue uuid change after unclean interruption
* several fuzz fixes:
* detect overalpping chunks
* chunk loading error handling
* don't crash with unexpected root refs to extents
* relax option parsing again to allow mixing options and non-options
arguments
* fix qgroup rescan status reporting
* build:
* drop obsolete dir-test
* new configure option to disable building of tools
* add compatibility options --disable-static and --disable-shared
* other:
* cleanups and preparatory work
* new test images
- spec cleanup
- update to version 4.17
* check
* many lowmem mode improvements
* properly report qgroup mismatch errors
* check symlinks with append/immutable flags
* fi usage
* correctly calculate allocated/unallocated for raid10
* minor output updates
* mkfs
* detect ENOSPC on thinly provisioned devices
* fix spurious EEXIST during directory traversal
* restore: fix relative path for restore target
* dump-tree: print symbolic tree names for backrefs
* send: fix regression preventing send -p with subvolumes mounted on "/"
* corrupt-tree: refactoring and command line updates
* build
* make it work with e2fsprogs < 1.42 again
* restore support for autoconf 2.63
* detect if -std=gnu90 is supported
- Removed patches (upstreamed):
* 0001-btrfs-progs-convert-fix-support-for-e2fsprogs-1.42.patch
* 0002-btrfs-progs-build-autoconf-2.63-compatibility.patch
* 0003-btrfs-progs-build-detect-whether-std-gnu90-is-suppor.patch
- Don't require libzstd-devel-static on builds that don't use it.
- fix installation of btrfs.5.gz
- Fix building on SLE11:
* btrfs-progs: convert: fix support for e2fsprogs < 1.42
* btrfs-progs: build: detect whether -std=gnu90 is supported
* btrfs-progs: build: autoconf 2.63 compatibility
* Fixed mismerged addition of libbtrfsutil1 package description
- Added patches:
* 0001-btrfs-progs-convert-fix-support-for-e2fsprogs-1.42.patch
* 0002-btrfs-progs-build-autoconf-2.63-compatibility.patch
* 0003-btrfs-progs-build-detect-whether-std-gnu90-is-suppor.patch
- update to version 4.16.1
* remove obsolete tools: btrfs-debug-tree, btrfs-zero-log, btrfs-show-super,
btrfs-calc-size
* sb-mod: new debugging tool to edit superblock items
* mkfs: detect if thin-provisioned device does not have enough space
* check: don't try to verify checksums on metadata dump images
* build: fail documentation build if xmlto is not found
* build: fix build of btrfs.static
- Remove patch: 0001-btrfs-progs-build-fix-static-build.patch (upstream)
- Update initrd script
- update to version 4.16
* libbtrfsutil - new LGPL library to wrap userspace functionality
* several 'btrfs' commands converted to use it:
* properties
* filesystem sync
* subvolume set-default/get-default/delete/show/sync
* python bindings, tests
* build
* use configured pkg-config path
* CI: add python, musl/clang, built dependencies caching
* convert: build fix for e2fsprogs 1.44+
* don't install library links with wrong permissions
* fixes
* prevent incorrect use of subvol_strip_mountpoint
* dump-super: don't verify csum for unknown type
* convert: fix inline extent creation condition
* check:
* lowmem: fix false alert for 'data extent backref lost for snapshot'
* lowmem: fix false alert for orphan inode
* lowmem: fix false alert for shared prealloc extents
* mkfs:
* add UUID and otime to root of FS_TREE - with the uuid, snapshots will
be now linked to the toplevel subvol by the parent UUID
* don't follow symlinks when calculating size
* pre-create the UUID tree
* fix --rootdir with selinux enabled
* dump-tree: add option to print only children nodes of a given block
* image: handle missing device for RAID1
* other
* new tests
* test script cleanups (quoting, helpers)
* tool to edit superblocks
* updated docs
- Add patch: 0001-btrfs-progs-build-fix-static-build.patch
- Add new library packages: libbtrfsutil
- use documentation shipped by upstream tar, reduce dependencies
- enable static build again, zstd now has static version
- update to version 4.15
* mkfs --rootdir reworked, does not minimize the final image but can be still
done using a new option --shrink
* fix allocation of system chunk, don't allocate from the reserved area
* other
* new and updated tests
* cleanups, refactoring
* doc updates
- spec: fix distro version condition
- update to version 4.14.1
* dump-tree: print times of root items
* check: fix several lowmem mode bugs
* convert: fix rollback after balance
* other
* new and updated tests, enabled lowmem mode in CI
* docs updates
* fix travis CI build
* build fixes
* cleanups
- update to version 4.14
* build: libzstd now required by default
* check: more lowmem mode repair enhancements
* subvol set-default: also accept path
* prop set: compression accepts no/none, same as ""
* filesystem usage: enable for filesystem on top of a seed device
* rescue: new command fix-device-size
* other
* new tests
* cleanups and refactoring
* doc updates
- Removed patches:
- rollback-regression-fix.patch - upstreamed
- spec: disable static build, missing libzstd-devel-static
- spec: disable zstd support for non-Tumbleweed distros
==== c-ares ====
Version update (1.17.0 -> 1.17.1)
- update to 1.17.1:
Travis: add iOS target built with CMake (#378)
Issue #377 suggested that CMake builds for iOS with c-ares were broken. This PR adds an automatic Travis build for iOS CMake.
- fix build
External projects were using non-public header ares_dns.h, make public again (#376)
It appears some outside projects were relying on macros in ares_dns.h, even
though it doesn't appear that header was ever meant to be public. That said,
we don't want to break external integrators so we should distribute this header
again.
- note that so versioning has moved to configure.ac
- note about 1.17.1
- fix sed gone wrong
autotools cleanup (#372)
* buildconf: remove custom logic with autoreconf
- remove missing_header.patch (upstream)
==== conmon ====
Version update (2.0.21 -> 2.0.22)
- Update to version 2.0.22:
* added man page
* attach: always chdir
* conn_sock: Explicitly free a heap-allocated string
* refactor I/O and add SD_NOTIFY proxy support
==== dosfstools ====
Version update (4.1 -> 4.1+git.1610658652.9443732)
- Update to version 4.1+git.1610658652.9443732 (bsc#1172863):
* testsuite: Add mkfs test for 600MB large 4K disk
* mkfs.fat: Do not show verbose messages not relevant to selected FAT size
* mkfs.fat: Fix text of verbose messages
* mkfs.fat: Fix limits for number of clusters
* mkfs.fat: Fix calculation of FAT32 cluster size on non 512 bytes sector disks
* mkfs.fat: Fix printing number of sectors
* mkfs.fat: Align total number of sectors to be multiple of sectors per track
* testsuite: Add referenceFAT32mbr test data to dist_check_DATA
* manpages: Escape dot in fsck.fat manpage at the beginning of the line
* fsck.fat: properly check for valid "." and ".." entries
==== gpg2 ====
Version update (2.2.25 -> 2.2.27)
- GnuPG 2.2.27:
* gpgconf: Fix case with neither local nor global gpg.conf
* gpgconf: Fix description of two new options
- includes changes from 2.2.26:
* gpg: New AKL method "ntds"
* gpg: Fix --trusted-key with fingerprint arg
* scd: Fix writing of ECC keys to an OpenPGP card
* scd: Make an USB error fix specific to SPR532 readers
* dirmngr: With new LDAP keyservers store the new attributes.
Never store the useless pgpSignerID. Fix a long standing
bug storing some keys on an ldap server.
* dirmngr: Support the new Active Direcory LDAP schema for
keyservers
* dirmngr: Allow LDAP OpenPGP searches via fingerprint
* dirmngr: Do not block other threads during keyserver LDAP calls
* Support global configuration files
* Fix the iconv fallback handling to UTF-8
==== iptables ====
Version update (1.8.6 -> 1.8.7)
Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins
- Update to release 1.8.7
* iptables-nft:
* Improved performance when matching on IP/MAC address prefixes
if the prefix is byte-aligned. In ideal cases, this doubles
packet processing performance.
* Dump user-defined chains in lexical order. This way ruleset
dumps become stable and easily comparable.
* Avoid pointless table/chain creation. For instance,
`iptables-nft -L` no longer creates missing base-chains.
==== kustomize ====
Version update (3.9.1 -> 3.9.2)
- Update to version 3.9.2
- Pin to api v0.7.2
- Pin to cmd/config v0.8.8
- Pin to kyaml v0.10.6 and cli-utils v0.22.4
- Move plugin lister to avoid import cycle.
- Unpin kyaml, cmd/config, api
- Refresh vendor.tar.xz
==== libcontainers-common ====
Version update (20200727 -> 20210112)
- Update common to 0.33.0
- Update image to 5.9.0
- Update podman to 2.2.1
- Update storage to 1.24.5
- Switch to seccomp profile provided by common instead of podman
- Update containers.conf to match latest version
==== libnftnl ====
Version update (1.1.8 -> 1.1.9)
- Update to release 1.1.9
* Improve formatting of registers in bitwise dumps.
==== libusb-1_0 ====
- Add 0001-fix-descriptor-parsing.patch to fix detection of some devices.
==== openssh ====
Version update (8.3p1 -> 8.4p1)
Subpackages: openssh-clients openssh-common openssh-server
- update to 8.4p1:
Security
========
* ssh-agent(1): restrict ssh-agent from signing web challenges for
FIDO/U2F keys.
* ssh-keygen(1): Enable FIDO 2.1 credProtect extension when generating
a FIDO resident key.
* ssh(1), ssh-keygen(1): support for FIDO keys that require a PIN for
each use. These keys may be generated using ssh-keygen using a new
"verify-required" option. When a PIN-required key is used, the user
will be prompted for a PIN to complete the signature operation.
New Features
- -----------
* sshd(8): authorized_keys now supports a new "verify-required"
option to require FIDO signatures assert that the token verified
that the user was present before making the signature. The FIDO
protocol supports multiple methods for user-verification, but
currently OpenSSH only supports PIN verification.
* sshd(8), ssh-keygen(1): add support for verifying FIDO webauthn
signatures. Webauthn is a standard for using FIDO keys in web
browsers. These signatures are a slightly different format to plain
FIDO signatures and thus require explicit support.
* ssh(1): allow some keywords to expand shell-style ${ENV}
environment variables. The supported keywords are CertificateFile,
ControlPath, IdentityAgent and IdentityFile, plus LocalForward and
RemoteForward when used for Unix domain socket paths. bz#3140
* ssh(1), ssh-agent(1): allow some additional control over the use of
ssh-askpass via a new $SSH_ASKPASS_REQUIRE environment variable,
including forcibly enabling and disabling its use. bz#69
* ssh(1): allow ssh_config(5)'s AddKeysToAgent keyword accept a time
limit for keys in addition to its current flag options. Time-
limited keys will automatically be removed from ssh-agent after
their expiry time has passed.
* scp(1), sftp(1): allow the -A flag to explicitly enable agent
forwarding in scp and sftp. The default remains to not forward an
agent, even when ssh_config enables it.
* ssh(1): add a '%k' TOKEN that expands to the effective HostKey of
the destination. This allows, e.g., keeping host keys in individual
files using "UserKnownHostsFile ~/.ssh/known_hosts.d/%k". bz#1654
* ssh(1): add %-TOKEN, environment variable and tilde expansion to
the UserKnownHostsFile directive, allowing the path to be
completed by the configuration (e.g. bz#1654)
* ssh-keygen(1): allow "ssh-add -d -" to read keys to be deleted
from stdin. bz#3180
* sshd(8): improve logging for MaxStartups connection throttling.
sshd will now log when it starts and stops throttling and periodically
while in this state. bz#3055
Bugfixes
- -------
* ssh(1), ssh-keygen(1): better support for multiple attached FIDO
tokens. In cases where OpenSSH cannot unambiguously determine which
token to direct a request to, the user is now required to select a
token by touching it. In cases of operations that require a PIN to
be verified, this avoids sending the wrong PIN to the wrong token
and incrementing the token's PIN failure counter (tokens
effectively erase their keys after too many PIN failures).
* sshd(8): fix Include before Match in sshd_config; bz#3122
* ssh(1): close stdin/out/error when forking after authentication
completes ("ssh -f ...") bz#3137
* ssh(1), sshd(8): limit the amount of channel input data buffered,
avoiding peers that advertise large windows but are slow to read
from causing high memory consumption.
* ssh-agent(1): handle multiple requests sent in a single write() to
the agent.
* sshd(8): allow sshd_config longer than 256k
* sshd(8): avoid spurious "Unable to load host key" message when sshd
load a private key but no public counterpart
* ssh(1): prefer the default hostkey algorithm list whenever we have
a hostkey that matches its best-preference algorithm.
* sshd(1): when ordering the hostkey algorithms to request from a
server, prefer certificate types if the known_hosts files contain a key
marked as a @cert-authority; bz#3157
* ssh(1): perform host key fingerprint comparisons for the "Are you
sure you want to continue connecting (yes/no/[fingerprint])?"
prompt with case sensitivity.
* sshd(8): ensure that address/masklen mismatches in sshd_config
yield fatal errors at daemon start time rather than later when
they are evaluated.
* ssh-keygen(1): ensure that certificate extensions are lexically
sorted. Previously if the user specified a custom extension then
the everything would be in order except the custom ones. bz#3198
* ssh(1): also compare username when checking for JumpHost loops.
bz#3057
* ssh-keygen(1): preserve group/world read permission on known_hosts
files across runs of "ssh-keygen -Rf /path". The old behaviour was
to remove all rights for group/other. bz#3146
* ssh-keygen(1): Mention the [-a rounds] flag in the ssh-keygen
manual page and usage().
* sshd(8): explicitly construct path to ~/.ssh/rc rather than
relying on it being relative to the current directory, so that it
can still be found if the shell startup changes its directory.
bz#3185
* sshd(8): when redirecting sshd's log output to a file, undo this
redirection after the session child process is forked(). Fixes
missing log messages when using this feature under some
circumstances.
* sshd(8): start ClientAliveInterval bookkeeping before first pass
through select() loop; fixed theoretical case where busy sshd may
ignore timeouts from client.
* ssh(1): only reset the ServerAliveInterval check when we receive
traffic from the server and ignore traffic from a port forwarding
client, preventing a client from keeping a connection alive when
it should be terminated. bz#2265
* ssh-keygen(1): avoid spurious error message when ssh-keygen
creates files outside ~/.ssh
* sftp-client(1): fix off-by-one error that caused sftp downloads to
make one more concurrent request that desired. This prevented using
sftp(1) in unpipelined request/response mode, which is useful when
debugging. bz#3054
* ssh(1), sshd(8): handle EINTR in waitfd() and timeout_connect()
helpers. bz#3071
* ssh(1), ssh-keygen(1): defer creation of ~/.ssh until we attempt to
write to it so we don't leave an empty .ssh directory when it's not
needed. bz#3156
* ssh(1), sshd(8): fix multiplier when parsing time specifications
when handling seconds after other units. bz#3171
==== python-jsonschema ====
- Disable python2 build as indirect build dependencies to
python2-cffi are not resolvable anymore
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream (0.12.11 -> 0.13.1)
ca-certificates (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
container-selinux (2.150.0 -> 2.154.0)
ebook-tools
ell (0.35 -> 0.36)
evolution-data-server (3.38.2 -> 3.38.3)
gjs (1.66.1 -> 1.66.2)
gnome-desktop (3.38.2 -> 3.38.3)
gnome-packagekit
gnome-terminal (3.38.1 -> 3.38.2)
gpgme (1.15.0 -> 1.15.1)
gvfs (1.46.1 -> 1.46.2)
hplip (3.20.9 -> 3.20.11)
installation-images-MicroOS (16.28 -> 16.29)
kernel-source (5.10.5 -> 5.10.7)
kmod
libarchive (3.5.0 -> 3.5.1)
libinput
libjpeg-turbo
libpwquality
libqt5-qtdeclarative
libqt5-qtwebengine
libzypp (17.25.5 -> 17.25.6)
llvm11 (11.0.0 -> 11.0.1)
mozjs78 (78.5.0 -> 78.6.1)
net-tools
open-lldp (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
openSUSE-build-key
openssh
perl-Net-HTTP (6.19 -> 6.20)
perl-libwww-perl (6.51 -> 6.52)
polkit-default-privs (1550+20201208.135bf51 -> 1550+20210111.f725c25)
psmisc (23.2 -> 23.3)
python-rpm-macros (20200824.8fa42a7 -> 20210112.86f4d9d)
qalculate (3.15.0 -> 3.16.1)
rav1e (0.3.4 -> 0.4.0)
selinux-policy (20201029 -> 20210111)
speexdsp
sudo (1.9.4p2 -> 1.9.5p1)
tracker (3.0.2 -> 3.0.3)
tracker-miners (3.0.3 -> 3.0.4)
vim (8.2.2129 -> 8.2.2327)
vte (0.62.1 -> 0.62.2)
yast2 (4.3.46 -> 4.3.49)
zypper (1.14.41 -> 1.14.42)
=== Details ===
==== AppStream ====
Version update (0.12.11 -> 0.13.1)
Subpackages: libAppStreamQt2 libappstream4
- Disable vala bindings, fails to build on Leap 15.2 because
g-ir-scanner emits the return type before parameters, which vapigen does not like
- Update to 0.13.1:
Bugfixes:
* Install enum types headers to the right location
* qt: Construct library using libappstream dependency object
* validator: Improve check for invalid hyperlinks to reduce false-positives
- Update to 0.13.0:
Notes:
* This release introduces a new library, libappstream-compose, designed to
provide building blocks for composing AppStream metadata. This includes GUI
stuff like font and SVG rendering, which libappstream deliberately does not
provide. The new compose library is not API/ABI stable and should - for now -
only be used by appstream-generator.
Features:
* qt: add missing Provided::KindId enum (Aleix Pol)
* Add experimental libappstream-compose (Matthias Klumpp)
* Implement support for display_length relation kind (Matthias Klumpp)
* Implement "tv-remote" input control kind (Matthias Klumpp)
* Refactor AsRelation to use GVariant internally (Matthias Klumpp)
* content-rating: Align the OARS/CSM mappings of sex-* (Philip Withnall)
* content-rating: Add content rating system APIs from gnome-software (Philip Withnall)
* content-rating: Expand translator comments to link to OARS website (Philip Withnall)
Specification:
* spec: Specify display_length requires/recommends item (Matthias Klumpp)
* spec: Add tv-remote user input control type (Matthias Klumpp)
Bugfixes:
* Use glib-mkenums to create the GType of all the available enums (Corentin Noël)
* Set FD_CLOEXEC on the LMDB FD manually (Fabian Vogt)
* Never ship with an embedded convenience copy of Highlight.js (Matthias Klumpp)
* Don't fail doc install if global highlight.js wasn't found (Matthias Klumpp)
* Properly escape markup when fixing invalid description data (Matthias Klumpp)
* validator: Don't pass NULL to vprintf, it's not an allowed value (Matthias Klumpp)
* meson: Kill deprecation warning for pkgconfig.generate (Matthias Klumpp)
* validator: Demote cid-contains-uppercase-letter from INFO to PEDANTIC (Matthias Klumpp)
* Change some AsPool GIR annotations to only transfer container,
as workaround for issue in GIR (Matthias Klumpp)
* Properly parse YAML font provides entry (Matthias Klumpp)
* content-rating: Lower the OARS/CSM mapping of sex-homosexuality/intense (Philip Withnall)
* Change return annotation of as_agreement_get_sections to "transfer none" (Rico Tzschichholz)
* contrib: Vala expects element-type of PtrArray to reflect their ownership (Rico Tzschichholz)
- Drop patches, now upstream:
* 0001-Set-FD_CLOEXEC-on-the-LMDB-FD-manually.patch
* properly-escape-markup.patch
- Refresh fix-build-gcc7.patch
==== ca-certificates ====
Version update (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
- Update to version 2+git20210111.eeae41c:
* Make certbundle.run container friendly
==== container-selinux ====
Version update (2.150.0 -> 2.154.0)
- Update to version 2.154.0
- Allow confined user domains to run confined container domains.
- Allow all containers to use nfs shares, iff virt_use_nfs boolean
is enabled.
- Allow containers to read nsfs file systems.
- KVM Container need to use tunnel sockets created by runtime.
==== ebook-tools ====
- use cmake build macros + spec-cleaner
==== ell ====
Version update (0.35 -> 0.36)
- Update to release 0.36
* Fix issue with strict netlink attribute validation.
* Fix issue with DUID generation for DHCPv6.
* Add support for Address Conflict Detection.
* Add support for PKCS#12 algorithms handling.
* Add support for PKCS#12 key derivation algorithm.
* Add support for RC2 and ARC4 cipher suites.
==== evolution-data-server ====
Version update (3.38.2 -> 3.38.3)
Subpackages: libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-25 libedataserverui-1_2-2
- Update to version 3.38.3:
+ e-categories: Show migration runtime warning only if the file
exists.
+ DataCalView: Created objects could be notified twice.
+ EReminderWatcher:
- Add detailed debug prints about the scheduled reminders.
- Catch a race condition when creating a calendar view.
+ alarm-notify: Provide application reference in canberra calls.
+ CamelMimeFilterToHTML: Change how empty <div> is recognized.
+ Addressbook:file backend: Prevent percent letter in photo
filename.
+ Bugs fixed: glgo#GNOME/evolution-data-server#277,
glgo#GNOME/evolution-data-server#286.
+ Updated translations.
==== gjs ====
Version update (1.66.1 -> 1.66.2)
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Update to version 1.66.2:
+ Performance improvements and crash fixes backported from the
development branch.
+ Bug fixes enabling use of GTK 4.
+ Closed bugs and merge requests:
- Error in function "_init()" in module
"modules/overrides/GObject.js"
- Revert "arg-cache: Save space by not caching GType"
- gi/wrapperutils: Move gjs_get_string_id() into resolve()
implementations
- overrides/Gtk: Set BuilderScope in class init
- Fix readline build on certain systems
==== gnome-desktop ====
Version update (3.38.2 -> 3.38.3)
Subpackages: gnome-version libgnome-desktop-3-19 libgnome-desktop-3_0-common typelib-1_0-GnomeDesktop-3_0
- Update to version 3.38.3:
+ Updated translations.
==== gnome-packagekit ====
- Add gnome-packagekit-bring-back-logout-support.patch: Add back
logout support(glgo#GNOME/gnome-packagekit!2, bsc#1180247).
==== gnome-terminal ====
Version update (3.38.1 -> 3.38.2)
Subpackages: nautilus-extension-terminal
- Update to version 3.38.2:
+ search:
- Use timestamp when presenting the search dialogue
- Make sure to focus the search dialogue
+ desktop: Set StartupWMClass
+ nautilus: Pass environment when creating a terminal in the
current directory
+ Updated translations.
==== gpgme ====
Version update (1.15.0 -> 1.15.1)
Subpackages: libgpgme11 libgpgmepp6
- gpgme 1.15.1:
* Fix a bug in the secret key export
* Make listing of signatures work if only secret keys are listed
* qt: Avoid empty "rem(a)gnupg.org" signature notations
* python: Fix key_export functions
- remove deprecated texinfo macros
==== gvfs ====
Version update (1.46.1 -> 1.46.2)
Subpackages: gvfs-backends
- Update to version 1.46.2:
+ ftp: Prevent source file removal in case of transfer failure.
+ trash: Explicitly cancel file monitor to prevent deadlock.
+ smb:
- Set fast content type independently of other attributes.
- smb: Report progress when move operation is done.
+ google: Set the display name for the root folder also.
+ Updated translations.
==== hplip ====
Version update (3.20.9 -> 3.20.11)
- Update to 3.20.11
* Upstream version update and bug fixes (no new printers)
* Fix crash in hp-doctor if python3-qt4 is not installed
(bsc#1180724)
Added patch: dcheck.py-fix-crash-in-Qt4-version-check.patch
==== installation-images-MicroOS ====
Version update (16.28 -> 16.29)
- merge gh#openSUSE/installation-images#441
- Handle the rename of MicroOS to SLE Micro (bsc#1180918)
- handle the change of the user-visible name of SUSE MicroOS to SLE
Micro
- 16.29
==== kernel-source ====
Version update (5.10.5 -> 5.10.7)
- scsi: ufs: Fix -Wsometimes-uninitialized warning (git-fixes).
- commit 1c33a89
- Linux 5.10.7 (bsc#1012628).
- i40e: Fix Error I40E_AQ_RC_EINVAL when removing VFs
(bsc#1012628).
- iavf: fix double-release of rtnl_lock (bsc#1012628).
- net: mvpp2: Add TCAM entry to drop flow control pause frames
(bsc#1012628).
- net: mvpp2: prs: fix PPPoE with ipv6 packet parse (bsc#1012628).
- net: systemport: set dev->max_mtu to UMAC_MAX_MTU_SIZE
(bsc#1012628).
- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
(bsc#1012628).
- ethernet: ucc_geth: set dev->max_mtu to 1518 (bsc#1012628).
- ionic: account for vlan tag len in rx buffer len (bsc#1012628).
- atm: idt77252: call pci_disable_device() on error path
(bsc#1012628).
- net: mvpp2: Fix GoP port 3 Networking Complex Control
configurations (bsc#1012628).
- net: stmmac: dwmac-meson8b: ignore the second clock input
(bsc#1012628).
- ibmvnic: fix login buffer memory leak (bsc#1012628).
- ibmvnic: continue fatal error reset after passive init
(bsc#1012628).
- net: ethernet: mvneta: Fix error handling in mvneta_probe
(bsc#1012628).
- qede: fix offload for IPIP tunnel packets (bsc#1012628).
- virtio_net: Fix recursive call to cpus_read_lock()
(bsc#1012628).
- net/ncsi: Use real net-device for response handler
(bsc#1012628).
- net: ethernet: Fix memleak in ethoc_probe (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_cpus
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_cpus_map and
num_tc (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_rxqs
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_rxqs_map and
num_tc (bsc#1012628).
- net: ethernet: ti: cpts: fix ethtool output when no ptp_clock
registered (bsc#1012628).
- tun: fix return value when the number of iovs exceeds
MAX_SKB_FRAGS (bsc#1012628).
- e1000e: Only run S0ix flows if shutdown succeeded (bsc#1012628).
- e1000e: bump up timeout to wait when ME un-configures ULP mode
(bsc#1012628).
- Revert "e1000e: disable s0ix entry and exit flows for ME
systems" (bsc#1012628).
- e1000e: Export S0ix flags to ethtool (bsc#1012628).
- bnxt_en: Check TQM rings for maximum supported value
(bsc#1012628).
- net: mvpp2: fix pkt coalescing int-threshold configuration
(bsc#1012628).
- bnxt_en: Fix AER recovery (bsc#1012628).
- ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
(bsc#1012628).
- net: sched: prevent invalid Scell_log shift count (bsc#1012628).
- net: hns: fix return value check in __lb_other_process()
(bsc#1012628).
- erspan: fix version 1 check in gre_parse_header() (bsc#1012628).
- net: hdlc_ppp: Fix issues when mod_timer is called while timer
is running (bsc#1012628).
- bareudp: set NETIF_F_LLTX flag (bsc#1012628).
- bareudp: Fix use of incorrect min_headroom size (bsc#1012628).
- vhost_net: fix ubuf refcount incorrectly when sendmsg fails
(bsc#1012628).
- r8169: work around power-saving bug on some chip versions
(bsc#1012628).
- net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for
internal PHYs (bsc#1012628).
- net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access
(bsc#1012628).
- CDC-NCM: remove "connected" log message (bsc#1012628).
- ibmvnic: fix: NULL pointer dereference (bsc#1012628).
- net: usb: qmi_wwan: add Quectel EM160R-GL (bsc#1012628).
- selftests: mlxsw: Set headroom size of correct port
(bsc#1012628).
- stmmac: intel: Add PCI IDs for TGL-H platform (bsc#1012628).
- selftests/vm: fix building protection keys test (bsc#1012628).
- block: add debugfs stanza for QUEUE_FLAG_NOWAIT (bsc#1012628).
- workqueue: Kick a worker based on the actual activation of
delayed works (bsc#1012628).
- scsi: ufs: Fix wrong print message in dev_err() (bsc#1012628).
- scsi: ufs-pci: Fix restore from S4 for Intel controllers
(bsc#1012628).
- scsi: ufs-pci: Ensure UFS device is in PowerDown mode for
suspend-to-disk ->poweroff() (bsc#1012628).
- scsi: ufs-pci: Fix recovery from hibernate exit errors for
Intel controllers (bsc#1012628).
- scsi: ufs-pci: Enable UFSHCD_CAP_RPM_AUTOSUSPEND for Intel
controllers (bsc#1012628).
- scsi: block: Introduce BLK_MQ_REQ_PM (bsc#1012628).
- scsi: ide: Do not set the RQF_PREEMPT flag for sense requests
(bsc#1012628).
- scsi: ide: Mark power management requests with RQF_PM instead
of RQF_PREEMPT (bsc#1012628).
- scsi: scsi_transport_spi: Set RQF_PM for domain validation
commands (bsc#1012628).
- scsi: core: Only process PM requests if rpm_status != RPM_ACTIVE
(bsc#1012628).
- local64.h: make <asm/local64.h> mandatory (bsc#1012628).
- lib/genalloc: fix the overflow when size is too big
(bsc#1012628).
- depmod: handle the case of /sbin/depmod without /sbin in PATH
(bsc#1012628).
- scsi: ufs: Clear UAC for FFU and RPMB LUNs (bsc#1012628).
- kbuild: don't hardcode depmod path (bsc#1012628).
- Bluetooth: revert: hci_h5: close serdev device and free hu in
h5_close (bsc#1012628).
- scsi: block: Remove RQF_PREEMPT and BLK_MQ_REQ_PREEMPT
(bsc#1012628).
- scsi: block: Do not accept any requests while suspended
(bsc#1012628).
- crypto: ecdh - avoid buffer overflow in ecdh_set_secret()
(bsc#1012628).
- crypto: asym_tpm: correct zero out potential secrets
(bsc#1012628).
- powerpc: Handle .text.{hot,unlikely}.* in linker script
(bsc#1012628).
- Staging: comedi: Return -EFAULT if copy_to_user() fails
(bsc#1012628).
- staging: mt7621-dma: Fix a resource leak in an error handling
path (bsc#1012628).
- usb: gadget: enable super speed plus (bsc#1012628).
- USB: cdc-acm: blacklist another IR Droid device (bsc#1012628).
- USB: cdc-wdm: Fix use after free in
service_outstanding_interrupt() (bsc#1012628).
- usb: typec: intel_pmc_mux: Configure HPD first for HPD+IRQ
request (bsc#1012628).
- usb: dwc3: meson-g12a: disable clk on error handling path in
probe (bsc#1012628).
- usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup
(bsc#1012628).
- usb: dwc3: gadget: Clear wait flag on dequeue (bsc#1012628).
- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access
completion (bsc#1012628).
- usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based
one (bsc#1012628).
- usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression
(bsc#1012628).
- usb: chipidea: ci_hdrc_imx: add missing put_device() call in
usbmisc_get_init_data() (bsc#1012628).
- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
quirk set (bsc#1012628).
- usb: usbip: vhci_hcd: protect shift size (bsc#1012628).
- usb: uas: Add PNY USB Portable SSD to unusual_uas (bsc#1012628).
- USB: serial: iuu_phoenix: fix DMA from stack (bsc#1012628).
- USB: serial: option: add LongSung M5710 module support
(bsc#1012628).
- USB: serial: option: add Quectel EM160R-GL (bsc#1012628).
- USB: yurex: fix control-URB timeout handling (bsc#1012628).
- USB: usblp: fix DMA to stack (bsc#1012628).
- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
(bsc#1012628).
- usb: gadget: select CONFIG_CRC32 (bsc#1012628).
- USB: Gadget: dummy-hcd: Fix shift-out-of-bounds bug
(bsc#1012628).
- usb: gadget: f_uac2: reset wMaxPacketSize (bsc#1012628).
- usb: gadget: function: printer: Fix a memory leak for interface
descriptor (bsc#1012628).
- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
(bsc#1012628).
- USB: gadget: legacy: fix return error code in acm_ms_bind()
(bsc#1012628).
- usb: gadget: Fix spinlock lockup on usb_function_deactivate
(bsc#1012628).
- usb: gadget: configfs: Preserve function ordering after bind
failure (bsc#1012628).
- usb: gadget: configfs: Fix use-after-free issue with udc_name
(bsc#1012628).
- USB: serial: keyspan_pda: remove unused variable (bsc#1012628).
- hwmon: (amd_energy) fix allocation of hwmon_channel_info config
(bsc#1012628).
- mm: make wait_on_page_writeback() wait for multiple pending
writebacks (bsc#1012628).
- x86/mm: Fix leak of pmd ptlock (bsc#1012628).
- KVM: x86/mmu: Use -1 to flag an undefined spte in
get_mmio_spte() (bsc#1012628).
- KVM: x86/mmu: Get root level from walkers when retrieving MMIO
SPTE (bsc#1012628).
- kvm: check tlbs_dirty directly (bsc#1012628).
- KVM: x86/mmu: Ensure TDP MMU roots are freed after yield
(bsc#1012628).
- x86/resctrl: Use an IPI instead of task_work_add() to update
PQR_ASSOC MSR (bsc#1012628).
- x86/resctrl: Don't move a task to the same resource group
(bsc#1012628).
- blk-iocost: fix NULL iocg deref from racing against
initialization (bsc#1012628).
- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (bsc#1012628).
- ALSA: hda/conexant: add a new hda codec CX11970 (bsc#1012628).
- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
(bsc#1012628).
- ALSA: hda/realtek: Add mute LED quirk for more HP laptops
(bsc#1012628).
- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook
850 G7 (bsc#1012628).
- ALSA: hda/realtek: Add two "Intel Reference board" SSID in
the ALC256 (bsc#1012628).
- iommu/vt-d: Move intel_iommu info from struct intel_svm to
struct intel_svm_dev (bsc#1012628).
- btrfs: qgroup: don't try to wait flushing if we're already
holding a transaction (bsc#1012628).
- btrfs: send: fix wrong file path when there is an inode with
a pending rmdir (bsc#1012628).
- Revert "device property: Keep secondary firmware node secondary
by type" (bsc#1012628).
- dmabuf: fix use-after-free of dmabuf's file->f_inode
(bsc#1012628).
- arm64: link with -z norelro for LLD or aarch64-elf
(bsc#1012628).
- drm/i915: clear the shadow batch (bsc#1012628).
- drm/i915: clear the gpu reloc batch (bsc#1012628).
- bcache: fix typo from SUUP to SUPP in features.h (bsc#1012628).
- bcache: check unsupported feature sets for bcache register
(bsc#1012628).
- bcache: introduce BCH_FEATURE_INCOMPAT_LOG_LARGE_BUCKET_SIZE
for large bucket (bsc#1012628).
- net/mlx5e: Fix SWP offsets when vlan inserted by driver
(bsc#1012628).
- ARM: dts: OMAP3: disable AES on N950/N9 (bsc#1012628).
- netfilter: x_tables: Update remaining dereference to RCU
(bsc#1012628).
- netfilter: ipset: fix shift-out-of-bounds in htable_bits()
(bsc#1012628).
- netfilter: xt_RATEEST: reject non-null terminated string from
userspace (bsc#1012628).
- netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
(bsc#1012628).
- dmaengine: idxd: off by one in cleanup code (bsc#1012628).
- x86/mtrr: Correct the range check before performing MTRR type
lookups (bsc#1012628).
- KVM: x86: fix shift out of bounds reported by UBSAN
(bsc#1012628).
- xsk: Fix memory leak for failed bind (bsc#1012628).
- rtlwifi: rise completion at the last step of firmware callback
(bsc#1012628).
- scsi: target: Fix XCOPY NAA identifier lookup (bsc#1012628).
- commit 1ca962e
- Linux 5.10.6 (bsc#1012628).
- Revert "drm/amd/display: Fix memory leaks in S3 resume"
(bsc#1012628).
- Revert "mtd: spinand: Fix OOB read" (bsc#1012628).
- rtc: pcf2127: move watchdog initialisation to a separate
function (bsc#1012628).
- rtc: pcf2127: only use watchdog when explicitly available
(bsc#1012628).
- dt-bindings: rtc: add reset-source property (bsc#1012628).
- kdev_t: always inline major/minor helper functions
(bsc#1012628).
- Bluetooth: Fix attempting to set RPA timeout when unsupported
(bsc#1012628).
- ALSA: hda/realtek - Modify Dell platform name (bsc#1012628).
- drm/i915/tgl: Fix Combo PHY DPLL fractional divider for 38.4MHz
ref clock (bsc#1012628).
- scsi: ufs: Allow an error return value from ->device_reset()
(bsc#1012628).
- scsi: ufs: Re-enable WriteBooster after device reset
(bsc#1012628).
- RDMA/core: remove use of dma_virt_ops (bsc#1012628).
- RDMA/siw,rxe: Make emulated devices virtual in the device tree
(bsc#1012628).
- fuse: fix bad inode (bsc#1012628).
- perf: Break deadlock involving exec_update_mutex (bsc#1012628).
- rwsem: Implement down_read_killable_nested (bsc#1012628).
- rwsem: Implement down_read_interruptible (bsc#1012628).
- exec: Transform exec_update_mutex into a rw_semaphore
(bsc#1012628).
- mwifiex: Fix possible buffer overflows in
mwifiex_cmd_802_11_ad_hoc_start (bsc#1012628).
- commit 5bdc505
- regulator: mt6323: Add OF match table (bsc#1180731).
- regulator: mt6358: Add OF match table (bsc#1180731).
- regulator: mt6360: Add OF match table (bsc#1180731).
- commit a930122
- drm: bail out of nouveau_channel_new if channel init fails
(CVE-2020-25639 bsc#1176846).
- commit 4739e43
==== kmod ====
Subpackages: libkmod2
- Update usr-lib-modprobe.patch to upstream submission (boo#1180821).
- Require libxslt-tools for xsltproc and use local stylesheet.
+ no-stylesheet-download.patch
==== libarchive ====
Version update (3.5.0 -> 3.5.1)
- update to 3.5.1:
* various compilation fixes (#1461, #1462, #1463, #1464)
* fixed undefined behavior in a function in warc reader (#1465)
==== libinput ====
- Limit the dep libinput-debug-gui -> libinput-tools only to
%{version}, not %{version}-%{release}. As they are not built in
the same run, the rebuild counters are not guaranteed to match
forever.
==== libjpeg-turbo ====
- Fix setting of FLOATTEST
==== libpwquality ====
Subpackages: libpwquality-tools libpwquality1 pam_pwquality
- Do not use macro %make_build pre SLE-15
Use "make -O %{?_smp_mflags}" instead
[libpwquality.spec]
==== libqt5-qtdeclarative ====
- Enable qml-autoreqprov
==== libqt5-qtwebengine ====
- Drop baselibs.conf, not needed after libksysguard5 got adjusted
==== libzypp ====
Version update (17.25.5 -> 17.25.6)
- Rephrase solver problem descriptions (jsc#SLE-8482)
- Adapt to changed gpg2/libgpgme behavior (bsc#1180721)
- Multicurl backend breaks with with unknown filesize (fixes #277)
- version 17.25.6 (22)
==== llvm11 ====
Version update (11.0.0 -> 11.0.1)
- Update to version 11.0.1.
* This release contains bug-fixes for the LLVM 11.0.0 release.
This release is API and ABI compatible with 11.0.0.
- Rebase llvm-do-not-install-static-libraries.patch.
- Drop obsolete compiler-rt-dont-compile-assembly-files-as-c.patch.
- Make documentation tarballs more reproducible.
==== mozjs78 ====
Version update (78.5.0 -> 78.6.1)
- Update to version 78.6.1esr.
==== net-tools ====
- prepare usrmerge (boo#1029961)
==== open-lldp ====
Version update (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
Subpackages: liblldp_clif1
- Update to version v1.1+36.e926f7172b96:
* tx: rename variable
* event_iface: only set rcv buf size if too small (bsc#1175570)
* tx: when operating in rx-only mode don't send a port shutdown pdu
* Update .travis.yml
* vdp22: manpage typo
* lldptool: fix manpage
* lldp_head: remove all references
* add_rtattr: only copy if data is provided
* autoconf: convenience to setup asan and ubsan
* Post 1.1 release
==== openSUSE-build-key ====
- update openSUSE:Factory:zSystems signing key to current version:
pub rsa2048 2016-02-17 [SC] [expires: 2022-08-16]
F00C20EF1E1114C9B5F69B2276CA4244F6AB3975
openSUSE:Factory:zSystems OBS Project <openSUSE:Factory:zSystems@build.opensuse.org>
==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server
- Update openssh-8.1p1-audit.patch (bsc#1180501). This fixes
occasional crashes on connection termination caused by accessing
freed memory.
==== perl-Net-HTTP ====
Version update (6.19 -> 6.20)
- update to 6.20:
* Replace last use of "vars" with "our" (GH#67) (James Raspass)
==== perl-libwww-perl ====
Version update (6.51 -> 6.52)
- updated to 6.52
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.52 2021-01-07 21:20:51Z
- Remove block of code which creates message-digest auth request field
(GH#369) (Olaf Alders)
==== polkit-default-privs ====
Version update (1550+20201208.135bf51 -> 1550+20210111.f725c25)
- Update to version 1550+20210111.f725c25:
* polkit-rules-whitelist: add brltty brlapi group rule (bsc#1180593)
==== psmisc ====
Version update (23.2 -> 23.3)
- Now with 23.3 peekfd is build even for aarch64
- Rework 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
and split off the patch psmisc-v23.3-selinux.patch
- Rework 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- New patch psmisc-v23.3-selinux.patch
- Rename patch psmisc-v23.2.dif which is now psmisc-v23.3.dif
- Update to 23.3:
* killall: check also truncated 16 char comm names Debian
* fuser: Return early if have nulls
* peekfd: Add support for ARM64
* pstree: Add color by age
* fuser: Use larger inode sizes
- Rebase 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
- Rebase 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- Rebase psmisc-22.21-pstree.patch
==== python-rpm-macros ====
Version update (20200824.8fa42a7 -> 20210112.86f4d9d)
- Update to version 20210112.86f4d9d:
* fix gh#openSUSE/python-rpm-macros#84: python_sysconfig_ macros
- Update to version 20201207.2177fcf:
* README update after merge
- Update to version 20201207.259cdda:
* Update python_expand description in README
* python_expand to basename only
- Update to version 20201204.32a910e:
* fix print_provided_flavor again
- Update to version 20201203.5331183:
* fix print_provided_flavor
- Update to version 20201128.669edb3:
* fix provides (for python-numpy f2py, in gh#openSUSE/python-rpm-macros#66)
- Update to version 20201123.6978323:
* also rewrite subpackage_only default providers
* pytest: ignore _build dirs for all flavors
- Update to version 20201119.6bb5f69:
* add default provider properties
* don't replace %name, for subpackage_only
* expand parameters for subpackage_only packages
- Update to version 20201112.a4c80dc:
* handle python_subpackage_only, fixes gh#openSUSE/python-rpm-macros#73
* define default providers for pythonX from pythonXY flavors: fixes #69
- Update to version 20201103.cec67c2:
* document python_find_lang
* add python_find_lang and allow to specify in %python_files. Fixes #5
- Update to version 20201102.31ccfc2:
* fix python_clone shebang replacement
* one less expansion for python_exec
* expand default %python_ macros earlier
* update README for multiple flavors
* more command delimiters for %python_expand
- Update to version 20201022.7f87908:
* Add python36 and python38 flavours.
- Update to version 20201021.adb6953:
* Prepare for multiple python3 flavors
- Remove multiple_flavors.patch as it is included in the upstream
tarball.
- Update to version 20201016.5d22545:
* fix whitespace after escape in compileall macro
- Update to version 20201016.db09189:
* Delete pycache files before compilealll
* Update macros/010-common-defs
* Reword compileall
* mention pyproject.toml and link to PEP517 and PEP518
* add description for pyunittest macro
* add description for python_compileall macro
* add description for pyproject macros
* add python_compileall macro and use it in pyproject_install
* disable pip version check: no connection to pypi.org
- Update multiple_flavors.patch to generate correct names of the
python binary.
- %__#FLAVOR# should be defined as
/usr/bin/python%{#FLAVOR#_version} not just /usr/bin/#FLAVOR#
- Add patch multiple_flavors.patch which makes compile_macros.sh
generate alternative flavours as well.
==== qalculate ====
Version update (3.15.0 -> 3.16.1)
- Update to 3.16.1:
* Fix saving of local data objects (user data was deleted)
* Fix kWh unit
* Always place units with prefixes before other units
* Improve prefixes when expression contains both units that do and
units that do not use prefixes
* Add daysInMonth() function
- Update to 3.16.0:
* Chain syntax (e.g. 1+2*3=(1+2)*3=6)
* Make all currency codes (except CUP and KGS) case insensitive
* Fixes for floating point format output
* Fix segfault on factorization in qalc
* Fix saving of local data objects
* Fix BYN exchange rate url
* Redesigned expression, status, and result widgets
* Chain mode (GUI)
* Configurable calculate-as-you-type add to history delay
* Improved completion
* Support for qalc commands in GUI (expression is interpreted as command
if it begins with '/')
* Support for reading expressions and commands from file in GUI (as in
qalc, using command line option -f/--file)
* Use arrow instead of "to" by default
* French GUI translation
* Minor bug fixes and feature improvements
- ran spec-cleaner
==== rav1e ====
Version update (0.3.4 -> 0.4.0)
- Update to version 0.4.0
* https://github.com/xiph/rav1e/releases/tag/v0.4.0
==== selinux-policy ====
Version update (20201029 -> 20210111)
Subpackages: selinux-policy-targeted
- Update to version 20210111
- Drop fix_policykit.patch (integrated upstream)
- Adjust fix_iptables.patch
- update container policy
==== speexdsp ====
- Update dependencies and update spec file
==== sudo ====
Version update (1.9.4p2 -> 1.9.5p1)
- Update to 1.9.5.p1
* Fixed a regression introduced in sudo 1.9.5 where the editor run
by sudoedit was set-user-ID root unless SELinux RBAC was in use.
The editor is now run with the user's real and effective user-IDs.
- News in 1.9.5
* Fixed a crash introduced in 1.9.4 when running "sudo -i" as an
unknown user. This is related to but distinct from Bug #948.
* If the "lecture_file" setting is enabled in sudoers, it must now
refer to a regular file or a symbolic link to a regular file.
* Fixed a potential use-after-free bug in sudo_logsrvd when the
server shuts down if there are existing connections from clients
that are only logging events and not session I/O data.
* Fixed a buffer size mismatch when serializing the list of IP
addresses for configured network interfaces. This bug is not
actually exploitable since the allocated buffer is large enough
to hold the list of addresses.
* If sudo is executed with a name other than "sudo" or "sudoedit",
it will now fall back to "sudo" as the program name. This affects
warning, help and usage messages as well as the matching of Debug
lines in the /etc/sudo.conf file. Previously, it was possible
for the invoking user to manipulate the program name by setting
argv[0] to an arbitrary value when executing sudo.
* Sudo now checks for failure when setting the close-on-exec flag
on open file descriptors. This should never fail but, if it
were to, there is the possibility of a file descriptor leak to
a child process (such as the command sudo runs).
* Fixed CVE-2021-23239, a potential information leak in sudoedit
that could be used to test for the existence of directories not
normally accessible to the user in certain circumstances. When
creating a new file, sudoedit checks to make sure the parent
directory of the new file exists before running the editor.
However, a race condition exists if the invoking user can replace
(or create) the parent directory. If a symbolic link is created
in place of the parent directory, sudoedit will run the editor
as long as the target of the link exists. If the target of the
link does not exist, an error message will be displayed. The
race condition can be used to test for the existence of an
arbitrary directory. However, it _cannot_ be used to write to
an arbitrary location.
* Fixed CVE-2021-23240, a flaw in the temporary file handling of
sudoedit's SELinux RBAC support. On systems where SELinux is
enabled, a user with sudoedit permissions may be able to set the
owner of an arbitrary file to the user-ID of the target user.
On Linux kernels that support "protected symlinks", setting
/proc/sys/fs/protected_symlinks to 1 will prevent the bug from
being exploited. For more information see
https://www.sudo.ws/alerts/sudoedit_selinux.html.
* Added writability checks for sudoedit when SELinux RBAC is in use.
This makes sudoedit behavior consistent regardless of whether
or not SELinux RBAC is in use. Previously, the "sudoedit_checkdir"
setting had no effect for RBAC entries.
* A new sudoers option "selinux" can be used to disable sudo's
SELinux RBAC support.
* Quieted warnings from PVS Studio, clang analyzer, and cppcheck.
Added suppression annotations for PVS Studio false positives.
==== tracker ====
Version update (3.0.2 -> 3.0.3)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files
- Update to version 3.0.3:
+ Avoid FTS5 table inconsistency with SQLite >= 3.34.0.
+ Fix out parameter in VAPI/Vala files.
==== tracker-miners ====
Version update (3.0.3 -> 3.0.4)
Subpackages: tracker-miner-files
- Update to version 3.0.4:
+ Improve time_t interpretation for negative timestamps.
+ Fix "tracker3 search --folders".
+ Fix crasher after tracker-miner-fs SPARQL failures.
+ CI fixes.
==== vim ====
Version update (8.2.2129 -> 8.2.2327)
Subpackages: vim-data-common vim-small
- Updated to version 8.2.2327, fixes the following problems
* Insert mode completion messages end up in message history.
* Vim9: crash when lambda uses same var as assignment.
* Padding not drawn properly for popup window with title.
* Vim9: checking for a non-empty string is too strict.
* Vim9: get E1099 when autocmd triggered in builtin function.
* Vim9: #{ still seen as start of dict in some places.
* Vim9: Using uninitialized variable.
* Vim9: :echo and :execute give error for empty argument.
* Vim9: "exit_cb" causes Vim to exit.
* Vim9: unreachable code in assignment.
* Build failure with tiny features.
* A user command with try/catch may not catch an expression error.
* Memory leak when heredoc is not terminated.
* Vim9: dead code in compiling :unlet.
* Vim9: some corner cases not tested.
* Vim9: concatenating lists does not adjust type of result.
* Vim9: automatic conversion of number to string for dict key.
* Quickfix window title not updated in all tab pages.
* Vim9: crash when user command doesn't match.
* Popupwin test for latin1 sometimes fails.
* Github actions CI isn't used for all available platforms.
* $dir not expanded when configure checks for moonjit.
* screenpos() does not include the WinBar offset.
* Popupwin test for latin1 still fails sometimes.
* Popupwin test for terminal buffer fails sometimes.
* Warning from Github actions for code analysis.
* Github actions run on pusing a tag.
* Vim9: can delete a Vim9 script variable from a function.
* CI on cirrus times out, coveralls doesn't always run.
* Vim9: when declaring a list it is not allocated yet, causing a following
extend() to fail.
* Various typos.
* Arguments -T and -x not tested yet.
* Vim9: Cannot load or store autoload variables.
* Crash when discarded exception is the current exception.
* Vim9: autoload function doesn't work in script that starts with an upper
case letter.
* Vim9: assignment to dict member does not work.
* Auto format doesn't work when deleting text.
* Vim9: assign test fails. (Elimar Riesebieter)
* Vim9: error for assigning to dict of dict.
* Vim9: test leaves file behind.
* Vim9: a global function defined in a :def function fails if it uses
the context.
* Valgrind warning for using uninitialized value.
* Vim9: number of arguments is not always checked. (Yegappan Lakshmanan)
* Vim9: get internal error when assigning to undefined variable.
* Mac version doesn't specify the CPU architecture.
* Github actions: clang-11 handling suboptimal.
* Crash with a sequence of fold commands.
* Pattern "^" does not match if the first character in the line is
combining. (Rene Kita)
* Python 3: non-utf8 character cannot be handled.
* Vim9: crash when indexing a dict with a number.
* Vim9: test for error after error is flaky.
* Valgrind warnings for using uninitialized value.
* Vim9: value of 'magic' is still relevant.
* Vim9: value of 'edcompatible' and 'gdefault' are used.
* Vim9: no error when using "2" for a line number.
* BufUnload is not triggered for the quickfix dummy buffer.
* Vim9: error when using 'opfunc'.
* Python 3 test fails sometimes. (Christian Brabandt)
* Vim9: crash when calling global function from :def function.
* Cannot repeat a command that uses the small delete register.
* Vim9: crash when compiled with EXITFREE.
* Vim9: using wrong name with lambda in nested function.
* Codecov on github actions fails.
* Vim9: can change constant in :def function.
* Vim9: cannot use :const or :final at the script level.
* Failing tests for :const.
* :version output has extra spaces in compile and link command.
* Assert arguments order reversed.
* ml_get error when resizing window and using text property.
* First write after setting 'eol' does not have NL added. (Tomá? Janou?ek)
* Vim9: lambda without white space around -> is confusing.
* Write file test fails on MS-Windows.
* Write file test still fails on MS-Windows.
* Moodle gift files are not recognized.
* Vim9: using -> both for method and lambda is confusing.
* Vim9: memory leak when parsing lambda fails.
* :exe command line completion only works for first argument.
* Illegal memory access if popup menu items are changed while the menu is
visible. (Tomá? Janou?ek)
* Vim9: after reloading a script variable index may be invalid.
* Vim9: return type of => lambda not parsed.
* Vim9: allocating a type to set TTFLAG_BOOL_OK.
* Vim9: lambda with => does not work at the script level.
* Checking white space around -> is not backwards compatible.
* ":e#" does not give a warning for missing white space.
* Vim9: `=expr` not recognized in global command.
* Vim9: range with missing colon can be hard to spot.
* Vim9: command modifiers not restored in catch block.
* Vim9: failure if passing more arguments to a lambda than expected.
* Vim9: method call with expression not supported.
* Vim9: memory leak when parsing nested parenthesis.
* If <Down> is mapped on the command line 'wildchar' is inserted.
* Vim9: cannot keep script variables when reloading.
* Vim9: Reloading marks a :def function as deleted.
* Vim9: crash if script reloaded with different variable type.
* Vim9: error when using :import in legacy script twice.
* Vim9: script test fails.
* Vim9: recognizing lambda is too complicated.
* Vim9: cannot use ":e #" because # starts a comment.
* build failure without the +eval feature.
* Vim9: insert completion runs into error.
* When "--remote file" is used "file" is not reloaded.
* Compiler error for falling through into next case.
* Cannot convert a byte index into a character index.
* Command line wildmenu test often fails with Unix GUI.
* Build failure with some Ruby versions.
* 'scroll' option can change when setting the statusline or tabline but
the option context is not updated.
* Vim9: cannot load a Vim9 script without the +eval feature.
* Vim9: concatenating lines with backslash is inconvenient.
* Clientserver test fails if full path is used.
* Build with Ruby and clang may fail.
* Vim9: line continuation with bar does not work at script level.
* Crash when popup mask contains zeroes.
* Crash when making the window width of the not-current window negative.
* Vim9: return value of winrestcmd() cannot be executed.
* Cursor keys not recognized at the hit-Enter prompt after executing an
external command.
* VMS: various smaller problems.
* ASAN error on exit with GUI.
* Termcodes test is flaky when used over ssh with X forwarding.
* Vim9: sublist is ambiguous.
* Test failures in legacy script.
* Vim9: crash when using lambda without return type in dict.
* Vim9: expr test fails.
* Vim9: bool option type is number.
* Tcl test fails.
* Vim9: cannot use function( after line break in :def function.
* Vim9: using -> for lambda is ambiguous.
* Not all OCaml related files are detected.
* Test_Executable() fails when using chroot.
* Window resize test fails in very wide terminal.
* Vim9: boolean option gets string type.
* Vim9: converting bool to string prefixes v:.
* Vim9: compilation error with try-catch in skipped block.
* Vim9: no error for mismatched :endfunc or :enddef.
* Error message for missing endfunc/enddef is last line.
* Vim9: it can be hard to see where white space is missing.
* Vim9: cannot use unlet for a dict member.
* Vim9: list unpack seen as declaration.
* Not all :hardcopy code covered by tests.
* Warning for size_t to int conversion. (Randall W. Morris)
* ml_get error when changing hidden buffer in Python.
* Vim9: extend() can violate the type of a variable.
* Build failure.
* badge for Travis is outdated.
* CTRL-C not recognized in Mintty.
* List of distributed files is outdated.
* Missing backslash.
* Falling back to old regexp engine can some patterns.
* Vim9: memory leak with catch in skipped block.
* Fuzzy matching doesn't give access to the scores.
* Vim9: compiled "wincmd" cannot be followed by bar.
* Length check mismatch with argument of strncmp(). (Christian Brabandt)
* Vim9: crash when lambda has fewer arguments than expected.
* Vim9: cannot set an option to a boolean value.
* Vim9: cannot set an option to a false.
* Sort test fails when locale is Canadian English. (Neil H Watson)
* Sort test fails when locale is French Canadian.
* Vim9: line break and comment not always skipped.
* Vim9: 'cpo' can become empty.
* Vim9: unlet of global variable cannot be compiled.
* Vim9: cannot use "null" for v:null.
* Vim: expr test fails.
* Build failure with Motif. (Tony Mechelynck)
* VMS: a few remaining problems.
* Incsearch does not detect empty pattern properly.
* Cannot use CTRL-N and CTRL-P in a popup menu.
* Vim9: cannot set 'number' to a boolean value.
* Vim9: comment right after "(" of function not recognized.
* Vim9: invalid memory access making error message flaky.
* Vim9: wrong order on type stack when using dict.
* Vim9: cannot unlet a dict or list item.
* Vim9: using an option value may use uninitialized memory.
* Vim9: backtick expansion doesn't work for :foldopen.
* Vim9: no test for unletting an imported variable.
* Vim9: "++var" and "--var" are silently accepted.
* Vim9: when using function reference type is not checked.
* A shell command in the vimrc causes terminal output.
* Vim9: no error when assigning lambda to funcref without return value.
* 0o777 not recognized as octal.
* Vim9: winsaveview() return type is too generic.
* Vim9: cannot assign to a variable that shadows a command modifier.
* Build failure with Ruby 3.0 and 32 bits.
* Vim9: using uninitialized field when parsing range. ":silent!" not
respected when parsing range fails.
* Vim9: returning zero takes two instructions.
* Vim9: "enddef" as dict key misintepreted as function end.
* Vim9: cannot list a lambda function.
* Vim9: command modifier before list unpack doesn't work.
* Vim9: string and list index work differently.
* "exptype_T" can be read as "expected type".
* Vim9: no error for comparing bool with string.
* Vim9: cannot nest closures.
* Vim9: closure nested limiting to one level.
* Vim9: error when inferring type from empty dict/list.
* Not easy to get mark en cursor posotion by character count.
* Vim9: crash if map() changes the item type.
* Build error with +eval feature but without +spell.
* Debugging code included.
==== vte ====
Version update (0.62.1 -> 0.62.2)
- Update to version 0.62.2:
+ widget:
- Limit select-all to the writable region not including the
scrollback
- Fix idle child-exited signal after dispose
+ app:
- Fix search next/prev button sensitivity
- Fix background image drawing
+ lib:
- desc is not a smart pointer in 0.62
- Fix unused variable warning when not using getrlimit
- Use sysconf on macos to get the upper limit of number of FDs
- Sanitise the passed-in font description
- Add missing nullable annotation to spawn child setup
functions
==== yast2 ====
Version update (4.3.46 -> 4.3.49)
- Keep the libzypp target open to verify other packages
(bsc#1180858, related to the previous fix bsc#1179773)
- 4.3.49
- Ensure the libzypp target is initialized when downloading
the skelcd packages (to verify the GPG signatures) (bsc#1179773)
- Log more details when several resolvables (instead of a single
one) are unexpectedly found (related to bsc#1176276)
- 4.3.48
- Fix default for hibernation proposal (bsc#1169874)
- 4.3.47
==== zypper ====
Version update (1.14.41 -> 1.14.42)
Subpackages: zypper-needs-restarting
- Fix source-download commnds help (bsc#1180663)
- man: Recommend to use the --non-interactive global option
rather than the command option -y (bsc#1179816)
- Extend apt packagemap (fixes #366)
- --quitet: Fix install summary to write nothing if there's
nothing todo (bsc#1180077)
- Prefer /run over /var/run.
- version 1.14.42
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=3&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ca-certificates (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
container-selinux (2.150.0 -> 2.154.0)
gpgme (1.15.0 -> 1.15.1)
haproxy (2.3.2+git0.d522db763 -> 2.3.4+git0.10189c965)
installation-images-MicroOS (16.28 -> 16.29)
kernel-source (5.10.5 -> 5.10.7)
kmod
libpwquality
libzypp (17.25.5 -> 17.25.6)
mozjs78 (78.5.0 -> 78.6.1)
net-tools
open-lldp (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
openSUSE-build-key
openssh
psmisc (23.2 -> 23.3)
python-rpm-macros (20200824.8fa42a7 -> 20210112.86f4d9d)
salt (3000.3 -> 3002.2)
selinux-policy (20201029 -> 20210111)
sudo (1.9.4p2 -> 1.9.5p1)
vim (8.2.2129 -> 8.2.2327)
yast2 (4.3.46 -> 4.3.49)
zypper (1.14.41 -> 1.14.42)
=== Details ===
==== ca-certificates ====
Version update (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
- Update to version 2+git20210111.eeae41c:
* Make certbundle.run container friendly
==== container-selinux ====
Version update (2.150.0 -> 2.154.0)
- Update to version 2.154.0
- Allow confined user domains to run confined container domains.
- Allow all containers to use nfs shares, iff virt_use_nfs boolean
is enabled.
- Allow containers to read nsfs file systems.
- KVM Container need to use tunnel sockets created by runtime.
==== gpgme ====
Version update (1.15.0 -> 1.15.1)
- gpgme 1.15.1:
* Fix a bug in the secret key export
* Make listing of signatures work if only secret keys are listed
* qt: Avoid empty "rem(a)gnupg.org" signature notations
* python: Fix key_export functions
- remove deprecated texinfo macros
==== haproxy ====
Version update (2.3.2+git0.d522db763 -> 2.3.4+git0.10189c965)
- Update to version 2.3.4+git0.10189c965:
* [RELEASE] Released version 2.3.4
* MINOR: contrib/prometheus-exporter: use fill_info for process dump
* MINOR: contrib/prometheus-exporter: avoid connection close header
* BUG/MINOR: init: enforce strict-limits when using master-worker
* BUG/MINOR: check: Don't perform any check on servers defined in a frontend
* BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
* Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
* MINOR: reg-tests: add base prometheus test
* BUG/MINOR: reg-tests: fix service dependency script
* BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
* MINOR: reg-tests: add a way to add service dependency
- Update to version 2.3.3+git0.9233c2143:
* [RELEASE] Released version 2.3.3
* BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
* DOC: Add maintainers for the Prometheus exporter
* SCRIPTS: announce-release: fix typo in help message
* DOC: fix some spelling issues over multiple files
* MINOR: contrib/prometheus-exporter: export build_info
* CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
* BUILD: Makefile: exclude broken tests by default
* MINOR: converter: adding support for url_enc
* BUG/MINOR: srv: do not cleanup idle conns if pool max is null
* BUG/MINOR: srv: do not init address if backend is disabled
* SCRIPTS: make announce release support preparing announces before tag exists
* SCRIPTS: improve announce-release to support different tag and versions
* BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
* DOC: Improve the message printed when running `make` w/o `TARGET`
* BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
* BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
* BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
* MINOR: atomic: don't use ; to separate instruction on aarch64.
* BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
* BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
* DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
* BUG/MINOR: dns: SRV records ignores duplicated AR records
* BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
* BUILD: plock: remove dead code that causes a warning in gcc 11
* CONTRIB: debug: address "poll" utility build on non-linux platforms
* CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
* CONTRIB: halog: mark the has_zero* functions unused
* CONTRIB: halog: fix build issue caused by %L printf format
* BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
* BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
* BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
* BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
* BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
* REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
* BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
* BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
* BUG/MINOR: tools: Reject size format not starting by a digit
* BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
* MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
* BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
* BUG/MINOR: http-check: Use right condition to consider HTX message as full
* DOC: email change of the DeviceAtlas maintainer
* BUG/MEDIUM: spoa/python: Fixing references to None
* BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
* BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
* BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
* DOC: spoa/python: Fixing typos in comments
* DOC: spoa/python: Rephrasing memory related error messages
* DOC: spoa/python: Fixing typo in IP related error messages
* BUG/MAJOR: spoa/python: Fixing return None
* MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
* MINOR: listener: now use a generic add_listener() function
* MINOR: listener: automatically set the port when creating listeners
* MINOR: protocol: add a ->set_port() helper to address families
* BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
* BUG/MINOR: listener: use sockaddr_in6 for IPv6
* DOC/MINOR: Fix formatting in Management Guide
* BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
* BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
* BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
* MINOR: cli: add a function to look up a CLI service description
* MINOR: actions: add a function returning a service pointer from its name
* MINOR: actions: Export actions lookup functions
* BUG/MINOR: lua: Some lua init operation are processed unsafe
* BUG/MINOR: lua: Post init register function are not executed beyond the first one
* BUG/MINOR: lua: lua-load doesn't check its parameters
* BUG/MINOR: lua: missing "\n" in error message
* BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
* BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
* BUG/MEDIUM: local log format regression.
* BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
* MINOR: task: remove __tasklet_remove_from_tasklet_list()
* BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
* MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
==== installation-images-MicroOS ====
Version update (16.28 -> 16.29)
- merge gh#openSUSE/installation-images#441
- Handle the rename of MicroOS to SLE Micro (bsc#1180918)
- handle the change of the user-visible name of SUSE MicroOS to SLE
Micro
- 16.29
==== kernel-source ====
Version update (5.10.5 -> 5.10.7)
- scsi: ufs: Fix -Wsometimes-uninitialized warning (git-fixes).
- commit 1c33a89
- Linux 5.10.7 (bsc#1012628).
- i40e: Fix Error I40E_AQ_RC_EINVAL when removing VFs
(bsc#1012628).
- iavf: fix double-release of rtnl_lock (bsc#1012628).
- net: mvpp2: Add TCAM entry to drop flow control pause frames
(bsc#1012628).
- net: mvpp2: prs: fix PPPoE with ipv6 packet parse (bsc#1012628).
- net: systemport: set dev->max_mtu to UMAC_MAX_MTU_SIZE
(bsc#1012628).
- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
(bsc#1012628).
- ethernet: ucc_geth: set dev->max_mtu to 1518 (bsc#1012628).
- ionic: account for vlan tag len in rx buffer len (bsc#1012628).
- atm: idt77252: call pci_disable_device() on error path
(bsc#1012628).
- net: mvpp2: Fix GoP port 3 Networking Complex Control
configurations (bsc#1012628).
- net: stmmac: dwmac-meson8b: ignore the second clock input
(bsc#1012628).
- ibmvnic: fix login buffer memory leak (bsc#1012628).
- ibmvnic: continue fatal error reset after passive init
(bsc#1012628).
- net: ethernet: mvneta: Fix error handling in mvneta_probe
(bsc#1012628).
- qede: fix offload for IPIP tunnel packets (bsc#1012628).
- virtio_net: Fix recursive call to cpus_read_lock()
(bsc#1012628).
- net/ncsi: Use real net-device for response handler
(bsc#1012628).
- net: ethernet: Fix memleak in ethoc_probe (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_cpus
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_cpus_map and
num_tc (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_rxqs
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_rxqs_map and
num_tc (bsc#1012628).
- net: ethernet: ti: cpts: fix ethtool output when no ptp_clock
registered (bsc#1012628).
- tun: fix return value when the number of iovs exceeds
MAX_SKB_FRAGS (bsc#1012628).
- e1000e: Only run S0ix flows if shutdown succeeded (bsc#1012628).
- e1000e: bump up timeout to wait when ME un-configures ULP mode
(bsc#1012628).
- Revert "e1000e: disable s0ix entry and exit flows for ME
systems" (bsc#1012628).
- e1000e: Export S0ix flags to ethtool (bsc#1012628).
- bnxt_en: Check TQM rings for maximum supported value
(bsc#1012628).
- net: mvpp2: fix pkt coalescing int-threshold configuration
(bsc#1012628).
- bnxt_en: Fix AER recovery (bsc#1012628).
- ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
(bsc#1012628).
- net: sched: prevent invalid Scell_log shift count (bsc#1012628).
- net: hns: fix return value check in __lb_other_process()
(bsc#1012628).
- erspan: fix version 1 check in gre_parse_header() (bsc#1012628).
- net: hdlc_ppp: Fix issues when mod_timer is called while timer
is running (bsc#1012628).
- bareudp: set NETIF_F_LLTX flag (bsc#1012628).
- bareudp: Fix use of incorrect min_headroom size (bsc#1012628).
- vhost_net: fix ubuf refcount incorrectly when sendmsg fails
(bsc#1012628).
- r8169: work around power-saving bug on some chip versions
(bsc#1012628).
- net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for
internal PHYs (bsc#1012628).
- net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access
(bsc#1012628).
- CDC-NCM: remove "connected" log message (bsc#1012628).
- ibmvnic: fix: NULL pointer dereference (bsc#1012628).
- net: usb: qmi_wwan: add Quectel EM160R-GL (bsc#1012628).
- selftests: mlxsw: Set headroom size of correct port
(bsc#1012628).
- stmmac: intel: Add PCI IDs for TGL-H platform (bsc#1012628).
- selftests/vm: fix building protection keys test (bsc#1012628).
- block: add debugfs stanza for QUEUE_FLAG_NOWAIT (bsc#1012628).
- workqueue: Kick a worker based on the actual activation of
delayed works (bsc#1012628).
- scsi: ufs: Fix wrong print message in dev_err() (bsc#1012628).
- scsi: ufs-pci: Fix restore from S4 for Intel controllers
(bsc#1012628).
- scsi: ufs-pci: Ensure UFS device is in PowerDown mode for
suspend-to-disk ->poweroff() (bsc#1012628).
- scsi: ufs-pci: Fix recovery from hibernate exit errors for
Intel controllers (bsc#1012628).
- scsi: ufs-pci: Enable UFSHCD_CAP_RPM_AUTOSUSPEND for Intel
controllers (bsc#1012628).
- scsi: block: Introduce BLK_MQ_REQ_PM (bsc#1012628).
- scsi: ide: Do not set the RQF_PREEMPT flag for sense requests
(bsc#1012628).
- scsi: ide: Mark power management requests with RQF_PM instead
of RQF_PREEMPT (bsc#1012628).
- scsi: scsi_transport_spi: Set RQF_PM for domain validation
commands (bsc#1012628).
- scsi: core: Only process PM requests if rpm_status != RPM_ACTIVE
(bsc#1012628).
- local64.h: make <asm/local64.h> mandatory (bsc#1012628).
- lib/genalloc: fix the overflow when size is too big
(bsc#1012628).
- depmod: handle the case of /sbin/depmod without /sbin in PATH
(bsc#1012628).
- scsi: ufs: Clear UAC for FFU and RPMB LUNs (bsc#1012628).
- kbuild: don't hardcode depmod path (bsc#1012628).
- Bluetooth: revert: hci_h5: close serdev device and free hu in
h5_close (bsc#1012628).
- scsi: block: Remove RQF_PREEMPT and BLK_MQ_REQ_PREEMPT
(bsc#1012628).
- scsi: block: Do not accept any requests while suspended
(bsc#1012628).
- crypto: ecdh - avoid buffer overflow in ecdh_set_secret()
(bsc#1012628).
- crypto: asym_tpm: correct zero out potential secrets
(bsc#1012628).
- powerpc: Handle .text.{hot,unlikely}.* in linker script
(bsc#1012628).
- Staging: comedi: Return -EFAULT if copy_to_user() fails
(bsc#1012628).
- staging: mt7621-dma: Fix a resource leak in an error handling
path (bsc#1012628).
- usb: gadget: enable super speed plus (bsc#1012628).
- USB: cdc-acm: blacklist another IR Droid device (bsc#1012628).
- USB: cdc-wdm: Fix use after free in
service_outstanding_interrupt() (bsc#1012628).
- usb: typec: intel_pmc_mux: Configure HPD first for HPD+IRQ
request (bsc#1012628).
- usb: dwc3: meson-g12a: disable clk on error handling path in
probe (bsc#1012628).
- usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup
(bsc#1012628).
- usb: dwc3: gadget: Clear wait flag on dequeue (bsc#1012628).
- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access
completion (bsc#1012628).
- usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based
one (bsc#1012628).
- usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression
(bsc#1012628).
- usb: chipidea: ci_hdrc_imx: add missing put_device() call in
usbmisc_get_init_data() (bsc#1012628).
- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
quirk set (bsc#1012628).
- usb: usbip: vhci_hcd: protect shift size (bsc#1012628).
- usb: uas: Add PNY USB Portable SSD to unusual_uas (bsc#1012628).
- USB: serial: iuu_phoenix: fix DMA from stack (bsc#1012628).
- USB: serial: option: add LongSung M5710 module support
(bsc#1012628).
- USB: serial: option: add Quectel EM160R-GL (bsc#1012628).
- USB: yurex: fix control-URB timeout handling (bsc#1012628).
- USB: usblp: fix DMA to stack (bsc#1012628).
- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
(bsc#1012628).
- usb: gadget: select CONFIG_CRC32 (bsc#1012628).
- USB: Gadget: dummy-hcd: Fix shift-out-of-bounds bug
(bsc#1012628).
- usb: gadget: f_uac2: reset wMaxPacketSize (bsc#1012628).
- usb: gadget: function: printer: Fix a memory leak for interface
descriptor (bsc#1012628).
- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
(bsc#1012628).
- USB: gadget: legacy: fix return error code in acm_ms_bind()
(bsc#1012628).
- usb: gadget: Fix spinlock lockup on usb_function_deactivate
(bsc#1012628).
- usb: gadget: configfs: Preserve function ordering after bind
failure (bsc#1012628).
- usb: gadget: configfs: Fix use-after-free issue with udc_name
(bsc#1012628).
- USB: serial: keyspan_pda: remove unused variable (bsc#1012628).
- hwmon: (amd_energy) fix allocation of hwmon_channel_info config
(bsc#1012628).
- mm: make wait_on_page_writeback() wait for multiple pending
writebacks (bsc#1012628).
- x86/mm: Fix leak of pmd ptlock (bsc#1012628).
- KVM: x86/mmu: Use -1 to flag an undefined spte in
get_mmio_spte() (bsc#1012628).
- KVM: x86/mmu: Get root level from walkers when retrieving MMIO
SPTE (bsc#1012628).
- kvm: check tlbs_dirty directly (bsc#1012628).
- KVM: x86/mmu: Ensure TDP MMU roots are freed after yield
(bsc#1012628).
- x86/resctrl: Use an IPI instead of task_work_add() to update
PQR_ASSOC MSR (bsc#1012628).
- x86/resctrl: Don't move a task to the same resource group
(bsc#1012628).
- blk-iocost: fix NULL iocg deref from racing against
initialization (bsc#1012628).
- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (bsc#1012628).
- ALSA: hda/conexant: add a new hda codec CX11970 (bsc#1012628).
- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
(bsc#1012628).
- ALSA: hda/realtek: Add mute LED quirk for more HP laptops
(bsc#1012628).
- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook
850 G7 (bsc#1012628).
- ALSA: hda/realtek: Add two "Intel Reference board" SSID in
the ALC256 (bsc#1012628).
- iommu/vt-d: Move intel_iommu info from struct intel_svm to
struct intel_svm_dev (bsc#1012628).
- btrfs: qgroup: don't try to wait flushing if we're already
holding a transaction (bsc#1012628).
- btrfs: send: fix wrong file path when there is an inode with
a pending rmdir (bsc#1012628).
- Revert "device property: Keep secondary firmware node secondary
by type" (bsc#1012628).
- dmabuf: fix use-after-free of dmabuf's file->f_inode
(bsc#1012628).
- arm64: link with -z norelro for LLD or aarch64-elf
(bsc#1012628).
- drm/i915: clear the shadow batch (bsc#1012628).
- drm/i915: clear the gpu reloc batch (bsc#1012628).
- bcache: fix typo from SUUP to SUPP in features.h (bsc#1012628).
- bcache: check unsupported feature sets for bcache register
(bsc#1012628).
- bcache: introduce BCH_FEATURE_INCOMPAT_LOG_LARGE_BUCKET_SIZE
for large bucket (bsc#1012628).
- net/mlx5e: Fix SWP offsets when vlan inserted by driver
(bsc#1012628).
- ARM: dts: OMAP3: disable AES on N950/N9 (bsc#1012628).
- netfilter: x_tables: Update remaining dereference to RCU
(bsc#1012628).
- netfilter: ipset: fix shift-out-of-bounds in htable_bits()
(bsc#1012628).
- netfilter: xt_RATEEST: reject non-null terminated string from
userspace (bsc#1012628).
- netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
(bsc#1012628).
- dmaengine: idxd: off by one in cleanup code (bsc#1012628).
- x86/mtrr: Correct the range check before performing MTRR type
lookups (bsc#1012628).
- KVM: x86: fix shift out of bounds reported by UBSAN
(bsc#1012628).
- xsk: Fix memory leak for failed bind (bsc#1012628).
- rtlwifi: rise completion at the last step of firmware callback
(bsc#1012628).
- scsi: target: Fix XCOPY NAA identifier lookup (bsc#1012628).
- commit 1ca962e
- Linux 5.10.6 (bsc#1012628).
- Revert "drm/amd/display: Fix memory leaks in S3 resume"
(bsc#1012628).
- Revert "mtd: spinand: Fix OOB read" (bsc#1012628).
- rtc: pcf2127: move watchdog initialisation to a separate
function (bsc#1012628).
- rtc: pcf2127: only use watchdog when explicitly available
(bsc#1012628).
- dt-bindings: rtc: add reset-source property (bsc#1012628).
- kdev_t: always inline major/minor helper functions
(bsc#1012628).
- Bluetooth: Fix attempting to set RPA timeout when unsupported
(bsc#1012628).
- ALSA: hda/realtek - Modify Dell platform name (bsc#1012628).
- drm/i915/tgl: Fix Combo PHY DPLL fractional divider for 38.4MHz
ref clock (bsc#1012628).
- scsi: ufs: Allow an error return value from ->device_reset()
(bsc#1012628).
- scsi: ufs: Re-enable WriteBooster after device reset
(bsc#1012628).
- RDMA/core: remove use of dma_virt_ops (bsc#1012628).
- RDMA/siw,rxe: Make emulated devices virtual in the device tree
(bsc#1012628).
- fuse: fix bad inode (bsc#1012628).
- perf: Break deadlock involving exec_update_mutex (bsc#1012628).
- rwsem: Implement down_read_killable_nested (bsc#1012628).
- rwsem: Implement down_read_interruptible (bsc#1012628).
- exec: Transform exec_update_mutex into a rw_semaphore
(bsc#1012628).
- mwifiex: Fix possible buffer overflows in
mwifiex_cmd_802_11_ad_hoc_start (bsc#1012628).
- commit 5bdc505
- regulator: mt6323: Add OF match table (bsc#1180731).
- regulator: mt6358: Add OF match table (bsc#1180731).
- regulator: mt6360: Add OF match table (bsc#1180731).
- commit a930122
- drm: bail out of nouveau_channel_new if channel init fails
(CVE-2020-25639 bsc#1176846).
- commit 4739e43
==== kmod ====
Subpackages: libkmod2
- Update usr-lib-modprobe.patch to upstream submission (boo#1180821).
- Require libxslt-tools for xsltproc and use local stylesheet.
+ no-stylesheet-download.patch
==== libpwquality ====
Subpackages: libpwquality-tools libpwquality1 pam_pwquality
- Do not use macro %make_build pre SLE-15
Use "make -O %{?_smp_mflags}" instead
[libpwquality.spec]
==== libzypp ====
Version update (17.25.5 -> 17.25.6)
- Rephrase solver problem descriptions (jsc#SLE-8482)
- Adapt to changed gpg2/libgpgme behavior (bsc#1180721)
- Multicurl backend breaks with with unknown filesize (fixes #277)
- version 17.25.6 (22)
==== mozjs78 ====
Version update (78.5.0 -> 78.6.1)
- Update to version 78.6.1esr.
==== net-tools ====
- prepare usrmerge (boo#1029961)
==== open-lldp ====
Version update (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
Subpackages: liblldp_clif1
- Update to version v1.1+36.e926f7172b96:
* tx: rename variable
* event_iface: only set rcv buf size if too small (bsc#1175570)
* tx: when operating in rx-only mode don't send a port shutdown pdu
* Update .travis.yml
* vdp22: manpage typo
* lldptool: fix manpage
* lldp_head: remove all references
* add_rtattr: only copy if data is provided
* autoconf: convenience to setup asan and ubsan
* Post 1.1 release
==== openSUSE-build-key ====
- update openSUSE:Factory:zSystems signing key to current version:
pub rsa2048 2016-02-17 [SC] [expires: 2022-08-16]
F00C20EF1E1114C9B5F69B2276CA4244F6AB3975
openSUSE:Factory:zSystems OBS Project <openSUSE:Factory:zSystems@build.opensuse.org>
==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server
- Update openssh-8.1p1-audit.patch (bsc#1180501). This fixes
occasional crashes on connection termination caused by accessing
freed memory.
==== psmisc ====
Version update (23.2 -> 23.3)
- Now with 23.3 peekfd is build even for aarch64
- Rework 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
and split off the patch psmisc-v23.3-selinux.patch
- Rework 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- New patch psmisc-v23.3-selinux.patch
- Rename patch psmisc-v23.2.dif which is now psmisc-v23.3.dif
- Update to 23.3:
* killall: check also truncated 16 char comm names Debian
* fuser: Return early if have nulls
* peekfd: Add support for ARM64
* pstree: Add color by age
* fuser: Use larger inode sizes
- Rebase 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
- Rebase 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- Rebase psmisc-22.21-pstree.patch
==== python-rpm-macros ====
Version update (20200824.8fa42a7 -> 20210112.86f4d9d)
- Update to version 20210112.86f4d9d:
* fix gh#openSUSE/python-rpm-macros#84: python_sysconfig_ macros
- Update to version 20201207.2177fcf:
* README update after merge
- Update to version 20201207.259cdda:
* Update python_expand description in README
* python_expand to basename only
- Update to version 20201204.32a910e:
* fix print_provided_flavor again
- Update to version 20201203.5331183:
* fix print_provided_flavor
- Update to version 20201128.669edb3:
* fix provides (for python-numpy f2py, in gh#openSUSE/python-rpm-macros#66)
- Update to version 20201123.6978323:
* also rewrite subpackage_only default providers
* pytest: ignore _build dirs for all flavors
- Update to version 20201119.6bb5f69:
* add default provider properties
* don't replace %name, for subpackage_only
* expand parameters for subpackage_only packages
- Update to version 20201112.a4c80dc:
* handle python_subpackage_only, fixes gh#openSUSE/python-rpm-macros#73
* define default providers for pythonX from pythonXY flavors: fixes #69
- Update to version 20201103.cec67c2:
* document python_find_lang
* add python_find_lang and allow to specify in %python_files. Fixes #5
- Update to version 20201102.31ccfc2:
* fix python_clone shebang replacement
* one less expansion for python_exec
* expand default %python_ macros earlier
* update README for multiple flavors
* more command delimiters for %python_expand
- Update to version 20201022.7f87908:
* Add python36 and python38 flavours.
- Update to version 20201021.adb6953:
* Prepare for multiple python3 flavors
- Remove multiple_flavors.patch as it is included in the upstream
tarball.
- Update to version 20201016.5d22545:
* fix whitespace after escape in compileall macro
- Update to version 20201016.db09189:
* Delete pycache files before compilealll
* Update macros/010-common-defs
* Reword compileall
* mention pyproject.toml and link to PEP517 and PEP518
* add description for pyunittest macro
* add description for python_compileall macro
* add description for pyproject macros
* add python_compileall macro and use it in pyproject_install
* disable pip version check: no connection to pypi.org
- Update multiple_flavors.patch to generate correct names of the
python binary.
- %__#FLAVOR# should be defined as
/usr/bin/python%{#FLAVOR#_version} not just /usr/bin/#FLAVOR#
- Add patch multiple_flavors.patch which makes compile_macros.sh
generate alternative flavours as well.
==== salt ====
Version update (3000.3 -> 3002.2)
Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration
- Remove deprecated warning that breaks minion execution when "server_id_use_crc" opts is missing
- Added:
* remove-deprecated-warning-that-breaks-miniion-execut.patch
- Revert wrong zypper patch to support vendorchanges flags on pkg.install
- Added:
* revert-add-patch-support-for-allow-vendor-change-opt.patch
- Force zyppnotify to prefer Packages.db than Packages if it exists
- Allow vendor change option with zypper
- Add pkg.services_need_restart
- Fix for file.check_perms to work with numeric uid/gid
- Added:
* force-zyppnotify-to-prefer-packages.db-than-packages.patch
* fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch
* add-patch-support-for-allow-vendor-change-option-wit.patch
* add-pkg.services_need_restart-302.patch
- virt: more network support
Add more network and PCI/USB host devices passthrough support
to virt module and states
- Added:
* open-suse-3002.2-virt-network-311.patch
- Bigvm backports
virt consoles, CPU tuning and topology, and memory tuning.
- Added:
* open-suse-3002.2-bigvm-310.patch
- Fix pkg states when DEB package has "all" arch
- Added:
* fix-aptpkg.normalize_name-when-package-arch-is-all.patch
- Do not force beacons configuration to be a list.
Revert https://github.com/saltstack/salt/pull/58655
- Added:
* revert-fixing-a-use-case-when-multiple-inotify-beaco.patch
- Drop wrong virt capabilities code after rebasing patches
- Added:
* drop-wrong-virt-capabilities-code-after-rebasing-pat.patch
- Update to Salt release version 3002.2
- See release notes: https://docs.saltstack.com/en/latest/topics/releases/3002.2.html
- Modified:
* add-environment-variable-to-know-if-yum-is-invoked-f.patch
* let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch
* fix-__mount_device-wrapper-254.patch
* opensuse-3000.2-virt-backports-236-257.patch
* fixes-cve-2018-15750-cve-2018-15751.patch
* strip-trailing-from-repo.uri-when-comparing-repos-in.patch
* include-aliases-in-the-fqdns-grains.patch
* support-config-non-root-permission-issues-fixes-u-50.patch
* support-for-btrfs-and-xfs-in-parted-and-mkfs.patch
* fix-batch_async-obsolete-test.patch
* early-feature-support-config.patch
* changed-imports-to-vendored-tornado.patch
* avoid-excessive-syslogging-by-watchdog-cronjob-58.patch
* add-hold-unhold-functions.patch
* do-not-crash-when-there-are-ipv6-established-connect.patch
* add-docker-logout-237.patch
* add-saltssh-multi-version-support-across-python-inte.patch
* fix-a-test-and-some-variable-names-229.patch
* implement-network.fqdns-module-function-bsc-1134860-.patch
* debian-info_installed-compatibility-50453.patch
* fix-bsc-1065792.patch
* use-current-ioloop-for-the-localclient-instance-of-b.patch
* restore-default-behaviour-of-pkg-list-return.patch
* virt-adding-kernel-boot-parameters-to-libvirt-xml-55.patch
* use-threadpool-from-multiprocessing.pool-to-avoid-le.patch
* add-migrated-state-and-gpg-key-management-functions-.patch
* info_installed-works-without-status-attr-now.patch
* bsc-1176024-fix-file-directory-user-and-group-owners.patch
* opensuse-3000.3-spacewalk-runner-parse-command-250.patch
* fix-aptpkg-systemd-call-bsc-1143301.patch
* fix-memory-leak-produced-by-batch-async-find_jobs-me.patch
* ansiblegate-take-care-of-failed-skipped-and-unreacha.patch
* calculate-fqdns-in-parallel-to-avoid-blockings-bsc-1.patch
* add-cpe_name-for-osversion-grain-parsing-u-49946.patch
* python3.8-compatibility-pr-s-235.patch
* backport-virt-patches-from-3001-256.patch
* do-not-break-repo-files-with-multiple-line-values-on.patch
* enable-passing-a-unix_socket-for-mysql-returners-bsc.patch
* accumulated-changes-required-for-yomi-165.patch
* support-transactional-systems-microos-271.patch
* use-adler32-algorithm-to-compute-string-checksums.patch
* remove-vendored-backports-abc-from-requirements.patch
* fall-back-to-pymysql.patch
* xen-disk-fixes-264.patch
* fix-for-temp-folder-definition-in-loader-unit-test.patch
* batch.py-avoid-exception-when-minion-does-not-respon.patch
* move-server_id-deprecation-warning-to-reduce-log-spa.patch
* avoid-traceback-when-http.query-request-cannot-be-pe.patch
* fixed-bug-lvm-has-no-parttion-type.-the-scipt-later-.patch
* fix-zypper-pkg.list_pkgs-expectation-and-dpkg-mockin.patch
* grains-master-can-read-grains.patch
* remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch
* fix-wrong-test_mod_del_repo_multiline_values-test-af.patch
* accumulated-changes-from-yomi-167.patch
* allow-passing-kwargs-to-pkg.list_downloaded-bsc-1140.patch
* loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch
* add-astra-linux-common-edition-to-the-os-family-list.patch
* fix-async-batch-race-conditions.patch
* batch-async-catch-exceptions-and-safety-unregister-a.patch
* activate-all-beacons-sources-config-pillar-grains.patch
* drop-wrong-mock-from-chroot-unit-test.patch
* fix-for-suse-expanded-support-detection.patch
* fix-novendorchange-option-284.patch
* fix-virt.update-with-cpu-defined-263.patch
* add-batch_presence_ping_timeout-and-batch_presence_p.patch
* fix-git_pillar-merging-across-multiple-__env__-repos.patch
* add-publish_batch-to-clearfuncs-exposed-methods.patch
* fix-unit-tests-for-batch-async-after-refactor.patch
* add-new-custom-suse-capability-for-saltutil-state-mo.patch
* prevent-test_mod_del_repo_multiline_values-to-fail.patch
* x509-fixes-111.patch
* adds-explicit-type-cast-for-port.patch
* run-salt-master-as-dedicated-salt-user.patch
* remove-msgpack-1.0.0-requirement-in-the-installed-me.patch
* switch-firewalld-state-to-use-change_interface.patch
* option-to-en-disable-force-refresh-in-zypper-215.patch
* fix-async-batch-multiple-done-events.patch
* make-setup.py-script-to-not-require-setuptools-9.1.patch
* add-custom-suse-capabilities-as-grains.patch
* don-t-call-zypper-with-more-than-one-no-refresh.patch
* transactional_update-unify-with-chroot.call.patch
* fix-ipv6-scope-bsc-1108557.patch
* temporary-fix-extend-the-whitelist-of-allowed-comman.patch
* opensuse-3000-libvirt-engine-fixes-251.patch
* fix-grains.test_core-unit-test-277.patch
* pkgrepo-support-python-2.7-function-call-295.patch
* prevent-import-errors-when-running-test_btrfs-unit-t.patch
* do-not-make-ansiblegate-to-crash-on-python3-minions.patch
* fix-issue-2068-test.patch
* ensure-virt.update-stop_on_reboot-is-updated-with-it.patch
* remove-deprecated-usage-of-no_mock-and-no_mock_reaso.patch
* read-repo-info-without-using-interpolation-bsc-11356.patch
* fix-zypper.list_pkgs-to-be-aligned-with-pkg-state.patch
* fixing-streamclosed-issue.patch
* virt._get_domain-don-t-raise-an-exception-if-there-i.patch
* loop-fix-variable-names-for-until_no_eval.patch
* improve-batch_async-to-release-consumed-memory-bsc-1.patch
* prevent-systemd-run-description-issue-when-running-a.patch
* integration-of-msi-authentication-with-azurearm-clou.patch
* add-all_versions-parameter-to-include-all-installed-.patch
* sanitize-grains-loaded-from-roster_grains.json.patch
* fix-failing-unit-tests-for-batch-async.patch
* reintroducing-reverted-changes.patch
* fix-for-log-checking-in-x509-test.patch
* do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch
* opensuse-3000-virt-defined-states-222.patch
* add-virt.all_capabilities.patch
* prevent-logging-deadlock-on-salt-api-subprocesses-bs.patch
* fix-cve-2020-25592-and-add-tests-bsc-1178319.patch
* fix-unit-test-for-grains-core.patch
* async-batch-implementation.patch
* apply-patch-from-upstream-to-support-python-3.8.patch
* remove-unnecessary-yield-causing-badyielderror-bsc-1.patch
* re-adding-function-to-test-for-root.patch
* zypperpkg-filter-patterns-that-start-with-dot-244.patch
* fix-a-wrong-rebase-in-test_core.py-180.patch
* add-multi-file-support-and-globbing-to-the-filetree-.patch
* fix-the-removed-six.itermitems-and-six.-_type-262.patch
* zypperpkg-ignore-retcode-104-for-search-bsc-1176697-.patch
* add-standalone-configuration-file-for-enabling-packa.patch
* make-profiles-a-package.patch
* return-the-expected-powerpc-os-arch-bsc-1117995.patch
* batch_async-avoid-using-fnmatch-to-match-event-217.patch
* do-not-raise-streamclosederror-traceback-but-only-lo.patch
* provide-the-missing-features-required-for-yomi-yet-o.patch
* make-aptpkg.list_repos-compatible-on-enabled-disable.patch
* backport-a-few-virt-prs-272.patch
* add-supportconfig-module-for-remote-calls-and-saltss.patch
* run-salt-api-as-user-salt-bsc-1064520.patch
* path-replace-functools.wraps-with-six.wraps-bsc-1177.patch
* get-os_arch-also-without-rpm-package-installed.patch
* invalidate-file-list-cache-when-cache-file-modified-.patch
* xfs-do-not-fails-if-type-is-not-present.patch
* prevent-ansiblegate-unit-tests-to-fail-on-ubuntu.patch
- Removed:
* do-not-report-patches-as-installed-when-not-all-the-.patch
* add-pkg.services_need_restart-302.patch
* removes-unresolved-merge-conflict-in-yumpkg-module.patch
* add-missing-fun-for-returns-from-wfunc-executions.patch
* force-zyppnotify-to-prefer-packages.db-than-packages.patch
* decide-if-the-source-should-be-actually-skipped.patch
* make-lazyloader.__init__-call-to-_refresh_file_mappi.patch
* avoid-has_docker-true-if-import-messes-with-salt.uti.patch
* fix-for-bsc-1102248-psutil-is-broken-and-so-process-.patch
* set-passphrase-for-salt-ssh-keys-to-empty-string-293.patch
* fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch
* add-patch-support-for-allow-vendor-change-option-wit.patch
* opensuse-3000.3-bigvm-backports-303.patch
* msgpack-support-versions-1.0.0.patch
* fix-typo-on-msgpack-version-when-sanitizing-msgpack-.patch
* use-full-option-name-instead-of-undocumented-abbrevi.patch
* add-missing-_utils-at-loader-grains_func.patch
* loader-invalidate-the-import-cachefor-extra-modules.patch
* fix-for-return-value-ret-vs-return-in-batch-mode.patch
* make-salt.ext.tornado.gen-to-use-salt.ext.backports_.patch
- Force zyppnotify to prefer Packages.db than Packages if it exists
- Allow vendor change option with zypper
- Added:
* add-patch-support-for-allow-vendor-change-option-wit.patch
* force-zyppnotify-to-prefer-packages.db-than-packages.patch
- Add pkg.services_need_restart
- Bigvm backports:
virt consoles, CPU tuning and topology, and memory tuning.
- Fix for file.check_perms to work with numeric uid/gid
- Added:
* add-pkg.services_need_restart-302.patch
* fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch
* opensuse-3000.3-bigvm-backports-303.patch
- Change 'Requires(pre)' to 'Requires' for salt-minion package (bsc#1083110)
==== selinux-policy ====
Version update (20201029 -> 20210111)
Subpackages: selinux-policy-targeted
- Update to version 20210111
- Drop fix_policykit.patch (integrated upstream)
- Adjust fix_iptables.patch
- update container policy
==== sudo ====
Version update (1.9.4p2 -> 1.9.5p1)
- Update to 1.9.5.p1
* Fixed a regression introduced in sudo 1.9.5 where the editor run
by sudoedit was set-user-ID root unless SELinux RBAC was in use.
The editor is now run with the user's real and effective user-IDs.
- News in 1.9.5
* Fixed a crash introduced in 1.9.4 when running "sudo -i" as an
unknown user. This is related to but distinct from Bug #948.
* If the "lecture_file" setting is enabled in sudoers, it must now
refer to a regular file or a symbolic link to a regular file.
* Fixed a potential use-after-free bug in sudo_logsrvd when the
server shuts down if there are existing connections from clients
that are only logging events and not session I/O data.
* Fixed a buffer size mismatch when serializing the list of IP
addresses for configured network interfaces. This bug is not
actually exploitable since the allocated buffer is large enough
to hold the list of addresses.
* If sudo is executed with a name other than "sudo" or "sudoedit",
it will now fall back to "sudo" as the program name. This affects
warning, help and usage messages as well as the matching of Debug
lines in the /etc/sudo.conf file. Previously, it was possible
for the invoking user to manipulate the program name by setting
argv[0] to an arbitrary value when executing sudo.
* Sudo now checks for failure when setting the close-on-exec flag
on open file descriptors. This should never fail but, if it
were to, there is the possibility of a file descriptor leak to
a child process (such as the command sudo runs).
* Fixed CVE-2021-23239, a potential information leak in sudoedit
that could be used to test for the existence of directories not
normally accessible to the user in certain circumstances. When
creating a new file, sudoedit checks to make sure the parent
directory of the new file exists before running the editor.
However, a race condition exists if the invoking user can replace
(or create) the parent directory. If a symbolic link is created
in place of the parent directory, sudoedit will run the editor
as long as the target of the link exists. If the target of the
link does not exist, an error message will be displayed. The
race condition can be used to test for the existence of an
arbitrary directory. However, it _cannot_ be used to write to
an arbitrary location.
* Fixed CVE-2021-23240, a flaw in the temporary file handling of
sudoedit's SELinux RBAC support. On systems where SELinux is
enabled, a user with sudoedit permissions may be able to set the
owner of an arbitrary file to the user-ID of the target user.
On Linux kernels that support "protected symlinks", setting
/proc/sys/fs/protected_symlinks to 1 will prevent the bug from
being exploited. For more information see
https://www.sudo.ws/alerts/sudoedit_selinux.html.
* Added writability checks for sudoedit when SELinux RBAC is in use.
This makes sudoedit behavior consistent regardless of whether
or not SELinux RBAC is in use. Previously, the "sudoedit_checkdir"
setting had no effect for RBAC entries.
* A new sudoers option "selinux" can be used to disable sudo's
SELinux RBAC support.
* Quieted warnings from PVS Studio, clang analyzer, and cppcheck.
Added suppression annotations for PVS Studio false positives.
==== vim ====
Version update (8.2.2129 -> 8.2.2327)
Subpackages: vim-data-common vim-small
- Updated to version 8.2.2327, fixes the following problems
* Insert mode completion messages end up in message history.
* Vim9: crash when lambda uses same var as assignment.
* Padding not drawn properly for popup window with title.
* Vim9: checking for a non-empty string is too strict.
* Vim9: get E1099 when autocmd triggered in builtin function.
* Vim9: #{ still seen as start of dict in some places.
* Vim9: Using uninitialized variable.
* Vim9: :echo and :execute give error for empty argument.
* Vim9: "exit_cb" causes Vim to exit.
* Vim9: unreachable code in assignment.
* Build failure with tiny features.
* A user command with try/catch may not catch an expression error.
* Memory leak when heredoc is not terminated.
* Vim9: dead code in compiling :unlet.
* Vim9: some corner cases not tested.
* Vim9: concatenating lists does not adjust type of result.
* Vim9: automatic conversion of number to string for dict key.
* Quickfix window title not updated in all tab pages.
* Vim9: crash when user command doesn't match.
* Popupwin test for latin1 sometimes fails.
* Github actions CI isn't used for all available platforms.
* $dir not expanded when configure checks for moonjit.
* screenpos() does not include the WinBar offset.
* Popupwin test for latin1 still fails sometimes.
* Popupwin test for terminal buffer fails sometimes.
* Warning from Github actions for code analysis.
* Github actions run on pusing a tag.
* Vim9: can delete a Vim9 script variable from a function.
* CI on cirrus times out, coveralls doesn't always run.
* Vim9: when declaring a list it is not allocated yet, causing a following
extend() to fail.
* Various typos.
* Arguments -T and -x not tested yet.
* Vim9: Cannot load or store autoload variables.
* Crash when discarded exception is the current exception.
* Vim9: autoload function doesn't work in script that starts with an upper
case letter.
* Vim9: assignment to dict member does not work.
* Auto format doesn't work when deleting text.
* Vim9: assign test fails. (Elimar Riesebieter)
* Vim9: error for assigning to dict of dict.
* Vim9: test leaves file behind.
* Vim9: a global function defined in a :def function fails if it uses
the context.
* Valgrind warning for using uninitialized value.
* Vim9: number of arguments is not always checked. (Yegappan Lakshmanan)
* Vim9: get internal error when assigning to undefined variable.
* Mac version doesn't specify the CPU architecture.
* Github actions: clang-11 handling suboptimal.
* Crash with a sequence of fold commands.
* Pattern "^" does not match if the first character in the line is
combining. (Rene Kita)
* Python 3: non-utf8 character cannot be handled.
* Vim9: crash when indexing a dict with a number.
* Vim9: test for error after error is flaky.
* Valgrind warnings for using uninitialized value.
* Vim9: value of 'magic' is still relevant.
* Vim9: value of 'edcompatible' and 'gdefault' are used.
* Vim9: no error when using "2" for a line number.
* BufUnload is not triggered for the quickfix dummy buffer.
* Vim9: error when using 'opfunc'.
* Python 3 test fails sometimes. (Christian Brabandt)
* Vim9: crash when calling global function from :def function.
* Cannot repeat a command that uses the small delete register.
* Vim9: crash when compiled with EXITFREE.
* Vim9: using wrong name with lambda in nested function.
* Codecov on github actions fails.
* Vim9: can change constant in :def function.
* Vim9: cannot use :const or :final at the script level.
* Failing tests for :const.
* :version output has extra spaces in compile and link command.
* Assert arguments order reversed.
* ml_get error when resizing window and using text property.
* First write after setting 'eol' does not have NL added. (Tomá? Janou?ek)
* Vim9: lambda without white space around -> is confusing.
* Write file test fails on MS-Windows.
* Write file test still fails on MS-Windows.
* Moodle gift files are not recognized.
* Vim9: using -> both for method and lambda is confusing.
* Vim9: memory leak when parsing lambda fails.
* :exe command line completion only works for first argument.
* Illegal memory access if popup menu items are changed while the menu is
visible. (Tomá? Janou?ek)
* Vim9: after reloading a script variable index may be invalid.
* Vim9: return type of => lambda not parsed.
* Vim9: allocating a type to set TTFLAG_BOOL_OK.
* Vim9: lambda with => does not work at the script level.
* Checking white space around -> is not backwards compatible.
* ":e#" does not give a warning for missing white space.
* Vim9: `=expr` not recognized in global command.
* Vim9: range with missing colon can be hard to spot.
* Vim9: command modifiers not restored in catch block.
* Vim9: failure if passing more arguments to a lambda than expected.
* Vim9: method call with expression not supported.
* Vim9: memory leak when parsing nested parenthesis.
* If <Down> is mapped on the command line 'wildchar' is inserted.
* Vim9: cannot keep script variables when reloading.
* Vim9: Reloading marks a :def function as deleted.
* Vim9: crash if script reloaded with different variable type.
* Vim9: error when using :import in legacy script twice.
* Vim9: script test fails.
* Vim9: recognizing lambda is too complicated.
* Vim9: cannot use ":e #" because # starts a comment.
* build failure without the +eval feature.
* Vim9: insert completion runs into error.
* When "--remote file" is used "file" is not reloaded.
* Compiler error for falling through into next case.
* Cannot convert a byte index into a character index.
* Command line wildmenu test often fails with Unix GUI.
* Build failure with some Ruby versions.
* 'scroll' option can change when setting the statusline or tabline but
the option context is not updated.
* Vim9: cannot load a Vim9 script without the +eval feature.
* Vim9: concatenating lines with backslash is inconvenient.
* Clientserver test fails if full path is used.
* Build with Ruby and clang may fail.
* Vim9: line continuation with bar does not work at script level.
* Crash when popup mask contains zeroes.
* Crash when making the window width of the not-current window negative.
* Vim9: return value of winrestcmd() cannot be executed.
* Cursor keys not recognized at the hit-Enter prompt after executing an
external command.
* VMS: various smaller problems.
* ASAN error on exit with GUI.
* Termcodes test is flaky when used over ssh with X forwarding.
* Vim9: sublist is ambiguous.
* Test failures in legacy script.
* Vim9: crash when using lambda without return type in dict.
* Vim9: expr test fails.
* Vim9: bool option type is number.
* Tcl test fails.
* Vim9: cannot use function( after line break in :def function.
* Vim9: using -> for lambda is ambiguous.
* Not all OCaml related files are detected.
* Test_Executable() fails when using chroot.
* Window resize test fails in very wide terminal.
* Vim9: boolean option gets string type.
* Vim9: converting bool to string prefixes v:.
* Vim9: compilation error with try-catch in skipped block.
* Vim9: no error for mismatched :endfunc or :enddef.
* Error message for missing endfunc/enddef is last line.
* Vim9: it can be hard to see where white space is missing.
* Vim9: cannot use unlet for a dict member.
* Vim9: list unpack seen as declaration.
* Not all :hardcopy code covered by tests.
* Warning for size_t to int conversion. (Randall W. Morris)
* ml_get error when changing hidden buffer in Python.
* Vim9: extend() can violate the type of a variable.
* Build failure.
* badge for Travis is outdated.
* CTRL-C not recognized in Mintty.
* List of distributed files is outdated.
* Missing backslash.
* Falling back to old regexp engine can some patterns.
* Vim9: memory leak with catch in skipped block.
* Fuzzy matching doesn't give access to the scores.
* Vim9: compiled "wincmd" cannot be followed by bar.
* Length check mismatch with argument of strncmp(). (Christian Brabandt)
* Vim9: crash when lambda has fewer arguments than expected.
* Vim9: cannot set an option to a boolean value.
* Vim9: cannot set an option to a false.
* Sort test fails when locale is Canadian English. (Neil H Watson)
* Sort test fails when locale is French Canadian.
* Vim9: line break and comment not always skipped.
* Vim9: 'cpo' can become empty.
* Vim9: unlet of global variable cannot be compiled.
* Vim9: cannot use "null" for v:null.
* Vim: expr test fails.
* Build failure with Motif. (Tony Mechelynck)
* VMS: a few remaining problems.
* Incsearch does not detect empty pattern properly.
* Cannot use CTRL-N and CTRL-P in a popup menu.
* Vim9: cannot set 'number' to a boolean value.
* Vim9: comment right after "(" of function not recognized.
* Vim9: invalid memory access making error message flaky.
* Vim9: wrong order on type stack when using dict.
* Vim9: cannot unlet a dict or list item.
* Vim9: using an option value may use uninitialized memory.
* Vim9: backtick expansion doesn't work for :foldopen.
* Vim9: no test for unletting an imported variable.
* Vim9: "++var" and "--var" are silently accepted.
* Vim9: when using function reference type is not checked.
* A shell command in the vimrc causes terminal output.
* Vim9: no error when assigning lambda to funcref without return value.
* 0o777 not recognized as octal.
* Vim9: winsaveview() return type is too generic.
* Vim9: cannot assign to a variable that shadows a command modifier.
* Build failure with Ruby 3.0 and 32 bits.
* Vim9: using uninitialized field when parsing range. ":silent!" not
respected when parsing range fails.
* Vim9: returning zero takes two instructions.
* Vim9: "enddef" as dict key misintepreted as function end.
* Vim9: cannot list a lambda function.
* Vim9: command modifier before list unpack doesn't work.
* Vim9: string and list index work differently.
* "exptype_T" can be read as "expected type".
* Vim9: no error for comparing bool with string.
* Vim9: cannot nest closures.
* Vim9: closure nested limiting to one level.
* Vim9: error when inferring type from empty dict/list.
* Not easy to get mark en cursor posotion by character count.
* Vim9: crash if map() changes the item type.
* Build error with +eval feature but without +spell.
* Debugging code included.
==== yast2 ====
Version update (4.3.46 -> 4.3.49)
- Keep the libzypp target open to verify other packages
(bsc#1180858, related to the previous fix bsc#1179773)
- 4.3.49
- Ensure the libzypp target is initialized when downloading
the skelcd packages (to verify the GPG signatures) (bsc#1179773)
- Log more details when several resolvables (instead of a single
one) are unexpectedly found (related to bsc#1176276)
- 4.3.48
- Fix default for hibernation proposal (bsc#1169874)
- 4.3.47
==== zypper ====
Version update (1.14.41 -> 1.14.42)
Subpackages: zypper-needs-restarting
- Fix source-download commnds help (bsc#1180663)
- man: Recommend to use the --non-interactive global option
rather than the command option -y (bsc#1179816)
- Extend apt packagemap (fixes #366)
- --quitet: Fix install summary to write nothing if there's
nothing todo (bsc#1180077)
- Prefer /run over /var/run.
- version 1.14.42
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
gpgme (1.15.0 -> 1.15.1)
installation-images-MicroOS (16.28 -> 16.29)
kmod
libinput
libqt5-qtdeclarative
libzypp (17.25.5 -> 17.25.6)
mozjs78 (78.5.0 -> 78.6.1)
net-tools
psmisc (23.2 -> 23.3)
rav1e (0.3.4 -> 0.4.0)
speexdsp
sudo (1.9.4p2 -> 1.9.5p1)
zypper (1.14.41 -> 1.14.42)
=== Details ===
==== gpgme ====
Version update (1.15.0 -> 1.15.1)
Subpackages: libgpgme11 libgpgmepp6
- gpgme 1.15.1:
* Fix a bug in the secret key export
* Make listing of signatures work if only secret keys are listed
* qt: Avoid empty "rem(a)gnupg.org" signature notations
* python: Fix key_export functions
- remove deprecated texinfo macros
==== installation-images-MicroOS ====
Version update (16.28 -> 16.29)
- merge gh#openSUSE/installation-images#441
- Handle the rename of MicroOS to SLE Micro (bsc#1180918)
- handle the change of the user-visible name of SUSE MicroOS to SLE
Micro
- 16.29
==== kmod ====
Subpackages: libkmod2
- Update usr-lib-modprobe.patch to upstream submission (boo#1180821).
- Require libxslt-tools for xsltproc and use local stylesheet.
+ no-stylesheet-download.patch
==== libinput ====
- Limit the dep libinput-debug-gui -> libinput-tools only to
%{version}, not %{version}-%{release}. As they are not built in
the same run, the rebuild counters are not guaranteed to match
forever.
==== libqt5-qtdeclarative ====
- Enable qml-autoreqprov
==== libzypp ====
Version update (17.25.5 -> 17.25.6)
- Rephrase solver problem descriptions (jsc#SLE-8482)
- Adapt to changed gpg2/libgpgme behavior (bsc#1180721)
- Multicurl backend breaks with with unknown filesize (fixes #277)
- version 17.25.6 (22)
==== mozjs78 ====
Version update (78.5.0 -> 78.6.1)
- Update to version 78.6.1esr.
==== net-tools ====
- prepare usrmerge (boo#1029961)
==== psmisc ====
Version update (23.2 -> 23.3)
- Now with 23.3 peekfd is build even for aarch64
- Rework 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
and split off the patch psmisc-v23.3-selinux.patch
- Rework 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- New patch psmisc-v23.3-selinux.patch
- Rename patch psmisc-v23.2.dif which is now psmisc-v23.3.dif
- Update to 23.3:
* killall: check also truncated 16 char comm names Debian
* fuser: Return early if have nulls
* peekfd: Add support for ARM64
* pstree: Add color by age
* fuser: Use larger inode sizes
- Rebase 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
- Rebase 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- Rebase psmisc-22.21-pstree.patch
==== rav1e ====
Version update (0.3.4 -> 0.4.0)
- Update to version 0.4.0
* https://github.com/xiph/rav1e/releases/tag/v0.4.0
==== speexdsp ====
- Update dependencies and update spec file
==== sudo ====
Version update (1.9.4p2 -> 1.9.5p1)
- Update to 1.9.5.p1
* Fixed a regression introduced in sudo 1.9.5 where the editor run
by sudoedit was set-user-ID root unless SELinux RBAC was in use.
The editor is now run with the user's real and effective user-IDs.
- News in 1.9.5
* Fixed a crash introduced in 1.9.4 when running "sudo -i" as an
unknown user. This is related to but distinct from Bug #948.
* If the "lecture_file" setting is enabled in sudoers, it must now
refer to a regular file or a symbolic link to a regular file.
* Fixed a potential use-after-free bug in sudo_logsrvd when the
server shuts down if there are existing connections from clients
that are only logging events and not session I/O data.
* Fixed a buffer size mismatch when serializing the list of IP
addresses for configured network interfaces. This bug is not
actually exploitable since the allocated buffer is large enough
to hold the list of addresses.
* If sudo is executed with a name other than "sudo" or "sudoedit",
it will now fall back to "sudo" as the program name. This affects
warning, help and usage messages as well as the matching of Debug
lines in the /etc/sudo.conf file. Previously, it was possible
for the invoking user to manipulate the program name by setting
argv[0] to an arbitrary value when executing sudo.
* Sudo now checks for failure when setting the close-on-exec flag
on open file descriptors. This should never fail but, if it
were to, there is the possibility of a file descriptor leak to
a child process (such as the command sudo runs).
* Fixed CVE-2021-23239, a potential information leak in sudoedit
that could be used to test for the existence of directories not
normally accessible to the user in certain circumstances. When
creating a new file, sudoedit checks to make sure the parent
directory of the new file exists before running the editor.
However, a race condition exists if the invoking user can replace
(or create) the parent directory. If a symbolic link is created
in place of the parent directory, sudoedit will run the editor
as long as the target of the link exists. If the target of the
link does not exist, an error message will be displayed. The
race condition can be used to test for the existence of an
arbitrary directory. However, it _cannot_ be used to write to
an arbitrary location.
* Fixed CVE-2021-23240, a flaw in the temporary file handling of
sudoedit's SELinux RBAC support. On systems where SELinux is
enabled, a user with sudoedit permissions may be able to set the
owner of an arbitrary file to the user-ID of the target user.
On Linux kernels that support "protected symlinks", setting
/proc/sys/fs/protected_symlinks to 1 will prevent the bug from
being exploited. For more information see
https://www.sudo.ws/alerts/sudoedit_selinux.html.
* Added writability checks for sudoedit when SELinux RBAC is in use.
This makes sudoedit behavior consistent regardless of whether
or not SELinux RBAC is in use. Previously, the "sudoedit_checkdir"
setting had no effect for RBAC entries.
* A new sudoers option "selinux" can be used to disable sudo's
SELinux RBAC support.
* Quieted warnings from PVS Studio, clang analyzer, and cppcheck.
Added suppression annotations for PVS Studio false positives.
==== zypper ====
Version update (1.14.41 -> 1.14.42)
Subpackages: zypper-needs-restarting
- Fix source-download commnds help (bsc#1180663)
- man: Recommend to use the --non-interactive global option
rather than the command option -y (bsc#1179816)
- Extend apt packagemap (fixes #366)
- --quitet: Fix install summary to write nothing if there's
nothing todo (bsc#1180077)
- Prefer /run over /var/run.
- version 1.14.42
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
gpgme (1.15.0 -> 1.15.1)
installation-images-MicroOS (16.28 -> 16.29)
kmod
libzypp (17.25.5 -> 17.25.6)
mozjs78 (78.5.0 -> 78.6.1)
net-tools
psmisc (23.2 -> 23.3)
sudo (1.9.4p2 -> 1.9.5p1)
zypper (1.14.41 -> 1.14.42)
=== Details ===
==== gpgme ====
Version update (1.15.0 -> 1.15.1)
- gpgme 1.15.1:
* Fix a bug in the secret key export
* Make listing of signatures work if only secret keys are listed
* qt: Avoid empty "rem(a)gnupg.org" signature notations
* python: Fix key_export functions
- remove deprecated texinfo macros
==== installation-images-MicroOS ====
Version update (16.28 -> 16.29)
- merge gh#openSUSE/installation-images#441
- Handle the rename of MicroOS to SLE Micro (bsc#1180918)
- handle the change of the user-visible name of SUSE MicroOS to SLE
Micro
- 16.29
==== kmod ====
Subpackages: libkmod2
- Update usr-lib-modprobe.patch to upstream submission (boo#1180821).
- Require libxslt-tools for xsltproc and use local stylesheet.
+ no-stylesheet-download.patch
==== libzypp ====
Version update (17.25.5 -> 17.25.6)
- Rephrase solver problem descriptions (jsc#SLE-8482)
- Adapt to changed gpg2/libgpgme behavior (bsc#1180721)
- Multicurl backend breaks with with unknown filesize (fixes #277)
- version 17.25.6 (22)
==== mozjs78 ====
Version update (78.5.0 -> 78.6.1)
- Update to version 78.6.1esr.
==== net-tools ====
- prepare usrmerge (boo#1029961)
==== psmisc ====
Version update (23.2 -> 23.3)
- Now with 23.3 peekfd is build even for aarch64
- Rework 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
and split off the patch psmisc-v23.3-selinux.patch
- Rework 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- New patch psmisc-v23.3-selinux.patch
- Rename patch psmisc-v23.2.dif which is now psmisc-v23.3.dif
- Update to 23.3:
* killall: check also truncated 16 char comm names Debian
* fuser: Return early if have nulls
* peekfd: Add support for ARM64
* pstree: Add color by age
* fuser: Use larger inode sizes
- Rebase 0001-Use-mountinfo-to-be-able-to-use-the-mount-identity.patch
- Rebase 0002-Use-new-statx-2-system-call-to-avoid-hangs-on-NFS.patch
- Rebase psmisc-22.21-pstree.patch
==== sudo ====
Version update (1.9.4p2 -> 1.9.5p1)
- Update to 1.9.5.p1
* Fixed a regression introduced in sudo 1.9.5 where the editor run
by sudoedit was set-user-ID root unless SELinux RBAC was in use.
The editor is now run with the user's real and effective user-IDs.
- News in 1.9.5
* Fixed a crash introduced in 1.9.4 when running "sudo -i" as an
unknown user. This is related to but distinct from Bug #948.
* If the "lecture_file" setting is enabled in sudoers, it must now
refer to a regular file or a symbolic link to a regular file.
* Fixed a potential use-after-free bug in sudo_logsrvd when the
server shuts down if there are existing connections from clients
that are only logging events and not session I/O data.
* Fixed a buffer size mismatch when serializing the list of IP
addresses for configured network interfaces. This bug is not
actually exploitable since the allocated buffer is large enough
to hold the list of addresses.
* If sudo is executed with a name other than "sudo" or "sudoedit",
it will now fall back to "sudo" as the program name. This affects
warning, help and usage messages as well as the matching of Debug
lines in the /etc/sudo.conf file. Previously, it was possible
for the invoking user to manipulate the program name by setting
argv[0] to an arbitrary value when executing sudo.
* Sudo now checks for failure when setting the close-on-exec flag
on open file descriptors. This should never fail but, if it
were to, there is the possibility of a file descriptor leak to
a child process (such as the command sudo runs).
* Fixed CVE-2021-23239, a potential information leak in sudoedit
that could be used to test for the existence of directories not
normally accessible to the user in certain circumstances. When
creating a new file, sudoedit checks to make sure the parent
directory of the new file exists before running the editor.
However, a race condition exists if the invoking user can replace
(or create) the parent directory. If a symbolic link is created
in place of the parent directory, sudoedit will run the editor
as long as the target of the link exists. If the target of the
link does not exist, an error message will be displayed. The
race condition can be used to test for the existence of an
arbitrary directory. However, it _cannot_ be used to write to
an arbitrary location.
* Fixed CVE-2021-23240, a flaw in the temporary file handling of
sudoedit's SELinux RBAC support. On systems where SELinux is
enabled, a user with sudoedit permissions may be able to set the
owner of an arbitrary file to the user-ID of the target user.
On Linux kernels that support "protected symlinks", setting
/proc/sys/fs/protected_symlinks to 1 will prevent the bug from
being exploited. For more information see
https://www.sudo.ws/alerts/sudoedit_selinux.html.
* Added writability checks for sudoedit when SELinux RBAC is in use.
This makes sudoedit behavior consistent regardless of whether
or not SELinux RBAC is in use. Previously, the "sudoedit_checkdir"
setting had no effect for RBAC entries.
* A new sudoers option "selinux" can be used to disable sudo's
SELinux RBAC support.
* Quieted warnings from PVS Studio, clang analyzer, and cppcheck.
Added suppression annotations for PVS Studio false positives.
==== zypper ====
Version update (1.14.41 -> 1.14.42)
Subpackages: zypper-needs-restarting
- Fix source-download commnds help (bsc#1180663)
- man: Recommend to use the --non-interactive global option
rather than the command option -y (bsc#1179816)
- Extend apt packagemap (fixes #366)
- --quitet: Fix install summary to write nothing if there's
nothing todo (bsc#1180077)
- Prefer /run over /var/run.
- version 1.14.42
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream (0.12.11 -> 0.13.1)
ca-certificates (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
container-selinux (2.150.0 -> 2.154.0)
ebook-tools
ell (0.35 -> 0.36)
evolution-data-server (3.38.2 -> 3.38.3)
gjs (1.66.1 -> 1.66.2)
gnome-desktop (3.38.2 -> 3.38.3)
gnome-packagekit
gnome-terminal (3.38.1 -> 3.38.2)
gvfs (1.46.1 -> 1.46.2)
hplip (3.20.9 -> 3.20.11)
libpwquality
libqt5-qtwebengine
llvm11 (11.0.0 -> 11.0.1)
open-lldp (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
openSUSE-build-key
openssh
perl-libwww-perl (6.51 -> 6.52)
polkit-default-privs (1550+20201208.135bf51 -> 1550+20210111.f725c25)
python-rpm-macros (20200824.8fa42a7 -> 20210112.86f4d9d)
qalculate (3.15.0 -> 3.16.1)
sbc (1.4 -> 1.5)
selinux-policy (20201029 -> 20210111)
tracker (3.0.2 -> 3.0.3)
tracker-miners (3.0.3 -> 3.0.4)
vim (8.2.2129 -> 8.2.2327)
vte (0.62.1 -> 0.62.2)
yast2 (4.3.46 -> 4.3.49)
=== Details ===
==== AppStream ====
Version update (0.12.11 -> 0.13.1)
Subpackages: libAppStreamQt2 libappstream4
- Disable vala bindings, fails to build on Leap 15.2 because
g-ir-scanner emits the return type before parameters, which vapigen does not like
- Update to 0.13.1:
Bugfixes:
* Install enum types headers to the right location
* qt: Construct library using libappstream dependency object
* validator: Improve check for invalid hyperlinks to reduce false-positives
- Update to 0.13.0:
Notes:
* This release introduces a new library, libappstream-compose, designed to
provide building blocks for composing AppStream metadata. This includes GUI
stuff like font and SVG rendering, which libappstream deliberately does not
provide. The new compose library is not API/ABI stable and should - for now -
only be used by appstream-generator.
Features:
* qt: add missing Provided::KindId enum (Aleix Pol)
* Add experimental libappstream-compose (Matthias Klumpp)
* Implement support for display_length relation kind (Matthias Klumpp)
* Implement "tv-remote" input control kind (Matthias Klumpp)
* Refactor AsRelation to use GVariant internally (Matthias Klumpp)
* content-rating: Align the OARS/CSM mappings of sex-* (Philip Withnall)
* content-rating: Add content rating system APIs from gnome-software (Philip Withnall)
* content-rating: Expand translator comments to link to OARS website (Philip Withnall)
Specification:
* spec: Specify display_length requires/recommends item (Matthias Klumpp)
* spec: Add tv-remote user input control type (Matthias Klumpp)
Bugfixes:
* Use glib-mkenums to create the GType of all the available enums (Corentin Noël)
* Set FD_CLOEXEC on the LMDB FD manually (Fabian Vogt)
* Never ship with an embedded convenience copy of Highlight.js (Matthias Klumpp)
* Don't fail doc install if global highlight.js wasn't found (Matthias Klumpp)
* Properly escape markup when fixing invalid description data (Matthias Klumpp)
* validator: Don't pass NULL to vprintf, it's not an allowed value (Matthias Klumpp)
* meson: Kill deprecation warning for pkgconfig.generate (Matthias Klumpp)
* validator: Demote cid-contains-uppercase-letter from INFO to PEDANTIC (Matthias Klumpp)
* Change some AsPool GIR annotations to only transfer container,
as workaround for issue in GIR (Matthias Klumpp)
* Properly parse YAML font provides entry (Matthias Klumpp)
* content-rating: Lower the OARS/CSM mapping of sex-homosexuality/intense (Philip Withnall)
* Change return annotation of as_agreement_get_sections to "transfer none" (Rico Tzschichholz)
* contrib: Vala expects element-type of PtrArray to reflect their ownership (Rico Tzschichholz)
- Drop patches, now upstream:
* 0001-Set-FD_CLOEXEC-on-the-LMDB-FD-manually.patch
* properly-escape-markup.patch
- Refresh fix-build-gcc7.patch
==== ca-certificates ====
Version update (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
- Update to version 2+git20210111.eeae41c:
* Make certbundle.run container friendly
==== container-selinux ====
Version update (2.150.0 -> 2.154.0)
- Update to version 2.154.0
- Allow confined user domains to run confined container domains.
- Allow all containers to use nfs shares, iff virt_use_nfs boolean
is enabled.
- Allow containers to read nsfs file systems.
- KVM Container need to use tunnel sockets created by runtime.
==== ebook-tools ====
- use cmake build macros + spec-cleaner
==== ell ====
Version update (0.35 -> 0.36)
- Update to release 0.36
* Fix issue with strict netlink attribute validation.
* Fix issue with DUID generation for DHCPv6.
* Add support for Address Conflict Detection.
* Add support for PKCS#12 algorithms handling.
* Add support for PKCS#12 key derivation algorithm.
* Add support for RC2 and ARC4 cipher suites.
==== evolution-data-server ====
Version update (3.38.2 -> 3.38.3)
Subpackages: libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-25 libedataserverui-1_2-2
- Update to version 3.38.3:
+ e-categories: Show migration runtime warning only if the file
exists.
+ DataCalView: Created objects could be notified twice.
+ EReminderWatcher:
- Add detailed debug prints about the scheduled reminders.
- Catch a race condition when creating a calendar view.
+ alarm-notify: Provide application reference in canberra calls.
+ CamelMimeFilterToHTML: Change how empty <div> is recognized.
+ Addressbook:file backend: Prevent percent letter in photo
filename.
+ Bugs fixed: glgo#GNOME/evolution-data-server#277,
glgo#GNOME/evolution-data-server#286.
+ Updated translations.
==== gjs ====
Version update (1.66.1 -> 1.66.2)
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Update to version 1.66.2:
+ Performance improvements and crash fixes backported from the
development branch.
+ Bug fixes enabling use of GTK 4.
+ Closed bugs and merge requests:
- Error in function "_init()" in module
"modules/overrides/GObject.js"
- Revert "arg-cache: Save space by not caching GType"
- gi/wrapperutils: Move gjs_get_string_id() into resolve()
implementations
- overrides/Gtk: Set BuilderScope in class init
- Fix readline build on certain systems
==== gnome-desktop ====
Version update (3.38.2 -> 3.38.3)
Subpackages: gnome-version libgnome-desktop-3-19 libgnome-desktop-3_0-common typelib-1_0-GnomeDesktop-3_0
- Update to version 3.38.3:
+ Updated translations.
==== gnome-packagekit ====
- Add gnome-packagekit-bring-back-logout-support.patch: Add back
logout support(glgo#GNOME/gnome-packagekit!2, bsc#1180247).
==== gnome-terminal ====
Version update (3.38.1 -> 3.38.2)
Subpackages: nautilus-extension-terminal
- Update to version 3.38.2:
+ search:
- Use timestamp when presenting the search dialogue
- Make sure to focus the search dialogue
+ desktop: Set StartupWMClass
+ nautilus: Pass environment when creating a terminal in the
current directory
+ Updated translations.
==== gvfs ====
Version update (1.46.1 -> 1.46.2)
Subpackages: gvfs-backends
- Update to version 1.46.2:
+ ftp: Prevent source file removal in case of transfer failure.
+ trash: Explicitly cancel file monitor to prevent deadlock.
+ smb:
- Set fast content type independently of other attributes.
- smb: Report progress when move operation is done.
+ google: Set the display name for the root folder also.
+ Updated translations.
==== hplip ====
Version update (3.20.9 -> 3.20.11)
- Update to 3.20.11
* Upstream version update and bug fixes (no new printers)
* Fix crash in hp-doctor if python3-qt4 is not installed
(bsc#1180724)
Added patch: dcheck.py-fix-crash-in-Qt4-version-check.patch
==== libpwquality ====
Subpackages: libpwquality-tools libpwquality1 pam_pwquality
- Do not use macro %make_build pre SLE-15
Use "make -O %{?_smp_mflags}" instead
[libpwquality.spec]
==== libqt5-qtwebengine ====
- Drop baselibs.conf, not needed after libksysguard5 got adjusted
==== llvm11 ====
Version update (11.0.0 -> 11.0.1)
- Update to version 11.0.1.
* This release contains bug-fixes for the LLVM 11.0.0 release.
This release is API and ABI compatible with 11.0.0.
- Rebase llvm-do-not-install-static-libraries.patch.
- Drop obsolete compiler-rt-dont-compile-assembly-files-as-c.patch.
- Make documentation tarballs more reproducible.
==== open-lldp ====
Version update (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
Subpackages: liblldp_clif1
- Update to version v1.1+36.e926f7172b96:
* tx: rename variable
* event_iface: only set rcv buf size if too small (bsc#1175570)
* tx: when operating in rx-only mode don't send a port shutdown pdu
* Update .travis.yml
* vdp22: manpage typo
* lldptool: fix manpage
* lldp_head: remove all references
* add_rtattr: only copy if data is provided
* autoconf: convenience to setup asan and ubsan
* Post 1.1 release
==== openSUSE-build-key ====
- update openSUSE:Factory:zSystems signing key to current version:
pub rsa2048 2016-02-17 [SC] [expires: 2022-08-16]
F00C20EF1E1114C9B5F69B2276CA4244F6AB3975
openSUSE:Factory:zSystems OBS Project <openSUSE:Factory:zSystems@build.opensuse.org>
==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server
- Update openssh-8.1p1-audit.patch (bsc#1180501). This fixes
occasional crashes on connection termination caused by accessing
freed memory.
==== perl-libwww-perl ====
Version update (6.51 -> 6.52)
- updated to 6.52
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.52 2021-01-07 21:20:51Z
- Remove block of code which creates message-digest auth request field
(GH#369) (Olaf Alders)
==== polkit-default-privs ====
Version update (1550+20201208.135bf51 -> 1550+20210111.f725c25)
- Update to version 1550+20210111.f725c25:
* polkit-rules-whitelist: add brltty brlapi group rule (bsc#1180593)
==== python-rpm-macros ====
Version update (20200824.8fa42a7 -> 20210112.86f4d9d)
- Update to version 20210112.86f4d9d:
* fix gh#openSUSE/python-rpm-macros#84: python_sysconfig_ macros
- Update to version 20201207.2177fcf:
* README update after merge
- Update to version 20201207.259cdda:
* Update python_expand description in README
* python_expand to basename only
- Update to version 20201204.32a910e:
* fix print_provided_flavor again
- Update to version 20201203.5331183:
* fix print_provided_flavor
- Update to version 20201128.669edb3:
* fix provides (for python-numpy f2py, in gh#openSUSE/python-rpm-macros#66)
- Update to version 20201123.6978323:
* also rewrite subpackage_only default providers
* pytest: ignore _build dirs for all flavors
- Update to version 20201119.6bb5f69:
* add default provider properties
* don't replace %name, for subpackage_only
* expand parameters for subpackage_only packages
- Update to version 20201112.a4c80dc:
* handle python_subpackage_only, fixes gh#openSUSE/python-rpm-macros#73
* define default providers for pythonX from pythonXY flavors: fixes #69
- Update to version 20201103.cec67c2:
* document python_find_lang
* add python_find_lang and allow to specify in %python_files. Fixes #5
- Update to version 20201102.31ccfc2:
* fix python_clone shebang replacement
* one less expansion for python_exec
* expand default %python_ macros earlier
* update README for multiple flavors
* more command delimiters for %python_expand
- Update to version 20201022.7f87908:
* Add python36 and python38 flavours.
- Update to version 20201021.adb6953:
* Prepare for multiple python3 flavors
- Remove multiple_flavors.patch as it is included in the upstream
tarball.
- Update to version 20201016.5d22545:
* fix whitespace after escape in compileall macro
- Update to version 20201016.db09189:
* Delete pycache files before compilealll
* Update macros/010-common-defs
* Reword compileall
* mention pyproject.toml and link to PEP517 and PEP518
* add description for pyunittest macro
* add description for python_compileall macro
* add description for pyproject macros
* add python_compileall macro and use it in pyproject_install
* disable pip version check: no connection to pypi.org
- Update multiple_flavors.patch to generate correct names of the
python binary.
- %__#FLAVOR# should be defined as
/usr/bin/python%{#FLAVOR#_version} not just /usr/bin/#FLAVOR#
- Add patch multiple_flavors.patch which makes compile_macros.sh
generate alternative flavours as well.
==== qalculate ====
Version update (3.15.0 -> 3.16.1)
- Update to 3.16.1:
* Fix saving of local data objects (user data was deleted)
* Fix kWh unit
* Always place units with prefixes before other units
* Improve prefixes when expression contains both units that do and
units that do not use prefixes
* Add daysInMonth() function
- Update to 3.16.0:
* Chain syntax (e.g. 1+2*3=(1+2)*3=6)
* Make all currency codes (except CUP and KGS) case insensitive
* Fixes for floating point format output
* Fix segfault on factorization in qalc
* Fix saving of local data objects
* Fix BYN exchange rate url
* Redesigned expression, status, and result widgets
* Chain mode (GUI)
* Configurable calculate-as-you-type add to history delay
* Improved completion
* Support for qalc commands in GUI (expression is interpreted as command
if it begins with '/')
* Support for reading expressions and commands from file in GUI (as in
qalc, using command line option -f/--file)
* Use arrow instead of "to" by default
* French GUI translation
* Minor bug fixes and feature improvements
- ran spec-cleaner
==== sbc ====
Version update (1.4 -> 1.5)
- update to 1.5:
* Add support for SSE primitives.
==== selinux-policy ====
Version update (20201029 -> 20210111)
Subpackages: selinux-policy-targeted
- Update to version 20210111
- Drop fix_policykit.patch (integrated upstream)
- Adjust fix_iptables.patch
- update container policy
==== tracker ====
Version update (3.0.2 -> 3.0.3)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files
- Update to version 3.0.3:
+ Avoid FTS5 table inconsistency with SQLite >= 3.34.0.
+ Fix out parameter in VAPI/Vala files.
==== tracker-miners ====
Version update (3.0.3 -> 3.0.4)
Subpackages: tracker-miner-files
- Update to version 3.0.4:
+ Improve time_t interpretation for negative timestamps.
+ Fix "tracker3 search --folders".
+ Fix crasher after tracker-miner-fs SPARQL failures.
+ CI fixes.
==== vim ====
Version update (8.2.2129 -> 8.2.2327)
Subpackages: vim-data-common vim-small
- Updated to version 8.2.2327, fixes the following problems
* Insert mode completion messages end up in message history.
* Vim9: crash when lambda uses same var as assignment.
* Padding not drawn properly for popup window with title.
* Vim9: checking for a non-empty string is too strict.
* Vim9: get E1099 when autocmd triggered in builtin function.
* Vim9: #{ still seen as start of dict in some places.
* Vim9: Using uninitialized variable.
* Vim9: :echo and :execute give error for empty argument.
* Vim9: "exit_cb" causes Vim to exit.
* Vim9: unreachable code in assignment.
* Build failure with tiny features.
* A user command with try/catch may not catch an expression error.
* Memory leak when heredoc is not terminated.
* Vim9: dead code in compiling :unlet.
* Vim9: some corner cases not tested.
* Vim9: concatenating lists does not adjust type of result.
* Vim9: automatic conversion of number to string for dict key.
* Quickfix window title not updated in all tab pages.
* Vim9: crash when user command doesn't match.
* Popupwin test for latin1 sometimes fails.
* Github actions CI isn't used for all available platforms.
* $dir not expanded when configure checks for moonjit.
* screenpos() does not include the WinBar offset.
* Popupwin test for latin1 still fails sometimes.
* Popupwin test for terminal buffer fails sometimes.
* Warning from Github actions for code analysis.
* Github actions run on pusing a tag.
* Vim9: can delete a Vim9 script variable from a function.
* CI on cirrus times out, coveralls doesn't always run.
* Vim9: when declaring a list it is not allocated yet, causing a following
extend() to fail.
* Various typos.
* Arguments -T and -x not tested yet.
* Vim9: Cannot load or store autoload variables.
* Crash when discarded exception is the current exception.
* Vim9: autoload function doesn't work in script that starts with an upper
case letter.
* Vim9: assignment to dict member does not work.
* Auto format doesn't work when deleting text.
* Vim9: assign test fails. (Elimar Riesebieter)
* Vim9: error for assigning to dict of dict.
* Vim9: test leaves file behind.
* Vim9: a global function defined in a :def function fails if it uses
the context.
* Valgrind warning for using uninitialized value.
* Vim9: number of arguments is not always checked. (Yegappan Lakshmanan)
* Vim9: get internal error when assigning to undefined variable.
* Mac version doesn't specify the CPU architecture.
* Github actions: clang-11 handling suboptimal.
* Crash with a sequence of fold commands.
* Pattern "^" does not match if the first character in the line is
combining. (Rene Kita)
* Python 3: non-utf8 character cannot be handled.
* Vim9: crash when indexing a dict with a number.
* Vim9: test for error after error is flaky.
* Valgrind warnings for using uninitialized value.
* Vim9: value of 'magic' is still relevant.
* Vim9: value of 'edcompatible' and 'gdefault' are used.
* Vim9: no error when using "2" for a line number.
* BufUnload is not triggered for the quickfix dummy buffer.
* Vim9: error when using 'opfunc'.
* Python 3 test fails sometimes. (Christian Brabandt)
* Vim9: crash when calling global function from :def function.
* Cannot repeat a command that uses the small delete register.
* Vim9: crash when compiled with EXITFREE.
* Vim9: using wrong name with lambda in nested function.
* Codecov on github actions fails.
* Vim9: can change constant in :def function.
* Vim9: cannot use :const or :final at the script level.
* Failing tests for :const.
* :version output has extra spaces in compile and link command.
* Assert arguments order reversed.
* ml_get error when resizing window and using text property.
* First write after setting 'eol' does not have NL added. (Tomá? Janou?ek)
* Vim9: lambda without white space around -> is confusing.
* Write file test fails on MS-Windows.
* Write file test still fails on MS-Windows.
* Moodle gift files are not recognized.
* Vim9: using -> both for method and lambda is confusing.
* Vim9: memory leak when parsing lambda fails.
* :exe command line completion only works for first argument.
* Illegal memory access if popup menu items are changed while the menu is
visible. (Tomá? Janou?ek)
* Vim9: after reloading a script variable index may be invalid.
* Vim9: return type of => lambda not parsed.
* Vim9: allocating a type to set TTFLAG_BOOL_OK.
* Vim9: lambda with => does not work at the script level.
* Checking white space around -> is not backwards compatible.
* ":e#" does not give a warning for missing white space.
* Vim9: `=expr` not recognized in global command.
* Vim9: range with missing colon can be hard to spot.
* Vim9: command modifiers not restored in catch block.
* Vim9: failure if passing more arguments to a lambda than expected.
* Vim9: method call with expression not supported.
* Vim9: memory leak when parsing nested parenthesis.
* If <Down> is mapped on the command line 'wildchar' is inserted.
* Vim9: cannot keep script variables when reloading.
* Vim9: Reloading marks a :def function as deleted.
* Vim9: crash if script reloaded with different variable type.
* Vim9: error when using :import in legacy script twice.
* Vim9: script test fails.
* Vim9: recognizing lambda is too complicated.
* Vim9: cannot use ":e #" because # starts a comment.
* build failure without the +eval feature.
* Vim9: insert completion runs into error.
* When "--remote file" is used "file" is not reloaded.
* Compiler error for falling through into next case.
* Cannot convert a byte index into a character index.
* Command line wildmenu test often fails with Unix GUI.
* Build failure with some Ruby versions.
* 'scroll' option can change when setting the statusline or tabline but
the option context is not updated.
* Vim9: cannot load a Vim9 script without the +eval feature.
* Vim9: concatenating lines with backslash is inconvenient.
* Clientserver test fails if full path is used.
* Build with Ruby and clang may fail.
* Vim9: line continuation with bar does not work at script level.
* Crash when popup mask contains zeroes.
* Crash when making the window width of the not-current window negative.
* Vim9: return value of winrestcmd() cannot be executed.
* Cursor keys not recognized at the hit-Enter prompt after executing an
external command.
* VMS: various smaller problems.
* ASAN error on exit with GUI.
* Termcodes test is flaky when used over ssh with X forwarding.
* Vim9: sublist is ambiguous.
* Test failures in legacy script.
* Vim9: crash when using lambda without return type in dict.
* Vim9: expr test fails.
* Vim9: bool option type is number.
* Tcl test fails.
* Vim9: cannot use function( after line break in :def function.
* Vim9: using -> for lambda is ambiguous.
* Not all OCaml related files are detected.
* Test_Executable() fails when using chroot.
* Window resize test fails in very wide terminal.
* Vim9: boolean option gets string type.
* Vim9: converting bool to string prefixes v:.
* Vim9: compilation error with try-catch in skipped block.
* Vim9: no error for mismatched :endfunc or :enddef.
* Error message for missing endfunc/enddef is last line.
* Vim9: it can be hard to see where white space is missing.
* Vim9: cannot use unlet for a dict member.
* Vim9: list unpack seen as declaration.
* Not all :hardcopy code covered by tests.
* Warning for size_t to int conversion. (Randall W. Morris)
* ml_get error when changing hidden buffer in Python.
* Vim9: extend() can violate the type of a variable.
* Build failure.
* badge for Travis is outdated.
* CTRL-C not recognized in Mintty.
* List of distributed files is outdated.
* Missing backslash.
* Falling back to old regexp engine can some patterns.
* Vim9: memory leak with catch in skipped block.
* Fuzzy matching doesn't give access to the scores.
* Vim9: compiled "wincmd" cannot be followed by bar.
* Length check mismatch with argument of strncmp(). (Christian Brabandt)
* Vim9: crash when lambda has fewer arguments than expected.
* Vim9: cannot set an option to a boolean value.
* Vim9: cannot set an option to a false.
* Sort test fails when locale is Canadian English. (Neil H Watson)
* Sort test fails when locale is French Canadian.
* Vim9: line break and comment not always skipped.
* Vim9: 'cpo' can become empty.
* Vim9: unlet of global variable cannot be compiled.
* Vim9: cannot use "null" for v:null.
* Vim: expr test fails.
* Build failure with Motif. (Tony Mechelynck)
* VMS: a few remaining problems.
* Incsearch does not detect empty pattern properly.
* Cannot use CTRL-N and CTRL-P in a popup menu.
* Vim9: cannot set 'number' to a boolean value.
* Vim9: comment right after "(" of function not recognized.
* Vim9: invalid memory access making error message flaky.
* Vim9: wrong order on type stack when using dict.
* Vim9: cannot unlet a dict or list item.
* Vim9: using an option value may use uninitialized memory.
* Vim9: backtick expansion doesn't work for :foldopen.
* Vim9: no test for unletting an imported variable.
* Vim9: "++var" and "--var" are silently accepted.
* Vim9: when using function reference type is not checked.
* A shell command in the vimrc causes terminal output.
* Vim9: no error when assigning lambda to funcref without return value.
* 0o777 not recognized as octal.
* Vim9: winsaveview() return type is too generic.
* Vim9: cannot assign to a variable that shadows a command modifier.
* Build failure with Ruby 3.0 and 32 bits.
* Vim9: using uninitialized field when parsing range. ":silent!" not
respected when parsing range fails.
* Vim9: returning zero takes two instructions.
* Vim9: "enddef" as dict key misintepreted as function end.
* Vim9: cannot list a lambda function.
* Vim9: command modifier before list unpack doesn't work.
* Vim9: string and list index work differently.
* "exptype_T" can be read as "expected type".
* Vim9: no error for comparing bool with string.
* Vim9: cannot nest closures.
* Vim9: closure nested limiting to one level.
* Vim9: error when inferring type from empty dict/list.
* Not easy to get mark en cursor posotion by character count.
* Vim9: crash if map() changes the item type.
* Build error with +eval feature but without +spell.
* Debugging code included.
==== vte ====
Version update (0.62.1 -> 0.62.2)
- Update to version 0.62.2:
+ widget:
- Limit select-all to the writable region not including the
scrollback
- Fix idle child-exited signal after dispose
+ app:
- Fix search next/prev button sensitivity
- Fix background image drawing
+ lib:
- desc is not a smart pointer in 0.62
- Fix unused variable warning when not using getrlimit
- Use sysconf on macos to get the upper limit of number of FDs
- Sanitise the passed-in font description
- Add missing nullable annotation to spawn child setup
functions
==== yast2 ====
Version update (4.3.46 -> 4.3.49)
- Keep the libzypp target open to verify other packages
(bsc#1180858, related to the previous fix bsc#1179773)
- 4.3.49
- Ensure the libzypp target is initialized when downloading
the skelcd packages (to verify the GPG signatures) (bsc#1179773)
- Log more details when several resolvables (instead of a single
one) are unexpectedly found (related to bsc#1176276)
- 4.3.48
- Fix default for hibernation proposal (bsc#1169874)
- 4.3.47
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ca-certificates (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
container-selinux (2.150.0 -> 2.154.0)
haproxy (2.3.2+git0.d522db763 -> 2.3.4+git0.10189c965)
libpwquality
open-lldp (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
openSUSE-build-key
openssh
python-rpm-macros (20200824.8fa42a7 -> 20210112.86f4d9d)
salt (3000.3 -> 3002.2)
selinux-policy (20201029 -> 20210111)
vim (8.2.2129 -> 8.2.2327)
yast2 (4.3.46 -> 4.3.49)
=== Details ===
==== ca-certificates ====
Version update (2+git20201002.34daf7f -> 2+git20210111.eeae41c)
- Update to version 2+git20210111.eeae41c:
* Make certbundle.run container friendly
==== container-selinux ====
Version update (2.150.0 -> 2.154.0)
- Update to version 2.154.0
- Allow confined user domains to run confined container domains.
- Allow all containers to use nfs shares, iff virt_use_nfs boolean
is enabled.
- Allow containers to read nsfs file systems.
- KVM Container need to use tunnel sockets created by runtime.
==== haproxy ====
Version update (2.3.2+git0.d522db763 -> 2.3.4+git0.10189c965)
- Update to version 2.3.4+git0.10189c965:
* [RELEASE] Released version 2.3.4
* MINOR: contrib/prometheus-exporter: use fill_info for process dump
* MINOR: contrib/prometheus-exporter: avoid connection close header
* BUG/MINOR: init: enforce strict-limits when using master-worker
* BUG/MINOR: check: Don't perform any check on servers defined in a frontend
* BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
* Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
* MINOR: reg-tests: add base prometheus test
* BUG/MINOR: reg-tests: fix service dependency script
* BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
* MINOR: reg-tests: add a way to add service dependency
- Update to version 2.3.3+git0.9233c2143:
* [RELEASE] Released version 2.3.3
* BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
* DOC: Add maintainers for the Prometheus exporter
* SCRIPTS: announce-release: fix typo in help message
* DOC: fix some spelling issues over multiple files
* MINOR: contrib/prometheus-exporter: export build_info
* CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
* BUILD: Makefile: exclude broken tests by default
* MINOR: converter: adding support for url_enc
* BUG/MINOR: srv: do not cleanup idle conns if pool max is null
* BUG/MINOR: srv: do not init address if backend is disabled
* SCRIPTS: make announce release support preparing announces before tag exists
* SCRIPTS: improve announce-release to support different tag and versions
* BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
* DOC: Improve the message printed when running `make` w/o `TARGET`
* BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
* BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
* BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
* MINOR: atomic: don't use ; to separate instruction on aarch64.
* BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
* BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
* DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
* BUG/MINOR: dns: SRV records ignores duplicated AR records
* BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
* BUILD: plock: remove dead code that causes a warning in gcc 11
* CONTRIB: debug: address "poll" utility build on non-linux platforms
* CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
* CONTRIB: halog: mark the has_zero* functions unused
* CONTRIB: halog: fix build issue caused by %L printf format
* BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
* BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
* BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
* BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
* BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
* REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
* BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
* BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
* BUG/MINOR: tools: Reject size format not starting by a digit
* BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
* MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
* BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
* BUG/MINOR: http-check: Use right condition to consider HTX message as full
* DOC: email change of the DeviceAtlas maintainer
* BUG/MEDIUM: spoa/python: Fixing references to None
* BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
* BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
* BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
* DOC: spoa/python: Fixing typos in comments
* DOC: spoa/python: Rephrasing memory related error messages
* DOC: spoa/python: Fixing typo in IP related error messages
* BUG/MAJOR: spoa/python: Fixing return None
* MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
* MINOR: listener: now use a generic add_listener() function
* MINOR: listener: automatically set the port when creating listeners
* MINOR: protocol: add a ->set_port() helper to address families
* BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
* BUG/MINOR: listener: use sockaddr_in6 for IPv6
* DOC/MINOR: Fix formatting in Management Guide
* BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
* BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
* BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
* MINOR: cli: add a function to look up a CLI service description
* MINOR: actions: add a function returning a service pointer from its name
* MINOR: actions: Export actions lookup functions
* BUG/MINOR: lua: Some lua init operation are processed unsafe
* BUG/MINOR: lua: Post init register function are not executed beyond the first one
* BUG/MINOR: lua: lua-load doesn't check its parameters
* BUG/MINOR: lua: missing "\n" in error message
* BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
* BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
* BUG/MEDIUM: local log format regression.
* BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
* MINOR: task: remove __tasklet_remove_from_tasklet_list()
* BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
* MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
==== libpwquality ====
Subpackages: libpwquality-tools libpwquality1 pam_pwquality
- Do not use macro %make_build pre SLE-15
Use "make -O %{?_smp_mflags}" instead
[libpwquality.spec]
==== open-lldp ====
Version update (1.1+18.0e969d0edcc4 -> 1.1+36.e926f7172b96)
Subpackages: liblldp_clif1
- Update to version v1.1+36.e926f7172b96:
* tx: rename variable
* event_iface: only set rcv buf size if too small (bsc#1175570)
* tx: when operating in rx-only mode don't send a port shutdown pdu
* Update .travis.yml
* vdp22: manpage typo
* lldptool: fix manpage
* lldp_head: remove all references
* add_rtattr: only copy if data is provided
* autoconf: convenience to setup asan and ubsan
* Post 1.1 release
==== openSUSE-build-key ====
- update openSUSE:Factory:zSystems signing key to current version:
pub rsa2048 2016-02-17 [SC] [expires: 2022-08-16]
F00C20EF1E1114C9B5F69B2276CA4244F6AB3975
openSUSE:Factory:zSystems OBS Project <openSUSE:Factory:zSystems@build.opensuse.org>
==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server
- Update openssh-8.1p1-audit.patch (bsc#1180501). This fixes
occasional crashes on connection termination caused by accessing
freed memory.
==== python-rpm-macros ====
Version update (20200824.8fa42a7 -> 20210112.86f4d9d)
- Update to version 20210112.86f4d9d:
* fix gh#openSUSE/python-rpm-macros#84: python_sysconfig_ macros
- Update to version 20201207.2177fcf:
* README update after merge
- Update to version 20201207.259cdda:
* Update python_expand description in README
* python_expand to basename only
- Update to version 20201204.32a910e:
* fix print_provided_flavor again
- Update to version 20201203.5331183:
* fix print_provided_flavor
- Update to version 20201128.669edb3:
* fix provides (for python-numpy f2py, in gh#openSUSE/python-rpm-macros#66)
- Update to version 20201123.6978323:
* also rewrite subpackage_only default providers
* pytest: ignore _build dirs for all flavors
- Update to version 20201119.6bb5f69:
* add default provider properties
* don't replace %name, for subpackage_only
* expand parameters for subpackage_only packages
- Update to version 20201112.a4c80dc:
* handle python_subpackage_only, fixes gh#openSUSE/python-rpm-macros#73
* define default providers for pythonX from pythonXY flavors: fixes #69
- Update to version 20201103.cec67c2:
* document python_find_lang
* add python_find_lang and allow to specify in %python_files. Fixes #5
- Update to version 20201102.31ccfc2:
* fix python_clone shebang replacement
* one less expansion for python_exec
* expand default %python_ macros earlier
* update README for multiple flavors
* more command delimiters for %python_expand
- Update to version 20201022.7f87908:
* Add python36 and python38 flavours.
- Update to version 20201021.adb6953:
* Prepare for multiple python3 flavors
- Remove multiple_flavors.patch as it is included in the upstream
tarball.
- Update to version 20201016.5d22545:
* fix whitespace after escape in compileall macro
- Update to version 20201016.db09189:
* Delete pycache files before compilealll
* Update macros/010-common-defs
* Reword compileall
* mention pyproject.toml and link to PEP517 and PEP518
* add description for pyunittest macro
* add description for python_compileall macro
* add description for pyproject macros
* add python_compileall macro and use it in pyproject_install
* disable pip version check: no connection to pypi.org
- Update multiple_flavors.patch to generate correct names of the
python binary.
- %__#FLAVOR# should be defined as
/usr/bin/python%{#FLAVOR#_version} not just /usr/bin/#FLAVOR#
- Add patch multiple_flavors.patch which makes compile_macros.sh
generate alternative flavours as well.
==== salt ====
Version update (3000.3 -> 3002.2)
Subpackages: python3-salt salt-master salt-minion salt-standalone-formulas-configuration
- Remove deprecated warning that breaks minion execution when "server_id_use_crc" opts is missing
- Added:
* remove-deprecated-warning-that-breaks-miniion-execut.patch
- Revert wrong zypper patch to support vendorchanges flags on pkg.install
- Added:
* revert-add-patch-support-for-allow-vendor-change-opt.patch
- Force zyppnotify to prefer Packages.db than Packages if it exists
- Allow vendor change option with zypper
- Add pkg.services_need_restart
- Fix for file.check_perms to work with numeric uid/gid
- Added:
* force-zyppnotify-to-prefer-packages.db-than-packages.patch
* fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch
* add-patch-support-for-allow-vendor-change-option-wit.patch
* add-pkg.services_need_restart-302.patch
- virt: more network support
Add more network and PCI/USB host devices passthrough support
to virt module and states
- Added:
* open-suse-3002.2-virt-network-311.patch
- Bigvm backports
virt consoles, CPU tuning and topology, and memory tuning.
- Added:
* open-suse-3002.2-bigvm-310.patch
- Fix pkg states when DEB package has "all" arch
- Added:
* fix-aptpkg.normalize_name-when-package-arch-is-all.patch
- Do not force beacons configuration to be a list.
Revert https://github.com/saltstack/salt/pull/58655
- Added:
* revert-fixing-a-use-case-when-multiple-inotify-beaco.patch
- Drop wrong virt capabilities code after rebasing patches
- Added:
* drop-wrong-virt-capabilities-code-after-rebasing-pat.patch
- Update to Salt release version 3002.2
- See release notes: https://docs.saltstack.com/en/latest/topics/releases/3002.2.html
- Modified:
* add-environment-variable-to-know-if-yum-is-invoked-f.patch
* let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch
* fix-__mount_device-wrapper-254.patch
* opensuse-3000.2-virt-backports-236-257.patch
* fixes-cve-2018-15750-cve-2018-15751.patch
* strip-trailing-from-repo.uri-when-comparing-repos-in.patch
* include-aliases-in-the-fqdns-grains.patch
* support-config-non-root-permission-issues-fixes-u-50.patch
* support-for-btrfs-and-xfs-in-parted-and-mkfs.patch
* fix-batch_async-obsolete-test.patch
* early-feature-support-config.patch
* changed-imports-to-vendored-tornado.patch
* avoid-excessive-syslogging-by-watchdog-cronjob-58.patch
* add-hold-unhold-functions.patch
* do-not-crash-when-there-are-ipv6-established-connect.patch
* add-docker-logout-237.patch
* add-saltssh-multi-version-support-across-python-inte.patch
* fix-a-test-and-some-variable-names-229.patch
* implement-network.fqdns-module-function-bsc-1134860-.patch
* debian-info_installed-compatibility-50453.patch
* fix-bsc-1065792.patch
* use-current-ioloop-for-the-localclient-instance-of-b.patch
* restore-default-behaviour-of-pkg-list-return.patch
* virt-adding-kernel-boot-parameters-to-libvirt-xml-55.patch
* use-threadpool-from-multiprocessing.pool-to-avoid-le.patch
* add-migrated-state-and-gpg-key-management-functions-.patch
* info_installed-works-without-status-attr-now.patch
* bsc-1176024-fix-file-directory-user-and-group-owners.patch
* opensuse-3000.3-spacewalk-runner-parse-command-250.patch
* fix-aptpkg-systemd-call-bsc-1143301.patch
* fix-memory-leak-produced-by-batch-async-find_jobs-me.patch
* ansiblegate-take-care-of-failed-skipped-and-unreacha.patch
* calculate-fqdns-in-parallel-to-avoid-blockings-bsc-1.patch
* add-cpe_name-for-osversion-grain-parsing-u-49946.patch
* python3.8-compatibility-pr-s-235.patch
* backport-virt-patches-from-3001-256.patch
* do-not-break-repo-files-with-multiple-line-values-on.patch
* enable-passing-a-unix_socket-for-mysql-returners-bsc.patch
* accumulated-changes-required-for-yomi-165.patch
* support-transactional-systems-microos-271.patch
* use-adler32-algorithm-to-compute-string-checksums.patch
* remove-vendored-backports-abc-from-requirements.patch
* fall-back-to-pymysql.patch
* xen-disk-fixes-264.patch
* fix-for-temp-folder-definition-in-loader-unit-test.patch
* batch.py-avoid-exception-when-minion-does-not-respon.patch
* move-server_id-deprecation-warning-to-reduce-log-spa.patch
* avoid-traceback-when-http.query-request-cannot-be-pe.patch
* fixed-bug-lvm-has-no-parttion-type.-the-scipt-later-.patch
* fix-zypper-pkg.list_pkgs-expectation-and-dpkg-mockin.patch
* grains-master-can-read-grains.patch
* remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch
* fix-wrong-test_mod_del_repo_multiline_values-test-af.patch
* accumulated-changes-from-yomi-167.patch
* allow-passing-kwargs-to-pkg.list_downloaded-bsc-1140.patch
* loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch
* add-astra-linux-common-edition-to-the-os-family-list.patch
* fix-async-batch-race-conditions.patch
* batch-async-catch-exceptions-and-safety-unregister-a.patch
* activate-all-beacons-sources-config-pillar-grains.patch
* drop-wrong-mock-from-chroot-unit-test.patch
* fix-for-suse-expanded-support-detection.patch
* fix-novendorchange-option-284.patch
* fix-virt.update-with-cpu-defined-263.patch
* add-batch_presence_ping_timeout-and-batch_presence_p.patch
* fix-git_pillar-merging-across-multiple-__env__-repos.patch
* add-publish_batch-to-clearfuncs-exposed-methods.patch
* fix-unit-tests-for-batch-async-after-refactor.patch
* add-new-custom-suse-capability-for-saltutil-state-mo.patch
* prevent-test_mod_del_repo_multiline_values-to-fail.patch
* x509-fixes-111.patch
* adds-explicit-type-cast-for-port.patch
* run-salt-master-as-dedicated-salt-user.patch
* remove-msgpack-1.0.0-requirement-in-the-installed-me.patch
* switch-firewalld-state-to-use-change_interface.patch
* option-to-en-disable-force-refresh-in-zypper-215.patch
* fix-async-batch-multiple-done-events.patch
* make-setup.py-script-to-not-require-setuptools-9.1.patch
* add-custom-suse-capabilities-as-grains.patch
* don-t-call-zypper-with-more-than-one-no-refresh.patch
* transactional_update-unify-with-chroot.call.patch
* fix-ipv6-scope-bsc-1108557.patch
* temporary-fix-extend-the-whitelist-of-allowed-comman.patch
* opensuse-3000-libvirt-engine-fixes-251.patch
* fix-grains.test_core-unit-test-277.patch
* pkgrepo-support-python-2.7-function-call-295.patch
* prevent-import-errors-when-running-test_btrfs-unit-t.patch
* do-not-make-ansiblegate-to-crash-on-python3-minions.patch
* fix-issue-2068-test.patch
* ensure-virt.update-stop_on_reboot-is-updated-with-it.patch
* remove-deprecated-usage-of-no_mock-and-no_mock_reaso.patch
* read-repo-info-without-using-interpolation-bsc-11356.patch
* fix-zypper.list_pkgs-to-be-aligned-with-pkg-state.patch
* fixing-streamclosed-issue.patch
* virt._get_domain-don-t-raise-an-exception-if-there-i.patch
* loop-fix-variable-names-for-until_no_eval.patch
* improve-batch_async-to-release-consumed-memory-bsc-1.patch
* prevent-systemd-run-description-issue-when-running-a.patch
* integration-of-msi-authentication-with-azurearm-clou.patch
* add-all_versions-parameter-to-include-all-installed-.patch
* sanitize-grains-loaded-from-roster_grains.json.patch
* fix-failing-unit-tests-for-batch-async.patch
* reintroducing-reverted-changes.patch
* fix-for-log-checking-in-x509-test.patch
* do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch
* opensuse-3000-virt-defined-states-222.patch
* add-virt.all_capabilities.patch
* prevent-logging-deadlock-on-salt-api-subprocesses-bs.patch
* fix-cve-2020-25592-and-add-tests-bsc-1178319.patch
* fix-unit-test-for-grains-core.patch
* async-batch-implementation.patch
* apply-patch-from-upstream-to-support-python-3.8.patch
* remove-unnecessary-yield-causing-badyielderror-bsc-1.patch
* re-adding-function-to-test-for-root.patch
* zypperpkg-filter-patterns-that-start-with-dot-244.patch
* fix-a-wrong-rebase-in-test_core.py-180.patch
* add-multi-file-support-and-globbing-to-the-filetree-.patch
* fix-the-removed-six.itermitems-and-six.-_type-262.patch
* zypperpkg-ignore-retcode-104-for-search-bsc-1176697-.patch
* add-standalone-configuration-file-for-enabling-packa.patch
* make-profiles-a-package.patch
* return-the-expected-powerpc-os-arch-bsc-1117995.patch
* batch_async-avoid-using-fnmatch-to-match-event-217.patch
* do-not-raise-streamclosederror-traceback-but-only-lo.patch
* provide-the-missing-features-required-for-yomi-yet-o.patch
* make-aptpkg.list_repos-compatible-on-enabled-disable.patch
* backport-a-few-virt-prs-272.patch
* add-supportconfig-module-for-remote-calls-and-saltss.patch
* run-salt-api-as-user-salt-bsc-1064520.patch
* path-replace-functools.wraps-with-six.wraps-bsc-1177.patch
* get-os_arch-also-without-rpm-package-installed.patch
* invalidate-file-list-cache-when-cache-file-modified-.patch
* xfs-do-not-fails-if-type-is-not-present.patch
* prevent-ansiblegate-unit-tests-to-fail-on-ubuntu.patch
- Removed:
* do-not-report-patches-as-installed-when-not-all-the-.patch
* add-pkg.services_need_restart-302.patch
* removes-unresolved-merge-conflict-in-yumpkg-module.patch
* add-missing-fun-for-returns-from-wfunc-executions.patch
* force-zyppnotify-to-prefer-packages.db-than-packages.patch
* decide-if-the-source-should-be-actually-skipped.patch
* make-lazyloader.__init__-call-to-_refresh_file_mappi.patch
* avoid-has_docker-true-if-import-messes-with-salt.uti.patch
* fix-for-bsc-1102248-psutil-is-broken-and-so-process-.patch
* set-passphrase-for-salt-ssh-keys-to-empty-string-293.patch
* fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch
* add-patch-support-for-allow-vendor-change-option-wit.patch
* opensuse-3000.3-bigvm-backports-303.patch
* msgpack-support-versions-1.0.0.patch
* fix-typo-on-msgpack-version-when-sanitizing-msgpack-.patch
* use-full-option-name-instead-of-undocumented-abbrevi.patch
* add-missing-_utils-at-loader-grains_func.patch
* loader-invalidate-the-import-cachefor-extra-modules.patch
* fix-for-return-value-ret-vs-return-in-batch-mode.patch
* make-salt.ext.tornado.gen-to-use-salt.ext.backports_.patch
- Force zyppnotify to prefer Packages.db than Packages if it exists
- Allow vendor change option with zypper
- Added:
* add-patch-support-for-allow-vendor-change-option-wit.patch
* force-zyppnotify-to-prefer-packages.db-than-packages.patch
- Add pkg.services_need_restart
- Bigvm backports:
virt consoles, CPU tuning and topology, and memory tuning.
- Fix for file.check_perms to work with numeric uid/gid
- Added:
* add-pkg.services_need_restart-302.patch
* fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch
* opensuse-3000.3-bigvm-backports-303.patch
- Change 'Requires(pre)' to 'Requires' for salt-minion package (bsc#1083110)
==== selinux-policy ====
Version update (20201029 -> 20210111)
Subpackages: selinux-policy-targeted
- Update to version 20210111
- Drop fix_policykit.patch (integrated upstream)
- Adjust fix_iptables.patch
- update container policy
==== vim ====
Version update (8.2.2129 -> 8.2.2327)
Subpackages: vim-data-common vim-small
- Updated to version 8.2.2327, fixes the following problems
* Insert mode completion messages end up in message history.
* Vim9: crash when lambda uses same var as assignment.
* Padding not drawn properly for popup window with title.
* Vim9: checking for a non-empty string is too strict.
* Vim9: get E1099 when autocmd triggered in builtin function.
* Vim9: #{ still seen as start of dict in some places.
* Vim9: Using uninitialized variable.
* Vim9: :echo and :execute give error for empty argument.
* Vim9: "exit_cb" causes Vim to exit.
* Vim9: unreachable code in assignment.
* Build failure with tiny features.
* A user command with try/catch may not catch an expression error.
* Memory leak when heredoc is not terminated.
* Vim9: dead code in compiling :unlet.
* Vim9: some corner cases not tested.
* Vim9: concatenating lists does not adjust type of result.
* Vim9: automatic conversion of number to string for dict key.
* Quickfix window title not updated in all tab pages.
* Vim9: crash when user command doesn't match.
* Popupwin test for latin1 sometimes fails.
* Github actions CI isn't used for all available platforms.
* $dir not expanded when configure checks for moonjit.
* screenpos() does not include the WinBar offset.
* Popupwin test for latin1 still fails sometimes.
* Popupwin test for terminal buffer fails sometimes.
* Warning from Github actions for code analysis.
* Github actions run on pusing a tag.
* Vim9: can delete a Vim9 script variable from a function.
* CI on cirrus times out, coveralls doesn't always run.
* Vim9: when declaring a list it is not allocated yet, causing a following
extend() to fail.
* Various typos.
* Arguments -T and -x not tested yet.
* Vim9: Cannot load or store autoload variables.
* Crash when discarded exception is the current exception.
* Vim9: autoload function doesn't work in script that starts with an upper
case letter.
* Vim9: assignment to dict member does not work.
* Auto format doesn't work when deleting text.
* Vim9: assign test fails. (Elimar Riesebieter)
* Vim9: error for assigning to dict of dict.
* Vim9: test leaves file behind.
* Vim9: a global function defined in a :def function fails if it uses
the context.
* Valgrind warning for using uninitialized value.
* Vim9: number of arguments is not always checked. (Yegappan Lakshmanan)
* Vim9: get internal error when assigning to undefined variable.
* Mac version doesn't specify the CPU architecture.
* Github actions: clang-11 handling suboptimal.
* Crash with a sequence of fold commands.
* Pattern "^" does not match if the first character in the line is
combining. (Rene Kita)
* Python 3: non-utf8 character cannot be handled.
* Vim9: crash when indexing a dict with a number.
* Vim9: test for error after error is flaky.
* Valgrind warnings for using uninitialized value.
* Vim9: value of 'magic' is still relevant.
* Vim9: value of 'edcompatible' and 'gdefault' are used.
* Vim9: no error when using "2" for a line number.
* BufUnload is not triggered for the quickfix dummy buffer.
* Vim9: error when using 'opfunc'.
* Python 3 test fails sometimes. (Christian Brabandt)
* Vim9: crash when calling global function from :def function.
* Cannot repeat a command that uses the small delete register.
* Vim9: crash when compiled with EXITFREE.
* Vim9: using wrong name with lambda in nested function.
* Codecov on github actions fails.
* Vim9: can change constant in :def function.
* Vim9: cannot use :const or :final at the script level.
* Failing tests for :const.
* :version output has extra spaces in compile and link command.
* Assert arguments order reversed.
* ml_get error when resizing window and using text property.
* First write after setting 'eol' does not have NL added. (Tomá? Janou?ek)
* Vim9: lambda without white space around -> is confusing.
* Write file test fails on MS-Windows.
* Write file test still fails on MS-Windows.
* Moodle gift files are not recognized.
* Vim9: using -> both for method and lambda is confusing.
* Vim9: memory leak when parsing lambda fails.
* :exe command line completion only works for first argument.
* Illegal memory access if popup menu items are changed while the menu is
visible. (Tomá? Janou?ek)
* Vim9: after reloading a script variable index may be invalid.
* Vim9: return type of => lambda not parsed.
* Vim9: allocating a type to set TTFLAG_BOOL_OK.
* Vim9: lambda with => does not work at the script level.
* Checking white space around -> is not backwards compatible.
* ":e#" does not give a warning for missing white space.
* Vim9: `=expr` not recognized in global command.
* Vim9: range with missing colon can be hard to spot.
* Vim9: command modifiers not restored in catch block.
* Vim9: failure if passing more arguments to a lambda than expected.
* Vim9: method call with expression not supported.
* Vim9: memory leak when parsing nested parenthesis.
* If <Down> is mapped on the command line 'wildchar' is inserted.
* Vim9: cannot keep script variables when reloading.
* Vim9: Reloading marks a :def function as deleted.
* Vim9: crash if script reloaded with different variable type.
* Vim9: error when using :import in legacy script twice.
* Vim9: script test fails.
* Vim9: recognizing lambda is too complicated.
* Vim9: cannot use ":e #" because # starts a comment.
* build failure without the +eval feature.
* Vim9: insert completion runs into error.
* When "--remote file" is used "file" is not reloaded.
* Compiler error for falling through into next case.
* Cannot convert a byte index into a character index.
* Command line wildmenu test often fails with Unix GUI.
* Build failure with some Ruby versions.
* 'scroll' option can change when setting the statusline or tabline but
the option context is not updated.
* Vim9: cannot load a Vim9 script without the +eval feature.
* Vim9: concatenating lines with backslash is inconvenient.
* Clientserver test fails if full path is used.
* Build with Ruby and clang may fail.
* Vim9: line continuation with bar does not work at script level.
* Crash when popup mask contains zeroes.
* Crash when making the window width of the not-current window negative.
* Vim9: return value of winrestcmd() cannot be executed.
* Cursor keys not recognized at the hit-Enter prompt after executing an
external command.
* VMS: various smaller problems.
* ASAN error on exit with GUI.
* Termcodes test is flaky when used over ssh with X forwarding.
* Vim9: sublist is ambiguous.
* Test failures in legacy script.
* Vim9: crash when using lambda without return type in dict.
* Vim9: expr test fails.
* Vim9: bool option type is number.
* Tcl test fails.
* Vim9: cannot use function( after line break in :def function.
* Vim9: using -> for lambda is ambiguous.
* Not all OCaml related files are detected.
* Test_Executable() fails when using chroot.
* Window resize test fails in very wide terminal.
* Vim9: boolean option gets string type.
* Vim9: converting bool to string prefixes v:.
* Vim9: compilation error with try-catch in skipped block.
* Vim9: no error for mismatched :endfunc or :enddef.
* Error message for missing endfunc/enddef is last line.
* Vim9: it can be hard to see where white space is missing.
* Vim9: cannot use unlet for a dict member.
* Vim9: list unpack seen as declaration.
* Not all :hardcopy code covered by tests.
* Warning for size_t to int conversion. (Randall W. Morris)
* ml_get error when changing hidden buffer in Python.
* Vim9: extend() can violate the type of a variable.
* Build failure.
* badge for Travis is outdated.
* CTRL-C not recognized in Mintty.
* List of distributed files is outdated.
* Missing backslash.
* Falling back to old regexp engine can some patterns.
* Vim9: memory leak with catch in skipped block.
* Fuzzy matching doesn't give access to the scores.
* Vim9: compiled "wincmd" cannot be followed by bar.
* Length check mismatch with argument of strncmp(). (Christian Brabandt)
* Vim9: crash when lambda has fewer arguments than expected.
* Vim9: cannot set an option to a boolean value.
* Vim9: cannot set an option to a false.
* Sort test fails when locale is Canadian English. (Neil H Watson)
* Sort test fails when locale is French Canadian.
* Vim9: line break and comment not always skipped.
* Vim9: 'cpo' can become empty.
* Vim9: unlet of global variable cannot be compiled.
* Vim9: cannot use "null" for v:null.
* Vim: expr test fails.
* Build failure with Motif. (Tony Mechelynck)
* VMS: a few remaining problems.
* Incsearch does not detect empty pattern properly.
* Cannot use CTRL-N and CTRL-P in a popup menu.
* Vim9: cannot set 'number' to a boolean value.
* Vim9: comment right after "(" of function not recognized.
* Vim9: invalid memory access making error message flaky.
* Vim9: wrong order on type stack when using dict.
* Vim9: cannot unlet a dict or list item.
* Vim9: using an option value may use uninitialized memory.
* Vim9: backtick expansion doesn't work for :foldopen.
* Vim9: no test for unletting an imported variable.
* Vim9: "++var" and "--var" are silently accepted.
* Vim9: when using function reference type is not checked.
* A shell command in the vimrc causes terminal output.
* Vim9: no error when assigning lambda to funcref without return value.
* 0o777 not recognized as octal.
* Vim9: winsaveview() return type is too generic.
* Vim9: cannot assign to a variable that shadows a command modifier.
* Build failure with Ruby 3.0 and 32 bits.
* Vim9: using uninitialized field when parsing range. ":silent!" not
respected when parsing range fails.
* Vim9: returning zero takes two instructions.
* Vim9: "enddef" as dict key misintepreted as function end.
* Vim9: cannot list a lambda function.
* Vim9: command modifier before list unpack doesn't work.
* Vim9: string and list index work differently.
* "exptype_T" can be read as "expected type".
* Vim9: no error for comparing bool with string.
* Vim9: cannot nest closures.
* Vim9: closure nested limiting to one level.
* Vim9: error when inferring type from empty dict/list.
* Not easy to get mark en cursor posotion by character count.
* Vim9: crash if map() changes the item type.
* Build error with +eval feature but without +spell.
* Debugging code included.
==== yast2 ====
Version update (4.3.46 -> 4.3.49)
- Keep the libzypp target open to verify other packages
(bsc#1180858, related to the previous fix bsc#1179773)
- 4.3.49
- Ensure the libzypp target is initialized when downloading
the skelcd packages (to verify the GPG signatures) (bsc#1179773)
- Log more details when several resolvables (instead of a single
one) are unexpectedly found (related to bsc#1176276)
- 4.3.48
- Fix default for hibernation proposal (bsc#1169874)
- 4.3.47
1
0
Hi,
Am Samstag, 16. Januar 2021, 03:37:45 CET schrieb Anthony J Rabbito:
> I'm getting dropped into an emergency shell on all my nodes though I can't
> get my keyboard to be detected once exiting the initial boot stage
> which makes debugging nearly impossible.
that indicates that it's indeed the USB issue, which would explain why it can't
detect neither SSD nor keyboard.
> I may just try installing fresh. My UUIDs haven't changed checking on
> another OS.
Until the fix(es) landed, that probably won't help. You could try booting an
older kernel.
Cheers,
Fabian
> Thanks,
> Anthony
>
>
> On Fri, Jan 15, 2021, 4:02 AM Thorsten Kukuk <kukuk(a)suse.de> wrote:
>
> >
> > Hi,
> >
> > On Fri, Jan 15, Richard Brown wrote:
> >
> > > I appreciate the heads-up, but I would like to confirm that my RPi 3 B+
> > > sitting on my desk has rebooted just fine as usual.
> >
> > Same for me, my RPi 4 did all reboot just fine after the update.
> >
> > Thorsten
> > --
> > Thorsten Kukuk, Distinguished Engineer, Senior Architect SLES & MicroOS
> > SUSE Software Solutions Germany GmbH, Maxfeldstr. 5, 90409 Nuernberg,
> > Germany
> > Managing Director: Felix Imendoerffer (HRB 36809, AG Nürnberg)
2
1
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
kernel-source (5.10.5 -> 5.10.7)
libarchive (3.5.0 -> 3.5.1)
libjpeg-turbo
perl-Net-HTTP (6.19 -> 6.20)
=== Details ===
==== kernel-source ====
Version update (5.10.5 -> 5.10.7)
- scsi: ufs: Fix -Wsometimes-uninitialized warning (git-fixes).
- commit 1c33a89
- Linux 5.10.7 (bsc#1012628).
- i40e: Fix Error I40E_AQ_RC_EINVAL when removing VFs
(bsc#1012628).
- iavf: fix double-release of rtnl_lock (bsc#1012628).
- net: mvpp2: Add TCAM entry to drop flow control pause frames
(bsc#1012628).
- net: mvpp2: prs: fix PPPoE with ipv6 packet parse (bsc#1012628).
- net: systemport: set dev->max_mtu to UMAC_MAX_MTU_SIZE
(bsc#1012628).
- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
(bsc#1012628).
- ethernet: ucc_geth: set dev->max_mtu to 1518 (bsc#1012628).
- ionic: account for vlan tag len in rx buffer len (bsc#1012628).
- atm: idt77252: call pci_disable_device() on error path
(bsc#1012628).
- net: mvpp2: Fix GoP port 3 Networking Complex Control
configurations (bsc#1012628).
- net: stmmac: dwmac-meson8b: ignore the second clock input
(bsc#1012628).
- ibmvnic: fix login buffer memory leak (bsc#1012628).
- ibmvnic: continue fatal error reset after passive init
(bsc#1012628).
- net: ethernet: mvneta: Fix error handling in mvneta_probe
(bsc#1012628).
- qede: fix offload for IPIP tunnel packets (bsc#1012628).
- virtio_net: Fix recursive call to cpus_read_lock()
(bsc#1012628).
- net/ncsi: Use real net-device for response handler
(bsc#1012628).
- net: ethernet: Fix memleak in ethoc_probe (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_cpus
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_cpus_map and
num_tc (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_rxqs
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_rxqs_map and
num_tc (bsc#1012628).
- net: ethernet: ti: cpts: fix ethtool output when no ptp_clock
registered (bsc#1012628).
- tun: fix return value when the number of iovs exceeds
MAX_SKB_FRAGS (bsc#1012628).
- e1000e: Only run S0ix flows if shutdown succeeded (bsc#1012628).
- e1000e: bump up timeout to wait when ME un-configures ULP mode
(bsc#1012628).
- Revert "e1000e: disable s0ix entry and exit flows for ME
systems" (bsc#1012628).
- e1000e: Export S0ix flags to ethtool (bsc#1012628).
- bnxt_en: Check TQM rings for maximum supported value
(bsc#1012628).
- net: mvpp2: fix pkt coalescing int-threshold configuration
(bsc#1012628).
- bnxt_en: Fix AER recovery (bsc#1012628).
- ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
(bsc#1012628).
- net: sched: prevent invalid Scell_log shift count (bsc#1012628).
- net: hns: fix return value check in __lb_other_process()
(bsc#1012628).
- erspan: fix version 1 check in gre_parse_header() (bsc#1012628).
- net: hdlc_ppp: Fix issues when mod_timer is called while timer
is running (bsc#1012628).
- bareudp: set NETIF_F_LLTX flag (bsc#1012628).
- bareudp: Fix use of incorrect min_headroom size (bsc#1012628).
- vhost_net: fix ubuf refcount incorrectly when sendmsg fails
(bsc#1012628).
- r8169: work around power-saving bug on some chip versions
(bsc#1012628).
- net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for
internal PHYs (bsc#1012628).
- net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access
(bsc#1012628).
- CDC-NCM: remove "connected" log message (bsc#1012628).
- ibmvnic: fix: NULL pointer dereference (bsc#1012628).
- net: usb: qmi_wwan: add Quectel EM160R-GL (bsc#1012628).
- selftests: mlxsw: Set headroom size of correct port
(bsc#1012628).
- stmmac: intel: Add PCI IDs for TGL-H platform (bsc#1012628).
- selftests/vm: fix building protection keys test (bsc#1012628).
- block: add debugfs stanza for QUEUE_FLAG_NOWAIT (bsc#1012628).
- workqueue: Kick a worker based on the actual activation of
delayed works (bsc#1012628).
- scsi: ufs: Fix wrong print message in dev_err() (bsc#1012628).
- scsi: ufs-pci: Fix restore from S4 for Intel controllers
(bsc#1012628).
- scsi: ufs-pci: Ensure UFS device is in PowerDown mode for
suspend-to-disk ->poweroff() (bsc#1012628).
- scsi: ufs-pci: Fix recovery from hibernate exit errors for
Intel controllers (bsc#1012628).
- scsi: ufs-pci: Enable UFSHCD_CAP_RPM_AUTOSUSPEND for Intel
controllers (bsc#1012628).
- scsi: block: Introduce BLK_MQ_REQ_PM (bsc#1012628).
- scsi: ide: Do not set the RQF_PREEMPT flag for sense requests
(bsc#1012628).
- scsi: ide: Mark power management requests with RQF_PM instead
of RQF_PREEMPT (bsc#1012628).
- scsi: scsi_transport_spi: Set RQF_PM for domain validation
commands (bsc#1012628).
- scsi: core: Only process PM requests if rpm_status != RPM_ACTIVE
(bsc#1012628).
- local64.h: make <asm/local64.h> mandatory (bsc#1012628).
- lib/genalloc: fix the overflow when size is too big
(bsc#1012628).
- depmod: handle the case of /sbin/depmod without /sbin in PATH
(bsc#1012628).
- scsi: ufs: Clear UAC for FFU and RPMB LUNs (bsc#1012628).
- kbuild: don't hardcode depmod path (bsc#1012628).
- Bluetooth: revert: hci_h5: close serdev device and free hu in
h5_close (bsc#1012628).
- scsi: block: Remove RQF_PREEMPT and BLK_MQ_REQ_PREEMPT
(bsc#1012628).
- scsi: block: Do not accept any requests while suspended
(bsc#1012628).
- crypto: ecdh - avoid buffer overflow in ecdh_set_secret()
(bsc#1012628).
- crypto: asym_tpm: correct zero out potential secrets
(bsc#1012628).
- powerpc: Handle .text.{hot,unlikely}.* in linker script
(bsc#1012628).
- Staging: comedi: Return -EFAULT if copy_to_user() fails
(bsc#1012628).
- staging: mt7621-dma: Fix a resource leak in an error handling
path (bsc#1012628).
- usb: gadget: enable super speed plus (bsc#1012628).
- USB: cdc-acm: blacklist another IR Droid device (bsc#1012628).
- USB: cdc-wdm: Fix use after free in
service_outstanding_interrupt() (bsc#1012628).
- usb: typec: intel_pmc_mux: Configure HPD first for HPD+IRQ
request (bsc#1012628).
- usb: dwc3: meson-g12a: disable clk on error handling path in
probe (bsc#1012628).
- usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup
(bsc#1012628).
- usb: dwc3: gadget: Clear wait flag on dequeue (bsc#1012628).
- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access
completion (bsc#1012628).
- usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based
one (bsc#1012628).
- usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression
(bsc#1012628).
- usb: chipidea: ci_hdrc_imx: add missing put_device() call in
usbmisc_get_init_data() (bsc#1012628).
- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
quirk set (bsc#1012628).
- usb: usbip: vhci_hcd: protect shift size (bsc#1012628).
- usb: uas: Add PNY USB Portable SSD to unusual_uas (bsc#1012628).
- USB: serial: iuu_phoenix: fix DMA from stack (bsc#1012628).
- USB: serial: option: add LongSung M5710 module support
(bsc#1012628).
- USB: serial: option: add Quectel EM160R-GL (bsc#1012628).
- USB: yurex: fix control-URB timeout handling (bsc#1012628).
- USB: usblp: fix DMA to stack (bsc#1012628).
- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
(bsc#1012628).
- usb: gadget: select CONFIG_CRC32 (bsc#1012628).
- USB: Gadget: dummy-hcd: Fix shift-out-of-bounds bug
(bsc#1012628).
- usb: gadget: f_uac2: reset wMaxPacketSize (bsc#1012628).
- usb: gadget: function: printer: Fix a memory leak for interface
descriptor (bsc#1012628).
- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
(bsc#1012628).
- USB: gadget: legacy: fix return error code in acm_ms_bind()
(bsc#1012628).
- usb: gadget: Fix spinlock lockup on usb_function_deactivate
(bsc#1012628).
- usb: gadget: configfs: Preserve function ordering after bind
failure (bsc#1012628).
- usb: gadget: configfs: Fix use-after-free issue with udc_name
(bsc#1012628).
- USB: serial: keyspan_pda: remove unused variable (bsc#1012628).
- hwmon: (amd_energy) fix allocation of hwmon_channel_info config
(bsc#1012628).
- mm: make wait_on_page_writeback() wait for multiple pending
writebacks (bsc#1012628).
- x86/mm: Fix leak of pmd ptlock (bsc#1012628).
- KVM: x86/mmu: Use -1 to flag an undefined spte in
get_mmio_spte() (bsc#1012628).
- KVM: x86/mmu: Get root level from walkers when retrieving MMIO
SPTE (bsc#1012628).
- kvm: check tlbs_dirty directly (bsc#1012628).
- KVM: x86/mmu: Ensure TDP MMU roots are freed after yield
(bsc#1012628).
- x86/resctrl: Use an IPI instead of task_work_add() to update
PQR_ASSOC MSR (bsc#1012628).
- x86/resctrl: Don't move a task to the same resource group
(bsc#1012628).
- blk-iocost: fix NULL iocg deref from racing against
initialization (bsc#1012628).
- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (bsc#1012628).
- ALSA: hda/conexant: add a new hda codec CX11970 (bsc#1012628).
- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
(bsc#1012628).
- ALSA: hda/realtek: Add mute LED quirk for more HP laptops
(bsc#1012628).
- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook
850 G7 (bsc#1012628).
- ALSA: hda/realtek: Add two "Intel Reference board" SSID in
the ALC256 (bsc#1012628).
- iommu/vt-d: Move intel_iommu info from struct intel_svm to
struct intel_svm_dev (bsc#1012628).
- btrfs: qgroup: don't try to wait flushing if we're already
holding a transaction (bsc#1012628).
- btrfs: send: fix wrong file path when there is an inode with
a pending rmdir (bsc#1012628).
- Revert "device property: Keep secondary firmware node secondary
by type" (bsc#1012628).
- dmabuf: fix use-after-free of dmabuf's file->f_inode
(bsc#1012628).
- arm64: link with -z norelro for LLD or aarch64-elf
(bsc#1012628).
- drm/i915: clear the shadow batch (bsc#1012628).
- drm/i915: clear the gpu reloc batch (bsc#1012628).
- bcache: fix typo from SUUP to SUPP in features.h (bsc#1012628).
- bcache: check unsupported feature sets for bcache register
(bsc#1012628).
- bcache: introduce BCH_FEATURE_INCOMPAT_LOG_LARGE_BUCKET_SIZE
for large bucket (bsc#1012628).
- net/mlx5e: Fix SWP offsets when vlan inserted by driver
(bsc#1012628).
- ARM: dts: OMAP3: disable AES on N950/N9 (bsc#1012628).
- netfilter: x_tables: Update remaining dereference to RCU
(bsc#1012628).
- netfilter: ipset: fix shift-out-of-bounds in htable_bits()
(bsc#1012628).
- netfilter: xt_RATEEST: reject non-null terminated string from
userspace (bsc#1012628).
- netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
(bsc#1012628).
- dmaengine: idxd: off by one in cleanup code (bsc#1012628).
- x86/mtrr: Correct the range check before performing MTRR type
lookups (bsc#1012628).
- KVM: x86: fix shift out of bounds reported by UBSAN
(bsc#1012628).
- xsk: Fix memory leak for failed bind (bsc#1012628).
- rtlwifi: rise completion at the last step of firmware callback
(bsc#1012628).
- scsi: target: Fix XCOPY NAA identifier lookup (bsc#1012628).
- commit 1ca962e
- Linux 5.10.6 (bsc#1012628).
- Revert "drm/amd/display: Fix memory leaks in S3 resume"
(bsc#1012628).
- Revert "mtd: spinand: Fix OOB read" (bsc#1012628).
- rtc: pcf2127: move watchdog initialisation to a separate
function (bsc#1012628).
- rtc: pcf2127: only use watchdog when explicitly available
(bsc#1012628).
- dt-bindings: rtc: add reset-source property (bsc#1012628).
- kdev_t: always inline major/minor helper functions
(bsc#1012628).
- Bluetooth: Fix attempting to set RPA timeout when unsupported
(bsc#1012628).
- ALSA: hda/realtek - Modify Dell platform name (bsc#1012628).
- drm/i915/tgl: Fix Combo PHY DPLL fractional divider for 38.4MHz
ref clock (bsc#1012628).
- scsi: ufs: Allow an error return value from ->device_reset()
(bsc#1012628).
- scsi: ufs: Re-enable WriteBooster after device reset
(bsc#1012628).
- RDMA/core: remove use of dma_virt_ops (bsc#1012628).
- RDMA/siw,rxe: Make emulated devices virtual in the device tree
(bsc#1012628).
- fuse: fix bad inode (bsc#1012628).
- perf: Break deadlock involving exec_update_mutex (bsc#1012628).
- rwsem: Implement down_read_killable_nested (bsc#1012628).
- rwsem: Implement down_read_interruptible (bsc#1012628).
- exec: Transform exec_update_mutex into a rw_semaphore
(bsc#1012628).
- mwifiex: Fix possible buffer overflows in
mwifiex_cmd_802_11_ad_hoc_start (bsc#1012628).
- commit 5bdc505
- regulator: mt6323: Add OF match table (bsc#1180731).
- regulator: mt6358: Add OF match table (bsc#1180731).
- regulator: mt6360: Add OF match table (bsc#1180731).
- commit a930122
- drm: bail out of nouveau_channel_new if channel init fails
(CVE-2020-25639 bsc#1176846).
- commit 4739e43
==== libarchive ====
Version update (3.5.0 -> 3.5.1)
- update to 3.5.1:
* various compilation fixes (#1461, #1462, #1463, #1464)
* fixed undefined behavior in a function in warc reader (#1465)
==== libjpeg-turbo ====
- Fix setting of FLOATTEST
==== perl-Net-HTTP ====
Version update (6.19 -> 6.20)
- update to 6.20:
* Replace last use of "vars" with "our" (GH#67) (James Raspass)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=T…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
kernel-source (5.10.5 -> 5.10.7)
=== Details ===
==== kernel-source ====
Version update (5.10.5 -> 5.10.7)
- scsi: ufs: Fix -Wsometimes-uninitialized warning (git-fixes).
- commit 1c33a89
- Linux 5.10.7 (bsc#1012628).
- i40e: Fix Error I40E_AQ_RC_EINVAL when removing VFs
(bsc#1012628).
- iavf: fix double-release of rtnl_lock (bsc#1012628).
- net: mvpp2: Add TCAM entry to drop flow control pause frames
(bsc#1012628).
- net: mvpp2: prs: fix PPPoE with ipv6 packet parse (bsc#1012628).
- net: systemport: set dev->max_mtu to UMAC_MAX_MTU_SIZE
(bsc#1012628).
- ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
(bsc#1012628).
- ethernet: ucc_geth: set dev->max_mtu to 1518 (bsc#1012628).
- ionic: account for vlan tag len in rx buffer len (bsc#1012628).
- atm: idt77252: call pci_disable_device() on error path
(bsc#1012628).
- net: mvpp2: Fix GoP port 3 Networking Complex Control
configurations (bsc#1012628).
- net: stmmac: dwmac-meson8b: ignore the second clock input
(bsc#1012628).
- ibmvnic: fix login buffer memory leak (bsc#1012628).
- ibmvnic: continue fatal error reset after passive init
(bsc#1012628).
- net: ethernet: mvneta: Fix error handling in mvneta_probe
(bsc#1012628).
- qede: fix offload for IPIP tunnel packets (bsc#1012628).
- virtio_net: Fix recursive call to cpus_read_lock()
(bsc#1012628).
- net/ncsi: Use real net-device for response handler
(bsc#1012628).
- net: ethernet: Fix memleak in ethoc_probe (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_cpus
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_cpus_map and
num_tc (bsc#1012628).
- net-sysfs: take the rtnl lock when storing xps_rxqs
(bsc#1012628).
- net-sysfs: take the rtnl lock when accessing xps_rxqs_map and
num_tc (bsc#1012628).
- net: ethernet: ti: cpts: fix ethtool output when no ptp_clock
registered (bsc#1012628).
- tun: fix return value when the number of iovs exceeds
MAX_SKB_FRAGS (bsc#1012628).
- e1000e: Only run S0ix flows if shutdown succeeded (bsc#1012628).
- e1000e: bump up timeout to wait when ME un-configures ULP mode
(bsc#1012628).
- Revert "e1000e: disable s0ix entry and exit flows for ME
systems" (bsc#1012628).
- e1000e: Export S0ix flags to ethtool (bsc#1012628).
- bnxt_en: Check TQM rings for maximum supported value
(bsc#1012628).
- net: mvpp2: fix pkt coalescing int-threshold configuration
(bsc#1012628).
- bnxt_en: Fix AER recovery (bsc#1012628).
- ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
(bsc#1012628).
- net: sched: prevent invalid Scell_log shift count (bsc#1012628).
- net: hns: fix return value check in __lb_other_process()
(bsc#1012628).
- erspan: fix version 1 check in gre_parse_header() (bsc#1012628).
- net: hdlc_ppp: Fix issues when mod_timer is called while timer
is running (bsc#1012628).
- bareudp: set NETIF_F_LLTX flag (bsc#1012628).
- bareudp: Fix use of incorrect min_headroom size (bsc#1012628).
- vhost_net: fix ubuf refcount incorrectly when sendmsg fails
(bsc#1012628).
- r8169: work around power-saving bug on some chip versions
(bsc#1012628).
- net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for
internal PHYs (bsc#1012628).
- net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access
(bsc#1012628).
- CDC-NCM: remove "connected" log message (bsc#1012628).
- ibmvnic: fix: NULL pointer dereference (bsc#1012628).
- net: usb: qmi_wwan: add Quectel EM160R-GL (bsc#1012628).
- selftests: mlxsw: Set headroom size of correct port
(bsc#1012628).
- stmmac: intel: Add PCI IDs for TGL-H platform (bsc#1012628).
- selftests/vm: fix building protection keys test (bsc#1012628).
- block: add debugfs stanza for QUEUE_FLAG_NOWAIT (bsc#1012628).
- workqueue: Kick a worker based on the actual activation of
delayed works (bsc#1012628).
- scsi: ufs: Fix wrong print message in dev_err() (bsc#1012628).
- scsi: ufs-pci: Fix restore from S4 for Intel controllers
(bsc#1012628).
- scsi: ufs-pci: Ensure UFS device is in PowerDown mode for
suspend-to-disk ->poweroff() (bsc#1012628).
- scsi: ufs-pci: Fix recovery from hibernate exit errors for
Intel controllers (bsc#1012628).
- scsi: ufs-pci: Enable UFSHCD_CAP_RPM_AUTOSUSPEND for Intel
controllers (bsc#1012628).
- scsi: block: Introduce BLK_MQ_REQ_PM (bsc#1012628).
- scsi: ide: Do not set the RQF_PREEMPT flag for sense requests
(bsc#1012628).
- scsi: ide: Mark power management requests with RQF_PM instead
of RQF_PREEMPT (bsc#1012628).
- scsi: scsi_transport_spi: Set RQF_PM for domain validation
commands (bsc#1012628).
- scsi: core: Only process PM requests if rpm_status != RPM_ACTIVE
(bsc#1012628).
- local64.h: make <asm/local64.h> mandatory (bsc#1012628).
- lib/genalloc: fix the overflow when size is too big
(bsc#1012628).
- depmod: handle the case of /sbin/depmod without /sbin in PATH
(bsc#1012628).
- scsi: ufs: Clear UAC for FFU and RPMB LUNs (bsc#1012628).
- kbuild: don't hardcode depmod path (bsc#1012628).
- Bluetooth: revert: hci_h5: close serdev device and free hu in
h5_close (bsc#1012628).
- scsi: block: Remove RQF_PREEMPT and BLK_MQ_REQ_PREEMPT
(bsc#1012628).
- scsi: block: Do not accept any requests while suspended
(bsc#1012628).
- crypto: ecdh - avoid buffer overflow in ecdh_set_secret()
(bsc#1012628).
- crypto: asym_tpm: correct zero out potential secrets
(bsc#1012628).
- powerpc: Handle .text.{hot,unlikely}.* in linker script
(bsc#1012628).
- Staging: comedi: Return -EFAULT if copy_to_user() fails
(bsc#1012628).
- staging: mt7621-dma: Fix a resource leak in an error handling
path (bsc#1012628).
- usb: gadget: enable super speed plus (bsc#1012628).
- USB: cdc-acm: blacklist another IR Droid device (bsc#1012628).
- USB: cdc-wdm: Fix use after free in
service_outstanding_interrupt() (bsc#1012628).
- usb: typec: intel_pmc_mux: Configure HPD first for HPD+IRQ
request (bsc#1012628).
- usb: dwc3: meson-g12a: disable clk on error handling path in
probe (bsc#1012628).
- usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup
(bsc#1012628).
- usb: dwc3: gadget: Clear wait flag on dequeue (bsc#1012628).
- usb: dwc3: ulpi: Use VStsDone to detect PHY regs access
completion (bsc#1012628).
- usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based
one (bsc#1012628).
- usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression
(bsc#1012628).
- usb: chipidea: ci_hdrc_imx: add missing put_device() call in
usbmisc_get_init_data() (bsc#1012628).
- USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
quirk set (bsc#1012628).
- usb: usbip: vhci_hcd: protect shift size (bsc#1012628).
- usb: uas: Add PNY USB Portable SSD to unusual_uas (bsc#1012628).
- USB: serial: iuu_phoenix: fix DMA from stack (bsc#1012628).
- USB: serial: option: add LongSung M5710 module support
(bsc#1012628).
- USB: serial: option: add Quectel EM160R-GL (bsc#1012628).
- USB: yurex: fix control-URB timeout handling (bsc#1012628).
- USB: usblp: fix DMA to stack (bsc#1012628).
- ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
(bsc#1012628).
- usb: gadget: select CONFIG_CRC32 (bsc#1012628).
- USB: Gadget: dummy-hcd: Fix shift-out-of-bounds bug
(bsc#1012628).
- usb: gadget: f_uac2: reset wMaxPacketSize (bsc#1012628).
- usb: gadget: function: printer: Fix a memory leak for interface
descriptor (bsc#1012628).
- usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
(bsc#1012628).
- USB: gadget: legacy: fix return error code in acm_ms_bind()
(bsc#1012628).
- usb: gadget: Fix spinlock lockup on usb_function_deactivate
(bsc#1012628).
- usb: gadget: configfs: Preserve function ordering after bind
failure (bsc#1012628).
- usb: gadget: configfs: Fix use-after-free issue with udc_name
(bsc#1012628).
- USB: serial: keyspan_pda: remove unused variable (bsc#1012628).
- hwmon: (amd_energy) fix allocation of hwmon_channel_info config
(bsc#1012628).
- mm: make wait_on_page_writeback() wait for multiple pending
writebacks (bsc#1012628).
- x86/mm: Fix leak of pmd ptlock (bsc#1012628).
- KVM: x86/mmu: Use -1 to flag an undefined spte in
get_mmio_spte() (bsc#1012628).
- KVM: x86/mmu: Get root level from walkers when retrieving MMIO
SPTE (bsc#1012628).
- kvm: check tlbs_dirty directly (bsc#1012628).
- KVM: x86/mmu: Ensure TDP MMU roots are freed after yield
(bsc#1012628).
- x86/resctrl: Use an IPI instead of task_work_add() to update
PQR_ASSOC MSR (bsc#1012628).
- x86/resctrl: Don't move a task to the same resource group
(bsc#1012628).
- blk-iocost: fix NULL iocg deref from racing against
initialization (bsc#1012628).
- ALSA: hda/via: Fix runtime PM for Clevo W35xSS (bsc#1012628).
- ALSA: hda/conexant: add a new hda codec CX11970 (bsc#1012628).
- ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
(bsc#1012628).
- ALSA: hda/realtek: Add mute LED quirk for more HP laptops
(bsc#1012628).
- ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook
850 G7 (bsc#1012628).
- ALSA: hda/realtek: Add two "Intel Reference board" SSID in
the ALC256 (bsc#1012628).
- iommu/vt-d: Move intel_iommu info from struct intel_svm to
struct intel_svm_dev (bsc#1012628).
- btrfs: qgroup: don't try to wait flushing if we're already
holding a transaction (bsc#1012628).
- btrfs: send: fix wrong file path when there is an inode with
a pending rmdir (bsc#1012628).
- Revert "device property: Keep secondary firmware node secondary
by type" (bsc#1012628).
- dmabuf: fix use-after-free of dmabuf's file->f_inode
(bsc#1012628).
- arm64: link with -z norelro for LLD or aarch64-elf
(bsc#1012628).
- drm/i915: clear the shadow batch (bsc#1012628).
- drm/i915: clear the gpu reloc batch (bsc#1012628).
- bcache: fix typo from SUUP to SUPP in features.h (bsc#1012628).
- bcache: check unsupported feature sets for bcache register
(bsc#1012628).
- bcache: introduce BCH_FEATURE_INCOMPAT_LOG_LARGE_BUCKET_SIZE
for large bucket (bsc#1012628).
- net/mlx5e: Fix SWP offsets when vlan inserted by driver
(bsc#1012628).
- ARM: dts: OMAP3: disable AES on N950/N9 (bsc#1012628).
- netfilter: x_tables: Update remaining dereference to RCU
(bsc#1012628).
- netfilter: ipset: fix shift-out-of-bounds in htable_bits()
(bsc#1012628).
- netfilter: xt_RATEEST: reject non-null terminated string from
userspace (bsc#1012628).
- netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
(bsc#1012628).
- dmaengine: idxd: off by one in cleanup code (bsc#1012628).
- x86/mtrr: Correct the range check before performing MTRR type
lookups (bsc#1012628).
- KVM: x86: fix shift out of bounds reported by UBSAN
(bsc#1012628).
- xsk: Fix memory leak for failed bind (bsc#1012628).
- rtlwifi: rise completion at the last step of firmware callback
(bsc#1012628).
- scsi: target: Fix XCOPY NAA identifier lookup (bsc#1012628).
- commit 1ca962e
- Linux 5.10.6 (bsc#1012628).
- Revert "drm/amd/display: Fix memory leaks in S3 resume"
(bsc#1012628).
- Revert "mtd: spinand: Fix OOB read" (bsc#1012628).
- rtc: pcf2127: move watchdog initialisation to a separate
function (bsc#1012628).
- rtc: pcf2127: only use watchdog when explicitly available
(bsc#1012628).
- dt-bindings: rtc: add reset-source property (bsc#1012628).
- kdev_t: always inline major/minor helper functions
(bsc#1012628).
- Bluetooth: Fix attempting to set RPA timeout when unsupported
(bsc#1012628).
- ALSA: hda/realtek - Modify Dell platform name (bsc#1012628).
- drm/i915/tgl: Fix Combo PHY DPLL fractional divider for 38.4MHz
ref clock (bsc#1012628).
- scsi: ufs: Allow an error return value from ->device_reset()
(bsc#1012628).
- scsi: ufs: Re-enable WriteBooster after device reset
(bsc#1012628).
- RDMA/core: remove use of dma_virt_ops (bsc#1012628).
- RDMA/siw,rxe: Make emulated devices virtual in the device tree
(bsc#1012628).
- fuse: fix bad inode (bsc#1012628).
- perf: Break deadlock involving exec_update_mutex (bsc#1012628).
- rwsem: Implement down_read_killable_nested (bsc#1012628).
- rwsem: Implement down_read_interruptible (bsc#1012628).
- exec: Transform exec_update_mutex into a rw_semaphore
(bsc#1012628).
- mwifiex: Fix possible buffer overflows in
mwifiex_cmd_802_11_ad_hoc_start (bsc#1012628).
- commit 5bdc505
- regulator: mt6323: Add OF match table (bsc#1180731).
- regulator: mt6358: Add OF match table (bsc#1180731).
- regulator: mt6360: Add OF match table (bsc#1180731).
- commit a930122
- drm: bail out of nouveau_channel_new if channel init fails
(CVE-2020-25639 bsc#1176846).
- commit 4739e43
1
0