Hi all,
are there any objections to enabling 15.5 for devel:kubic?
If there are none, I'll do so on Wednesday.
Kind regards,
Johannes
--
Johannes Kastl
Linux Consultant & Trainer
Tel.: +49 (0) 151 2372 5802
Mail: kastl(a)b1-systems.de
B1 Systems GmbH
Osterfeldstraße 7 / 85088 Vohburg
http://www.b1-systems.de
GF: Ralph Dehner
Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537
Hi all,
I packaged istoctl and linkerd-cli and submitted the former to devel:kubic and
Factory already. I did some successful tests with the istioctl tool, but I am
only a novice using istio. If anyone wants to test it, feedback is highly
appreciated.
> https://build.opensuse.org/package/show/devel:kubic/istioctl
linkerd-cli is package in my home. I have not yet tested the package, as linkerd
is completely new to me.
Also, I am not sure if this should be renamed to linkerd2-cli, like …
[View More]the upstream
repository:
https://github.com/linkerd/linkerd2
> https://build.opensuse.org/package/show/home:ojkastl_buildservice:Branch_de…
Any testers for this one? Any packaging errors? Packaging improvements that
could be done?
Kind Regards,
Johannes
--
Johannes Kastl
Linux Consultant & Trainer
Tel.: +49 (0) 151 2372 5802
Mail: kastl(a)b1-systems.de
B1 Systems GmbH
Osterfeldstraße 7 / 85088 Vohburg
http://www.b1-systems.de
GF: Ralph Dehner
Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537
[View Less]
Hi all,
is anyone using EKS? I packaged eksctl, but am lacking the time and expertise to
test if it is fully working.
I wanted to play around with this, but real life intervened. So I would be happy
for feedback or testers...
> https://build.opensuse.org/package/show/devel:kubic/eksctl
Kind Regards,
Johannes
--
Johannes Kastl
Linux Consultant & Trainer
Tel.: +49 (0) 151 2372 5802
Mail: kastl(a)b1-systems.de
B1 Systems GmbH
Osterfeldstraße 7 / 85088 Vohburg
http://www.b1-systems.…
[View More]de
GF: Ralph Dehner
Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537
[View Less]
Hi everyone,
is anyone using flux2? If so, I want to get my hands dirty with it, but as a
first step I tried to package the CLI for openSUSE:
> https://build.opensuse.org/package/show/home:ojkastl_buildservice:Branch_de…
My first couple of "experiments" calling the CLI ("flux2-cli --version", get
help on commands, ...) seemed to work, but I would be glad if someone more
experienced with Flux can have a look at it and report back, if something is
off. Which is totally not out of …
[View More]question... :-)
In the meantime I'll go digging into the flux documentation and try to prepare
an environment where I do not break things in case something is fishy...
Kind Regards,
Johannes
--
Johannes Kastl
Linux Consultant & Trainer
Tel.: +49 (0) 151 2372 5802
Mail: kastl(a)b1-systems.de
B1 Systems GmbH
Osterfeldstraße 7 / 85088 Vohburg
http://www.b1-systems.de
GF: Ralph Dehner
Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537
[View Less]
Hi,
After the MicroOS/Kubic split the kubernetes-client ( aka kubectl )
package was no longer updated and remained at version 1.24.3.
I checked and this is built as a subpackage of kubernetes1.24 [1],
which means that to package a new kubectl version one would have to
package all of kubernetes, which I take is not a trivial undertaking.
I for one moved on to k3s + MicroOS and don't have the desire,time, and
probably not the skill, to work on packaging all of kubernetes.
Does anyone plan on …
[View More]packaging new kubernetes versions for devel:kubic?
ISTR that there was a kubernetes-client package at some point, is
bringing it back a viable option?
Thanks,
Robert
[1]: https://build.opensuse.org/package/show/devel:kubic/kubernetes1.24
[View Less]
On Fri, Sep 02, Paul Graham wrote:
> Since the last system boot core libraries or services have been updated.
> Reboot is suggested to ensure that your system benefits from these updates.
> 2022-09-02 17:21:11 Application returned with exit status 107.
> ERROR: zypper up on /.snapshots/27/snapshot failed with exit code 107!
> Use '--interactive' for manual problem resolution.
Sounds like the bootloader/"shim" bug.
> Looking through the information written to the console, …
[View More]the only thing
> that claims to be an error is the following:
There should be another error about the bootloader, too.
> Any suggestions on how to resolve this issue?
transactional-update shell -> zypper dup
And ignore the zypper error code. At least my PIs did happily boot
afterwards.
Sorry, saw on my system that it is now the kernel which is broken,
see bsc#1203087 ...
Thorsten
--
Thorsten Kukuk, Distinguished Engineer, Senior Architect
SUSE Software Solutions Germany GmbH, Frankenstraße 146, 90461 Nuernberg, Germany
Managing Director: Ivo Totev, Andrew Myers, Andrew McDonald, Martje Boudien Moerman
(HRB 36809, AG Nürnberg)
[View Less]
Hi,
I have noticed in the last few weeks that I have some Arm64 machines
running MicroOS that are not rolling forward to the next versions of
MicroOS. Automatic updates have not been working, apparently, and if
I run "transactional-update" manually, it fails as well.
I have one system at:
MicroOS-release-20220613-1162.1.aarch64
and another system at:
MicroOS-release-20220628-1185.1.aarch64
Note that the one machine with the 20220613 snapshot was actually
installed with an older …
[View More]image for demonstration purposes (a snapshot
from May, I believe) and then pointed at a local copy of the 20220613
DVD for an "offline" update. So, it never saw the files from 20220628
to get synchronized to that point. (Long story).
Both systems go through all of the motions of an update (dracut,
etc.), but the end of the "transactional-update" session looks like:
Since the last system boot core libraries or services have been updated.
Reboot is suggested to ensure that your system benefits from these updates.
2022-09-02 17:21:11 Application returned with exit status 107.
ERROR: zypper up on /.snapshots/27/snapshot failed with exit code 107!
Use '--interactive' for manual problem resolution.
Warning: The following files were changed in the snapshot, but are shadowed by
other mounts and will not be visible to the system:
/.snapshots/27/snapshot/var/lib/systemd/catalog/database
/.snapshots/27/snapshot/var/lib/systemd/random-seed
/.snapshots/27/snapshot/var/lock
/.snapshots/27/snapshot/var/mail
Removing snapshot #27...
2022-09-02 17:21:12 tukit 4.0.1 started
2022-09-02 17:21:12 Options: abort 27
2022-09-02 17:21:12 Discarding snapshot 27.
2022-09-02 17:21:15 Transaction completed.
transactional-update finished
Looking through the information written to the console, the only thing
that claims to be an error is the following:
(265/313) Installing: suse-module-tools-16.0.22-1.1.aarch64 [......
/usr/bin/udevadm: error while loading shared libraries:
libsystemd-shared-250.so: cannot open shared object file: No such file
or directory
...........
/usr/bin/udevadm: error while loading shared libraries:
libsystemd-shared-250.so: cannot open shared object file: No such file
or directory
Running in chroot, ignoring command 'daemon-reload'
done]
Everything else appears to be successful at installation.
Looking through the console log further, it is clear that
libsystemd0-251.4-1.2.aarch64 was installed before the error occurred,
which is why libsystemd-shared-250.so probably wasnt' around for
suse-module-tools-16.0.22-1.1.aarch64 during its installation/upgrade.
Any suggestions on how to resolve this issue?
Further, there have been two releases of MicroOS aarch64 in the last
few weeks and the two machines did not upgrade to either of those
releases.
By the way, I have tried "transactional-update --interactive" and
"transactional-update dup --interactive" with no difference in result
and really no opportunity to change the results.
"transactional-update dup --interactive" did prompt me for some
responses.
Thanks!
Paul
[View Less]
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.…
[View More]opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
pipewire
python-ipywidgets (7.6.5 -> 7.7.1)
python-jupyter_console (6.4.3 -> 6.4.4)
python-jupyterlab (3.2.3 -> 3.4.4)
python-jupyterlab-pygments (0.1.2 -> 0.2.2)
tiff
webkit2gtk3 (2.36.4 -> 2.36.5)
webkit2gtk3-soup2 (2.36.4 -> 2.36.5)
webkit2gtk4 (2.36.4 -> 2.36.5)
yast2-trans (84.87.20220729.608d4643aa -> 84.87.20220730.27a80cdf03)
zlib-ng-compat
=== Details ===
==== pipewire ====
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Recommend pipewire-alsa (instead of alsa-plugins-pulse) from
pipewire-pulseaudio (boo#1201409)
==== python-ipywidgets ====
Version update (7.6.5 -> 7.7.1)
- Update to version 7.7.1
* Fix broken link icon for FontAwesome 4 and 5 #3495
* Fix message throttling bug #3494
* Fix state message parsing to be more permissive #3486
* Fix tests on Python 3.11 #3480
* Add better front-page docs #3496
- Release 7.7
* Fix installation on Python 3.10. #3368
* Throw an error if we cannot render a widget, enabling the
rendering system to fall back to rendering a different data
type if available. #3290
* Create a new widget control comm channel, enabling more
efficient fetching of kernel widget state. #3201
* Refactor logic for fetching kernel widget state to the manager
base class. This logic first tries to use the new widget
control comm channel, falling back to the existing method of
requesting each widget's state individually. #3337
* Enable HTMLManager output widgets to render state updates.
[#3372]
* Do not reset JupyterLab CSS variables if they are already
defined. #3344
* Fix variable inspector example. #3302
* Introduce new widget manager has_model method for synchronously
checking if a widget model is registered. #3377
* Work around bug in Chrome rendering Combobox arrows. #3375
* Optionally echo update messages from frontends to other
frontends. This enables widget views in different frontends to
maintain consistent state simultaneously, and also makes sure
that simultaneous updates from the kernel and frontend resolve
to a consistent state. This is off by default in ipywidgets
7.7, and it is anticipated this will be on by default in
ipywidgets 8.0. To enable echo update messages across
ipywidgets, set the environment variable JUPYTER_WIDGETS_ECHO
to 1. To opt a specific attribute out of echo updates, tag the
attribute with echo_update=False metadata (we do this in core
for the FileUpload widget's data attribute). #3400, #3394
- Drop ipywidgets-pr2655-collectionsabc.patch
==== python-jupyter_console ====
Version update (6.4.3 -> 6.4.4)
- Update to 6.4.4
* Use asyncio.create_task and asyncio.get_running_loop with
interact().
* Drop Python 3.6. #270 (@encukou)
==== python-jupyterlab ====
Version update (3.2.3 -> 3.4.4)
Subpackages: jupyter-jupyterlab python310-jupyterlab
- Update to 3.4.4
Enhancements made
* Adds version maintenance policy #12829 (@jweill-aws)
* Increase title width in simple mode #11546 (@SylvainCorlay)
* Bump xtermjs to latest #12715 (@yuvipanda)
* Debugger: Make kernel source list react based #12751 (@vidartf)
* Optimize debugger editor eachLine loops #12746 (@vidartf)
* Make password inputs not give away how many characters were
typed #12659 (@jasongrout)
Bugs fixed
* Remove drive prefix from the file path when creating the new
path #12824 (@hbcarlos)
* Use path to extract tmpPath #12823 (@fcollonval)
* update tab name after file rename #12791 (@RobbyPratl)
* Update base.css #12783 (@siddartha-10)
* Pin nbclassic below 0.4.0 #12767 (@fcollonval)
* Set focus when active cell changes only from mouse click #12735
(@fcollonval)
* Fix staging/yarn.lock registry #12742 (@vidartf)
* Debugger: Fix CSS for variables inspecting #12749
(@martinRenou)
* Translate "Default: " and "Remove" in custom fields #12732
(@krassowski)
* Fix cell toolbar overlap in side-by-side render mode #12710
(@peytondmurray)
* Remove ipywidgets message count in the execution indicator
model #12665 (@trungleduc)
Maintenance and upkeep improvements
* Update verdaccio, start registry on 0.0.0.0 #12825
(@fcollonval)
* Use Vega SVG renderer to drop canvas dependency #12811
(@fcollonval)
* Bump moment from 2.29.2 to 2.29.4 #12781 (@dependabot[bot])
* [memory-leaks] Fixes following cell addition analysis #12774
(@fcollonval)
* Bump @lumino/widgets to 1.33.0 #12777 (@fcollonval)
* Fix memory leaks #12750 (@fcollonval)
* Bump version of marked and @types/marked #12747 (@krassowski)
* Drop pre-commit from build dependencies (#12680) #12706
(@jtpio)
- Release 3.4.3
New features added
* Persistent side-by-side ratio setting #12633 (@echarles)
Enhancements made
* Persistent side-by-side ratio setting #12633 (@echarles)
* Add "Open in Simple Mode" contextMenu option #12577
* (@fcollonval)
Bugs fixed
* Always check local packages against abspath #10662 (@mlucool)
* Fix arrow position on unrendered markdown cell #12660
(@fcollonval)
* Fix the side-by-side cell resize handle #12611 (@echarles)
* Fix loading toolbar factory twice #12599 (@fcollonval)
* Fixes behavior of maxNumberOutputs #12598 (@fcollonval)
* Focus not set when clicking on cell margin #12447 (@fcollonval)
* Make selected text translucent so the cursor is visible in vim
mode #12520 (@Jessie-Newman)
* Fix file browser search highlighting bug #12578 (@fcollonval)
- Release 3.4.2
* Building extensions fail if not using latest patch #12571
(@ajbozarth)
* fixed shouldOverwrite is never called when rename target exists
[#12543] (@ephes)
- Release 3.4.1
Enhancements made
* Setting to use the advanced setting editor for the settings
* #12466 (@echarles)
Bugs fixed
* Allow users to yarn link @jupyterlab/builder #12533
(@ajbozarth)
* Get Auto Close Brackets working consistently in Consoles #12508
(@Jessie-Newman)
* Handled new dialog creation with no buttons #12496 (@Jnnamchi)
* Handle missing preferredPath from the page config #12521
(@jtpio)
- Release 3.4.0
Enhancements made
* Add ability to open settings editor to specific plugin's
settings #12506 (@fcollonval)
* Don't sort context menu items by selector #12505 (@fcollonval)
* Allow downstream extension to set toolbar layout #12503
(@fcollonval)
* Display default value in setting editor for changed values
[#12468] (@echarles)
* Uses dark theme for Vega when JupyterLab theme is dark #12411
(@jweill-aws)
* Creates cell-toolbar, cell-toolbar-extension packages and
populates toolbar #12028 (@jweill-aws)
* Customize the file browser toolbar via the settings #12441
(@fcollonval)
* Wait until file browser commands are ready before activating
file browser widget #12435 (@fcollonval)
* Add a "New Tab" button that opens the launcher #12195
(@ajbozarth)
* Simplify galata import by proxying expect #12311 (@fcollonval)
* Open terminal in cwd from launcher #12250 (@rccern)
* Add support for filtering by field names in setting editor
[#12082] (@marthacryan)
* Use transform to quickly switch between tabs. #11074
... changelog too long, skipping 24 lines ...
ChANGELOG.md
==== python-jupyterlab-pygments ====
Version update (0.1.2 -> 0.2.2)
- Update to v0.2.2
* no release notes
- Add labextensions subpackage
==== tiff ====
- security update:
* CVE-2022-34526 [bsc#1202026]
+ tiff-CVE-2022-34526.patch
==== webkit2gtk3 ====
Version update (2.36.4 -> 2.36.5)
Subpackages: WebKit2GTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 webkit2gtk-4_1-injected-bundles
- Update to version 2.36.5 (boo#1201980):
+ Add support for PAC proxy in the WebDriver implementation.
+ Fix video playback when loaded through custom URIs, this fixes
video playback in the Yelp documentation browser.
- Fix WebKitWebView::context-menu when using GTK4.
- Fix LTO builds with GCC.
- Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-32792, CVE-2022-32816.
- Drop webkit2gtk3-fix-build.patch: fixed upstream.
==== webkit2gtk3-soup2 ====
Version update (2.36.4 -> 2.36.5)
Subpackages: WebKit2GTK-4.0-lang libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles
- Update to version 2.36.5 (boo#1201980):
+ Add support for PAC proxy in the WebDriver implementation.
+ Fix video playback when loaded through custom URIs, this fixes
video playback in the Yelp documentation browser.
- Fix WebKitWebView::context-menu when using GTK4.
- Fix LTO builds with GCC.
- Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-32792, CVE-2022-32816.
- Drop webkit2gtk3-fix-build.patch: fixed upstream.
==== webkit2gtk4 ====
Version update (2.36.4 -> 2.36.5)
Subpackages: WebKit2GTK-5.0-lang libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 typelib-1_0-JavaScriptCore-5_0 typelib-1_0-WebKit2-5_0 webkit2gtk-5_0-injected-bundles
- Update to version 2.36.5 (boo#1201980):
+ Add support for PAC proxy in the WebDriver implementation.
+ Fix video playback when loaded through custom URIs, this fixes
video playback in the Yelp documentation browser.
- Fix WebKitWebView::context-menu when using GTK4.
- Fix LTO builds with GCC.
- Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-32792, CVE-2022-32816.
- Drop webkit2gtk3-fix-build.patch: fixed upstream.
==== yast2-trans ====
Version update (84.87.20220729.608d4643aa -> 84.87.20220730.27a80cdf03)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20220730.27a80cdf03:
* Translated using Weblate (Slovak)
==== zlib-ng-compat ====
- Add baselibs.conf
[View Less]
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.…
[View More]opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
libgsm (1.0.19 -> 1.0.20)
mozilla-nss (3.79 -> 3.80)
nano
pandoc (2.17.1.1 -> 2.18)
xen (4.16.1_02 -> 4.16.1_06)
=== Details ===
==== libgsm ====
Version update (1.0.19 -> 1.0.20)
- Update to 1.0.20:
* Use $(RMFLAGS) with the rms in the Makefile; add -f to $(RMFLAGS) to
avoid spurious error messages during build.
- Rebase and rename libgsm-1.0.20.patch from libgsm-1.0.13.patch.
- Rebase libgsm-include.patch.
==== mozilla-nss ====
Version update (3.79 -> 3.80)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs
- update to NSS 3.80
* bmo#1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h.
* bmo#1617956 - Add support for asynchronous client auth hooks.
* bmo#1497537 - nss-policy-check: make unknown keyword check optional.
* bmo#1765383 - GatherBuffer: Reduced plaintext buffer allocations
by allocating it on initialization. Replaced
redundant code with assert. Debug builds: Added
buffer freeing/allocation for each record.
* bmo#1773022 - Mark 3.79 as an ESR release.
* bmo#1764206 - Bump nssckbi version number for June.
* bmo#1759815 - Remove Hellenic Academic 2011 Root.
* bmo#1770267 - Add E-Tugra Roots.
* bmo#1768970 - Add Certainly Roots.
* bmo#1764392 - Add DigitCert Roots.
* bmo#1759794 - Protect SFTKSlot needLogin with slotLock.
* bmo#1366464 - Compare signature and signatureAlgorithm fields in
legacy certificate verifier.
* bmo#1771497 - Uninitialized value in cert_VerifyCertChainOld.
* bmo#1771495 - Unchecked return code in sec_DecodeSigAlg.
* bmo#1771498 - Uninitialized value in cert_ComputeCertType.
* bmo#1760998 - Avoid data race on primary password change.
* bmo#1769063 - Replace ppc64 dcbzl intrinisic.
* bmo#1771036 - Allow LDFLAGS override in makefile builds.
==== nano ====
Subpackages: nano-lang
- Added obs-channel-and-patchinfo-syntax.patch to support syntax
highlighting for _channel and _patchinfo files used by OBS
==== pandoc ====
Version update (2.17.1.1 -> 2.18)
- Update pandoc to version 2.18.
[#]# pandoc 2.18 (2022-04-22)
* New input formats: `endnotexml` (EndNote XML bibliography),
`ris` (RIS bibliography).
* A RIS bibliography file may now be used with `--citeproc`.
* Citeproc: Allow a formatted bibliography to be placed in metadata fields
via a Div with class `refs` (#7969, #526). Thus, one can include a
metadata field, say `refs`, whose content is an
empty div with id `refs`, and the formatted bibliography will be put into
this metadata field. It may then be interpolated into a template using the
variable `refs`.
* Ensure that you don't get PDF output to terminal. `-t pdf` now behaves
like `-t docx` and gives an error unless the output is redirected.
* `--version` now prints hslua version (#7929) and
Lua version (#7997, Albert Krewinkel).
* Change `--metadata-file` parsing so that, when the input format is not
markdown or a markdown variant, pandoc's markdown is used (#6832, #7926).
When the input format is a markdown variant, the same format is used.
Reason for the change: it doesn't make sense to run the markdown parser
with a set of extensions designed for a non-markdown format, and
this dramatically limits what people can do in metadata files.
* Trim whitespace from math in `--webtex` (#7892).
This fixes problems with --webtex and markdown output,
when display math starts or ends with a newline.
* New exported module Text.Pandoc.Readers.EndNote, exporting
`readEndNoteXML`, `readEndNoteXMLCitation`,
and `readEndNoteXMLReferences`. [API change]
* `--self-contained`: issue warning rather than failing with an error
if a resource can't be found (#7904).
* New exported module, Text.Pandoc.Readers.RIS, exporting `readRIS` (#7894).
* LaTeX reader:
+ Handle subequations as inline math environment (#7883).
+ Rudimentary support for `vbox` (#7939).
+ Support `\today` (#7905).
+ Handle `\label` and `\ref` for footnotes (#7930).
+ Allow inline groups starting with `\bgroup` (#7953).
+ Use custom TokStream that keeps track of whether macros are expanded.
This allows us to improve performance a bit by avoiding unnecessary
runs of the macro expansion code (e.g. from 24 ms to 20 ms on
our standard benchmark).
+ Further optimizations for inline parsing.
+ Better handling of `\usepackage`. If the package is local but
causes parse errors, parse everything up to the error and skip the
rest. Issue a `CouldNotParseIncludeFile` warning indicating that
parsing failed at that point.
+ Text.Pandoc.Readers.LaTeX.Parsing: Monoid and Semigroup instances for
TokStream.
* HTML reader:
+ Give warnings and emit empty note when parsing
`<a epub:type="noteref">` and the identifier
doesn't correspond to anything in the note table (#7884).
Previously we just silently skipped these cases.
+ Fix parsing of epub footnotes (#7884).
* DocBook reader:
+ Handle complete set of entities as specified at
<https://www.w3.org/2003/entities/2007doc/byalpha.html> (#7938).
+ Handle abstract in info section (#7747).
+ Improve info parsing.
+ Simplify metadata parsing code (#7747).
Handle abstract as block-level content.
Report skipped info elements with `--verbose`.
+ Handle address and coyright in metadata (#7747).
* DokuWiki reader:
+ Add DokuWiki table alignment (#5202, damon-sava-stanley).
* RST reader:
+ Fix treatment of headerless simple tables (#7902).
+ Wrap math in Span to preserve attributes (#7998, Albert Krewinkel).
Math elements with a name, classes, or other fields are wrapped in a
`Span` with these attributes.
* JATS reader:
+ Improve handling of fn-group elements (#6348, Albert Krewinkel).
Footnotes in `<fn-group>` elements are collected and re-inserted into
the document as proper footnotes in the place where they are referenced.
+ Handle `pub-date` (#8000).
+ Support PMID, DOI, issue in citations (#7995).
+ Improve refs parsing. Handle `issn` and `isbn`; use simpler form
for issued date.
+ Strip 'ref-' from ref id in constructing CSL id. This allows better
round-tripping, because the JATS writer adds the `ref-` prefix to
the citation id to get the ref element's id.
* Org reader:
+ Allow ":" in property drawer keys (Lucas V. R).
Any non-space character is allowed as property drawer key, including ":"
itself (so it is not really a delimiter). The real delimiter is a space
character, so in a drawer like
```
:PROPERTIES:
::k:ey:: value
:END:
```
":k:ey:" is a key with value "value".
+ Allow comments above property drawer.
+ More flexible LaTeX environments (Lucas V. R).
+ Handle `#+bibliography:` as metadata so that it can work with
`--citeproc`.
+ Parse `#+print_bibliography:` as Div with id `refs`.
+ Allow multiple `#+bibliography:`.
* Markdown reader:
+ Allow one-column pipe tables with pipe on right (#7919).
... changelog too long, skipping 171 lines ...
with hslua 2.1 and Lua 5.3, otherwise hslua 2.2 and Lua 5.4.
==== xen ====
Version update (4.16.1_02 -> 4.16.1_06)
- Added --disable-pvshim when running configure in xen.spec.
We have never shipped the shim and don't need to build it.
- bsc#1199965 - VUL-0: CVE-2022-26362: xen: Race condition
in typeref acquisition
62a1e594-x86-clean-up-_get_page_type.patch
62a1e5b0-x86-ABAC-race-in-_get_page_type.patch
- bsc#1199966 - VUL-0: CVE-2022-26363,CVE-2022-26364: xen:
Insufficient care with non-coherent mappings
62a1e5d2-x86-introduce-_PAGE_-for-mem-types.patch
62a1e5f0-x86-dont-change-cacheability-of-directmap.patch
62a1e60e-x86-split-cache_flush-out-of-cache_writeback.patch
62a1e62b-x86-AMD-work-around-CLFLUSH-ordering.patch
62a1e649-x86-track-and-flush-non-coherent.patch
- bsc#1200549 VUL-0: CVE-2022-21123,CVE-2022-21125,CVE-2022-21166:
xen: x86: MMIO Stale Data vulnerabilities (XSA-404)
62ab0fab-x86-spec-ctrl-VERW-flushing-runtime-cond.patch
62ab0fac-x86-spec-ctrl-enum-for-MMIO-Stale-Data.patch
62ab0fad-x86-spec-ctrl-add-unpriv-mmio.patch
- bsc#1201469 - VUL-0: CVE-2022-23816,CVE-2022-23825,CVE-2022-29900:
xen: retbleed - arbitrary speculative code execution with return
instructions (XSA-407)
62cc31ed-x86-honour-spec-ctrl-0-for-unpriv-mmio.patch
62cc31ee-cmdline-extend-parse_boolean.patch
62cc31ef-x86-spec-ctrl-fine-grained-cmdline-subopts.patch
62cd91d0-x86-spec-ctrl-rework-context-switching.patch
62cd91d1-x86-spec-ctrl-rename-SCF_ist_wrmsr.patch
62cd91d2-x86-spec-ctrl-rename-opt_ibpb.patch
62cd91d3-x86-spec-ctrl-rework-SPEC_CTRL_ENTRY_FROM_INTR_IST.patch
62cd91d4-x86-spec-ctrl-IBPB-on-entry.patch
62cd91d5-x86-cpuid-BTC_NO-enum.patch
62cd91d6-x86-spec-ctrl-enable-Zen2-chickenbit.patch
62cd91d7-x86-spec-ctrl-mitigate-Branch-Type-Confusion.patch
- Upstream bug fixes (bsc#1027519)
62a99614-IOMMU-x86-gcc12.patch
62bdd840-x86-spec-ctrl-only-adjust-idle-with-legacy-IBRS.patch
62bdd841-x86-spec-ctrl-knobs-for-STIBP-and-PSFD.patch
- Drop patches replaced by upstream versions
xsa401-1.patch
xsa401-2.patch
xsa402-1.patch
xsa402-2.patch
xsa402-3.patch
xsa402-4.patch
xsa402-5.patch
- bsc#1201394 - VUL-0: CVE-2022-33745: xen: insufficient TLB flush
for x86 PV guests in shadow mode (XSA-408)
xsa408.patch
- Fix gcc13 compilation error
62c56cc0-libxc-fix-compilation-error-with-gcc13.patch
[View Less]
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.…
[View More]opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.0.37 -> 7.1.0.44)
avahi
cockpit
codec2 (1.0.3 -> 1.0.5)
cups
curl (7.83.1 -> 7.84.0)
gpg2 (2.3.6 -> 2.3.7)
kdump (1.0.2+git13.ge715180 -> 1.0.2+git17.g491c742)
kernel-firmware (20220622 -> 20220714)
libcap (2.64 -> 2.65)
libdmtx (0.7.5 -> 0.7.7)
libnettle (3.8 -> 3.8.1)
libstorage-ng (4.5.31 -> 4.5.33)
libuv (1.44.1 -> 1.44.2)
perl
polkit
poppler (22.06.0 -> 22.07.0)
poppler-qt5 (22.06.0 -> 22.07.0)
redis (7.0.3 -> 7.0.4)
shim
yast2-bootloader (4.5.1 -> 4.5.2)
=== Details ===
==== ImageMagick ====
Version update (7.1.0.37 -> 7.1.0.44)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.0.44
upstream changelog:
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
- modified patches
% ImageMagick-library-installable-in-parallel.patch (refreshed)
- update to 7.1.0.42:
* incorrect pointer update when computing median @ ImageMagick/ImageMagick#5298
* Added extra check because the flag was removed in 0.21-Beta1.
* the -transparent-color option accepts colornames @ ImageMagick/ImageMagick#5297
* fix MVG stroke-opacity issues
* map channel parameter to pixel channel offset @ ImageMagick/ImageMagick#5308
* beta release
* preserve input depth @ ImageMagick/ImageMagick6#188
* update to latest automake/autoconf release
* recognize SVG file if it starts with whitespace @ ImageMagick/ImageMagick#5294
* Removed unused stealth flag.
* Removed used path field.
* Removed unused target field.
* Removed unused exempt field.
* Added extra option to the skip spaces to the MagicInfo.
* Always start at the start of the string when comparing the magic value.
* cosmetic
* avoid OMP deadlock @ ImageMagick/ImageMagick#5301
* prevent undefined shift
* prevent possible buffer overflow
* correct copy/paste error
* We need to free the stream ourselves when the call to FT_Open_Face fails.
* Added missing call to DestroyString.
* MVG requires seekable stream
* Added extra malloc method to avoid early calls to the policy checks on Windows.
* Removed defines.
* Only check for dll's in non static build.
* Set the client name and path earlier.
* fix background opacity rounding @ ImageMagick/ImageMagick#5264
* empty result on conversion from tiff to pdf @ ImageMagick/ImageMagick#5256
* Corrected patch that was made for #5256.
* Pass negative interline_spacing to pango
* Also check extension to fix possible stack overflow.
* eliminate possible buffer overflow
* set group 4 photometric to min-is-white
* dasharray requires non-zero values
* eliminate compiler warning
* only permit one rows/columns keyword
* Moved allocation back to the correct spot to avoid bypassing SetImageExtent.
* Also restore setting quantum_info to null.
* eliminate uninitialized value warning
* Make sure all text strings are freed when realloc fails.
* Reset primitive_info inside RenderMVGContent because this address could point to another address.
* Always check if .text is set instead.
* eliminate uninitialized alpha pixel
* recognize read-mask & write-mask for -channel option
* eliminate compiler warning
* fix scrambled image @ ImageMagick/ImageMagick#5291
* yikes, misspelled 'level'
* Fixed possible memory leak.
* support floating point formats
* initialize date:precision in private TimerComponentGenesis() method
* check for -1 is not required
* refactor date:precision flow
* eliminate compiler warning
* correct formulation of the phash normalization
* phash normalization is conventional RMS calculation
* only check shread count once
* add private ShredMagickMemory() method to hide contents of memory buffers
before they are relinquished
* system:shred value has precedence over MAGICK_SHRED_PASSES
* support shredding memory pools
* update memory pointer
* Silenced warning.
* Corrected documentation.
* first pass is fast for performance, second is crytographically strong
* recommend shred value of 1 for performance reasons
* only set the # of shred passes one time
* if enabled, shred streams
* unmap mapped pixels
* default mapped member to false
* don't shred streaming pixels
* rework shred passes
* optimize performance
* change per lint advisement
* typecast per lint advisement
* eliminate compiler warning
* eliminate lint warnings
* eliminate lint warnings
* support date:timestamp property
* eliminate lint warnings
* set timestamp from image->timestamp member
* eliminate lint warnings
* support MAGICK_DATE_PRECISION and registrydateprecision defines
* support registry:precision define
* need at least one policy defined
* eliminate lint warnings
* note, system:precision is deprecated
* eliminate icc compiler warnings
* eliminate icc compiler warnings
* eliminate compiler warning
* Reverted incorrect patch when doing auto-orient of an image that is
right-top or left-bottom.#
* Corrected conversion from flip to Orientation.
... changelog too long, skipping 22 lines ...
* Also remove date:timestamp when stripping the image.
==== avahi ====
Subpackages: libavahi-client3 libavahi-common3 libavahi-core7
- Move the dbus-1 system.d file to /usr (bsc#1201345)
==== cockpit ====
Subpackages: cockpit-bridge cockpit-packagekit cockpit-system
- Update suse-microos-branding.patch for new /etc/os-release ID.
- Add storage-btrfs.patch to enable BTRFS use in cockpit-storage.
==== codec2 ====
Version update (1.0.3 -> 1.0.5)
- Update to version 1.0.5
* Bump version to 1.0.5 to clearly delineate from various 1.0.4
tags, otherwise the same as 1.0.4_rc2
- Update to version 1.0.4
* 2020B,
* build system and tools maintenance.
* This RC fixes FreeDV API backwards compatibility issue in v1.0.4
==== cups ====
Subpackages: cups-client cups-config libcups2 libcupsimage2
- Move the dbus-1 system.d file to /usr (bsc#1201346)
==== curl ====
Version update (7.83.1 -> 7.84.0)
Subpackages: libcurl4
- add tests-for-32bit.patch to fix testsuite on 32bit platforms
- Update to 7.84.0:
* Security fixes:
- (bsc#1200737, CVE-2022-32208): FTP-KRB bad message verification
- (bsc#1200736, CVE-2022-32207): Unpreserved file permissions
- (bsc#1200735, CVE-2022-32206): HTTP compression denial of service
- (bsc#1200734, CVE-2022-32205): Set-Cookie denial of service
* Changes:
- curl: add --rate to set max request rate per time unit
- curl: deprecate --random-file and --egd-file
- curl_version_info: add CURL_VERSION_THREADSAFE
- CURLINFO_CAPATH/CAINFO: get the default CA paths from libcurl
- lib: make curl_global_init() threadsafe when possible
- libssh2: add CURLOPT_SSH_HOSTKEYFUNCTION
- opts: deprecate RANDOM_FILE and EGDSOCKET
- socks: support unix sockets for socks proxy
* Bugfixes:
- aws-sigv4: fix potentional NULL pointer arithmetic
- bindlocal: don't use a random port if port number would wrap
- c-hyper: mark status line as status for Curl_client_write()
- ci: avoid `cmake -Hpath`
- CI: bump FreeBSD 13.0 to 13.1
- ci: update github actions
- cmake: add libpsl support
- cmake: do not add libcurl.rc to the static libcurl library
- cmake: enable curl.rc for all Windows targets
- cmake: fix detecting libidn2
- cmake: support adding a suffix to the OS value
- configure: skip libidn2 detection when winidn is used
- configure: use the SED value to invoke sed
- configure: warn about rustls being experimental
- content_encoding: return error on too many compression steps
- cookie: address secure domain overlay
- cookie: apply limits
- copyright.pl: parse and use .reuse/dep5 for skips
- copyright: make repository REUSE compliant
- curl.1: add a few see also --tls-max
- curl.1: mention exit code zero too
- curl: re-enable --no-remote-name
- curl_easy_pause.3: remove explanation of progress function
- curl_getdate.3: document that some illegal dates pass through
- Curl_parsenetrc: don't access local pwbuf outside of scope
- curl_url_set.3: clarify by default using known schemes only
- CURLOPT_ALTSVC.3: document the file format
- CURLOPT_FILETIME.3: fix the protocols this works with
- CURLOPT_HTTPHEADER.3: improve comment in example
- CURLOPT_NETRC.3: document the .netrc file format
- CURLOPT_PORT.3: We discourage using this option
- CURLOPT_RANGE.3: remove ranged upload advice
- digest: added detection of more syntax error in server headers
- digest: tolerate missing "realm"
- digest: unquote realm and nonce before processing
- DISABLED: disable 1021 for hyper again
- docs/cmdline-opts: add copyright and license identifier to each file
- docs/CONTRIBUTE.md: document the 'needs-votes' concept
- docs: clarify data replacement policy for MIME API
- doh: remove UNITTEST macro definition
- examples/crawler.c: use the curl license
- examples: remove fopen.c and rtsp.c
- FAQ: Clarify Windows double quote usage
- fopen: add Curl_fopen() for better overwriting of files
- ftp: restore protocol state after http proxy CONNECT
- ftp: when failing to do a secure GSSAPI login, fail hard
- GHA/hyper: enable debug in the build
- gssapi: improve handling of errors from gss_display_status
- gssapi: initialize gss_buffer_desc strings
- headers api: remove EXPERIMENTAL tag
- http2: always debug print stream id in decimal with %u
- http2: reject overly many push-promise headers
- http: restore header folding behavior
- hyper: use 'alt-used'
- krb5: return error properly on decode errors
- lib: make more protocol specific struct fields #ifdefed
- libcurl-security.3: add "Secrets in memory"
- libcurl-security.3: document CRLF header injection
- libssh: skip the fake-close when libssh does the right thing
- links: update dead links to the curl-wiki
- log2changes: do not indent empty lines [ci skip]
- macos9: remove partial support
- Makefile.am: fix portability issues
- Makefile.m32: delete obsolete options, improve -On [ci skip]
- Makefile.m32: delete two obsolete OpenSSL options [ci skip]
- Makefile.m32: stop forcing XP target with ipv6 enabled [ci skip]
- max-time.d: clarify max-time sets max transfer time
- mprintf: ignore clang non-literal format string
- netrc: check %USERPROFILE% as well on Windows
- netrc: support quoted strings
- ngtcp2: allow curl to send larger UDP datagrams
- ngtcp2: correct use of ngtcp2 and nghttp3 signed integer types
- ngtcp2: enable Linux GSO
- ngtcp2: extend QUIC transport parameters buffer
- ngtcp2: fix alert_read_func return value
- ngtcp2: fix typo in preprocessor condition
- ngtcp2: handle error from ngtcp2_conn_submit_crypto_data
- ngtcp2: send appropriate connection close error code
- ngtcp2: support boringssl crypto backend
- ngtcp2: use helper funcs to simplify TLS handshake integration
- ntlm: provide a fixed fake host name
- projects: fix third-party SSL library build paths for Visual Studio
... changelog too long, skipping 40 lines ...
- x509asn1: mark msnprintf return as unchecked
==== gpg2 ====
Version update (2.3.6 -> 2.3.7)
Subpackages: dirmngr
- GnuPG 2.3.7:
* CVE-2022-34903: garbled status messages could trick gpgme and
other parsers to accept faked status lines [boo#1201225]
* A number of bug fixes to the gpg command line interface
* gpgsm gained a number of new options and got some rework on
the PKCS#12 parser to support DFN issues keys
* The gpg agent got some added options and UI tweaks
* smart card support got a number of bug fixes, and improved
support for Technology Nexus cards and Yubikey
* The Telesec ESIGN application is now supported
==== kdump ====
Version update (1.0.2+git13.ge715180 -> 1.0.2+git17.g491c742)
- fix network-related dracut options handling for fadump case
- drop the elevator=deadline kernel option (bsc#1193211)
- fix broken URL in manpage (bsc#1187312)
==== kernel-firmware ====
Version update (20220622 -> 20220714)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20220714 (git commit 84661a3ba62f):
* amdgpu: update DMCUB firmware for DCN 3.1.6
* WHENCE: Correct dangling symlinks
* Correct WHENCE entry for wfx firmware
* bnx2: Drop unsupported Broadcom NetXtremeII firmware
* bnx2: drop unsupported firmwares
* bnx2: sort firmware names in filesystem order
* Remove old Broadcom Everest (bnx2x) v4/5 firmware
* drop Token Ring network firmwares
* Drop TDA7706 radio firmware
* Drop Intel WiMax firmware
* Drop Computone IntelliPort Plus serial firmware
* Drop ATM Ambassador devices firmware
* brocade: drop old unsupported firmware revs
* amdgpu: update yellow carp DMCUB firmware
* linux-firmware: update firmware for MT7622 WiFi device
* linux-firmware: update firmware for MT7922 WiFi device
* linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* mediatek: Add SCP firmware for MT8186
* rtw88: 8822c: Update normal firmware to v9.9.13
* rtw88: 8822c: Update normal firmware to v9.9.12
- Drop obsoleted temporary patches:
wfx-WHENCE-fix.diff
brcm-symlink-fixes.diff
- Minor update of README.build
- Fix missing aliases for qlogic (bsc#1200889)
==== libcap ====
Version update (2.64 -> 2.65)
- update to 2.65:
* Fix syntax error in DEBUG build of protected code in setcap.c.
* Prevent bash from reading the wrong startup files when the capsh --user=xxx
argument is used to invoke a shell as the user xxx. This is done by capsh now
changing the USER and HOME environment variables when --user is specified.
The argument --noenv can be used to suppress this behavior to what used to be
the problematic default. (Bug: 215926)
* Improved documentation
==== libdmtx ====
Version update (0.7.5 -> 0.7.7)
- update to 0.7.7:
* bug 9: Prevent edifact barcode encoding '31' from user input
* fix compiler warnings and build errors
* properly handle error when decoding Base256 scheme
* remove dead and irrelevant links in the README
* Add validity checks in DecodeSchemeAscii()
* Declare variables in DecodeSchemeAscii() locally.
* Implement RsFindErrorLocatorPoly fix from shm0nya
- drop libdmtx-DmtxPropRowPadBytes.patch (upstream)#
==== libnettle ====
Version update (3.8 -> 3.8.1)
Subpackages: libhogweed6 libnettle8
- update to 3.8.1:
* Avoid non-posix m4 argument references in the chacha
implementation for arm64, powerpc64 and s390x. Reported by
Christian Weisgerber, fix contributed by Mamone Tarsha.
* Use explicit .machine pseudo-ops where needed in s390x
assembly files. Bug report by Andreas K. Huettel, fix
contributed by Mamone Tarsha.
==== libstorage-ng ====
Version update (4.5.31 -> 4.5.33)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#892
- continue flushing pending holders if a device cannot be found
(see bsc#1201880)
- coding style
- removed unneeded mockups
- 4.5.33
- Translated using Weblate (Czech) (bsc#1149754)
- 4.5.32
==== libuv ====
Version update (1.44.1 -> 1.44.2)
- update to 1.44.2:
* Add SHA to ChangeLog
* aix, ibmi: handle server hang when remote sends TCP RST
* process: reset the signal mask if the fork fails
* zos: implement cmpxchgi() using assembly
* ibmi: Implement UDP disconnect
* unix: simplify getpwuid call
* process,iOS: fix build breakage in process.c
* test: remove unused declarations in tcp_rst test
* core: add thread-safe strtok implementation
* test: fix flaky file watcher test
* unix,win: fix UV_RUN_ONCE + uv_idle_stop loop hang
* win: fix unexpected ECONNRESET error on TCP socket
* doc: make sample cross-platform build
* test: separate some static variables by test cases
* sunos: fs-event callback can be called after uv_close()
* uv: re-register interest in a file after change
* uv: register UV_RENAME event for _RFIM_UNLINK
* uv: register __rfim_event 156 as UV_RENAME
* release: check versions of autogen scripts are newer
* test: rewrite embed test
* unix: use MSG_CMSG_CLOEXEC where supported
* test: remove disabled callback_order test
* kqueue: skip EVFILT_PROC when invalidating fds
* zos: don't err when killing a zombie process
* zos: avoid fs event callbacks after uv_close()
* zos: correctly format interface addresses names
* zos: add uv_interface_addresses() netmask support
* zos: improve memory management of ip addresses
* tcp,pipe: fail `bind` or `listen` after `close`
* zos: implement uv_available_parallelism()
* udp,win: fix UDP compiler warning
* zos: fix early exit of epoll_wait()
* unix,tcp: fix errno handling in uv__tcp_bind()
* shutdown,unix: reduce code duplication
* unix: fix c99 comments
* unix: retry tcgetattr/tcsetattr() on EINTR
* unix,stream: optimize uv_shutdown() codepath
* unix,tcp: allow EINVAL errno from setsockopt in uv_tcp_close_reset()
* win,shutdown: improve how shutdown is dispatched
==== perl ====
Subpackages: perl-base
- fix build on ppc
* updated patch: perl_skip_flaky_tests_powerpc.patch
==== polkit ====
Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 typelib-1_0-Polkit-1_0
- split out pkexec into seperate package to make system hardening
easier (to avoid installing it jsc#PED-132 jsc#PED-148).
==== poppler ====
Version update (22.06.0 -> 22.07.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler122 poppler-tools
- update to 22.07.0:
* Fix crash when filling in forms in some files. Issue #1258
* Fix first lines of Annotations sometimes being cut off. Issue #1246
* Signatures: Don't crash if the signature doesn't have a common name
* CairoFontEngine: increment font_face reference when retrieving from the cache
* Add ToUnicode support for lessorequalslant and greaterorequalslant
glib:
* Add support for stamp annotation
- add gpg keyring validation for the release tarball
- drop da226d346e691f7545d995d6761d43e08855a3b7.patch (upstream)
- Add da226d346e691f7545d995d6761d43e08855a3b7.patch --
CairoFontEnginer: increment font_face reference when retrieving
from the cache; this fixes crashes with certain pdfs
[glgo#GNOME/evince#1808, glfo#poppler/poppler#1212].
==== poppler-qt5 ====
Version update (22.06.0 -> 22.07.0)
- update to 22.07.0:
* Fix crash when filling in forms in some files. Issue #1258
* Fix first lines of Annotations sometimes being cut off. Issue #1246
* Signatures: Don't crash if the signature doesn't have a common name
* CairoFontEngine: increment font_face reference when retrieving from the cache
* Add ToUnicode support for lessorequalslant and greaterorequalslant
glib:
* Add support for stamp annotation
- add gpg keyring validation for the release tarball
- drop da226d346e691f7545d995d6761d43e08855a3b7.patch (upstream)
- Add da226d346e691f7545d995d6761d43e08855a3b7.patch --
CairoFontEnginer: increment font_face reference when retrieving
from the cache; this fixes crashes with certain pdfs
[glgo#GNOME/evince#1808, glfo#poppler/poppler#1212].
==== redis ====
Version update (7.0.3 -> 7.0.4)
- Security update to version 7.0.4
(CVE-2022-31144) A specially crafted XAUTOCLAIM command on a stream
key in a specific state may result with heap overflow, and potentially
remote code execution. The problem affects Redis versions 7.0.0 or newer.
==== shim ====
- Change the URL in SBAT section to mail:security@suse.de. (bsc#1193282)
- Revoked the change in shim.spec for "use common SBAT values (boo#1193282)"
- we need to build openSUSE Tumbleweed's shim on Leap 15.4 because Factory
is unstable for building out a stable shim binary for signing. (bsc#1198458)
- But the rpm-config-suse package in Leap 15.4 is direct copied from SLE 15.4
because closing-the-leap-gap. So sbat_distro_* variables are SLE version,
not for openSUSE. (bsc#1198458)
==== yast2-bootloader ====
Version update (4.5.1 -> 4.5.2)
- Execute the command grub2-mkpasswd-pbkdf2 in the target system
so the module can run in a minimal container (bsc#1199840).
- 4.5.2
[View Less]