November 2022 - MicroOS - openSUSE Mailing Lists

New MicroOS snapshot 20221129 released!
by Richard Brown 30 Nov '22

30 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: kdesu libcontainers-common libreoffice (7.4.2.3 -> 7.4.3.2) libva libva-gl python-pycairo (1.21.0 -> 1.22.0) systemd (252.1 -> 252.2) === Details === ==== kdesu ==== Subpackages: libKF5Su5 libKF5Su5-lang - Drop fpie.patch, works as expected without - Drop setgid bit on kdesud, no longer needed since 5.99.0 ==== libcontainers-common ==== - add requires on util-linux-systemd for findmnt in profile script - only set storage_driver env when no libpod exists - avoid quoting issue ==== libreoffice ==== Version update (7.4.2.3 -> 7.4.3.2) Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Update to 7.4.3.2: https://wiki.documentfoundation.org/Releases/7.4.3/RC2 https://wiki.documentfoundation.org/Releases/7.4.3/RC1 - Updated bundled dependencies: * curl-7.83.1.tar.xz -> curl-7.86.0.tar.xz - Added patches: * fix_harfbuzz_on_sle12_sp5.patch * fix_webp_on_sle12_sp5.patch - Refresh fix_gtk_popover_on_3.20.patch - Removed upstreamed patches: * bsc1202866.patch * bsc1201095.patch - Fix bsc#1202866 - LO-L3: PPTX: indentation of list items far too far to the left (overruns bullet items) * bsc1202866.patch ==== libva ==== Subpackages: libva-drm2 libva-x11-2 libva2 - Make sure make runs with verbose builds so we see the gcc cmdlines - Added propagate-dpy.patch: (boo#1202828) Patch taken from https://github.com/intel/libva/issues/479 ==== libva-gl ==== - Make sure make runs with verbose builds so we see the gcc cmdlines - Added propagate-dpy.patch: (boo#1202828) Patch taken from https://github.com/intel/libva/issues/479 ==== python-pycairo ==== Version update (1.21.0 -> 1.22.0) - Updtae to version 1.22.0: * Officially support Python 3.11. * PDFSurface.version_to_string(): Fix crash with negative versions. * typing: ImageSurface.get_stride() returns an int. * typing: Fix incorrect interface for Matrix constructor. * typing: Use Generic for Context. * docs: some cairo.Context fixes. * docs: try to make create_from_png/write_to_png more clear. * docs: add an example for how to convert a surface to pillow. * docs: cairo.Format.RGB24: document that unused bytes may be overwritten. * tests: donât depend on specific ref counts. * tests: compatibility fixes for cairo 1.17.6. - Drop f5a795ea.patch: fixed upstream. ==== systemd ==== Version update (252.1 -> 252.2) Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev - Import commit e7e931b07edd786dc6ca1dae6c23ff7b785f8efd (merge of v252.2) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/64dc546913525e33e734500055a62ed… - Rebase 6000-Revert-tmpfiles-whenever-creating-an-inode-immediate.patch

1 0

New ARM MicroOS snapshot 20221128 released!
by Guillaume Gardet 29 Nov '22

29 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: plymouth snapper === Details === ==== plymouth ==== Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner ==== snapper ==== Subpackages: libsnapper6 snapper-zypp-plugin - fix build with boost 1.81

1 0

New MicroOS snapshot 20221128 released!
by Richard Brown 29 Nov '22

29 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: plymouth snapper === Details === ==== plymouth ==== Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner ==== snapper ==== Subpackages: libsnapper6 snapper-zypp-plugin - fix build with boost 1.81

1 0

New ARM MicroOS snapshot 20221127 released!
by Guillaume Gardet 28 Nov '22

28 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor (3.0.7 -> 3.1.2) busybox conmon (2.1.3 -> 2.1.5) filesystem gawk (5.2.0 -> 5.2.1) grub2 hicolor-icon-theme highway icewm (3.2.0 -> 3.2.2) inxi (3.3.21 -> 3.3.23) iproute2 iputils (20211215 -> 20221126) iso-codes (4.11.0 -> 4.12.0) kdump (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38) libX11 libapparmor (3.0.7 -> 3.1.2) libcontainers-common (20210626 -> 20221122) libdrm libeconf (0.4.8+git20221114.7ff7704 -> 0.4.9) libgcrypt (1.9.4 -> 1.10.1) libpng16 (1.6.38 -> 1.6.39) libstorage-ng (4.5.52 -> 4.5.53) libzypp (17.31.5 -> 17.31.6) memcached mpfr mutter nano (6.4 -> 7.0) nghttp2 (1.50.0 -> 1.51.0) openvpn (2.5.7 -> 2.5.8) patterns-microos perl-IO-Socket-SSL (2.075 -> 2.077) psmisc python-httpcore python-jsonschema (4.17.0 -> 4.17.1) python-pylibmc (1.6.1 -> 1.6.3) python-setuptools (65.5.1 -> 65.6.3) ruby-common (2.6 -> 3.2) rubygem-gem2rpm schily selinux-policy shim slirp4netns (1.1.11 -> 1.2.0) sqlite3 (3.39.4 -> 3.40.0) systemd systemd-rpm-macros (17 -> 18) vim (9.0.0814 -> 9.0.0924) === Details === ==== apparmor ==== Version update (3.0.7 -> 3.1.2) Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - update to AppArmor 3.1.2 - lots of cleanups, improvements and bugfixes in all areas - rework internal profile storage and handling in the aa-* tools - support boolean variable definitions in the aa-* tools - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1 and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2 for the detailed upstream changelog - remove upstream(ed) patches: - apparmor-3.0.7-egrep.patch - dnsmasq.diff - profiles-permit-php-fpm-pid-files-directly-under-run.patch - zgrep-profile-mr870.diff - no longer ship precompiled profile cache for Tumbleweed (boo#1205659) - BuildRequire iproute2 (needed for aa-unconfined tests) ==== busybox ==== Subpackages: busybox-static - Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065, boo#1199744). ==== conmon ==== Version update (2.1.3 -> 2.1.5) - New upstream release 2.1.5: Bug Fixes don't leak syslog_identifier logging: do not read more that the buf size logging: fix error handling Misc Makefile: Fix install for FreeBSD signal: Track changes to get_signal_descriptor in the FreeBSD version Packit: initial enablement - New upstream release 2.1.4: Bug fixes Fix a bug where conmon crashed when it got a SIGCHLD ==== filesystem ==== - Add %_user_tmpfilesdir to the filesystem - Added zh_Hans (simplified Chinese) and zh_Hant (traditional chinese) locales ==== gawk ==== Version update (5.2.0 -> 5.2.1) - Update to gawk 5.2.1 * Issues related to the sign of NaN and Inf values on RiscV have been fixed * A few issues with the debugger have been fixed. * More subtle issues with untyped array elements being passed to functions have been fixed. * The rwarray extension's readall() function has had some bugs fixed. * The PMA allocator is now supported on FreeBSD, OpenBSD and Linux on S/390x. - double-free.patch, pma.patch, nan-sign.patch: Removed ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Make full utilization of btrfs bootloader area (bsc#1161823) * 0001-fs-btrfs-Use-full-btrfs-bootloader-area.patch * 0002-Mark-environmet-blocks-as-used-for-image-embedding.patch - Patch removed * 0001-i386-pc-build-btrfs-zstd-support-into-separate-modul.patch ==== hicolor-icon-theme ==== - Add 1024x1024 directory for package ownership ==== highway ==== - Fix the library being built for incorrect microarchitecture on armv{6,7}hl. * add arm-disable-runtime-dispatch.patch to fix compiler error - Actually run the testsuite. ==== icewm ==== Version update (3.2.0 -> 3.2.2) Subpackages: icewm-config-upstream icewm-default icewm-lang - Update to version 3.2.2: + Freeze the task pane layout while Alt is pressed, + Only sort Alt+Tab on WM_CLASS when persistent, + Also sort Alt+Tab on the 'order' winoption when persistent, + Let the Escape key cancel a menu with all its submenu's, + Add a menu entry to rename the window title manually, + Adapt absolute paths in .desktop files to the installation prefix, + The sorting of windows in the window list window was improved a lot, + Restore the named frame tabs when recovering from a crash, + Preserve the non-fullscreen non-maximized window geometry across restarts, + Try harder to avoid a situation where nothing is focused, + Update the window list when a tab is moved to its own frame, + Make the window list menu actions more tab-savvy. + Drop the obsolete LSM file altogether. - Changes from version 3.2.1: + Add QuickSwitchPersistence=0 preference for stateful Alt+Tab. + Demarcate workspaces with a horizontal line in Alt+Tab. + Fixes for Alt+Tab size calculations. + Fix for changing workspace when Alt+Tab is open. + Fix for KeySysSwitchClass history. + Don't attempt to focus NoInput windows. + Ensure that active Alt+Tab item is visible. + Also sort Alt+Tab items on WM_CLASS. + Fix a compile error for GCC 4.8.5. + When moving a tab to a new frame, activate it. + Updated translations. ==== inxi ==== Version update (3.3.21 -> 3.3.23) - Update to version 3.3.23: + /usr/share/doc/packages/inxi/inxi.changelog. ==== iproute2 ==== Subpackages: iproute2-bash-completion - Replace routel program by a non-python version [boo#1205632] ==== iputils ==== Version update (20211215 -> 20221126) - Update to version 20221126 https://github.com/iputils/iputils/releases/tag/20221126 - Update configure variables (ninfod, rarpd and rdisc were removed from upstream in next release => remove -DBUILD_NINFOD=false -DBUILD_RARPD=false - DBUILD_RDISC=false) - Remove 2 backported fixes from this release 0001-ping-Add-SA_RESTART-to-sa_flags.patch 0002-ping-Make-ping_rts-struct-static.patch ==== iso-codes ==== Version update (4.11.0 -> 4.12.0) Subpackages: iso-codes-lang - Update to version 4.12.0: + ISO 3166-1: Update name for TR (TÃ¼rkiye). Fixes #38 + Updated translations for ISO 3166-1, ISO 3166-2, ISO 3166-3, ISO 639-2, ISO 639-3, ISO 639-5, ISO 4217, and ISO 15924. ==== kdump ==== Version update (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38) - Make the kdump-save.service reboot after kdump-save is finished (bsc#1204000) - fix renaming of qeth interfaces (bsc#1204743, bsc#1144337) - ppc64: rebuild initrd image after migration (bsc#1191410) - kdumptool calibrate: modify fadump suggestions (jsc#IBM-1027) ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - U_Fix-797755-Allow-X-IfEvent-to-reenter-libX11.patch * fixed Firefox freezes (regression since 1.8.2) (boo#1205778) ==== libapparmor ==== Version update (3.0.7 -> 3.1.2) - update to AppArmor 3.1.2 - lots of cleanups, improvements and bugfixes in all areas - rework internal profile storage and handling in the aa-* tools - support boolean variable definitions in the aa-* tools - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1 and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2 for the detailed upstream changelog - remove upstream(ed) patches: - apparmor-3.0.7-egrep.patch - dnsmasq.diff - profiles-permit-php-fpm-pid-files-directly-under-run.patch - zgrep-profile-mr870.diff - no longer ship precompiled profile cache for Tumbleweed (boo#1205659) - BuildRequire iproute2 (needed for aa-unconfined tests) ==== libcontainers-common ==== Version update (20210626 -> 20221122) - Update bundled common to 0.50.1 - Update bundled image to 5.23.1 - Update bundled storage to 1.44.0 - Drop bundled podman - Bump version to 20221122 - Install container-storage-driver.sh in /etc/ on Leap & SLE ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - Apply n_libdrm-drop-valgrind-dep-generic.patch and n_libdrm-drop-valgrind-dep-intel.patch only when the build uses meson < 0.64. With meson 0.64, we don't get the dependency on valgraind added. ==== libeconf ==== Version update (0.4.8+git20221114.7ff7704 -> 0.4.9) - Update to version 0.4.9: * libeconf.h: added missing sys/types.h header (#171) * new API calls: econf_readFileWithCallback, econf_readDirsWithCallback, econf_readDirsHistoryWithCallback (#172) * Checking NULL comment parameter in the parsing functions. ==== libgcrypt ==== Version update (1.9.4 -> 1.10.1) - Update to 1.10.1: * Bug fixes: - Fix minor memory leaks in FIPS mode. - Build fixes for MUSL libc. * Other: - More portable integrity check in FIPS mode. - Add X9.62 OIDs to sha256 and sha512 modules. * Add the hardware optimizations config file hwf.deny to the /etc/gcrypt/ directory. This file can be used to globally disable the use of hardware based optimizations. * Remove not needed separate_hmac256_binary hmac256 package - Update to 1.10.0: * New and extended interfaces: - New control codes to check for FIPS 140-3 approved algorithms. - New control code to switch into non-FIPS mode. - New cipher modes SIV and GCM-SIV as specified by RFC-5297. - Extended cipher mode AESWRAP with padding as specified by RFC-5649. - New set of KDF functions. - New KDF modes Argon2 and Balloon. - New functions for combining hashing and signing/verification. * Performance: - Improved support for PowerPC architectures. - Improved ECC performance on zSeries/s390x by using accelerated scalar multiplication. - Many more assembler performance improvements for several architectures. * Bug fixes: - Fix Elgamal encryption for other implementations. [bsc#1190239, CVE-2021-40528] - Check the input length of the point in ECDH. - Fix an abort in gcry_pk_get_param for "Curve25519". * Other features: - The control code GCRYCTL_SET_ENFORCED_FIPS_FLAG is ignored because it is useless with the FIPS 140-3 related changes. - Update of the jitter entropy RNG code. - Simplification of the entropy gatherer when using the getentropy system call. * Interface changes relative to the 1.10.0 release: - GCRYCTL_SET_DECRYPTION_TAG NEW control code. - GCRYCTL_FIPS_SERVICE_INDICATOR_CIPHER NEW control code. - GCRYCTL_FIPS_SERVICE_INDICATOR_KDF NEW control code. - GCRYCTL_NO_FIPS_MODE = 83 NEW control code. - GCRY_CIPHER_MODE_SIV NEW mode. - GCRY_CIPHER_MODE_GCM_SIV NEW mode. - GCRY_CIPHER_EXTENDED NEW flag. - GCRY_SIV_BLOCK_LEN NEW macro. - gcry_cipher_set_decryption_tag NEW macro. - GCRY_KDF_ARGON2 NEW constant. - GCRY_KDF_BALLOON NEW constant. - GCRY_KDF_ARGON2D NEW constant. - GCRY_KDF_ARGON2I NEW constant. - GCRY_KDF_ARGON2ID NEW constant. - gcry_kdf_hd_t NEW type. - gcry_kdf_job_fn_t NEW type. - gcry_kdf_dispatch_job_fn_t NEW type. - gcry_kdf_wait_all_jobs_fn_t NEW type. - struct gcry_kdf_thread_ops NEW struct. - gcry_kdf_open NEW function. - gcry_kdf_compute NEW function. - gcry_kdf_final NEW function. - gcry_kdf_close NEW function. - gcry_pk_hash_sign NEW function. - gcry_pk_hash_verify NEW function. - gcry_pk_random_override_new NEW function. * Rebase libgcrypt-1.8.4-allow_FSM_same_state.patch and rename to libgcrypt-1.10.0-allow_FSM_same_state.patch * Remove unused CAVS tests and related patches: - cavs_driver.pl cavs-test.sh - libgcrypt-1.6.1-fips-cavs.patch - drbg_test.patch * Remove DSA sign/verify patches for the FIPS CAVS test since DSA has been disabled in FIPS mode: - libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch - libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch * Rebase libgcrypt-FIPS-SLI-pk.patch * Rebase libgcrypt_indicators_changes.patch and libgcrypt-indicate-shake.patch and merge both into libgcrypt-FIPS-SLI-hash-mac.patch * Rebase libgcrypt-FIPS-kdf-leylength.patch and rename to libgcrypt-FIPS-SLI-kdf-leylength.patch * Rebase libgcrypt-jitterentropy-3.4.0.patch * Rebase libgcrypt-FIPS-rndjent_poll.patch * Rebase libgcrypt-out-of-core-handler.patch and rename to libgcrypt-1.10.0-out-of-core-handler.patch * Since the FIPS .hmac file is now calculated with the internal tool hmac256, only the "module is complete" trigger .fips file is checked. Rename libgcrypt-1.6.1-use-fipscheck.patch to libgcrypt-1.10.0-use-fipscheck.patch * Remove patches fixed upstream: - libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch - libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff - libgcrypt-fix-rng.patch - libgcrypt-1.8.3-fips-ctor.patch - libgcrypt-1.8.4-use_xfree.patch - libgcrypt-1.8.4-getrandom.patch - libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch - libgcrypt-dsa-rfc6979-test-fix.patch - libgcrypt-fix-tests-fipsmode.patch ... changelog too long, skipping 27 lines ... * Update libgcrypt.keyring ==== libpng16 ==== Version update (1.6.38 -> 1.6.39) - Update to version 1.6.39: * cmake: Default to PNG_ARM_NEON=off for arm targets. + Turn large PNG chunks into benign errors. + Update, rename and clean up various scripts. + tools: Fix a buffer overflow involving a file name in pngfix. + tools: Fix a memory leak in pngcp. ==== libstorage-ng ==== Version update (4.5.52 -> 4.5.53) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#905 - read filters for udev links from config file - limit allowed by-id links for NVMEs (bsc#1205352) - make integration-tests subpackage noarch - cleanup - 4.5.53 ==== libzypp ==== Version update (17.31.5 -> 17.31.6) - Avoid calling getsockopt when we know the info already. This patch hopefully fixes logging on WSL, getsockopt seems to not be fully supported but the code required it when accepting new socket connections. (for bsc#1178233) - Enhance yaml-cpp detection (fixes #428) - No need to redirect 'history.logfile=/dev/null' into the target. - MultiCurl: Make sure to reset the progress function when falling back. - version 17.31.6 (22) ==== memcached ==== - remove sysv init case - move memcache binary to %{_bindir} like on Debian and RHEL like distributions ==== mpfr ==== - Add mpfr-4.1.1-patch01.patch to fix bug with code using the mpfr_custom_get_kind macro. ==== mutter ==== - Fix window freezes when maximized on Xorg (boo#1205714, glgo#GNOME/mutter!2694, glgo#GNOME/gnome-shell#6054) * add clutter-actor-Show-on-all-stage-views-when-actors-ha.patch ==== nano ==== Version update (6.4 -> 7.0) - update to 7.0: * String binds may contain bindable function names between braces * Unicode codes can be entered (via M-V) without leading zeroes, by finishing short codes with <Space> or <Enter> * Word completion (^]) looks for candidates in all open buffers * No regular expression matches the final empty line any more ==== nghttp2 ==== Version update (1.50.0 -> 1.51.0) - update to 1.51.0: * https://nghttp2.org/blog/2022/11/13/nghttp2-v1-51-0/ This release fixes affinity-cookie-stickiness parameter handling. ==== openvpn ==== Version update (2.5.7 -> 2.5.8) Subpackages: openvpn-auth-pam-plugin - update to 2.5.8: * allow running a default configuration with TLS libraries without BF-CBC (even if TLS cipher negotiation would not actually use BF-CBC, the long-term compatibility "default cipher BF-CBC" would trigger an error on such TLS libraries) * ``--auth-nocache'' was not always correctly clearing username+password after a renegotiation * ensure that auth-token received from server is cleared if requested by the management interface ("forget password" or automatically via ``--management-forget-disconnect'') * in a setup without username+password, but with auth-token and auth-token-username pushed by the server, OpenVPN would start asking for username+password on token expiry. Fix. * using ``--auth-token`` together with ``--management-client-auth`` (on the server) would lead to TLS keys getting out of sync and client being disconnected. Fix. * management interface would sometimes get stuck if client and server try to write something simultaneously. Fix by allowing a limited level of recursion in virtual_output_callback() * fix management interface not returning ERROR:/SUCCESS: response on "signal SIGxxx" commands when in HOLD state * tls-crypt-v2: abort connection if client-key is too short * make man page agree with actual code on replay-window backtrag log message * remove useless empty line from CR_RESPONSE message ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Remove redundant gnome-system-monitor (boo#1205108) ==== perl-IO-Socket-SSL ==== Version update (2.075 -> 2.077) - updated to 2.077 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.077 2022/11/21 - fix memory leak in session cache, thanks to genuaboro https://github.com/noxxi/p5-io-socket-ssl/pull/118 - more race conditions in tests fixed thanks to jddurand https://github.com/noxxi/p5-io-socket-ssl/issues/97 2.076 2022/11/12 - added curl like tracing based on contribution from jddurand https://github.com/noxxi/p5-io-socket-ssl/pull/117 - fixed race condition in t/sni_verify.t based on analysis from jddurand https://github.com/noxxi/p5-io-socket-ssl/issues/97 ==== psmisc ==== - Add patch socket-fix.patch * Add test to check for named sockets as file as well as on mounts * Fix code to find named sockets - The former test requires nc at build aka netcat from openbsd to create a named socket on the fly ==== python-httpcore ==== - Skip failing test_request_with_content test (gh#encode/httpcore#622). ==== python-jsonschema ==== Version update (4.17.0 -> 4.17.1) - update to 4.17.1: * No nice changelog provided upstream Full Changelog: https://github.com/python-jsonschema/jsonschema/compare/v4.17.0...v4.17.1 ==== python-pylibmc ==== Version update (1.6.1 -> 1.6.3) - Update to 1.6.3 * Fix logger.warn() deprecation warnings * Modernize tests and test harness * Python 3.10 support - Remove python-pylibmc-remove-nose.patch - Cope with memcached moving from sbindir to bindir and safeguard against non-existing memcached binary: it if can't be started, there is no reason to even attempt to run the test suite. ==== python-setuptools ==== Version update (65.5.1 -> 65.6.3) - Update to 65.6.3: * #3709: Fix condition to patch distutils.dist.log to only apply when using distutils from the stdlib. - v65.6.2 * No significant changes. - Update to 65.6.1: * #3689: Document that distutils.cfg might be ignored unless SETUPTOOLS_USE_DISTUTILS=stdlib. * #3678: Improve clib builds reproducibility by sorting sources -- by :user:`danigm`, fixing bsc#1201127 * #3684: Improved exception/traceback when invalid entry-points are specified. * #3690: Fixed logging errors: 'underlying buffer has been detached' (issue [#1631]). * #3693: Merge pypa/distutils@3e9d47e with compatibility fix for distutils.log.Log. * #3704: Fix temporary build directories interference with auto-discovery. - v65.6.0: * #3674: Sync with pypa/distutils@e0787fa, including pypa/distutils#183 updating distutils to use the Python logging framework. ==== ruby-common ==== Version update (2.6 -> 3.2) - actually bump the version so we can require the newer version for ruby3.2 - replace `File.exists?` with `File.exist?` as the `File.exists?` is no longer supported in 3.2 ==== rubygem-gem2rpm ==== - Fix filelist for 3.2.0 - added support for 3.2.0 ==== schily ==== Subpackages: libcdrdeflt1_0 libdeflt1_0 libfile1_0 libfind4_0 librmt1_0 librscg1_0 libscg1_0 libscgcmd1_0 libschily2_0 mkisofs spax star - Update to release 2022.10.16 * bsh: Implement ^L support * libmdigest: Add support for BLAKE2 digests * mkisofs: No longer warn about Joliet being nonstandard. With the 2019 revision of ECMA 119, Joliet has been added as an annex to the standard. ==== selinux-policy ==== Subpackages: selinux-policy-targeted - fix_sysnetwork.patch: firewalld uses /etc/sysconfig/network/ for network interface definition instead of /etc/sysconfig/network-scripts/, modified sysnetwork.fc to reflect that (bsc#1205580). ==== shim ==== - Add POST_PROCESS_PE_FLAGS=-N to the build command in shim.spec to disable the NX compatibility flag when using post-process-pe because grub2 is not ready. (bsc#1205588) - Kernel can boot with the NX compatibility flag since 82e0d6d76a2a7 be merged to v5.19. On the other hand, upstream is working on improve compressed kernel stage for NX: [PATCH v3 00/24] x86_64: Improvements at compressed kernel stage https://www.spinics.net/lists/kernel/msg4599636.html ==== slirp4netns ==== Version update (1.1.11 -> 1.2.0) - New upstream release 1.2.0: * Add slirp4netns --target-type=bess /path/to/bess.sock for supporting UML (#281) * Explicitly support DHCP (#270) * Update parson to v1.1.3 (#273) kgabis/parson@70dc239...2d7b3dd * Refactored tests (#271) - modernize spec file ==== sqlite3 ==== Version update (3.39.4 -> 3.40.0) Subpackages: libsqlite3-0 sqlite3-tcl - update to 3.40.0: * https://sqlite.org/releaselog/3_40_0.html * Add support for compiling SQLite to WASM and running it in wen browsers. * Add the recovery extension that might be able to recover some content from a corrupt database file. * For more changes, see https://sqlite.org/releaselog/3_40_0.html ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-doc udev - Import commit 3bd3e4e6c1efe0d6df776107efde47e15e58fe96 d28e81d65c test: fix the default timeout values described in README.testsuite d921c83f53 meson: install test-kernel-install only when -Dkernel-install=true c3b6c4b584 tests: update install_suse_systemd() 3c77335b19 tests: install dmi-sysfs module on openSUSE df632130cd tests: install systemd-resolved on openSUSE - Add 6000-Revert-tmpfiles-whenever-creating-an-inode-immediate.patch until upstream issue #25468 is fixed. - Drop 6000-meson-install-test-kernel-install-only-when-Dkernel-.patch, the patch has been merged in the SUSE git repo. ==== systemd-rpm-macros ==== Version update (17 -> 18) - Bump to version 18 - Add %_user_tmpfilesdir macro ==== vim ==== Version update (9.0.0814 -> 9.0.0924) Subpackages: vim-data vim-data-common vim-small - Updated to version 9.0.0924, fixes the following problems * Aws config files are not recognized. * ":!" does not switch to the alternate screen. * CTRL-Z at end of file is always dropped. * Build error. * "!ls" does not work. * Still a build error, tests are failing. * Memory leak with empty shell command. * Crash when using win_move_statusline() in another tab page. * Crash when dragging the statusline with a mapping. * Mouse drag test fails. * Crash when using win_move_separator() in other tab page. * If 'endofline' is set the CTRL-Z may be written in the wrong place. * The <Home> key in tmux doesn't work when 'term' is set to "xterm". (Dominique PellÃ©) * Various typos. * Wrong counts in macro comment. * Compiler warning for redefining HAVE_DUP. * Deprecation warning causes build failure. * Warning for missing return type. * The window title is not redrawn when 'endoffile' changes. * Wrong error when using extend() with funcref. * append() reports failure when not appending anything. * Compiler warnings for unused variables. * Test may fail depending on sequence of events. * Cannot change a slice of a const list. (Takumi KAGIYAMA) * deletebufline() does not always return 1 on failure. * Unicode range for Apple SF symbols is outdated. * VHS tape files are not recognized. * Handling 'statusline' errors is spread out. * Shell command with just space gives strange error. * Using assert_fails() may cause hit-enter prompt. * CI: not totally clear what MS-Windows version is used. * Help item for --log argument is not aligned nicely. * Terminal mouse test is a bit flaky. * Terminal mouse test is still flaky. * Crypt test is skipped if xxd is not found. * No proper test for what 9.0.0846 fixes. * Comment not located above the code it refers to. * "!!sort" in a closed fold sorts too many lines. * Compiler warning for unused variable. * Solution for "!!sort" in closed fold is not optimal. * Default value of 'endoffile' is wrong. * col() and charcol() only work for the current window. * Crash when using "!!" without a previous shell command. * Duplicate arguments are not always detected. * No test for what patch 8.2.2207 fixes. * Wildmenu redrawing code is spread out. * Bogus error when string used after :elseif. * Get E967 when using text property in quickfix window. (Sergey Vlasov) * Using freed memory when clearing augroup at more prompt. * Code is indented more than needed. * Using freed memory when executing mapclear at the more prompt. * Using freed memory when executing unmenu at the more prompt. * Using freed memory when executing delfunc at the more prompt. * Code is indented more than needed. * Using freed memory with :comclear while listing commands. * Coverity warns for dead code. * Unnecessary nesting in makefile. * Preprocessor indenting is off. * Cannot get the currently showing mouse shape. * Using freed memory after SpellFileMissing autocmd uses bwipe. * A silent mapping may cause dots on the command line. * Mouse shape remains in op-pending mode after failed change. * Informational message has an error message number. * Horizontal mouse scroll only works in the GUI. * Cannot easily try out what codes various keys produce. * Keycode check script has a few flaws. * No test for what patch 9.0.0827 fixes. * Virtual text below after match has wrong highlight. * May redraw when not needed, causing slow scrolling. * 'smoothscroll' cursor calculations wrong when 'number' is set. * Virtual text property highlight ignores window background. * File renamed twice in test; missing feature check. * Test for home key fails when 'term' is "tmux". * Clinical Quality Language files are not recognized. * With 'smoothscroll' cursor is one screen line too far down. (Ernie Rael) * The builtin terminals are in one long list. * Cursor moves too far with 'smoothscroll'. * Setting w_leftcol and handling side effects is confusing. * Some mouse scroll code is not in a good place. * Key code checker doesn't check modifyOtherKeys resource. * Various comment and indent flaws. * Virtual text after the line wraps when 'wrap' is off. * Mouse scroll code is not optimal. * Restoring window after WinScrolled may fail. * With 'smoothscroll' cursor may end up in wrong position. * Error message for layout change does not match action. * Setting lines in another buffer may not work well. * With 'smoothscroll' set mouse click position may be wrong. * libvterm with modifyOtherKeys level 2 does not match xterm. * Only a change in the current window triggers the WinScrolled event. * deletebufline() may move marks in the wrong window. * WinScrolled may trigger immediately when defined. * getbufline() is inefficient for getting a single line. * The WinScrolled autocommand event is not enough. * MS-Windows: modifier keys do not work with mouse scroll events. * Build failure with tiny features. * Cannot find an import prefixed with "s:". (Doug Kearns) * Missing defined(PROTO) in #ifdef. * Mermaid files are not recognized. * Second SIGWINCH signal may be ignored.

1 0

New MicroOS snapshot 20221127 released!
by Richard Brown 28 Nov '22

28 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: filesystem gawk (5.2.0 -> 5.2.1) iputils (20211215 -> 20221126) kdump (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38) libX11 libcontainers-common (20210626 -> 20221122) libeconf (0.4.8+git20221114.7ff7704 -> 0.4.9) libgcrypt (1.9.4 -> 1.10.1) mpfr === Details === ==== filesystem ==== - Add %_user_tmpfilesdir to the filesystem - Added zh_Hans (simplified Chinese) and zh_Hant (traditional chinese) locales ==== gawk ==== Version update (5.2.0 -> 5.2.1) - Update to gawk 5.2.1 * Issues related to the sign of NaN and Inf values on RiscV have been fixed * A few issues with the debugger have been fixed. * More subtle issues with untyped array elements being passed to functions have been fixed. * The rwarray extension's readall() function has had some bugs fixed. * The PMA allocator is now supported on FreeBSD, OpenBSD and Linux on S/390x. - double-free.patch, pma.patch, nan-sign.patch: Removed ==== iputils ==== Version update (20211215 -> 20221126) - Update to version 20221126 https://github.com/iputils/iputils/releases/tag/20221126 - Update configure variables (ninfod, rarpd and rdisc were removed from upstream in next release => remove -DBUILD_NINFOD=false -DBUILD_RARPD=false - DBUILD_RDISC=false) - Remove 2 backported fixes from this release 0001-ping-Add-SA_RESTART-to-sa_flags.patch 0002-ping-Make-ping_rts-struct-static.patch ==== kdump ==== Version update (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38) - Make the kdump-save.service reboot after kdump-save is finished (bsc#1204000) - fix renaming of qeth interfaces (bsc#1204743, bsc#1144337) - ppc64: rebuild initrd image after migration (bsc#1191410) - kdumptool calibrate: modify fadump suggestions (jsc#IBM-1027) ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - U_Fix-797755-Allow-X-IfEvent-to-reenter-libX11.patch * fixed Firefox freezes (regression since 1.8.2) (boo#1205778) ==== libcontainers-common ==== Version update (20210626 -> 20221122) - Update bundled common to 0.50.1 - Update bundled image to 5.23.1 - Update bundled storage to 1.44.0 - Drop bundled podman - Bump version to 20221122 - Install container-storage-driver.sh in /etc/ on Leap & SLE ==== libeconf ==== Version update (0.4.8+git20221114.7ff7704 -> 0.4.9) - Update to version 0.4.9: * libeconf.h: added missing sys/types.h header (#171) * new API calls: econf_readFileWithCallback, econf_readDirsWithCallback, econf_readDirsHistoryWithCallback (#172) * Checking NULL comment parameter in the parsing functions. ==== libgcrypt ==== Version update (1.9.4 -> 1.10.1) - Update to 1.10.1: * Bug fixes: - Fix minor memory leaks in FIPS mode. - Build fixes for MUSL libc. * Other: - More portable integrity check in FIPS mode. - Add X9.62 OIDs to sha256 and sha512 modules. * Add the hardware optimizations config file hwf.deny to the /etc/gcrypt/ directory. This file can be used to globally disable the use of hardware based optimizations. * Remove not needed separate_hmac256_binary hmac256 package - Update to 1.10.0: * New and extended interfaces: - New control codes to check for FIPS 140-3 approved algorithms. - New control code to switch into non-FIPS mode. - New cipher modes SIV and GCM-SIV as specified by RFC-5297. - Extended cipher mode AESWRAP with padding as specified by RFC-5649. - New set of KDF functions. - New KDF modes Argon2 and Balloon. - New functions for combining hashing and signing/verification. * Performance: - Improved support for PowerPC architectures. - Improved ECC performance on zSeries/s390x by using accelerated scalar multiplication. - Many more assembler performance improvements for several architectures. * Bug fixes: - Fix Elgamal encryption for other implementations. [bsc#1190239, CVE-2021-40528] - Check the input length of the point in ECDH. - Fix an abort in gcry_pk_get_param for "Curve25519". * Other features: - The control code GCRYCTL_SET_ENFORCED_FIPS_FLAG is ignored because it is useless with the FIPS 140-3 related changes. - Update of the jitter entropy RNG code. - Simplification of the entropy gatherer when using the getentropy system call. * Interface changes relative to the 1.10.0 release: - GCRYCTL_SET_DECRYPTION_TAG NEW control code. - GCRYCTL_FIPS_SERVICE_INDICATOR_CIPHER NEW control code. - GCRYCTL_FIPS_SERVICE_INDICATOR_KDF NEW control code. - GCRYCTL_NO_FIPS_MODE = 83 NEW control code. - GCRY_CIPHER_MODE_SIV NEW mode. - GCRY_CIPHER_MODE_GCM_SIV NEW mode. - GCRY_CIPHER_EXTENDED NEW flag. - GCRY_SIV_BLOCK_LEN NEW macro. - gcry_cipher_set_decryption_tag NEW macro. - GCRY_KDF_ARGON2 NEW constant. - GCRY_KDF_BALLOON NEW constant. - GCRY_KDF_ARGON2D NEW constant. - GCRY_KDF_ARGON2I NEW constant. - GCRY_KDF_ARGON2ID NEW constant. - gcry_kdf_hd_t NEW type. - gcry_kdf_job_fn_t NEW type. - gcry_kdf_dispatch_job_fn_t NEW type. - gcry_kdf_wait_all_jobs_fn_t NEW type. - struct gcry_kdf_thread_ops NEW struct. - gcry_kdf_open NEW function. - gcry_kdf_compute NEW function. - gcry_kdf_final NEW function. - gcry_kdf_close NEW function. - gcry_pk_hash_sign NEW function. - gcry_pk_hash_verify NEW function. - gcry_pk_random_override_new NEW function. * Rebase libgcrypt-1.8.4-allow_FSM_same_state.patch and rename to libgcrypt-1.10.0-allow_FSM_same_state.patch * Remove unused CAVS tests and related patches: - cavs_driver.pl cavs-test.sh - libgcrypt-1.6.1-fips-cavs.patch - drbg_test.patch * Remove DSA sign/verify patches for the FIPS CAVS test since DSA has been disabled in FIPS mode: - libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch - libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch * Rebase libgcrypt-FIPS-SLI-pk.patch * Rebase libgcrypt_indicators_changes.patch and libgcrypt-indicate-shake.patch and merge both into libgcrypt-FIPS-SLI-hash-mac.patch * Rebase libgcrypt-FIPS-kdf-leylength.patch and rename to libgcrypt-FIPS-SLI-kdf-leylength.patch * Rebase libgcrypt-jitterentropy-3.4.0.patch * Rebase libgcrypt-FIPS-rndjent_poll.patch * Rebase libgcrypt-out-of-core-handler.patch and rename to libgcrypt-1.10.0-out-of-core-handler.patch * Since the FIPS .hmac file is now calculated with the internal tool hmac256, only the "module is complete" trigger .fips file is checked. Rename libgcrypt-1.6.1-use-fipscheck.patch to libgcrypt-1.10.0-use-fipscheck.patch * Remove patches fixed upstream: - libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch - libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff - libgcrypt-fix-rng.patch - libgcrypt-1.8.3-fips-ctor.patch - libgcrypt-1.8.4-use_xfree.patch - libgcrypt-1.8.4-getrandom.patch - libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch - libgcrypt-dsa-rfc6979-test-fix.patch - libgcrypt-fix-tests-fipsmode.patch ... changelog too long, skipping 27 lines ... * Update libgcrypt.keyring ==== mpfr ==== - Add mpfr-4.1.1-patch01.patch to fix bug with code using the mpfr_custom_get_kind macro.

1 0

New MicroOS snapshot 20221126 released!
by Richard Brown 27 Nov '22

27 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: libpng16 (1.6.38 -> 1.6.39) libstorage-ng (4.5.52 -> 4.5.53) libzypp (17.31.5 -> 17.31.6) manpages-l10n (4.15.0 -> 4.16.0) patterns-microos psmisc python-setuptools (65.5.1 -> 65.6.3) slirp4netns (1.1.11 -> 1.2.0) === Details === ==== libpng16 ==== Version update (1.6.38 -> 1.6.39) - Update to version 1.6.39: * cmake: Default to PNG_ARM_NEON=off for arm targets. + Turn large PNG chunks into benign errors. + Update, rename and clean up various scripts. + tools: Fix a buffer overflow involving a file name in pngfix. + tools: Fix a memory leak in pngcp. ==== libstorage-ng ==== Version update (4.5.52 -> 4.5.53) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#905 - read filters for udev links from config file - limit allowed by-id links for NVMEs (bsc#1205352) - make integration-tests subpackage noarch - cleanup - 4.5.53 ==== libzypp ==== Version update (17.31.5 -> 17.31.6) - Avoid calling getsockopt when we know the info already. This patch hopefully fixes logging on WSL, getsockopt seems to not be fully supported but the code required it when accepting new socket connections. (for bsc#1178233) - Enhance yaml-cpp detection (fixes #428) - No need to redirect 'history.logfile=/dev/null' into the target. - MultiCurl: Make sure to reset the progress function when falling back. - version 17.31.6 (22) ==== manpages-l10n ==== Version update (4.15.0 -> 4.16.0) Subpackages: man-pages-cs man-pages-da man-pages-de man-pages-el man-pages-es man-pages-fr man-pages-hu man-pages-it man-pages-pl man-pages-pt_BR - Update to version 4.16.0: Updated many translations. - Upgrade macros: * Add Leap 15.5 and Fedora 37. * Remove Leap 15.4 and Fedora 36 (dropped by upstream). - Rebase links patch: * Remove manpages-l10n-4.15.0-fix-links.patch. * Add manpages-l10n-4.16.0-fix-links.patch. ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Remove redundant gnome-system-monitor (boo#1205108) ==== psmisc ==== Subpackages: psmisc-lang - Add patch socket-fix.patch * Add test to check for named sockets as file as well as on mounts * Fix code to find named sockets - The former test requires nc at build aka netcat from openbsd to create a named socket on the fly ==== python-setuptools ==== Version update (65.5.1 -> 65.6.3) - Update to 65.6.3: * #3709: Fix condition to patch distutils.dist.log to only apply when using distutils from the stdlib. - v65.6.2 * No significant changes. - Update to 65.6.1: * #3689: Document that distutils.cfg might be ignored unless SETUPTOOLS_USE_DISTUTILS=stdlib. * #3678: Improve clib builds reproducibility by sorting sources -- by :user:`danigm`, fixing bsc#1201127 * #3684: Improved exception/traceback when invalid entry-points are specified. * #3690: Fixed logging errors: 'underlying buffer has been detached' (issue [#1631]). * #3693: Merge pypa/distutils@3e9d47e with compatibility fix for distutils.log.Log. * #3704: Fix temporary build directories interference with auto-discovery. - v65.6.0: * #3674: Sync with pypa/distutils@e0787fa, including pypa/distutils#183 updating distutils to use the Python logging framework. ==== slirp4netns ==== Version update (1.1.11 -> 1.2.0) - New upstream release 1.2.0: * Add slirp4netns --target-type=bess /path/to/bess.sock for supporting UML (#281) * Explicitly support DHCP (#270) * Update parson to v1.1.3 (#273) kgabis/parson@70dc239...2d7b3dd * Refactored tests (#271) - modernize spec file

1 0

New MicroOS snapshot 20221125 released!
by Richard Brown 26 Nov '22

26 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: grub2 highway icewm (3.2.0 -> 3.2.2) iproute2 iso-codes (4.11.0 -> 4.12.0) mutter ruby-common (2.6 -> 3.2) ruby3.1 (3.1.2 -> 3.1.3) rubygem-gem2rpm selinux-policy sqlite3 (3.39.4 -> 3.40.0) systemd systemd-rpm-macros (17 -> 18) === Details === ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi - Make full utilization of btrfs bootloader area (bsc#1161823) * 0001-fs-btrfs-Use-full-btrfs-bootloader-area.patch * 0002-Mark-environmet-blocks-as-used-for-image-embedding.patch - Patch removed * 0001-i386-pc-build-btrfs-zstd-support-into-separate-modul.patch ==== highway ==== - Fix the library being built for incorrect microarchitecture on armv{6,7}hl. * add arm-disable-runtime-dispatch.patch to fix compiler error - Actually run the testsuite. ==== icewm ==== Version update (3.2.0 -> 3.2.2) Subpackages: icewm-config-upstream icewm-default icewm-lang - Update to version 3.2.2: + Freeze the task pane layout while Alt is pressed, + Only sort Alt+Tab on WM_CLASS when persistent, + Also sort Alt+Tab on the 'order' winoption when persistent, + Let the Escape key cancel a menu with all its submenu's, + Add a menu entry to rename the window title manually, + Adapt absolute paths in .desktop files to the installation prefix, + The sorting of windows in the window list window was improved a lot, + Restore the named frame tabs when recovering from a crash, + Preserve the non-fullscreen non-maximized window geometry across restarts, + Try harder to avoid a situation where nothing is focused, + Update the window list when a tab is moved to its own frame, + Make the window list menu actions more tab-savvy. + Drop the obsolete LSM file altogether. - Changes from version 3.2.1: + Add QuickSwitchPersistence=0 preference for stateful Alt+Tab. + Demarcate workspaces with a horizontal line in Alt+Tab. + Fixes for Alt+Tab size calculations. + Fix for changing workspace when Alt+Tab is open. + Fix for KeySysSwitchClass history. + Don't attempt to focus NoInput windows. + Ensure that active Alt+Tab item is visible. + Also sort Alt+Tab items on WM_CLASS. + Fix a compile error for GCC 4.8.5. + When moving a tab to a new frame, activate it. + Updated translations. ==== iproute2 ==== Subpackages: iproute2-bash-completion - Replace routel program by a non-python version [boo#1205632] ==== iso-codes ==== Version update (4.11.0 -> 4.12.0) Subpackages: iso-codes-lang - Update to version 4.12.0: + ISO 3166-1: Update name for TR (TÃ¼rkiye). Fixes #38 + Updated translations for ISO 3166-1, ISO 3166-2, ISO 3166-3, ISO 639-2, ISO 639-3, ISO 639-5, ISO 4217, and ISO 15924. ==== mutter ==== Subpackages: mutter-lang - Fix window freezes when maximized on Xorg (boo#1205714, glgo#GNOME/mutter!2694, glgo#GNOME/gnome-shell#6054) * add clutter-actor-Show-on-all-stage-views-when-actors-ha.patch ==== ruby-common ==== Version update (2.6 -> 3.2) - actually bump the version so we can require the newer version for ruby3.2 - replace `File.exists?` with `File.exist?` as the `File.exists?` is no longer supported in 3.2 ==== ruby3.1 ==== Version update (3.1.2 -> 3.1.3) Subpackages: libruby3_1-3_1 - remove the bundled gems workaround - update to 3.1.3 (boo#1205726 CVE-2021-33621) https://www.ruby-lang.org/en/news/2022/11/22/http-response-splitting-in-cgi… https://www.ruby-lang.org/en/news/2022/11/24/ruby-3-1-3-released/ ==== rubygem-gem2rpm ==== - Fix filelist for 3.2.0 - added support for 3.2.0 ==== selinux-policy ==== Subpackages: selinux-policy-targeted - fix_sysnetwork.patch: firewalld uses /etc/sysconfig/network/ for network interface definition instead of /etc/sysconfig/network-scripts/, modified sysnetwork.fc to reflect that (bsc#1205580). ==== sqlite3 ==== Version update (3.39.4 -> 3.40.0) Subpackages: libsqlite3-0 sqlite3-tcl - update to 3.40.0: * https://sqlite.org/releaselog/3_40_0.html * Add support for compiling SQLite to WASM and running it in wen browsers. * Add the recovery extension that might be able to recover some content from a corrupt database file. * For more changes, see https://sqlite.org/releaselog/3_40_0.html ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev - Import commit 3bd3e4e6c1efe0d6df776107efde47e15e58fe96 d28e81d65c test: fix the default timeout values described in README.testsuite d921c83f53 meson: install test-kernel-install only when -Dkernel-install=true c3b6c4b584 tests: update install_suse_systemd() 3c77335b19 tests: install dmi-sysfs module on openSUSE df632130cd tests: install systemd-resolved on openSUSE - Add 6000-Revert-tmpfiles-whenever-creating-an-inode-immediate.patch until upstream issue #25468 is fixed. - Drop 6000-meson-install-test-kernel-install-only-when-Dkernel-.patch, the patch has been merged in the SUSE git repo. ==== systemd-rpm-macros ==== Version update (17 -> 18) - Bump to version 18 - Add %_user_tmpfilesdir macro

1 0

New MicroOS snapshot 20221124 released!
by Richard Brown 25 Nov '22

25 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apparmor (3.0.7 -> 3.1.2) busybox conmon (2.1.3 -> 2.1.5) hicolor-icon-theme inxi (3.3.21 -> 3.3.23) libapparmor (3.0.7 -> 3.1.2) libdrm memcached nano (6.4 -> 7.0) nghttp2 (1.50.0 -> 1.51.0) openvpn (2.5.7 -> 2.5.8) perl-IO-Socket-SSL (2.075 -> 2.077) python-httpcore python-jsonschema (4.17.0 -> 4.17.1) python-pylibmc (1.6.1 -> 1.6.3) schily vim (9.0.0814 -> 9.0.0924) === Details === ==== apparmor ==== Version update (3.0.7 -> 3.1.2) Subpackages: apparmor-abstractions apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang python3-apparmor - update to AppArmor 3.1.2 - lots of cleanups, improvements and bugfixes in all areas - rework internal profile storage and handling in the aa-* tools - support boolean variable definitions in the aa-* tools - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1 and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2 for the detailed upstream changelog - remove upstream(ed) patches: - apparmor-3.0.7-egrep.patch - dnsmasq.diff - profiles-permit-php-fpm-pid-files-directly-under-run.patch - zgrep-profile-mr870.diff - no longer ship precompiled profile cache for Tumbleweed (boo#1205659) - BuildRequire iproute2 (needed for aa-unconfined tests) ==== busybox ==== Subpackages: busybox-static - Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065, boo#1199744). ==== conmon ==== Version update (2.1.3 -> 2.1.5) - New upstream release 2.1.5: Bug Fixes don't leak syslog_identifier logging: do not read more that the buf size logging: fix error handling Misc Makefile: Fix install for FreeBSD signal: Track changes to get_signal_descriptor in the FreeBSD version Packit: initial enablement - New upstream release 2.1.4: Bug fixes Fix a bug where conmon crashed when it got a SIGCHLD ==== hicolor-icon-theme ==== - Add 1024x1024 directory for package ownership ==== inxi ==== Version update (3.3.21 -> 3.3.23) - Update to version 3.3.23: + /usr/share/doc/packages/inxi/inxi.changelog. ==== libapparmor ==== Version update (3.0.7 -> 3.1.2) - update to AppArmor 3.1.2 - lots of cleanups, improvements and bugfixes in all areas - rework internal profile storage and handling in the aa-* tools - support boolean variable definitions in the aa-* tools - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1 and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2 for the detailed upstream changelog - remove upstream(ed) patches: - apparmor-3.0.7-egrep.patch - dnsmasq.diff - profiles-permit-php-fpm-pid-files-directly-under-run.patch - zgrep-profile-mr870.diff - no longer ship precompiled profile cache for Tumbleweed (boo#1205659) - BuildRequire iproute2 (needed for aa-unconfined tests) ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_intel1 libdrm_nouveau2 libdrm_radeon1 - Apply n_libdrm-drop-valgrind-dep-generic.patch and n_libdrm-drop-valgrind-dep-intel.patch only when the build uses meson < 0.64. With meson 0.64, we don't get the dependency on valgraind added. - split n_libdrm-drop-valgrind-dep.patch into n_libdrm-drop-valgrind-dep-generic.patch and n_libdrm-drop-valgrind-dep-intel.patch to fix build on s390 and armv7l - Only apply libdrm-drop-valgrind-dep.patch if valgrnid_support is enabled (fix build on e.g. aarch64). - renamed libdrm-drop-valgrind-dep.patch to n_libdrm-drop-valgrind-dep.patch in order to mark it as 'never to be upstreamed' - Add libdrm-drop-valgrind-dep.patch (as source): drop dependency on valgrind on generated pkgconfig files. The .pc files are auto-generated by meson and are 'technically' correct, but we do not want to inject valgrind here (we can get away with this hack as it's only relevant when using pkg-config --static, and we do not provide static libs anyway). ==== memcached ==== - remove sysv init case - move memcache binary to %{_bindir} like on Debian and RHEL like distributions ==== nano ==== Version update (6.4 -> 7.0) Subpackages: nano-lang - update to 7.0: * String binds may contain bindable function names between braces * Unicode codes can be entered (via M-V) without leading zeroes, by finishing short codes with <Space> or <Enter> * Word completion (^]) looks for candidates in all open buffers * No regular expression matches the final empty line any more ==== nghttp2 ==== Version update (1.50.0 -> 1.51.0) - update to 1.51.0: * https://nghttp2.org/blog/2022/11/13/nghttp2-v1-51-0/ This release fixes affinity-cookie-stickiness parameter handling. ==== openvpn ==== Version update (2.5.7 -> 2.5.8) Subpackages: openvpn-auth-pam-plugin - update to 2.5.8: * allow running a default configuration with TLS libraries without BF-CBC (even if TLS cipher negotiation would not actually use BF-CBC, the long-term compatibility "default cipher BF-CBC" would trigger an error on such TLS libraries) * ``--auth-nocache'' was not always correctly clearing username+password after a renegotiation * ensure that auth-token received from server is cleared if requested by the management interface ("forget password" or automatically via ``--management-forget-disconnect'') * in a setup without username+password, but with auth-token and auth-token-username pushed by the server, OpenVPN would start asking for username+password on token expiry. Fix. * using ``--auth-token`` together with ``--management-client-auth`` (on the server) would lead to TLS keys getting out of sync and client being disconnected. Fix. * management interface would sometimes get stuck if client and server try to write something simultaneously. Fix by allowing a limited level of recursion in virtual_output_callback() * fix management interface not returning ERROR:/SUCCESS: response on "signal SIGxxx" commands when in HOLD state * tls-crypt-v2: abort connection if client-key is too short * make man page agree with actual code on replay-window backtrag log message * remove useless empty line from CR_RESPONSE message ==== perl-IO-Socket-SSL ==== Version update (2.075 -> 2.077) - updated to 2.077 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.077 2022/11/21 - fix memory leak in session cache, thanks to genuaboro https://github.com/noxxi/p5-io-socket-ssl/pull/118 - more race conditions in tests fixed thanks to jddurand https://github.com/noxxi/p5-io-socket-ssl/issues/97 2.076 2022/11/12 - added curl like tracing based on contribution from jddurand https://github.com/noxxi/p5-io-socket-ssl/pull/117 - fixed race condition in t/sni_verify.t based on analysis from jddurand https://github.com/noxxi/p5-io-socket-ssl/issues/97 ==== python-httpcore ==== - Skip failing test_request_with_content test (gh#encode/httpcore#622). ==== python-jsonschema ==== Version update (4.17.0 -> 4.17.1) - update to 4.17.1: * No nice changelog provided upstream Full Changelog: https://github.com/python-jsonschema/jsonschema/compare/v4.17.0...v4.17.1 ==== python-pylibmc ==== Version update (1.6.1 -> 1.6.3) - Update to 1.6.3 * Fix logger.warn() deprecation warnings * Modernize tests and test harness * Python 3.10 support - Remove python-pylibmc-remove-nose.patch - Cope with memcached moving from sbindir to bindir and safeguard against non-existing memcached binary: it if can't be started, there is no reason to even attempt to run the test suite. ==== schily ==== Subpackages: libcdrdeflt1_0 libdeflt1_0 libfile1_0 libfind4_0 librmt1_0 librscg1_0 libscg1_0 libscgcmd1_0 libschily2_0 mkisofs spax star - Update to release 2022.10.16 * bsh: Implement ^L support * libmdigest: Add support for BLAKE2 digests * mkisofs: No longer warn about Joliet being nonstandard. With the 2019 revision of ECMA 119, Joliet has been added as an annex to the standard. ==== vim ==== Version update (9.0.0814 -> 9.0.0924) Subpackages: vim-data vim-data-common vim-small - Updated to version 9.0.0924, fixes the following problems * Aws config files are not recognized. * ":!" does not switch to the alternate screen. * CTRL-Z at end of file is always dropped. * Build error. * "!ls" does not work. * Still a build error, tests are failing. * Memory leak with empty shell command. * Crash when using win_move_statusline() in another tab page. * Crash when dragging the statusline with a mapping. * Mouse drag test fails. * Crash when using win_move_separator() in other tab page. * If 'endofline' is set the CTRL-Z may be written in the wrong place. * The <Home> key in tmux doesn't work when 'term' is set to "xterm". (Dominique PellÃ©) * Various typos. * Wrong counts in macro comment. * Compiler warning for redefining HAVE_DUP. * Deprecation warning causes build failure. * Warning for missing return type. * The window title is not redrawn when 'endoffile' changes. * Wrong error when using extend() with funcref. * append() reports failure when not appending anything. * Compiler warnings for unused variables. * Test may fail depending on sequence of events. * Cannot change a slice of a const list. (Takumi KAGIYAMA) * deletebufline() does not always return 1 on failure. * Unicode range for Apple SF symbols is outdated. * VHS tape files are not recognized. * Handling 'statusline' errors is spread out. * Shell command with just space gives strange error. * Using assert_fails() may cause hit-enter prompt. * CI: not totally clear what MS-Windows version is used. * Help item for --log argument is not aligned nicely. * Terminal mouse test is a bit flaky. * Terminal mouse test is still flaky. * Crypt test is skipped if xxd is not found. * No proper test for what 9.0.0846 fixes. * Comment not located above the code it refers to. * "!!sort" in a closed fold sorts too many lines. * Compiler warning for unused variable. * Solution for "!!sort" in closed fold is not optimal. * Default value of 'endoffile' is wrong. * col() and charcol() only work for the current window. * Crash when using "!!" without a previous shell command. * Duplicate arguments are not always detected. * No test for what patch 8.2.2207 fixes. * Wildmenu redrawing code is spread out. * Bogus error when string used after :elseif. * Get E967 when using text property in quickfix window. (Sergey Vlasov) * Using freed memory when clearing augroup at more prompt. * Code is indented more than needed. * Using freed memory when executing mapclear at the more prompt. * Using freed memory when executing unmenu at the more prompt. * Using freed memory when executing delfunc at the more prompt. * Code is indented more than needed. * Using freed memory with :comclear while listing commands. * Coverity warns for dead code. * Unnecessary nesting in makefile. * Preprocessor indenting is off. * Cannot get the currently showing mouse shape. * Using freed memory after SpellFileMissing autocmd uses bwipe. * A silent mapping may cause dots on the command line. * Mouse shape remains in op-pending mode after failed change. * Informational message has an error message number. * Horizontal mouse scroll only works in the GUI. * Cannot easily try out what codes various keys produce. * Keycode check script has a few flaws. * No test for what patch 9.0.0827 fixes. * Virtual text below after match has wrong highlight. * May redraw when not needed, causing slow scrolling. * 'smoothscroll' cursor calculations wrong when 'number' is set. * Virtual text property highlight ignores window background. * File renamed twice in test; missing feature check. * Test for home key fails when 'term' is "tmux". * Clinical Quality Language files are not recognized. * With 'smoothscroll' cursor is one screen line too far down. (Ernie Rael) * The builtin terminals are in one long list. * Cursor moves too far with 'smoothscroll'. * Setting w_leftcol and handling side effects is confusing. * Some mouse scroll code is not in a good place. * Key code checker doesn't check modifyOtherKeys resource. * Various comment and indent flaws. * Virtual text after the line wraps when 'wrap' is off. * Mouse scroll code is not optimal. * Restoring window after WinScrolled may fail. * With 'smoothscroll' cursor may end up in wrong position. * Error message for layout change does not match action. * Setting lines in another buffer may not work well. * With 'smoothscroll' set mouse click position may be wrong. * libvterm with modifyOtherKeys level 2 does not match xterm. * Only a change in the current window triggers the WinScrolled event. * deletebufline() may move marks in the wrong window. * WinScrolled may trigger immediately when defined. * getbufline() is inefficient for getting a single line. * The WinScrolled autocommand event is not enough. * MS-Windows: modifier keys do not work with mouse scroll events. * Build failure with tiny features. * Cannot find an import prefixed with "s:". (Doug Kearns) * Missing defined(PROTO) in #ifdef. * Mermaid files are not recognized. * Second SIGWINCH signal may be ignored.

1 0

New ARM MicroOS snapshot 20221123 released!
by Guillaume Gardet 25 Nov '22

25 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: grub2 libdrm lsof nfs-utils orc (0.4.32 -> 0.4.33) python-anyio (3.5.0 -> 3.6.2) sudo (1.9.12 -> 1.9.12p1) === Details === ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix regression of reverting back to asking password twice when a keyfile is already used (bsc#1205309) * 0010-templates-import-etc-crypttab-to-grub.cfg.patch ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - split n_libdrm-drop-valgrind-dep.patch into n_libdrm-drop-valgrind-dep-generic.patch and n_libdrm-drop-valgrind-dep-intel.patch to fix build on s390 and armv7l - Only apply libdrm-drop-valgrind-dep.patch if valgrnid_support is enabled (fix build on e.g. aarch64). - renamed libdrm-drop-valgrind-dep.patch to n_libdrm-drop-valgrind-dep.patch in order to mark it as 'never to be upstreamed' - Add libdrm-drop-valgrind-dep.patch (as source): drop dependency on valgrind on generated pkgconfig files. The .pc files are auto-generated by meson and are 'technically' correct, but we do not want to inject valgrind here (we can get away with this hack as it's only relevant when using pkg-config --static, and we do not provide static libs anyway). ==== lsof ==== - format.patch: Use correct scanf/printf format for uint64_t - Build with %{optflags} ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client - Add 0006-nfsd-allow-server-scope-to-be-set-with-config-or-com.patch Allow server scope to be set - removes the need to run nfsd inside a private UTS namespace for fail-over applications (bsc#1203746) ==== orc ==== Version update (0.4.32 -> 0.4.33) - Update to version 0.4.33: + Add support for aarch64 (64-bit ARM) architecture. + aarch32: Implement loadupdb instruction used e.g. for video pixel format packing/unpacking/conversions. + neon: Fix unsigned only implementation of loadoffb, loadoffw and loadoffl. + neon: Fix testsuite not passing on arm CPUs. + orccodemem: Fix use-after-free in error paths. + orccpu-powerpc: Fix build with kernel < 4.11. + Add support for macOS Hardened Runtime. + Enable only SSE and MMX backends for Windows. + Fix ORC_RESTRICT definition for MSVC. + pkgconfig: add -DORC_STATIC_COMPILATION flag to .pc file for static-only builds. ==== python-anyio ==== Version update (3.5.0 -> 3.6.2) - update to 3.6.2: - Pinned Trio to < 0.22 to avoid incompatibility with AnyIO's ``ExceptionGroup`` class causing ``AttributeError: 'NonBaseMultiError' object has no attribute '_exceptions'`` (AnyIO 4 is unaffected) - Fixed exception handler in the asyncio test runner not properly handling a context that does not contain the ``exception`` key - Fixed ``TypeError`` in ``get_current_task()`` on asyncio when using a custom ``Task`` factory - Updated type annotations on ``run_process()`` and ``open_process()``: * ``command`` now accepts accepts bytes and sequences of bytes * ``stdin``, ``stdout`` and ``stderr`` now accept file-like objects - Changed the pytest plugin to run both the setup and teardown phases of asynchronous generator fixtures within a single task to enable use cases such as cancel scopes and task groups where a context manager straddles the ``yield`` - drop anyio-pytest7.patch (upstream) ==== sudo ==== Version update (1.9.12 -> 1.9.12p1) Subpackages: sudo-plugin-python - Update to 1.9.12p1: * Changes in 1.9.12p1: - Sudoâs configure script now does a better job of detecting when the -fstack-clash-protection compiler option does not work. GitHub issue #191. - Fixed CVE-2022-43995, a potential out-of-bounds write for passwords smaller than 8 characters when passwd authentication is enabled. This does not affect configurations that use other authentication methods such as PAM, AIX authentication or BSD authentication. - Fixed a build error with some configurations compiling host_port.c. * Dropped sudo-CVE-2022-43995.patch

1 0

New MicroOS snapshot 20221123 released!
by Richard Brown 24 Nov '22

24 Nov '22

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: grub2 lsof nfs-utils orc (0.4.32 -> 0.4.33) python-anyio (3.5.0 -> 3.6.2) sudo (1.9.12 -> 1.9.12p1) ucode-intel (20220809 -> 20221108) === Details === ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi - Fix regression of reverting back to asking password twice when a keyfile is already used (bsc#1205309) * 0010-templates-import-etc-crypttab-to-grub.cfg.patch ==== lsof ==== - format.patch: Use correct scanf/printf format for uint64_t - Build with %{optflags} ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client - Add 0006-nfsd-allow-server-scope-to-be-set-with-config-or-com.patch Allow server scope to be set - removes the need to run nfsd inside a private UTS namespace for fail-over applications (bsc#1203746) ==== orc ==== Version update (0.4.32 -> 0.4.33) - Update to version 0.4.33: + Add support for aarch64 (64-bit ARM) architecture. + aarch32: Implement loadupdb instruction used e.g. for video pixel format packing/unpacking/conversions. + neon: Fix unsigned only implementation of loadoffb, loadoffw and loadoffl. + neon: Fix testsuite not passing on arm CPUs. + orccodemem: Fix use-after-free in error paths. + orccpu-powerpc: Fix build with kernel < 4.11. + Add support for macOS Hardened Runtime. + Enable only SSE and MMX backends for Windows. + Fix ORC_RESTRICT definition for MSVC. + pkgconfig: add -DORC_STATIC_COMPILATION flag to .pc file for static-only builds. ==== python-anyio ==== Version update (3.5.0 -> 3.6.2) - update to 3.6.2: - Pinned Trio to < 0.22 to avoid incompatibility with AnyIO's ``ExceptionGroup`` class causing ``AttributeError: 'NonBaseMultiError' object has no attribute '_exceptions'`` (AnyIO 4 is unaffected) - Fixed exception handler in the asyncio test runner not properly handling a context that does not contain the ``exception`` key - Fixed ``TypeError`` in ``get_current_task()`` on asyncio when using a custom ``Task`` factory - Updated type annotations on ``run_process()`` and ``open_process()``: * ``command`` now accepts accepts bytes and sequences of bytes * ``stdin``, ``stdout`` and ``stderr`` now accept file-like objects - Changed the pytest plugin to run both the setup and teardown phases of asynchronous generator fixtures within a single task to enable use cases such as cancel scopes and task groups where a context manager straddles the ``yield`` - drop anyio-pytest7.patch (upstream) ==== sudo ==== Version update (1.9.12 -> 1.9.12p1) Subpackages: sudo-plugin-python - Update to 1.9.12p1: * Changes in 1.9.12p1: - Sudoâs configure script now does a better job of detecting when the -fstack-clash-protection compiler option does not work. GitHub issue #191. - Fixed CVE-2022-43995, a potential out-of-bounds write for passwords smaller than 8 characters when passwd authentication is enabled. This does not affect configurations that use other authentication methods such as PAM, AIX authentication or BSD authentication. - Fixed a build error with some configurations compiling host_port.c. * Dropped sudo-CVE-2022-43995.patch ==== ucode-intel ==== Version update (20220809 -> 20221108) - Updated to Intel CPU Microcode 20221108 release. (bsc#1205602) - Update for functional issues. Refer to [Intel(R) Xeon(R) D-2700 Processor Family Specification Update](https://www.intel.com/content/www/us/en/content-details/714071/inte… for details. - Update for functional issues. Refer to [13th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/740518) - Update for functional issues. Refer to [12th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/682436) - Update for functional issues. Refer to [11th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/634808) for details. - Update for functional issues. Refer to [10th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/615213) for details. - Update for functional issues. Refer to [8th and 9th Generation Intel(R) Core(TM) Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/co… for details. - Update for functional issues. Refer to [8th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338025) for details. [#]## New Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | ICL-D | B0 | 06-6c-01/10 | | 01000201 | Xeon D-17xx, D-27xx | RPL-S | S0 | 06-b7-01/32 | | 0000010e | Core Gen13 [#]## Updated Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | ICL-U/Y | D1 | 06-7e-05/80 | 000000b2 | 000000b6 | Core Gen10 Mobile | TGL | B1 | 06-8c-01/80 | 000000a4 | 000000a6 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | 00000040 | 00000042 | Core Gen11 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000f0 | 000000f4 | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000f0 | 000000f4 | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000f0 | 000000f4 | Core Gen8 Mobile | EHL | B1 | 06-96-01/01 | 00000016 | 00000017 | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E | ADL | C0 | 06-97-02/07 | 00000022 | 00000026 | Core Gen12 | ADL | C0 | 06-97-05/07 | 00000022 | 00000026 | Core Gen12 | ADL | L0 | 06-9a-03/80 | 00000421 | 00000424 | Core Gen12 | ADL | L0 | 06-9a-04/80 | 00000421 | 00000424 | Core Gen12 | CFL-H | R0 | 06-9e-0d/22 | 000000f0 | 000000f4 | Core Gen9 Mobile | CML-H | R1 | 06-a5-02/20 | 000000f0 | 000000f4 | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | 000000f0 | 000000f4 | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | 000000f0 | 000000f4 | Core Gen10 | CML-U62 V1 | A0 | 06-a6-00/80 | 000000f0 | 000000f4 | Core Gen10 Mobile | CML-U62 V2 | K1 | 06-a6-01/80 | 000000f0 | 000000f4 | Core Gen10 Mobile | RKL-S | B0 | 06-a7-01/02 | 00000054 | 00000056 | Core Gen11 | ADL | C0 | 06-bf-02/07 | 00000022 | 00000026 | Core Gen12 | ADL | C0 | 06-bf-05/07 | 00000022 | 00000026 | Core Gen12

1 0