New ARM MicroOS snapshot 20220804 released!
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version=Tumbleweed&build=20220804
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&component=MicroOS&query_format=advanced&resolution=---
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (22.1.3 -> 22.1.4)
Mesa-drivers (22.1.3 -> 22.1.4)
MozillaFirefox (101.0.1 -> 103.0.1)
apparmor (3.0.5 -> 3.0.6)
bind
firewalld
gdb (11.1 -> 12.1)
gnome-settings-daemon
gnutls (3.7.6 -> 3.7.7)
iso-codes (4.10.0 -> 4.11.0)
kernel-source (5.18.12 -> 5.18.15)
libapparmor (3.0.5 -> 3.0.6)
libavif
libblockdev (2.26 -> 2.27)
libgcrypt
libgsm (1.0.19 -> 1.0.20)
libnvme (1.1~rc0 -> 1.1)
mokutil (0.5.0 -> 0.6.0)
mozilla-nss (3.79 -> 3.80)
mpg123 (1.30.1 -> 1.30.2)
nano
nvme-cli (2.1~rc0 -> 2.1.1)
pandoc (2.17.1.1 -> 2.18)
pipewire
polkit
poppler (22.07.0 -> 22.08.0)
poppler-qt5 (22.07.0 -> 22.08.0)
python-Genshi (0.7.5 -> 0.7.7)
python-Mako (1.1.6 -> 1.2.1)
python-alembic (1.8.0 -> 1.8.1)
python-cffi (1.15.0 -> 1.15.1)
python-cryptography (37.0.2 -> 37.0.4)
python-gobject (3.42.1 -> 3.42.2)
python-hatchling (1.4.1 -> 1.6.0)
python-httpcore (0.14.7 -> 0.15.0)
python-importlib-metadata (4.11.4 -> 4.12.0)
python-ipywidgets (7.6.5 -> 7.7.1)
python-jsonschema (4.5.1 -> 4.8.0)
python-jupyter-core (4.9.2 -> 4.11.1)
python-jupyter_console (6.4.3 -> 6.4.4)
python-jupyterlab (3.2.3 -> 3.4.4)
python-jupyterlab-pygments (0.1.2 -> 0.2.2)
python-nbclassic (0.3.7 -> 0.4.3)
python-notebook
python-numexpr
python-psutil
python-pycairo
python-regex (2022.6.2 -> 2022.7.9)
python-scipy
python-urllib3 (1.26.9 -> 1.26.11)
python-wcwidth
python-widgetsnbextension (3.6.0 -> 3.6.1)
read-only-root-fs (1.0+git20200730.1243fd0 -> 1.0+git20220801.cbb90bc)
rsync
tiff
util-linux-systemd
vim (9.0.0073 -> 9.0.0135)
webkit2gtk3 (2.36.4 -> 2.36.5)
webkit2gtk3-soup2 (2.36.4 -> 2.36.5)
webkit2gtk4 (2.36.4 -> 2.36.5)
xdg-utils (1.1.3+20201113 -> 1.1.3+20210805)
zlib-ng-compat
=== Details ===
==== Mesa ====
Version update (22.1.3 -> 22.1.4)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- update to 22.1.4:
* anv: disable non uniform indexing of UBOs
* anv: use the right helper to invalidate memory
* intel/fs: ray query fix for global address
* isl: add new helper for format component compatibility
* radeonsi: fix random PS wave size
* r300: Keep rc_rename_regs() from overflowing
* aco/ra: update register file when updating phi definition
* radv: Fix vkCmdCopyQueryResults -> vkCmdResetPool hazard
==== Mesa-drivers ====
Version update (22.1.3 -> 22.1.4)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- update to 22.1.4:
* anv: disable non uniform indexing of UBOs
* anv: use the right helper to invalidate memory
* intel/fs: ray query fix for global address
* isl: add new helper for format component compatibility
* radeonsi: fix random PS wave size
* r300: Keep rc_rename_regs() from overflowing
* aco/ra: update register file when updating phi definition
* radv: Fix vkCmdCopyQueryResults -> vkCmdResetPool hazard
==== MozillaFirefox ====
Version update (101.0.1 -> 103.0.1)
- Mozilla Firefox 103.0.1
* Enabled hardware acceleration on newer AMD cards.
* Fixed a crash on Firefox shutdown caused by a bug in the
audio manager
- Mozilla Firefox 103.0
https://www.mozilla.org/en-US/firefox/103.0/releasenotes
MFSA 2022-28 (bsc#1201758)
* CVE-2022-36319 (bmo#1737722)
Mouse Position spoofing with CSS transforms
* CVE-2022-36317 (bmo#1759951)
Long URL would hang Firefox for Android
* CVE-2022-36318 (bmo#1771774)
Directory indexes for bundled resources reflected URL
parameters
* CVE-2022-36314 (bmo#1773894)
Opening local <code>.lnk</code> files could cause unexpected
network loads
* CVE-2022-36315 (bmo#1762520)
Preload Cache Bypasses Subresource Integrity
* CVE-2022-36316 (bmo#1768583)
Performance API leaked whether a cross-site resource is
redirecting
* CVE-2022-36320 (bmo#1759794, bmo#1760998)
Memory safety bugs fixed in Firefox 103
* CVE-2022-2505 (bmo#1769739, bmo#1772824)
Memory safety bugs fixed in Firefox 103 and 102.1
- requires
NSS >= 3.80
rust = 1.61
rust-cbindgen >= 0.24.3
- Move %limit_build set before mozilla config to actually set the
value of %jobs to MOZ_MAKE_FLAGS to fix build on aarch64
- Firefox 102.0.1:
* Fixed: Fixed bookmarks sidebar flashing white when opened in
dark mode (bmo#1776157)
* Fixed: Fixed multilingual spell checking not working with
content in both English and a non-Latin alphabet
(bmo#1773802)
* Fixed: Developer tools: Fixed an issue where the console
output keep getting scrolled to the bottom when the last
visible message is an evaluation result (bmo#1776262)
* Fixed: Fixed *Delete cookies and site data when Firefox is
closed* checkbox getting disabled on startup (bmo#1777419)
* Fixed: Various stability fixes
- Firefox 102.0
* You can now disable automatic opening of the download panel
every time a new download starts
* Firefox now mitigates query parameter tracking when navigating
sites in ETP strict mode
* Improved security by moving audio decoding into a separate
process with stricter sandboxing, thus improving process isolation
* https://www.mozilla.org/en-US/firefox/102.0/releasenotes
MFSA 2022-24 (bsc#1200793)
* CVE-2022-34479 (bmo#1745595)
A popup window could be resized in a way to overlay the
address bar with web content
* CVE-2022-34470 (bmo#1765951)
Use-after-free in nsSHistory
* CVE-2022-34468 (bmo#1768537)
CSP sandbox header without `allow-scripts` can be bypassed
via retargeted javascript: URI
* CVE-2022-34482 (bmo#845880)
Drag and drop of malicious image could have led to malicious
executable and potential code execution
* CVE-2022-34483 (bmo#1335845)
Drag and drop of malicious image could have led to malicious
executable and potential code execution
* CVE-2022-34476 (bmo#1387919)
ASN.1 parser could have been tricked into accepting malformed ASN.1
* CVE-2022-34481 (bmo#1483699, bmo#1497246)
Potential integer overflow in ReplaceElementsAt
* CVE-2022-34474 (bmo#1677138)
Sandboxed iframes could redirect to external schemes
* CVE-2022-34469 (bmo#1721220)
TLS certificate errors on HSTS-protected domains could be
bypassed by the user on Firefox for Android
* CVE-2022-34471 (bmo#1766047)
Compromised server could trick a browser into an addon downgrade
* CVE-2022-34472 (bmo#1770123)
Unavailable PAC file resulted in OCSP requests being blocked
* CVE-2022-34478 (bmo#1773717)
Microsoft protocols can be attacked if a user accepts a prompt
* CVE-2022-2200 (bmo#1771381)
Undesired attributes could be set as part of prototype pollution
* CVE-2022-34480 (bmo#1454072)
Free of uninitialized pointer in lg_init
* CVE-2022-34477 (bmo#1731614)
MediaError message property leaked information on cross-
origin same-site pages
* CVE-2022-34475 (bmo#1757210)
HTML Sanitizer could have been bypassed via same-origin
script via use tags
* CVE-2022-34473 (bmo#1770888)
HTML Sanitizer could have been bypassed via use tags
* CVE-2022-34484 (bmo#1763634, bmo#1772651)
Memory safety bugs fixed in Firefox 102 and Firefox ESR 91.11
* CVE-2022-34485 (bmo#1768409, bmo#1768578)
Memory safety bugs fixed in Firefox 102
- requires
... changelog too long, skipping 11 lines ...
- add some more returns to the no-return-patch
==== apparmor ====
Version update (3.0.5 -> 3.0.6)
Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor
- update to AppArmor 3.0.6
- fix LTO build in the parser
- remove dbus deny rule in abstractions/exo-open
- see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.6
for the detailed upstream changelog
- drop upstream patch dirtest-sort-mr900.diff
==== bind ====
- Add systemd drop-in directory for named service
[bsc#1201689, bind.spec]
==== firewalld ====
Subpackages: firewalld-bash-completion python3-firewall
- readd ipset buildrequires to reenable ipset support (bsc#1202043)
- readd ebtables too, as there is no builtin support.
==== gdb ====
Version update (11.1 -> 12.1)
- Maintenance script qa.sh:
* Add SLE-12/x86_64 to "known clean configs".
* Add fail for PR29405.
* Add fail for PR26915.
- Patches added:
* gdb-testsuite-fix-gdb.threads-killed-outside.exp-on-aarch64.patch
- Maintenance script qa.sh:
* Remove PR29247 internal-error.
* Add SLE-15/aarch64 to "known clean configs".
- Patches added:
* gdb-fix-watchpoints-triggered.patch
- Maintenance script qa.sh:
* Add kfails for PR25038, PR29253, and PR29423.
* Remove gdb.mi/mi-var-invalidate-shlib.exp kfails.
- Mention qa-local.sh, qa-remote.sh and README.qa as sources.
- Maintenance script qa-local.sh:
* Use have_combo consistently.
- Maintenance script qa.sh:
* Add kfail_aarch64.
* Add PR29419/PR29409 kfails.
* Update PR29247 kfails.
- Patches added:
* make-gdb.ada-float-bits.exp-more-generic.patch
* gdb-testsuite-fix-gdb.ada-literals.exp-with-aarch64.patch
- Actually apply fixup-gdb-test-bt-cfi-without-die.patch and
fixup-2-gdb-rhbz1553104-s390x-arch12-test.patch.
- Also remove gdb-6.5-readline-long-line-crash-test.patch from
patches list in gdb.spec.
- Patches added:
* powerpc-add-support-for-ieee-128-bit-format.patch
* powerpc-correct-the-gdb-ioctl-values-for-tcgets-tcsets-tcsetsw-and-tcsetsf.patch
* gdb-testsuite-remove-target-limits-in-gdb.base-catch-syscall.exp.patch
* powerpc-fix-for-gdb.base-eh_return.exp.patch
* fix-comparison-of-unsigned-long-int-to-int-in-record_linux_system_call.patch
* gdb-testsuite-fix-gdb.reverse-test_ioctl_tcsetsw.exp-with-libc-debuginfo.patch
* fixup-gdb-test-bt-cfi-without-die.patch
* fix-core-file-detach-crash-corefiles-29275.patch
* gdb-testsuite-fix-gdb.dwarf2-dw2-out-of-range-end-of-seq.exp-on-aarch64.patch
* gdb-testsuite-fix-gdb.base-catch-syscall.exp-without-enable-targets.patch
* gdb-testsuite-fix-gdb.base-catch-syscall.exp-with-with-expat-no.patch
* fix-for-gdb.base-solib-search.exp-test.patch
- Patch removed:
* gdb-6.7-ppc-clobbered-registers-O2-test.patch
* gdb-6.5-readline-long-line-crash-test.patch
- Patches updated:
* gdb-tdep-update-syscalls-ppc64-ppc-linux.xml.patch
* gdb-testsuite-handle-pipe2-syscall-in-gdb.base-catch-syscall.exp.patch
- Maintenance script qa.sh:
* Add PR28504 KFAILs.
* Make .sum file matching less complex.
* Add fedora test-case kfail.
- Maintenance script qa-local.sh:
* Fix incorrect path name.
- Update comments in gdb.spec.
- Patches added:
* powerpc-update-expected-floating-point-output-for-gdb.arch-altivec-regs.exp-and-gdb.arch-vsx-regs.exp.patch
- Patches updated:
* gdb-testsuite-support-recording-of-getrandom.patch
(add aarch64 part)
- Maintenance script qa.sh:
* Add i586 to known clean configs.
- Patches added:
* gdb-testsuite-enable-some-test-cases-for-x86_64-m32.patch
* gdb-testsuite-fix-gdb.reverse-i387-env-reverse.exp-for-pie.patch
* gdb-testsuite-support-recording-of-getrandom.patch
- Patches updated:
* gdb-record-handle-statx-system-call.patch
- Maintenance script qa.sh:
* Allow only two summary files, for i586.
* Add i586 KFAILs.
- Maintenance script qa-local.sh:
* Add i586.
- Maintenance script qa-local.sh:
* Fix rpm pathname.
- Maintenance script qa-remote.sh:
* Skip stale config openSUSE_Leap_15.2.
- Maintenance script qa.sh:
* Drop known clean config: Leap 15.2 x86_64.
- Maintenance script qa-local.sh:
* Add cleanup step.
* Add "build all configs without testsuite" step.
* For "build all configs with testsuite" step, redirect output
to log and produce PASS/FAIL line, and make sure buildroot is
removed also in case of missing rpm.
* Use "--clean --trust-all-projects" for osc build commands.
* Drop openSUSE_Leap_15.2.
- Maintenance script qa.sh:
* Rename argument 6 to -local.
* Add PR29247 KFAILs.
* Update internal-error regexps.
- New maintenance script qa-remote.sh.
- Add "build all configs without testsuite" step in README.qa.
- Patches added (backport from trunk):
* gdb-testsuite-remove-attach-test-from-can_spawn_for_attach.patch
- README.qa:
* Add remote qa entry.
* Update local qa entry:
* Add notes entry.
* Other updates to match changes in qa-local.sh.
... changelog too long, skipping 312 lines ...
* Add Leap 15.4 x86_64 to know good configs.
==== gnome-settings-daemon ====
- Change dependency from polkit to /usr/bin/pkexec: pkexec has been
split out of polkit. Requiring the explicit capability seems
better here than having to worry what package carries the binary.
==== gnutls ====
Version update (3.7.6 -> 3.7.7)
- Update to 3.7.7: [bsc#1202020, CVE-2022-2509]
* libgnutls: Fixed double free during verification of pkcs7
signatures. CVE-2022-2509
* libgnutls: gnutls_hkdf_expand now only accepts LENGTH argument
less than or equal to 255 times hash digest size, to comply with
RFC 5869 2.3.
* libgnutls: Length limit for TLS PSK usernames has been increased
from 128 to 65535 characters
* libgnutls: AES-GCM encryption function now limits plaintext
length to 2^39-256 bits, according to SP800-38D 5.2.1.1.
* libgnutls: New block cipher functions have been added to
transparently handle padding. gnutls_cipher_encrypt3 and
gnutls_cipher_decrypt3 can be used in combination of
GNUTLS_CIPHER_PADDING_PKCS7 flag to automatically add/remove
padding if the length of the original plaintext is not a multiple
of the block size.
* libgnutls: New function for manual FIPS self-testing.
* API and ABI modifications:
- gnutls_fips140_run_self_tests: New function
- gnutls_cipher_encrypt3: New function
- gnutls_cipher_decrypt3: New function
- gnutls_cipher_padding_flags_t: New enum
* guile: Guile 1.8 is no longer supported
* guile: Session record port treats premature termination as EOF Previously,
a 'gnutls-error' exception with the 'error/premature-termination' value
would be thrown while reading from a session record port when the
underlying session was terminated prematurely. This was inconvenient
since users of the port may not be prepared to handle such an exception.
Reading from the session record port now returns the end-of-file object
instead of throwing an exception, just like it would for a proper
session termination.
* guile: Session record ports can have a 'close' procedure. The
'session-record-port' procedure now takes an optional second parameter,
and a new 'set-session-record-port-close!' procedure is provided to
specify a 'close' procedure for a session record port. This 'close'
procedure lets users specify cleanup operations for when the port is
closed, such as closing the file descriptor or port that backs the
underlying session.
* Rebase patches:
- gnutls-3.6.6-set_guile_site_dir.patch
- gnutls-FIPS-TLS_KDF_selftest.patch
- gnutls-FIPS-disable-failing-tests.patch
* Remove patch merged upstream:
- gnutls-FIPS-PBKDF2-KAT-requirements.patch
- https://gitlab.com/gnutls/gnutls/merge_requests/1561
==== iso-codes ====
Version update (4.10.0 -> 4.11.0)
Subpackages: iso-codes-lang
- Update to version 4.11.0:
+ Update ISO 639-3 codes from SIL website.
+ Updated translations.
==== kernel-source ====
Version update (5.18.12 -> 5.18.15)
- Linux 5.18.15 (bsc#1012628).
- watch-queue: remove spurious double semicolon (bsc#1012628).
- ASoC: SOF: Intel: disable IMR boot when resuming from ACPI S4
and S5 states (bsc#1012628).
- ASoC: SOF: pm: add definitions for S4 and S5 states
(bsc#1012628).
- ASoC: SOF: pm: add explicit behavior for ACPI S1 and S2
(bsc#1012628).
- watchqueue: make sure to serialize 'wqueue->defunct' properly
(bsc#1012628).
- x86/alternative: Report missing return thunk details
(bsc#1012628).
- x86/amd: Use IBPB for firmware calls (bsc#1012628).
- exfat: use updated exfat_chain directly during renaming
(bsc#1012628).
- exfat: fix referencing wrong parent directory information
after renaming (bsc#1012628).
- crypto: qat - re-enable registration of algorithms
(bsc#1012628).
- crypto: qat - add param check for DH (bsc#1012628).
- crypto: qat - add param check for RSA (bsc#1012628).
- crypto: qat - remove dma_free_coherent() for DH (bsc#1012628).
- crypto: qat - remove dma_free_coherent() for RSA (bsc#1012628).
- crypto: qat - fix memory leak in RSA (bsc#1012628).
- crypto: qat - add backlog mechanism (bsc#1012628).
- crypto: qat - refactor submission logic (bsc#1012628).
- crypto: qat - use pre-allocated buffers in datapath
(bsc#1012628).
- crypto: qat - set to zero DH parameters before free
(bsc#1012628).
- dlm: fix pending remove if msg allocation fails (bsc#1012628).
- clk: lan966x: Fix the lan966x clock gate register address
(bsc#1012628).
- x86/bugs: Warn when "ibrs" mitigation is selected on Enhanced
IBRS parts (bsc#1012628).
- perf/x86/intel/lbr: Fix unchecked MSR access error on HSW
(bsc#1012628).
- sched/deadline: Fix BUG_ON condition for deboosted tasks
(bsc#1012628).
- bpf: Make sure mac_header was set before using it (bsc#1012628).
- mm/mempolicy: fix uninit-value in mpol_rebind_policy()
(bsc#1012628).
- KVM: Don't null dereference ops->destroy (bsc#1012628).
- spi: bcm2835: bcm2835_spi_handle_err(): fix NULL pointer deref
for non DMA transfers (bsc#1012628).
- KVM: selftests: Fix target thread to be migrated in rseq_test
(bsc#1012628).
- gpio: gpio-xilinx: Fix integer overflow (bsc#1012628).
- selftests: gpio: fix include path to kernel headers for out
of tree builds (bsc#1012628).
- net/sched: cls_api: Fix flow action initialization
(bsc#1012628).
- tcp: Fix data-races around sysctl_tcp_max_reordering
(bsc#1012628).
- tcp: Fix a data-race around sysctl_tcp_abort_on_overflow
(bsc#1012628).
- tcp: Fix a data-race around sysctl_tcp_rfc1337 (bsc#1012628).
- tcp: Fix a data-race around sysctl_tcp_stdurg (bsc#1012628).
- tcp: Fix a data-race around sysctl_tcp_retrans_collapse
(bsc#1012628).
- tcp: Fix data-races around sysctl_tcp_slow_start_after_idle
(bsc#1012628).
- tcp: Fix a data-race around sysctl_tcp_thin_linear_timeouts
(bsc#1012628).
- tcp: Fix data-races around sysctl_tcp_recovery (bsc#1012628).
- tcp: Fix a data-race around sysctl_tcp_early_retrans
(bsc#1012628).
- tcp: Fix data-races around sysctl knobs related to SYN option
(bsc#1012628).
- udp: Fix a data-race around sysctl_udp_l3mdev_accept
(bsc#1012628).
- ip: Fix data-races around sysctl_ip_prot_sock (bsc#1012628).
- ipv4: Fix data-races around sysctl_fib_multipath_hash_fields
(bsc#1012628).
- ipv4: Fix data-races around sysctl_fib_multipath_hash_policy
(bsc#1012628).
- ipv4: Fix a data-race around sysctl_fib_multipath_use_neigh
(bsc#1012628).
- can: rcar_canfd: Add missing of_node_put() in rcar_canfd_probe()
(bsc#1012628).
- drm/imx/dcss: Add missing of_node_put() in fail path
(bsc#1012628).
- drm/panel-edp: Fix variable typo when saving hpd absent delay
from DT (bsc#1012628).
- amt: do not use amt->nr_tunnels outside of lock (bsc#1012628).
- amt: drop unexpected multicast data (bsc#1012628).
- amt: drop unexpected query message (bsc#1012628).
- amt: drop unexpected advertisement message (bsc#1012628).
- amt: add missing regeneration nonce logic in request logic
(bsc#1012628).
- amt: use READ_ONCE() in amt module (bsc#1012628).
- amt: remove unnecessary locks (bsc#1012628).
- amt: use workqueue for gateway side message handling
(bsc#1012628).
- net: dsa: vitesse-vsc73xx: silent spi_device_id warnings
(bsc#1012628).
- net: dsa: sja1105: silent spi_device_id warnings (bsc#1012628).
- be2net: Fix buffer overflow in be_get_module_eeprom
(bsc#1012628).
... changelog too long, skipping 599 lines ...
- commit fcd7336
==== libapparmor ====
Version update (3.0.5 -> 3.0.6)
- update to AppArmor 3.0.6
- fix LTO build in the parser
- remove dbus deny rule in abstractions/exo-open
- see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.6
for the detailed upstream changelog
- drop upstream patch dirtest-sort-mr900.diff
==== libavif ====
- Enable libyuv on TW
==== libblockdev ====
Version update (2.26 -> 2.27)
Subpackages: libbd_btrfs2 libbd_crypto2 libbd_fs2 libbd_loop2 libbd_lvm2 libbd_mdraid2 libbd_part2 libbd_swap2 libbd_utils2 libblockdev2
- Update to version 2.27:
+ Fix for s390x: Remove double fclose in bd_s390_dasd_online
+ fs: Return BD_FS_ERROR_UNKNOWN_FS on mounting unknown
filesystem
+ overrides: Fix translating exceptions in ErrorProxy
+ vdo_stats: Default to 100 % savings for invalid savings values
+ lvm-dbus: Add support for changing compression and
deduplication
+ lvm:
- Fix reading statistics for VDO pools with VDO 8
- Do not set global config to and empty string
- Do not include duplicate entries in bd_lvm_lvs output
- Use correct integer type in for comparison
+ crypto: Remove useless comparison in progress report in
luks_format
==== libgcrypt ====
- Fix reproducible build problems:
- Do not use %release in binaries (but use SOURCE_DATE_EPOCH)
- Fix date call messed up by spec-cleaner
==== libgsm ====
Version update (1.0.19 -> 1.0.20)
- Update to 1.0.20:
* Use $(RMFLAGS) with the rms in the Makefile; add -f to $(RMFLAGS) to
avoid spurious error messages during build.
- Rebase and rename libgsm-1.0.20.patch from libgsm-1.0.13.patch.
- Rebase libgsm-include.patch.
==== libnvme ====
Version update (1.1~rc0 -> 1.1)
- Update to version 1.1:
* Regenerate all documentation
* json: fixup dhchap_ctrl_key definitions
* fabrics: Fix build_options() return values
* fabrics: sanitize dump-config output
* Fix poll.h includes
* build: Drop -nostdinc for LibreSSL header checks
* ioctl: Honor rae in nvme_get_nsid_log
* build: Add support to build against LibreSSL
* rpmbuild: Enable 'make rpm' to build rpm pkgs #408
* mi: unify MI Get Log Page function with ioctl API
* python: add missing ctrl attrs to Python bindings
* mi-mctp: Add timeout support to MCTP transport
* mi: Add maximum More Processing Required limit API
* mi: Add endpoint get/set timeout API
==== mokutil ====
Version update (0.5.0 -> 0.6.0)
- Update to 0.6.0
+ 6c98907 SBAT revocation update support
+ 0276891 mokutil: Add trust_mok_keys and untrust_mok_keys
+ 57bc385 mokutil: enable setting fallback verbosity and noreboot mode
+ b15e7c4 util: add the missing stdio.h
- Drop mokutil-fix-missing-header.patch (upstream)
==== mozilla-nss ====
Version update (3.79 -> 3.80)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs
- update to NSS 3.80
* bmo#1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h.
* bmo#1617956 - Add support for asynchronous client auth hooks.
* bmo#1497537 - nss-policy-check: make unknown keyword check optional.
* bmo#1765383 - GatherBuffer: Reduced plaintext buffer allocations
by allocating it on initialization. Replaced
redundant code with assert. Debug builds: Added
buffer freeing/allocation for each record.
* bmo#1773022 - Mark 3.79 as an ESR release.
* bmo#1764206 - Bump nssckbi version number for June.
* bmo#1759815 - Remove Hellenic Academic 2011 Root.
* bmo#1770267 - Add E-Tugra Roots.
* bmo#1768970 - Add Certainly Roots.
* bmo#1764392 - Add DigitCert Roots.
* bmo#1759794 - Protect SFTKSlot needLogin with slotLock.
* bmo#1366464 - Compare signature and signatureAlgorithm fields in
legacy certificate verifier.
* bmo#1771497 - Uninitialized value in cert_VerifyCertChainOld.
* bmo#1771495 - Unchecked return code in sec_DecodeSigAlg.
* bmo#1771498 - Uninitialized value in cert_ComputeCertType.
* bmo#1760998 - Avoid data race on primary password change.
* bmo#1769063 - Replace ppc64 dcbzl intrinisic.
* bmo#1771036 - Allow LDFLAGS override in makefile builds.
==== mpg123 ====
Version update (1.30.1 -> 1.30.2)
Subpackages: libmpg123-0 mpg123-openal
- Update to version 1.30.2
* Only use EWOULDBLOCK if the macro is defined.
==== nano ====
- Added obs-channel-and-patchinfo-syntax.patch to support syntax
highlighting for _channel and _patchinfo files used by OBS
==== nvme-cli ====
Version update (2.1~rc0 -> 2.1.1)
Subpackages: nvme-cli-bash-completion
- Update to version 2.1.1:
* build: Update version to v2.1.1
* build: Extend release script to support micro version releases
* build: Add minimum build requirement on libnvme
* wrapper: Add weak nvme_init_copy_range_f1 symbol
* build: Update version before regenerating docs
* build: Update release version rules
- Update to version v2.1:
* nvme: Do not print error message in collect_effects_log helper
* fabrics: Remove dhchap-ctrl-secret from discover/connect-all
* nvme-print: sanitize the get-feature async event config output
* nvme: Set default rae value for nvme_get_nsid_log users
* fabrics: Avoid nvme_scan_ctrl when disconnecting
* print: Fix nvme_id_uuid_list
==== pandoc ====
Version update (2.17.1.1 -> 2.18)
- Update pandoc to version 2.18.
[#]# pandoc 2.18 (2022-04-22)
* New input formats: `endnotexml` (EndNote XML bibliography),
`ris` (RIS bibliography).
* A RIS bibliography file may now be used with `--citeproc`.
* Citeproc: Allow a formatted bibliography to be placed in metadata fields
via a Div with class `refs` (#7969, #526). Thus, one can include a
metadata field, say `refs`, whose content is an
empty div with id `refs`, and the formatted bibliography will be put into
this metadata field. It may then be interpolated into a template using the
variable `refs`.
* Ensure that you don't get PDF output to terminal. `-t pdf` now behaves
like `-t docx` and gives an error unless the output is redirected.
* `--version` now prints hslua version (#7929) and
Lua version (#7997, Albert Krewinkel).
* Change `--metadata-file` parsing so that, when the input format is not
markdown or a markdown variant, pandoc's markdown is used (#6832, #7926).
When the input format is a markdown variant, the same format is used.
Reason for the change: it doesn't make sense to run the markdown parser
with a set of extensions designed for a non-markdown format, and
this dramatically limits what people can do in metadata files.
* Trim whitespace from math in `--webtex` (#7892).
This fixes problems with --webtex and markdown output,
when display math starts or ends with a newline.
* New exported module Text.Pandoc.Readers.EndNote, exporting
`readEndNoteXML`, `readEndNoteXMLCitation`,
and `readEndNoteXMLReferences`. [API change]
* `--self-contained`: issue warning rather than failing with an error
if a resource can't be found (#7904).
* New exported module, Text.Pandoc.Readers.RIS, exporting `readRIS` (#7894).
* LaTeX reader:
+ Handle subequations as inline math environment (#7883).
+ Rudimentary support for `vbox` (#7939).
+ Support `\today` (#7905).
+ Handle `\label` and `\ref` for footnotes (#7930).
+ Allow inline groups starting with `\bgroup` (#7953).
+ Use custom TokStream that keeps track of whether macros are expanded.
This allows us to improve performance a bit by avoiding unnecessary
runs of the macro expansion code (e.g. from 24 ms to 20 ms on
our standard benchmark).
+ Further optimizations for inline parsing.
+ Better handling of `\usepackage`. If the package is local but
causes parse errors, parse everything up to the error and skip the
rest. Issue a `CouldNotParseIncludeFile` warning indicating that
parsing failed at that point.
+ Text.Pandoc.Readers.LaTeX.Parsing: Monoid and Semigroup instances for
TokStream.
* HTML reader:
+ Give warnings and emit empty note when parsing
`<a epub:type="noteref">` and the identifier
doesn't correspond to anything in the note table (#7884).
Previously we just silently skipped these cases.
+ Fix parsing of epub footnotes (#7884).
* DocBook reader:
+ Handle complete set of entities as specified at
participants (1)
-
Guillaume Gardet