New MicroOS snapshot 20230520 released!
Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version=Tumbleweed&build=20230520 https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&component=MicroOS&query_format=advanced&resolution=--- Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: libcap (2.68 -> 2.69) permissions (1699_20230424 -> 1699_20230516) polkit-default-privs (1550+20230307.7f42172 -> 1550+20230517.ab68b2d) python-gevent (22.10.1 -> 22.10.2) python-greenlet (1.1.3 -> 2.0.2) update-alternatives === Details === ==== libcap ==== Version update (2.68 -> 2.69) - updated to 2.69 - An audit was performed on libcap and friends by https://x41-dsec.de/ (blog) . The audit (final report, 2023-05-10) was sponsored by the the Open Source Technology Improvement Fund, https://ostif.org/ (blog). Five issues were found. Four of them are addressed in this release. Each issue was labeled in the audit results as follows: - LCAP-CR-23-01 (SEVERITY) LOW (CVE-2023-2602) - found by David Gstir (bsc#1211418) - LCAP-CR-23-02 (SEVERITY) MEDIUM (CVE-2023-2603) - found by Richard Weinberger (bsc#1211419) - LCAP-CR-23-100 (SEVERITY) NONE - LCAP-CR-23-101 (SEVERITY) NONE - LCAP-CR-23-102 (SEVERITY) NONE - Man page style improvement from Emanuele Torre ==== permissions ==== Version update (1699_20230424 -> 1699_20230516) Subpackages: chkstat permissions-config - Update to version 20230516: * common permissions: add icingaweb2 setgid directory (bsc#1211314) ==== polkit-default-privs ==== Version update (1550+20230307.7f42172 -> 1550+20230517.ab68b2d) - Update to version 1550+20230517.ab68b2d: * rename com.deepin.api to org.deepin.dde (bsc#1211376) ==== python-gevent ==== Version update (22.10.1 -> 22.10.2) - Add patch handle-python-ssl-changes.patch: * Handle Python 3.10 changes where ssl.shared_ciphers() changes behaviour. - skip one more test from testsuite - update to 22.10.2: * Update to greenlet 2.0. This fixes a deallocation issue that required a change in greenlet's ABI. The design of greenlet 2.0 is intended to prevent future fixes and enhancements from requiring an ABI change, making it easier to update gevent and greenlet independently. - Switch documentation to be within the main package. ==== python-greenlet ==== Version update (1.1.3 -> 2.0.2) - update to 2.0.2: * Fix calling ``greenlet.settrace()`` with the same tracer object that was currently active. * Various compilation and standards conformance fixes. * Python 3.11: Fix a memory leak. See issue 328 and gevent issue 1924. - 2.0.0.post0 (2022-11-03) * Add Programming Language :: Python :: 3.11 to the PyPI classifier metadata. - 2.0.0rc5 (2022-10-31) * Linux: Fix another group of rare crashes that could occur when shutting down an interpeter running multiple threads. See issue 325. - 2.0.0rc4 (2022-10-30) * Linux: Fix a rare crash that could occur when shutting down an interpreter running multiple threads, when some of those threads are in greenlets making calls to functions that release the GIL. - 2.0.0rc1 (2022-10-27) * Deal gracefully with greenlet switches that occur while deferred deallocation of objects is happening using CPython's "trash can" mechanism. Previously, if a large nested container held items that switched greenlets during delayed deallocation, and that second greenlet also invoked the trash can, CPython's internal state could become corrupt. This was visible as an assertion error in debug builds. Now, the relevant internal state is saved and restored during greenlet switches. See also gevent issue 1909. * Rename the C API function PyGreenlet_GET_PARENT to PyGreenlet_GetParent for consistency. The old name remains available as a deprecated alias. - 2.0.0a1 (2022-01-20) * Drop support for very old versions of GCC and MSVC. Compilation now requires a compiler that either supports C++11 or has some other intrinsic way to create thread local variables; for older GCC, clang and SunStudio we use __thread, while for older MSVC we use __declspec(thread). * This version of greenlet is known to compile and pass tests on CPython 3.11.0a4. Earlier or later 3.11 releases may or may not work. See PR 280. Special thanks to Brandt Bucher and the CPython developers. * Fix several leaks that could occur when using greenlets from multiple threads. For example, it is no longer necessary to call getcurrent() before exiting a thread to allow its main greenlet to be cleaned up. See issue 252. * Fix the C API PyGreenlet_Throw to perform the same error checking that the Python API greenlet.throw() does. Previously, it did no error checking. - drop sphinx-6.0.0.patch (upstream) ==== update-alternatives ==== - Add _multibuild to define additional spec files as additional flavors. Eliminates the need for source package links in OBS.
participants (1)
-
Richard Brown