New MicroOS snapshot 20221225 released!
Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version=Tumbleweed&build=20221225 https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&component=MicroOS&query_format=advanced&resolution=--- Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: alsa-plugins ell (0.54 -> 0.55) gstreamer (1.20.4 -> 1.20.5) gstreamer-plugins-bad (1.20.4 -> 1.20.5) gstreamer-plugins-base (1.20.4 -> 1.20.5) gstreamer-plugins-good (1.20.4 -> 1.20.5) opencc (1.1.4 -> 1.1.6) pam-full-src permissions (1599_20220912 -> 1599_20221220) python-httpcore (0.15.0 -> 0.16.3) samba (4.17.3+git.283.2157972742b -> 4.17.4+git.300.305b22bfce) tcl === Details === ==== alsa-plugins ==== Subpackages: alsa-plugins-speexrate alsa-plugins-upmix - Replace pkgconfig(libavresample) with pkgconfig(libswresample) BuildRequires as rate-lav was ported to use the latter. ==== ell ==== Version update (0.54 -> 0.55) - update to 0.55: * Fix issue with DHCP and blocked unicast requests. ==== gstreamer ==== Version update (1.20.4 -> 1.20.5) Subpackages: gstreamer-lang libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - update to 1.20.5: + This release only contains bugfixes and it should be safe to upgrade from 1.20.x. + systemclock waiting fixes for certain 32-bit platforms/libcs + alphacombine: robustness improvements for corner case scenarios + avfvideosrc: Report latency when doing screen capture + d3d11videosink: various thread-safety and stability fixes + decklink: fix performance issue when HDMI signal has been lost for a long time + flacparse: Fix handling of headers advertising 32 bits per sample + mpegts: Handle when iconv doesn't support ISO 6937 (e.g. musl libc) + opengl: fix automatic dispmanx detection for rpi4 and fix usage of eglCreate/DestroyImage + opusdec: Various channel-related fixes + textrender: event handling fixes, esp. for GAP event + subparse: Fix non-closed tag handling + videoscale: fix handling of unknown buffer metas + videosink: reverse playback handling fixes + qtmux: Prefill mode fixes, especially for raw audio + multiudpsink: allow binding to IPv6 address + rtspsrc: - Fix usage of IPv6 connections in SETUP - Only EOS on timeout if all streams are timed out/EOS + splitmuxsrc: fix playback stall if there are unlinked pads + v4l2: Fix SIGSEGV on state change during format changes + wavparse robustness fixes + Fix static linking on macOS (opengl, vulkan) + gstreamer-vaapi: fix headless build against mesa >= 22.3.0 + GStreamer Editing Services library: Fix build with tools disabled + webrtc example/demo fixes + unit test fixes for aesdec and rtpjitterbuffer + Cerbero: Fix ios cross-compile with cmake on M1; some recipe updates and other build fixes + Miscellaneous bug fixes, memory leak fixes, and other stability and reliability improvements + Performance improvements + Changes in gstreamer base package: - allocator: Copy allocator name in gst_allocator_register() - concat: Properly propagate EOS seqnum - fakesrc: avoid time overflow with datarate - Fix build of 1.20 branch with Meson 0.64.1 for those who have hotdoc installed on their system. - gst-inspect: Don't leak list - meson: fix check for pthread_setname_np() - miniobject: support higher refcount values - pads: Fix non-serialized sticky event push, e.g. instant change rate events - padtemplate: Fix annotations - systemclock: Use futex_time64 syscall on x32 and other platforms that always... - -Wimplicit-function-declaration in pthread_setname_np check (missing GNUSOURCE) ==== gstreamer-plugins-bad ==== Version update (1.20.4 -> 1.20.5) Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 - Update to version 1.20.5: + aesdec: - Fix padding removal for per-buffer-padding=FALSE - Fix test failing in gst-plugins-bad + alphacombine: Add missing query handler for gaps + avfdeviceprovider: do not leak the properties + avfvideosrc: Report latency when doing screen capture + d3d11screencapturesrc: Specify PAR 1/1 to template caps + d3d11videosink: - Fixing focus lost on desktop layout change - Call ShowWindow() from window thread - Fix deadlock when parent window is busy - Always clear back buffer on resize + decklink: reset calculation of time_mapping to fix clipping HDMI video + directshow: Fix build error with glib 2.75 and newer + dvbsubenc: - Forward GAP events as-is if we wouldn't produce an end packet - Write Display Definition Segment if a non-default width/height is used + h265decoder: Do not abort when failed to prepare ref pic set + h264parser: Fix a typo in pred_weight_table parsing. + mediafoundation, d3d11: Fix memory leak and make leak tracer happy + mpegts: - Handle when iconv doesn't support ISO 6937 (e.g. musl libc) - Check continuity counter on section streams + mpegtsdemux: Always clear packetizer on DISCONT push mode + srt: various fixes - improve stats and error handling + rtmp2: Improve error messages + rtmp2sink: Correctly return GST_FLOW_ERROR on error + vulkan: Fix static linking on macOS + webrtcbin: also add rtcp-fb ccm fir for video mlines by default + webrtc/nice: fix small leak of split strings ==== gstreamer-plugins-base ==== Version update (1.20.4 -> 1.20.5) Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0 - Update to version 1.20.5: + audioconvert, audioresample, audiofilter: fix divide by 0 for input buffer without caps + cdparanoia: Ignore compiler warning coming from the cdparanoia header + oggdemux, parsebin: More leak fixes + opengl: - Fix automatic dispmanx detection for rpi4 - Fix usage of eglCreate/DestroyImage - Fix static linking on macOS + Bump core requirement in 1.20 branch to 1.20.4 + oggdemux: Don't leak incoming EOS event + opusdec: Various channel-related fixes + subparse: Fix non-closed tag handling. + textrender: - Don't blindly forward all events and don't blindly forward all events - Negotiate caps on a GAP event if none were negotiated yet + timeoverlay: fix pad leak + videodecoder: Only post latency message if it changed + videoscale: buffer meta handling fixes (NULL-terminate array of valid meta tags) + videosink: Don't return unknown end-time from get_times() ==== gstreamer-plugins-good ==== Version update (1.20.4 -> 1.20.5) Subpackages: gstreamer-plugins-good-gtk gstreamer-plugins-good-lang - Update to version 1.20.5: + flacparse: Fix handling of headers advertising 32bps + multiudpsink: allow binding to IPv6 address + oss4: Fix debug category initialization + qt5: - Deactivate context if fill_info fails - Initialize GError properly in gst_qt_get_gl_wrapcontext() + qtdemux: - Check return value from gst_structure_get in PIFF box - Use unsigned int types to store result of QT_UINT32 - Prefill mode fixes + rtpjitterbuffer tests: Cast drop-messages-interval type properly (fixing it on 32-bit architectures) + rtspsrc: - Don't replace 404 errors with "no auth protocol found" - Fix seek event leaks - Fix usage of IPv6 connections in SETUP - Only EOS on timeout if all streams are timed out/EOS + splitmuxsrc: don't queue data on unlinked pads + v4l2: Fix SIGSEGV on 'change state' during 'format change' + v4l2videodec: Fix activation of internal pool + wavparse: - Avoid occasional crash due to referencing freed buffer. - Fix crash that occurs in push mode when header chunks are corrupted in certain ways. ==== opencc ==== Version update (1.1.4 -> 1.1.6) Subpackages: libopencc1_1 opencc-data - update to 1.1.6: * FTBFS for MacOS w/ Python 3.11 * Support Python 3.11 * Automatically name SO files * Add support for Apple silicon build tag * other minor fixes ==== pam-full-src ==== - Also obsolete pam_unix-32bit to have clean upgrade path. - Merge pam_unix back into pam, seperate package not needed anymore - Update pam-git.diff to current upstream - pam_env: Use vendor specific pam_env.conf and environment as fallback - pam_shells: Use the vendor directory obsoletes pam_env_econf.patch - Refresh docbook5.patch ==== permissions ==== Version update (1599_20220912 -> 1599_20221220) Subpackages: chkstat permissions-config - Update to version 20221220: * profiles: remove outdated kdesud, apptainer entries ==== python-httpcore ==== Version update (0.15.0 -> 0.16.3) - Update to 0.16.3 * Allow ws and wss schemes. Allows us to properly support websocket upgrade connections. (#625) * Forwarding HTTP proxies use a connection-per-remote-host. Required by some proxy implementations. (#637) * Don't raise RuntimeError when closing a connection pool with active connections. Removes some error cases when cancellations are used. (#631) * Lazy import anyio, so that it's no longer a hard dependancy, and isn't imported if unused. (#639) - Add httpcore-allow-deprecationwarnings-test.patch gh#encode/httpcore#511, gh#agronholm/anyio#470 - update to 0.16.2: * Revert 'Fix async cancellation behaviour', which introduced race conditions * Raise RuntimeError if attempting to us UNIX domain sockets on Windows * Fix HTTP/1.1 interim informational responses, such as "100 Continue" * Support HTTP/1.1 informational responses. * Fix async cancellation behaviour. * Support h11 0.14 ==== samba ==== Version update (4.17.3+git.283.2157972742b -> 4.17.4+git.300.305b22bfce) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3 - Update to 4.17.4 * CVE-2022-44640 Upstream Heimdal free of user-controlled pointer in FAST; (bsc#14929); * CVE-2021-20251 Bad password count not incremented atomically; (bsc#14611); * CVE-2022-42898 krb5_pac_parse() buffer parsing vulnerability; (bsc#15203); * CVE-2022-37966 rc4-hmac Kerberos session keys issued to modern servers; (bso#15237); * CVE-2022-37967 Kerberos constrained delegation ticket forgery possible against Samba AD DC; (bso#15231); * CVE-2022-38023 RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided; (bso#15240); * pam_winbind uses time_t and pointers assuming they are of the same size; (bso#15224); * Heimdal session key selection in AS-REQ examines wrong entry; (bso#15219); * filter-subunit is inefficient with large numbers of knownfails; (bso#15258); * smbd allows setting FILE_ATTRIBUTE_TEMPORARY on directories; (bso#15252); * The KDC logic arround msDs-supportedEncryptionTypes differs from Windows; (bso#13135); * libnet: change_password() doesn't work with dcerpc_samr_ChangePasswordUser4(); (bso#15206); * Heimdal session key selection in AS-REQ examines wrong entry; (bso#15219); * Memory leak in snprintf replacement functions; (bso#15230); * RODC doesn't reset badPwdCount reliable via an RWDC (CVE-2021-20251 regression); (bso#15253); * Prevent EBADF errors with vfs_glusterfs; (bso#15198); * %U for include directive doesn't work for share listing (netshareenum); (bso#15243); * Stack smashing in net offlinejoin requestodj; (bso#15257); * Windows 11 22H2 and Samba-AD 4.15 Kerberos login issue; (bso#15197); * Heimdal session key selection in AS-REQ examines wrong entry; (bso#15219); - Remove deprecated if-{down,up} scripts; (bsc#1206444); - Adjust the systemd drop-in file for named service; (bsc#1201689); * Paths are additive so do not repeat paths from named.service * Prefix the samba DLZ directory with "-" to ignore this path if it does not exists - Migration PAM settings to /usr/etc: Saving user changed configuration files in /etc and restoring them while an RPM update. ==== tcl ==== - bsc#1206623, tcl-string-compare.patch: Fix a bug in string comparison on big endian that made test string-2.20.1 fail.
participants (1)
-
Richard Brown