Mailinglist Archive: opensuse-factory (437 mails)

< Previous Next >
[opensuse-factory] New Tumbleweed snapshot 20150422 released!
Changed packages:

==== Mesa ====
Version update (10.5.2 -> 10.5.3)
Subpackages: Mesa-32bit Mesa-devel Mesa-dri-devel Mesa-libEGL-devel
Mesa-libEGL1 Mesa-libEGL1-32bit Mesa-libGL-devel Mesa-libGL1 Mesa-libGL1-32bit
Mesa-libGLESv1_CM-devel Mesa-libGLESv1_CM1 Mesa-libGLESv2-2
Mesa-libGLESv2-devel Mesa-libglapi-devel Mesa-libglapi0 Mesa-libglapi0-32bit
libOSMesa-devel libOSMesa9 libOSMesa9-32bit libgbm-devel libgbm1 libgbm1-32bit
libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi
libwayland-egl-devel libwayland-egl1 libxatracker2

- Update to 10.5.3
+ fdo#83962 - [HSW/BYT]Piglit
spec_ARB_gpu_shader5_arb_gpu_shader5-emitstreamvertex_nodraw fails
+ fdo#89679 - [NV50] Portal/Half-Life 2 will not start (native Steam)
+ fdo#89746 - Mesa and LLVM 3.6+ break opengl for genymotion
+ fdo#89754 - vertexAttrib fails WebGL Conformance test with mesa drivers
+ fdo#89758 - pow WebGL Conformance test with mesa drivers
+ fdo#89759 - WebGL OGL ES GLSL conformance test with mesa drivers fails
+ fdo#89905 - scons build broken on 10.5.2 due to activated vega st
+ st_glsl_to_tgsi: only do mov copy propagation on temps (v2)
+ xmlpool: don't forget to ship the MOS
+ configure.ac: error out if python/mako is not found when required
+ dist: add the VG depedencies into the tarball
+ i965: Do not render primitives in non-zero streams then TF is disabled
+ st/mesa: update arrays when the current attrib has been updated
+ nv50/ir: take postFactor into account when doing peephole optimizations
+ nv50/ir/gk110: fix offset flag position for TXD opcode
+ freedreno/a3xx: fix 3d texture layout
+ freedreno/a3xx: point size should not be divided by 2
+ nv50: allocate more offset space for occlusion queries
+ nv50,nvc0: limit the y-tiling of 3d textures to the first level's tiling
+ i965: Fix instanced geometry shaders on Gen8+.
+ i965: Add forgotten multi-stream code to Gen8 SOL state.
+ nouveau: synchronize "scratch runout" destruction with the command stream
+ radeonsi: Cache LLVMTargetMachineRef in context instead of in screen
+ clover: Return CL_BUILD_ERROR for CL_PROGRAM_BUILD_STATUS when compilation
fails v2
+ i965: Fix URB size for CHV

==== apparmor-abstractions ====
Subpackages: apparmor-docs apparmor-parser apparmor-profiles apparmor-utils
libapparmor-devel libapparmor1 libapparmor1-32bit pam_apparmor
pam_apparmor-32bit perl-apparmor python3-apparmor

- make sure %service_del_postun doesn't call systemctl try-restart
(boo#853019, bare systemd edition)
- add samba-4.2-profiles.diff: update samba (winbindd and nmb)
profiles for samba 4.2 (boo#921098, boo#923201)
- only install apparmor.service for openSUSE > 13.2
- Add a native systemd unit which *at the moment* only
wraps/masks the early boot script.

==== cmake ====
Version update (3.2.1 -> 3.2.2)

- Update to 3.2.2
file(LOCK): Close file descriptor/handle when releasing a lock
FindMFC: Use if(DEFINED) to simplify condition (#15477)
curl: Never consider using Windows APIs on Cygwin
liblzma: Use unaligned access only on Intel and PowerPC archs
liblzma: Disable XL compiler optimizations
liblzma: Disable GNU 3.3 compiler optimizations
KWSys SystemTools: Teach Touch with !create to succeed on missing file
Makefile: Fix multiple custom command outputs with one missing
libarchive: Fix string concatentation in Windows mktemp implementation

==== diffstat ====

- Update source url
- Add gpg signature

==== libavcodec56 ====
Version update (2.6.1 -> 2.6.2)
Subpackages: libavformat56 libavutil54

- Update to new upstream release 2.6.2
* avformat/utils: avoid discarded streams in
av_find_default_stream_index()
* avutil/cpu: add missing check for mmxext to av_force_cpu_flags
* avformat/http: replace cookies with updated values instead of
appending forever

==== freetype2-devel ====
Subpackages: libfreetype6 libfreetype6-32bit

- Build freetype2 against harfbuzz library
* Using the harfbuzz-bootstrap-devel in order to avoid cyclic
dependencies
- Enable the bz2 compression in freetype2
- Remove patch overflow.patch from freetype2.spec where it is not
applied.
- Run spec-cleaner on the spec file.

==== ft2demos ====

- Build freetype2 against harfbuzz library
* Using the harfbuzz-bootstrap-devel in order to avoid cyclic
dependencies
- Run spec-cleaner on the spec file.

==== libstdc++6-gcc5-locale ====
Version update (5.0.0+r221624 -> 5.0.1+r222226)

- Update to gcc-5-branch head (r222226).
* Includes GCC 5.1 RC2.
- Update to gcc-5-branch head (r222139).
- Update to gcc-5-branch head (r222032).
* Matches GCC 5.1 RC1.
- Update to SVN trunk head (r221942).
- Prepare for non-icecream cross-compilers
* Define sysroot to match cross-binutils config
* Prepare for requiring cross-newlib for some targets
* Use all-host target for libc bootstrap, too
* Install target files, but suppress stripping them (breaks them)
* Suppress -icecream-backend subpackage
* Allow building on any architecture
- Update to SVN trunk head (r221888).
- Enable cross compiler builds.
- libsanitizer-tsan-res-state.patch: remove obsolete patch.
- gcc5-libsanitize-aarch64-va42.patch: support aarch64 42-bit address
- space

==== geoclue2 ====
Version update (2.1.10 -> 2.2.0)

- Update to version 2.2.0:
+ Report 'Speed' and 'Heading' on location updates.
+ Try to provide the most accurate location first.
+ Avoid a crash by ensuring requested max accuracy is within
bounds.
+ Fix GPS coordinates parsing.
+ Fix GeoIP on machines without WiFi hardware.
+ Gracefully handle inexistent agent.
+ Stop sources whose accuracy level becomes higher, rather than
lower, than the requested level.
+ Keep old location object alive on D-Bus for a bit longer to
ensure applications are not accessing it still after it is
destroyed.
+ Don't enable the modem. Seems at least GNOME takes care of
modem enabling for us and besides this shouldn't be done by
geoclue anyway (fdo#85040).
+ Wait for modem to be enabled before checking availability of
location capabilities and using them. This is particularly
important for pin-enabled modems.
+ Ignore redundant GPS location updates.
+ Fix some potential crashes.
+ Some improvements to output of where-am-i demo application.

==== gpgme ====
Version update (1.5.3 -> 1.5.4)
Subpackages: libgpgme-devel libgpgme11

- gpgme 1.5.4:
* Fixed a possible crash in the debug code.

==== gstreamer-plugins-bad ====
Subpackages: libgstbadbase-1_0-0 libgstbadvideo-1_0-0
libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstgl-1_0-0
libgstmpegts-1_0-0 libgstphotography-1_0-0 libgsturidownloader-1_0-0

- Change from simple %defines to %bcond_with/without, as this
allows to be set in prjconf without the need to patch the .spec
files.
- Create new subpackage libgstwayland-1_0-0.

==== harfbuzz-devel ====
Subpackages: libharfbuzz-icu0 libharfbuzz0 libharfbuzz0-32bit

- Make harfbuzz-bootstrap-devel conflict with harfbuzz-devel
- Try to completely disable the provides for harfbuzz-bootstrap
- Split a minimal harfbuzz-bootstrap package in order to avoid
possible build cycles between freetype2 and harfbuzz.
- Add harfbuzz-bootstrap-rpmlintrc file to avoid errors on this
bootstrap package (to be used only for freetype2 build)
- Add pre_checkin.sh script to sync the harfbuzz.spec and
harfbuzz-bootstrap.spec as well as the harfbuzz.changes and
harfbuzz-bootstrap.changes automatically.

==== iproute2 ====
Version update (3.19 -> 4.0)

- Update to new upstream release 4.0
* ip: route: add congestion control metric
* vxlan: Group policy extension
* tc: add support for BPF based actions
* iproute2: bridge: support vlan range adds
* ip xfrm: Allow to specify "all" option for monitor
* ipnetns: allow to get and set netns ids
* iplink: add support of IFLA_LINK_NETNSID attribute
* Allow specifying bridge port STP state by name rather than number.
* ip-monitor: allow to monitor ip rules
* bridge link: add support to specify master

==== gsf-office-thumbnailer ====
Version update (1.14.32 -> 1.14.33)
Subpackages: libgsf-1-114 libgsf-devel typelib-1_0-Gsf-1

- Update to version 1.14.33:
+ Ensure floats roundtrip through our xml functions.
+ Improve handling of unknown xml tags.
+ xml parser improvements.
+ xml pretty-printing improvements.

==== libQt5Core5 ====
Subpackages: libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5
libQt5PrintSupport5 libQt5Sql5 libQt5Test5 libQt5Widgets5 libQt5Xml5
libqt5-qtbase-platformtheme-gtk2

- Added patches from upstream:
0001-Speed-up-compose-file-parsing-in-the-X11-composition.patch
0002-Speed-up-application-startup-on-X11.patch and
Fix-regression-in-compose-table-parsing.patch
- Add cleaning of QMAKE_PRL_BUILD_DIR from prl files in
%qmake5_install macro

==== libQtQuick5 ====

- Adjust usage of latest %qmake5_install macro

==== libreoffice ====
Subpackages: libreoffice-base libreoffice-base-drivers-mysql libreoffice-calc
libreoffice-calc-extensions libreoffice-draw libreoffice-filters-optional
libreoffice-gnome libreoffice-icon-theme-galaxy
libreoffice-icon-theme-hicontrast libreoffice-icon-theme-oxygen
libreoffice-icon-theme-sifr libreoffice-icon-theme-tango libreoffice-impress
libreoffice-kde4 libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de
libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-es libreoffice-l10n-fr
libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl
libreoffice-l10n-ru libreoffice-mailmerge libreoffice-math libreoffice-pyuno
libreoffice-writer libreoffice-writer-extensions

- Hopefully fix bnc#913042.Redo check phase that sometimes broke
.jar generating
- Silence more scarry messages by bnc#900186
* Fixes autocorr symlinking
* Cleans UNO cache in more pretty way
- Clean up the uno cache removal to not display scarry message
bnc#900186
- Remove patch to look for help in /usr/share, we symlink it back to
lib, so there is no actual need to search for it directly, migth
fix bnc#915996:
* officecfg-help-in-usr-share.diff

==== libvirt ====
Subpackages: libvirt-client libvirt-daemon libvirt-daemon-config-network
libvirt-daemon-config-nwfilter libvirt-daemon-driver-interface
libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc
libvirt-daemon-driver-network libvirt-daemon-driver-nodedev
libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu
libvirt-daemon-driver-secret libvirt-daemon-driver-storage
libvirt-daemon-driver-uml libvirt-daemon-driver-vbox libvirt-daemon-qemu
libvirt-daemon-xen

- boo#926765: add libvirt-daemon-driver-qemu dependency on
libvirt-daemon-driver-storage.

==== man-pages ====
Version update (3.82 -> 3.83)

- update to 3.83:
- new and rewritten pages
* posix_madvise.3
* ftw.3
- newly documented interfaces in existing pages
* getdents.2
Document getdents64()
* mount.2
Document MS_LAZYTIME
* proc.5
Document /proc/sys/kernel/randomize_va_space
Document /proc/PID/fdinfo epoll format
Describe /proc/PID/fdinfo eventfd format
Document /proc/PID/fdinfo signalfd format

==== meld ====
Version update (3.13.0 -> 3.13.1)
Subpackages: meld-lang

- Update to version 3.13.1:
+ Features:
- more consistent comparison output when line endings differ:
. Folder comparisons will now show an identical notification
similar to the one used in file comparison.
. The "New blank comparion" button now works for folder
comparisons as well as file ones.
. In folder comparisons, the expansion state of the tree is
now remembered when you collapse and re-expand a row.
+ Fixes:
- Better support icons in RTL locales.
- Fixes for file encoding when saving with bad or missing
encodings.
- More consistent dialog handling and appearance.
- Deprecation updates and compatibility fixes.
- Fix bad comparison offset when multiple line breaks occurred
on a single line.
- Unicode fixes for file change notifications.
- Warnings (such as deprecation warnings) are now explicitly
silenced in stable Meld.
- Folder actions are now disabled while Meld is still scanning
folders.
- Fix some command line handling for ambiguous relative paths
and invalid URIs.
- Fix updating the comparison map when a file is updated within
Meld.
- Rebase meld-nodocs.patch.

==== ntp ====
Version update (4.2.6p5 -> 4.2.8p2)
Subpackages: ntp-doc

- update to 4.2.8p2
* fixes CVE-2015-1798, CVE-2015-1799 (medium-severity
vulnerabilities involving private key authentication)
* bug fixes and enhancements
* New script: update-leap

==== perl-CDDB_get ====
Version update (2.27 -> 2.28)

- updated to 2.28
see /usr/share/doc/packages/perl-CDDB_get/Changes
2.28 06.03.2012
make tests work with perl 5.15.x

==== perl-DBI ====
Version update (1.628 -> 1.633)

- updated to 1.633
see /usr/share/doc/packages/perl-DBI/Changes
=head2 Changes in DBI 1.633 - 11th Jan 2015
Fixed selectrow_*ref to return undef on error in list context
instead if an empty list.
Changed t/42prof_data.t more informative
Changed $sth->{TYPE} to be NUMERIC in DBD::File drivers as per the
DBI docs. Note TYPE_NAME is now also available. [H.Merijn Brand]
Fixed compilation error on bleadperl due DEFSV no longer being an lvalue
[Dagfinn Ilmari Mannsåker]
Added docs for escaping placeholders using a backslash.
Added docs for get_info(9000) indicating ability to escape placeholders.
Added multi_ prefix for DBD::Multi (Dan Wright) and ad2_ prefix for
DBD::AnyData2
=head2 Changes in DBI 1.632 - 9th Nov 2014
Fixed risk of memory corruption with many arguments to methods
originally reported by OSCHWALD for Callbacks but may apply
to other functionality in DBI method dispatch RT#86744.
Fixed DBD::PurePerl to not set $sth->{Active} true by default
drivers are expected to set it true as needed.
Fixed DBI::DBD::SqlEngine to complain loudly when prerequite
driver_prefix is not fulfilled (RT#93204) [Jens Rehsack]
Fixed redundant sprintf argument warning RT#97062 [Reini Urban]
Fixed security issue where DBD::File drivers would open files
from folders other than specifically passed using the
f_dir attribute RT#99508 [H.Merijn Brand]
Changed delete $h->{$key} to work for keys with 'private_' prefix
per request in RT#83156. local $h->{$key} works as before.
Added security notice to DBD::Proxy and DBI::ProxyServer because they
use Storable which is insecure. Thanks to ppisar@xxxxxxxxxx RT#90475
Added note to AutoInactiveDestroy docs strongly recommending that it
is enabled in all new code.
=head2 Changes in DBI 1.631 - 20th Jan 2014
NOTE: This release changes the handle passed to Callbacks from being an
'inner'
handle to being an 'outer' handle. If you have code that makes use of
Callbacks,
ensure that you understand what this change means and review your callback
code.
Fixed err_hash handling of integer err RT#92172 [Dagfinn Ilmari]
Fixed use of \Q vs  in t/70callbacks.t
Changed the handle passed to Callbacks from being an 'inner'
handle to being an 'outer' handle.
Improved reliability of concurrent testing
PR#8 [Peter Rabbitson]
Changed optional dependencies to "suggest"
PR#9 [Karen Etheridge]
Changed to avoid mg_get in neatsvpv during global destruction
PR#10 [Matt Phillips]
=head2 Changes in DBI 1.630 - 28th Oct 2013
NOTE: This release enables PrintWarn by default regardless of $^W.
Your applications may generate more log messages than before.
Fixed err for new drh to be undef not to 0 [Martin J. Evans]
Fixed RT#83132 - moved DBIstcf* constants to util
export tag [Martin J. Evans]
PrintWarn is now triggered by warnings recorded in methods like STORE
that don't clear err RT#89015 [Tim Bunce]
Changed tracing to no longer show quote and quote_identifier calls
at trace level 1.
Changed DBD::Gofer ping while disconnected set_err from warn to info.
Clarified wording of log message when err is cleared.
Changed bootstrap to use $XS_VERSION RT#89618 [Andreas Koenig]
Added connect_cached.connected Callback PR#3 [David E. Wheeler]
Clarified effect of refs in connect_cached attributes [David E. Wheeler]
Extended ReadOnly attribute docs for when the driver cannot
ensure read only [Martin J. Evans]
Corrected SQL_BIGINT docs to say ODBC value is used PR#5 [ilmari]
There was no DBI 1.629 release.

==== perl-Encode-Locale ====
Version update (1.03 -> 1.04)

- updated to 1.04
see /usr/share/doc/packages/perl-Encode-Locale/Changes
[#]# 2015-01-12 Release 1.04
Ed J (5):
* Actually include all the tests in the MANIFEST
* use Test::More and warnings
* Tidy t/alias.t
* t/arg.t TODO some actual ARGV testing
* Use Win32::GetConsoleCP/GetConsoleOutputCP if available
Gisle Aas (3):
* Documentation spell fix
* SEE ALSO Term::Encoding [RT#98138]
David Steinbrunner (1):
* typo fix

==== perl-File-ShareDir ====
Version update (1.03 -> 1.102)

- updated to 1.102
see /usr/share/doc/packages/perl-File-ShareDir/Changes

==== perl-File-Which ====
Version update (1.09 -> 1.16)

- updated to 1.16
see /usr/share/doc/packages/perl-File-Which/Changes
1.16 Sun 29 Mar 2015
- Remove use Test::Script from tests that escaped when this requirement
became optional.
1.15 Sun 29 Mar 2015
- Fixed small but important POD error
1.14 Sun 29 Mar 2015
- App::pwhich is no longer bundled with File::Which and included
in its own distribution.
- pwhich that comes with this distribution is deprecated, and will
report a warning if you try to use it, you should insted install
App::pwhich.
- pwhich that comes with this distribution will not be installed if
App::pwhich 1.14 or better is already installed.
- pwhich will be removed from this distribution, but not before
30 April 2015.
- Make Test::Script an optional dependency
1.12 Thu 26 Mar 2015
- Fixed bug in pwhich introduced in version 1.10 where only the
first file was searched for
1.11 Thu 26 Mar 2015
- Support for relative and fully qualified paths in Unix (gh#2)
1.10 Thu 26 Mar 2015
- Test::Script is now a test instead of runtime requirement
It will be entirely removed as a prerequisite in a subsequent
release
- Will now find .exe and .com files (as it should) on cygwin (rt83146)
- Declared required Perl version is now 5.005003
- Updated repository and maintainer information. Source for this
dist now lives on GitHub
- New module App::pwhich contains the guts of pwhich. It will be moved
into a separate dist in the near future. pwhich will be deprecated
and removed from this dist in the near future.

==== perl-IO-HTML ====
Version update (1.00 -> 1.001)

- updated to 1.001
see /usr/share/doc/packages/perl-IO-HTML/Changes

==== perl-IO-Socket-SSL ====
Version update (1.997 -> 2.012)

- add DHE-RSA to the default client cipher list to support PFS with
older machines (bnc#924976)
* added perl-IO-Socket-SSL_add_DHE-RSA_to_default_client_cipher_list.patch
- add cpanspec.yml to support automatic version updates
(see http://lists.opensuse.org/opensuse-packaging/2015-04/msg00084.html)
- updated to 2.012
see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes
2.012 2014/02/02
- fix t/ocsp.t in case no HTTP::Tiny is installed
2.011 2014/02/01
- fix t/ocsp.t - don't count on revoked.grc.com using OCSP stapling #101855
- added option 'purpose' to Utils::CERT_create to get better control of the
certificates purpose. Default is 'server,client' for non-CA (contrary to
only 'server' before)
- removed RC4 from default cipher suites on the server site
https://github.com/noxxi/p5-io-socket-ssl/issues/22
- refactoring of some tests using Test::More thanks to Sweet-kid and the
2015 Pull Request Challenge
2.010 2014/01/14
- new options SSL_client_ca_file and SSL_client_ca to let the server send
the list of acceptable CAs for the client certificate.
- t/protocol_version.t - fix in case SSLv3 is not supported in Net::SSLeay.
RT#101485, thanks to TEAM.
2.009 2014/01/12
- remove util/analyze.pl. This tool is now together with other SSL tools in
https://github.com/noxxi/p5-ssl-tools
- added ALPN support (needs OpenSSL1.02, Net::SSLeay 1.56+) thanks to TEAM,
RT#101452
2.008 2014/12/16
- work around recent OCSP verification errors for revoked.grc.com (badly
signed
OCSP response, Firefox also complains about it) in test t/external/ocsp.t.
- util/analyze.pl - report more details about preferred cipher for specific
TLS
versions
2.007 2014/11/26
- make getline/readline fall back to super class if class is not sslified yet,
i.e. behave the same as sysread, syswrite etc.
This fixes RT#100529
2.006 2014/11/22
- Make (hopefully) non-blocking work on windows by using EWOULDBLOCK instead
of
EAGAIN. While this is the same on UNIX it is different on Windows and socket
operations return there (WSA)EWOULDBLOCK and not EAGAIN. Enable non-blocking
tests on Windows too.
- make PublicSuffix::_default_data thread safe
- update PublicSuffix with latest list from publicsuffix.org
2.005 2014/11/15
- next try to fix t/protocol_version.t for OpenSSL w/o SSLv3 support
2.004 2014/11/15
- only test fix: fix t/protocol_version.t to deal with OpenSSL installations
which are compiled without SSLv3 support.
2.003 2014/11/14
- make SSLv3 available even if the SSL library disables it by default in
SSL_CTX_new (like done in LibreSSL). Default will stay to disable SSLv3,
so this will be only done when setting SSL_version explicitly.
- fix possible segmentation fault when trying to use an invalid certificate,
reported by Nick Andrew.
- Use only the ICANN part of the default public suffix list and not the
private domains. This makes existing exceptions for s3.amazonaws.com and
googleapis.com obsolete. Thanks to Gervase Markham from mozilla.org.
2.002 2014/10/21
- fix check for (invalid) IPv4 when validating hostname against certificate.
Do
not use inet_aton any longer because it can cause DNS lookups for malformed
IP. RT#99448, thanks to justincase[AT]yopmail[DOT]com.
- Update PublicSuffix with latest version from publicsuffix.org - lots of new
top level domains.
- Add exception to PublicSuffix for s3.amazonaws.com - RT#99702, thanks to
cpan[AT]cpanel[DOT]net.
2.001 2014/10/21
- Add SSL_OP_SINGLE_(DH|ECDH)_USE to default options to increase PFS security.
Thanks to Heikki Vatiainen for suggesting.
- Update external tests with currently expected fingerprints of hosts.
- Some fixes to make it still work on 5.8.1.
2.000 2014/10/15
- consider SSL3.0 as broken because of POODLE and disable it by default.
- Skip live tests without asking if environment NO_NETWORK_TESTING is set.
Thanks to ntyni[AT]debian[DOT]org for suggestion.
- skip tests which require fork on non-default windows setups without proper
fork. Thanks to SHAY for https://github.com/noxxi/p5-io-socket-ssl/pull/18
1.999 2014/10/09
- make sure we don't use version 0.30 of IO::Socket::IP
- make sure that PeerHost is checked on all places where PeerAddr is
checked, because these are synonyms and IO::Socket::IP prefers PeerHost
while others prefer PeerAddr. Also accept PeerService additionally to
PeerPort.
See https://github.com/noxxi/p5-io-socket-ssl/issues/16 for details.
- add ability to use client certificates and to overwrite hostname with
util/analyze-ssl.pl.
1.998 2014/09/07
- make client authentication work at the server side when SNI is in by use
having CA path and other settings in all SSL contexts instead of only the
main
one. Based on code from lundstrom[DOT]jerry[AT]gmail[DOT]com,
https://github.com/noxxi/p5-io-socket-ssl/pull/15

==== perl-Net-DNS ====
Version update (0.81 -> 0.83)

- updated to 0.83
see /usr/share/doc/packages/perl-Net-DNS/Changes

==== apache2-mod_php5 ====
Subpackages: php5 php5-bcmath php5-bz2 php5-calendar php5-ctype php5-curl
php5-dba php5-devel php5-dom php5-exif php5-fastcgi php5-ftp php5-gd
php5-gettext php5-gmp php5-iconv php5-imap php5-json php5-ldap php5-mbstring
php5-mcrypt php5-mysql php5-odbc php5-openssl php5-pdo php5-pear php5-pgsql
php5-shmop php5-snmp php5-sockets php5-sqlite php5-suhosin php5-sysvsem
php5-sysvshm php5-tidy php5-tokenizer php5-wddx php5-xmlreader php5-xmlwriter
php5-xsl php5-zip php5-zlib

- configure php-fpm with --localstatedir=/var [bnc#927147]

==== polkit-default-privs ====

- polkit-default-privs: rename of powerdevil action-names (bnc#927275)

==== python-Pillow ====

- Add fix-textsize-equal.patch. Fixes testsuite on SLE11SP3

==== python-pytz ====
Version update (2014.10 -> 2015.2)

- update to version 2015.2:
* update to Olson/IANA database version 2015b

==== python-six ====

- don't build/package documentation here: it breaks due to cyclic
requirements between six and Sphinx, move doc in its own package

==== python3-setuptools ====
Version update (15.0 -> 15.1)

- update to version 15.1:
* Updated Packaging to 15.1 to address Packaging #28.
* Fix "setuptools.sandbox._execfile()" with Python 3.1.

==== rsyslog ====

- Adjusted apparmor profile to prevent aa-genprof failures
(bnc#925512)

==== libdcerpc-binding0 ====
Version update (4.2.0 -> 4.2.1)
Subpackages: libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libgensec0
libgensec0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0
libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit
libnetapi0 libnetapi0-32bit libregistry0 libsamba-credentials0
libsamba-credentials0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit
libsamba-passdb0 libsamba-passdb0-32bit libsamba-util0 libsamba-util0-32bit
libsamdb0 libsamdb0-32bit libsmbclient-devel libsmbclient-raw0
libsmbclient-raw0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap0
libsmbldap0-32bit libtevent-util0 libtevent-util0-32bit libwbclient0
libwbclient0-32bit samba samba-32bit samba-client samba-client-32bit samba-doc
samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit

- Update to 4.2.1.
+ s3:winbind:grent: Don't stop group enumeration when a group has no gid;
(bso#8905).
+ Initialize dwFlags field of DNS_RPC_NODE structure; (bso#9791).
+ s3: lib: ntlmssp: If NTLMSSP_NEGOTIATE_TARGET_INFO isn't set, cope with
servers that don't send the 2 unused fields; (bso#10016).
+ build:wafadmin: Fix use of spaces instead of tabs; (bso#10476).
+ waf: Fix the build on openbsd; (bso#10476).
+ s3: client: "client use spnego principal = yes" code checks wrong name;
(bso#10888).
+ spoolss: Retrieve published printer GUID if not in registry; (bso#11018).
+ s3: lib: libsmbclient: If reusing a server struct, check every cli->timout
miliseconds if it's still valid before use; (bso#11079).
+ vfs_fruit: Enhance handling of malformed AppleDouble files; (bso#11125).
+ backupkey: Explicitly link to gnutls and gcrypt; (bso#11135).
+ replace: Remove superfluous check for gcrypt header; (bso#11135).
+ Backport subunit changes; (bso#11137).
+ libcli/auth: Match Declaration of netlogon_creds_cli_context_tmp with
implementation; (bso#11140).
+ s3-winbind: Fix cached user group lookup of trusted domains; (bso#11143).
+ talloc: Version 2.1.2; (bso#11144).
+ Update libwbclient version to 0.12; (bso#11149).
+ brlock: Use 0 instead of empty initializer list; (bso#11153).
+ s4:auth/gensec_gssapi: Let gensec_gssapi_update() return
NT_STATUS_LOGON_FAILURE for unknown errors; (bso#11164).
+ docs/idmap_rid: Remove deprecated base_rid from example; (bso#11169);
(bnc#913304).
+ s3: libcli: smb1: Ensure we correctly finish a tevent req if the writev
fails in the SMB1 case; (bso#11173).
+ backupkey: Use ndr_pull_struct_blob_all(); (bso#11174).
+ Fix lots of winbindd zombie processes on Solaris platform; (bso#11175).
+ s3: libsmbclient: Add missing talloc stackframe; (bso#11177).
+ s4-process_model: Do not close random fds while forking; (bso#11180).
+ s3-passdb: Fix 'force user' with winbind default domain; (bso#11185).
- Prevent samba package updates from disabling samba kerberos printing.
- Add sparse file support for samba; (fate#318424).
- Purge printer name cache on spoolss SetPrinter change; (bso#11210);
(bnc#901813).

==== simple-scan ====
Version update (3.16.0.1 -> 3.16.1.1)

- Update to version 3.16.1.1:
+ Fix logic for adding blank page on page removal.
- Changes from version 3.16.1:
+ Fix save button being inactive on pages restored after a crash.

==== libspeechd-devel ====
Version update (0.8.1 -> 0.8.2)
Subpackages: libspeechd2 python3-speechd speech-dispatcher
speech-dispatcher-configure speech-dispatcher-module-espeak

- cleanup spec file with spec-cleaner
- update to version 0.8.2:
* Add convenience methods to the libspeech API to free module
list and voice data structures.
* Add method to the libspeechd API to get the current output
module, and update the documentation accordingly.
* The API is now licensed under the GNU Lesser General Public
License v2.1 or later.
* The spdconf configuration utility is now translatable.
* Fixed a bug where speech-dispatcher would fail to start if the
user configuration directory existed but did not contain a
config file.
* Install the spdconf desktop file.
- add rcspeech-dispatcherd symlink for service

==== libtalloc2 ====
Version update (2.1.1 -> 2.1.2)
Subpackages: libtalloc2-32bit pytalloc pytalloc-32bit

- Update to 2.1.2.
+ fix _talloc_total_limit_size prototype
+ build: improve detection of srcdir

==== tcpdump ====

- fix a DoS vulnerability in print-wb.c
CVE-2015-3138 [boo#927637] adding CVE-2015-3138.patch

==== libthunarx-2-0 ====
Version update (1.6.6 -> 1.6.7)
Subpackages: thunar thunar-lang

- update to version 1.6.7
- Improve drag & drop and selecting in the details view
(bxo#11605)
- Let row changes accumulate a bit before restoring selection
- Implement reloading file information on manual reload
- Extend reload functions to allow a full reload
- Check in thunar-marshal with new
_thunar_marshal_BOOLEAN__BOOLEAN
- Reload files changed by jobs in an idle loop (bxo#11008)
- Refactor code for moving thumbnail cache file on renames/moves
- Rework thunar_file_monitor to properly register moved files
- Add function to reload parent file of a file
- Fix updating file info for moved files (bxo#11008)
- Revert "Refresh file info after getting it from cache
(bxo#11008)"
- Fix comments
- Update the location bar after reload (bxo#10518)
- Fix updating custom actions (bxo#11749)
- Update rows on changes of case-sensitive and folders-first
settings
- Fix typos and grammar mistakes in a few comments
- Make new windows inherit the history of the origin view
(bxo#5538)
- Make new tabs inherit the history of the origin view (bxo#5538)
- Keep the history across view changes (bxo#10171)
- Implement functions for copying the history of a view
- Rename tsv_restore_selection to tsv_select_after_row_deleted
- Redraw the details view on row changes
- Restore selection on row changes too (bxo#9886)
- Improve mouse wheel zoom behaviour
- Remember and restore file selection on view changes
- Restore file selection when changing sort order (bxo#9886)
- Update model with changed binary file size setting immediately
- Fix typo busy_pulse in thunar-shortcuts-model.c
- Fix typo in thunar-clipboard-manager
- Fix Gdk-CRITICAL error
- Clean up more files with make clean
- Rework usage of binary file size properties (bxo#11450)
- Remove duplicate break statement in thunar-standard-view
- Fix compiler warning about shadowing 'basename' (bxo#11633)
- thunar/thunar-dbus-service-infos.xml corrections
- Fix startup id handling for launch requests over D-Bus
(bxo#9646)
- Fallback to non-cached version of source file (bxo#9142)
- Translation updates

==== transfig ====

- transfig-fix-afl.patch: fixed crashes due to uninitialized memory,
found by afl.

==== usb_modeswitch ====
Version update (2.2.0 -> 2.2.1)
Subpackages: usb_modeswitch-data

- Update to version 2.2.1
* Fixed unreliable switching function for Cisco AM10
- Update the data package to version 20150115
- Update device_reference.txt

==== virtualbox ====
Subpackages: virtualbox-guest-kmp-default virtualbox-guest-kmp-desktop
virtualbox-guest-tools virtualbox-guest-x11 virtualbox-host-kmp-default
virtualbox-host-kmp-desktop virtualbox-qt

- Allow access to vboxdrv to vboxusers group members bnc#927525

==== vsftpd ====

- Fix hide_file option wrt bnc#927612:
* vsftpd-path-normalize.patch

==== wpa_supplicant ====
Version update (2.3 -> 2.4)
Subpackages: wpa_supplicant-gui

- Delete wpa_priv and eapol_test man pages, these are disabled in config
- Move wpa_gui man page to gui package
- Update to 2.4
* allow OpenSSL cipher configuration to be set for internal EAP server
(openssl_ciphers parameter)
* fixed number of small issues based on hwsim test case failures and
static analyzer reports
* P2P:
- add new=<0/1> flag to P2P-DEVICE-FOUND events
- add passive channels in invitation response from P2P Client
- enable nl80211 P2P_DEVICE support by default
- fix regresssion in disallow_freq preventing search on social
channels
- fix regressions in P2P SD query processing
- try to re-invite with social operating channel if no common channels
in invitation
- allow cross connection on parent interface (this fixes number of
use cases with nl80211)
- add support for P2P services (P2PS)
- add p2p_go_ctwindow configuration parameter to allow GO CTWindow to
be configured
* increase postponing of EAPOL-Start by one second with AP/GO that
supports WPS 2.0 (this makes it less likely to trigger extra roundtrip
of identity frames)
* add support for PMKSA caching with SAE
* add support for control mesh BSS (IEEE 802.11s) operations
* fixed number of issues with D-Bus P2P commands
* fixed regression in ap_scan=2 special case for WPS
* fixed macsec_validate configuration
* add a workaround for incorrectly behaving APs that try to use
EAPOL-Key descriptor version 3 when the station supports PMF even if
PMF is not enabled on the AP
* allow TLS v1.1 and v1.2 to be negotiated by default; previous behavior
of disabling these can be configured to work around issues with broken
servers with phase1="tls_disable_tlsv1_1=1 tls_disable_tlsv1_2=1"
* add support for Suite B (128-bit and 192-bit level) key management and
cipher suites
* add WMM-AC support (WMM_AC_ADDTS/WMM_AC_DELTS)
* improved BSS Transition Management processing
* add support for neighbor report
* add support for link measurement
* fixed expiration of BSS entry with all-zeros BSSID
* add optional LAST_ID=x argument to LIST_NETWORK to allow all
configured networks to be listed even with huge number of network
profiles
* add support for EAP Re-Authentication Protocol (ERP)
* fixed EAP-IKEv2 fragmentation reassembly
* improved PKCS#11 configuration for OpenSSL
* set stdout to be line-buffered
* add TDLS channel switch configuration
* add support for MAC address randomization in scans with nl80211
* enable HT for IBSS if supported by the driver
* add BSSID black and white lists (bssid_blacklist, bssid_whitelist)
* add support for domain_suffix_match with GnuTLS
* add OCSP stapling client support with GnuTLS
* include peer certificate in EAP events even without a separate probe
operation; old behavior can be restored with cert_in_cb=0
* add peer ceritficate alt subject name to EAP events
(CTRL-EVENT-EAP-PEER-ALT)
* add domain_match network profile parameter (similar to
domain_suffix_match, but full match is required)
* enable AP/GO mode HT Tx STBC automatically based on driver support
* add ANQP-QUERY-DONE event to provide information on ANQP parsing
status
* allow passive scanning to be forced with passive_scan=1
* add a workaround for Linux packet socket behavior when interface is in
bridge
* increase 5 GHz band preference in BSS selection (estimate SNR, if info
not available from driver; estimate maximum throughput based on common
HT/VHT/specific TX rate support)
* add INTERWORKING_ADD_NETWORK ctrl_iface command; this can be used to
implement Interworking network selection behavior in upper layers
software components
* add optional reassoc_same_bss_optim=1 (disabled by default)
optimization to avoid unnecessary Authentication frame exchange
* extend TDLS frame padding workaround to cover all packets
* allow wpa_supplicant to recover nl80211 functionality if the cfg80211
module gets removed and reloaded without restarting wpa_supplicant
* allow hostapd DFS implementation to be used in wpa_supplicant AP mode

==== xterm ====
Version update (317 -> 318)
Subpackages: xterm-bin

- Update to version 318
* rename new(er) configure option --enable-initial-erase to
- -enable-pty-erase, since that conflicted with an existing
option (report by Jens Schweikhardt).
* fix cut/paste error in --with-builtin-xpms configure option
(reports by Jens Schweikhardt, Ross Combs).
* fix minor formatting issue in xterm manual (report by Jens
Schweikhardt).
* eliminate unnecessary "#(vi" markers in autoconf macros by
using "(" to begin case-statement cases (suggested by Jens
Schweikhardt).
* minor fixes to improve const usage (Ross Combs).
- Add pkgconfig and groff as dependency as configure is looking
for them

==== yast2-bootloader ====
Version update (3.1.126 -> 3.1.127)

- While calling AutoYaST clone_system libStorage has to be set
to "normal" mode in order to read mountpoints correctly.
- 3.1.127

==== yast2-installation ====
Version update (3.1.138 -> 3.1.140)

- Fixed differnt bugs in proposal overview with multiple tabs.
- Checking if plymouth is available while starting second
installation stage for AutoYaST.
- 3.1.140
- Always enable systemd startup services for Second Stage and
Firstboot (bsc#924278)
- 3.1.139




Removed packages:
libQt5Sql5-unixODBC
perl-IPC-Run3
perl-PlRPC
perl-Probe-Perl
perl-Test-Script


Added packages:
libgstwayland-1_0-0
libQt5Sql5-postgresql
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups