Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20160305 Packages changed: binutils (2.25.0 -> 2.26) biosdevname (0.7.1 -> 0.7.2) cmis-client (0.5.0 -> 0.5.1) digikam elfutils frei0r-plugins ibus intel-gpu-tools (1.13 -> 1.14) java-1_8_0-openjdk libkface opencv (2.4.11 -> 3.1.0) openssl (1.0.2e -> 1.0.2g) python-cryptography systemd-rpm-macros unbound (1.5.7 -> 1.5.8) xf86-input-vmmouse === Details === ==== binutils ==== Version update (2.25.0 -> 2.26) Subpackages: binutils-devel - Add binutils-2.26-branch.diff, updates to branch head. * Adds -mrelax-relocations on x86 * Fixes bso#19698 - Refresh cross-avr-nesc-as.patch - Update to binutils 2.26 * Add --fix-stm32l4xx-629360 to the ARM linker to enable a link-time workaround for a bug in the bus matrix / memory controller for some of the STM32 Cortex-M4 based products (STM32L4xx) * Add a configure option --enable-compressed-debug-sections={all,ld} to decide whether DWARF debug sections should be compressed by default. * Add support for the ARC EM/HS, and ARC600/700 architectures. * Experimental support for linker garbage collection (--gc-sections) has been enabled for COFF and PE based targets. * New command line option for ELF targets to compress DWARF debug sections, --compress-debug-sections=[none|zlib|zlib-gnu|zlib-gabi]. * New command line option, --orphan-handling=[place|warn|error|discard], to adjust how orphan sections are handled. The default is 'place' which gives the current behaviour, 'warn' and 'error' issue a warning or error respectively when orphan sections are found, and 'discard' will discard all orphan sections. * Add support for LLVM plugin. * Add --print-memory-usage option to report memory blocks usage. * Add --require-defined option, it's like --undefined except the new symbol must be defined by the end of the link. * Add a configure option --enable-compressed-debug-sections={all,gas} to decide whether DWARF debug sections should be compressed by default. * Add support for the ARC EM/HS, and ARC600/700 architectures. Remove assembler support for Argonaut RISC architectures. * Add option to objcopy to insert new symbols into a file: - -add-symbol <name>=[<section>:]<value>[,<flags>] * Add support for the ARC EM/HS, and ARC600/700 architectures. * Extend objcopy --compress-debug-sections option to support - -compress-debug-sections=[none|zlib|zlib-gnu|zlib-gabi] for ELF targets. * Add --update-section option to objcopy. * Add --output-separator option to strings. - Includes z13 support, remove 0001-S-390-Add-support-for-IBM-z13.patch, 0002-S-390-Add-check-for-length-field-operand.patch, 0003-S-390-Add-more-IBM-z13-instructions.patch, 0004-S-390-Fixes-for-z13-instructions.patch and 0005-S-390-z13-use-GNU-attribute-to-indicate-vector-ABI.patch - Includes fixes in binutils-fix--dynamic-list.patch, binutils-fix-gold-aarch64.diff, gold-arm64-abi-pagesize.patch and s390-troo-insn-type.patch - Refresh s390-pic-dso.diff and binutils-build-as-needed.diff ==== biosdevname ==== Version update (0.7.1 -> 0.7.2) - Update to latest 0.7.2 version (fate#319998) ==== cmis-client ==== Version update (0.5.0 -> 0.5.1) - Version update to 0.5.1: * Few small bugfixes, see NEWS file for details - Remove upstreamed patches * 0001-fix-boost-configuration-with-gcc-5.patch * 0002-avoid-use-after-delete.patch * 0005-Remove-invalid-comments-from-test-JSON-file.patch ==== digikam ==== Subpackages: digikam-lang digikam-libs digikam-plugin-color digikam-plugin-decorate digikam-plugin-enhance digikam-plugin-fxfilters digikam-plugin-transform kipi-plugins kipi-plugins-acquireimage kipi-plugins-geolocation kipi-plugins-lang - Add fix_opencv3.patch in order to build the internal libkface with openCV 3.x ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 libelf1-32bit - rename dt-ppc-opt.patch as elfutils-0.164-dt-ppc-opt.patch and add reference to upstream commit id - dt-ppc-opt.patch: add support for DT_PPC_OPT ==== frei0r-plugins ==== - Fix frei0r-plugins-openCV-3.0-compatibility.patch - Update Url to http://frei0r.dyne.org/, show that we are using the fork and not the original frei0r. - Add frei0r-plugins-openCV-3.0-compatibility.patch: fix the compilation against OpenCV 3. This patch is based on the two upstream commits 129eea and 7ed3f84e6. ==== ibus ==== Subpackages: ibus-branding-openSUSE-KDE ibus-gtk ibus-gtk-32bit ibus-gtk3 libibus-1_0-5 libibus-1_0-5-32bit python-ibus typelib-1_0-IBus-1_0 - Add ibus-adapt-new-vala.patch: Fix ibus compile error under new vala compiler, for SLE Desktop 12 SP2. This patch is only for SLED. - Add conflict to fcitx to fulfill FATE#319095 deprecate fcitx chinese input method in favor of ibus (dummy bsc#933411). This modification is only for SLED. - Add support for translation-update-upstream (dummy bsc#933411). - Add setup-switch-im.patch. Switch to ibus when ibus not running.(bnc#899259). This patch is only for SLED. - Add hide-setup-menu.patch Make ibus-setup launch from indicator field.(bnc#899259) Remove ibus-setup.desktop from main menu. This patch is only for SLED. ==== intel-gpu-tools ==== Version update (1.13 -> 1.14) - Update to version 1.14 * New test: gem_create validate parameters for GEM_CREATE ioctl (Ankitprasad Sharma) * New test: gem_softpin exercise the userptr ioctl to create shared buffers between CPU and GPU (Vinay Belgaumkar) * New tests: prime_mmap_coherency/kms_mmap_write_crc cache coherency tests (Tiago Vignatti) * New test: prime_mmap mmap() on dma-buf fds (Rob Bradford) * New test: gem_exec_reloc sanity check of execbuf-ioctl relocations (Chris Wilson) * New test: gem_exec_basic sanity check of execbuf-ioctl rings (Chris Wilson) * improved igt_hang_ring() infrastructure for generic hang injection support in the core library (Chris Wilson) * new igt_pm library to collect power management testing helpers (David Weinehall) * lig/igt_vc4: VC4 support library (Eric Anholt) * kms_frontbuffer_tracking: included in BAT (Paulo Zanoni) * kms_psr_sink_crc: Add BAT test for PSR active (Rodrigo Vivi) * gem_wait: test superseded by gem_latency in benchmarks (Chris Wilson) * igt_core: Fix logging to display extended line (Derek Morton) * igt_core: Expand --run-subtest functionality (Derek Morton) * kms_force_connector_basic: various fixes and included in BAT set (Daniel Vetter) * Many other improvements and bug fixes. ==== java-1_8_0-openjdk ==== Subpackages: java-1_8_0-openjdk-devel java-1_8_0-openjdk-headless - Added patch: * ppc64le-8036767.patch + Change archinstall for ppc64le from ppc64 to ppc64le directory. ==== libkface ==== Subpackages: libKF5KFace10_0_0 libkface-devel - Enable building against openCV 3.x * opencv-3.1-support.patch Added from KDE Reviewboard - Drop fix-opencv.diff as this is no longer required with the newer opencv ==== opencv ==== Version update (2.4.11 -> 3.1.0) Subpackages: opencv-devel - Added opencv_contrib_face-3.1.0.tar.bz2 * This tarball is created to take only the face module from the contrib package. The Face module is required by libkface, which in its turn is required by digikam. - Added _constraints file to avoid random failures on small workers (at least for builds on PMBS) - Update to OpenCV 3.1.0 - A lot of new functionality has been introduced during Google Summer of Code 2015: + ?Omnidirectional Cameras Calibration and Stereo 3D Reconstruction? ? opencv_contrib/ccalib module (Baisheng Lai, Bo Li) + ?Structure From Motion? ? opencv_contrib/sfm module (Edgar Riba, Vincent Rabaud) + ?Improved Deformable Part-based Models? ? opencv_contrib/dpm module (Jiaolong Xu, Bence Magyar) + ?Real-time Multi-object Tracking using Kernelized Correlation Filter? ? opencv_contrib/tracking module (Laksono Kurnianggoro, Fernando J. Iglesias Garcia) + ?Improved and expanded Scene Text Detection? ? opencv_contrib/text module (Lluis Gomez, Vadim Pisarevsky) + ?Stereo correspondence improvements? ? opencv_contrib/stereo module (Mircea Paul Muresan, Sergei Nosov) + ?Structured-Light System Calibration? ? opencv_contrib/structured_light (Roberta Ravanelli, Delia Passalacqua, Stefano Fabri, Claudia Rapuano) + ?Chessboard+ArUco for camera calibration? ? opencv_contrib/aruco (Sergio Garrido, Prasanna, Gary Bradski) + ?Implementation of universal interface for deep neural network frameworks? ? opencv_contrib/dnn module (Vitaliy Lyudvichenko, Anatoly Baksheev) + ?Recent advances in edge-aware filtering, improved SGBM stereo algorithm? ? opencv/calib3d and opencv_contrib/ximgproc (Alexander Bokov, Maksim Shabunin) + ?Improved ICF detector, waldboost implementation? ? opencv_contrib/xobjdetect (Vlad Shakhuro, Alexander Bovyrin) + ?Multi-target TLD tracking? ? opencv_contrib/tracking module (Vladimir Tyan, Antonella Cascitelli) + ?3D pose estimation using CNNs? ? opencv_contrib/cnn_3dobj (Yida Wang, Manuele Tamburrano, Stefano Fabri) - Many great contributions made by the community, such as: + Support for HDF5 format + New/Improved optical flow algorithms + Multiple new image processing algorithms for filtering, segmentation and feature detection + Superpixel segmentation and much more - IPPICV is now based on IPP 9.0.1, which should make OpenCV even faster on modern Intel chips - opencv_contrib modules can now be included into the opencv2.framework for iOS - Newest operating systems are supported: Windows 10 and OSX 10.11 (Visual Studio 2015 and XCode 7.1.1) - Interoperability between T-API and OpenCL, OpenGL, DirectX and Video Acceleration API on Linux, as well as Android 5 camera. - HAL (Hardware Acceleration Layer) module functionality has been moved into corresponding basic modules; the HAL replacement mechanism has been implemented along with the examples - Removed improve-sphinx-search.diff, opencv-altivec-vector.patch, opencv-pkgconfig.patch and opencv-samples.patch, fixed upstream. - Fixed opencv-qt5-sobump.diff, opencv-build-compare.patch, opencv-gcc5.patch and opencv-gles.patch. - Version OpenCV 3.0.0 + ~1500 patches, submitted as PR @ github. All our patches go the same route. + opencv_contrib (http://github.com/itseez/opencv_contrib) repository has been added. A lot of new functionality is there already! opencv_contrib is only compatible with 3.0/master, not 2.4. Clone the repository and use ?cmake ? - D OPENCV_EXTRA_MODULES_PATH=<path_to opencv_contrib/modules> ?? to build opencv and opencv_contrib together. + a subset of Intel IPP (IPPCV) is given to us and our users free of charge, free of licensing fees, for commercial and non-commerical use. It?s used by default in x86 and x64 builds on Windows, Linux and Mac. + T-API (transparent API) has been introduced, this is transparent GPU acceleration layer using OpenCL. It does not add any compile-time or runtime dependency of OpenCL. When OpenCL is available, it?s detected and used, but it can be disabled at compile time or at runtime. It covers ~100 OpenCV functions. This work has been done by contract and with generous support from AMD and Intel companies. + ~40 OpenCV functions have been accelerated using NEON intrinsics and because these are mostly basic functions, some higher-level functions got accelerated as well. + There is also new OpenCV HAL layer that will simplifies creation of NEON-optimized code and that should form a base for the open-source and proprietary OpenCV accelerators. + The documentation is now in Doxygen: http://docs.opencv.org/master/ + We cleaned up API of many high-level algorithms from features2d, calib3d, objdetect etc. They now follow the uniform ?abstract interface ? hidden implementation? pattern and make extensive use of smart pointers (Ptr<>). + Greatly improved and extended Python & Java bindings (also, see below on the Python bindings), newly introduced Matlab bindings (still in alpha stage). + Improved Android support ? now OpenCV Manager is in Java and supports both 2.4 and 3.0. + Greatly improved WinRT support, including video capturing and multi-threading capabilities. Thanks for Microsoft team for this! + Big thanks to Google who funded several successive GSoC programs and let OpenCV in. The results of many successful GSoC 2013 and 2014 projects have been integrated in opencv 3.0 and opencv_contrib (earlier results are also available in OpenCV 2.4.x). We can name: - text detection - many computational photography algorithms (HDR, inpainting, edge-aware filters, superpixels, ?) - tracking and optical flow algorithms - new features, including line descriptors, KAZE/AKAZE - general use optimization (hill climbing, linear programming) - greatly improved Python support, including Python 3.0 support, many new tutorials & samples on how to use OpenCV with Python. - 2d shape matching module and 3d surface matching module - RGB-D module - VTK-based 3D visualization module - etc. + Besides Google, we enjoyed (and hope that you will enjoy too) many useful contributions from community, like: - biologically inspired vision module - DAISY features, LATCH descriptor, improved BRIEF - image registration module - etc. ==== openssl ==== Version update (1.0.2e -> 1.0.2g) Subpackages: libopenssl-devel libopenssl1_0_0 libopenssl1_0_0-32bit - update to 1.0.2g (bsc#968044) * Disable weak ciphers in SSLv3 and up in default builds of OpenSSL. Builds that are not configured with "enable-weak-ssl-ciphers" will not provide any "EXPORT" or "LOW" strength ciphers. * Disable SSLv2 default build, default negotiation and weak ciphers. SSLv2 is by default disabled at build-time. Builds that are not configured with "enable-ssl2" will not support SSLv2. Even if "enable-ssl2" is used, users who want to negotiate SSLv2 via the version-flexible SSLv23_method() will need to explicitly call either of: SSL_CTX_clear_options(ctx, SSL_OP_NO_SSLv2); or SSL_clear_options(ssl, SSL_OP_NO_SSLv2); (CVE-2016-0800) * Fix a double-free in DSA code (CVE-2016-0705) * Disable SRP fake user seed to address a server memory leak. Add a new method SRP_VBASE_get1_by_user that handles the seed properly. (CVE-2016-0798) * Fix BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption (CVE-2016-0797) * ) Side channel attack on modular exponentiation http://cachebleed.info. (CVE-2016-0702) * ) Change the req app to generate a 2048-bit RSA/DSA key by default, if no keysize is specified with default_bits. This fixes an omission in an earlier change that changed all RSA/DSA key generation apps to use 2048 bits by default. - update to 1.0.2f (boo#963410) * ) DH small subgroups (boo#963413) Historically OpenSSL only ever generated DH parameters based on "safe" primes. More recently (in version 1.0.2) support was provided for generating X9.42 style parameter files such as those required for RFC 5114 support. The primes used in such files may not be "safe". Where an application is using DH configured with parameters based on primes that are not "safe" then an attacker could use this fact to find a peer's private DH exponent. This attack requires that the attacker complete multiple handshakes in which the peer uses the same private DH exponent. For example this could be used to discover a TLS server's private DH exponent if it's reusing the private DH exponent or it's using a static DH ciphersuite. (CVE-2016-0701) * ) SSLv2 doesn't block disabled ciphers (boo#963415) A malicious client can negotiate SSLv2 ciphers that have been disabled on the server and complete SSLv2 handshakes even if all SSLv2 ciphers have been disabled, provided that the SSLv2 protocol was not also disabled via SSL_OP_NO_SSLv2. (CVE-2015-3197) * ) Reject DH handshakes with parameters shorter than 1024 bits. ==== python-cryptography ==== - Add pkg-config BuildRequires: in order for the last introduced condition to apply the patch to work, pkg-config has to be present. - cryptography-new-bio-new-type.patch: openssl 1.0.2g changed the type of BIO_new_mem_buf() (added a const). ==== systemd-rpm-macros ==== - Allow the packagers to specify the options -f and -n on the macros %service_del_preun(), %service_del_postun(), %systemd_post(), and %systemd_preun() (boo#968405) - Also honor DISABLE_STOP_ON_REMOVAL and DISABLE_RESTART_ON_UPDATE when specified by a package directly in the .spec file. Some package know that a restart of their service is fatal (boo#968405). ==== unbound ==== Version update (1.5.7 -> 1.5.8) Subpackages: libunbound2 unbound-anchor - update to 1.5.8 Features * ip-transparent option for FreeBSD with IP_BINDANY socket option. * insecure-lan-zones: yesno config option, patch from Dag-Erling Sm�rgrav. * RR Type CSYNC support RFC 7477, in debug printout and config input. * RR Type OPENPGPKEY support (draft-ietf-dane-openpgpkey-07). * [bugzilla: 731 ] tcp-mss, outgoing-tcp-mss options for unbound.conf, patch from Daisuke Higashi. * Support RFC7686: handle ".onion" Special-Use Domain. It is blocked by default, and can be unblocked with "nodefault" localzone config. * ub_ctx_set_stub() function for libunbound to config stub zones. Bug Fixes * Fix that NSEC3 negative cache is used when there is no salt. * sorted ubsyms.def file with exported libunbound functions. * Print understandable debug log when unusable DS record is seen. * load gost algorithm if digest is seen before key algorithm. * Fix that "make install" fails due to "text file busy" error. * Set IPPROTO_IP6 for ipv6 sockets otherwise invalid argument error. * wait for sendto to drain socket buffers when they are full. * Neater cmdline_verbose increment patch from Edgar Pettijohn. * Made netbsd sendmsg test nonfatal, in case of false positives. * [bugzilla: 741 ] Fix: log message for dnstap socket connection is more clear. * [bugzilla: 734 ] Fix: chown the pidfile if it resides inside the chroot. * Fix cmsg alignment for argument to sendmsg on NetBSD. * Fix that unbound complains about unimplemented IP_PKTINFO for sendmsg on NetBSD (for interface-automatic). * [bugzilla: 738 ] Fix: Swig should not be invoked with CPPFLAGS. * Squelch 'cannot assign requested address' log messages unless verbosity is high, it was spammed after network down. * Fix to simplify empty string checking from Michael McConville. * [bugzilla: 734 ] Fix: Do not log an error when the PID file cannot be chown'ed. Patch from Simon Deziel. * Fix test if -pthreads unused to use better grep for portability. * Fix mingw crosscompile for recent mingw. * Update aclocal, autoconf output with new versions (1.15, 2.4.6). * Define DEFAULT_SOURCE together with BSD_SOURCE when that is defined, for Linux glibc 2.20. * Fixup contrib/aaaa-filter-iterator.patch for moved contents in the source code, so it applies cleanly again. Removed unused variable warnings. * [bugzilla: 729 ] Fix: omit use of escape sequences in echo since they are not portable (unbound-control-setup). * remove NULL-checks before free, patch from Michael McConville. * updated ax_pthread.m4 to version 21 with clang support, this removes a warning from compilation. * OSX portability, detect if sbrk is deprecated. * OSX clang, stop -pthread unused during link stage warnings. * OSX clang new flto check. * iana portlist update. ==== xf86-input-vmmouse ==== - no longer install the driver package by default on openSUSE > 13.2 or Leap, i.e. remove the supplements to xorg-x11-server (fate #320612) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org