Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20170226 When you reply to report some issues, make sure to change the subject. It is not helpful to keep the release announcement subject in a thread while discussing a specific problem. Packages changed: SDL2 accountsservice akonadi-server apache2 arabic-fonts autogen cairo curl (7.52.1 -> 7.53.1) dracut flatpak (0.8.2 -> 0.8.3) git (2.11.1 -> 2.12.0) gtk-vnc (0.6.0 -> 0.7.0) gucharmap icewm kernel-firmware (20170217 -> 20170223) kexec-tools libisofs llvm3_9 man speex (1.2~rc2 -> 1.2) usb_modeswitch xf86-input-libinput (0.23.0 -> 0.24.0) === Details === ==== SDL2 ==== - Add dbus-ime.diff and build with fcitx [boo#1025413] ==== accountsservice ==== Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0 - Rebase accountsservice-933083-load-root-setting.patch. ==== akonadi-server ==== Subpackages: akonadi-server-sqlite libKF5AkonadiAgentBase5 libKF5AkonadiCore5 libKF5AkonadiPrivate5 libKF5AkonadiWidgets5 libKF5AkonadiXml5 - Add fix-itemretriever-in-case-of-concurrent-requests.patch * Fix hangs accessing folders ("Retrieving folder contents" going on infinitely) ==== apache2 ==== Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils - revert an attempt to fix PR 60458 + httpd-cache-revert-svn1773397.patch ==== arabic-fonts ==== Subpackages: arabic-ae-fonts arabic-bitmap-fonts arabic-kacst-fonts arabic-kacstone-fonts arabic-naqsh-fonts - Update amiri subpackage to 0.109 * New glyphs: * A new stylistic set (ss06) to avoid automatically adding ??? above ???. * A localised &. * U+1EEF0 ARABIC MATHEMATICAL OPERATOR MEEM WITH HAH WITH TATWEEL (?). * U+1EEF1 ARABIC MATHEMATICAL OPERATOR HAH WITH DAL (?). * Adding missing forms of U+06C2. - updated to 0.108 * New glyphs: - New design of ? in <200d>?? combination. - Alternate numbers for use in fractions, accessible with the OpenType features `numr` and `dnom`. - The new Arabic Extended-A vowel marks, in the range U+08E4?08FE. - Redesign the U+06C1 forms to make it distinctive from U+06BE. - Add ??? ????? symbol, U+FDFB. * Fixes: - No longer replace two successive *fatha*, *damma* or *kasra* with a sequential *tanween* form, the characters U+08F0, U+08F1 and U+08F2 should be used instead. - Many kerning improvements. - Workaround a bug in Core Text (Mac OS X text layout engine) that break the ??? ligature. - All forms of U+06BA are now dotless, per Unicode standard. - Initial and medial forms of U+063E, U+063F, U+077A and U+077B were missing. - The dots in initial and medial forms of U+06BD should be inverted. * New fonts: - A coloured version of the Amiri Quran font that gives the vowels and Quranic annotation marks distinctive colours. This font uses the new `COLR`/`CPAL` font tables which are currently supported only by Firefox (all platforms) and MS Internet Explorer/Edge (Windows 8.1 and above). - The webfonts now include WOFF 2.0 files as well. ==== autogen ==== Subpackages: libopts-devel libopts25 - Add autogen-catch-race-error.patch (boo#1021353) ==== cairo ==== Subpackages: cairo-devel libcairo-gobject2 libcairo-script-interpreter2 libcairo2 libcairo2-32bit - Add cairo-pdf-fixes.patch: Three minor pdf fixes from upstream git (fdo#99630). ==== curl ==== Version update (7.52.1 -> 7.53.1) Subpackages: libcurl-devel libcurl4 - Update to 7.53.1 Bugfixes: * url: Improve CURLOPT_PROXY_CAPATH error handling * urldata: include curl_sspi.h when Windows SSPI is enabled * formdata: check for EOF when reading from stdin * tests: Set CHARSET & LANG to UTF-8 in 1035, 2046 and 2047 * url: Default the proxy CA bundle location to CURL_CA_BUNDLE * rand: added missing #ifdef HAVE_FCNTL_H around fcntl.h header - Update to 7.53.0 Changes: * unix_socket: added --abstract-unix-socket and CURLOPT_ABSTRACT_UNIX_SOCKET * CURLOPT_BUFFERSIZE: support enlarging receive buffer Bugfixes: * CVE-2017-2629: make SSL_VERIFYSTATUS work again * gnutls-random: check return code for failed random * openssl-random: check return code when asking for random * http: remove "Curl_http_done: called premature" message * cyassl: use time_t instead of long for timeout * build-wolfssl: Sync config with wolfSSL 3.10 * ftp-gss: check for init before use * configure: accept --with-libidn2 instead * ftp: failure to resolve proxy should return that error code * curl.1: add three more exit codes * docs/ciphers: link to our own new page about ciphers * vtls: s/SSLEAY/OPENSSL - fixes multi_socket timeouts with openssl * darwinssl: fix iOS build * darwinssl: fix CFArrayRef leak * cmake: use crypt32.lib when building with OpenSSL on windows * curl_formadd.3: CURLFORM_CONTENTSLENGTH not needed when chunked * digest_sspi: copy terminating NUL as well * curl: fix --remote-time incorrect times on Windows * curl.1: several updates and corrections * content_encoding: change return code on a failure * curl.h: CURLE_FUNCTION_NOT_FOUND is no longer in use * docs: TCP_KEEPALIVE start and interval default to 60 * darwinssl: --insecure overrides --cacert if both settings are in use * TheArtOfHttpScripting: grammar * CIPHERS.md: document GSKit ciphers * wolfssl: support setting cipher list * wolfssl: display negotiated SSL version and cipher * lib506: fix build for Open Watcom * asiohiper: improved socket handling * examples: make the C++ examples follow our code style too * tests/sws: retry send() on EWOULDBLOCK * cmake: Fix passing _WINSOCKAPI_ macro to compiler * smtp: Fix STARTTLS denied error message * imap/pop3: don't print response character in STARTTLS denied messages * rand: make it work without TLS backing * url: fix parsing for when 'file' is the default protocol * url: allow file://X:/path URLs on windows again * gnutls: check for alpn and ocsp in configure * IDN: Use TR46 'non-transitional' for toASCII translations * url: Fix NO_PROXY env var to work properly with --proxy option * CURLOPT_PREQUOTE.3: takes a struct curl_slist*, not a char* * docs: Add note about libcurl copying strings to CURLOPT_* manpages * curl: reset the easy handle at --next * --next docs: --trace and --trace-ascii are also global * --write-out docs: 'time_total' is not always shown with ms precision * http: print correct HTTP string in verbose output when using HTTP/2 * docs: improved language in README.md HISTORY.md CONTRIBUTE.md * http2: disable server push if not requested * nss: use the correct lock in nss_find_slot_by_name() * usercertinmem.c: improve the short description * CURLOPT_CONNECT_TO: Fix compile warnings * docs: non-blocking SSL handshake is now supported with NSS * *.rc: escape non-ASCII/non-UTF-8 character for clarity * mbedTLS: fix multi interface non-blocking handshake * PolarSSL: fix multi interface non-blocking handshake * VC: remove the makefile.vc6 build infra * telnet: fix windows compiler warnings * cookies: do not assume a valid domain has a dot * polarssl: fix hangs * gnutls: disable TLS session tickets * mbedtls: disable TLS session tickets * mbedtls: implement CTR-DRBG and HAVEGE random generators * openssl: Don't use certificate after transferring ownership * cmake: Support curl --xattr when built with cmake * OS400: Fix symbols * docs: Add more HTTPS proxy documentation * docs: use more HTTPS links * cmdline-opts: Fixed build and test in out of source tree builds * CHANGES.0: removed * schannel: Remove incorrect SNI disabled message * darwinssl: Avoid parsing certificates when not in verbose mode * test552: Fix typos * telnet: Fix typos * transfer: only retry nobody-requests for HTTP * http2: reset push header counter fixes crash * nss: make FTPS work with --proxytunnel * test1139: Added the --manual keyword since the manual is required * polarssl, mbedtls: Fix detection of pending data * http_proxy: Fix tiny memory leak upon edge case connecting to proxy * URL: only accept ";options" in SMTP/POP3/IMAP URL schemes * curl.1: ftp.sunet.se is no longer an FTP mirror * tool_operate: Show HTTPS-Proxy options on CURLE_SSL_CACERT * http2: fix memory-leak when denying push streams * configure: Allow disabling pthreads, fall back on Win32 threads * curl: fix typo in time condition warning message * axtls: adapt to API changes * tool_urlglob: Allow a glob range with the same start and stop * winbuild: add note on auto-detection of MACHINE in Makefile.vc * http: fix missing 'Content-Length: 0' while negotiating auth * proxy: fix hostname resolution and IDN conversion * docs: fix timeout handling in multi-uv example * digest_sspi: Fix nonce-count generation in HTTP digest * sftp: improved checks for create dir failures * smb: use getpid replacement for windows UWP builds * digest_sspi: Handle 'stale=TRUE' directive in HTTP digest - Remove curl-7.52.1-idn-fixes.patch, fixed upstream. ==== dracut ==== - 90multipath: 90multipath: start before local-fs-pre.target (bsc#1005410, bsc#1006118, bsc#1007925) * add 0508-90multipath-start-before-local-fs-pre.target.patch - unlimit TaskMax for xfs_repair in emergency shell (bsc#1019938) * add 0507-Set-TaskMax-inifinite-for-the-emergency-shell.patch - Boot on s390x with fips=1 on the kernel commnad line (bnc#1021687) * add 0506-Boot-on-s390x-with-fips-1-on-the-kernel-commnad-line.patch ==== flatpak ==== Version update (0.8.2 -> 0.8.3) - Update to version 0.8.3: + In addition to the regular list of bugfixes this stable release include backports of the updated OpenGL support from master. This, in combination with the work in the runtime allows flatpak to work out of the box with out-of-tree OpenGL drivers, including the nvidia driver. + Additionally, due to some complicated issues wrt ptrace and user namespaces this version disables the use of user namespaces if bubblewrap is setuid, as it cause problems for the way flatpak portals identifies applications. + Better handling of errors for extra-data. + Handle extra-data properly for runtimes (as well as apps). + Respect required version for runtimes (as well as apps). + flatpak list: Don't break if some local ref is not deployed. + builder: - Look for appstream data in /app/share/metadata also. - Fix buildsystem=cmake builds. + Add progress reporting to extra-data download. + Fix uid/gid for directories in document portal. + Updated translations. ==== git ==== Version update (2.11.1 -> 2.12.0) Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk - git 2.12.0: * Use of an empty string that is used for 'everything matches' is still warned and Git asks users to use a more explicit '.' for that instead. The hope is that existing users will not mind this change, and eventually the warning can be turned into a hard error, upgrading the deprecation into removal of this (mis)feature. That is not scheduled to happen in the upcoming release (yet). * The historical argument order "git merge <msg> HEAD <commit>..." has been deprecated for quite some time, and will be removed in a future release. * An ancient script "git relink" has been removed. ==== gtk-vnc ==== Version update (0.6.0 -> 0.7.0) Subpackages: gtk-vnc-lang libgtk-vnc-2_0-0 libgvnc-1_0-0 typelib-1_0-GVnc-1_0 typelib-1_0-GtkVnc-2_0 - Update License to include LGPL-2.1. - Update to version 0.7.0: + CVE-2017-5884 - fix bounds checking for RRE, hextile and copyrect encodings. + CVE-2017-5885 - fix color map index bounds checking. + Add API to allow smooth scaling to be disabled. + Workaround to help SPICE servers quickly drop VNC clients which mistakenly connect, by sending "RFB " signature bytes early. + Don't accept color map entries for true-color pixel formats. + Add missing vala .deps files for gvnc & gvncpulse. + Avoid crash if host/port is NULL. + Add precondition checks to some public APIs. + Fix link to home page in README file. + Fix misc memory leaks. + Clamp cursor hot-pixel to within cursor region. - Update file list for %{name}-devel to include additional files installed by updated version. ==== gucharmap ==== Subpackages: libgucharmap_2_90-7 - Add gucharmap-no-force-light-theme.patch: No longer force light theme variant, patch from upstream git. ==== icewm ==== Subpackages: icewm-config-upstream icewm-default icewm-lite - Ensure a valid mailbox check tool (bsc#1026134) * icewm-mail.patch * https://github.com/bbidulock/icewm/pull/108 ==== kernel-firmware ==== Version update (20170217 -> 20170223) Subpackages: ucode-amd - Update to version 20170223: * amdgpu: add smc firmware for new polaris variants * Revert "amdgpu: update VI smc/mc firmware" * Revert "amdgpu: update VI gfx/sdma firmware" ==== kexec-tools ==== - Do not pull in gcc-PIE, as it breaks the static build in here. ==== libisofs ==== - Use sle_version >= 120300 instead of leap_version >= 420300 (leap_version does not work). - Added new build requirement libjte-devel for Tumbleweed and Leap >= 42.3. ==== llvm3_9 ==== Subpackages: libLLVM3_9 libLLVM3_9-32bit - Enable BPF for all arches bsc#1026191 ==== man ==== - Use _libexecdir instead of _prefix/lib ==== speex ==== Version update (1.2~rc2 -> 1.2) Subpackages: libspeex1 libspeex1-32bit speex-devel - Update to stable 1.2 release ==== usb_modeswitch ==== Subpackages: usb_modeswitch-data - Update usb-modeswitch-data package to version 20170205 * Bugfix release: Removed all catch-all fallback config files as they can affect unrelated devices - fixes (rh#1374913). ==== xf86-input-libinput ==== Version update (0.23.0 -> 0.24.0) - Update to version 0.24.0: + Tablets now support a configurable pressure curve. + Tablets now have a 'area ratio' setting to be able to match the tablet aspect ratio with that of the screen. + The mouse wheel's click angle now (correctly) affects how fast the scroll wheel triggers. In particular, if you have a wheel with a very small click angle, it won't trigger for every click anymore. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org