Mailinglist Archive: opensuse-factory (367 mails)

< Previous Next >
[opensuse-factory] New Tumbleweed snapshot 20170708 released!

Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20170708

When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.

Packages changed:
accountsservice
alpine
autoyast2 (3.2.16 -> 3.3.0)
device-mapper (1.02.139 -> 1.02.141)
dhcp (4.3.3.P1 -> 4.3.5)
dos2unix (7.3.4 -> 7.3.5)
edict (20161126 -> 20170706)
folks (0.11.3 -> 0.11.4)
gnome-keyring (3.20.0 -> 3.20.1)
irssi (1.0.3 -> 1.0.4)
libgnomesu (2.0.0 -> 2.0.2)
libqt5-qtbase (5.9.0 -> 5.9.1)
libqt5-qtconnectivity (5.9.0 -> 5.9.1)
libqt5-qtdeclarative (5.9.0 -> 5.9.1)
libqt5-qtgraphicaleffects (5.9.0 -> 5.9.1)
libqt5-qtimageformats (5.9.0 -> 5.9.1)
libqt5-qtlocation (5.9.0 -> 5.9.1)
libqt5-qtmultimedia (5.9.0 -> 5.9.1)
libqt5-qtquickcontrols (5.9.0 -> 5.9.1)
libqt5-qtscript (5.9.0 -> 5.9.1)
libqt5-qtsensors (5.9.0 -> 5.9.1)
libqt5-qtserialport (5.9.0 -> 5.9.1)
libqt5-qtsvg (5.9.0 -> 5.9.1)
libqt5-qttools (5.9.0 -> 5.9.1)
libqt5-qtwebchannel (5.9.0 -> 5.9.1)
libqt5-qtwebengine (5.9.0 -> 5.9.1)
libqt5-qtwebkit
libqt5-qtwebsockets (5.9.0 -> 5.9.1)
libqt5-qtx11extras (5.9.0 -> 5.9.1)
libqt5-qtxmlpatterns (5.9.0 -> 5.9.1)
libsolv (0.6.27 -> 0.6.28)
libwnck (3.20.1 -> 3.24.0)
libzypp (16.12.0 -> 16.13.0)
lvm2 (2.02.170 -> 2.02.172)
nmap (7.40 -> 7.50)
plasma5-integration
python-pytz
qalculate (0.9.10 -> 0.9.12)
strace (4.17 -> 4.18)
xdg-desktop-portal-gtk
xine-lib
xorg-x11-server

=== Details ===

==== accountsservice ====
Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0

- Remove redundant %clean section; use %_smp_mflags for build.

==== alpine ====
Subpackages: pico

- imap is bundled with alpine since a while, so there is no need
for imap-devel anymore (whose removal is planned for
openSUSE:Factory).

==== autoyast2 ====
Version update (3.2.16 -> 3.3.0)
Subpackages: autoyast2-installation

- AutoYaST configuration module; Crash while writing settings to
the system:
As we are switching to "normal" mode and accessing to the target
system we have to set StorageDevices flag disks_valid to true.
So InitLibstorage can scan valid target disks. (bnc#1046738)
- 3.3.0

==== device-mapper ====
Version update (1.02.139 -> 1.02.141)
Subpackages: libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit

- Don't create symlink for invisible device like thin-pool (bsc#1046591)
* drop 10-dm.rules-Reset-state-variable-for-spurious-events.patch
- Update to LVM2.2.02.172
- Cleanup spec file, and refresh patches
* removed device-mapper-link.patch
* removed bug-1033691_tests-missed-to-export-lvm-binary-for-fsadm.patch
* removed Makefile-skip-compliling-daemons-lvmlockd-directory.patch
* added bug-1037309_Makefile-skip-compliling-daemons-lvmlockd-directory.patch

==== dhcp ====
Version update (4.3.3.P1 -> 4.3.5)
Subpackages: dhcp-client dhcp-doc dhcp-relay dhcp-server

- fixed a typo in nis-servers option name breaking the config file introduced
in previous change to workaround issues in NetworkManager parser.
- Update to dhcp-4.3.5
- Corrected a bug which could cause the server to sporadically crash while
loading lease files with the lease-id-format is set to "hex". Our thanks
to Jay Ford, University of Iowa for reporting the issue.
[ISC-Bugs #43185]
- Eliminated a noisy, but otherwise harmless debug log statment that may
appear during server startup when building with --enable-binary-leases
and configuring multiple pools in a shared network. Thanks to Fernando
Soto from BlueCat Networks for reporting the issue and supplying a patch.
[ISC-Bugs #43262]
- Fixed util/bindvar.sh error handling.
[ISC-Bugs #41973]
- Correct error message in relay to use remote id length instead
of circuit id length.
[ISC-Bugs #42556]
- Add logic to test directory Makefiles to avoid copying Attfile(s)
when building within the source tree. This eliminates a noisy but
otherwise harmless error message when running "make check".
[ISC-Bugs #41883]
- Leases are now scrubbed of certain prior use information when pool
re-balancing reassigns them from one FO peer to the other. This
corrects an issue where leases that were offered but not used
by the client retained the client hostname from the original
client. Thanks to Pavel Polacek, Jan Evangelista Purkyne University
for reporting the issue.
[ISC-Bugs #42008]
- In the LDAP code and schema add some missing '6' characters to use
the v6 instead of the v4 versions. Thanks to Denis Taranushin for
reporting this issue and supplying its patch.
[ISC-Bugs #42666]
- Correct how the pick-first-value expression is written to a lease
file. Previously it was written as a concat expression due to
a cut and paste error.
[ISC-Bugs #42253]
- Modify the DDNS code to clean up the PTR record even if there
are issues while cleaning up the A or AAAA records.
[ISC-Bugs #23954]
- Added global configuration parameter, abandon-lease-time, which determines
the amount of time a lease remains abandoned. The default is 84600 seconds.
Additionaly, the server now conducts a ping check (if ping checks are
enabled) prior to offering an abandoned lease to client. Our thanks to
David Zych at University of Illinois for reporting the issue and working
with us to produce a viable solution.
[ISC-Bugs #41815]
- Correct handling of interface names during interface discovery. This
addresses an issue where interface names of 15 characters in length
could lead to crashes or interface recognition errors during startup
of dhcpd, dhclient, and dhcrelay.
[ISC-Bugs #42226]
- Updates to contrib/dhcp-lease-list.pl to make it more friendly.
The updates are: looking for the lease file in more places and skipping
the "processing complete" output when creating machine readable
output. Thanks to Cameron Paine (cbp at null dot net) for the
patch.
[ISC-Bugs #42113]
- When reusing a lease for dhcp-cache-threshold return the hostname
to the original lease. Also if the host pointer, UID or hardware address
change don't allow reuse of the lease.
Thanks to Michael Vincent for reporting this and helping us
verify the problem and fix.
[ISC-Bugs #42849]
- Change dmalloc to use a size_t as the length argument to bring it
in line with the call it will make to malloc().
[ISC-Bugs #40843]
- If the failover socket can't be bound, close it. Otherwise if the
user configures an incorrect address in the failover stanza the
server will continue to open new sockets every 90 seconds until
it runs out.
[ISC-Bugs #42452]
- Add DHCPv4-mode, dhcrelay command line options, "-iu" and "-id", that
allow interfaces to be upstream or downstream respectively. Upstream
interfaces will accept and forward only BOOTP replies, while downstream
interfaces will accept and forward only BOOTP requests.
[ISC-Bugs #41547]
- Clean up some memory references in the vendor-class construct.
[ISC-Bugs #42984]
[*0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch,
* 0011-Fixed-linux-interface-discovery-using-getifaddrs.patch,
* 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch,
* 0016-infiniband-support.patch,
* 0017-server-no-success-report-before-send.919959.patch]
- Set all requested dhcp options on a single line, so they are
actually requested (boo#1046969, boo#1047004).
- Relax permission of dhclient-script for libguestfs(bsc#987170)
- Require insserv only if needed
- Fix requires of client subpackage
- Add config file for registering dhcp server in slp (bsc#992072)
- Use /usr/sbin/arping instead of /sbin/arping in the dhcp scripts.
/sbin/arping is a symlink to /usr/sbin/arping in order to ease the
transition for the /usr merge. Newest releases of iputils may only
install utilities in /usr/* so this dependency will no longer be valid.
Moreover, we replace the '/sbin/arping' dependency with 'iputils'.
- Update to dhcp-4.3.3-P1 correcting bounds checking when
receiving a packet (bsc#961305,CVE-2015-8605,ISC-Bugs#41267).
- adjusted interval check.
[*0019-dhcp-4.2.4-P1-interval.patch]
- Fixed improper lease duration checking. Also added fixes for integer
overflows in the date and time handling code(bsc#936923, bsc#880984).
[+0020-dhcp-4.x.x-fixed-improper-lease-duration-checking.patch]
- fixed service files to start dhcpd after slapd (bsc#956159)
- dhclient-script: complain in the log about conflicts, added
a see log messages to the dhclient log message (bsc#960506)
[* 0018-client-fail-on-script-pre-init-error-bsc-912098.patch]
- Applied a patch by Jiri Popelka catching dhcp server aborts with
"Unable to set up timer: out of range" on very long or infinite
timer intervals / lease lifetimes (bsc#947780)
[+ 0019-dhcp-4.2.4-P1-interval.patch]
- Corrected patch references in and a missed (bsc#919959) patch
description in previous changelog entry.
- Update to dhcp-4.3.3 (fate#319067) provinding many bug fixes,
features and obsoletes several patches we were using before.
For complete changelog, please read the RELNOTES file shipped
along with this package or online at:
https://kb.isc.org/article/AA-01297/82/DHCP-4.3.3-Release-Notes.html
- Replaced hostname patch with a dhcpv6 and fqdn aware variant:
[- 0006-dhcp-4.2.5-dhclient-send-hostname-rml.patch,
+ 0006-dhcp-4.3.2-dhclient-send-hostname-or-fqdn.patch]
- Removed obsolete patches included upstream now:
[- 0007-dhcp-4.2.6-ldap-mt01.patch,
- 0009-dhcp-4.2.6-xen-checksum.patch,
- 0013-dhcp-4.2.3-P1-dhclient-log-pid.patch,
- 0015-Ignore-SIGPIPE-to-not-die-in-socket-code.patch,
- 0016-server-log-DHCPv6-addresses-assigned-to-clients.patch,
- 0019-dhcp-4.2.x-ldap-debug-write.bnc835818.patch,
- 0021-dhcp-4.2.4-P2-bnc878846-conf-to-ldap.patch,
- 0022-dhcp-4.2.x-contrib-conf-to-ldap-reorder.886094.patch,
- 0023-dhcp-4.2.x-ddns-tsig-hmac-sha-support.890731.patch,
- 0025-dhcp-4.2.x-dhcpv6-retransmission-until-MRD.872609.patch,
- 0026-dhcp-4.2.x-disable-unused-ddns-port-in-server.891655.patch]
- Adjusted patch numbers in the spec file:
[- 0008-dhcp-4.1.1-P1-lpf-bind-msg-fix.patch,
- 0010-dhcp-4.2.2-dhclient-option-checks.patch,
- 0011-dhcp-4.2.6-close-on-exec.patch,
- 0012-dhcp-4.2.2-quiet-dhclient.patch,
- 0014-Fixed-linux-interface-discovery-using-getifaddrs.patch,
- 0020-dhcp-4.2.x-chown-server-leases.bnc868253.patch,
- 0024-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch,
+ 0007-dhcp-4.1.1-P1-lpf-bind-msg-fix.patch,
+ 0008-dhcp-4.2.2-dhclient-option-checks.patch,
+ 0009-dhcp-4.2.6-close-on-exec.patch,
+ 0010-dhcp-4.2.2-quiet-dhclient.patch,
+ 0011-Fixed-linux-interface-discovery-using-getifaddrs.patch,
+ 0012-dhcp-4.2.x-chown-server-leases.bnc868253.patch,
+ 0013-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch]
- Fixed to not pass DHCPv6 address lifetimes a positive (unsigned
32bit) integers to scripts and properly format timestamps as long
to not break them on 64bit architectures (bsc#926159).
[+ 0014-dhclient6-unsigned-lifetimes-for-script-bsc-926159.patch]
- dhclient: expose next-server DHCPv4 option to script (bsc#928390)
[+ 0015-Expose-next-server-DHCPv4-option-to-dhclient-script.patch]
- Replaced infiniband support patch with fixed variant (bsc#910984):
[- 0017-dhcp-4.2.6-lpf-ip-over-ib-support.patch,
- 0018-dhcp-4.2.6-improved-xid.patch,
- 0027-dhcp-4.2.x-handle-ifa_addr-NULL.909189.patch,
+ 0016-infiniband-support.patch]
- Moved dhcp-devel package include files and static libraries
to /usr/include/dhcp and /usr/lib/dhcp subdirectories.
DHCP requires a specific bind library version and conflicts
with the files shipped by bind-devel package, which is not
source and binary compatible (bsc#910686).
- Corrected changes to provide complete patch file references.
- Fixed server to not report success before send (bsc#919959)
[+ 0017-server-no-success-report-before-send.919959.patch]
- Fixed dhclient to check pre-init results reported by dhclient-script
and fail if pre-init fails for a requested interface (bsc#912098).
[+ 0018-client-fail-on-script-pre-init-error-bsc-912098.patch]
- do not check scripts not in the src.rpm
- Applied fix by Jiri Slaby to not crash in interface discovery
when the interface address is NULL, which has been introduced
by the infiniband support patch (bsc#909189,bsc#870535).
[+ 0027-dhcp-4.2.x-handle-ifa_addr-NULL.909189.patch]
- fix bashisms in dhcprelay script
- Applied contrib/ldap/dhcpd-conf-to-ldap patch by Ales Novak to
reorder config to add all global options or option declarations
to the dhcpService object instead to create new service object
(bsc#886094,ISC-Bugs#37876).
[+ 0022-dhcp-4.2.x-contrib-conf-to-ldap-reorder.886094.patch]
- Applied an upstream patch by Thomas Markwalder adding missed
mapping of SHA TSIG algorithm names to their constants to enable
hmac-sha1, hmac_sha224, hmac_sha256, hmac_sha384 and hmac_sha512
authenticated dynamic DNS updates (bsc#890731, ISC-Bugs#36947).
[+ 0023-dhcp-4.2.x-ddns-tsig-hmac-sha-support.890731.patch]
- Decline IPv6 addresses on Duplicate Address Detection failure
and stop client message exchanges on reached MRD rather than
at some point after it. Applied fedora patches by Jiri Popelka
and added DAD reporting via exit 3 to the dhclient-script and
a fix to use correct address variables in the DEPREF6 action
(bsc#872609,ISC-Bugs#26735,ISC-Bugs#21238).
[+ 0024-dhcp-4.2.x-dhcpv6-decline-on-DAD-failure.872609.patch,
+ 0025-dhcp-4.2.x-dhcpv6-retransmission-until-MRD.872609.patch]
- Applied backport patch by William Preston avoiding to bind ddns
socket in the server when ddns-update-style is none (bsc#891655).
[+ 0026-dhcp-4.2.x-disable-unused-ddns-port-in-server.891655.patch]
- Applied patch for the contrib/ldap/dhcpd-conf-to-ldap script
fixing subclass statement handling (bnc#878846,[ISC-Bugs #36409])
[+ 0021-dhcp-4.2.4-P2-bnc878846-conf-to-ldap.patch]
- Updated licence statement and FSF address in our scripts.
- Added missed service_add_pre macro calls for dhcrelay services
- No longer perform gpg validation; osc source_validator does it
implicit:
+ Drop gpg-offline BuildRequires.
+ No longer execute gpg_verify.
- sanitize release line in specfile
- Disabled /sbin/service legacy-action hooks on openSUSE <= 13.1,
which does not support it and causes build failure (bnc#891961).
- Fixed to require iproute2 in dhcp-client package (bnc#885399)
- Disarmed dhclient-script when wicked is the network service,
as wicked is using an another dhcp client (runtime conflict),
NetworkManager an own script and sysconfig-network is gone on
sles12 and opensuse > 13.1, so it is obsolete and unsupported.
- Fixed /etc/sysconfig/dhcpd fillup in dhcp server post-install.
- Fixed dhcp server start script to use correct libdir (bnc#868250)
- Fixed dhcp server to chown leases to run user at start (bnc#868253)
[+ 0020-dhcp-4.2.x-chown-server-leases.bnc868253.patch]
- Fixed to write missed dhcp-ldap debug level messages (bnc#835818)
[+ 0019-dhcp-4.2.x-ldap-debug-write.bnc835818.patch]
- Fixed unsupported dhclient-script used by sysconfig ifup to provide
a function to calculate netmask. NetworkManager provides an own one.
- added necessary macros for systemd files
- remove gpg-offline dependency (blocks rebuilds) as checking
is already done by source validator
- Applied fixes for DHCP over IPoIB by Mellanox (bnc#870535)
[+ 0017-dhcp-4.2.6-lpf-ip-over-ib-support.patch,
+ 0018-dhcp-4.2.6-improved-xid.patch]
- Added support for custom for rcdhcpd[6] check-syntax,check-lease
and syntax-check actions (bnc#868713).
- Initially switched to use systemd service files under systemd
and enabled Restart=on-abort (fate#315133).
- Update to ISC dhcp-4.2.6 release. See RELNOTES file for the
complete list of changes -- digest of fixes not in dhcp-4.2.5:
- Tidy up receive packet processing.
Thanks to Brad Plank of GTA for reporting the issue and
suggesting a possible patch. [ISC-Bugs #34447]
- Fix the socket handling for DHCPv6 clients to allow multiple
instances of a client on a single machine to work properly.
Previously only one client would receive the packets.
Thanks to Jiri Popelka at Red Hat for the bug report and a
potential patch. [ISC-Bugs #34784]
- Added support for gentle shutdown after signal is received.
[ISC-Bugs #32692] [ISC-Bugs 34945]
- Enhance the DHCPv6 server logging to include the addresses
that are assigned to the clients. This can be enabled by
defining LOG_V6_ADDRESSES in site.h. [ISC-Bugs #26377]
- Fix an operation in the DDNS code to be a bitwise instead
of logical or. [ISC-Bugs #35138]
- Merged patches for dhcp-4.2.6 version to apply without fuzzy,
prepended patch number prefixes to match spec file patch nr,
added patch markup tags / bug numbers to the spec file.
- Applied contrib-lease-path pach to contrib.tar.gz
[- contrib-lease-path.diff]
- Changed to require automake and use its config.sub and guess
files instead of maintaining a patch.
[- config-guess-sub-update.patch]
- Enabled to log DHCPv6 addresses assigned by server to clients
[+ 0016-server-log-DHCPv6-addresses-assigned-to-clients.patch]
- Cleaned up documentation, rpmlint adjustments.
- Test if /etc/sysconfig/network/scripts/functions exists before
sourcing it (fate#316768,bnc#856591).
- Fixed path to systemctl in dhclient-script (bnc#847778).
- Added /etc/bindresvport.blacklist to dhcp server chroot file
lists as it seems to block its start in some cases (bnc#842360).
- Fixed to reload syslog on hostname changes using systemctl as
there is no /etc/init.d/syslog script since syslog-service-2.0
(bnc#830467).
- Added autoreconf -i option to fix build for the new automake
- Install missed bind include files and libraries in dhcp-devel;
conflicts to bind-devel providing different versions (bnc#805162).
- Use manual patch command for config-guess-sub-update.patch
again as patch macro does not work on older distributions.
- Update to ISC dhcp-4.2.5-P1 release, which contains updated
bind-9.8.4-P2 sources with removed regex.h check in configure
(bnc#811934, CVE-2013-2266).
- Changed spec make the bind export library build output visible.
- Added dhcp6-server service template for SuSEfirewall2 (bnc#783002)
- config-guess-sub-update.patch:
Update config.guess/sub for aarch64
- Update to ISC dhcp-4.2.5 release. See RELNOTES file for the
complete list of changes -- digest of fixes not in dhcp-4.2.4-P2:
- Correct code to calculate rebind timing values in client
[ISC-Bugs #29062]
- Fix some issues in the code for parsing and printing options.
[ISC-Bugs #22625,#27289,#27296,#27314]
- Update the memory leakage debug code to work with v6.
[ISC-Bugs #30297]
- Relax the requirements for deleting an A or AAAA record.
This relaxation was codified in RFC 4703. [ISC-Bugs #30734]
- Modify the failover code to handle incorrect peer names better.
[ISC-Bugs #30320]
- Fix a set of issues that were discovered via a code inspection
tool. [ISC-Bugs #23833]
- Parsing unquoted base64 strings improved. [ISC-Bugs #23048]
- The client now passes information about the options it requested
from the server to the script code via environment variables.
These variables are of the form requested_<option_name>=1 with
the option name being the same as used in the new_* and old_*
variables. [ISC-Bugs #29068]
- Check the status value when trying to read from a connection to
see if it may have been closed. If it appears closed don't try
to read from it again. This avoids a potential busy-wait like
loop when the peer names are mismatched. [ISC-Bugs #31231]
- Remove an unused variable to keep compilers happy.
[ISC-Bugs #31983]
- Removed obsolete parsing and printing option patch
[dhcp-4.2.4-parsing-and-printing-options.patch]
- Merged dhcp-4.2.2-dhclient-send-hostname-rml.diff
[dhcp-4.2.5-dhclient-send-hostname-rml.patch]
- Fixed discovery of interfaces, which have only addresses with
a label assigned (linux 2.0 "alias interfaces" compatibility)
by switching to use the getifaddrs() as on BSD (bnc#791289,
reported upstream as [ISC-Bugs #31992]).
[dhcp-4.2.4-interface-discovery-using-getifaddrs.patch]
- Applied a patch to ignore SIGPIPE instead to die in socket code
before the errno==EPIPE checks are reached (bnc#794578, upstream
report [ISC-Bugs #32222])
[dhcp-4.2.4-P2-do-not-die-on-sigpipe.patch]
- Updated ldap patch to 4.2.5-ldap-mt01 providing following fixes:
- Fixed parse buffer handling code to not avoid truncation of
config > ~8k from bigger ldap objects. Fixed to free the ldap
config buffer passed to the config parser and append new config,
while the parser is in saved state (bnc#788787).
- Fixed subclass name-ref and data quoting/escaping (bnc#788787).
- Fixed memory leaks on ldap_read_config errors (bnc#788787).
- Fixed a memleak while subnet range processing, fixed to reset
bufix variable in ldap_read_function to 0 and to set buflen to
the complete length (do not discard last character, usually \n).
This caused a parsing error at further run of the function,
e.g. while processing the second dhcpService container that the
dhcpServer object may refer to (bnc#784640).
[dhcp-4.2.5-ldap-mt01.patch.bz2]
- Fixed dhclient-script to discard MTU lower-equal 576 rather
than lower-than (bnc#791280).
- Verify GPG source archive signatures.
- Update to ISC dhcp-4.2.4-P2 release, providing a security fix for
an issue with the use of lease times was found and fixed. Making
certain changes to the end time of an IPv6 lease could cause the
server to abort. Thanks to Glen Eustace of Massey University,
New Zealand for finding this issue.
([ISC-Bugs #30281], CVE: CVE-2012-3955, bnc#780167)
- Update to ISC dhcp-4.2.4-P1 release, providing following security
fixes (bnc#772924):
- Previously the server code was relaxed to allow packets with zero
length client ids to be processed. Under some situations use of
zero length client ids can cause the server to go into an infinite
loop. As such ids are not valid according to RFC 2132 section 9.14
the server no longer accepts them. Client ids with a length of 1
are also invalid but the server still accepts them in order to
minimize disruption. The restriction will likely be tightened in
the future to disallow ids with a length of 1.
Thanks to Markus Hietava of Codenomicon CROSS project for the
finding this issue and CERT-FI for vulnerability coordination.
[ISC-Bugs #29851] CVE: CVE-2012-3571
- When attempting to convert a DUID from a client id option
into a hardware address handle unexpected client ids properly.
Thanks to Markus Hietava of Codenomicon CROSS project for the
finding this issue and CERT-FI for vulnerability coordination.
[ISC-Bugs #29852] CVE: CVE-2012-3570
- A pair of memory leaks were found and fixed. Thanks to Glen
Eustace of Massey University, New Zealand for finding this issue.
[ISC-Bugs #30024] CVE: CVE-2012-3954
- Moved lease file check to a separate action so it is not used in
restart -- it can fail when the daemon rewrites the lease causing
a restart failure then (bnc#762108 regression).
- Request dhcp6.sntp-servers in /etc/dhclient6.conf and forward to
netconfig for processing (bnc#770236).
- Removed RFC 4833 TZ options from client requests [unused].
- Update to ISC dhcp-4.2.4 release, fixing a dhcpv6 server assert
crash while accessing lease on heap (bnc#767661) and providing
the following fixes:
- Rotate the lease file when running in v6 mode.
Thanks to Christoph Moench-Tegeder at Astaro for the
report and the first version of the patch. [ISC-Bugs #24887]
- Fixed the code that checks if an address the server is planning
to hand out is in a reserved range. This would appear as the
server being out of addresses in pools with particular ranges.
[ISC-Bugs #26498]
- In the DDNS code handle error conditions more gracefully and
add more logging code. The major change is to handle unexpected
cancel events from the DNS client code. [ISC-Bugs #26287]
- Tidy up the receive calls and eliminate the need for found_pkt.
[ISC-Bugs #25066]
- Add support for Infiniband over sockets to the server and
relay code. We've tested this on Solaris and hope to expand
support for Infiniband in the future. This patch also corrects
some issues we found in the socket code. [ISC-Bugs #24245]
- Add a compile time check for the presence of the noreturn attribute
and use it for log_fatal if it's available. This will help code
checking programs to eliminate false positives. [ISC-Bugs #27539]
- Fixed many compilation problems ("set, but not used" warnings) for
gcc 4.6 that may affect Ubuntu 11.10 users. [ISC-Bugs #27588]
- Modify the code that determines if an outstanding DDNS request
should be cancelled. This patch results in cancelling the
outstanding request less often. It fixes the problem caused
by a client doing a release where the TXT and PTR records
weren't removed from the DNS. [ISC-BUGS #27858]
- Use offsetof() instead of sizeof() to get the sizes for
dhcpv6_relay_packet and dhcpv6_packet in several more places.
Thanks to a report from Bruno Verstuyft and Vincent Demaertelaere
of Excentis. [ISC-Bugs #27941]
- Remove outdated note in the description of the bootp keyword about
the option not satisfying the requirement of failover peers for
denying dynamic bootp clients. [ISC-bugs #28574]
- Multiple items to clean up IPv6 address processing. When processing
an IA that we've seen check to see if the addresses are usable
(not in use by somebody else) before handing it out.
When reading in leases from the file discard expired addresses.
When picking an address for a client include the IA ID in
addition to the client ID to generally pick different addresses
for different IAs. [ISC-Bugs #23138] [ISC-Bugs #27945]
[ISC-Bugs #25586] [ISC-Bugs #27684]
- Remove unnecessary checks in the lease query code and clean up
several compiler issues (some dereferences of NULL and treating
an int as a boolean). [ISC-Bugs #26203]
- Fix the NA and PD allocation code to handle the case where a client
provides a preference and the server doesn't have any addresses or
prefixes available. Previoulsy the server ignored the request with
this patch it replies with a NoAddrsAvail or NoPrefixAvail response.
By default the code performs according to the errata of August 2010
for RFC 3315 section 17.2.2; to enable the previous style see the
section on RFC3315_PRE_ERRATA_2010_08 in includes/site.h.
This option may be removed in the future. Thanks to Jiri Popelka at
Red Hat for the patch. [ISC-Bugs #22676]
- Fix up some issues found by static analysis. A potential memory leak
and NULL dereference in omapi. The use of a boolean test instead of
a bitwise test in dst. [ISC-Bugs #28941]
- Replaced our patches with a complete and upstream verified patch:
- Fix some issues in the code for parsing and printing options.
[ISC-Bugs #27314] - properly parse a zero length option from
a lease file.
[ISC-Bugs #22796] - properly determine if we parsed a 16 or
32 bit value in evaluate_numeric_expression (extract-int).
[ISC-Bugs #22625] - properly print options that have several
fields followed by an array of something for example "fIa"
[ISC-Bugs #27289] - properly parse options in declarations
that have several fields followed by an array of something
for example "fIa"
This patch obsoletes the following (bnc#739696) patches:
- dhclient: parse_option_param: Bad format a
- zero-length option lease parse error in dhclient6
- Merged ldap and options check patches for the new version
- Fixed dhcp-server init script to check syntax and fail while
force-reload and restart to avoid stopping of running daemon
followed by start failure (bnc#762108). Added libgcc_s.so to
chroot, so the server can report assert/crash line.
- Added RFC 4833 TimeZone PosixString and Name declarations to
server and client configs [not used yet].
- dhcp-server: fixed to escape all values used in constructed
ldap filters as a DN may contain e.g. asterisks (bnc#721829,
[ISC-Bugs #28545]).
- Updated to ISC dhcp-4.2.3-P2 release, providing a DDNS security fix:
Modify the DDNS handling code. In a previous patch we added logging
code to the DDNS handling. This code included a bug that caused it
to attempt to dereference a NULL pointer and eventually segfault.
While reviewing the code as we addressed this problem, we determined
that some of the updates to the lease structures would not work as
planned since the structures being updated were in the process of
being freed: these updates were removed. In addition we removed an
incorrect call to the DDNS removal function that could cause a failure
during the removal of DDNS information from the DNS server.
Thanks to Jasper Jongmans for reporting this issue.
([ISC-Bugs #27078], CVE: CVE-2011-4868, bnc#741239)
- Fixed close-on-exec patch to not set it on stderr (bnc#732910)
- Fixed incorrect "a" array type option parsing causing to discard
e.g. classless static routes from lease file [reported as ISC-Bug
27289] and zero-length option parsing such as dhcp6.rapid-commit
in dhclient6 [reported as ISC-Bug 27314] (bnc#739696).
- Fixed dhclient to include its pid number in syslog messages.
- Fixed to use P2 in the spec version, not in the release tag.
- Updated to ISC dhcp-4.2.3-P1 release, providing security fix for
a DoS due to processing certain regular expressions (bnc#735610)
and several important DDNS related fixes:
* Add a check for a null pointer before calling the regexec function.
Without out this check we could, under some circumstances, pass
a null pointer to the regexec function causing it to segfault.
Thanks to a report from BlueCat Networks. [ISC-Bugs #26704]
CVE-2011-4539.
* Fix the code that checks for an existing DDNS transaction to
cancel when removing DDNS information, so that we will continue
with the processing if we have a lease even if it doesn't have an
outstanding transaction. [ISC-Bugs #24682]
* Add AM_MAINTAINER_MODE to configure.ac to avoid rebuilding
configuration files. [ISC-Bugs #24107]
* Add support for passing DDNS information to a DNS server over
an IPv6 address. [ISC-Bugs #22647]
* Enhanced patch for 23595 to handle IPv4 fixed addresses more
cleanly. [ISC-Bugs #23595]
- Refreshed ldap patch
- add libtool as buildrequire to make the spec file more reliable
- Commented out all configuration examples in /etc/dhcpd.conf and
dhcp6.conf (bnc#715473).
- Enabled dhcp6.rapid-commit in /etc/dhclient6.conf config file.
- Removed useless provides/obsoletes from spec file.
- Set the DHCPD_CONF_INCLUDE_FILES and the DHCPD6_CONF_INCLUDE_FILES
variables to /etc/dhcpd.d and /etc/dhcpd6.d by default, so there
are well-defined directories expected to contain additional config
files (bnc#690585).
- Updated to ISC dhcp-4.2.2 release, providing two security fixes
(CVE-2011-2748,CVE-2011-2749,[ISC-Bugs #24960],bnc#712653), that
allowed remote attackers to cause a denial of service (a daemon
exit) via crafted BOOTP packets. Further also DNS update fix to
detect overlapping pools or misconfigured fixed-address entries,
that caused a server crash during DNS update and other fixes.
For a complete list, please see the RELNOTES file provided in
the package and also available online at http://www.isc.org/.
- Merged/adopted dhclient option-checks, send-hostname-rml, ldap
patch, xen-checksum, close-on-exec patches and removed obsolete
in6_pktinfo-prototype and relay-no-ip-on-interface patches.
- Moved server pid files into chroot directory even chroot is
not used and create a link in /var/run, so it can write one
when started as user without chroot and avoid stop problems
when the chroot sysconfig setting changed (bnc#712438).
- Disabled log-info level messages in dhclient(6) quiet mode to
avoid excessive logging of non-critical messages (bnc#711420).
- Fixed dhclient-script to not remove alias IP when it didn't
changed to not wipe out iptables connmark when renewing the
lease (bnc#700771). Thanks to James Carter for the patch.
- Fixed DDNS-howto.txt reference in the config file; it has been
moved to the dhcp-doc package (bnc#697279).
- Removed GPL licensed files (bind-*/contrib/dbus) from bind.tgz
to ensure, they're not used to build non-GPL dhcp (bnc#714004).
- Changed to apply strict-aliasing/RELRO for >= 12.x only
- Correct previous change.
- THis is a long running network daemon, link with
full RELRO security enhancements.
- remove -fno-strict-aliasing from CFLAGS, no longer needed.
- Import redhat's patch to open all needed FDs with O_CLOEXEC
so they dont leak.
- Removed obsolete sles8 compatibility dependencies, fixed
to avoid non-functional sles_version conditionals.
- Fixed to not introduce separate dhcp-doc package on sles,
use versioned provides/obsoletes, improved conditionals.
- Fixed dhclient-script typo causing ISC DHCPv6 client to execute
ifup pre-down scripts also while renew, when the ipv6 address
did not changed (bnc#690859).
- Implemented optional ldap connect retry loop during the initial
startup of the dhcp server in cases where the ldap server is not
yet started. Set the ldap-init-retry <num> option in dhcpd.conf
to enable it (bnc#627617). Merged in the actual ldap patch.
- Cleaned up init script error reporting, no -TERM for killproc.
- Updated to ISC dhcp-4.2.1-P1 release, that provides most of the
dhclient pretty escape and string option checks. Merged to use
relaxed domain-name option check causing a regression, when the
server is misusing it to provide a domain list (compatibility to
attic clients) and does not provide it via domain-search option;
pretty escape semicolon as well (bnc#675052, CVE-2011-0997).
- Discard string options such as host and domain names containing
disallowed characters or beeing too long. This proctive patch
limits root-path to a-zA-Z0-9, #%+-_:.,@~/\[]= and a space
(bnc#675052, CVE-2011-0997).
- Updated to ISC DHCP 4.2.1 release (bnc#680298), that provides
following fixes (digest):
* Several fixes to OMAPI, cleanup of dereferenced pointers in
the omapi handle, handling of pipe failures and status code
in omapi signal handler that may cause connect failure and
100% CPU use.
* Handle some DDNS corner cases better
* Several fixes to lease input and output
* Corrected side effect of printing all data strings as hex.
* Host record references leaks causing applying config to all
innocent clients.
* Memory leak when parsing a domain name
* Fixes to configuration parsing including infinite loop.
* Fixed for unexpected abort caused by a DHCPv6 decline.
For the complete list see the RELNOTES file, that is available
also online at http://ftp.isc.org/isc/dhcp/dhcp-4.2.1-RELNOTES.
- Removed obsolete optional-value-infinite-loop, no-libcrypto
and CVE-2011-0413.bnc667655 patches.
- Merged the dhclient-send-hostname and ldap patches.
- dhclient-script: fixed typo causing that only global settings
to set hostname and default route were applied for primary
and never per interface settings (bnc#673792).
- Added dhcp-4.2.0-xen-checksum.patch by David Cantrell to handle
xen partial UDP checksums (bnc#668194).
- Applied security fix for unexpected abort caused by a DHCPv6
decline message (CVE-2011-0413, VU#686084, bnc#667655).
- Fixed dhclient.conf to request the domain-search option.
- Updated to ISC DHCP 4.2.0-P2, a security release fixing the
handling of connection requests on the failover port.
Previously a connection request from a source that wasn't
listed as a failover peer would cause the server to become
non-responsive. ([ISC-Bugs #22679] CERT: VU#159528 CVE:
CVE-2010-3616, bnc#659059).
- Enable ldap CASA support on SLE only.
- Fixed to use same/correct dhcrelay6 interface variables in the
sysconfig file and in the dhcrelay6 init script.
- Updated to ISC DHCP 4.2.0-P1 release, providing a security fix to
handle a relay forward message with an unspecified address in the
link address field. Previously such a message would cause the
server to crash. Thanks to a report from John Gibbons.
[ISC-Bugs #21992] CERT: VU#102047 CVE: CVE-2010-3611 (bnc#650902)
The 4.2.0 version is a feature release, implementing asynchronous
DDNS processing and includes "The LDAP Patch".
For a complete list of changes from any previous release, please
consult the RELNOTES file within the source distribution or on
the ISC website: http://www.isc.org/software/dhcp/420
- Fixed compilation to avoid segfaults as soon as ldap is enabled,
merged our ldap patches from 4.1.x branch.
- Fixed a dhcrelay segfault while receiving packets on interfaces
without any IPv4 address assigned (bnc#631305, reported upsteam
as [ISC-Bugs #22409]).
- Fixed a common infinite loop while parsing options with optional
parts in the value such as in slp-service-scope option (bnc#643845,
reported upsteam as [ISC-Bugs #22410]).
- Fixed init scripts to report correct LSB codes in status action,
when the config file or the binary do not exists (bnc#640336).
- Fixed syntax of a check in the rcdhcrelay[6] (bnc#648580)
- Avoid pid check error message in the rcdhcpd[6] (bnc#646875)
- Fixed server lease file path in contrib/listlease and leasestate
changed to extract contrib and examples using setup macro.
- Renamed rfc3442-classless-static-routes_raw in /etc/dhclient.conf
to rfc3442-classless-static-routes for compatibility with the
NetworkManager making use of /etc/dhclient.conf now and adopted
/sbin/dhclient-script (bnc#625770).
- Fixed ldap option number conflicting with new options (bnc#625358)
- Added a fix for an lpf bind error messages making it easier to
localize problems (bnc#617795)
- Updated to ISC DHCP 4.1.1-P1 patch release, which contains
a pair of bug fixes including one for a security related bug
(bnc#612546, CVE-2010-2156):
* A bug was fixed that could cause the DHCPv6 server to
advertise/assign a previously allocated (active) lease to a
client that has changed subnets, despite being on different
shared networks. Dynamic prefixes specifically allocated in
shared networks also now are not offered if the client has
moved. [ISC-Bugs #21152]
* Accept a client id of length 0 while hashing. Previously the
server would exit if it attempted to hash a zero length client
id, providing attackers with a simple denial of service attack.
[ISC-Bugs #21253]
- Added rc.dhcrelay6 as source in the spec file
- Fixed dhcprelay scripts to source sysconfig file correctly
- Fixed spec file typo in arping path require, enabled ldap
- Fixed a dhclient option name and new/old ip address check
- Updated to ISC DHCP 4.1.1, the current 4.x series production
release, providing DHCPv6 client/server/relay implementation.
The programs act in DHCPv6 mode, when the -6 start option is set.
We install separate init scripts with a 6 at the end to handle
them, that is /etc/init.d/dhcpd6 and dhrelay6. Further, there is
also a link to the binaries with a 6 at the end, e.g. dhclient6,
making it visible, that the installed version supports DHCPv6.
- Moved additional documentation to a separate dhcp-doc package.
- Changed to provide config files and scripts as source files
instead of patches to the ISC scripts.
- Adopted spec file and config/scripts, merged in all patches.
- Implemented RFC 3442 classless static routes support in the
dhclient-script (bnc#555870).
- Updated to ISC DHCP 3.1-ESV, an extended support version release
which includes a small number of bug fixes (bnc#592178) over the
3.1.3 version:
* Modified the handling of a connection to avoid releasing the
omapi io object for the connection while it is still in use.
One symptom from this error was a segfault when a failover
secondary attempted to connect to the failover primary if
their clocks were not synchronized.
* Fix test in dhcp_interface_signal_handler to check that the
inner handler has a signal_handler before calling it.
* When using 'ignore client-updates;', the FQDN returned to the
client is no longer truncated to one octet.
* Clean up some compiler warnings - ticket 19054.
- Fixed vlan interface check in dhcpd-restart-hook if-up.d script
(bnc#599702)
- Touch dhclient.leases in post-install script instead to provide
an empty file, versioned provides/obsoletes (rpmlint warnings).
- Fixed dhclient-script to call ifup -o dhcp and signal "complete"
to ifup when all configuration is done (bnc#585380,bnc#518219).
- Enable parallel building
- Use large PIE model on all SPARC flavors
- Fixed dhclient-script to use correct sysconfig run dir path
to not to break the defaultroute/hostname setup (bnc#555095).
- Don't request any specific lease-time by default (bnc#516459).
- Fixed dhclient-script to forward new_domain_search as DNSSEARCH
to netconfig.
- Updated to dhcp-3.1.3 maintenance release fixing several issues
(a digest, see RELNOTES for the complete list):
* Remove infinite loop in token_print_indent_concat().
* A parser bug was fixed that segfaulted if site-option-space
was tried to be used interchangeably with vendor-option-space.
* Two uninitialized stack structures are now memset to zero,
thanks to patch from David Cantrell at Red Hat.
* Memory leak in the load_balance_mine() function is fixed. This
would leak ~20-30 octets per DHCPDISCOVER packet while failover
was in use and in normal state.
* Fixed setting hostname in Linux hosts that require hostname
argument to be double-quoted. Also allow server-provided
hostname to override hostnames 'localhost' and '(none)'.
* Added client support for setting interface MTU and metric,
thanks to Roy "UberLord" Marples <roy@xxxxxxxxxxxx>.
* Fixed failover reconnection retry code to continue to retry to
reconnect rather than restarting the listener.
* Fixed a bug where an OMAPI socket disconnection message would
not result in scheduling a failover reconnection, if the link
had not negotiated a failover connect yet (e.g.: connection
refused, asynch socket connect() timeouts).
* Versions 3.0.x syntax with multiple name->code option
definitions is now supported. Note that, similarly to 3.0.x,
for by-code lookups only the last option definition is used.
* Fixed a fenceposting bug when a client had two host records
configured, one using 'uid' and the other using 'hardware
ethernet'. CVE-2009-1892
- Updated to dhcp-3.1.3-ldap-patch-mt-01 including previous fixes.
- Merged dhclient script, removed obsolete CVE-2009-1892 fix.
- Replaced mt-02 ldap patch from old git repository with equivalent
one (dhcp-3.1.2p1-ldap-patch-mt-02) from a new repository with
fixed patch history (http://www.suse.de/~mt/git/dhcp-ldap.git/).
- Added dhcpd-restart-hook if-up.d script that restarts dhcp server
while network restart when a virtual interfaces as bridge, bond
or vlan goes up again (bnc#517810).
- Applied fix for a dhcp client id DoS (CVE-2009-1892, bnc#519413).
- Updated to dhcp-3.1.2p1 maintenance release fixing following
issues:
* A stack overflow vulnerability was fixed in dhclient that could
allow remote attackers to execute arbitrary commands as root on
the system, or simply terminate the client, by providing an
over-long subnet-mask option.
* A double-dereference in dhclient transmission of DHCPDECLINEs
was repaired.
* Fix handling of -A and -a flags in dhcrelay; it was failing
to expand packet size as needed to add relay agent options.
* Corrected list of failover state values in dhcpd man page.
* Fixed a bug that caused some request types to be logged
incorrectly.
* Fixed a coredump when adding a class via OMAPI.
* Clients that sent a parameter request list containing the
routers option before the subnet mask option were receiving
only the latter. Fixed.
* The server wasn't always sending the FQDN option when it should.
* A partner-down failover server no longer emits 'peer holds all
free leases' if it is able to newly-allocate one of the peer's
leases.
* A cosmetic bug in DHCPDECLINE processing was fixed which caused
all successful DHCPDECLINEs to be logged as "not found" rather
than "abandoned".
* Some failover debugging #defines have been better defined and
some high frequency messages moved to a deeper debugging symbol.
* The CLTT parameter in failover is now only updated by client
activity, and not by failover binding updates.
* Failover BNDUPD messages are now discarded if they conflict with
an update that has been trasnmitted, but not acknowledged.
* A bug cleaning up unknown-xxx temporary option definitions was
fixed.
- Removed obsolete dhclient-no-dereference-twice patch
- Improved dhclient-script to apply global dhcp settings, when
there is no interface config (bnc#480922).
- Enabled casa support in dhcp-ldap for >= sles 10 and => 11.1.
- Updated dhcp-3.1.2p1-ldap-patch-mt.11.2-02 merging all patches
flying around -- see http://www.suse.de/~mt/git/dhcp-ldap.git
and the git changelog at the begin of the patch.

==== dos2unix ====
Version update (7.3.4 -> 7.3.5)

- Use find -exec instead of find | xargs: helps handle cases for
files with spaces and quotes in their filenames.
- Update to 7.3.5

==== edict ====
Version update (20161126 -> 20170706)

- Update to new daily snapshot release 20170706
* More than 1500 new entries to edict; no specific changelog
known

==== folks ====
Version update (0.11.3 -> 0.11.4)
Subpackages: libfolks-data libfolks-eds25 libfolks-telepathy25
libfolks-tracker25 libfolks25

- Update to version 0.11.4:
+ Various fixes for Vala compiler and VAPI changes in upstream
projects.
+ Remove redundant locking.
+ Disable unknown BlueZ devices by default; BlueZ devices must
now be explicitly enabled via a configuration file before they
will be queried for personas.
+ Fix build with latest versions of valadoc.
+ Bugs fixed: bgo#781485, bgo#720274, bgo#778005, bgo#773011.
- Dummy changelog - fool repo-checker in seeing this is rebuilt.

==== gnome-keyring ====
Version update (3.20.0 -> 3.20.1)
Subpackages: gnome-keyring-32bit gnome-keyring-pam gnome-keyring-pam-32bit
libgck-modules-gnome-keyring

- Update to version 3.20.1:
+ Fix boolean logic error in ssh-agent.
+ Pass the correct argc to gkr_pam_client_run_operation
(bgo#766222).
+ Look for both dlopen and dlsym when configuring (bgo#766221).
+ Fix .so link in gnome-keyring-3 man page (bgo#767095).
+ Die if the XDG session we were started under goes away
(bgo#768943).
+ Shorten unlock keyring dialog title (bgo#770170).
+ Updated translations.
- Drop gnome-keyring-896818-reduce-head-msg-length.patch: Fixed
upstream.

==== irssi ====
Version update (1.0.3 -> 1.0.4)

- update to 1.0.4
- Fix null pointer dereference when parsing invalid timestamp (GL#10,
GL!15). Reported by Brian 'geeknik' Carpenter. CVE-2017-10965
boo#1047709
- Fix use-after-free condition when removing nicks from the internal
nicklist (GL#11, GL!16). Reported by Brian 'geeknik' Carpenter.
CVE-2017-10966
- Fix incorrect string comparison in DCC file names (#714).
- Fix regression in Irssi 1.0.3 where it would claim "Invalid time '-1'"
(#716, #722).
- Fix a bug when using \n to separate lines with expand_escapes (#723).
- Retain screen output on improper exit, to better see any error
messages (#287, #721).
- Minor help update (#729).

==== libgnomesu ====
Version update (2.0.0 -> 2.0.2)
Subpackages: libgnomesu0

- Version update to 2.0.2:
* Automate the package building in travis on github
* Fix the version stored in configure.ac
- Update to version 2.0.1:
* Update translations

==== libqt5-qtbase ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Concurrent-devel libQt5Concurrent5 libQt5Core-devel
libQt5Core-private-headers-devel libQt5Core5 libQt5DBus-devel libQt5DBus5
libQt5Gui-devel libQt5Gui-private-headers-devel libQt5Gui5 libQt5Network-devel
libQt5Network5 libQt5OpenGL-devel libQt5OpenGL5 libQt5PlatformHeaders-devel
libQt5PrintSupport-devel libQt5PrintSupport5 libQt5Sql-devel libQt5Sql5
libQt5Sql5-mysql libQt5Sql5-postgresql libQt5Sql5-sqlite libQt5Sql5-unixODBC
libQt5Test-devel libQt5Test5 libQt5Widgets-devel libQt5Widgets5 libQt5Xml-devel
libQt5Xml5 libqt5-qtbase-common-devel libqt5-qtbase-devel
libqt5-qtbase-platformtheme-gtk3

- Recommend libqt5-qttranslations in libQt5Core5 (boo#1027925)
- Fix typo in description (boo#1043338)
- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/
- Drop upstreamed patches:
- fix-cmake-module-version.patch
- dont-destroy-foreign-windows.patch
- native-children-hidpi-offset.patch
- Force use of libproxy, that switch got lost apparently
- Add patch to allow build with at-spi2: 0001-Fix-at-spi2-build.patch

==== libqt5-qtconnectivity ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Bluetooth5 libQt5Bluetooth5-imports libQt5Nfc5
libQt5Nfc5-imports libqt5-qtconnectivity-tools

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtdeclarative ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQtQuick5 libqt5-qtdeclarative-devel libqt5-qtdeclarative-tools

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtgraphicaleffects ====
Version update (5.9.0 -> 5.9.1)

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtimageformats ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libqt5-qtimageformats-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtlocation ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Location5 libQt5Positioning5 libqt5-qtlocation-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtmultimedia ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Multimedia5 libqt5-qtmultimedia-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtquickcontrols ====
Version update (5.9.0 -> 5.9.1)

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtscript ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Script5 libqt5-qtscript-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtsensors ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Sensors5 libQt5Sensors5-imports libqt5-qtsensors-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtserialport ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5SerialPort5 libqt5-qtserialport-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtsvg ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Svg5 libqt5-qtsvg-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qttools ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5Designer5 libQt5DesignerComponents5 libQt5Help5
libqt5-linguist libqt5-linguist-devel libqt5-qdbus libqt5-qtpaths
libqt5-qttools-devel libqt5-qttools-doc

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtwebchannel ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtwebengine ====
Version update (5.9.0 -> 5.9.1)

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/
- Drop upstreamed patches:
* arm64-linux.patch
* arm64-toolchain.patch

==== libqt5-qtwebkit ====
Subpackages: libQt5WebKit5 libQt5WebKit5-devel libQt5WebKit5-imports
libQt5WebKitWidgets-devel libQt5WebKitWidgets5

- Add patch to workaround crash if compiled with GCC7:
* workaround-gcc7-crash.patch
- Set minimum amount of RAM in _constraints to 8 GiB

==== libqt5-qtwebsockets ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5WebSockets5 libQt5WebSockets5-imports
libqt5-qtwebsockets-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtx11extras ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5X11Extras5 libqt5-qtx11extras-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libqt5-qtxmlpatterns ====
Version update (5.9.0 -> 5.9.1)
Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-devel

- Update to 5.9.1
* For more details please see:
http://blog.qt.io/blog/2017/06/30/qt-5-9-1-released/

==== libsolv ====
Version update (0.6.27 -> 0.6.28)
Subpackages: libsolv-devel libsolv-tools perl-solv python-solv

- make peace with newer perl versions
- fix memory leak in bindings
- add pool_best_solvables() function
- fix 64bit integer parsing from RPM headers
- bump version to 0.6.28

==== libwnck ====
Version update (3.20.1 -> 3.24.0)
Subpackages: libwnck-3-0 typelib-1_0-Wnck-3_0

- Update to version 3.24.0:
+ Bump GTK+ required version to 3.22.0.
+ Various refactoring to remove deprecated code.
+ Add an option to disable the tasklist scroll event.
+ Add wrap-on-scroll option for WnckPager widget.
+ wnck-image-menu-item: fix memory leak.
+ Updated translations.
- Replace intltool with gettext BuildRequires following upstream
changes.

==== libzypp ====
Version update (16.12.0 -> 16.13.0)

- Adapt loop mounting of iso images (bsc#1038132, bsc#1033236)
- Adjust zypp.conf for openSUSE Tumbleweed (bsc#1031756)
- Change arch variable names conflicting with compiler macros (fixes #70)
- Fix potential crash if repo has no baseurl (bnc#1043218)
- version 16.13.0 (0)

==== lvm2 ====
Version update (2.02.170 -> 2.02.172)
Subpackages: liblvm2app2_2 liblvm2cmd2_02

- Don't create symlink for invisible device like thin-pool (bsc#1046591)
* drop 10-dm.rules-Reset-state-variable-for-spurious-events.patch
- Update to LVM2.2.02.172
- Cleanup spec file, and refresh patches
* removed device-mapper-link.patch
* removed bug-1033691_tests-missed-to-export-lvm-binary-for-fsadm.patch
* removed Makefile-skip-compliling-daemons-lvmlockd-directory.patch
* added bug-1037309_Makefile-skip-compliling-daemons-lvmlockd-directory.patch

==== nmap ====
Version update (7.40 -> 7.50)

- Nmap 7.50:
* Integrated all of your service/version detection fingerprints
submitted from September to March (855 of them). The signature
count went up 2.9% to 11,418. We now detect 1193 protocols from
apachemq, bro, and clickhouse to jmon, slmp, and zookeeper.
Highlights: http://seclists.org/nmap-dev/2017/q2/140
* Many added NSE scripts, OS fingerprints, service probes
* See https://nmap.org/changelog.html#7.50 for the complete changelog.

==== plasma5-integration ====

- Move the Recommends: %{name}-plugin-lang to the
plasma5-integration-plugin sub package, otherwise the
translations won't get installed as there is no main package
(boo#1027925)

==== python-pytz ====
Subpackages: python2-pytz python3-pytz

- add 0001-Fix-tests-for-older-timezone-versions.patch?. This fixes
the tests on SLE12SP2 and SLE12SP3

==== qalculate ====
Version update (0.9.10 -> 0.9.12)
Subpackages: libqalculate-devel

- Update to 0.9.12:
* Fixes to unit parsing in adaptive parsing mode, build fixes and other minor
bug fixes
- Update to 0.9.11:
* Mixed units conversion (e.g. "15 in = 1 ft + 3 in" and "3,2 h = 3 h + 12
min")
* Fixes to unit conversion (e.g. "1/(1 ns) to GHz")
* Fix slow calculation of exponentiations with big numerators in exponents
(e.g. "2^0.333333333")
* Critical fixes for RPN syntax
* Fix degree sign
* Fix transformation of last arguments to vector, when only one last argument
(fixes function("1+\x"; 1))
* Plot functions (makes possible plotting, using gnuplot, in qalc)
* "Swap, "pop", "copy", "rotate" and "move" commands for RPN stack
manipulation in qalc
* Enable both (or one of) RPN stack and syntax with the "rpn" command in qalc
* New commands for creation of simple functions and variables (without
calculation of the expression) in qalc
* Various other minor enhancements and bug fixes...

==== strace ====
Version update (4.17 -> 4.18)

- Update to strace 4.18
* Improvements
* Implemented decoding of SCM_TIMESTAMP* control messages.
* Implemented decoding of netlink NLMSG_DONE messages.
* Implemented decoding of netlink generic nlmsg_type and nlmsg_flags.
* Implemented decoding of NETLINK_AUDIT, NETLINK_NETFILTER, NETLINK_ROUTE,
NETLINK_SELINUX, NETLINK_SOCK_DIAG, and NETLINK_XFRM message types.
* Implemented decoding of NETLINK_GENERIC protocol families.
* Implemented basic protocol specific decoding of AF_INET, AF_INET6,
AF_NETLINK, AF_PACKET, AF_SMC, and AF_UNIX messages of NETLINK_SOCK_DIAG.
* Implemented basic decoding of netlink attributes.
* Implemented basic protocol specific decoding of AF_INET, AF_NETLINK,
AF_PACKET, AF_SMC, and AF_UNIX netlink attributes of NETLINK_SOCK_DIAG.
* Implemented decoding of inet_diag_msg, netlink_diag_msg, and unix_diag_msg
netlink attributes of NETLINK_SOCK_DIAG.
* Updated lists of ARPHRD_*, KEYCTL_*, NDIAG_SHOW_*, RTM_*, SCM_*, SCTP_*,
SO_*, V4L2_*, and prctl ARCH_* constants.
* Updated lists of ioctl commands from Linux 4.12.
* Bug fixes
* In interactive mode (-I2), those signals that were blocked at startup
will remain blocked for the whole period of strace execution.
* strace no longer resets SIGCHLD handler in tracees to the default action.
* When traced command is terminated by a blocked signal, strace unblocks
that signal to ensure its own termination with the same signal.
* Fixed corner cases in decoding of old sigaction syscall.
* Fixed build with old kernel headers on mips.
* Fixed build on aarch64 and tile with glibc >= 2.26.
* Fixed build on arc and nios2.

==== xdg-desktop-portal-gtk ====
Subpackages: xdg-desktop-portal-gtk-lang

- Don't use BuildRequires gtk+-wayland-3.0 if the SUSE version is
below 1330, which prevent any version other than Tumbleweed and
the upcoming SLE 15 and Leap 15 to have this enabled.

==== xine-lib ====
Subpackages: libxine-devel libxine2 libxine2-pulse

- Remove dependency to gcc5
- Use simple bcond for ffmpeg

==== xorg-x11-server ====
Subpackages: xorg-x11-server-sdk

- U_Xi-Do-not-try-to-swap-GenericEvent.patch,
U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch,
U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch,
U_dix-Disallow-GenericEvent-in-SendEvent-request.patch
* Fix security issues in event handling. (bnc#1035283,
CVE-2017-10971, CVE-2017-10972)
- enable Xwayland also for s390x (bsc#1047173)


--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >