Mailinglist Archive: opensuse-factory (367 mails)

< Previous Next >
[opensuse-factory] Leap 42.3 Build 0313 released!

Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:

When you reply to discuss some issues, make sure to change the subject.
Please use the test plan at
to record your testing efforts and use bugzilla to report bugs.

Packages changed:
yast2-network (3.2.29 -> 3.2.30)
yast2-ruby-bindings (3.2.13 -> 3.2.14)

=== Details ===

==== GraphicsMagick ====
Subpackages: GraphicsMagick-devel libGraphicsMagick-Q16-3
libGraphicsMagick3-config libGraphicsMagickWand-Q16-2

- complementary fix for CVE-2017-8350 [bsc#1036985 c13-c21]
* modified GraphicsMagick-CVE-2017-8350.patch

==== emacs ====
Subpackages: emacs-info emacs-nox emacs-x11 etags

- Port change for boo#943793 back to SLES-12 (bsc#1044093)
- Fix small bug in emacs-24.3-gtk-3.10.patch which now allows
to scroll even if keyboard is used (boo#1035645)
- Use socket activation to get dbus up before starting emacs
- Fix wrapper script to check modern dbus session (boo#1032759)

==== kdump ====

- kdump-activate-QETH-devices.patch: Activate QETH network devices
- Drop kdump-do-not-reload-FADUMP-on-CPU-memory-hotplug.patch:
Reload is needed even with fadmp (bsc#1040567).
- kdump-fail-if-fadump-cannot-be-registered.patch: Fail at startup
if fadump cannot be registered (bsc#1040567).
- kdump-do-not-reload-FADUMP-on-CPU-memory-hotplug.patch: Do not
reload on CPU/memory hotplug when using FADUMP (bsc#1040567).

==== libICE ====
Subpackages: libICE-devel libICE6 libICE6-32bit

- U_Use-getentropy-if-arc4random_buf-is-not-available.patch
* Use getentropy() if arc4random_buf() is not available;
further fallbacks to usage of getrandom() and direct read
from /dev/urandom if this is not available either
(bnc#1025068, CVE-2017-2626)
- tagged baselibs.conf as source in specfile

==== libXdmcp ====
Subpackages: libXdmcp-devel libXdmcp6

- U_Use-getentropy-if-arc4random_buf-is-not-available.patch
* Use getentropy() if arc4random_buf() is not available;
further fallbacks to usage of getrandom() and direct read
from /dev/urandom if this is not available either
(bsc#1025046, CVE-2017-2625)
- U_Fix-compilation-error-when-arc4random_buf-is-not-ava.patch
* fix build error
* Also rename emulate_getrandom_buf() into
insecure_getrandom_buf() as requested in the previous patch
* Last, getbits() expects an unsigned char, so remove the warning.

==== libcares2 ====

- Add patch to fix bsc#1044946 CVE-2017-1000381:
* CVE-2017-1000381.patch

==== libgcrypt ====
Subpackages: libgcrypt-devel libgcrypt20 libgcrypt20-32bit

- Security fix [CVE-2017-7526, bsc#1046607]
* libgcrypt-CVE-2017-7526-1.6.1-2.patch
- Hardening against local side-channel attack
* libgcrypt-CVE-2017-7526-1.6.1-1.patch
- Factored code for function (secret) and added new functions
(secret_core_std, secret_core_crt) in cipher/rsa.c

==== libqt5-qtbase ====
Subpackages: libQt5Concurrent-devel libQt5Concurrent5 libQt5Core-devel
libQt5Core-private-headers-devel libQt5Core5 libQt5DBus-devel libQt5DBus5
libQt5Gui-devel libQt5Gui-private-headers-devel libQt5Gui5 libQt5Network-devel
libQt5Network5 libQt5OpenGL-devel libQt5OpenGL5 libQt5PlatformHeaders-devel
libQt5PrintSupport-devel libQt5PrintSupport5 libQt5Sql-devel libQt5Sql5
libQt5Sql5-mysql libQt5Sql5-postgresql libQt5Sql5-sqlite libQt5Sql5-unixODBC
libQt5Test-devel libQt5Test5 libQt5Widgets-devel libQt5Widgets5 libQt5Xml-devel
libQt5Xml5 libqt5-qtbase-common-devel libqt5-qtbase-devel

- Recommend libqt5-qttranslations in libQt5Core5 (boo#1027925)
- Fix typo in description (boo#1043338)

==== libquicktime ====

- add libquicktime-1.2.4-multiple_vulnerabilities.patch to fix the
following security issues:
* CVE-2017-9122 [bsc#1044077]
* CVE-2017-9123 [bsc#1044009]
* CVE-2017-9124 [bsc#1044008]
* CVE-2017-9125 [bsc#1044122]
* CVE-2017-9126 [bsc#1044006]
* CVE-2017-9127 [bsc#1044002]
* CVE-2017-9128 [bsc#1044000]

==== libwacom ====
Subpackages: libwacom-data libwacom2

- Build wacom udev rules (boo#1041714)
fixes libinput error: libinput bug: Device 'Wacom BambooPT 2FG Small Pad'
does not meet tablet criteria. Ignoring this device.

==== llvm ====
Subpackages: libLLVM libLLVM-32bit

- Increase disk requirement to 20G to fix build on i586.

==== polkit-gnome ====
Subpackages: polkit-gnome-lang

- patch license to follow standard
- Update to version 0.105:
+ Various build fixes
+ Updated translations.
- Update to version 0.104:
+ Updated translations.
- Update to version 0.103:
+ Drop polkit-gtk library.
+ Drop support for GTK+ 2.
+ Build fixes.
- Drop libpolkit-gtk-1-0 and libpolkit-gtk-1-devel subpackages,
since the library got removed. Note that nothing is using this
library in Factory.
- Stop passing --with-gtk=3.0 to configure: this option is now
- Stop passing --libexecdir=%{_libexecdir}/polkit-gnome to
configure: we're happy with the standard libexecdir.
- Remove gtk-doc BuildRequires and stop passing --enable-gtk-doc to
configure: such documentation only existed with the library.
- Re-enable parallel build.
- Update do not add
polkit-gnome in the Exec path, since we changed the libexecdir.
- Update to version 0.102:
+ Use GtkBox instead of GtkHBox
+ Updated translations.
- Fix path for polkit agent on x86_64 in by replacing @LIBDIR@ in
- Update to version 0.101:
+ Return error when authentication dialog is dismissed
+ Fix crashers if icons cannot be loaded
+ Don't use deprecated polkit API
+ Fix warnings with gcc 4.6
+ Connect to the session bus
- Changes from version 0.100:
+ Make --with-gtk work with introspection
+ Nuke desktop file for autostart
+ Don't use a status icon for temporary authorizations
+ Use avatar-default instead of stock_person
+ Don't use gtk_dialog_set_has_separator
+ Don't use gtk_widget_hide_all
+ Add a --with-gtk configure option
- Drop polkit-gnome-OnlyShowIn.patch: this is obsolete now.
- Add as a source a .desktop file to start polkit agent: it was
removed from tarball, but we still need it.
- Use gtk3-devel BuildRequires instead of gtk2-devel, and pass
- -with-gtk=3.0 to configure to build with gtk3.
- added supplements for xfce4-session and lxsession so polkit-gnome
gets installed by default for LXDE/XFCE
- Update to version 0.99:
+ Fix up --string-prefix usage to work with latest
- Recommend instead of require lang package since it's not mandatory.
- Update to version 0.97:
+ Compile with -DGSEAL_ENABLE (bgo#616386)
+ Remove lock down functionality
+ Port from dbus-glib to gdbus
+ Avoid deprecated polkit_authority_get() function
+ Hide the agent autostart desktop file
+ Use standard icon names
- Changes from version 0.96:
+ Fix bug with authenticating multiple possible users
+ Updated translations.
- Changes from version 0.95:
+ Set status icon invisible before unref'ing it
+ Add test-case for fdo#23867
+ Add support for locking down actions
+ Add GObject Introspection for libpolkit-gtk-1
+ In the example, print backend details on stdout
+ Support multiple outstanding authentication requests
+ Use new API in polkit 0.95 for lock down
+ Updated translations.
- Rebase polkit-gnome-OnlyShowIn.patch.
- Rebase polkit-gnome-alternative-button-order-kde.patch.
- Drop polkit-gnome-fix-hide-status-icon-kde.patch: fixed upstream.
- Add gobject-introspection-devel BuildRequires to have
introspection support.
- Change polkit-devel BuildRequires to >= 0.97.
- Disable parallel build for now since it fails.
- Change Supplements to be on polkit and gnome-session instead of
just gnome-session: polkit-gnome is useless if polkit is not
- do not use the authentication agent in KDE (bnc#576248)
- Rename patches to comply with patch naming policy.
- use the authentication agent also in KDE (bnc#538897)
- use the proper button order in KDE
- fix status icon not hiding
- Update to version 0.94:
- Add library with a PolkitLockButton widget
- Make use of new API to better cope with one-shot authorizations
- Create libpolkit-gtk-1-0 package, and devel package.
- Add Supplements on gnome-session, since we want this installed by
default for GNOME.
- update to version 0.93
- Clean up spec file.
- initial import of polkit-gnome 0.92

==== systemd ====
Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1
libudev1-32bit systemd-32bit systemd-bash-completion systemd-logger
systemd-sysvinit udev

- Import commit 6c14b00040edfe5b60aadb6a195955990e8a423f
e2026f234 core:execute: fix fork() fail handling in exec_spawn() (bsc#1040258)
- Import commit 20b3d47e6505c3850d1ae175821dc896ea201bd3
d75f37071 only check signature job error if signature job exists (#6118)
e162b497f job: Ensure JobRunningTimeoutSec= survives serialization (#6128)
- Import commit 651d7679b0d4f93aa39557d67dd063f421d63762
e4c5ae561 core/mount: pass "-c" flag to /bin/umount (#6093)
c9a8292ad automount: handle expire_tokens when the mount unit changes its
state (#3434) (bsc#1040942)
96ff1f249 automount: rework propagation between automount and mount units
a9cd26c8a build: *really* install tmpfiles.d/systemd-remote.conf when
necessary (#6061)
70ad17e6c build: only install tmpfiles.d/systemd-remote.conf when necessary
262879be4 build: fix systemd-journal-upload installation
3798d3737 basic: Bugfix Detect XEN Dom0 as no virtualization (bsc#1036873)
5e11b17b4 basic: Debug-logging of Virtualisation detection
e4476be25 virt: make sure we don't ignore some errors
5dd3c811b fstab-generator: do not skip Before= ordering for noauto
mountpoints (#5547)
262d95fec resolved: bugfix of null pointer p->question dereferencing (#6020)
(bsc#1040614 CVE-2017-9217)
4f398c0e2 fstab-gen: don't convert device timeout into seconds when
initializing JobTimeoutSec
c45f3c6f0 man: loding.conf RemoveIPC= defaults to no
c34a0c88d core/device: Use JobRunningTimeoutSec= for device units
156582042 fstab-generator: Apply _netdev option also to device units
54d2b4e23 job: add JobRunningTimeoutSec for JOB_RUNNING state (bsc#1004995)
bd03ae2cc Export NVMe WWID udev attribute (#5348) (bsc#1038865)
f7f877939 rules: introduce disk/by-id (model_serial) symlinks for NVMe drives
ac36e2fe3 rules: add NVMe rules (#3136)
e9c9a30ff sysusers: make group shadow support configurable (bsc#1029516)
8e0d295a2 core: when deserializing a unit, fully restore its cgroup state
77cf84419 core: introduce cg_mask_from_string()/cg_mask_to_string()
- Fix systemd-sysv-convert when a package starts shipping service units
The database might be missing when upgrading a package which was
shipping no sysv init scripts nor unit files (at the time --save was
called) but the new version start shipping unit files.
- Fix indentation in systemd-sysv-convert
While at it, strip trailing whitespaces.
No functional changes.
- Disable group shadow support (bsc#1029516)
The new configure option will be imported during the next tarball

==== xfce4-session ====
Subpackages: libxfsm-4_6-0 xfce4-session-lang

- Do not mark %{_datadir}/xsessions/default.desktop as %ghost,
it needs to be installed as normal file.

==== yast2-network ====
Version update (3.2.29 -> 3.2.30)

- bnc#1046735
- do not update sysconfig when no IP is given in case of static
NIC configuration.
- 3.2.30

==== yast2-ruby-bindings ====
Version update (3.2.13 -> 3.2.14)

- Set proper title also for YaST2 System Log (bsc#1046153)
- 3.2.14

To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >
This Thread
  • No further messages