Mailinglist Archive: opensuse-factory (367 mails)

< Previous Next >
[opensuse-factory] Leap 42.3 Build 0313 released!

Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&version=42.3&build=0313&groupid=28
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Distribution&query_format=advanced&resolution=---&version=Leap%2042.3

When you reply to discuss some issues, make sure to change the subject.
Please use the test plan at
https://docs.google.com/spreadsheets/d/1AGKijKpKiJCB616-bHVoNQuhWHpQLHPWCb3m1p6gXPc/edit#gid=298435253
to record your testing efforts and use bugzilla to report bugs.

Packages changed:
GraphicsMagick
emacs
kdump
libICE
libXdmcp
libcares2
libgcrypt
libqt5-qtbase
libquicktime
libwacom
llvm
polkit-gnome
systemd
xfce4-session
yast2-network (3.2.29 -> 3.2.30)
yast2-ruby-bindings (3.2.13 -> 3.2.14)

=== Details ===

==== GraphicsMagick ====
Subpackages: GraphicsMagick-devel libGraphicsMagick-Q16-3
libGraphicsMagick3-config libGraphicsMagickWand-Q16-2

- complementary fix for CVE-2017-8350 [bsc#1036985 c13-c21]
* modified GraphicsMagick-CVE-2017-8350.patch

==== emacs ====
Subpackages: emacs-info emacs-nox emacs-x11 etags

- Port change for boo#943793 back to SLES-12 (bsc#1044093)
- Fix small bug in emacs-24.3-gtk-3.10.patch which now allows
to scroll even if keyboard is used (boo#1035645)
- Use socket activation to get dbus up before starting emacs
- Fix emacs.sh wrapper script to check modern dbus session (boo#1032759)

==== kdump ====

- kdump-activate-QETH-devices.patch: Activate QETH network devices
(bsc#1038669).
- Drop kdump-do-not-reload-FADUMP-on-CPU-memory-hotplug.patch:
Reload is needed even with fadmp (bsc#1040567).
- kdump-fail-if-fadump-cannot-be-registered.patch: Fail at startup
if fadump cannot be registered (bsc#1040567).
- kdump-do-not-reload-FADUMP-on-CPU-memory-hotplug.patch: Do not
reload on CPU/memory hotplug when using FADUMP (bsc#1040567).

==== libICE ====
Subpackages: libICE-devel libICE6 libICE6-32bit

- U_Use-getentropy-if-arc4random_buf-is-not-available.patch
* Use getentropy() if arc4random_buf() is not available;
further fallbacks to usage of getrandom() and direct read
from /dev/urandom if this is not available either
(bnc#1025068, CVE-2017-2626)
- tagged baselibs.conf as source in specfile

==== libXdmcp ====
Subpackages: libXdmcp-devel libXdmcp6

- U_Use-getentropy-if-arc4random_buf-is-not-available.patch
* Use getentropy() if arc4random_buf() is not available;
further fallbacks to usage of getrandom() and direct read
from /dev/urandom if this is not available either
(bsc#1025046, CVE-2017-2625)
- U_Fix-compilation-error-when-arc4random_buf-is-not-ava.patch
* fix build error
* Also rename emulate_getrandom_buf() into
insecure_getrandom_buf() as requested in the previous patch
reviews.
* Last, getbits() expects an unsigned char, so remove the warning.

==== libcares2 ====

- Add patch to fix bsc#1044946 CVE-2017-1000381:
* CVE-2017-1000381.patch

==== libgcrypt ====
Subpackages: libgcrypt-devel libgcrypt20 libgcrypt20-32bit

- Security fix [CVE-2017-7526, bsc#1046607]
* libgcrypt-CVE-2017-7526-1.6.1-2.patch
- Hardening against local side-channel attack
* libgcrypt-CVE-2017-7526-1.6.1-1.patch
- Factored code for function (secret) and added new functions
(secret_core_std, secret_core_crt) in cipher/rsa.c

==== libqt5-qtbase ====
Subpackages: libQt5Concurrent-devel libQt5Concurrent5 libQt5Core-devel
libQt5Core-private-headers-devel libQt5Core5 libQt5DBus-devel libQt5DBus5
libQt5Gui-devel libQt5Gui-private-headers-devel libQt5Gui5 libQt5Network-devel
libQt5Network5 libQt5OpenGL-devel libQt5OpenGL5 libQt5PlatformHeaders-devel
libQt5PrintSupport-devel libQt5PrintSupport5 libQt5Sql-devel libQt5Sql5
libQt5Sql5-mysql libQt5Sql5-postgresql libQt5Sql5-sqlite libQt5Sql5-unixODBC
libQt5Test-devel libQt5Test5 libQt5Widgets-devel libQt5Widgets5 libQt5Xml-devel
libQt5Xml5 libqt5-qtbase-common-devel libqt5-qtbase-devel

- Recommend libqt5-qttranslations in libQt5Core5 (boo#1027925)
- Fix typo in description (boo#1043338)

==== libquicktime ====

- add libquicktime-1.2.4-multiple_vulnerabilities.patch to fix the
following security issues:
* CVE-2017-9122 [bsc#1044077]
* CVE-2017-9123 [bsc#1044009]
* CVE-2017-9124 [bsc#1044008]
* CVE-2017-9125 [bsc#1044122]
* CVE-2017-9126 [bsc#1044006]
* CVE-2017-9127 [bsc#1044002]
* CVE-2017-9128 [bsc#1044000]

==== libwacom ====
Subpackages: libwacom-data libwacom2

- Build wacom udev rules (boo#1041714)
fixes libinput error: libinput bug: Device 'Wacom BambooPT 2FG Small Pad'
does not meet tablet criteria. Ignoring this device.

==== llvm ====
Subpackages: libLLVM libLLVM-32bit

- Increase disk requirement to 20G to fix build on i586.

==== polkit-gnome ====
Subpackages: polkit-gnome-lang

- patch license to follow spdx.org standard
- Update to version 0.105:
+ Various build fixes
+ Updated translations.
- Update to version 0.104:
+ Updated translations.
- Update to version 0.103:
+ Drop polkit-gtk library.
+ Drop support for GTK+ 2.
+ Build fixes.
- Drop libpolkit-gtk-1-0 and libpolkit-gtk-1-devel subpackages,
since the library got removed. Note that nothing is using this
library in Factory.
- Stop passing --with-gtk=3.0 to configure: this option is now
gone.
- Stop passing --libexecdir=%{_libexecdir}/polkit-gnome to
configure: we're happy with the standard libexecdir.
- Remove gtk-doc BuildRequires and stop passing --enable-gtk-doc to
configure: such documentation only existed with the library.
- Re-enable parallel build.
- Update polkit-gnome-authentication-agent-1.desktop.in: do not add
polkit-gnome in the Exec path, since we changed the libexecdir.
- Update to version 0.102:
+ Use GtkBox instead of GtkHBox
+ Updated translations.
- Fix path for polkit agent on x86_64 in by replacing @LIBDIR@ in
polkit-gnome-authentication-agent-1.desktop.in.
- Update to version 0.101:
+ Return error when authentication dialog is dismissed
+ Fix crashers if icons cannot be loaded
+ Don't use deprecated polkit API
+ Fix warnings with gcc 4.6
+ Connect to the session bus
- Changes from version 0.100:
+ Make --with-gtk work with introspection
+ Nuke desktop file for autostart
+ Don't use a status icon for temporary authorizations
+ Use avatar-default instead of stock_person
+ Don't use gtk_dialog_set_has_separator
+ Don't use gtk_widget_hide_all
+ Add a --with-gtk configure option
- Drop polkit-gnome-OnlyShowIn.patch: this is obsolete now.
- Add as a source a .desktop file to start polkit agent: it was
removed from tarball, but we still need it.
- Use gtk3-devel BuildRequires instead of gtk2-devel, and pass
- -with-gtk=3.0 to configure to build with gtk3.
- added supplements for xfce4-session and lxsession so polkit-gnome
gets installed by default for LXDE/XFCE
- Update to version 0.99:
+ Fix up --string-prefix usage to work with latest
gobject-introspection
- Recommend instead of require lang package since it's not mandatory.
- Update to version 0.97:
+ Compile with -DGSEAL_ENABLE (bgo#616386)
+ Remove lock down functionality
+ Port from dbus-glib to gdbus
+ Avoid deprecated polkit_authority_get() function
+ Hide the agent autostart desktop file
+ Use standard icon names
- Changes from version 0.96:
+ Fix bug with authenticating multiple possible users
+ Updated translations.
- Changes from version 0.95:
+ Set status icon invisible before unref'ing it
+ Add test-case for fdo#23867
+ Add support for locking down actions
+ Add GObject Introspection for libpolkit-gtk-1
+ In the example, print backend details on stdout
+ Support multiple outstanding authentication requests
+ Use new API in polkit 0.95 for lock down
+ Updated translations.
- Rebase polkit-gnome-OnlyShowIn.patch.
- Rebase polkit-gnome-alternative-button-order-kde.patch.
- Drop polkit-gnome-fix-hide-status-icon-kde.patch: fixed upstream.
- Add gobject-introspection-devel BuildRequires to have
introspection support.
- Change polkit-devel BuildRequires to >= 0.97.
- Disable parallel build for now since it fails.
- Change Supplements to be on polkit and gnome-session instead of
just gnome-session: polkit-gnome is useless if polkit is not
installed.
- do not use the authentication agent in KDE (bnc#576248)
- Rename patches to comply with patch naming policy.
- use the authentication agent also in KDE (bnc#538897)
- use the proper button order in KDE
- fix status icon not hiding
- Update to version 0.94:
- Add library with a PolkitLockButton widget
- Make use of new API to better cope with one-shot authorizations
- Create libpolkit-gtk-1-0 package, and devel package.
- Add Supplements on gnome-session, since we want this installed by
default for GNOME.
- update to version 0.93
- Clean up spec file.
- initial import of polkit-gnome 0.92

==== systemd ====
Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1
libudev1-32bit systemd-32bit systemd-bash-completion systemd-logger
systemd-sysvinit udev

- Import commit 6c14b00040edfe5b60aadb6a195955990e8a423f
e2026f234 core:execute: fix fork() fail handling in exec_spawn() (bsc#1040258)
- Import commit 20b3d47e6505c3850d1ae175821dc896ea201bd3
d75f37071 only check signature job error if signature job exists (#6118)
(boo#1043758)
e162b497f job: Ensure JobRunningTimeoutSec= survives serialization (#6128)
(bsc#1004995)
- Import commit 651d7679b0d4f93aa39557d67dd063f421d63762
e4c5ae561 core/mount: pass "-c" flag to /bin/umount (#6093)
c9a8292ad automount: handle expire_tokens when the mount unit changes its
state (#3434) (bsc#1040942)
96ff1f249 automount: rework propagation between automount and mount units
a9cd26c8a build: *really* install tmpfiles.d/systemd-remote.conf when
necessary (#6061)
70ad17e6c build: only install tmpfiles.d/systemd-remote.conf when necessary
(#6051)
262879be4 build: fix systemd-journal-upload installation
3798d3737 basic: Bugfix Detect XEN Dom0 as no virtualization (bsc#1036873)
5e11b17b4 basic: Debug-logging of Virtualisation detection
e4476be25 virt: make sure we don't ignore some errors
5dd3c811b fstab-generator: do not skip Before= ordering for noauto
mountpoints (#5547)
262d95fec resolved: bugfix of null pointer p->question dereferencing (#6020)
(bsc#1040614 CVE-2017-9217)
4f398c0e2 fstab-gen: don't convert device timeout into seconds when
initializing JobTimeoutSec
c45f3c6f0 man: loding.conf RemoveIPC= defaults to no
c34a0c88d core/device: Use JobRunningTimeoutSec= for device units
(bsc#1004995)
156582042 fstab-generator: Apply _netdev option also to device units
(bsc#1004995)
54d2b4e23 job: add JobRunningTimeoutSec for JOB_RUNNING state (bsc#1004995)
bd03ae2cc Export NVMe WWID udev attribute (#5348) (bsc#1038865)
f7f877939 rules: introduce disk/by-id (model_serial) symlinks for NVMe drives
(#3974)
ac36e2fe3 rules: add NVMe rules (#3136)
e9c9a30ff sysusers: make group shadow support configurable (bsc#1029516)
8e0d295a2 core: when deserializing a unit, fully restore its cgroup state
(bsc#1029102)
77cf84419 core: introduce cg_mask_from_string()/cg_mask_to_string()
- Fix systemd-sysv-convert when a package starts shipping service units
(bsc#982303)
The database might be missing when upgrading a package which was
shipping no sysv init scripts nor unit files (at the time --save was
called) but the new version start shipping unit files.
- Fix indentation in systemd-sysv-convert
While at it, strip trailing whitespaces.
No functional changes.
- Disable group shadow support (bsc#1029516)
The new configure option will be imported during the next tarball
update.

==== xfce4-session ====
Subpackages: libxfsm-4_6-0 xfce4-session-lang

- Do not mark %{_datadir}/xsessions/default.desktop as %ghost,
it needs to be installed as normal file.

==== yast2-network ====
Version update (3.2.29 -> 3.2.30)

- bnc#1046735
- do not update sysconfig when no IP is given in case of static
NIC configuration.
- 3.2.30

==== yast2-ruby-bindings ====
Version update (3.2.13 -> 3.2.14)

- Set proper title also for YaST2 System Log (bsc#1046153)
- 3.2.14


--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >
This Thread
  • No further messages