Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20190115 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaThunderbird (60.3.3 -> 60.4.0) alsa (1.1.7 -> 1.1.8) alsa-oss (1.1.6 -> 1.1.8) alsa-plugins (1.1.7 -> 1.1.8) alsa-utils (1.1.7 -> 1.1.8) apache2 apparmor bison (3.2.2 -> 3.2.4) diffutils (3.6 -> 3.7) discount ed (1.14.2 -> 1.15) evolution (3.30.3 -> 3.30.4) evolution-data-server (3.30.3 -> 3.30.4) fipscheck firewalld gnome-settings-daemon (3.30.1.2 -> 3.30.2) gnome-software grep (3.1 -> 3.3) gsl gtk2-metatheme-gilouche gtk2-metatheme-sonar gtk3 gucharmap (10.0.4 -> 11.0.3) gupnp-igd hdf5 hwdata (0.318 -> 0.319) installation-images-Kubic (14.403 -> 14.404) java-11-openjdk kcm_tablet (3.1.0 -> 3.1.1) kdevelop5 (5.3.0 -> 5.3.1) kernel-source (4.19.12 -> 4.20.0) libcontainers-common libgexiv2 (0.10.8 -> 0.10.10) libgnome-games-support (1.4.2 -> 1.4.3) libinput (1.12.4 -> 1.12.5) liblouis (3.7.0 -> 3.8.0) libqmi (1.20.2 -> 1.22.0) libqt5-qtbase libraw libselinux (2.6 -> 2.8) libssh libvirt-glib (1.0.0 -> 2.0.0) linux-atm linux-glibc-devel (4.19 -> 4.20) mercurial (4.8.1 -> 4.8.2) mozjs52 openssl-1_0_0 (1.0.2o -> 1.0.2q) pciutils-ids (20181113 -> 20190109) perl-DBD-mysql (4.049 -> 4.050) perl-Image-ExifTool (11.11 -> 11.24) phonon4qt5 python-Pygments python-kiwi (9.17.1 -> 9.17.7) python-pyOpenSSL (17.5.0 -> 18.0.0) python-pycparser pyzy sqlite3 (3.25.2 -> 3.26.0) tigervnc unbound wavpack wireless-regdb (2018.05.31 -> 2018.10.24) wireshark (2.6.5 -> 2.6.6) xcursorgen (1.0.6 -> 1.0.7) xen xorg-x11-server xterm (337 -> 342) yast2-firstboot (4.1.2 -> 4.1.3) === Details === ==== MozillaThunderbird ==== Version update (60.3.3 -> 60.4.0) Subpackages: MozillaThunderbird-translations-common - Mozilla Thunderbird 60.4.0: * New WebExtensions FileLink API to facilitate add-ons * Fix decoding problems for messages with less common charsets (cp932, cp936) * New messages in the drafts folder (and other special or virtual folders) will no longer be included in the new messages notification - requires NSS 3.36.6 ==== alsa ==== Version update (1.1.7 -> 1.1.8) Subpackages: libasound2 libasound2-32bit - Update to alsa-lib 1.1.8 * Core: conf: rename snd_conf_load1() to _snd_config_load_with_include() conf/ucm: bytcht-es8316: Add long-name UCM profiles conf/ucm: Add UCM profile for bytcht-es8316 boards Create shared {En,Dis}ableSeq.conf components for rt5645 variants conf/ucm: bytcr-rt5651: Add bytcr-rt5651-stereo-spk-dmic-mic config conf/ucm: kblrt5660: Add ucm setting for Dell Edge IoT platform conf/ucm: chtrt5650: Add UCM config for chtrt5650 ucm: Set default include path conf: Move UCM profile snippets into components subdirectory initial version of .travis.yml file * Control API: control: fix the assert() in snd_ctl_elem_set_bytes * PCM API: pcm: ioplug: Fix the regression of pulse plugin drain pcm: extplug: Keep format and channels the same if requested pcm: dshare: Fix segfault when not binding channel 0 pcm: dmix: Add option to allow alignment of slave pointers pcm: interval: Interpret (x x+1] correctly and return x+1 * Use Case Manager API: conf: rename snd_conf_load1() to _snd_config_load_with_include() ucm: Set default include path conf: Move UCM profile snippets into components subdirectory * Configuration: conf: rename snd_conf_load1() to _snd_config_load_with_include() conf/ucm: bytcht-es8316: Add long-name UCM profiles conf/ucm: Add UCM profile for bytcht-es8316 boards Create device component for rt5645 Internal Analog Mic UCM Factor out rt5645 variants Headset+Digital Mic UCM shared {en,dis}able sequences Factor out rt5645 variants Speaker+Headphones shared UCM enable sequences Create shared {En,Dis}ableSeq.conf components for rt5645 variants Update chtrt5645 ucm variants to use bytcr/PlatformEnableSeq.conf component conf/ucm: bytcr-rt5651: Document mono speaker wiring conf/ucm: bytcr-rt5651: Add bytcr-rt5651-stereo-spk-dmic-mic config conf/ucm: bytcr-rt5651: Add digital mic support conf/ucm: bytcr-rt5651: Add support for a headset-mic on IN2 conf/ucm: bytcr-rt5651: Enable Stereo? ADC MIXL ADC? switches when enabling inputs conf/ucm: kblrt5660: Add ucm setting for Dell Edge IoT platform conf/ucm: chtrt5650: Add UCM config for chtrt5650 ucm: Set default include path conf: Move UCM profile snippets into components subdirectory conf: USB-Audio: Add Dell WD19 Dock in the IEC958 blacklist conf/ucm/Dell-WD15-Dock: Fix incorrect device names * Documentation: README.md: add link to www.alsa-project.org initial version of README.md for github * External PCM Filter Plugin SDK: pcm: extplug: Keep format and channels the same if requested * Test/Example code: test/audio_time: remove unused variables test: rename code to more approriate mixtest test/code: make it work again test/latecy: fix typo in tstamp compare * Utils: utils/alsa.m4: conditionally enable libdl in AM_PATH_ALSA m4 macro - Drop obsoleted patches: 0001-conf-ucm-Dell-WD15-Dock-Fix-incorrect-device-names.patch 0002-pcm-interval-Interpret-x-x-1-correctly-and-return-x-.patch - Remove obsoleted UCM profile for rt5640 - Don't treat the non-existing $ALSA_CONFIG_PATH too severely (bsc#1120893): alsa-lib-ignore-non-accessible-ALSA_CONFIG_PATH.patch ==== alsa-oss ==== Version update (1.1.6 -> 1.1.8) Subpackages: alsa-oss-32bit - Avoid repetition of name in summary. Update description. - Update to alsa-oss 1.1.8: Fix the build with the recent glibc - Remove obsoleted patch: remove-libio.patch: ==== alsa-plugins ==== Version update (1.1.7 -> 1.1.8) Subpackages: alsa-plugins-pulse alsa-plugins-pulse-32bit - Drop idempotent %if..%endif guards. - Update to alsa-plugins 1.1.8: * A52 Output plugin: a52_close: set slave to NULL to avoid double pcm free in open fcn * AVTP Audio Format (AAF) PCM plugin aaf: AVTPDU transmission periodicity aaf: Implement Playback mode support aaf: Load configuration parameters aaf: Introduce plugin skeleton aaf: Tx multiple AVTPDUs per media clock tick aaf: Refactor timeout routines aaf: Refactor AVTPDU reception routines aaf: Refactor AVTPDU transmission routines aaf: Add presentation time tolerance aaf: do not free twice aaf - snd_pcm_close() is called from snd_pcm_ioplug_delete() aaf: Add support for direct read/write transfers aaf: Implement dump() ioplug callback aaf: Implement Capture mode support aaf: Prepare for Capture mode support aaf: Implement Playback mode support aaf: Load configuration parameters aaf: Introduce plugin skeleton * Documentation: aaf: AVTPDU transmission periodicity aaf: Tx multiple AVTPDUs per media clock tick aaf: Add presentation time tolerance doc: Fix typo in AAF doc aaf: Implement Capture mode support aaf: Implement Playback mode support aaf: Load configuration parameters aaf: Introduce plugin skeleton * Jack PCM plugin: Revert "jack: Fix leaks when jack_set_hw_constraint() fails" * OSS Mixer -> ALSA Control plugin: Revert "oss: Fix leaks when oss_hw_constraint() fails" * USB stream plugin: Revert "usb_stream: Fix leaks when us_set_hw_constraint() fails" pcm_usb_stream: fix signess issues pcm_usb_stream: remove unused parameter in snd_pcm_us_read() pcm_usb_stream: fix another leak in snd_pcm_us_open() - Drop obsoleted patches: 0001-pcm_usb_stream-fix-another-leak-in-snd_pcm_us_open.patch 0002-pcm_usb_stream-remove-unused-parameter-in-snd_pcm_us.patch 0003-pcm_usb_stream-fix-signess-issues.patch 0004-a52_close-set-slave-to-NULL-to-avoid-double-pcm-free.patch 0005-Revert-jack-Fix-leaks-when-jack_set_hw_constraint-fa.patch 0006-Revert-usb_stream-Fix-leaks-when-us_set_hw_constrain.patch 0007-Revert-oss-Fix-leaks-when-oss_hw_constraint-fails.patch - Add a new subpackage alsa-plugins-aaf; currently built only for TW ==== alsa-utils ==== Version update (1.1.7 -> 1.1.8) - Update to alsa-utils 1.1.8: * Core: Makefile.am: add README.md to EXTRA_DIST axfer: add support for libffado transmission backend axfer: add unit test for container interface axfer: add an entry point for this command initial version of .travis.yml rename and update README.md * Audio Transfer utility: axfer: add an explanation about advantages/issues of Timer-based scheduling model axfer: add an explanation about Timer-based scheduling model axfer: add an explanation about IRQ-based scheduling model axfer: add text for compatibility loss of sw parameter in libasound backend axfer: fulfill manual section for libasound backend axfer: print help for libasound backend axfer: fulfill manual section for libffado backend axfer: print help for libffado backend axfer: correct description about signal handling axfer: fix typo in axfer(1) manual axfer: fix no return statement in print_help() function axfer: enable each backend to print own help axfer: print help text of transfer subcommand just for common options axfer: print help text of list subcommand axfer: print help text of command entry axfer: add a section about design of transfer subcommand axfer: add a section to describe compatibility to aplay(1) axfer: add a manual for transfer subcommand axfer: add a manual for list subcommand axfer: add a manual for entry point axfer: check whether a terminal is referred for stdio axfer: truncate parsed arguments before operating subcommand axfer: use transfer subcommand as a default for compatibility mode to aplay(1) axfer: use second argument in command line for transmission direction axfer: apply refactoring in list subcommand for new command system axfer: apply refactoring to list subcommand for backward compatibility to aplay(1) axfer: add support for libffado transmission backend axfer: obsolete some unimplemented options axfer: add support for timer-based scheduling model with MMAP operation axfer: add an implementation of waiter for epoll(7) axfer: add an implementation of waiter for select(2) axfer: add an implementation of waiter for poll(2) axfer: add an option for waiter type axfer: add a common interface of waiter for I/O event notification axfer: add options for plugins in alsa-lib axfer: add options for software parameters of PCM substream axfer: add options for buffer arrangement axfer: add an option to suppress event waiting axfer: add support for MMAP PCM operation axfer: add support for non-blocking operation axfer: add an option to finish transmission at XRUN axfer: add options related to duration and obsolete '--max-file-size' option axfer: add an option to dump available hardware parameters axfer: add informative output and an option to suppress it axfer: add a sub-command to transfer data frames axfer: add support for blocking data transmission operation of alsa-lib PCM API axfer: add support to transfer data frames by alsa-lib PCM APIs axfer: add a parser for command-line options axfer: add a common interface to transfer data frames axfer: add a unit test for mapper interface axfer: add support for a mapper for multiple target axfer: add support for a mapper for single target axfer: add a common interface to align data frames on different layout axfer: add unit test for container interface axfer: add support for a container of raw data axfer: add support for a container of Creative Tech. voice format axfer: add support for a container of Sparc AU format axfer: add support for a container of Microsoft/IBM RIFF/Wave format axfer: add a common interface to handle a file with audio-specific data format axfer: add a sub-command to print list of PCMs/devices axfer: add an entry point for this command * alsaloop: alsaloop: more avail_min cleanups * alsatplg (topology): topology/topology.c: drop unneeded <dlfcn.h> include * aplay/arecord: aplay: improve available conditions for '--samples' and '--duration' options aplay: add a paragraph for '--samples' ('-s') option to aplay manual aplay: delete paragraph for obsoleted '--sleep-min' ('-s') option from aplay manual ==== apache2 ==== Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils - do not create sysconfig.d when already exists [bsc#1121086] - use secure http sites by default in configs - Switch to DEFAULT_SUSE Cipher suite ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang pam_apparmor pam_apparmor-32bit perl-apparmor python3-apparmor - add apparmor-lessopen-nfs-workaround.diff: allow network access in lessopen.sh for reading files on NFS (workaround for boo#1119937 / lp#1784499) ==== bison ==== Version update (3.2.2 -> 3.2.4) Subpackages: bison-lang - Do not build tests with -fprofile-generate in order to not to overwrite gcda files (boo#1120868). - bison 3.2.4: * Fix the move constructor of symbol_type * Always provide a copy constructor for symbol_type - bison 3.2.3: * c++: fix token constructors for types with commas * data/variant.hh: Do not use user types * tests/local.at: Adjust lex-related macros for tokenization * test/types.at: Also ceck token constructors with commas ==== diffutils ==== Version update (3.6 -> 3.7) Subpackages: diffutils-lang - Update to version 3.7: * bugfix - diff --strip-trailing-cr with a single CR byte in one input file would provoke an uninitialized memory read * diff --color now produces output compatible with less -R. - Small packaging cleanups: * PIE is now default for whole distribution * xz is not needed as build dependency anymore ==== discount ==== - Update changelog with references to security issues fixed ==== ed ==== Version update (1.14.2 -> 1.15) - Switch back to hand provided tarball in order to avoid pulling lzip to the Ring0 - Use upstream released tarball - Avoid repetition of package name in summary. - Update to version 1.15: * io.c (print_line): Make '1' command print '\\' before every '$' within the text. * main_loop.c (extract_addresses): Fixed address ',,' to mean '$,$' instead of '1,$'. * regex.c (extract_replacement): Allow newlines even if global. * main_loop.c (exec_command): Make 'c' command reject address 0. * ed.texi: Minor fixes. * configure: Accept appending to CFLAGS, 'CFLAGS+=OPTIONS'. * Switch archive format to tar. ==== evolution ==== Version update (3.30.3 -> 3.30.4) Subpackages: evolution-lang evolution-plugin-bogofilter evolution-plugin-pst-import evolution-plugin-spamassassin - Update to version 3.30.4: + Clamp GSettings values before restoring window size. + "Save Image..." fails on shown attached image in message preview. + Bugs fixed: glgo#GNOME/evolution#273. ==== evolution-data-server ==== Version update (3.30.3 -> 3.30.4) Subpackages: evolution-data-server-lang libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-19 libebook-contacts-1_2-2 libecal-1_2-19 libedata-book-1_2-25 libedata-cal-1_2-29 libedataserver-1_2-23 libedataserverui-1_2-2 - Update to version 3.30.4: + Correct developer documentation of some EBook asynchronous API. + Crash on meeting cancellation receive in local calendar. + Fix few memory leaks in calendar backends. + Bugs fixed: glgo#GNOME/evolution-data-server#68, glgo#GNOME/evolution-data-server#7, glgo#GNOME/evolution-data-server#8. ==== fipscheck ==== Subpackages: libfipscheck1 - Use the shipped manpages instead of building them with xmlto in order to avoid a build cycle (fipscheck, xmlto, libxslt, libgcrypt) * add fipscheck-dont_generate_manpages.patch - fix build on older distributions ==== firewalld ==== Subpackages: firewall-macros firewalld-lang python3-firewall - Add upstream patch to make --reload/--complete-reload forget the runtime configuration and always load the permanent one (bsc#1121277) * 0002-Add-FlushAllOnReload-config-option.patch ==== gnome-settings-daemon ==== Version update (3.30.1.2 -> 3.30.2) Subpackages: gnome-settings-daemon-lang - Update to version 3.30.2: + Fixes for build tests. + Media-keys: - Default to interactive shutdown action for power button if the action is not supported. - Increase GSD_REENABLE_POWER_BUTTON_DELAY to 3 seconds. - Add mapping for Ctrl + media-key for some media-keys. + Rfkill: Fix GIOChannel encoding. + Color: Correct temperature interpolation corner cases. + Updated translations. ==== gnome-software ==== Subpackages: gnome-software-lang - Add flatpak Recommends: Users should not have to figure out that this package is needed for flatpaks to work out of the box (boo#1118040). ==== grep ==== Version update (3.1 -> 3.3) Subpackages: grep-lang - Update to grep 3.3 * * Changes in behavior * The --files-without-match (-L) option now causes grep to succeed when a file is listed, instead of when a line is selected. * * Improvements * An over-30x performance improvement when many 'or'd expressions share a common prefix, thanks to improvements in gnulib's dfa.c * An additional 3-23% speed-up when searching large files, via increased initial buffer size. * grep now diagnoses stack overflow - remove-backref-alt-test.patch: remove ==== gsl ==== Subpackages: libgsl23 libgslcblas0 - Convert package to _multibuild - Add HPC build macros and evironment modules * (FATE#324138) - Add master packages for libraries and devel package - Remove BLAS build dependency ==== gtk2-metatheme-gilouche ==== - Ship Xfwm4 theme with GTK theme (instead of with Xfwm4) ==== gtk2-metatheme-sonar ==== Subpackages: metatheme-sonar-common sonar-icon-theme - Ship Xfwm4 theme with GTK theme (instead of with Xfwm4) ==== gtk3 ==== Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-lang gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update gtk3-atk-table-cell.patch to include the new good accessibility-dump test output (bsc#1119306). ==== gucharmap ==== Version update (10.0.4 -> 11.0.3) Subpackages: gucharmap-lang libgucharmap_2_90-7 - Update to version 11.0.3: + No upstream changes or NEWS provided, please see upstream git: https://gitlab.gnome.org/GNOME/gucharmap ==== gupnp-igd ==== - Add gupnp-igd-free-GStaticMutex-in-AddRemoveData.patch: Free GStaticMutex in AddRemoveData. Fixes a memory leak reported by valgrind. - Modernize spec. ==== hdf5 ==== Subpackages: libhdf5-103 libhdf5_hl100 - Reenable 'serial' build for SLE: this build creates hdf5-devel-data. ==== hwdata ==== Version update (0.318 -> 0.319) - Update to version 0.319: * Updated pci, usb and vendor ids. ==== installation-images-Kubic ==== Version update (14.403 -> 14.404) - merge gh#openSUSE/installation-images#288 - added required tools for network setup (bsc#1121046) - 14.404 - skelcd-fallbackrepo-SLED exists only on x86_64 (bsc#1121074) ==== java-11-openjdk ==== Subpackages: java-11-openjdk-headless - Added patch: * loadAssistiveTechnologies.patch + Do not crash the whole JVM if assistive technologies crash - Do not resolve by default the added JavaEE modules (fixes bsc#1120431) - Remove hardcoded Java version in jconsole desktop file. ==== kcm_tablet ==== Version update (3.1.0 -> 3.1.1) Subpackages: kcm_tablet-lang - Update to version 3.1.1 * Some translation related fixes ==== kdevelop5 ==== Version update (5.3.0 -> 5.3.1) Subpackages: kdevelop5-lang kdevplatform kdevplatform-lang libkdevplatform53 - New upstream release 5.3.1 * Remove the CVS plugin. This was unusable and would crash if used in most cases, but accidentally remained in 5.3.0 * Don't add 'override' specifier for non-modern project settings (kde#372280) * Use qCWarning in path.cpp * Fix qmakeproject unittest to work on Windows * Fix defines and includes test to run on Windows * Fix projectmodel unittest to work on Windows * Make the filteringstrategy test work on Windows as well * Fix problem model test on Windows. Make sure that when we create a path the root of that path is created according to what is expected on the current platform. E.g. C: on Windows. * Appimage: use original app desktop file as base for appimage one * Make test outputmodel pass on windows. * Increase timeout for duchain gcc compatibility test * Auto-find Clazy documentation also with clazy >= 1.4 (kde#401075) * Disable plugin project config if project without a IBuildSystemManager dep (kde#400769) * Appimage: Do not bundle libfontconfig * Cmake: fix missing addition of policies to documentation index * FunctionDefinition: only look for (new/other) function definition if we don't have one * Fix memleaks in duchain unittests - Drop Auto-find-Clazy-documentation-also-with-clazy-1.4.patch, merged upstream - Use cmake() notation for the Qt BuildRequires instead of pkgconfig() ==== kernel-source ==== Version update (4.19.12 -> 4.20.0) Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms - packet: validate address length if non-zero (nmap EINVAL failure). - commit 34f009a - Update to 4.20 final - Eliminated 1 patch - Refresh configs - commit ba5c149 ==== libcontainers-common ==== - Upgrade to libpod v1.0.0 * Fixed a bug where storage.conf was sometimes ignored for rootless containers - Upgrade to libpod v0.12.1.2 and storage v1.4 * No significant functional or packaging changes ==== libgexiv2 ==== Version update (0.10.8 -> 0.10.10) - Update to version 0.10.10: + Fix building against exiv2 0.27. + Various meson build fixes back-ported from master. - Drop upstream fixed patches: + 0001-Handle-rename-of-exiv2-xmp.hpp-to-xmp_exiv2.hpp-in-e.patch + libgexiv2-build-Add-manifest-test-build-against-exiv2.patch - Fix building with exiv2 0.27.0 Add 0001-Handle-rename-of-exiv2-xmp.hpp-to-xmp_exiv2.hpp-in-e.patch - Add libgexiv2-build-Add-manifest-test-build-against-exiv2.patch: Apply upstream fixes for new exiv2. - Update to version 0.10.9: + Fix check for building on OS X. + Fix generating non-reproducible builds. + Make it possible to disable the python modules. + Fix deprecated g_type_class_add_private. + Fix various issues with getting width and height from EXIF. + Fix building with 0.27. - Drop libgexiv2-reproducible.patch: Fixed upstream. - Switch to meson buildsystem following upstreams port, add meson BuildRequires and macros. ==== libgnome-games-support ==== Version update (1.4.2 -> 1.4.3) Subpackages: libgnome-games-support-1-3 libgnome-games-support-lang - Update to version 1.4.3: + Fix build with vala 0.43.1 ==== libinput ==== Version update (1.12.4 -> 1.12.5) Subpackages: libinput-udev libinput10 - Update to new upstream release 1.12.5 * Fixes an issue with the Asus VivoBook Flip 14 TP412UA, the tablet mode switch is "stuck", causing the keyboard and touchpad to stop working. A quirk was added to rectify this. ==== liblouis ==== Version update (3.7.0 -> 3.8.0) Subpackages: liblouis-data python3-louis - Update to version 3.8.0: + Noteworthy changes in this release: The major focus of this release is on braille table updates. There are major updates to German, Arabic, Chinese, Turkish, Dutch, Czech, Latvian, Spanish and Ethiopic. Some of these new tables have only been possible because Bert Frees fixed some nasty long standing bugs behind the scene. Also there is the usual assortment of code improvements and cleanups. + New features: None. + Bug fixes: - Fix support more than 4 classes. - Fix capitalization of words that match nocont rules. + Braille table improvements. + Other changes: Updated the lou_allround and lou_trace test tools to include all the mode flags described in the documentation of the lou_translateString() function. + Backwards incompatible changes: The pass1Only flag has been deprecated for a while and is now removed from the code. - Bump sover define to 17, following upstreams soname bump. ==== libqmi ==== Version update (1.20.2 -> 1.22.0) Subpackages: libqmi-glib5 libqmi-tools - Update to version 1.22.0: + Build now looks for the correct python provider in the system during configure. + New services: New 'QoS' (Quality of Service) service, with some minimal initial implementation to support flow/network status querying. Additionally, some Sierra-specific commands are also implemented that allow querying per-bearer statistics (e.g. if multiple dedicated and default LTE bearers are used). + New request/responses/indications: - loc: new "Register Events" request/response. - loc: new "NMEA" indication. - loc: new "Engine State" indication. - loc: new "Fix Recurrence Type" indication. - loc: new "GNSS Sv Info" indication. - loc: new "Inject Predicted Orbits Data" request/response/indication. - loc: new "Get Predicted Orbits Data Source" request/response/indication. - loc: new "Set Server" request/response/indication. - loc: new "Get Server" request/response/indication. - loc: new "Delete Assistance Data" request/response/indication. - loc: new "Set Operation Mode" request/response/indication. - loc: new "Get Operation Mode" request/response/indication. - loc: new "Inject XTRA Data" request/response/indication. - uim: new "Card Status" indication. - wds: new "Get Default Profile Num" request/response. - wds: new "Set Default Profile Num" request/response. - wds: new Sierra-specific "Swi Create Profile Indexed" request/response. + New TLVs supported in existing messages: - loc: added multiple new TLVs in the "Position Report" indication, which was a minimal skeleton in previous releases. - loc: added 'Fix Recurrence Type' TLV in "Start". - loc: added 'Minimum Interval between Position Reports' TLV in "Start". - nas: added 'Acquisition Order Preference' TLV in "Set System Selection Preference" and "Get System Selection Preference". - nas: added 'Phy CA Agg Secondary Cells' TLV in "Get LTE Cphy CA Info". - wds: added 'WDS APN Disabled Flag' TLV in "Create Profile", "Modify Profile" and "Get Profile Settings". - wds: added 'WDS Roaming Disallowed Flag' TLV in "Create Profile", "Modify Profile" and "Get Profile Settings". + libqmi: - Assume TLVs < 0x10 are mandatory by default. - Fixed some missing QmiProtocolErrors and updated some existing ones. - Implemented support to allow enabling QMI indications when in MBIM mode. - Addded missing QmiNasBandPreference and QmiDmsLteBandCapability flags. - Deprecate QMI_CORE_ERROR_TLV_EMPTY, as empty TLVs are allowed by the protocol and totally valid e.g. in 0-sized string-type TLVs. - Moved all deprecated APIs to 'qmi-compat.h' header. + qmicli: - New '--loc-get-position-report' command. - New '--loc-get-gnss-sv-info' command. - New '--loc-follow-position-report' command. - New '--loc-follow-gnss-sv-info' command. - New '--loc-follow-nmea' command. - New '--loc-delete-assistance-data' command. - New '--qos-get-flow-status' command. - New '--qos-get-network-status' command. - New '--qos-swi-read-data-stats' command. - New '--qos-reset' command. - New '--wds-create-profile' command. - New '--wds-modify-profile' command. - New '--wds-delete-profile' command. - New '--wds-get-default-profile-num' command. - New '--wds-set-default-profile-num' command. - New '--wds-swi-create-profile-indexed' command. - Added support to request acquisition order preference updates when using '--nas-set-system-selection-preference'. - Fixed slot indices in '--uim-get-card-status'. - Fixed '--uim-set-pin-protection', '--uim-verify-pin", "--uim-unblock-pin", and '--uim-change-pin', so that a dummy application identifier is always used. - Updated so that all commands work even through QMI over MBIM, even if indications are required to complete the command (e.g. most PDC and LOC commands). + qmi-network: Avoid creating invalid --wds-start-network when APN is not set. + Several other minor improvements and fixes. ==== libqt5-qtbase ==== Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Add reproducible-qrc-time.patch to use SOURCE_DATE_EPOCH for qrc embedded timestamps to make bitcoin-qt build reproducible (https://bugreports.qt.io/browse/QTBUG-62511, boo#1047218) ==== libraw ==== - supplementary fix for https://github.com/LibRaw/LibRaw/issues/195 + libraw-half-size-allocation-buffer-overflow.patch - asan_build: build ASAN included - debug_build: build more suitable for debugging ==== libselinux ==== Version update (2.6 -> 2.8) Subpackages: libselinux1 libselinux1-32bit - Remove unneeded build requires for python3 (bsc#1120255) - Update to version 2.8 (bsc#1111732) For changes please see https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases... - ran spec-cleaner on spec files - Update to version 2.7. * %files needed to be heavily modified * Based expressly on python3, not just python For changes please see https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases... ==== libssh ==== - Added the tests in a multiple build description file *test* to break the cycle for cmocka, curl, doxygen and libssh. ==== libvirt-glib ==== Version update (1.0.0 -> 2.0.0) Subpackages: libvirt-glib-1_0-0 typelib-1_0-LibvirtGConfig-1_0 typelib-1_0-LibvirtGLib-1_0 typelib-1_0-LibvirtGObject-1_0 - Update to version 2.0.0: + Increase min libvirt to 1.2.5. + Increase min glib to 2.38. + Fix example program event detail strings. + Set LC_CTYPE=en_US.UTF-8 when running python apps. + Don't relay on non-portable paths. + Fix sha-bang lines for portability. + Remove bogus casts for g_object_ref args. + Disable -Wcast-function-type warnings. + Modernize gobject macro usage. + Allow adding namespace to child nodes. + Add ICH9 audio support. + Add API for getting machine type. + Updated translations. - Add fdupes BuildRequires and macro: Remove duplicates. ==== linux-atm ==== - add linux-atm-2.5.2-remove-headers-crude-hack.patch - switch from %doc to %license for licenses ==== linux-glibc-devel ==== Version update (4.19 -> 4.20) - Update to kernel headers 4.20 - netfilter-bridge-define-INT_MIN-INT_MAX-in-userspace.patch: remove ==== mercurial ==== Version update (4.8.1 -> 4.8.2) Subpackages: mercurial-lang - Mercurial 4.8.2 This is a regularly-scheduled bugfix release containing following fixes: * commands + update: do not pass in user revspec as default destination (issue6044) * core + match: fix assertion for fileset with no context (issue6046) + revlog: catch delta base value under -1 + revlog: catch revlog corruption in index_baserev + server: always close http socket if responding with an error (issue6033) + vfs: ensure closewrapbase fh doesn't escape by entering context manager * extensions + phabricator: properly encode boolean types in the request body * unsorted + windows: ensure mixedfilemodewrapper fd doesn't escape by entering context mgr + worker: do not swallow exception occurred in main process ==== mozjs52 ==== - Add -Wno-format-overflow in order to fix boo#1121270. ==== openssl-1_0_0 ==== Version update (1.0.2o -> 1.0.2q) Subpackages: libopenssl1_0_0 libopenssl1_0_0-hmac - Start versioning the exported symbols: At least one steam game (Company of Heroes 2) needs this symbol versioned properly - modify openssl-1.0.0-version.patch - Update to 1.0.2q * Microarchitecture timing vulnerability in ECC scalar multiplication (CVE-2018-5407, bsc#1113534, "PortSmash") * Timing vulnerability in DSA signature generation (CVE-2018-0734, bsc#1113652) * Use a secure getenv wrapper inside libcrypto - refreshed patches: * openssl-fipslocking.patch * openssl-1.0.2i-fips.patch - correct the error detection in openssl-CVE-2018-0737-fips.patch (bsc#1106197) - Fix One&Done side-channel attack on RSA (bsc#1104789) * add openssl-One_and_Done.patch - Update to 1.0.2p OpenSSL Security Advisory [12 June 2018] * Reject excessively large primes in DH key generation (bsc#1097158, CVE-2018-0732) OpenSSL Security Advisory [16 Apr 2018] * Cache timing vulnerability in RSA Key Generation (CVE-2018-0737, bsc#1089039) * Make EVP_PKEY_asn1_new() a bit stricter about its input * Revert blinding in ECDSA sign and instead make problematic addition length-invariant. Switch even to fixed-length Montgomery multiplication. * Change generating and checking of primes so that the error rate of not being prime depends on the intended use based on the size of the input. * Increase the number of Miller-Rabin rounds for DSA key generating to 64. * Add blinding to ECDSA and DSA signatures to protect against side channel attacks * When unlocking a pass phrase protected PEM file or PKCS#8 container, we now allow empty (zero character) pass phrases. * Certificate time validation (X509_cmp_time) enforces stricter compliance with RFC 5280. Fractional seconds and timezone offsets are no longer allowed. - add openssl-CVE-2018-0737-fips.patch - refreshed patches: * openssl-1.0.2a-fips-ec.patch * openssl-1.0.2a-ipv6-apps.patch * openssl-1.0.2i-fips.patch * openssl-1.0.2i-new-fips-reqs.patch ==== pciutils-ids ==== Version update (20181113 -> 20190109) - Update to 20190109 ==== perl-DBD-mysql ==== Version update (4.049 -> 4.050) - updated to 4.050 see /usr/share/doc/packages/perl-DBD-mysql/Changes DBI/DBD community (4.050) * Fix SQL syntax for statements that have "...limit = ?" #288 * Make tests pass on MySQL 4.1 #286 * Travis-CI: Install Test::Deep #281 * Fix undefined ssl_verify_set on MySQL 5.0 and before #283 * Fix compilation on MySQL 4.1 #283 * Move Travis to dbdeployer (#284) #284 * Fix compiling on 8.0.0 and 8.0.1 #285 * Fix compatibility with MariaDB 10.3 #291 2018-10-25 Dani�l van Eeden, Patrick Galbraith, ==== perl-Image-ExifTool ==== Version update (11.11 -> 11.24) Subpackages: exiftool perl-File-RandomAccess - Update to version 11.24 * See /usr/share/doc/packages/perl-Image-ExifTool/Changes ==== phonon4qt5 ==== - Add upstream patch 0001-Fix-PulseAudio-support-with-Qt-5.12.patch to fix PulseAudio detection with Qt 5.12 - Run spec-cleaner - Add %license ==== python-Pygments ==== - Added denose.patch removing dependency on the nose package. https://bitbucket.org/birkenfeld/pygments-main/issues/1490/remove-nose-depen... ==== python-kiwi ==== Version update (9.17.1 -> 9.17.7) - Bump version: 9.17.6 ? 9.17.7 - Fix use of SysConfig objects objects of that class did not provide a get method but overload the bracket [] operator. Using the get() method failed. This Fixes #910 - Use chkstat to verify and fix file permissions Call chkstat in system mode which reads /etc/sysconfig/security to determine the configured security level and applies the appropriate permission definitions from the /etc/permissions* files. It's possible to provide those files as overlay files in the image description to apply a certain permission setup when needed. Otherwise the default setup as provided on the package level applies. It's required that the image root system has chkstat installed. If not present KIWI skips this step and continuous with a warning. This Fixes #895 - Allow setting the protocol for exposed ports With this commit it is possible to set tcp or upd (e.g. "80/tcp") for exposed container ports. If no protocol is provided OCI defaults are applied. Fixes #906 - Use cls in @classmethods instead of self For consistency reasons. - Bump version: 9.17.5 ? 9.17.6 - Allow setctsid to be part of custom boot images - Fix disk size calculation for VMX Disk size calculation must take into account the empty volumes that are to be mounted in a directory that does not exist in the root tree otherwise there is KeyError. The result of storate/setup._calculate_volume_mbytes must be a dict including all defined volumes. Fixes #904 - Bump version: 9.17.4 ? 9.17.5 - Make sure manual pages are part of pypi archive As consequence of the change in the travis setup to make use of the native 'pages' and 'pypi' providers from travis the environment for the sdist target has changed. Within the doc_travis tox env no manual pages was build. In combination with the 'pypi' provider setup in .travis.yml which uses skip_cleanup: true, this caused the pypi archive to miss any manual pages which lead to a runtime error on install via pip. - Bump version: 9.17.3 ? 9.17.4 - Don't trust the vmlinux symlink to be present - Refactor kernel version lookup Check the presence of the gzip compressed kernel binary and use it. If not present use the arbitrary kernel image format with the known limitations. - More clarity on kernel version lookup Lookup of the kernel version is done by directly reading the kernel image via a small tool named kversion. The scope of the tool is limited and does not work for e.g kernel images which contains its own decompressor code. For the special cases we defined exceptions, one was zImage. The recently added exception for vmlinuz seemed too intrusive to me and was also not well documented. This patch tries to clarify and get us back to explicit and easy to read coding. Fixes #899 - testing: fix issues marked by shellcheck - kernel.py: also try vmlinux-version.gz in case of image-version to get the version number - Add Ubuntu bionic build tests - Another round of OCI tools refactoring In order to provide buildah support some of the logic about temporary directories for OCI images creation needs to be moved to the dedicated OCI tool class. While umoci can operate in any directory and this is passed as an argument, this is not the case for buildah. In buildah workflow the storage path of work-in-progress images/containers is not customizable neither the mountpoint of the container rootfs. - Bump version: 9.17.2 ? 9.17.3 - Update documentation for rd.live.cowfile.mbsize - Use cow file on persistent grub live loop boot When using tools like live-grub-stick the live iso as generated by kiwi will be copied as file on the target device and a grub loopback setup is created there to boot the live system from file. In such a case the persistent write setup which tries to create an extra write partition on the target fails in almost all cases because the target has no free and unpartitioned space available. Therefore in case of such a loopback mounted system we create a cow file(live_system.cow) instead of a partition to setup persistent writing. The cow file will be created in the same directory the live iso image file was read from grub This Fixes #860 - Bump version: 9.17.1 ? 9.17.2 - Create a custom `setup.py clean` command The default `setup.py clean` command does not clean `dist` and `*.egg-info` folders. This commit makes sure those are cleaned and also ands a `setup.py clean` command in the `clean` Makefile target - Better exception handling in oem installer If an error condition applies in the kiwi dump dracut code the reaction was to stop the process with a dracut die() call. If the option 'rd.debug' was set on boot, this lead to a debugging shell which is good, but in a standard process this lead to a lock of the machine which is an unfortunate situation. This patch changes the behavior to always print the error message as a dialog message box on the primary console and reboot the system after keypress or timeout. In case of the debug switch configured the system die()'s as before. This Fixes #884 - Add parted dependency for dracut-kiwi-live package dracut-kiwi-live requires `partprobe` tool and this is provided by parted package. Persistent overlay setup fails if parted is not installed in the image. - Added unit test for syslinux lookup paths - Include the isolinux ubuntu paths This commit adds the ubuntu installation paths the places to look for isolinux binaries. - Fix spec to better support Debian and Ubuntu builds This commit fixes the spec to properly build for Debian and Ubuntu. More specific: * update-alternatives path has been adapted * python3-kiwi are now enabled for Debian 9 and Ubuntu 18.04 - Make gfxboot a recommended package gfxboot is needed on the host for certain boot graphics operations. It's used if the boot theme provides a gfxboot.cfg In this case the tool is also required. The setup of the boot themes is differently implemented in each of the distributions we support. In addition on suse distributions gfxboot is no longer in the core system. Given that we are not able to find a common base on requirement of the package we changed gfxboot from a required to a recommended package and deleted the requirement on debian based distros ==== python-pyOpenSSL ==== Version update (17.5.0 -> 18.0.0) - handle that renegotiation is forbidden in TLS 1.3 * add tls13-renegotiation.patch - Add patch to fix issues with openssl 1.1.1: * openssl-1.1.1.patch - Drop the downstream fix_test_suite.patch - Add patch fix_test_suite.patch to allow test suite to pass with OpenSSL 1.1.1. - Add patch to work with openssl 1.1.0i+: * openssl-1.1.0i.patch - Update to 18.0.0: * Update for new openssl 1.1.1 - Remove not needed patches: * bug-lp-1265482.diff * rsa128-i586.patch ==== python-pycparser ==== Subpackages: python2-pycparser python3-pycparser - Restrict pattern matching to real files (not symlinks) during packaging of fake_libc_include to avoid build errors on Red Hat platforms. * fix-lexer-build.patch ==== pyzy ==== Subpackages: libpyzy-1_0-0 pyzy-db-android pyzy-db-open-phrase - fix tumbleweed build ==== sqlite3 ==== Version update (3.25.2 -> 3.26.0) Subpackages: libsqlite3-0 libsqlite3-0-32bit - SQLite 3.26.0: * Optimization: When doing an UPDATE on a table with indexes on expressions, do not update the expression indexes if they do not refer to any of the columns of the table being updated. * Allow the xBestIndex() method of virtual table implementations to return SQLITE_CONSTRAINT to indicate that the proposed query plan is unusable and should not be given further consideration. * Added the SQLITE_DBCONFIG_DEFENSIVE option which disables the ability to create corrupt database files using ordinary SQL. * Added support for read-only shadow tables when the SQLITE_DBCONFIG_DEFENSIVE option is enabled. * Added the PRAGMA legacy_alter_table command, which if enabled causes the ALTER TABLE command to behave like older version of SQLite (prior to version 3.25.0) for compatibility. * Added PRAGMA table_xinfo that works just like PRAGMA table_info except that it also shows hidden columns in virtual tables. * Added the explain virtual table as a run-time loadable extension. * Add a limit counter to the query planner to prevent excessive sqlite3_prepare() times for certain pathological SQL inputs. * Added support for the sqlite3_normalized_sql() interface, when compiling with SQLITE_ENABLE_NORMALIZE. * Enhanced triggers so that they can use table-valued functions that exist in schemas other than the schema where the trigger is defined. * Improvements to the ".help" command in the CLI. * The SQLITE_HISTORY environment variable, if it exists, specifies the name of the command-line editing history file. * The --deserialize option associated with opening a new database in the CLI cause the database file to be read into memory and accessed using the sqlite3_deserialize() API. This simplifies running tests on a database without modifying the file on disk. ==== tigervnc ==== Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module - Add U_viewer-reset-ctrl-alt-to-menu-state-on-focus.patch * Fix the ALT and CTRL buttons in viewer's F8 menu. (bsc#1119354) ==== unbound ==== Subpackages: libunbound2 unbound-anchor - Require /usr/sbin/useradd to be present before installation, as we run it in the %pre script. ==== wavpack ==== - Fix denial-of-service (resource exhaustion caused by an infinite loop; bsc#1120930, CVE-2018-19840, CVE-2018-19840.patch). - Fix denial-of-service (out-of-bounds read and application crash; bsc#1120929, CVE-2018-19841, CVE-2018-19841.patch). ==== wireless-regdb ==== Version update (2018.05.31 -> 2018.10.24) - Update version to 2018.10.24 (boo#1121466): * remove dependency to python attr * Sync DE with ETSI EN 301 893 V2.1.1 * Sync FR with ETSI EN 301 893 V2.1.1 - Changes for version 2018-09-07: * update source of info for CU and ES * update regulatory rules for Switzerland (CH), and Liechtenstein * Update regulatory rules for Finland (FI) on 5GHz (SRD devices) * update rules for Hungary (HU) on 2.4/5/60G, 5725-5875MHz ==== wireshark ==== Version update (2.6.5 -> 2.6.6) Subpackages: libwireshark10 libwiretap8 libwscodecs2 libwsutil9 wireshark-ui-qt - Wireshark 2.6.6 * CVE-2019-5716: The 6LoWPAN dissector could crash (bsc#1121231) * CVE-2019-5717: The P_MUL dissector could crash (bsc#1121232) * CVE-2019-5718: The RTSE dissector and other dissectors could crash (bsc#1121233) * CVE-2019-5719: The ISAKMP dissector could crash (bsc#1121234) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.6.6.html ==== xcursorgen ==== Version update (1.0.6 -> 1.0.7) - Update to version 1.0.7 * configure: Drop AM_MAINTAINER_MODE * autogen.sh: Honor NOCONFIGURE=1 * Fix type mismatch warnings for loop index variables * Include more information in error messages * Use asprintf if available, instead of malloc+strcpy+strcat * Convert to X.Org standard code style * Update README for gitlab migration * Add README.md to EXTRA_DIST in Makefile.am * Update configure.ac bug URL for gitlab migration * autogen.sh: use quoted string variables * autogen: add default patch prefix * autogen.sh: use exec instead of waiting for configure to finish * Fix null pointer dereference on very large images. ==== xen ==== Subpackages: xen-libs xen-tools xen-tools-domU - Replace old $RPM_* shell vars. - Run fdupes for all architectures, and not crossing subvolume boundaries. - Do not run %fdupes on aarch64 to avoid the hardlink-across-partition rpmlint error - Require qemu-seabios only on x86* as it is not available on non-x86 systems ==== xorg-x11-server ==== Subpackages: xorg-x11-server-extra xorg-x11-server-sdk xorg-x11-server-wayland - u_xfree86-Do-not-claim-pci-slots-if-fb-slot-is-already.patch * X server does not support mixing fbdev with other drivers, so claiming pci slots when a fb slot is already claimed only leads to quiting with fatal error. (bsc#1119431) ==== xterm ==== Version update (337 -> 342) Subpackages: xterm-bin - Patch #342 * limit mouse-button events to 11 buttons in the protocol * correct calculaton for buttons past 11 (15 in extended proto) * disable a supplementary check added in #341 that interferes with fontconfig to select different sized bitmap fonts - Patch #341 * Add options to mouse-codes script to demonstrate encoding works * Allow mouse button numbers up to 11 using an offset of 128 for 8-11 * correct off-by-one right margin checks for double-width char adjustments * modify the initial pattern passed to fontconfig to disallow color bmps * improve error recovery for a case where fontconfig ignores the requested pattern ==== yast2-firstboot ==== Version update (4.1.2 -> 4.1.3) - Fixed textdomain name (bsc#1121643) - 4.1.3 -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org