Mailinglist Archive: opensuse-factory (229 mails)

< Previous Next >
[opensuse-factory] New Tumbleweed snapshot 20191207 released!
  • From: Dominique Leuenberger <dimstar@xxxxxxx>
  • Date: Tue, 10 Dec 2019 04:01:39 +0000
  • Message-id: <157595049979.8739.14382947881547024159@go-agent-stagingbot-3>

Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20191207

Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports

Packages changed:
ImageMagick (7.0.9.1 -> 7.0.9.6)
binutils
ceph (14.2.4.373+gc3e67ed133 -> 15.0.0.7456+ge089cead79)
cyrus-sasl
dnsmasq
dwz
fribidi
git
gpg2 (2.2.17 -> 2.2.18)
hwdata (0.329 -> 0.330)
icewm (1.5.4 -> 1.6.3)
libnftnl (1.1.4 -> 1.1.5)
libsndfile
libsolv (0.7.7 -> 0.7.9)
libvirt (5.9.0 -> 5.10.0)
libvirt-glib (2.0.0 -> 3.0.0)
libxml2 (2.9.9 -> 2.9.10)
libxml2-python (2.9.9 -> 2.9.10)
libxslt (1.1.33 -> 1.1.34)
libyui-qt-graph (2.45.3 -> 2.45.5)
libzypp (17.15.0 -> 17.17.0)
linux-glibc-devel (5.3 -> 5.4)
lirc
mariadb-connector-c (3.1.4 -> 3.1.5)
nano (4.5 -> 4.6)
openssl
ovmf (201908 -> 201911)
perl
perl-HTTP-Cookies (6.07 -> 6.08)
perl-Socket6 (0.28 -> 0.29)
perl-X500-DN
perl-XML-LibXML (2.0134 -> 2.0201)
perl-XML-LibXSLT
permissions (1550_20191118 -> 1550_20191205)
postfix (3.4.7 -> 3.4.8)
python
python-PyYAML (5.1.2 -> 5.2)
python-base
python-h2
python-libvirt-python (5.9.0 -> 5.10.0)
python-lxml
python-psutil (5.6.5 -> 5.6.7)
python-pywbem (0.11.0 -> 0.14.6)
python-simplejson (3.16.1 -> 3.17.0)
rdma-core
read-only-root-fs (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)
salt (2019.2.0 -> 2019.2.2)
sensors (3.5.0 -> 3.6.0)
sssd (2.2.0 -> 2.2.2)
tcsh (6.21.00 -> 6.22.02)
transactional-update (2.17 -> 2.20)
v4l2loopback (0.12.2_k5.3.12_1 -> 0.12.3_k5.3.12_1)
vim (8.1.2233 -> 8.1.2383)
xfce4-branding-openSUSE (4.14+20191008 -> 4.14+20191207)
zypper (1.14.32 -> 1.14.33)

=== Details ===

==== ImageMagick ====
Version update (7.0.9.1 -> 7.0.9.6)
Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagick++-7_Q16HDRI4
libMagickCore-7_Q16HDRI7 libMagickWand-7_Q16HDRI7 perl-PerlMagick

- version update to 7.0.9.6
* Increase the maximum number of bezier coordinates (reference
https://github.com/ImageMagick/ImageMagick/issues/1784).
* Santize "'" from SHOW and WIN delegates under Linux, '"\' for Windows
(thanks to Enzo Puig).
* Correct for TGA orientation (reference
https://imagemagick.org/discourse-server/viewtopic.php?f=3&t=34757).
* The result for -compose Copy -extent on a MYK image is CMYK (reference
https://imagemagick.org/discourse-server/viewtopic.php?f=3&t=37118).
* Fix potential buffer overflow when reading a fax image (alert from
Justin).
* Support dng:use-camera-wb option.
- added patches
https://github.com/ImageMagick/ImageMagick/issues/1792
+ ImageMagick-targa.patch
- version update to 7.0.9.5
* Ensure Ascii85 compression is thread safe.
* Santize ';' from SHOW and WIN delegates.
* Add exception parameter to CMS transform methods.
* Output exception there is an attempt to perform an operation not allowed by
the security policy
* JPEG and JPG are aliases in coder security policy.
* Fixed numerous issues posted to GitHub

==== binutils ====
Subpackages: binutils-devel

- Add binutils-fix-invalid-op-errata.diff to fix various
build fails on aarch64 (PR25210, bsc#1157755).
- Add add-ulp-section.diff for user space live patching.

==== ceph ====
Version update (14.2.4.373+gc3e67ed133 -> 15.0.0.7456+ge089cead79)
Subpackages: librados2 librbd1

- Update to 15.0.0-7456-ge089cead79:
+ rebase on tip of upstream master, SHA1
e4b3036422df70e3c911240e3bba6a8bd3e9c792
- Update to 15.0.0-7219-g353896020b:
+ rebase on tip of upstream master, SHA1
7ffb5d9e79207da81af933f4e95655e16558c739
- Update to 14.2.4-386-g73475e3ee1:
+ os/bluestore: consolidate extents from the same device only (bsc#1156282)
- Update to 14.2.4-378-gac1bcd6547:
+ qa/suse: move dashboard-e2e to tier3 and add debugging code to
src/script/dashboard_e2e_tests.sh

==== cyrus-sasl ====
Subpackages: cyrus-sasl-crammd5 cyrus-sasl-devel cyrus-sasl-digestmd5
cyrus-sasl-gssapi cyrus-sasl-plain libsasl2-3 libsasl2-3-32bit

- added backport-patch cyrus-sasl-bug587.patch which fixes
off-by-one error in _sasl_add_string function
(see https://github.com/cyrusimap/cyrus-sasl/issues/587)

==== dnsmasq ====

- Remove redundant %else without meaning (if/else/else/endif?)

==== dwz ====

- Fix assertion failure 'refd != NULL' in write_die [swo#24169].
* dwz-fix-refd-NULL-assertion-in-write_die.patch
- Fix assertion failure 'off == cu_size' in recompute_abbrevs
[swo#24764].
* dwz-fix-assertion-off-cu_size-in-recompute_abbrevs.patch

==== fribidi ====
Subpackages: libfribidi0 libfribidi0-32bit

- Use %make_build macros.

==== git ====
Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk

- Guard xmlto/sgml-skel BuildRequires by docs bcond.
- Fix building with asciidoctor and without DocBook4 stylesheets:
* Add 0002-Also-use-DocBook-5-stylesheet-when-generating-HTML-o.patch
* Refresh 0001-DOC-Move-to-DocBook-5-when-using-asciidoctor.patch
- Spec file cleanup, remove conditionals for obsolete/EOLed distros.
- Drop curl (executable) BuildRequires, only required by some skipped
tests (skipped as these have an apache2 prerequisite).
- added patch git-skip-test-s390x-aarch64-fail.patch
* workaround for bsc#1156651

==== gpg2 ====
Version update (2.2.17 -> 2.2.18)
Subpackages: gpg2-lang

- Update to 2.2.18 [bsc#1157900, CVE-2019-14855]
* gpg: Changed the way keys are detected on a smartcards; this
allows the use of non-OpenPGP cards. In the case of a not very
likely regression the new option --use-only-openpgp-card is
available. [#4681]
* gpg: The commands --full-gen-key and --quick-gen-key now allow
direct key generation from supported cards. [#4681]
* gpg: Prepare against chosen-prefix SHA-1 collisions in key
signatures. This change removes all SHA-1 based key signature
newer than 2019-01-19 from the web-of-trust. Note that this
includes all key signature created with dsa1024 keys. The new
option --allow-weak-key-signatues can be used to override the new
and safer behaviour. [#4755,CVE-2019-14855]
* gpg: Improve performance for import of large keyblocks. [#4592]
* gpg: Implement a keybox compression run. [#4644]
* gpg: Show warnings from dirmngr about redirect and certificate
problems (details require --verbose as usual).
* gpg: Allow to pass the empty string for the passphrase if the
'--passphase=' syntax is used. [#4633]
* gpg: Fix printing of the KDF object attributes.
* gpg: Avoid surprises with --locate-external-key and certain
- -auto-key-locate settings. [#4662]
* gpg: Improve selection of best matching key. [#4713]
* gpg: Delete key binding signature when deletring a subkey.
[#4665,#4457]
* gpg: Fix a potential loss of key sigantures during import with
self-sigs-only active. [#4628]
* gpg: Silence "marked as ultimately trusted" diagnostics if
option --quiet is used. [#4634]
* gpg: Silence some diagnostics during in key listsing even with
option --verbose. [#4627]
* gpg, gpgsm: Change parsing of agent's pkdecrypt results. [#4652]
* gpgsm: Support AES-256 keys.
* gpgsm: Fix a bug in triggering a keybox compression run if
- -faked-system-time is used.
* dirmngr: System CA certificates are no longer used for the SKS
pool if GNUTLS instead of NTBTLS is used as TLS library. [#4594]
* dirmngr: On Windows detect usability of IPv4 and IPv6 interfaces
to avoid long timeouts. [#4165]
* scd: Fix BWI value for APDU level transfers to make Gemalto Ezio
Shield and Trustica Cryptoucan work. [#4654,#4566]
* wkd: gpg-wks-client --install-key now installs the required policy
file.
- Rebase patches:
* gnupg-2.2.8-files-are-digests.patch
* gnupg-add_legacy_FIPS_mode_option.patch

==== hwdata ====
Version update (0.329 -> 0.330)

- Update to version 0.330:
* Updated pci, usb and vendor ids.

==== icewm ====
Version update (1.5.4 -> 1.6.3)
Subpackages: icewm-config-upstream icewm-default icewm-lang icewm-lite

- Update to 1.6.3
* Much improved 32-bit icon drawing
* Add --trace=conf,icon option for path logging
* Several portability fixes for FreeBSD
* Update taskbar geometry on screen resize
* Support PNG format for theme image files
* Improved support for depcrecated linux.xpm
* Highlight current workspace on startup
* Fix for themable cursors
* Fix for cmake build
* Fix for rpm build
* Updated man pages
* Updated translations
- Changes from 1.5.4
* Configurable X11 terminal to avoid dependency on xterm
* Fix support for themable cursors for gdk-pixbuf
* Fix Xft font corruption in 32-bit alpha mode
* Fix frame depth for 32-bit apps in 24-bit mode
* Enable tilde and $HOME expansion for icon paths
* Restore old behavior of ColorQuickSwitchActive for vertical switching
* IceSh addWorkspace, prop commands plus -Prop, -Role options
* IceSh fix getWorkspace for sticky windows, fix getOpacity, improve sync
* Expand installation prefix in default configuration files and manpages
* Fix typos in documentation and update Spanish translation
* Better icewm-session manpage
* Compile on GCC 9.2 without warning
* Improve CMake compilation
* IceWM splash image
* Silence icehelp
* Allow a taskbarbg.xpm or taskbarbg.png with transparency for a translucent
taskbar
* Don't use composite on systray when using 24-bit RGB visuals for issue #374
* Update translations
* Use lzip instead of xz
* Add support for 32-bit RGBA visuals if Alpha is enabled.
* Colors can have a [100] opacity prefix, where 100 is a percentage from 1 to
100.
* Colors can also be specified in "rgba:" form.
* Alpha channels in icons are preserved and drawn if Alpha is enabled.
* Support showing a splash image on startup.
* Icesh has new commands sizeto, pid, systray, xembed, motif, symbols.
* Icesh supports filtering on and modifying gravity properties.
* New winoption "startClose" to immediately close unwanted windows.
* Several improvements to CMake builds.
* _NET_SYSTEM_TRAY_ORIENTATION and _NET_SYSTEM_TRAY_VISUAL are now supported.
* Nearly unlimited number of workspaces.
* New option TaskBarWorkspacesLimit to limit number of workspaces shown on
taskbar.
* Workspace names can be edited on taskbar.
* Change default WorkspaceStatusTime to 700 milliseconds.
* Optimizations of resource usage on startup of icewm.
* Restore TaskBarFullscreenAutoShow for issue #361.
* Don't focus frame under mouse for ClickToFocus in issues #355 and #358.
* Only update if WM_NORMAL_HINTS has really changed for Xephyr in #353.
* Only update if WIN_HINTS has really changed.
* Fix icesh -last filter. Fix icesh toggleState for #354.
* Add another xrandr setup where second screen is primary.
* Remove support for EsounD.
* Add many new icesh features.
* Support opacity in icesh, icewmhint, winoptions.
* Set window type on all icewm windows.
* Set WM_CLASS on all icewm windows.
* Updated translations.
* More support for clang C++11.

==== libnftnl ====
Version update (1.1.4 -> 1.1.5)

- Update to release 1.1.5
* flowtable: add support for handle attribute
* obj/ct_timeout: Avoid array overrun in timeout_parse_attr_data()

==== libsndfile ====

- Remove build dependencies for progs subpackage from library:
* alsa-devel, only needed for the examples
* sqlite3-devel, only needed for the regression test
- Only build library, pass --disable-full-suite to configure

==== libsolv ====
Version update (0.7.7 -> 0.7.9)
Subpackages: libsolv-devel libsolv-tools python3-solv ruby-solv

- support conda constrains dependencies
- bump version to 0.7.9
- support arch<->noarch package changes when creating patch
conflicts from the updateinfo data
- support for SOLVER_BLACKLIST jobs that block the installation
of matched packages unless they are directly selected by an
SOLVER_INSTALL job
- libsolv now also parses the patch status in the updateinfo
parser
- new solvable_matchessolvable() function
- bump version to 0.7.8

==== libvirt ====
Version update (5.9.0 -> 5.10.0)
Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon
libvirt-daemon-driver-interface libvirt-daemon-driver-libxl
libvirt-daemon-driver-lxc libvirt-daemon-driver-network
libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter
libvirt-daemon-driver-qemu libvirt-daemon-driver-secret
libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core
libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster
libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct
libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath
libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi
libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs

- Update to libvirt 5.10.0
- bsc#1157149
- Many incremental improvements and bug fixes, see
https://libvirt.org/news.html
- Dropped patches:
2552752f-libxl-fix-lock-manager-lock-ordering.patch
- Added patches:
0a65cba4-news-fix.patch
- spec: Enable 'libvirt' firewalld zone for firewalld >= 0.7.0
boo#1157766

==== libvirt-glib ====
Version update (2.0.0 -> 3.0.0)
Subpackages: libvirt-glib-1_0-0 typelib-1_0-LibvirtGLib-1_0

- Update to version 3.0.0
+ Add support for bochs video device
+ Add API to query firmware config
+ Improve testing coverage
+ Validate min/max glib API versions in use
+ Remove deprecated G_PARAM_PRIVATE
+ Fix docs build linking problems
+ Convert python demos to be python 3 compatible & use
modern best practice for pyobject introspection bindings
+ Add API to query domain capaibilities
+ Refresh translations
+ Simplify build process for handling translations
+ Fix some memory leaks
+ Add API for setting storage volume features
+ boo#1158282

==== libxml2 ====
Version update (2.9.9 -> 2.9.10)
Subpackages: libxml2-2 libxml2-2-32bit libxml2-devel libxml2-tools

- Since libxml2-2.9.10 perl-XML-LibXSLT fails to build: [bsc#1157450]
* Revert upstream commit to make xmlFreeNodeList non-recursive

https://github.com/GNOME/libxml2/commit/0762c9b69ba01628f72eada1c64ff3d361fb5716
- Add patch libxml2-xmlFreeNodeList-recursive.patch
- Version update to 2.9.10:
* Portability:
+ Fix exponent digits when running tests under old MSVC
+ Work around buggy ceil() function on AIX
+ Don't call printf with NULL string in runtest.c
+ Switched from unsigned long to ptrdiff_t in parser.c
+ timsort.h: support older GCCs
+ Make configure.ac work with older pkg-config
* Bug Fixes:
+ Fix for conditional sections at end of document
+ Make sure that Python tests exit with error code
+ Audit memory error handling in xpath.c
+ Fix error code in xmlTextWriterStartDocument
+ Fix integer overflow when counting written bytes
+ Fix uninitialized memory access in HTML parser
+ Fix memory leak in xmlSchemaValAtomicType
+ Disallow conditional sections in internal subset
+ Fix use-after-free in xmlTextReaderFreeNodeList
+ Fix Regextests
+ Fix empty branch in regex
+ Fix integer overflow in entity recursion check
+ Don't read external entities or XIncludes from stdin
+ Fix Schema determinism check of ##other namespaces
+ Fix potential null deref in xmlSchemaIDCFillNodeTables
+ Fix potential memory leak in xmlBufBackToBuffer
+ Fix error message when processing XIncludes with fallbacks
+ Fix memory leak in xmlRegEpxFromParse
+ 14:00 is a valid timezone for xs:dateTime
+ Fix memory leak in xmlParseBalancedChunkMemoryRecover
+ Fix potential null deref in xmlRelaxNGParsePatterns
+ Misleading error message with xs:{min|max}Inclusive
+ Fix memory leak in xmlXIncludeLoadTxt
+ Partial fix for comparison of xs:durations
+ Fix null deref in xmlreader buffer
+ Fix unability to RelaxNG-validate grammar with choice-based name class
+ Fix unability to validate ambiguously constructed interleave for RelaxNG
+ Fix possible null dereference in xmlXPathIdFunction
+ fix memory leak in xmlAllocOutputBuffer
+ Fix unsigned int overflow
+ dict.h: gcc 2.95 doesn't allow multiple storage classes
+ Fix another code path in xmlParseQName
+ Make sure that xmlParseQName returns NULL in error case
+ Fix build without reader but with pattern
+ Fix memory leak in xmlAllocOutputBufferInternal error path
+ Fix unsigned integer overflow
+ Fix return value of xmlOutputBufferWrite
+ Fix parser termination from "Double hyphen within comment" error
+ Fix call stack overflow in xmlFreePattern
+ Fix null deref in previous commit
+ Fix memory leaks in xmlXPathParseNameComplex error paths
+ Check for integer overflow in xmlXPtrEvalChildSeq
+ Fix xmllint dump of XPath namespace nodes
+ Fix float casts in xmlXPathSubstringFunction
+ Fix null deref in xmlregexp error path
+ Fix null pointer dereference in xmlTextReaderReadOuterXml
+ Fix memory leaks in xmlParseStartTag2 error paths
+ Fix memory leak in xmlSAX2StartElement
+ Fix commit "Memory leak in xmlFreeID (xmlreader.c)"
+ Fix NULL pointer deref in xmlTextReaderValidateEntity
+ Memory leak in xmlFreeTextReader
+ Memory leak in xmlFreeID (xmlreader.c)
* Improvements:
+ Propagate memory errors in valuePush
+ Propagate memory errors in xmlXPathCompExprAdd
+ Make xmlFreeDocElementContent non-recursive
+ Avoid ignored attribute warnings under GCC
+ Make xmlDumpElementContent non-recursive
+ Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE
+ Mark xmlExp* symbols as removed
+ Make xmlParseConditionalSections non-recursive
+ Adjust expected error in Python tests
+ Make xmlTextReaderFreeNodeList non-recursive
+ Make xmlFreeNodeList non-recursive
+ Make xmlParseContent and xmlParseElement non-recursive
+ Remove executable bit from non-executable files
+ Fix expected output of test/schemas/any4
+ Optimize build instructions in README
+ xml2-config.in: Output CFLAGS and LIBS on the same line
+ xml2-config: Add a --dynamic switch to print only shared libraries
+ Annotate functions with __attribute__((no_sanitize))
+ Fix warnings when compiling without reader or push parser
+ Remove unused member `doc` in xmlSaveCtxt
+ Limit recursion depth in xmlXPathCompOpEvalPredicate
+ Remove -Wno-array-bounds
+ Remove unreachable code in xmlXPathCountFunction
+ Improve XPath predicate and filter evaluation
+ Limit recursion depth in xmlXPathOptimizeExpression
+ Disable hash randomization when fuzzing
+ Optional recursion limit when parsing XPath expressions
+ Optional recursion limit when evaluating XPath expressions
+ Use break statements in xmlXPathCompOpEval
+ Optional XPath operation limit
+ Fix compilation with --with-minimum
+ Check XPath stack after calling functions
+ Remove debug printf in xmlreader.c
+ Always define LIBXML_THREAD_ENABLED when enabled
+ Fix unused function warning in testapi.c
+ Remove unneeded function pointer casts
+ Fix -Wcast-function-type warnings (GCC 8)
+ Fix -Wformat-truncation warnings (GCC 8)
* Cleanups:
+ Rebuild docs
+ Disable xmlExp regex code
+ Remove redundant code in xmlRelaxNGValidateState
+ Remove redundant code in xmlXPathCompRelationalExpr
- Rebase patch fix-perl.diff

==== libxml2-python ====
Version update (2.9.9 -> 2.9.10)

- Since libxml2-2.9.10 perl-XML-LibXSLT fails to build: [bsc#1157450]
* Revert upstream commit to make xmlFreeNodeList non-recursive

https://github.com/GNOME/libxml2/commit/0762c9b69ba01628f72eada1c64ff3d361fb5716
- Add patch libxml2-xmlFreeNodeList-recursive.patch
- Version update to 2.9.10:
* Portability:
+ Fix exponent digits when running tests under old MSVC
+ Work around buggy ceil() function on AIX
+ Don't call printf with NULL string in runtest.c
+ Switched from unsigned long to ptrdiff_t in parser.c
+ timsort.h: support older GCCs
+ Make configure.ac work with older pkg-config
* Bug Fixes:
+ Fix for conditional sections at end of document
+ Make sure that Python tests exit with error code
+ Audit memory error handling in xpath.c
+ Fix error code in xmlTextWriterStartDocument
+ Fix integer overflow when counting written bytes
+ Fix uninitialized memory access in HTML parser
+ Fix memory leak in xmlSchemaValAtomicType
+ Disallow conditional sections in internal subset
+ Fix use-after-free in xmlTextReaderFreeNodeList
+ Fix Regextests
+ Fix empty branch in regex
+ Fix integer overflow in entity recursion check
+ Don't read external entities or XIncludes from stdin
+ Fix Schema determinism check of ##other namespaces
+ Fix potential null deref in xmlSchemaIDCFillNodeTables
+ Fix potential memory leak in xmlBufBackToBuffer
+ Fix error message when processing XIncludes with fallbacks
+ Fix memory leak in xmlRegEpxFromParse
+ 14:00 is a valid timezone for xs:dateTime
+ Fix memory leak in xmlParseBalancedChunkMemoryRecover
+ Fix potential null deref in xmlRelaxNGParsePatterns
+ Misleading error message with xs:{min|max}Inclusive
+ Fix memory leak in xmlXIncludeLoadTxt
+ Partial fix for comparison of xs:durations
+ Fix null deref in xmlreader buffer
+ Fix unability to RelaxNG-validate grammar with choice-based name class
+ Fix unability to validate ambiguously constructed interleave for RelaxNG
+ Fix possible null dereference in xmlXPathIdFunction
+ fix memory leak in xmlAllocOutputBuffer
+ Fix unsigned int overflow
+ dict.h: gcc 2.95 doesn't allow multiple storage classes
+ Fix another code path in xmlParseQName
+ Make sure that xmlParseQName returns NULL in error case
+ Fix build without reader but with pattern
+ Fix memory leak in xmlAllocOutputBufferInternal error path
+ Fix unsigned integer overflow
+ Fix return value of xmlOutputBufferWrite
+ Fix parser termination from "Double hyphen within comment" error
+ Fix call stack overflow in xmlFreePattern
+ Fix null deref in previous commit
+ Fix memory leaks in xmlXPathParseNameComplex error paths
+ Check for integer overflow in xmlXPtrEvalChildSeq
+ Fix xmllint dump of XPath namespace nodes
+ Fix float casts in xmlXPathSubstringFunction
+ Fix null deref in xmlregexp error path
+ Fix null pointer dereference in xmlTextReaderReadOuterXml
+ Fix memory leaks in xmlParseStartTag2 error paths
+ Fix memory leak in xmlSAX2StartElement
+ Fix commit "Memory leak in xmlFreeID (xmlreader.c)"
+ Fix NULL pointer deref in xmlTextReaderValidateEntity
+ Memory leak in xmlFreeTextReader
+ Memory leak in xmlFreeID (xmlreader.c)
* Improvements:
+ Propagate memory errors in valuePush
+ Propagate memory errors in xmlXPathCompExprAdd
+ Make xmlFreeDocElementContent non-recursive
+ Avoid ignored attribute warnings under GCC
+ Make xmlDumpElementContent non-recursive
+ Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE
+ Mark xmlExp* symbols as removed
+ Make xmlParseConditionalSections non-recursive
+ Adjust expected error in Python tests
+ Make xmlTextReaderFreeNodeList non-recursive
+ Make xmlFreeNodeList non-recursive
+ Make xmlParseContent and xmlParseElement non-recursive
+ Remove executable bit from non-executable files
+ Fix expected output of test/schemas/any4
+ Optimize build instructions in README
+ xml2-config.in: Output CFLAGS and LIBS on the same line
+ xml2-config: Add a --dynamic switch to print only shared libraries
+ Annotate functions with __attribute__((no_sanitize))
+ Fix warnings when compiling without reader or push parser
+ Remove unused member `doc` in xmlSaveCtxt
+ Limit recursion depth in xmlXPathCompOpEvalPredicate
+ Remove -Wno-array-bounds
+ Remove unreachable code in xmlXPathCountFunction
+ Improve XPath predicate and filter evaluation
+ Limit recursion depth in xmlXPathOptimizeExpression
+ Disable hash randomization when fuzzing
+ Optional recursion limit when parsing XPath expressions
+ Optional recursion limit when evaluating XPath expressions
+ Use break statements in xmlXPathCompOpEval
+ Optional XPath operation limit
+ Fix compilation with --with-minimum
+ Check XPath stack after calling functions
+ Remove debug printf in xmlreader.c
+ Always define LIBXML_THREAD_ENABLED when enabled
+ Fix unused function warning in testapi.c
+ Remove unneeded function pointer casts
+ Fix -Wcast-function-type warnings (GCC 8)
+ Fix -Wformat-truncation warnings (GCC 8)
* Cleanups:
+ Rebuild docs
+ Disable xmlExp regex code
+ Remove redundant code in xmlRelaxNGValidateState
+ Remove redundant code in xmlXPathCompRelationalExpr
- Rebase patch fix-perl.diff

==== libxslt ====
Version update (1.1.33 -> 1.1.34)
Subpackages: libxslt-tools libxslt1

- Update to 1.1.34: Oct 30 2019
* Documentation:
- Fix EXSLT web pages, Regenerate web pages
- Fix Git link in news.html
- Minor documentation fixes after recent changes
- Regenerate symbols and API docs
- Regenerate EXSLT website
* Portability:
- Remove stubs when compiling without debugger or profiler
- configure.ac: Invoke PKG_CHECK_MODULES for building shared libraries
- configure.ac: Conditionally determine whether xml2-config should pass
shared libraries or static libraries
- xslt-config.in: Fix broken --prefix=DIR support
- libexslt.pc.in: Do not expose private library dependencies unless invoked
- libxslt.pc.in: Do not expose private library dependencies unless invoked
- Fix -Wformat-overflow warning (GCC 9)
- Stop including ansidecl.h
- Remove WIN32_EXTRA_* variables
- Build without winsock
* Bug Fixes:
- xsl:template without name and match attributes should not be allowed
- Make sure that Python tests exit with error code
- Improve handling of invalid UTF-8 in format-number
- Fix dangling pointer in xsltCopyText
- Fix memory leak in pattern compilation error path
- Fix uninitialized read with UTF-8 grouping chars
- Fix integer overflow in FORMAT_GYEAR
- Fix performance regression with xsl:number
- Backup XPath context node in xsltInitCtxtKey
- Fix unsigned integer overflow in date.c
- Fix insertion of xsl:fallback content
- Avoid quadratic behavior in xsltSaveResultTo
- Fix numbering in non-Latin scripts
- Fix uninitialized read of xsl:number token
- Fix integer overflow in _exsltDateDayInWeek
- Rework xsltAttrVT allocation
- Fix check of xsltTestCompMatch return value
- Fix security framework bypass
- Use xmlNewTextChild in EXSLT dyn:map
- Fix float casts in exsltDateDuration
- Always set context node before calling XPath iterators
- Fix attribute precedence with xsl:use-attribute-sets
- Backup context node in exsltFuncFunctionFunction
- Initialize ctxt->output before evaluating global vars
- Fix memory leak in EXSLT functions error path
* Improvements:
- Fix -Wimplicit-fallthrough warnings
- Adjust number of API index pages
- Make xsltCompileRelativePathPattern non-recursive
- Check that crypto:rc4_decrypt produces valid UTF-8
- Avoid recursion in keys.c:skipPredicate
- xslt-config.in: Simply handling of $all_flags
- xslt-config.in: Add a --dynamic option to --libs
- xslt-config.in: Simplify basic library handling
- xslt-config.in: Remove unused variable
- xslt-config: Simply handling of --cflags
- Improve fuzzers
- Always reuse XPath context
- Compile with -Wextra
- Make profiler support optional
- Hide unused code when compiling without debugger
- Reorganize fuzzing code
- Optional operation limit
- Improve seed corpus and dictionary
- Reuse XPath context when compiling stylesheets
- Reuse XPath context in dyn:map
- Reuse XPath context in saxon:expression
- Add libFuzzer targets
- Adjust error message in expected test output
- Change bug tracker URL
- Change git repo URL
- Regenerate NEWS
- Fix misleading indentation in security.c
* Cleanups:
- Remove empty TODO file
- Remove generated file libxsltclass.txt from version control
- Rebuild docs
- Rebase patch libxslt-config-fixes.patch
- Remove patches fixed upstream:
* libxslt-CVE-2019-11068.patch
* libxslt-CVE-2019-13117.patch
* libxslt-CVE-2019-13118.patch
* libxslt-CVE-2019-18197.patch

==== libyui-qt-graph ====
Version update (2.45.3 -> 2.45.5)

- Do not require graphviz-devel for the doc package (bsc#1157916)
- 2.45.5
- Respect backslashes (graphviz escString) in texts (bsc#1157916)
- 2.45.4

==== libzypp ====
Version update (17.15.0 -> 17.17.0)

- Introduce PurgeKernels class (bsc#1155198)
Adds libzypp API to mark all obsolete kernels according to the
existing purge-kernel script rules.
- Add solver jobs for retracted packages and ptfs.
Support for ptf packages and retract ed patches.
- Do not enforce 'en' being in RequestedLocales (bsc#1155678)
If the user decides to have a system without explicit language
support he may do so.
- Pass correct posttrans script argument (fixes #190)
- BuildRequires: libsolv-devel >= 0.7.8.
- version 17.17.0 (12)
- Expose new libsolv API via C++ counterparts
(openSUSE/zypper#214)
- BuildRequires: libsolv-devel >= 0.7.7
- version 17.16.0 (12)

==== linux-glibc-devel ====
Version update (5.3 -> 5.4)

- Update to kernel headers 5.4

==== lirc ====

- Use python3-base BuildRequires instead of full python3
- Drop doxygen BuildRequires, the api-docs are bundled in the
source tarball and not regenerated, and are not even packaged.
- Move the portaudio based IR receiver driver behind a bcond - the
alsa based driver does the same, uses less resources, and does
not need an extra library.

==== mariadb-connector-c ====
Version update (3.1.4 -> 3.1.5)

- New upstream version 3.1.5 [bsc#1156669]
* MDEV-20469: Plugin dialog could not be loaded (wrong path)
* ODBC-440: Fixed typo in sha256_password cmake configuration
* CONC-418: For unknown/not handled schannel error codes
FormatMessage function will be used instead of returning
"Unknown error" message.

==== nano ====
Version update (4.5 -> 4.6)
Subpackages: nano-lang

- update to 4.6:
* re-introduce the formatter command (M-F)
* ^T will try to run 'hunspell' before 'spell', because it checks
spelling for the locale's language and understands UTF-8
* Multiple errors or warnings on startup will no longer slow nano
down but will be indicated on the status bar with trailing dots

==== openssl ====
Subpackages: libopenssl-devel

- Remove Obsoletes: pkgconfig(*): Only package names can be
obsoleted. Until RPM 4.15, those lines were simply ineffective
and being ignored, but with RPM 4.15 they result in an error.

==== ovmf ====
Version update (201908 -> 201911)
Subpackages: qemu-ovmf-x86_64

- Update to edk2-stable201911
+ SecurityPkg: Fix TPM2 ACPI measurement
+ MdeModulePkg: Enable variable runtime cache by default
+ OvmfPkg: Disable variable runtime cache
+ MdeModulePkg/Variable: Add RT GetVariable() cache support
+ CryptoPkg: Upgrade OpenSSL to 1.1.1d
+ MdePkg-UefiSpec.h: Add UEFI 2.8 new memory attributes
+ MdePkg/UefiFileHandleLib: Fix potential NULL dereference
+ NetworkPkg/HttpDxe: Set the HostName for the verification
(CVE-2019-14553)
+ NetworkPkg/TlsDxe: Add the support of host validation to TlsDxe
driver (CVE-2019-14553)
+ CryptoPkg/TlsLib: TlsSetVerifyHost: parse IP address literals
as such (CVE-2019-14553)
+ CryptoPkg/TlsLib: Add the new API "TlsSetVerifyHost"
(CVE-2019-14553)
+ MdePkg/Include/Protocol/Tls.h: Add the data type of
EfiTlsVerifyHost (CVE-2019-14553)
+ MdeModulePkg/BdsDxe: Fix PlatformRecovery issue
+ NetworkPkg/SnpDxe: Add PCD to remove ExitBootServices event
from SNP driver
+ MdeModulePkg: Update to support SmBios 3.3.0
+ UefiCpuPkg/MpInitLib: honor the platform's boot CPU count in AP
detection
+ SecurityPkg/Tcg2: Add Support Laml, Lasa for TPM2 ACPI
+ OvmfPkg/PlatformDxe: fix EFI_HII_HANDLE parameters of internal
functions
+ OvmfPkg/VirtioNetDxe: fix SignalEvent() call
+ OvmfPkg/XenBusDxe: fix UninstallMultipleProtocolInterfaces()
call
+ NetworkPkg/Ip4Dxe: fix NetLibDestroyServiceChild() call
+ MdeModulePkg/ScsiDiskDxe: Support Storage Security Command
Protocol
+ MdePkg: Implement SCSI commands for Security Protocol In/Out
+ MdeModulePkg/TerminalDxe: Enhance the arrow keys support
+ MdeModulePkg/UefiBootManager: Unload image on
EFI_SECURITY_VIOLATION
+ MdeModulePkg/DxeCapsuleLibFmp: Unload image on
EFI_SECURITY_VIOLATION
+ MdeModulePkg: Extend the support keyboard type of Terminal
console
+ UefiCpuPkg/CpuExceptionHandlerLib: Fix split lock
+ UefiCpuPkg: Fix potential spinLock issue in SmmStartupThisAp
+ UefiCpuPkg/PiSmmCpu: Enable 5L paging only when phy addr line
> 48
+ OvmfPkg/EnrollDefaultKeys: clean up Base64Decode() retval
handling
+ ArmVirtPkg/PlatformBootManagerLib: unload image on
EFI_SECURITY_VIOLATION
+ ShellPkg/ShellPkg.dsc AARCH64: enable stack protector
+ ArmVirtPkg/ArmVirtPrePiUniCoreRelocatable: revert to PIE
linking
+ BaseTools/GenFw AARCH64: fix up GOT based relative relocations
+ ShellPkg/Pci.c: Update supported link speed to PCI5.0
+ PcAtChipsetPkg: add PcdRealTimeClockUpdateTimeout
+ UefiCpuPkg: Add PcdCpuSmmRestrictedMemoryAccess
+ ShellPkg/CommandLib: avoid NULL derefence and memory leak
+ MdePkg/DxeHstiLib: Added checks to improve error handling
+ BaseTools: Support more file types in build cache
+ UefiCpuPkg/SecCore: get AllSecPpiList after SecPlatformMain
- Update openssl to 1.1.1d
+ Add openssl-fix-syntax-error.patch to fix a syntax error
- Drop ovmf-bsc1153072-fix-invalid-https-cert.patch
+ Already upstreamed

==== perl ====
Subpackages: perl-base perl-doc

- Add perl-Adapt-Configure-to-GCC-version-10.patch in order
to fix boo#1158254.

==== perl-HTTP-Cookies ====
Version update (6.07 -> 6.08)

- updated to 6.08
see /usr/share/doc/packages/perl-HTTP-Cookies/Changes
6.08 2019-12-02 15:58:32Z
- allow different "ignore_discard" value at save() time (GH#2) (Alex Peters)

==== perl-Socket6 ====
Version update (0.28 -> 0.29)

- Add manual license BSD-3-Clause to cpanspec.yml
Limit description to 2 paragraphs
- updated to 0.29
see /usr/share/doc/packages/perl-Socket6/ChangeLog
2018-09-30 Hajimu UMEMOTO <ume@xxxxxxxxxxxx>
* Socket6.pm: Bump version number to 0.29.
* Socket6.xs: Updates the tests for handling the correct headers
on NetBSD and DragonFly BSD.
Submitted by: Sevan Janiyan <venture37 [...] geeklan.co.uk>

==== perl-X500-DN ====

- No mix between numbered and unnumbered patches: RPM 4.15 finally
no longer supports that.

==== perl-XML-LibXML ====
Version update (2.0134 -> 2.0201)

- Update to 2.0201
2.0201 2019-05-25
- Set MIN_PERL_VERSION to 5.8.1.
- Alien::Libxml2 Makefile.PL cleanups.
- Update the README for grammar and info.
- Link to XML-LibXML "by Example"
- https://github.com/shlomif/perl-XML-LibXML/pull/36
- Thanks to @Grinnz .
2.0200 2019-03-23
- Convert to use Alien::Libxml2 .
- https://github.com/shlomif/perl-XML-LibXML/pull/30
- Thanks to @genio and @plicease .

==== perl-XML-LibXSLT ====

- Fix basic test that fails when build and run time versions are the same
* Add patch perl-XML-LibXSLT-lib-versions.patch
- Update spec file
* Use https and metacpan.org
* Use license tag for the LICENSE file
* Add cpanspec.yml file

==== permissions ====
Version update (1550_20191118 -> 1550_20191205)
Subpackages: chkstat permissions-config permissions-doc

- Update to version 20191205:
* fix privilege escalation through untrusted symlinks (bsc#1150734,
CVE-2019-3690)
- Update to version 20191122:
* faxq-helper: correct "secure" permission for trusted group (bsc#1157498)

==== postfix ====
Version update (3.4.7 -> 3.4.8)
Subpackages: postfix-doc

- Update to 3.4.8:
* Fix for an Exim interoperability problem when postscreen after-220
checks are enabled. Bug introduced in Postfix 3.4: the code
that detected "PIPELINING after BDAT" looked at the wrong
variable. The warning now says "BDAT without valid RCPT", and
the error is no longer treated as a command PIPELINING error,
thus allowing mail to be delivered. Meanwhile, Exim has been
fixed to stop sending BDAT commands when postscreen rejects all
RCPT commands.
* Usability bug, introduced in Postfix 3.4: the parser for
key/certificate chain files rejected inputs that contain an EC
PARAMETERS object. While this is technically correct (the
documentation says what types are allowed) this is surprising
behavior because the legacy cert/key parameters will accept
such inputs. For now, the parser skips object types that it
does not know about for usability, and logs a warning because
ignoring inputs is not kosher.
* Bug introduced in Postfix 2.8: don't gratuitously enable all
after-220 tests when only one such test is enabled. This made
selective tests impossible with 'good' clients. This will be
fixed in older Postfix versions at some later time.

==== python ====
Subpackages: python-curses python-tk

- Move /etc/pythonstart script to shared-python-startup
package.
- Add bpo-36576-skip_tests_for_OpenSSL-111.patch (originally from
bpo#36576) skipping tests failing with OpenSSL 1.1.1. Fixes
bsc#1149792
- Add adapted-from-F00251-change-user-install-location.patch fixing
pip/distutils to install into /usr/local.
- Update to 2.7.17:
- a bug fix release in the Python 2.7.x series. It is expected
to be the penultimate release for Python 2.7.
- Removed patches included upstream:
- CVE-2018-20852-cookie-domain-check.patch
- CVE-2019-16935-xmlrpc-doc-server_title.patch
- CVE-2019-9636-netloc-no-decompose-characters.patch
- CVE-2019-9947-no-ctrl-char-http.patch
- CVE-2019-9948-avoid_local-file.patch
- python-2.7.14-CVE-2018-1000030-1.patch
- python-2.7.14-CVE-2018-1000030-2.patch
- Renamed remove-static-libpython.diff and python-bsddb6.diff to
remove-static-libpython.patch and python-bsddb6.patch to unify
filenames.
- Add CVE-2019-16935-xmlrpc-doc-server_title.patch fixing
bsc#1153238 (aka CVE-2019-16935) fixing a reflected XSS in
python/Lib/DocXMLRPCServer.py
- Add bpo36302-sort-module-sources.patch (boo#1041090)
- Add CVE-2019-16056-email-parse-addr.patch fixing the email
module wrongly parses email addresses [bsc#1149955,
CVE-2019-16056]
- boo#1141853 (CVE-2018-20852) add
CVE-2018-20852-cookie-domain-check.patch fixing
http.cookiejar.DefaultPolicy.domain_return_ok which did not
correctly validate the domain: it could be tricked into sending
cookies to the wrong server.
- Skip test_urllib2_localnet that randomly fails in OBS
- bsc#1138459: add CVE-2019-10160-netloc-port-regression.patch
which fixes regression introduced by the previous patch.
(CVE-2019-10160)
Upstream gh#python/cpython#13812
- Set _lto_cflags to nil as it will prevent to propage LTO
for Python modules that are built in a separate package.
- bsc#1130840 (CVE-2019-9947): add CVE-2019-9947-no-ctrl-char-http.patch
Address the issue by disallowing URL paths with embedded
whitespace or control characters through into the underlying
http client request. Such potentially malicious header
injection URLs now cause a ValueError to be raised.
- bsc#1130847 (CVE-2019-9948) add CVE-2019-9948-avoid_local-file.patch
removing unnecessary (and potentially harmful) URL scheme
local-file://.
- bsc#1129346: add CVE-2019-9636-netloc-no-decompose-characters.patch
Characters in the netloc attribute that decompose under NFKC
normalization (as used by the IDNA encoding) into any of ``/``,
``?``, ``#``, ``@``, or ``:`` will raise a ValueError. If the
URL is decomposed before parsing, or is not a Unicode string,
no error will be raised (CVE-2019-9636).
Upstream commits e37ef41 and 507bd8c.
- Update to 2.7.16:
* bugfix-only release: complete list of changes on
https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.16rc1.rst
* Removed openssl-111.patch and
CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch
which are fully included in the tarball.
* Updated patches to apply cleanly:
CVE-2019-5010-null-defer-x509-cert-DOS.patch
bpo36160-init-sysconfig_vars.patch
do-not-use-non-ascii-in-test_ssl.patch
openssl-111-middlebox-compat.patch
openssl-111-ssl_options.patch
python-2.5.1-sqlite.patch
python-2.6-gettext-plurals.patch
python-2.7-dirs.patch
python-2.7.2-fix_date_time_compiler.patch
python-2.7.4-canonicalize2.patch
python-2.7.5-multilib.patch
python-2.7.9-ssl_ca_path.patch
python-bsddb6.diff
remove-static-libpython.patch
* Update python-2.7.5-multilib.patch to pass with new platlib
regime.
- bsc#1109847: add CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch
fixing bpo-34623.
- bsc#1073748: add bpo-29347-dereferencing-undefined-pointers.patch
PyWeakref_NewProxy@Objects/weakrefobject.c creates new isntance
of PyWeakReference struct and does not intialize wr_prev and
wr_next of new isntance. These pointers can have garbage and
point to random memory locations.
Python should not crash while destroying the isntance created
in the same interpreter function. As per my understanding, both
wr_prev and wr_next of PyWeakReference instance should be
initialized to NULL to avoid segfault.
- bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch
fixing bpo-35746.
An exploitable denial-of-service vulnerability exists in the
X509 certificate parser of Python.org Python 2.7.11 / 3.7.2.
A specially crafted X509 certificate can cause a NULL pointer
dereference, resulting in a denial of service. An attacker can
initiate or accept TLS connections using crafted certificates
to trigger this vulnerability.
- Use upstream-recommended %{_rpmconfigdir}/macros.d directory
for the rpm macros.
- Add patch openssl-111.patch to work with openssl-1.1.1
(bsc#1113755)
- Apply "CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch" which
converts shutil._call_external_zip to use subprocess rather than
distutils.spawn. [bsc#1109663, CVE-2018-1000802]
- Apply "CVE-2018-1061-DOS-via-regexp-difflib.patch" to prevent
low-grade poplib REDOS (CVE-2018-1060) and to prevent difflib REDOS
(CVE-2018-1061). Prior to this patch mail server's timestamp was
susceptible to catastrophic backtracking on long evil response from
the server. Also, it was susceptible to catastrophic backtracking,
which was a potential DOS vector.
[bsc#1088004 and bsc#1088009, CVE-2018-1061 and CVE-2018-1060]
- Apply "CVE-2017-18207.patch" to add a check to Lib/wave.py that
verifies that at least one channel is provided. Prior to this
check, attackers could cause a denial of service (divide-by-zero
error and application crash) via a crafted wav format audio file.
[bsc#1083507, CVE-2017-18207]
- Apply "python-sorted_tar.patch" (bsc#1086001, boo#1081750)
sort tarfile output directory listing
- update to 2.7.15
* dozens of bugfixes, see NEWS for details
- removed obsolete patches:
* python-ncurses-6.0-accessors.patch
* python-fix-shebang.patch
* gcc8-miscompilation-fix.patch
- add patch from upstream:
* do-not-use-non-ascii-in-test_ssl.patch
- Add gcc8-miscompilation-fix.patch (boo#1084650).
- Apply "python-2.7.14-CVE-2017-1000158.patch" to prevent integer
overflows in PyString_DecodeEscape that could have resulted in
heap-based buffer overflow attacks and possible arbitrary code
execution. [bsc#1068664, CVE-2017-1000158]
- exclude test_socket & test_subprocess for PowerPC boo#1078485
(same ref as previous change)
- Add python-skip_random_failing_tests.patch bypass boo#1078485
and exclude many tests for PowerPC
- Add patch python-fix-shebang.patch to fix bsc#1078326

==== python-PyYAML ====
Version update (5.1.2 -> 5.2)

- update to 5.2
* A more flexible fix for custom tag constructors
* Change default loader for yaml.add_constructor
* Change default loader for add_implicit_resolver, add_path_resolver
* Move constructor for object/apply to UnsafeConstructor
* Fix logic for quoting special characters

==== python-base ====
Subpackages: libpython2_7-1_0 python-xml

- Move /etc/pythonstart script to shared-python-startup
package.
- Add bpo-36576-skip_tests_for_OpenSSL-111.patch (originally from
bpo#36576) skipping tests failing with OpenSSL 1.1.1. Fixes
bsc#1149792
- Add adapted-from-F00251-change-user-install-location.patch fixing
pip/distutils to install into /usr/local.

==== python-h2 ====

- Skip one test that is flaky

==== python-libvirt-python ====
Version update (5.9.0 -> 5.10.0)

- Update to 5.10.0
- Add all new APIs and constants in libvirt 5.10.0

==== python-lxml ====
Subpackages: python-lxml-doc python3-lxml

- Add lxml-libxml-2.9.10.patch: Fix build against libxml 2.9.10.

==== python-psutil ====
Version update (5.6.5 -> 5.6.7)

- update to version 5.6.7:
* Bug fixes
+ 1630: [Windows] can't compile source distribution due to C
syntax error.
- changes from version 5.6.6:
* Bug fixes
+ 1179: [Linux] Process cmdline() now takes into account
misbehaving processes renaming the command line and using
inappropriate chars to separate args.
+ 1616: use of Py_DECREF instead of Py_CLEAR will result in double
free and segfault (CVE). (patch by Riccardo Schirone)
+ 1619: [OpenBSD] compilation fails due to C syntax error. (patch
by Nathan Houghton)

==== python-pywbem ====
Version update (0.11.0 -> 0.14.6)

- Cleanup specfile
- Install license correctly
- Add missing dependency on python-pbr
- Update to version 0.14.6:
Lots of changes, additions, and deprecations, see full list at:
https://pywbem.readthedocs.io/en/stable_0.14/changes.html#pywbem-0-14-6

==== python-simplejson ====
Version update (3.16.1 -> 3.17.0)

- specfile:
* update copyright year
- update to version 3.17.0:
* Updated documentation to be Python 3 first, and
have removed documentation notes about version changes
that occurred more than five years ago.
https://github.com/simplejson/simplejson/pull/257
https://github.com/simplejson/simplejson/pull/254
* Update build matrix for Python 3.8
https://github.com/simplejson/simplejson/pull/255
https://github.com/simplejson/simplejson/pull/256

==== rdma-core ====
Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1

- Add Broadcom fixes (bsc#1157891)
- bnxt_re-lib-Add-remaining-pci-ids-for-gen-P5-devices.patch
- bnxt_re-lib-Recognize-additional-5750x-device-ID-s.patch

==== read-only-root-fs ====
Version update (1.0+git20191112.42add9e -> 1.0+git20191203.3f7cc07)

- Update to version 1.0+git20191203.3f7cc07:
* Workaround /var being RO during systemd-journal-flush (boo#1156421)

==== salt ====
Version update (2019.2.0 -> 2019.2.2)
Subpackages: python3-salt salt-master salt-minion

- Prevent test_mod_del_repo_multiline_values to fail
- Read repo info without using interpolation (bsc#1135656)
- Requires vs BuildRequires
- Limiting M2Crypto to >= SLE15
- Replacing pycrypto with M2Crypto
- Fix for log checking in x509 test
- Update to 2019.2.2 release
- Added:
* fix-for-log-checking-in-x509-test.patch
* prevent-test_mod_del_repo_multiline_values-to-fail.patch
* read-repo-info-without-using-interpolation-bsc-11356.patch
- Modified:
* async-batch-implementation.patch
* add-hold-unhold-functions.patch
* adds-the-possibility-to-also-use-downloadonly-in-kwa.patch
* decide-if-the-source-should-be-actually-skipped.patch
* allow-passing-kwargs-to-pkg.list_downloaded-bsc-1140.patch
* add-batch_presence_ping_timeout-and-batch_presence_p.patch
* run-salt-master-as-dedicated-salt-user.patch
* run-salt-api-as-user-salt-bsc-1064520.patch
* fix-unit-test-for-grains-core.patch
* add-environment-variable-to-know-if-yum-is-invoked-f.patch
* fix-async-batch-multiple-done-events.patch
* activate-all-beacons-sources-config-pillar-grains.patch
* fix-for-older-mock-module.patch
* do-not-break-repo-files-with-multiple-line-values-on.patch
* fall-back-to-pymysql.patch
* add-missing-fun-for-returns-from-wfunc-executions.patch
* loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch
* add-virt.volume_infos-and-virt.volume_delete.patch
* fix-issue-2068-test.patch
* switch-firewalld-state-to-use-change_interface.patch
* make-aptpkg.list_repos-compatible-on-enabled-disable.patch
* fix-ipv6-scope-bsc-1108557.patch
* 2019.2.0-pr-54196-backport-173.patch
* do-not-make-ansiblegate-to-crash-on-python3-minions.patch
* x509-fixes-111.patch
* prevent-ansiblegate-unit-tests-to-fail-on-ubuntu.patch
* fix-zypper.list_pkgs-to-be-aligned-with-pkg-state.patch
* add-cpe_name-for-osversion-grain-parsing-u-49946.patch
* fix-failing-unit-tests-for-batch-async.patch
* temporary-fix-extend-the-whitelist-of-allowed-comman.patch
* improve-batch_async-to-release-consumed-memory-bsc-1.patch
* batch.py-avoid-exception-when-minion-does-not-respon.patch
* preserve-already-defined-destructive_tests-and-expen.patch
* virt.volume_infos-fix-for-single-vm.patch
* move-server_id-deprecation-warning-to-reduce-log-spa.patch
* include-aliases-in-the-fqdns-grains.patch
* don-t-call-zypper-with-more-than-one-no-refresh.patch
* add-custom-suse-capabilities-as-grains.patch
* get-os_arch-also-without-rpm-package-installed.patch
* add-saltssh-multi-version-support-across-python-inte.patch
* accumulated-changes-required-for-yomi-165.patch
* use-adler32-algorithm-to-compute-string-checksums.patch
* remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch
* use-current-ioloop-for-the-localclient-instance-of-b.patch
* remove-virt.pool_delete-fast-parameter-178.patch
* add-multi-file-support-and-globbing-to-the-filetree-.patch
* use-threadpool-from-multiprocessing.pool-to-avoid-le.patch
* prevent-systemd-run-description-issue-when-running-a.patch
* integration-of-msi-authentication-with-azurearm-clou.patch
* virt.volume_infos-needs-to-ignore-inactive-pools-174.patch
* virt-1.volume_infos-fix-for-single-vm.patch
* add-supportconfig-module-for-remote-calls-and-saltss.patch
* avoid-excessive-syslogging-by-watchdog-cronjob-58.patch
* strip-trailing-from-repo.uri-when-comparing-repos-in.patch
* preserving-signature-in-module.run-state-u-50049.patch
* fix-zypper-pkg.list_pkgs-expectation-and-dpkg-mockin.patch
* fix-aptpkg-systemd-call-bsc-1143301.patch
* calculate-fqdns-in-parallel-to-avoid-blockings-bsc-1.patch
* remove-unnecessary-yield-causing-badyielderror-bsc-1.patch
* debian-info_installed-compatibility-50453.patch
* add-standalone-configuration-file-for-enabling-packa.patch
* accumulated-changes-from-yomi-167.patch
* add-virt.all_capabilities.patch
* fix-memory-leak-produced-by-batch-async-find_jobs-me.patch
* do-not-report-patches-as-installed-when-not-all-the-.patch
* support-config-non-root-permission-issues-fixes-u-50.patch
* add-all_versions-parameter-to-include-all-installed-.patch
* fixes-cve-2018-15750-cve-2018-15751.patch
* fix-bsc-1065792.patch
* enable-passing-a-unix_socket-for-mysql-returners-bsc.patch
* avoid-traceback-when-http.query-request-cannot-be-pe.patch
* restore-default-behaviour-of-pkg-list-return.patch
* take-checksums-arg-into-account-for-postgres.datadir.patch
* early-feature-support-config.patch
* provide-the-missing-features-required-for-yomi-yet-o.patch
* implement-network.fqdns-module-function-bsc-1134860-.patch
* fix-virt.full_info-176.patch
* checking-for-jid-before-returning-data.patch
* virt.volume_infos-silence-libvirt-error-message-175.patch
* do-not-crash-when-there-are-ipv6-established-connect.patch
* fix-for-suse-expanded-support-detection.patch
* fix-a-wrong-rebase-in-test_core.py-180.patch
* add-ppc64le-as-a-valid-rpm-package-architecture.patch
* make-profiles-a-package.patch
* bugfix-any-unicode-string-of-length-16-will-raise-ty.patch
* fix-git_pillar-merging-across-multiple-__env__-repos.patch
* return-the-expected-powerpc-os-arch-bsc-1117995.patch
* fix-async-batch-race-conditions.patch
* do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch
- Removed:
* fix-syndic-start-issue.patch
* prevent-already-reading-continuous-exception-message.patch
* virt.pool_running-fix-pool-start.patch
* azurefs-gracefully-handle-attributeerror.patch
* virt-handle-whitespaces-in-vm-names.patch
* mount-fix-extra-t-parameter.patch
* try-except-undefineflags-as-this-operation-is-not-su.patch

==== sensors ====
Version update (3.5.0 -> 3.6.0)
Subpackages: libsensors4

- Removed upstreamed patch lm_sensors-3.4.0-sensors-detect-ppc64le.patch
- Update to version 3.6.0:
+ configs: Added a number of new configuration files
+ fancontrol: AVERAGE env variable can be used to set the number of previous
readings to average
+ Makefile: The MACHINE variable has been renamed to ARCH
+ sensord: Add an option -1/--oneline to print chip and adapter on the same
line
+ sensors: Fixed a stray comma bug in the JSON output
* Fixed Fahrenheit conversion with raw and JSON output
* Scale voltage and current values in the default output format
+ sensors-detect: Add detection of AMD Family 17h, models 30h, 70h
* Add detection of some AMD Family 15h models
* Add detection of AMD Family 16h model 30h power sensors
* Add detection of Hygon Family 18h thermal sensors
* Add detection of Nuvoton NCT6797D
* Add detection of Nuvoton NCT6798D
* Add detection of Nuvoton NCT6112D/NCT6114D/NCT6116D
* Fix printing CPU info on non-x86 arches
* Fix printing lm_sensors version
* Mark Fintek F75387SG/RG as supported by the f75375s driver

==== sssd ====
Version update (2.2.0 -> 2.2.2)
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-32bit
sssd-krb5-common sssd-ldap

- Update to release 2.2.2
* New options were added which allow sssd-kcm to handle bigger
data. See manual pages for max_ccaches, max_uid_caches and
max_ccache_size.
* SSSD can now automatically refresh cached user data from
subdomains in IPA/AD trust.
* Fixed issue with SSSD hanging when connecting to
non-responsive server with ldaps://.
* SSSD is now restarted by systemd after crashes.

==== tcsh ====
Version update (6.21.00 -> 6.22.02)
Subpackages: tcsh-lang

- Update to tcsh bug fix version V6.22.02 - 20191204
* Fix version in configure.ac
- Drop patches
* tcsh-6.21.0-history-file-locking.patch
As upstream introduced its own history file locking
* tcsh-6.18.03-history-merge.dif
To respect upstream history merge handling
* tcsh-6.19.00-history-file-locking-order.patch
Not required due dropped tcsh-6.21.0-history-file-locking.patch
* tcsh-6.20.00-avoid-dotlock-for-fcntl.patch
Not required due dropped tcsh-6.21.0-history-file-locking.patch
* tcsh-6.18.01-history-stderror-jmp.patch
Not required due dropped tcsh-6.21.0-history-file-locking.patch
- Update to tcsh bug fix version V6.22.01 - 20191201
* undo PR/88: Preserve empty arguments in :q, since it breaks
$ set x=""
$ alias test "echo "\""$x:q"\"" is working."
$ alias test
echo "
- Update to tcsh bug fix version V6.22.00 - 20191128
* PR/113: Sobomax: avoid infinite loops for -c commands when stdout is
not a tty.
* Avoid infinite loops during history loads when merging, print a better
error for errors during history load.
* PR/88: Preserve empty arguments in :q
* PR/94: Small apple issues (SAVESIGVEC, HOSTTYPE)
* PR/81: Fix range matching issue where we were comparing with the
range character instead of the start of range. [l-z]* would match foo
- Drop patch tcsh-6.21.00-sighup-deadlock.patch as now superfluous
- Port patches
* tcsh-6.17.06-dspmbyte.dif
* tcsh-6.18.01-history-stderror-jmp.patch
* tcsh-6.19.00-history-file-locking-order.patch
* tcsh-6.20.00-avoid-dotlock-for-fcntl.patch
* tcsh-6.21.0-history-file-locking.patch
* tcsh-6.21.00-sighup-deadlock.patch
* tcsh-6.21.00.dif

==== transactional-update ====
Version update (2.17 -> 2.20)
Subpackages: transactional-update-zypp-config

- Update to version 2.20
- Add the option `--continue` to extend an existing snapshot. This can be
used to perform multiple operations before rebooting into the new state.
[gh#openSUSE/transactional-update#16]
- Make sure the dracut service to print warnings on /etc overlay conflicts
also runs in the pre-made images.
- Add "none" reboot method
- Remove conflicting overlay artifacts in case an existing overlay directory
will be reused

==== v4l2loopback ====
Version update (0.12.2_k5.3.12_1 -> 0.12.3_k5.3.12_1)

- Update to version 0.12.3
* v4l2lookback: Port to kernel 5.4+
* Set video_device->device_caps for linux>4.7.0
* Set some more device_caps
* Update issue templates

==== vim ====
Version update (8.1.2233 -> 8.1.2383)
Subpackages: gvim vim-data vim-data-common

- Updated to version 8.1.2383, fixes the following problems
+ refreshed patches: vim-7.3-help_tags.patch
vim-7.3-name_vimrc.patch
vim-8.1.0297-dump3.patch
* Cannot get the Vim command line arguments.
* get_short_pathname() fails depending on encoding.
* "C" with 'virtualedit' set does not include multi-byte char.
* Ml_get error if pattern matches beyond last line.
* Mode() result after usign "r" depends on whether CURSOR_SHAPE is
defined. (Christian Brabandt)
* Error in docs tags goes unnoticed.
* Popup window width changes when scrolling.
* Match highlight does not combine with 'wincolor'.
* Creating docs tags uses user preferences. (Tony Mechelynck)
* 'wrapscan' is not used for "gn".
* Third character of 'listchars' tab shows in wrong place when 'breakindent'
is set.
* Some tests are still in old style.
* "make vimtags" does not work in runtime/doc.
* CTRL-W dot does not work in a terminal when modifyOtherKeys is enabled.
* "make vimtags" does not print any message.
* CTRL-U and CTRL-D don't work in popup window.
* ":term command" may not work without a shell.
* Compiler warning for int size.
* Using "which" to check for an executable is not reliable.
* May get hit-enter prompt after entering a number. (Malcolm Rowe)
* Running tests may leave XfakeHOME behind.
* With modifyOtherKeys set 'noesckeys' doesn't work. (James McCoy)
* Unpack assignment in function not recognized.
* 'noesckeys' test fails in GUI.
* There are two test files for :let.
* When popup with "botleft" does not fit it flips incorrectly.
* Position unknown for a mouse click in a popup window.
* Compiler warning for uninitialized variable. (Tony Mechelynck)
* Spell file flag zero is not recognized.
* Tags file with very long line stops using binary search.
* "gf" is not tested in Visual mode.
* Build error if FEAT_TAG_BINS is not defined. (John Marriott)
* Test may hang at more prompt.
* Wrong default when "pos" is changed with popup_atcursor().
* Newlines in 'balloonexpr' result only work in the GUI.
* Using "seesion" looks like a mistake.
* Terminal window is not updated when info popup changes.
* Using "cd" with "exe" may fail.
* Computation of highlight attributes is too complicated.
* Crash when passing partial to substitute().
* 'showbreak' cannot be set for one window.
* Crash when passing many arguments through a partial. (Andy Massimino)
* Missed on use of p_sbr.
* Compiler warning for unused variable. (Tony Mechelynck)
* Padding in structures wastes memory.
* Using border highlight in popup window leaks memory.
* Using EndOfBuffer highlight in popup does not look good.
* Not using all space when popup with "topleft" flips to above.
* After :diffsplit closing the window does not disable diff.
* Autocommand test fails.
* Memory leak when executing command in a terminal.
* v:mouse_winid not set on click in popup window.
* Join adds trailing space when second line is empty. (Brennan Vincent)
* Cursor position wrong when characters are concealed and asearch causes
a scroll.
* If buffer of popup is in another window cursorline sign shows.
* Text properties are not combined with syntax by default.
* The ex_vimgrep() function is too long.
* Missing part of 8.1.2296.
* ConPTY in MS-Windows 1909 is still wrong.
* Redraw breaks going through list of popup windows.
* :lockmarks does not work for '[ and '].
* Cursor in wrong position after horizontal scroll.
* Cannot get the mouse position when getting a mouse click.
* No warning for wrong entry in translations.
* Double and triple clicks are not tested.
* Positioning popup doesn't work for buffer-local textprop.
* Deleting text before zero-width textprop removes it.
* Compiler warning for argument type.
* No proper test for directory changes in quickfix.
* Warning for missing function prototype.
* "line:" field in tags file not used.
* Debugging where a delay comes from is not easy.
* vi' sometimes does not select anything.
* Not always using the right window when jumping to an error.
* FORTIFY_SOURCE can also be present in CPPFLAGS.
* No test for spell affix file with flag on suffix.
* Compiler warning for int size.
* Insufficient test coverage for quickfix.
* Cannot select all text with the mouse. (John Marriott)
* Quickfix test fails in very big terminal.
* Width of scrollbar in popup menu not taken into account.
* Crash when using balloon with empty line.
* Cannot parse a date/time string.
* Cannot build with Hangul input.
* A few hangul input pieces remain.
* Mouse multiple click test is a bit flaky.
* vi' does not always work when 'selection' is exclusive.
* The option.c file is still very big.
* Missing file in refactoring.
* With modifyOtherKeys CTRL-^ doesn't work.
* Possible NULL pointer dereference in popup_locate(). (Coverity)
* Error message for function arguments may use NULL pointer. (Coverity)
* When an expr mapping moves the cursor it is not restored.
* Double-click time sometimes miscomputed.
* Using Visual mark sith :s gives E20 if not set.
* Insufficient testing for quickfix.
* Quickfix test fails under valgrind and asan.
* Not so easy to interrupt a script programatically.
* Random number generator in Vim script is slow.
* Using time() for srand() is not very random.
* .cjs files are not recognized as Javascript.
* CTRL-R CTRL-R doesn't work with modifyOtherKeys.
* :const cannot be followed by "| endif".
* :lockvar and :unlockvar cannot be followed by "| endif".
* Other text for CTRL-V in Insert mode with modifyOtherKeys.
* 'wincolor' not used for > for not fitting double width char. Also:
popup drawn on right half of double width character looks wrong.
* rand() does not use the best algorithm.
* No test with wrong argument for rand().
* Cannot build without FEAT_FLOAT. (John Marriott)
* Quickfix test coverage can still be improved.
* Cannot place signs in a popup window. (Maxim Kim)
* ml_get error when accessing Visual area in 'statusline'.
* Missing tests for recent popupwin changes.
* Using old C style comments.
* Registers are not sufficiently tested.
* Using old C style comments.
* Cannot build with quickfix and without text properties.
* Build problems on VMS.
* FEAT_TEXT_PROP is a confusing name.
* Cannot build with +popupwin but without +quickfix. (John Marriott)
* Unused parts of libvterm are included.
* No suffucient testing for registers.
* Preprocessor indents are incorrect.
* GUI: when losing focus a pending operator is executed.
* Using old C style comments.
* Not all register related code is covered by tests.

==== xfce4-branding-openSUSE ====
Version update (4.14+20191008 -> 4.14+20191207)
Subpackages: exo-branding-openSUSE libgarcon-branding-openSUSE
libxfce4ui-branding-openSUSE openSUSE-xfce-icon-theme
thunar-volman-branding-openSUSE xfce4-notifyd-branding-openSUSE
xfce4-panel-branding-openSUSE xfce4-power-manager-branding-openSUSE
xfce4-session-branding-openSUSE xfce4-settings-branding-openSUSE
xfdesktop-branding-openSUSE xfwm4-branding-openSUSE

- Update to version 4.14+20191207:
* Fix YaST desktop file

==== zypper ====
Version update (1.14.32 -> 1.14.33)
Subpackages: zypper-aptitude zypper-log zypper-needs-restarting

- Introduce purge-kernels command (bsc#1155198)
Adds a new zypper command to cleanup all obsolete kernels as
configured by the user.
- Request root privs for zypper addlocale and removelocale.
- Load only target resolvables for removelocale.
- Load only target resolvables for zypper rm (bsc#1157377)
- Fix broken search by filelist (bsc#1135114 )
- zypper-log: Replace python by a bash script (fixes#304,
fixes#306, bsc#1156158)
- locales: do not sort out requested locales which are not
available (bsc#1155678)
- list_patches_by_issue: rewrite table output and add xml output
(bsc#1154805)
Prevent listing duplicate matches in tables. XML result is
provided within the new <list-patches-byissue> element.
- list-patches: XML add patch <issue-date> and <issue-list>
(bsc#1154805)
- Fix zypper lp --cve/bugzilla/issue options (bsc#1155298)
- Always execute commit when adding/removing locales (fixes
bsc#1155205)
- man page: fix description of --table-style,-s (bsc#1154804)
- Provide reverse search in zypper (fixes #214)
This patch adds a new set of switches to zypper to support
searching reverse dependencies for a package or a set of packages.
- BuildRequires: libzypp-devel >= 17.16.1.
- version 1.14.33


--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >
This Thread
  • No further messages