Mailinglist Archive: opensuse-factory (229 mails)

< Previous Next >
[opensuse-factory] New Tumbleweed snapshot 20191225 released!
  • From: Dominique Leuenberger <dimstar@xxxxxxx>
  • Date: Fri, 27 Dec 2019 14:02:07 +0000
  • Message-id: <157745532730.31120.10834074118484785042@go-agent-stagingbot-2>

Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20191225

Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports

Packages changed:
apache2
apr-util
bbswitch
bluez
boost-base
boost-extra
ca-certificates-mozilla
catfish (1.4.10 -> 1.4.11)
ccache (3.7.5 -> 3.7.6)
dracut (049+git115.c2d8d6fb -> 049+git116.e9995c78)
exo (0.12.10 -> 0.12.11)
ftgl (2.1.3~rc5 -> 2.4.0)
fuse3 (3.8.0 -> 3.9.0)
gcc9 (9.2.1+r275327 -> 9.2.1+r279103)
gdb
geoclue2 (2.5.3 -> 2.5.4)
geronimo-specs
git (2.24.0 -> 2.24.1)
glib-networking (2.62.1 -> 2.62.2)
gnome-autoar (0.2.3 -> 0.2.4)
gnome-settings-daemon (3.34.1+3 -> 3.34.2+0)
gnome-shell (3.34.1+14 -> 3.34.2+0)
gobject-introspection
gpg2 (2.2.18 -> 2.2.19)
grantlee5 (5.1.0 -> 5.2.0)
grantleetheme
graphite2
greybird-geeko-theme (3.22.10.1+git39.ffde076 -> 3.22.10.1+git48.35f7cb8)
groff
groff-full
grub2
gstreamer-plugins-base
gtk2
gtkmm3
hexchat (2.14.2 -> 2.14.3)
iptables (1.8.3 -> 1.8.4)
java-11-openjdk
kcalutils
kdevelop5
kdump
kwin5
ldb
less
libdbusmenu-gtk2
libdbusmenu-gtk3
libebml (1.3.9 -> 1.3.10)
libmbim (1.20.2 -> 1.20.4)
libmicrohttpd (0.9.68 -> 0.9.69)
libosinfo (1.6.0 -> 1.7.1)
libqmi (1.24.0 -> 1.24.2)
libsolv (0.7.9 -> 0.7.10)
libssh (0.9.2 -> 0.9.3)
libxml2
libxml2-python3
libzypp (17.17.0 -> 17.20.0)
lilv
llvm9 (9.0.0 -> 9.0.1)
lvm2
lvm2-device-mapper
mariadb
mokutil
nagios (4.4.3 -> 4.4.5)
nftables (0.9.2 -> 0.9.3)
opencv3 (3.4.7 -> 3.4.8)
openssl-1_1
osinfo-db (20191108 -> 20191125)
p11-kit
patterns-base
perl-HTTP-Date (6.03 -> 6.05)
perl-Net-DBus (1.1.0 -> 1.2.0)
php7 (7.4.0 -> 7.4.1)
polari (3.34.0 -> 3.34.1)
policycoreutils
python
python-base
python-paramiko (2.6.0 -> 2.7.1)
python-pywbem (0.14.6 -> 0.15.0)
python-redis
python-requests
python-scipy (1.3.2 -> 1.4.1)
remmina (1.3.7 -> 1.3.8)
rubygem-actioncable-5.2 (5.2.4 -> 5.2.4.1)
rubygem-actionmailer-5.2 (5.2.4 -> 5.2.4.1)
rubygem-actionpack-5.2 (5.2.4 -> 5.2.4.1)
rubygem-actionview-5.2 (5.2.4 -> 5.2.4.1)
rubygem-activejob-5.2 (5.2.4 -> 5.2.4.1)
rubygem-activemodel-5.2 (5.2.4 -> 5.2.4.1)
rubygem-activerecord-5.2 (5.2.4 -> 5.2.4.1)
rubygem-activestorage-5.2 (5.2.4 -> 5.2.4.1)
rubygem-activesupport-5.2 (5.2.4 -> 5.2.4.1)
rubygem-rails-5.2 (5.2.4 -> 5.2.4.1)
rubygem-railties-5.2 (5.2.4 -> 5.2.4.1)
salt
samba (4.11.2+git.99.f93cc798f2e -> 4.11.3+git.102.3e2882ca77e)
sssd
tbb (2019_20190605 -> 2020.0)
tmux
tumbler (0.2.7 -> 0.2.8)
unbound (1.9.5 -> 1.9.6)
virglrenderer
virtualbox
xen (4.13.0_03 -> 4.13.0_04)
zchunk (1.1.0 -> 1.1.4)
zsh (5.7.1 -> 5.8~pre2)
zxing-cpp

=== Details ===

==== apache2 ====
Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork
apache2-utils

- add openssl call to DEFAULT_SUSE comment [bsc#1159480]
- modified sources
% apache2-ssl-global.conf

==== apr-util ====
Subpackages: apr-util-devel libapr-util1

- fix linking with libpq
- modified patches
% apr-util-postgresql.patch

==== bbswitch ====

- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
allow OBS to shortcut through the -mini flavors.

==== bluez ====
Subpackages: libbluetooth3

- add NoSource tag for omitting README.md from src.rpm
- move all deprecated tools into bluez-deprecated package which can
be disabled by prjconf in OBS.
- bluez-deprecated will go away before end of 2020 in Tumbleweed!

==== boost-base ====
Subpackages: boost-license1_71_0 boost1_71_0-jam libboost_date_time1_71_0
libboost_filesystem1_71_0 libboost_headers1_71_0-devel libboost_iostreams1_71_0
libboost_locale1_71_0 libboost_program_options1_71_0 libboost_regex1_71_0
libboost_thread1_71_0

- Remove hardcoded abiflags (%py3_abiflags is not available for 3
years), use python3-config instead. Fixes build with Python 3.8.

==== boost-extra ====

- Remove hardcoded abiflags (%py3_abiflags is not available for 3
years), use python3-config instead. Fixes build with Python 3.8.

==== ca-certificates-mozilla ====

- make sure p11-kit with patches is installed on SLE (boo#1154871)

==== catfish ====
Version update (1.4.10 -> 1.4.11)
Subpackages: catfish-lang

- Update to version 1.4.11
- Radio indicators are now displayed on the layout options
- Fix crashes when GdkDisplay or GdkScreen calls return None
(lp#1822914)
- Fix configuration of preferred window layout (bxo#16085)
- Fix finding files in the target directory (bxo#15985, bxo#16233)
- Fix symbolic link looping (bxo#16272)
- Fix home (~) expansion for the start path
- Fix asv-summary-has-dot-suffix
(https://appstream.debian.org/sid/main/issues/catfish.html)
- Translation Updates

==== ccache ====
Version update (3.7.5 -> 3.7.6)

- Update to version 3.7.6:
* The opt-in ?file_macro sloppiness? mode has been removed so that the input
file path now is always included in the direct mode hash. This fixes a bug that
could result in false cache hits in an edge case when ?file_macro sloppiness?
is enabled and several identical source files include a relative header file
with the same name but in different directories.
* Statistics files are no longer lost when the filesystem of the cache is
full.
* Bail out on too hard Clang option -MJarg (in addition to the previous
bailout of -MJ arg).
* Properly handle color diagnostics in the depend mode as well.

==== dracut ====
Version update (049+git115.c2d8d6fb -> 049+git116.e9995c78)

- Update to version 049+git116.e9995c78:
* dracut.spec: add convertfs module correctly (boo#1158777)

==== exo ====
Version update (0.12.10 -> 0.12.11)
Subpackages: exo-data exo-helpers exo-lang exo-tools libexo-1-0 libexo-2-0

- Update to version 0.12.11
* Bump documentation dates
* Add *.mo to .gitignore
* Revert padding patches that add too much padding in the Thunar
compact view (bxo#16196)

==== ftgl ====
Version update (2.1.3~rc5 -> 2.4.0)

- Update to version 2.4.0
* New setting LegacyOpenGLState(), see README-LegacyOpenGLState
* Fix/silence compiler warnings
version 2.3.1:
* Updates to debian/ build files
version 2.3.0:
* Fix a memory leak
* FTContour: avoid NaN for angles close to 180 degrees
(see Debian bug #589601, 5.)
* FTBufferGlyph: fix garbage with bitmap fonts
(text is still clipped, that seems to be another problem)
* FTTextureGlyphImpl: fix garbage with bitmap fonts
(see Debian bug #589601, 4.)
* FTPixmapGlyph: fix garbage with bitmap fonts
(see Debian bug #589601, 2.)
* FTOutlineGlyphImpl, FTPolygonGlyphImpl: avoid uninizitalized
vectoriser in case of error (see Debian bug #589601, 1.)
* Various other bugfixes collected through the years
version 2.2.0:
* Stable API. Public headers are now frozen.
* Fixed several memory corruption and crash bugs - Sam Hocevar
* Fixed several memory leaks - Sam Hocevar
* Kerning and glyph performance enhancements - Sean Morrison
* The library now also exports a pure C interface - Éric Beets
* Inset/outset contour support for fonts - Éric Beets
* Fix the FTLayout rendering - Éric Beets
* Added new FTLayout and FTSimpleLayout support for layout
managers - Sam Hocevar
* Fixed the paths in the XCode project - Henry Maddocks
* Changed the behaviour of some objects so that if there is an
error their state isn't changed - Henry Maddocks
* New, fast FTBufferFont texture fonts - Sam Hocevar
* UTF-8 support - Daniel Remenak
- Switch to maintained fork
- Dropped ftgl-autoreconf.patch (merged upstream)
- Refreshed install-FTVectoriser.h.patch

==== fuse3 ====
Version update (3.8.0 -> 3.9.0)
Subpackages: libfuse3-3

- Update to version 3.9.0
* Added support for FUSE_EXPLICIT_INVAL_DATA to enable onl
invalidate cached pages on explicit request.

==== gcc9 ====
Version update (9.2.1+r275327 -> 9.2.1+r279103)
Subpackages: cpp9 gcc9-c++ gcc9-fortran gcc9-info gcc9-locale gcc9-objc
libasan5 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1
liblsan0 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit
libstdc++6-devel-gcc9 libstdc++6-locale libstdc++6-pp-gcc9
libstdc++6-pp-gcc9-32bit libtsan0 libubsan1

- Update to gcc-9-branch head (r279103).
* Includes gcc9-pr91772.patch
- Refresh gcc48-remove-mpfr-2.4.0-requirement.patch to apply
again.
- Use new license and header also in gcc.spec.in to reduce churn
with format_spec_file.
- Use BuildRoot tag again for old distros (SLE-11).
- Make cross-arm-gcc a gcc_icecream cross. Remove the disabling
of debuginfo stripping. [bsc#1152590]

==== gdb ====

- Fix build with gcc 10 [bsc#1158539, swo#24653].
* gdb-0001-remove-alloca-0-calls.patch

==== geoclue2 ====
Version update (2.5.3 -> 2.5.4)
Subpackages: system-user-srvGeoClue typelib-1_0-Geoclue-2_0

- Update to version 2.5.4:
+ Plug a leak that becomes pretty huge after a while of running
Geoclue.
+ Fix a buffer-overflow.

==== geronimo-specs ====

- Set version for the specs comming from tag 1_1_1 in order to
avoid unexpanded version macros in pom files.

==== git ====
Version update (2.24.0 -> 2.24.1)
Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk

- git 2.24.1:
* CVE-2019-1348: The --export-marks option of fast-import is
exposed also via the in-stream command feature export-marks=...
and it allows overwriting arbitrary paths (boo#1158785)
* CVE-2019-1349: on Windows, when submodules are cloned
recursively, under certain circumstances Git could be fooled
into using the same Git directory twice (boo#1158787)
* CVE-2019-1350: Incorrect quoting of command-line arguments
allowed remote code execution during a recursive clone in
conjunction with SSH URLs (boo#1158788)
* CVE-2019-1351: on Windows mistakes drive letters outside of
the US-English alphabet as relative paths (boo#1158789)
* CVE-2019-1352: on Windows was unaware of NTFS Alternate Data
Streams (boo#1158790)
* CVE-2019-1353: when run in the Windows Subsystem for Linux
while accessing a working directory on a regular Windows
drive, none of the NTFS protections were active (boo#1158791)
* CVE-2019-1354: on Windows refuses to write tracked files with
filenames that contain backslashes (boo#1158792)
* CVE-2019-1387: Recursive clones vulnerability that is caused
by too-lax validation of submodule names, allowing very
targeted attacks via remote code execution in recursive
clones (boo#1158793)
* CVE-2019-19604: a recursive clone followed by a submodule
update could execute code contained within the repository
without the user explicitly having asked for that (boo#1158795)

==== glib-networking ====
Version update (2.62.1 -> 2.62.2)
Subpackages: glib-networking-lang

- Update to version 2.62.1:
+ Fix handshake_context crashes.

==== gnome-autoar ====
Version update (0.2.3 -> 0.2.4)
Subpackages: libgnome-autoar-0-0 libgnome-autoar-gtk-0-0

- Update to version 0.2.4:
+ Use autoreconf instead of deprecated gnome-common.

==== gnome-settings-daemon ====
Version update (3.34.1+3 -> 3.34.2+0)
Subpackages: gnome-settings-daemon-lang

- Update to version 3.34.2+0:
+ media-keys: Place spawned processes into a systemd scope
+ smartcard: Initialize a pointer before use

==== gnome-shell ====
Version update (3.34.1+14 -> 3.34.2+0)
Subpackages: gnome-shell-calendar gnome-shell-lang

- Update to version 3.34.2+0:
* popupMenu: Close when a system modal pops up
* switcherPopup: Dismiss when a system modal dialog opens
* weather: Only require auto-location authorization if sandboxed
* util: Place spawned processes into a systemd scope
* shell-global: Place launched applications into a systemd scope
* Update Malay translation
* closeDialog: Fix scale of dialog for x11 clients in Wayland sessions
* switcherPopup: Fix scrollable check
* calendar-server: Use correct timezone for all-day events
* theme: Add light styling to message buttons
* Update Chinese (Taiwan) translation
* appIcon: Draw running dot above the overview icon
* texture-cache: Remove also scaled keys from the cache
* data: Enable clean session shutdown after gnome-shell failure
* extensionSystem: Create a file to flag that extensions are being loaded
* extensions-tool: Fix removing from settings list
* introspect: Fix whitelist check
* theme: Add :active styling to message-close and media control buttons
* theme: Add message close button styling
* theme: Darken hovered message-media-control button
* magnifier: Use new cursor tracker API to keep wayland focus while hidden
* magnifier: Use own showSystemCursor() instead of set_pointer_visible()
* Update Brazilian Portuguese translation
* polkitAgent: Use dialog as confirmation when the user has no password
* polkitAgent: Update user name on user changes
* polkitAgent: Fix a typo of a signal name
* appDisplay: Add a timeout when switching pages during DnD
* appDisplay: Add threshold after overshoot page switches
* appDisplay: Simplify event blocking while folder is opened
* appDisplay: Ensure we don't recreate existing AppIcons for folders
* appDisplay: Add missing .actor
* keyboard: Try harder to find a matching layout
* screenShield: Replace child properties
* switcherPopup: Fix last commit
* switcherPopup: Improve modifier-less keybinding navigation
* switcherPopup: Use roundtrip time when the popup is modifier-less
* appDisplay: Don't crash if app is missing categories
* panel: Update window section items on title changes
* power: Handle "100% but charging" case
* closeDialog: Fix dialog size when using geometry scaling
* appIcon: Remove drag monitor on destroy
* folderView: Reset schemas before removing the folder
* baseAppView: Destroy icon when removing
* allView: Rename variable
* allView, frequentView: Only create icons when necessary
* polkitAgent: Fix spinner
* Increase .calendar-today visibility
* appMenu: Hide stopped spinner actor
* animation: Add parameter for hiding stopped Spinner actor
* animation: Turn Spinner animate parameter into Params option

==== gobject-introspection ====
Subpackages: girepository-1_0 libgirepository-1_0-1

- Drop python3-Sphix BuildRequires, only used for rebuilding the
website contents.

==== gpg2 ====
Version update (2.2.18 -> 2.2.19)
Subpackages: gpg2-lang

- update to 2.2.19:
* gpg: Fix double free when decrypting for hidden recipients
* gpg: Use auto-key-locate for encryption even for mail addressed
given with angle brackets
* gpgsm: Add special case for certain expired intermediate
certificates

==== grantlee5 ====
Version update (5.1.0 -> 5.2.0)

- Enable and run tests
* add grantlee-5.2.0-fix-ctest-ld-library-path.patch to set correct
ld library path as we skip rpath
* add grantlee-5.2.0-disable-textdocument-tests.patch to disable
some tests
- Update to 5.2.0
* Increase CMake requirement to version 3.5
* Port scriptable extensions to QJSEngine provided by QtQml
* Support reading properties from Q_GADGETS
* Remove TestCocoon integration
* Clean up documentation to clarify introspection requirements
* Fix mixing of {% include %} and {% extends %} tags
* Fix various bugs discovered by fuzzing
* Remove use of TR1 library features from unit tests
* Remove obsolete build options
* Document that loading templates from Qt Resources is possible
- Remove obsolete patches now included upstream
* fix-build-with-Qt-5.13.patch
* 0001-Remove-vestigial-ansi-flag.patch
* 0002-Fix-mix-of-inclusion-and-extension.patch
- Rebase pachtes
* includes.diff
- Add patch to fix segfault when mixing include and extend
* 0002-Fix-mix-of-inclusion-and-extension.patch

==== grantleetheme ====
Subpackages: grantleetheme-lang libKF5GrantleeTheme5

- Require exact grantlee5 version it was built with, the plugin
location contains the version so the installed plugin won't be
found by different versions

==== graphite2 ====
Subpackages: libgraphite2-3 libgraphite2-3-32bit

- BuildIgnore shared-mime-info, pulled in by libglib-2_0-0. Required
by gvfs to do mime detection, but not required for building.

==== greybird-geeko-theme ====
Version update (3.22.10.1+git39.ffde076 -> 3.22.10.1+git48.35f7cb8)
Subpackages: gtk2-metatheme-greybird-geeko gtk3-metatheme-greybird-geeko
metatheme-greybird-geeko-common

- Update to version 3.22.10.1+git48.35f7cb8:
* Make use of symlinks
* Add single-user installation instructions
* Added xfwm4 dark accessibility theme
* Update to upstream master

==== groff ====

- Add man page roff(7) to alternatives to avoid conflict with
mandoc.

==== groff-full ====
Subpackages: gxditview

- Add man page roff(7) to alternatives to avoid conflict with
mandoc.

==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin
grub2-x86_64-efi grub2-x86_64-xen

- Correct awk pattern in 20_linux_xen (bsc#900418, bsc#1157912)
- Correct linux and initrd handling in 20_linux_xen (bsc#1157912)
M grub2-efi-xen-cfg-unquote.patch
M grub2-efi-xen-chainload.patch
M grub2-efi-xen-cmdline.patch
M grub2-efi-xen-removable.patch

==== gstreamer-plugins-base ====
Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0
libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0
libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0
libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0
typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0

- Enable orc / wayland-egl on SLE15.

==== gtk2 ====
Subpackages: gtk2-data gtk2-immodule-amharic gtk2-immodule-inuktitut
gtk2-immodule-thai gtk2-immodule-tigrigna gtk2-immodule-vietnamese
gtk2-immodule-xim gtk2-lang gtk2-tools gtk2-tools-32bit libgtk-2_0-0
libgtk-2_0-0-32bit

- Add Obsoletes/Provides to baselibs.conf to ensure
gtk2-immodule-tigrigna-32bit can be upgraded from old version.
- bsc#1158897: Remove dependency on jasper (due to planned removal)
Removes JPEG2000 support.

==== gtkmm3 ====

- Update BuildRequires: pkgconfig(atkmm-1.6) >= 2.24.2;
pkgconfig(giomm-2.4) >= 2.54.0.

==== hexchat ====
Version update (2.14.2 -> 2.14.3)
Subpackages: hexchat-lang

- update to 2.14.3
* fix various incorrect parsing of IRC messages relating to trailing
parameters
* fix SASL negotiation combined with multi-line cap
* fix input box theming with Yaru theme
* python: Work around Python 3.7 regression causing crash on unload
* sysinfo: Add support for /etc/os-release
* sysinfo: Ignore irrelevant mounts when calculating storage size

==== iptables ====
Version update (1.8.3 -> 1.8.4)
Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins

- Update to release 1.8.4
* Fix for wrong counter format in `ebtables-nft-save -c` output.
* Print typical iptables-save comments in arptables- and
ebtables-save, too.
* xt_owner: add --suppl-groups option
* Remove support for /etc/xtables.conf
* Restore support for "-4" and "-6" options in rule lines.

==== java-11-openjdk ====
Subpackages: java-11-openjdk-headless

- Switch back armv6 from zero platform to client JVM

==== kcalutils ====
Subpackages: kcalutils-lang libKF5CalendarUtils5

- Require exact grantlee5 version it was built with, the plugin
location contains the version so the installed plugin won't be
found by different versions

==== kdevelop5 ====
Subpackages: kdevelop5-lang kdevplatform kdevplatform-lang libkdevplatform54

- Require exact grantlee5 version by kdevplatform with which it was
built, the plugin location contains the version so the installed
plugin won't be found by different versions

==== kdump ====

- kdump-calibrate-Update-values.patch: calibrate: Update values
(bsc#1130529).
- kdump-prefer-by-path-and-device-mapper.patch: Prefer by-path and
device-mapper aliases over kernel device names (bsc#1101149,
LTC#168532).
- kdump-powerpc-no-reload-on-CPU-removal.patch: powerpc: Do not
reload on CPU hot removal (bsc#1133407, LTC#176111).
- kdump-Add-force-option-to-KDUMP_NETCONFIG.patch: Add ":force"
option to KDUMP_NETCONFIG (bsc#1108919).
- kdump-Add-fence_kdump_send-when-fence-agents-installed.patch: Add
fence_kdump_send when fence-agents installed (bsc#1108919).
- kdump-FENCE_KDUMP_SEND-variable.patch: Use var for path of
fence_kdump_send and remove the unnecessary PRESCRIPT check
(bsc#1108919).
- kdump-Document-fence_kdump_send.patch: Document kdump behaviour
for fence_kdump_send (bsc#1108919).
- kdump-nss-modules.patch: Improve the handling of NSS
(bsc#1021846).
- kdump-skip-mounts-if-no-proc-vmcore.patch: Skip kdump-related
mounts if there is no /proc/vmcore (bsc#1102252, bsc#1125011).
- kdump-clean-up-kdump-mount-points.patch: Make sure that kdump
mount points are cleaned up (bsc#1102252, bsc#1125011).
- kdump-Clean-up-the-use-of-current-vs-boot-network-iface.patch:
Clean up the use of current vs. boot network interface names
(bsc#1094444, bsc#1116463, bsc#1141064).
- kdump-Use-a-custom-namespace-for-physical-NICs.patch: Use a
custom namespace for physical NICs (bsc#1094444, bsc#1116463,
bsc#1141064).
- kdump-preserve-white-space.patch: Preserve white space when
removing kernel command line options (bsc#1117652).

==== kwin5 ====
Subpackages: kwin5-lang

- Add patch to fix crash in systemsettings (kde#411166):
* 0001-Possible-fix-for-KDecoration-crash-in-systemsettings.patch

==== ldb ====
Subpackages: libldb2 libldb2-32bit python3-ldb

- Add obsolete ldb1 directive to baselibs.conf

==== less ====

- Move lesskey* from /etc to /usr/etc

==== libdbusmenu-gtk2 ====

- Disable testtools on %arm since Valgrind is broken on armv6/7 atm

==== libdbusmenu-gtk3 ====

- Disable testtools on %arm since Valgrind is broken on armv6/7 atm

==== libebml ====
Version update (1.3.9 -> 1.3.10)

- Update to version 1.3.10:
* When reading binary elements with a size of 0, the element was
skipped by libebml instead of returned to the calling function.

==== libmbim ====
Version update (1.20.2 -> 1.20.4)
Subpackages: libmbim-glib4 mbimcli-bash-completion

- Update to version 1.20.4:
+ libmbim-glib:
- Fixed memleak when processing responses with multiple
fragments.
- Fixed memleak when processing failed Open operations.
- Removed redundant method declaration in UUID header.

==== libmicrohttpd ====
Version update (0.9.68 -> 0.9.69)

- update to 0.9.69:
* If application suspends a connection before we could send
100 CONTINUE, give application another shot at queuing a reply
before the upload begins.

==== libosinfo ====
Version update (1.6.0 -> 1.7.1)
Subpackages: libosinfo-1_0-0 libosinfo-lang typelib-1_0-Libosinfo-1_0

- Update to version 1.7.1
Changes in this release include:
* Fix usage of versioned symbols
* MinGW spec file fixes and improvements
* Fix pci.ids and usb.ids installation
- Update to version 1.7.0
Changes in this release include:
* Add API to expose a device driver "priority"
* Improve media detection when using "volume-size" to distinguish medias
* General improvements on OsinfoList APIs to avoid unsafe access
* Minor POD fixes
* Switch to meson build system
* Add API to expose "firmware" support on OsinfoOS
* Drop "env" type support from osinfo-detect
* Print the architecture of the detected tree / media on osinfo-detect
* Add API to create an OsinfoTree from a treeinfo file

==== libqmi ====
Version update (1.24.0 -> 1.24.2)
Subpackages: libqmi-glib5 libqmi-tools

- Update to version 1.24.2:
+ libqmi-glib:
- message: fixed message creation on big endian systems.
- message: added missing services in
get_version_introduced_full().
- message: updated printable_full() to allow a NULL
line_prefix.
- device: updated response reception logic to make sure we
check the message id before attempting to parse the
contents, and if the message id doesn't match we return an
early QMI_CORE_ERROR_UNEXPECTED_MESSAGE error.
+ pkgconfig:
- Added libmbim dependency in Libs.Private, if built with
QMI-over-MBIM support.
+ qmi-proxy:
- Updated to always use the realpath of the QMI device file,
so that users using different symlinks to the same device
file don't get transaction ids mixed up.
+ Several other minor improvements and fixes.

==== libsolv ====
Version update (0.7.9 -> 0.7.10)
Subpackages: libsolv-devel libsolv-tools python3-solv ruby-solv

- fix solv_zchunk decoding error if large chunks are used
[bnc#1159314]
- build with -DENABLE_RPMDB_LIBRPM=1 on SUSE to support
multiple rpm database backends
- added two new function to make libzypp independent of the rpm
database format
- bump version to 0.7.10

==== libssh ====
Version update (0.9.2 -> 0.9.3)
Subpackages: libssh-config libssh4

- Update to version 0.9.3
* Fixed CVE-2019-14889 - SCP: Unsanitized location leads to command execution
* SSH-01-003 Client: Missing NULL check leads to crash in erroneous state
* SSH-01-006 General: Various unchecked Null-derefs cause DOS
* SSH-01-007 PKI Gcrypt: Potential UAF/double free with RSA pubkeys
* SSH-01-010 SSH: Deprecated hash function in fingerprinting
* SSH-01-013 Conf-Parsing: Recursive wildcards in hostnames lead to DOS
* SSH-01-014 Conf-Parsing: Integer underflow leads to OOB array access
* SSH-01-001 State Machine: Initial machine states should be set explicitly
* SSH-01-002 Kex: Differently bound macros used to iterate same array
* SSH-01-005 Code-Quality: Integer sign confusion during assignments
* SSH-01-008 SCP: Protocol Injection via unescaped File Names
* SSH-01-009 SSH: Update documentation which RFCs are implemented
* SSH-01-012 PKI: Information leak via uninitialized stack buffer
- Rename suffix define to pkg_suffix: rpm 4.15 has suffix reserved
for internal use.

==== libxml2 ====
Subpackages: libxml2-2 libxml2-2-32bit libxml2-devel libxml2-tools

- Build python2 and python3 bindings in separate flavors. As
python3-libxml2 is a dependency of e.g. itstools and thus many
other packages these packages no longer have a build dependency
on python2. Breaks a build loop for python2.

==== libxml2-python3 ====

- Build python2 and python3 bindings in separate flavors. As
python3-libxml2 is a dependency of e.g. itstools and thus many
other packages these packages no longer have a build dependency
on python2. Breaks a build loop for python2.

==== libzypp ====
Version update (17.17.0 -> 17.20.0)

- BuildRequires: libsolv-devel >= 0.7.10.
- RpmDb: Become rpmdb backend independent (jsc#SLE-7272)
- RpmDb: Close API offering a custom rpmdb path
It's actually not needed and for this to work also libsolv needs
to support it. You can sill use a librpmDb::db_const_iterator to
access a database at a custom location (ro).
- Remove legacy rpmV3database conversion code.
- version 17.20.0 (20)
- MediaCurl: assert cookie file has mode 0600 (bsc#1158763, CVE-2019-18900)
- version 17.19.0 (12)
- dup: fix removing orphaned packages dropped by to-be-installed
products (bsc#1155819)
- version 17.18.1 (12)
- Resolver: add solution actions for SOLVER_SOLUTION_BLACK
(retracted/PTF)
- Solvable: add isRetracted and isPtf attributes.
- version 17.18.0 (12)

==== lilv ====

- Add specific version requirement for libserd see boo#1158728

==== llvm9 ====
Version update (9.0.0 -> 9.0.1)
Subpackages: clang9 clang9-checker clang9-doc libLLVM9 libLTO9 libc++-devel
libc++1 libc++abi-devel libc++abi1 libclang9

- Update to version 9.0.1.
* This release contains bug-fixes for the LLVM 9.0.0 release.
This release is API and ABI compatible with 9.0.0.
- Drop patches that have landed upstream:
* dont-install-example-analyzer-plugins.patch
* fix-module-test.patch
* llvm-add-missing-include.patch
- Drop set-revision.patch, don't provide revision number in clang.
The upstream repository has moved from Subversion to git, so the
revision number is just a hash, which limits its usefulness.
- Rebase llvm-do-not-install-static-libraries.patch.

==== lvm2 ====
Subpackages: liblvm2cmd2_03

- backport patches for lvm2 to avoid software abnormal work (bsc#1158861)
+ bug-1158861_01-config-remove-filter-typo.patch
+ bug-1158861_02-config-Fix-default-option-which-makes-no-sense.patch
+ bug-1158861_03-vgchange-don-t-fail-monitor-command-if-vg-is-exporte.patch
+ bug-1158861_04-fix-duplicate-pv-size-check.patch
+ bug-1158861_05-hints-fix-copy-of-filter.patch
+ bug-1158861_06-fix-segfault-for-invalid-characters-in-vg-name.patch
+ bug-1158861_07-vgck-let-updatemetadata-repair-mismatched-metadata.patch
+ bug-1158861_08-hints-fix-mem-leaking-buffers.patch
+ bug-1158861_09-pvcreate-pvremove-fix-reacquiring-global-lock-after.patch
- backport upstream patches for passing lvm2 testsuite (bsc#1158628)
+ bug-1158628_01-tests-replaces-grep-q-usage.patch
+ bug-1158628_02-tests-fix-ra-checking.patch
+ bug-1158628_03-tests-simplify-some-var-settings.patch
+ bug-1158628-04-pvmove-correcting-read_ahead-setting.patch
+ bug-1158628_05-activation-add-synchronization-point.patch
+ bug-1158628_06-pvmove-add-missing-synchronization.patch
+ bug-1158628_07-activation-extend-handling-of-pending_delete.patch
+ bug-1158628_08-lv_manip-add-synchronizations.patch
+ bug-1158628_09-lvconvert-improve-validation-thin-and-cache-pool-con.patch
+ bug-1158628_10-thin-activate-layer-pool-aas-read-only-LV.patch
+ bug-1158628_11-tests-mdadm-stop-in-test-cleanup.patch
+ bug-1158628_12-test-increase-size-of-raid10-LV-allowing-tests-to-su.patch
+ bug-1158628_13-lvconvert-fix-return-value-when-zeroing-fails.patch
+ bug-1158628_14-tests-add-extra-settle.patch
+ bug-1158628_15-test-Fix-handling-leftovers-from-previous-tests.patch
- bug-1043040_test-fix-read-ahead-issues-in-test-scripts.patch

==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
libdevmapper1_03-32bit

- backport patches for lvm2 to avoid software abnormal work (bsc#1158861)
+ bug-1158861_01-config-remove-filter-typo.patch
+ bug-1158861_02-config-Fix-default-option-which-makes-no-sense.patch
+ bug-1158861_03-vgchange-don-t-fail-monitor-command-if-vg-is-exporte.patch
+ bug-1158861_04-fix-duplicate-pv-size-check.patch
+ bug-1158861_05-hints-fix-copy-of-filter.patch
+ bug-1158861_06-fix-segfault-for-invalid-characters-in-vg-name.patch
+ bug-1158861_07-vgck-let-updatemetadata-repair-mismatched-metadata.patch
+ bug-1158861_08-hints-fix-mem-leaking-buffers.patch
+ bug-1158861_09-pvcreate-pvremove-fix-reacquiring-global-lock-after.patch
- backport upstream patches for passing lvm2 testsuite (bsc#1158628)
+ bug-1158628_01-tests-replaces-grep-q-usage.patch
+ bug-1158628_02-tests-fix-ra-checking.patch
+ bug-1158628_03-tests-simplify-some-var-settings.patch
+ bug-1158628-04-pvmove-correcting-read_ahead-setting.patch
+ bug-1158628_05-activation-add-synchronization-point.patch
+ bug-1158628_06-pvmove-add-missing-synchronization.patch
+ bug-1158628_07-activation-extend-handling-of-pending_delete.patch
+ bug-1158628_08-lv_manip-add-synchronizations.patch
+ bug-1158628_09-lvconvert-improve-validation-thin-and-cache-pool-con.patch
+ bug-1158628_10-thin-activate-layer-pool-aas-read-only-LV.patch
+ bug-1158628_11-tests-mdadm-stop-in-test-cleanup.patch
+ bug-1158628_12-test-increase-size-of-raid10-LV-allowing-tests-to-su.patch
+ bug-1158628_13-lvconvert-fix-return-value-when-zeroing-fails.patch
+ bug-1158628_14-tests-add-extra-settle.patch
+ bug-1158628_15-test-Fix-handling-leftovers-from-previous-tests.patch
- bug-1043040_test-fix-read-ahead-issues-in-test-scripts.patch

==== mariadb ====
Subpackages: libmariadbd19 mariadb-client mariadb-errormessages

- added rpm test macros: %mysql_testserver_start,
%mysql_testserver_cconf, %mysql_testserver_stop
First two consuments are python-sortinghat and python-mysqlclient.

==== mokutil ====

- Add build for ppc64/ppc64le

==== nagios ====
Version update (4.4.3 -> 4.4.5)
Subpackages: nagios-www

- 4.4.5
* Reverted changes related to #625 due to CPU load issues
* Partially reverted changes for #647 due to CPU load issues
* Fixed "Quick Search" so that leading/trailing whitespace doesn't affect
output (#681) (Sebastian Wolf)
* Fixed build issues on non-RPM-based platforms (#617) (T.J. Yang)
- 4.4.4
* Fixed log rotation logic to not repeatedly schedule rotation on a DST
change (#610, #626) (Jaroslav Jindrak & Sebastian Wolf)
* Fixed $SERVICEPROBLEMID$ to be reset after service recovery (#621)
(Sebastian Wolf)
* Fixed defunct worker processes appearing after nagios was reloaded (#441,
#620) (Sebastian Wolf)
* Fixed main nagios thread to release nagios.qh on a closed connection (#635)
(Sebastian Wolf)
* Fixed semicolon escaping to remove prepended backslash (\) (#643)
(Sebastian Wolf)
* Fixed 'Checks of this host have been disabled' message showing on
passive-only hosts (#632) (Vojt?ch ?ir??ek & Sebastian Wolf)
* Fixed last_hard_state showing the current hard state when service status is
brokered (#633) (Sebastian Wolf)
* Fixed long plugin output (>8KB) occasionally getting truncated (#625)
(Sebastian Wolf)
* Fixed check scheduling for objects with large check_intervals and small
timeperiods (#647) (Sebastian Wolf)
* Fixed SOFT recoveries sending when services had HARD recovery some time
after host recovery (#651) (Sebastian Wolf)
* Fixed incorrect permissions on debugging builds of FreeBSD (#420)
(Sebastian Wolf)
* Fixed NEB callback lists being partially orphaned when multiple modules
subscribe to one callback (#590) (Sebastian Wolf)
* Fixed memory leaks in run_async_service_check(), run_async_host_check()
when checks are brokered (#664) (Sebastian Wolf)
* Fixed potential XSS in main.php, map.php (#671, #672) (Jak Gibb)
* Removed NEB brokering for nagios daemonization, since daemonization occurs
before NEB initialization (#591) (Sebastian Wolf)

==== nftables ====
Version update (0.9.2 -> 0.9.3)
Subpackages: libnftables1

- Add json, python [boo#1158723]
- Update to release 0.9.3
* meta: Introduce new conditions "time", "day" and "hour".
* src: add ability to set/get secmarks to/from connection.
* flowtable: add support for named flowtable listing.
* flowtable: add support for delete command by handle.
* json: add support for element deletion.
* Add `-T` as the short option for `--numeric-time`.
* meta: add ibrpvid and ibrvproto support

==== opencv3 ====
Version update (3.4.7 -> 3.4.8)

- Update to 3.4.8
For details, see https://github.com/opencv/opencv/wiki/ChangeLog#version348
Drop upstream CVE-2019-15939.patch
- Adjust _constraints, fix out-of-disk-space failures

==== openssl-1_1 ====
Subpackages: libopenssl-1_1-devel libopenssl1_1 libopenssl1_1-32bit

- Security fix: [bsc#1158809, CVE-2019-1551]
* Overflow bug in the x64_64 Montgomery squaring procedure used
in exponentiation with 512-bit moduli
- Add openssl-1_1-CVE-2019-1551.patch

==== osinfo-db ====
Version update (20191108 -> 20191125)

- Update database to version 20191125
osinfo-db-20191125.tar.xz
- Update sle12sp5 definition
add-sle12sp5-support.patch

==== p11-kit ====
Subpackages: libp11-kit0 libp11-kit0-32bit p11-kit-tools

- Also build documentation (boo#1013125)

==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem
patterns-base-basic_desktop patterns-base-console patterns-base-documentation
patterns-base-enhanced_base patterns-base-minimal_base
patterns-base-sw_management patterns-base-transactional_base patterns-base-x11
patterns-base-x11_enhanced

- Disable purge-kernels-service dependency for now: dracut has not
yet been updated to no longer ship the service file.
- Support multiversion(kernel) with purge-kernels.service separated from dracut
(jsc#SLE-10162, jsc#SLE-10465).

==== perl-HTTP-Date ====
Version update (6.03 -> 6.05)

- updated to 6.05
see /usr/share/doc/packages/perl-HTTP-Date/Changes
6.05 2019-11-19 03:02:32Z
- Bump minimum version of Time::Local to 1.28 (GH#17) (Olaf Alders)
- updated to 6.04
see /usr/share/doc/packages/perl-HTTP-Date/Changes
6.04 2019-11-14 22:22:50Z
- Replace vars with our (GH#15) (James Raspass)
- Tidy lib and t files (GH#16) (Olaf Alders)

==== perl-Net-DBus ====
Version update (1.1.0 -> 1.2.0)

- updated to 1.2.0
see /usr/share/doc/packages/perl-Net-DBus/Changes
1.2.0 2019-12-16
- Avoid memory leak with timeouts in reactor
- Disable XML entity expansion in introspection XML docs
- Don't include GIT repo in dist
- Remove obsolete XML::Grove dep from spec
- Fix GIT repo location
- Fix misc typos in POD
- Make reactor robust to time going backwards
- Add GIT repo & bug tracker to Makefile.PL
- Fix basepath when enumerating subnodes
- Fix child paths in introspection XML to be relative
- Support passing UNIX file descriptors
- Fix encoding of properties via GetAll method
- Add return & param names for standard interface introspection
- Use org.freedesktop.DBus.Error.UnknownMethod error code
- Fix reactor add_exception method
- Enable exporting objects on the root node
- Fix introspection decode with zero parameters
- Validate parameters for standard methods
- Validate object interface against declared method
- Don't include MYMETA.* files in dist
- Fix passing nomainloop parameter to constructor
- Fix variant type in mock iterator

==== php7 ====
Version update (7.4.0 -> 7.4.1)
Subpackages: apache2-mod_php7 php7-bcmath php7-bz2 php7-calendar php7-ctype
php7-curl php7-dba php7-devel php7-dom php7-exif php7-fastcgi php7-ftp php7-gd
php7-gettext php7-gmp php7-iconv php7-json php7-ldap php7-mbstring php7-mysql
php7-odbc php7-openssl php7-pdo php7-pgsql php7-shmop php7-snmp php7-sockets
php7-sqlite php7-sysvsem php7-sysvshm php7-tidy php7-tokenizer php7-xmlreader
php7-xmlwriter php7-xsl php7-zlib

- updated to 7.4.1: This is a security release which also contains
several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.1
- deleted patches
- php-fix-mysqlnd-compression-library.patch
- php-fpm-service-fails-to-start.patch

==== polari ====
Version update (3.34.0 -> 3.34.1)
Subpackages: polari-lang typelib-1_0-Polari-1_0

- Update to version 3.34.1:
+ Fix NickServ authentication without username.
+ Catch newly added gjs exception that prevents startup.
+ Fix grouping of status messages.
+ Misc. bug fixes and cleanups.
+ Updated translations.

==== policycoreutils ====
Subpackages: policycoreutils-lang python3-policycoreutils

- Added chcat_join.patch to prevent joining non-existing categories
(bsc#1159262)

==== python ====
Subpackages: python-curses python-tk

- Drop appstream-glib BuildRequires and no longer call
appstream-util validate-relax: eliminate a build cycle between
as-glib and python. The only thing would would gain by calling
as-uril is catching if upstream breaks the appdata.xml file in a
future release. Considering py2 is dying, chances for a new
release, let alone one breaking the xml file, are slim.
- Unify packages among openSUSE:Factory and SLE versions.
(bsc#1159035) ; add missing records to this changelog.
- Add idle.desktop and idle.appdata.xml to provide IDLE in menus
(bsc#1153830)
- Add python2_split_startup Provide to make it possible to
conflict older packages by shared-python-startup.

==== python-base ====
Subpackages: libpython2_7-1_0 python-xml

- Drop appstream-glib BuildRequires and no longer call
appstream-util validate-relax: eliminate a build cycle between
as-glib and python. The only thing would would gain by calling
as-uril is catching if upstream breaks the appdata.xml file in a
future release. Considering py2 is dying, chances for a new
release, let alone one breaking the xml file, are slim.
- Unify packages among openSUSE:Factory and SLE versions.
(bsc#1159035) ; add missing records to this changelog.
- Add idle.desktop and idle.appdata.xml to provide IDLE in menus
(bsc#1153830)
- Add python2_split_startup Provide to make it possible to
conflict older packages by shared-python-startup.

==== python-paramiko ====
Version update (2.6.0 -> 2.7.1)

- update to 2.7.1
- add configs.tar.gz with missing test data
* full changelog at http://www.paramiko.org/changelog.html

==== python-pywbem ====
Version update (0.14.6 -> 0.15.0)

- Add replace-yamlordereddictloader-w-yamlloader.patch which can
allow us to kick off deprecated yamlordereddictloader module
from Factory again. gh#pywbem/pywbem#2022
- Add silenced_MOFCompiler.patch so we can unexclude some more
tests.
- Update to 0.15.0:
- This release deprecates the wbemcli command. Pywbem 1.0.0
will remove the wbemcli command. The recommended replacement
is the pywbemcli command from the pywbemtools package on
Pypi: https://pypi.org/project/pywbemtools/
- Further changes are presented on
https://pywbem.readthedocs.io/en/stable_0.15/changes.html#pywbem-0-15-0
- Depends on the acceptance of bdo#754686
- Many many tests need to be switched off (gh#pywbem/pywbem#2004)
- fix unit tests (unittest2-just-say-no.patch)

==== python-redis ====

- Fix tests with redis pre 5.0.0:
* 0001-fix-tests-with-redis-pre-5.0.0.patch

==== python-requests ====

- Remove python-urllib3, python-certifi and ca-certificates from
main package BuildRequires, not required for building.
- Do not require full python, (implicit) python-base is sufficient.

==== python-scipy ====
Version update (1.3.2 -> 1.4.1)

- Update to 1.4.1
* SciPy 1.4.1 is a bug-fix release with no new features compared
to 1.4.0. Importantly, it aims to fix a problem where an older
version of pybind11 may cause a segmentation fault when
imported alongside incompatible libraries.
- Update to 1.4.0
+ Highlights of this release
* a new submodule, `scipy.fft`, now supersedes `scipy.fftpack`; this
means support for ``long double`` transforms, faster multi-dimensional
transforms, improved algorithm time complexity, release of the global
intepreter lock, and control over threading behavior
* support for ``pydata/sparse`` arrays in `scipy.sparse.linalg`
* substantial improvement to the documentation and functionality of
several `scipy.special` functions, and some new additions
* the generalized inverse Gaussian distribution has been added to
`scipy.stats`
* an implementation of the Edmonds-Karp algorithm in
`scipy.sparse.csgraph.maximum_flow`
* `scipy.spatial.SphericalVoronoi` now supports n-dimensional input,
has linear memory complexity, improved performance, and
supports single-hemisphere generators
+ New features
> Infrastructure
* Documentation can now be built with ``runtests.py --doc``
* A ``Dockerfile`` is now available in the ``scipy/scipy-dev`` repository to
acilitate getting started with SciPy development.
> `scipy.constants` improvements
* `scipy.constants` has been updated with the CODATA 2018 constants.
> `scipy.fft` added
* `scipy.fft` is a new submodule that supersedes the `scipy.fftpack`
submodule.
or the most part, this is a drop-in replacement for ``numpy.fft`` and
scipy.fftpack` alike. With some important differences, `scipy.fft`:
* uses NumPy's conventions for real transforms (``rfft``). This means the
eturn value is a complex array, half the size of the full ``fft`` output.
his is different from the output of ``fftpack`` which returned a real array
epresenting complex components packed together.
* the inverse real to real transforms (``idct`` and ``idst``) are normalized
or ``norm=None`` in thesame way as ``ifft``. This means the identity
`idct(dct(x)) == x`` is now ``True`` for all norm modes.
* does not include the convolutions or pseudo-differential operators
rom ``fftpack``.
* This submodule is based on the ``pypocketfft`` library, developed by the
uthor of ``pocketfft`` which was recently adopted by NumPy as well.
`pypocketfft`` offers a number of advantages over fortran ``FFTPACK``:
* support for long double (``np.longfloat``) precision transforms.
* faster multi-dimensional transforms using vectorisation
* Bluestein?s algorithm removes the worst-case ``O(n^2)`` complexity of
`FFTPACK``
* the global interpreter lock (``GIL``) is released during transforms
* optional multithreading of multi-dimensional transforms via the ``workers``
rgument
* Note that `scipy.fftpack` has not been deprecated and will continue to be
aintained but is now considered legacy. New code is recommended to use
scipy.fft` instead, where possible.
> `scipy.fftpack` improvements
* `scipy.fftpack` now uses pypocketfft to perform its FFTs, offering the same
peed and accuracy benefits listed for scipy.fft above but without the
mproved API.
> `scipy.integrate` improvements
* The function `scipy.integrate.solve_ivp` now has an ``args`` argument.
his allows the user-defined functions passed to the function to have
dditional parameters without having to create wrapper functions or
ambda expressions for them.
* `scipy.integrate.solve_ivp` can now return a ``y_events`` attribute
epresenting the solution of the ODE at event times
* New ``OdeSolver`` is implemented --- ``DOP853``. This is a high-order
explicit
unge-Kutta method originally implemented in Fortran. Now we provide a pure
ython implementation usable through ``solve_ivp`` with all its features.
* `scipy.integrate.quad` provides better user feedback when break points are
pecified with a weighted integrand.
* `scipy.integrate.quad_vec` is now available for general purpose integration
f vector-valued functions
> `scipy.interpolate` improvements
* `scipy.interpolate.pade` now handles complex input data gracefully
* `scipy.interpolate.Rbf` can now interpolate multi-dimensional functions
> `scipy.io` improvements
* `scipy.io.wavfile.read` can now read data from a `WAV` file that has a
alformed header, similar to other modern `WAV` file parsers
* `scipy.io.FortranFile` now has an expanded set of available ``Exception``
lasses for handling poorly-formatted files
> `scipy.linalg` improvements
* The function ``scipy.linalg.subspace_angles(A, B)`` now gives correct
esults for complex-valued matrices. Before this, the function only returned
orrect values for real-valued matrices.
* New boolean keyword argument ``check_finite`` for `scipy.linalg.norm`;
whether
o check that the input matrix contains only finite numbers. Disabling may
ive a performance gain, but may result in problems (crashes,
non-termination)
f the inputs do contain infinities or NaNs.
* `scipy.linalg.solve_triangular` has improved performance for a C-ordered
riangular matrix
* ``LAPACK`` wrappers have been added for ``?geequ``, ``?geequb``,
``?syequb``,
nd ``?heequb``
* Some performance improvements may be observed due to an internal
optimization
n operations involving LAPACK routines via ``_compute_lwork``. This is
articularly true for operations on small arrays.
* Block ``QR`` wrappers are now available in `scipy.linalg.lapack`
> `scipy.optimize` improvements
* It is now possible to use linear and non-linear constraints with
scipy.optimize.differential_evolution`.
* `scipy.optimize.linear_sum_assignment` has been re-written in C++ to improve
erformance, and now allows input costs to be infinite.
* A ``ScalarFunction.fun_and_grad`` method was added for convenient
simultaneous
etrieval of a function and gradient evaluation
* `scipy.optimize.minimize` ``BFGS`` method has improved performance by
avoiding
uplicate evaluations in some cases
* Better user feedback is provided when an objective function returns an array
nstead of a scalar.
> `scipy.signal` improvements
* Added a new function to calculate convolution using the overlap-add method,
amed `scipy.signal.oaconvolve`. Like `scipy.signal.fftconvolve`, this
unction supports specifying dimensions along which to do the convolution.
* `scipy.signal.cwt` now supports complex wavelets.
* The implementation of ``choose_conv_method`` has been updated to reflect the
ew FFT implementation. In addition, the performance has been significantly
mproved (with rather drastic improvements in edge cases).
* The function ``upfirdn`` now has a ``mode`` keyword argument that can be
used
o select the signal extension mode used at the signal boundaries. These
modes
re also available for use in ``resample_poly`` via a newly added ``padtype``
rgument.
* `scipy.signal.sosfilt` now benefits from Cython code for improved
performance
* `scipy.signal.resample` should be more efficient by leveraging ``rfft`` when
ossible
> `scipy.sparse` improvements
* It is now possible to use the LOBPCG method in `scipy.sparse.linalg.svds`.
* `scipy.sparse.linalg.LinearOperator` now supports the operation ``rmatmat``
or adjoint matrix-matrix multiplication, in addition to ``rmatvec``.
* Multiple stability updates enable float32 support in the LOBPCG eigenvalue
olver for symmetric and Hermitian eigenvalues problems in
`scipy.sparse.linalg.lobpcg``.
* A solver for the maximum flow problem has been added as
scipy.sparse.csgraph.maximum_flow`.
* `scipy.sparse.csgraph.maximum_bipartite_matching` now allows non-square
inputs,
o longer requires a perfect matching to exist, and has improved performance.
* `scipy.sparse.lil_matrix` conversions now perform better in some scenarios
* Basic support is available for ``pydata/sparse`` arrays in
scipy.sparse.linalg`
* `scipy.sparse.linalg.spsolve_triangular` now supports the ``unit_diagonal``
rgument to improve call signature similarity with its dense counterpart,
scipy.linalg.solve_triangular`
* ``assertAlmostEqual`` may now be used with sparse matrices, which have added
upport for ``__round__``
> `scipy.spatial` improvements
* The bundled Qhull library was upgraded to version 2019.1, fixing several
ssues. Scipy-specific patches are no longer applied to it.
* `scipy.spatial.SphericalVoronoi` now has linear memory complexity, improved
erformance, and supports single-hemisphere generators. Support has also been
dded for handling generators that lie on a great circle arc (geodesic input)
nd for generators in n-dimensions.
* `scipy.spatial.transform.Rotation` now includes functions for calculation
of a
ean rotation, generation of the 3D rotation groups, and reduction of
rotations
ith rotational symmetries.
* `scipy.spatial.transform.Slerp` is now callable with a scalar argument
* `scipy.spatial.voronoi_plot_2d` now supports furthest site Voronoi diagrams
* `scipy.spatial.Delaunay` and `scipy.spatial.Voronoi` now have attributes
or tracking whether they are furthest site diagrams
> `scipy.special` improvements
* The Voigt profile has been added as `scipy.special.voigt_profile`.
* A real dispatch has been added for the Wright Omega function
`scipy.special.wrightomega`).
* The analytic continuation of the Riemann zeta function has been added. (The
iemann zeta function is the one-argument variant of `scipy.special.zeta`.)
* The complete elliptic integral of the first kind (`scipy.special.ellipk`) is
ow available in `scipy.special.cython_special`.
* The accuracy of `scipy.special.hyp1f1` for real arguments has been improved.
* The documentation of many functions has been improved.
> `scipy.stats` improvements
* `scipy.stats.multiscale_graphcorr` added as an independence test that
perates on high dimensional and nonlinear data sets. It has higher
statistical
ower than other `scipy.stats` tests while being the only one that operates
on
ultivariate data.
* The generalized inverse Gaussian distribution (`scipy.stats.geninvgauss`)
has
een added.
* It is now possible to efficiently reuse `scipy.stats.binned_statistic_dd`
ith new values by providing the result of a previous call to the function.
* `scipy.stats.hmean` now handles input with zeros more gracefully.
* The beta-binomial distribution is now available in `scipy.stats.betabinom`.
* `scipy.stats.zscore`, `scipy.stats.circmean`, `scipy.stats.circstd`, and
scipy.stats.circvar` now support the ``nan_policy`` argument for enhanced
andling of ``NaN`` values
* `scipy.stats.entropy` now accepts an ``axis`` argument
* `scipy.stats.gaussian_kde.resample` now accepts a ``seed`` argument to
empower
eproducibility
* `scipy.stats.kendalltau` performance has improved, especially for large
inputs,
ue to improved cache usage
* `scipy.stats.truncnorm` distribution has been rewritten to support much
wider
ails
+ Deprecated features
> `scipy` deprecations
* Support for NumPy functions exposed via the root SciPy namespace is
deprecated
nd will be removed in 2.0.0. For example, if you use ``scipy.rand`` or
`scipy.diag``, you should change your code to directly use
`numpy.random.default_rng`` or ``numpy.diag``, respectively.
hey remain available in the currently continuing Scipy 1.x release series.
* The exception to this rule is using ``scipy.fft`` as a function --
mod:`scipy.fft` is now meant to be used only as a module, so the ability to
all ``scipy.fft(...)`` will be removed in SciPy 1.5.0.
* In `scipy.spatial.Rotation` methods ``from_dcm``, ``as_dcm`` were renamed to
`from_matrix``, ``as_matrix`` respectively. The old names will be removed in
ciPy 1.6.0.
* Method ``Rotation.match_vectors`` was deprecated in favor of
`Rotation.align_vectors``, which provides a more logical and
eneral API to the same functionality. The old method
ill be removed in SciPy 1.6.0.
+ Backwards incompatible changes
> `scipy.special` changes
* The deprecated functions ``hyp2f0``, ``hyp1f2``, and ``hyp3f0`` have been
emoved.
* The deprecated function ``bessel_diff_formula`` has been removed.
* The function ``i0`` is no longer registered with ``numpy.dual``, so that
`numpy.dual.i0`` will unconditionally refer to the NumPy version regardless
f whether `scipy.special` is imported.
* The function ``expn`` has been changed to return ``nan`` outside of its
omain of definition (``x, n < 0``) instead of ``inf``.
> `scipy.sparse` changes
* Sparse matrix reshape now raises an error if shape is not two-dimensional,
rather than guessing what was meant. The behavior is now the same as before
ciPy 1.1.0.
* ``CSR`` and ``CSC`` sparse matrix classes should now return empty matrices
f the same type when indexed out of bounds. Previously, for some versions
f SciPy, this would raise an ``IndexError``. The change is largely motivated
y greater consistency with ``ndarray`` and ``numpy.matrix`` semantics.
> `scipy.signal` changes
* `scipy.signal.resample` behavior for length-1 signal inputs has been
ixed to output a constant (DC) value rather than an impulse, consistent with
he assumption of signal periodicity in the FFT method.
* `scipy.signal.cwt` now performs complex conjugation and time-reversal of
avelet data, which is a backwards-incompatible bugfix for
ime-asymmetric wavelets.
> `scipy.stats` changes
* `scipy.stats.loguniform` added with better documentation as (an alias for
`scipy.stats.reciprocal``). ``loguniform`` generates random variables
hat are equally likely in the log space; e.g., ``1``, ``10`` and ``100``
re all equally likely if ``loguniform(10 ** 0, 10 ** 2).rvs()`` is used.
+ Other changes
* The ``LSODA`` method of `scipy.integrate.solve_ivp` now correctly detects
stiff
roblems.
* `scipy.spatial.cKDTree` now accepts and correctly handles empty input data
* `scipy.stats.binned_statistic_dd` now calculates the standard deviation
tatistic in a numerically stable way.
* `scipy.stats.binned_statistic_dd` now throws an error if the input data
ontains either ``np.nan`` or ``np.inf``. Similarly, in `scipy.stats` now all
ontinuous distributions' ``.fit()`` methods throw an error if the input data
ontain any instance of either ``np.nan`` or ``np.inf``.
- Rebase no_implicit_decl.patch
- Update to 1.3.3
* Fix deadlock on osx for python 3.8
* MAINT: TST: Skip tests with multiprocessing that use "spawn" start method

==== remmina ====
Version update (1.3.7 -> 1.3.8)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret
remmina-plugin-vnc remmina-plugin-xdmcp

- Update to new upstream release 1.3.8
* Avoid clearing username/domain when saving RDP password
* Make Remmina news dialog modal to the main window
* Change switch notebook page idle func order.
* Fixing bad seat grabbing behaviour (grab all keys not working)
* Adding cmake option to use latest FreeRDP symbols when compiling.
* Adding default application symbolic icons
* Several translation fixes
- Removed obsolete remmina-1.3.7-libfreerdp-2.0.0-rc4.patch

==== rubygem-actioncable-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-actionmailer-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-actionpack-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-actionview-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activejob-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activemodel-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activerecord-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activestorage-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activesupport-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-rails-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-railties-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== salt ====
Subpackages: python3-salt salt-master salt-minion

- Add missing bugzilla references:
Properly handle colons in inline dicts with yamlloader (bsc#1095651)
Fix corrupt public key with m2crypto python3 (bsc#1099323)
Add missing dateutils import (bsc#1099945)
Fix UnicodeDecodeError using is_binary check (bsc#1100225)
Prevent payload crash on decoding binary data (bsc#1100697)
Fix file.blockreplace to avoid throwing IndexError (bsc#1101812)
Add API log rotation on SUSE package (bsc#1102218)
Fix wrong recurse behavior on for linux_acl.present (bsc#1106164)
Handle anycast IPv6 addresses on network.routes (bsc#1114474)
Crontab module fix: file attributes option missing (bsc#1114824)
Add metadata to accepted keyword arguments (bsc#1122680)
Bugfix: properly refresh pillars (bsc#1125015)
- xfs: do not fail if type is not present (bsc#1153611)
- Added:
* xfs-do-not-fails-if-type-is-not-present.patch
- Don't use __python indirection macros on spec file
%__python is no longer defined in RPM 4.15 (python2 is going EOL in Jan 2020);
additionally, python/python3 are just binaries in the path.
- Fix errors when running virt.get_hypervisor function
- Added:
* fix-virt.get_hypervisor-188.patch
- Align virt.full_info fixes with upstream Salt
- Let salt-ssh use platform-python on RHEL8 (bsc#1158441)
- Added:
* align-virt-full-info-fixes-with-upstream-192.patch
* let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch
- Fix StreamClosedError issue (bsc#1157479)
- Added:
* fix-batch_async-obsolete-test.patch
* fixing-streamclosed-issue.patch

==== samba ====
Version update (4.11.2+git.99.f93cc798f2e -> 4.11.3+git.102.3e2882ca77e)
Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0
libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0
libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit
libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit
libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0
libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit
libsamba-policy0-python3 libsamba-util0 libsamba-util0-32bit libsamdb0
libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2
libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0
libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs
samba-libs-32bit samba-libs-python3 samba-python3 samba-winbind
samba-winbind-32bit

- Update to samba 4.11.3
+ CVE-2019-14861: DNSServer RPC server crash, an authenticated user
can crash the DCE/RPC DNS management server by creating records
with matching the zone name; (bso#14138); (bsc#1158108).
+ CVE-2019-14870: DelegationNotAllowed not being enforced, the
DelegationNotAllowed Kerberos feature restriction was not being
applied when processing protocol transition requests (S4U2Self),
in the AD DC KDC; (bso#14187); (bsc#1158109).

==== sssd ====
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-32bit
sssd-krb5-common sssd-ldap

- Install infopipe dbus service (bsc#1106598)
- Add systemd service unit files to manage socket or bus activated responders.
- All responders except infopipe are also managed by a socket unit file.
- Add missing post and postun hooks for libsss_certmap0 package.

==== tbb ====
Version update (2019_20190605 -> 2020.0)

- Update to version 2020.0
* Extended task_arena interface to simplify development of
NUMA-aware applications.
* Added warning notifications when the deprecated functionality is
used.

==== tmux ====

- Fix tmux completion

==== tumbler ====
Version update (0.2.7 -> 0.2.8)
Subpackages: libtumbler-1-0 tumbler-lang

- Updated to version 0.2.8
* Fix thumbnail orientation (bxo#15011)
* prepend $XDG_DATA_HOME/thumbnailers/ to thumbnailers directory
(bxo#15858)
* Translation Updates

==== unbound ====
Version update (1.9.5 -> 1.9.6)
Subpackages: libunbound8 unbound-anchor

- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
Allow OBS to shortcut through the -mini flavors.
- update to 1.9.6
This release contains a number of security related fixes found in
a security audit
Features:
- The unbound.conf includes are sorted ascending, for include
statements with a '*' from glob.
- drop-tld.diff in contrib/ : adds option drop-tld: yesno that drops 2 label
queries, to stop random floods. Apply with
patch -p1 < contrib/drop-tld.diff and compile.
From Saksham Manchanda (Secure64). Please note that we think this
will drop DNSKEY and DS lookups for tlds and hence break DNSSEC
lookups for downstream clients.
- Add new configure option `--enable-fully-static` to enable full static
build if requested; in relation to #91.
- Add make distclean that removes everything configure produced,
and make maintainer-clean that removes bison and flex output.
- unbound-fuzzers.tar.bz2 in contrib/ : three programs for fuzzing, that
are 1:1 replacements for unbound-fuzzme.c that gets created after applying
the contrib/unbound-fuzzme.patch. They are contributed by
Eric Sesterhenn from X41 D-Sec.
Bug Fixes:
- Fix that pkg-config is setup before --enable-systemd needs it.
- Fix contrib/fastrpz.patch asprintf return value checks.
- ipset module #28: log that an address is added, when verbosity high.
- ipset: refactor long routine into three smaller ones.
- updated Makefile dependencies.
- squelch DNS over TLS errors 'ssl handshake failed crypto error'
on low verbosity, they show on verbosity 3 (query details), because
there is a high volume and the operator cannot do anything for the
remote failure. Specifically filters the high volume errors.
- Fix #71: fix openssl error squelch commit compilation error.
- Fix #72: configure --with-syslog-facility=LOCAL0-7 with default
LOG_DAEMON (as before) can set the syslog facility that the server
uses to log messages.
- Use explicit bzero for wiping clear buffer of hash in cachedb,
reported by Eric Sesterhenn from X41 D-Sec.
- Fix #78: Memory leak in outside_network.c.
- Merge pull request #76 from Maryse47: Improvements and fixes for
systemd unbound.service.
- oss-fuzz badge on README.md.
- Fix fix for #78 to also free service callback struct.
- Fix for oss-fuzz build warning.
- Fix wrong response ttl for prepended short CNAME ttls, this would
create a wrong zero_ttl response count with serve-expired enabled.
- Merge #80 from stasic: Improve wording in man page.
- Merge #82 from hardfalcon: Downgrade CAP_NET_ADMIN to CAP_NET_RAW
in unbound.service.
- Merge #81 from Maryse47: Consistently use /dev/urandom instead
of /dev/random in scripts and docs.
- Merge #83 from Maryse47: contrib/unbound.service.in: do not fork
into the background.
- Merge #85 for #84 from sam-lunt: Add kill capability to systemd
service file to fix that systemctl reload fails.
- Merge #87 from hardfalcon: Fix contrib/unbound.service.in,
Drop CAP_KILL, use + prefix for ExecReload= instead.
- Merge #90 from vcunat: fix build with nettle-3.5.
- Fix for CVE-2019-16866. That fix is also in 1.9.4.
- Merge #86 from psquarejho: Added -b source address option to
smallapp/unbound-anchor.c, from Lukas Wunner.
- Add doxygen comments to unbound-anchor source address code, in #86.
- Merge #97: manpage: Add missing word on unbound.conf,
from Erethon.
- Fix #99: Memory leak in ub_ctx (event_base will never be freed).
- Fix #109: check number of arguments for stdin-pipes in
unbound-control and fail if too many arguments.
- Merge #102 from jrtc27: Add getentropy emulation for FreeBSD.
- iana portlist updated.
- contrib/fastrpz.patch updated to apply for current code.
- fixes for splint cleanliness, long vs int in SSL set_mode.
- In unbound-host use separate variable for get_option to please
code checkers.
- update to bison output of 3.4.1 in code repository.
- Provide a prototype for compat malloc to remove compile warning.
- Portable grep usage for reuseport configure test.
- Check return type of HMAC_Init_ex for openssl 0.9.8.
- gitignore .source tempfile used for compatible make.
- Fix for CVE-2019-18934, shell execution in ipsecmod.
This fix is also in 1.9.5.
- Fix authzone printout buffer length check.
- Fixes to please lint checks.
- Fix Integer Overflow in Regional Allocator,
reported by X41 D-Sec.
- Fix Unchecked NULL Pointer in dns64_inform_super()
and ipsecmod_new(), reported by X41 D-Sec.
- Fix Out-of-bounds Read in rr_comment_dnskey(),
reported by X41 D-Sec.
- Fix Integer Overflows in Size Calculations,
reported by X41 D-Sec.
- Fix Integer Overflow to Buffer Overflow in
sldns_str2wire_dname_buf_origin(), reported by X41 D-Sec.
- Fix Out of Bounds Read in sldns_str2wire_dname(),
reported by X41 D-Sec.
- Fix Out of Bounds Write in sldns_bget_token_par(),
reported by X41 D-Sec.
- Fix Out of Bounds Read in rrinternal_get_owner(),
reported by X41 D-Sec.
- Fix Race Condition in autr_tp_create(),
reported by X41 D-Sec.
- Fix Shared Memory World Writeable,
reported by X41 D-Sec.
- Adjust unbound-control to make stats_shm a read only operation.
- Fix Weak Entropy Used For Nettle,
reported by X41 D-Sec.
- Fix Randomness Error not Handled Properly,
reported by X41 D-Sec.
- Fix Out-of-Bounds Read in dname_valid(),
reported by X41 D-Sec.
- Fix Config Injection in create_unbound_ad_servers.sh,
reported by X41 D-Sec.
- Fix Local Memory Leak in cachedb_init(),
reported by X41 D-Sec.
- Fix Integer Underflow in Regional Allocator,
reported by X41 D-Sec.
- Upgrade compat/getentropy_linux.c to version 1.46 from OpenBSD.
- Synchronize compat/getentropy_win.c with version 1.5 from
OpenBSD, no changes but makes the file, comments, identical.
- Upgrade compat/getentropy_solaris.c to version 1.13 from OpenBSD.
- Upgrade compat/getentropy_osx.c to version 1.12 from OpenBSD.
- Changes to compat/getentropy files for,
no link to openssl if using nettle, and hence config.h for
HAVE_NETTLE variable.
compat definition of MAP_ANON, for older systems.
ifdef stdint.h inclusion for older systems.
ifdef sha2.h inclusion for older systems.
- Fixed Compat Code Diverging from Upstream, reported by X41 D-Sec.
- Fix compile with --enable-alloc-checks, reported by X41 D-Sec.
- Fix Terminating Quotes not Written, reported by X41 D-Sec.
- Fix Useless memset() in validator, reported by X41 D-Sec.
- Fix Unrequired Checks, reported by X41 D-Sec.
- Fix Enum Name not Used, reported by X41 D-Sec.
- Fix NULL Pointer Dereference via Control Port,
reported by X41 D-Sec.
- Fix Bad Randomness in Seed, reported by X41 D-Sec.
- Fix python examples/calc.py for eval, reported by X41 D-Sec.
- Fix comments for doxygen in dns64.
- Fix dname loop maximum, reported by Eric Sesterhenn from X41 D-Sec.
- Fix compiler warnings.
- Merge pull request #122 from he32: In tcp_callback_writer(),
don't disable time-out when changing to read.
- Merge pull request #124 from rmetrich: Changed log lock
from 'quick' to 'basic' because this is an I/O lock.
- Fix text around serial arithmatic used for RRSIG times to refer
to correct RFC number.
- Fix Assert Causing DoS in synth_cname(),
reported by X41 D-Sec.
- Fix similar code in auth_zone synth cname to add the extra checks.
- Fix Assert Causing DoS in dname_pkt_copy(),
reported by X41 D-Sec.
- Fix OOB Read in sldns_wire2str_dname_scan(),
reported by X41 D-Sec.
- Fix Out of Bounds Write in sldns_str2wire_str_buf(),
reported by X41 D-Sec.
- Fix Out of Bounds Write in sldns_b64_pton(),
fixed by check in sldns_str2wire_int16_data_buf(),
reported by X41 D-Sec.
- Fix Insufficient Handling of Compressed Names in dname_pkt_copy(),
reported by X41 D-Sec.
- Fix Out of Bound Write Compressed Names in rdata_copy(),
reported by X41 D-Sec.
- Fix Hang in sldns_wire2str_pkt_scan(),
reported by X41 D-Sec.
This further lowers the max to 256.
- Fix snprintf() supports the n-specifier,
reported by X41 D-Sec.
- Fix Bad Indentation, in dnscrypt.c,
reported by X41 D-Sec.
- Fix Client NONCE Generation used for Server NONCE,
reported by X41 D-Sec.
- Fix compile error in dnscrypt.
- Fix _vfixed not Used, removed from sbuffer code,
reported by X41 D-Sec.
- Fix Hardcoded Constant, reported by X41 D-Sec.
- make depend
- Fix lock type for memory purify log lock deletion.
- Fix testbound for alloccheck runs, memory purify and lock checks.
- update contrib/fastrpz.patch to apply more cleanly.
- Fix Make Test Fails when Configured With --enable-alloc-nonregional,
reported by X41 D-Sec.
- Fix ipsecmod compile
- Fix Makefile.in for ipset module compile, from Adi Prasaja.

==== virglrenderer ====

- Add 5 security fixes
* Check resource creation more thoroughly (CVE-2019-18388 bsc#1159479)
0001-5d03711-vrend-Keep-the-max-texture-sizes-in-the-vrend_state.patch
0002-0d9a2c8-vrend-Check-resource-creation-more-thoroughly.patch
* check info formats in blits (CVE-2019-18390 bsc#1159478)
0003-24f67de-vrend-check-info-formats-in-blits.patch
* check transfer bounds for negative values too (CVE-2019-18389 bsc#1159482)
0004-cbc8d8b-vrend-check-transfer-bounds-for-negative-values-too-.patch
* check transfer iov holds enough data for the data upload (CVE-2019-18391
bsc#1159486)
0005-2abeb18-vrend-check-that-the-transfer-iov-holds-enough-data-.patch
* Add an assert for allocating the intermediate texture (CVE-2019-18392
bsc#1159454)
0006-164d758-vrend-Add-an-assert-for-allocating-the-intermediate-.patch

==== virtualbox ====
Subpackages: virtualbox-guest-tools virtualbox-guest-x11 virtualbox-kmp-default

- Fix build for kernel 5.5. Added file "fixes_for_5.5.patch".

==== xen ====
Version update (4.13.0_03 -> 4.13.0_04)
Subpackages: xen-libs xen-tools xen-tools-domU

- bsc#1159320 - Xen logrotate file needs updated
logrotate.conf
- Update to Xen 4.13.0 FCS release
xen-4.13.0-testing-src.tar.bz2
* Core Scheduling (contributed by SUSE)
* Branch hardening to mitigate against Spectre v1 (contributed by Citrix)
* Late uCode loading (contributed by Intel)
* Improved live-patching build tools (contributed by AWS)
* OP-TEE support (contributed by EPAM)
* Renesas R-CAR IPMMU-VMSA driver (contributed by EPAM)
* Dom0-less passthrough and ImageBuilder (contributed by XILINX)
* Support for new Hardware
- Update to Xen 4.13.0 RC4 release
xen-4.13.0-testing-src.tar.bz2
- Rebase libxl.pvscsi.patch

==== zchunk ====
Version update (1.1.0 -> 1.1.4)

- Update to version 1.1.4:
* Simplify regex for detecting part header info
* Fix coverity warnings
* Open files with permissions 0666 and let umask(2) do its job.
* Multipart boundary field can be quoted.

==== zsh ====
Version update (5.7.1 -> 5.8~pre2)

- Update to version 5.8~pre2 (5.7.1-test-2)
- Drop 1baf0d1f553631ecb641e98f4bf48bc2a44e5b82.patch, fixed
upstream.
- Add 1baf0d1f553631ecb641e98f4bf48bc2a44e5b82.patch to fix a
re-entrancy problem.
- Update to version 5.8~pre1 (5.7.1-test-1)
* The zsh/zutil module's zparseopts builtin learnt an -F option to abort
parsing when an unrecognised option-like parameter is encountered.
* The zsh/files module gained a chmod builtin.
* Several changes have been made to the way completion functions track
'precommands' (such as `command` and `env`) and determine whether the
command being completed for is a shell builtin. Developers of completion
functions may wish to familiarise themselves with `_normal -p` and
`_pick_variant -b`.
* The option CD_SILENT was added to suppress all output from cd (whether
explicit or implicit with AUTO_CD). It is disabled by default.
* The compadd builtin's -o option now takes an optional argument to
specify the order of completion matches. This affects the display
of candidate matches and the order in which they are selected when
cycling between them using menu completion.
* The :h and :t modifiers in parameter expansion (if braces are present),
glob qualifiers and history expansion may take following decimal digit
arguments in order to keep that many leading or trailing path components
instead of the defaults of all but one (:h) and one (:t). In an absolute
path the leading '/' counts as one component.
* The functions builtin gained a -c option to efficiently copy functions.
- See included ChangeLog for the complete list of changes.

==== zxing-cpp ====

- Add add-missing-includes-of-stdexcept-header.patch
in order to fix boo#1158377.


N�����r��y隊Z)z{.���r�+�맲��r��z�^�ˬz��N�(�֜��^� ޭ隊Z)z{.���r�+��0�������Ǩ�
< Previous Next >
This Thread
  • No further messages