Changed packages: ==== MozillaFirefox ==== Version update (37.0.2 -> 38.0.1) Subpackages: MozillaFirefox-translations-common - add mozilla-add-glibcxx_use_cxx11_abi.patch grabbed from https://bugzilla.mozilla.org/show_bug.cgi?id=1153109 - update to Firefox 38.0.1 stability and regression fixes * Systems with first generation NVidia Optimus graphics cards may crash on start-up * Users who import cookies from Google Chrome can end up with broken websites * Large animated images may fail to play and may stop other images from loading - update to Firefox 38.0 (bnc#930622) * New tab-based preferences * Ruby annotation support * more info: https://www.mozilla.org/en-US/firefox/38.0/releasenotes/ security fixes: * MFSA 2015-46/CVE-2015-2708/CVE-2015-2709 Miscellaneous memory safety hazards * MFSA 2015-47/VE-2015-0797 (bmo#1080995) Buffer overflow parsing H.264 video with Linux Gstreamer * MFSA 2015-48/CVE-2015-2710 (bmo#1149542) Buffer overflow with SVG content and CSS * MFSA 2015-49/CVE-2015-2711 (bmo#1113431) Referrer policy ignored when links opened by middle-click and context menu * MFSA 2015-50/CVE-2015-2712 (bmo#1152280) Out-of-bounds read and write in asm.js validation * MFSA 2015-51/CVE-2015-2713 (bmo#1153478) Use-after-free during text processing with vertical text enabled * MFSA 2015-53/CVE-2015-2715 (bmo#988698) Use-after-free due to Media Decoder Thread creation during shutdown * MFSA 2015-54/CVE-2015-2716 (bmo#1140537) Buffer overflow when parsing compressed XML * MFSA 2015-55/CVE-2015-2717 (bmo#1154683) Buffer overflow and out-of-bounds read while parsing MP4 video metadata * MFSA 2015-56/CVE-2015-2718 (bmo#1146724) Untrusted site hosting trusted page can intercept webchannel responses * MFSA 2015-57/CVE-2011-3079 (bmo#1087565) Privilege escalation through IPC channel messages - requires NSS 3.18.1 - removed obsolete patches: * mozilla-skia-bmo1136958.patch - remove gnomevfs build options as it is removed from sources - rebased patches ==== MozillaThunderbird ==== Version update (31.6.0 -> 31.7.0) Subpackages: MozillaThunderbird-translations-common - update to Thunderbird 31.7.0 (bnc#930622) * MFSA 2015-46/CVE-2015-2708 Miscellaneous memory safety hazards * MFSA 2015-47/VE-2015-0797 (bmo#1080995) Buffer overflow parsing H.264 video with Linux Gstreamer * MFSA 2015-48/CVE-2015-2710 (bmo#1149542) Buffer overflow with SVG content and CSS * MFSA 2015-51/CVE-2015-2713 (bmo#1153478) Use-after-free during text processing with vertical text enabled * MFSA 2015-54/CVE-2015-2716 (bmo#1140537) Buffer overflow when parsing compressed XML * MFSA 2015-57/CVE-2011-3079 (bmo#1087565) Privilege escalation through IPC channel messages ==== libaa1 ==== - info deinstall needs to be in preun section. ==== autoconf-archive ==== - delete info files in the preun section ==== automake ==== - move delete of info file to preun section ==== bash ==== Subpackages: bash-doc libreadline6 readline-devel readline-doc - move info deletion to %preun sections ==== boost-devel ==== Version update (1.56.0 -> 1.58.0) - update to 1.58.0: boost docs remain at 1.56 since upstream hasn't updated yet * New Libraries: Endian, Sort. * Updated Libraries: Asio, Chrono, Container, Context, Conversion, DateTime, Flyweight, Function, Functional/Factory, Fusion, Geometry, Hash, Interprocess, Intrusive, Lexical Cast, Log, Math, Move, Multi-index Containers, Multiprecision, Optional, Phoenix, Predef, Random, Thread, TypeErasure, TypeIndex, Units, Unordered, Variant. See http://www.boost.org/users/history/version_1_58_0.html - add 0001-Fix-exec_file-for-Python-3-3.4.patch , 0002-Fix-a-regression-with-non-constexpr-types.patch: Fixes regressions in 1.58 - drop bjam-alignment.patch, boost-gcc5.patch: Already fixed upstream differently - add boost-rpmoptflags-only.patch: Build only with optflags - add boost-aarch64-flags.patch: Avoid using -m64 - add boost-uuid-comparison.patch: Fix regression in UUID operator< - add boost-disable-pch-on-aarch64.patch: Disable pch on math library to avoid compiler segfault ==== clutter-devel ==== Subpackages: libclutter-1_0-0 typelib-1_0-Clutter-1_0 - Add clutter-fix-touchpad-detection.patch: Fix X11 touchpad detection, previous commit had a typo (bgo#749482). ==== cmake ==== - Fix cmake-fix-ruby-test.patch, Config:: is removed in Ruby 2.2, use RbConfig:: instead ==== libsocks0 ==== - add dante-1.4.1-gcc5-fixes.patch ==== dbus-1-devel ==== Version update (1.8.16 -> 1.8.18) Subpackages: libdbus-1-3 libdbus-1-3-32bit - Update to 1.8.18: * Security hardening: - On Unix platforms, change the default configuration for the session bus to only allow EXTERNAL authentication (secure kernel-mediated credentials-passing), as was already done for the system bus. This avoids falling back to DBUS_COOKIE_SHA1, which relies on strongly unpredictable pseudo-random numbers; under certain circumstances (/dev/urandom unreadable or malloc() returns NULL), dbus could fall back to using rand(), which does not have the desired unpredictability. The fallback to rand() has not been changed in this stable-branch since the necessary code changes for correct error-handling are rather intrusive. If you are using D-Bus over the (unencrypted!) tcp: or nonce-tcp: transport, in conjunction with DBUS_COOKIE_SHA1 and a shared home directory using NFS or similar, you will need to reconfigure the session bus to accept DBUS_COOKIE_SHA1 by commenting out the element. This configuration is not recommended. (bsc#931066, fdo#90414, Simon McVittie) * Other fixes: - Add locking to DBusCounter's reference count and notify function (fdo#89297, Adrian Szyndela) - Ensure that DBusTransport's reference count is protected by the corresponding DBusConnection's lock (fdo#90312, Adrian Szyndela) - On Windows, listen on the same port for IPv4 and IPv6 (previously broken by an endianness mistake), and fix a failure to bind TCP sockets on approximately 1 attempt in 256 (fdo#87999, Ralf Habacker) - Correctly release DBusServer mutex before early-return if we run out of memory while copying authentication mechanisms (fdo#90021, Ralf Habacker) - Correctly initialize all fields of DBusTypeReader (fdo#90021, Ralf Habacker, Simon McVittie) - Fix some missing \n in verbose (debug log) messages (fdo#90021, Ralf Habacker) - Clean up some memory leaks in test code (fdo#90021, Ralf Habacker) ==== dbus-1 ==== Version update (1.8.16 -> 1.8.18) Subpackages: dbus-1-x11 - Update to 1.8.18: * Security hardening: - On Unix platforms, change the default configuration for the session bus to only allow EXTERNAL authentication (secure kernel-mediated credentials-passing), as was already done for the system bus. This avoids falling back to DBUS_COOKIE_SHA1, which relies on strongly unpredictable pseudo-random numbers; under certain circumstances (/dev/urandom unreadable or malloc() returns NULL), dbus could fall back to using rand(), which does not have the desired unpredictability. The fallback to rand() has not been changed in this stable-branch since the necessary code changes for correct error-handling are rather intrusive. If you are using D-Bus over the (unencrypted!) tcp: or nonce-tcp: transport, in conjunction with DBUS_COOKIE_SHA1 and a shared home directory using NFS or similar, you will need to reconfigure the session bus to accept DBUS_COOKIE_SHA1 by commenting out the element. This configuration is not recommended. (bsc#931066, fdo#90414, Simon McVittie) * Other fixes: - Add locking to DBusCounter's reference count and notify function (fdo#89297, Adrian Szyndela) - Ensure that DBusTransport's reference count is protected by the corresponding DBusConnection's lock (fdo#90312, Adrian Szyndela) - On Windows, listen on the same port for IPv4 and IPv6 (previously broken by an endianness mistake), and fix a failure to bind TCP sockets on approximately 1 attempt in 256 (fdo#87999, Ralf Habacker) - Correctly release DBusServer mutex before early-return if we run out of memory while copying authentication mechanisms (fdo#90021, Ralf Habacker) - Correctly initialize all fields of DBusTypeReader (fdo#90021, Ralf Habacker, Simon McVittie) - Fix some missing \n in verbose (debug log) messages (fdo#90021, Ralf Habacker) - Clean up some memory leaks in test code (fdo#90021, Ralf Habacker) ==== dia ==== Subpackages: dia-lang - Build docs in the right place: pass --docdir=%{_docdir}/%{name} to configure (boo#931168). ==== libexiv2-13 ==== Subpackages: libexiv2-devel - add parallel-build-dep.patch: Fix build dependencies ==== libavcodec56 ==== Version update (2.6.2 -> 2.6.3) Subpackages: libavformat56 libavutil54 - Update to new upstream release 2.6.3 * avcodec/libtheoraenc: Check for av_malloc failure * ffmpeg_opt: Fix -timestamp parsing * avcodec/cavsdec: Use ff_set_dimensions() * swr: fix alignment issue caused by 8ch sse functions * avcodec/mjpegdec: fix len computation in ff_mjpeg_decode_dqt() * avformat/matroskadec: Cleanup error handling for bz2 & zlib * avformat/matroskaenc: Check ff_vorbiscomment_length in put_flac_codecpriv() * avcodec/mpeg12dec: use the correct dimensions for checking SAR * xcbgrab: Validate the capture area * xcbgrab: Do not assume the non shm image data is always available * avfilter/lavfutils: disable frame threads when decoding a single image * ffmpeg: remove incorrect network deinit * OpenCL: Avoid potential buffer overflow in cmdutils_opencl.c * libvpxenc: only set noise reduction w/vp8 * vp9: remove another optimization branch in iadst16 which causes overflows. * network: Do not leave context locked on error * vp9: remove one optimization branch in iadst16 which causes overflows. * swresample: Allow reinitialization without ever setting channel layouts/counts * imgutils: initialize palette padding bytes in av_image_alloc * id3v2: catch avio_read errors in check_tag * avi: Validate sample_size * diracdec: avoid overflow of bytes*8 in decode_lowdelay * diracdec: prevent overflow in data_unit_size check * matroskadec: use uint64_t instead of int for index_scale * pngdec: don't use AV_PIX_FMT_MONOBLACK for apng * pngdec: return correct error code from decode_frame_common * swscale/ppc/swscale_altivec.c: POWER LE support in yuv2planeX_8() delete macro GET_VF() it was wrong * matroskadec: export cover art correctly * mxfenc: don't try to write footer without header - Enable building avresample for extra API compat - Remove ffmpeg-pkgconfig-requires.diff: RPM's pkgconfigdeps.sh is scanning Requires.private too. - Add baselibs.conf: provide -32bit libraries (used by xine-32bit). ==== fontconfig ==== Subpackages: fontconfig-32bit fontconfig-devel - Clean the spec file with spec-cleaner ==== frei0r-plugins ==== - Build against opencv-qt5-devel on > 13.2, otherwise it would crash kdenlive/libmlt which are built against Qt5 ==== libgraphite2-3 ==== Subpackages: libgraphite2-3-32bit - Remove unnecessary utf-8 characters from the spec file ==== libhdf5-9 ==== Subpackages: libhdf5_hl9 - update hdf5-non_void_return.patch for GCC 5.x ==== kate4-parts ==== Subpackages: libkatepartinterfaces4 - Fix typo in summary ==== kdebase4-workspace-libs ==== Subpackages: oxygen-cursors4 python-kdebase4 - Add systemsettings-desktop-kde4.diff: Changes name of System Settings to Configure KDE 4 Applications, apply it for openSUSE > 13.2 - Apply systemsettings-desktop.diff only for <= 13.2 ==== libXrandr-devel ==== Version update (1.4.2 -> 1.5.0) Subpackages: libXrandr2 libXrandr2-32bit - added baselibs.conf as source in specfile - Update to version 1.5.0: Add support for monitors and fixes requires on libX11. ==== libcacard0 ==== - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3 * Patches added: 0041-fdc-force-the-fifo-access-to-be-in-.patch ==== libncurses5 ==== Subpackages: libncurses5-32bit libncurses6 ncurses-devel ncurses-utils tack terminfo terminfo-base - Add ncurses patch 20150509 + add test-packages for cross-compiling ncurses-examples using the MinGW test-packages. These are only the Debian packages; RPM later. + cleanup format of debian/copyright files + add pc-files to the MinGW cross-compiling test-packages. + correct a couple of places in gen-pkgconfig.in to handle renaming of the tinfo library. - Add ncurses patch 20150502 + modify the configure script to allow different default values for ABI 5 versus ABI 6. + add wgetch-events to test-packages. + add a note on how to build ncurses-examples to test/README. + fix a memory leak in delscreen (report by Daniel Kahn Gillmor, Debian #783486) -TD + remove unnecessary ';' from E3 capabilities -TD + add tmux entry, derived from screen (patch by Nicholas Marriott). + split-out recent change to nsterm-bce as nsterm-build326, and add nsterm-build342 to reflect changes with successive releases of OSX (discussion with Leonardo B Schenkel) + add xon, ich1, il1 to ibm3161 (patch by Stephen Powell, Debian [#783806]) + add sample "magic" file, to document ext-putwin. + modify gen-pkgconfig.in to add explicit -ltinfo, etc., to the generated ".pc" file when ld option "--as-needed" is used, or when ncurses and tinfo are installed without using rpath (prompted by discussion with Sylvain Bertrand). + modify test-package for ncurses6 to omit rpath feature when installed in /usr. + add OSX's "*.dSYM" to clean-rules in makefiles. + make extra-suffix work for OSX configuration, e.g., for shared libraries. + modify Ada95/configure script to work with pkg-config + move test-package for ncurses6 to /usr, since filename-conflicts have been eliminated. + corrected build rules for Ada95/gen/generate; it does not depend on the ncurses library aside from headers. + reviewed man pages, fixed a few other spelling errors. + fix a typo in curs_util.3x (Sven Joachim). + use extra-suffix in some overlooked shared library dependencies found by 20150425 changes for test-packages. + update config.guess, config.sub from http://git.savannah.gnu.org/cgit/config.git ==== libnetpbm-devel ==== Version update (10.68.1 -> 10.70.4) Subpackages: libnetpbm11 netpbm - updated to 10.70.4 * pambackground: fix bug: segfault or incorrect results in most cases. * ppmtoarbtxt: Fix some undefined behavior when program limits are exceeded. * anytopnm: convert all images in a multi-image GIF instead of just the first. * nmnorm: add -bsingle, -wsingle. * pamtosvg: fix use of unset variable; probably results in a crash. * pnmgamma -srgbtobt709, -bt709tosrgb: fix bug; incorrect output nearly always. * pamtilt: fix bug: unconditional crash. * pgmmorphconv: fix bug: always produces PGM Plain format. * giftopnm: Fix bug: crashes if purported GIF has neither a global color map nor a local one. * pgmmorphconv: add -gradient. * pnmhisteq: add -noblack and -nowhite. * tifftopnm: allow input file to be nonseekable. * Add yuy2topam. * Add pgmtosbig. * Add st4topgm, pgmtost4. * ppmtoarbtxt: fix bug: wrong output when high numbers represent darker. * ppmtorgb3: Fix buffer overflow with long input file name. * st4topgm: Fix bug: with no argument, uses file named "'" instead of Standard Input. * pnmconvol: Fix bug: wrong output for pixels that convolve to negative values (should be clipped to zero). ==== libpoppler-cpp0 ==== Version update (0.32.0 -> 0.33.0) Subpackages: libpoppler-devel libpoppler-glib8 poppler-tools - Update to version 0.33.0: + core: - Fix regression in pdftops parameter passing (fdo#89827). - Combine base characters and diacritical marks (fdo#87215). - Use width from W array for WMode positioning (fdo#89621). - Fixed adding annotation of Subtype Popup to pdf page (fdo#89136). - CairoOutputDev: Fix memory leak in CairoFreeTypeFont::create. - SplashOutputDev: memset on error to have reproducible outputs. + qt4: Fix PDF Text String -> QString conversion (kde#344849). + qt5: Fix PDF Text String -> QString conversion (kde#344849). + glib: - Add poppler_annot_markup_set_popup_rectangle() - Fix segfault when creating PopplerAction (fdo#90093). + utils: pdftohtml: Set exit status adecuately (fdo#83609). + build system: configure: Fix invalid shell comparaison in libtiff test. - Bump poppler soname following upstream changes. ==== libpoppler-qt4-4 ==== Version update (0.32.0 -> 0.33.0) - Update to version 0.33.0: + core: - Fix regression in pdftops parameter passing (fdo#89827). - Combine base characters and diacritical marks (fdo#87215). - Use width from W array for WMode positioning (fdo#89621). - Fixed adding annotation of Subtype Popup to pdf page (fdo#89136). - CairoOutputDev: Fix memory leak in CairoFreeTypeFont::create. - SplashOutputDev: memset on error to have reproducible outputs. + qt4: Fix PDF Text String -> QString conversion (kde#344849). + qt5: Fix PDF Text String -> QString conversion (kde#344849). + glib: - Add poppler_annot_markup_set_popup_rectangle() - Fix segfault when creating PopplerAction (fdo#90093). + utils: pdftohtml: Set exit status adecuately (fdo#83609). + build system: configure: Fix invalid shell comparaison in libtiff test. - Bump poppler soname following upstream changes. ==== libpoppler-qt5-1 ==== Version update (0.32.0 -> 0.33.0) Subpackages: libpoppler-qt5-devel - Update to version 0.33.0: + core: - Fix regression in pdftops parameter passing (fdo#89827). - Combine base characters and diacritical marks (fdo#87215). - Use width from W array for WMode positioning (fdo#89621). - Fixed adding annotation of Subtype Popup to pdf page (fdo#89136). - CairoOutputDev: Fix memory leak in CairoFreeTypeFont::create. - SplashOutputDev: memset on error to have reproducible outputs. + qt4: Fix PDF Text String -> QString conversion (kde#344849). + qt5: Fix PDF Text String -> QString conversion (kde#344849). + glib: - Add poppler_annot_markup_set_popup_rectangle() - Fix segfault when creating PopplerAction (fdo#90093). + utils: pdftohtml: Set exit status adecuately (fdo#83609). + build system: configure: Fix invalid shell comparaison in libtiff test. - Bump poppler soname following upstream changes. ==== python-zope.interface ==== Version update (4.1.1 -> 4.1.2) - update to version 4.1.2: * Add support for PyPy3. * Remove unittest assertions deprecated in Python3.x. * Add zope.interface.document.asReStructuredText, which formats the generated text for an interface using ReST double-backtick markers. - fix documentation generation - pass -q to test to avoid spamming the build log ==== qemu ==== Subpackages: qemu-arm qemu-block-curl qemu-extra qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-ppc qemu-s390 qemu-seabios qemu-sgabios qemu-tools qemu-vgabios qemu-x86 - Fix CVE-2015-3456 (boo#929339) 0041-fdc-force-the-fifo-access-to-be-in-.patch - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3 ==== qemu-linux-user ==== - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.3 * Patches added: 0041-fdc-force-the-fifo-access-to-be-in-.patch ==== randrproto-devel ==== Version update (1.4.1 -> 1.5.0) - Update to version 1.5.0: XRandR 1.5 adds monitor objects and tiling support. ==== rsyslog ==== Version update (8.9.0 -> 8.10.0) - rsyslog 8.10.0: * imfile: add capability to process multi-line messages based on regex * pmrfc3164: add new parameter "detect.yearAfterTimestamp" * pmrfc3164: add new parameter "permit.squareBracesInHostname" * supplementary groups are now set when dropping privileges * imfile: added brace glob expansion to wildcard * zmq: add the ability for zeromq input and outputs to advertise their presence on UDP via the zbeacon API. * added omhttpfs: contributed module for writing to HDFS via HTTP * bug fixes - packaging changes: * build with GnuTLS support again as 3.4.0 is now supported ==== libspeexdsp1 ==== - Fix incorrect includes (boo#929450) * speexdsp-fixbuilds-774c87d.patch ==== systemsettings5 ==== Subpackages: systemsettings5-devel - Added systemsettings-desktop.diff: rename application name to Configure Desktop, in order to cause less confusion for KDE4 users ==== yakuake ==== Subpackages: yakuake-lang - On openSUSE > 13.2 Require konsole4-part Removed packages: boost-license1_56_0 > libboost_atomic1_56_0 > libboost_chrono1_56_0 > libboost_container1_56_0 > libboost_context1_56_0 > libboost_coroutine1_56_0 > libboost_date_time1_56_0 > libboost_filesystem1_56_0 > libboost_graph1_56_0 > libboost_graph_parallel1_56_0 > libboost_iostreams1_56_0 > libboost_locale1_56_0 > libboost_log1_56_0 > libboost_math1_56_0 > libboost_mpi1_56_0 > libboost_program_options1_56_0 > libboost_python1_56_0 > libboost_random1_56_0 > libboost_regex1_56_0 > libboost_serialization1_56_0 > libboost_signals1_56_0 > libboost_system1_56_0 > libboost_test1_56_0 > libboost_thread1_56_0 > libboost_timer1_56_0 > libboost_wave1_56_0 libpoppler51 Added packages: boost-license1_58_0 > libboost_atomic1_58_0 > libboost_chrono1_58_0 > libboost_container1_58_0 > libboost_context1_58_0 > libboost_coroutine1_58_0 > libboost_date_time1_58_0 > libboost_filesystem1_58_0 > libboost_graph1_58_0 > libboost_graph_parallel1_58_0 > libboost_iostreams1_58_0 > libboost_locale1_58_0 > libboost_log1_58_0 > libboost_math1_58_0 > libboost_mpi1_58_0 > libboost_program_options1_58_0 > libboost_python1_58_0 > libboost_random1_58_0 > libboost_regex1_58_0 > libboost_serialization1_58_0 > libboost_signals1_58_0 > libboost_system1_58_0 > libboost_test1_58_0 > libboost_thread1_58_0 > libboost_timer1_58_0 > libboost_wave1_58_0 libdirac_encoder0 gstreamer-0_10-plugins-bad > gstreamer-0_10-plugins-bad-lang > libgstbasecamerabinsrc-0_10-23 > libgstbasevideo-0_10-23 > libgstcodecparsers-0_10-23 > libgstphotography-0_10-23 > libgstsignalprocessor-0_10-23 > libgstvdp-0_10-23 kdevelop4 > kdevelop4-devel > kdevelop4-lang > kdevelop4-plugin-cppsupport kdevelop4-plugins-php libcdaudio1 libtimidity-0_1-0 libopencv-qt55_4 libpoppler52