Packages changed: cups-filters (1.20.3 -> 1.20.4) emacs emacs-w3m gcc8 (8.1.1+r261583 -> 8.1.1+r262873) ibus icecream inxi (3.0.10 -> 3.0.18) libsoup osinfo-db (20180612 -> 20180720) perl-Exporter-Tiny (1.000000 -> 1.002001) perl-IO-Socket-SSL (2.056 -> 2.058) poppler (0.63.0 -> 0.66.0) poppler-qt5 (0.63.0 -> 0.66.0) re2 (20180401 -> 20180701) sudo sysdig (0.21.0_k4.17.7_1 -> 0.22.0_k4.17.7_1) texlive vim (8.1.0179 -> 8.1.0200) webkit2gtk3 wireshark (2.6.1 -> 2.6.2) wpa_supplicant === Details === ==== cups-filters ==== Version update (1.20.3 -> 1.20.4) - Version upgrade to 1.20.4 - gstoraster: Removed unneeded "if"s (Ghostscript bug #692705). - cups-browsed: When checking whether there is already a local print queue with the same URI as the one of the discovered printer, consider also as equal URI if the URIs only differ by use of IPP or IPPS and/or use of HTTPS port 443 instead of IPP port 631. - cups-browsed: Also upgrade from ipp: to ipps: when the ipps: URI is on HTTPS port 443 instead of IPP port 631. This is common on IPP network printers. - pdftopdf: Removed support for hardware-implemented reversing of page order in PostScript printers. It was once not correctly implemented in cups-filters and second, such printers are extremely rare, and on Gutenprint PPDs with pseudo OutputOrder option hardware reversing was even wrongly assumed (Issue #47). - pdftopdf: Accept option "output-order=normal/reverse" for reversing page order (Issue #47) and also "page-delivery= same-order/reverse-order" (CUPS Issue #5340). - libcupsfilters: Let the PPD generator add "*PageStackOrder ..." lines to the choices of the "OutputBin" option, to mark which output bins need the pages printed in reverse order (Issue #47). - libcupsfilters: Let the PPD generator correctly create a "*DefaultOutputOrder: ..." entry, depending on whether the paper is put out face-up or face-down in the default output bin (Issue #47). - libcupsfilters: Fixed human-readable name of the OutputBin option in the PPD generator. - pdftoopvp: Silence compiler warning (Issue #42). - cups-browsed: If the user modifies/overwrites a print queue created by cups-browsed, it will now not only be automatically released from the control of cups-browsed, but we also create a replacement for our generated local queue under a new name. - cups-browsed: Make URIS for using the implicitclass backend correctly working also with queue names containing an '@' character. - braille: Strengthen error checking (Pull request #41). - braille: Index: Replace bogus characters with space (Pull request #41). - braille: Add print and braille page number options (Pull request #41). - braille: Index: Use standard duplex cups option (Pull request #41). - cups-browsed: Moved auto-generation of PPD file for IPP network printers from create_remote_printer_entry() function to update_cups_queues(). This allows re-creating accidentally removed or overwritten local queues without losing the PPD file. - braille: Add option to pick hyphenation rule according to current locale and make it the default for second translation table. (Pull request #38 and #39). - braille: Remove generated defs on "make clean". (Pull request #38). - braille: Turn non-breakable spaces to spaces. (Pull request [#38] and #39). - braille: Fix character encoding when extracting text. When extracing text from a zip file or a pdf, the resulting text is always utf-8 independently of the original locale, so we need to force that. (Pull request #38). - braille: Warn when no text translation was selected in case the user didn't notice. (Pull request #37). - braille: Fix spurious spacing after last Form-Feed (Pull request #45). - Drop pdftoopvp_Silence-compiler-warning.patch - Add pdftoopvp_Silence-compiler-warning.patch: pdftoopvp: Silence compiler warning. ==== emacs ==== Subpackages: emacs-info emacs-nox emacs-x11 etags - Avoid error message on info.info(.info) as this file should not be installed due it is part of the system package info (boo#1101652) ==== emacs-w3m ==== - Trim bias from description. - Replace old RPM shell vars by macros. ==== gcc8 ==== Version update (8.1.1+r261583 -> 8.1.1+r262873) Subpackages: cpp8 gcc8-c++ gcc8-fortran gcc8-info gcc8-locale gcc8-objc libasan5 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libmpx2 libmpxwrappers2 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc8 libtsan0 libubsan1 - Update to gcc-8-branch head (r262873). * Includes fix to no longer try linking -lieee with -mieee-fp. [bnc#1084842] * Includes changes up to GCC 8.2 RC1. ==== ibus ==== Subpackages: ibus-gtk ibus-gtk-32bit ibus-gtk3 ibus-lang libibus-1_0-5 libibus-1_0-5-32bit typelib-1_0-IBus-1_0 - Do not hardcode python in 3.6 version, they change so use wildcards ==== icecream ==== - Add firewalld rules, remove SuSEFirewall2 config - Add systemd service units for icecream, icecream-scheduler - Create socket and environment directories using tmpfiles.d - Strip no longer needed options from config file - Spec file cleanup: - remove cruft for 12.2 and older - use %license tag ==== inxi ==== Version update (3.0.10 -> 3.0.18) - Update to version 3.0.18: * See /usr/share/doc/packages/inxi/inxi.changelog ==== libsoup ==== Subpackages: libsoup-2_4-1 libsoup-lang typelib-1_0-Soup-2_4 - Add libsoup-boo1100097-empty-string.patch: fix crash when handling empty hostnames (boo#1100097 CVE-2018-12910). ==== osinfo-db ==== Version update (20180612 -> 20180720) - bsc#1102101 - osinfo-db: Add support for sle12sp4 to the database add-sle12sp4-support.patch - Update database to version 20180720 osinfo-db-20180720.tar.xz - Drop add-sle15-support.patch - Add official release date for sle15. Drop 'sles' and 'sled' in favor of just 'sle' (bsc#1054986) add-sle15-support.patch ==== perl-Exporter-Tiny ==== Version update (1.000000 -> 1.002001) - updated to 1.002001 see /usr/share/doc/packages/perl-Exporter-Tiny/Changes 1.002001 2018-07-17 [ Packaging ] - Fix dates in changelog. 1.002000 2018-07-17 [ Packaging ] - Repackage as 1.002000. 1.001_001 2018-06-29 [ Test Suite ] - Improved test coverage, up from 88.78% on coveralls.io to 96.74%. 1.001_000 2018-06-26 - Added: Support for exporting non-code symbols such as $Foo, @Bar, and %Baz. - Added: Support for generating non-code symbols. ==== perl-IO-Socket-SSL ==== Version update (2.056 -> 2.058) - updated to 2.058 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.058 2018/07/19 - fix t/session_ticket.t: it failed with OpenSSL 1.1.* since this version expects the extKeyUsage of clientAuth in the client cert also to be allowed by the CA if CA uses extKeyUsage - updated to 2.057 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.057 2018/07/18 - fix memory leak which occured with explicit stop_SSL in connection with non-blocking sockets or timeout - https://rt.cpan.org/Ticket/Display.html?id=125867 Thanks to Paul Evans for reporting - fix redefine warnings in case Socket6 is installed but neither IO::Socket::IP nor IO::Socket::INET6 - https://rt.cpan.org/Ticket/Display.html?id=124963 - IO::Socket::SSL::Intercept - optional 'serial' argument can be starting number or callback to create serial number based on the original certificate - new function get_session_reused to check if a session got reused - IO::Socket::SSL::Utils::CERT_asHash: fingerprint_xxx now set to the correct value ==== poppler ==== Version update (0.63.0 -> 0.66.0) Subpackages: libpoppler-glib8 poppler-tools - Update to version 0.66.0: + core: - Fix lots of security/leak issues found by oss-fuzz - Splash: Optimize some files, making them 20% faster - Splash: Correctly manipulate spot colors if SPOT_NCOMPS != 4 - Fix compilation with some strict compilers - Changes from version 0.65.0: + core: - SplashOutputDev: Add the invisible character check beginType3Char. (fdo#106244) - XRef: Fix runtime undefined behaviour. (fdo#105970) - Fix issues with malformed documents. (fdo#104942), (fdo#103238) - Remove GooHash after replacing it by std::unordered_map - Add conversion methods between GooString and std::string. + cpp: - Add newline after error message - Expose more image modes, add option to select mode in renderer. (fdo#105558) + build system: - Fix compilation with libc++ - Small improvement to FindLIBOPENJPEG2.cmake + qt5: - Add widget annot actions to FormFields + utils: - pdffonts: Minor formatting changes in the man page. (fdo#105194) - Changes from version 0.64.0: + core: - Workaround form field text not being drawn on broken files. (fdo#103245) - Add read only setter for form fields - Add support for Link Hide action - Add support for Next actions in Links - Fix parsing of Annot focus out actions - Fix PDFDoc::checkHeader() for PDFs smaller than 1 KiB. (fdo#105674) - Add const to several classes and members - gfile: Fix build on some platforms - Fix issues with on malformed documents. (fdo#105972), (fdo#105969), (fdo#106059), (fdo#106061) - Several small code improvements + qt5: - Allow setting of Form visibility status - Allow setting of Form read only status - Add support for Link Hide action - Add support for Next actions in Links - ArthurOutputDev: Implement axialShadedFill - ArthurOutputDev: Implement drawImageMask. (fdo#105531) - ArthurOutputDev: Implement Type3 font support + utils: - pdfsig: Add -dump which writes signatures to disk (fdo#104881) + glib: - less deprecated calls + build system: - bring back the option to disable GObject introspection - Add iconv include dir when compiling - Make it possible to build poppler without fontconfig. Default for Android. - Bump soversion and data_version to 77 and 0.4.9 respectively. ==== poppler-qt5 ==== Version update (0.63.0 -> 0.66.0) - Update to version 0.66.0: + core: - Fix lots of security/leak issues found by oss-fuzz - Splash: Optimize some files, making them 20% faster - Splash: Correctly manipulate spot colors if SPOT_NCOMPS != 4 - Fix compilation with some strict compilers - Changes from version 0.65.0: + core: - SplashOutputDev: Add the invisible character check beginType3Char. (fdo#106244) - XRef: Fix runtime undefined behaviour. (fdo#105970) - Fix issues with malformed documents. (fdo#104942), (fdo#103238) - Remove GooHash after replacing it by std::unordered_map - Add conversion methods between GooString and std::string. + cpp: - Add newline after error message - Expose more image modes, add option to select mode in renderer. (fdo#105558) + build system: - Fix compilation with libc++ - Small improvement to FindLIBOPENJPEG2.cmake + qt5: - Add widget annot actions to FormFields + utils: - pdffonts: Minor formatting changes in the man page. (fdo#105194) - Changes from version 0.64.0: + core: - Workaround form field text not being drawn on broken files. (fdo#103245) - Add read only setter for form fields - Add support for Link Hide action - Add support for Next actions in Links - Fix parsing of Annot focus out actions - Fix PDFDoc::checkHeader() for PDFs smaller than 1 KiB. (fdo#105674) - Add const to several classes and members - gfile: Fix build on some platforms - Fix issues with on malformed documents. (fdo#105972), (fdo#105969), (fdo#106059), (fdo#106061) - Several small code improvements + qt5: - Allow setting of Form visibility status - Allow setting of Form read only status - Add support for Link Hide action - Add support for Next actions in Links - ArthurOutputDev: Implement axialShadedFill - ArthurOutputDev: Implement drawImageMask. (fdo#105531) - ArthurOutputDev: Implement Type3 font support + utils: - pdfsig: Add -dump which writes signatures to disk (fdo#104881) + glib: - less deprecated calls + build system: - bring back the option to disable GObject introspection - Add iconv include dir when compiling - Make it possible to build poppler without fontconfig. Default for Android. - Bump soversion and data_version to 77 and 0.4.9 respectively. ==== re2 ==== Version update (20180401 -> 20180701) - Simplify spec file a bit - update to 2018-07-01: * Fix a "DFA out of memory" error * Update Unicode data to 11.0.0 * Fix `-Wclass-memaccess' warnings and fallthrough macros * Use the standard first-byte analysis for the DFA too ==== sudo ==== - Build with make -B to make package build reproducible ==== sysdig ==== Version update (0.21.0_k4.17.7_1 -> 0.22.0_k4.17.7_1) - Update to version 0.22: * eBPF support for sysdig: eBPF as the instrumentation backend in kernel space (beta) * Parsing an argument passed to sysdig-probe-loader as a custom URL for the kernel module like -e SYSDIG_PROBE_URL=http://54.183.253.176:52354 [#1085] * Several changes to expand the set of events that are skipped by falco, and to centralize the logic for knowing which events to skip [#1105] * Improved proc lookup in libsinsp [#1107] [#1110] [#1112] * Improved performance [#1126] [#1120] [#1121] [#1137] * In dropping mode, drop events that don't change system state [#1123] * Introduce non-STL thread table API [#1142] * Add the ability to ignore events by process name (comm). At the scap level, ignoring is by tid. At the sinsp level, as threads are added/removed from the thread table the comm is checked against a set of comms and if found the tid is added to the scap-level ignore hash table [#1139] * The container_manager can now receive callbacks to call when a new container is detected or an inactive one is removed [#1133] * Add support for adding custom container types alongside Docker etc (on sinsp level) [#1149] * Parse and store three new container_info fields: repository, tag and digest [#1127] * Skip proc scan in sinsp_dumper w/ threads_from_sinsp=true [#1164] * Allow k8s filterchecks with analyzer [#1160] * When creating the sysdig docker image, add the ability to directly set the sysdig version via the environment variable SYSDIG_VERSION [#1166] - Drop upstreamed patch: * sysdig_proto_ops_getname.patch ==== texlive ==== - Add source-fix-const-poppler0.66.0.patch to fix several const issues that broke the build of texlive with poppler 0.66.0. - Add a view dependencies to perl-biber ==== vim ==== Version update (8.1.0179 -> 8.1.0200) Subpackages: gvim vim-data vim-data-common - update to 8.1.0200 - drop u_lua53_on_32bit.patch - merged by upstream * There is no hint that syntax is disabled for 'redrawtime'. * Terminal debugger error with .gdbinit file. * Terminal debugger commands don't always work. * Possibly use of NULL pointer. * Terminal debugger buttons don't always work. * Executing regexp recursively fails with a crash. * Perl refcounts are wrong. * getwininfo() and win_screenpos() return different numbers. * Not easy to figure out the window layout * Lua API changed, breaking the build * Unicode standard was updated. * Memory leak with trailing characters in skip expression. * Static analysis errors in Lua interface ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 libwebkit2gtk3-lang typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles - Add webkit2gtk3-boo1101999-off-by-one.patch: fix off-by-one in xdg_mime_get_simple_globs (boo#1101999 CVE-2018-12911). ==== wireshark ==== Version update (2.6.1 -> 2.6.2) Subpackages: libwiretap8 libwsutil9 wireshark-ui-qt - update to 2.6.2: * CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, boo#1101777) * CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, boo#1101788) * CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, boo#1101804) * CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, boo#11101786) * CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, boo#11101810) * CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, boo#11101776) * CVE-2018-14368: Bazaar dissector infinite loop (wnpa-sec-2018-40, boo#11101794) * CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, boo#11101800) * CVE-2018-14367: CoAP dissector crash (wnpa-sec-2018-42, boo#11101791) * CVE-2018-14370: IEEE 802.11 dissector crash (wnpa-sec-2018-43, boo#1101802) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.6.2.html - drop wireshark-2.6.1-fix-Qt-5.11.patch, upstream ==== wpa_supplicant ==== Subpackages: wpa_supplicant-gui - add two patches from upstream to fix reading private key passwords from the configuration file (bsc#1099835) - add patch for git 89971d8b1e328a2f79699c953625d1671fd40384 wpa_supplicant-bnc-1099835-clear-default_passwd_cb.patch - add patch for git f665c93e1d28fbab3d9127a8c3985cc32940824f wpa_supplicant-bnc-1099835-fix-private-key-password.patch