Packages changed: Mesa (18.1.2 -> 18.1.3) Mesa-drivers (18.1.2 -> 18.1.3) MozillaThunderbird (52.8 -> 52.9.0) apache-pdfbox (1.8.12 -> 1.8.15) ark audit (2.8.2 -> 2.8.4) audit-secondary (2.8.2 -> 2.8.4) build (20180329 -> 20180629) coreutils (8.29 -> 8.30) crash (7.2.1_k4.17.3_1 -> 7.2.3_k4.17.4_1) emacs (25.3 -> 26.1) epiphany exiv2 f2fs-tools (1.7.0 -> 1.10.0) gcc7 (7.3.1+r261272 -> 7.3.1+r262243) gv icedtea-web installation-images-Kubic (14.376 -> 14.377) iputils (s20161105 -> s20180629) kaccounts-integration kdepim-runtime kernel-source (4.17.3 -> 4.17.4) krita (4.0.4 -> 4.1.0) libgcrypt libostree (2018.4 -> 2018.6) libvirt lightdm (1.24.1 -> 1.26.0) links (2.15 -> 2.16) mc mercurial (4.6.1 -> 4.6.2) miniupnpc mutt (1.9.1 -> 1.10.0) netcfg obs-service-download_files (0.6.0.git.1502884469.0993a01 -> 0.6.1.git.1529965817.d9a3ff4) obs-service-tar_scm (0.9.0.1523267117.de861d8 -> 0.9.1.1530616709.1329314) openssh python-Pillow (5.1.0 -> 5.2.0) python-libvirt-python (4.3.0 -> 4.4.0) python-typing smartmontools sqlite3 ucode-intel (20180425 -> 20180703) update-alternatives (1.19.0.4 -> 1.19.0.5) xapian-core (1.4.5 -> 1.4.6) yast2 (4.0.78 -> 4.0.79) yast2-installation (4.1.4 -> 4.1.5) yast2-pkg-bindings (4.0.12 -> 4.0.13) zerofree (1.0.4 -> 1.1.1) === Details === ==== Mesa ==== Version update (18.1.2 -> 18.1.3) Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 libwayland-egl1 - update to 18.1.3 * numerous fixes for radv * some fixes for common radeon code * fixes for both the nir and glsl compilers * An i965 fix for some gpu hangs on SNB ==== Mesa-drivers ==== Version update (18.1.2 -> 18.1.3) Subpackages: Mesa-dri Mesa-dri-nouveau Mesa-gallium Mesa-libva libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_intel libvulkan_radeon libxatracker2 - update to 18.1.3 * numerous fixes for radv * some fixes for common radeon code * fixes for both the nir and glsl compilers * An i965 fix for some gpu hangs on SNB ==== MozillaThunderbird ==== Version update (52.8 -> 52.9.0) Subpackages: MozillaThunderbird-translations-common - update to Thunderbird 52.9.0: MFSA 2018-16 (bsc#1098998) * CVE-2018-12359 (bmo#1459162) Buffer overflow using computed size of canvas element * CVE-2018-12360 (bmo#1459693) Use-after-free when using focus() * CVE-2018-12372 (bmo#1419417, bsc#1100082) S/MIME and PGP decryption oracles can be built with HTML emails * CVE-2018-12373 (bmo#1464667, bmo#1464056, bsc#1100079) S/MIME plaintext can be leaked through HTML reply/forward * CVE-2018-12362 (bmo#1452375) Integer overflow in SSSE3 scaler * CVE-2018-12363 (bmo#1464784) Use-after-free when appending DOM nodes * CVE-2018-12364 (bmo#1436241) CSRF attacks through 307 redirects and NPAPI plugins * CVE-2018-12365 (bmo#1459206) Compromised IPC child process can list local filenames * CVE-2018-12366 (bmo#1464039) Invalid data handling during QCMS transformations * CVE-2018-12374 (bmo#1462910, bsc#1100081) Using form to exfiltrate encrypted mail part by pressing enter in form field * CVE-2018-5188 (bmo#1456189,bmo#1456975,bmo#1465898,bmo#1392739, bmo#1451297,bmo#1464063,bmo#1437842,bmo#1442722,bmo#1452576, bmo#1450688,bmo#1458264,bmo#1458270,bmo#1465108,bmo#1464829, bmo#1464079,bmo#1463494,bmo#1458048) Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9 * Thunderbird will now prompt to compact IMAP folders even if the account is online * Option for not decrypting subordinate message parts that otherwise might reveal decryted content to the attacker. Preference mailnews.p7m_subparts_external needs to be set to true for added security. * Fix various problems when forwarding messages inline when using "simple" HTML view - correct requires and provides handling (boo#1076907) - reduce memory footprint with %ix86 at linking time via additional compiler flags (boo#1091376) - Build from upstream source archive and verify source signature (boo#1085780) ==== apache-pdfbox ==== Version update (1.8.12 -> 1.8.15) - Update to 1.8.15: * [PDFBOX-4197] - PDStructureElement.getAttributes() ignores reference objects (CVE-2018-8036,bsc#1099721) - Update to 1.8.14: * [PDFBOX-3625] - Use correct file encoding when saving fdf data * [PDFBOX-3724] - Wrong size in rendering of some artifacts * [PDFBOX-3733] - image added to pdf by tool AddImageToPDF is turn-overed * [PDFBOX-3739] - ImageWriterIterator.next() and ImageReaderIterator.next() can return null * [PDFBOX-3742] - Unknown dir object c='>' cInt=62 peek='>' peekInt=62 * [PDFBOX-3813] - PDF Box crash when using PDFToImage or PDFDebug * [PDFBOX-3843] - Rect of Annotation contains indirect elements + Patch * [PDFBOX-3889] - javax.crypto.BadPaddingException: Given final block not properly padded * [PDFBOX-3909] - End of inline image not detected * [PDFBOX-3919] - Infinite loop while parsing (2) * [PDFBOX-3933] - PDFParser swallows a CR at the end of a stream * [PDFBOX-3942] - ClassCastException in getOptionalContentGroups * [PDFBOX-4005] - Incorrect use of PDNumberTreeNode in PDPageLabels * [PDFBOX-4011] - BBox in signature forms has wrong order * [PDFBOX-4027] - IndexOutOfBoundsException when XObject form matrix has only 5 elements * [PDFBOX-4030] - ClassCastException when matrix array has indirect objects * [PDFBOX-4064] - cm operator has 7 numbers * [PDFBOX-4083] - Line annotation /LL, /LLE and /LLO have wrong default values * [PDFBOX-4088] - Root/StructTreeRoot/K/S must be name, not string (merge) * [PDFBOX-3635] - Remove workaround to avoid SSLHandshakeException * [PDFBOX-4142] - Don't use md5 checksum due to changes to the release distribuition policy - Update to 1.8.13: * [PDFBOX-2420] - DateConverter doesn't handle time zones outside -12 to +12 range properly * [PDFBOX-2919] - org.apache.fontbox.cff.CFFParser.readEntry sometimes throws java.lang.IllegalArgumentException * [PDFBOX-3315] - Dates falsely detected as different by preflight * [PDFBOX-3335] - Issue while Merging PDF with Hidden Layers * [PDFBOX-3341] - currentAccessPermission.setReadOnly() not set in StandardSecurityHandler * [PDFBOX-3355] - PDPageLabels.getLabelsByPageIndices() returns Uppercase letters for style a * [PDFBOX-3368] - ContainsKey don't work for the Map returned by PDStructureTreeRoot.getRoleMap * [PDFBOX-3369] - Error expected floating point number actual='0.00-35095424' * [PDFBOX-3409] - TextToPDF drops leading spaces * [PDFBOX-3420] - Can't sign pdf with a particular attachment * [PDFBOX-3446] - Infinite loop while parsing * [PDFBOX-3448] - NullPointerException at org.apache.pdfbox.pdmodel.common.COSArrayList.convertFloatCOSArrayToList * [PDFBOX-3450] - ArrayIndexOutOfBoundsException at org.apache.fontbox.cmap.CMapParser.increment * [PDFBOX-3463] - XMPSchemaBasic.getLabel() always returns null * [PDFBOX-3466] - Java 9 warnings * [PDFBOX-3472] - NPE when PDF/A identification metadata does not contain ID * [PDFBOX-3477] - CA and ca values should be clipped * [PDFBOX-3481] - Localization in XRef generation results in unusable PDFs * [PDFBOX-3487] - ClassCastException in COSWriter.write() when saving PDF * [PDFBOX-3491] - NumberFormatException in CFFParser.readRealNumber * [PDFBOX-3500] - Error expected floating point number actual='0.-262' * [PDFBOX-3532] - Java 6 errors * [PDFBOX-3546] - IOException over DataFormatException, "invalid stored block lengths" on a valid PDF * [PDFBOX-3551] - CLI Decrypt broken, only allows 1 argument * [PDFBOX-3555] - FlateFilter.decode cause native memory leaks * [PDFBOX-3558] - NPE in JBig2Filter if BitsPerComponent is missing * [PDFBOX-3570] - JDK-8054565 Java 8 close contract issue * [PDFBOX-3571] - sRGB Color Space Profile is subject to 3rd party copyright * [PDFBOX-3578] - java.lang.IllegalArgumentException: dash lengths all zero * [PDFBOX-3590] - AccessPermission not applied * [PDFBOX-3594] - Use PDOutlineItem#findDestinationPage() cannot get PDPage, return was null * [PDFBOX-3609] - ClassCastException in PDCIDFont.readWidths() * [PDFBOX-3410] - TextToPDF needs orientation control * [PDFBOX-3352] - Calendar values are parsed with unknown timezones - Refresh pdfbox-1.8.12-bouncycastle.patch - Add patch to fix the version number: * fix-version.patch - Use %license - Build with source and target 8 to prepare for a possible removal of 1.6 compatibility ==== ark ==== Subpackages: ark-lang libkerfuffle18 - Fix broken Recommends: p7zip-full, p7zip-full is only available on TW and contains the executables from the former p7zip package. ==== audit ==== Version update (2.8.2 -> 2.8.4) Subpackages: audit-devel libaudit1 libaudit1-32bit libauparse0 - Update to version 2.8.4: * Generate checkpoint file even when not results are returned (Burn Alting). * Fix log file creation when file logging is disabled entirely (Vlad Glagolev). * Use SIGCONT to dump auditd internal state (rh#1504251). * Fix parsing of virtual timestamp fields in ausearch_expression (rh#1515903). * Fix parsing of uid & success for ausearch. * Hide lru symbols in auparse. * Fix aureport summary time range reporting. * Allow unlimited retries on startup for remote logging. * Add queue_depth to remote logging stats and increase default queue_depth size. - Update to version 2.8.3: * Correct msg function name in lru debug code. * Fix a segfault in auditd when dns resolution isn't available. * Make a reload legacy service for auditd. * In auparse python bindings, expose some new types that were missing. * In normalizer, pickup subject kind for user_login events. * Fix interpretation of unknown ioctcmds (rh#1540507). * Add ANOM_LOGIN_SERVICE, RESP_ORIGIN_BLOCK, & RESP_ORIGIN_BLOCK_TIMED events. * In auparse_normalize for USER_LOGIN events, map acct for subj_kind. * Fix logging of IPv6 addresses in DAEMON_ACCEPT events (rh#1534748). * Do not rotate auditd logs when num_logs < 2 (brozs). ==== audit-secondary ==== Version update (2.8.2 -> 2.8.4) - Update to version 2.8.4: * Generate checkpoint file even when not results are returned (Burn Alting). * Fix log file creation when file logging is disabled entirely (Vlad Glagolev). * Use SIGCONT to dump auditd internal state (rh#1504251). * Fix parsing of virtual timestamp fields in ausearch_expression (rh#1515903). * Fix parsing of uid & success for ausearch. * Hide lru symbols in auparse. * Fix aureport summary time range reporting. * Allow unlimited retries on startup for remote logging. * Add queue_depth to remote logging stats and increase default queue_depth size. - Update to version 2.8.3: * Correct msg function name in lru debug code. * Fix a segfault in auditd when dns resolution isn't available. * Make a reload legacy service for auditd. * In auparse python bindings, expose some new types that were missing. * In normalizer, pickup subject kind for user_login events. * Fix interpretation of unknown ioctcmds (rh#1540507). * Add ANOM_LOGIN_SERVICE, RESP_ORIGIN_BLOCK, & RESP_ORIGIN_BLOCK_TIMED events. * In auparse_normalize for USER_LOGIN events, map acct for subj_kind. * Fix logging of IPv6 addresses in DAEMON_ACCEPT events (rh#1534748). * Do not rotate auditd logs when num_logs < 2 (brozs). - Use %license instead of %doc [bsc#1082318] ==== build ==== Version update (20180329 -> 20180629) Subpackages: build-mkbaselibs build-mkdrpms - docker: * use a correct prefixed label for disturl * Support building multiple image types containing a docker image * Set build user to root for docker/fissile builds * Compress containers so that old kiwi versions can handle them * Put obs-docker-support uninstall before the last user line * Also pass arch and buildflavor when creating the containerinfo * set disturl as container LABEL * Uncompress kiwi generated containers * build-vm-docker: type=bind instead of type=volume in --mount option - computeblocklists/extractbuild: * Tweak verbose logging of directories in computeblocklists/extractbuild * add support for FIEMAP ioctl * don't use bare F for file * document and use alternate ioctl numbers * more tweaks and sanity checks * Fallback to encode/decode helpers if perl does not support 'Q' in pack/unpack * Use 'eval' when querying the blocklist - Misc: * fix escaping in regexp * log toplevel KIWI directories in verbose mode * Split kiwi product parser in a separate function * Always add extra dependencies when doing sysdeps expansion * Fix REPOTYPE setting if the PKGCONFIG file is generated by a service * support zypper's handling of versioned deps * pam-modules got dropped on sles 15 * testing for build specific filesystem, which are more important then worker defaults * mark lint option as obsolete * Make sure that we know all pre/vminstalls ==== coreutils ==== Version update (8.29 -> 8.30) Subpackages: coreutils-lang - Update to 8.30: * Noteworthy changes in release 8.30 (2018-07-01) [stable] * * Bug fixes 'cp --symlink SRC DST' will again correctly validate DST. If DST is a regular file and SRC is a symlink to DST, then cp will no longer allow that operation to clobber DST. Also with -d, if DST is a symlink, then it can always be replaced, even if it points to SRC on a separate device. [bugs introduced with coreutils-8.27] 'cp -n -u' and 'mv -n -u' now consistently ignore the -u option. Previously, this option combination suffered from race conditions that caused -u to sometimes override -n. [bug introduced with coreutils-7.1] 'cp -a --no-preserve=mode' now sets appropriate default permissions for non regular files like fifos and character device nodes etc., and leaves mode bits of existing files unchanged. Previously it would have set executable bits on created special files, and set mode bits for existing files as if they had been created. [bug introduced with coreutils-8.20] 'cp --remove-destination file symlink' now removes the symlink even if it can't be traversed. [bug introduced with --remove-destination in fileutils-4.1.1] ls no longer truncates the abbreviated month names that have a display width between 6 and 12 inclusive. Previously this would have output ambiguous months for Arabic or Catalan locales. 'ls -aA' is now equivalent to 'ls -A', since -A now overrides -a. [bug introduced in coreutils-5.3.0] 'mv -n A B' no longer suffers from a race condition that can overwrite a simultaneously-created B. This bug fix requires platform support for the renameat2 or renameatx_np syscalls, found in recent Linux and macOS kernels. As a side effect, ?mv -n A A? now silently does nothing if A exists. [bug introduced with coreutils-7.1] * * Changes in behavior 'cp --force file symlink' now removes the symlink even if it is self referential. ls --color now matches file extensions case insensitively. * * New features cp --reflink now supports --reflink=never to enforce a standard copy. env supports a new -v/--debug option to show verbose information about each processing step. env supports a new -S/--split-string=S option to split a single argument string into multiple arguments. Used to pass multiple arguments in scripts (shebang lines). md5sum accepts a new option: --zero (-z) to delimit the output lines with a NUL instead of a newline character. This also disables file name escaping. This also applies to sha*sum and b2sum. rm --preserve-root now supports the --preserve-root=all option to reject any command line argument that is mounted to a separate file system. * * Improvements cut supports line lengths up to the max file size on 32 bit systems. Previously only offsets up to SIZE_MAX-1 were supported. stat and tail now know about the "exfs" file system, which is a version of XFS. stat -f --format=%T now reports the file system type, and tail -f uses inotify. wc avoids redundant processing of ASCII text in multibyte locales, which is especially significant on macOS. - Refresh patches (line number changes only): * coreutils-build-timeout-as-pie.patch * coreutils-disable_tests.patch * coreutils-remove_hostname_documentation.patch * coreutils-remove_kill_documentation.patch * coreutils-skip-gnulib-test-tls.patch * coreutils-tests-shorten-extreme-factor-tests.patch - coreutils.spec: * (License): osc changed the value from "GPL-3.0+" to "GPL-3.0-or-later". * (build): Make sure that parse-datetime.{c,y} ends up in debuginfo (rh#1555079). - coreutils-i18n.patch: * src/exand.c,src/unexpand.c: Avoid -Wcomment warning. * src/cut.c (cut_characters_or_cut_bytes_no_split): Change idx from size_t to uintmax_t type to avoid a regression on i586, armv7l and ppc. Compare upstream, non-MB commit: https://git.sv.gnu.org/cgit/coreutils.git/commit/?id=d1a754c8272 (cut_fields_mb): Likewise for field_idx. * tests/misc/cut.pl: Remove downstream tweaks as upstream MB tests are working since a while. - coreutils.keyring: Update Assaf Gordon's GPG public key. ==== crash ==== Version update (7.2.1_k4.17.3_1 -> 7.2.3_k4.17.4_1) - Added crash-fix-snprintf-overflow.patch Fix to address a "__builtin___snprintf_chk" compiler warning. - Added crash-update-recognition-of-x86_64-CPU_ENTRY_AREA.patch Update the recognition of x86_64 CPU_ENTRY_AREA. - Upgrade the source tarball to version to 7.2.3 A complete changelog is available via the crash source page at: http://people.redhat.com/anderson/crash.changelog.html - Refreshed: crash-compressed-booted-kernel.patch ==== emacs ==== Version update (25.3 -> 26.1) Subpackages: emacs-info emacs-nox emacs-x11 etags - Simplify patch emacs-25.3-xft4x11.patch (from Henryk Hecht) for boo#1096354 - Add patch emacs-26.1-xft4x11.patch to allow emacs-x11 to use xft even for its menu bar (boo#1096354) - Drop pkgconfig(gconf-2.0) BuildRequires: No longer needed, nor used. Emacs-x11 uses gsettings on openSUSE. - Use -fPIE/-pie for helper binaries - Use Groups tag Productivity/Text/Editors - Add configure option for mailutils as recommended by GNU Emacs upstream - Re-enable games with GNU Emacs which requires system-user-games - Cleanup the spec file by removing old suse_versions and reordering configure options - Add some missed packages for configure - Avoid Xwidgets on 32bit architectures as this does not build - Update to emacs version 26.1 * Startup Changes in Emacs 26.1 - New option '--fg-daemon' - New option '--module-assertions' - Emacs now supports 24-bit colors on capable text terminals - Emacs now obeys the X resource "scrollBar" at startup * Various Changes in Emacs 26.1, see NEWS * Various Editing Changes in Emacs 26.1, see NEWS * Various Changes in Specialized Modes and Packages in Emacs 26.1, see NEWS * Some Incompatible Lisp Changes in Emacs 26.1, see NEWS * Various Lisp Changes in Emacs 26.1, see NEWS - Removed patch now upstream * emacs-24.4-decl.dif * emacs-25.2-bsc1058425.patch * emacs-25.2-xwidget.patch * gnulib.git-94e01571.patch - Remove patch emacs-24.1-bnc628268.patch as spell.el is gone for ever - Modify/port patches * emacs-24.1-ps-mule.patch * emacs-24.3-iconic.patch * emacs-24.3-x11r7.patch * emacs-24.4-flyspell.patch * emacs-24.4-glibc.patch * emacs-24.4-nonvoid.patch * emacs-24.4-ps-bdf.patch * emacs-24.4-xim.patch * emacs-25.2-ImageMagick7.patch - Port and rename patch emacs-25.3.dif to emacs-26.1.dif ==== epiphany ==== Subpackages: epiphany-lang gnome-shell-search-provider-epiphany - Add epiphany-leak-fixes.patch: Fix multiple leaks. ==== exiv2 ==== - Fix build on python3 only system by making sure we use python3 when building ==== f2fs-tools ==== Version update (1.7.0 -> 1.10.0) - Update to version 1.10.0 * f2fs-tools: support inode creation time * fsck.f2fs: add -y for generic fsck * fsck.f2fs: support quota * mkfs.f2fs: support quota option in mkfs * f2fs-tools: support flexible inline xattr size * add sparse support for f2fs * f2fscrypt: add a tool for encryption management in f2fs ==== gcc7 ==== Version update (7.3.1+r261272 -> 7.3.1+r262243) - Update to gcc-7-branch head (r262243). * Pulls fix for libcpp lexing bug on ppc64le manifesting during build with gcc8. [bnc#1099119] * Pulls fix for forcing compile-time tuning even when building with -march=z13 on s390x. [bnc#1099192] ==== gv ==== - remove xorg-x11-devel from buildrequires ==== icedtea-web ==== Subpackages: icedtea-web-javadoc - Remove dependency on objectweb-asm, since the build does not need it ==== installation-images-Kubic ==== Version update (14.376 -> 14.377) - merge gh#openSUSE/installation-images#253 - add bcm43xx-firmware (bsc#1099327) - 14.377 ==== iputils ==== Version update (s20161105 -> s20180629) Subpackages: rarpd - Update to version s20180629 * ping: Fix signed overflow/conversion warning * ping: Fix ping name encoded using ACE on C locale * fix checksum always success in IPv4 ping. * ping6: Fix device binding * Ping: Correct rounding of timing displays * docs: Tiny fixes in README.md * doc/ping: Update Interface section * doc/ping: Replace deprecated commands in "SEE ALSO" section * Revert "correctly initialize first hop" * tracepath: Support calling `tracepath` as `tracepath4` or `tracepath6` * ping: remove spurious error message * tracepath: fix heap-buffer-overflow [asan] * arping: do not use libsysfs to read from /sys * .travis.yml: corrected variable values in matrix * .travis.yml: install libidn2 * ping: use libidn2 instead of libidn * ping: Remove workaround for bug in IP_RECVERR on raw sockets * ping6: simplified IDNA usage * traceroute6: use getaddrinfo IDNA conversion * arping,tracepath: removed unused idna header * cleanup: really old code, simplify little bit * licenses: fill missing clockdiff.c and ping_common.c license * LICENSE: convert BSD4 to BSD3 license * doc: ping - document mdev behaviour * LICENSE: add information about licenses * ping: fix incorrect packet loss calculation * doc: convert from converting SGML to XML * travis-ci: cleanup and switch to Ubuntu 14.04 build * RELNOTES: deprecated in favor of git history & github * remove iputils.spec * ping: fix conflicting defines * ping: flowinfo: fixup checks for flowinfo and also add decimal numbers support * ping: parsetos verification is enough, allow decimal values * ping: fix typo in error tos error message * meson: add experimental meson buildsystem support * gitignore: prepare for Meson * ping: read from error queue when POLLERR is set * ping_common.c: POLLERRR is ignored in events * ping: fix pmtu discovery for ipv6 * traceroute6: Fix traceroute to IPv6 address * traceroute6: Fix leaking the idn memory * traceroute6: Fix use after free for hostname * tracepath,doc: Added -4, -6 Parameter in doc and void usage(void) * fix multicast setsockopt calls on big endian * arping: exit if network disappears while running * ping: prevent possible double free after cap_free() * Add strict pattern matching on response when pattern was provided * traceroute6: Fix udp packet port specification. - Removed patches (taken from upstream, now in tree) * iputils-add-license-info.diff * iputils-ping-fix-pmtu-for-ipv6.patch * iputils-remove-bogus-check-required-for-2.4.9-kernels.patch - Rebased patches * iputils-ping-interrupt.diff * iputils-sec-ping-unblock.diff - Add build dependency docbook-xsl-stylesheets (required by man pages) - Add tracepath6 man page, updated list of unwanted man enties (ipg, pgset) - Removed RELNOTES (upstream removed it) ==== kaccounts-integration ==== Subpackages: kaccounts-integration-lang libkaccounts1 - Also require libsignon-qt5-devel when installing kaccounts-integration-devel. - Run spec-cleaner. ==== kdepim-runtime ==== Subpackages: kdepim-runtime-lang - Fix EWS connection when server needs an empty domain, fix kde#388496, backport: Add 0001-Always-add-domain-delimiter-if-Domain-checkbox-is-se.patch ==== kernel-source ==== Version update (4.17.3 -> 4.17.4) Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms - Linux 4.17.4 (bnc#1012628). - x86/spectre_v1: Disable compiler optimizations over array_index_mask_nospec() (bnc#1012628). - x86/xen: Add call of speculative_store_bypass_ht_init() to PV paths (bnc#1012628). - x86/platform/UV: Add adjustable set memory block size function (bnc#1012628). - x86/platform/UV: Use new set memory block size function (bnc#1012628). - x86/platform/UV: Add kernel parameter to set memory block size (bnc#1012628). - x86/mce: Improve error message when kernel cannot recover (bnc#1012628). - x86/mce: Check for alternate indication of machine check recovery on Skylake (bnc#1012628). - x86/mce: Fix incorrect "Machine check from unknown source" message (bnc#1012628). - x86/mce: Do not overwrite MCi_STATUS in mce_no_way_out() (bnc#1012628). - x86: Call fixup_exception() before notify_die() in math_error() (bnc#1012628). - m68k/mm: Adjust VM area to be unmapped by gap size for __iounmap() (bnc#1012628). - m68k/mac: Fix SWIM memory resource end address (bnc#1012628). - platform/chrome: cros_ec_lpc: do not try DMI match when ACPI device found (bnc#1012628). - hwmon: (k10temp) Add support for Stoney Ridge and Bristol Ridge CPUs (bnc#1012628). - serial: sh-sci: Use spin_{try}lock_irqsave instead of open coding version (bnc#1012628). - signal/xtensa: Consistenly use SIGBUS in do_unaligned_user (bnc#1012628). - PM / Domains: Fix error path during attach in genpd (bnc#1012628). - PCI / PM: Do not clear state_saved for devices that remain suspended (bnc#1012628). - ACPI / LPSS: Avoid PM quirks on suspend and resume from S3 (bnc#1012628). - PM / core: Fix supplier device runtime PM usage counter imbalance (bnc#1012628). - PM / OPP: Update voltage in case freq == old_freq (bnc#1012628). - mmc: renesas_sdhi: really fix WP logic regressions (bnc#1012628). - usb: do not reset if a low-speed or full-speed device timed out (bnc#1012628). - 1wire: family module autoload fails because of upper/lower case mismatch (bnc#1012628). - ASoC: dapm: delete dapm_kcontrol_data paths list before freeing it (bnc#1012628). - ASoC: cs35l35: Add use_single_rw to regmap config (bnc#1012628). - ASoC: mediatek: preallocate pages use platform device (bnc#1012628). - ASoC: cirrus: i2s: Fix LRCLK configuration (bnc#1012628). - ASoC: cirrus: i2s: Fix {TX|RX}LinCtrlData setup (bnc#1012628). - thermal: bcm2835: Stop using printk format %pCr (bnc#1012628). - clk: renesas: cpg-mssr: Stop using printk format %pCr (bnc#1012628). - lib/vsprintf: Remove atomic-unsafe support for %pCr (bnc#1012628). - ftrace/selftest: Have the reset_trigger code be a bit more careful (bnc#1012628). - mips: ftrace: fix static function graph tracing (bnc#1012628). - branch-check: fix long->int truncation when profiling branches (bnc#1012628). - ipmi:bt: Set the timeout before doing a capabilities check (bnc#1012628). - Bluetooth: hci_qca: Avoid missing rampatch failure with userspace fw loader (bnc#1012628). - printk: fix possible reuse of va_list variable (bnc#1012628). - fuse: fix congested state leak on aborted connections (bnc#1012628). - fuse: atomic_o_trunc should truncate pagecache (bnc#1012628). - fuse: don't keep dead fuse_conn at fuse_fill_super() (bnc#1012628). - fuse: fix control dir setup and teardown (bnc#1012628). - powerpc/mm/hash: Add missing isync prior to kernel stack SLB switch (bnc#1012628). - powerpc/pkeys: Detach execute_only key on !PROT_EXEC (bnc#1012628). - powerpc/ptrace: Fix setting 512B aligned breakpoints with PTRACE_SET_DEBUGREG (bnc#1012628). - powerpc/perf: Fix memory allocation for core-imc based on num_possible_cpus() (bnc#1012628). - powerpc/ptrace: Fix enforcement of DAWR constraints (bnc#1012628). - powerpc/powernv/ioda2: Remove redundant free of TCE pages (bnc#1012628). - powerpc/powernv: copy/paste - Mask SO bit in CR (bnc#1012628). - powerpc/powernv/cpuidle: Init all present cpus for deep states (bnc#1012628). - cpuidle: powernv: Fix promotion from snooze if next state disabled (bnc#1012628). - powerpc/fadump: Unregister fadump on kexec down path (bnc#1012628). - libnvdimm, pmem: Do not flush power-fail protected CPU caches (bnc#1012628). - soc: rockchip: power-domain: Fix wrong value when power up pd with writemask (bnc#1012628). - powerpc/64s/radix: Fix radix_kvm_prefetch_workaround paca access of not possible CPU (bnc#1012628). - powerpc/e500mc: Set assembler machine type to e500mc (bnc#1012628). - powerpc/64s: Fix DT CPU features Power9 DD2.1 logic (bnc#1012628). - cxl: Configure PSL to not use APC virtual machines (bnc#1012628). - cxl: Disable prefault_mode in Radix mode (bnc#1012628). - ARM: 8764/1: kgdb: fix NUMREGBYTES so that gdb_regs[] is the correct size (bnc#1012628). - ARM: dts: sun8i: h3: fix ALL-H3-CC H3 ver VDD-CPUX voltage (bnc#1012628). - ARM: dts: sun8i: h3: fix ALL-H3-CC H3 ver VCC-1V2 regulator voltage (bnc#1012628). - ARM: dts: Fix SPI node for Arria10 (bnc#1012628). - ARM: dts: socfpga: Fix NAND controller node compatible (bnc#1012628). - ARM: dts: socfpga: Fix NAND controller clock supply (bnc#1012628). - ARM: dts: socfpga: Fix NAND controller node compatible for Arria10 (bnc#1012628). - hwrng: core - Always drop the RNG in hwrng_unregister() (bnc#1012628). - softirq: Reorder trace_softirqs_on to prevent lockdep splat (bnc#1012628). - arm64: Fix syscall restarting around signal suppressed by tracer (bnc#1012628). - crypto: arm64/aes-blk - fix and move skcipher_walk_done out of kernel_neon_begin, _end (bnc#1012628). - arm64: kpti: Use early_param for kpti= command-line option (bnc#1012628). - arm64: mm: Ensure writes to swapper are ordered wrt subsequent cache maintenance (bnc#1012628). - arm64: dts: marvell: fix CP110 ICU node size (bnc#1012628). - arm64: dts: stratix10: Fix SPI nodes for Stratix10 (bnc#1012628). - ARM64: dts: meson: disable sd-uhs modes on the libretech-cc (bnc#1012628). - ARM64: dts: meson-gx: fix ATF reserved memory region (bnc#1012628). - of: overlay: validate offset from property fixups (bnc#1012628). - of: unittest: for strings, account for trailing \0 in property length field (bnc#1012628). - of: platform: stop accessing invalid dev in of_platform_device_destroy (bnc#1012628). - tpm: fix use after free in tpm2_load_context() (bnc#1012628). - tpm: fix race condition in tpm_common_write() (bnc#1012628). - efi/libstub/tpm: Initialize efi_physical_addr_t vars to zero for mixed mode (bnc#1012628). - IB/qib: Fix DMA api warning with debug kernel (bnc#1012628). - IB/{hfi1, qib}: Add handling of kernel restart (bnc#1012628). - IB/mlx4: Mark user MR as writable if actual virtual memory is writable (bnc#1012628). - IB/core: Make testing MR flags for writability a static inline function (bnc#1012628). - IB/mlx5: Fetch soft WQE's on fatal error state (bnc#1012628). - IB/isert: Fix for lib/dma_debug check_sync warning (bnc#1012628). - IB/isert: fix T10-pi check mask setting (bnc#1012628). - IB/hfi1: Fix fault injection init/exit issues (bnc#1012628). - IB/hfi1: Reorder incorrect send context disable (bnc#1012628). - IB/hfi1: Optimize kthread pointer locking when queuing CQ entries (bnc#1012628). - IB/hfi1: Fix user context tail allocation for DMA_RTAIL (bnc#1012628). - IB/uverbs: Fix ordering of ucontext check in ib_uverbs_write (bnc#1012628). - RDMA/mlx4: Discard unknown SQP work requests (bnc#1012628). - xprtrdma: Return -ENOBUFS when no pages are available (bnc#1012628). - RDMA/core: Save kernel caller name when creating CQ using ib_create_cq() (bnc#1012628). - mtd: rawnand: Do not check FAIL bit when executing a SET_FEATURES op (bnc#1012628). - mtd: cfi_cmdset_0002: Change write buffer to check correct value (bnc#1012628). - mtd: rawnand: denali_dt: set clk_x_rate to 200 MHz unconditionally (bnc#1012628). - mtd: rawnand: fix return value check for bad block status (bnc#1012628). - mtd: rawnand: mxc: set spare area size register explicitly (bnc#1012628). - mtd: rawnand: micron: add ONFI_FEATURE_ON_DIE_ECC to supported features (bnc#1012628). - mtd: rawnand: All AC chips have a broken GET_FEATURES(TIMINGS) (bnc#1012628). - mtd: cfi_cmdset_0002: Use right chip in do_ppb_xxlock() (bnc#1012628). - mtd: cfi_cmdset_0002: fix SEGV unlocking multiple chips (bnc#1012628). - mtd: cfi_cmdset_0002: Fix unlocking requests crossing a chip boudary (bnc#1012628). - mtd: cfi_cmdset_0002: Avoid walking all chips when unlocking (bnc#1012628). - MIPS: BCM47XX: Enable 74K Core ExternalSync for PCIe erratum (bnc#1012628). - clk:aspeed: Fix reset bits for PCI/VGA and PECI (bnc#1012628). - PCI: hv: Make sure the bus domain is really unique (bnc#1012628). - PCI: Add ACS quirk for Intel 7th & 8th Gen mobile (bnc#1012628). - PCI: Add ACS quirk for Intel 300 series (bnc#1012628). - PCI: pciehp: Clear Presence Detect and Data Link Layer Status Changed on resume (bnc#1012628). - PCI: Account for all bridges on bus when distributing bus numbers (bnc#1012628). - auxdisplay: fix broken menu (bnc#1012628). - pinctrl: armada-37xx: Fix spurious irq management (bnc#1012628). - pinctrl: samsung: Correct EINTG banks order (bnc#1012628). - pinctrl: devicetree: Fix pctldev pointer overwrite (bnc#1012628). - cpufreq: intel_pstate: Fix scaling max/min limits with Turbo 3.0 (bnc#1012628). - MIPS: pb44: Fix i2c-gpio GPIO descriptor table (bnc#1012628). - MIPS: io: Add barrier after register read in inX() (bnc#1012628). - time: Make sure jiffies_to_msecs() preserves non-zero time periods (bnc#1012628). - irqchip/gic-v3-its: Don't bind LPI to unavailable NUMA node (bnc#1012628). - locking/rwsem: Fix up_read_non_owner() warning with DEBUG_RWSEMS (bnc#1012628). - X.509: unpack RSA signatureValue field from BIT STRING (bnc#1012628). - Btrfs: fix return value on rename exchange failure (bnc#1012628). - iio: adc: ad7791: remove sample freq sysfs attributes (bnc#1012628). - iio: sca3000: Fix an error handling path in 'sca3000_probe()' (bnc#1012628). - mm: fix __gup_device_huge vs unmap (bnc#1012628). - scsi: scsi_debug: Fix memory leak on module unload (bnc#1012628). - scsi: hpsa: disable device during shutdown (bnc#1012628). - scsi: qla2xxx: Delete session for nport id change (bnc#1012628). - scsi: qla2xxx: Fix setting lower transfer speed if GPSC fails (bnc#1012628). - scsi: qla2xxx: Mask off Scope bits in retry delay (bnc#1012628). - scsi: qla2xxx: Spinlock recursion in qla_target (bnc#1012628). - scsi: zfcp: fix missing SCSI trace for result of eh_host_reset_handler (bnc#1012628). - scsi: zfcp: fix missing SCSI trace for retry of abort / scsi_eh TMF (bnc#1012628). - scsi: zfcp: fix misleading REC trigger trace where erp_action setup failed (bnc#1012628). - scsi: zfcp: fix missing REC trigger trace on terminate_rport_io early return (bnc#1012628). - scsi: zfcp: fix missing REC trigger trace on terminate_rport_io for ERP_FAILED (bnc#1012628). - scsi: zfcp: fix missing REC trigger trace for all objects in ERP_FAILED (bnc#1012628). - scsi: zfcp: fix missing REC trigger trace on enqueue without ERP thread (bnc#1012628). - linvdimm, pmem: Preserve read-only setting for pmem devices (bnc#1012628). - libnvdimm, pmem: Unconditionally deep flush on *sync (bnc#1012628). - clk: meson: meson8b: mark fclk_div2 gate clocks as CLK_IS_CRITICAL (bnc#1012628). - clk: at91: PLL recalc_rate() now using cached MUL and DIV values (bnc#1012628). - rtc: sun6i: Fix bit_idx value for clk_register_gate (bnc#1012628). - md: fix two problems with setting the "re-add" device state (bnc#1012628). - rpmsg: smd: do not use mananged resources for endpoints and channels (bnc#1012628). - ubi: fastmap: Cancel work upon detach (bnc#1012628). - ubi: fastmap: Correctly handle interrupted erasures in EBA (bnc#1012628). - UBIFS: Fix potential integer overflow in allocation (bnc#1012628). - backlight: as3711_bl: Fix Device Tree node lookup (bnc#1012628). - backlight: max8925_bl: Fix Device Tree node lookup (bnc#1012628). - backlight: tps65217_bl: Fix Device Tree node lookup (bnc#1012628). - Revert "iommu/amd_iommu: Use CONFIG_DMA_DIRECT_OPS=y and dma_direct_{alloc,free}()" (bnc#1012628). - f2fs: don't use GFP_ZERO for page caches (bnc#1012628). - um: Fix initialization of vector queues (bnc#1012628). - um: Fix raw interface options (bnc#1012628). - mfd: twl-core: Fix clock initialization (bnc#1012628). - mfd: intel-lpss: Program REMAP register in PIO mode (bnc#1012628). - mfd: intel-lpss: Fix Intel Cannon Lake LPSS I2C input clock (bnc#1012628). - remoteproc: Prevent incorrect rproc state on xfer mem ownership failure (bnc#1012628). - arm: dts: mt7623: fix invalid memory node being generated (bnc#1012628). - perf tools: Fix symbol and object code resolution for vdso32 and vdsox32 (bnc#1012628). - perf intel-pt: Fix sync_switch INTEL_PT_SS_NOT_TRACING (bnc#1012628). - perf intel-pt: Fix decoding to accept CBR between FUP and corresponding TIP (bnc#1012628). - perf intel-pt: Fix MTC timing after overflow (bnc#1012628). - perf intel-pt: Fix "Unexpected indirect branch" error (bnc#1012628). - perf intel-pt: Fix packet decoding of CYC packets (bnc#1012628). - media: vsp1: Release buffers for each video node (bnc#1012628). - media: cx231xx: Ignore an i2c mux adapter (bnc#1012628). - media: v4l2-compat-ioctl32: prevent go past max size (bnc#1012628). - media: cx231xx: Add support for AverMedia DVD EZMaker 7 (bnc#1012628). - media: rc: mce_kbd decoder: fix stuck keys (bnc#1012628). - media: dvb_frontend: fix locking issues at dvb_frontend_get_event() (bnc#1012628). - nfsd: restrict rd_maxcount to svc_max_payload in nfsd_encode_readdir (bnc#1012628). - NFSv4: Fix possible 1-byte stack overflow in nfs_idmap_read_and_verify_message (bnc#1012628). - NFSv4: Revert commit 5f83d86cf531d ("NFSv4.x: Fix wraparound issues..") (bnc#1012628). - NFSv4: Fix a typo in nfs41_sequence_process (bnc#1012628). - video: uvesafb: Fix integer overflow in allocation (bnc#1012628). - ACPI / LPSS: Add missing prv_offset setting for byt/cht PWM devices (bnc#1012628). - Input: silead - add MSSL0002 ACPI HID (bnc#1012628). - Input: elan_i2c - add ELAN0618 (Lenovo v330 15IKB) ACPI ID (bnc#1012628). - pwm: lpss: platform: Save/restore the ctrl register over a suspend/resume (bnc#1012628). - rbd: flush rbd_dev->watch_dwork after watch is unregistered (bnc#1012628). - mm/ksm.c: ignore STABLE_FLAG of rmap_item->address in rmap_walk_ksm() (bnc#1012628). - mm: fix devmem_is_allowed() for sub-page System RAM intersections (bnc#1012628). - xen: Remove unnecessary BUG_ON from __unbind_from_irq() (bnc#1012628). - net: ethernet: fix suspend/resume in davinci_emac (bnc#1012628). - udf: Detect incorrect directory size (bnc#1012628). - Input: xpad - fix GPD Win 2 controller name (bnc#1012628). - Input: elan_i2c_smbus - fix more potential stack buffer overflows (bnc#1012628). - Input: elantech - enable middle button of touchpads on ThinkPad P52 (bnc#1012628). - Input: elantech - fix V4 report decoding for module with middle key (bnc#1012628). - ALSA: timer: Fix UBSAN warning at SNDRV_TIMER_IOCTL_NEXT_DEVICE ioctl (bnc#1012628). - ALSA: hda - Force to link down at runtime suspend on ATI/AMD HDMI (bnc#1012628). - ALSA: hda/realtek - Fix pop noise on Lenovo P50 & co (bnc#1012628). - ALSA: hda/realtek - Add a quirk for FSC ESPRIMO U9210 (bnc#1012628). - ALSA: hda/realtek - Fix the problem of two front mics on more machines (bnc#1012628). - Revert "i2c: algo-bit: init the bus to a known state" (bnc#1012628). - i2c: gpio: initialize SCL to HIGH again (bnc#1012628). - slub: fix failure when we delete and create a slab cache (bnc#1012628). - kasan: depend on CONFIG_SLUB_DEBUG (bnc#1012628). - dm: use bio_split() when splitting out the already processed bio (bnc#1012628). - pmem: only set QUEUE_FLAG_DAX for fsdax mode (bnc#1012628). - block: Fix transfer when chunk sectors exceeds max (bnc#1012628). - block: Fix cloning of requests with a special payload (bnc#1012628). - x86/e820: put !E820_TYPE_RAM regions into memblock.reserved (bnc#1012628). - selinux: move user accesses in selinuxfs out of locked regions (bnc#1012628). - x86/entry/64/compat: Fix "x86/entry/64/compat: Preserve r8-r11 in int $0x80" (bnc#1012628). - x86/efi: Fix efi_call_phys_epilog() with CONFIG_X86_5LEVEL=y (bnc#1012628). - dm zoned: avoid triggering reclaim from inside dmz_map() (bnc#1012628). - dm thin: handle running out of data space vs concurrent discard (bnc#1012628). - virt: vbox: Only copy_from_user the request-header once (bnc#1012628). - commit 882c99b - Refresh patches.suse/input-psmouse-fix-button-reporting-for-basic-protoco.patch. Update upstream status. - commit 3037396 ==== krita ==== Version update (4.0.4 -> 4.1.0) Subpackages: krita-lang - Update to 4.1.0: * See https://krita.org/en/item/krita-4-1-0-released/ * Major new features: + A new reference images tool that replaces the old reference images docker + You can now save and load sessions: the set of images and views on images you were working on + You can create multi-monitor workspace layouts + An improved workflow for working with animation frames + An improved animation timeline display + Krita can now handle larger animation by buffering rendered frames to disk + The color picker now has a mixing option + Improved vanishing point assistant - and assistants can be painted with custom colors + The first part of Ivan Yossi's Google Summer of Code work on improving the performance of brush masks through vectorization is included as well! * Also a host of bug fixes, and improvements to the rendering performance and more features ==== libgcrypt ==== Subpackages: libgcrypt20 libgcrypt20-32bit libgcrypt20-hmac - libgcrypt-1.6.3-aliasing.patch, libgcrypt-ppc64.patch, libgcrypt-strict-aliasing.patch: Remove obsolete patches - libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch: Rediff - Reenable testsuite ==== libostree ==== Version update (2018.4 -> 2018.6) Subpackages: libostree-1-1 - Update to version 2018.6: + lib/repo: Do free space math under lock in error path. + lib/archive: Tell g-ir-scanner to ignore the private libarchive bits. + deploy: Delete .updated file from /etc and /var on new deployments. + switchroot: Allow letting ostree-prepare-root mount /var. + lib/repo-pull: - Support retries for delta superblocks; - Support queuing delta superblock requests; - Add some missing assertions for progress statistics; - Support retrying requests on transient network errors. + ostree/trivial-httpd: Add --random-408s command line option. + fsck: Add --all to print all corrupted object. + bash-completion: Don't add a space after files and directories. + u-boot: add support for devicetree. - Changes from version 2018.5: + lib/sysroot: Add OSTREE_EX_STAGE_DEPLOYMENTS environment variable. + docs: Add "Hello World" example. + lib/deploy: - Do post-ops when removing staged commit; - Also compare deployment csum versions. + repo: Add checksum to error message opening unreadable object + deploy: - Don't prune repo at finalization time by default; - Return staged deployment; - Silently do nothing if passed same set of deployments. + man: Add man page for create-usb. + fsck: Mark commits with missing or deleted object partial. + Add concept of "staged" deployment. + bin: Hide `admin instutil` command. + pull: Don't save summary to cache before validating signatures. + lib/repo-pull: - Improve error message when no summary is found; - Rename a variable for clarity. - Add libostree-fix-wformat-warnings-on-i586.patch to fix 32-bit arch building failure. ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon libvirt-daemon-config-network libvirt-daemon-config-nwfilter libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-driver-uml libvirt-daemon-driver-vbox libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - spec: enable gluster storage backend for openSUSE - spec: BuildRequires glusterfs-devel when gluster support is enabled ==== lightdm ==== Version update (1.24.1 -> 1.26.0) Subpackages: liblightdm-gobject-1-0 lightdm-lang - Update to version 1.26.0: * Fix build system to require C99. * Support moc being called moc-qt5. * Fail configure if MOC can't be found. * Use AccountsService extension system for extended greeter information. * Fix incorrect use of ConsoleKit CanSuspend/Hibernate API. * Use standard format for arguments passed to qtchooser. * Modernise code style. - Rebase lightdm-disable-utmp-handling.patch, lightdm-set-gdmflexiserver-envvar.patch, lightdm-sysconfig-support.patch, lightdm-xauthlocalhostname-support.patch. - Rename and rebase lightdm-ignore-known-symlink-sessions.patch. ==== links ==== Version update (2.15 -> 2.16) - links 2.16: * Improve handling of the DELETE key * Implement the bracketed paste mode * Fix various bugs found by coverity * Fix a crash in proxy authentication code * Fixed internal error "invalid set_handlers call" on framebuffer if links is suspend and terminate at the same time ==== mc ==== Subpackages: mc-lang - sftp_interactive_password.patch: Fixes logins to remote SSH sessions where only Keyboard-Interactive password is available and tunneled password is disabled (bsc#1098235) - mc-rpmlintrc: removed ==== mercurial ==== Version update (4.6.1 -> 4.6.2) Subpackages: mercurial-lang - Mercurial 4.6.2 This is a regularly-scheduled bugfix release containing following fixes: * merge: do not fill manifest of committed revision with pseudo node (issue5526) * crecord: fix line number in hunk header (issue5917) * lazymanifest: don't crash when out of memory (issue5916) * procutil: use unbuffered stdout on Windows ==== miniupnpc ==== - Fix reproducability by not coding in kernel version: * miniupnpc-kernelversion.patch - Fix build with python3 only present in system ==== mutt ==== Version update (1.9.1 -> 1.10.0) Subpackages: mutt-doc mutt-lang - Skip neomutt now (boo#1094717) * There exists a package neomutt * mutt-1.10.0 uses a lot of extensions now like compessed folders and header caching, but still misses things like notmuch - Modified patches * aw.listreply.diff * bsc907453-CVE-2014-9116-jessie.patch * bug-676388-largefile.patch * mutt-1.5.15-wrapcolumn.diff * mutt-1.5.20-sendgroupreplyto.diff * mutt-1.5.21-mailcap.diff * mutt-1.5.23-carriage-return.path * mutt-1.5.9i-pgpewrap.diff * mutt-1.6.1-opennfs.dif * patch-1.5.24.vk.pgp_verbose_mime * widechar.sidebar.dif - Renamed patch: mutt-1.9.1.dif becomes mutt-1.10.0.dif - Deleted patches mutt-1.9.0-1.9.1.patch neomutt-c030a8b.patch - Add patch truncate.patch to avoid truncated buffers due snprintf ==== netcfg ==== - Tell users to really install tcpd if they expects hosts.* to work bsc#1099755 ==== obs-service-download_files ==== Version update (0.6.0.git.1502884469.0993a01 -> 0.6.1.git.1529965817.d9a3ff4) - update to new tag 0.6.1 * changed _service to @PARENT_TAG@ * swap wget parameters * remove unset urlextension variable * remove unused BN * remove leftover partial file when wget fails * Add missing build-dependencies to d/control * [dist] replace shebang to get rid error while building package * [dist] remove obsrun user and cachedir from package - Update to version 0.6.0.git.1529932613.88b8b29: * [dist] remove obsrun user and cachedir from package * [dist] migrate spec file from OBS to git repo * debian changelog entry * make enforcement of IPv4 and SSL verification optional. * Add README.md file * fixes #6 * added gitignore * [testing] better handling for files in download server * fixed tabs * fixed recompression and started with automated testing - Update to version 0.6.0.git.1529932093.f836107: * [dist] migrate spec file from OBS to git repo ==== obs-service-tar_scm ==== Version update (0.9.0.1523267117.de861d8 -> 0.9.1.1530616709.1329314) Subpackages: obs-service-obs_scm obs-service-obs_scm-common - Update to version 0.9.1.1530616709.1329314: * improve handling of corrupt git cache directories * only do git stash save/pop if we have a non-empty working tree (#228) * sort imports * don't allow DEBUG_TAR_SCM to change behaviour (#240) * add stub user docs in lieu of something proper (#238) * [dist] fix build for distros not yet supporting Recommends tag * Remove clone_dir if clone fails * python-unittest2 is only required for the optional make check * move python-unittest2 dep to test suite only part (submission by olh) ==== openssh ==== Subpackages: openssh-helpers - BuildRequire pkgconfig(krb5) instead of krb5-mini-devel to ensure zypper si can pick a resolvable provider. Build cycle remains solved via project config pulling in -mini. (bsc#1099044) ==== python-Pillow ==== Version update (5.1.0 -> 5.2.0) - update to version 5.2.0: * Fixed saving a multiframe image as a single frame PDF #3137 [radarhere] * If a Qt version is already imported, attempt to use it first #3143 [radarhere] * Fix transform fill color for alpha images #3147 [fozcode] * TGA: Add support for writing RLE data #3186 [danpla] * TGA: Read and write LA data #3178 [danpla] * QuantOctree.c: Remove erroneous attempt to average over an empty range #3196 [tkoeppe] * Changed ICNS format tests to pass on OS X 10.11 #3202 [radarhere] * Fixed bug in ImageDraw.multiline_textsize() #3114 [tianyu139] * Added getsize_multiline support for PIL.ImageFont #3113 [tianyu139] * Added ImageFile get_format_mimetype method #3190 [radarhere] * Changed mmap file pointer to use context manager #3216 [radarhere] * Changed ellipse point calculations to be more evenly distributed [#3142] [radarhere] * Only extract first Exif segment #2946 [hugovk] * Tests: Test ImageDraw2, WalImageFile #3135, #2989 [hugovk] * Remove unnecessary '#if 0' code #3075 [hugovk] * Tests: Added GD tests #1817 [radarhere] * Fix collections ABCs DeprecationWarning in Python 3.7 #3123 [hugovk] * unpack_from is faster than unpack of slice #3201 [landfillbaby] * Docs: Add coordinate system links and file handling links in documentation #3204, #3214 [radarhere] * Tests: TestFilePng: Fix test_save_l_transparency() #3182 [danpla] * Docs: Correct argument name #3171 [radarhere] * Docs: Update CMake download URL #3166 [radarhere] * Docs: Improve Image.transform documentation #3164 [radarhere] * Fix transform fillcolor argument when image mode is RGBA or LA [#3163] [radarhere] * Tests: More specific Exception testing #3158 [radarhere] * Add getrgb HSB/HSV color strings #3148 [radarhere] * Allow float values in getrgb HSL color string #3146 [radarhere] * AppVeyor: Upgrade to Python 2.7.15 and 3.4.4 #3140 [radarhere] * AppVeyor: Upgrade to PyPy 6.0.0 #3133 [hugovk] * Deprecate PILLOW_VERSION and VERSION #3090 [hugovk] * Support Python 3.7 #3076 [hugovk] * Depends: Update freetype to 2.9.1, libjpeg to 9c, libwebp to 1.0.0 [#3121], #3136, #3108 [radarhere] * Build macOS wheels with Xcode 6.4, supporting older macOS versions [#3068] [wiredfool] * Fix _i2f compilation on some GCC versions #3067 [homm] * Changed encoderinfo to have priority over info when saving GIF images #3086 [radarhere] * Rename PIL.version to PIL._version and remove it from module #3083 [homm] * Enable background colour parameter on rotate #3057 [storesource] * Remove unnecessary #if 1 directive #3072 [jdufresne] * Remove unused Python class, Path #3070 [jdufresne] * Fix dereferencing type-punned pointer will break strict-aliasing [#3069] [jdufresne] ==== python-libvirt-python ==== Version update (4.3.0 -> 4.4.0) - Update to 4.4.0 - Add all new APIs and constants in libvirt 4.4.0 ==== python-typing ==== - fix build for older distros again ==== smartmontools ==== - Add smartd_generate_opts.path and smartd_generate_opts.service to update smartd_opts if sysconfig is modified. Needed for [FATE#325524]. ==== sqlite3 ==== Subpackages: libsqlite3-0 libsqlite3-0-32bit - Enable the FTS3 extension ==== ucode-intel ==== Version update (20180425 -> 20180703) - Update to 20180703 release, for the listed CPU chipsets this fixes CVE-2018-3640 (Spectre v3a) CVE-2018-3639 (Spectre v4). (bsc#1100147 bsc#1087082 bsc#1087083) https://downloadcenter.intel.com/download/27945/Linux-Processor-Microcode-Data-File Following chipsets are fixed in this round: Model Stepping F-MO-S/PI Old->New - --- updated platforms ------------------------------------ SNB-EP C1 6-2d-6/6d 0000061c->0000061d Xeon E5 SNB-EP C2 6-2d-7/6d 00000713->00000714 Xeon E5 IVT C0 6-3e-4/ed 0000042c->0000042d Xeon E5 v2; Core i7-4960X/4930K/4820K IVT D1 6-3e-7/ed 00000713->00000714 Xeon E5 v2 HSX-E/EP/4S C0 6-3f-2/6f 0000003c->0000003d Xeon E5 v3 HSX-EX E0 6-3f-4/80 00000011->00000012 Xeon E7 v3 SKX-SP/D/W/X H0 6-55-4/b7 02000043->0200004d Xeon Bronze 31xx, Silver 41xx, Gold 51xx/61xx Platinum 81xx, D/W-21xx; Core i9-7xxxX BDX-DE A1 6-56-5/10 0e000009->0e00000a Xeon D-15x3N - --- intel-ucode-with-caveats/ ---------------------------- BDX-ML B/M/R0 6-4f-1/ef 0b00002c->0b00002e Xeon E5/E7 v4; Core i7-69xx/68xx ==== update-alternatives ==== Version update (1.19.0.4 -> 1.19.0.5) - Update to 1.19.0.5: * no changes in update-alternatives code, only dpkg ==== xapian-core ==== Version update (1.4.5 -> 1.4.6) - Update to 1.4.6: * API classes now support C++11 move semantics when using a compiler which we are confident supports them (currently compilers which define __cplusplus >= 201103 plus a special check for MSVC 2015 or later). C++11 move semantics provide a clean and efficient way for threaded code to hand-off Xapian objects to worker threads, but in this case it's very unhelpful for availability of these semantics to vary by compiler as it quietly leads to a build with non-threadsafe behaviour. To address this, user code can #define XAPIAN_MOVE_SEMANTICS before #include to force this on, and will then get a compilation failure if the compiler lacks suitable support. * MSet::snippet(): + We were only escaping output for HTML/XML in some cases, which would potentially allow HTML to be injected into output (this fixes bnc#1099925, CVE-2018-0499). + Include certain leading non-word characters in snippets. Previously we started the snippet at the start of the first actual word, but there are various cases where including non-word characters in front of the actual word adds useful context or otherwise aids comprehension. * Add MSetIterator::get_sort_key() method. The sort key has always been available internally, but wasn't exposed via the public API before, which seems like an oversight as the collapse key has long been available. * Database::compact(): + Allow Compactor::resolve_duplicate_metadata() implementations to delete entries. Previously if an implementation returned an empty string this would result in a user meta-data entry with an empty value, which isn't normally achievable (empty meta-data values aren't stored), and so will cause odd behaviour. We now handle an empty returned value by interpreting it in the natural way - it means that the merged result is to not set a value for that key in the output database. + Since 1.3.5 compacting a WritableDatabase with uncommitted changes throws Xapian::InvalidOperationError when compacting to a single-file glass database. This release adds similar checks for chert and when compacting to a multiple-file glass database. + In the unlikely event that the total number of documents or the total length of all documents overflow when trying to compact a multi-database, we throw an exception. This is now a DatabaseError exception instead of a const char* exception (a hang-over from before this code was turned into a public API in the library). * See also https://xapian.org/docs/xapian-core-1.4.6/NEWS ==== yast2 ==== Version update (4.0.78 -> 4.0.79) - Network: Prevent from crashing when trying to delete some ip aliases from the original devices (bsc#1098919) - 4.0.79 ==== yast2-installation ==== Version update (4.1.4 -> 4.1.5) - Fixed returned value calling copy_files_finish when some ssh file exist (bsc#1099104). - 4.1.5 ==== yast2-pkg-bindings ==== Version update (4.0.12 -> 4.0.13) - SavePkgService: Checking if the service file still exists before updating it. Otherwise add the service instead of updating it. (bsc#1097756) - 4.0.13 ==== zerofree ==== Version update (1.0.4 -> 1.1.1) - update to 1.1.1: * Lift call to ext2fs_free_blocks_count out of loop * Add support for 64-bit block numbers