Packages changed: Mesa (18.1.6 -> 18.1.7) Mesa-drivers (18.1.6 -> 18.1.7) apr-util build (20180816 -> 20180830) busybox-static flatpak (0.99.3 -> 1.0.0) gcc8 (8.2.1+r263610 -> 8.2.1+r264010) gd gnutls (3.6.2 -> 3.6.3) kernel-source (4.18.6 -> 4.18.7) libgit2 libglvnd (1.0.0 -> 1.1.0) libmbim (1.16.0 -> 1.16.2) libostree (2018.6 -> 2018.8) libreoffice (6.1.0.3 -> 6.1.1.1) libyui-ncurses-pkg libyui-qt libyui-qt-graph libyui-qt-pkg llvm6 mlocate nautilus nodejs10 (10.6.0 -> 10.9.0) obs-service-format_spec_file (20180306 -> 20180820) openssh patterns-gnome perl-Bootloader (0.921 -> 0.922) perl-DBD-mysql perl-Net-SSLeay (1.81 -> 1.85) python-pygame qemu (2.12.1 -> 3.0.0) re2 (20180701 -> 20180901) rubygem-mime-types-data (3.2016.0521 -> 3.2018.0812) rubygem-winrm-fs (1.2.0 -> 1.3.0) scout (0.1.1+20180103.0595254 -> 0.2.1+20180813.59519f8) serd (0.28.0 -> 0.30.0) sord (0.16.0 -> 0.16.2) sratom (0.6.0 -> 0.6.2) subversion (1.10.0 -> 1.10.2) tbb tiff vim (8.1.0258 -> 8.1.0318) wayland (1.15.0 -> 1.16.0) === Details === ==== Mesa ==== Version update (18.1.6 -> 18.1.7) Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 18.1.7 * Mesa 18.1.7 is now available for general consumption. This release has been rather small compared to the last few release, There's just a handful of fixes in total. Meson, radv, anv, gallium winsys, intel, i965, and r600 were the only recipients of fixs this go around. - Add wayland to egl_platforms for Leap 15.0+ and TW again (boo#1105798) ==== Mesa-drivers ==== Version update (18.1.6 -> 18.1.7) Subpackages: Mesa-dri Mesa-dri-nouveau Mesa-gallium Mesa-libva libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_intel libvulkan_radeon libxatracker2 - update to 18.1.7 * Mesa 18.1.7 is now available for general consumption. This release has been rather small compared to the last few release, There's just a handful of fixes in total. Meson, radv, anv, gallium winsys, intel, i965, and r600 were the only recipients of fixs this go around. - Add wayland to egl_platforms for Leap 15.0+ and TW again (boo#1105798) ==== apr-util ==== Subpackages: apr-util-devel libapr-util1 - extend apr-util-mariadb-10.2.patch: Fix detection / build with MariaDB 10.2. [bsc#1094754] ==== build ==== Version update (20180816 -> 20180830) Subpackages: build-mkbaselibs build-mkdrpms - Fall back to $mailaddr if $VC_MAILADDR is unset/null - don't crash with no rpm macros defined - Kiwi: support parsing of repos where the .repo file got used - package hostarch definition in preinstallimages - avoid double creation of monitor fifo - Debian: - debootstrap: ensure /etc/hosts exists - debootstrap: Add abuild shadow password entry - livebuild: publish source tarball - Adds Debian configurations for jessie and unstable - collect *.ddeb, *.udeb files ==== busybox-static ==== - Enabled functionality within busybox for warewulf compatibility * CONFIG_FEATURE_REMOTE_LOG * CONFIG_DEPMOD * CONFIG_TAC ==== flatpak ==== Version update (0.99.3 -> 1.0.0) Subpackages: libflatpak0 typelib-1_0-Flatpak-1_0 - Update to version 1.0.0: + Flatpak 1.0 marks a significant improvement in performance and reliability, and includes a big collection of bug fixes. 1.0 also includes a collection of new features. ==== gcc8 ==== Version update (8.2.1+r263610 -> 8.2.1+r264010) Subpackages: cpp8 gcc8-c++ gcc8-fortran gcc8-info gcc8-locale gcc8-objc libasan5 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libmpx2 libmpxwrappers2 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc8 libtsan0 libubsan1 - Update to gcc-8-branch head (r264010). * GCC 8 Toolchain Module state. [bnc#1102564] [fate#326486] ==== gd ==== Subpackages: libgd3 - security update: * CVE-2018-1000222 [bsc#1105434] + gd-CVE-2018-1000222.patch - libgd-config.patch: do not inject false dependencies into packages, GD does not need extra libs to be used. this also allows us to clean up -devel package dependencies. ==== gnutls ==== Version update (3.6.2 -> 3.6.3) Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-32bit - Update to 3.6.3 Fixes security issues: CVE-2018-10846, CVE-2018-10845, CVE-2018-10844, CVE-2017-10790 (bsc#1105437, bsc#1105460, bsc#1105459, bsc#1047002) Other Changes: * * libgnutls: Introduced support for draft-ietf-tls-tls13-28 * * libgnutls: Apply compatibility settings for existing applications running with TLS1.2 or earlier and TLS 1.3. * * Added support for Russian Public Key Infrastructure according to RFCs 4491/4357/7836. * * Provide a uniform cipher list across supported TLS protocols * * The SSL 3.0 protocol is disabled on compile-time by default. * * libgnutls: Introduced function to switch the current FIPS140-2 operational mode * * libgnutls: Introduced low-level function to assist applications attempting client hello extension parsing, prior to GnuTLS' parsing of the message. * * libgnutls: When exporting an X.509 certificate avoid re-encoding if there are no modifications to the certificate. * * libgnutls: on group exchange honor the %SERVER_PRECEDENCE and select the groups which are preferred by the server. * * Improved counter-measures for TLS CBC record padding. * * Introduced the %FORCE_ETM priority string option. This option prevents the negotiation of legacy CBC ciphersuites unless encrypt-then-mac is negotiated. * * libgnutls: gnutls_privkey_import_ext4() was enhanced with the GNUTLS_PRIVKEY_INFO_PK_ALGO_BITS flag. * * libgnutls: gnutls_pkcs11_copy_secret_key, gnutls_pkcs11_copy_x509_privkey2, gnutls_pkcs11_privkey_generate3 will mark objects as sensitive by default unless GNUTLS_PKCS11_OBJ_FLAG_MARK_NOT_SENSITIVE is specified. This is an API change for these functions which make them err towards safety. * * libgnutls: improved aarch64 cpu features detection by using getauxval(). * * certtool: It is now possible to specify certificate and serial CRL numbers greater than 2**63-2 as a hex-encoded string both when prompted and in a template file. Default certificate serial numbers are now fully random. - don't run autoreconf to avoid pulling in gtk-doc ==== kernel-source ==== Version update (4.18.6 -> 4.18.7) Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms - Linux 4.18.7 (bnc#1012628). - rcu: Make expedited GPs handle CPU 0 being offline (bnc#1012628). - net: 6lowpan: fix reserved space for single frames (bnc#1012628). - net: mac802154: tx: expand tailroom if necessary (bnc#1012628). - 9p/net: Fix zero-copy path in the 9p virtio transport (bnc#1012628). - spi: davinci: fix a NULL pointer dereference (bnc#1012628). - spi: pxa2xx: Add support for Intel Ice Lake (bnc#1012628). - spi: spi-fsl-dspi: Fix imprecise abort on VF500 during probe (bnc#1012628). - spi: cadence: Change usleep_range() to udelay(), for atomic context (bnc#1012628). - mmc: block: Fix unsupported parallel dispatch of requests (bnc#1012628). - mmc: renesas_sdhi_internal_dmac: mask DMAC interrupts (bnc#1012628). - mmc: renesas_sdhi_internal_dmac: fix #define RST_RESERVED_BITS (bnc#1012628). - readahead: stricter check for bdi io_pages (bnc#1012628). - block: fix infinite loop if the device loses discard capability (bnc#1012628). - block: blk_init_allocated_queue() set q->fq as NULL in the fail case (bnc#1012628). - block: really disable runtime-pm for blk-mq (bnc#1012628). - blkcg: Introduce blkg_root_lookup() (bnc#1012628). - block: Introduce blk_exit_queue() (bnc#1012628). - block: Ensure that a request queue is dissociated from the cgroup controller (bnc#1012628). - apparmor: fix bad debug check in apparmor_secid_to_secctx() (bnc#1012628). - dma-buf: Move BUG_ON from _add_shared_fence to _add_shared_inplace (bnc#1012628). - libertas: fix suspend and resume for SDIO connected cards (bnc#1012628). - media: Revert "[media] tvp5150: fix pad format frame height" (bnc#1012628). - mailbox: xgene-slimpro: Fix potential NULL pointer dereference (bnc#1012628). - Replace magic for trusting the secondary keyring with #define (bnc#1012628). - Fix kexec forbidding kernels signed with keys in the secondary keyring to boot (bnc#1012628). - powerpc/fadump: handle crash memory ranges array index overflow (bnc#1012628). - powerpc/64s: Fix page table fragment refcount race vs speculative references (bnc#1012628). - powerpc/pseries: Fix endianness while restoring of r3 in MCE handler (bnc#1012628). - powerpc/pkeys: Give all threads control of their key permissions (bnc#1012628). - powerpc/pkeys: Deny read/write/execute by default (bnc#1012628). - powerpc/pkeys: key allocation/deallocation must not change pkey registers (bnc#1012628). - powerpc/pkeys: Save the pkey registers before fork (bnc#1012628). - powerpc/pkeys: Fix calculation of total pkeys (bnc#1012628). - powerpc/pkeys: Preallocate execute-only key (bnc#1012628). - powerpc/nohash: fix pte_access_permitted() (bnc#1012628). - powerpc64/ftrace: Include ftrace.h needed for enable/disable calls (bnc#1012628). - powerpc/powernv/pci: Work around races in PCI bridge enabling (bnc#1012628). - cxl: Fix wrong comparison in cxl_adapter_context_get() (bnc#1012628). - ocxl: Fix page fault handler in case of fault on dying process (bnc#1012628). - IB/mlx5: Honor cnt_set_id_valid flag instead of set_id (bnc#1012628). - IB/mlx5: Fix leaking stack memory to userspace (bnc#1012628). - IB/srpt: Fix srpt_cm_req_recv() error path (1/2) (bnc#1012628). - IB/srpt: Fix srpt_cm_req_recv() error path (2/2) (bnc#1012628). - IB/srpt: Support HCAs with more than two ports (bnc#1012628). - overflow.h: Add arithmetic shift helper (bnc#1012628). - RDMA/mlx5: Fix shift overflow in mlx5_ib_create_wq (bnc#1012628). - ib_srpt: Fix a use-after-free in srpt_close_ch() (bnc#1012628). - ib_srpt: Fix a use-after-free in __srpt_close_all_ch() (bnc#1012628). - RDMA/rxe: Set wqe->status correctly if an unexpected response is received (bnc#1012628). - 9p: fix multiple NULL-pointer-dereferences (bnc#1012628). - fs/9p/xattr.c: catch the error of p9_client_clunk when setting xattr failed (bnc#1012628). - 9p/virtio: fix off-by-one error in sg list bounds check (bnc#1012628). - net/9p/client.c: version pointer uninitialized (bnc#1012628). - net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree() (bnc#1012628). - dm integrity: change 'suspending' variable from bool to int (bnc#1012628). - dm thin: stop no_space_timeout worker when switching to write-mode (bnc#1012628). - dm cache metadata: save in-core policy_hint_size to on-disk superblock (bnc#1012628). - dm cache metadata: set dirty on all cache blocks after a crash (bnc#1012628). - dm crypt: don't decrease device limits (bnc#1012628). - dm writecache: fix a crash due to reading past end of dirty_bitmap (bnc#1012628). - uart: fix race between uart_put_char() and uart_shutdown() (bnc#1012628). - Drivers: hv: vmbus: Fix the offer_in_progress in vmbus_process_offer() (bnc#1012628). - Drivers: hv: vmbus: Reset the channel callback in vmbus_onoffer_rescind() (bnc#1012628). - iio: sca3000: Fix missing return in switch (bnc#1012628). - iio: ad9523: Fix displayed phase (bnc#1012628). - iio: ad9523: Fix return value for ad952x_store() (bnc#1012628). - extcon: Release locking when sending the notification of connector state (bnc#1012628). - eventpoll.h: wrap casts in () properly (bnc#1012628). - vmw_balloon: fix inflation of 64-bit GFNs (bnc#1012628). - vmw_balloon: do not use 2MB without batching (bnc#1012628). - vmw_balloon: VMCI_DOORBELL_SET does not check status (bnc#1012628). - vmw_balloon: fix VMCI use when balloon built into kernel (bnc#1012628). - rtc: omap: fix resource leak in registration error path (bnc#1012628). - rtc: omap: fix potential crash on power off (bnc#1012628). - tracing: Do not call start/stop() functions when tracing_on does not change (bnc#1012628). - tracing/blktrace: Fix to allow setting same value (bnc#1012628). - printk/tracing: Do not trace printk_nmi_enter() (bnc#1012628). - livepatch: Validate module/old func name length (bnc#1012628). - uprobes: Use synchronize_rcu() not synchronize_sched() (bnc#1012628). - mfd: hi655x: Fix regmap area declared size for hi655x (bnc#1012628). - ovl: fix wrong use of impure dir cache in ovl_iterate() (bnc#1012628). - ACPICA: AML Parser: skip opcodes that open a scope upon parse failure (bnc#1012628). - drivers/block/zram/zram_drv.c: fix bug storing backing_dev (bnc#1012628). - sched: idle: Avoid retaining the tick when it has been stopped (bnc#1012628). - cpuidle: menu: Handle stopped tick more aggressively (bnc#1012628). - cpufreq: governor: Avoid accessing invalid governor_data (bnc#1012628). - PM / sleep: wakeup: Fix build error caused by missing SRCU support (bnc#1012628). - ALSA: ac97: fix device initialization in the compat layer (bnc#1012628). - ALSA: ac97: fix check of pm_runtime_get_sync failure (bnc#1012628). - ALSA: ac97: fix unbalanced pm_runtime_enable (bnc#1012628). - i2c: designware: Re-init controllers with pm_disabled set on resume (bnc#1012628). - KVM: VMX: fixes for vmentry_l1d_flush module parameter (bnc#1012628). - KVM: PPC: Book3S: Fix guest DMA when guest partially backed by THP pages (bnc#1012628). - xtensa: limit offsets in __loop_cache_{all,page} (bnc#1012628). - xtensa: increase ranges in ___invalidate_{i,d}cache_all (bnc#1012628). - block, bfq: return nbytes and not zero from struct cftype .write() method (bnc#1012628). - pnfs/blocklayout: off by one in bl_map_stripe() (bnc#1012628). - nfsd: fix leaked file lock with nfs exported overlayfs (bnc#1012628). - NFSv4 client live hangs after live data migration recovery (bnc#1012628). - NFSv4: Fix locking in pnfs_generic_recover_commit_reqs (bnc#1012628). - NFSv4: Fix a sleep in atomic context in nfs4_callback_sequence() (bnc#1012628). - ARM: tegra: Fix Tegra30 Cardhu PCA954x reset (bnc#1012628). - ARM: dts: am57xx-idk: Enable dual role for USB2 port (bnc#1012628). - pwm: omap-dmtimer: Return -EPROBE_DEFER if no dmtimer platform data (bnc#1012628). - mm/tlb: Remove tlb_remove_table() non-concurrent condition (bnc#1012628). - iommu/ipmmu-vmsa: Don't register as BUS IOMMU if machine doesn't have IPMMU-VMSA (bnc#1012628). - iommu/vt-d: Add definitions for PFSID (bnc#1012628). - iommu/vt-d: Fix dev iotlb pfsid use (bnc#1012628). - sys: don't hold uts_sem while accessing userspace memory (bnc#1012628). - userns: move user access out of the mutex (bnc#1012628). - ubifs: Fix memory leak in lprobs self-check (bnc#1012628). - Revert "UBIFS: Fix potential integer overflow in allocation" (bnc#1012628). - ubifs: Check data node size before truncate (bnc#1012628). - ubifs: xattr: Don't operate on deleted inodes (bnc#1012628). - ubifs: Fix directory size calculation for symlinks (bnc#1012628). - ubifs: Fix synced_i_size calculation for xattr inodes (bnc#1012628). - pwm: tiehrpwm: Don't use emulation mode bits to control PWM output (bnc#1012628). - pwm: tiehrpwm: Fix disabling of output of PWMs (bnc#1012628). - fb: fix lost console when the user unplugs a USB adapter (bnc#1012628). - udlfb: fix semaphore value leak (bnc#1012628). - udlfb: fix display corruption of the last line (bnc#1012628). - udlfb: don't switch if we are switching to the same videomode (bnc#1012628). - udlfb: set optimal write delay (bnc#1012628). - udlfb: make a local copy of fb_ops (bnc#1012628). - udlfb: handle allocation failure (bnc#1012628). - udlfb: set line_length in dlfb_ops_set_par (bnc#1012628). - getxattr: use correct xattr length (bnc#1012628). - libnvdimm: Use max contiguous area for namespace size (bnc#1012628). - libnvdimm: fix ars_status output length calculation (bnc#1012628). - bcache: release dc->writeback_lock properly in bch_writeback_thread() (bnc#1012628). - kconfig: fix "Can't open ..." in parallel build (bnc#1012628). - cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias() (bnc#1012628). - mm, dev_pagemap: Do not clear ->mapping on final put (bnc#1012628). - perf auxtrace: Fix queue resize (bnc#1012628). - crypto: vmx - Fix sleep-in-atomic bugs (bnc#1012628). - crypto: aesni - Use unaligned loads from gcm_context_data (bnc#1012628). - crypto: arm64/sm4-ce - check for the right CPU feature bit (bnc#1012628). - crypto: caam - fix DMA mapping direction for RSA forms 2 & 3 (bnc#1012628). - crypto: caam/jr - fix descriptor DMA unmapping (bnc#1012628). - crypto: caam/qi - fix error path in xts setkey (bnc#1012628). - fs/quota: Fix spectre gadget in do_quotactl (bnc#1012628). - udf: Fix mounting of Win7 created UDF filesystems (bnc#1012628). - cpuidle: menu: Retain tick when shallow state is selected (bnc#1012628). - arm64: mm: always enable CONFIG_HOLES_IN_ZONE (bnc#1012628). - commit 952d850 - config: disable HFS_FS It has no maintainer and has been a source of fuzzer bugs. hfsplus handles the HFS+ file system that became the default on MacOS in 1998. - commit 07fd1d6 - supported.conf: Add bpfilter to kernel-default-base (bsc#1106751) - commit a6e2868 ==== libgit2 ==== - Use pkgconfig style of dependencies, refresh dependencies - Use more of cmake macros ==== libglvnd ==== Version update (1.0.0 -> 1.1.0) Subpackages: libglvnd-32bit - Update to release 1.1.0 * Changes + Update the OpenGL XML and header files. + EGL: Remove a few unused functions in egldispatchstubs.c. + GLdispatch: Add a version script for the TSD build. + Some fixes for "make dist" + GLdispatch: Use --version-script instead -export-symbols. + Merge branch 'freebsd-fixes' + Add a (void*) cast for the last parameter when calling mincore. + Use sh instead of bash for the test scripts. + configure: Recognize both "x86_64" and "amd64" for host_cpu. + configure: Check if linking against libdl is necessary. + GL: Expand glapi_gen_libglglxstubs in the makefile. + Move the glapi_gen_libglglxstubs function into the GL makefile. + vnd-glapi: Change glapi_gen_mapi to a makefile variable. + Move the glapi_gen_mapi function into the vnd-glapi makefile. + generate: Remove glapi_gen_libopengl_exports. + GL: Don't generate g_glapi_mapi_gl_tmp.h + Merge pull request #150 from aaronp24/work-around-xorgproto-api-break + Merge pull request #153 from RAOF/fix-egl-platform-detection-crash + Handle dlsym succeeding with info.dli_sname == NULL. + Merge pull request #152 from kbrenneman/fix-eglMakeCurrent-bad-display + Always return an error from eglMakeCurrent if the EGLDispaly is invalid + GLX: Work around 'X_GLXCreateContextAtrribsARB' typo fix API break + Merge pull request #148 from kbrenneman/bump-library-versions + Bump the version numbers in the library filenames. + Merge pull request #143 from kbrenneman/gldispatch-fix-execmem + GLdispatch: Fix the allocation size for the dynamic stubs. + GLdispatch: Remove obsolete #ifdefs from u_execmem.c. + Merge pull request #140 from kbrenneman/add-GLX_EXT_no_config_context + tests: Only use glXCreateContext in testglxmakecurrent. + tests: Add a test for creating GLX contexts. + tests/GLX_dummy: Add a vendor-provided create context function + tests: Add a dummy attribute for glXQueryContext. + tests: Add support for GLX_EXT_no_context_config to GLX_dummy + tests: Remove the vendor dispatch stub for glXCreateContextAttribsARB. + Add support for GLX_EXT_no_config_context. ==== libmbim ==== Version update (1.16.0 -> 1.16.2) Subpackages: libmbim-glib4 mbimcli-bash-completion - Update to version 1.16.2: + mbimcli: - Fix SNR reporting in --atds-query-signal output. - Longer timeout (60s) in --disconnect. - Add "ip-type" property to --connect. + libmbim-glib: - Fix printing message in Intel Firmware Update service. - Fix error reporting when unknown status. ==== libostree ==== Version update (2018.6 -> 2018.8) Subpackages: libostree-1-1 - Update to version 2018.8: + This release is pretty much all minor bugfixes: memory leaks, fixing error messages and docs, handling a race condition on pull with summary updates. There's one new feature (noted below), and we also gained a new contributing tutorial: https://mail.gnome.org/archives/ostree-list/2018-August/msg00005.html + The one bugfix I want to call out explicitly is: ostree-remount.service: RemainAfterExit=yes (gh#ostreedev/ostree#1697). It's surprising it took us so long to find and fix this; I've seen occasional boot failures that I believe trace down to this problem. The behavior of systemd units of Type=simple without RemainAfterExit=yes set is rather nonsensical; I may try to push to have a warning emitted upstream if such a unit is a dependency of another. + And the one new feature is the auto-update-summary config option for repositories. For more information, see the docs and gh#ostreedev/ostree#1681. - Rebase ostree-grub2-location.patch with quilt. - Drop libostree-fix-wformat-warnings-on-i586.patch: Fixed upstream. - Update to version 2018.7: + There's no one major feature in this release, but we have a variety of improvements and bugfixes. ==== libreoffice ==== Version update (6.1.0.3 -> 6.1.1.1) Subpackages: libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Version update to 6.1.1.1: * RC1 of the 6.1.1 release - Fix the bundled assuan version to be 2.5.1 - No longer run chrpath on bundled gnupg as it is not needed - Rewrite description to reflect we ship also offline help ==== libyui-ncurses-pkg ==== - Changed dir of COPYING file. ==== libyui-qt ==== - Changed dir of COPYING file. ==== libyui-qt-graph ==== - Changed dir of COPYING file. ==== libyui-qt-pkg ==== - Changed dir of COPYING file. ==== llvm6 ==== Subpackages: libLLVM6 libclang6 - Updated llvm-remove-clang-only-flags.patch - Exclude also "-Werror=unguarded-availability-new" (bsc#1106000) - Make sure llvm6-polly will not conflict with future llvm7-polly. ==== mlocate ==== Subpackages: mlocate-lang - add capability rules to updatedb AppArmor profile to allow running it as root (boo#1089594#c4) ==== nautilus ==== Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension1 nautilus-lang - Add set_trusted.desktop and set_trusted.sh: If using /etc/skel function, the script can set files in $HOME/Desktop as trusted automatically when user login (bsc#1103523). - Added patch: nautilus-icons.patch + Upstream fix for distribution of 512x512 icons instead of the 16x16, 22x22, 24x24, 32x32 and 48x48 ones ==== nodejs10 ==== Version update (10.6.0 -> 10.9.0) Subpackages: nodejs10-devel npm10 - 21257.diff: Revert an upstream revert that resulted that stdout remaining O_NONBLOCK during build process. This resulted in build failures. - New upstream release 10.9.0: * buffer: + Fix out-of-bounds (OOB) write in Buffer.write() for UCS-2 encoding (CVE-2018-12115, bsc#1105019) + Fix unintentional exposure of uninitialized memory in Buffer.alloc() (bsc#1105018, CVE-2018-7166) * deps: Upgrade to OpenSSL 1.0.2p, fixing: + Client DoS due to large DH parameter (CVE-2018-0732, bsc#1097158) + ECDSA key extraction via local side-channel * http: http.get() and http.request() (and https variants) now accept three arguments to allow for a URL and options object - New upstream release 10.8.0: * deps: upgrade npm to 6.2.0 - Changes in version 10.7.0: * console: The console.timeLog() method has been implemented. * http: Added support for passing both timeout and agent options to http.request. * inspector: Expose the original console API in require('inspector').console. * napi: Added experimental support for functions dealing with bigint numbers. * process: + The process.hrtime.bigint() method has been implemented. + Added the --title command line argument to set the process title on startup. * trace_events: Added process_name metadata. - icu_small_grouping.patch: upstreamed - versioned.patch, env_shebang.patch: refreshed - update Jan's description changes for grammar and merge into git ==== obs-service-format_spec_file ==== Version update (20180306 -> 20180820) - Version update to version 20180820: * In header use https not http when pointing to bugzilla ==== openssh ==== Subpackages: openssh-helpers - Depend explicitly on zlib-devel, previously pulled in by openssl ==== patterns-gnome ==== Subpackages: patterns-gnome-gnome patterns-gnome-gnome_basis patterns-gnome-gnome_basis_opt patterns-gnome-gnome_games patterns-gnome-gnome_ide patterns-gnome-gnome_imaging patterns-gnome-gnome_internet patterns-gnome-gnome_multimedia patterns-gnome-gnome_office patterns-gnome-gnome_utilities patterns-gnome-gnome_x11 patterns-gnome-gnome_yast patterns-gnome-sw_management_gnome - gnome_x11: Drop gnote; bijiben (another, more modern, note taking app) is already recommended by the same pattern. ==== perl-Bootloader ==== Version update (0.921 -> 0.922) - update git2log script - 0.922 - merge gh#openSUSE/perl-bootloader#117 - work without /etc/default/grub_installdevice (bsc#1079321, bsc#994322) - removed unused function ==== perl-DBD-mysql ==== - Pull in zlib-devel, previously added by openssl devel ==== perl-Net-SSLeay ==== Version update (1.81 -> 1.85) - Add patches to support openssl 1.1.1 from Fedora * Net-SSLeay-1.85-Avoid-SIGPIPE-in-t-local-36_verify.t.patch * Net-SSLeay-1.85-Move-SSL_ERROR_WANT_READ-SSL_ERROR_WANT_WRITE-retry-.patch * Net-SSLeay-1.85-Move-SSL_ERROR_WANT_READ-SSL_ERROR_WANT_WRITE-retry-from_write_partial.patch * Net-SSLeay-1.85-Adapt-to-OpenSSL-1.1.1.patch - Version update to 1.85: * Removal of many deprecated calls from 1.1.x series - Add dependency over zlib-devel, previously added by openssl devel - Make sure all tests are run ==== python-pygame ==== - Clean up SPEC, avoid warnings. ==== qemu ==== Version update (2.12.1 -> 3.0.0) Subpackages: qemu-arm qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-rbd qemu-block-ssh qemu-extra qemu-guest-agent qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-ppc qemu-s390 qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-sdl qemu-vgabios qemu-x86 - Increase timeout for boot-serial-test, since we've hit the timeout for armv7l arch in qemu-testsuite. 0039-tests-boot-serial-test-Bump-timeout.patch - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0 - Drop legacy kvm_stat script and man page. We'll rely on the kvm_stat package only going forward kvm_stat kvm_stat.1.gz - Update SLE support documentation to match v3.0.0 release - Update to v3.0.0: See http://wiki.qemu.org/ChangeLog/3.0 Don't read anything into the major version number update. It's been decided to increase the major version number each year. Take note that ongoing feature deprecation is tracked at both http://wiki.qemu-project.org/Features/LegacyRemoval and in Appendix B of the qemu-doc.* files installed with the qemu package. Some noteworthy changes: * Support for additional x86/AMD mitigations against Speculative Store Bypass (Spectre Variant 4, CVE-2018-3639) * Improved support for nested KVM guests running on Hyper-V * Block device support for active disk-mirroring, which avoids convergence issues which may arise when doing passive/background mirroring of busy devices * Improved support for AHCI emulation, SCSI emulation, and persistent reservations / cluster management * OpenGL ES support for SDL front-end, additional framebuffer device options for early boot display without using legacy VGA emulation * Live migration support for TPM TIS devices, capping bandwidth usage during post-copy migration, and recovering from a failed post-copy migration * Improved latency when using user-mode networking / SLIRP * ARM: support for SMMUv3 IOMMU when using 'virt' machine type * ARM: v8M extensions for VLLDM and VLSTM floating-point instructions, and improved support for AArch64 v8.2 FP16 extensions * ARM: support for Scalable Vector Extensions in linux-user mode * Microblaze: support for 64-bit address sizes and translation bug fixes * PowerPC: PMU support for mac99 machine type and improvements for Uninorth PCI host bridge emulation for Mac machine types * PowerPC: preliminary support for emulating POWER9 hash MMU mode when using powernv machine type * RISC-V: improvement for privileged ISA emulation * s390: support for z14 ZR1 CPU model * s390: bpb/ppa15 Spectre mitigations enabled by default for z196 and later CPU models * s390: support for configuring consoles via -serial options * Patches dropped (upstream unless otherwise noted): 0008-linux-user-fix-segfault-deadlock.patch (no longer needed) 0039-blockjob-Fix-assertion-in-block_job.patch 0041-seccomp-allow-sched_setscheduler-wi.patch Make-installed-scripts-explicitly-python3.patch (we now make python3 explicit in other patch) * Patches renamed: 0009-linux-user-binfmt-support-host-bina.patch - > 0008-linux-user-binfmt-support-host-bina.patch 0010-linux-user-Fake-proc-cpuinfo.patch - > 0009-linux-user-Fake-proc-cpuinfo.patch 0011-Remove-problematic-evdev-86-key-fro.patch - > 0010-Remove-problematic-evdev-86-key-fro.patch 0012-linux-user-use-target_ulong.patch - > 0011-linux-user-use-target_ulong.patch 0013-Make-char-muxer-more-robust-wrt-sma.patch - > 0012-Make-char-muxer-more-robust-wrt-sma.patch 0014-linux-user-lseek-explicitly-cast-no.patch - > 0013-linux-user-lseek-explicitly-cast-no.patch 0015-AIO-Reduce-number-of-threads-for-32.patch - > 0014-AIO-Reduce-number-of-threads-for-32.patch 0016-xen_disk-Add-suse-specific-flush-di.patch - > 0015-xen_disk-Add-suse-specific-flush-di.patch 0017-qemu-bridge-helper-reduce-security-.patch - > 0016-qemu-bridge-helper-reduce-security-.patch 0018-qemu-binfmt-conf-use-qemu-ARCH-binf.patch - > 0017-qemu-binfmt-conf-use-qemu-ARCH-binf.patch 0019-linux-user-properly-test-for-infini.patch - > 0018-linux-user-properly-test-for-infini.patch 0020-roms-Makefile-pass-a-packaging-time.patch - > 0019-roms-Makefile-pass-a-packaging-time.patch 0021-Raise-soft-address-space-limit-to-h.patch - > 0020-Raise-soft-address-space-limit-to-h.patch 0022-increase-x86_64-physical-bits-to-42.patch - > 0021-increase-x86_64-physical-bits-to-42.patch 0023-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch - > 0022-vga-Raise-VRAM-to-16-MiB-for-pc-0.1.patch 0024-i8254-Fix-migration-from-SLE11-SP2.patch - > 0023-i8254-Fix-migration-from-SLE11-SP2.patch 0025-acpi_piix4-Fix-migration-from-SLE11.patch - > 0024-acpi_piix4-Fix-migration-from-SLE11.patch 0026-Fix-tigervnc-long-press-issue.patch - > 0025-Fix-tigervnc-long-press-issue.patch 0027-string-input-visitor-Fix-uint64-par.patch - > 0026-string-input-visitor-Fix-uint64-par.patch 0028-test-string-input-visitor-Add-int-t.patch - > 0027-test-string-input-visitor-Add-int-t.patch 0029-test-string-input-visitor-Add-uint6.patch - > 0028-test-string-input-visitor-Add-uint6.patch 0030-tests-Add-QOM-property-unit-tests.patch - > 0029-tests-Add-QOM-property-unit-tests.patch 0031-tests-Add-scsi-disk-test.patch - > 0030-tests-Add-scsi-disk-test.patch 0032-Switch-order-of-libraries-for-mpath.patch - > 0031-Switch-order-of-libraries-for-mpath.patch 0033-Make-installed-scripts-explicitly-p.patch - > 0032-Make-installed-scripts-explicitly-p.patch (python2->python3) 0034-migration-warn-about-inconsistent-s.patch - > 0033-migration-warn-about-inconsistent-s.patch 0035-smbios-Add-1-terminator-if-any-stri.patch - > 0034-smbios-Add-1-terminator-if-any-stri.patch 0036-configure-Modify-python-used-for-io.patch - > 0035-configure-Modify-python-used-for-io.patch 0037-qemu-io-tests-comment-out-problemat.patch - > 0036-qemu-io-tests-comment-out-problemat.patch 0038-tests-test-thread-pool-is-racy-add-.patch - > 0037-tests-test-thread-pool-is-racy-add-.patch 0040-xen-add-block-resize-support-for-xe.patch - > 0038-xen-add-block-resize-support-for-xe.patch - Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-3.0 - Update QEMU to allow kvm group access to /dev/sev (bsc#1102604). 71-sev.rules ==== re2 ==== Version update (20180701 -> 20180901) - update to 2018-09-01: * developer visible changes only - update to 2018-08-01: * Fix the "DFA out of memory" error for the reverse Prog ==== rubygem-mime-types-data ==== Version update (3.2016.0521 -> 3.2018.0812) - updated to version 3.2018.0812 see installed History.md [#]# 3.2018.0812 / 2018-08-12 * Added `.xsd` extension to `text/xml`. [#10][] * Added `.js` and `.mjs` extensions to `text/ecmascript` and `text/javascript`. [#11][] * Added `.ipa` extension to `application/octet-stream`. [#12][] * Moved extensions `.markdown` and `.md` and added `.mkd` extension to `text/markdown`. [#13][] * Because of a bug found with mime-types 3 before 3.2.1, this version requires mime-types 3.1 or later to manage data. * Updated the IANA media registry entries as of release date. The biggest major change here is the addition of the `font/` top-level media type. * MIME type changes not introduced by pull requests will no longer be individually tracked. * Clarified that the YAML editable format is not shipped with the Ruby gem for size considerations. ==== rubygem-winrm-fs ==== Version update (1.2.0 -> 1.3.0) - updated to version 1.3.0 see installed changelog.md [#] 1.3.0 - Upload from StringIO object - Add missing winrm/exceptions require in file_transporter - Use correct way to relativize paths of Zip entries [#] 1.2.1 - Correctly handle unicode filenames ==== scout ==== Version update (0.1.1+20180103.0595254 -> 0.2.1+20180813.59519f8) Subpackages: command-not-found - Initial Python3 support (bsc#1077238) - Update to version 0.2.1+20180813.59519f8: * scout-cmd: convert dict keys into a list * scout-cmd: __iter__ is part of a string * scout-cmd: KeyboardInterrupt lives out of a module * scout: migrate bin to Python3 * Do not interpolate SQL strings * Use system Python 3 interpreter * scount-cmd: Initial support for Python 3 * data-gen: Initial support to Python 3 * tests: Initial support for Python 3 * cnf: initial port to Python 3 * Move setup.py to distutils and fix package_data * Add setup.py * Replace multiple unclear "zypper refresh" error messages with a helpful warning * Fix lookup of solv-file path for repos with '/' in name (bsc#1037101) * Translated using Weblate (Hindi) * Translated using Weblate (Hindi) * Translated using Weblate (Hindi) * Translated using Weblate (Galician) * Translated using Weblate (Galician) * Translated using Weblate (Finnish) * Translated using Weblate (Dutch) * Translated using Weblate (Dutch) * Translated using Weblate (Italian) * Translated using Weblate (Arabic) * Translated using Weblate (Arabic) * Translated using Weblate (Korean) * Translated using Weblate (Polish) * Translated using Weblate (Polish) * Translated using Weblate (Polish) ==== serd ==== Version update (0.28.0 -> 0.30.0) - Update to 0.30.0: * Update bundled waf to 2.0.9 * Fix various typos in comments * Various fixes in the testsuite ==== sord ==== Version update (0.16.0 -> 0.16.2) - Update to 0.16.2: * Update waf bundle to 2.0.9 * Fix warious compiler warnings and clang-format reports ==== sratom ==== Version update (0.6.0 -> 0.6.2) - Update to 0.6.2: * Update waf internals to work with python 3.7 ==== subversion ==== Version update (1.10.0 -> 1.10.2) Subpackages: libsvn_auth_gnome_keyring-1-0 libsvn_auth_kwallet-1-0 subversion-bash-completion subversion-perl subversion-python subversion-server subversion-tools - Apache Subversion 1.10.2: * Correctly claim to offer Gnome Keyring support with libsecret * Fix segfault using Gnome Keyring with libsecret * Fix JavaHL local refs capacity warning when unparsing externals * Prune externals after 'update --set-depth=exclude' * Fix "conflict resolver searches too far back ..." - Dropped patches that are included in the upstream release: * subversion-1.10.0-fix-svn-version-gnome-keyring.patch ==== tbb ==== - Extend reproducible.patch to not capture build kernel version (boo#1101107) ==== tiff ==== Subpackages: libtiff5 libtiff5-32bit - remove pal2rgb tool [bsc#1071031] - security update * CVE-2018-10779 [bsc#1092480] + tiff-CVE-2018-10779.patch ==== vim ==== Version update (8.1.0258 -> 8.1.0318) Subpackages: gvim vim-data vim-data-common - update to version 8.1.318 - add vim-8.1.0297-dump3.patch - disable broken test * helpgrep with language doesn't work properly * build failure without the +eval feature * information about a swap file is unavailable * wrong type for flags used in signal handlers * filtering entries in a quickfix list is not easy * File info message not always suppressed with 'F' in 'shortmess'. * profiling does not show a count for condition lines * a quick undo shows "1 seconds ago" * there is no good way to get the window layout * plural messages are not translated properly * no redraw when using a STOP signal on Vim and then CONT * line2byte() is wrong for last line with 'noeol' * crash when using :suspend and "fg" * GTK: input method popup displayed on wrong screen. * the old window title might be freed twice * command parsing for 'incsearch' is a bit ugly * no 'incsearch' highlighting for :vimgrep and similar * checks for type of stack is cryptic * 'incsearch' highlighting not used for :sort * "cit" on an empty HTML tag changes the whole tag * cursor moves to wrong column after quickfix jump * quickfix code uses cmdidx too often * MAX is not defined everywhere * 'incsearch' does not apply to :smagic and :snomagic * 'cursorline' highlighting wrong with 'incsearch' * 'incsearch' does not work with command modifiers * parsing command modifiers is not separated * 'incsearch' highlighting does not work for ":g!/" * 'incsearch' highlighting does not skip white space * incsearch' highlighting does not accept reverse range * 'incsearch' highlighting wrong in a few cases * no test for 'incsearch' highlighting with :s * 'incsearch' with :s doesn't start at cursor line * 'incsearch' triggers on ":source" * invalid memory access when using 'incsearch' * 'incsearch' doesn't work for :s, :g or :v * checking for a Tab in a line could be faster * Ruby Kernel.#p method always returns nil * file type checking has too many #ifdef * no good check if restoring quickfix list worked * parsing Ex address range is not a separate function * the getcmdline() function is way too big * backup tests fail when CWD is in /tmp * channel log doesn't show part of channel ==== wayland ==== Version update (1.15.0 -> 1.16.0) Subpackages: libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0 - Update to new upstream release 1.16 * The client definition of wl_global is removed. * Some long standing oddness has been fixed with destroy signals. * The code generator now supports referencing foreign enums.