Packages changed: NetworkManager (1.26.0 -> 1.26.2) PackageKit-Qt (1.0.1 -> 1.0.2) aaa_base (84.87+git20200804.d7fb210 -> 84.87+git20200818.b9dd70f) biosdevname giflib (5.1.4 -> 5.2.1) grub2 hyper-v json-c (0.14 -> 0.15) kexec-tools libimagequant (2.12.2 -> 2.12.6) mutter osinfo-db pipewire (0.3.8 -> 0.3.9) pngquant (2.12.2 -> 2.12.6) systemd (245.6 -> 245.7) thin-provisioning-tools (0.8.5 -> 0.9.0) === Details === ==== NetworkManager ==== Version update (1.26.0 -> 1.26.2) Subpackages: libnm0 typelib-1_0-NM-1_0 - Update to version 1.26.2: + build: various fixes for LTO. + dhcp6: export and handle the DHCPv6 FQDN option. + core: fix reapply for bond options. + core: improve "connection.wait-device-timeout" to handle matching devices not only by interface name and fix race. + libnm,core: support "clsact" qdisc. + dhcp4: fix bug in internal DHCP client on big endian systems. - Own the two empty directories pre-up.d and pre-down.d in /usr/lib/NetworkManager/dispatcher.d (boo#1173713). ==== PackageKit-Qt ==== Version update (1.0.1 -> 1.0.2) - update to 1.0.2: * Fix documentation (Aleix Pol) * Fix pkg-config include path (Matthias Klumpp) * Fix some documentation typos (Pekka Vuorela) * Make sure the build is done as c++11 (Pekka Vuorela) * Map DBusError::AccessDenied to Transaction::ErrorNotAuthorized (Raine Makelainen) - remove 0001-Fix-pkg-config-include-path.patch 0002-Fix-some-documentation-typos.patch 0003-Make-sure-the-build-is-done-as-c-11.patch: upstream ==== aaa_base ==== Version update (84.87+git20200804.d7fb210 -> 84.87+git20200818.b9dd70f) - Update to version 84.87+git20200818.b9dd70f: * backup-rpmdb: exit if zypp.pid is there and running (bug#1161239) - Update to version 84.87+git20200818.5220a5f: * profile and csh.login: on s390x set TERM to dumb on serial console * etc/profile add some missing ;; in case esac statements * refresh_initrd call modprobe as /sbin/modprobe (bug#1011548) * DIR_COLORS: merge TERM entries with list from (bug#1006973) * sort TERM entries in etc/DIR_COLORS * DIR_COLORS add TERM rxvt-unicode-256color (bug#1006973) * Rename path() to _path() to avoid using a general name. ==== biosdevname ==== - Add support for SMBIOS 3. * biosdevname-Add-SMBIOS-3.x-support.patch - Fix URL in specfile. It should be readable to developers. - Read DMI info rom sysfs (bsc#1174491). * biosdevname-Add-buffer-read-helper-using-read-explicitly.patch * biosdevname-Read-DMI-entries-from-sys-firmware-dmi-tables-DMI.patch ==== giflib ==== Version update (5.1.4 -> 5.2.1) - Update to version 5.2.1 * In gifbuild.c, avoid a core dump on no color map. * Restore inadvertently removed library version numbers in Makefile. - Changes in version 5.2.0 * The undocumented and deprecated GifQuantizeBuffer() entry point has been moved to the util library to reduce libgif size and attack surface. Applications needing this function are couraged to link the util library or make their own copy. * The following obsolete utility programs are no longer installed: gifecho, giffilter, gifinto, gifsponge. These were either installed in error or have been obsolesced by modern image-transformmation tools like ImageMagick convert. They may be removed entirely in a future release. * Address SourceForge issue #136: Stack-buffer-overflow in gifcolor.c:84 * Address SF bug #134: Giflib fails to slurp significant number of gifs * Apply SPDX convention for license tagging. - Changes in version 5.1.9 * The documentation directory now includes an HTMlified version of the GIF89 standard, and a more detailed description of how LZW compression is applied to GIFs. * Address SF bug #129: The latest version of giflib cannot be build on windows. * Address SF bug #126: Cannot compile giflib using c89 - Changes in version 5.1.8 * Address SF bug #119: MemorySanitizer: FPE on unknown address * Address SF bug #125: 5.1.7: xmlto is still required for tarball * Address SF bug #124: 5.1.7: ar invocation is not crosscompile compatible * Address SF bug #122: 5.1.7 installs manpages to wrong directory * Address SF bug #121: make: getversion: Command not found * Address SF bug #120: 5.1.7 does not build a proper library - no - Changes in version 5.1.7 * Correct a minor packaging error (superfluous symlinks) in the 5.1.6 tarballs. - Changes in version 5.1.6 * Fix library installation in the Makefile. - Changes in version 5.1.5 * Fix SF bug #114: Null dereferences in main() of gifclrmp * Fix SF bug #113: Heap Buffer Overflow-2 in function DGifDecompressLine() in cgif.c. This had been assigned (CVE-2018-11490). * Fix SF bug #111: segmentation fault in PrintCodeBlock * Fix SF bug #109: Segmentation fault of giftool reading a crafted file * Fix SF bug #107: Floating point exception in giftext utility * Fix SF bug #105: heap buffer overflow in DumpScreen2RGB in gif2rgb.c:317 * Fix SF bug #104: Ineffective bounds check in DGifSlurp * Fix SF bug #103: GIFLIB 5.1.4: DGifSlurp fails on empty comment * Fix SF bug #87: Heap buffer overflow in 5.1.2 (gif2rgb). * The horrible old autoconf build system has been removed with extreme prejudice. You now build this simply by running "make" from the top-level directory. - Run spec-cleaner - Drop patches fixed upstream: * giflib-visibility.patch * giflib-automake-1_13.patch * giflib-CVE-2016-3977.patch * fix-autoconf11.patch - Change build system to Make only (upstream not using autoconf) ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery (bsc#1172745) * 0001-ieee1275-powerpc-implements-fibre-channel-discovery-.patch * 0002-ieee1275-powerpc-enables-device-mapper-discovery.patch - Fix for CVE-2020-15705 (bsc#1174421) * 0001-linuxefi-fail-kernel-validation-without-shim-protoco.patch * 0002-cmdline-Provide-cmdline-functions-as-module.patch ==== hyper-v ==== - Allow daemon restart again (bsc#1116957) Since some time the kernel moved from netlink sockets to char devices, which is supposed to handle a connection reopen for the kernel<->daemon interface ==== json-c ==== Version update (0.14 -> 0.15) - update to 0.15: * Deprecate `array_list_new()` in favor of `array_list_new2()` * Remove the THIS_FUNCTION_IS_DEPRECATED define. * Remove config.h.win32 * Add a `JSON_TOKENER_ALLOW_TRAILING_CHARS` flag to allow multiple objects to be parsed even when `JSON_TOKENER_STRICT` is set. * Add `json_object_new_array_ext(int)` and `array_list_new_2(int)` to allow arrays to be allocated with the exact size needed, when known. * Add `json_object_array_shrink()` (and `array_list_shrink()`) and use it in json_tokener to minimize the amount of memory used. * Add a json_parse binary, for use in testing changes (not installed, but available in the apps directory). * Split the internal json_object structure into several sub-types, one for each json_type (json_object_object, json_object_string, etc...). This improves memory usage and speed, with the benchmark under bench/ report 5.8% faster test time and 6%(max RSS)-12%(peak heap) less memory usage. Memory used just for json_object structures decreased 27%, so use cases with fewer arrays and/or strings would benefit more. * Minimize memory usage in array handling in json_tokener by shrinking arrays to the exact number of elements parsed. On bench/ benchmark: 9% faster test time, 39%(max RSS)-50%(peak heap) less memory usage. Add json_object_array_shrink() and array_list_shrink() functions. * #616 - Parsing of surrogate pairs in unicode escapes now properly handles incremental parsing. * Fix incremental parsing of numbers, especially those with exponents, e.g. so parsing "[0", "e+", "-]" now properly returns an error. Strict mode now rejects missing exponents ("0e"). * Successfully return number objects at the top level even when they are followed by a "-", "." or "e". This makes parsing things like "123-45" behave consistently with things like "123xyz". * #589 - Detect broken RDRAND during initialization; also, fix segfault in the CPUID check. * #592 - Fix integer overflows to prevert out of bounds write on large input. * Protect against division by zero in linkhash, when creaed with zero size. * #602 - Fix json_parse_uint64() internal error checking, leaving the retval untouched in more failure cases. * #614 - Prevent truncation when custom double formatters insert extra \0's - remove 0001-Detect-broken-RDRAND-during-initialization.patch (upstream) ==== kexec-tools ==== - Make kexec-bootloader work without 'which' package (boo#1172501) ==== libimagequant ==== Version update (2.12.2 -> 2.12.6) - update to 2.12.6: * Use size_t for malloc_sizes - remove gcc9-Update-const-var-openmp-const-var-handling.patch (upstream) ==== mutter ==== Subpackages: libmutter-6-0 mutter-data - Add mutter-meson_options-Use-libGLESv2.so.2-for-COGL_DRIVER-gle.patch: don't use libGLESv2.so but libGLESv2.so.2 for COGL driver (boo#1175559 glgo#GNOME/mutter!1282). ==== osinfo-db ==== - Add support for openSUSE Leap 15.3 and SLE15-SP3 add-leap15.3-support.patch add-sle15sp3-support.patch ==== pipewire ==== Version update (0.3.8 -> 0.3.9) Subpackages: libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 0.3.9: * Fix bad audio in chrome * Remove some errors that are not real errors. * Fix 100% cpu when disconnecting devices. * Improve pulseaudio introspection of formats * Fix JACK metadata handling, carla can now monitor the port it creates and insert midi. * Add a new permission bit (M) that is needed to be able to configure metadata on an object. Improve security of metadata some more, only allow metadata on objects that are visible to the client setting the metadata. * Add support for videocrop in the GStreamer elements. * Improve handling of the runtime directory for the server sockets. Add some reasonable fallback when XDG_RUNTIME_DIR is not set, as suggested in the spec. * Improve ALSA device names from ACP. * Fix various crasher bugs. One in the pulse layer, one in the session manager. * Make alsa plugin respect the PIPEWIRE_REMOTE env variable. * Various compile fixes. ==== pngquant ==== Version update (2.12.2 -> 2.12.6) - update to 2.12.6 * Warn about GCC 4 being too old * Use size_t for malloc sizes ==== systemd ==== Version update (245.6 -> 245.7) Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev - Import commit 6d6d92930acad63f9b9029c305a672c32c550d2d (include merge of v245.7) 797ad47d3e vconsole-setup: downgrade log message when setting font fails on dummy console (bsc#1172195 bsc#1173539) [...] For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/b12cd8b89b4bccfcf972b47153a2b01cd7775932...6d6d92930acad63f9b9029c305a672c32c550d2d - Drop 0001-Revert-job-Don-t-mark-as-redundant-if-deps-are-relev.patch Upstream finally reverted it and it's part of both v245.7 and master. ==== thin-provisioning-tools ==== Version update (0.8.5 -> 0.9.0) - Update to version 0.9.0: * New support tools: thin_metadata_{pack,unpack}. * thin_check can now check metadata snapshots. * some metadata space map bug fixes. * thin_check --auto-repair * Stop thin_dump --repair/thin_repair ignoring under populated nodes. - Drop no longer needed patches: * boost_168.patch * ft-lib_bcache-rename-raise-raise_.patch