Packages changed: GraphicsMagick (1.3.25 -> 1.3.26) Mesa (17.1.4 -> 17.1.5) ModemManager (1.6.4 -> 1.6.8) MozillaFirefox (52.2 -> 52.2.1) NetworkManager a52dec attica-qt5 (5.35.0 -> 5.36.0) autoyast2 (3.3.0 -> 3.3.1) baloo5 (5.35.0 -> 5.36.0) bluez-qt (5.35.0 -> 5.36.0) breeze5-icons (5.35.0 -> 5.36.0) brltty corosync desktop-translations (84.87.20170618.be69114 -> 84.87.20170719.98170d3) dmidecode dmz-icon-theme-cursors dpdk (16.11.2_k4.11.8_1 -> 16.11.2_k4.11.8_2) dracut drbd epiphany (3.24.2 -> 3.24.3) evince evolution (3.24.3 -> 3.24.4) evolution-data-server (3.24.3 -> 3.24.4) evolution-ews (3.24.3 -> 3.24.4) extra-cmake-modules (5.35.0 -> 5.36.0) frameworkintegration (5.35.0 -> 5.36.0) ftgl gcc6 (6.3.1+r248589 -> 6.4.1+r249957) gdk-pixbuf gdm geany geany-plugins git (2.13.2 -> 2.13.3) glib2-branding-openSUSE gnome-keyring gnome-settings-daemon gnome-shell gnu_ddrescue (1.21 -> 1.22) gstreamer (1.12.1 -> 1.12.2) gstreamer-editing-services (1.12.1 -> 1.12.2) gstreamer-plugins-bad (1.12.1 -> 1.12.2) gstreamer-plugins-base (1.12.1 -> 1.12.2) gstreamer-plugins-good (1.12.1 -> 1.12.2) gstreamer-plugins-ugly (1.12.1 -> 1.12.2) gstreamer-rtsp-server (1.12.1 -> 1.12.2) gstreamer-transcoder (1.10.0 -> 1.12.0) gstreamer-validate (1.12.1 -> 1.12.2) gtk2 iproute2 (4.11 -> 4.12) jasper jsoncpp (1.8.0 -> 1.8.1) kactivities-stats (5.35.0 -> 5.36.0) kactivities5 (5.35.0 -> 5.36.0) karchive (5.35.0 -> 5.36.0) kauth (5.35.0 -> 5.36.0) kbookmarks (5.35.0 -> 5.36.0) kcm_sddm kcmutils (5.35.0 -> 5.36.0) kcodecs (5.35.0 -> 5.36.0) kcompletion (5.35.0 -> 5.36.0) kconfig (5.35.0 -> 5.36.0) kconfigwidgets (5.35.0 -> 5.36.0) kcoreaddons (5.35.0 -> 5.36.0) kcrash (5.35.0 -> 5.36.0) kdbusaddons (5.35.0 -> 5.36.0) kdeclarative (5.35.0 -> 5.36.0) kded (5.35.0 -> 5.36.0) kdelibs4support (5.35.0 -> 5.36.0) kdesignerplugin (5.35.0 -> 5.36.0) kdesu (5.35.0 -> 5.36.0) kdewebkit (5.35.0 -> 5.36.0) kdnssd-framework (5.35.0 -> 5.36.0) kdoctools (5.35.0 -> 5.36.0) kemoticons (5.35.0 -> 5.36.0) kfilemetadata5 (5.35.0 -> 5.36.0) kglobalaccel (5.35.0 -> 5.36.0) kguiaddons (5.35.0 -> 5.36.0) khtml (5.35.0 -> 5.36.0) ki18n (5.35.0 -> 5.36.0) kiconthemes (5.35.0 -> 5.36.0) kidletime (5.35.0 -> 5.36.0) kimageformats (5.35.0 -> 5.36.0) kinit (5.35.0 -> 5.36.0) kio (5.35.0 -> 5.36.0) kitemmodels (5.35.0 -> 5.36.0) kitemviews (5.35.0 -> 5.36.0) kiwi-config-openSUSE kjobwidgets (5.35.0 -> 5.36.0) kjs (5.35.0 -> 5.36.0) kjsembed (5.35.0 -> 5.36.0) kmediaplayer (5.35.0 -> 5.36.0) knewstuff (5.35.0 -> 5.36.0) knotifications (5.35.0 -> 5.36.0) knotifyconfig (5.35.0 -> 5.36.0) kpackage (5.35.0 -> 5.36.0) kparts (5.35.0 -> 5.36.0) kpeople5 (5.35.0 -> 5.36.0) kplotting (5.35.0 -> 5.36.0) kpty (5.35.0 -> 5.36.0) kross (5.35.0 -> 5.36.0) krunner (5.35.0 -> 5.36.0) kservice (5.35.0 -> 5.36.0) ktexteditor (5.35.0 -> 5.36.0) ktextwidgets (5.35.0 -> 5.36.0) kunitconversion (5.35.0 -> 5.36.0) kwallet (5.35.0 -> 5.36.0) kwayland (5.35.0 -> 5.36.0) kwidgetsaddons (5.35.0 -> 5.36.0) kwindowsystem (5.35.0 -> 5.36.0) kxmlgui (5.35.0 -> 5.36.0) kxmlrpcclient5 (5.35.0 -> 5.36.0) libKF5ModemManagerQt (5.35.0 -> 5.36.0) libKF5NetworkManagerQt (5.35.0 -> 5.36.0) libgcj-gcc6 (6.3.1+r248589 -> 6.4.1+r249957) libgphoto2 libopenmpt (0.2.8043~beta23 -> 0.2.8461~beta26) libsecret libvirt-python (3.4.0 -> 3.5.0) libyui-ncurses (2.48.2 -> 2.48.3) libzypp (16.13.0 -> 16.14.0) libzypp-plugin-appdata (1.0+git.20150408 -> 1.0.1+git.20170629) lightdm llvm4 lomoco loudmouth mariadb (10.1.22 -> 10.1.25) mlocate mlterm (3.7.2 -> 3.8.2) mpg123 (1.25.1 -> 1.25.2) mutter nautilus (3.24.1 -> 3.24.2.1) ncurses nghttp2 (1.22.0 -> 1.24.0) numactl obs-service-tar_scm (0.7.0.1497870887.fa1750b -> 0.8.0.1499787575.2419460) openexr openldap2 (2.4.44 -> 2.4.45) openssl openssl-1_0_0 orc (0.4.26 -> 0.4.27) oxygen5-icon-theme (5.35.0 -> 5.36.0) pango (1.40.6 -> 1.40.7) pciutils-ids (20170525 -> 20170710) perl-Class-MethodMaker perl-Exception-Class (1.42 -> 1.43) perl-Moose (2.2005 -> 2.2006) perl-Parse-Yapp (1.05 -> 1.2) perl-Specio (0.37 -> 0.38) plasma-framework (5.35.0 -> 5.36.0) plasma5-workspace prison-qt5 (5.35.0 -> 5.36.0) python-gnome python-ldap (2.4.40 -> 2.4.41) python-matplotlib python-python-dateutil (2.6.0 -> 2.6.1) python-typing python3-gst (1.12.1 -> 1.12.2) qhull qtcurve-kde4 rsync ruby (2.2 -> 2.4) samba (4.6.5+git.27.6afd48b1083 -> 4.6.5+git.32.af7a173b7a1) solid (5.35.0 -> 5.36.0) sonnet (5.35.0 -> 5.36.0) suitesparse syntax-highlighting (5.35.0 -> 5.36.0) system-users systemd texlive-specs-m (2017.128.20170101_pl1svn43813 -> 2017.131.20170101_pl1svn43813) texlive-specs-n (2017.128.2.004svn28119 -> 2017.131.2.004svn28119) threadweaver (5.35.0 -> 5.36.0) ucode-intel (20170511 -> 20170707) unbound (1.6.1 -> 1.6.4) wireshark (2.2.7 -> 2.2.8) xdg-desktop-portal-kde (5.10.3 -> 5.10.4) xf86-video-siliconmotion xorg-x11-server xz yast2 (3.3.0 -> 3.3.4) yast2-add-on (3.2.0 -> 3.2.1) yast2-kdump (3.3.0 -> 3.3.1) yast2-network (3.3.1 -> 3.3.2) yast2-ntp-client (3.3.1 -> 3.3.2) yast2-packager (3.2.23 -> 3.3.0) yast2-ruby-bindings (3.2.14 -> 3.3.1) yast2-services-manager (3.2.1 -> 3.3.0) yast2-vm (3.2.1 -> 3.2.2) yast2-xml (3.1.1 -> 3.3.0) zypper (1.13.28 -> 1.13.29) === Details === ==== GraphicsMagick ==== Version update (1.3.25 -> 1.3.26) Subpackages: GraphicsMagick-devel libGraphicsMagick-Q16-3 libGraphicsMagick3-config libGraphicsMagickWand-Q16-2 - Drop patches not meintioned in the changelog ever: * GraphicsMagick-debian-fixed.patch * GraphicsMagick-include.patch * GraphicsMagick-perl-link.patch * The package builds just fine without them and there is no refference explaining it - Convert the deps to pkgconfig variants where possible. - Version update to 1.3.26: * DPX: Fix excessive use of memory (DOS issue) due to file header claiming large image dimensions but insufficient backing data. (CVE-2017-10799 bsc#1047054). * JNG: Fix memory leak when reading invalid JNG image (CVE-2017-8350). * MAT: Fix excessive use of memory (DOS issue) due to continuing processing with insufficient data and claimed large image size. Verify each file extent to make sure that it is within range of file size. (CVE-2017-10800 bsc#1047044). * META: Fix heap overflow while parsing 8BIM chunk (CVE-2016-7800). * PCX: Fix denial of service issue. * RLE: Fix abnomally slow operation (denial of service issue) with intentionally corrupt colormapped file. * PICT: Fix possible buffer overflow vulnerability given suitably truncated input file. * PNG: Enforce spec requirement that the dimensions of the JPEG embedded in a JDAT chunk must match the JHDR dimensions (CVE-2016-9830). * PNG: Avoid NULL dereference when MAGN chunk processing fails. * SCT: Fix stack-buffer read overflow (underflow?) while reading SCT header. * SGI: Fix denial of service issues. Delay large memory allocations until file header has fully passed sanity checks. * TIFF: Fix out of bounds read when reading CMYKA TIFF which claims to have only 2 samples per pixel (CVE-2017-6335 bsc#1027255). * TIFF: Fix out of bounds read when reading RGB TIFF which claims to have only 1 sample per pixel (CVE-2017-10794). * WPG: Fix heap overflow (CVE-2016-7996). Fix assertion crash (CVE-2016-7997). * DifferenceImage(): Fix Fix all-black difference image if an input file is colormapped. * EXIF orientation was not being properly detected for some files. * -frame: The `import` command -frame handling was improperly implemented and was using already freed data. * GIF: Fixes for "Excessive LZW string data" problem. * Magick++: Bug fixes to PathSmoothCurvetoRel::operator() and PathSmoothCurvetoRel::operator(). * PAM: Support writing GRAYSCALE PAM format. * PNG: Fix memory leaks. * SVG: Fixed a memory leak. Fixed a possible null pointer dereference. * TclMagick: Problem that TkMagick could not resolve functions from TclMagick under Linux is fixed. * TclMagick: Fix parser validatation in magickCmd() to avoid crash given a syntax error. * TIFF: Fix for reading old JPEG files (avoids "Improper call to JPEG library in state 0. (LibJpeg)."). * TXT: Fixed memory leak. * XCF: Error checking is improved. * EXIF rotation: Support is added such that the EXIF orientation tag is updated when the image is rotated. * MAT: Now support reading multiple images from Matlab V4 format. * Magick++: Orientation method now updates orientation in EXIF profile, if it exists. * Magick++: Added Image attribute method which accepts a 'char *' argument, and will remove the attribute if the value argument is NULL. * -orient: The -orient command line option now also updates the orientation in the EXIF profile, if it exists. * PGX: Support PGX JPEG 2000 format for reading and writing (within the bounds of what JasPer supports). * Wand API: Added MagickAutoOrientImage(), MagickGetImageOrientation(), MagickSetImageOrientation(), MagickRemoveImageOption(), and MagickClearException(). - Drop merged patch GraphicsMagick-CVE-2017-8350.patch ==== Mesa ==== Version update (17.1.4 -> 17.1.5) Subpackages: Mesa-dri-devel Mesa-dri-nouveau Mesa-libEGL-devel Mesa-libEGL1 Mesa-libGL-devel Mesa-libGL1 Mesa-libglapi0 Mesa-libglapi0-32bit Mesa-libva libOSMesa8 libOSMesa8-32bit libgbm1 libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_radeon libwayland-egl1 libxatracker2 - update to 17.1.5 * fdo#100242 - radeon buffer allocation failure during startup of Factorio * fdo#101657 - strtod.c:32:10: fatal error: xlocale.h: No such file or directory * fdo#101666 - bitfieldExtract is marked as a built-in function on OpenGL ES 3.0, but was added in OpenGL ES 3.1 * fdo#101703 - No stencil buffer allocated when requested by GLUT * and other bugfixes ==== ModemManager ==== Version update (1.6.4 -> 1.6.8) Subpackages: ModemManager-bash-completion ModemManager-devel libmm-glib0 typelib-1_0-ModemManager-1_0 - Update to version 1.6.8: + Blacklist: Ignored default Linux USB Serial Gadget. + QMI: - Fixed build with libqmi 1.16. - Allow prefix match for modem images ending with '?'. + Plugins: - Telit: fix #PSNT values interpretation for HSDPA and LTE modems. - Telit: add LTE access technology reporting. - Huawei: let the E3372 run NDISDUP via TTY. - MBM: fix async method completion enabling unsolicited events. + Core: - AT+WS46=? response parser extended to support ranges. - Fix setting up signal quality retrieval logic. - Changes from version 1.6.6: + Blacklist: - Ignored keyboard.io devices. - Ignored Analog Devices EVAL-ADXL362Z-DB. - Ignored promotion boards from Renesas. - Ignored Analog PlutoSDR. - Ignored Telit LE866 flashing device. + Plugins: - Telit: fix AT+SERVICE 3GPP2 access technology reporting. - Telit: lock/unlock CSIM operations by default. - Telit: don't ignore AT ports without an explicit port type hint tag. - Cinterion: improve ^SMONG and ^SCFG=? response parsers. - Huawei: implement Signal interface based on ^HCSQ. - QMI: require FCC auth if InvalidTransition error is detected. - QMI: fix incorrect use of mm_base_bearer_get_status(). - QMI: add WDS event reporting support. - MBIM: remove parent access tech loading. + Core: - Added RSCP item in the Signal interface. - Implement Signal interface in the generic AT based modem based on ^CESQ. - Improve network registration checks for LTE devices. - Handle SDIO devices. - Fix QCDM access tech reporting for WCDMA system modes. - Fix capabilities in 4G-only devices. - Set TTY as connected as soon as ATD replies. + And some other fixes. ==== MozillaFirefox ==== Version update (52.2 -> 52.2.1) Subpackages: MozillaFirefox-translations-common - Mozilla Firefox 52.2.1esr: * Printing text does not work on Windows when Direct2D is disabled (bmo#1318845) ==== NetworkManager ==== Subpackages: NetworkManager-devel libnm-glib-vpn1 libnm-glib4 libnm-util2 libnm0 typelib-1_0-NM-1_0 typelib-1_0-NMClient-1_0 typelib-1_0-NetworkManager-1_0 - Add NM-dhcp-improve-parsing-interface-statement.patch: Fix NM not writing DNS servers to /etc/resolv.conf (boo#1047004). ==== a52dec ==== - Drop a52dec-compat.diff and mm_accel.h source, not needed with the svn checkout we are using. - Pass --enable-shared to configure, ensure we build the shared library. ==== attica-qt5 ==== Version update (5.35.0 -> 5.36.0) Subpackages: attica-qt5-devel libKF5Attica5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== autoyast2 ==== Version update (3.3.0 -> 3.3.1) Subpackages: autoyast2-installation - Crash while writing settings via the menue "File/Apply Profile to this System" in AutoYaST configuration module: As we are switching to "autoinstallation" mode and accessing to the target system we have to set StorageDevices flag disks_valid to true. So InitLibstorage can scan valid target disks. (bnc#1047809) - 3.3.1 ==== baloo5 ==== Version update (5.35.0 -> 5.36.0) Subpackages: baloo5-devel baloo5-file baloo5-imports baloo5-kioslaves baloo5-tools libKF5Baloo5 libKF5BalooEngine5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Use FindInotify.cmake to decide wheter inotify is available. * [FEATURE] Option to build & install QCH file with the public API dox ==== bluez-qt ==== Version update (5.35.0 -> 5.36.0) Subpackages: bluez-qt-devel bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * API dox: note CamelCase includes by @class tag * API dox: add namespace to classes named in README.md * [FEATURE] Option to build & install QCH file with the public API dox ==== breeze5-icons ==== Version update (5.35.0 -> 5.36.0) - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Do not depend on bash uncessarily, and do not validate icons by default. * add babe app icon ==== brltty ==== Subpackages: brltty-driver-at-spi2 brltty-driver-brlapi brltty-driver-espeak brltty-driver-speech-dispatcher brltty-driver-xwindow libbrlapi0_6 python3-brlapi xbrlapi - Provide caml__frame with brltty.ocaml.patch ==== corosync ==== - some upstream fixes for corosync(bsc#1048259) Added: bsc#1047860-add-version.patch 0007-Make-corosync-work-when-FIPS-mode-is-enabled.patch 0008-main.c-add-option-to-set-priority.patch 0009-totem-Propagate-totem-initialization-failure.patch Removed: bnc#867767-add-version.patch 0007-improve-corosync-keygen.patch(since this patch is not for corosync v2.x) Modified: corosync.spec, add judgement whether /etc/sysconfig/corosycn* exist before remove these files ==== desktop-translations ==== Version update (84.87.20170618.be69114 -> 84.87.20170719.98170d3) - Update to version 84.87.20170719.98170d3: * Regenerate PO/POT after "Desktop Action *" section change in tar2po * tar2po: Handle "Desktop Action *" sections like "Desktop Entry" (boo#1049021) * Translated using Weblate (Chinese (Taiwan)) * Translated using Weblate (German) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Russian) - Update to version 84.87.20170713.beab045: * Translated using a text editor + git - Update to version 84.87.20170713.f60fae5: * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Indonesian) * Translated using Weblate (Chinese (Taiwan)) * Translated using Weblate (German) * Translated using Weblate (Indonesian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Chinese (Taiwan)) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Put YaST2.desktop back into update-desktop-files-apps * Update POT files after YaST change, sync PO files - Update to version 84.87.20170705.7bdbb1d: * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Spanish) * Translated using Weblate (German) * Translated using Weblate (Greek) * Translated using Weblate (Greek) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Danish) * Translated using Weblate (Arabic) * Translated using Weblate (Arabic) * Translated using Weblate (Arabic) * Translated using Weblate (Arabic) * Translated using Weblate (Danish) * Translated using Weblate (Russian) * Translated using Weblate (Russian) * Translated using Weblate (Russian) * Translated using Weblate (Russian) * Translated using Weblate (Russian) * Translated using Weblate (Russian) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Lithuanian) * Translated using Weblate (Lithuanian) * Translated using Weblate (Lithuanian) * Translated using Weblate (Lithuanian) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (German) * Translated using Weblate (Italian) * Translated using Weblate (German) * Translated using Weblate (Danish) * Translated using Weblate (Danish) * Translated using Weblate (Danish) * Translated using Weblate (Danish) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (German) * Translated using Weblate (Dutch) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Chinese (China)) * Translated using Weblate (Danish) * Translated using Weblate (Norwegian Bokmål) * Translated using Weblate (Dutch) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Relicense 51-xml contents as MIT * Translated using Weblate (Norwegian Nynorsk) * Translated using Weblate (German) * Translated using Weblate (Ukrainian) * Translated using Weblate (German) * Translated using Weblate (French) * Translated using Weblate (German) * Translated using Weblate (French) * Translated using Weblate (German) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) ==== dmidecode ==== - Add missing bug numbers and FATE references in changes file (bsc#1041670). ==== dmz-icon-theme-cursors ==== - actually build and install the cursors, instead of random stuff ==== dpdk ==== Version update (16.11.2_k4.11.8_1 -> 16.11.2_k4.11.8_2) - Do not use obsolete pci_enable_msix for() kernel > 4.8 [+0006-kni-fix-ethtool-build-with-kernel-4.11.patch, +0007-igb_uio-switch-to-new-irq-function-for-MSI-X.patch] ==== dracut ==== - switch fips checking to use the libkcapi based fipscheck toolset (bsc#1048565) * adds 0527-switch-fips-checking-to-use-the-libkcapi-based-fipsc.patch - iscsiroot: call handle_firmware only for non-iface invocations (bsc#1032284) * adds 0526-iscsiroot-call-handle_firmware-only-for-non-iface-in.patch - bail out if module directory does not exist (bsc#1043900) * adds 0525-backport-bail-out-if-module-directory-does-not-exist.patch ==== drbd ==== Subpackages: drbd-kmp-default - Add reproducible.patch to sort file lists (boo#1041090) and to override build date (boo#1047218) to fix build-compare ==== epiphany ==== Version update (3.24.2 -> 3.24.3) Subpackages: epiphany-lang gnome-shell-search-provider-epiphany - Update to version 3.24.3: + Fix floating status bar blocking clicks (bgo#668493). + Add [Shift+]Ctrl+Tab shortcuts for switching tabs (bgo#762631). + Fix crash when download fails (bgo#778653). + Restore address bar search for bookmarks tags (bgo#781746). + Fix notifications permissions being forgotten for web apps (bgo#782386). + Fix tags with no bookmarks appearing in bookmarks popover. + Fix crash if search engine settings get desynced. + Updated translations. ==== evince ==== Subpackages: evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-psdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 nautilus-evince typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Add evince-comics-remove-tar-commands-support.patch to avoid code execution in the comic book backend's .tar support. (bnc#1046856, bgo#784630, CVE-2017-1000083). ==== evolution ==== Version update (3.24.3 -> 3.24.4) Subpackages: evolution-plugin-bogofilter evolution-plugin-pst-import evolution-plugin-spamassassin - Update to version 3.24.4: + Sort accounts in identity combo box (From: combo in mail composer). + Cannot focus contact list editor's list name. + Fix runtime warning on close from e_content_request_process(). + Prefer gtk_clipboard_wait_for_targets() over gtk_clipboard_request_targets(). + Wrong folder URI used for message notifications. + AlertBar from ShellContent not freed. + Bugs fixed: bgo#783905, bgo#782210, bgo#784246, bgo#780934, bgo#784445, bgo#784438, bgo#781309, bgo#784664, bgo#784665, bgo#784776, bgo#784663, bgo#784874. + Updated translations. ==== evolution-data-server ==== Version update (3.24.3 -> 3.24.4) Subpackages: libcamel-1_2-60 libebackend-1_2-10 libebook-1_2-19 libebook-contacts-1_2-2 libecal-1_2-19 libedata-book-1_2-25 libedata-cal-1_2-28 libedataserver-1_2-22 libedataserverui-1_2-1 - Update to version 3.24.4: + Warn and set default when sendmail not found during the build. + Correct localization of external tool. + Bugs fixed: bgo#493801, bgo#779753, bgo#784116, bgo#779156, bgo#782844, bgo#784548. + Updated translations. ==== evolution-ews ==== Version update (3.24.3 -> 3.24.4) Subpackages: evolution-ews-lang - Update to version 3.24.4: + Bugs fixed: bgo#784332, bgo#784058, bgo#784775. + Updated translations. ==== extra-cmake-modules ==== Version update (5.35.0 -> 5.36.0) Subpackages: extra-cmake-modules-doc - Add bundle-lang.patch to find .qm translations in /usr/share/locale-bundle/ (boo#1027925, boo#1048030) - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * FindQHelpGenerator: avoid picking up Qt4 version * ECMAddQch: fail hard if needed tools are not present, to avoid surprises * Drop perl as dep for ecm_add_qch, not needed/used * (always include CheckCXXCompilerFlag before calling it) * guess less, test more * detect Xcode <= 6.2 from Clang version only * scan the whole install folder for qml dependencies * New: ECMAddQch, for generating qch & doxygen tag files * tests: improve error reporting for ECMAddAppIconTest * tests: fix output directory for KDEFetchTranslations * tests: fix last change on KDEFetchTranslations * tests: hopefully fix KDEFetchTranslations on Windows * Fix KDEInstallDirsTest.relative_or_absolute_usr, avoid Qt paths being used ==== frameworkintegration ==== Version update (5.35.0 -> 5.36.0) Subpackages: frameworkintegration-devel frameworkintegration-plugin libKF5Style5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * cmake: use ecm_add_test more ==== ftgl ==== - Remove --with-pic which is only for static libs. - RPM group fix. - Trim redundant wording from description. - Trim a bit description and fix group for demo - add install-FTVectoriser.h.patch install FTVectoriser.h, required by tulip-5.0 - fix documentation build (add texlive-epstopdf and ghostscript to BuildRequires) ==== gcc6 ==== Version update (6.3.1+r248589 -> 6.4.1+r249957) - Add #nospeccleaner to all spec files. - Update to gcc-6-branch head (r249957). * Includes GCC 6.4 release. - Update plugin enablement guard to use %sle_version. - Bump libffi version in libffi.pc to 3.99999. ==== gdk-pixbuf ==== Subpackages: gdk-pixbuf-devel gdk-pixbuf-query-loaders gdk-pixbuf-query-loaders-32bit gdk-pixbuf-thumbnailer libgdk_pixbuf-2_0-0 libgdk_pixbuf-2_0-0-32bit typelib-1_0-GdkPixbuf-2_0 - Add fixes for crashes, taken from upstream git (CVE-2017-2862, CVE-2017-2870, bgo#784866, bgo#780269): gdk-pixbuf-cve-2017-2862-jpeg-channels.patch gdk-pixbuf-cve-2017-2870-tiff-mul-overflow.patch ==== gdm ==== Subpackages: gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Fix specfile: Set attributes of /var/log/gdm and /run/gdm to (711, root, gdm), which is hardcoded in commit c3cba52, otherwise modified permissions are inspected when the gdm daemon starts (bsc#882032, bgo#693679). ==== geany ==== Subpackages: geany-lang libgeany0 - Drop easily-togglable support for building against gtk2 -- it leads to assumptions that we want to officially support gtk2, where we don't. Remove the %%{prefer_gtk2} macro. - Switch gtk3-devel BuildRequires to pkgconfig(gtk+-3.0). ==== geany-plugins ==== Subpackages: geany-plugins-lang - Rename misleadingly named macro %%{gtk3_enable} to %%{gtk3_ready} and set it to true (1). Used to distinguish between gtk-ready plugins and those that are not yet so in the file-list. ==== git ==== Version update (2.13.2 -> 2.13.3) Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk - git 2.13.3: * various internal bug fixes * Fix a regression to "git rebase -i" * Correct unaligned 32-bit access in pack-bitmap code * Tighten error checks for invalid "git apply" input * The split index code did not honor core.sharedrepository setting correctly * Fix "git branch --list" handling of color.branch.local ==== glib2-branding-openSUSE ==== - Update .gschema.override.in to set small icon size on Desktop and nautilus in Leap, which is consistent with SLE (bsc#1043604). ==== gnome-keyring ==== Subpackages: gnome-keyring-32bit gnome-keyring-pam gnome-keyring-pam-32bit libgck-modules-gnome-keyring - Add gnome-keyring-secret-size.patch: Ensure that generated secret occupies the same number of bytes as prime. Eliminates random errors while libsecret tries to talk to gnome-keyring (bgo#778357). ==== gnome-settings-daemon ==== - Update SLE patches: + gnome-settings-daemon-bnc873545-hide-warnings.patch + gnome-settings-daemon-bring-back-updates-plugin.patch + gnome-settings-daemon-revert-libinput-mandatory.patch - Cleanup specfile. ==== gnome-shell ==== Subpackages: gnome-shell-browser-plugin gnome-shell-calendar - Add gnome-shell-emulate-click-action.patch: Fix clicks in gnome-shell shutdown dialog (bgo#781738, boo#1036681). - Add gnome-shell-1036494-Consistently-handle-createExtensionObject-errors.patch, gnome-shell-1036494-Catch-import-errors.patch and gnome-shell-1036494-Consistently-handle-initExtension-errors.patch to handle correctly extensions that fail to load (bsc#1036494, bgo#781728, CVE-2017-8288). - Enable gnome-shell-878951-hide-list-with-no-user.patch on openSUSE. Upstream commit fbc5e37 (bsc#1047262, bgo#731320). ==== gnu_ddrescue ==== Version update (1.21 -> 1.22) - Update to new upstream release 1.22 * The -X option now stands for --max-read-errors instead of - -exit-on-error and therefore requires an argument now. * New options: --max-slow-reads, --delay-slow, --reset-slow, - -log-events, --mapfile-interval, --pause-on-error * The option '--pause' has been renamed to '--pause-on-pass'. * The option '--max-errors' has been renamed to '--max-bad-areas'. * ddrescue now shows the number of read errors, the error rate and (if a --min-read-rate is specified) the number of slow reads. * The 'current_pass' field has been added to the mapfile. This allows the copying phase to resume instead of restart from pass 1. It also allows the retrying phase to resume in the same direction it was interrupted. * (More option changes; see the full changelog in the "NEWS" file shipped inside the package.) ==== gstreamer ==== Version update (1.12.1 -> 1.12.2) Subpackages: gstreamer-devel gstreamer-utils libgstreamer-1_0-0 libgstreamer-1_0-0-32bit typelib-1_0-Gst-1_0 - Update to version 1.12.2: + Bugs fixed: bgo#784041, bgo#784932. ==== gstreamer-editing-services ==== Version update (1.12.1 -> 1.12.2) Subpackages: libges-1_0-0 typelib-1_0-GES-1_0 - Update to version 1.12.2: + Bugs fixed: bgo#784769. ==== gstreamer-plugins-bad ==== Version update (1.12.1 -> 1.12.2) Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbadbase-1_0-0 libgstbadvideo-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstgl-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgsturidownloader-1_0-0 libgstwayland-1_0-0 - Update to version 1.12.2: + Bugs fixed: bgo#764025, bgo#773159, bgo#782774, bgo#783028, bgo#783075, bgo#783244, bgo#784027, bgo#784059, bgo#784210, bgo#784439, bgo#784510, bgo#784755. ==== gstreamer-plugins-base ==== Version update (1.12.1 -> 1.12.2) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstaudio-1_0-0-32bit libgstfft-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgsttag-1_0-0-32bit libgstvideo-1_0-0 libgstvideo-1_0-0-32bit typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.12.2: + Bugs fixed: bgo#784639. ==== gstreamer-plugins-good ==== Version update (1.12.1 -> 1.12.2) Subpackages: gstreamer-plugins-good-extra - Update to version 1.12.2: + Bugs fixed: bgo#783778, bgo#784282, bgo#784486, bgo#784616, bgo#784812. ==== gstreamer-plugins-ugly ==== Version update (1.12.1 -> 1.12.2) - Drop conditional patch gstreamer-plugins-ugly-1.0.1-patched_liba52.patch, no longer needed due to changes in a52dec. - Update to version 1.12.2: + asfdemux: Don't assume index is present at end of file. ==== gstreamer-rtsp-server ==== Version update (1.12.1 -> 1.12.2) - Update to version 1.12.2: + No changes, stable version bump only. ==== gstreamer-transcoder ==== Version update (1.10.0 -> 1.12.0) Subpackages: libgsttranscoder-1_0-0 typelib-1_0-GstTranscoder-1_0 - Update to version 1.12.0: + No changelog provided, please check upstream git log. - Update to version 1.10.1: + Rename GStreamer plugin to match so filename. ==== gstreamer-validate ==== Version update (1.12.1 -> 1.12.2) Subpackages: libgstvalidate-1_0-0 typelib-1_0-GstValidate-1_0 - Update to version 1.12.2: + Bugs fixed: bgo#764025. ==== gtk2 ==== Subpackages: gtk2-data gtk2-devel gtk2-immodule-amharic gtk2-immodule-inuktitut gtk2-immodule-thai gtk2-immodule-vietnamese gtk2-immodule-xim gtk2-tools gtk2-tools-32bit libgtk-2_0-0 libgtk-2_0-0-32bit typelib-1_0-Gtk-2_0 - Add gtk2-updateiconcache_sort.patch: have gtk-update-icon-cache sort directory entries when creating caches. The build system uses this to produce an embedded cache for the stock icons. With this, we can have reproducible builds. ==== iproute2 ==== Version update (4.11 -> 4.12) - Update to new upstream release 4.12 * tc: add support for invisible qdisc dumping * ip route: support ttl-propagation attribute * ip route: support for MPLS LWT ttl attribute * libnetlink: add flag to suppress print of nlmsg error * ip netconf: show all address families by default * ip vrf: show command name next to pid * ip: add ip sr command to control SR-IPv6 internal structures * ip route: add support for SR-IPv6 lwtunnel encapsulation * ip link: expose packet marking atribute of tunnels * bpf: add support for generic xdp * ip xfrm: add xfrm state crypto offload * devlink: add support for pipeline debug (dpipe) * tc: reflect HW offload status * vxlan: add support for modifying vxlan device attributes * pedit: introduce IPv6 support * ip: add support for more MPLS labels * devlink: add option to set and show eswitch encapsulation support * ip: add handling for new CAN netlink interface * ip vrf: Add show command * ip link: add vxcan support * ip link: support gre6 encaplimit option * ip mroute: add table output to show command * ip neigh: allow flush FAILED neighbour entry * ip tunnel: add support for mpls/ip to ipip and sit tunnels ==== jasper ==== Subpackages: libjasper-devel libjasper1 libjasper1-32bit - Other bugs fixed by existing patches: * jasper-CVE-2016-9395.patch - bsc#1010756, CVE-2016-9394: assertion in jas_matrix_t * jas_seq2d_create(int, int, int, int): Assertion `xstart <= xend && ystart <= yend' - bsc#1010757, CVE-2016-9392: pc_dec.c:1637: void calcstepsizes(uint_fast16_t, int, uint_fast16_t *): Assertion `!((expn + (numrlvls - 1) - (numrlvls - 1 - ((bandno > 0) ? ((bandno + 2) / 3) : (0)))) & (~0x1f))' failed. - bsc#1010766, CVE-2016-9393: jpc_t2cod.c:297: int jpc_pi_nextrpcl(jpc_pi_t *): Assertion `pi->prcno pirlvl->numprcs' failed. - bsc#1010977, CVE-2016-9395: jas_seq.c:90: jas_matrix_t * jas_seq2d_create(int, int, int, int): Assertion `xstart <= xend && ystart <= yend' failed. - Other bugs fixed in current version: * bsc#1010774, CVE-2016-9390: jas_seq.c:90: jas_matrix_t * jas_seq2d_create(int, int, int, int): Assertion `xstart <= xend && ystart <= yend' failed. * bsc#1010782, CVE-2016-9391: jpc_bs.c:197: long jpc_bitstream_getbits(jpc_bitstream_t *, int): Assertion `n >= 0 && n < 32' failed. * bsc#1010968, CVE-2016-9389: Assertion `((c1)->numcols_) == numcols && ((c2)->numcols_) == numcols' failed. * bsc#1010975, CVE-2016-9388: ras_dec.c:330: int ras_getcmap(jas_stream_t *, ras_hdr_t *, ras_cmap_t *): Assertion `numcolors <= 256' failed. * bsc#1010960, CVE-2016-9387: jas_seq.c:90: jas_matrix<= yend' failed. - Added patch: * jasper-CVE-2016-9262.patch + Fix for Multiple overflow vulnerabilities leading to use after free (bsc#1009994, CVE-2016-9262) - Added patch: * jasper-CVE-2017-1000050.patch + Upstream fix for NULL Pointer Dereference jp2_encode (bsc#1047958, CVE-2017-1000050) ==== jsoncpp ==== Version update (1.8.0 -> 1.8.1) - Update to version 1.8.1: * meson.build * Minor bug fixes and optimizations * Improved docs ==== kactivities-stats ==== Version update (5.35.0 -> 5.36.0) - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kactivities5 ==== Version update (5.35.0 -> 5.36.0) Subpackages: kactivities5-devel kactivities5-imports libKF5Activities5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== karchive ==== Version update (5.35.0 -> 5.36.0) Subpackages: karchive-devel libKF5Archive5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kauth ==== Version update (5.35.0 -> 5.36.0) Subpackages: kauth-devel libKF5Auth5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Add missing newline in the apidox * Expand documentation of Persistence attribute * [FEATURE] Option to build & install QCH file with the public API dox * Check error status after every PolKitAuthority usage ==== kbookmarks ==== Version update (5.35.0 -> 5.36.0) Subpackages: kbookmarks-devel libKF5Bookmarks5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Emit errors when keditbookmarks is missing (kde#303830) * [FEATURE] Option to build & install QCH file with the public API dox ==== kcm_sddm ==== - Add upstream patch to fix parsing of certain session desktop files (kde#381982): * 0001-Session-file-parser-Support-sections-and-respect-the.patch - Add patch to avoid showing default.desktop as duplication (kde#381982): * 0002-Support-default.session-symlink.patch - Keep set-default-session-to-plasma5-for-autologin.patch as-is to not break on 42.2 (no default.desktop), plasma5.desktop still makes sense ==== kcmutils ==== Version update (5.35.0 -> 5.36.0) Subpackages: kcmutils-devel libKF5KCMUtils5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kcodecs ==== Version update (5.35.0 -> 5.36.0) Subpackages: kcodecs-devel libKF5Codecs5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kcompletion ==== Version update (5.35.0 -> 5.36.0) Subpackages: kcompletion-devel libKF5Completion5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Add KF6-TODO to make KComboBox::minimumSizeHint() public * Add .arcconfig * [FEATURE] Option to build & install QCH file with the public API dox ==== kconfig ==== Version update (5.35.0 -> 5.36.0) Subpackages: kconf_update5 kconfig-devel libKF5ConfigCore5 libKF5ConfigGui5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Fix for CMake 3.9. * [FEATURE] Option to build & install QCH file with the public API dox ==== kconfigwidgets ==== Version update (5.35.0 -> 5.36.0) Subpackages: kconfigwidgets-devel libKF5ConfigWidgets5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Remove duplicated KCONFIGWIDGETS_EXPORT from source file, already in header * API dox: add missing @since to showStatusbar(..., Func, ...) * API dox: fix wrong semicolon resulting in broken dox * API dox: add missing KSA::showMenubar(const QObject*, Func slot, QObject*) * API dox: Fix typo which broke KStandardAction dox (adding e.g. Q_ASSERT) * API dox: add missing @endlink for @link * [FEATURE] Option to build & install QCH file with the public API dox ==== kcoreaddons ==== Version update (5.35.0 -> 5.36.0) Subpackages: kcoreaddons-devel libKF5CoreAddons5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Use FindInotify.cmake to decide wheter inotify is available. * [FEATURE] Option to build & install QCH file with the public API dox * Fix KDirWatch unit test to use set KDIRWATCH_METHOD again ==== kcrash ==== Version update (5.35.0 -> 5.36.0) Subpackages: kcrash-devel libKF5Crash5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kdbusaddons ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdbusaddons-devel kdbusaddons-tools libKF5DBusAddons5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kdeclarative ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdeclarative-components kdeclarative-devel libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * KKeySequenceItem: make it possible to record Ctrl+Num+1 as a shortcut. * Start drag with press and hold on touch events (kde#368698) * Don't rely on QQuickWindow delivering QEvent::Ungrab as mouseUngrabEvent (as it no longer does in Qt 5.8+) (kde#380354) * [FEATURE] Option to build & install QCH file with the public API dox - Drop upstreamed patches: * 0001-Don-t-rely-on-QQuickWindow-delivering-QEvent-Ungrab-.patch ==== kded ==== Version update (5.35.0 -> 5.36.0) Subpackages: kded-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kdelibs4support ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdelibs4support-devel libKF5KDELibs4Support5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Search for KEmoticons, which is a dependency per the CMake config.cmake.in. (kde#381839) ==== kdesignerplugin ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdesignerplugin-devel kdesignerplugin-lang - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kdesu ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdesu-devel libKF5Su5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kdewebkit ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdewebkit-devel libKF5WebKit5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kdnssd-framework ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdnssd-framework-devel libKF5DNSSD5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kdoctools ==== Version update (5.35.0 -> 5.36.0) Subpackages: kdoctools-devel libKF5DocTools5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * New function to retrieve the documentation directories * Fix a few MSVC warnings ==== kemoticons ==== Version update (5.35.0 -> 5.36.0) Subpackages: kemoticons-devel libKF5Emoticons5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kfilemetadata5 ==== Version update (5.35.0 -> 5.36.0) Subpackages: kfilemetadata5-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Fix configure with Qt5Multimedia disabled. * add an extractor using qtmultimedia * [FEATURE] Option to build & install QCH file with the public API dox * fix warnings from clazy with the default warning level ==== kglobalaccel ==== Version update (5.35.0 -> 5.36.0) Subpackages: kglobalaccel-devel kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kguiaddons ==== Version update (5.35.0 -> 5.36.0) Subpackages: kguiaddons-devel libKF5GuiAddons5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== khtml ==== Version update (5.35.0 -> 5.36.0) Subpackages: khtml-devel libKF5KHtml5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * tests: missed one source for kencodingdetectortest * cmake: use ecm_add_test more - Add 0001-Support-SVG-too.patch to make Konqueror's startup page show icons with the breeze theme (boo#1011092, kde#355872) ==== ki18n ==== Version update (5.35.0 -> 5.36.0) Subpackages: ki18n-devel libKF5I18n5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Make sure that the tsfiles target is generated * DOXYGEN_PREPROC -> DOXYGEN_SHOULD_SKIP_THIS, to standardize within KF5 * Remove custom doxygen config files * [FEATURE] Option to build & install QCH file with the public API dox ==== kiconthemes ==== Version update (5.35.0 -> 5.36.0) Subpackages: kiconthemes-devel libKF5IconThemes5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * More details about deploying icon themes on Mac & MSWin * [FEATURE] Option to build & install QCH file with the public API dox * Change panel icon size default to 48. ==== kidletime ==== Version update (5.35.0 -> 5.36.0) Subpackages: kidletime-devel libKF5IdleTime5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kimageformats ==== Version update (5.35.0 -> 5.36.0) - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kinit ==== Version update (5.35.0 -> 5.36.0) Subpackages: kinit-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kio ==== Version update (5.35.0 -> 5.36.0) Subpackages: kio-core kio-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [KNewFileMenu] Hide "Link To Device" menu if it would be empty * Use KIO::rename instead of KIO::moveAs in setData (kde#380897, kde#380898) * Get the doc dirs with the newly exported function * Fix drop menu position on Wayland * KUrlRequester: Set NOTIFY signal to textChanged() for text property. * [KOpenWithDialog] HTML-escape file name * tests: dropjobtest: register KIO::CopyJob* as metatype * tests: fix krununittest when install prefix has spaces * [FEATURE] Option to build & install QCH file with the public API dox * KCoreDirLister::cachedItemForUrl: don't create the cache if it didn't exist * Use "data" as filename when copying data urls (kde#379093) ==== kitemmodels ==== Version update (5.35.0 -> 5.36.0) Subpackages: kitemmodels-devel libKF5ItemModels5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kitemviews ==== Version update (5.35.0 -> 5.36.0) Subpackages: kitemviews-devel libKF5ItemViews5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kiwi-config-openSUSE ==== - Change bootkernel to 'default': we don't use other kernels for the live image for a long time already. ==== kjobwidgets ==== Version update (5.35.0 -> 5.36.0) Subpackages: kjobwidgets-devel libKF5JobWidgets5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Expand apidox of KJobWidget::setWindow() * Add .arcconfig * [FEATURE] Option to build & install QCH file with the public API dox ==== kjs ==== Version update (5.35.0 -> 5.36.0) Subpackages: kjs-devel kjs-devel-lang libKF5JS5 libKF5JSApi5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kjsembed ==== Version update (5.35.0 -> 5.36.0) Subpackages: kjsembed-devel libKF5JsEmbed5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== kmediaplayer ==== Version update (5.35.0 -> 5.36.0) Subpackages: kmediaplayer-devel libKF5MediaPlayer5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== knewstuff ==== Version update (5.35.0 -> 5.36.0) Subpackages: knewstuff-core-devel knewstuff-devel libKF5NewStuff5 libKF5NewStuffCore5 - Move unversioned files to a new knewstuff package to be more compliant with the SLPP - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * install categories file * Revert some part of eb2e65a882f0b95efeefe0115d9a942861768ba8 * Expand KNewStuff documentation * Fix incorrect error detection for missing knsrc files * Extend unittests to test stable sort. * Expose and use Engine's page size variable * Fix warnings * cmake: use ecm_add_test more * Use the right scope for the installpath variable * add .arcconfig file * Make it possible to use QXmlStreamReader to read a KNS registry file * [FEATURE] Option to build & install QCH files with the public API dox ==== knotifications ==== Version update (5.35.0 -> 5.36.0) Subpackages: knotifications-devel libKF5Notifications5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== knotifyconfig ==== Version update (5.35.0 -> 5.36.0) Subpackages: knotifyconfig-devel libKF5NotifyConfig5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kpackage ==== Version update (5.35.0 -> 5.36.0) Subpackages: kpackage-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Added kpackage-genericqml.desktop * tests: forgot to use LINK_LIBRARIES for ecm_add_test * cmake: use ecm_add_test more * [FEATURE] Option to build & install QCH file with the public API dox ==== kparts ==== Version update (5.35.0 -> 5.36.0) Subpackages: kparts-devel libKF5Parts5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kpeople5 ==== Version update (5.35.0 -> 5.36.0) Subpackages: kpeople5-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Add since tags to all documented public classes * Remove outdated Mainpage.dox file * [FEATURE] Option to build & install QCH file with the public API dox * Use explicit flag constructor instead of nullptr ==== kplotting ==== Version update (5.35.0 -> 5.36.0) Subpackages: kplotting-devel libKF5Plotting5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kpty ==== Version update (5.35.0 -> 5.36.0) Subpackages: kpty-devel libKF5Pty5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * tests: fix bash path in KPtyProcessTest::test_pty_basic * [FEATURE] Option to build & install QCH file with the public API dox ==== kross ==== Version update (5.35.0 -> 5.36.0) Subpackages: kross-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None ==== krunner ==== Version update (5.35.0 -> 5.36.0) Subpackages: krunner-devel libKF5Runner5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Add missing Q_OBJECT macro * Add arcconfig * cmake: use ecm_add_tests * [FEATURE] Option to build & install QCH file with the public API dox ==== kservice ==== Version update (5.35.0 -> 5.36.0) Subpackages: kservice-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Fix MSVC warning * [FEATURE] Option to build & install QCH file with the public API dox * tests: kautostarttest: fix also expected value * tests: use cmd.exe as TryExec on Windows ==== ktexteditor ==== Version update (5.35.0 -> 5.36.0) Subpackages: ktexteditor-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Fix cpu usage spiking after showing vi command bar (kde#376504) * Fix jumpy scrollbar-dragging when mini-map is enabled. * Jump to the clicked scrollbar position when minim-map is enabled. (kde#368589) * [FEATURE] Option to build & install QCH file with the public API dox ==== ktextwidgets ==== Version update (5.35.0 -> 5.36.0) Subpackages: ktextwidgets-devel libKF5TextWidgets5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kunitconversion ==== Version update (5.35.0 -> 5.36.0) Subpackages: kunitconversion-devel libKF5UnitConversion5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kwallet ==== Version update (5.35.0 -> 5.36.0) Subpackages: kwallet-devel kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== kwayland ==== Version update (5.35.0 -> 5.36.0) Subpackages: kwayland-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [autotests/server] Check whether test is run as root * [FEATURE] Option to build & install QCH file with the public API dox ==== kwidgetsaddons ==== Version update (5.35.0 -> 5.36.0) Subpackages: kwidgetsaddons-devel libKF5WidgetsAddons5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Update kcharselect-data to Unicode 10.0 * Another missing since tag. * Add missing @since tag * [FEATURE] Option to build & install QCH file with the public API dox ==== kwindowsystem ==== Version update (5.35.0 -> 5.36.0) Subpackages: kwindowsystem-devel libKF5WindowSystem5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * cmake: use ecm_add_test more * [FEATURE] Option to build & install QCH file with the public API dox ==== kxmlgui ==== Version update (5.35.0 -> 5.36.0) Subpackages: kxmlgui-devel libKF5XmlGui5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * API dox: add notes to KActionCollection about QAction ownership handling * KKeySequenceWidget: make it possible to record Ctrl+Num+1 as a shortcut. * Revert "When building menu hyerarchies, parent menus to their containers" * Revert "use transientparent directly" * [FEATURE] Option to build & install QCH file with the public API dox ==== kxmlrpcclient5 ==== Version update (5.35.0 -> 5.36.0) Subpackages: kxmlrpcclient5-devel libKF5XmlRpcClient5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Fix compile on window * Add since tags * Revert "Replace fromUtf8 with QStringLiteral to save allocations" * [FEATURE] Option to build & install QCH file with the public API dox ==== libKF5ModemManagerQt ==== Version update (5.35.0 -> 5.36.0) Subpackages: libKF5ModemManagerQt-devel libKF5ModemManagerQt6 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== libKF5NetworkManagerQt ==== Version update (5.35.0 -> 5.36.0) Subpackages: libKF5NetworkManagerQt-devel libKF5NetworkManagerQt6 - Add Fix-undefined-enums.patch to make it build with NM 1.0.x on Leap 42 (kde#382051) - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Too many changes to list here ==== libgcj-gcc6 ==== Version update (6.3.1+r248589 -> 6.4.1+r249957) Subpackages: libgcj-devel-gcc6 libgcj-jar-gcc6 libgcj_bc1 - Add #nospeccleaner to all spec files. - Update to gcc-6-branch head (r249957). * Includes GCC 6.4 release. - Update plugin enablement guard to use %sle_version. - Bump libffi version in libffi.pc to 3.99999. ==== libgphoto2 ==== Subpackages: libgphoto2-6 libgphoto2-6-32bit libgphoto2-devel - libgphoto2-fix-fuji.patch: check before using a ptp property that is only available in some updated Fuji cameras (bsc#1048853) ==== libopenmpt ==== Version update (0.2.8043~beta23 -> 0.2.8461~beta26) Subpackages: libmodplug1 libopenmpt0 - Version update to 0.2.8461-beta26 bsc#1048666 CVE-2017-11311: * various small fixes and seciruity tweaks ==== libsecret ==== Subpackages: libsecret-1-0 typelib-1_0-Secret-1 - Add libsecret-secret-size.patch: Ensure that generated secret occupies the same number of bytes as prime. Eliminates random errors while libsecret tries to talk to gnome-keyring (bgo#778357). ==== libvirt-python ==== Version update (3.4.0 -> 3.5.0) - Update to 3.5.0 - Add all new APIs and constants in libvirt 3.5.0 ==== libyui-ncurses ==== Version update (2.48.2 -> 2.48.3) - bnc#1047145 - patch to make the package buildable by gcc7 (by werner@suse.com) - 2.48.3 ==== libzypp ==== Version update (16.13.0 -> 16.14.0) - repo refresh: Re-probe if the repository type changes (bsc#1048315) - MediaCurl: Propagate proper error code to DownloadProgressReport (bsc#1047785) - Allow to trigger an appdata refresh unconditionally (bsc#1009745) - Support custom repo variables defined in /etc/zypp/vars.d (fixes #68) - rename: handle EXDEV error on OverlayFS - version 16.14.0 (0) ==== libzypp-plugin-appdata ==== Version update (1.0+git.20150408 -> 1.0.1+git.20170629) - Bump version to 1.0.1+git.20170629: We were originally at 1.0.1 before switching to a git based source service, then 'downgraded' to 1.0+git, which was a mistake. ==== lightdm ==== Subpackages: liblightdm-gobject-1-0 lightdm-lang - Update lightdm-sysconfig-support.patch: deprecate the use of DEFAULT_WM in /etc/sysconfig/windowmanager. The new way of setting the system default WM is by means of update-alternatives, handling the /usr/share/xsessions/default.desktop (boo#1030873). ==== llvm4 ==== Subpackages: clang4 libLLVM4 libLTO4 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang4 libomp4-devel - build fixes for armv6 (skip testsuite as it requires 64bit, set the list of targets to include ARM and remove triplet hack) - Include provides and conflics in baselibs.conf for llvm4-devel, clang4-devel, llvm4-LTO-devel, and llvm4-gold. ==== lomoco ==== - require %fillup_prereq (boo#1040198) ==== loudmouth ==== Subpackages: libloudmouth-1-0 loudmouth-devel - Remove gnutls requirement from devel pkg, openssl is used - Remove double glib2 requirement, pkgconfig handles this already ==== mariadb ==== Version update (10.1.22 -> 10.1.25) Subpackages: libmysqlclient-devel libmysqlclient18 libmysqlclient_r18 libmysqld18 mariadb-client mariadb-errormessages - update to MariaDB 10.1.25 GA * notable changes * MariaDB can no longer be compiled with OpenSSL version 0.9.8 and below. The last 0.9.8 release was in December 2015, it is out of support and is no longer getting security fixes. * MariaDB Backup is now beta * release notes and changelog: * https://mariadb.com/kb/en/mariadb/mariadb-10125-release-notes * https://mariadb.com/kb/en/mariadb/mariadb-10125-changelog * refresh mariadb-10.1.12-fortify-and-O.patch * remove mariadb-10.1.22-xtradb_null_checks.patch (MDEV-12358), a fix was merged upstream * update file lists for new man-pages and tools - switch from 'Restart=on-failure' to 'Restart=on-abort' in mysql.service in order to follow the upstream ==== mlocate ==== Subpackages: mlocate-lang - We moved locks to /run thus do not rely on symlinks ==== mlterm ==== Version update (3.7.2 -> 3.8.2) - Version update to 3.8.2 release: * Support for wayland * Support page of VT400 or later. (NP, PP, PPA, PPR, PPB, DECCRA and DECLRP) * Support DECRQDE, DECSCUSR(Ps = 3,4,5,6), DECATC, DECRQM, DECRQMH, DECSCA, DECERA, DECSEL and DECSED. * Support SGR of DECRQSS. * Bunch of bugfixes - Add all the named dependencies to the package to make sure all the features are properly enabled, configure script does not fail on dependencies not found - Remove libotf as now rendering is done via harfbuzz - Disable fctix input method as it fails to compile upstream - Install svg icons from the archive rather than our distributed png - Add portability patch mlterm-portability.patch to make rpmlint happy ==== mpg123 ==== Version update (1.25.1 -> 1.25.2) Subpackages: libmpg123-0 libmpg123-0-32bit mpg123-esound mpg123-openal mpg123-pulse - Update to version 1.25.2 libmpg123: * Extend pow tables for layer III to properly handle files with i-stereo and 5-bit scalefactors. Never observed them for real, just as fuzzed input to trigger the read overflow. Note: This one goes on record as CVE-2017-11126, calling remote denial of service. While the accesses are out of bounds for the pow tables, they still are safely within libmpg123's memory (other static tables). Just wrong values are used for computation, no actual crash unless you use something like GCC's AddressSanitizer, nor any information disclosure. * Avoid left-shifts of negative integers in layer I decoding. ==== mutter ==== Subpackages: libmutter-0-0 mutter-data - Add RGB16_565 format to support 16-bit color depth sessions (FATE#323412, bgo#781704, bsc#1024748) mutter-iconcache-Support-RGB16_565-format-for-16-bit-color-.patch ==== nautilus ==== Version update (3.24.1 -> 3.24.2.1) Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension1 - Update to version 3.23.2.1: + Release with autotools. - Changes from version 3.24.2: + Hide desktop icons autostart in Ubuntu. + Confirm file name change in dialog conflicts with return. + Fix search activation not changing current directory. + Don't wrap names after . or _ + Fix rubberband selection when using wacom tablets. + Fix crash in batch renaming. ==== ncurses ==== Subpackages: libncurses6 libncurses6-32bit ncurses-devel ncurses-utils tack terminfo terminfo-base - Add Ncurses patch 20170708 + add a note to tic manual page about -W versus -f options. + correct a limit-check in fixes from 20170701 (report by Sven Joachim). - This also for bug bsc#1047964 and bug bsc#1047965 - Add ncurses patch 20170701 (bsc#1046853, bsc#1046858) + modify update_getenv() in db_iterator.c to ensure that environment variables which are not initially set will be checked later if an application happens to set them (patch by Guillaume Maudoux). + remove initialization-check for calling napms() in the term-driver configuration; none is needed. + add help-screen to test/test_getstr.c and test/test_get_wstr.c + improve compatibility between different configurations of new_prescr, fixing a case with threaded code and term-driver where c++/demo did not work (cf: 20160213). + the fixes for Redhat #1464685 obscured a problem subsequently reported in Redhat #1464687; the given test-case was no longer reproducible. Testing without the fixes for the earlier reports showed a problem with buffer overflow in dump_entry.c, which is addressed by reducing the use of a fixed-size buffer. + add/improve checks in tic's parser to address invalid input (Redhat #1464684, #1464685, #1464686, #1464691). + alloc_entry.c, add a check for a null-pointer. + parse_entry.c, add several checks for valid pointers as well as one check to ensure that a single character on a line is not treated as the 2-character termcap short-name. + fix a memory leak in delscreen() (report by Bai Junq). + improve tracemunch, showing thread identifiers as names. + fix a use-after-free in NCursesMenu::~NCursesMenu() + further amend incorrect calls for memory-leaks from 20170617 changes (report by Allen Hewes). - Add ncurses patch 20170624 + modify c++/etip.h.in to accommodate deprecation of throw() and throws() in c++17 (prompted by patch by Romain Geissler). + remove some incorrect calls for memory-leaks from 20170617 changes (report by Allen Hewes). + add test-programs for termattrs and term_attrs. + modify _nc_outc_wrapper to use the standard output if the screen was not initialized, rather than returning an error. + improve checks for low-level terminfo functions when the terminal has not been initialized (Redhat #1345963). + modify make_hash to allow building with address-sanitizer, assuming that --disable-leaks is configured. + amend changes for number_format() in 20170506 to avoid undefined behavior when shifting (patch by Emanuele Giaquinta). - Add ncurses patch 20170617 + fill in some places where TERMTYPE2 vs TERMTYPE was not used (report by Allen Hewes). + use ExitTerminfo() internally in error-exits for ncurses' setupterm to help with leak checking. + use ExitProgram() in error-exit from initscr() to help with leak checking. + review test-programs, adding checks for cases where the terminal cannot be initialized. - Add ncurses patch 20170610 + add option "-xp" to picsmap.c, to use init_extended_pair(). + make simple performance fixes for picsmap.c + improve aspect ratio of images read from "convert" in picsmap.c - Add ncurses patch 20170603 + add option to picsmap to use color-palette files, e.g., for mapping to xterm-256color. + move the data in SCREEN used for the alloc_pair() function to the end, to restore compatibility between ncurses/ncursesw libtinfo (report/patch by Miroslav Lichvar). + add build-time utility "report_offsets" to help show when the various configurations of tinfo library are compatible or not. - Remove patch ncurses-6.0-crashw.patch as a temporary as now part of patch level 20170603 ==== nghttp2 ==== Version update (1.22.0 -> 1.24.0) - Drop doc building - Rename python subpackage to python2 - Update to version 1.24.0: * doc: README.rst: fix typo (Patch from Simone Basso) (GH-947) * doc: fix up grammar in submit_trailer docs (Patch from Benjamin Peterson) (GH-945) * doc: fix cleaning in out-of-tree builds (Patch from Benjamin Peterson) (GH-938) * nghttp: Fix bug that upgrade fails if reason-phrase is missing (GH-949) * nghttpx: Verify OCSP response using trusted CA certificates (GH-943) * nghttpx: Set default minimum TLS version to TLSv1.2 (GH-937) - Changes for version 1.23.1: * nghttpx: Fix crash in OCSP response verification - Changes for version 1.23.0: * lib: nghttp2_session: Allow for compiling library with -DNDEBUG set (Patch from Angus Gratton) (GH-919) * lib: Treat incoming invalid regular header field as stream error (GH-900) * lib: Call nghttp2_on_invalid_frame_callback if altsvc validation fails (GH-904) * doc: spelling mistake in arguments to build nghttp apps (Patch from Soham Sinha) (GH-925) * doc: Add notes for installation on linux systems (Patch from Tapanito) (GH-917) * doc: Clarify the effect of nghttp2_option_set_no_http_messaging * nghttpx: Verify OCSP response (GH-929) * nghttpx: Fix certificate selection based on pub key algorithm (GH-924) * nghttpx: Fix certificate indexing bug * nghttpx: Run OCSP at startup (GH-922) * nghttpx: Wildcard path matching (GH-914) * nghttpx: Forward multiple via, xff, and xfp header fields (GH-903) * nghttp: Add -y, --no-verify-peer option to suppress peer verify warn (GH-906) ==== numactl ==== Subpackages: libnuma1 - Update to latest HEAD (ea3a70681c2f523fe58e1d44527f478ca76db74e) * Fix usage of __GLIBC_PREREQ for non-glibc toolchains * Fix usage of __GLIBC_PREREQ for non-glibc toolchains * Clean up numa_error() calls. * Handle sched_getaffinity() failing with errno != EINVAL. * "Further more" should be a single word * Fix for numa_police_memory() * Segment fault when numa nodes not sequential or contiguous * Update prototype of get_mempolicy ==== obs-service-tar_scm ==== Version update (0.7.0.1497870887.fa1750b -> 0.8.0.1499787575.2419460) Subpackages: obs-service-obs_scm-common - Update to version 0.8.0.1499787575.2419460: * [test] refactor of fake classes * [bugfix] fix UnboundLocalError: local variable 'parent_tag' - Update to version 0.8.0.1499787575.2419460: * [dist] changed to %py_compile in spec file * [bugfix] fixes issue #173 * [bugfix] Decoupled self.scm from class name in TarSCM/scm/* * [lint] make tests/unittestcases.py flake8 ready * [lint] more fixes for pylint readiness * [lint] refactor unittestcases.py * [test] increase cov for TarSCM.archive from 61% to 92% * [doc] added comment to --use-obs-scm * [test] refactor of fake classes * [bugfix] fix UnboundLocalError: local variable 'parent_tag' - hotfix runtime of obs_scm - Update to version 0.8.0.1498846582.8799787: * fix for gh issue #169 * new version placeholder for empty version string * fix for bzr locale problem in testsuite * pylint and flake8 in testsuite for better code quality * code cleanup to be more pylint and flake8 compatible ==== openexr ==== Subpackages: libIlmImf-2_2-22 libIlmImfUtil-2_2-22 openexr-devel - Cleanup a bit with spec-cleaner ==== openldap2 ==== Version update (2.4.44 -> 2.4.45) Subpackages: libldap-2_4-2 libldap-2_4-2-32bit libldap-data openldap2-client openldap2-devel - added overlay trace to package openldap2-contrib - Upgrade to upstream 2.4.45 release - removed obsolete 0010-Enforce-minimum-DH-size-of-1024.patch and 0012-use-system-wide-cert-dir-by-default.patch - added 0013-ITS-8692-let-back-sock-generate-increment-line.patch for supporting modify increment operations with back-sock - added overlay addpartial to package openldap2-contrib - Remove legacy daemon control that was used to migrate from SLE 11 to 12. (bsc#1038405) - There is no change made about the package itself, this is only copying over some changelog texts from SLE package: - bug#976172 owned by hguo@suse.com: openldap2 - missing /usr/share/doc/packages/openldap2/guide/admin/guide.html - bug#916914 owned by varkoly@suse.com: VUL-0: CVE-2015-1546: openldap2: slapd crash in valueReturnFilter cleanup - [fate#319300](https://fate.suse.com/319300) - [CVE-2015-1545](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1545) - bug#905959 owned by hguo@suse.com: L3-Question: Are multiple "Connection 0" in a Multi Master setup normal ? - [CVE-2015-1546](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1546) - bug#916897 owned by varkoly@suse.com: VUL-0: CVE-2015-1545: openldap2: slapd crashes on search with deref control and empty attr list - Drop binutils requirement; the code using /usr/bin/strings has been dropped in openSUSE:Factory/openldap2 revision 112. ==== openssl ==== Subpackages: libopenssl-devel - Obsolete openssl-debuginfo * the package doesn't exist any more, has been replaced by openssl-{so_version}-debuginfo (bsc#1040172) ==== openssl-1_0_0 ==== Subpackages: libopenssl-1_0_0-devel libopenssl1_0_0 libopenssl1_0_0-32bit - Add Provides and Conflicts for -devel package in baselibs.conf. ==== orc ==== Version update (0.4.26 -> 0.4.27) Subpackages: liborc-0_4-0 liborc-0_4-0-32bit - Update to version 0.4.27: + sse: preserve non volatile sse registers, needed for MSVC. + x86: don't hard-code register size to 0 in orc_x86_emit_*() funcs. + Fix incorrect asm generation on 64-bit Windows with MSVC. + Add support for building using the Meson build system. ==== oxygen5-icon-theme ==== Version update (5.35.0 -> 5.36.0) Subpackages: oxygen5-icon-theme-large - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * None - Add missing media-mount action icon for the device notifier (boo#1035476, kde#373654) ==== pango ==== Version update (1.40.6 -> 1.40.7) Subpackages: libpango-1_0-0 libpango-1_0-0-32bit pango-devel typelib-1_0-Pango-1_0 - Update to version 1.40.7: + Some fixes for meson build support. + Don't change fonts for variation selectors (bgo#781123). + Fix some bugs in the libthai glue layer. + Pass text along when calling into cairo (bgo#784394). ==== pciutils-ids ==== Version update (20170525 -> 20170710) - Update to 20170710 ==== perl-Class-MethodMaker ==== - Add reproducible.patch to sort hashes to fix build-compare ==== perl-Exception-Class ==== Version update (1.42 -> 1.43) - updated to 1.43 see /usr/share/doc/packages/perl-Exception-Class/Changes 1.43 2017-07-09 - The full_message() method in Exception::Class::Base now calls message() instead of accessing the object's hash key. This makes it easier to override message() in a subclass. Patch by Alexander Batyrshin. PR #11. ==== perl-Moose ==== Version update (2.2005 -> 2.2006) - updated to 2.2006 see /usr/share/doc/packages/perl-Moose/Changes 2.2006 2017-07-12 [BUG FIXES] - Passing roles as a mix of role names and role objects to Moose::Meta::class->create_anon_class could throw a bogus exception about 'Roles with parameters cannot be cached ...'. Fixed by Olivier Mengué. Based on PR #117. ==== perl-Parse-Yapp ==== Version update (1.05 -> 1.2) - updated to 1.2 see /usr/share/doc/packages/perl-Parse-Yapp/Changes ==== perl-Specio ==== Version update (0.37 -> 0.38) - updated to 0.38 see /usr/share/doc/packages/perl-Specio/Changes 0.38 2017-07-01 - Simplify checks for overloading to not call overload::Overloaded(). Just checking the return value of overload::Method() is sufficient. ==== plasma-framework ==== Version update (5.35.0 -> 5.36.0) Subpackages: plasma-framework-components plasma-framework-devel plasma-framework-private - Add patch to revert upstream commit to workaround notifications appearing at the wrong location (kde#381130): * 0001-Revert-recreate-plasmashellsurf-on-exposed-destoy-on.patch - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Use #if instead of #ifdef * Fix the build without wayland/kwayland * Make sure size is final after showEvent * Fix vlc tray icon margins * Fix vlc tray icon color scheme * Revert "Make every applet its own focus scope" * Set Containments to have focus within the view (kde#381124) * generate the old key before updating enabledborders (kde#378508) * show show password button also if empty text (kde#378277) * Make every applet its own focus scope * Emit usedPrefixChanged when prefix is empty * don't switch colors on new themes * tests: run i18ndcheck only when bash is found * Port a bunch of classes away from Plasma::Package * cmake: use ecm_add_test more * src/plasmaquick/dialog.cpp - fix build without kwayland * [FEATURE] Option to build & install QCH file with the public API dox ==== plasma5-workspace ==== Subpackages: drkonqi5 plasma5-workspace-devel plasma5-workspace-libs - Add Notifications-Check-for-corona-to-avoid-crash.patch to prevent a Plasma crash when removing a panel that has a system tray with the Notifications applet (boo#1046500, kde#378508) ==== prison-qt5 ==== Version update (5.35.0 -> 5.36.0) - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * [FEATURE] Option to build & install QCH file with the public API dox ==== python-gnome ==== Subpackages: python-bonobo python-gconf python-gnome-devel python-gnomecanvas python-gnomevfs - Fix build errors - Spec file cleanup ==== python-ldap ==== Version update (2.4.40 -> 2.4.41) - update to upstream release 2.4.41 (small LDIF parser enhancement) ==== python-matplotlib ==== Subpackages: python3-matplotlib python3-matplotlib-cairo python3-matplotlib-gtk3 python3-matplotlib-tk - Add 0001-Fix-include-path-for-system-libqhull.patch Avoid falling back to outdated bundled version ==== python-python-dateutil ==== Version update (2.6.0 -> 2.6.1) Subpackages: python2-python-dateutil python3-python-dateutil - Update to version 2.6.1 * Updated zoneinfo file to 2017b. (gh pr #395) * Added Python 3.6 to CI testing (gh pr #365) * Removed duplicate test name that was preventing a test from being run. * Reported and fixed by @jdufresne (gh pr #371) * Fixed testing of folds and gaps, particularly on Windows (gh pr #392) * Fixed deprecated escape characters in regular expressions. Reported by @nascheme and @thierryba (gh issue #361), fixed by @thierryba (gh pr #358) * Many PEP8 style violations and other code smells were fixed by @jdufresne (gh prs #358, #363, #364, #366, #367, #368, #372, [#374], #379, #380, #398) * Improved performance of tzutc and tzoffset objects. (gh pr [#391]) * Fixed issue with several time zone classes around DST transitions in any zones with +0 standard offset (e.g. Europe/London) (gh issue #321, pr #390) * Fixed issue with fuzzy parsing where tokens similar to AM/PM that are in the end skipped were dropped in the fuzzy_with_tokens list. Reported and fixed by @jbrockmendel (gh pr #332). * Fixed issue with parsing dates of the form X m YY. Reported by @jbrockmendel. (gh issue #333, pr #393) * Added support for parser weekdays with less than 3 characters. Reported by @arcadefoam (gh issue #343), fixed by @jonemo (gh pr #382) * Fixed issue with the addition and subtraction of certain relativedeltas. Reported and fixed by @kootenpv (gh issue #346, pr #347) * Fixed issue where the COUNT parameter of rrules was ignored if 0. Fixed by @mshenfield (gh pr #330), reported by @vaultah (gh issue #329). * Updated documentation to include the new tz methods. (gh pr [#324]) * Update documentation to reflect that the parser can raise TypeError, reported and fixed by @tomchuk (gh issue #336, pr [#337]) * Fixed an incorrect year in a parser doctest. Fixed by @xlotlu (gh pr #357) * Moved version information into _version.py and set up the versions more granularly. - Use recommended source URL format ==== python-typing ==== - only build for python3<3.5 ==== python3-gst ==== Version update (1.12.1 -> 1.12.2) - Update to version 1.12.2: + No changes, stable version bump only. ==== qhull ==== Subpackages: libqhull7-7_2_0 qhull-devel - RPM group fix - Compact description a bit ==== qtcurve-kde4 ==== Subpackages: libqtcurve-cairo1 libqtcurve-utils2 qtcurve-gtk2 qtcurve-qt5 - Add baselibs.conf for providing packages: * libqtcurve-utils2-32bit * libqtcurve-cairo1-32bit * qtcurve-kde4-32bit * qtcurve-gtk2-32bit ==== rsync ==== - Add patch to build with both bundled and external zlib to support both compression methods at once bsc#1046197: * rsync-both-compressions.patch ==== ruby ==== Version update (2.2 -> 2.4) Subpackages: ruby-devel - switch the default ruby to 2.4 ==== samba ==== Version update (4.6.5+git.27.6afd48b1083 -> 4.6.5+git.32.af7a173b7a1) Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient-devel libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap0 libsmbldap0-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit - Fix ctdb logs to /var/log/log.ctdb instead of /var/log/ctdb; (bsc#1048339). - Fix inconsistent ctdb socket path; (bsc#1048352). - Fix non-admin cephx authentication; (bsc#1048387). ==== solid ==== Version update (5.35.0 -> 5.36.0) Subpackages: libKF5Solid5 solid-devel solid-imports solid-tools - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * hal: use Q_DECL_OVERRIDE * cmake: build udisks2 backend on FreeBSD only when enabled * [FEATURE] Option to build & install QCH file with the public API dox ==== sonnet ==== Version update (5.35.0 -> 5.36.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-devel - Move unversioned files to the new sonnet package to be more compliant with the SLPP - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * add debug categories index, for kdebugsettings * [FEATURE] Option to build & install QCH file with the public API dox ==== suitesparse ==== Subpackages: libamd-2_4_6 libcamd-2_4_6 libccolamd-2_9_6 libcholmod-3_0_11 libcolamd-2_9_6 libsuitesparseconfig-4_5_5 libumfpack-5_7_6 - Fix RPM groups. - Trim pointless trailing line whitespace from descriptions. % must be encoded as %%. - Trim past-time history from suistesparse_config description. ==== syntax-highlighting ==== Version update (5.35.0 -> 5.36.0) Subpackages: libKF5SyntaxHighlighting5 - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Highlight .julius files as JavsScript. * Haskell: Add all language pragmas as keywords. * add unit test for isocpp * CMake: Fix CMP0058 warning when using Ninja * Don't assume 'diff' is in PATH for other tests * testhighlighter: Don't assume 'diff' is in PATH * Makefile: increase version number * CMake: OR/AND not highlighted after expr in () (kde#360656) * Makefile: Remove invalid keyword entries in makefile.xml * indexer: Improve error reporting * Add since tags. * HTML syntax file version update * Angular modifiers in HTML attributes added * [FEATURE] Option to build & install QCH file with the public API dox * Update test reference data following the changes of the previous commit * Bug 376979 - angle brackets in doxygen comments break syntax highlighting ==== system-users ==== Subpackages: system-group-hardware system-group-wheel system-user-bin system-user-daemon system-user-games system-user-lp system-user-mail system-user-man system-user-news system-user-nobody system-user-upsd system-user-uucp system-user-wwwrun - Drop pkgconfig(systemd) BuildRequires: we no longer depend on systemd-sysusers, but converted to shadow toolset. ==== systemd ==== Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1 libudev1-32bit systemd-32bit systemd-bash-completion systemd-logger systemd-sysvinit udev - Edit pkgconfig(liblz4) dependency: liblz4 now uses 1.x *again* - Added 0001-core-disable-session-keyring-per-system-sevice-entir.patch (bnc#1045886) Temporary patch to disable the session keyring stuff as it's currently broken and may introduce some security holes. - Import commit 21827ea0875ff197e16e72003b2bfaa1c6e8daad 1ad06735f core: fail when syntactically invalid values for User=/Group= fields are detected (bsc#1047023) d563972e2 timesyncd: don't use compiled-in list if FallbackNTP has been configured explicitly f4e0c16f5 gpt-auto-generator: fix the handling of the value returned by fstab_has_fstype() in add_swap() (#6280) e1345aac5 fix add_esp() in the gpt-auto-generator.c (#6251) c591ece9a automount: don't lstat(2) upon umount request (#6086) (bsc#1040968) 643ab2eea gpt-auto-generator: disable gpt auto logic for swaps if at least one is defined in fstab f07d2022f fstab-util: introduce fstab_has_fstype() helper bf735bb35 fstab-util: don't eat up errors in fstab_is_mount_point() a4b40fbed resolved: simplify alloc size calculation (bsc#1045290 CVE-2017-9445) 8b960bec0 only check signature job error if signature job exists (#6118) (boo#1043758) 1418bfb5b job: Ensure JobRunningTimeoutSec= survives serialization (#6128) (bsc#1004995) 19b6d5f08 udev: turn off -Wformat-nonliteral for one safe case 717ace439 udev: net_id add support for platform bus (ACPI, mostly arm64) devices (#5933) a3bf2e6b5 core/mount: pass "-c" flag to /bin/umount (#6093) - Add minimal support for boot.d/* scripts in systemd-sysv-convert (boo#1046750) While at it, the handling of the symlink priorities is also removed since it doesn't appear to be used at all. - Don't try to restart networkd/resolved if they're disabled (boo#1045521) "systemctl try-restart/preset" wants the unit files exist. - Stop shipping /usr/lib/sysusers.d/basic.conf (bsc#1006978) Ok looks like the previous change was the right thing to do and we continue to follow this path by relying on the new user/group scheme Therefore the basic system user/group are now managed and created by system-sysusers and udev also relies on this for the groups it uses in its rule files. Ideally we should have listed all of the groups in the deps (with "Requires: group(disk)" but the list of the groups is rather long and the risk for those groups to be re-organized is probably low, so currently we simply use "Requires: system-group-hardware" as a shortcut. ==== texlive-specs-m ==== Version update (2017.128.20170101_pl1svn43813 -> 2017.131.20170101_pl1svn43813) - Generate/remove specific formats at installation/erease of a package (boo#1046277) - Fix some descriptions of PostScript Type 1 binary files (boo#1046104) - Yet an other move for texlive-pas-cours that is move doc/latex/pas-cours/macro-calculs.tex to tex/latex/pas-cours/ - Avoid to depend on optional milog.cfg - texlive-milog does replace mathgl-tex - Do not require own provided perl modules for latexindent ==== texlive-specs-n ==== Version update (2017.128.2.004svn28119 -> 2017.131.2.004svn28119) - Generate/remove specific formats at installation/erease of a package (boo#1046277) - Fix some descriptions of PostScript Type 1 binary files (boo#1046104) - Yet an other move for texlive-pas-cours that is move doc/latex/pas-cours/macro-calculs.tex to tex/latex/pas-cours/ - Avoid to depend on optional milog.cfg - texlive-milog does replace mathgl-tex ==== threadweaver ==== Version update (5.35.0 -> 5.36.0) Subpackages: libKF5ThreadWeaver5 threadweaver-devel - Update to 5.36.0 * New feature release * For more details please see: * https://www.kde.org/announcements/kde-frameworks-5.36.0.php - Changes since 5.35.0: * Fixup parent commit * Work-around MSVC2017 compiler bug * [FEATURE] Option to build & install QCH file with the public API dox ==== ucode-intel ==== Version update (20170511 -> 20170707) - Remove code in intel-microcode2ucode.c that refers to GenuineIntel.bin , previously in binary blob package. - Remove binary blob package again. This was intended to be used by linuxrc, but the firmware files can simply be concatenated. - Update to version 20170707 (bsc#1048133, bsc#1043358): KBL H0 (06-8e-09:c0) 62 KBL Y0 (06-8e-0a:c0) 66 KBL B0 (06-9e-09:2a) 5e SKX H0 (06-55-04:97) 2000022 ==== unbound ==== Version update (1.6.1 -> 1.6.4) Subpackages: libunbound2 unbound-anchor - update to 1.6.4 Features: - Implemented trust anchor signaling using key tag query. - unbound-checkconf -o allows query of dnstap config variables. Also unbound-control get_option. Also for dnscrypt. - unbound.h exports the shm stats structures. They use type long long and no ifdefs, and ub_ before the typenames. - Implemented opportunistic IPsec support module (ipsecmod). - Added redirect-bogus.patch to contrib directory. - Support for the ED25519 algorithm with openssl (from openssl 1.1.1). - renumbering B-Root's IPv6 address to 2001:500:200::b. - Fix #1276: [dnscrypt] add XChaCha20-Poly1305 cipher. - Fix #1277: disable domain ratelimit by setting value to 0. - Added fastrpz patch to contrib Bug Fixes: - Added ECS unit test (from Manu Bretelle). - ECS documentation fix (from Manu Bretelle). - Fix #1252: more indentation inconsistencies. - Fix #1253: unused variable in edns-subnet/addrtree.c:getbit(). - Fix #1254: clarify ratelimit-{for,below}-domain (from Manu Bretelle). - iana portlist update - Based on #1257: check parse limit before t increment in sldns RR string parse routine. - Fix #1258: Windows 10 X64 unbound 1.6.2 service will not start. and fix that 64bit getting installed in C:\Program Files (x86). - Fix #1259: "--disable-ecdsa" argument overwritten by "#ifdef SHA256_DIGEST_LENGTH@daemon/remote.c". - iana portlist update - Added test for leak of stub information. - Fix sldns wire2str printout of RR type CAA tags. - Fix sldns int16_data parse. - Fix sldns parse and printout of TSIG RRs. - sldns SMIMEA and AVC definitions, same as getdns definitions. - Fix tcp-mss failure printout text. - Set SO_REUSEADDR on outgoing tcp connections to fix the bind before connect limited tcp connections. With the option tcp connections can share the same source port (for different destinations). - Add 'c' to getopt() in testbound. - Adjust servfail by iterator to not store in cache when serve-expired is enabled, to avoid overwriting useful information there. - Fix queries for nameservers under a stub leaking to the internet. - document trust-anchor-signaling in example config file. - updated configure, dependencies and flex output. - better module memory lookup, fix of unbound-control shm names for module memory printout of statistics. - Fix type AVC sldns rrdef. - Some whitespace fixup. - Fix #1265: contrib/unbound.service contains hardcoded path. - Fix #1265 to use /bin/kill. - Fix #1267: Libunbound validator/val_secalgo.c uses obsolete APIs, and compatibility with BoringSSL. - Fix #1268: SIGSEGV after log_reopen. - exec_prefix is by default equal to prefix. - printout localzone for duplicate local-zone warnings. - Fix assertion for low buffer size and big edns payload when worker overrides udpsize. - Support for openssl EVP_DigestVerify. - Fix #1269: inconsistent use of built-in local zones with views. - Add defaults for new local-zone trees added to views using unbound-control. - Fix #1273: cachedb.c doesn't compile with -Wextra. - If MSG_FASTOPEN gives EPIPE fallthrough to try normal tcp write. - Also use global local-zones when there is a matching view that does not have any local-zone specified. - Fix fastopen EPIPE fallthrough to perform connect. - Fix #1274: automatically trim chroot path from dnscrypt key/cert paths (from Manu Bretelle). - Fix #1275: cached data in cachedb is never used. - Fix that unbound-control can set val_clean_additional and val_permissive_mode. - Add dnscrypt XChaCha20 tests. - Detect chacha for dnscrypt at configure time. - dnscrypt unit tests with chacha. - Added domain name based ECS whitelist. - Fix #1278: Incomplete wildcard proof. - Fix #1279: Memory leak on reload when python module is enabled. - Fix #1280: Unbound fails assert when response from authoritative contains malformed qname. When 0x20 caps-for-id is enabled, when assertions are not enabled the malformed qname is handled correctly. - More fixes in depth for buffer checks in 0x20 qname checks. - Fix stub zone queries leaking to the internet for harden-referral-path ns checks. - Fix query for refetch_glue of stub leaking to internet. - Fix #1301: memory leak in respip and tests. - Free callback in edns-subnetmod on exit and restart. - Fix memory leak in sldns_buffer_new_frm_data. - Fix memory leak in dnscrypt config read. - Fix dnscrypt chacha cert support ifdefs. - Fix dnscrypt chacha cert unit test escapes in grep. - Fix to unlock view in view test. - Fix warning in pythonmod under clang compiler. - Fix lintian typo. - Fix #1316: heap read buffer overflow in parse_edns_options. - update to 1.6.3 Bug Fixes - Fix #1280: Unbound fails assert when response from authoritative contains malformed qname. When 0x20 caps-for-id is enabled, when assertions are not enabled the malformed qname is handled correctly. - update to 1.6.2 Features - Add trustanchor.unbound CH TXT that gets a response with a number of TXT RRs with a string like "example.com. 2345 1234" with the trust anchors and their keytags. - Patch for view functionality for local-data-ptr from Björn Ketelaars. - Response actions based on IP address from Jinmei Tatuya (Infoblox). - Patch from Luiz Fernando Softov for Stats Shared Memory. - unbound-control stats_shm command prints stats using shared memory, which uses less cpu. - --disable-sha1 disables SHA1 support in RRSIG, so from DNSKEY and DS records. NSEC3 is not disabled. - #1217. DNSCrypt support, with --enable-dnscrypt, libsodium and then enabled in the config file from Manu Bretelle. - Merge EDNS Client subnet implementation from feature branch into main branch, using new EDNS processing framework. - harden-algo-downgrade: no also makes unbound more lenient about digest algorithms in DS records. Bug fixes - sldns has ED25519 and ED448 algorithm number and name for display. - sldns updated for vfixed and buffer resize indication from getdns. - iana portlist update - Fix #1224: Fix that defaults should not fall back to "Program Files (x86) if Unbound is 64bit by default on windows. - Fix doc/CNAME-basedRedirectionDesignNotes.pdf zone static to redirect. - make depend, autoconf, doxygen and lint fixed up. - include sys/time.h for new shm code on NetBSD. - Fix #1227: Fix that Unbound control allows weak ciphersuits. - Fix #1226: provide official 32bit binary for windows. - For #1227: if we have sha256, set the cipher list to have no known vulns. - Fix testpkts.c, check if DO bit is set, not only if there is an OPT record. - Fix #1229: Systemd service sandboxing in contrib/unbound.service. - Fix #1230: swig version 2.0.1 is required for pythonmod, with 1.3.40 it crashes when running repeatly unbound-control reload. - fix enum conversion warnings - fake-sha1 test option; print warning if used. To make unit tests. - unbound-control list local zone and data commands listed in the help output. - Fix #1234: shortening DNAME loop produces duplicate DNAME records in ANSWER section. - testbound understands Deckard MATCH rcode question answer commands. - Fix #1235: Fix too long DNAME expansion produces SERVFAIL instead of YXDOMAIN + query loop, reported by Petr Spacek. - Fix that SHM is not inited if not enabled. - Fix that looped DNAMEs do not cause unbound to spend effort. - trustanchor tags are sorted. reusable routine to fetch taglist. - Fix #1237 - Wrong resolving in chain, for norec queries that get SERVFAIL returned. - make depend, autoconf, remove warnings about statement before var. - lru_demote and lruhash_insert_or_retrieve functions for getdns. - fixup for lruhash (whitespace and header file comment). - dnscrypt tests. - Fix doxygen for dnscrypt files. - Fix #1238: segmentation fault when adding through the remote interface a per-view local zone to a view with no previous (configured) local zones. - Fix #1229: Systemd service sandboxing, options in wrong sections. - Fix #1239: configure fails to find python distutils if python prints warning. - Fix to prevent non-referal query from being cached as referal when the no_cache_store flag was set. - Remove (now unused) event2 include from dnscrypt code. - Fix #1217: Add metrics to unbound-control interface showing crypted, cert request, plaintext and malformed queries (from Manu Bretelle). - Do not add current time twice to TTL before ECS cache store. - Do not touch rrset cache after ECS cache message generation. - Use LDNS_EDNS_CLIENT_SUBNET as default ECS opcode. - Fix #1244: document that use of chroot requires trust anchor file to be under chroot. - Small fixup for documentation. - Fix respip for braces when locks arent used. - Fix pythonmod for cb changes. - Generalise inplace callback (de)registration - (de)register inplace callbacks for module id - No unbound-control set_option for ECS options - Deprecated client-subnet-opcode config option - Introduced client-subnet-always-forward config option - Changed max-client-subnet-ipv6 default to 56 (as in RFC) - Removed extern ECS config options - module_restart_next now calls clear on all following modules - Also create ECS module qstate on module_event_pass event - remove malloc from inplace_cb_register - Unlock view in respip unit test - Some whitespace fixup. - Remove ECS option after REFUSED answer. - Fix small memory leak in edns_opt_copy_alloc. - Respip dereference after NULL check. - Zero initialize addrtree allocation. - Use correct identifier for SHM destroy. - Display ECS module memory usage. - Fix #1247: unbound does not shorten source prefix length when forwarding ECS. - Properly check for allocation failure in local_data_find_tag_datas. - Fix #1249: unbound doesn't return FORMERR to bogus ECS. - Set SHM ECS memory usage to 0 when module not loaded. - subnet mem value is available in shm, also when not enabled, to make the struct easier to memmap by other applications, independent of the configuration of unbound. - Fix #1250: inconsistent indentation in services/listen_dnsport.c. ==== wireshark ==== Version update (2.2.7 -> 2.2.8) Subpackages: libwireshark8 libwiretap6 libwscodecs1 libwsutil7 wireshark-ui-qt - Wireshark 2.2.8 (bsc#1049255): This release fixes minor vulnerabilities that could be used to trigger dissector crashes, infinite loopsm or cause excessive use of memory resources by making Wireshark read specially crafted packages from the network or a capture file: * CVE-2017-7702 CVE-2017-11410: WBMXL dissector infinite loop (wnpa-sec-2017-13) * CVE-2017-9350 CVE-2017-11411: openSAFETY dissector memory exhaustion (wnpa-sec-2017-28) * CVE-2017-11408: AMQP dissector crash (wnpa-sec-2017-34) * CVE-2017-11407: MQ dissector crash (wnpa-sec-2017-35) * CVE-2017-11406: DOCSIS infinite loop (wnpa-sec-2017-36) ==== xdg-desktop-portal-kde ==== Version update (5.10.3 -> 5.10.4) Subpackages: xdg-desktop-portal-kde-lang - Update to 5.10.4 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.10.4.php - Changes since 5.10.3: * Use CMAKE_INSTALL_FULL_LIBEXECDIR ==== xf86-video-siliconmotion ==== - Add aarch64 to ExcludeArch, build fails due to unsupported outb ==== xorg-x11-server ==== Subpackages: xorg-x11-server-sdk - disable Xwayland for s390x again; it was wrong to enable it; there is no Wayland on s390x and will most likely never exist, since there is no gfx card on such systems and no gfx emulation either (bsc#1047173) - u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch If arc4random_buf() is not available for generating cookies: * use getentropy(), if available (which was only recently added to glibc) * use getrandom() via syscall(), if available (there was no glibc wrapper for this syscall for a long time) * if all else fails, directly read from /dev/urandom as before, but employ O_CLOEXEC, do an OsAbort() in case the random data couldn't be read to avoid unsecure situations. Don't know if that's too hard a measure but it shouldn't actually occur except on maximum number of FDs reached (bsc#1025084) ==== xz ==== Subpackages: liblzma5 liblzma5-32bit xz-devel - % needs to be encoded in description; adjust weird indent there as well. Expand LZMA in summaries. - Really use the selfdefined CFLAGS during build to fix build ==== yast2 ==== Version update (3.3.0 -> 3.3.4) - cwm/rspec.rb: added tests in "CWM::RadioButtons" group for optional #hspacing and #vspacing methods - CWM::WrapperWidget#cwm_defintion: also include widget id, otherwise the widget would not show in a Pager, eg. Tabs (bsc#1049595) - 3.3.4 - Add YaST2 logs to the default list of files for System Log browser (bsc#1049138) - 3.3.3 - Add Yast::Execute.on_target! and Yast::Execute.locally! variants which raise a Cheetah exception if the command fails (bsc#1048512) - 3.3.2 - convert Object#timeout usage to Timeout.timeout as ruby2.4 makes it obsolete ( ruby2.4 will be for SLE15 so part of bsc#1044312) - 3.3.1 ==== yast2-add-on ==== Version update (3.2.0 -> 3.2.1) - Do not skip the boot command line addons ("addon=...") when using the default online repositories (bsc#1047239) - 3.2.1 ==== yast2-kdump ==== Version update (3.3.0 -> 3.3.1) - Switching X-SuSE-YaST-AutoInst flag to "all" because it has an own UI in the installed system and it can write settings in an already installed system. (bnc#1047809) - 3.3.1 ==== yast2-network ==== Version update (3.3.1 -> 3.3.2) - Fix crash during write if Host.Read and Host.Import is called together (bsc#1047929) - 3.3.2 ==== yast2-ntp-client ==== Version update (3.3.1 -> 3.3.2) - fix crash when restrict entry in autoyast have empty value (bsc#1043370) - fix wrong export for trustedkey config entry (bsc#1043370) - 3.3.2 ==== yast2-packager ==== Version update (3.2.23 -> 3.3.0) - Less strict low memory detection, there might be some rounding in the hwinfo memory size detection (bsc#1045915) - 3.3.0 - Properly handle multiple product renames (bsc#1048141) - 3.2.24 ==== yast2-ruby-bindings ==== Version update (3.2.14 -> 3.3.1) - Always use ::Integer to avoid collision with Yast::Integer (bsc#1044312) - make Builtins.toupper/tolower strictly backward compatible in ruby 2.4 (bsc#1044312) - 3.3.1 - replace all Fixnum and Bignum with Integer as ruby 2.4 make it deprecated ( ruby2.4 will be default for TW and SLE15 so part of bsc#1044312) - 3.3.0 ==== yast2-services-manager ==== Version update (3.2.1 -> 3.3.0) - Fix failing ERB template in ruby 2.4 (will be default for SLE15 so part of bsc#1044312) - 3.3.0 ==== yast2-vm ==== Version update (3.2.1 -> 3.2.2) - add proper dependency on yast2-bootloader (bsc#1048759) - 3.2.2 ==== yast2-xml ==== Version update (3.1.1 -> 3.3.0) - Omit libxml2 memory cleanup to prevent a crash (bsc#1047449). - 3.3.0 ==== zypper ==== Version update (1.13.28 -> 1.13.29) Subpackages: zypper-aptitude zypper-log - dwnldProgress: Report missing/optional files as 'not found' rather than 'error' (bsc#1047785) - Emphasize that it depends on PackageKit how fast it will respond to a 'quit' request sent if PK blocks package management. - man: Mention support for custom repository variables defined in /etc/zypp/vars.d (openSUSE/libzypp#68) - BuildRequires: libzypp-devel >= 16.13.1 - version 1.13.29