Changed packages: ==== Mesa ==== Version update (10.5.2 -> 10.5.3) Subpackages: Mesa-32bit Mesa-devel Mesa-dri-devel Mesa-libEGL-devel Mesa-libEGL1 Mesa-libEGL1-32bit Mesa-libGL-devel Mesa-libGL1 Mesa-libGL1-32bit Mesa-libGLESv1_CM-devel Mesa-libGLESv1_CM1 Mesa-libGLESv2-2 Mesa-libGLESv2-devel Mesa-libglapi-devel Mesa-libglapi0 Mesa-libglapi0-32bit libOSMesa-devel libOSMesa9 libOSMesa9-32bit libgbm-devel libgbm1 libgbm1-32bit libvdpau_nouveau libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libwayland-egl-devel libwayland-egl1 libxatracker2 - Update to 10.5.3 + fdo#83962 - [HSW/BYT]Piglit spec_ARB_gpu_shader5_arb_gpu_shader5-emitstreamvertex_nodraw fails + fdo#89679 - [NV50] Portal/Half-Life 2 will not start (native Steam) + fdo#89746 - Mesa and LLVM 3.6+ break opengl for genymotion + fdo#89754 - vertexAttrib fails WebGL Conformance test with mesa drivers + fdo#89758 - pow WebGL Conformance test with mesa drivers + fdo#89759 - WebGL OGL ES GLSL conformance test with mesa drivers fails + fdo#89905 - scons build broken on 10.5.2 due to activated vega st + st_glsl_to_tgsi: only do mov copy propagation on temps (v2) + xmlpool: don't forget to ship the MOS + configure.ac: error out if python/mako is not found when required + dist: add the VG depedencies into the tarball + i965: Do not render primitives in non-zero streams then TF is disabled + st/mesa: update arrays when the current attrib has been updated + nv50/ir: take postFactor into account when doing peephole optimizations + nv50/ir/gk110: fix offset flag position for TXD opcode + freedreno/a3xx: fix 3d texture layout + freedreno/a3xx: point size should not be divided by 2 + nv50: allocate more offset space for occlusion queries + nv50,nvc0: limit the y-tiling of 3d textures to the first level's tiling + i965: Fix instanced geometry shaders on Gen8+. + i965: Add forgotten multi-stream code to Gen8 SOL state. + nouveau: synchronize "scratch runout" destruction with the command stream + radeonsi: Cache LLVMTargetMachineRef in context instead of in screen + clover: Return CL_BUILD_ERROR for CL_PROGRAM_BUILD_STATUS when compilation fails v2 + i965: Fix URB size for CHV ==== apparmor-abstractions ==== Subpackages: apparmor-docs apparmor-parser apparmor-profiles apparmor-utils libapparmor-devel libapparmor1 libapparmor1-32bit pam_apparmor pam_apparmor-32bit perl-apparmor python3-apparmor - make sure %service_del_postun doesn't call systemctl try-restart (boo#853019, bare systemd edition) - add samba-4.2-profiles.diff: update samba (winbindd and nmb) profiles for samba 4.2 (boo#921098, boo#923201) - only install apparmor.service for openSUSE > 13.2 - Add a native systemd unit which *at the moment* only wraps/masks the early boot script. ==== cmake ==== Version update (3.2.1 -> 3.2.2) - Update to 3.2.2 file(LOCK): Close file descriptor/handle when releasing a lock FindMFC: Use if(DEFINED) to simplify condition (#15477) curl: Never consider using Windows APIs on Cygwin liblzma: Use unaligned access only on Intel and PowerPC archs liblzma: Disable XL compiler optimizations liblzma: Disable GNU 3.3 compiler optimizations KWSys SystemTools: Teach Touch with !create to succeed on missing file Makefile: Fix multiple custom command outputs with one missing libarchive: Fix string concatentation in Windows mktemp implementation ==== diffstat ==== - Update source url - Add gpg signature ==== libavcodec56 ==== Version update (2.6.1 -> 2.6.2) Subpackages: libavformat56 libavutil54 - Update to new upstream release 2.6.2 * avformat/utils: avoid discarded streams in av_find_default_stream_index() * avutil/cpu: add missing check for mmxext to av_force_cpu_flags * avformat/http: replace cookies with updated values instead of appending forever ==== freetype2-devel ==== Subpackages: libfreetype6 libfreetype6-32bit - Build freetype2 against harfbuzz library * Using the harfbuzz-bootstrap-devel in order to avoid cyclic dependencies - Enable the bz2 compression in freetype2 - Remove patch overflow.patch from freetype2.spec where it is not applied. - Run spec-cleaner on the spec file. ==== ft2demos ==== - Build freetype2 against harfbuzz library * Using the harfbuzz-bootstrap-devel in order to avoid cyclic dependencies - Run spec-cleaner on the spec file. ==== libstdc++6-gcc5-locale ==== Version update (5.0.0+r221624 -> 5.0.1+r222226) - Update to gcc-5-branch head (r222226). * Includes GCC 5.1 RC2. - Update to gcc-5-branch head (r222139). - Update to gcc-5-branch head (r222032). * Matches GCC 5.1 RC1. - Update to SVN trunk head (r221942). - Prepare for non-icecream cross-compilers * Define sysroot to match cross-binutils config * Prepare for requiring cross-newlib for some targets * Use all-host target for libc bootstrap, too * Install target files, but suppress stripping them (breaks them) * Suppress -icecream-backend subpackage * Allow building on any architecture - Update to SVN trunk head (r221888). - Enable cross compiler builds. - libsanitizer-tsan-res-state.patch: remove obsolete patch. - gcc5-libsanitize-aarch64-va42.patch: support aarch64 42-bit address - space ==== geoclue2 ==== Version update (2.1.10 -> 2.2.0) - Update to version 2.2.0: + Report 'Speed' and 'Heading' on location updates. + Try to provide the most accurate location first. + Avoid a crash by ensuring requested max accuracy is within bounds. + Fix GPS coordinates parsing. + Fix GeoIP on machines without WiFi hardware. + Gracefully handle inexistent agent. + Stop sources whose accuracy level becomes higher, rather than lower, than the requested level. + Keep old location object alive on D-Bus for a bit longer to ensure applications are not accessing it still after it is destroyed. + Don't enable the modem. Seems at least GNOME takes care of modem enabling for us and besides this shouldn't be done by geoclue anyway (fdo#85040). + Wait for modem to be enabled before checking availability of location capabilities and using them. This is particularly important for pin-enabled modems. + Ignore redundant GPS location updates. + Fix some potential crashes. + Some improvements to output of where-am-i demo application. ==== gpgme ==== Version update (1.5.3 -> 1.5.4) Subpackages: libgpgme-devel libgpgme11 - gpgme 1.5.4: * Fixed a possible crash in the debug code. ==== gstreamer-plugins-bad ==== Subpackages: libgstbadbase-1_0-0 libgstbadvideo-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstgl-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgsturidownloader-1_0-0 - Change from simple %defines to %bcond_with/without, as this allows to be set in prjconf without the need to patch the .spec files. - Create new subpackage libgstwayland-1_0-0. ==== harfbuzz-devel ==== Subpackages: libharfbuzz-icu0 libharfbuzz0 libharfbuzz0-32bit - Make harfbuzz-bootstrap-devel conflict with harfbuzz-devel - Try to completely disable the provides for harfbuzz-bootstrap - Split a minimal harfbuzz-bootstrap package in order to avoid possible build cycles between freetype2 and harfbuzz. - Add harfbuzz-bootstrap-rpmlintrc file to avoid errors on this bootstrap package (to be used only for freetype2 build) - Add pre_checkin.sh script to sync the harfbuzz.spec and harfbuzz-bootstrap.spec as well as the harfbuzz.changes and harfbuzz-bootstrap.changes automatically. ==== iproute2 ==== Version update (3.19 -> 4.0) - Update to new upstream release 4.0 * ip: route: add congestion control metric * vxlan: Group policy extension * tc: add support for BPF based actions * iproute2: bridge: support vlan range adds * ip xfrm: Allow to specify "all" option for monitor * ipnetns: allow to get and set netns ids * iplink: add support of IFLA_LINK_NETNSID attribute * Allow specifying bridge port STP state by name rather than number. * ip-monitor: allow to monitor ip rules * bridge link: add support to specify master ==== gsf-office-thumbnailer ==== Version update (1.14.32 -> 1.14.33) Subpackages: libgsf-1-114 libgsf-devel typelib-1_0-Gsf-1 - Update to version 1.14.33: + Ensure floats roundtrip through our xml functions. + Improve handling of unknown xml tags. + xml parser improvements. + xml pretty-printing improvements. ==== libQt5Core5 ==== Subpackages: libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk2 - Added patches from upstream: 0001-Speed-up-compose-file-parsing-in-the-X11-composition.patch 0002-Speed-up-application-startup-on-X11.patch and Fix-regression-in-compose-table-parsing.patch - Add cleaning of QMAKE_PRL_BUILD_DIR from prl files in %qmake5_install macro ==== libQtQuick5 ==== - Adjust usage of latest %qmake5_install macro ==== libreoffice ==== Subpackages: libreoffice-base libreoffice-base-drivers-mysql libreoffice-calc libreoffice-calc-extensions libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-icon-theme-galaxy libreoffice-icon-theme-hicontrast libreoffice-icon-theme-oxygen libreoffice-icon-theme-sifr libreoffice-icon-theme-tango libreoffice-impress libreoffice-kde4 libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-ru libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-writer libreoffice-writer-extensions - Hopefully fix bnc#913042.Redo check phase that sometimes broke .jar generating - Silence more scarry messages by bnc#900186 * Fixes autocorr symlinking * Cleans UNO cache in more pretty way - Clean up the uno cache removal to not display scarry message bnc#900186 - Remove patch to look for help in /usr/share, we symlink it back to lib, so there is no actual need to search for it directly, migth fix bnc#915996: * officecfg-help-in-usr-share.diff ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon libvirt-daemon-config-network libvirt-daemon-config-nwfilter libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-uml libvirt-daemon-driver-vbox libvirt-daemon-qemu libvirt-daemon-xen - boo#926765: add libvirt-daemon-driver-qemu dependency on libvirt-daemon-driver-storage. ==== man-pages ==== Version update (3.82 -> 3.83) - update to 3.83: - new and rewritten pages * posix_madvise.3 * ftw.3 - newly documented interfaces in existing pages * getdents.2 Document getdents64() * mount.2 Document MS_LAZYTIME * proc.5 Document /proc/sys/kernel/randomize_va_space Document /proc/PID/fdinfo epoll format Describe /proc/PID/fdinfo eventfd format Document /proc/PID/fdinfo signalfd format ==== meld ==== Version update (3.13.0 -> 3.13.1) Subpackages: meld-lang - Update to version 3.13.1: + Features: - more consistent comparison output when line endings differ: . Folder comparisons will now show an identical notification similar to the one used in file comparison. . The "New blank comparion" button now works for folder comparisons as well as file ones. . In folder comparisons, the expansion state of the tree is now remembered when you collapse and re-expand a row. + Fixes: - Better support icons in RTL locales. - Fixes for file encoding when saving with bad or missing encodings. - More consistent dialog handling and appearance. - Deprecation updates and compatibility fixes. - Fix bad comparison offset when multiple line breaks occurred on a single line. - Unicode fixes for file change notifications. - Warnings (such as deprecation warnings) are now explicitly silenced in stable Meld. - Folder actions are now disabled while Meld is still scanning folders. - Fix some command line handling for ambiguous relative paths and invalid URIs. - Fix updating the comparison map when a file is updated within Meld. - Rebase meld-nodocs.patch. ==== ntp ==== Version update (4.2.6p5 -> 4.2.8p2) Subpackages: ntp-doc - update to 4.2.8p2 * fixes CVE-2015-1798, CVE-2015-1799 (medium-severity vulnerabilities involving private key authentication) * bug fixes and enhancements * New script: update-leap ==== perl-CDDB_get ==== Version update (2.27 -> 2.28) - updated to 2.28 see /usr/share/doc/packages/perl-CDDB_get/Changes 2.28 06.03.2012 make tests work with perl 5.15.x ==== perl-DBI ==== Version update (1.628 -> 1.633) - updated to 1.633 see /usr/share/doc/packages/perl-DBI/Changes =head2 Changes in DBI 1.633 - 11th Jan 2015 Fixed selectrow_*ref to return undef on error in list context instead if an empty list. Changed t/42prof_data.t more informative Changed $sth->{TYPE} to be NUMERIC in DBD::File drivers as per the DBI docs. Note TYPE_NAME is now also available. [H.Merijn Brand] Fixed compilation error on bleadperl due DEFSV no longer being an lvalue [Dagfinn Ilmari Mannsåker] Added docs for escaping placeholders using a backslash. Added docs for get_info(9000) indicating ability to escape placeholders. Added multi_ prefix for DBD::Multi (Dan Wright) and ad2_ prefix for DBD::AnyData2 =head2 Changes in DBI 1.632 - 9th Nov 2014 Fixed risk of memory corruption with many arguments to methods originally reported by OSCHWALD for Callbacks but may apply to other functionality in DBI method dispatch RT#86744. Fixed DBD::PurePerl to not set $sth->{Active} true by default drivers are expected to set it true as needed. Fixed DBI::DBD::SqlEngine to complain loudly when prerequite driver_prefix is not fulfilled (RT#93204) [Jens Rehsack] Fixed redundant sprintf argument warning RT#97062 [Reini Urban] Fixed security issue where DBD::File drivers would open files from folders other than specifically passed using the f_dir attribute RT#99508 [H.Merijn Brand] Changed delete $h->{$key} to work for keys with 'private_' prefix per request in RT#83156. local $h->{$key} works as before. Added security notice to DBD::Proxy and DBI::ProxyServer because they use Storable which is insecure. Thanks to ppisar@redhat.com RT#90475 Added note to AutoInactiveDestroy docs strongly recommending that it is enabled in all new code. =head2 Changes in DBI 1.631 - 20th Jan 2014 NOTE: This release changes the handle passed to Callbacks from being an 'inner' handle to being an 'outer' handle. If you have code that makes use of Callbacks, ensure that you understand what this change means and review your callback code. Fixed err_hash handling of integer err RT#92172 [Dagfinn Ilmari] Fixed use of \Q vs  in t/70callbacks.t Changed the handle passed to Callbacks from being an 'inner' handle to being an 'outer' handle. Improved reliability of concurrent testing PR#8 [Peter Rabbitson] Changed optional dependencies to "suggest" PR#9 [Karen Etheridge] Changed to avoid mg_get in neatsvpv during global destruction PR#10 [Matt Phillips] =head2 Changes in DBI 1.630 - 28th Oct 2013 NOTE: This release enables PrintWarn by default regardless of $^W. Your applications may generate more log messages than before. Fixed err for new drh to be undef not to 0 [Martin J. Evans] Fixed RT#83132 - moved DBIstcf* constants to util export tag [Martin J. Evans] PrintWarn is now triggered by warnings recorded in methods like STORE that don't clear err RT#89015 [Tim Bunce] Changed tracing to no longer show quote and quote_identifier calls at trace level 1. Changed DBD::Gofer ping while disconnected set_err from warn to info. Clarified wording of log message when err is cleared. Changed bootstrap to use $XS_VERSION RT#89618 [Andreas Koenig] Added connect_cached.connected Callback PR#3 [David E. Wheeler] Clarified effect of refs in connect_cached attributes [David E. Wheeler] Extended ReadOnly attribute docs for when the driver cannot ensure read only [Martin J. Evans] Corrected SQL_BIGINT docs to say ODBC value is used PR#5 [ilmari] There was no DBI 1.629 release. ==== perl-Encode-Locale ==== Version update (1.03 -> 1.04) - updated to 1.04 see /usr/share/doc/packages/perl-Encode-Locale/Changes [#]# 2015-01-12 Release 1.04 Ed J (5): * Actually include all the tests in the MANIFEST * use Test::More and warnings * Tidy t/alias.t * t/arg.t TODO some actual ARGV testing * Use Win32::GetConsoleCP/GetConsoleOutputCP if available Gisle Aas (3): * Documentation spell fix * SEE ALSO Term::Encoding [RT#98138] David Steinbrunner (1): * typo fix ==== perl-File-ShareDir ==== Version update (1.03 -> 1.102) - updated to 1.102 see /usr/share/doc/packages/perl-File-ShareDir/Changes ==== perl-File-Which ==== Version update (1.09 -> 1.16) - updated to 1.16 see /usr/share/doc/packages/perl-File-Which/Changes 1.16 Sun 29 Mar 2015 - Remove use Test::Script from tests that escaped when this requirement became optional. 1.15 Sun 29 Mar 2015 - Fixed small but important POD error 1.14 Sun 29 Mar 2015 - App::pwhich is no longer bundled with File::Which and included in its own distribution. - pwhich that comes with this distribution is deprecated, and will report a warning if you try to use it, you should insted install App::pwhich. - pwhich that comes with this distribution will not be installed if App::pwhich 1.14 or better is already installed. - pwhich will be removed from this distribution, but not before 30 April 2015. - Make Test::Script an optional dependency 1.12 Thu 26 Mar 2015 - Fixed bug in pwhich introduced in version 1.10 where only the first file was searched for 1.11 Thu 26 Mar 2015 - Support for relative and fully qualified paths in Unix (gh#2) 1.10 Thu 26 Mar 2015 - Test::Script is now a test instead of runtime requirement It will be entirely removed as a prerequisite in a subsequent release - Will now find .exe and .com files (as it should) on cygwin (rt83146) - Declared required Perl version is now 5.005003 - Updated repository and maintainer information. Source for this dist now lives on GitHub - New module App::pwhich contains the guts of pwhich. It will be moved into a separate dist in the near future. pwhich will be deprecated and removed from this dist in the near future. ==== perl-IO-HTML ==== Version update (1.00 -> 1.001) - updated to 1.001 see /usr/share/doc/packages/perl-IO-HTML/Changes ==== perl-IO-Socket-SSL ==== Version update (1.997 -> 2.012) - add DHE-RSA to the default client cipher list to support PFS with older machines (bnc#924976) * added perl-IO-Socket-SSL_add_DHE-RSA_to_default_client_cipher_list.patch - add cpanspec.yml to support automatic version updates (see http://lists.opensuse.org/opensuse-packaging/2015-04/msg00084.html) - updated to 2.012 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.012 2014/02/02 - fix t/ocsp.t in case no HTTP::Tiny is installed 2.011 2014/02/01 - fix t/ocsp.t - don't count on revoked.grc.com using OCSP stapling #101855 - added option 'purpose' to Utils::CERT_create to get better control of the certificates purpose. Default is 'server,client' for non-CA (contrary to only 'server' before) - removed RC4 from default cipher suites on the server site https://github.com/noxxi/p5-io-socket-ssl/issues/22 - refactoring of some tests using Test::More thanks to Sweet-kid and the 2015 Pull Request Challenge 2.010 2014/01/14 - new options SSL_client_ca_file and SSL_client_ca to let the server send the list of acceptable CAs for the client certificate. - t/protocol_version.t - fix in case SSLv3 is not supported in Net::SSLeay. RT#101485, thanks to TEAM. 2.009 2014/01/12 - remove util/analyze.pl. This tool is now together with other SSL tools in https://github.com/noxxi/p5-ssl-tools - added ALPN support (needs OpenSSL1.02, Net::SSLeay 1.56+) thanks to TEAM, RT#101452 2.008 2014/12/16 - work around recent OCSP verification errors for revoked.grc.com (badly signed OCSP response, Firefox also complains about it) in test t/external/ocsp.t. - util/analyze.pl - report more details about preferred cipher for specific TLS versions 2.007 2014/11/26 - make getline/readline fall back to super class if class is not sslified yet, i.e. behave the same as sysread, syswrite etc. This fixes RT#100529 2.006 2014/11/22 - Make (hopefully) non-blocking work on windows by using EWOULDBLOCK instead of EAGAIN. While this is the same on UNIX it is different on Windows and socket operations return there (WSA)EWOULDBLOCK and not EAGAIN. Enable non-blocking tests on Windows too. - make PublicSuffix::_default_data thread safe - update PublicSuffix with latest list from publicsuffix.org 2.005 2014/11/15 - next try to fix t/protocol_version.t for OpenSSL w/o SSLv3 support 2.004 2014/11/15 - only test fix: fix t/protocol_version.t to deal with OpenSSL installations which are compiled without SSLv3 support. 2.003 2014/11/14 - make SSLv3 available even if the SSL library disables it by default in SSL_CTX_new (like done in LibreSSL). Default will stay to disable SSLv3, so this will be only done when setting SSL_version explicitly. - fix possible segmentation fault when trying to use an invalid certificate, reported by Nick Andrew. - Use only the ICANN part of the default public suffix list and not the private domains. This makes existing exceptions for s3.amazonaws.com and googleapis.com obsolete. Thanks to Gervase Markham from mozilla.org. 2.002 2014/10/21 - fix check for (invalid) IPv4 when validating hostname against certificate. Do not use inet_aton any longer because it can cause DNS lookups for malformed IP. RT#99448, thanks to justincase[AT]yopmail[DOT]com. - Update PublicSuffix with latest version from publicsuffix.org - lots of new top level domains. - Add exception to PublicSuffix for s3.amazonaws.com - RT#99702, thanks to cpan[AT]cpanel[DOT]net. 2.001 2014/10/21 - Add SSL_OP_SINGLE_(DH|ECDH)_USE to default options to increase PFS security. Thanks to Heikki Vatiainen for suggesting. - Update external tests with currently expected fingerprints of hosts. - Some fixes to make it still work on 5.8.1. 2.000 2014/10/15 - consider SSL3.0 as broken because of POODLE and disable it by default. - Skip live tests without asking if environment NO_NETWORK_TESTING is set. Thanks to ntyni[AT]debian[DOT]org for suggestion. - skip tests which require fork on non-default windows setups without proper fork. Thanks to SHAY for https://github.com/noxxi/p5-io-socket-ssl/pull/18 1.999 2014/10/09 - make sure we don't use version 0.30 of IO::Socket::IP - make sure that PeerHost is checked on all places where PeerAddr is checked, because these are synonyms and IO::Socket::IP prefers PeerHost while others prefer PeerAddr. Also accept PeerService additionally to PeerPort. See https://github.com/noxxi/p5-io-socket-ssl/issues/16 for details. - add ability to use client certificates and to overwrite hostname with util/analyze-ssl.pl. 1.998 2014/09/07 - make client authentication work at the server side when SNI is in by use having CA path and other settings in all SSL contexts instead of only the main one. Based on code from lundstrom[DOT]jerry[AT]gmail[DOT]com, https://github.com/noxxi/p5-io-socket-ssl/pull/15 ==== perl-Net-DNS ==== Version update (0.81 -> 0.83) - updated to 0.83 see /usr/share/doc/packages/perl-Net-DNS/Changes ==== apache2-mod_php5 ==== Subpackages: php5 php5-bcmath php5-bz2 php5-calendar php5-ctype php5-curl php5-dba php5-devel php5-dom php5-exif php5-fastcgi php5-ftp php5-gd php5-gettext php5-gmp php5-iconv php5-imap php5-json php5-ldap php5-mbstring php5-mcrypt php5-mysql php5-odbc php5-openssl php5-pdo php5-pear php5-pgsql php5-shmop php5-snmp php5-sockets php5-sqlite php5-suhosin php5-sysvsem php5-sysvshm php5-tidy php5-tokenizer php5-wddx php5-xmlreader php5-xmlwriter php5-xsl php5-zip php5-zlib - configure php-fpm with --localstatedir=/var [bnc#927147] ==== polkit-default-privs ==== - polkit-default-privs: rename of powerdevil action-names (bnc#927275) ==== python-Pillow ==== - Add fix-textsize-equal.patch. Fixes testsuite on SLE11SP3 ==== python-pytz ==== Version update (2014.10 -> 2015.2) - update to version 2015.2: * update to Olson/IANA database version 2015b ==== python-six ==== - don't build/package documentation here: it breaks due to cyclic requirements between six and Sphinx, move doc in its own package ==== python3-setuptools ==== Version update (15.0 -> 15.1) - update to version 15.1: * Updated Packaging to 15.1 to address Packaging #28. * Fix "setuptools.sandbox._execfile()" with Python 3.1. ==== rsyslog ==== - Adjusted apparmor profile to prevent aa-genprof failures (bnc#925512) ==== libdcerpc-binding0 ==== Version update (4.2.0 -> 4.2.1) Subpackages: libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libgensec0 libgensec0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libregistry0 libsamba-credentials0 libsamba-credentials0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient-devel libsmbclient-raw0 libsmbclient-raw0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap0 libsmbldap0-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba samba-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit - Update to 4.2.1. + s3:winbind:grent: Don't stop group enumeration when a group has no gid; (bso#8905). + Initialize dwFlags field of DNS_RPC_NODE structure; (bso#9791). + s3: lib: ntlmssp: If NTLMSSP_NEGOTIATE_TARGET_INFO isn't set, cope with servers that don't send the 2 unused fields; (bso#10016). + build:wafadmin: Fix use of spaces instead of tabs; (bso#10476). + waf: Fix the build on openbsd; (bso#10476). + s3: client: "client use spnego principal = yes" code checks wrong name; (bso#10888). + spoolss: Retrieve published printer GUID if not in registry; (bso#11018). + s3: lib: libsmbclient: If reusing a server struct, check every cli->timout miliseconds if it's still valid before use; (bso#11079). + vfs_fruit: Enhance handling of malformed AppleDouble files; (bso#11125). + backupkey: Explicitly link to gnutls and gcrypt; (bso#11135). + replace: Remove superfluous check for gcrypt header; (bso#11135). + Backport subunit changes; (bso#11137). + libcli/auth: Match Declaration of netlogon_creds_cli_context_tmp with implementation; (bso#11140). + s3-winbind: Fix cached user group lookup of trusted domains; (bso#11143). + talloc: Version 2.1.2; (bso#11144). + Update libwbclient version to 0.12; (bso#11149). + brlock: Use 0 instead of empty initializer list; (bso#11153). + s4:auth/gensec_gssapi: Let gensec_gssapi_update() return NT_STATUS_LOGON_FAILURE for unknown errors; (bso#11164). + docs/idmap_rid: Remove deprecated base_rid from example; (bso#11169); (bnc#913304). + s3: libcli: smb1: Ensure we correctly finish a tevent req if the writev fails in the SMB1 case; (bso#11173). + backupkey: Use ndr_pull_struct_blob_all(); (bso#11174). + Fix lots of winbindd zombie processes on Solaris platform; (bso#11175). + s3: libsmbclient: Add missing talloc stackframe; (bso#11177). + s4-process_model: Do not close random fds while forking; (bso#11180). + s3-passdb: Fix 'force user' with winbind default domain; (bso#11185). - Prevent samba package updates from disabling samba kerberos printing. - Add sparse file support for samba; (fate#318424). - Purge printer name cache on spoolss SetPrinter change; (bso#11210); (bnc#901813). ==== simple-scan ==== Version update (3.16.0.1 -> 3.16.1.1) - Update to version 3.16.1.1: + Fix logic for adding blank page on page removal. - Changes from version 3.16.1: + Fix save button being inactive on pages restored after a crash. ==== libspeechd-devel ==== Version update (0.8.1 -> 0.8.2) Subpackages: libspeechd2 python3-speechd speech-dispatcher speech-dispatcher-configure speech-dispatcher-module-espeak - cleanup spec file with spec-cleaner - update to version 0.8.2: * Add convenience methods to the libspeech API to free module list and voice data structures. * Add method to the libspeechd API to get the current output module, and update the documentation accordingly. * The API is now licensed under the GNU Lesser General Public License v2.1 or later. * The spdconf configuration utility is now translatable. * Fixed a bug where speech-dispatcher would fail to start if the user configuration directory existed but did not contain a config file. * Install the spdconf desktop file. - add rcspeech-dispatcherd symlink for service ==== libtalloc2 ==== Version update (2.1.1 -> 2.1.2) Subpackages: libtalloc2-32bit pytalloc pytalloc-32bit - Update to 2.1.2. + fix _talloc_total_limit_size prototype + build: improve detection of srcdir ==== tcpdump ==== - fix a DoS vulnerability in print-wb.c CVE-2015-3138 [boo#927637] adding CVE-2015-3138.patch ==== libthunarx-2-0 ==== Version update (1.6.6 -> 1.6.7) Subpackages: thunar thunar-lang - update to version 1.6.7 - Improve drag & drop and selecting in the details view (bxo#11605) - Let row changes accumulate a bit before restoring selection - Implement reloading file information on manual reload - Extend reload functions to allow a full reload - Check in thunar-marshal with new _thunar_marshal_BOOLEAN__BOOLEAN - Reload files changed by jobs in an idle loop (bxo#11008) - Refactor code for moving thumbnail cache file on renames/moves - Rework thunar_file_monitor to properly register moved files - Add function to reload parent file of a file - Fix updating file info for moved files (bxo#11008) - Revert "Refresh file info after getting it from cache (bxo#11008)" - Fix comments - Update the location bar after reload (bxo#10518) - Fix updating custom actions (bxo#11749) - Update rows on changes of case-sensitive and folders-first settings - Fix typos and grammar mistakes in a few comments - Make new windows inherit the history of the origin view (bxo#5538) - Make new tabs inherit the history of the origin view (bxo#5538) - Keep the history across view changes (bxo#10171) - Implement functions for copying the history of a view - Rename tsv_restore_selection to tsv_select_after_row_deleted - Redraw the details view on row changes - Restore selection on row changes too (bxo#9886) - Improve mouse wheel zoom behaviour - Remember and restore file selection on view changes - Restore file selection when changing sort order (bxo#9886) - Update model with changed binary file size setting immediately - Fix typo busy_pulse in thunar-shortcuts-model.c - Fix typo in thunar-clipboard-manager - Fix Gdk-CRITICAL error - Clean up more files with make clean - Rework usage of binary file size properties (bxo#11450) - Remove duplicate break statement in thunar-standard-view - Fix compiler warning about shadowing 'basename' (bxo#11633) - thunar/thunar-dbus-service-infos.xml corrections - Fix startup id handling for launch requests over D-Bus (bxo#9646) - Fallback to non-cached version of source file (bxo#9142) - Translation updates ==== transfig ==== - transfig-fix-afl.patch: fixed crashes due to uninitialized memory, found by afl. ==== usb_modeswitch ==== Version update (2.2.0 -> 2.2.1) Subpackages: usb_modeswitch-data - Update to version 2.2.1 * Fixed unreliable switching function for Cisco AM10 - Update the data package to version 20150115 - Update device_reference.txt ==== virtualbox ==== Subpackages: virtualbox-guest-kmp-default virtualbox-guest-kmp-desktop virtualbox-guest-tools virtualbox-guest-x11 virtualbox-host-kmp-default virtualbox-host-kmp-desktop virtualbox-qt - Allow access to vboxdrv to vboxusers group members bnc#927525 ==== vsftpd ==== - Fix hide_file option wrt bnc#927612: * vsftpd-path-normalize.patch ==== wpa_supplicant ==== Version update (2.3 -> 2.4) Subpackages: wpa_supplicant-gui - Delete wpa_priv and eapol_test man pages, these are disabled in config - Move wpa_gui man page to gui package - Update to 2.4 * allow OpenSSL cipher configuration to be set for internal EAP server (openssl_ciphers parameter) * fixed number of small issues based on hwsim test case failures and static analyzer reports * P2P: - add new=<0/1> flag to P2P-DEVICE-FOUND events - add passive channels in invitation response from P2P Client - enable nl80211 P2P_DEVICE support by default - fix regresssion in disallow_freq preventing search on social channels - fix regressions in P2P SD query processing - try to re-invite with social operating channel if no common channels in invitation - allow cross connection on parent interface (this fixes number of use cases with nl80211) - add support for P2P services (P2PS) - add p2p_go_ctwindow configuration parameter to allow GO CTWindow to be configured * increase postponing of EAPOL-Start by one second with AP/GO that supports WPS 2.0 (this makes it less likely to trigger extra roundtrip of identity frames) * add support for PMKSA caching with SAE * add support for control mesh BSS (IEEE 802.11s) operations * fixed number of issues with D-Bus P2P commands * fixed regression in ap_scan=2 special case for WPS * fixed macsec_validate configuration * add a workaround for incorrectly behaving APs that try to use EAPOL-Key descriptor version 3 when the station supports PMF even if PMF is not enabled on the AP * allow TLS v1.1 and v1.2 to be negotiated by default; previous behavior of disabling these can be configured to work around issues with broken servers with phase1="tls_disable_tlsv1_1=1 tls_disable_tlsv1_2=1" * add support for Suite B (128-bit and 192-bit level) key management and cipher suites * add WMM-AC support (WMM_AC_ADDTS/WMM_AC_DELTS) * improved BSS Transition Management processing * add support for neighbor report * add support for link measurement * fixed expiration of BSS entry with all-zeros BSSID * add optional LAST_ID=x argument to LIST_NETWORK to allow all configured networks to be listed even with huge number of network profiles * add support for EAP Re-Authentication Protocol (ERP) * fixed EAP-IKEv2 fragmentation reassembly * improved PKCS#11 configuration for OpenSSL * set stdout to be line-buffered * add TDLS channel switch configuration * add support for MAC address randomization in scans with nl80211 * enable HT for IBSS if supported by the driver * add BSSID black and white lists (bssid_blacklist, bssid_whitelist) * add support for domain_suffix_match with GnuTLS * add OCSP stapling client support with GnuTLS * include peer certificate in EAP events even without a separate probe operation; old behavior can be restored with cert_in_cb=0 * add peer ceritficate alt subject name to EAP events (CTRL-EVENT-EAP-PEER-ALT) * add domain_match network profile parameter (similar to domain_suffix_match, but full match is required) * enable AP/GO mode HT Tx STBC automatically based on driver support * add ANQP-QUERY-DONE event to provide information on ANQP parsing status * allow passive scanning to be forced with passive_scan=1 * add a workaround for Linux packet socket behavior when interface is in bridge * increase 5 GHz band preference in BSS selection (estimate SNR, if info not available from driver; estimate maximum throughput based on common HT/VHT/specific TX rate support) * add INTERWORKING_ADD_NETWORK ctrl_iface command; this can be used to implement Interworking network selection behavior in upper layers software components * add optional reassoc_same_bss_optim=1 (disabled by default) optimization to avoid unnecessary Authentication frame exchange * extend TDLS frame padding workaround to cover all packets * allow wpa_supplicant to recover nl80211 functionality if the cfg80211 module gets removed and reloaded without restarting wpa_supplicant * allow hostapd DFS implementation to be used in wpa_supplicant AP mode ==== xterm ==== Version update (317 -> 318) Subpackages: xterm-bin - Update to version 318 * rename new(er) configure option --enable-initial-erase to - -enable-pty-erase, since that conflicted with an existing option (report by Jens Schweikhardt). * fix cut/paste error in --with-builtin-xpms configure option (reports by Jens Schweikhardt, Ross Combs). * fix minor formatting issue in xterm manual (report by Jens Schweikhardt). * eliminate unnecessary "#(vi" markers in autoconf macros by using "(" to begin case-statement cases (suggested by Jens Schweikhardt). * minor fixes to improve const usage (Ross Combs). - Add pkgconfig and groff as dependency as configure is looking for them ==== yast2-bootloader ==== Version update (3.1.126 -> 3.1.127) - While calling AutoYaST clone_system libStorage has to be set to "normal" mode in order to read mountpoints correctly. - 3.1.127 ==== yast2-installation ==== Version update (3.1.138 -> 3.1.140) - Fixed differnt bugs in proposal overview with multiple tabs. - Checking if plymouth is available while starting second installation stage for AutoYaST. - 3.1.140 - Always enable systemd startup services for Second Stage and Firstboot (bsc#924278) - 3.1.139 Removed packages: libQt5Sql5-unixODBC perl-IPC-Run3 perl-PlRPC perl-Probe-Perl perl-Test-Script Added packages: libgstwayland-1_0-0 libQt5Sql5-postgresql