Packages changed: efibootmgr (0.12 -> 14) gpg2 (2.1.18 -> 2.1.19) grub2 konversation libqb (1.0.1+git20170131.afdff97 -> 1.0.1+git20170306.59eacf0) libvirt (3.0.0 -> 3.1.0) mcelog (1.47 -> 1.48) ntp perl-libwww-perl (6.21 -> 6.22) virglrenderer (0.5.0 -> 0.6.0) virtualbox (5.1.14_k4.10.1_2 -> 5.1.16_k4.10.1_2) vm-install (0.8.60 -> 0.8.61) === Details === ==== efibootmgr ==== Version update (0.12 -> 14) - Update to 14 plus upstream fixes. (fate#322108) (0001-Don-t-use-fshort-wchar-when-building-63.patch, 0002-Remove-extra-const-keywords-gcc-7-gripes-about.patch, 0003-Add-support-for-parsing-optional-data-as-ucs2.patch) - Forward port and refresh SLE patches (efibootmgr-derhat.diff, MARM-sanitize-set_mirror.diff efibootmgr-delete-multiple.diff) - Drop upstreamed patches (efibootmgr-check-boot-order.diff, efibootmgr-fix-efivar-0.24.patch, efibootmgr-fix-usage-of-efi_loadopt_path-again.patch, MARM-add-m-and-M-options.diff, MARM-extend-man-for-M-option.diff, MARM-fix-insufficient-validation-check-of-M-option.diff, MARM-introduce-man-for-m-and-M-option.diff) - Build on all archs. There is no reason not to. (boo#1025520) - Depend on new enough efivar. Build fails otherwise. ==== gpg2 ==== Version update (2.1.18 -> 2.1.19) - GnuPG 2.1.19: * gpg: Print a warning if Tor mode is requested but the Tor daemon is not running. * gpg: New status code DECRYPTION_KEY to print the actual private key used for decryption. * gpgv: New options --log-file and --debug. * gpg-agent: Revamp the prompts to ask for card PINs. * scd: Support for multiple card readers. * scd: Removed option --debug-disable-ticker. Ticker is used only when it is required to watch removal of device/card. * scd: Improved detection of card inserting and removal. * dirmngr: New option --disable-ipv4. * dirmngr: New option --no-use-tor to explicitly disable the use of Tor. * dirmngr: The option --allow-version-check is now required even if the option --use-tor is also used. * dirmngr: Handle a missing nsswitch.conf gracefully. * dirmngr: Avoid PTR lookups for keyserver pools. The are only done for the debug command "keyserver --hosttable". * dirmngr: Rework the internal certificate cache to support classes of certificates. Load system provided certificates on startup. * Add options --tls, --no-crl, and --systrust to the "VALIDATE" command. * dirmngr: Add support for the ntbtls library. * wks: Create mails with a "WKS-Phase" header. Fix detection of Draft-2 mode. * Many other bug fixes and new regression tests. - dirmngr: use system certificate store - Rewrite descriptions ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - TPM Support (FATE#315831) * 0001-tpm-Core-TPM-support.patch * 0002-tpm-Measure-kernel-initrd.patch * 0003-tpm-Add-BIOS-boot-measurement.patch * 0004-tpm-Rework-linux-command.patch * 0005-tpm-Rework-linux16-command.patch * 0006-tpm-Measure-kernel-and-initrd-on-BIOS-systems.patch * 0007-tpm-Measure-the-kernel-commandline.patch * 0008-tpm-Measure-commands.patch * 0009-tpm-Measure-multiboot-images-and-modules.patch * 0010-tpm-Fix-boot-when-there-s-no-TPM.patch * 0011-tpm-Fix-build-error.patch * 0012-tpm-Build-tpm-as-module.patch - grub2.spec : Add grub-tpm.efi for Secure Boot - Fix invalid Xen EFI config files if xen_args include GRUB2 quoting (bsc#900418) (bsc#951748) * grub2-efi-xen-cfg-unquote.patch - Fix linuxefi erroneously initialize linux's boot_params with non-zero values. (bsc#1025563) * grub2-linuxefi-fix-boot-params.patch - Removed grub2-fix-multi-device-root-kernel-argument.patch as it has regression on how GRUB_DISABLE_LINUX_UUID=true interpreted (bsc#1015138) ==== konversation ==== Subpackages: konversation-lang - Add upstream patch to fix crash on exit: * fix-crash-on-quit.patch ==== libqb ==== Version update (1.0.1+git20170131.afdff97 -> 1.0.1+git20170306.59eacf0) - loop: Fix splint error - loop: Also set signals changed in qb_loop_signal_mod() back to SIG_DFL (bsc#1026176) - loop: don't override external signal handlers (bsc#1026176) - Upstream version cs: 59eacf07dd92af6917ed351c0c5e51ec5237965c ==== libvirt ==== Version update (3.0.0 -> 3.1.0) Subpackages: libvirt-client libvirt-daemon libvirt-daemon-config-network libvirt-daemon-config-nwfilter libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-uml libvirt-daemon-driver-vbox libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - Update to libvirt 3.1.0 - Modularize storage driver by splitting it into backend-specific subpackages - CVE-2017-2635, bsc#1027075 - Many incremental improvements and bug fixes, see http://libvirt.org/news.html - Dropped patches: b018ada3-shunloadtest-build-fix.patch, f86a7a83-libxl-dom0-balloon-fix.patch, 6e4759d0-libxl-timer-fix.patch, 87df87e0-libxl-timer-tsc-emulate.patch, b4386fda-xenconfig-timer-fix.patch, d3970925-timer-tests.patch, 321a28c6-libxl-default-disk-format.patch, bd116810-libxl-fix-disk-detach.patch, ff225538-libxl-autoballoon-setting.patch, c89a6e78-libxl-physinfo-cleanup.patch, d2b77608-libxl-maxmem-fix.patch, 79692c38-libxl-dom0-maxmem.patch, 4ab0c959-libxl-mem-leak.patch, 2dc1cf19-libxl-double-free.patch, apparmor-errormsg-fix.patch, apparmor-alt-seclabel.patch, qemu-disable-namespaces.patch - Drop author list from description. Fix summary to be more accurate as to what the subpackage pertains to. ==== mcelog ==== Version update (1.47 -> 1.48) - Update to version 1.48 * Fix warning with gcc 6.x * Remove obsolete TODO file * Small fixes - Use url for getting sources ==== ntp ==== Subpackages: ntp-doc - Move ntp-kod to /var/lib/ntp/db, because /var/db is not a standard directory and causes problems for transactional updates (ntp-move-kod-file.patch) - Remove 50-ntp.list (bsc#1011919). - Use system-wide libevent instead of local copy. - Simplify ntpd's search for its own executable to prevent AppArmor warnings (bsc#956365, ntp-pathfind.patch). ==== perl-libwww-perl ==== Version update (6.21 -> 6.22) - updated to 6.22 see /usr/share/doc/packages/perl-libwww-perl/Changes 6.22 2017-03-01 - Update Travis-CI to test on minimum versions of prereqs. (GH PR #109) - Fix tests that depended on a newer version of HTTP::Message (GH PR #119) - Update documentation to reflect behavior difference in ->put() depending on the version of HTTP::Message installed. (GH PR #120) ==== virglrenderer ==== Version update (0.5.0 -> 0.6.0) - Fix memory leak in vertex elements state create (CVE-2017-6386 bsc#1027376) 0001-737c3350-renderer-fix-memory-leak-in-vertex-elements-state-cr.patch - Fix RPM groups - Update package to 0.6.0 The following patches will be removed: 0001-48f67f60-renderer-fix-NULL-pointer-deref-in-vrend_clear.patch 0002-40b0e781-renderer-fix-a-leak-in-resource-attach.patch 0003-6eb13f7a-vrend-fix-memory-leak-in-int-blit-context.patch 0004-114688c5-renderer-fix-heap-overflow-in-vertex-elements-state-.patch 0005-926b9b34-vrend-fix-a-stack-overflow-in-set-framebuffer-state.patch All of the removed patches were already included in 0.6.0, So we dont need them any more. ==== virtualbox ==== Version update (5.1.14_k4.10.1_2 -> 5.1.16_k4.10.1_2) Subpackages: virtualbox-guest-kmp-default virtualbox-guest-tools virtualbox-guest-x11 - Removed "vbox_fix_4.10_api_changes.patch" - fixed upstream Removed "vbox_fix_4.11_api_changes.patch" - fixed upstream - Version bump to 5.1.16 (released 2017-03-08 by Oracle) This is a maintenance release. The following items were fixed and/or added: VMM: don't access the MSR_IA32_SMM_MONITOR_CTL MSR if dual-monitor treatment is not available (KVM workaround, bug #14965) VMM: another fix for handling certain MSRs on ancient CPUs without VT-x support for MSR bitmaps VMM: fixed VERR_SSM_LOAD_CPUID_MISMATCH errors when restoring a saved state with SMP guests on hosts without the CPUID/HTT bit set (bug #16428) VMM: fixed a bug in call gate emulation VMM: FWAIT instruction fix VMM: fixed a sporadic guest hang under certain conditions GUI: hide the mini-toolbar from the taskbar and the pager on certain X11 hosts GUI: better error handling on the global settings / network / host-only / DHCP server settings GUI: fixes for full-screen with multiple screens Host-only Network: fixed host-only adapter creation issue preventing VirtualBox installation on Windows 10 hosts (bug #16379) NAT network: fixed two potential crashes in the DHCP server ICH9: fixed incorrect initialization of the primary bus for PCI bridges (5.1.14 regression) Storage: LsiLogic fix for Windows 10 USB: fixed not being able to attach certain USB devices having invalid characters in the device strings (5.0.18 regression; bug #15956) USB: several fixes for the USB/IP support (bug #16462) VBoxSVC: fixed another crash during shutdown under rare circumstances VBoxSVC: fixed a stack overflow on (Windows debug builds only; bug #16409) OVF: when importing an appliance handle more than 10 network adapters if the OVA was created by VirtualBox (bug #16401) OVF: fixes for exporting and importing appliances with many disks (bug #16402) VBoxManage: fixed regression with modifyhd --resize (bug #16311) rdesktop-vrdp: source code tarball fixes Linux Installers: do not rebuild kernel modules unnecessarily (bug #16408) Linux hosts: added an action for opening the VM manager window to the .desktop file Linux hosts / guests: Linux 4.11 compile fixes (bug #16506) Linux Additions: added vboxsf FS modules alias (bug #16404) Linux Additions: fix for the shared folders kernel module to compile on Linux 4.10 Linux Additions: properly install the Linux kernel module override rule on distributions without /etc/depmod.d Windows Additions: fixed a crash with recent Windows 10 builds if 3D is disabled (bug #15973) - Fix API changes for kernel 4.11. This change adds file "vbox_fix_4.11_api_changes.patch". Make some changes to various script files to remove reference to run level 4, which is not used. - Fix for missing global in vboxsf that prevented mounting shared folders for kernel 4.10. This change is the fix for bsc #1027967. ==== vm-install ==== Version update (0.8.60 -> 0.8.61) - bsc#978526 - text mode installation doesn't allow specifying install source (revisited) - Version 0.8.61