Packages changed: 389-ds (2.0.1~git0.b557f5daa -> 2.0.2~git0.6d17ca7df) ImageMagick (7.0.10.58 -> 7.0.10.59) autoyast2 (4.3.65 -> 4.3.67) b43-fwcutter bison (3.7.4 -> 3.7.5) clazy ffmpeg-4 firewalld (0.9.1 -> 0.9.3) gdm ghostscript-fonts-grops gimp glibmm2_4 (2.64.5 -> 2.66.0) gnome-software graphene iproute2 (5.9.0 -> 5.10.0) jack (1.9.16 -> 1.9.17) kernel-source (5.10.9 -> 5.10.12) kmod (27 -> 28) libXt (1.2.0 -> 1.2.1) libdrm (2.4.103 -> 2.4.104) libqt5-qtwebengine libreoffice (7.0.3.1 -> 7.0.4.2) librsvg (2.50.2 -> 2.50.3) libstorage-ng (4.3.85 -> 4.3.86) libunwind (1.4.0 -> 1.5.0) libvirt mailutils mailx memtest86+ (5.01 -> 5.31b) mousepad (0.5.1 -> 0.5.2) openssh ovmf pangomm1_4 (2.42.2 -> 2.46.0) perl-JSON (4.02 -> 4.03) permissions (1550_20201111 -> 1550_20210125) pinentry (1.1.0 -> 1.1.1) pipewire (0.3.15 -> 0.3.20) privoxy (3.0.29 -> 3.0.31) pulseaudio (14.0 -> 14.2) python-Mako (1.1.3 -> 1.1.4) python-Pillow (8.0.1 -> 8.1.0) python-PyYAML (5.3.1 -> 5.4.1) python-importlib-metadata (3.3.0 -> 3.4.0) python-lxml (4.5.2 -> 4.6.2) python-networkx python-packaging (20.4 -> 20.8) python-psutil (5.7.3 -> 5.8.0) python-ptyprocess (0.6.0 -> 0.7.0) python-setproctitle (1.2.1 -> 1.2.2) python-urllib3 (1.26.2 -> 1.26.3) python38 (3.8.6 -> 3.8.7) python38-core (3.8.6 -> 3.8.7) python38-documentation (3.8.6 -> 3.8.7) qemu rdesktop rpm rubygem-ruby-dbus (0.15.0 -> 0.16.0) sendmail timezone (2020f -> 2021a) timezone-java (2020f -> 2021a) tpm2-0-tss (3.0.1 -> 3.0.3) util-linux (2.35.1 -> 2.36.1) util-linux-systemd (2.35.1 -> 2.36.1) util-macros (1.19.2 -> 1.19.3) virtualbox virtualbox-kmp (6.1.18_k5.10.9_1 -> 6.1.18_k5.10.12_1) wayland (1.18.0 -> 1.19.0) xf86-video-nouveau (1.0.16 -> 1.0.17) xfce4-cpugraph-plugin (1.2.0 -> 1.2.1) xfce4-panel (4.16.0 -> 4.16.1) xterm (359 -> 363) yast2 (4.3.49 -> 4.3.51) yast2-pkg-bindings (4.3.6 -> 4.3.8) yast2-storage-ng (4.3.40 -> 4.3.41) yast2-trans (84.87.20210116.f5a95d2c8b -> 84.87.20210130.332fb904b7) zeromq (4.3.3 -> 4.3.4) zstd === Details === ==== 389-ds ==== Version update (2.0.1~git0.b557f5daa -> 2.0.2~git0.6d17ca7df) Subpackages: lib389 libsvrcore0 - As there is no python-* package, the direct use of singlespec seems unapplicable. So do not build for all python3.x flavors, but only for the main one: + Use releavant %python3_ macros. + Do not use %python_module, as this pulls in all python versions. - Update to version 2.0.2~git0.6d17ca7df: * Bump version to 2.0.2 * Issue 4539 - BUG - no such file if no overlays in openldap during migration (#4540) * Issue 4528 - Fix cn=monitor SCOPE_ONE search (#4529) * Issue 4535 - lib389 - healthcheck throws exception if backend is not replicated * Issue 4537 - Use KRB5_CLIENT_KTNAME for client keytabs (#4523) * Issue 4513 - CI Tests - fix test failures * Issue 4504 - insure that repl_monitor_test use ldapi (for RHEL) - fix merge issue (#4533) * Issue 4315 - performance search rate: nagle triggers high rate of setsocketopt * Issue 4504 - Insure ldapi is enabled in repl_monitor_test.py (Needed on RHEL) (#4527) * Issue 4506 - BUG - Fix bounds on fd table population (#4520) * Issue 4521 - DS crash in deref plugin if dereferenced entry exists but is not returned by internal search (#4525) * Issue 4219 - Log internal unindexed searches (notes=A) * Issue 4384 - Separate eventq into REALTIME and MONOTONIC * Issue 4381 - RFE - LDAPI authentication DN rewritter * Issue 4513 - Fix schema test and lib389 task module (#4514) * Issue 4414 - disk monitoring - prevent division by zero crash * Issue 4517 - BUG: Multiple systemd pin warnings (#4518) * Issue 4507 - Improve csngen testing task (#4508) * Issue 4498 - BUG - entryuuid replication may not work (#4503) * Issue 4480 - Unexpected info returned to ldap request (#4491) * Issue #4504 - Fix pytest test_dsconf_replication_monitor (#4505) * Issue 4373 - BUG - one line cleanup, free results in mt if ent 0 (#4502) * Merge pull request #4501 from mreynolds389/issue4500 * Issue 4272 RFE - add support for gost-yescrypt for hashing passwords (#4497) * Issue 1795 - RFE - Enable logging for libldap and libber in error log (#4481) * Issue 3522 - Remove DES to AES conversion code * Issue 4492 - Changelog cache can upload updates from a wrong starting point (CSN) (#4493) * Issue 4373 - BUG - calloc of size 0 in MT build (#4496) * Issue 4483 - heap-use-after-free in slapi_be_getsuffix * Issue 4486 - Remove random ldif file generation from import test (#4487) * Issue 4224 - cleanup specfile after libsds removal * Issue 4421 - Unable to build with Rust enabled in closed environment * Issue 4489 - Remove return statement from a void function (#4490) * Issue 4229 - RFE - Improve rust linking and build performance (#4474) * Ticket 4224 - openldap can become confused with entryuuid * Ticket 4313 - improve tests and improve readme re refdel * Ticket 4313 - fix potential syncrepl data corruption * Issue 4419 - Warn users of skipped entries during ldif2db online import (#4476) * Issue 4243 - Fix test (4th): SyncRepl plugin provides a wrong (#4475) * Issue 4315: performance search rate: nagle triggers high rate of setsocketopt (#4437) * Issue 4460 - BUG - add machine name to subject alt names in SSCA (#4472) * Issue 4446 RFE - openldap password hashers * Issue 4284 - dsidm fails to delete an organizationalUnit entry * Issue 4243 - Fix test: SyncRepl plugin provides a wrong cookie (#4466) (#4466) * Issue 4464 - RFE - clang with ds+asan+rust * Issue 4105 - Remove python.six (fix regression) * Issue 4384 - Use MONOTONIC clock for all timing events and conditions * Issue 4418 - ldif2db - offline. Warn the user of skipped entries * Issue 4243 - Fix test: SyncRepl plugin provides a wrong cookie (#4467) * Issue 4460 - BUG - lib389 should use system tls policy * Issue 3657 - Add options to dsctl for dsrc file * Issue 4454 - RFE - fix version numbers to allow object caching * Issue 3986 - UI - Handle objectclasses that do not have X-ORIGIN set * Issue 4297 - 2nd fix for on ADD replication URP issue internal searches with filter containing unescaped chars (#4439) * Issue 4112 - Added a CI test (#4441) * Issue 4449 - dsconf replication monitor fails to retrieve database RUV - consumer (Unavailable) (#4451) * Issue 4105 - Remove python.six from lib389 (#4456) * Fix pytest test collection * Issue 4440 - BUG - ldifgen with --start-idx option fails with unsupported operand (#4444) * Issue 4410 RFE - ndn cache with arc in rust * Issue 4373 - BUG - Mapping Tree nodes can be created that are invalid * Issue 4428 - BUG Paged Results with critical false causes sigsegv in chaining * Issue 4428 - Paged Results with Chaining Test Case * do not add referrals for masters with different data generation #2054 (#4427) * Issue 4383 - Do not normalize escaped spaces in a DN * Issue 4432 - After a failed online import the next imports are very slow * Issue 4316 - performance search rate: useless poll on network send callback (#4424) * Issue 4281 - dsidm user status fails with Error: 'nsUserAccount' object has no attribute 'is_locked' * Issue 4429 - NULL dereference in revert_cache() * Issue 4412 - Fix CLI repl-agmt requirement for parameters (#4422) * Issue 4407 RFE - remove http client and presence plugin (#4409) * build problems at alpine linux * Issue 4415 - unable to query schema if there are extra parenthesis ==== ImageMagick ==== Version update (7.0.10.58 -> 7.0.10.59) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI8 libMagickWand-7_Q16HDRI8 - update to 7.0.10.59: * strip EXIF marker from profile * add --enable-opencl to the configure command-line to enable OpenCL support. * generate histograms by comparing pixel components rather than color ==== autoyast2 ==== Version update (4.3.65 -> 4.3.67) Subpackages: autoyast2-installation - AutoYaST UI: fixed field Mount Options (fstopt) in the partitioning section (bsc#1181577). - 4.3.67 - AutoYaST UI: added drive types CT_NFS and CT_TMPFS to the partitioning section (part of jsc#SLE-11308). - 4.3.66 ==== b43-fwcutter ==== - use %_firmwaredir ==== bison ==== Version update (3.7.4 -> 3.7.5) Subpackages: bison-lang - use https for sources - GNU bison 3.7.5: * Fix crashes in counterexample generation * Fix Table Generation generating incorrect parsers when there are many useless tokens * GLR parsers now support %merge together with api.value.type=union * C++ parsers use noexcept in more places * Generated parsers avoid some warnings about signedness issues * C-language parsers now avoid warnings from pedantic clang ==== clazy ==== - Use a stricter llvm requirement. Only relying on the llvm soversion is still not enough. (kde#432078) ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavdevice58_10 libavfilter7_85 libavformat58_45 libavresample4_0 libavutil56_51 libpostproc55_7 libswresample3_7 libswscale5_7 - remove dependency on OpenJPEG, this is obsolete since ffmpeg 4.0, we already build against OpenJPEG 2.1. see changes: - Dropped support for OpenJPEG versions 2.0 and below. Using OpenJPEG now requires 2.1 (or later) and pkg-config. ==== firewalld ==== Version update (0.9.1 -> 0.9.3) Subpackages: firewalld-lang python3-firewall - Disable FlushAllOnReload option to not retain interface to zone assignments and direct rules when using --reload option. * 0002-Disable-FlushAllOnReload-option.patch - Update to 0.9.3 (jsc#SLE-17336): * docs(dbus): fix invalid method names * fix(forward): iptables: ipset used as zone source * fix(rich): non-printable characters removed from rich rules * docs(firewall-cmd): small description grammar fix * fix(rich): limit table to strip non-printables to C0 and C1 * fix(zone): add source with mac address ==== gdm ==== Subpackages: gdm-lang gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Fixup gdm.sysyers: gecos field needs to be quoted for multi-word value. - Use sysusers config file to generate gdm user ==== ghostscript-fonts-grops ==== - Use rpm.vercmp to compare versions ==== gimp ==== Subpackages: gimp-lang gimp-plugin-aa gimp-plugins-python libgimp-2_0-0 libgimpui-2_0-0 - Make graphviz/dot only required for runtime debugging an optional dependency, fixes bsc#1180614: * 0001-app-make-gegl-introspect-an-optional-operation-depen.patch - Cleanup spec file, remove Leap 42.x parts ==== glibmm2_4 ==== Version update (2.64.5 -> 2.66.0) Subpackages: libgiomm-2_4-1 libglibmm-2_4-1 - Update to version 2.66.0: + Glib: - Binding: Add set_manage() and Glib::manage(). - Deprecate BalancedTree in favour of std::map and std::unordered_map. + Gio: - ListStore: Accept interfaces. - MenuAttribute: Add new enum values. - SettingsSchemaSource: Wrap new_from_directory() and list_schemas(). ==== gnome-software ==== Subpackages: gnome-software-lang libgnomesoftware-3_38_0 - Remove hard dependency on zypp appdata plugin if other PackageKit backend is used ==== graphene ==== Subpackages: libgraphene-1_0-0 typelib-1_0-Graphene-1_0 - Pass conditional Darm_neon=false instead of Darm-neon=true to meson, fix build for armv7. - Stop passing Dbenchmarks=true, no longer recognized nor used. ==== iproute2 ==== Version update (5.9.0 -> 5.10.0) - Update to release 5.10 * iplink: add support for protodown reason * ss: add support to expose various inet sockopts * ss: add support for XDP statistics * bridge: mdb: add support for source address ==== jack ==== Version update (1.9.16 -> 1.9.17) - update to 1.9.17: * Fix jack_control stopping after first command iteration * Fix registry keys for Windows, add 32bit compat ones on 64bit * Fix library compat/current version under macOS * Fix return codes of jackd on success * Ignore DB_VERSION_MISMATCH error on windows, it is expected * Remove old workaround for asio4all, as it breaks with jack-router ==== kernel-source ==== Version update (5.10.9 -> 5.10.12) Subpackages: kernel-default kernel-docs - Linux 5.10.12 (bsc#1012628). - gpio: mvebu: fix pwm .get_state period calculation (bsc#1012628). - Revert "mm/slub: fix a memory leak in sysfs_slab_add()" (bsc#1012628). - futex: Ensure the correct return value from futex_lock_pi() (bsc#1012628). - futex: Replace pointless printk in fixup_owner() (bsc#1012628). - futex: Provide and use pi_state_update_owner() (bsc#1012628). - rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (bsc#1012628). - futex: Use pi_state_update_owner() in put_pi_state() (bsc#1012628). - futex: Simplify fixup_pi_state_owner() (bsc#1012628). - futex: Handle faults correctly for PI futexes (bsc#1012628). - HID: wacom: Correct NULL dereference on AES pen proximity (bsc#1012628). - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices (bsc#1012628). - media: Revert "media: videobuf2: Fix length check for single plane dmabuf queueing" (bsc#1012628). - media: v4l2-subdev.h: BIT() is not available in userspace (bsc#1012628). - RDMA/vmw_pvrdma: Fix network_hdr_type reported in WC (bsc#1012628). - kernel/io_uring: cancel io_uring before task works (bsc#1012628). - io_uring: inline io_uring_attempt_task_drop() (bsc#1012628). - io_uring: add warn_once for io_uring_flush() (bsc#1012628). - io_uring: stop SQPOLL submit on creator's death (bsc#1012628). - io_uring: fix null-deref in io_disable_sqo_submit (bsc#1012628). - io_uring: do sqo disable on install_fd error (bsc#1012628). - io_uring: fix false positive sqo warning on flush (bsc#1012628). - io_uring: fix uring_flush in exit_files() warning (bsc#1012628). - io_uring: fix skipping disabling sqo on exec (bsc#1012628). - io_uring: dont kill fasync under completion_lock (bsc#1012628). - io_uring: fix sleeping under spin in __io_clean_op (bsc#1012628). - objtool: Don't fail on missing symbol table (bsc#1012628). - mm/page_alloc: add a missing mm_page_alloc_zone_locked() tracepoint (bsc#1012628). - mm: fix a race on nr_swap_pages (bsc#1012628). - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions (bsc#1012628). - printk: fix buffer overflow potential for print_text() (bsc#1012628). - printk: fix string termination for record_print_text() (bsc#1012628). - commit a3c8888 - floppy: reintroduce O_NDELAY fix (boo#1181018). - commit fcfe481 - Update config files. Only refresh after 5.10.11. - commit 90db4e6 - Linux 5.10.11 (bsc#1012628). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1012628). - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload (bsc#1012628). - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine (bsc#1012628). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1012628). - i2c: bpmp-tegra: Ignore unknown I2C_M flags (bsc#1012628). - platform/x86: i2c-multi-instantiate: Don't create platform device for INT3515 ACPI nodes (bsc#1012628). - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634 (bsc#1012628). - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info() (bsc#1012628). - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T (bsc#1012628). - ALSA: hda/via: Add minimum mute flag (bsc#1012628). - crypto: xor - Fix divide error in do_xor_speed() (bsc#1012628). - dm crypt: fix copy and paste bug in crypt_alloc_req_aead (bsc#1012628). - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error (bsc#1012628). - btrfs: don't get an EINTR during drop_snapshot for reloc (bsc#1012628). - btrfs: do not double free backref nodes on error (bsc#1012628). - btrfs: fix lockdep splat in btrfs_recover_relocation (bsc#1012628). - btrfs: don't clear ret in btrfs_start_dirty_block_groups (bsc#1012628). - btrfs: send: fix invalid clone operations when cloning from the same file and root (bsc#1012628). - fs: fix lazytime expiration handling in __writeback_single_inode() (bsc#1012628). - pinctrl: ingenic: Fix JZ4760 support (bsc#1012628). - mmc: core: don't initialize block size from ext_csd if not present (bsc#1012628). - mmc: sdhci-of-dwcmshc: fix rpmb access (bsc#1012628). - mmc: sdhci-xenon: fix 1.8v regulator stabilization (bsc#1012628). - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend (bsc#1012628). - dm: avoid filesystem lookup in dm_get_dev_t() (bsc#1012628). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (bsc#1012628). - dm integrity: conditionally disable "recalculate" feature (bsc#1012628). - drm/atomic: put state on error path (bsc#1012628). - drm/syncobj: Fix use-after-free (bsc#1012628). - drm/amdgpu: remove gpu info firmware of green sardine (bsc#1012628). - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case (bsc#1012628). - drm/i915/gt: Prevent use of engine->wa_ctx after error (bsc#1012628). - drm/i915: Check for rq->hwsp validity after acquiring RCU lock (bsc#1012628). - ASoC: Intel: haswell: Add missing pm_ops (bsc#1012628). - ASoC: rt711: mutex between calibration and power state changes (bsc#1012628). - SUNRPC: Handle TCP socket sends with kernel_sendpage() again (bsc#1012628). - HID: multitouch: Enable multi-input for Synaptics pointstick/touchpad device (bsc#1012628). - HID: sony: select CONFIG_CRC32 (bsc#1012628). - dm integrity: select CRYPTO_SKCIPHER (bsc#1012628). - x86/hyperv: Fix kexec panic/hang issues (bsc#1012628). - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL (bsc#1012628). - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback (bsc#1012628). - scsi: qedi: Correct max length of CHAP secret (bsc#1012628). - scsi: scsi_debug: Fix memleak in scsi_debug_init() (bsc#1012628). - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled (bsc#1012628). - riscv: Fix kernel time_init() (bsc#1012628). - riscv: Fix sifive serial driver (bsc#1012628). - riscv: Enable interrupts during syscalls with M-Mode (bsc#1012628). - HID: logitech-dj: add the G602 receiver (bsc#1012628). - HID: Ignore battery for Elan touchscreen on ASUS UX550 (bsc#1012628). - clk: tegra30: Add hda clock default rates to clock driver (bsc#1012628). - ALSA: hda/tegra: fix tegra-hda on tegra30 soc (bsc#1012628). - riscv: cacheinfo: Fix using smp_processor_id() in preemptible (bsc#1012628). - arm64: make atomic helpers __always_inline (bsc#1012628). - xen: Fix event channel callback via INTX/GSI (bsc#1012628). - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery (bsc#1012628). - x86/xen: Fix xen_hvm_smp_init() when vector callback not available (bsc#1012628). - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device (bsc#1012628). - dts: phy: add GPIO number and active state used for phy reset (bsc#1012628). - riscv: defconfig: enable gpio support for HiFive Unleashed (bsc#1012628). - drm/amdgpu/psp: fix psp gfx ctrl cmds (bsc#1012628). - drm/amd/display: disable dcn10 pipe split by default (bsc#1012628). - HID: logitech-hidpp: Add product ID for MX Ergo in Bluetooth mode (bsc#1012628). - drm/amd/display: Fix to be able to stop crc calculation (bsc#1012628). - drm/nouveau/bios: fix issue shadowing expansion ROMs (bsc#1012628). - drm/nouveau/privring: ack interrupts the same way as RM (bsc#1012628). - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields (bsc#1012628). - drm/nouveau/mmu: fix vram heap sizing (bsc#1012628). - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0 (bsc#1012628). - io_uring: flush timeouts that should already have expired (bsc#1012628). - libperf tests: If a test fails return non-zero (bsc#1012628). - libperf tests: Fail when failing to get a tracepoint id (bsc#1012628). - RISC-V: Set current memblock limit (bsc#1012628). - RISC-V: Fix maximum allowed phsyical memory for RV32 (bsc#1012628). - x86/xen: fix 'nopvspin' build error (bsc#1012628). - nfsd: Fixes for nfsd4_encode_read_plus_data() (bsc#1012628). - nfsd: Don't set eof on a truncated READ_PLUS (bsc#1012628). - gpiolib: cdev: fix frame size warning in gpio_ioctl() (bsc#1012628). - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting (bsc#1012628). - pinctrl: mediatek: Fix fallback call path (bsc#1012628). - RDMA/ucma: Do not miss ctx destruction steps in some cases (bsc#1012628). - btrfs: print the actual offset in btrfs_root_name (bsc#1012628). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1012628). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1012628). - scsi: ufs: Fix tm request when non-fatal error happens (bsc#1012628). - crypto: omap-sham - Fix link error without crypto-engine (bsc#1012628). - bpf: Prevent double bpf_prog_put call from bpf_tracing_prog_attach (bsc#1012628). - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S (bsc#1012628). - powerpc: Fix alignment bug within the init sections (bsc#1012628). - arm64: entry: remove redundant IRQ flag tracing (bsc#1012628). - bpf: Reject too big ctx_size_in for raw_tp test run (bsc#1012628). - drm/amdkfd: Fix out-of-bounds read in kdf_create_vcrat_image_cpu() (bsc#1012628). - RDMA/umem: Avoid undefined behavior of rounddown_pow_of_two() (bsc#1012628). - RDMA/cma: Fix error flow in default_roce_mode_store (bsc#1012628). - printk: ringbuffer: fix line counting (bsc#1012628). - printk: fix kmsg_dump_get_buffer length calulations (bsc#1012628). - iov_iter: fix the uaccess area in copy_compat_iovec_from_user (bsc#1012628). - i2c: octeon: check correct size of maximum RECV_LEN packet (bsc#1012628). - drm/vc4: Unify PCM card's driver_name (bsc#1012628). - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-list (bsc#1012628). - platform/x86: hp-wmi: Don't log a warning on HPWMI_RET_UNKNOWN_COMMAND errors (bsc#1012628). - gpio: sifive: select IRQ_DOMAIN_HIERARCHY rather than depend on it (bsc#1012628). - ALSA: hda: Balance runtime/system PM if direct-complete is disabled (bsc#1012628). - xsk: Clear pool even for inactive queues (bsc#1012628). - selftests: net: fib_tests: remove duplicate log test (bsc#1012628). - can: dev: can_restart: fix use after free bug (bsc#1012628). - can: vxcan: vxcan_xmit: fix use after free bug (bsc#1012628). - can: peak_usb: fix use after free bugs (bsc#1012628). - perf evlist: Fix id index for heterogeneous systems (bsc#1012628). - i2c: sprd: depend on COMMON_CLK to fix compile tests (bsc#1012628). - iio: common: st_sensors: fix possible infinite loop in st_sensors_irq_thread (bsc#1012628). - iio: ad5504: Fix setting power-down state (bsc#1012628). - drivers: iio: temperature: Add delay after the addressed reset command in mlx90632.c (bsc#1012628). - iio: adc: ti_am335x_adc: remove omitted iio_kfifo_free() (bsc#1012628). - counter:ti-eqep: remove floor (bsc#1012628). - powerpc/64s: fix scv entry fallback flush vs interrupt (bsc#1012628). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (bsc#1012628). - irqchip/mips-cpu: Set IPI domain parent chip (bsc#1012628). - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state (bsc#1012628). - x86/topology: Make __max_die_per_package available unconditionally (bsc#1012628). - x86/mmx: Use KFPU_387 for MMX string operations (bsc#1012628). - x86/setup: don't remove E820_TYPE_RAM for pfn 0 (bsc#1012628). - proc_sysctl: fix oops caused by incorrect command parameters (bsc#1012628). - mm: memcg/slab: optimize objcg stock draining (bsc#1012628). - mm: memcg: fix memcg file_dirty numa stat (bsc#1012628). - mm: fix numa stats for thp migration (bsc#1012628). - io_uring: iopoll requests should also wake task ->in_idle state (bsc#1012628). - io_uring: fix SQPOLL IORING_OP_CLOSE cancelation state (bsc#1012628). - io_uring: fix short read retries for non-reg files (bsc#1012628). - intel_th: pci: Add Alder Lake-P support (bsc#1012628). - stm class: Fix module init return on allocation failure (bsc#1012628). - serial: mvebu-uart: fix tx lost characters at power off (bsc#1012628). - ehci: fix EHCI host controller initialization sequence (bsc#1012628). - USB: ehci: fix an interrupt calltrace error (bsc#1012628). - usb: gadget: aspeed: fix stop dma register setting (bsc#1012628). - USB: gadget: dummy-hcd: Fix errors in port-reset handling (bsc#1012628). - usb: udc: core: Use lock when write to soft_connect (bsc#1012628). - usb: bdc: Make bdc pci driver depend on BROKEN (bsc#1012628). - usb: cdns3: imx: fix writing read-only memory issue (bsc#1012628). - usb: cdns3: imx: fix can't create core device the second time issue (bsc#1012628). - xhci: make sure TRB is fully written before giving it to the controller (bsc#1012628). - xhci: tegra: Delay for disabling LFPS detector (bsc#1012628). - drivers core: Free dma_range_map when driver probe failed (bsc#1012628). - driver core: Fix device link device name collision (bsc#1012628). - driver core: Extend device_is_dependent() (bsc#1012628). - drm/i915: s/intel_dp_sink_dpms/intel_dp_set_power/ (bsc#1012628). - drm/i915: Only enable DFP 4:4:4->4:2:0 conversion when outputting YCbCr 4:4:4 (bsc#1012628). - x86/entry: Fix noinstr fail (bsc#1012628). - x86/cpu/amd: Set __max_die_per_package on AMD (bsc#1012628). - cls_flower: call nla_ok() before nla_next() (bsc#1012628). - netfilter: rpfilter: mask ecn bits before fib lookup (bsc#1012628). - tools: gpio: fix %llu warning in gpio-event-mon.c (bsc#1012628). - tools: gpio: fix %llu warning in gpio-watch.c (bsc#1012628). - drm/i915/hdcp: Update CP property in update_pipe (bsc#1012628). - sh: dma: fix kconfig dependency for G2_DMA (bsc#1012628). - sh: Remove unused HAVE_COPY_THREAD_TLS macro (bsc#1012628). - locking/lockdep: Cure noinstr fail (bsc#1012628). - ASoC: SOF: Intel: fix page fault at probe if i915 init fails (bsc#1012628). - octeontx2-af: Fix missing check bugs in rvu_cgx.c (bsc#1012628). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (bsc#1012628). - selftests/powerpc: Fix exit status of pkey tests (bsc#1012628). - sh_eth: Fix power down vs. is_opened flag ordering (bsc#1012628). - nvme-pci: refactor nvme_unmap_data (bsc#1012628). - nvme-pci: fix error unwind in nvme_map_data (bsc#1012628). - cachefiles: Drop superfluous readpages aops NULL check (bsc#1012628 bsc#1175245). - lightnvm: fix memory leak when submit fails (bsc#1012628). - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too (bsc#1012628). - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow (bsc#1012628). - kasan: fix incorrect arguments passing in kasan_add_zero_shadow (bsc#1012628). - tcp: fix TCP socket rehash stats mis-accounting (bsc#1012628). - net_sched: gen_estimator: support large ewma log (bsc#1012628). - udp: mask TOS bits in udp_v4_early_demux() (bsc#1012628). - ipv6: create multicast route with RTPROT_KERNEL (bsc#1012628). - net_sched: avoid shift-out-of-bounds in tcindex_set_parms() (bsc#1012628). - net_sched: reject silly cell_log in qdisc_get_rtab() (bsc#1012628). - ipv6: set multicast flag on the multicast route (bsc#1012628). - net: mscc: ocelot: allow offloading of bridge on top of LAG (bsc#1012628). - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled (bsc#1012628). - net: dsa: b53: fix an off by one in checking "vlan->vid" (bsc#1012628). - tcp: do not mess with cloned skbs in tcp_add_backlog() (bsc#1012628). - tcp: fix TCP_USER_TIMEOUT with zero window (bsc#1012628). - net: mscc: ocelot: Fix multicast to the CPU port (bsc#1012628). - net: core: devlink: use right genl user_ptr when handling port param get/set (bsc#1012628). - pinctrl: qcom: Allow SoCs to specify a GPIO function that's not 0 (bsc#1012628). - pinctrl: qcom: No need to read-modify-write the interrupt status (bsc#1012628). - pinctrl: qcom: Properly clear "intr_ack_high" interrupts when unmasking (bsc#1012628). - pinctrl: qcom: Don't clear pending interrupts when enabling (bsc#1012628). - x86/sev: Fix nonistr violation (bsc#1012628). - tty: implement write_iter (bsc#1012628). - tty: fix up hung_up_tty_write() conversion (bsc#1012628). - net: systemport: free dev before on error path (bsc#1012628). - x86/sev-es: Handle string port IO to kernel memory properly (bsc#1012628). - tcp: Fix potential use-after-free due to double kfree() (bsc#1012628). - ASoC: SOF: Intel: hda: Avoid checking jack on system suspend (bsc#1012628). - drm/i915/hdcp: Get conn while content_type changed (bsc#1012628). - bpf: Local storage helpers should check nullness of owner ptr passed (bsc#1012628). - kernfs: implement ->read_iter (bsc#1012628). - kernfs: implement ->write_iter (bsc#1012628). - kernfs: wire up ->splice_read and ->splice_write (bsc#1012628). - interconnect: imx8mq: Use icc_sync_state (bsc#1012628). - fs/pipe: allow sendfile() to pipe again (bsc#1012628). - Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to use write_iter. Fix the redirected_tty_write declaration also in n_tty and change the comparisons to use write_iter instead of write. also in n_tty and change the comparisons to use write_iter instead of write (bsc#1012628). - mm: fix initialization of struct page for holes in memory layout (bsc#1012628). - Revert "mm: fix initialization of struct page for holes in memory layout" (bsc#1012628). - Delete patches.suse/fs-cachefs-Drop-superfluous-readpages-aops-NULL-chec.patch. - commit 7d05541 - ALSA: hda/via: Apply the workaround generically for Clevo machines (bsc#1181330). - commit 87d962b - Linux 5.10.10 (bsc#1012628). - spi: cadence: cache reference clock rate during probe (bsc#1012628). - spi: fsl: Fix driver breakage when SPI_CS_HIGH is not set in spi->mode (bsc#1012628). - cxgb4/chtls: Fix tid stuck due to wrong update of qid (bsc#1012628). - net: dsa: unbind all switches from tree when DSA master unbinds (bsc#1012628). - mac80211: check if atf has been disabled in __ieee80211_schedule_txq (bsc#1012628). - mac80211: do not drop tx nulldata packets on encrypted links (bsc#1012628). - drm/panel: otm8009a: allow using non-continuous dsi clock (bsc#1012628). - can: mcp251xfd: mcp251xfd_handle_rxif_one(): fix wrong NULL pointer check (bsc#1012628). - net: stmmac: use __napi_schedule() for PREEMPT_RT (bsc#1012628). - rxrpc: Fix handling of an unsupported token type in rxrpc_read() (bsc#1012628). - net: dsa: clear devlink port type before unregistering slave netdevs (bsc#1012628). - net: phy: smsc: fix clk error handling (bsc#1012628). - dt-bindings: net: renesas,etheravb: RZ/G2H needs tx-internal-delay-ps (bsc#1012628). - net: avoid 32 x truesize under-estimation for tiny skbs (bsc#1012628). - net: stmmac: fix taprio configuration when base_time is in the past (bsc#1012628). - net: stmmac: fix taprio schedule configuration (bsc#1012628). - net: sit: unregister_netdevice on newlink's error path (bsc#1012628). - net: stmmac: Fixed mtu channged by cache aligned (bsc#1012628). - i40e: fix potential NULL pointer dereferencing (bsc#1012628). - rxrpc: Call state should be read with READ_ONCE() under some circumstances (bsc#1012628). - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands (bsc#1012628). - net: dcb: Validate netlink message in DCB handler (bsc#1012628). - esp: avoid unneeded kmap_atomic call (bsc#1012628). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (bsc#1012628). - net: mvpp2: Remove Pause and Asym_Pause support (bsc#1012628). - mlxsw: core: Increase critical threshold for ASIC thermal zone (bsc#1012628). - mlxsw: core: Add validation of transceiver temperature thresholds (bsc#1012628). - tipc: fix NULL deref in tipc_link_xmit() (bsc#1012628). - net: ipv6: Validate GSO SKB before finish IPv6 processing (bsc#1012628). - netxen_nic: fix MSI/MSI-x interrupts (bsc#1012628). - udp: Prevent reuseport_select_sock from reading uninitialized socks (bsc#1012628). - net: fix use-after-free when UDP GRO with shared fraglist (bsc#1012628). - net: ipa: modem: add missing SET_NETDEV_DEV() for proper sysfs links (bsc#1012628). - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback (bsc#1012628). - bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling (bsc#1012628). - bpf: Don't leak memory in bpf getsockopt when optlen == 0 (bsc#1012628). - nfsd4: readdirplus shouldn't return parent of export (bsc#1012628). - X.509: Fix crash caused by NULL pointer (bsc#1012628). - bpf: Fix signed_{sub,add32}_overflows type handling (bsc#1012628). - drm/amdgpu/display: drop DCN support for aarch64 (bsc#1012628). - Update config files. - x86/hyperv: Initialize clockevents after LAPIC is initialized (bsc#1012628). - bpf: Fix selftest compilation on clang 11 (bsc#1012628). - Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands" (bsc#1012628). - commit 167b75d - drm/gpu/nouveau/dispnv50: Restore pushing of all data (boo#1181271). - commit c3f7185 - media: pwc: Fix the URB buffer allocation (bsc#1181133). - commit a9c85b1 - media: dvb-usb: Fix use-after-free access (bsc#1181104). - media: dvb-usb: Fix memory leak at error in dvb_usb_device_init() (bsc#1181104). - commit 807ed8c ==== kmod ==== Version update (27 -> 28) Subpackages: libkmod2 - Supplement bash-completion subpackage against the main package and bash-completion. - Also require the main package plus bash-completion: the completion package is useless without either of the two. - Update to v28 * Add Zstandard to the supported compression formats using libzstd (tests only - cannot be disabled in tests) * Ignore ill-formed kernel command line, e.g. with "ivrs_acpihid[00:14.5]=AMD0020:0" option in it * Fix some memory leaks * Fix 0-length builtin.alias.bin: it needs at least the index header - Backport upstream fix 0001-Fix-modinfo-F-always-shows-name-for-built-ins.patch ==== libXt ==== Version update (1.2.0 -> 1.2.1) Subpackages: libXt-devel libXt6 - update to 1.2.1: * _XtCalloc actually uses a Cardinal, not size_t * add errorhandling to _XtVaToTypedArgList() * refactoring, reduce indent level * work within existing interface which attempts to obtain the display-pointer from the screen-pointer but fails when the screen-pointer itself is invalid. Ensure that the screen-pointer is valid by checking the default_screen value against the valid range, and forcing it to zero if it is out of bounds. * indent ==== libdrm ==== Version update (2.4.103 -> 2.4.104) Subpackages: libdrm-devel libdrm2 libdrm_amdgpu1 libdrm_intel1 libdrm_nouveau2 libdrm_radeon1 - reenabled build of manual pages (switch from xsltproc to rst2man) - update to 2.4.104: * headers: drm: Sync with drm-next * Remove outdated comments about stdint.h * Remove definitions duplicated from drm_mode.h * xf86drmMode.h use ANSI C99 arrays * Document drmModeConnection * man: convert to reSTructuredText * testsuite fixes ==== libqt5-qtwebengine ==== - Bump _constraints and %limit_build, hopefully avoid occasional OOM and make the build quicker - Drop obsolete conditions ==== libreoffice ==== Version update (7.0.3.1 -> 7.0.4.2) Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Fix bsc#1177955 - LO-L3: SmartArt: text wrongly aligned, background boxes not quite right,... * bsc1177955.diff - Update to 7.0.4 * .4 bugfix release of 7.0 series - Removed patch: * icu68.patch + integrated upstream ==== librsvg ==== Version update (2.50.2 -> 2.50.3) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 librsvg-lang rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.50.3: + Compute correct bounds for objects with stroke-width=0. + Fix test suite on Rust 1.49. ==== libstorage-ng ==== Version update (4.3.85 -> 4.3.86) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#796 - Simplify compound actions for subvolumes - Show single subvol action - Update pot and po files - Rename method - 4.3.86 ==== libunwind ==== Version update (1.4.0 -> 1.5.0) - update to 1.5.0: * dwarf: clang doesn't respect the static alias * Fixed a missing dependency in dwarf-eh.h * x86_64: Fix tdep_init_done when built with libatomic_ops * mips: make _step_n64 as a static function * Added braces to suppress empty if/else warnings * Delete hardcode of address size to support MIPS64. * Fix format specifier for int64_t:29 * Add initial support for Solaris x86-64 * x86_64: Add fixup code if previous RIP was invalid * x86-64: make `is_cached_valid_mem` functional * arm: clear ip thumb/arm mode bit before move to previous instruction * Fix compilation with -fno-common. * Fix off-by-one error in x86_64 stack frames * aarch64: Fix __sigset build issue on muslC * Make SHF_COMPRESSED use contingent on its existence - remove libunwind_U_dyn_info_list.patch (upstream) ==== libvirt ==== Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - Revert "Add libvirtd dependency to virt-guest-shutdown.target" 32c5e432-revert-f035f53b.patch bsc#1177902 - spec: Enable the libvirt firewalld zone in SLE >= 15 SP3 jsc#SLE-17336 ==== mailutils ==== Subpackages: libmailutils5 - remove obsolete info macros (boo#1152105) - fix update-alternatives usage (need to be in postun) - prepare usrmerge (boo#1029961) ==== mailx ==== - update-alternatives call needs to be in postun rather than preun ==== memtest86+ ==== Version update (5.01 -> 5.31b) - update to 5.31b: * Added support for up to 2 TB of RAM on X64 CPUs * Added experimental SMT support up to 32 cores (Press F2 to enable at startup) * Added complete detection for memory controllers * Added Motherboard Manufacturer & Model reporting * Added CPU temperature reporting * Added enhanced Fail Safe Mode (Press F1 at startup) * Added support for Intel "Sandy Bridge-E" CPUs * Added support for Intel "Ivy Bridge" CPUs * Added preliminary support for Intel "Haswell" CPUs (Core 4th Gen) * Added preliminary support for Intel "Haswell-ULT" CPUs * Added support for AMD "Kabini" (K16) CPUs * Added support for AMD "Bulldozer" CPUs * Added support for AMD "Trinity" CPUs * Added support for AMD E-/C-/G-/Z- "Bobcat" CPUs * Added support for Intel Atom "Pineview" CPUs * Added support for Intel Atom "Cedar Trail" CPUs * Added SPD detection on most AMD Chipsets * Enforced Coreboot support * Optimized run time for faster memory error detection * Rewriten lots of memory timings detection cod * Corrected bugs, bugs and more bugs (some could remain) - drop memtest86+-5.01-array-size-fix.patch, memtest86+-5.01-compile-fix.patch memtest86+-gcc5.patch: upstream ==== mousepad ==== Version update (0.5.1 -> 0.5.2) Subpackages: mousepad-lang - Update to version 0.5.2 * Add a "Viewer Mode" toggle (gxo#apps/mousepad#50, gxo#apps/mousepad!72) * Improve `--quit` option: close all windows interactively (gxo#apps/mousepad!71) * Improve encoding management (gxo#apps/mousepad#42, gxo#apps/mousepad!69) - Display the current encoding in the status bar - Make the default encoding configurable via GSettings - Allow to choose encoding in the "Open" and "Save As" dialogs (gxo#apps/mousepad#42) - Add a command line option to choose encoding * Add a "Delete Line" action (gxo#apps/mousepad#13, gxo#apps/mousepad!66) * Make automatic addition of the last EOL character configurable (gxo#apps/mousepad#53, gxo#apps/mousepad!65) * Switch to GFile for I/O operations (gxo#apps/mousepad#4, gxo#apps/mousepad#27, gxo#apps/mousepad#75, gxo#apps/mousepad!64) * - Add file monitoring (gxo#apps/mousepad#75) * - Add a setting to create a tilde-backup file when saving (gxo#apps/mousepad#27) * - Make saving atomic (gxo#apps/mousepad#4) * Filter files on mime type in the "Open" and "Save As" dialogs (gxo#apps/mousepad#2, gxo#apps/mousepad#35, gxo#apps/mousepad!67) * Improve encoding management (gxo#apps/mousepad#42, gxo#apps/mousepad!69) - Make encoding dialog more generic and self-contained - Encodings definition review - Clarify encoding management when opening files - Improve unicode BOM management * Switch to GFile for I/O operations (gxo#apps/mousepad#4, gxo#apps/mousepad#27, gxo#apps/mousepad#75, gxo#apps/mousepad!64) - Set the save action sensitivity more precisely - Let GFile APIs check for file existence when reading - Let GFile APIs check for external modifications when saving - Basic switch to GFile for I/O operations * Make "replace" and "replace all" behaviors consistent * (gxo#apps/mousepad#94) * Ensure that the page setup is properly applied when printing * (gxo#apps/mousepad#90) * Avoid character escape issues in menu item action names (gxo#apps/mousepad#91) * Properly initialize document search properties * Avoid illegal memory access when searching with tab changes (gxo#apps/mousepad!73) * Revert to "Wrap Around" always true for the search bar (gxo#apps/mousepad#83) * Prevent too late accesses to the buffer in selection mode * Direct call to keybinding signals for "Delete" and "Select All" (gxo#apps/mousepad#83) * Improve editing keybindings consistency (gxo#apps/mousepad#83) * Translation Updates ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add support for /etc/ssh/ssh_config.d and /etc/ssh/sshd_config.d (openssh-8.4p1-ssh_config_d.patch) ==== ovmf ==== Subpackages: qemu-ovmf-x86_64 qemu-uefi-aarch64 - Add ovmf-jscSLE-16075-SEV-ES-use-physical-address.patch as the follow-up patch for SEV-ES to fix the flash writing (jsc#SLE-16075) - Update 50-xen-hvm-x86_64.json to add "nvram-template" and change the firmware file to ovmf-x86_64-ms-4m.bin (bsc#1180050, bsc#1181264) - Refresh ovmf-bsc1180079-amd-sev-es-mitigation.patch + Use "git format-patch --no-renames" to generate the patch to avoid confusing quilt with the renamed files ==== pangomm1_4 ==== Version update (2.42.2 -> 2.46.0) - Update to version 2.46.0: + Attribute: Add Overline and ShowFlags enums and some create*() methods. + Font, FontFace, FontFamily, FontMetrics: Add new methods. + LayoutIter: Fix get_run(). + LayoutRun: - Fix a memory leak in split(). - Make most methods public. + GlyphString, Item: Wrap pango_shape_with_flags(). + Layout: - Add set/get_line_spacing(). - Add get_const_line() and get_const_lines(). + Coverage: Deprecate create(bytes, n_bytes), max(), to_bytes(). + Build: Requires pango >= 1.45.1 because of Overline. ==== perl-JSON ==== Version update (4.02 -> 4.03) - update to 4.03: - corrected one typo in POD (James E Keenan) - updated backportPP with JSON::PP 4.06 ==== permissions ==== Version update (1550_20201111 -> 1550_20210125) Subpackages: chkstat permissions-config - Update to version 20210125: * usbauth: drop compatibility variable for libexec * usbauth: Updated path for usbauth-npriv * profiles: finish usage of variable for polkit-agent-helper-1 ==== pinentry ==== Version update (1.1.0 -> 1.1.1) Subpackages: pinentry-gnome3 pinentry-gtk2 pinentry-qt5 - actually build efl based pinentry - re-enable validation of upstream signing key - update to 1.1.1: * A EFL-based pinentry has been contributed. * Disable echoing in backspace key is pressed first (GTK, Qt, TQt, and ncurses pinentries). * Support line editing in TTY pinentry. * Remove support for old GTK+2 (< 2.12.0). * Various minor fixes. - drop pinentry-qt-Fix-use-of-dangling-pointer.patch (upstream) - drop pinentry-ncurses6.diff: obsolete ==== pipewire ==== Version update (0.3.15 -> 0.3.20) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Add pkgconfig(ldacBT-abr) and pkgconfig(ldacBT-enc) BuildRequires: Build bluetooth ldac codec support. - Update to version 0.3.20: * Highlights + Latency was reduced in ALSA and PulseAudio and time reporting has improved a lot. + Bluetooth now has a native HFP backed, SBC XQ and mSBC support. + Many bugfixes and improvements, improved device support. * PipeWire improvements + pw-dump can now dump all objects such as Endpoints + pw-dump has a -m option to monitor changes + pw-dump can now dump metadata + pw-stream can now use the rate-match io to exactly produce the required number of samples for the current cycle. When using this feature, a stream can achieve the same low-latency as pw-filter. + spa-acp-tool can now load a custom profile-set and correctly parses the volume updates + There is now a nofail option when loading modules + The connection has been made reentrant to fix some strange random problems with metadata. + Turn some errors into warnings or simply info. + Executables are now built with PIE + S24OE formats should work now (MAudio FastTrack Pro) + Remove mlock warnings. Add support for mlockall with a config option. * Session-manager + There are now config files for bluez and v4l2 modules + Improve ALSA device and node properties + Bluetooth devices have better properties now. + The default device routing has been improved. * Device support + Port priorities are updated for UCM devices + ACP devices notify change in routes in all cases + There is now RW support in ALSA devices to increase compatibility. + Many improvements to Bluetooth. SBC XQ support can now be enabled with a config option. mSBC can be enabled with an option. + Bluetooth devices not expose Routes so that they look more like how PulseAudio handles them + Gracefully handle missing profile-sets + There is now a native HFP backend + Improve card names in some cases. + pause-on-idle is now disabled for ALSA devices. This can reduce pops and clicks when the device is stopped. * ALSA plugin + Use rate-match to reduce the latency + Implement a _delay() function to get smoother timestamps. + Fix property parsing. Fixes volume changes in alsamixer. * PulseAudio server + Use rate-match to reduce the latency. This also reduces the buffering in audioconvert and improves timestamp reporting. + Implement rate changes now that we have rate-match support. + pactl stats will now work + Fix excessive memory usage when a capture client doesn't read fast enough. - Update to version 0.3.19: * Highlights - Startup after login should be fixed now with inotify used to wait for permissions. - Channels should be mapped correctly now. - Many bluetooth improvements in LDAC, AptX-HD. AAC was also added. Headsets should work better now. - pipewire-libpulse was removed. It is now completely replaced by pipewire-pulse. - Fix a crasher bug in pipewire-pulse and some memory leaks. - Fix a bug with feedback loop that would cause 100% CPU. - A new pw-top tool to display real-time graph performance. - The example session manager now has config files. - The config file format was changed to use the SPA JSON tokenizer. This makes it more flexible and extensible. * PipeWire improvements - Fix debug of id in format channels - Audioconvert should now remap channels correctly in all cases. - Feedback loops were not scheduled correctly and would cause 100% CPU usage. - Small improvements to the profiler to also log incomplete graph status. - a new tool pw-top was added that prints real-time performance stats of the graph. - the rtkit module now sets the nice level to -11 * Session-manager - The session manager would sometimes link dont-reconnect nodes to another node, which would leak monitor streams in pipewire-pulse. - The session manager now has configuration files. Config files can also be placed in the user home directory to make custom configurations. - The session managers now creates unique device and node names for alsa and v4l2 devices. * Device support - Many improvements in Bluetooth codecs, LDAC stuttering, AptX-HD negotiation, LDAC ABR support - Bluetooth supports AAC audio now. - Many fixes to Bluetooth SCO transport used in headsets. - inotify support in device monitors - ACP was synced with the latest pulseaudio code - Fix a bug in enumeration of device ports. - PulseAudio server - seek flags and offset are now supported, making gstreamer pulse elements work better. - Fix a crasher bug in pipewire-pulse, we sometimes would write too much to the ringbuffer - Fix some memory leaks in error cases. - Fix handling of NULL string to locate default sink/source * JACK layer - Ports can also be found with the aliases now, making qjackctl work in more cases. - Changes from PipeWire 0.3.18: * Highlights - More work in the PulseAudio server. It should be compatible with more applications. - Bluetooth now support extra codecs such as AptX/HD and LDAC. - Support for virtual sources and sink was improved a lot. - Added a new pw-dump tool to dump the objects in JSON formats and for filtering them with tools like jq. - Many more stability fixes and improvements. * PipeWire improvements - Silence some harmless warnings - pw-cli can now be used to set parameters. - Streams now perform the correct channel mapping when linked to non-standard multichannel devices. Previously channels would get swapped. - port, node and device params are now cached in the server. This avoids opening and closing devices whenever some client enumerates formats, which improves performance a lot, especially in cases where opening a device is slow. - Add a command to keep a device open during negotiation. This is used to enumerate and set a format while opening the device just once, improving performance. - The null-sink scheduling was fixed. - A memory corruption bug was fixed in format conversion, this could cause crashes, silent channels or other undefined behaviour. - There is now a simple JSON parser. * Session-manager - Settings files are now stored in JSON. With the json parser this is easier to parse and extend * Device support - Bluetooth now supports additional codecs: LDAC, AptX and AptX HD. LDAC is known to not work very well yet. - ALSA devices will now default to the max supported channels if nothing else is specified. This makes it possible to use 8+ channel cards with the alsa-pcm module, which is not supported with the default alsa-acp module. - Enable mSBC support in oFono. - Add an option to disable hardware mixers - ALSA now improves support for batch devices. - The udev rules had references to Pulseaudio removed in order to not create conflicts. - Fix a potential crash in bluetooth devices when disconnecting. - UCM cards now use HW volume when possible. * PulseAudio server - The id can now be used as the name to locate cards and devices - Report streams with planar formats as well - Better error reporting when stream create fails - module-null-sink can now handle channels, rate and channel_map properties - Add support for 3 types of virtual devices: source, sink and duplex. - set-port was fixed - Some buffer parameters were tweaked to improve performance, compatibility and stuttering with lower latency. - NULL can be used as a name for the device sink/source - Support lookup of monitor names - Set properties more like pulseaudio so that some clients (Teamspeak) don't crash anymore - Changes from PipeWire 0.3.17: * Highlights - Fix crasher bug for kwin when screensharing stopped. - Massive improvements and compatibility fixes in the PulseAudio server. - The session manager now has a config directory in /etc/pipewire/media-session.d/ It will look for files there to activate session manager modules. Packagers can use this to only activate the audio modules when the PulseAudio server, libjack.so or the alsa modules are installed. * PipeWire improvements - We now clear hooks before adding them. Some application did not clear them and had random data for the destroy callback. - Return -ENOENT from unknown resources so apps can handle this better. It's a common problem when an app tries to introspect and object but it disappeared before the message reached the server. Apps should ignore this. - channelmap information is now passed with the volume settings. - DMABuf is not mmapp()ed anymore with the FLAG_MAP_BUFFERS in the stream or filter. This is because DMABuf usually requires more that just a simple mmap and is better left for the application. - increase the maximum number of ports for a client-node. - adapter and node-factory now support the linger option to keep the objects alive after the creating client disconnected. * Device support - ALSA now handles error in close(), like when unplugging a USB device. * Session-manager - The session manager is now handling DONT_RECONNECT streams without a target node. They get connected to a default node once and then fail to reconnect. - The session manager now exposes the stream setting as metadata. This makes it possible for other components, such as pulse-server to use this information. Information is stored as a json object for easier consumption. - The session manager now has a config directory in /etc/pipewire/media-session.d/ packagers can use this * PulseAudio server - Pulse server now acquire the dbus name. - Improvements in timing and compatibility with many apps. - The stream-restore extension is now implemented so that the event volume can be configured. - Many stability fixes and improvements. - Fix some issues with module-load/unload - Changes from PipeWire 0.3.16: * Highlights - Fix screensharing for old 0.2 clients - Many pulse-server improvements. There is now a pipewire-pulse binary that is the prefered solution for PulseAudio compatibility. The replacement libpulse libraries are now deprecated. This also makes audio in Flatpak work. * PipeWire improvements - Fix cleanup of listeners everywhere. Force remove of listeners in _destroy to avoid crashes. - Add support for a journald logger module. - Various memory leak fixes - Silence some warnings that spammed the logs. - Fix flush in pw_stream. This fixes small glitches when switching streams in music players. - Various FreeBSD fixes and improvements. - Fix some crashes when destroying objects. * Device support - Reload the ALSA configuration when creating a node so that hotplugged devices work in all cases. - Fix memory leaks in ACP library. This also fixes issues where the mixer device was not closed. - Bluetooth now has support for the mSBC codec for SCO source and sink. * pulse-server - Many introspection and compatibility improvements. It should now be as good or better than the replacement library. - Implement sample cache to make notification events work. * JACK layer - handle errors when linking, fixes jack_connect hang when the ports were already linked. - Drop patches do-not-use-snd_pcm_ioplug_hw_avail.patch and fix-memfd_create-call.patch, no longer needed on SLE/Leap which have updated glibc / alsa. - Drop do-not-install-alsa-config-files.patch, remove files at install time instead. - pw-pulse wrapper is gone, remove all mentions of it. - Package pulseaudio replacement in a subpackage and drop pipewire-libpulse-0_3 (pipewire will use pulseaudio libraries directly). - Create an alsa subpackage and move alsa pipewire plugin to this subpackage. ==== privoxy ==== Version update (3.0.29 -> 3.0.31) - Update to version 3.0.31: - Security/Reliability: - Prevent an assertion from getting triggered by a crafted CGI request. Commit 5bba5b89193fa. OVE-20210130-0001. Reported by: Joshua Rogers (Opera) - Fixed a memory leak when decompression fails "unexpectedly". Commit f431d61740cc0. OVE-20210128-0001. - Bug fixes: - Fixed detection of insufficient data for decompression. Previously Privoxy could try to decompress a partly uninitialized buffer. - Update to version 3.0.30: - Bug fixes: - Check the actual URL for redirects when https inspecting requests. Previously Privoxy would only check the path which resulted in rewrite results being rejected as invalid URLs. Reported by withoutname in #1736. - Let the hide-referrer code tolerate Referer headers with https:// URLs. Previously they would always be treated like a changed host. - Use the https headers if the show-request handler is reached through https://. Previously Privoxy would use the http headers which may be empty on a reused connection. - Make CGI_PREFIX protocol-relative when building with FEATURE_HTTPS_INSPECTION. This unbreaks (at least) https://config.privoxy.org/client-tags whose buttons would previously use a http:// URL resulting in browser warnings. - Support using https-inspection and client-header-order at the same time. Previously Privoxy would crash. Reported by: Kai Raven - Properly reject rewrites from http to https as they currently aren't supported. Previously Privoxy would wait for the client to establish an encrypted connection which obviously would not happen. - When https inspection is enabled and Privoxy has been compiled with FEATURE_GRACEFUL_TERMINATION (not recommended for production builds), the TLS backend resources are free'd later on and only if no active connections are left. Prevents crashes when exiting "gracefully" at the wrong time. - Let the uninstall target remove the config file even if DESTDIR is set and properly announce the deletion of the configuration files. - General improvements: - Allow to rewrite the request destination for https-inspected requests behind the client's back. The documentation already sort of claimed that it was supported by not especially mentioning that it didn't work for https-inspected requests. Fixes SF bug #923 reported by withoutname. - Add support for filtering client request bodies by using CLIENT-BODY-FILTER filters which can be enabled with the client-body-filter action. Patch submitted by Maxim Antonov. Sponsored by: Robert Klemme - Add the new action suppress-tag{} which can be used to prevent a tagger from adding a tag. Patch submitted by Maxim Antonov. Sponsored by: Robert Klemme - Gracefully handle existing website keys without matching certificates. This can happen if Privoxy was previously running with an invalid TLS configuration that didn't allow it to create a certificate. - Recycle debug bit 4 for Tagging-related messages. - Improve the message shown when the client-tags CGI page is requested with no tags configured. - Shorten the 'donate' and 'participate' links used by templates using redirects. Currently the redirects lead to the FAQ entries but in the future we may want to relocate the content and using redirects makes this more convenient. - Log an error when a PCRE-HOST-PATTERN is used with FEATURE_PCRE_HOST_PATTERNS disabled. Don't treat this a fatal error so the regression tests can be used with and without FEATURE_PCRE_HOST_PATTERNS. - The code compiles with older C compilers again. - The chdir() return code is checked to fix a compiler warning. - The packages feed has been removed from the source tarball. It's usually out of date when the source tarball is generated for the release. - Fixed harmless compiler warnings from GCC9 with -D_FORTIFY_SOURCE=2. - windows: Remove obsolete '$(DEST)/doc/images' target. - windows: Install the images referenced in the user manual. - Remove obsolete 'gnu_regex.@OBJEXT@' target. - When installing from the GNUMAkefile, don't create an 'images' directory which is no longer used. The images were relocated to the user-manual directory years ago. - Add new FEATURES to the show-status page and resort list. - Remove unused variable in the OpenSSL-specific code. - Update bug tracker URL in cgi_error_unknown(). - Saved a couple of memory allocations when sorting client headers. - Improved a couple of error messages. - Saved memory allocations when using OpenSSL and checking if a key already exists. - The configure script will bail out if OpenSSL and mbedTLS are enabled at the same time. - Log a message right before exiting gracefully. - A couple of structures have been rearranged to require slightly less memory. - When https inspection is enabled and the certificate is invalid the error message is now sent with status code 403 instead of 200. - The Slackware rc script template has been renamed to slackware/rc.privoxy.in to silence complaints when building Debian packages. - When building with MbedTLS support, mbedtls_md5_ret() is used instead of mbedtls_md5() which is deprecated and causes a warning on Debian GNU/Linux. - Action file improvements: - Block requests to eu-tlp03.kameleoon.com/. - Unblock metrics.sr.ht/. - Disable fast-redirects for .fsf.org/. - Disable fast-redirects for .gravater.com/. - Disable fast-redirects for .ksta.de/. - Block requests to tag.crsspxl.com/. - Block requests to analytics.slashdotmedia.com/. - Block requests to ml314.com/. - Block requests to .adroll.com/. - Block requests to fastlane.rubiconproject.com/. - Block requests to api.theadex.com/. - Block requests to ih.adscale.de/. - Block requests to .s400.meetrics.net/. - Block requests for pp.lp4.io/. - Block requests for trc-events.taboola.com/. - Filter file improvements: - A allow-autocompletion filter has been added which changes autocomplete="off" to "on" on input fields to allow autocompletion. Requested by Jamie Zawinski in #370. Filter based on a submission by Aaron Linville. - Added an imdb filter. - Added a sourceforge filter that reduces the amount of ads for proprietary software. - Added a github filter that removes the annoying "Sign-Up" banner and the Cookie disclaimer. - Removed a duplicated pcrs command from the js-annoyances filter. - The crude-parental filter now provides a short reason when blocking, inserts a link to Privoxy's webinterface and adds a new line at the end of the generated page. - Privoxy-Log-Parser: - Highlight a few more messages. - Add a handler for tagging messages. - Properly deal with 'Certificate error' crunches Previously the error description was highlighted as 'host'. - Log truncated LOG_LEVEL_CLF messages more gracefully and note that the statistics will be imprecise. - Fixed perldoc typo. - Bump version to 0.9.2. - Privoxy-Regression-Test: - Use http://127.0.0.1:8118/ as default Privoxy address unless http_proxy is set through the environment. - Add a --privoxy-cgi-prefix option that specifies the prefix to use when building URLs that are supposed to reach Privoxy's CGI interface. If it's not set, http://p.p/ is used, which is supposed to work with the default Privoxy configuration. If Privoxy has been built with FEATURE_HTTPS_INSPECTION enabled, and if https inspection is activated with the +https-inspection action, this option can be used with "https://p.p/" provided the system running Privoxy-Regression-Test has been configured to trust the certificate used by Privoxy. Note that there are currently two tests in the official regression-tests.action file that are expected to fail when using "https://p.p/" as privoxy-cgi-prefix. - Skip the connection-established response in get_status_code() when looking for the status code with a CGI prefix that starts with https://. We care about the status code sent by the impersonated web server. - Use --proxy-header when using a CGI prefix with https:// and a "Host:" header. - Allow '|' in tokens and values to allow tag patterns like "TAG:^(application|text)/(x-)?javascript$". - When get_cgi_page_or_else() fails, include the URL of the requested page in the log message. - Added a --check-bad-ssl option that can be used to verify that Privoxy detects certificate problems when accessing the test sites from badssl.com. - Bumped version to 0.7.2 - uagen: - Update example output. - Recommend the use of the https-inspection action in the documentation. - Upgrade a couple of URLs to https://. - Add ElectroBSD to the list of operating systems. - Bumped generated Firefox version to 78 (ESR). - Bumped version to 1.2.2. - User documentation: - Remove reference to 'How to Report Bugs Effectively'. It was only rendered as text without URL in the README anyway and there's no indication that users read it ... - Let the dok-readme target fix the location embedded into the README file. This used to be done by CVS but since the git migration it has to be done through other means. - Remove 'experimental' warning for client-specific-tag-related directives. They seem to work reliably and there is no obvious reason why we would change the syntax in the near future. - Describe how to check if Privoxy has been built with FEATURE_HTTPS_INSPECTION. - Add a link to the trusted-cas-file documentation that explains how the user can create the file herself. - Don't explicitly mention the license for the code coming from 'Anonymous Coders' and Junkbusters. It's obviously licensed under the GNU GPL like the rest of Privoxy or we wouldn't be allowed to distribute it. - Update the +hide-user-agent example with uagen output. - Slightly improve the wording of the ca-key-file documentation. - Explicitly mention Windows 10 as supported so search engines and users looking for it can find it. - Import a bunch of contributors from the ChangeLog. - Remove obsolete doc/gpl.html. - Upgrade a couple of links to https://. - Don't prefer the SourceForge patch tracker over the privoxy-devel mailing list. While at it, link to the SourceForge patch tracker. - Mention http-inspection in the 'my browser warns me about unauthenticated content' FAQ entry. - Simplify the 'Is there is a license or fee?' FAQ entry. - Add another +redirect{} example. - Explicitly mention that interested sponsors should include the link target in their first mail. - Clarify that only Privoxy team members can object to new sponsors and link to the list of current team members. - Note that sponsor URLs may not contain keyword spam. - Garbage collect doc/webserver/images which isn't referenced anymore. - Update the method to reach the proxy settings in Firefox. - Update proxy_setup.jpg description to refer to Firefox. - Regenerate proxy_setup.jpg with a more recent Firefox (78.0). - Regenerate files-in-use.jpg without obsolete standard.action with modern colors and a slightly better quality. - Update URL to the actionsfile tracker. - Update a support request URL. - Rephrase the 'Can Privoxy run as service' FAQ entry and remove an obsolete paragraph. - Let the 'Where can I get updated Actions Files?' entry link to the gitweb version of default.action.master. - Update a link to the default.action file. - Update URLs for trackers and mailing lists. - Replace CVS reference with git. - Mention regression-tests.action in the config file. - Explicitly mention in the config file that access to the CA key should be limited to Privoxy. - List more client-specific-tag examples for inspiration. - Add additional headers to the client-header-order example. - Note that actions aren't updated after rewrites. - Explicitly mention that upgrading from http to https with a client-header filter is not supported - Note that protocol and host have to be added when rewriting the destination host for https-inspected requests. - Explicitly mention that the CA key is used to sign certificates. - Put openssl command in 'command' tags. - The man page has been moved from section 1 to man section 8. - Developer manual: - Flesh out the build instructions for Debian. - Remove the packaging instructions for RPM-based systems. They don't work and we don't release RPM packages anymore anyway. - Remove the packaging instructions for Solaris. They don't work and we don't release Solaris packages anymore anyway. - Update the suggested subject for the announce mails. - Update upload instructions. ftp://upload.sourceforge.net is no longer functional. - Remove a couple of package-dependent upload instructions that don't actually work. - Remove 'cd current' that no longer works. - Add regression-tests.action to the list of files that should be installed. - Stop claiming that there are text versions of the manuals. We stopped building them in 2008 (9ed36a3c5e6f12). - Note that the 'webserver' target creates the link needed for the user-manual. - Suggest to use the master branch as reference when creating the ChangeLog so the steps work when the current branch differs from master which is likely as the developer manual suggests to use a local branch for development. - Add the -s flag to the suggested 'git tag' command. We prefer signed tags. - Mention that merges into 'master' should be avoided. - Add git commands that should result in a merge-free history. - Mention Privoxy-Regression-Test. - Add a section id to reduce link churn. - Recommend the dok-tidy target when building docs for the webserver. - Add another plug for the privoxy-devel mailing list. - Let the intro link the copyright section in the user manual instead of giving an incomplete summary of the license status. - Clarify that the webserver target uploads to the SourceForge webserver. - Mark the documentation for the Mac OS X installers as out of date and change the SCM name back to CVS. - Fix the location of the installer modules for Mac OS X. They are not actually available through git (yet). - Don't speak of Privoxy version 3 in the past tense. - Update the list of programs required for the release process. - Update description of the webserver target which uses ssh, not scp. - Remove obsolete reference to config.new. - Tests: - Add another hide-referrer{conditional-block} test. - Add another hide-referrer{conditional-forge} test. - Fix a hide-referrer{conditional-forge} test that expected an acceptable header to be forged. - Fix a hide-referrer{conditional-block} test that expected an acceptable Referer to be removed. - Explain why the "Set Header = Host: whatever.example.org" test is expected to fail when using a CGI prefix that starts with "https://". - Explain why a connection-sharing test is known to fail when using "https://p.p/" as CGI prefix. - Add a link to Privoxy-Regression-Test to regression-tests.action in case it isn't packaged. - Add regression tests for pcre host patterns. - Fixed a regression test that is executed when FEATURE_GRACEFUL_TERMINATION is enabled. - Privoxy infrastructure: - Import a Privoxy logo for the website. - Update Tor onion service to HiddenServiceVersion 3. - Display the "model" photos in a single row and remove placeholder images. - Regenerate homepage with updated sponsor list. - Use the '/sponsor' redirect for the link to the sponsor page. - Git commit messages are sent to the Privoxy-commits mailing list. ==== pulseaudio ==== Version update (14.0 -> 14.2) Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-bash-completion pulseaudio-gdm-hooks pulseaudio-lang pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils pulseaudio-zsh-completion - Drop the bad patch: pulseaudio-wrong-memset.patch the patch has been wrongly refreshed, mutated into a harmful form. The original bug has been already fixed in the upstream commit 764eabd10. - Supplement pulseaudio-bash-completion against bash-completion, not bash. - Disable LTO on armv7 as it breaks the build - udpate to 14.2: * Support upto 8 mixer channels on ALSA devices * Handle ALSA jacks with the same name but different index values * Switch to plugged-in headset when mic availability is unknown * Fix a potential segfault in the Bluetooth oFono HFP backend * Fix a problem with module-ladspa-sink when avoid-resampling=true * Update to the NEWS file for 14.0 (and 14.1) * Fix database names containing canonical host for meson builds ==== python-Mako ==== Version update (1.1.3 -> 1.1.4) - update to 1.1.4: * Fixed Python deprecation issues related to module importing, as well as file access within the Lingua plugin, for deprecated APIs that began to emit warnings under Python 3.10. ==== python-Pillow ==== Version update (8.0.1 -> 8.1.0) - Fix rpmlint warning about duplicate file definition - Fix package build by relying on %python_subpackages for Obsoletes/Conflicts (bsc#1181281) - update to 8.1.0 (bsc#1180833, bsc#1180834, bsc#1180832): * Fix TIFF OOB Write error. CVE-2020-35654 * Fix for Read Overflow in PCX Decoding. CVE-2020-35653 * Fix for SGI Decode buffer overrun. CVE-2020-35655 * Fix OOB Read when saving GIF of xsize=1 * Makefile updates * Add support for PySide6 * Use disposal settings from previous frame in APNG * Added exception explaining that _repr_png_ saves to PNG * Use previous disposal method in GIF load_end * Allow putpalette to accept 1024 integers to include alpha values * Fix OOB Read when writing TIFF with custom Metadata * Added append_images support for ICO * Block TIFFTAG_SUBIFD * Fixed dereferencing potential null pointers * Deprecate FreeType 2.7 * Moved warning to end of execution * Removed unused fromstring and tostring C methods * init() if one of the formats is unrecognised * Moved string_dimension CVE image to pillow-depends * Support raw rgba8888 for DDS - drop patches python-Pillow-tiff-4.2.0.patch python-Pillow-tiff-fix-oob-read.patch (upstream) ==== python-PyYAML ==== Version update (5.3.1 -> 5.4.1) - update to 5.4.1 (bsc#1174514, CVE-2020-14343): * Fix stub compat with older pyyaml versions that may unwittingly load it * Build modernization, remove distutils, fix metadata, build wheels, CI to GHA * Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader * Fix memory leak in implicit resolver setup * Fix py2 copy support for timezone objects * Fix compatibility with Jython ==== python-importlib-metadata ==== Version update (3.3.0 -> 3.4.0) - update to 3.4.0: * Project now declares itself as being typed. * Additional performance enhancements to distribution discovery. * For PyPA projects, add test ensuring that ``MetadataPathFinder._search_paths`` honors the needed interface. Method is still private. ==== python-lxml ==== Version update (4.5.2 -> 4.6.2) - update to 4.6.2: * A vulnerability (CVE-2020-27783) was discovered in the HTML Cleaner by Yaniv Nizry, which allowed JavaScript to pass through. The cleaner now removes more sneaky "style" content. * A vulnerability was discovered in the HTML Cleaner by Yaniv Nizry, which allowed JavaScript to pass through. The cleaner now removes more sneaky "style" content. * GH#310: ``lxml.html.InputGetter`` supports ``__len__()`` to count the number of input fields. Patch by Aidan Woolley. * ``lxml.html.InputGetter`` has a new ``.items()`` method to ease processing all input fields. * ``lxml.html.InputGetter.keys()`` now returns the field names in document order. * GH-309: The API documentation is now generated using ``sphinx-apidoc``. * LP#1869455: C14N 2.0 serialisation failed for unprefixed attributes when a default namespace was defined. * ``TreeBuilder.close()`` raised ``AssertionError`` in some error cases where it should have raised ``XMLSyntaxError``. It now raises a combined exception to keep up backwards compatibility, while switching to ``XMLSyntaxError`` as an interface. ==== python-networkx ==== - Temporarily reenable python36 build until SciPy is updated, because the PyYAML fix needs to be merged first - Add yaml-loader.patch adding support for new PyYAML - Skip python36 because of SciPy 1.6.0 ==== python-packaging ==== Version update (20.4 -> 20.8) - update to 20.8: * Revert back to setuptools for compatibility purposes for some Linux distros (:issue:`363`) * Do not insert an underscore in wheel tags when the interpreter version number is more than 2 digits (:issue:`372`) * Fix flit configuration, to include LICENSE files (:issue:`357`) * Make `intel` a recognized CPU architecture for the `universal` macOS platform tag (:issue:`361`) * Add some missing type hints to `packaging.requirements` (issue:`350`) * Officially support Python 3.9 (:issue:`343`) * Deprecate the ``LegacyVersion`` and ``LegacySpecifier`` classes (:issue:`321`) * Handle ``OSError`` on non-dynamic executables when attempting to resolve the glibc version string. ==== python-psutil ==== Version update (5.7.3 -> 5.8.0) - Do not install tests (and change the way they're run since they were run from %{buildroot}) - Add patch to skip tests related to rlimit and zombie processes that fail when building for python2 on i586: * skip_rlimit_tests_on_python2.patch - update to 5.8.0: * Enhancements: - 1863: disk_partitions() exposes 2 extra fields: maxfile and maxpath, which are the maximum file name and path name length. - 1872: [Windows] added support for PyPy 2.7. - 1879: provide pre-compiled wheels for Linux and macOS. - 1880: get rid of Travis and Cirrus CI services (they are no longer free). CI testing is now done by GitHub Actions on Linux, macOS and FreeBSD (yes). AppVeyor is still being used for Windows CI. * Bug fixes: - 1708: [Linux] get rid of sensors_temperatures() duplicates. (patch by Tim Schlueter). - 1839: [Windows] always raise AccessDenied when failing to query 64 processes from 32 bit ones (NtWoW64 APIs). - 1866: [Windows] process exe(), cmdline(), environ() may raise "invalid access to memory location" on Python 3.9. - 1874: [Solaris] wrong swap output given when encrypted column is present. - 1875: [Windows] process username() may raise ERROR_NONE_MAPPED if the SID has no corresponding account name. In this case AccessDenied is now raised. - 1877: [Windows] OpenProcess may fail with ERROR_SUCCESS. Turn it into AccessDenied or NoSuchProcess depending on whether the PID is alive. - 1886: [macOS] EIO error may be raised on cmdline() and environment(). Now it gets translated into AccessDenied. - 1891: [macOS] get rid of deprecated getpagesize(). - Rebase patch and skip three other tests that fail on obs * skip-obs.patch ==== python-ptyprocess ==== Version update (0.6.0 -> 0.7.0) - update to 0.7.0: * Add pass_fds parameters (#49) * Switch to Github actions for CI ==== python-setproctitle ==== Version update (1.2.1 -> 1.2.2) - update to 1.2.2: - Fixed Windows build (issues #89, #90). - Added wheel packages for Windows (issues #47, #90). - Added wheel packages for aarch64 (issues #95). ==== python-urllib3 ==== Version update (1.26.2 -> 1.26.3) - update to 1.26.3: * Fixed bytes and string comparison issue with headers (Pull #2141) * Changed ``ProxySchemeUnknown`` error message to be more actionable if the user supplies a proxy URL without a scheme. (Pull #2107) ==== python38 ==== Version update (3.8.6 -> 3.8.7) Subpackages: python38-curses python38-dbm python38-tk - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== python38-core ==== Version update (3.8.6 -> 3.8.7) Subpackages: libpython3_8-1_0 python38-base - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== python38-documentation ==== Version update (3.8.6 -> 3.8.7) - Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution. - (bsc#1180125) We really don't Require python-rpm-macros package. Unnecessary dependency. - Update to 3.8.7: - bugfix release - multiple patches realigned: - F00102-lib64.patch - SUSE-FEDORA-multilib.patch - bpo-31046_ensurepip_honours_prefix.patch - skip_random_failing_tests.patch - Last try before this results in an editwar: * remove importlib_resources and importlib-metadata provides/obsoletes * import importlib_resources is not the same as import importlib.resources, same for metadata * The backport packages from PyPI needed for older flavors are specified as such for setuptools or in pyproject.toml. If a package requires them they typically add them with a python version qualifier and the packages have their own version numbers. - Add patch sphinx-update-removed-function.patch to no longer call a now removed function and to make documentation build independent of the Sphinx version (bsc#1179630, gh#python/cpython#13236). - Add importlib_resources provide/obsolete as it is integral part of the lang since 3.7 release ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-ppc qemu-s390x qemu-seabios qemu-sgabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vhost-user-gpu qemu-x86 - Additional tweaks to ensure libvirt runs ok when qemu-hw-display-virtio-gpu package is not installed - Use '%service_del_postun_without_restart' instead of '%service_del_postun' to avoid "Failed to try-restart qemu-ga@.service" error while updating the qemu-guest-agent. (bsc#1178565) ==== rdesktop ==== - remove dependency on python2 * add rdesktop-convert-map.python3.patch, remove obsolete rdesktop-Fix-keymap-script.patch ==== rpm ==== Subpackages: librpmbuild9 - Add explicit requirement on python-rpm-macros to avoid widespread breakage by package mistakenly ignoring their requirement of python-rpm-macros (bsc#1180125). ==== rubygem-ruby-dbus ==== Version update (0.15.0 -> 0.16.0) - 0.16.0 API: * An invalid service name or an invalid object path will raise instead of being sent to the bus. The bus would then drop the connection, producing EOFError here (gh#mvidner/ruby-dbus#80). ==== sendmail ==== Subpackages: libmilter1_0 - Correct path of update script for older products/distributions ==== timezone ==== Version update (2020f -> 2021a) - timezone update 2021a (bsc#1177460) * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. ==== timezone-java ==== Version update (2020f -> 2021a) - timezone update 2021a (bsc#1177460) * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. ==== tpm2-0-tss ==== Version update (3.0.1 -> 3.0.3) Subpackages: libtss2-esys0 libtss2-mu0 libtss2-sys1 - update to 3.0.3: - changes in 3.0.3: * Fix Regression in Fapi_List * Fix memory leak in policy calculation - changes in 3.0.2: * FAPI: Fix setting of the system flag of NV objects * This will let NV object metadata be created system-wide always instead of * locally in the user. Existing metadata will remain in the user directory. * It can be moved to the corresponding systemstore manually if needed. * FAPI: Fix policy searching, when a policyRef was provided * FAPI: Accept EK-Certs without CRL dist point * FAPI: Fix return codes of Fapi_List * FAPI: Fix memleak in policy execution * FAPI: Fix coverity NULL-pointer check * FAPI: Set the written flag of NV objects in FAPI PolicyNV commands * FAPI: Fix deleting of policy files. * FAPI: Fix wrong file loading during object search. * Fapi: Fix memory leak * Fapi: Fix potential NULL-Dereference * Fapi: Remove superfluous NULL check * Fix a memory leak in async keystore load. ==== util-linux ==== Version update (2.35.1 -> 2.36.1) Subpackages: libblkid1 libblkid1-32bit libfdisk1 libmount1 libmount1-32bit libsmartcols1 libuuid-devel libuuid1 libuuid1-32bit util-linux-lang - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-ReleaseNotes - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== util-linux-systemd ==== Version update (2.35.1 -> 2.36.1) - Do not require libeconf-devel on products without /usr/etc. - s/--enable-vendordir/--with-vendordir/ - remove pam_securetty line again. As long as there is no agreement from pam side having it would fail openQA (boo#1033626) - Update to version 2.36.1: * chrt: use SCHED_FLAG_RESET_ON_FORK for sched_setattr() * fallocate: fix --dig-holes at end of files * fdisk: always report fdisk_create_disklabel() errors * flock: keep -E exit status more restrictive * fstrim: remove fstab condition from fstrim.timer * hexdump: automatically use -C when called as hd * hwclock: add fallback if SYS_settimeofday does not exist, fix SYS_settimeofday fallback * libblkid: allow a lot of mac partitions, fix Atari prober logic, limit amount of parsed partitions * more libfdisk improvements * losetup: avoid infinite busy loop, increase limit of setup attempts * lsblk: fix -T optional argument, fix SCSI_IDENT_SERIAL, print zero rather than empty SIZE, read ID_SCSI_IDENT_SERIAL if available * lscpu: Add FUJITSU aarch64 A64FX cpupart, Even more Arm part numbers, avoid segfault on PowerPC systems with valid hardware configurations (bsc#1175623) * mount: Add support for "nosymfollow" mount option. * pg: fix wcstombs() * sfdisk: correct --json --dump false exclusive, fix backward - -move-data * vipw: fix short write handling in copyfile * whereis: fix out of boundary read, support zst compressed man pages * minor code improvements and fixes * minor licensing changes * improve docs - Require both group(uuidd) and user(uuidd). - Do search /usr/sbin for mount helpers. (This drops /sbin/fs, /sbin/fs.d, which we do not use in openSUSE.) - prepare usrmerge (boo#1029961) - Modernize patch util-linux-sulogin4bsc1175514.patch * Try to autoconfigure broken serial lines - Add patch util-linux-sulogin4bsc1175514.patch Avoid sulogin failing on not existing or not functional console devices (bsc#1175514) - Fix default permissions of wall and write. - Update to version 2.36: * blkdiscard(8) refuses to proceed if filesystem or RAID signatures are found in interactive mode (executed on a terminal). The option --force is required to the discard data. * new commands irqtop(1) and lsirq(1)to monitor kernel interrupts. * cal(1) provides a new --vertical command line option. * blkzone(8) implements open/close/finish commands now. * unshare(1) and nsenter(1) commands support the time namespace now. * agetty(8) now supports multiple paths in the option - -issue-file. * fdisk(8), sfdisk(8), cfdisk(8), mkswap(8) and wipefs(8) now support block devices locking by flock(2), new command line option --lock and $LOCK_BLOCK_DEVICE environmental variable. * dmesg(1) new command line option --follow-new to wait and print only new kernel messages. * fdisk(8) new command line option --list-details and - -noauto-pt. * fdisk(8) and sfdisk(8) support user-friendly aliases for partition types. * fstrim(8) supports new command line option --listed-in. * libfdisk provides API to relocate GPT backup header. New command line option "sfdisk --relocate". * mount(8) now supports mount by ID= tag. * login(1) supports list of "message of the day". * All tools which read /etc/login.defs is possible to compile with libeconf now. * more(1) has been refactored. * man pages cleanup * other fixes and improvements, see: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.36/v2.36-ReleaseNotes - Refresh Add-documentation-on-blacklisted-modules-to-mount-8-.patch. - Drop upstreamed libeconf.patch, libmount-Avoid-triggering-autofs-in-lookup_umount_fs.patch. - util-linux-login_defs-check.sh: Perform all steps to integrate MOTD_FIRSTONLY. - Update baselibs.conf. - Use plain #!/bin/sh for flushb - Include pam_securetty in login.pamd again (bsc#1033626) - Update to 2.35.2 * make glibc 2.31 compatible - Dropped unneeded patch libfdisk-script-accept-sector-size.patch ==== util-macros ==== Version update (1.19.2 -> 1.19.3) - update to release 1.19.3 * Update README for gitlab migration * Update configure.ac bug URL for gitlab migration * XORG_PROG_RAWCPP: Use AC_PATH_TOOL to find preprocessor ==== virtualbox ==== Subpackages: virtualbox-guest-tools virtualbox-guest-x11 - Fix additional problem with modal dialog parent. Fixes CVE-2021-2074, boo#1181197 and CVE-2021-2129, boo#1181198. ==== virtualbox-kmp ==== Version update (6.1.18_k5.10.9_1 -> 6.1.18_k5.10.12_1) - Fix additional problem with modal dialog parent. Fixes CVE-2021-2074, boo#1181197 and CVE-2021-2129, boo#1181198. ==== wayland ==== Version update (1.18.0 -> 1.19.0) Subpackages: libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0 - Update to release 1.19 * This release mostly contains bug fixes and minor protocol updates. ==== xf86-video-nouveau ==== Version update (1.0.16 -> 1.0.17) - no longer set CFLAGS, because "%optflags" is already included in %configure macro - update to 1.0.17: * present: fix handling of drmWaitVBlank failures * drmmode: make event handler leave a note that there are stuck events * present: don't enable if there's no acceleration * drmmode: fix screen resize without acceleration * make error when failing to allocate surface more descriptive * dri2,present: move in pixmap before getting addresses * nv4/exa: tiling is unsupported pre-nv10, reduce alignment requirements * Don't advertise any PRIME offloading capabilities without acceleration - spec-cleaner cleanups ==== xfce4-cpugraph-plugin ==== Version update (1.2.0 -> 1.2.1) Subpackages: xfce4-cpugraph-plugin-lang - Update to version 1.2.1 * Repaint CPU load history after the user changes the update interval * Properly initialize current usage bars * Scale CPU load history chart according to the current update interval * Store history in a circular buffer * Add timestamps to CPU load history * Update copyright year * Update configuration files * Translation Updates ==== xfce4-panel ==== Version update (4.16.0 -> 4.16.1) Subpackages: libxfce4panel-2_0-4 xfce4-panel-lang xfce4-panel-restore-defaults - Update to 4.16.1 * pager: Use gobject bindings (gxo#xfce/xfce4-panel#376) * pager: Switch to new workspaces icon name * launcher: avoid double fork * statustray: Display tooltip title of statusnotifier items as * plaintext * statustray: Prevent crash when parsing properties (gxo#xfce/xfce4-panel#379) * windowmenu: fix use-after-free in window_menu_plugin_window_item_new * Fix compilation warnings * Update `.gitignore` * Translation Updates ==== xterm ==== Version update (359 -> 363) Subpackages: xterm-bin - Update to Patch#363 - 2020/12/26 * disable groff hyphenation in generated html when using man2html. * change SCS ?&4? Cyrillic to non-NRCS, per VT520 manual. * amend fix for SCS in patch #198 to remove DEL rather than converting it to a space (report by Thomas Wolff). * modify state transitions for selecting character sets to eliminate an ambiguity between the ?A? used in VT220 versus VT320. improve error recovery when selecting characters by resetting to US ASCII when no suitable encoding is found, e.g., attempting to use an NRCS sequence when NRCS is not enabled. * turn off hyphenation in ?.txt? conversion, prompted by groff changes. * add VT5xx ISO Latin-2 (prompted by discussion with Thomas Wolff). * amend change from patch #361 to event-handling in CopyWait to handle active-icon as a special case (Debian #975687). * add call to loadColorTable to get the visual information needed to decode BE RGBA32 color format (patch by Leandro Lupori). * modify the resource-parsing for disallowedPasteControls and similar lists of names/numbers to recognize ?~;? (tilde) for cancelling a given name/number. * add ENQ, EOT and NUL to default for disallowedPasteControls. * change default for disallowedPasteControls to omit the tab character (suggested by Harald Dunkel). * fix swapped height/width in regisScreenSize and maxGraphicSize resources using "auto" value, from patch #314 (report by Anton Lavrentiev) * revise patch #362 change for shift-modifier versus mouse protocol and select/paste by adding resource shiftEscape, which can be enabled via a control sequence (prompted by discussion with Matthijs van Duin). * simplify/improve ifdef in trace code for using a separate set of files for each run of xterm. * add options -r and -t to vttests/query-color.pl to show the 6-digit RGB code and actual colors. * add nel to xterm-basic terminfo. * alter vttests/modify-keys.pl to omit HTML reference links to the modified-keys table where no keycode was available. - includes Patch #361 - 2020/10/14 * treat the return value of strerror as readonly (patch by Philipp Klaus Krause). * modify event-handling in CopyWait to work around hanging while writing large amounts of text to an active icon and at the same time iconifying/ deiconifying (report by Dave Kemper). * initialize double-buffer for active-icon window. * improve manual page description of scrollbar resources (report by Brian Lindholm). correct ifdef for menu entry for active-icon, when initializing it with toolbar configuration. * add preprocessor option to makefile to set internal definition of pixmaps directory to match the install-configuration (FreeBSD #250036) * cleanup of calls to free, removing checks for null (Walter Harms) * add fallback actions pointer-button and pointer-motion which handle events for the mouse control-sequences protocol if the select-related translations are omitted with *omitTranslation:select (prompted by discussion with "Ergus") * amend rule for using shift-key to override mouse-protocol for select/ paste to limit that feature to mouse-buttons which are actually bound to select/paste actions (prompted by discussion with "Ergus"). * corrected mapping in special case for repainting wrap-marks when viewing the scrollback area. * use separate GCs for showWrapMarks feature, to work around cursor coloring change in patch #345 (report by Paulo Silva de Alíbano). - includes Patch #360 - 2020/09/20 * mention decGraphicsID in ctlseqs.ms (suggested by Thomas Wolff). * modify pixel-coordinate mouse reponse to use as origin the VT100- window rather than the underlying widget, which includes the scrollbar (report by Thomas Wolff). * add configure option --disable-print-graphics (Ross Combs). * add test_ptydata to ?make check? rule. * minor fixes for ctlseqs.ms (report by Jean-Marc Bourguet). * minor fixes for manpage style (report/patch by "a1346054"). * correct cleanup from switch between italics/normal font in the show/ hide cursor functions (report/testcase by Peter Fabinski) * integrated patch by Ross Combs: internal renaming of GraphicsID symbols, for readability. adjust logic for VT125, treating it as a ReGIS terminal. * update configure macros, for compiler-warning fixes. * integrated patch by Ross Combs: add control sequence modes for graphics printing. improve conversion to bitmaps for TrueType fonts in ReGIS add font7 resource, for an ?enormous? bitmap font. do not reset graphics in a soft-reset. add pointerFont resource, and -pf command-line option. * improve typography of manual page (patch by Branden Robinson). * amend patch #359 change to df-install.in to ignore a command-line assignment to DESTDIR if followed by an explicit --dir (report by Sven Joachim) - merged 2 patches to form xterm-suse.patch - remove xterm-settings.patch - remove xterm-better-fonts.patch - rebase xterm-sigwinch.patch - cleanup spec ==== yast2 ==== Version update (4.3.49 -> 4.3.51) Subpackages: yast2-logs - Do not propose hibernation when running over a virtualized setup (bsc#1180982). - 4.3.51 - Fixed Resolvables class to uniqely identify the libzypp objects to avoid random failures (related to bsc#1178688) - 4.3.50 ==== yast2-pkg-bindings ==== Version update (4.3.6 -> 4.3.8) - Log more details about the newly added repositories (for debugging bsc#1181344) - 4.3.8 - Allow filtering resolvables by RPM path, return RPM path for the product packages (related to bsc#1178688, bsc#1176276) - 4.3.7 ==== yast2-storage-ng ==== Version update (4.3.40 -> 4.3.41) - AutoYaST UI: improved visualization of some partition sections in the left tree (related to jsc#SLE-11308). - 4.3.41 ==== yast2-trans ==== Version update (84.87.20210116.f5a95d2c8b -> 84.87.20210130.332fb904b7) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20210130.332fb904b7: * New POT for text domain 'rear'. * New POT for text domain 'network'. * New POT for text domain 'autoinst'. * New POT for text domain 'pkg-bindings'. * New POT for text domain 'bootloader'. * New POT for text domain 'network'. * New POT for text domain 'network'. - Update to version 84.87.20210123.74263e8a12: * New POT for text domain 'nis_server'. * New POT for text domain 'network'. * New POT for text domain 'instserver'. * New POT for text domain 'proxy'. * New POT for text domain 'wol'. * New POT for text domain 'vpn'. * New POT for text domain 'users'. * New POT for text domain 'update'. * New POT for text domain 'tune'. * New POT for text domain 'sysconfig'. * New POT for text domain 'support'. * New POT for text domain 'sudo'. * New POT for text domain 'storage'. * New POT for text domain 'squid'. * New POT for text domain 'sound'. * New POT for text domain 'snapper'. * New POT for text domain 'slp-server'. * New POT for text domain 'services-manager'. * New POT for text domain 'security'. * New POT for text domain 'scanner'. * New POT for text domain 'samba-server'. * New POT for text domain 'samba-client'. * New POT for text domain 's390'. * New POT for text domain 'rmt'. * New POT for text domain 'relocation-server'. * New POT for text domain 'reipl'. * New POT for text domain 'registration'. * New POT for text domain 'rdp'. * New POT for text domain 'proxy'. * New POT for text domain 'printer'. * New POT for text domain 'pam'. * New POT for text domain 'packager'. * New POT for text domain 'online-update'. * New POT for text domain 'ntp-client'. * New POT for text domain 'nis_server'. * New POT for text domain 'nis'. * New POT for text domain 'nfs_server'. * New POT for text domain 'nfs'. * New POT for text domain 'network'. * New POT for text domain 'multipath'. * New POT for text domain 'migration'. * New POT for text domain 'mail'. * New POT for text domain 'ldap-client'. * New POT for text domain 'ldap'. * New POT for text domain 'kdump'. * New POT for text domain 'journalctl'. * New POT for text domain 'isns'. * New POT for text domain 'iscsi-lio-server'. * New POT for text domain 'iscsi-client'. * New POT for text domain 'iplb'. * New POT for text domain 'instserver'. * New POT for text domain 'installation'. * New POT for text domain 'http-server'. * New POT for text domain 'geo-cluster'. * New POT for text domain 'ftp-server'. * New POT for text domain 'firewall'. * New POT for text domain 'fcoe-client'. * New POT for text domain 'drbd'. * New POT for text domain 'dns-server'. * New POT for text domain 'dhcp-server'. * New POT for text domain 'crowbar'. * New POT for text domain 'country'. * New POT for text domain 'control'. * New POT for text domain 'cluster'. * New POT for text domain 'bootloader'. * New POT for text domain 'base'. * New POT for text domain 'autoinst'. * New POT for text domain 'auth-client'. * New POT for text domain 'audit-laf'. * New POT for text domain 'apparmor'. * New POT for text domain 'add-on'. * Automatic update of wol. * Automatic update of vpn. * Automatic update of users. * Automatic update of update. * Automatic update of tune. * Automatic update of s390. * Automatic update of sysconfig. * Automatic update of support. * Automatic update of sudo. * Automatic update of storage. * Automatic update of squid. * Automatic update of sound. * Automatic update of snapper. * Automatic update of slp-server. * Automatic update of services-manager. * Automatic update of security. * Automatic update of scanner. * Automatic update of samba-server. * Automatic update of samba-client. * Automatic update of rmt. * Automatic update of relocation-server. * Automatic update of reipl. * Automatic update of registration. * Automatic update of rdp. * Automatic update of proxy. * Automatic update of printer. * Automatic update of pam. * Automatic update of packager. * Automatic update of online-update. * Automatic update of ntp-client. * Automatic update of nis_server. * Automatic update of nis. * Automatic update of nfs_server. * Automatic update of nfs. * Automatic update of network. * Automatic update of multipath. * Automatic update of migration. * Automatic update of mail. * Automatic update of ldap-client. * Automatic update of ldap. * Automatic update of kdump. * Automatic update of journalctl. * Automatic update of isns. * Automatic update of iscsi-lio-server. * Automatic update of iscsi-client. * Automatic update of iplb. * Automatic update of instserver. * Automatic update of installation. * Automatic update of http-server. * Automatic update of hana-update. * Automatic update of hanafirewall. * Automatic update of geo-cluster. * Automatic update of ftp-server. * Automatic update of firewall. * Automatic update of fcoe-client. * Automatic update of drbd. * Automatic update of dns-server. * Automatic update of dhcp-server. * Automatic update of crowbar. * Automatic update of country. * Automatic update of control. * Automatic update of cluster. * Automatic update of cc-control. * Automatic update of cc. * Automatic update of bootloader. * Automatic update of base. * Automatic update of autoinst. * Automatic update of auth-client. * Automatic update of audit-laf. * Automatic update of apparmor. * Automatic update of add-on. * New POT for text domain 'registration'. * New POT for text domain 'rear'. * New POT for text domain 'autoinst'. ==== zeromq ==== Version update (4.3.3 -> 4.3.4) Subpackages: libzmq5 zeromq-tools - update to 4.3.4: * ZMQ_PRIORITY will set the SO_PRIORITY socket option on the underlying sockets. Only supported on Linux. * Fixed compilation errors on kFreeBSD and GNU/Hurd * Fixed excessive amount of socket files left behind in Windows TMP * Fixed regression that breaks using IPv6 link-local addresses on Linux * Fixed compilation errors on Android * Fixed compilation error with ulibc and libbsd * Fixed stack overflow on Windows x64 * Fixed various compilation errors on Windows ARM 32bit * Fixed various compilation warnings with XCode * Fixed return value of zmq_ctx_get changed unintentionally ==== zstd ==== Subpackages: libzstd1 libzstd1-32bit - Add libzstd-devel-32bit (boo#1181272)