Packages changed:
NetworkManager-applet
PackageKit
chromium (81.0.4044.113 -> 81.0.4044.129)
cups
discover
gnuchess (6.2.5 -> 6.2.6)
gnutls
gstreamer-plugins-base
hwinfo (21.66 -> 21.70)
iproute2
kernel-preempt
kernel-source
ldb (2.0.8 -> 2.0.9)
libdvdnav (6.0.1 -> 6.1.0)
libgcrypt
libindicator
libqt5-qtmultimedia
libvirt
man-pages
mariadb
openssl-1_1
perl-Bootloader (0.926 -> 0.927)
polari (3.36.1 -> 3.36.2)
polkit-default-privs (13.2+20191128.c2eb3f7 -> 13.2+20200421.207b724)
remmina (1.3.10 -> 1.4.2)
samba (4.11.5+git.137.297c522339b -> 4.11.5+git.161.74bc5e6ec8e)
shotwell
unar (1.10.1 -> 1.10.7)
update-test-trivial
xfce4-panel (4.14.3 -> 4.14.4)
yast2 (4.2.82 -> 4.2.83)
yast2-schema (4.2.8 -> 4.2.10)
yast2-sound (4.2.2 -> 4.2.4)
=== Details ===
==== NetworkManager-applet ====
Subpackages: NetworkManager-applet-lang NetworkManager-connection-editor libnma0 nma-data typelib-1_0-NMA-1_0
- Remove is_opensuse macro in spec file to reduce differences
between Leap and SLE(jsc#SLE-11797).
==== PackageKit ====
Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0
- Remove is_opensuse macro in spec file to sync SLE and openSUSE
differences(jsc#SLE-11804).
==== chromium ====
Version update (81.0.4044.113 -> 81.0.4044.129)
- update to 81.0.4044.129 (boo#1170707):
* CVE-2020-0561: Use after free in storage
* CVE-2020-6462: Use after free in task scheduling
- Add chromium-80.0.3987.87-missing-cstdint-header.patch,
chromium-80.0.3987.87-missing-string-header.patch and
chromium-80.0.3987.106-missing-cstddef-header.patch
in order to fix build with GCC 10.
- Update to 81.0.4044.122 (boo#1170107):
* CVE-2020-6459: Use after free in payments
* CVE-2020-6460: Insufficient data validation in URL formatting
* CVE-2020-6458: Out of bounds read and write in PDFium
==== cups ====
Subpackages: cups-client cups-config libcups2 libcups2-32bit libcupscgi1 libcupsimage2 libcupsmime1 libcupsppdc1
- cups-2.2.7-CVE-2020-3898.patch fixes CVE-2020-3898 (bsc#1168422)
heap-buffer-overflow in libcups ppdFindOption() function
==== discover ====
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang
- Add missing kdeclarative-components runtime dependency (boo#1169153)
==== gnuchess ====
Version update (6.2.5 -> 6.2.6)
- Update to the version 6.2.6:
- Fix buffer overflow on load EPD file (bsc#1148736 CVE-2019-15767).
- Fix move validation when cleaning up moves, e.g. accepting
'0-0' for O-O'.
- More consistent use of period in translatable texts.
- Minor fixes on compilation warnings
- New and updated translations.
==== gnutls ====
Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-32bit
- Don't check for /etc/system-fips which we don't have (bsc#1169992)
* add gnutls-fips_mode_enabled.patch
==== gstreamer-plugins-base ====
Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0
- Remove is_opensuse conditionals / really enable orc on SLE 15
(jsc#SLE-12265).
- Add gstreamer-plugins-base-gl-deps.patch: Workaround incomplete
gstreamer-gl.pc file, which is missing the (dynamic) dependency
on wayland.
- Enable meson build conditionally for Tumbleweed.
- No longer recommend -lang: supplements are in use.
- Add upstream bugfix patches:
+ gst-base-playbin-handle-error.patch: playbin: Handle error
message with redirection indication.
+ gst-base-audioencoder-fix-leak.patch: audioencoder: fix segment
event leak.
+ gst-base-fft-update-kiss-version.patch: fft: Update our kiss
fft version.
- Enable orc / wayland-egl on SLE15.
==== hwinfo ====
Version update (21.66 -> 21.70)
- merge gh#openSUSE/hwinfo#86
- update pci and usb ids (bsc#1169682)
- fix compiler warnings
- 21.70
- merge gh#openSUSE/hwinfo#85
- fix xen detection (bsc#1167561)
- add link to cpuid doc
- 21.69
- BuildRequire pkgconfig(udev) instead of udev: allow OBS to
shortcut through the -mini flavor.
- merge gh#openSUSE/hwinfo#84
- the /sbin/udevadm compat symlink is gone
- 21.68
- Use FAT LTO objects in order to provide proper static library.
- merge gh#openSUSE/hwinfo#81
- fix DASD detection (bsc#1136475)
- don't include bcache devices
- 21.67
==== iproute2 ====
- follow-up fixes backported from upstream (bsc#1160242):
ip-fix-link-type-and-vlan-oneline-output.patch
ip-xfrm-Fix-help-messages.patch
ip-link-xstats-fix-TX-IGMP-reports-string.patch
erspan-set-erspan_ver-to-1-by-default.patch
xfrm-not-try-to-delete-ipcomp-states-when-using-dele.patch
nexthop-fix-error-reporting-in-filter-dump.patch
- refresh:
xfrm-support-displaying-transformations-used-for-Mob.patch
- fix duplicated patch metadata:
introduce-print_masked_u16-and-print_masked_u32.patch
- Move arpd into own subpackage to avoid libdb dependency
[jsc#SLE-12189]
==== kernel-preempt ====
- objtool: Make BP scratch register warning more robust
(bsc#1169514).
- commit 21d4b08
- objtool: Fix switch table detection in .text.unlikely
(bsc#1169514).
- commit c2b49a3
- ionic: fix unused assignment (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- ionic: add dynamic_debug header (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- commit 61e55e9
- net/mlx5e: Fix nest_level for vlan pop action (bsc#1154353).
- ionic: set station addr only if needed (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- ionic: replay filters after fw upgrade (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- net: icmp6: do not select saddr from iif when route has prefsrc
set (bsc#1154353).
- commit da058f0
- PCI: endpoint: Fix for concurrent memory allocation in OB
address region (git-fixes).
- commit efb90c5
- mmc: sdhci-of-at91: fix memleak on clk_get failure (git-fixes).
- commit df10885
- fix patches metadata
- fix Patch-mainline:
patches.suse/ext4-Avoid-freeing-inodes-on-dirty-list.patch
patches.suse/fs-Avoid-leaving-freed-inode-on-dirty-list.patch
patches.suse/writeback-Export-inode_io_list_del.patch
- commit 9d7a667
- Update references for ptp security fixes (CVE-2020-10690, bsc#1170056)
- commit 0efc222
- padata: always acquire cpu_hotplug_lock before pinst->lock
(git-fixes).
- commit d5448e4
- padata: validate cpumask without removed CPU during offline
(git-fixes).
- commit e4437ab
- ext4: Avoid freeing inodes on dirty list (bsc#1168423).
- writeback: Export inode_io_list_del() (bsc#1168423).
- fs: Avoid leaving freed inode on dirty list (bsc#1168423).
- commit 86af897
- PCI: endpoint: Fix for concurrent memory allocation in OB
address region (git-fixes).
- PCI: endpoint: Cast the page number to phys_addr_t (git-fixes).
- commit 3e58a3a
- mm: set vm_next and vm_prev to NULL in vm_area_dup()
(bnc#1169681).
- Revert "mm/rmap.c: reuse mergeable anon_vma as parent when fork"
(bnc#1169681).
- commit f7b4d10
- bpf: Prevent re-mmap()'ing BPF map as writable for initially
r/o mapping (bsc#1155518).
- xsk: Fix out of boundary write in __xsk_rcv_memcpy
(bsc#1155518).
- kbuild, btf: Fix dependencies for DEBUG_INFO_BTF (bsc#1155518).
- commit ac4792a
- Update
patches.suse/tcp-dccp-fix-possible-race-__inet_lookup_established.patch
references (add bsc#1151794).
- commit 0f4b072
- block: Fix partition support for host aware zoned block devices
(git fixes (block layer)).
- commit 2826707
- powerpc/sstep: Fix DS operand in ld encoding to appropriate
value (bsc#1065729).
- commit ffe7728
- block: fix busy device checking in blk_drop_partitions again
(git fixes (block layer)).
- scsi: sd_sbc: Fix sd_zbc_report_zones() (git fixes (block
layer)).
- block: allow partitions on host aware zone devices (git fixes
(block layer)).
- block: refactor rescan_partitions (bsc#1169493).
- null_blk: Fix zoned command return code (git fixes (block
layer)).
- commit 2eec3ac
- EDAC: skx_common: downgrade message importance on missing PCI
device (bsc#1165581).
- commit 33acab9
- rbd: call rbd_dev_unprobe() after unwatching and flushing
notifies (git fixes (block layer)).
- commit b8a8f93
- rbd: avoid a deadlock on header_rwsem when flushing notifies
(git fixes (block layer)).
- commit 39eb136
- block: fix busy device checking in blk_drop_partitions (git
fixes (block layer)).
- commit a502c37
- tracing: Fix the race between registering 'snapshot' event
trigger and triggering 'snapshot' operation (git-fixes).
- commit e9b7241
- dm writecache: add cond_resched to avoid CPU hangs (git fixes
(block layer)).
- dm integrity: fix a crash with unusually large tag size (git
fixes (block layer)).
- dm zoned: remove duplicate nr_rnd_zones increase in
dmz_init_zone() (git fixes (block layer)).
- commit bae04d0
- Revert "bcache: ignore pending signals when creating gc and
allocator thread" (git fixes (block layer)).
- commit 389cb15
- block: rework zone reporting (git fixes (block layer)).
- Refresh for the above change,
patches.suse/dm-zoned-reduce-overhead-of-backing-device-checks.patch.
- commit e2e1ac1
- tracing: Disable trace_printk() on post poned tests (git-fixes).
- commit a1f20fd
- null_blk: clean up report zones (git fixes (block layer)).
- null_blk: clean up the block device operations (git fixes
(block layer)).
- block: Remove partition support for zoned block devices (git
fixes (block layer)).
- commit 47f4ca0
- block: Simplify report zones execution (git fixes (block
layer)).
- block: cleanup the !zoned case in blk_revalidate_disk_zones
(git fixes (block layer)).
- block: Enhance blk_revalidate_disk_zones() (git fixes (block
layer)).
- block: add zone open, close and finish operations (git fixes
(block layer)).
- commit c73ea39
- block: Simplify REQ_OP_ZONE_RESET_ALL handling (git fixes
(block layer)).
- block: Remove REQ_OP_ZONE_RESET plugging (git fixes (block
layer)).
- commit 1d004e0
- dm: make dm_table_find_target return NULL (git fixes (block
layer)).
- null_blk: fix inline misuse (git fixes (block layer)).
- null_blk: create a helper for zoned devices (git fixes
(block layer)).
- null_blk: move duplicate code to callers (git fixes (block
layer)).
- commit 9efd841
- fix patch metadata
- fix Patch-mainline:
patches.suse/ibmvfc-don-t-send-implicit-logouts-prior-to-NPIV-log.patch
- commit cb5e73f
- fs/filesystems.c: downgrade user-reachable WARN_ONCE() to
pr_warn_once() (bsc#1163463).
- commit 399801b
- ALSA: hda: call runtime_allow() for all hda controllers
(git-fixes).
- ALSA: hda: Explicitly permit using autosuspend if runtime PM
is supported (git-fixes).
- ALSA: hda: Skip controller resume if not needed (git-fixes).
- ALSA: hda: Keep the controller initialization even if no codecs
found (git-fixes).
- ALSA: hda: Release resources at error in delayed probe
(git-fixes).
- ALSA: hda: Honor PM disablement in PM freeze and thaw_noirq ops
(git-fixes).
- ALSA: hda: Don't release card at firmware loading error
(git-fixes).
- ALSA: usb-audio: Check mapping at creating connector controls,
too (git-fixes).
- ALSA: usb-audio: Don't create jack controls for PCM terminals
(git-fixes).
- ALSA: usb-audio: Don't override ignore_ctl_error value from
the map (git-fixes).
- ALSA: usb-audio: Filter error from connector kctl ops, too
(git-fixes).
- ALSA: hda/realtek - Enable the headset mic on Asus FX505DT
(git-fixes).
- commit 8a08089
- arm, bpf: Fix offset overflow for BPF_MEM BPF_DW (git-fixes).
- nl80211: fix NL80211_ATTR_FTM_RESPONDER policy (git-fixes).
- net: phy: micrel: use genphy_read_status for KSZ9131
(git-fixes).
- arm, bpf: Fix bugs with ALU64 {RSH, ARSH} BPF_K shift by 0
(git-fixes).
- keys: Fix proc_keys_next to increase position index (git-fixes).
- drm/amdgpu: unify fw_write_wait for new gfx9 asics (git-fixes).
- libata: Return correct status in sata_pmp_eh_recover_pm()
when ATA_DFLAG_DETACH is set (git-fixes).
- Input: i8042 - add Acer Aspire 5738z to nomux list (git-fixes).
- net: phy: micrel: kszphy_resume(): add delay after
genphy_resume() before accessing PHY registers (git-fixes).
- vfio: platform: Switch to platform_get_irq_optional()
(git-fixes).
- PCI: Add boot interrupt quirk mechanism for Xeon chipsets
(git-fixes).
- ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256
(git-fixes).
- drm/scheduler: fix rare NULL ptr race (git-fixes).
- drm/dp_mst: Fix clearing payload state on topology disable
(git-fixes).
- crypto: ccree - dec auth tag size from cryptlen map (git-fixes).
- crypto: ccree - only try to map auth tag if needed (git-fixes).
- crypto: ccree - protect against empty or NULL scatterlists
(git-fixes).
- irqchip/gic-v4: Provide irq_retrigger to avoid circular locking
dependency (git-fixes).
- ACPI: EC: Do not clear boot_ec_is_ecdt in acpi_ec_add()
(git-fixes).
- acpi/x86: ignore unspecified bit positions in the ACPI global
lock field (git-fixes).
- firmware: fix a double abort case with fw_load_sysfs_fallback
(git-fixes).
- usb: dwc3: core: add support for disabling SS instances in
park mode (git-fixes).
- xhci: bail out early if driver can't accress host in resume
(git-fixes).
- media: venus: firmware: Ignore secure call error on first resume
(git-fixes).
- media: allegro: fix type of gop_length in channel_create message
(git-fixes).
- media: i2c: ov5695: Fix power on and off sequences (git-fixes).
- media: ti-vpe: cal: fix disable_irqs to only the intended target
(git-fixes).
- media: venus: hfi_parser: Ignore HEVC encoding for V1
(git-fixes).
- pstore/platform: fix potential mem leak if pstore_init_fs failed
(git-fixes).
- tpm: Don't make log failures fatal (git-fixes).
- i2c: pca-platform: Use platform_irq_get_optional (git-fixes).
- i2c: st: fix missing struct parameter description (git-fixes).
- bus: sunxi-rsb: Return correct data when mixing 16-bit and
8-bit reads (git-fixes).
- soc: fsl: dpio: register dpio irq handlers after dpio create
(git-fixes).
- Input: tm2-touchkey - add support for Coreriver TC360 variant
(git-fixes).
- i2c: jz4780: silence log flood on txabrt (git-fixes).
- mmc: sdhci-of-esdhc: fix esdhc_reset() for different controller
versions (git-fixes).
- cpufreq: Cancel policy update work scheduled before freeing
(git-fixes).
- commit e5ee52f
- xfs: reflink should force the log out if mounted with wsync
(git-fixes).
- commit 2e7b82b
- xfs: factor out a new xfs_log_force_inode helper (git-fixes).
- commit 9fd128e
- xfs: don't write a corrupt unmount record to force summary
counter recalc (git-fixes).
- commit 6add31e
- xfs: don't allow log IO to be throttled (git-fixes).
- commit 925e53f
- xfs: remove some stale comments from the log code (git-fixes).
- commit b869987
- xfs: refactor unmount record writing (git-fixes).
- commit 60c7c2f
- xfs: merge xlog_commit_record with xlog_write_done (git-fixes).
- commit 6169e00
- xfs: split xlog_ticket_done (git-fixes).
- commit 3540978
- xfs: kill XLOG_TIC_INITED (git-fixes).
- commit 1c52baf
- xfs: refactor and split xfs_log_done() (git-fixes).
- commit 27f5afa
- xfs: re-order initial space accounting checks in xlog_write
(git-fixes).
- commit d2e492c
- xfs: don't try to write a start record into every iclog
(git-fixes).
- commit 62148c3
- xfs: shutdown on failure to add page to log bio (git-fixes).
- commit cb7737c
- xfs: remove xlog_state_want_sync (git-fixes).
- commit 99f092d
- xfs: move the ioerror check out of xlog_state_clean_iclog
(git-fixes).
- commit f23116d
- xfs: refactor xlog_state_clean_iclog (git-fixes).
- commit e43b3ed
- xfs: remove the aborted parameter to xlog_state_done_syncing
(git-fixes).
- commit eaff4cc
- xfs: simplify log shutdown checking in xfs_log_release_iclog
(git-fixes).
- commit d486a9f
- xfs: simplify the xfs_log_release_iclog calling convention
(git-fixes).
- commit 5b62921
- xfs: factor out a xlog_wait_on_iclog helper (git-fixes).
- commit 371f1e3
- xfs: merge xlog_cil_push into xlog_cil_push_work (git-fixes).
- commit 22531f1
- xfs: cleanup xfs_log_unmount_write (git-fixes).
- commit 47964dc
- xfs: remove dead code from xfs_log_unmount_write (git-fixes).
- commit 15d084c
- xfs: remove the unused return value from xfs_log_unmount_write
(git-fixes).
- commit 7daf110
- xfs: don't ever return a stale pointer from __xfs_dir3_free_read
(git-fixes).
- commit e98d8e7
- xfs: fix buffer corruption reporting when
xfs_dir3_free_header_check fails (git-fixes).
- commit 0d51de1
- xfs: add a function to deal with corrupt buffers post-verifiers
(git-fixes).
- commit cdad8b5
- xfs: fix iclog release error check race with shutdown
(git-fixes).
- commit 2814941
- xfs: don't check for AG deadlock for realtime files in bunmapi
(git-fixes).
- commit fc993c5
- xfs: remove the XLOG_STATE_DO_CALLBACK state (git-fixes).
- commit c72277f
- xfs: turn ic_state into an enum (git-fixes).
- commit 1f9b2d3
- xfs: remove the unused XLOG_STATE_ALL and XLOG_STATE_UNUSED
flags (git-fixes).
- commit 22ec56e
- xfs: remove dead ifdef XFSERRORDEBUG code (git-fixes).
- commit f73533e
- xfs: call xlog_state_release_iclog with l_icloglock held
(git-fixes).
- commit e2ae7c9
- xfs: move the locking from xlog_state_finish_copy to the callers
(git-fixes).
- commit 4fc8e18
- xfs: remove the unused ic_io_size field from xlog_in_core
(git-fixes).
- commit cc60ace
- xfs: pass the correct flag to xlog_write_iclog (git-fixes).
- commit d0ba340
- x86/xen: fix booting 32-bit pv guest (bsc#1071995).
- commit de745ab
- x86/xen: Make the secondary CPU idle tasks reliable
(bsc#1071995).
- commit b937a33
- x86/xen: Make the boot CPU idle task reliable (bsc#1071995).
- commit 7555345
- Update
patches.suse/media-stv06xx-add-missing-descriptor-sanity-checks.patch
(bsc#1168854). Pending CVE request, adding bsc so that it is not lost
- commit 3e4aa5f
- Update
patches.suse/media-xirlink_cit-add-missing-descriptor-sanity-chec.patch
(bsc#1168952). Pending CVE request, adding bsc so this is not lost.
- commit 98ac2ff
- tools/test/nvdimm: Fix out of tree build (bsc#1156395).
- commit bec0a07
- Refresh patches.suse/tools-testing-nvdimm-Fix-compilation-failure-without.patch.
- commit 48bddf2
- ibmvfc: don't send implicit logouts prior to NPIV login
(bsc#1169625 ltc#184611).
- commit 1026f14
- net: systemport: fix index check to avoid an array out of
bounds access (networking-stable-20_03_14).
- taprio: Fix sending packets without dequeueing them
(networking-stable-20_03_14).
- net: memcg: fix lockdep splat in inet_csk_accept()
(networking-stable-20_03_14).
- net: dsa: Don't instantiate phylink for CPU/DSA ports unless
needed (networking-stable-20_03_14).
- net/packet: tpacket_rcv: do not increment ring index on drop
(networking-stable-20_03_14).
- net: fec: validate the new settings in fec_enet_set_coalesce()
(networking-stable-20_03_14).
- net: macsec: update SCI upon MAC address change
(networking-stable-20_03_14).
- ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface
(networking-stable-20_03_14).
- net: memcg: late association of sock to memcg
(networking-stable-20_03_14).
- ipvlan: do not use cond_resched_rcu() in
ipvlan_process_multicast() (networking-stable-20_03_14).
- cgroup, netclassid: periodically release file_lock on classid
updating (networking-stable-20_03_14).
- ipvlan: add cond_resched_rcu() while processing muticast backlog
(networking-stable-20_03_14).
- ipvlan: don't deref eth hdr before checking it's set
(networking-stable-20_03_14).
- sfc: detach from cb_page in efx_copy_channel()
(networking-stable-20_03_14).
- inet_diag: return classid for all socket types
(networking-stable-20_03_14).
- net: stmmac: dwmac1000: Disable ACS if enhanced descs are not
used (networking-stable-20_03_14).
- gre: fix uninit-value in __iptunnel_pull_header
(networking-stable-20_03_14).
- bonding/alb: make sure arp header is pulled before accessing it
(networking-stable-20_03_14).
- net: nfc: fix bounds checking bugs on "pipe"
(networking-stable-20_03_14).
- net: hns3: fix a not link up issue when fibre port supports
autoneg (networking-stable-20_03_14).
- slip: make slhc_compress() more robust against malicious packets
(networking-stable-20_03_14).
- net: dsa: fix phylink_start()/phylink_stop() calls
(networking-stable-20_03_14).
- selftests/net/fib_tests: update addr_metric_test for peer
route testing (networking-stable-20_03_14).
- net/ipv6: remove the old peer route if change it to a new one
(networking-stable-20_03_14).
- net/ipv6: need update peer route when modify metric
(networking-stable-20_03_14).
- net: taprio: add missing attribute validation for txtime delay
(networking-stable-20_03_14).
- net: fq: add missing attribute validation for orphan mask
(networking-stable-20_03_14).
- fib: add missing attribute validation for tun_id
(networking-stable-20_03_14).
- devlink: validate length of region addr/len
(networking-stable-20_03_14).
- devlink: validate length of param values
(networking-stable-20_03_14).
- net/ipv6: use configured metric when add peer route
(networking-stable-20_03_14).
- net: dsa: mv88e6xxx: fix lockup on warm boot
(networking-stable-20_03_14).
- netlink: Use netlink header as base to calculate bad attribute
offset (networking-stable-20_03_14).
- r8152: check disconnect status after long sleep
(networking-stable-20_03_14).
- commit 4f8bc32
==== kernel-source ====
- objtool: Make BP scratch register warning more robust
(bsc#1169514).
- commit 21d4b08
- objtool: Fix switch table detection in .text.unlikely
(bsc#1169514).
- commit c2b49a3
- ionic: fix unused assignment (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- ionic: add dynamic_debug header (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- commit 61e55e9
- net/mlx5e: Fix nest_level for vlan pop action (bsc#1154353).
- ionic: set station addr only if needed (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- ionic: replay filters after fw upgrade (bsc#1167773 jsc#PM-1588
jsc#ECO-1386).
- net: icmp6: do not select saddr from iif when route has prefsrc
set (bsc#1154353).
- commit da058f0
- PCI: endpoint: Fix for concurrent memory allocation in OB
address region (git-fixes).
- commit efb90c5
- mmc: sdhci-of-at91: fix memleak on clk_get failure (git-fixes).
- commit df10885
- fix patches metadata
- fix Patch-mainline:
patches.suse/ext4-Avoid-freeing-inodes-on-dirty-list.patch
patches.suse/fs-Avoid-leaving-freed-inode-on-dirty-list.patch
patches.suse/writeback-Export-inode_io_list_del.patch
- commit 9d7a667
- Update references for ptp security fixes (CVE-2020-10690, bsc#1170056)
- commit 0efc222
- padata: always acquire cpu_hotplug_lock before pinst->lock
(git-fixes).
- commit d5448e4
- padata: validate cpumask without removed CPU during offline
(git-fixes).
- commit e4437ab
- ext4: Avoid freeing inodes on dirty list (bsc#1168423).
- writeback: Export inode_io_list_del() (bsc#1168423).
- fs: Avoid leaving freed inode on dirty list (bsc#1168423).
- commit 86af897
- PCI: endpoint: Fix for concurrent memory allocation in OB
address region (git-fixes).
- PCI: endpoint: Cast the page number to phys_addr_t (git-fixes).
- commit 3e58a3a
- mm: set vm_next and vm_prev to NULL in vm_area_dup()
(bnc#1169681).
- Revert "mm/rmap.c: reuse mergeable anon_vma as parent when fork"
(bnc#1169681).
- commit f7b4d10
- bpf: Prevent re-mmap()'ing BPF map as writable for initially
r/o mapping (bsc#1155518).
- xsk: Fix out of boundary write in __xsk_rcv_memcpy
(bsc#1155518).
- kbuild, btf: Fix dependencies for DEBUG_INFO_BTF (bsc#1155518).
- commit ac4792a
- Update
patches.suse/tcp-dccp-fix-possible-race-__inet_lookup_established.patch
references (add bsc#1151794).
- commit 0f4b072
- block: Fix partition support for host aware zoned block devices
(git fixes (block layer)).
- commit 2826707
- powerpc/sstep: Fix DS operand in ld encoding to appropriate
value (bsc#1065729).
- commit ffe7728
- block: fix busy device checking in blk_drop_partitions again
(git fixes (block layer)).
- scsi: sd_sbc: Fix sd_zbc_report_zones() (git fixes (block
layer)).
- block: allow partitions on host aware zone devices (git fixes
(block layer)).
- block: refactor rescan_partitions (bsc#1169493).
- null_blk: Fix zoned command return code (git fixes (block
layer)).
- commit 2eec3ac
- EDAC: skx_common: downgrade message importance on missing PCI
device (bsc#1165581).
- commit 33acab9
- rbd: call rbd_dev_unprobe() after unwatching and flushing
notifies (git fixes (block layer)).
- commit b8a8f93
- rbd: avoid a deadlock on header_rwsem when flushing notifies
(git fixes (block layer)).
- commit 39eb136
- block: fix busy device checking in blk_drop_partitions (git
fixes (block layer)).
- commit a502c37
- tracing: Fix the race between registering 'snapshot' event
trigger and triggering 'snapshot' operation (git-fixes).
- commit e9b7241
- dm writecache: add cond_resched to avoid CPU hangs (git fixes
(block layer)).
- dm integrity: fix a crash with unusually large tag size (git
fixes (block layer)).
- dm zoned: remove duplicate nr_rnd_zones increase in
dmz_init_zone() (git fixes (block layer)).
- commit bae04d0
- Revert "bcache: ignore pending signals when creating gc and
allocator thread" (git fixes (block layer)).
- commit 389cb15
- block: rework zone reporting (git fixes (block layer)).
- Refresh for the above change,
patches.suse/dm-zoned-reduce-overhead-of-backing-device-checks.patch.
- commit e2e1ac1
- tracing: Disable trace_printk() on post poned tests (git-fixes).
- commit a1f20fd
- null_blk: clean up report zones (git fixes (block layer)).
- null_blk: clean up the block device operations (git fixes
(block layer)).
- block: Remove partition support for zoned block devices (git
fixes (block layer)).
- commit 47f4ca0
- block: Simplify report zones execution (git fixes (block
layer)).
- block: cleanup the !zoned case in blk_revalidate_disk_zones
(git fixes (block layer)).
- block: Enhance blk_revalidate_disk_zones() (git fixes (block
layer)).
- block: add zone open, close and finish operations (git fixes
(block layer)).
- commit c73ea39
- block: Simplify REQ_OP_ZONE_RESET_ALL handling (git fixes
(block layer)).
- block: Remove REQ_OP_ZONE_RESET plugging (git fixes (block
layer)).
- commit 1d004e0
- dm: make dm_table_find_target return NULL (git fixes (block
layer)).
- null_blk: fix inline misuse (git fixes (block layer)).
- null_blk: create a helper for zoned devices (git fixes
(block layer)).
- null_blk: move duplicate code to callers (git fixes (block
layer)).
- commit 9efd841
- fix patch metadata
- fix Patch-mainline:
patches.suse/ibmvfc-don-t-send-implicit-logouts-prior-to-NPIV-log.patch
- commit cb5e73f
- fs/filesystems.c: downgrade user-reachable WARN_ONCE() to
pr_warn_once() (bsc#1163463).
- commit 399801b
- ALSA: hda: call runtime_allow() for all hda controllers
(git-fixes).
- ALSA: hda: Explicitly permit using autosuspend if runtime PM
is supported (git-fixes).
- ALSA: hda: Skip controller resume if not needed (git-fixes).
- ALSA: hda: Keep the controller initialization even if no codecs
found (git-fixes).
- ALSA: hda: Release resources at error in delayed probe
(git-fixes).
- ALSA: hda: Honor PM disablement in PM freeze and thaw_noirq ops
(git-fixes).
- ALSA: hda: Don't release card at firmware loading error
(git-fixes).
- ALSA: usb-audio: Check mapping at creating connector controls,
too (git-fixes).
- ALSA: usb-audio: Don't create jack controls for PCM terminals
(git-fixes).
- ALSA: usb-audio: Don't override ignore_ctl_error value from
the map (git-fixes).
- ALSA: usb-audio: Filter error from connector kctl ops, too
(git-fixes).
- ALSA: hda/realtek - Enable the headset mic on Asus FX505DT
(git-fixes).
- commit 8a08089
- arm, bpf: Fix offset overflow for BPF_MEM BPF_DW (git-fixes).
- nl80211: fix NL80211_ATTR_FTM_RESPONDER policy (git-fixes).
- net: phy: micrel: use genphy_read_status for KSZ9131
(git-fixes).
- arm, bpf: Fix bugs with ALU64 {RSH, ARSH} BPF_K shift by 0
(git-fixes).
- keys: Fix proc_keys_next to increase position index (git-fixes).
- drm/amdgpu: unify fw_write_wait for new gfx9 asics (git-fixes).
- libata: Return correct status in sata_pmp_eh_recover_pm()
when ATA_DFLAG_DETACH is set (git-fixes).
- Input: i8042 - add Acer Aspire 5738z to nomux list (git-fixes).
- net: phy: micrel: kszphy_resume(): add delay after
genphy_resume() before accessing PHY registers (git-fixes).
- vfio: platform: Switch to platform_get_irq_optional()
(git-fixes).
- PCI: Add boot interrupt quirk mechanism for Xeon chipsets
(git-fixes).
- ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256
(git-fixes).
- drm/scheduler: fix rare NULL ptr race (git-fixes).
- drm/dp_mst: Fix clearing payload state on topology disable
(git-fixes).
- crypto: ccree - dec auth tag size from cryptlen map (git-fixes).
- crypto: ccree - only try to map auth tag if needed (git-fixes).
- crypto: ccree - protect against empty or NULL scatterlists
(git-fixes).
- irqchip/gic-v4: Provide irq_retrigger to avoid circular locking
dependency (git-fixes).
- ACPI: EC: Do not clear boot_ec_is_ecdt in acpi_ec_add()
(git-fixes).
- acpi/x86: ignore unspecified bit positions in the ACPI global
lock field (git-fixes).
- firmware: fix a double abort case with fw_load_sysfs_fallback
(git-fixes).
- usb: dwc3: core: add support for disabling SS instances in
park mode (git-fixes).
- xhci: bail out early if driver can't accress host in resume
(git-fixes).
- media: venus: firmware: Ignore secure call error on first resume
(git-fixes).
- media: allegro: fix type of gop_length in channel_create message
(git-fixes).
- media: i2c: ov5695: Fix power on and off sequences (git-fixes).
- media: ti-vpe: cal: fix disable_irqs to only the intended target
(git-fixes).
- media: venus: hfi_parser: Ignore HEVC encoding for V1
(git-fixes).
- pstore/platform: fix potential mem leak if pstore_init_fs failed
(git-fixes).
- tpm: Don't make log failures fatal (git-fixes).
- i2c: pca-platform: Use platform_irq_get_optional (git-fixes).
- i2c: st: fix missing struct parameter description (git-fixes).
- bus: sunxi-rsb: Return correct data when mixing 16-bit and
8-bit reads (git-fixes).
- soc: fsl: dpio: register dpio irq handlers after dpio create
(git-fixes).
- Input: tm2-touchkey - add support for Coreriver TC360 variant
(git-fixes).
- i2c: jz4780: silence log flood on txabrt (git-fixes).
- mmc: sdhci-of-esdhc: fix esdhc_reset() for different controller
versions (git-fixes).
- cpufreq: Cancel policy update work scheduled before freeing
(git-fixes).
- commit e5ee52f
- xfs: reflink should force the log out if mounted with wsync
(git-fixes).
- commit 2e7b82b
- xfs: factor out a new xfs_log_force_inode helper (git-fixes).
- commit 9fd128e
- xfs: don't write a corrupt unmount record to force summary
counter recalc (git-fixes).
- commit 6add31e
- xfs: don't allow log IO to be throttled (git-fixes).
- commit 925e53f
- xfs: remove some stale comments from the log code (git-fixes).
- commit b869987
- xfs: refactor unmount record writing (git-fixes).
- commit 60c7c2f
- xfs: merge xlog_commit_record with xlog_write_done (git-fixes).
- commit 6169e00
- xfs: split xlog_ticket_done (git-fixes).
- commit 3540978
- xfs: kill XLOG_TIC_INITED (git-fixes).
- commit 1c52baf
- xfs: refactor and split xfs_log_done() (git-fixes).
- commit 27f5afa
- xfs: re-order initial space accounting checks in xlog_write
(git-fixes).
- commit d2e492c
- xfs: don't try to write a start record into every iclog
(git-fixes).
- commit 62148c3
- xfs: shutdown on failure to add page to log bio (git-fixes).
- commit cb7737c
- xfs: remove xlog_state_want_sync (git-fixes).
- commit 99f092d
- xfs: move the ioerror check out of xlog_state_clean_iclog
(git-fixes).
- commit f23116d
- xfs: refactor xlog_state_clean_iclog (git-fixes).
- commit e43b3ed
- xfs: remove the aborted parameter to xlog_state_done_syncing
(git-fixes).
- commit eaff4cc
- xfs: simplify log shutdown checking in xfs_log_release_iclog
(git-fixes).
- commit d486a9f
- xfs: simplify the xfs_log_release_iclog calling convention
(git-fixes).
- commit 5b62921
- xfs: factor out a xlog_wait_on_iclog helper (git-fixes).
- commit 371f1e3
- xfs: merge xlog_cil_push into xlog_cil_push_work (git-fixes).
- commit 22531f1
- xfs: cleanup xfs_log_unmount_write (git-fixes).
- commit 47964dc
- xfs: remove dead code from xfs_log_unmount_write (git-fixes).
- commit 15d084c
- xfs: remove the unused return value from xfs_log_unmount_write
(git-fixes).
- commit 7daf110
- xfs: don't ever return a stale pointer from __xfs_dir3_free_read
(git-fixes).
- commit e98d8e7
- xfs: fix buffer corruption reporting when
xfs_dir3_free_header_check fails (git-fixes).
- commit 0d51de1
- xfs: add a function to deal with corrupt buffers post-verifiers
(git-fixes).
- commit cdad8b5
- xfs: fix iclog release error check race with shutdown
(git-fixes).
- commit 2814941
- xfs: don't check for AG deadlock for realtime files in bunmapi
(git-fixes).
- commit fc993c5
- xfs: remove the XLOG_STATE_DO_CALLBACK state (git-fixes).
- commit c72277f
- xfs: turn ic_state into an enum (git-fixes).
- commit 1f9b2d3
- xfs: remove the unused XLOG_STATE_ALL and XLOG_STATE_UNUSED
flags (git-fixes).
- commit 22ec56e
- xfs: remove dead ifdef XFSERRORDEBUG code (git-fixes).
- commit f73533e
- xfs: call xlog_state_release_iclog with l_icloglock held
(git-fixes).
- commit e2ae7c9
- xfs: move the locking from xlog_state_finish_copy to the callers
(git-fixes).
- commit 4fc8e18
- xfs: remove the unused ic_io_size field from xlog_in_core
(git-fixes).
- commit cc60ace
- xfs: pass the correct flag to xlog_write_iclog (git-fixes).
- commit d0ba340
- x86/xen: fix booting 32-bit pv guest (bsc#1071995).
- commit de745ab
- x86/xen: Make the secondary CPU idle tasks reliable
(bsc#1071995).
- commit b937a33
- x86/xen: Make the boot CPU idle task reliable (bsc#1071995).
- commit 7555345
- Update
patches.suse/media-stv06xx-add-missing-descriptor-sanity-checks.patch
(bsc#1168854). Pending CVE request, adding bsc so that it is not lost
- commit 3e4aa5f
- Update
patches.suse/media-xirlink_cit-add-missing-descriptor-sanity-chec.patch
(bsc#1168952). Pending CVE request, adding bsc so this is not lost.
- commit 98ac2ff
- tools/test/nvdimm: Fix out of tree build (bsc#1156395).
- commit bec0a07
- Refresh patches.suse/tools-testing-nvdimm-Fix-compilation-failure-without.patch.
- commit 48bddf2
- ibmvfc: don't send implicit logouts prior to NPIV login
(bsc#1169625 ltc#184611).
- commit 1026f14
- net: systemport: fix index check to avoid an array out of
bounds access (networking-stable-20_03_14).
- taprio: Fix sending packets without dequeueing them
(networking-stable-20_03_14).
- net: memcg: fix lockdep splat in inet_csk_accept()
(networking-stable-20_03_14).
- net: dsa: Don't instantiate phylink for CPU/DSA ports unless
needed (networking-stable-20_03_14).
- net/packet: tpacket_rcv: do not increment ring index on drop
(networking-stable-20_03_14).
- net: fec: validate the new settings in fec_enet_set_coalesce()
(networking-stable-20_03_14).
- net: macsec: update SCI upon MAC address change
(networking-stable-20_03_14).
- ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface
(networking-stable-20_03_14).
- net: memcg: late association of sock to memcg
(networking-stable-20_03_14).
- ipvlan: do not use cond_resched_rcu() in
ipvlan_process_multicast() (networking-stable-20_03_14).
- cgroup, netclassid: periodically release file_lock on classid
updating (networking-stable-20_03_14).
- ipvlan: add cond_resched_rcu() while processing muticast backlog
(networking-stable-20_03_14).
- ipvlan: don't deref eth hdr before checking it's set
(networking-stable-20_03_14).
- sfc: detach from cb_page in efx_copy_channel()
(networking-stable-20_03_14).
- inet_diag: return classid for all socket types
(networking-stable-20_03_14).
- net: stmmac: dwmac1000: Disable ACS if enhanced descs are not
used (networking-stable-20_03_14).
- gre: fix uninit-value in __iptunnel_pull_header
(networking-stable-20_03_14).
- bonding/alb: make sure arp header is pulled before accessing it
(networking-stable-20_03_14).
- net: nfc: fix bounds checking bugs on "pipe"
(networking-stable-20_03_14).
- net: hns3: fix a not link up issue when fibre port supports
autoneg (networking-stable-20_03_14).
- slip: make slhc_compress() more robust against malicious packets
(networking-stable-20_03_14).
- net: dsa: fix phylink_start()/phylink_stop() calls
(networking-stable-20_03_14).
- selftests/net/fib_tests: update addr_metric_test for peer
route testing (networking-stable-20_03_14).
- net/ipv6: remove the old peer route if change it to a new one
(networking-stable-20_03_14).
- net/ipv6: need update peer route when modify metric
(networking-stable-20_03_14).
- net: taprio: add missing attribute validation for txtime delay
(networking-stable-20_03_14).
- net: fq: add missing attribute validation for orphan mask
(networking-stable-20_03_14).
- fib: add missing attribute validation for tun_id
(networking-stable-20_03_14).
- devlink: validate length of region addr/len
(networking-stable-20_03_14).
- devlink: validate length of param values
(networking-stable-20_03_14).
- net/ipv6: use configured metric when add peer route
(networking-stable-20_03_14).
- net: dsa: mv88e6xxx: fix lockup on warm boot
(networking-stable-20_03_14).
- netlink: Use netlink header as base to calculate bad attribute
offset (networking-stable-20_03_14).
- r8152: check disconnect status after long sleep
(networking-stable-20_03_14).
- commit 4f8bc32
==== ldb ====
Version update (2.0.8 -> 2.0.9)
Subpackages: libldb2 libldb2-32bit python3-ldb
- CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with
ASQ; (bso#14331); (bsc#1169850);
- Add CVE-2020-10700-2.0.10.patch
- Update to version 2.0.9
+ Samba 4.11 and later give incorrect results for SCOPE_ONE
searches (bso#14270)
==== libdvdnav ====
Version update (6.0.1 -> 6.1.0)
- Update to version 6.1.0
* add a dvdnav_open2 API to setup a logging mechanism, similar
to libdvdread
* add a dvdnav_get_number_of_angles API
* add a dvdnav_version API
* rework the logs in the library and remove direct printf calls
* handle out-of-order ADMAP entries blocking playback
* fix crashes in dvdnav_describe_title_chapters in broken DVDs
* cleanup old code and buildsystem
- Added libdvdnav.keyring as source and enabled signature file
- Dropped libdvdnav-dvdread.patch (no longer necessary)
- Spec cleanup
==== libgcrypt ====
Subpackages: libgcrypt20 libgcrypt20-32bit
- Ship the FIPS checksum file in the shared library package and
create a separate trigger file for the FIPS selftests (bsc#1169569)
* add libgcrypt-fips_selftest_trigger_file.patch
* refresh libgcrypt-global_init-constructor.patch
- Remove libgcrypt-binary_integrity_in_non-FIPS.patch obsoleted
by libgcrypt-global_init-constructor.patch
- FIPS: Verify that the generated signature and the original input
differ in test_keys function for RSA, DSA and ECC: [bsc#1165539]
- Add zero-padding when qx and qy have different lengths when
assembling the Q point from affine coordinates.
- Refreshed patches:
* libgcrypt-PCT-DSA.patch
* libgcrypt-PCT-RSA.patch
* libgcrypt-PCT-ECC.patch
- FIPS: Switch the PCT to use the new signature operation [bsc#1165539]
* Patches for DSA, RSA and ECDSA test_keys functions:
- libgcrypt-PCT-DSA.patch
- libgcrypt-PCT-RSA.patch
- libgcrypt-PCT-ECC.patch
- Update patch: libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch
==== libindicator ====
- A shared systemd target for user session is shipped with the
source, pack it up properly.
https://bazaar.launchpad.net/~indicator-applet-developers/libindicator/trunk.16.10/revision/534
==== libqt5-qtmultimedia ====
- Enable openal support on SLE as well (bsc#1170882)
==== libvirt ====
Subpackages: libvirt-bash-completion libvirt-client libvirt-daemon libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-qemu libvirt-libs
- qemu: Fix memory leak in qemuDomainGetStatsIOThread
CVE-2020-12430
9bf9e0ae-CVE-2020-12430.patch
bsc#1170765
- libxl: Add support for 'passthrough' and 'e820_host' settings
b7d6648d-conf-add-e820-host.patch,
5749395b-libxl-e820-host.patch,
f3ef7daf-xenconfig-e820-host.patch,
34077c1b-tests-check-e820-host.patch,
fadbaa23-conf-add-passthrough.patch,
9529e007-libxl-passthrough.patch,
9cb8bc6f-xenconfig-refactor-features.patch,
b523e225-xenconfig-passthrough.patch,
bed32525-tests-check-passthrough.patch
bsc#1167217
==== man-pages ====
- move man.7 man mdoc.7 to a separate directory to avoid conflicts
with mandoc which is a light-weight man alternative for small
systems (boo#1160568).
==== mariadb ====
Subpackages: libmariadbd19 mariadb-client mariadb-errormessages
- move mariadb-client-test from client subpackage to test subpackage
so the symlink from mariadb-client-test -> mysql_client_test works
[bsc#1170204]
==== openssl-1_1 ====
Subpackages: libopenssl1_1 libopenssl1_1-32bit
- Security fix: [bsc#1169407, CVE-2020-1967]
* Segmentation fault in SSL_check_chain: Server applications that
call the SSL_check_chain() function during or after a TLS handshake
may crash due to a NULL pointer dereference as a result of incorrect
handling of the signature_algorithms_cert TLS extension.
- Add patches:
* openssl-CVE-2020-1967.patch
* openssl-CVE-2020-1967-test1.patch
* openssl-CVE-2020-1967-test2.patch
* openssl-CVE-2020-1967-test3.patch
==== perl-Bootloader ====
Version update (0.926 -> 0.927)
- merge gh#openSUSE/perl-bootloader#126
- always install EFI fallback boot for aarch64 (bsc#1167015)
- 0.927
==== polari ====
Version update (3.36.1 -> 3.36.2)
Subpackages: polari-lang typelib-1_0-Polari-1_0
- Update to version 3.36.2:
+ Fix information leak when re-using account IDs.
+ Updated translations.
==== polkit-default-privs ====
Version update (13.2+20191128.c2eb3f7 -> 13.2+20200421.207b724)
- Update to version 13.2+20200421.207b724:
* packagekit: allow system-sources-refresh w/o password entry (bsc#1169540)
==== remmina ====
Version update (1.3.10 -> 1.4.2)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc remmina-plugin-xdmcp
- Update to release 1.4.2
* Bug-fixing release related to SSH bugs
* Adds ClientBuild settings to RDP plugin to specify client version build number
* Spelling: Smaller bullet points, RDP plugin
* Allow formatting for SSH session filename
* web-browser plugin fixes
* Make duplicate session sensitive only if a profile exists
* Issue template reworked
* Fix null pointer dereference in remmina_main_quickconnect
* SFTP with tunnel fixes
* Cppcheck and PVS Studio Fixes
* VNCI fixes
* Typo fix in remmina_ssh.c
* Allow enter key in domain textbox of authentication dialog to submit
* rcw event sources cleanup (bsc#1169412)
- Update to release 1.4.1
* Bug-fix release
* SSH fixes, should fix #2094
* Update remmina_filezilla_sftp.sh
- Update to new upstream release 1.4.0
* This is a long term release
* RDP clipboard fixes
* SSH authentication fixes
* Fixed compiler warnings
* SSH tunnel refactoring
* Parameters passed individually, notation, "Press any key to continue?"
* Updated boolean expressions
* Add end of options escaping
* Remove double-quotes escaping early
* Ending code block whitespace line removed
* Safer removal of build directory
* Spelling: Could not access the RDP server x7
* Removing double struct declaration
==== samba ====
Version update (4.11.5+git.137.297c522339b -> 4.11.5+git.161.74bc5e6ec8e)
Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-policy0-python3 libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2 libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-libs samba-libs-32bit samba-libs-python3 samba-python3 samba-winbind samba-winbind-32bit
- CVE-2020-10704: LDAP Denial of Service (stack overflow) in
Samba AD DC; (bso#14334); (bsc#1169851);
- CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with
ASQ; (bso#14331); (bsc#1169850);
- Fix smbclient crash with double free (with unresolved krb5
credential cache); (bso#14344); (bsc#1169095).
==== shotwell ====
Subpackages: shotwell-lang
- Add shotwell-Make_fatal-warnings_an_option.patch: Make
fatal-warnings an option
==== unar ====
Version update (1.10.1 -> 1.10.7)
- Update to version 1.10.7
* Prevent using reference to dangling pointer for archives
with password in interactive mode Fixes #112
* Fix Undefined behaviour in lzw allocation
* Return suggested path if we're running non-interactive (-q
option was specified).
* Fix incorrect comments parsing
* Fix case when some permissions from Windows-generated
archives were affecting files on Mac OS
* Add tests for extended 64-Zip
* Tests added, Fixes #101
* Add tests for reading CDR
* Add basic test for incorrect date conversion #99
* Cleanup bufer after usage in tests
* Check ZIP extra field if >= 9 bytes
- Drop Group tag
- Spec cleanup
- update to version 1.10.5
* Update/linux build validation
* Remove wavpack sources from linux distribution
* [TUN-62] Some symlinks aren't handled by the unarchiver
* [TUN-62] Fix Symlink extration for certain files
* Add faster IEEECRC32 calculation
* Fix 7zip unarchivation for files with delta filter
* Select correct Parser in conflicting SFX Archives
* Correct RAR5 variable int reading for correct reading
values >> 32 bit
* Fix case when old solid rar archives weren't correctly extracted
* Fix broken symbolic links for the archives, created in Windows
* Fix case when JSON output explodes in solid archives with
a lot of files
* Support WARC 1.0 compliant WARC-Target-URI fields
* Support extracting warc.{gz,bz2,lzma,xz,Z} files directly
* Add support for self extracting archives in RAR5
- update fixes [bsc#1127736]
- remove the following patches (applied upstream)
* use-system-wavpack.patch
* document-undocumented-options.patch
* unar-1.10.1-self-extracting_rar.patch
- change Source for the upstream tarball
- add unar-1.10.1-self-extracting_rar.patch to support RAR
self-extracting (SFX) archives [bsc#1110754]
- fix bash completion path for lsar and unar
- revert changes from the last submission and move unrar_wrapper
script to a separate package as it seems that openSUSE:Factory
is not ready to obsolete unrar by unar yet [bsc#1083834],
[fate#323896]
- add unrar_wrapper.py (https://github.com/openSUSE/unrar_wrapper)
that provides the basic backwards compatibility with unrar
[fate#323896]
- unar now obsoletes non-free unrar
- run spec-cleaner
- Added missing build dependency.
- Added -fno-strict-aliasing to CFLAGS to address some of the
rpmlint warnings. The rest needs to be fixed upstream (see
(https://bitbucket.org/WAHa_06x36/theunarchiver/issues/929)
- Added use-system-wavpack.patch and switched to system
libwavpack (imported from debian)
- Added document-undocumented-options.patch (imported from
debian)
- Update description
- Initial package 1.10.1
==== update-test-trivial ====
Subpackages: update-test-affects-package-manager update-test-interactive update-test-optional update-test-reboot-needed update-test-security
- Add a retracted update test case
- Break broken package for all platforms
==== xfce4-panel ====
Version update (4.14.3 -> 4.14.4)
Subpackages: libxfce4panel-1_0-4 libxfce4panel-2_0-4 xfce4-panel-lang xfce4-panel-restore-defaults
- Update to 4.14.4
* Fix panel build with vala 0.48 (bxo#16426)
* Fix memory leak in panel plugin wrapper (bxo#16640)
* tasklist: Fix crash middle-click-closing grouped windows
(bxo#16410)
* panel: Make sure "span monitors" is conditionally sensitive
(bxo#15169)
* Translation Updates
==== yast2 ====
Version update (4.2.82 -> 4.2.83)
Subpackages: yast2-logs
- Avoid using systemctl calls when already started with the
installation and thus, running inside the chroot (bsc#1168849)
- 4.2.83
==== yast2-schema ====
Version update (4.2.8 -> 4.2.10)
- Exclude the registration for architectures on which it does not
build (related to the jsc#SLE-11852)
- 4.2.10
- Always add the registration to schema (jsc#SLE-11852)
- do not use exclude arch on SLE
- 4.2.9
==== yast2-sound ====
Version update (4.2.2 -> 4.2.4)
- avoid attempts to build sound card database if no kernel
available (related to jsc#SLE-11862)
- 4.2.4
- jsc#SLE-11862
- dropped conditional build to unify SLE and OS builds
- 4.2.3