Packages changed: SUSEConnect (0.3.3 -> 0.3.7) apparmor cups-filters (1.17.6 -> 1.19.0) dar (2.5.8 -> 2.5.14) enscript (1.6.4 -> 1.6.6) gdm git (2.16.0 -> 2.16.1) installation-images-Kubic (14.352 -> 14.354) multipath-tools (0.7.3+13+suse.db431514 -> 0.7.3+30+suse.6b5ed839) perl-Encode (2.93 -> 2.94) perl-Perl-Tidy (20171214 -> 20180101) ruby (2.4 -> 2.5) spec-cleaner (1.0.1 -> 1.0.2) squid (4.0.22 -> 4.0.23) unbound (1.6.7 -> 1.6.8) vde2 vigra xine-lib (1.2.8 -> 1.2.9) === Details === ==== SUSEConnect ==== Version update (0.3.3 -> 0.3.7) - Remove unnecessary .gz files - Update to 0.3.7 - virt-create-rootfs connects to SMT server without breaking (bsc#914297) - Update to 0.3.6 - Make target_base_product parameter mandatory. - Update to 0.3.5 - Add YaST.system_offline_migrations - Update to version 0.3.4: - Packaging improvements (bsc#964013) ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang pam_apparmor pam_apparmor-32bit perl-apparmor python3-apparmor - update to AppArmor 2.12 - preserve errno across aa_*_unref() functions - see https://gitlab.com/apparmor/apparmor/wikis/Release_Notes_2.12 for the detailed upstream changelog - no longer package static libapparmor.a - update to AppArmor 2.11.95 aka 2.12 beta1 - no changes in libapparmor - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_95 for the detailed upstream changelog - update to AppArmor 2.11.1 - mostly test-related changes in libapparmor - see http://wiki.apparmor.net/index.php/ReleaseNotes_2_11_1 for upstream changelog - Fix RPM groups - split libapparmor into separate spec to get rid of build loop involving mariadb, systemd, apparmor, libapr and mariadb again (see the discussion in SR 448871 for details) - libapparmor.spec is based on the AppArmor 2.11 apparmor.spec, but with minimum BuildRequires ==== cups-filters ==== Version update (1.17.6 -> 1.19.0) - Update to 1.19.0: * See the detailed stuff in NEWS file * New filters and poppler compatibility as always - Do not require python-cups but rather python3-cups in order to allow build on python2 less system - Explicitly enable ijs and opvp filters ==== dar ==== Version update (2.5.8 -> 2.5.14) Subpackages: dar-lang libdar5000 - fix build for Factory - update to version 2.5.14 (relevant parts from upstream) - made libgcrypt built-in memory guard be initialized before obtaining ligcrypt version, to respect libgcrypt usage (but no problem was seen nor reported about this inconsistency) - fixed syntax error in XML listing output (EA_entry and Attributes tags) - fixed bugs in dar_split: cygwin support, filedescriptors were not explicitly closed at end of execution, allocating buffer on heap rather than in the stack for better size flexibility, avoiding buffer size to be greater than SSIZE_MAX. - added -s option to dar_split in order to disable the by default SYNC write that was used and which caused poor performance. To keep the same behavior as the older dar_split (and its poor performances) you need now using -s option. - dar_split enhancement: added call to syncfs before closing the file descriptor in split_output mode - fixed bug in dar_split that was did not lead dar_split to completely fulfill an device before asking for user to change the media when used in split_output mode, this was sometimes leading dar reporting file as corrupted at dar_split at media boundary. - added feature in dar_split to show the amount of data written since the last media change - added -az option to automatically nullify negative dates returned from the system in the archive under creation (filesystem is not modified) - included the birthtime (HFS FSA) into the negative dates handling - modified behavior: dar now fails upon unknown option instead of warning the option is unknown and thus ignored - fixed missing throw in tools.cpp (exception condition was not reported) - dar now aborts if a line exceeding 20479 bytes is met in a listing file - fixed bug in file listing (-[ option) leading some directories and their content to be excluded in a somehow rare condition - improved behavior when dar reads a negative date. Instead of aborting it now asks the user if it can substitute such value by zero - improved behavior when dar is asked to read an archive located in a directory that does not exist. DUC file passed to -E option is now properly run in that case too and has the possibility for example to create that directory and download requested file - minor feature: displays the archive header which is never ciphered and aborts. This feature is activated while listing archive content and adding the -aheader option. This brings the side effect to invert two lines in the archive summary (dar -l archive -q) "catalogue size" and "user comment". - adding date format info for -w option in "dar_manager -h" usage help - fixed several mistakes in tools.cpp leading compilation to fail under certain environments - fixed bug in the filtering mechanism relying on file listing (-[ and - ] options) that could not find an entry in the listing upon certain condition leading a file not being excluded as requested or not included as requested - fixed bug: -r option (only more recent overwriting policy) was considering a file to be more recent when it had the exact same date as the file in place. - updating documentation about requirements for compiling dar from sources - fixed bug: bug met when restoring of a file that has the immutable flag set. Dar/libdar failed restoring such file in the context of differential/incremental backup. The fix consists of the removal of the immutable flag from filesystem before restoring the new version of the file's data, then setting back the immutable flag afterward. - updating FAQ with description of the way dar uses lzo compression compared to the lzop program - fixed bug: aborting an archive was leading to an unreadable archive in direct mode, most of the time when strong encryption was used - minor new feature: added two flavors of lzo algorithm: lzop-1 and lzop-3 in order to match compression levels 1 and 3 of the lzop command - fixed bug: merging operation could wrongly melt different unrelated hard linked inodes when merging using an archive which results from a previous merging operation. - fixed bug: aborting an archive was sometimes leading to an unreadable archive in direct mode (was readable only in --sequential-read mode) - fixed bug: libgpgme was only present at linking time of final binaries (dar, dar_slave, dar_xform, dar_manager, dar_cp, dar_split), not at linking time of libdar, which caused problem under Linux Rosa distro where the "no-undefined" flag is passed to the linker. - minor new feature: -ay option has been added to display sizes in bytes instead of the default which uses the largest possible unit (Kio, Mio, and so on.) ==== enscript ==== Version update (1.6.4 -> 1.6.6) - Add missing scan vor LC_PAPER in patch enscript-1.6.6-encoding+paper.patch - Add enscript-1.6.6-ghostscript.patch to get correct support for ghostscript back - Add enscript-1.6.6-silent-warns.patch to silent gcc - Move %install_info_delete from %postun to %preun - Add patch enscript-1.6.6-helper-apps.patch to mention helper app support again - Add patch enscript-1.6.6-mailto.patch to get mailto support with optional address back - Add patch enscript-1.6.6-encoding+paper.patch to get better encoding and automatic paper size support back - Add patch enscript-1.6.6-euro+baltic.patch to get support for the Euro symbol as well as the Baltic language support back - update to 1.6.6 * Add afm/MustRead.html, containing licensing information for Adobe AFM files. * Sync all translations from the Translation Project. Visit http://translationproject.org/ to help translate Enscript * Add documented but missing '-w' option as an alias for '--language' * Apply sliceprint patch from Debian - includes 1.6.5.2: * Fix CFG_FATAL macro in util.c-- prevents a segfault when the config file contains unknown parameters * Fix segfault with line lengths over 90 characters - includes 1.6.5.1: * Typo corrections in the manual pages * Actually ship f90.st in the tarball * Better organization for ChangeLog, INSTALL and README - includes 1.6.5: * Licensing change: GNU Enscript is now distributed under version 3 or later of the GNU GPL * Build system fixes - distcheck now passes * At least four security bug fixes: - CAN-2004-1184 - CAN-2004-1185 - CAN-2004-1186 - CVE-2008-3863, CVE-2008-4306 * Syntax highlighting fixes - shell escaping rules from Shawn McMahon - JavaScript regexps now recognised - New highlighting rules for Fortran 90 from David Bowler - rebase enscript-automake.diff - remove enscript-1.6.4-CAN-2004-1184.patch * upstreamed in 9510e4315705329e51b27fa2f3f688989b9fb37f - remove enscript-1.6.4-CAN-2004-1185.patch * fixed in a3e6bf57e48bb7434cdd590732e221fd2e0b4c17 - remove enscript-1.6.4-CAN-2004-1186.patch * fixed in 0acc7b63a1be9f5d02f1a21d6df52cb5a9ce7e58 - remove enscript-1.6.4-CVE-2008-3863.patch * upstreamed in 94135714871a735e3fe624eaf37901bbb6314e05 - remove enscript-1.6.4-fdleak.patch * fixed in f2bfb5ead29048ce42000e4796383a4406b069f6 - remove enscript-1.6.4.dif - renumber patches - cleanup with spec-cleaner ==== gdm ==== Subpackages: gdm-lang gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Add gdm-disable-wayland-on-unsupported-chipsets.patch: let udev write to a runtime config file to disable Wayland for gdm on chipsets where Wayland is not supported yet, e.g. Cirrus (boo#1059356, bgo#789081). - Update gdm-sysconfig-settings.patch: parts of this openSUSE specific patch are splitted and merged into gdm-disable-wayland-on-unsupported-chipsets.patch to push to upstream, ==== git ==== Version update (2.16.0 -> 2.16.1) Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk - git 2.16.1: * "git clone" segfaulted when cloning a project that happens to track two paths that differ only in case on a case insensitive filesystem ==== installation-images-Kubic ==== Version update (14.352 -> 14.354) - merge gh#openSUSE/installation-images#228 - set product and menu title in gfxboot.cfg - 14.354 - merge gh#openSUSE/installation-images#227 - copy grub2 background conditionally (boo#1076577) - 14.353 ==== multipath-tools ==== Version update (0.7.3+13+suse.db431514 -> 0.7.3+30+suse.6b5ed839) Subpackages: kpartx multipath-tools-rbd - Update to version 0.7.3+30+suse.6b5ed839: * multipath.rules: temporary rule to obtain ID_WWN for NVMe (bsc#1076828) * libmultipath: ignore natively multipathed NVME devices (bsc#1076828) * multipath.rules: handle NVME devices (bsc#1076828) * FIX "libmultipath: hwtable: multibus for NetApp NVMe-FC" (bsc#1073319) * libmultipath: increase path product_id/rev field size for NVMe (bsc#1073319) - Update to version 0.7.3+25+suse.7c9920e2: * assemble_map: no newline at end of params string (bsc#1072253) - Update to version 0.7.3+24+suse.703a61d5: * multipathd.service: drop Before=lvm2-lvmetad.service (bsc#1070427) * libmultipath: hwtable: multibus for NetApp NVMe-FC (bsc#1073319) * libmultipath/propsel: select ALUA prioritizer for RDAC arrays only (bsc#1075539) * libmultipath: get_vpd_sgio: support VPD 0xc9 (bsc#1055949) * libmultipath: sgio_get_vpd: add page argument (bsc#1055949) * libmultipath: fix return code of sgio_get_vpd() (bsc#1055949) - Update to version 0.7.3+19+suse.0fd18bdd: * multipathd.socket: add WantedBy=sockets.target (bsc#1072253) - Update to version 0.7.3+18+suse.8c97f433: * multipath -C: decrease log level (bsc#1072504) - Update to version 0.7.3+17+suse.cac42e6f: * test-kpartx: add test for mapping without UUID (bsc#1074013) - Update to version 0.7.3+15+suse.570d5938: * kpartx.rules: fix by-id/scsi-* for user_friendly_names (bsc#1066893) - Update to version 0.7.3+14+suse.da06e7f3: * libmultipath: fix return code of sysfs_get_timeout (bsc#1069037) ==== perl-Encode ==== Version update (2.93 -> 2.94) - updated to 2.94 see /usr/share/doc/packages/perl-Encode/Changes ==== perl-Perl-Tidy ==== Version update (20171214 -> 20180101) - updated to 20180101 see /usr/share/doc/packages/perl-Perl-Tidy/CHANGES 2018 01 01 - Added new flag -wn (--weld-nested-containers) which addresses these issues: RT #123749: Problem with promises; RT #119970: opening token stacking strange behavior; RT #81853: Can't stack block braces This option causes closely nested pairs of opening and closing containers to be "welded" together and essentially be formatted as a single unit, with just one level of indentation. Since this is a new flag it is set to be "off" by default but it has given excellent results in testing. EXAMPLE 1, multiple blocks, default formatting: do { { next if $x == $y; # do something here } } until $x++ > $z; perltidy -wn do { { next if $x == $y; } } until $x++ > $z; EXAMPLE 2, three levels of wrapped function calls, default formatting: p( em( conjug( translate( param('verb') ), param('tense'), param('person') ) ) ); [#] perltidy -wn p( em( conjug( translate( param('verb') ), param('tense'), param('person') ) ) ); [#] EXAMPLE 3, chained method calls, default formatting: get('http://mojolicious.org')->then( sub { my $mojo = shift; say $mojo->res->code; return get('http://metacpan.org'); } )->then( sub { my $cpan = shift; say $cpan->res->code; } )->catch( sub { my $err = shift; warn "Something went wrong: $err"; } )->wait; [#] perltidy -wn get('http://mojolicious.org')->then( sub { my $mojo = shift; say $mojo->res->code; return get('http://metacpan.org'); } )->then( sub { my $cpan = shift; say $cpan->res->code; } )->catch( sub { my $err = shift; warn "Something went wrong: $err"; } )->wait; - Fixed RT #114359: Missparsing of "print $x ** 0.5; - Deactivated the --check-syntax flag for better security. It will be ignored if set. - Corrected minimum perl version from 5.004 to 5.008 based on perlver report. The change is required for coding involving wide characters. - For certain severe errors, the source file will be copied directly to the output without formatting. These include ending in a quote, ending in a here doc, and encountering an unidentified character. ==== ruby ==== Version update (2.4 -> 2.5) Subpackages: ruby-devel - switch the default ruby to 2.5 ==== spec-cleaner ==== Version update (1.0.1 -> 1.0.2) - Version update to 1.0.2 bsc#1077177: * Allow changelog-year specification via cmdline * Switch to pytest * Add groups for rust * Fix bug in otherprovides removal ==== squid ==== Version update (4.0.22 -> 4.0.23) - Update Squid to 4.0.23 * fixes DoS caused by incorrect pointer handling when processing ESI responses. This affects the default custom esi_parser (libxml2 and expat esi_parsers are unaffected) (bnc#1077003) * fixes DoS caused by incorrect pointer handing whien processing ESI responses or downloading intermediate CA certificates (bnc#1077006) * fixes "User names not sent to url_rewrite_program" * fixes % 1.6.8) Subpackages: libunbound2 unbound-anchor - update to 1.6.8 patch for CVE-2017-15105: vulnerability in the processing of wildcard synthesized NSEC records. ==== vde2 ==== - Drop python2 from the buildrequirements * This means we lose python bindings but as the package is no longer developed there is 0 chance to obtain python3 bindings and the code is not compatible ==== vigra ==== - Remove python dependencies as we are not buliding the numpy code at all, as such it does not make sense to have just part of them - Make sure develpkg requires python3-base and fix shebang on vigra-config ==== xine-lib ==== Version update (1.2.8 -> 1.2.9) Subpackages: libxine-devel libxine2 libxine2-pulse - Update to release 1.2.9 and add xine-lib-a52dec.patch. - Moved xineplug_decode_mad and xineplug_decode_a52 into the main package as they are now unrestricted. - Enabled sdl and jack subpackages. - Upstream changes: * Add LIBXINE_VERBOSITY environment var override. * Add auto gapless switch. Play clips to their very end when that is likely what the user wants. * Add video single step feature. * Add generic keyframe index feature. * Add x32 (x86 32 on 64bit) support. * Add some more debug logging. * Join 4 network input plugins into a single file. * Matroska fixes. * Build fixes. * Directx2 audio fixes. * VAAPI fixes. * XCB video fixes and optimizations. * Return driver held video frames on shutdown properly. * FAAD audio compatibility fixes. * Fix VP9 playback. * Fix post filtering crash. * Make xml parser thread safe. * More user configuration safety. * Inline assembly fixes. * Failed memory allocation safety fixes. * Memory leak fixes. * Debug and LOG build fixes. * Again, lots of small fixes and optimizations. * Better multiengine client safety. * Hide yuv2rgb implementation details. * Use a single libyuv2rgb copy in both engine and plugins. * Minor ffmpeg optimization. * Lift a few video engine handbrakes. Less CPU load, fewer frame drops, faster seeking. * Optimize audio engine. * Optimize demux buffering system. * Optimize metronom clock. * Optimize port tickets. * Optimize sse/mmx2 memcpy. * Code simplification and cleanup. * Update german translation. * Add LIBXINE_VERBOSITY environment var override. * Add auto gapless switch. Play clips to their very end when that is likely what the user wants. * Add video single step feature. * Add generic keyframe index feature. * Add x32 (x86 32 on 64bit) support. * Add some more debug logging. * Join 4 network input plugins into a single file. * Matroska fixes. * Build fixes. * Directx2 audio fixes. * VAAPI fixes. * XCB video fixes and optimizations. * Return driver held video frames on shutdown properly. * FAAD audio compatibility fixes. * Fix VP9 playback. * Fix post filtering crash. * Make xml parser thread safe. * More user configuration safety. * Inline assembly fixes. * Failed memory allocation safety fixes. * Memory leak fixes. * Debug and LOG build fixes. * Again, lots of small fixes and optimizations. * Better multiengine client safety. * Hide yuv2rgb implementation details. * Use a single libyuv2rgb copy in both engine and plugins. * Minor ffmpeg optimization. * Lift a few video engine handbrakes. Less CPU load, fewer frame drops, faster seeking. * Optimize audio engine. * Optimize demux buffering system. * Optimize metronom clock. * Optimize port tickets. * Optimize sse/mmx2 memcpy. * Code simplification and cleanup. * Update german translation. - Cleanup buildrequires so neither Mesa-devel nor xorg-x11-devel meta/mega packages are required anymore.