Packages changed: AppStream (0.14.1 -> 0.14.3) audacity (3.0.0 -> 3.0.2) blog drbd-utils giflib gnome-chess (40.0 -> 40.1) grilo-plugins (0.3.12 -> 0.3.13) grub2 harfbuzz (2.7.4 -> 2.8.0) hexchat hwinfo (21.72 -> 21.73) jack (1.9.17 -> 1.9.18) k4dirstat (3.2.1 -> 3.2.2) ldb (2.2.1 -> 2.3.0) libcontainers-common libfido2 (1.6.0 -> 1.7.0) libguestfs (1.44.0 -> 1.44.1) libplacebo (3.120.1 -> 3.120.2) libqt5-qtwebengine libvpx (1.9.0 -> 1.10.0) libxkbcommon (1.2.0 -> 1.2.1) llvm12 (11.0.1 -> 12.0.0) lua54 (5.4.2 -> 5.4.3) makedumpfile mtools (4.0.26 -> 4.0.27) nodejs-common ovmf postgresql13 protobuf (3.15.7 -> 3.15.8) python-argparse-manpage (1.3 -> 1.5) qalculate (3.16.1 -> 3.18.0) rpcbind rubygem-loofah (2.9.0 -> 2.9.1) rubygem-marcel (0.3.3 -> 1.0.1) rubygem-mini_mime (1.0.2 -> 1.1.0) rubygem-passenger (6.0.7 -> 6.0.8) rubygem-rubocop (1.12.1 -> 1.13.0) salt samba (4.13.4+git.199.be6e11f5ab2 -> 4.14.2+git.159.2a8872214bf) selinux-policy (20210309 -> 20210419) snapper (0.8.16 -> 0.9.0) sqlite3 (3.35.2 -> 3.35.5) sudo (1.9.5p2 -> 1.9.6p1) suitesparse telegram-purple (1.4.2 -> 1.4.7) xf86-video-mach64 xorg-x11-server (1.20.10 -> 1.20.11) yast2-trans (84.87.20210411.9a07deafea -> 84.87.20210418.dfe53bf215) === Details === ==== AppStream ==== Version update (0.14.1 -> 0.14.3) Subpackages: AppStream-lang libAppStreamQt2 libappstream4 - Update to version 0.14.3 * spec: Mention that license-IDs are case-sensitive * compose: Don't loop endlessly if external desktop l10n function is set * Never create a predictable dir in /tmp for caching * qt: Implement missing Pool::componentsByCategories * Share one user-owned read-only system metadata cache between all applications * pool: Clean up user sysdata caches if we start to use the system cache * Port over some parsing improvements for desktop-files from asgen * compose: Add helper for reading desktop-entry files * compose: Handle bad UTF-8 in desktop-entry files even better * search: Perform partial token matches instead of prefix matches * search: Unconditionally perform partial term matching after exact matching * news-to-metainfo: Recognize the "Contributors" section * Update our own metainfo file for appstreamcli * Read descriptions from collection XML correctly again * search: Make whole-search string matching a lot more strict * validator: Resolve false-positive when testing remote icon URL validity * utils: Improve textwrap if text is just one excessively long word * compose: Permit U+00AD SOFT HYPHEN in string values * Validate our own metainfo file * compose: Don't assume lowest priority for desktop-entry-only components * search: Only replace full words with greylist terms, not partial ones * ascli: Take all positional parameters as search terms when searching ==== audacity ==== Version update (3.0.0 -> 3.0.2) Subpackages: audacity-lang - Update to 3.0.2 * Audacity 3.0.2 fixes some important bugs and improves diagnostic reporting. * We also added a new preference for macro output, and a 'Save' button on the manage macros dialog. - Rebase audacity-no_buildstamp.patch. ==== blog ==== Subpackages: libblogger2 - Fix package split done for shared library packaging guideline (bsc#1184479). ==== drbd-utils ==== - add pie-fix.patch: explicitly pass -pie linker flag when building drbdmon. The Makefile explicitly passes -fPIC, thereby breaking our gcc-PIE profile. In addition the Makefile also ignores CXXFLAGS and LDFLAGS passed via the environment. Therefore fix it with this patch. This makes drbdmon a PIE binary (bsc#1184122). ==== giflib ==== - prep section should just extract and patch, further modifications have to be done in the build section - Added patch: * PIE.patch + build path independent objects ==== gnome-chess ==== Version update (40.0 -> 40.1) Subpackages: gnome-chess-lang - Update to version 40.1: + Update user help. + Add workaround for engine taking too long to move. + Fix autosaved game being deleted when window is not closed with Ctrl+Q. + Fix invalid signal ID warning when starting a new game. ==== grilo-plugins ==== Version update (0.3.12 -> 0.3.13) Subpackages: grilo-plugin-tracker grilo-plugin-youtube grilo-plugins-lang - Add 108.patch: lua-factory: Remove a bad pop. This was exposed by Lua 5.4.3, causing a crash. - Update to version 0.3.13: + Remove Vimeo plugin. + Remove Jamendo plugin. + Deprecate: tracker version 2. + guardianvideos: Use api-key from GrlConfig. + thegamesdb: Update the Dreamcast MIME type. + tracker3: Handle delete events better. + tracker3: Fix setting of publication-date metadata-key. + Add option to disable bulding help. + Allow building grilo-plugins as a Meson subproject. ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Fix build error on armv6/armv7 (bsc#1184712) * 0001-emu-fix-executable-stack-marking.patch - Fix error grub_file_filters not found in Azure virtual machine (bsc#1182012) * 0001-Workaround-volatile-efi-boot-variable.patch ==== harfbuzz ==== Version update (2.7.4 -> 2.8.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 libharfbuzz0-32bit typelib-1_0-HarfBuzz-0_0 - Update to version 2.8.0: + Shape joining scripts other than Arabic/Syriac using the Universal Shaping Engine. Previously these were shaped using the generalized Arabic shaper. + Fix regression in shaping of U+0B55 ORIYA SIGN OVERLINE. + Update language tags. + Variations: reduce error: do not round each interpolated delta. + Documentation improvements. + Subsetter improvements: subsets most, if not all, lookup types now. + Fuzzer-found fixes and other improvements when memory failures happen. + Removed most atomic implementations now that we have C++11 atomic impl. + General codebase upkeep; using more C++11 features: constexpr constructors, etc. ==== hexchat ==== Subpackages: hexchat-lang - Add 2559.patch: fix segfault on lua_pop with Lua 5.4.3. ==== hwinfo ==== Version update (21.72 -> 21.73) - merge gh#openSUSE/hwinfo#95 - don't rely on select() updating its timeout arg (bsc#1184339) - 21.73 ==== jack ==== Version update (1.9.17 -> 1.9.18) - update to 1.9.18: * Add zalsa_in/out as internal client (based on zita-a2j/j2a and jack1 code) * Fix jack_midi_dump deadlock on close after the jack server is restarted * Fix interrupt signal for linux futex waits * Fix usage of meta-data in official macOS builds (private DB errors) * Log error message when cleaning previous DB (macOS and Windows) ==== k4dirstat ==== Version update (3.2.1 -> 3.2.2) Subpackages: k4dirstat-lang - Update to 3.2.2: * Save "Show treemap" status * Fix a segfault after reading a cache file ==== ldb ==== Version update (2.2.1 -> 2.3.0) Subpackages: libldb2 libldb2-32bit python3-ldb - Update to ldb 2.3.0 ==== libcontainers-common ==== - Force overlay as default storage driver if system is not btrfs (gh#containers/buildah#3153) - Update common to 0.36.0 - Update podman to 3.1.1 - Update storage to 1.29.0 - Update image to 5.11.0 ==== libfido2 ==== Version update (1.6.0 -> 1.7.0) Subpackages: libfido2-1 libfido2-udev - Update to version 1.7.0: * hid_win: detect devices with vendor or product IDs > 0x7fff * Support for FIDO 2.1 authenticator configuration. * Support for FIDO 2.1 UV token permissions. * Support for FIDO 2.1 "credBlobs" and "largeBlobs" extensions. * New API calls * New fido_init flag to disable fido_dev_open?s U2F fallback * Experimental NFC support on Linux. - Enabled hidapi again, issues related to hidapi are fixed upstream * Added fix-cmake-linking.patch to fix linking ==== libguestfs ==== Version update (1.44.0 -> 1.44.1) Subpackages: guestfs-data guestfs-tools guestfs-winsupport libguestfs0 perl-Sys-Guestfs python3-libguestfs - Update to version 1.44.1 * lib/appliance-kcmdline.c: Read UUID directly from appliance. * daemon/xfs.c: Fix error message. * daemon: chroot: Fix long-standing possible deadlock. * daemon: Don't return bogus failure from readdir. * daemon/btrfs.c: Ignore mkfs.btrfs allocstart option. * python: Ignore code style error E128. * php: Fix the build. * builder: Don't redefine Val_none (OCaml 4.12). * daemon: lvm: Use lvcreate --yes to avoid interactive prompts. * Update common submodule. * lib/fuse.c: Use safe_malloc instead of malloc. * fuse/guestmount.c: Avoid leaking fp on error path. * diff: Don't try to call unlink(NULL) on certain error paths. * daemon/tar.c: Avoid bogus GCC analyzer warning. * daemon/command.c daemon/debug.c df/main.c: Ignore bogus GCC analyzer warnings * appliance: Add dhclient for Arch-like Manjaro distro. * fish/tilde.c: Suppress more bogus -fanalyser warnings. * lib/qemu.c: Suppress another bogus -fanalyser warning. * builder: templates: Add ubuntu-20.04. * builder: templates: Added rhel-7.9. * lib: Move CLEANUP_GL_RECURSIVE_LOCK_UNLOCK to libguestfs header. * appliance: Avoid having ${exec_prefix} in guestfs appliance path. * build: Avoid warnings about unknown pragmas. - add libguestfs.env.patch - Remove ocaml_native_compiler conditional build native target unconditionally ==== libplacebo ==== Version update (3.120.1 -> 3.120.2) - Update libplacebo to version 3.120.2: This minor release fixes a number of additional bugs related to the thread queue, included demos, included helpers, and build system. Changes: - replace the `shaderc` library checks by pkg-config checks - `pl_dispatch` no longer grows infinitely, but prunes stale cache entries after a certain threshold - improve logging of GPU capabilities (including format capabilities) Fixes and performance improvements: - fix a typo on an error message - fix a use-after-free edge case in `plplay` - filter out Infinity, NaN and other values from fps/vps estimates - add several warnings for suspected frame queue API misuses - fix a crash when combining pl_render_image_mix with cropped frames - fix a crash on AV_PIX_FMT_NONE in the libav helpers - fix the loading of overlays in the `sdlimage` demo - fix a number of potential overflows on 32-bit platforms - omit redundant identity matrices in pl_shader_decode_color - fix crash in frame queue with certain out-of-order PTS sequences - add missing link to vulkan dependency in the `video-filtering` demo - correctly shift overlays when drawing to subsampled YCbCr planes - add missing check for PL_GPU_CAP_CALLBACKS in `utils/{libav,dav1d}.h` - improve handling of asynchronous texture uploads in `utils/libav.h` ==== libqt5-qtwebengine ==== - Add patch to fix build with GCC 11: * 0001-Fix-build-with-GCC-11.patch - Update _constraints to avoid OOM - Add back missing part in fix1163766.patch (boo#1184610) ==== libvpx ==== Version update (1.9.0 -> 1.10.0) - using service/obspcio again because upstream tar ball is changing, leading to trust validation errors - udpate to 1.10.0: This maintenance release adds support for darwin20 and new codec controls, as well as numerous bug fixes. - Upgrading: New codec control is added to disable loopfilter for VP9. New encoder control is added to disable feature to increase Q on overshoot detection for CBR. Configure support for darwin20 is added. New codec control is added for VP9 rate control. The control ID of this interface is VP9E_SET_EXTERNAL_RATE_CONTROL. To make VP9 use a customized external rate control model, users will have to implement each callback function in vpx_rc_funcs_t and register them using libvpx API vpx_codec_control_() with the control ID. - Enhancement: Use -std=gnu++11 instead of -std=c++11 for c++ files. - Bug fixes: Override assembler with --as option of configure for MSVS. Fix several compilation issues with gcc 4.8.5. Fix to resetting rate control for temporal layers. Fix to the rate control stats of SVC example encoder when number of spatial layers is 1. Fix to reusing motion vectors from the base spatial layer in SVC. 2 pass related flags removed from SVC example encoder. ==== libxkbcommon ==== Version update (1.2.0 -> 1.2.1) Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - Update to release 1.2.1 [boo#1184688] * Fix `xkb_x11_keymap_new_from_device()` failing when the keymap contains key types with missing level names, like the one used by the `numpad:mac` option in xkeyboard-config. (Regressed in 1.2.0.) ==== llvm12 ==== Version update (11.0.1 -> 12.0.0) Subpackages: clang-tools libc++-devel libc++1 libc++abi-devel libc++abi1 - Update to version 12.0.0. * For details, see the release notes: - https://releases.llvm.org/12.0.0/docs/ReleaseNotes.html - https://releases.llvm.org/12.0.0/tools/clang/docs/ReleaseNotes.html - https://releases.llvm.org/12.0.0/tools/clang/tools/extra/docs/ReleaseNotes.html - https://releases.llvm.org/12.0.0/projects/libcxx/docs/ReleaseNotes.html - https://releases.llvm.org/12.0.0/tools/lld/docs/ReleaseNotes.html - Rebase patches: * assume-opensuse.patch * lldb-cmake.patch * llvm-better-detect-64bit-atomics-support.patch * llvm-do-not-install-static-libraries.patch * llvm_build_tablegen_component_as_shared_library.patch - Drop patches that have landed upstream: * Fix-missing-include.patch - Always use ld.bfd for stage 1, use lld for stage 2 where we use ThinLTO and where it's supported, gold where lld doesn't work, and ld.bfd where we don't use ThinLTO. (boo#1181621) - Add lld-no-version-on-undefined-weak-lazy-symbols.patch to fix a bug in lld that made libLLVM.so contain a corrupt symbol version. - Add clangd-cmake-non-standard-layout.patch to fix build in our non-monorepo layout. ==== lua54 ==== Version update (5.4.2 -> 5.4.3) Subpackages: liblua5_4-5 - Add upstream-bugs.patch and upstream-bugs-test.patch to fix bugs 1,2,3 for build and tests respectively. - Update to version 5.4.3: * Fixes bugs found in Lua 5.4.2 - Removed upstream-bugs.patch: new release (no bugs found yet) - Removed upstream-bugs-test.patch: new release (no bugs found yet) ==== makedumpfile ==== - Update patch metadata. - Fix guessing of va_bits (bsc#1183977) * makedumpfile-1-3-Use-vmcoreinfo-note-in-proc-kcore-for-mem-.patch * makedumpfile-2-3-arm64-Make-use-of-NUMBER-VA_BITS-in-vmcore.patch * makedumpfile-3-3-arm64-support-flipped-VA-and-52-bit-kernel.patch ==== mtools ==== Version update (4.0.26 -> 4.0.27) - mtools 4.0.27: * Fix type error in calls to iconv functions ==== nodejs-common ==== - Use older nodejs (10) for %{arm} ==== ovmf ==== Subpackages: qemu-ovmf-x86_64 qemu-uefi-aarch64 - Build ovmf-x86_64-smm against Ia32X64 to enable S3 support (bsc#1184938) - Update ovmf-add-exclude-shell-flag.patch to include Ia32X64 ==== postgresql13 ==== Subpackages: libpq5 postgresql13-contrib postgresql13-docs postgresql13-llvmjit postgresql13-server - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now. ==== protobuf ==== Version update (3.15.7 -> 3.15.8) Subpackages: libprotobuf-lite26 libprotobuf26 python38-protobuf - Update to 3.15.8: - Fixed memory leak of Ruby arena objects (#8461) ==== python-argparse-manpage ==== Version update (1.3 -> 1.5) - Update to 1.5 * fixed testsuite for Python 3.9 * The "epilog" from argparse object is dumped to "COMMENTS" sections. ==== qalculate ==== Version update (3.16.1 -> 3.18.0) Subpackages: libqalculate21 qalculate-data - Update to 3.18.0: * Improve handling of expressions with log-based units * Improve conversion of expression with multiple units to a single unit (e.g. m/W to W) * Output (kilo)gram instead of tonne with small prefix * New functions for statistical distributions: probit(), betadist(), cauchydist(), chisqdist(), expinv(), fdist(), gammadist(), tdist(), wblinv(), weibulldist() * Improve functions for statistical distribution * Improve sexagesimal input and output, and add geodistance() for calculation of distance between two GPS coordinates * Add command() function, which runs an external command and returns the output * erfinv() function and support for solving equations with error functions * Fix conversion with relative temperature units activated * Fix gammainc() function * Fix keyboard focus when run hidden automatically at startup * Temperature calculation modes (absolute, relative, hybrid) * Allow prefixes, with full name, without units (e.g. kilo = 10^3) * Extended and improved simplified Chinese translation * Save handle vector function argument property * Fix never ending loop when calculating []*[] * Minor bug fixes and feature improvements ==== rpcbind ==== - Specify the appropriate set of local nss modules (boo#1177461) ==== rubygem-loofah ==== Version update (2.9.0 -> 2.9.1) - updated to version 2.9.1 [#]## Bug fixes * Fix a regression in v2.9.0 which inappropriately removed CSS properties with quoted string values. [[#202](https://github.com/flavorjones/loofah/issues/202)] ==== rubygem-marcel ==== Version update (0.3.3 -> 1.0.1) - updated to version 1.0.1 * Fixes identifying OpenDocument files by magic. 1.0.0 imprecisely identified them as application/zip. (#38) * Fixes identifying .docx, .pptx, and .xlsx files exported from Google Sheets by magic. (#36) * Identifies vCard files as text/vcard rather than text/x-vcard. (27fac74) * Identifies .otf, .woff, and .woff2 files a? font/otf, font/woff, and font/woff2, respectively. (#37) ==== rubygem-mini_mime ==== Version update (1.0.2 -> 1.1.0) - updated to version 1.1.0 05-04-2021 - Version 1.1.0 - MiniMime.lookup_by_extension is now case insensitive 26-03-2021 - Version 1.0.3 - Update mime types from upstream ==== rubygem-passenger ==== Version update (6.0.7 -> 6.0.8) Subpackages: ruby2.7-rubygem-passenger rubygem-passenger-apache2 - updated to version 6.0.8 * [Apache] Fixes crash when restarting Apache on CentOS 8. Closes GH-2318. * [Standalone] fix abort websockets on shutdown. Closes GH-2211. * Fixes application process titles. They are now properly set to something like "Passenger RubyApp: ..." instead of "Passenger AppPreloader: ... (forking)". * Upgrades Boost to 1.74. * Allow passenger-status to detect passenger instance registry dir when systemd PrivateTmp dir is in use. * Reduce the likelihood of a crash when using systemd PrivateTmp dir with Apache. * Removed CentOS 6, and Debian Jessie prebuilt binaries and packages. Both are EOL. * No-longer build 32 bit prebuilt binaries, as HBB dropped support. * Updated various library versions used in precompiled binaries (used for e.g. gem installs): - ccache_version: 4.0 ? 4.2 - cmake_version: 3.18.4 ? 3.19.7 - curl_version: 7.73.0 ? 7.75.0 - git_version: 2.29.1 ? 2.31.0 - gnupg_version: 2.2.23 ? 2.2.27 - libassuan_version: 2.5.4 ? 2.5.5 - libgcrypt_version: 1.8.7 ? 1.9.2 - libgpg_error_version: 1.39 ? 1.42 - libksba_version: 1.4.0 ? 1.5.0 - openssl_version: 1.1.1h ? 1.1.1k - pinentry_version: 1.1.0 ? 1.1.1 - rubygems_version: 3.1.4 ? 3.2.15 - zstd_version: 1.4.5 ? 1.4.9 - ruby_versions + 3.0.0 - renamed suse.patch to 0001-suse.patch - updated 0001-suse.patch to apply again - renamed fix_shebangs.patch to 0002-fix-shebangs.patch ==== rubygem-rubocop ==== Version update (1.12.1 -> 1.13.0) - updated to version 1.13.0 [#]## New features * [#7977](https://github.com/rubocop/rubocop/issues/7977): Add `Layout/RedundantLineBreak` cop. ([@jonas054][]) * [#9691](https://github.com/rubocop/rubocop/issues/9691): Add configuration parameter `InspectBlocks` to `Layout/RedundantLineBreak`. ([@jonas054][]) * [#9684](https://github.com/rubocop/rubocop/issues/9684): Support `IgnoredMethods` option for `Lint/AmbguousBlockAssociation`. ([@gprado][]) * [#9358](https://github.com/rubocop/rubocop/pull/9358): Support `restrictive_version_specificiers` option in `Bundler/GemComment` cop. ([@RobinDaugherty][]) [#]## Bug fixes * [#5576](https://github.com/rubocop/rubocop/issues/5576): Fix problem with inherited `Include` parameters. ([@jonas054][]) * [#9690](https://github.com/rubocop/rubocop/pull/9690): Fix an incorrect auto-correct for `Style/IfUnlessModifier` when using a method with heredoc argument. ([@koic][]) * [#9681](https://github.com/rubocop/rubocop/issues/9681): Fix an incorrect auto-correct for `Style/RedundantBegin` when using modifier `if` single statement in `begin` block. ([@koic][]) * [#9698](https://github.com/rubocop/rubocop/issues/9698): Fix an error for `Style/StructInheritance` when extending instance of `Struct` without `do` ... `end` and class body is empty and single line definition. ([@koic][]) * [#9700](https://github.com/rubocop/rubocop/issues/9700): Avoid warning about Ruby version mismatch. ([@marcandre][]) * [#9636](https://github.com/rubocop/rubocop/issues/9636): Resolve symlinks when excluding directories. ([@ob-stripe][]) * [#9707](https://github.com/rubocop/rubocop/issues/9707): Fix false positive for `Style/MethodCallWithArgsParentheses` with `omit_parentheses` style on an endless `defs` node. ([@dvandersluis][]) * [#9689](https://github.com/rubocop/rubocop/issues/9689): Treat parens around array items the same for children and deeper descendants. ([@dvandersluis][]) * [#9676](https://github.com/rubocop/rubocop/issues/9676): Fix an error for `Style/StringChars` when using `split` without parentheses. ([@koic][]) * [#9712](https://github.com/rubocop/rubocop/pull/9712): Fix an incorrect auto-correct for `Style/HashConversion` when `Hash[]` as a method argument without parentheses. ([@koic][]) * [#9704](https://github.com/rubocop/rubocop/pull/9704): Fix an incorrect auto-correct for `Style/SingleLineMethods` when single line method call without parentheses. ([@koic][]) * [#9683](https://github.com/rubocop/rubocop/issues/9683): Fix an incorrect auto-correct for `Style/HashConversion` when using `zip` method without argument in `Hash[]`. ([@koic][]) * [#9715](https://github.com/rubocop/rubocop/pull/9715): Fix an incorrect auto-correct for `EnforcedStyle: require_parentheses` of `Style/MethodCallWithArgsParentheses` with `Style/RescueModifier`. ([@koic][]) [#]## Changes * [#7544](https://github.com/rubocop/rubocop/pull/7544): Add --no-parallel (-P/--parallel can not be combined with --auto-correct). ([@kwerle][]) * [#9648](https://github.com/rubocop/rubocop/pull/9648): Drop support for Ruby 2.4. ([@koic][]) * [#9647](https://github.com/rubocop/rubocop/pull/9647): The parallel flag will now be automatically ignored when combined with `--auto-correct`, `--auto-gen-config`, or `-F/--fail-fast`. Previously, an error was raised and execution stopped. ([@rrosenblum][]) ==== salt ==== Subpackages: python3-salt salt-master salt-minion - Improvements on "ansiblegate" module: * New methods: ansible.targets / ansible.discover_playbooks * General bugfixes - Added: * improvements-on-ansiblegate-module-354.patch - Regression fix of salt-ssh on processing some targets - Added: * regression-fix-of-salt-ssh-on-processing-targets-353.patch - Add support for Alibaba Cloud Linux 2 (Aliyun Linux) - Added: * add-alibaba-cloud-linux-2-by-backporting-upstream-s-.patch - Update target fix for salt-ssh to process targets list (bsc#1179831) - Added: * update-target-fix-for-salt-ssh-to-process-targets-li.patch - Add notify beacon for Debian/Ubuntu systems - Add core grains support for AlmaLinux and Alibaba Could Linux - Added: * add-almalinux-and-alibaba-cloud-linux-to-the-os-fami.patch * notify-beacon-for-debian-ubuntu-systems-347.patch - Allow vendor change option with zypper - Added: * allow-vendor-change-option-with-zypper-313.patch ==== samba ==== Version update (4.13.4+git.199.be6e11f5ab2 -> 4.14.2+git.159.2a8872214bf) Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr1 libndr1-32bit libnetapi0 libnetapi0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-policy0-python3 libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2 libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-libs-python3 samba-python3 samba-winbind samba-winbind-32bit - Update to 4.14.2 * Release with dependency on ldb version 2.3.0. - Update to 4.14.1 * CVE-2021-20277: Fix out of bounds read in ldb_handler_fold; (bso#14655); * CVE-2020-27840: Fix unauthenticated remote heap corruption via bad DNs; (bso#14595); - Update to 4.14.0 * VFS layer modernized. * Printers publishing in AD improved. * Client group policies support for sudoers configuration and cron jobs. * Improved consistency of samba-tool subcommands. * CTDB now uses the terms leader and follower instead of master and slave. Configuration options have changed accordingly. * The ctdb isnotrecmaster command is removed. * For details on all items see WHATSNEW.txt in samba-doc package. ==== selinux-policy ==== Version update (20210309 -> 20210419) Subpackages: selinux-policy-targeted - Update to version 20210419 - Refreshed: * fix_dbus.patch * fix_hadoop.patch * fix_init.patch * fix_unprivuser.patch ==== snapper ==== Version update (0.8.16 -> 0.9.0) Subpackages: libsnapper5 snapper-zypp-plugin - fix build on 32 bit musl systems (gh#openSUSE/snapper#644) - improved error handling (see gh#openSUSE/snapper#626) - version 0.9.0 ==== sqlite3 ==== Version update (3.35.2 -> 3.35.5) - SQLite3 3.35.5: * Fix defects in the new ALTER TABLE DROP COLUMN feature that could corrupt the database file * Fix an obscure query optimizer problem that might cause an incorrect query result - Fix build on SLE-12 - use https urls - SQLite 3.35.4: * Fix a defect in the query planner optimization * Fix a defect in the new RETURNING syntax * Fix the new RETURNING feature so that it raises an error if one of the terms in the RETURNING clause references a unknown table, instead of silently ignoring that error * Fix an assertion associated with aggregate function processing that was incorrectly triggered by the push-down optimization - SQLite 3.35.3: * Enhance the OP_OpenDup opcode of the bytecode engine so that it works even if the cursor being duplicated itself came from OP_OpenDup * When materializing correlated common table expressions, do so separately for each use case, as that is required for correctness. This fixes a problem that was introduced by the MATERIALIZED hint enhancement. * Fix a problem in the filename normalizer of the unix VFS * Fix the "box" output mode in the CLI so that it works with statements that returns one or more rows of zero columns (such as PRAGMA incremental_vacuum) * Improvements to error messages generated by faulty common table expressions * Fix some incorrect assert() statements * Fix to the SELECT statement syntax diagram so that the FROM clause syntax is shown correctly * Fix the EBCDIC character classifier so that it understands newlines as whitespace * Improvements the xBestIndex method in the implementation of the (unsupported) wholenumber virtual table extension so that it does a better job of convincing the query planner to avoid trying to materialize a table with an infinite number of rows ==== sudo ==== Version update (1.9.5p2 -> 1.9.6p1) Subpackages: sudo-plugin-python - update to 1.9.6p1 * Fixed a regression introduced in sudo 1.9.6 that resulted in an error message instead of a usage message when sudo is run with no arguments. * Fixed a sudo_sendlog compilation problem with the AIX xlC compiler. * Fixed a regression introduced in sudo 1.9.4 where the - -disable-root-mailer configure option had no effect. * Added a --disable-leaks configure option that avoids some memory leaks on exit that would otherwise occur. This is intended to be used with development tools that measure memory leaks. It is not safe to use in production at this time. * Plugged some memory leaks identified by oss-fuzz and ASAN. * Fixed the handling of sudoOptions for an LDAP sudoRole that contains multiple sudoCommands. Previously, some of the options would only be applied to the first sudoCommand. * Fixed a potential out of bounds read in the parsing of NOTBEFORE and NOTAFTER sudoers command options (and their LDAP equivalents). * The parser used for reading I/O log JSON files is now more resilient when processing invalid JSON. * Fixed typos that prevented "make uninstall" from working. * Fixed a regression introduced in sudo 1.9.4 where the last line in a sudoers file might not have a terminating NUL character added if no newline was present. * Integrated oss-fuzz and LLVM's libFuzzer with sudo. The new - -enable-fuzzer configure option can be combined with the - -enable-sanitizer option to build sudo with fuzzing support. Multiple fuzz targets are available for fuzzing different parts of sudo. Fuzzers are built and tested via "make fuzz" or as part of "make check" (even when sudo is not built with fuzzing support). Fuzzing support currently requires the LLVM clang compiler (not gcc). * Fixed the --enable-static-sudoers configure option. * Fixed a potential out of bounds read sudo when is run by a user with more groups than the value of "max_groups" in sudo.conf. * Added an "admin_flag" sudoers option to make the use of the ~/.sudo_as_admin_successful file configurable on systems where sudo is build with the --enable-admin-flag configure option. This mostly affects Ubuntu and its derivatives. * The "max_groups" setting in sudo.conf is now limited to 1024. This setting is obsolete and should no longer be needed. * Fixed a bug in the tilde expansion of "CHROOT=dir" and "CWD=dir" sudoers command options. A path "~/foo" was expanded to "/home/userfoo" instead of "/home/user/foo". This also affects the runchroot and runcwd Defaults settings. * Fixed a bug on systems without a native getdelim(3) function where very long lines could cause parsing of the sudoers file to end prematurely. * Fixed a potential integer overflow when converting the timestamp_timeout and passwd_timeout sudoers settings to a timespec struct. * The default for the "group_source" setting in sudo.conf is now "dynamic" on macOS. Recent versions of macOS do not reliably return all of a user's non-local groups via getgroups(2), even when _DARWIN_UNLIMITED_GETGROUPS is defined. * Fixed a potential use-after-free in the PAM conversation function. * Fixed potential redefinition of sys/stat.h macros in sudo_compat.h. ==== suitesparse ==== Subpackages: libamd2 libcamd2 libccolamd2 libcholmod3 libcolamd2 libsuitesparseconfig5 libumfpack5 - Add disable-Wmisleading-indentation.patch as a temporary workaround for https://github.com/DrTimothyAldenDavis/SuiteSparse/issues/84 that will be fixed in the next release (boo#1183575). ==== telegram-purple ==== Version update (1.4.2 -> 1.4.7) Subpackages: libpurple-plugin-telegram libpurple-plugin-telegram-lang pidgin-plugin-telegram - Upgrade to 1.4.7 - Retrieve history on first login - Add options to ignore certain groups - Fix: Typo in the German translation - Fix: Fixed minor details required to build telegram-adium ==== xf86-video-mach64 ==== - modernize spec file (move license to licensedir) - use https for urls ==== xorg-x11-server ==== Version update (1.20.10 -> 1.20.11) Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra xorg-x11-server-sdk - disable build of Xwayland, which is now being built in separate xwayland package with more recent sources (boo#1182677) - Update to version 1.20.11 * bugfix release - supersedes U_Fix-XChangeFeedbackControl-request-underflow.patch, U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch - U_Fix-XChangeFeedbackControl-request-underflow.patch * Fix XChangeFeedbackControl() request underflow (CVE-2021-3472, ZDI-CAN-1259, bsc#1180128) ==== yast2-trans ==== Version update (84.87.20210411.9a07deafea -> 84.87.20210418.dfe53bf215) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20210418.dfe53bf215: * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Slovak) * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Dutch) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (Catalan) * Translated using Weblate (Catalan) * Translated using Weblate (Japanese) * Translated using Weblate (Japanese) * New POT for text domain 'network'. * New POT for text domain 'installation'. * New POT for text domain 'network'. * Translated using Weblate (Turkish) * Translated using Weblate (Turkish)