Packages changed: 389-ds (2.0.6~git0.d81dc6c90 -> 2.0.8~git0.553f26c87) NetworkManager (1.32.6 -> 1.32.10) NetworkManager-applet (1.22.0 -> 1.24.0) PackageKit accountsservice cpio eog (40.2 -> 40.3) evolution (3.40.3 -> 3.40.4) evolution-data-server (3.40.3 -> 3.40.4) evolution-ews (3.40.3 -> 3.40.4) eyeD3 (0.9.5 -> 0.9.6) fetchmail (6.4.20 -> 6.4.21) fuse git (2.32.0 -> 2.33.0) gjs (1.68.1 -> 1.68.3) glib2 (2.68.3 -> 2.68.4) gnome-autoar (0.3.3 -> 0.4.0) gnome-maps (40.3 -> 40.4) gnome-shell (40.3 -> 40.4) gnome-shell-extensions (40.3 -> 40.4) gnome-software (40.3 -> 40.4) gnome-user-docs (40.3 -> 40.4) gsound (1.0.2 -> 1.0.3) json-glib (1.6.2 -> 1.6.4) kmod libgexiv2 (0.12.2 -> 0.12.3) libnma (1.8.30 -> 1.8.32) libvirt libx86emu (3.1 -> 3.2) libxcrypt (4.4.23 -> 4.4.25) live555 (2021.08.09 -> 2021.08.23) mutter (40.3 -> 40.4) nvme-cli (1.14 -> 1.15) pango (1.48.7 -> 1.48.9) pcfclock perl-IO-Socket-SSL (2.071 -> 2.072) perl-libwww-perl (6.55 -> 6.56) polkit-default-privs (1550+20210813.ce0df56 -> 1550+20210818.b0c41fd) python-google-auth (1.24.0 -> 2.0.1) rdma-core (35.0 -> 36.0) rubygem-bootsnap (1.7.6 -> 1.7.7) rubygem-globalid (0.4.2 -> 0.5.2) rubygem-loofah (2.10.0 -> 2.12.0) rubygem-mini_mime (1.1.0 -> 1.1.1) rubygem-nio4r (2.5.4 -> 2.5.8) rubygem-puma (5.3.2 -> 5.4.0) rubygem-pundit (2.1.0 -> 2.1.1) rubygem-rails-html-sanitizer (1.3.0 -> 1.4.2) rubygem-rspec-rails (5.0.1 -> 5.0.2) rubygem-rubocop (1.18.4 -> 1.19.1) rubygem-rubocop-ast (1.8.0 -> 1.11.0) sensors vim (8.2.3318 -> 8.2.3360) wxWidgets-3_2-nostl xiterm xterm yarn (1.22.10 -> 1.22.11) yast2-online-update (4.4.0 -> 4.4.1) yast2-theme (4.4.2 -> 4.4.3) yast2-trans (84.87.20210813.9ff5558c9c -> 84.87.20210822.664756784b) === Details === ==== 389-ds ==== Version update (2.0.6~git0.d81dc6c90 -> 2.0.8~git0.553f26c87) Subpackages: lib389 libsvrcore0 - Update to version 2.0.8~git0.553f26c87: * Bump version to 2.0.8 * Issue 4877 - RFE - EntryUUID to validate UUIDs on fixup (#4878) * Issue 4872 - BUG - entryuuid enabled by default causes replication issues (#4876) * Issue 4851 - Typos in "dsconf pwpolicy set --help" (#4867) * Issue 4763 - Attribute Uniqueness Plugin uses wrong subtree on ModRDN (#4871) * Issue 4736 - lib389 - fix regression in certutil error checking * Issue 4861 - Improve instructions in custom.conf for memory leak detection * Issue 4859 - Don't version libns-dshttpd * Issue 4169 - Migrate Replication & Schema tabs to PF4 * Issue 4623 - RFE - Monitor the current DB locks ( nsslapd-db-current-locks ) * Issue 4736 - CLI - Errors from certutil are not propagated * Issue 4460 - Fix isLocal and TLS paths discovery (#4850) * Issue 4848 - Force to require nss version greater or equal as the version available at the build time * Issue - 4696 - Password hash upgrade on bind (#4840) * Bump version to 2.0.7 * Issue 4443 - Internal unindexed searches in syncrepl/retro changelog * Issue 4603 - Reindexing a single backend (#4831) * Issue 4169 - UI - migrate Server Tab forms to PF4 * Issue 4817 - BUG - locked crypt accounts on import may allow all passwords (#4819) * Issue 4820 - RFE - control flow integrity (#4821) * Issue 4706 - negative wtime for compare operations (#4780) * Issue 4414 - SIGFPE crash in rhds disk monitoring routine (#4829) * Issue 4262 - Fix Index out of bound in fractional test (#4828) * Issue 4826 - Filter argparse-manpage from autogenerated requires * Issue 4822 - Fix CI temporary password: fixture leftover breaks them (#4823) * Issue 2820 - Fix CI test suite issues * Bump version to 2.0.6 ==== NetworkManager ==== Version update (1.32.6 -> 1.32.10) Subpackages: NetworkManager-lang libnm0 typelib-1_0-NM-1_0 - Update to version 1.32.10: + core: fix the order of IPv6 addresses changing on service restart. + initrd: add command line option to configure link autonegotiation and speed. + ifcfg-rh: - fix crash when parsing invalid DNS address. - extend ifup/ifdown scripts to work with connection profile names. + udev: also react to "move" (and "change") udev actions in our rules. - Changes from version 1.32.8: + firewalld: configure zones on "Reloaded" signal. + core: fix wrong MTU for bridge interfaces. + cloud-setup: fix gateway address for Aliyun cloud. ==== NetworkManager-applet ==== Version update (1.22.0 -> 1.24.0) Subpackages: NetworkManager-applet-lang NetworkManager-connection-editor - Update to version 1.24.0: + If Polkit permissions allow it, create system connections (instead of user-restricted ones) when clicking on a Wi-Fi network in the applet. + Fix display of blurry applet icon. + Use the "port" word for dependend devices and profiles in the editor. + Support storing and retrieving WireGuard preshared-key into/from a keyring. + Update translations. ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Add PackageKit-zypp-fix-crash-with-empty-search-string.patch: zypp: Fix crash when search string is NULL (bsc#1179287, gh#hughsie/PackageKit/commit#21ccf49). ==== accountsservice ==== Subpackages: accountsservice-lang libaccountsservice0 typelib-1_0-AccountsService-1_0 - Spec layout cleaning up for harden_accounts-daemon.service.patch. - Added hardening to systemd service(s). Added patch(es): * harden_accounts-daemon.service.patch ==== cpio ==== Subpackages: cpio-lang cpio-mt - Fix regression in last update (bsc#1189465) * fix-CVE-2021-38185_2.patch * fix-CVE-2021-38185_3.patch - Fix CVE-2021-38185 Remote code execution caused by an integer overflow in ds_fgetstr (CVE-2021-38185, bsc#1189206) * fix-CVE-2021-38185.patch ==== eog ==== Version update (40.2 -> 40.3) Subpackages: eog-lang - Update to version 40.3: + EogImage: Do not crash if content type or filesize cannot be detected. + Updated translations. ==== evolution ==== Version update (3.40.3 -> 3.40.4) Subpackages: evolution-lang evolution-plugin-bogofilter evolution-plugin-pst-import evolution-plugin-spamassassin evolution-plugin-text-highlight - Update to version 3.40.4: + mail-notification: Show mail folder name as the last in the notification. + EShellSearchbar: Update actions only if the shell view is active. + Bugs fixed: glgo#GNOME/evolution#1522, glgo#GNOME/evolution#1564. + Updated translations. ==== evolution-data-server ==== Version update (3.40.3 -> 3.40.4) Subpackages: evolution-data-server-lang libcamel-1_2-62 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-26 libedataserverui-1_2-3 - Update to version 3.40.4: + CamelMimeFilterToHTML: - Speed up read of long lines. - Correct filtering of text without new line at the end. + alarm-notify: Focus window on status icon click when shown. + ESoupSession: Let it understand GSSAPI authentication method. + Bugs fixed: glgo#GNOME/evolution-data-server#346, glgo#GNOME/evolution-data-server!74. + Updated translations. ==== evolution-ews ==== Version update (3.40.3 -> 3.40.4) Subpackages: evolution-ews-lang - Update to version 3.40.4: + ESoupAuthNegotiate: - Improve thread safety. - Fix two memory leaks. ==== eyeD3 ==== Version update (0.9.5 -> 0.9.6) - update to 0.9.6 * prepare for python 3.9 - dependency fixes - add minimal runtime requires - add some recommends needed for plugins ==== fetchmail ==== Version update (6.4.20 -> 6.4.21) Subpackages: fetchmailconf - Update to 6.4.21: * REGRESSION FIX: The new security fix in 6.4.20 for CVE-2021-36386 caused truncation of messages logged to buffered outputs, predominantly --logfile. ==== fuse ==== Subpackages: libfuse2 - Add closefrom.patch [boo#1189086] ==== git ==== Version update (2.32.0 -> 2.33.0) Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk perl-Git - git 2.33.0: * "git send-email" learned the "--sendmail-cmd" command line option and the "sendemail.sendmailCmd" configuration variable, which is a more sensible approach than the current way of repurposing the "smtp-server" that is meant to name the server to instead name the command to talk to the server. * The userdiff pattern for C# learned the token "record". * "git rev-list" learns to omit the "commit " header lines from the output with the `--no-commit-header` option. * "git worktree add --lock" learned to record why the worktree is locked with a custom message. * internal improvements including performance optimizations * a number of bug fixes ==== gjs ==== Version update (1.68.1 -> 1.68.3) Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0 - Update to version 1.68.3: + Crash and bug fixes backported from the development branch. + Build fixes. - Changes from version 1.68.2: + Crash and regression fixes backported from the development branch. + Build fix to adjust to GLib renaming its main branch. ==== glib2 ==== Version update (2.68.3 -> 2.68.4) Subpackages: glib2-lang glib2-tools libgio-2_0-0 libgio-2_0-0-32bit libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgmodule-2_0-0-32bit libgobject-2_0-0 libgobject-2_0-0-32bit libgthread-2_0-0 libgthread-2_0-0-32bit - Update to version 2.68.4: + Various bugfixes and backports from master. + Updated translations. - Drop 63e7864.patch: fixed upstream. ==== gnome-autoar ==== Version update (0.3.3 -> 0.4.0) Subpackages: libgnome-autoar-0-0 libgnome-autoar-gtk-0-0 - Update to version 0.4.0: + Port to meson build system. + Add support for creation of password-protected archives. + Fix extraction of archives with absolute paths. - Add meson BuildRequires and macros following upstreams port. - Add gtk-doc BuildRequires and pass gtk_doc=true to meson, needed now to build documentation. - Pass vapi=true to meson, needed to build vala bindings. ==== gnome-maps ==== Version update (40.3 -> 40.4) Subpackages: gnome-maps-lang - Update to version 40.4: + Update donation and wiki web links in appdata. ==== gnome-shell ==== Version update (40.3 -> 40.4) Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang - Update to version 40.4: + Don't include hidden search results in keynav. + Always take workarea into account when allocating workspaces. + Add focus indication for switches. + Fix glitch when dragging window preview in overview. + workspace: Handle skip-taskbar changes. + screenShield: Fix suspend inhibitor accounting. + Fixed crash. + Misc. bug fixes and cleanups. + Updated translations. - Remove libcroco from BuildRequires: the relevant sources are now included directly in the gnome-shell tarball. ==== gnome-shell-extensions ==== Version update (40.3 -> 40.4) - Update to version 40.4: + drive-menu: Fix indicator visibility + Use distinct gettext domain for e.g.o uploads ==== gnome-software ==== Version update (40.3 -> 40.4) Subpackages: gnome-software-lang - Update to version 40.4: + flatpak: Improve search of applications. + Correct download size for app's runtime. + Updated translations. ==== gnome-user-docs ==== Version update (40.3 -> 40.4) - Update to version 40.4: + Updates to color calibration docs + Removed remaining references to GNOME 3 + Updated translations. ==== gsound ==== Version update (1.0.2 -> 1.0.3) Subpackages: libgsound0 typelib-1_0-GSound-1_0 - Update to version 1.0.3: + No upstream changes provided, please check upstream git log. - Drop gsound-gsound-play-Call-setlocale.patch: Fixed upstream. - Add gtk-doc and meson BuildRequires and macros following upstreams port. ==== json-glib ==== Version update (1.6.2 -> 1.6.4) Subpackages: json-glib-lang libjson-glib-1_0-0 typelib-1_0-Json-1_0 - Update to version 1.6.4: + Discover linker flags on all toolchains + Fix memory leak + Use gi-docgen instead of gtk-doc for generating the API reference + Build against newer versions of GLib - Pass gtk_doc=disabled to meson, no longer build API documentation. ==== kmod ==== Subpackages: kmod-bash-completion libkmod2 - Display module information even for modules built into the running kernel (bsc#1189537). + libkmod-Provide-info-even-for-modules-built-into-the.patch ==== libgexiv2 ==== Version update (0.12.2 -> 0.12.3) - Update to version 0.12.3: + Enable Exiv2's BMFF support if available + Catch WError on windows + Deprecate gexiv2_metadata_from_stream + Bugs fixed: glgo#GNOME/gexiv2#66 ==== libnma ==== Version update (1.8.30 -> 1.8.32) Subpackages: libnma-lang libnma0 typelib-1_0-NMA-1_0 - Update to version 1.8.32: + Fix crash in PKCS11 login dialog. + Fix clearing password when restoring a valid configuration to be displayed to a user. ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - supportconfig: When checking for installed hypervisor drivers, use the libvirtr-daemon-driver- package instead of libvirt-daemon-. The latter are not required packages for a functioning hypervisor driver. ==== libx86emu ==== Version update (3.1 -> 3.2) - merge gh#wfeldt/libx86emu#35 - Fix x86test on musl - 3.2 ==== libxcrypt ==== Version update (4.4.23 -> 4.4.25) Subpackages: libcrypt1 libcrypt1-32bit libxcrypt-devel - Update to 4.4.25 * Fix several issues found by Covscan in the testsuite. These include: - CWE-170: String not null terminated (STRING_NULL) - CWE-188: Reliance on integer endianness (INCOMPATIBLE_CAST) - CWE-190: Unintentional integer overflow (OVERFLOW_BEFORE_WIDEN) - CWE-569: Wrong sizeof argument (SIZEOF_MISMATCH) - CWE-573: Missing varargs init or cleanup (VARARGS) - CWE-687: Argument cannot be negative (NEGATIVE_RETURNS) * Stricter checking of invalid salt characters (issue #135). ==== live555 ==== Version update (2021.08.09 -> 2021.08.23) Subpackages: libBasicUsageEnvironment1 libUsageEnvironment3 libgroupsock30 libliveMedia97 - Update to 2021.08.23: * Updated the "readSocket()" code in "GroupsockHelper.cpp" yet again to try to eliminate another (alleged) "depends on uninitialised value" report from 'valgrind'. (If, after this, you still see this, then your implementation of "recvfrom()" is broken.) - Changes in 2021.08.19: * Updated the "readSocket()" code in "GroupsockHelper.cpp" to eliminate another possible "depends on uninitialised value" report from 'valgrind'. - Changes in 2021.08.18: * Updated the "readSocket()" code in "GroupsockHelper.cpp" to eliminate a "depends on uninitialised value" report from 'valgrind'. - Changes in 2021.08.17: * Updated the 'groupsock' "setPortNum()" function to not rely upon the "ss_family" family field, in case it's uninitialized. - Changes in 2021.08.14: * Fixed a minor bug in the previous release ("delete" should have been "delete[]") - Changes in 2021.08.13: * Fixed a bug in "MPEG1or2Demux" that could cause a 'reading twice at the same time" abort when streaming from a MPEG Program Stream file. (boo#1189726, CVE-2021-39283) * Fixed a potential memory leak in "AC3AudioStreamFramer". (boo#1189725, CVE-2021-39282) ==== mutter ==== Version update (40.3 -> 40.4) Subpackages: mutter-lang - Update to version 40.4: + Don't require a newly attached buffer to apply state. + Fix upside-down Xshape surface with EGLstream. + Misc. bug fixes and cleanups. + Updated translations. ==== nvme-cli ==== Version update (1.14 -> 1.15) Subpackages: nvme-cli-bash-completion - update to 1.15 * add NVMe MI features * add uuid index in get and set features command * nvme-cli: Add lsi option for get-log command * nvme: add json output format for list_ns * fabrics: add fast_io_fail_tmo option * fabrics: add --host-iface option * nvme: add latency parameter for passthru commands * nvme: add optional copy format support id ctrl field * nvme: add zone desc changed notice async event * nvme: add json, binary and human readable output format for id iocs * fabrics: print device name on connect * nvme: add get log page 2.0 spec fields * nvme: add the status codes from 2.0 spec * zns: add timeout parameter for Zone Management Commands * nvme: add CDW2 and CDW3 support for Write Zeroes and Verify Command * nvme: add Storage Tag Check field in NVM Commands * bash: updated completion support for latest commands and plugins * nvme: add capacity management command support * add identify CNS 0x18 domain list support ==== pango ==== Version update (1.48.7 -> 1.48.9) Subpackages: libpango-1_0-0 libpango-1_0-0-32bit typelib-1_0-Pango-1_0 - Update to version 1.48.9: + Don't require a newly attached buffer to apply state. + Fix upside-down Xshape surface with EGLstream. + Misc. bug fixes and cleanups. + Updated translations. - Update to version 1.48.8: + Rename git `master` branch to `main` + Fix threadsafety issues with Thai + Fix a rounding problem on i386 + Fix font choice for ellipsis + Fix a crash if no fonts are found. - Drop 3ff6365.patch: Upstream have made various changes to the offending commit. ==== pcfclock ==== - Move modprobe.d files out of /etc - add patch pcfclock-linux-5.8.patch to fix build with current kernel - Use %{?linux_make_arch} when building kernel modules (boo#1098050). - add libelf-devel to buildrequires (should actually be required by kernel-devel I guess) - Enable parallel building. Remove redundant %clean section. Use %configure call. - added patch pcfclock-linux-4.12.patch to fix build with kernel 4.12 include linux/uaccess.h instead of asm/uaccess.h starting with linux kernel version 4.12 - added patch pcfclock-linux-3.19.patch fix build with kernel 3.19 use file_inode to get inode from file pointer - fix build on 11.4 (skip installing tmpfile config) - Run through spec-cleaner. - Use tmpfiles.d instead of /lib/udev/devices for device creation. - renamed modprobe config to /etc/modprobe.d/50-pcfclock.conf (required by new module-init-tools). - fix build with 2.6.27 ==== perl-IO-Socket-SSL ==== Version update (2.071 -> 2.072) - updated to 2.072 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.072 - add PEM_certs2file and PEM_file2certs in IO::Socket::SSL::Utils based on idea by rovo89 in #101 - certs/*.p12 used for testing should now work with OpenSSL 3.0 too #108 - update public suffix database ==== perl-libwww-perl ==== Version update (6.55 -> 6.56) - updated to 6.56 see /usr/share/doc/packages/perl-libwww-perl/Changes 6.56 2021-08-17 13:57:12Z - Update the CONTRIBUTING doc to no longer reference TravisCI. (GH #384) (Slaven Rezi?) - Increase test coverage for env_proxy() (GH#383) (Slaven Rezi?) - When a truthy Content-Type is provided, override the default (GH#385) (Matthew Horsfall (alh)) ==== polkit-default-privs ==== Version update (1550+20210813.ce0df56 -> 1550+20210818.b0c41fd) - Update to version 1550+20210818.b0c41fd: * whitelist deepin-api service actions (bsc#1070943) ==== python-google-auth ==== Version update (1.24.0 -> 2.0.1) - Update to 2.0.1 * normalize AWS paths correctly on windows (#842) - from version 2.0.0 * drop support for Python 2.7 (#778) * service account is able to use a private token endpoint (#835) * downscoping documentation bugs (#830) * Fix missing space in error message. (#821) * update user guide/references for downscoped creds (#827) - from version 1.34.0 * support refresh callable on google.oauth2.credentials.Credentials (#812) * do not use the GAE APIs on gen2+ runtimes (#807) - from version 1.33.1 * fallback to source creds expiration in downscoped tokens (#805) * revert "feat: service account is able to use a private token endpoint (#784) - from version 1.33.0 * define `CredentialAccessBoundary` classes (#793) * define `google.auth.downscoped.Credentials` class (#801) * service account is able to use a private token endpoint (#784) * fix fetch_id_token credential lookup order to match adc (#748) * fix code block formatting in 'user-guide.rst' (#794) - from version 1.32.1 * avoid leaking sub-session created for '_auth_request' (#789) - from version 1.32.0 * allow scopes for self signed jwt (#776) - from version 1.31.0 * define useful properties on `google.auth.external_account.Credentials` (#770) * avoid deleting items while iterating (#772) - from version 1.30.2 * **dependencies:** add urllib3 and requests to aiohttp extra (#755) * enforce constraints during unit tests (#760) * session object was never used in aiohttp request (#700) - from version 1.30.1 * allow user to customize context aware metadata path in _mtls_helper (#754) * fix function name in signing error message (#751) - from version 1.30.0 * add reauth support to async user credentials for gcloud (#738) - from version 1.29.0 * add reauth feature to user credentials for gcloud (#727) * Allow multiple audiences for id_token.verify_token (#733) - from version 1.28.1 * support custom alg in jwt header for signing (#729) - from version 1.28.0 * allow the AWS_DEFAULT_REGION environment variable (#721) * expose library version at `google.auth.__version` (#683) * fix unit tests so they can work in g3 (#714) - from version 1.27.1 * ignore gcloud warning when getting project id (#708) * use gcloud creds flow (#705) - from version 1.27.0 * workload identity federation support (#698) * add pyopenssl as extra dependency (#697) - from version 1.26.1 * fix a typo in the user guide (avaiable -> available) (#680) * revert workload identity federation support (#691) - from version 1.26.0 * workload identity federation support (#686) - from version 1.25.0 * support self-signed jwt in requests and urllib3 transports (#679) * use self-signed jwt for service account (#665) - Add patch to fix filename of Python executable in testsuite + ga_python-executable-name.patch - Update BuildRequires from setup.py ==== rdma-core ==== Version update (35.0 -> 36.0) Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Update to rdma-core v36.0: - Bugfixes on all providers ==== rubygem-bootsnap ==== Version update (1.7.6 -> 1.7.7) Subpackages: ruby2.7-rubygem-bootsnap ruby3.0-rubygem-bootsnap - updated to version 1.7.7 * Fix `require_relative` in evaled code on latest ruby 3.1.0-dev. (#366) ==== rubygem-globalid ==== Version update (0.4.2 -> 0.5.2) - updated to version 0.5.2 * Add back Ruby 2.5 support so gem install rails works out of the box, thereby satisfying Rails' Ruby version requirement. See rails/rails#42931 ==== rubygem-loofah ==== Version update (2.10.0 -> 2.12.0) Subpackages: ruby2.7-rubygem-loofah ruby3.0-rubygem-loofah - updated to version 2.12.0 [#]# 2.12.0 / 2021-08-11 [#]## Features * Support empty HTML5 data attributes. [[#215](https://github.com/flavorjones/loofah/issues/215)] [#]# 2.11.0 / 2021-07-31 [#]## Features * Allow HTML5 element `wbr`. * Allow all CSS property values for `border-collapse`. [[#201](https://github.com/flavorjones/loofah/issues/201)] [#]## Changes * Deprecating `Loofah::HTML5::SafeList::VOID_ELEMENTS` which is not a canonical list of void HTML4 or HTML5 elements. * Removed some elements from `Loofah::HTML5::SafeList::VOID_ELEMENTS` that either are not acceptable elements or aren't considered "void" by libxml2. ==== rubygem-mini_mime ==== Version update (1.1.0 -> 1.1.1) - updated to version 1.1.1 * update mime types from upstream ==== rubygem-nio4r ==== Version update (2.5.4 -> 2.5.8) Subpackages: ruby2.7-rubygem-nio4r ruby3.0-rubygem-nio4r - updated to version 2.5.8 * no changelog found for this version in CHANGES.md - updated to version 2.5.7 * no changelog found for this version in CHANGES.md - updated to version 2.5.5 * no changelog found for this version in CHANGES.md ==== rubygem-puma ==== Version update (5.3.2 -> 5.4.0) - updated to version 5.4.0 * Features * Better/expanded names for threadpool threads ([#2657]) * Allow pkg_config for OpenSSL ([#2648], [#1412]) * Add `rack_url_scheme` to Puma::DSL, allows setting of `rack.url_scheme` header ([#2586], [#2569]) * Bugfixes * `Binder#parse` - allow for symlinked unix path, add create_activated_fds debug ENV ([#2643], [#2638]) * Fix deprecation warning: minissl.c - Use Random.bytes if available ([#2642]) * Client certificates: set session id context while creating SSLContext ([#2633]) * Fix deadlock issue in thread pool ([#2656]) * Refactor * Replace `IO.select` with `IO#wait_*` when checking a single IO ([#2666]) ==== rubygem-pundit ==== Version update (2.1.0 -> 2.1.1) - updated to version 2.1.1 Friday 13th-release! Careful! The bugfix below (#626) could break existing code. If you rely on the return value for `authorize` and namespaced policies you might need to do some changes. [#]## Fixed - `.authorize` and `#authorize` return the instance, even for namespaced policies (#626) [#]## Changed - Generate application scope with `protected` attr_readers. (#616) [#]## Removed - Dropped support for Ruby end-of-life versions: 2.1 and 2.2. (#604) - Dropped support for Ruby end-of-life versions: 2.3 (#633) - Dropped support for Ruby end-of-life versions: 2.4, 2.5 and JRuby 9.1 (#676) - Dropped support for RSpec 2 (#615) ==== rubygem-rails-html-sanitizer ==== Version update (1.3.0 -> 1.4.2) Subpackages: ruby2.7-rubygem-rails-html-sanitizer ruby3.0-rubygem-rails-html-sanitizer - updated to version 1.4.2 * Slightly improve performance. Assuming elements are more common than comments, make one less method call per node. * Mike Dalessio* [#]# 1.4.1 / 2021-08-18 * Fix regression in v1.4.0 that did not pass comment nodes to the scrubber. Some scrubbers will want to override the default behavior and allow comments, but v1.4.0 only passed through elements to the scrubber's `keep_node?` method. This change once again allows the scrubber to make the decision on comment nodes, but still skips other non-elements like processing instructions (see #115). * Mike Dalessio* [#]# 1.4.0 / 2021-08-18 * Processing Instructions are no longer allowed by Rails::Html::PermitScrubber Previously, a PI with a name (or "target") matching an allowed tag name was not scrubbed. There are no known security issues associated with these PIs, but similar to comments it's preferred to omit these nodes when possible from sanitized output. Fixes #115. * Mike Dalessio* ==== rubygem-rspec-rails ==== Version update (5.0.1 -> 5.0.2) - updated to version 5.0.2 [Full Changelog](https://github.com/rspec/rspec-rails/compare/v5.0.1...v5.0.2) Bug Fixes: * Prevent generated job specs from duplicating `_job` in filenames. (Nick Flückiger, #2496) * Fix `ActiveRecord::TestFixture#uses_transaction` by using example description to replace example name rather than example in our monkey patched `run_in_transaction?` method. (Stan Lo, #2495) * Prevent keyword arguments being lost when methods are invoked dynamically in controller specs. (Josh Cheek, #2509, #2514) ==== rubygem-rubocop ==== Version update (1.18.4 -> 1.19.1) - updated to version 1.19.1 [#]## Bug fixes * [#10017](https://github.com/rubocop/rubocop/pull/10017): Fixan error for `Layout/RescueEnsureAlignment` when using zsuper with block. ([@koic][]) * [#10011](https://github.com/rubocop/rubocop/issues/10011): Fix a false positive for `Style/RedundantSelfAssignmentBranch` when using instance variable, class variable, and global variable. ([@koic][]) * [#10010](https://github.com/rubocop/rubocop/issues/10010): Fix a false positive for `Style/DoubleNegation` when `!!` is used at return location and before `rescue` keyword. ([@koic][]) * [#10014](https://github.com/rubocop/rubocop/issues/10014): Fix `Style/Encoding` to handle more situations properly. ([@dvandersluis][]) * [#10016](https://github.com/rubocop/rubocop/issues/10016): Fix conflict between `Style/SoleNestedConditional` and `Style/NegatedIf`/`Style/NegatedUnless`. ([@dvandersluis][]) * [#10024](https://github.com/rubocop/rubocop/issues/10024): Fix an incorrect auto-correct for `Style/RedundantSelfAssignmentBranch` when using multiline `if` / `else` conditional assignment. ([@koic][]) * [#10004](https://github.com/rubocop/rubocop/issues/10004): Fix a false positive for `Style/RedundantBegin` when using one-liner with semicolon. ([@koic][]) [#]# 1.19.0 (2021-08-12) [#]## New features * [#4182](https://github.com/rubocop/rubocop/issues/4182): Add `Lint/AmbiguousRange` cop to check for ranges with ambiguous boundaries. ([@dvandersluis][]) * [#10000](https://github.com/rubocop/rubocop/pull/10000): Parallel static analysis by default. ([@koic][]) * [#9948](https://github.com/rubocop/rubocop/pull/9948): Support Ruby 2.7's pattern matching for `Style/ConditionalAssignment` cop. ([@koic][]) * [#9999](https://github.com/rubocop/rubocop/pull/9999): Add new `Style/RedundantSelfAssignmentBranch` cop. ([@koic][]) [#]## Bug fixes * [#9927](https://github.com/rubocop/rubocop/issues/9927): Indent hash values in `Layout/LineEndStringConcatenationIndentation`. ([@jonas054][]) * [#9959](https://github.com/rubocop/rubocop/issues/9959): Make `Style/IdenticalConditionalBranches` able to handle ternary `if`s. ([@dvandersluis][]) * [#9946](https://github.com/rubocop/rubocop/issues/9946): Avoid slow regexp matches in `Style/CommentedKeyword`. ([@jonas054][]) * [#7422](https://github.com/rubocop/rubocop/issues/7422): Treat constant assignment like other assignment in `Layout/SpaceAroundOperators`. ([@dvandersluis][]) * [#9953](https://github.com/rubocop/rubocop/issues/9953): Fix an infinite loop error and a false auto-correction behavior for `Layout/EndAlignment` when using a conditional statement in a method argument. ([@koic][]) * [#9958](https://github.com/rubocop/rubocop/issues/9958): Prevent an infinite loop when a detected method has fewer arguments than expected. ([@dvandersluis][]) * [#9977](https://github.com/rubocop/rubocop/issues/9977): Update `Layout/EmptyLineAfterGuardClause` to not register an offense if there is another expression following the guard clause on the same line. ([@dvandersluis][]) * [#9980](https://github.com/rubocop/rubocop/issues/9980): Fix a false positive for `Style/IdenticalConditionalBranches` when assigning to a variable used in a condition. ([@koic][]) * [#9975](https://github.com/rubocop/rubocop/issues/9975): Parentheses are always required for `Style/MethodDefParentheses` when a forwarding argument (`...`) is used. ([@dvandersluis][]) * [#9984](https://github.com/rubocop/rubocop/pull/9984): Fix false negatives involving heredocs for `Layout/SpaceBeforeComma`, `Layout/SpaceBeforeComment`, `Layout/SpaceBeforeSemicolon` and `Layout/SpaceInsideParens`. ([@dvandersluis][]) * [#9954](https://github.com/rubocop/rubocop/issues/9954): Fix infinite loop error for `Layout/HashAlignment` when `EnforcedStyle: with_fixed_indentation` is specified for `Layout/ArgumentAlignment`. ([@koic][]) * [#10002](https://github.com/rubocop/rubocop/issues/10002): Fix an incorrect auto-correct for `Lint/AmbigousRegexpLiteral` when using nested method arguments without parentheses. ([@koic][]) * [#9952](https://github.com/rubocop/rubocop/pull/9952) [rubocop-rspec#1126](https://github.com/rubocop/rubocop-rspec/issues/1126): Fix `inherit_mode` for deeply nested configuration defined in extensions' default configuration. ([@pirj][]) * [#9957](https://github.com/rubocop/rubocop/issues/9957): Add `WholeWord` configuration to `Naming/InclusiveLanguage`'s `FlaggedTerms` config. ([@dvandersluis][]) * [#9970](https://github.com/rubocop/rubocop/pull/9970): Don't register an offense when sort method has arguments for `Style/RedundantSort` cop. ([@mtsmfm][]) * [#4097](https://github.com/rubocop/rubocop/issues/4097): Add require English for special globals. ([@biinari][]) * [#9955](https://github.com/rubocop/rubocop/issues/9955): Fix `Style/ExplicitBlockArgument` adding a second set of parentheses. ([@dvandersluis][]) * [#9973](https://github.com/rubocop/rubocop/issues/9973): Fix a false positive for `Layout/RescueEnsureAlignment` when aligned `rescue` keyword and leading dot. ([@koic][]) * [#9945](https://github.com/rubocop/rubocop/issues/9945): Fix auto-correction of lines in heredocs with only spaces in `Layout/TrailingWhitespace`. ([@jonas054][]) [#]## Changes * [#9989](https://github.com/rubocop/rubocop/issues/9989): Mark `Style/CommentedKeyword` as unsafe auto-correction. ([@koic][]) * [#9964](https://github.com/rubocop/rubocop/pull/9964): Make `Layout/LeadingCommentSpace` aware of `#:nodoc`. ([@koic][]) * [#9985](https://github.com/rubocop/rubocop/pull/9985): Mark `Style/IdenticalConditionalBranches` as unsafe auto-correction. ([@koic][]) * [#9962](https://github.com/rubocop/rubocop/issues/9962): Update `Style/WordArray` to register an offense in `percent` style if any values contain spaces. ([@dvandersluis][]) * [#9979](https://github.com/rubocop/rubocop/pull/9979): Enable basic autocorrection for `Style/Semicolon`. ([@dvandersluis][]) ==== rubygem-rubocop-ast ==== Version update (1.8.0 -> 1.11.0) - updated to version 1.11.0 [#]## New features * [#205](https://github.com/rubocop/rubocop-ast/pull/205): Make class, module, and struct definitions aware of numblock. ([@koic][]) [#]# 1.10.0 (2021-08-12) [#]## New features * [#201](https://github.com/rubocop-hq/rubocop-ast/pull/201): Add discrete node classes for assignments. ([@dvandersluis][]) [#]# 1.9.1 (2021-08-10) [#]## Bug fixes * [#197](https://github.com/rubocop-hq/rubocop-ast/pull/197): [Fix #184] Fix `Node#parent_module_name` for `sclass` nodes. ([@dvandersluis][]) [#]# 1.9.0 (2021-08-06) [#]## New features * [#195](https://github.com/rubocop-hq/rubocop-ast/pull/195): Move `ProcessedSource#sorted_tokens` to be a public method. ([@dvandersluis][]) ==== sensors ==== Subpackages: libsensors4 - Trim ExcludeArch, package build is successful. ==== vim ==== Version update (8.2.3318 -> 8.2.3360) Subpackages: gvim vim-data vim-data-common - Updated to version 8.2.3360, fixes the following problems * Vim9: cannot ignore quotes in number at the command line. * Coverity action on github does not work. * Some local functions are not static. * Some code is not tested. * Vim9: checking type of dict does not check member type. * Help tag for exists_compiled() is wrong. (Maxim Kim) * Vim9: Cannot use :silent with :endwhile. * Digraph test fails when LC_ALL is set to "C". * Vim9: no error passing an empty list of the wrong type. * No check for sysconf() failing. * Coverity error for not checking return value. * v_lock not set when getting value of environment variable. * Coverity reports using uninitialized field. * Coverity warns for using value without boundary check. * Vim9: cannot assign to range in list. * Vim9: not enough tests run with Vim9. * Vim9: not enough tests run with Vim9. * Vim9: not enough tests run with Vim9. * Behavior of negative index in list change changed. (Naruhiko Nishino) * Completing "call g:" returns entries with just "g:". (Naohiro Ono) * Vim9: no type check when assigning a list range. (Naohiro Ono) * Vim9: cannot lock a member in a local dict. * Accessing uninitialized pointer. * Vim9: function call aborted despite try/catch. (Naohiro Ono) * Test for :let errors fails. * Vim9: autoload test fails. * Vimscript test fails. * Some code not covered by tests. * Vim9: no error for using "." for concatenation after ":vim9cmd". (Naohiro Ono) * Check for legacy script is incomplete. (Naohiro Ono) * line2byte() returns wrong value after adding textprop. (Yuto Kimura) * Eval test for scriptversion fails. * Vim9: using a function by name may delete it. (Naohiro Ono) * Vim9: error for nested :enddef has wrong line number. * Vim9: type of argument for negate not checked at compile time. * Build failure with +byte_offset but without +textprop. (John Marriott) * Adding many text properties requires a lot of function calls. * Crash when 'virtualedit' is set and window is narrow. * Structurizr files are not recognized. * Vim9: error for type when variable is not set. * User function completion fails with dict function. - Disable unreliable tests also on riscv64 - disable-unreliable-tests-arch.patch: also disable test_vim9_func ==== wxWidgets-3_2-nostl ==== Subpackages: libwx_baseu-suse-nostl5_0_0 libwx_baseu_net-suse-nostl5_0_0 libwx_baseu_xml-suse-nostl5_0_0 libwx_gtk3u_core-suse-nostl5_0_0 libwx_gtk3u_html-suse-nostl5_0_0 libwx_gtk3u_qa-suse-nostl5_0_0 - Disable building with EGL support: glew is not ready for EGL yet and this causes wxWidgets based OpenGL apps (e.g. hugin) to crash. See boo#1188519, boo#1189524. ==== xiterm ==== Subpackages: fbiterm gtkiterm libiterm1 - Remove --with-pic which has no effect with --disable-static. - Trim old specfile constructs. ==== xterm ==== Subpackages: xterm-bin - use TERM=xterm-256color by default (boo#1188864) ==== yarn ==== Version update (1.22.10 -> 1.22.11) - update to 1.22.11: https://github.com/yarnpkg/yarn/releases/tag/v1.22.11 ==== yast2-online-update ==== Version update (4.4.0 -> 4.4.1) - Improved openSUSE/SLE detection (bsc#1184243) - Improved detecting the update repositories, check the "is_update_repo" repository flag - 4.4.1 ==== yast2-theme ==== Version update (4.4.2 -> 4.4.3) Subpackages: yast2-theme-breeze - Add icon for Budgie pattern (bsc#1176164) - Update license to include CC-BY-SA-4.0 - 4.4.3 ==== yast2-trans ==== Version update (84.87.20210813.9ff5558c9c -> 84.87.20210822.664756784b) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20210822.664756784b: * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Czech) * New POT for text domain 'country'. * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Japanese) * Translated using Weblate (Catalan) * New POT for text domain 'services-manager'.