Packages changed: Mesa Mesa-drivers MozillaFirefox (74.0 -> 74.0.1) apparmor bash fcoe-utils ffmpeg-4 file-roller flatpak (1.6.2 -> 1.6.3) gcc9 (9.2.1+git1192 -> 9.3.1+git1296) gjs (1.58.5 -> 1.58.6) gnome-control-center (3.34.4 -> 3.34.5) gnome-desktop (3.34.4 -> 3.34.5) gnome-shell (3.34.4+4 -> 3.34.5) hwdata (0.333 -> 0.334) installation-images-MicroOS (14.463 -> 14.465) iproute2 (5.5.0 -> 5.6.0) kernel-64kb (5.6.0 -> 5.6.2) kernel-source (5.6.0 -> 5.6.2) libimobiledevice (1.2.0+git20200220.3d8d13f -> 1.2.0+git.20200330) libnetfilter_conntrack (1.0.7 -> 1.0.8) libnftnl (1.1.5 -> 1.1.6) makedumpfile mutter (3.34.4 -> 3.34.5) ncurses (6.2 -> 6.2.20200404) pam pciutils (3.6.2 -> 3.6.4) pipewire (0.3.1+48 -> 0.3.2) python-setuptools re2 (20200303 -> 20200401) rpm slang (2.3.1a -> 2.3.2) snapper transactional-update (2.21 -> 2.21.1) yast2 (4.2.80 -> 4.2.81) === Details === ==== Mesa ==== Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - U_EGL-Add-eglSetDamageRegionKHR-to-GLVND-dispatch-list.patch * Fix Weston launch on tumbleweed by backporting commit bfb9c08e ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium - U_EGL-Add-eglSetDamageRegionKHR-to-GLVND-dispatch-list.patch * Fix Weston launch on tumbleweed by backporting commit bfb9c08e ==== MozillaFirefox ==== Version update (74.0 -> 74.0.1) - Mozilla Firefox 74.0.1 MFSA 2020-11 (boo#1168630) * CVE-2020-6819 (bmo#1620818) Use-after-free while running the nsDocShell destructor * CVE-2020-6820 (bmo#1626728) Use-after-free when handling a ReadableStream ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils perl-apparmor python3-apparmor - fix build with make 4.3 by backporting some commits from upstream master (boo#1167953): - make-4.3-capabilities.diff - make-4.3-capabilities-vim.diff - make-4.3-network.diff - make-4.3-fix-utils-network-test.diff ==== bash ==== - Add temporary patch bash50-fix-016-close-new-fifos.patch from upstream to fix upstream patch bash50-016 - move man pages back to main package. It's just 100k ==== fcoe-utils ==== - Change use of "ifconfig" to "ip", since ifconfig is no longer around (bsc#1073886), adding: * fcoe-utils-stop-using-ifconfig.patch ==== ffmpeg-4 ==== Subpackages: libavcodec58 libavformat58 libavutil56 libswresample3 - Add Samba support for Factory (as this needs a fix in Samba itself) Add --enable-libsmbclient to configure, add BR on pkgconfig(smbclient) - License is now GPLv3+ by default (--enable-version3) ==== file-roller ==== - Add gcc-fno-common-fix.patch in order to fix boo#1160390. ==== flatpak ==== Version update (1.6.2 -> 1.6.3) Subpackages: libflatpak0 system-user-flatpak typelib-1_0-Flatpak-1_0 - Require bubblewrap 0.4.1 - Update to version 1.6.3: + The main change in this version is a fix for a regression in the progress calculation for applications using extra-data. Additionally the bundled version of bubblewrap is updated to 0.4.1 which fixes a security issue in some cases. See GHSA-j2qp-rvxj-43vj for details. + Don't break if users primary gid is not in the nsswitch database + Fix crash in flatpak repair if no remotes are configured + Some updates to the oci authenticator + Retry downloads of extra data + Updated translations. ==== gcc9 ==== Version update (9.2.1+git1192 -> 9.3.1+git1296) - Update to releases/gcc-9 head (6db837a5288ee3ca5ec504fbd5a76581). * Includes GCC 9.3 release * Includes fix for [bsc#1167898, gcc#93597] ==== gjs ==== Version update (1.58.5 -> 1.58.6) Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0 - Update to version 1.58.6: + Various backports: - Correctly handle vfunc inout parameters. - Fix failed redirect of output in CommandLine tests. - Avoid filename conflict when tests run in parallel. ==== gnome-control-center ==== Version update (3.34.4 -> 3.34.5) - Update to version 3.34.5: + Remove some dead code. + Display: Fix resolution options getting stuck in a low resolution. + Network: - Print warning if failed to save to libsecret. - Handle security combo box being not selected correctly. - Fix small memory leaks. + Sharing: Fix small memory leak. + User Accounts: - Fix uninitialized variable. - Fix small memory leak. + Updated translations. ==== gnome-desktop ==== Version update (3.34.4 -> 3.34.5) Subpackages: gnome-version libgnome-desktop-3-18 libgnome-desktop-3_0-common typelib-1_0-GnomeDesktop-3_0 - Update to version 3.34.5: + Updated translations. ==== gnome-shell ==== Version update (3.34.4+4 -> 3.34.5) - Update to version 3.34.5: + Leave overview when locking the screen. + Avoid IO on the main thread. + Fix OSK layout fallback for unsupported variants. + Fix high-contrast/symbolic icon mix-up. + Misc. bug fixes and cleanups. + Updated translations. - Switch to using explicit released tag in _service. ==== hwdata ==== Version update (0.333 -> 0.334) - Update to version 0.324 (bsc#1168806): * Updated pci, usb and vendor ids. ==== installation-images-MicroOS ==== Version update (14.463 -> 14.465) - merge gh#openSUSE/installation-images#369 - add missing vbox drivers (bsc#1168742) - 14.465 - merge gh#openSUSE/installation-images#360 - Update module list for 5.5: - 14.464 - merge gh#openSUSE/installation-images#368 - put S390 I/O device pre-config into a separate script (bsc#1168036) ==== iproute2 ==== Version update (5.5.0 -> 5.6.0) - Move arpd into own subpackage to avoid libdb dependency [jira#PM-1185] - Update to release 5.6 * ip link: show permanent hardware address * ip link: add support for STP xstats * ip link: bond: print LACP actor/partner oper states as strings * tc: Add support for ETS Qdisc * ip: xfrm: add espintcp encapsulation * tc: add support for FQ-PIE packet scheduler ==== kernel-64kb ==== Version update (5.6.0 -> 5.6.2) - bpf: update jmp32 test cases to fix range bound deduction (bnc#1012628). - serial: sprd: Fix a dereference warning (bnc#1012628). - vt: selection, introduce vc_is_sel (bnc#1012628). - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (bnc#1012628). - vt: switch vt_dont_switch to bool (bnc#1012628). - vt: vt_ioctl: remove unnecessary console allocation checks (bnc#1012628). - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (bnc#1012628). - vt: vt_ioctl: fix use-after-free in vt_in_use() (bnc#1012628). - platform/x86: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table (bnc#1012628). - Linux 5.6.2 (bnc#1012628). - commit 8dfb75b - Linux 5.6.1 (bnc#1012628). - media: v4l2-core: fix a use-after-free bug of sd->devnode (bnc#1012628). - media: xirlink_cit: add missing descriptor sanity checks (bnc#1012628). - media: stv06xx: add missing descriptor sanity checks (bnc#1012628). - media: dib0700: fix rc endpoint lookup (bnc#1012628). - media: ov519: add missing endpoint sanity checks (bnc#1012628). - libfs: fix infoleak in simple_attr_read() (bnc#1012628). - ahci: Add Intel Comet Lake H RAID PCI ID (bnc#1012628). - staging: wfx: annotate nested gc_list vs tx queue locking (bnc#1012628). - staging: wfx: fix init/remove vs IRQ race (bnc#1012628). - staging: wfx: add proper "compatible" string (bnc#1012628). - staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback (bnc#1012628). - staging: wlan-ng: fix ODEBUG bug in prism2sta_disconnect_usb (bnc#1012628). - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table (bnc#1012628). - staging: kpc2000: prevent underflow in cpld_reconfigure() (bnc#1012628). - media: usbtv: fix control-message timeouts (bnc#1012628). - media: flexcop-usb: fix endpoint sanity check (bnc#1012628). - usb: musb: fix crash with highmen PIO and usbmon (bnc#1012628). - USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback (bnc#1012628). - USB: cdc-acm: restore capability check order (bnc#1012628). - USB: serial: option: add Wistron Neweb D19Q1 (bnc#1012628). - USB: serial: option: add BroadMobi BM806U (bnc#1012628). - USB: serial: option: add support for ASKEY WWHC050 (bnc#1012628). - bpf: Undo incorrect __reg_bound_offset32 handling (bnc#1012628). - commit 1675c56 - Refresh patches.suse/media-go7007-Fix-URB-type-for-interrupt-handling.patch. Update upstream status. - commit 96043ad - Refresh patches.suse/mac80211-fix-authentication-with-iwlwifi-mvm.patch. Update upstream status -- merged. - commit 26b6c02 ==== kernel-source ==== Version update (5.6.0 -> 5.6.2) - bpf: update jmp32 test cases to fix range bound deduction (bnc#1012628). - serial: sprd: Fix a dereference warning (bnc#1012628). - vt: selection, introduce vc_is_sel (bnc#1012628). - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (bnc#1012628). - vt: switch vt_dont_switch to bool (bnc#1012628). - vt: vt_ioctl: remove unnecessary console allocation checks (bnc#1012628). - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (bnc#1012628). - vt: vt_ioctl: fix use-after-free in vt_in_use() (bnc#1012628). - platform/x86: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table (bnc#1012628). - Linux 5.6.2 (bnc#1012628). - commit 8dfb75b - Linux 5.6.1 (bnc#1012628). - media: v4l2-core: fix a use-after-free bug of sd->devnode (bnc#1012628). - media: xirlink_cit: add missing descriptor sanity checks (bnc#1012628). - media: stv06xx: add missing descriptor sanity checks (bnc#1012628). - media: dib0700: fix rc endpoint lookup (bnc#1012628). - media: ov519: add missing endpoint sanity checks (bnc#1012628). - libfs: fix infoleak in simple_attr_read() (bnc#1012628). - ahci: Add Intel Comet Lake H RAID PCI ID (bnc#1012628). - staging: wfx: annotate nested gc_list vs tx queue locking (bnc#1012628). - staging: wfx: fix init/remove vs IRQ race (bnc#1012628). - staging: wfx: add proper "compatible" string (bnc#1012628). - staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback (bnc#1012628). - staging: wlan-ng: fix ODEBUG bug in prism2sta_disconnect_usb (bnc#1012628). - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table (bnc#1012628). - staging: kpc2000: prevent underflow in cpld_reconfigure() (bnc#1012628). - media: usbtv: fix control-message timeouts (bnc#1012628). - media: flexcop-usb: fix endpoint sanity check (bnc#1012628). - usb: musb: fix crash with highmen PIO and usbmon (bnc#1012628). - USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback (bnc#1012628). - USB: cdc-acm: restore capability check order (bnc#1012628). - USB: serial: option: add Wistron Neweb D19Q1 (bnc#1012628). - USB: serial: option: add BroadMobi BM806U (bnc#1012628). - USB: serial: option: add support for ASKEY WWHC050 (bnc#1012628). - bpf: Undo incorrect __reg_bound_offset32 handling (bnc#1012628). - commit 1675c56 - Refresh patches.suse/media-go7007-Fix-URB-type-for-interrupt-handling.patch. Update upstream status. - commit 96043ad - Refresh patches.suse/mac80211-fix-authentication-with-iwlwifi-mvm.patch. Update upstream status -- merged. - commit 26b6c02 ==== libimobiledevice ==== Version update (1.2.0+git20200220.3d8d13f -> 1.2.0+git.20200330) - Update to version 1.2.0+git.20200330: * Add idevicesetlocation tool * debugserver: Fix argv encoding * Update debug.c to consistently output to stderr * idevicedebug: Rename name-colliding debug_info() to log_debug() * debugserver: Fix whitespace error * debugserver: Proxy SERVICE_E_TIMEOUT into DEBUGSERVER_E_TIMEOUT * introduces optional `idevice_connection_disable_ssl` with ability not to send SSL shutdown message. As in debugserver this message will be considered as GDB server communication and break things * Increase timeout for service receive methods * idevicesyslog: Make sure CTRL+C works when waiting for passcode entry * configure.ac: Add checks to ensure libusbmuxd is up-to-date ==== libnetfilter_conntrack ==== Version update (1.0.7 -> 1.0.8) - Update to release 1.0.8 * conntrack: support for IPS_OFFLOAD ==== libnftnl ==== Version update (1.1.5 -> 1.1.6) - Update to release 1.1.6 * add slave device matching * support for NFTNL_SET_EXPR ==== makedumpfile ==== - Add -fcommon in order to fix boo#1160282. - Refresh patch with upstream version - makedumpfile-arm64-VA-range-SUSE.patch + makedumpfile-arm64-Align-PMD_SECTION_MASK-with-PHYS_MASK.patch - makedumpfile-Fix-cd_header-offset-overflow-with-large-pfn.patch: Fix integer overflow with large memory configuration (bsc#1168234). ==== mutter ==== Version update (3.34.4 -> 3.34.5) Subpackages: libmutter-5-0 mutter-data - Update to version 3.34.5: + Fix visibility of initially hidden windows. + Fix hardware cursor on GPU hotplug. + Fix pasting images from wayland. + Fixed crashes. + Updated translations. - Switch to using explicit released tag in _service. ==== ncurses ==== Version update (6.2 -> 6.2.20200404) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base - Use %() to extract patch date for adding it to version * add script get_version_number.sh which is used within the spec file to determine the actual patch version date - Add ncurses patch 20200404 + modify -fvisibility check to work with g++ > fixes for building with Visual Studio C++ and msys2 (patches by "Maarten Anonymous"): + add configure option and check for gcc -fvisibility=hidden feature + define NCURSES_NOMACROS in lib_gen.c to work around Visual Studio C++ preprocessor limitations. + modify some of the configure-macros, as well as mk-1st.awk to work with Visual Studio C++ default filenaming. - Add ncurses patch 20200328 + correct length of buffer copied in dup_field(). + remove "$(srcdir)/" from path of library.gpr, needed for out-of-tree builds of Ada95 (patch by Adam Van Ymeren). ==== pam ==== - own /usr/lib/motd.d/ so other packages can add files there ==== pciutils ==== Version update (3.6.2 -> 3.6.4) Subpackages: libpci3 - Update to version 3.6.4: * A new back-end for the GNU Hurd was contributed by Joan Lledó. * When printing VPD item identifiers, non-ASCII characters are escaped. - Changes for version 3.6.3 * `lspci -t' (tree mode) can be combined with `-s' to show a sub-tree. We also fixed potential buffer overflows in the tree dumper. * Cleaned messy code for dumping of I/O, memory, and ROM regions. This helped fixing a bug, which caused some 64-bit regions to be reported as virtual. All flags are now printed after the address (previously, "[virtual]" and "[enhanced]" were before it for no good reason). * Added pci_find_cap_nr() to the library, which handles capabilities which occur multiple times in a single device. * Minor improvements in printing of PCIe capabilities. * We now decode the Multicast and Secondary PCI Express extended capabilities. * The list of capability names available to setpci was updated. * Minor bugs were fixed in FreeBSD and Solaris ports. * We now prefer HTTPS URLs in all documentation * The pci.ids file has a man page. * As usually, updated pci.ids to the current snapshot of the database. - Drop no longer relevant pciutils-3.2.0_update-dist.patch - Do not ship update-pciids script - they are provided via hwdata package and we dont want to override data by other packages ==== pipewire ==== Version update (0.3.1+48 -> 0.3.2) Subpackages: libpipewire-0_3-0 pipewire-modules pipewire-spa-tools pipewire-tools - Use the License rpm tag to specify that although most of pipewire is licensed under MIT, the pulseaudio replacement library is licensed under LGPL-2.1+. - Use gcc9 to build in SLE-15 / Leap 15, since at least gcc8 is needed now. - Update to version 0.3.2: + build fixes + Added support for data type negotiation. This makes it possible for a client to say that it can handle DMABuf and MemFd and then let the server select a compatible format. + Handle errors when enumerating parameters better. + Add support for rate, format, channels and period_bytes to the alsa config file to restrict what alsa apps can negotiate. + Fix JACK midi output. + Optimizations in common audio format conversions using AVX2. Small optimizations to plugins. + Change the vulkan compute example to an MIT licensed shader. + Remove some hardcoded defaults in the audio and video processing and use the values from the processing context. This also fixes the vulkan example. + Correct the documentation and defaults in the daemon config file. + Fix alsa and v4l2 buffer recycle. A paused client could cause the server to leak all buffers. + Remove some warnings that should be ignored. + Fix a crash in the bluez5 plugins. + Try to select higher quality formats first when negotiating a format with an audio device. + Fix an infinite loop in udev detection in some cases. + Add non-interactive mode to pw-cli. You can now just do "pw-cli ls Port" to get a listing of all ports. pw-cli will now also connect to the default server by default and has options to select a different server. + Allow the server to go up to the maximum quantum (8192 samples or ~=180ms) if a client explicitly wants this. ==== python-setuptools ==== - Fix License to the correct MIT ==== re2 ==== Version update (20200303 -> 20200401) - Updat to version 2020-04-01: * Update Unicode data to 13.0.0 * Include the pattern length in "DFA out of memory" errorrs ==== rpm ==== - Initialize the libgcrypt library [bnc#1167343] * new patch: initgcrypt.diff ==== slang ==== Version update (2.3.1a -> 2.3.2) - slang 2.3.2: * It is now possible to use reserved words as struct field names without quoting them. For example, it is now possible to write s = struct { public = value }; Previously, this required the field name to be quoted: s = struct { "public" = value }; - drop static library and its LTO workaround - git-6dd5ade9a97b52ace4ac033779a6d3c1c51db4d1.patch: upstreamed - slang-fsuid.patch: refreshed ==== snapper ==== Subpackages: libsnapper5 - updated translations (bsc#1149754) - generate dsc file for Ubuntu 19.10 ==== transactional-update ==== Version update (2.21 -> 2.21.1) Subpackages: transactional-update-zypp-config - Version 2.21.1 - Rework error messages on failing umount [boo#1168389] ==== yast2 ==== Version update (4.2.80 -> 4.2.81) - Retranslate wizard help button in NCurses UI (bsc#1167224) - 4.2.81