Packages changed: MozillaThunderbird (38.5.1 -> 38.6.0) avahi branding-openSUSE cifs-utils (6.4 -> 6.5) cups-pk-helper (0.2.5 -> 0.2.6) desktop-data-openSUSE dos2unix (7.3.2 -> 7.3.3) dracut drbd-utils eog (3.18.1 -> 3.18.2) git (2.7.1 -> 2.7.2) google-roboto-fonts gvfs (1.26.2 -> 1.26.3) hexchat icewm kde-branding-openSUSE kiwi (7.03.53 -> 7.03.58) krb5 ldb (1.1.25 -> 1.1.26) libfm-extra libinput (1.1.5 -> 1.2.0) libnettle libssh2_org (1.6.0 -> 1.7.0) libusbmuxd libvdpau-va-gl (0.3.4 -> 0.3.5) libwpd libzypp (15.21.2 -> 15.21.3) obs-service-download_files (0.5.1.git.1437716073.690c01e -> 0.5.1.git.1455712026.9c0a4a0) obs-service-recompress (0.3.1+git20150622.d908b54 -> 0.3.1+git20160217.7897d3f) obs-service-verify_file (0.1 -> 0.1.1) openal-soft (1.16.0 -> 1.17.2) openjade perl-DBD-SQLite (1.48 -> 1.50) perl-DateTime-TimeZone (1.94 -> 1.95) perl-Moose (2.1604 -> 2.1605) perl-Params-Validate (1.21 -> 1.22) perl-XML-XPath (1.30 -> 1.31) poppler (0.40.0 -> 0.41.0) poppler-qt (0.40.0 -> 0.41.0) poppler-qt5 (0.40.0 -> 0.41.0) python-ldap python-requests (2.8.1 -> 2.9.1) python3-requests rpcbind samba (4.3.4 -> 4.3.5) sg3_utils (1.41 -> 1.42) sqlite3 (3.10.2 -> 3.11.0) talloc tdb tevent (0.9.26 -> 0.9.28) treeline (1.9.7 -> 2.0.2) valgrind wicked xen (4.6.0_08 -> 4.6.1_01) yast2 (3.1.173 -> 3.1.175) yast2-installation (3.1.167 -> 3.1.169) yast2-iscsi-client (3.1.23 -> 3.1.25) yast2-network (3.1.142 -> 3.1.143) yast2-pkg-bindings (3.1.31 -> 3.1.32) yast2-storage (3.1.75 -> 3.1.79) zypper (1.12.31 -> 1.12.33) === Details === ==== MozillaThunderbird ==== Version update (38.5.1 -> 38.6.0) Subpackages: MozillaThunderbird-translations-common - update to Thunderbird 38.6.0 (boo#963520) * Filters ran on a different folder than selected * MFSA 2016-01/CVE-2016-1930 Miscellaneous memory safety hazards * MFSA 2016-03/CVE-2016-1935 (bmo#1220450) Buffer overflow in WebGL after out of memory allocation ==== avahi ==== Subpackages: avahi-autoipd avahi-compat-mDNSResponder-devel libavahi-client3 libavahi-client3-32bit libavahi-common3 libavahi-common3-32bit libavahi-core7 libavahi-devel libdns_sd - No longer install sysv services: the systemd services have been installed for a long time already and are masking the sysv scripts; those scripts existance only add confusion (boo#959908). ==== branding-openSUSE ==== Subpackages: gfxboot-branding-openSUSE grub2-branding-openSUSE plymouth-branding-openSUSE wallpaper-branding-openSUSE xfce4-splash-branding-openSUSE yast2-qt-branding-openSUSE - grub2 theme: use blueish color for timeout bar. - Update branding with final touches. - plymouth script: revert to single sized backround image. The one in the current branding deck fades out to black. ==== cifs-utils ==== Version update (6.4 -> 6.5) - Don't ignore libldb, libtalloc, libtevent, and samba-client-libs at build time; (bsc#966174). - Update to cifs-utils 6.5. + mount.cifs: ignore x- mount options + minor build fixes; obsoletes include_paths.h_for__PATH_MOUNTED.patch + minor manpage fix ==== cups-pk-helper ==== Version update (0.2.5 -> 0.2.6) - Update to version 0.2.6: + Enable UTF-8 chars in names and texts. + Introduce CPH_PATH_MAX. + Add function for printer renaming. + Updated translations. ==== desktop-data-openSUSE ==== - Upgraded package from upstream sources. - Removed the update_rpm script and replaced it with a proper obs source service (disabled by default). Use xz compression instead of bz2. - Removed package_edutainment.png icon "patch" since it's now properly installed from the upstream sources. - Updated the spec file accordingly. ==== dos2unix ==== Version update (7.3.2 -> 7.3.3) - Update to 7.3.3 ==== dracut ==== - Add 0211-fix_multipath_check_hostonly.patch: - Fix warning about multipath - Modify 0300-dracut_dont_use_dpkg_defaults_on_SUSE.patch: - Don't try to include plymouth if plymouth-dracut pkg. not installed - Add 0210-add_fcoe_uefi_check.patch: - Only install fcoe-uefi module if needed (boo#965477) ==== drbd-utils ==== - bsc#967753. Fix different udev rules folder in Leap and openSUSE. ==== eog ==== Version update (3.18.1 -> 3.18.2) - Update to version 3.18.2: + bgo#762028: >=eog-3.14 is affected by CVE-2013-7447. + Updated translations. ==== git ==== Version update (2.7.1 -> 2.7.2) Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk - git 2.7.2: * improvements placing conflict markers with different line terminators * "git worktree" fixes for manually moved paths * "git push --force-with-lease" has been taught to report if the push needed to force (or fast-forwarded). * vimdiff backend improvements for "git mergetool": buffer order * improvements for handling paths added to index with "add -N" which are not in the index yet - fix test failures with grep 2.23 add git-2.7.1-fix-tests-grep-2.23.patch ==== google-roboto-fonts ==== - Update to add LICENSE file ==== gvfs ==== Version update (1.26.2 -> 1.26.3) Subpackages: gvfs-backend-afc gvfs-backends gvfs-fuse - Update to version 1.26.3: + udisks2: Avoid crashes during unmount. + ftp: Fix cache invalidation after writing. + network: Fix crashes when mount failed. + metadata: Avoid endless recursion when copying meta files. + udisks2: Do not show notification if unmount failed. + Several smaller bugfixes. + Updated translations. ==== hexchat ==== Subpackages: hexchat-lang - Change URL - Remove BuildRequires for fdupes, not need for it - Use check for openSUSE %if 0%{?suse_version} - Add BuildRequires for hicolor-icon-theme - Add BuildRoot for older openSUSE versions - Use %{name} instead of hexchat ==== icewm ==== Subpackages: icewm-config-upstream icewm-default icewm-lite - Small fix to continue requiring xterm in distributions that don't have xterm-bin (Leap 42.1 and older) - Require xterm-bin instead of xterm: only the binary is required. ==== kde-branding-openSUSE ==== Subpackages: kdelibs4-branding-openSUSE ksplash-qml-branding-openSUSE ksplashx-branding-openSUSE - Update branding with final touches. - plymouth script: revert to single sized backround image. The one in the current branding deck fades out to black. ==== kiwi ==== Version update (7.03.53 -> 7.03.58) Subpackages: kiwi-desc-isoboot kiwi-desc-netboot kiwi-desc-oemboot kiwi-desc-vmxboot kiwi-doc kiwi-media-requires kiwi-pxeboot kiwi-templates kiwi-tools - v7.03.58 released - Fixed shell syntax in grub2 template Fixes (bnc#961334) - v7.03.57 released - Refactor suseStripKernel The way the method downsizes the kernel tree is wrong in several places and very hard to read. Therefore the code has been refactored and splitted into task methods which can run independently from each other. As one result the kernel tree is not missing any metadata and/or update weak-updates paths anymore. Fixes (bnc#965830) - v7.03.56 released - Fix filesystem check on boot In the refactoring fc363cc06, the parameters of checkFileSystem got changed to expect the device name, but one of the invocations didn't pass down the device name due to a typo. - Remove grub2 from the armv6/v7 initrd Grub2 adds 35MB to the initrd for no reason on armv6/v7, as those images use u-boot scripts for booting. - Remove flush before resize filesystem According to the manpage, -F is flushing the fileystem buffer caches. which is only really useful for doing resize2fs time trials. With current Tumbleweed installed on MMC, -F triggers a Inappropriate ioctl for device while trying to flush error, and then fails to resize. - DB: rebuild documentation - Do not activate dmraid paritions This only activates the device itself, not the partitions, that may also exist. If partitions exist, the UDEV rules will create the corresponding "_partX" symlinks for each partition within "/dev/mapper, which are totally sufficient. - v7.03.55 released - s390: Don't strip ctc_configure from initrd - Translated using Weblate (German) Currently translated at 100.0% (28 of 28 strings) Author: Bernhard M. Wiedemann - doc: fix typo Author: Bernhard M. Wiedemann - make xml example valid the tag needs to remain open here. - v7.03.54 released - Fixed validation of custom root cmdline variable A variable of the format root=LABEL=x was not correctly validated - Enable pvops builds for EC2 ==== krb5 ==== Subpackages: krb5-32bit krb5-client krb5-devel - Remove krb5-mini pieces from spec file. Hence remove pre_checkin.sh - Remove expired macros and other minor clean-ups in spec file. ==== ldb ==== Version update (1.1.25 -> 1.1.26) Subpackages: libldb1 libldb1-32bit - Avoid a file collision for non SUSE build targets; (bsc#966174). - Update to 1.1.26; (bsc#954658). + let a timeout of -1 indicate no timeout for a given request + fix memory leaks in pyldb ldb.search() + build fixes + improve pyldb ldb.search() help message + add pyldb ldb.search_iterator() api + add LDB_ATTR_FLAG_FORCE_BASE64_LDIF as optional argument to ldb_schema_attribute_add() + add client support for LDB_CONTROL_DIRSYNC_EX ==== libfm-extra ==== - Fix typo in configure flag ==== libinput ==== Version update (1.1.5 -> 1.2.0) Subpackages: libinput-devel libinput-udev libinput10 - Update to version 1.2.0: * New stable branch, nothing significant has changed since version 1.1.902. - Update to version 1.1.902: * One significant change to the API: the data provided by the tablet tilt API is now in degrees rather than the previous normalized value range. * libinput now has an option to disable tap-and-drag. * Bugfixes include fixing the the artpen rotation in left-handed mode and a fix to prevent an invalid serial number on proximity in (if the kernel doesn't immediately give us a serial number). - Update to version 1.1.901: * The main feature merged in this cycle is graphics tablet tool support. Devices tagged by udev as ID_INPUT_TABLET are handled by libinput now and exposed with the LIBINPUT_DEVICE_CAP_TABLET_TOOL capability. Note that this currently only includes tablet tool support, including stylus, eraser, cursor, lens cursor, etc. The "pad" part of the tablet is not yet integrated. * Further in this release is support for three-finger pinch gestures on supported hardware. As already announced in 1.1.5, semi-mt touchpads do not support gesture recognition, the data is not reliable enough. * We still reserve the right to change the new tablet API before the 1.2 release, though we don't expect the need for any changes. - Add pkgconfig(libwacom) BuildRequires: New dependency for wacom support. - Update to version 1.1.8: * Two small fixes to the touchpad code. Synaptics semi-mt devices are now using a hysteresis again to stop the cursor from wobbling (expected fallout from 1.1.6). * The no-tappping zone on the far left/right edges has been extended down from half the touchpad to the top edge of the software buttons (if any). This prevents phantom taps when a palm briefly touches the edge of the touchpad. - Changes from version 1.1.7: * This release fixes an issue introduced by 1.1.6's new disable-while-typing handling. If dwt was disabled while a key was held down, the touchpad remained disabled due to a recurring timer. This is fixed now. * The other change enables the touchpad motion hysteresis by default for all ALPS Rushmore touchpads (firmware 0x310). - Changes from version 1.1.6: * The calculation of finger motion for multifinger gestures (including two-finger scrolling) was buggy. A slow two-finger motion could double the effective speed under some circumstances, causing scroll jumps. This has been fixed now. * The touchpad motion hysteresis is now deactivated by default. This may negatively affect some (especially older) touchpads, and we'll have to re-enable the hysteresis on those. If you notice pointer wobbles when hold the finger still please file a bug so we can address this. Everyone else should see a smoother motion especially on small and tiny motions making single-pixel elements much easier to target. * Disable-while-typing now works when a key is held down. And the pairing algorithm has been improved to avoid cases where the touchpad was paired with an external USB keyboard, despite there being a internal keyboard. * Last: the mode button on the Cyborg RAT 5 is now disabled. This button is special, on each press it cycles through 3 'modes', sending a release event for the current button and a down event for the next event code. This causes stuck buttons, since we have nothing in userspace that would handle that button as intended, disabling it is the current solution. ==== libnettle ==== Subpackages: libhogweed4 libhogweed4-32bit libnettle-devel libnettle6 libnettle6-32bit - Fix postun->preun on info packages regenerating ==== libssh2_org ==== Version update (1.6.0 -> 1.7.0) - update to 1.7.0 * Fixes CVE-2016-0787 (boo#967026) * Changes: libssh2_session_set_last_error: Add function mac: Add support for HMAC-SHA-256 and HMAC-SHA-512 WinCNG: support for SHA256/512 HMAC kex: Added diffie-hellman-group-exchange-sha256 support OS/400 crypto library QC3 support * and many bugfixes ==== libusbmuxd ==== Subpackages: libusbmuxd-devel libusbmuxd4 - Add COPYING to %doc ==== libvdpau-va-gl ==== Version update (0.3.4 -> 0.3.5) - Update to 0.3.5: * misc: Compatibility with some other ffmpeg versions. * misc: Bugfixes. ==== libwpd ==== Subpackages: libwpd-0_10-10 libwpd-devel - Disable silent rules ==== libzypp ==== Version update (15.21.2 -> 15.21.3) - yum::Downloader: Download only wanted 'susedata.LANG' files (FATE#320518) - version 15.21.3 (19) ==== obs-service-download_files ==== Version update (0.5.1.git.1437716073.690c01e -> 0.5.1.git.1455712026.9c0a4a0) - Update to version 0.5.1.git.1455712026.9c0a4a0: + prevent tar/cp/rm/mv from malicious filenames + added double quotes for some commands + Rework code + Remove duplicated code + fixed recompression and started with automated testing + fixed tabs + [testing] better handling for files in download server + added gitignore + fixes #6 ==== obs-service-recompress ==== Version update (0.3.1+git20150622.d908b54 -> 0.3.1+git20160217.7897d3f) - Update to version 0.3.1+git20160217.7897d3f: + security fixes ==== obs-service-verify_file ==== Version update (0.1 -> 0.1.1) - protect parameter handling ==== openal-soft ==== Version update (1.16.0 -> 1.17.2) Subpackages: libopenal1 libopenal1-32bit openal-soft-devel - Update to 1.17.2 * Implemented device enumeration for OSSv4. * Fixed building on non-Windows systems without POSIX-2008. * Fixed Dedicated Dialog and Dedicated LFE effect output. * Added a build option to override the share install dir. * Added a build option to static-link libgcc for MinGW. - Changes for 1.17.1 * Fixed building with JACK and without PulseAudio. * Fixed building on FreeBSD. * Fixed the ALSA backend's allow-resampler option. * Fixed handling of inexact ALSA period counts. * Altered device naming scheme on Windows backends to better match other drivers. * Updated the CoreAudio backend to use the AudioComponent API. This clears up deprecation warnings for OSX 10.11, although requires OSX 10.6 or newer. - Changes for 1.17.0 * Implemented a JACK playback backend. * Implemented the AL_EXT_BFORMAT and AL_EXT_MULAW_BFORMAT extensions. * Implemented the ALC_SOFT_HRTF extension. * Implemented C, SSE3, and SSE4.1 based 4- and 8-point Sinc resamplers. * Implemented a C and SSE based band-limited Sinc resampler. This does 12- to 24-point Sinc resampling, and performs anti-aliasing. * Implemented B-Format output support for the wave file writer. This creates FuMa-style first-order Ambisonics wave files (AMB format). * Implemented a stereo-mode config option for treating stereo modes as either speakers or headphones. * Implemented per-device configuration options. * Fixed handling of PulseAudio and MMDevAPI devices that have identical descriptions. * Fixed a potential lockup when stopping playback of suspended PulseAudio devices. * Fixed logging of Unicode characters on Windows. * Fixed 5.1 surround sound channels. By default it will now use the side channels for the surround output. A configuration using rear channels is still available. * Fixed the QSA backend potentially altering the capture format. - Update project and download url - Dropped upstreamed fix-neon-build.patch - Refreshed openal-no-autospawn.diff ==== openjade ==== - Build with -fno-lifetime-dse because of object lifetime violations within style/Collector.h ==== perl-DBD-SQLite ==== Version update (1.48 -> 1.50) - updated to 1.50 see /usr/share/doc/packages/perl-DBD-SQLite/Changes 1.50 2016-02-11 - Switched to a production version. 1.49_08 2016-01-30 - no significant code changes - Resolved RT#111558: Virtual table tests depend on enhanced query syntax availability (vlmarek++) - Ingore FTS tests if FTS is not available 1.49_07 2016-01-21 - Updated to SQLite 3.10.2, which fixed a case-folding bug in the LIKE operator introduced in SQLite 3.10.0. 1.49_06 2016-01-15 - Updated to SQLite 3.10.1, which fixed an old bug that could generate incorrect results when a scalar subquery attempts to use the block sorting optimization. 1.49_05 2016-01-11 * ** CHANGES THAT MAY POSSIBLY BREAK YOUR OLD APPLICATIONS *** - Updated to SQLite 3.10.0. Because of the addition of LIKE/GLOB/REGEXP support on virtual tables, previous ::PerlData virtual table got broken. This is hopefully fixed by adding strlike/strglob functions to DBD::SQLite but if you use this virtual table, please test it carefully. - Now you can make a database connection read-only if you turn on the ReadOnly attribute when you connect. (RT #110439) If you set it after you connect to a database, DBD::SQLite warns because the database doesn't actually become read-only. - Improved ::Constants - to load DBD::SQLite by itself - to expose SQLITE_VERSION_NUMBER - introduced a few new (shorter) tags 1.49_04 2015-11-24 - Updated ::Constants - Fixed a sqlite version number in a test (GH-14; NANIS++) 1.49_03 2015-11-05 - Updated to SQLite 3.9.2, with JSON support 1.49_02 2015-10-10 - Added a workaround to resolve #106950 Extra warnings with savepoints (hopefully) - Not to run tests for table_column_metadata unless ENABLE_COLUMN_METADATA is set 1.49_01 2015-08-04 - Updated to SQLite 3.8.11.1 - Resolved #106151 SAVEPOINT bug - Made sure to keep what's left in unprepared_statements when allow_multiple_statements is set. (GH #11) ==== perl-DateTime-TimeZone ==== Version update (1.94 -> 1.95) - updated to 1.95 see /usr/share/doc/packages/perl-DateTime-TimeZone/Changes 1.95 2016-01-27 - This release is based on version 2016a of the Olson database. This release includes contemporary changes for the Cayman Islands, Iran, and Chrita, Russia. ==== perl-Moose ==== Version update (2.1604 -> 2.1605) - updated to 2.1605 see /usr/share/doc/packages/perl-Moose/Changes 2.1605 2016-02-16 [DOCUMENTATION] - Fixed references to test files that were renamed when their associated documentation files were renamed in 2.0500 (RT#111898) - Moose::Manual::Roles now contains a section on handling required attributes in role application (thanks, Kent Fredric!) - a few other, very minor, documentation fixes ==== perl-Params-Validate ==== Version update (1.21 -> 1.22) - updated to 1.22 see /usr/share/doc/packages/perl-Params-Validate/Changes 1.22 2016-02-13 - Fixed a bug when a callback failed but did not die. The resulting error message had a pointless colon in it. Reported by Slaven Rezic. RT #111036. - Made the pure Perl version use Carp's croak rather than confess. The XS version has never included a stack trace in errors. You can use the on_fail setting to get a stack trace if you prefer. Reported by Slaven Rezic. RT [#111036]. - The pure Perl code now uses "(unknown)" when it cannot determine the sub that failed, instead of "N/A". Reported by Slaven Rezic. RT #111036. - Documented the PARAMS_VALIDATE_IMPLEMENTATION environment variable. Requested by Slaven Rezic. RT #111035. ==== perl-XML-XPath ==== Version update (1.30 -> 1.31) - updated to 1.31 see /usr/share/doc/packages/perl-XML-XPath/Changes 1.31 2016-02-22 MANWAR - Proposed fix for RT #112017. ==== poppler ==== Version update (0.40.0 -> 0.41.0) Subpackages: libpoppler-cpp0 libpoppler-devel libpoppler-glib8 libpoppler58 poppler-tools - Update to version 0.41.0: + core: - CairoOutputDev: add missing font types (fontCIDType0COT and fontTrueTypeOT) (fdo#93559). - SplashOutputDev: Adjust limit check and check in addition bitmap pointer (fdo#94053). + utils: - pdfseparate: Refine resource detection. - pdfinfo: fix man page. ==== poppler-qt ==== Version update (0.40.0 -> 0.41.0) - Update to version 0.41.0: + core: - CairoOutputDev: add missing font types (fontCIDType0COT and fontTrueTypeOT) (fdo#93559). - SplashOutputDev: Adjust limit check and check in addition bitmap pointer (fdo#94053). + utils: - pdfseparate: Refine resource detection. - pdfinfo: fix man page. ==== poppler-qt5 ==== Version update (0.40.0 -> 0.41.0) Subpackages: libpoppler-qt5-1 libpoppler-qt5-devel - Update to version 0.41.0: + core: - CairoOutputDev: add missing font types (fontCIDType0COT and fontTrueTypeOT) (fdo#93559). - SplashOutputDev: Adjust limit check and check in addition bitmap pointer (fdo#94053). + utils: - pdfseparate: Refine resource detection. - pdfinfo: fix man page. ==== python-ldap ==== - Use HTTPS links ==== python-requests ==== Version update (2.8.1 -> 2.9.1) - Update to 2.9.1 (changes since 2.8.1): * The verify keyword argument now supports being passed a path to a directory of CA certificates, not just a single-file bundle. * Warnings are now emitted when sending files opened in text mode. * Added the 511 Network Authentication Required status code to the status code registry. * For file-like objects that are not seeked to the very beginning, we now send the content length for the number of bytes we will actually read, rather than the total size of the file, allowing partial file uploads. * When uploading file-like objects, if they are empty or have no obvious content length we set Transfer-Encoding: chunked rather than Content-Length: 0. * We correctly receive the response in buffered mode when uploading chunked bodies. * We now handle being passed a query string as a bytestring on Python 3, by decoding it as UTF-8. * Sessions are now closed in all cases (exceptional and not) when using the functional API rather than leaking and waiting for the garbage collector to clean them up. * Correctly handle digest auth headers with a malformed qop directive that contains no token, by treating it the same as if no qop directive was provided at all. * Minor performance improvements when removing specific cookies by name. * Fix errors when calculating cookie expiration dates in certain locales. * Update bundled urllib3 to 1.13.1. - Rebase no-default-cacert.patch. - Modify no-default-cacert.patch: output /etc/ssl/ca-bundle.pem instead of neither NULL nor /etc/ssl/certs/ as a path to cacerts bundle (boo#967128). - Don't apply no-default-cacert.patch on SLE. - Require ca-certificates package (but not on SLE). - Tests are being improperly started and actual ones require network connection, so fix and comment out. ==== python3-requests ==== - Modify no-default-cacert.patch: + output /etc/ssl/ca-bundle.pem instead of neither NULL nor /etc/ssl/certs/ as a path to cacerts bundle (boo#967128). + don't patch bundled urllib3, as it's being removed. - Require ca-certificates package (but not on SLE). - Remove no-default-cacert-sles.patch: is more compatible to use the bundled cacert bundle on SLE. - Copy requires from python-requests (added by Dirk Mueller). ==== rpcbind ==== - Add 0006-don-t-use-svc_fdset.patch: don't use the svc_fdset interface for libtirpc, which is limited to 1024 connections. - Sync with current git: - Replace 0002-revert-auth.patch with 0002-handle_reply-Don-t-use-the-xp_auth-pointer-directly.patch - Add 0003-Delete-the-unix-socket-only-if-we-have-created-it.patch to fix problems with activation via sockets by systemd - Replace 0032-CVE-2015-7236.patch with 0004-Fix-memory-corruption-in-PMAP_CALLIT-code.patch - Add 0005-security.c-removed-warning.patch to fix compiler warnings - Temporary remove 099-poll.patch - Disable 0030-systemd-fix-rmtcall.patch, needs the other disabled patches. - Submit for SLE12SP2 [FATE#320393] ==== samba ==== Version update (4.3.4 -> 4.3.5) Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libgensec0 libgensec0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libregistry0 libsamba-credentials0 libsamba-credentials0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient-devel libsmbclient-raw0 libsmbclient-raw0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap0 libsmbldap0-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit - Update to 4.3.5. + s3:utils/smbget: Fix recursive download; (bso#6482). + s3: smbd: posix_acls: Fix check for setting u:g:o entry on a filesystemi with no ACL support; (bso#10489). + s3:smbd/oplock: Obey kernel oplock setting when releasing oplocks; (bso#11400). + vfs_shadow_copy2: Fix case where snapshots are outside the share; (bso#11580). + smbclient: Query disk usage relative to current directory; (bso#11662). + winbindd: Handle expired sessions correctly; (bso#11670). + smbd: Show correct disk size for different quota and dfree block sizes; (bso#11681). + smbcacls: Fix uninitialized variable; (bso#11682). + s3:smbd: Ignore initial allocation size for directory creation; (bso#11684). + s3-client: Add a KRB5 wrapper for smbspool; (bso#11690). + s3-parm: Clean up defaults when removing global parameters; (bso#11693). + Use M2Crypto.RC4.RC4 on platforms without Crypto.Cipher.ARC4; (bso#11699). + s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703). + ctdb: Remove error messages after kernel security update; CVE-2015-8543; (bso#11705). + loadparm: Fix memory leak issue; (bso#11708). + lib/tsocket: Work around sockets not supporting FIONREAD; (bso#11714). + ctdb-scripts: Drop use of "smbcontrol winbindd ip-dropped ..."; (bso#11719). + s3:smbd:open: Skip redundant call to file_set_dosmode when creating a new file; (bso#11727). + param: Fix str_list_v3 to accept ";" again; (bso#11732). - Shift samba-client sysconfig data into samba and samba-winbind; (bsc#947361). - Enable clustering (CTDB) support; (bsc#966271). - s3: smbd: Fix timestamp rounding inside SMB2 create; (bso#11703); (bsc#964023). ==== sg3_utils ==== Version update (1.41 -> 1.42) - Update to new upstream release 1.42: * sg_timestamp: new, to report or set timestamp * sg_read_attr: new, supported by tape drives * sg_stpg: fix truncation of target port field * sg_inq: cope with unicode strings, udev fixes - update version descriptor list to 20160125 - '--export': new entries for UUID descriptor * sg_ses: add more field acronyms (ses3r11) 8 sg_logs: add Utilization lpage (sbc4r07) - add Background operation lpage - add Pending defects lpage - add LPS misalignment lpage (sbc4r10) - document '--All' ('-A') option - rework lto tape vendor lpages * sg_vpd: add Block limits extension VPD page - add Device constituents VPD page - add LB Protection VPD page (ssc 15-296r1) - LB provisioning VPD page: expand LBPRZ, add Minimum and Threshold percentage fields - rework lto tape vendor VPD pages * sg_inq+sg_vpd+sg_xcopy: add support for locally assigned UUIDs in VPD page 0x83 (15-267r2) * sg_sanitize: add --znr option (sbc4r07) * sg_rep_zones: add --partial option (zbc-r04) * sg_format: add ffmt option (sbc4r10) - add support for FORMAT MEDIUM (for tape) * sg_raw: document length relationships * rescan-scsi-bus.sh: updates from Suse * sg_lib_data: sync asc/ascq codes with T10 20151126 * sg_lib: add 'sense' categories for SCSI statuses: condition met, busy, task set full, ACA active and task aborted - add pr2serr() extern - change sg_get_sense_str() and dStrHexStr(), return chars written (returned void previously) - add sg_get_sense_descriptors_str() function - add sg_get_designation_descriptor_str() function - sg_get_desig_type_str()+sg_get_desig_assoc_str() and sg_get_desig_code_set_str() added - sg_get_opcode_sa_name() break out zoning in/out, read attribute and read position service actions * sg_cmds_extra: add sg_ll_format_unit2() for FFMT * sg_pr2serr.h: new, to shorten fprintf(stderr, ...) * sg_io_linux, sg_pt_linux: drop SUGGEST_* decoding * sg_unaligned.h: add 48 bit support and gets for variable length unsigned integers - Delete sg3_utils-sg_inq-blacklist.diff; solved differently - Added 40-usb-blacklist.rules (bsc#840054) - Delete sg3_utils-58-scsi-sg3_symlink-fixup.patch; merged with upstream - Delete sg3_utils-flush-fixup.patch; merged with upstream ==== sqlite3 ==== Version update (3.10.2 -> 3.11.0) Subpackages: libsqlite3-0 libsqlite3-0-32bit sqlite3-devel sqlite3-doc - Update to 3.11.0 * Enhanced WAL mode so that it works efficiently with transactions that are larger than the cache_size. * Added the FTS5 detail option. * Added the "EXTRA" option to PRAGMA synchronous that does a sync of the containing directory when a rollback journal is unlinked in DELETE mode, for better durability. The SQLITE_EXTRA_DURABLE compile-time option enables PRAGMA synchronous=EXTRA by default. * Enhanced the query planner so that it is able to use a covering index as part of the OR optimization. * Avoid recomputing NOT NULL and CHECK constraints on unchanged columns in UPDATE statement. * Many micro-optimizations, resulting in a library that is faster than the previous release. * By default, the shell is now in "auto-explain" mode. The output of EXPLAIN commands is automatically formatted. * Added the ".vfslist" dot-command. * The SQLITE_ENABLE_EXPLAIN_COMMENTS compile-time option is now turned on by default in the standard builds. ==== talloc ==== Subpackages: libtalloc2 libtalloc2-32bit python-talloc python-talloc-32bit - Avoid a file collision for non SUSE build targets; (bsc#966174). ==== tdb ==== Subpackages: libtdb1 libtdb1-32bit - Add conflict between python-tdb and python3-tdb. - Avoid a file collision for non SUSE build targets; (bsc#966174). ==== tevent ==== Version update (0.9.26 -> 0.9.28) Subpackages: libtevent0 libtevent0-32bit - Avoid a file collision for non SUSE build targets; (bsc#966174). - Update to 0.9.28; (bsc#954658). + Fix memory leak when old signal action restored (bso#11742). - Update to 0.9.27. + Fix bug in poll backend - poll_event_loop_poll() exits the for loop on POLLNVAL instead of continuing to find an event that is ready. + Fix ETIME handling for Solaris event ports (bso#11728). ==== treeline ==== Version update (1.9.7 -> 2.0.2) - Update to version 2.0.2 * Bug Fixes: - Fixed a major regression in 2.0.1 that broke data editors for most specialized field types (number, math, boolean, choice, etc.) - Reduce the amount of work that a single undo command removes from editors in the data edit view. - Fixed a bug that prevented setting the unique ID reference field on a newly created data type. - Preserve hard newlines in text fields when converting TreeLine 1.4.x files to this version. - Fix problems preserving expand/collapse node states when indenting and unindenting nodes. * Updates: - Added methods to the plugin interface that allow general program options to be queried and changed. - Improve text table import error messages by including the line number where the problem is found. - Modified the Treepad file import to use SpacedText fields to more closely match Treepad formatting. - An optional plugin was written that can export files to the Treepad text file format. - The TreeLine icon was replaced with a new one. Thanks to David Reimer for contributing the artwork. - The German and Portuguese GUI translations were updated. - Updated the long text sample file to include the SpacedText field type, and added a conditional equation to the math sample file. - Updated the Math Field section of the documentation. ==== valgrind ==== - glibc-version.patch: removed, no longer needed ==== wicked ==== Subpackages: libwicked-0-6 wicked-service - fsm: do not segfault on device hierarchy loops (bnc#959356); corrected pull#618 fix to not reset master and use its name then. [+ 0001-fsm-do-not-use-master-name-after-reset-bsc-959356.patch] ==== xen ==== Version update (4.6.0_08 -> 4.6.1_01) Subpackages: xen-doc-html xen-libs xen-tools xen-tools-domU - Update to Xen Version 4.6.1 xen-4.6.1-testing-src.tar.bz2 - Dropped patches now contained in tarball or unnecessary xen-4.6.0-testing-src.tar.bz2 5604f239-x86-PV-properly-populate-descriptor-tables.patch 561bbc8b-VT-d-don-t-suppress-invalidation-address-write-when-it-is-zero.patch 561d2046-VT-d-use-proper-error-codes-in-iommu_enable_x2apic_IR.patch 561d20a0-x86-hide-MWAITX-from-PV-domains.patch 561e3283-x86-NUMA-fix-SRAT-table-processor-entry-parsing-and-consumption.patch 5632118e-arm-Support-hypercall_create_continuation-for-multicall.patch 56321222-arm-rate-limit-logging-from-unimplemented-PHYSDEVOP-and-HVMOP.patch 56321249-arm-handle-races-between-relinquish_memory-and-free_domheap_pages.patch 5632127b-x86-guard-against-undue-super-page-PTE-creation.patch 5632129c-free-domain-s-vcpu-array.patch 563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch 563212e4-xenoprof-free-domain-s-vcpu-array.patch 563212ff-x86-rate-limit-logging-in-do_xen-oprof-pmu-_op.patch 56323737-libxl-adjust-PoD-target-by-memory-fudge-too.patch 56377442-x86-PoD-Make-p2m_pod_empty_cache-restartable.patch 5641ceec-x86-HVM-always-intercept-AC-and-DB.patch 56549f24-x86-vPMU-document-as-unsupported.patch 5677f350-x86-make-debug-output-consistent-in-hvm_set_callback_via.patch xsa155-qemut-qdisk-double-access.patch xsa155-qemut-xenfb.patch xsa155-qemuu-qdisk-double-access.patch xsa155-qemuu-xenfb.patch xsa159.patch xsa160.patch xsa162-qemut.patch xsa165.patch xsa166.patch xsa167.patch xsa168.patch - bsc#965269 - VUL-1: CVE-2015-8619: xen: stack based OOB write in hmp_sendkey routine CVE-2015-8619-qemuu-stack-based-OOB-write-in-hmp_sendkey-routine.patch - bsc#965156 - VUL-0: CVE-2015-6855: xen: ide: divide by zero issue CVE-2015-6855-qemuu-ide-divide-by-zero-issue.patch - bsc#964947 - VUL-0: CVE-2015-5278: xen: Infinite loop in ne2000_receive() function CVE-2015-5278-qemut-Infinite-loop-in-ne2000_receive-function.patch - bsc#956832 - VUL-0: CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list CVE-2015-8345-qemuu-eepro100-infinite-loop-fix.patch CVE-2015-8345-qemut-eepro100-infinite-loop-fix.patch - bsc#964644 - VUL-0: CVE-2013-4533: xen pxa2xx: buffer overrun on incoming migration CVE-2013-4533-qemut-pxa2xx-buffer-overrun-on-incoming-migration.patch - bsc#964925 - VUL-0: CVE-2014-0222: xen: qcow1: validate L2 table size to avoid integer overflows CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch - Dropped CVE-2014-0222-qemuu-qcow1-validate-l2-table-size.patch - bsc#964415 - VUL-1: CVE-2016-2198: xen: usb: ehci null pointer dereference in ehci_caps_write CVE-2016-2198-qemuu-usb-ehci-null-pointer-dereference-in-ehci_caps_write.patch ==== yast2 ==== Version update (3.1.173 -> 3.1.175) Subpackages: yast2-devel-doc - Add support for showing update messages from libzypp (related to bsc#943805) - 3.1.175 ==== yast2-installation ==== Version update (3.1.167 -> 3.1.169) - bnc#960703 - network service setup moved into yast2-network package. - 3.1.169 - Remove autoyast clone button (fate#317970) - 3.1.168 ==== yast2-iscsi-client ==== Version update (3.1.23 -> 3.1.25) - fix syntax error in "publish" section of IscsiClientLib.rb - 3.1.25 - display startup mode "onboot" for iBFT sessions and don't allow to change the mode on 'Edit' screen (bnc#954509) - 3.1.24 ==== yast2-network ==== Version update (3.1.142 -> 3.1.143) - bnc#960703 - sometimes wicked was started instead of NetworkManager in case of AY installation. Moreover it could happen that both services were "half-started" and network setup got broken. - bsc#903190 - Recognized netcard with sub_class_id 07 as InfiniBand (ib) which now are not filtered out (knut.anderssen@suse.com). - 3.1.143 ==== yast2-pkg-bindings ==== Version update (3.1.31 -> 3.1.32) - Expose update notifications through PkgFunctions::CommitHelper - 3.1.32 ==== yast2-storage ==== Version update (3.1.75 -> 3.1.79) - Restoration of auto-deleted shadowed subvolumes works all along the installation process, not only within each invocation to the expert partitioner (fate#320296) - 3.1.79 - Expert partitioner: ensure btrfs subvolumes are properly created also in RAID and LVM devices (bsc#967191) - 3.1.78 - Expert partitioner: improve the shadowed subvolumes handling. Delete proposed subvolumes when they become shadowed and restore them if the offending mount point is removed (fate#320296). - 3.1.77 - Expert partitioner: improved the shadowed subvolumes warning to include the name of the affected subvolumes (bsc#928641) - Fixed expert partitioner to not always overwrite the Btrfs options for root (/) with its own default values (bsc#965279) - 3.1.76 ==== zypper ==== Version update (1.12.31 -> 1.12.33) Subpackages: zypper-aptitude zypper-log - Update zypper-po.tar.bz2 - products: fix wrong repository shown for installed products - Fix spec file to use the correct translation set (bnc#948924) - Fix typos in man page (bsc#953214) - version 1.12.33 - Update sle-zypper-po.tar.bz2 - Update zypper-po.tar.bz2 - Update sle-zypper-po.tar.bz2 - Update zypper-po.tar.bz2 - Fail if tty is bad or at EOF when reading user input (bsc#965027) - installSrcPackage: trigger progress callback (bsc#580902) - version 1.12.32 - Update sle-zypper-po.tar.bz2 - Update zypper-po.tar.bz2