Packages changed: btrfsprogs gpgme gpgmeqt kdevelop5 (5.4.2 -> 5.4.3) kwrited5 (5.17.0 -> 5.17.1) libcontainers-common libevent libinput (1.14.1 -> 1.14.2) nodejs12 (12.11.1 -> 12.13.0) ovmf plasma-browser-integration (5.17.0 -> 5.17.1) plasma5-thunderbolt (5.17.0 -> 5.17.1) rubygem-cheetah (0.5.0 -> 0.5.1) systemd tcsh xdg-desktop-portal-kde (5.17.0 -> 5.17.1) yast2-storage-ng (4.2.47 -> 4.2.50) === Details === ==== btrfsprogs ==== Subpackages: btrfsprogs-udev-rules libbtrfs0 - Enable build of python-bindings for libbtrfsutil ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Build qt bindings separately to avoid build cycle with samba/libsoup. ==== gpgmeqt ==== - Build qt bindings separately to avoid build cycle with samba/libsoup. ==== kdevelop5 ==== Version update (5.4.2 -> 5.4.3) Subpackages: kdevelop5-lang kdevplatform kdevplatform-lang libkdevplatform54 - Update to 5.4.3 * ProblemNavigationContext: Fix incorrect link target for file:line links with declarations * ProjectManagerView: Make items with an empty icon have the same indent as items with a valid icon * Welcome page: fix version of QtQuick.XmlListModel import to match Qt 5.7 ff. * Welcome page: fix version of QtQuick.Layouts import to match Qt 5.7 ff. * [Grepview] Use the correct fallback icon for Collapse All * FileManagerListJob: use a semaphore for locking * Fix Infinite Recursion in DUChain * Cache the defines/includes for gcc-like compilers per language type * Only write defines file when needed * Don't set super long name on completely anon structs * Use type name as fallback ID for anon typedef'ed structs/unions etc. (kde#409041) * Fixed crash when filtering class list (kde#406931) * Gcclikecompiler: properly resolve include paths with symbolic links (kde#405221) ==== kwrited5 ==== Version update (5.17.0 -> 5.17.1) - Update to 5.17.1 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.17.1.php - No code changes since 5.17.0 ==== libcontainers-common ==== - Update to image 4.0.0 - Add http response to log - Add tests for parsing OpenShift kubeconfig files - Compress: define some consts for the compression algos - Compression: add support for the zstd - Compression: allow to specify the compression format - Copy: add nil checks - Copy: compression: default to gzip - Copy: don't lose annotations of BlobInfo - Copy: fix options.DestinationCtx nil check - Copy: use a bigger buffer for the compression - Fix cross-compilation by vendoring latest c/storage - Internal/testing/explicitfilepath-tmpdir: handle unset TMPDIR - Keyctl: clean up after tests - Make container tools work with go+openssl - Make test-skopeo: replace c/image module instead of copying code - Media type checks - Move keyctl to internal & func remove auth from keyring - Replace vendor.conf by go.mod - Update dependencies - Update test certificates - Update to mergo v0.3.5 - Vendor.conf: update reference for containers/storage - Update to storage 1.13.4 - Update generated files - ImageBigData: distinguish between no-such-image and no-such-item - ImageSize: don't get tripped up by images with no layers - tarlogger: disable raw accouting - Update to libpod 1.6.0 - Nothing changed regarding the OCI hooks documentation provided by this package ==== libevent ==== - Add upstream patches with the feature of "prepare" and "check" watchers. That feature is needed by envoy-proxy: * 0001-evwatch-Add-prepare-and-check-watchers.patch * 0002-evwatch-fix-race-condition.patch ==== libinput ==== Version update (1.14.1 -> 1.14.2) Subpackages: libinput-udev libinput10 - Update to release 1.14.2 * Added quirks for specific devices, notably the Logitech MX Master 2S and 3, Thinkpad 13 G2, HP Elite x2 1013 G3 and the Lenovo T490s and X200. * For everyone else, the thumb detection is now less aggressive, fixing a few issues seen where two-finger scrolling was misdetected as pinch gestures. ==== nodejs12 ==== Version update (12.11.1 -> 12.13.0) Subpackages: nodejs12-devel npm12 - Update to LTS release 12.13.0 (jira#SLE-8947): * deps: update npm to 6.12.0 * doc: + fix --enable-source-maps flag in v12.12.0 changelog + set module version 72 to node 12 + fix tls version values * fs: do not emit 'finish' before 'open' on write empty file - versioned.patch: refreshed - Update to 12.12.0: * depreciations: Add documentation-only deprecation for process._tickCallback() * esm: Using JSON modules is experimental again * fs: Introduce opendir() and fs.Dir to iterate through directories * process: Add source-map support to stack traces by using - -enable-source-maps * tls: + Honor pauseOnConnect option + Add option for private keys for OpenSSL engines - fix_build_with_openssl_1.1.1d.patch: upstreamed - Update to 12.11.1: * build: fixed building * deps: Updated small-icu data to support "unit" style in the Intl.NumberFormat API - Remove unsupported 32-bit architectures - fix_ci_tests.patch: correct build with SUSE backport of KDF patches to OpenSSL 1.1.1d - Update to 12.11.0: * crypto: Add oaepLabel option * deps: updated V8 to 7.7.299.11 + More efficient memory handling + Stack trace serialization got faster + The Intl.NumberFormat - API gained new functionality + more information: https://v8.dev/blog/v8-release-77 * events: Add support for EventTarget in once * fs: Expose memory file mapping flag UV_FS_O_FILEMAP * inspector: New API - Session.connectToMainThread * process: Initial SourceMap support via env.NODE_V8_COVERAGE * stream: Make _write() optional when _writev() is implemented * tls: Add option to override signature algorithms * util: Add encodeInto to TextEncoder * worker: The worker_thread module is now stable - versioned.patch: refreshed - Fix build with OpenSSL 1.1.1d (bsc#1149792) * https://github.com/nodejs/node/pull/29550 * add fix_build_with_openssl_1.1.1d.patch - Update to 12.10.0: * deps: + update npm to 6.10.3 * fs: + Add recursive option to rmdir() + Allow passing true to emitClose option + Add *timeNs properties to BigInt Stats objects * net: + Allow reading data into a static buffer - versioned.patch: refreshed - Update to 12.9.0: * crypto: Added an oaepHash option to asymmetric encryption which allows users to specify a hash function when using OAEP padding * deps: Updated V8 to 7.6.303.29 + Improves the performance of various APIs such as JSON.parse and methods called on frozen arrays. + Adds the Promise.allSettled method. + Improves support of BigInt in Intl methods. + For more information: https://v8.dev/blog/v8-release-76 * fs: Added fs.writev, fs.writevSync and filehandle.writev (promise version) methods. * http: Added three properties to OutgoingMessage.prototype: writableObjectMode, writableLength and writableHighWaterMark * stream: + Added an new property 'readableEnded' to readable streams. + Added an new property 'writableEnded' to writable streams. - fix_ci_tests.patch: refreshed - Update to 12.8.1: Security update regarding HTTP/2 Denial of Service vulnerabilities For details see, https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V12.md#12.8.1 https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md (CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, bsc#1146091, bsc#1146099, bsc#1146094, bsc#1146095, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, bsc#1146100, bsc#1146090, bsc#1146097, bsc#1146093) - Minimum ICU version is 64. Use in-tree ICU copy for older distributions - dont_return_garbage.patch: dropped and turn off unnecessary errors about it during compilation - Update to 12.8.0: * crypto: + The outputLength option is added to crypto.createHash + The maxmem range is increased from 32 to 53 bits * n-api: Added APIs for per-instance state management * report: Network interfaces get included in the report * src: v8.getHeapCodeStatistics() is now exported - Update to 12.7.0: * deps: + Updated nghttp2 to 1.39.1 + Updated npm to 6.10.0 (bsc#1140290, CVE-2019-13173) * esm: Implemented experimental "pkg-exports" proposal. * http: + Added response.writableFinished + Exposed headers, rawHeaders and other fields on an http.ClientRequest "information" event * inspector: Added inspector.waitForDebugger() * policy: Added --policy-integrity=sri CLI option to mitigate policy tampering * readline,tty: Exposed stream API * src: Use cgroups to get memory limits. - Changes in version 12.6.0: * child_process: The promisified versions of child_process.exec and child_process.execFile now both return a Promise which has the child instance attached to their child property * deps: Updated libuv to 1.30.1 * process: A new method, process.resourceUsage() was added * stream: Added a writableFinished property to writable streams. * worker: Fixed an issue that prevented worker threads to listen for data on stdin - Changes in version 12.5.0: * build: Improve startup time by enabling V8 snapshots by default * deps: Updated V8 to 7.5.288.22 * inspector: The --inspect-publish-uid flag was added to specify ways of the inspector web socket url exposure * n-api: Accessors on napi_define_* are now ECMAScript-compliant * report: The cpu info got added to the report output * src: Restore the original state of the stdio file descriptors on exit to prevent leaving stdio in raw or non-blocking mode * worker: worker.terminate() now returns a promise - refreshed patches: dont_return_garbage.patch, fix_ci_tests.patch, nodejs-libpath.patch, versioned.patch - Update to 12.4.0: * esm: JSON module support is always enabled under - -experimental-modules. The --experimental-json-modules flag has been removed * http, http2: A new flag has been added for overriding the default HTTP server socket timeout (which is two minutes). Pass --http-server-default-timeout=milliseconds or - -http-server-default-timeout=0 to respectively change or disable the timeout. Starting with Node.js 13.0.0, the timeout will be disabled by default * inspector: Added an experimental --heap-prof flag to start the V8 heap profiler on startup and write the heap profile to disk before exit * stream: The readable.unshift() method now correctly converts strings to buffers. Additionally, a new optional argument is accepted to specify the string's encoding, such as 'utf8' or 'ascii' * v8: The object returned by v8.getHeapStatistics() has two new properties: number_of_native_contexts and number_of_detached_contexts - nodejs-libpath.patch: install npx into proper directory - versioned.patch, fix_ci_tests.patch: refreshed - Update to 12.3.1: * deps: + Fix handling of +0/-0 when constant field tracking is enabled + Fix os.freemem() and os.totalmem correctness - changes in 12.3.0: * esm: Added the --experimental-wasm-modules flag to support WebAssembly modules * process: Log errors using util.inspect in case of fatal exceptions * repl: Add process.on('uncaughtException') support * stream: Implemented Readable.from async iterator utility * tls: + Expose built-in root certificates + Support net.Server options + Expose keylog event on TLSSocket * worker: Added the ability to unshift messages from the MessagePort - changes in 12.2.0: * deps: Updated llhttp to 1.1.3. This fixes a bug that made Node.js' HTTP parser refuse any request URL that contained the "|" (vertical bar) character * tls: Added an enableTrace() method to TLSSocket and an enableTrace option to tls.createServer(). When enabled, TSL packet trace information is written to stderr. This can be used to debug TLS connection problems * cli: + Added --trace-tls enables tracing of TLS connections + Added --cpu-prof-interval * module: + Added the createRequire() method. The existing createRequireFromPath() method is now deprecated + Throw on require('./path.mjs') * repl: + The REPL now supports multi-line statements using BigInt literals - enable LTO - fix_ci_tests.patch: refreshed - Update to 12.1.0: * intl: Update ICU to 64.2. * c++ API: Added an overload EmitAsyncDestroy that can be used during garbage collection - Notable changes in 12.0.0: * assert: + validate required arguments + adjust loose assertions * async_hooks: + remove deprecated emitBefore and emitAfter + remove promise object from resource * bootstrap: make Buffer and process non-enumerable * buffer: + use stricter range checks + harden SlowBuffer creation + harden validation of buffer allocation size + do proper error propagation in addon methods * child_process: + remove options.customFds + harden fork arguments validation + use non-infinite maxBuffer defaults * console: don't use ANSI escape codes when TERM=dumb * crypto: + remove legacy native handles + decode missing passphrase errors + remove Cipher.setAuthTag() and Decipher.getAuthTag() + remove deprecated crypto._toBuf() + set DEFAULT_ENCODING property to non-enumerable * deps: + update V8 to 7.4.288.13 + bump minimum icu version to 63 + update bundled OpenSSL to 1.1.1b and bump minimum OpenSSL requirements to 1.1.1 * errors: update error name * fs: + use proper .destroy() implementation for SyncWriteStream + improve mode validation + harden validation of start option in createWriteStream() + make writeFile consistent with readFile wrt fd * http: + validate timeout in ClientRequest() + return HTTP 431 on HPE_HEADER_OVERFLOW error + switch default parser to llhttp + Runtime-deprecate outgoingMessage._headers and outgoingMessage._headerNames * lib: + remove Atomics.wake() + move DTRACE_* probes out of global scope + deprecate _stream_wrap + use ES6 class inheritance style * module: + remove unintended access to deps + improve error message for MODULE_NOT_FOUND + requireStack property for MODULE_NOT_FOUND + make require('.') never resolve outside the current directory + throw an error for invalid package.json main entries + don't search in require.resolve.paths * net: + remove Server.listenFD() + do not add .host and .port properties to DNS error + emit "write after end" errors in the next tick + deprecate _setSimultaneousAccepts() undocumented function * os: + implement os.type() using uv_os_uname() + remove os.getNetworkInterfaces() * process: + make global.process, global.Buffer getters + DEP0062 (node --debug) to end-of-life + exit on --debug and --debug-brk after option parsing + improve --redirect-warnings handling * readline: support TERM=dumb * repl: + add welcome message + fix terminal default setting + check colors with .getColorDepth() + deprecate REPLServer.rli * src: + update NODE_MODULE_VERSION to 72 + remove AddPromiseHook() + remove icuDataDir from node config + clean up MultiIsolatePlatform interface * tls: + support TLSv1.3 + return correct version from getCipher() + check arg types of renegotiate() + add code for ERR_TLS_INVALID_PROTOCOL_METHOD + emit a warning when servername is an IP address + disable TLS v1.0 and v1.1 by default + remove unused arg to createSecureContext() + deprecate Server.prototype.setOptions() + load NODE_EXTRA_CA_CERTS at startup * util: + remove util.print(), util.puts(), util.debug() and util.error() + change inspect compact and breakLength default + improve inspect edge cases + only the first line of the error message + don't set the prototype of callbackified functions + rename callbackified function + increase function length when using callbackify() + prevent tampering with internals in inspect() + prevent Proxy traps being triggered by .inspect() + prevent leaking internal properties + protect against monkeypatched Object prototype for inspect() + treat format arguments equally * zlib: + throw TypeError if callback is missing + make ?bare? constants un-enumerable For detailed changelog, see https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V12.md - Add _constraints file to avoid OOM errors - NodeJS 12.x branch created ==== ovmf ==== Subpackages: qemu-ovmf-x86_64 - Add the firmware descriptors for QEMU - Tweak the install commands ==== plasma-browser-integration ==== Version update (5.17.0 -> 5.17.1) Subpackages: plasma-browser-integration-lang - Update to 5.17.1 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.17.1.php - Changes since 5.17.0: * Bail out early when setPluginLoaded would result in no change * Show version information in about screen ==== plasma5-thunderbolt ==== Version update (5.17.0 -> 5.17.1) Subpackages: plasma5-thunderbolt-lang - Update to 5.17.1 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.17.1.php - No code changes since 5.17.0 ==== rubygem-cheetah ==== Version update (0.5.0 -> 0.5.1) - updated to version 0.5.1 see installed CHANGELOG 0.5.1 (2019-10-16) - ----------------- * Implement closing open fds after call to fork (bsc#1151960). This will work only in linux system with mounted /proc. For other Unixes it works as before. * drop support for ruby that is EOL (2.3 and lower) * Added support for ruby 2.4, 2.5, 2.6 ==== systemd ==== Subpackages: libsystemd0 libsystemd0-32bit libudev-devel libudev1 libudev1-32bit systemd-32bit systemd-container systemd-logger systemd-sysvinit udev - Add 0001-compat-rules-escape-when-used-for-shell-expansion.patch (bsc#1153648) Added to the quaratine area to avoid uploading a new tar ball just for that single change. It will be dropped during the next import. - don't package locales in -mini package - Import commit 428b937f917ae177f2315e8469800941885e441a 0026b58744 pid1: fix DefaultTasksMax initialization - Import commit ed81f69153488279957268e247a5c81b678da491 (changes from v243-stable) fab6f010ac dhcp6: use unaligned_read_be32() f2d9af4322 dhcp6: add missing option length check ccf797511e ndisc: make first solicit delayed randomly f2275b6e12 dhcp6: read OPTION_INFORMATION_REFRESH_TIME option 6dfbe58ee7 l10n: update Czech Translation d4cd0e9d32 sd-radv: if lifetime < SD_RADV_DEFAULT_MAX_TIMEOUT_USEC, adjust timeout (#13491) dbefe59259 polkit: fix typo a321507476 sd-netlink: fix invalid assertion 45dca7fe86 network: do not enter failed state if device's sysfs entry does not exist yet dd83d58796 network: add missing link->network checks b294305888 path: stop watching path specs once we triggered the target unit 2cd636c437 hwdb: add Medion Akoya E2292 (#13498) d133bdd1fa po: update Brazilian Portuguese translation 530e09b594 po: update Polish translation 0c5c3e34c1 polkit: change "revert settings" to "reset settings" 73e0f372d8 man: fix description of ARPIntervalSec= units 5412cc54a1 hwdb: axis override for Dell 9360 touchpad 9d4e658529 test: drop the missed || exit 1 expression 7ed7ea82f6 udevadm: use usec_add() 477bf86c91 udevadm: missing initialization of descriptor 19ac31c989 networkd: unbreak routing_policy_rule_compare_func() a20a2157a8 core: coldplug possible nop_job eb55241742 tty-ask-pwd-agent: fix message forwarded to wall(1) 1a3c53c06c core: Fix setting StatusUnitFormat from config files 91db81e4dd network DHCP4: Dont mislead the logs. 6af590838b Update m4 for selective utmp support. modified: tmpfiles.d/systemd.conf.m4 6823c907cf core: restore initialization of u->source_mtime 29308bcc13 mount-setup: relabel items mentioned directly in relabel-extra.d 8ca1e56165 Call getgroups() to know size of supplementary groups array to allocate 5d84a7ad1c test: add test cases for empty string match 1536348cc8 udev: fix multi match 3ccafef0ad man: move TimeoutCleanSec= entry from .service to .exec 8c0c30a820 zsh: udpate bootctl completions 0556c247a2 resolved: fix abort when recv() returns 0 9a25d75520 man: remove repeated words be3be29347 hwdb: Also mark lis3lv02d sensors in "HP" laptops as being in the base 4b92ffccaa udev: also logs file permission 75a2845e5a udev: add missing flag for OPTIONS=static_node 19e9fc4262 network: do not abort execution when a config file cannot be loaded 3e1267cf50 fileio: update warning message 1b3156edd2 pstore: fix use after free f500d2fa81 journal: Make the output of --update-catalog deterministic 64d0f7042d travis: protect the systemd organization on Fuzzit from forks 4247938ee1 hwdb: Mark lis3lv02d sensors in HP laptops as being in the base 379158684a po: update Japanese translation 31e1bbd1ca docs: fix push recipe in RELEASE.md f06530d86b man/systemctl.xml: fix missing "not" 22aba2b969 docs: fix typo in boot loader doc 000e08ca70 pstore: fix typo in error message - directoy -> directory f7f9c69ac5 Fix typo in comment: overide -> override ca8ba8f8c0 po: update Polish translation ==== tcsh ==== Subpackages: tcsh-lang - Use both TERM names of urxvt: rxvt-unicode and rxvt-unicode-256-color - Add some missed key escape sequences for urxvt-unicode terminal as well (boo#1007715). ==== xdg-desktop-portal-kde ==== Version update (5.17.0 -> 5.17.1) Subpackages: xdg-desktop-portal-kde-lang - Update to 5.17.1 * New bugfix release * For more details please see: * https://www.kde.org/announcements/plasma-5.17.1.php - No code changes since 5.17.0 ==== yast2-storage-ng ==== Version update (4.2.47 -> 4.2.50) - Fix translation of some encryption related widgets (bsc#1154364). - 4.2.50 - Avoid false warning about booting from LUKS2 in s390 (related to jsc#SLE-7376). - If a given device cannot be mounted by the method configured as default, try to find the most stable alternative instead of just using the device kernel name (bsc#1151075). - Improved support for volatile encryption (related to jsc#SLE-7376). - Partitioner: more accurate mount_by options in Fstab Options. - 4.2.49 - Set sector size to 4k for encrypted devices which underlying device is, at least, 4k too (jsc#SLE-7376). - 4.2.48