Packages changed: ImageMagick (7.1.0.19 -> 7.1.0.22) apache2 apache2-manual apache2-prefork apache2-utils glslang (11.7.1 -> 11.8.0) gnome-terminal java-11-openjdk (11.0.13.0 -> 11.0.14.0) kbd kdump (1.0 -> 1.0.2) lcms2 (2.12 -> 2.13) ldns (1.7.1 -> 1.8.1) libcap (2.62 -> 2.63) libnvme (1.0~0 -> 1.0~2) libopenmpt (0.5.14 -> 0.6.1) libplacebo (4.192.0 -> 4.192.1) libwebp (1.2.1 -> 1.2.2) libzypp (17.28.8 -> 17.29.3) multipath-tools (0.8.8+13+suse.79c3556f -> 0.8.8+45+suse.628d603e) nvme-cli (2.0~0 -> 2.0~2) openblas_pthreads orca (41.1 -> 41.2) pipewire (0.3.44 -> 0.3.45) plymouth python-black python-boto3 (1.20.40 -> 1.20.46) python-botocore (1.23.40 -> 1.23.46) python-dnspython (2.1.0 -> 2.2.0) python-fixtures python-pandas (1.3.5 -> 1.4.0) python-psutil python-pyudev python-scipy (1.6.3 -> 1.7.3) python-tomli (1.2.1 -> 2.0.0) qtkeychain-qt5 ruby3.1 rubygem-ed25519 (1.2.4 -> 1.3.0) rubygem-excon (0.85.0 -> 0.90.0) rubygem-fast_gettext (2.0.3 -> 2.2.0) rubygem-ffi (1.15.4 -> 1.15.5) rubygem-formatador (1.1.0 -> 0.3.0) rubygem-rb-kqueue (0.2.6 -> 0.2.7) rubygem-rspec-expectations (3.10.1 -> 3.10.2) salt samba (4.15.4+git.224.dea2f6dc836 -> 4.15.5+git.328.f1f29505d84) sane-backends (1.0.32 -> 1.1.1) sendmail shaderc (2021.3 -> 2022.0) sudo (1.9.8p2 -> 1.9.9) tcsh (6.23.02 -> 6.24.00) tevent vsftpd wireplumber yast2-bootloader (4.4.15 -> 4.4.16) yast2-dns-server (4.4.0 -> 4.4.1) yast2-installation (4.4.37 -> 4.4.39) yast2-kdump (4.4.2 -> 4.4.3) yast2-network (4.4.35 -> 4.4.36) yast2-printer (4.4.1 -> 4.4.2) yast2-samba-server (4.4.1 -> 4.4.2) yast2-trans (84.87.20220123.256c7f91b3 -> 84.87.20220131.0700dd3449) zypper (1.14.50 -> 1.14.51) === Details === ==== ImageMagick ==== Version update (7.1.0.19 -> 7.1.0.22) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.0.22 * limit colorname length to avoid possible DoS * restore MPRI URI in SVG * PDF now shows the correct Unicode title (reference https://github.com/ImageMagick/ImageMagick/issues/4771). * optimize Fx image statistics (reference https://github.com/ImageMagick/ImageMagick/discussions/4533). * Support seamless blending of a foreground and background image. * Support saliency blending of a foreground and background image. * Support QOI image format. * Perist frame delay when converting APNG to Webp (reference https://github.com/ImageMagick/ImageMagick/issues/4704). * -fx performance increase by one or two orders of magnitude (reference https://github.com/ImageMagick/ImageMagick/discussions/4533). * Add support for formatted text (reference https://github.com/ImageMagick/ImageMagick/discussions/4515). ==== apache2 ==== - ssl-global.conf: set SSLCipherSuite to PROFILE=SYSTEM instead of DEFAULT_SUSE [jsc#SLE-22561] - set also SSLProxyCipherSuite to PROFILE=SYSTEM - modified sources % apache2-ssl-global.conf ==== apache2-manual ==== - ssl-global.conf: set SSLCipherSuite to PROFILE=SYSTEM instead of DEFAULT_SUSE [jsc#SLE-22561] - set also SSLProxyCipherSuite to PROFILE=SYSTEM - modified sources % apache2-ssl-global.conf ==== apache2-prefork ==== - ssl-global.conf: set SSLCipherSuite to PROFILE=SYSTEM instead of DEFAULT_SUSE [jsc#SLE-22561] - set also SSLProxyCipherSuite to PROFILE=SYSTEM - modified sources % apache2-ssl-global.conf ==== apache2-utils ==== - ssl-global.conf: set SSLCipherSuite to PROFILE=SYSTEM instead of DEFAULT_SUSE [jsc#SLE-22561] - set also SSLProxyCipherSuite to PROFILE=SYSTEM - modified sources % apache2-ssl-global.conf ==== glslang ==== Version update (11.7.1 -> 11.8.0) - Update to release 11.8.0 * Add support for SPIR-V 1.6 * Add support for Vulkan 1.3 * Add --hlsl-dx-position-w option - Delete glslang-big-endian_1.patch, glslang-big-endian_2.patch, glslang-big-endian_3.patch (merged) ==== gnome-terminal ==== Subpackages: gnome-shell-search-provider-gnome-terminal gnome-terminal-lang nautilus-extension-terminal - Add 9a168cc23962ce9fa106dc8a40407d381a3db403.patch: Fix build with meson 0.61.0 and newer. ==== java-11-openjdk ==== Version update (11.0.13.0 -> 11.0.14.0) Subpackages: java-11-openjdk-headless - Update to upstream tag jdk-11.0.14+9 (January 2022 CPU) * New features + JDK-8248238: Implementation: JEP 388: Windows AArch64 Support * Security fixes + JDK-8217375: jarsigner breaks old signature with long lines in manifest + JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if zip has dir named "." inside + JDK-8264934, CVE-2022-21248, bnc#1194926: Enhance cross VM serialization + JDK-8268488: More valuable DerValues + JDK-8268494: Better inlining of inlined interfaces + JDK-8268512: More content for ContentInfo + JDK-8268795: Enhance digests of Jar files + JDK-8268801: Improve PKCS attribute handling + JDK-8268813, CVE-2022-21283, bnc#1194937: Better String matching + JDK-8269151: Better construction of EncryptedPrivateKeyInfo + JDK-8269944: Better HTTP transport redux + JDK-8270386, CVE-2022-21291, bsc#1194925: Better verification of scan methods + JDK-8270392, CVE-2022-21293, bsc#1194935: Improve String constructions + JDK-8270416, CVE-2022-21294, bsc#1194934: Enhance construction of Identity maps + JDK-8270492, CVE-2022-21282, bsc#1194933: Better resolution of URIs + JDK-8270498, CVE-2022-21296, bsc#1194932: Improve SAX Parser configuration management + JDK-8270646, CVE-2022-21299, bsc#1194931: Improved scanning of XML entities + JDK-8270952, CVE-2022-21277, bsc#1194930: Improve TIFF file handling + JDK-8271962: Better TrueType font loading + JDK-8271968: Better canonical naming + JDK-8271987: Manifest improved manifest entries + JDK-8272014, CVE-2022-21305, bsc#1194939: Better array indexing + JDK-8272026, CVE-2022-21340, bsc#1194940: Verify Jar Verification + JDK-8272236, CVE-2022-21341, bsc#1194941: Improve serial forms for transport + JDK-8272272: Enhance jcmd communication + JDK-8272462: Enhance image handling + JDK-8273290: Enhance sound handling + JDK-8273756, CVE-2022-21360, bsc#1194929: Enhance BMP image support + JDK-8273838, CVE-2022-21365, bsc#1194928: Enhanced BMP processing + JDK-8274096, CVE-2022-21366, bsc#1194927: Improve decoding of image files + JDK-8279541: Improve HarfBuzz * Other changes + JDK-6849922: java/awt/Choice/ChoiceKeyEventReaction/ /ChoiceKeyEventReaction.html fails + JDK-7105119: [TEST_BUG] [macosx] In test UIDefaults.toString() must be called with the invokeLater() + JDK-7151826: [TEST_BUG] [macosx] The test javax/swing/JPopupMenu/4966112/bug4966112.java not for mac + JDK-7179006: [macosx] Print-to-file doesn't work: printing to the default printer instead + JDK-8015602: [macosx] Test javax/swing/SpringLayout/4726194/ /bug4726194.java fails on MacOSX + JDK-8034084: nsk.nsk/jvmti/ThreadStart/threadstart003 Wrong number of thread end events + JDK-8039261: [TEST_BUG]: There is not a minimal security level in Java Preferences and the TestApplet.html is blocked. + JDK-8047218: [TEST_BUG] java/awt/FullScreen/AltTabCrashTest/ /AltTabCrashTest.java fails with exception + JDK-8075909: [TEST_BUG] The regression-swing case failed as it does not have the 'Open' button when select 'subdir' folder with NimbusLAF + JDK-8078219: Verify lack of @test tag in files in java/net test directory + JDK-8080569: java/lang/ProcessBuilder/DestroyTest.java fails with "RuntimeException: Process terminated prematurely" + JDK-8081652: [TESTBUG] java/lang/management/ThreadMXBean/ /ThreadMXBeanStateTest.java timed out intermittently + JDK-8129310: java/net/Socket/asyncClose/AsyncClose.java fails intermittently + JDK-8131745: java/lang/management/ThreadMXBean/ /AllThreadIds.java still fails intermittently + JDK-8136517: [macosx] Test java/awt/Focus/8073453/ /AWTFocusTransitionTest.java fails on MacOSX + JDK-8137101: [TEST_BUG] javax/swing/plaf/basic/BasicHTML/ /4251579/bug4251579.java failure due to timing + JDK-8143021: [TEST_BUG] Test javax/swing/JColorChooser/ /Test6541987.java fails + JDK-8159597: [TEST_BUG] closed/javax/swing/JPopupMenu/4760494/ /bug4760494.java leaves key pressed + JDK-8159904: [TEST_BUG] Failure on solaris of java/awt/Window/MultiWindowApp/MultiWindowAppTest.java + JDK-8163086: java/awt/Window/TranslucentJAppletTest/ /TranslucentJAppletTest.java fails + JDK-8165828: [TEST_BUG] The reg case: javax/swing/plaf/metal/ /MetalIcons/MetalHiDPIIconsTest.java failed as No Metal Look and Feel + JDK-8169953: JComboBox/8057893: ComboBoxEdited event is not fired! on Windows + JDK-8169954: JFileChooser/8021253: java.lang.RuntimeException: Default button is not pressed + JDK-8169959: javax/swing/JTable/6263446/bug6263446.java: Table should be editing + JDK-8171381: [TEST_BUG] [macos] javax/swing/JPopupMenu/ /7156657/bug7156657.java fails on OS X + JDK-8171998: javax/swing/JMenu/4692443/bug4692443.java fails on Windows + JDK-8174819: java/nio/file/WatchService/LotsOfEvents.java fails intermittently + JDK-8179880: Refactor javax/security shell tests to plain java tests + JDK-8180568: Refactor javax/crypto shell tests to plain java tests + JDK-8180569: Refactor sun/security/krb5/ shell tests to plain java tests + JDK-8180571: Refactor sun/security/pkcs11 shell tests to plain java tests and fix failures + JDK-8180573: Refactor sun/security/tools shell tests to plain java tests + JDK-8187649: ArrayIndexOutOfBoundsException in java.util.JapaneseImperialCalendar + JDK-8190753: (zipfs): Accessing a large entry (> 2^31 bytes) leads to a negative initial size for ByteArrayOutputStream + JDK-8195703: BasicJDWPConnectionTest.java: 'App exited unexpectedly with 2' + JDK-8196096: javax/swing/JPopupMenu/6580930/bug6580930.java fails + JDK-8197560: test javax/swing/JTree/8003400/Test8003400.java fails + JDK-8197800: Test java/awt/Focus/NonFocusableWindowTest/ /NoEventsTest.java fails on Windows + JDK-8197811: Test java/awt/Choice/PopupPosTest/ /PopupPosTest.java fails on Windows + JDK-8198616: java/awt/Focus/6378278/InputVerifierTest.java fails on mac + JDK-8198617: java/awt/Focus/6382144/EndlessLoopTest.java fails on mac + JDK-8198619: java/awt/Focus/FocusTraversalPolicy/ /ButtonGroupLayoutTraversal/ButtonGroupLayoutTraversalTest.java fails on mac + JDK-8198623: java/awt/KeyboardFocusmanager/TypeAhead/ /EnqueueWithDialogButtonTest/EnqueueWithDialogButtonTest.java fails on mac + JDK-8198624: java/awt/KeyboardFocusmanager/TypeAhead/ /SubMenuShowTest/SubMenuShowTest.html fails on mac + JDK-8199138: Add RISC-V support to Zero + JDK-8199529: javax/swing/text/Utilities/8142966/ /SwingFontMetricsTest.java fails on windows + JDK-8201224: Make string buffer size dynamic in mlvmJvmtiUtils.c + JDK-8202342: [Graal] fromTonga/nsk/jvmti/unit/ /FollowReferences/followref003/TestDescription.java fails with "Location mismatch" errors + JDK-8204161: [TESTBUG] auto failed with the "Applet thread threw exception: java.lang.UnsupportedOperationException" exception + JDK-8206085: Refactor langtools/tools/javac/versions/Versions.java + JDK-8207936: TestZipFile failed with java.lang.AssertionError exception + JDK-8208242: Add @requires to vmTestbase/gc/g1 tests + JDK-8209611: use C++ compiler for hotspot tests + JDK-8210182: Remove macros for C compilation from vmTestBase but non jvmti + JDK-8210198: Clean up JNI_ENV_ARG for vmTestbase/jvmti/Get[A-F] tests + JDK-8210205: build fails on AIX in hotspot cpp tests (for example getstacktr001.cpp) + JDK-8210242: [TESTBUG] vmTestbase/nsk/stress/jni/ /jnistress001.java crashes with EXCEPTION_ACCESS_VIOLATION on windows-x86 + JDK-8210353: Move java/util/Arrays/TimSortStackSize2.java back to tier1 + JDK-8210385: Clean up JNI_ENV_ARG and factorize the macros for vmTestbase/jvmti[A-N] tests + JDK-8210392: assert(Compile::current()->live_nodes() < Compile::current()->max_node_limit()) failed: Live Node limit exceeded limit + JDK-8210395: Add doc to SecurityTools.java + JDK-8210429: Clean up JNI_ENV_ARG for vmTestbase/jvmti/Get[G-Z] tests + JDK-8210481: Remove #ifdef cplusplus from vmTestbase + JDK-8210593: Clean up JNI_ENV_ARG and factorize the macros for vmTestbase/jvmti[N-R] tests + JDK-8210665: Clean up JNI_ENV_ARG and factorize the macros for vmTestbase/jvmti[R-U] tests + JDK-8210689: Remove the multi-line old C style for string literals + JDK-8210700: Clean up JNI_ENV_ARG and factorize the macros for vmTestbase/jvmti/unit tests + JDK-8210726: Fix up a few minor nits forgotten by JDK-8210665 + JDK-8210920: Native C++ tests are not using CXXFLAGS + JDK-8210984: [TESTBUG] hs203t003 fails with "# ERROR: hs203t003.cpp, 218: NSK_CPP_STUB2 ( ResumeThread, jvmti, thread)" + JDK-8211036: Remove the NSK_STUB macros from vmTestbase for non jvmti + JDK-8211131: Remove the NSK_CPP_STUB macros from vmTestbase for jvmti/[G-I]* + JDK-8211148: var in implicit lambdas shouldn't be accepted for source < 11 + JDK-8211171: move JarUtils to top-level testlibrary + JDK-8211227: Inconsistent TLS protocol version in debug output + JDK-8211261: Remove the NSK_CPP_STUB macros from vmTestbase for jvmti/[A-G]* + JDK-8211432: [REDO] Handle JNIGlobalRefLocker.cpp + JDK-8211782: Remove the NSK_CPP_STUB macros from vmTestbase for jvmti/[I-S]* + JDK-8211801: Remove the NSK_CPP_STUB macros from vmTestbase for jvmti/scenarios/[A-E] + JDK-8211899: Remove the NSK_CPP_STUB macros from vmTestbase for jvmti/scenarios/[E-M] + JDK-8211905: Remove multiple casts for EM06 file + JDK-8211999: Window positioning bugs due to overlapping GraphicsDevice bounds (Windows/HiDPI) + JDK-8212082: Remove the NSK_CPP_STUB macros for remaining vmTestbase/jvmti/[sS]* + JDK-8212083: Handle remaining gc/lock native code and fix two strings + JDK-8212148: Remove remaining NSK_CPP_STUBs + JDK-8213110: Remove the use of applets in automatic tests + JDK-8213189: Make restricted headers in HTTP Client configurable and remove Date by default + JDK-8213263: fix legal headers in test/langtools + JDK-8213296: Fix legal headers in test/jdk/java/net + JDK-8213301: Fix legal headers in jdk logging tests + JDK-8213305: Fix legal headers in test/java/math + JDK-8213306: Fix legal headers in test/java/nio + JDK-8213328: Update test copyrights in test/java/util/zip and test/jdk/tools + JDK-8213330: Fix legal headers in i18n tests + JDK-8213707: [TEST] vmTestbase/nsk/stress/except/ /except011.java failed due to wrong class name + JDK-8214469: [macos] PIT: java/awt/Choice/ /ChoiceKeyEventReaction/ChoiceKeyEventReaction.java fails + JDK-8215410: Regression test for JDK-8214994 + JDK-8215568: Refactor SA clhsdb tests to use ClhsdbLauncher + JDK-8215624: Add parallel heap iteration for jmap \u2013histo + JDK-8215889: assert(!_unloading) failed: This oop is not available to unloading class loader data with ZGC + JDK-8216318: The usage of Disposer in the java.awt.Robot can be deleted + JDK-8216417: cleanup of IPv6 scope-id handling + JDK-8217377: javax/swing/JPopupMenu/6583251/bug6583251.java failed with UnsupportedOperation exception + JDK-8217438: Adapt tools//launcher/Test7029048.java for AIX + JDK-8217633: Configurable extensions with system properties + JDK-8217882: java/net/httpclient/MaxStreams.java failed once + JDK-8217903: java/net/httpclient/Response204.java fails with 404 + JDK-8218483: Crash in "assert(_daemon_threads_count->get_value() > daemon_count) failed: thread count mismatch 5 : 5" + JDK-8219986: Change to Xcode 10.1 for building on Macosx at Oracle + JDK-8220575: Correctly format test URI's that contain a retrieved IPv6 address + JDK-8221259: New tests for java.net.Socket to exercise long standing behavior + JDK-8221305: java/awt/FontMetrics/MaxAdvanceIsMax.java fails on MacOS + Solaris + JDK-8221902: PIT: javax/swing/JRadioButton/FocusTraversal/ /FocusTraversal.java fails on ubuntu + JDK-8221903: PIT: javax/swing/RepaintManager/IconifyTest/ /IconifyTest.java fails on ubuntu18.04 + JDK-8222446: assert(C->env()->system_dictionary_modification_counter_changed()) failed: Must invalidate if TypeFuncs differ + JDK-8223137: Rename predicate 'do_unroll_only()' to 'is_unroll_only()'. + JDK-8223138: Small clean-up in loop-tree support. + JDK-8223139: Rename mandatory policy-do routines. + JDK-8223140: Clean-up in 'ok_to_convert()' + JDK-8223141: Change (count) suffix _ct into _cnt. + JDK-8223400: Replace some enums with static const members in hotspot/runtime + JDK-8223658: Performance regression of XML.validation in 13-b19 + JDK-8223923: C2: Missing interference with mismatched unsafe accesses + JDK-8224829: AsyncSSLSocketClose.java has timing issue + JDK-8225083: Remove Google certificate that is expiring in December 2021 + JDK-8226514: Replace wildcard address with loopback or local host in tests - part 17 + JDK-8226943: compile error in libfollowref003.cpp with XCode 10.2 on macosx + JDK-8228442: DHKeyExchange/LegacyDHEKeyExchange.java failed due to "SSLException: An established connection was aborted by the software in your host machine" + JDK-8228508: [TESTBUG] java/net/httpclient/SmokeTest.java fails on Windows7 + JDK-8229935: [TEST_BUG]: bug8132119.java inconsistently positions text + JDK-8230019: [REDO] compiler/types/correctness/* tests fail with "assert(recv == __null || recv->is_klass()) failed: wrong type" + JDK-8230067: Add optional automatic retry when running jtreg tests + JDK-8230228: [TESTBUG] Several runtime/ErrorHandling tests may fail on some platforms + JDK-8231501: VM crash in MethodData::clean_extra_data(CleanExtraDataClosure*): fatal error: unexpected tag 99 + JDK-8233403: Improve verbosity of some httpclient tests + JDK-8233550: [TESTBUG] JTree tests fail regularly on MacOS + JDK-8233552: [TESTBUG] JTable Test bug7068740.java fails on MacOS + JDK-8233553: [TESTBUG] JSpinner test bug4973721.java fails on MacOS + JDK-8233555: [TESTBUG] JRadioButton tests failing on MacoS + JDK-8233556: [TESTBUG] JPopupMenu tests fail on MacOS + JDK-8233559: [TESTBUG] TestNimbusOverride.java is failing on macos + JDK-8233560: [TESTBUG] ToolTipManager/Test6256140.java is failing on macos + JDK-8233561: [TESTBUG] Swing text test bug8014863.java fails on macos + JDK-8233562: [TESTBUG] Swing StyledEditorKit test bug4506788.java fails on MacOS + JDK-8233564: [TESTBUG] MouseComboBoxTest.java is failing + JDK-8233566: [TESTBUG] KeyboardFocusManager tests failing on MacoS + JDK-8233567: [TESTBUG] FocusSubRequestTest.java fails on macos + JDK-8233569: [TESTBUG] JTextComponent test bug6361367.java fails on macos + JDK-8233570: [TESTBUG] HTMLEditorKit test bug5043626.java is failing on macos + JDK-8233634: [TESTBUG] Swing text test bug4278839.java fails on macos + JDK-8233635: [TESTBUG] ProgressMonitorEscapeKeyPress.java fails on macos + JDK-8233637: [TESTBUG] Swing ActionListenerCalledTwiceTest.java fails on macos + JDK-8233638: [TESTBUG] Swing test ScreenMenuBarInputTwice.java fails on macos + JDK-8233641: [TESTBUG] JMenuItem test bug4171437.java fails on macos + JDK-8233642: [TESTBUG] JMenuBar test bug 4750590.java fails on macos + JDK-8233643: [TESTBUG] JMenu test bug4515762.java fails on macos + JDK-8233644: [TESTBUG] JInternalFrame test bug8020708.java is failing on macos + JDK-8233647: [TESTBUG] JColorChooser/Test8051548.java is failing on macos + JDK-8234802: [TESTBUG] Test Right Mouse Button Drag Gesture Recognition in all the platforms + JDK-8234823: java/net/Socket/Timeouts.java testcase testTimedConnect2() fails on Windows 10 + JDK-8235784: java/lang/invoke/VarHandles/ /VarHandleTestByteArrayAsInt.java fails due to timeout with fastdebug bits + JDK-8236042: [TESTBUG] serviceability/sa/ClhsdbCDSCore.java fails with -Xcomp -XX:TieredStopAtLevel=1 + JDK-8236177: assert(status == 0) failed: error ETIMEDOUT(60), cond_wait + JDK-8236596: HttpClient leaves HTTP/2 sockets in CLOSE_WAIT, when using proxy tunnel + JDK-8237354: Add option to jcmd to write a gzipped heap dump + JDK-8237589: Fix copyright header formatting + JDK-8238677: java/net/httpclient/ssltest/CertificateTest.java should not specify TLS version + JDK-8239334: Tab Size does not work correctly in JTextArea with setLineWrap on + JDK-8239422: [TESTBUG] compiler/c1/TestPrintIRDuringConstruction.java failed when C1 is disabled + JDK-8239827: The test OpenByUNCPathNameTest.java should be changed to be manual + JDK-8240256: Better resource cleaning for SunPKCS11 Provider + JDK-8242044: Add basic HTTP/1.1 support to the HTTP/2 Test Server + JDK-8242526: PIT: javax/swing/JInternalFrame/8020708/ /bug8020708.java fails in mach5 ubuntu system + JDK-8242793: Incorrect copyright header in ContinuousCallSiteTargetChange.java + JDK-8243543: jtreg test security/infra/java/security/cert/ /CertPathValidator/certification/BuypassCA.java fails + JDK-8244292: Headful clients failing with - -illegal-access=deny + JDK-8245147: Refactor and improve utility of test/langtools/tools/javac/versions/Versions.java + JDK-8245165: Update bug id for javax/swing/text/StyledEditorKit/4506788/bug4506788.java in ProblemList + JDK-8245665: Test WeakAlg.java should only make sure no warning for weak signature algorithms by keytool on root CA + JDK-8246114: java/net/MulticastSocket/Promiscuous.java fails after 8241072 (multi-homed systems) + JDK-8246807: Incorrect copyright header in TimeZoneDatePermissionCheck.sh + JDK-8247403: JShell: No custom input (e.g. from GUI) possible with JavaShellToolBuilder + JDK-8247510: typo in IllegalHandshakeMessage + JDK-8248187: [TESTBUG] javax/swing/plaf/basic/ /BasicGraphicsUtils/8132119/bug8132119.java fails with String is not properly drawn + JDK-8248341: ProblemList java/lang/management/ThreadMXBean/ /ThreadMXBeanStateTest.java + JDK-8248500: AArch64: Remove the r18 dependency on Windows AArch64 + JDK-8248899: security/infra/java/security/cert/ /CertPathValidator/certification/QuoVadisCA.java fails, Certificate has been revoked + JDK-8249195: Change to Xcode 11.3.1 for building on Macos at Oracle + JDK-8250521: Configure initial RTO to use minimal retry for loopback connections on Windows + JDK-8250810: Push missing parts of JDK-8248817 + JDK-8250839: Improve test template SSLEngineTemplate with SSLContextTemplate + JDK-8250863: Build error with GCC 10 in NetworkInterface.c and k_standard.c + JDK-8250888: nsk/jvmti/scenarios/general_functions/GF08/ /gf08t001/TestDriver.java fails + JDK-8251155: HostIdentifier fails to canonicalize hostnames starting with digits + JDK-8251377: [macos11] JTabbedPane selected tab text is barely legible + JDK-8251570: JDK-8215624 causes assert(worker_id < _n_workers) failed: Invalid worker_id + JDK-8251930: AArch64: Native types mismatch in hotspot + JDK-8252049: Native memory leak in ciMethodData ctor + JDK-8252051: Make mlvmJvmtiUtils strncpy uses GCC 10.x friendly + JDK-8252114: Windows-AArch64: Enable and test ZGC and ShenandoahGC + JDK-8253015: Aarch64: Move linux code out from generic CPU feature detection + JDK-8253147: The javax/swing/JPopupMenu/7154841/bug7154841.java fail on big screens + JDK-8253497: Core Libs Terminology Refresh + JDK-8253682: The AppletInitialFocusTest1.java is unstable + JDK-8253763: ParallelObjectIterator should have virtual destructor + JDK-8253866: Security Libs Terminology Refresh + JDK-8254802: ThrowingPushPromisesAsStringCustom.java fails in "try throwing in GET_BODY" + JDK-8255227: java/net/httpclient/FlowAdapterPublisherTest.java intermittently failing with TestServer: start exception: java.io.IOException: Invalid preface + JDK-8255264: Support for identifying the full range of IPv4 localhost addresses on Windows + JDK-8255716: AArch64: Regression: JVM crashes if manually offline a core + JDK-8255722: Create a new test for rotated blit + JDK-8256009: Remove src/hotspot/share/adlc/Test/i486.ad + JDK-8256066: Tests use deprecated TestNG API that is no longer available in new versions + JDK-8256152: tests fail because of ambiguous method resolution + JDK-8256182: Update qemu-debootstrap cross-compilation recipe + JDK-8256201: java/awt/FullScreen/FullscreenWindowProps/ /FullscreenWindowProps.java failed + JDK-8256202: Some tweaks for jarsigner tests PosixPermissionsTest and SymLinkTest + JDK-8256372: [macos] Unexpected symbol was displayed on JTextField with Monospaced font + JDK-8256956: RegisterImpl::max_slots_per_register is incorrect on AMD64 + JDK-8258457: testlibrary_tests/ctw/JarDirTest.java fails with InvalidPathException on windows + JDK-8258855: Two tests sun/security/krb5/auto/ /ReplayCacheTestProc.java and ReplayCacheTestProcWithMD5.java failed on OL8.3 + JDK-8259237: Demo selection changes with left/right arrow key. No need to press space for selection. + JDK-8260571: Add PrintMetaspaceStatistics to print metaspace statistics upon VM exit + JDK-8260690: JConsole User Guide Link from the Help menu is not accessible by keyboard + JDK-8261036: Reduce classes loaded by CleanerFactory initialization + JDK-8261071: AArch64: Refactor interpreter native wrappers + JDK-8261075: Create stubRoutines.inline.hpp with SafeFetch implementation + JDK-8261236: C2: ClhsdbJstackXcompStress test fails when StressGCM is enabled + JDK-8261297: NMT: Final report should use scale 1 + JDK-8261661: gc/stress/TestReclaimStringsLeaksMemory.java fails because Reserved memory size is too big + JDK-8261916: gtest/GTestWrapper.java vmErrorTest.unimplemented1_vm_assert failed + JDK-8262438: sun/security/ssl/SSLLogger/ /LoggingFormatConsistency.java failed with "SocketException: Socket is closed" + JDK-8262731: [macOS] Exception from "Printable.print" is swallowed during "PrinterJob.print" + JDK-8262844: (fs) FileStore.supportsFileAttributeView might return false negative in case of ext3 + JDK-8263059: security/infra/java/security/cert/ /CertPathValidator/certification/ComodoCA.java fails due to revoked cert + JDK-8263068: Rename safefetch.hpp to safefetch.inline.hpp + JDK-8263303: C2 compilation fails with assert(found_sfpt) failed: no node in loop that's not input to safepoint + JDK-8263362: Avoid division by 0 in java/awt/font/TextJustifier.java justify + JDK-8263773: Reenable German localization for builds at Oracle + JDK-8263897: compiler/c2/aarch64/TestVolatilesSerial.java failed with "java.lang.RuntimeException: Wrong method" + JDK-8264526: javax/swing/text/html/parser/Parser/8078268/ /bug8078268.java timeout + JDK-8264824: java/net/Inet6Address/B6206527.java doesn't close ServerSocket properly + JDK-8265019: Update tests for additional TestNG test permissions + JDK-8265173: [test] divert spurious log output away from stream under test in ProcessBuilder Basic test + JDK-8265524: Upgrading JSZip from v3.2.2 to v3.6.0 + JDK-8266182: Automate manual steps listed in the test jdk/sun/security/pkcs12/ParamsTest.java + JDK-8266579: Update test/jdk/java/lang/ProcessHandle/ /PermissionTest.java & test/jdk/java/sql/testng/util/ /TestPolicy.java + JDK-8266949: Check possibility to disable OperationTimedOut on Unix + JDK-8267246: -XX:MaxRAMPercentage=0 is unreasonable for jtreg tests on many-core machines + JDK-8267256: Extend minimal retry for loopback connections on Windows to PlainSocketImpl + JDK-8267304: Bump global JTReg memory limit to 768m + JDK-8267652: c2 loop unrolling by 8 results in reading memory past array + JDK-8268019: C2: assert(no_dead_loop) failed: dead loop detected + JDK-8268093: Manual Testcase: "sun/security/krb5/config/ /native/TestDynamicStore.java" Fails with NPE + JDK-8268555: Update HttpClient tests that use ITestContext to jtreg 6+1 + JDK-8268672: C2: assert(!loop->is_member(u_loop)) failed: can be in outer loop or out of both loops only + JDK-8269034: AccessControlException for SunPKCS11 daemon threads + JDK-8269426: Rename test/jdk/java/lang/invoke/t8150782 to accessClassAndFindClass + JDK-8269574: C2: Avoid redundant uncommon traps in GraphKit::builtin_throw() for JVMTI exception events + JDK-8269656: The test test/langtools/tools/javac/versions/ /Versions.java has duplicate test cycles + JDK-8269768: JFR Terminology Refresh + JDK-8269951: [macos] Focus not painted in JButton when setBorderPainted(false) is invoked + JDK-8269984: [macos] JTabbedPane title looks like disabled + JDK-8269993: [Test]: java/net/httpclient/ /DigestEchoClientSSL.java contains redundant @run tags + JDK-8270116: Expand ButtonGroupLayoutTraversalTest.java to run in all LaFs, including Aqua on macOS + JDK-8270216: [macOS] Update named used for Java run loop mode + JDK-8270280: security/infra/java/security/cert/ /CertPathValidator/certification/LetsEncryptCA.java OCSP response error + JDK-8270290: NTLM authentication fails if HEAD request is used + JDK-8270317: Large Allocation in CipherSuite + JDK-8270344: Session resumption errors + JDK-8270517: Add Zero support for LoongArch + JDK-8270533: AArch64: size_fits_all_mem_uses should return false if its output is a CAS + JDK-8270886: Crash in PhaseIdealLoop::verify_strip_mined_scheduling + JDK-8271287: jdk/jshell/CommandCompletionTest.java fails with "lists don't have the same size expected" + JDK-8271340: Crash PhaseIdealLoop::clone_outer_loop + JDK-8271341: Opcode() != Op_If && Opcode() != Op_RangeCheck) || outcnt() == 2 assert failure with Test7179138_1.java + JDK-8271459: C2: Missing NegativeArraySizeException when creating StringBuilder with negative capacity + JDK-8271490: [ppc] [s390]: Crash in JavaThread::pd_get_top_frame_for_profiling + JDK-8271560: sun/security/ssl/DHKeyExchange/ /LegacyDHEKeyExchange.java still fails due to "An established connection was aborted by the software in your host machine" + JDK-8271567: AArch64: AES Galois CounterMode (GCM) interleaved implementation using vector instructions + JDK-8272180: Upgrade JSZip from v3.6.0 to v3.7.1 + JDK-8272181: Windows-AArch64:Backport fix of `Backtracing broken on PAC enabled systems` + JDK-8272316: Wrong Boot JDK help message in 11 + JDK-8272318: Improve performance of HeapDumpAllTest + JDK-8272342: [TEST_BUG] java/awt/print/PrinterJob/ /PageDialogMarginTest.java catches all exceptions + JDK-8272570: C2: crash in PhaseCFG::global_code_motion + JDK-8272574: C2: assert(false) failed: Bad graph detected in build_loop_late + JDK-8272581: sun/security/pkcs11/Provider/MultipleLogins.sh fails after JDK-8266182 + JDK-8272708: [Test]: Cleanup: test/jdk/security/infra/java/ /security/cert/CertPathValidator/certification/BuypassCA.java no longer needs ocspEnabled + JDK-8272720: Fix the implementation of loop unrolling heuristic with LoopPercentProfileLimit + JDK-8272783: Epsilon: Refactor tests to improve performance + JDK-8272806: [macOS] "Apple AWT Internal Exception" when input method is changed + JDK-8272828: Add correct licenses to jszip.md + JDK-8272836: Limit run time for java/lang/invoke/LFCaching tests + JDK-8272850: Drop zapping values in the Zap* option descriptions + JDK-8272902: Bump update version for OpenJDK: jdk-11.0.14 + JDK-8272914: Create hotspot:tier2 and hotspot:tier3 test groups + JDK-8272966: test/jdk/java/awt/Robot/FlushCurrentEvent.java fails by timeout + JDK-8273026: Slow LoginContext.login() on multi threading application + JDK-8273229: Update OS detection code to recognize Windows Server 2022 + JDK-8273235: tools/launcher/HelpFlagsTest.java Fails on Windows 32bit + JDK-8273308: PatternMatchTest.java fails on CI + JDK-8273314: Add tier4 test groups + JDK-8273342: Null pointer dereference in classFileParser.cpp:2817 + JDK-8273358: macOS Monterey does not have the font Times needed by Serif + JDK-8273373: Zero: Cannot invoke JVM in primordial threads on Zero + JDK-8273498: compiler/c2/Test7179138_1.java timed out + JDK-8273541: Cleaner Thread creates with normal priority instead of MAX_PRIORITY - 2 + JDK-8273547: [11u] [JVMCI] Partial module-info.java backport of JDK-8223332 + JDK-8273606: Zero: SPARC64 build fails with si_band type mismatch + JDK-8273646: Add openssl from path variable also in to Default System Openssl Path in OpensslArtifactFetcher + JDK-8273671: Backport of 8260616 misses one JNF header inclusion removal + JDK-8273790: Potential cyclic dependencies between Gregorian and CalendarSystem + JDK-8273795: Zero SPARC64 debug builds fail due to missing interpreter fields + JDK-8273826: Correct Manifest file name and NPE checks + JDK-8273894: ConcurrentModificationException raised every time ReferralsCache drops referral + JDK-8273924: ArrayIndexOutOfBoundsException thrown in java.util.JapaneseImperialCalendar.add() + JDK-8273961: jdk/nio/zipfs/ZipFSTester.java fails if file path contains '+' character + JDK-8273968: JCK javax_xml tests fail in CI + JDK-8274056: JavaAccessibilityUtilities leaks JNI objects + JDK-8274083: Update testing docs to mention tiered testing + JDK-8274293: Build failure on macOS with Xcode 13.0 as vfork is deprecated + JDK-8274326: [macos] Ensure initialisation of sun/lwawt/ /macosx/CAccessibility in JavaComponentAccessibility.m + JDK-8274329: Fix non-portable HotSpot code in MethodMatcher::parse_method_pattern + JDK-8274381: missing CAccessibility definitions in JNI code + JDK-8274407: (tz) Update Timezone Data to 2021c + JDK-8274467: TestZoneInfo310.java fails with tzdata2021b + JDK-8274468: TimeZoneTest.java fails with tzdata2021b + JDK-8274522: java/lang/management/ManagementFactory/ /MXBeanException.java test fails with Shenandoah + JDK-8274642: jdk/jshell/CommandCompletionTest.java fails with NoSuchElementException after JDK-8271287 + JDK-8274773: [TESTBUG] UnsafeIntrinsicsTest intermittently fails on weak memory model platform + JDK-8274779: HttpURLConnection: HttpClient and HttpsClient incorrectly check request method when set to POST + JDK-8274840: Update OS detection code to recognize Windows 11 + JDK-8274860: gcc 10.2.1 produces an uninitialized warning in sharedRuntimeTrig.cpp + JDK-8275051: Shenandoah: Correct ordering of requested gc cause and gc request flag + JDK-8275131: Exceptions after a touchpad gesture on macOS + JDK-8275713: TestDockerMemoryMetrics test fails on recent runc + JDK-8275766: (tz) Update Timezone Data to 2021e + JDK-8275849: TestZoneInfo310.java fails with tzdata2021e + JDK-8276066: Reset LoopPercentProfileLimit for x86 due to suboptimal performance + JDK-8276139: TestJpsHostName.java not reliable, better to expand HostIdentifierCreate.java test + JDK-8276157: C2: Compiler stack overflow during escape analysis on Linux x86_32 + JDK-8276201: Shenandoah: Race results degenerated GC to enter wrong entry point + JDK-8276536: Update TimeZoneNames files to follow the changes made by JDK-8275766 + JDK-8276550: Use SHA256 hash in build.tools.depend.Depend + JDK-8276774: Cookie stored in CookieHandler not sent if user headers contain cookie + JDK-8276854: Windows GHA builds fail due to broken Cygwin + JDK-8277029: JMM GetDiagnosticXXXInfo APIs should verify output array sizes + JDK-8277224: sun.security.pkcs.PKCS9Attributes.toString() throws NPE + JDK-8277529: SIGSEGV in C2 CompilerThread Node::rematerialize() compiling Packet::readUnsignedTrint + JDK-8277815: Fix mistakes in legal header backports - Removed patch: * riscv64-zero.patch + integrated upstream - Modified patch: * fips.patch + rediff to changed context ==== kbd ==== Subpackages: kbd-legacy - use bash for invoking bash scripts ==== kdump ==== Version update (1.0 -> 1.0.2) - kdump-calibrate.conf-depends-on-kdumptool.patch: calibrate.conf: Add dependency on kdumptool. - kdump-calibrate-fix-nic-naming.patch: calibrate: Fix network interface naming. - kdump-calibrate-include-af_packet.patch: calibrate: Explicitly include af_packet in the test initrd. - Update to 1.0.2 * Adjust crash kernel reservation at boot time (jsc#SLE-18441). - All remaining patches have been upstreamed: * kdump-fillupdir-fixes.patch * kdump-use-pbl.patch * kdump-calibrate-Ignore-malformed-VMCOREINFO.patch ==== lcms2 ==== Version update (2.12 -> 2.13) - Update to 2.13: * Added support for premultiplied alpha * tifficc can now handle alpha channels, both unassociated and premultiplied * CGATS parser can now deal with very long strings * Added Projects for Visual Studio 2020 * Added ARM64 target to visual studio 2019 (thanks to gaborkertesz-linaro) * Added thread safe code to get time * Added automatic linear space detection * Added cmsGetStageContextID function * Added cmsDetectRGBProfileGamma function * configure now accepts --without-fastfloat to turn plugin off * Checked to work on STM32 Cortex-A, Cortex-M families * Bug & typos fixing (thanks to many reporters and contributors) - Rebase lcms2-visibility.patch ==== ldns ==== Version update (1.7.1 -> 1.8.1) Subpackages: libldns3 - new version 1.8.1 + 1.8.1 2021-12-03 * bugfix #146: ldns-1.7.1 had soname 3.0, so ldns-1.8.x soname needs to larger. * Undo PR#123 fix ldns.pc installation when building out-of-source + 1.8.0 2021-11-26 * bugfix #38: Print "line" before line number when printing zone parse errors. Thanks Petr ?pa?ek. * bugfix: Revert unused variables in ldns-config removal patch. * bugfix #50: heap Out-of-bound Read vulnerability in rr_frm_str_internal reported by pokerfacett. (bsc#1195057, CVE-2020-19860) * bugfix #51: Heap Out-of-bound Read vulnerability in ldns_nsec3_salt_data reported by pokerfacett. (bsc#1195058, CVE-2020-19861) * Fix memory leak in examples/ldns-testns handle_tcp routine. * Detect fixed time memory compare for openssl 0.9.8. * Fix compile warning by variable initialisation for older gcc. * Fix #92: ldns-testns.c:429:15: error: 'fork' is unavailable: not available on tvOS. * Fix for #93: fix packaging/libldns.pc Makefile rule. * ZONEMD support in ldns-signzone and ldns-verify-zone * ldns-testns can answer several queries over one tcp connection, if they arrive within 100msec of each other. * Fix so that ldns-testns does not leak sockets if the read fails. * SVCB and HTTPS draft rrtypes. Enable with --enable-rrtype-svcb-https. * bugfix #117: Assertion failure with DNSSEC validating of non existence of RR types at the root. Thanks ZjYwMj * Set NSEC(3) ttls to the minimum of the MINIMUM field of the SOA record and the TTL of the SOA itself. draft-ietf-dnsop-nsec-ttl * bugfix #119: Let example tools read longer RR's than LDNS_MAX_LINELEN * Add SVCPARAMS to python ldns_rdf_type2str function. * PR #134 Miscellaneous spelling fixes. Thanks jsoref! * Fix that ldns-read-zone and ldns_zone_new_frm_fp_l properly return the $INCLUDE not implemented error. * Fix that ldns-read-zone and ldns_zone_new_frm_fp_l count the line number for an empty line after a comment. * Fix #135: Fix compile with OpenSSL-3.0.0-beta2. * PR #107: Added ldns_pkt2buffer_wire_compress() to make dname compression optional when converting packets to wire format. Thanks Eli Lindsey * Option to ldns-keygen to create symlinks with known names (i.e. without the key id) to the created files. Thanks Andreas Schulze * Fix #121: Correct handling of centimetres by LOC parser. Thanks Felipe Gasper * PR #126: Link with libldns.la in Makefile.in. Thanks orbea * PR #127: Addes option -Q to drill to give short answer. Thanks niknah * PR #133: Update m4 files for python modules. Thanks Petr Men?ík * Bufix CAA value fields may be empty: Thanks Robert Mortimer * PR #108: Fix for ldns-compare-zones net detecting when first zone has a RRset that shrinks from two to one RRs, or grows from one to two RRs. Thanks Emilio Caballero * Fix #131: Drill sig chasing breaks with gcc-11 and strict-aliasing. Thanks Stanislav Levin * Fix #130: Unless $TLL is defined, ttl defaults to the last explicitly stated value. Thanks Benno * Fix #48: Missing UNSIGNED legend with drill. Thanks reedjc * Fix #143: EVP_PKEY_base_id became a macro with OpenSSL > 3.0 Thanks Daniel J. Luke * Let ldns-signzone warn for high NSEC3 iteration counts. Thanks Andreas Schulze ==== libcap ==== Version update (2.62 -> 2.63) Subpackages: libcap2 libcap2-32bit - update to 2.63: * restore errno to zero by the time main() is executed * Consistent psx handling (a panic) for syscalls that return thread dependent status Inconsistend behavior noticed by Lorenz Bauer * Add a test case for a deadlock under investigation in golang * Trim some of the #include file use to make the tree compile more efficiently ==== libnvme ==== Version update (1.0~0 -> 1.0~2) - Update to version 1.0~2: * Add fabrics config option 'tls' * Logging infrastructure reworked (API break) * Changed argument structs layout (API break) * Changed scan API (API break) * Fixed ctrl_loss_tmo handling concerning values of '-1' * Various build fixes ==== libopenmpt ==== Version update (0.5.14 -> 0.6.1) - Update to 0.6.1: * [Bug] Possible hang with malformed DMF, DSM, MED, MUS, OKT and SymMOD files containing 65536 or more patterns when destroying the module. * [Bug] Avoid NaNs and infinite values with custom tunings and in the I3DL2Reverb plugin. * MIDI macros are now evaluated when seeking. * The letter ?z? is now evaluated in fixed MIDI macros (Z80?ZFF) the same way as in Impulse Tracker. * MOD: Loosened VBlank timing heuristics so that ?frame of mind? by Dascon plays correctly. * MOD: Validate the contents of ?hidden? patterns beyond the end of the order list when the file size matches the expected size when only taken ?official? patterns into account. This fixes Shofixti Ditty.mod from Star Control 2 while keeping other (partly broken) modules working. * MED: Command 20 (reverse sample) is now only applied when it?s next to a note. * S3M: Introducing the ?Send OPL key-off when triggering notes? compatibility setting broke retrigger for OPL notes again (they retriggered rather than not retriggering). * S3M: Retriggering a note no longer resets its pitch after a portamento. * S3M: Partially implement retrigger behaviour for stopped notes in SoundBlaster mode: Like in IT, it is not possible to retrigger a sample that has already stopped playing. * DIGI: Improve compatibility with E3x reverse sample command. * DSym: Tempos < 32 were treated as tempo slides. * SymMOD: Key-off command was not implemented properly. - Changes in 0.6.0: * [New] MUS files from Psycho Pinball and Micro Machines 2 are now supported. * [New] SymMOD files created with Symphonie / Symphonie Pro are now supported. * [New] FMT files created with Davey W Taylor?s FM Tracker are now supported. * [New] DSYM files created with Digital Symphony are now supported. * [New] STX files (transitional format between Scream Tracker 2 and 3) are now supported. * [New] TakeTracker MODs with TDZ1 to TDZ3 magic bytes are now supported. * [New] libopenmpt_ext: New interface interactive2 adding openmpt::ext::interactive2::note_off(), openmpt::ext::interactive2::note_fade(), openmpt::ext::interactive2::set_channel_panning(), openmpt::ext::interactive2::get_channel_panning(), openmpt::ext::interactive2::set_note_finetune(), and openmpt::ext::interactive2::get_note_finetune() (C++) and openmpt_module_ext_interface_interactive2.note_off(), openmpt_module_ext_interface_interactive2.note_fade(), openmpt_module_ext_interface_interactive2.set_channel_panning(), openmpt_module_ext_interface_interactive2.get_channel_panning(), openmpt_module_ext_interface_interactive2.set_note_finetune(), and openmpt_module_ext_interface_interactive2.get_note_finetune() (C). * [Change] libopenmpt no longer generates internal interpolation tables on library load time, but instead only on first module load time. * libopenmpt can now detect infinite pattern loops and treats them as the song end. This means that setting a repeat count other than -1 now always guarantees that playback will eventually end. The song loop counter is decremented each time it ends up at the start of the infinite loop, so the song does not restart from the beginning even if the repeat count is not 0. * openmpt::module::set_position_seconds() accuracy has been improved for modules with pattern loops. * Samples played at the wrong volume when rendering modules in mono. * IT: Portamentos in files with Linear Slides disabled are now more accurate. * IT: Pitch/Pan Separation was affected by note-off commands, and wasn?t reset by panning commands like in Impulse Tracker. * IT: Even after libopenmpt 0.5.14 the filter reset logic was still not 100% identical to Impulse Tracker: A note triggered on tick 0 of a row with a Pattern Delay effect still caused the filter to be reset on repetitions of that row even though the note wasn?t retriggered. * IT: Added read-only support for BeRoTracker commands 1 and 2 (equivalent to XM commands K and L). * XM: BeRoTracker saves smooth MIDI macros in a different way from OpenMPT. This command is now imported correctly. * XM: Emulate FT2 Tone Portamento quirk that inverts portamento direction after the target was reached (if target note was higher than previous note). * S3M files saved with Impulse Tracker and latest Schism Tracker now also compute sample playback speed in Hertz. * Depending on whether an S3M file was last saved in Scream Tracker with the Sound Blaster or Gravis Ultrasound drivers loaded, different compatibility flags are now applied. For files saved with the GUS, the sample volume factor is now also ignored (fixes volume levels in S3Ms made on the GUS, in particular if they use both samples and OPL instruments). * S3M: Enforce the lower frequency bound. * MOD: Loosened VBlank timing heuristics so that the original copy of Guitar Slinger from Dizzy Tunes II plays correctly. * FAR: Correct portamento depth is now used. * DMF / IMF: Improved accuracy of finetune commands. * MDL: Implemented finetune command. * OKT: Various accuracy improvements such as: Sharing volume between mixed channels, volume commands on mixed channels are permanent (not reset with new notes), mixed channels do not support default sample volume, 7-bit samples are actually supposed to be played as-is (not amplified to full 8-bit range), reject speed command parameters >= 20. ==== libplacebo ==== Version update (4.192.0 -> 4.192.1) - Update libplacebo to version 4.192.1. See details in: https://code.videolan.org/videolan/libplacebo/-/tags/v4.192.1 - Update nuklear.h to 4.9.5 - Add dav1d dependency ==== libwebp ==== Version update (1.2.1 -> 1.2.2) Subpackages: libwebp7 libwebpdemux2 libwebpmux3 - update to 1.2.2: * webpmux: add "-set bgcolor A,R,G,B" * add ARM64 NEON support for MSVC builds (#539) * doc updates and bug fixes (#538, #544, #548, #550) ==== libzypp ==== Version update (17.28.8 -> 17.29.3) - Public header files on older distros must use c++11 (bsc#1194597) - Fix exception handling when reading or writing credentials (bsc#1194898) - version 17.29.3 (22) - Fix Legacy include (bsc#1194597) - version 17.29.2 (22) - Fix broken install path for parser compat headers (fixes #372, bsc#1194597) - RepoManager: remember exec errors in exception history (bsc#1193007) - version 17.29.1 (22) - Use the default zypp.conf settings if no zypp.conf exists (bsc#1193488) - Fix wrong encoding of iso: URL components (bsc#954813) - Handle armv8l as armv7hl compatible userland. - Introduce zypp-curl a sublibrary for CURL related code. - zypp-rpm: Increase rpm loglevel if ZYPP_RPM_DEBUG is set. - Save all signatures associated with a public key in its PublicKeyData. - version 17.29.0 (22) ==== multipath-tools ==== Version update (0.8.8+13+suse.79c3556f -> 0.8.8+45+suse.628d603e) Subpackages: kpartx libmpath0 - Version 0.8.8+45+suse.628d603e * fix handling of historical-service-time path selector (bsc#1195425) * fix marking multipath devices as failed prematurely on startup (bsc#1195426) * multipathd.service: remove LimitCORE=infinity directive This should only be enabled for debugging. * multipathd.service: don't load scsi_dh modules (bsc#1195397) This is done via modules-load.d functionality on (open)SUSE - Upstream fixes: * Fix claiming of paths with "find_multipaths strict" * Avoid unnecessary read-only reloads ==== nvme-cli ==== Version update (2.0~0 -> 2.0~2) Subpackages: nvme-cli-bash-completion nvme-cli-zsh-completion - Update to version 2.0~2: * Adapt to logging API changes in libnvme * Adapt to scan API changes in libnvme * Reworked error message handling * Fix 'list-ns' (bsc#1195151) * Add 'gen-tls-key' and 'check-tls-key' * Add Media Unit Status log page support * Cleanups and build fixes - Fix path to systemctl (bsc#1193699) ==== openblas_pthreads ==== - Partly revert: Thu Jul 8 12:35:35 UTC 2021 - Dominique Leuenberger - Do not create dummy symlinks on $self in /etc/alternatives: those files are packages as %ghost and any real file existance only confuses brp-checks, as it detects circular symlinks. for all suse_versions < current Factory in an attempt to fix bsc#1195232. ==== orca ==== Version update (41.1 -> 41.2) Subpackages: orca-lang - Update to version 41.2: + Web: Fix bug causing widgets descending from off-screen label elements to be skipped over. + General: - Fix bug causing accessing preferences to fail for Esperanto. - Add more event-flood detection and handling for improved performance. ==== pipewire ==== Version update (0.3.44 -> 0.3.45) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 0.3.45: * Highlights - Zoom, telegram and other apps should be able to play sound again. - Implement a better way to force and lock JACK buffersize. - Default sink and source names and properties are improved. - The config loader can now load and merge fragments in conf.d directories for easier user configuration of config files. - Many small bug fixes and improvements. * PipeWire - pw-cli can now also send Commands to nodes. This can be used to Suspend a device, for example. - The eventfd was removed from loops and invoke is now used to stop the loop, this saves an fd. - New Alpine CI target to test musl builds, various build fixes. - Add force-quantum and force-rate properties. - The config loader can now load and merge fragments in conf.d directories. (#207) - resource error methods can be called without a resource and then just log an error message. - link-factory can now also work from the config. (#2095) * modules - module-simple-protocol has better argument parsing and can handle channelmap now. (#2068) It's also possible to configure latency and rate. - The native protocol now does extra checks for invalid data. (#2070) * ALSA - TI2902 chips as found in various Behringer cards should have inputs again. - Better handling of busy devices in udev, retry when the inotify close event is emited. * SPA - plugins now handle alignment properly and only expect the max alignment required for the CPU. (#2074) * Bluetooth - SBC-XQ is now enabled for the JBL Endurance RUN BT headset. - Support for non-hexadecimal XAPL version strings to improve compatibility. - Use HCI commands again to probe the adapter msbc capability. This improves compatibility with some adapters. (#2030) - Set the right startup volume. - Better A2DP source idle handling. - Fix a timer bug in SCO sink that could cause busy looping. * pulse-server - A playback issue when the tlength > maxlength was fixed. (#2069) This affected Zoom and other applications. - The STREAM_BUFFER_ATTR command is now implemented. - Module names are improved. (#2076) - Many small fixes and improvements. - Fix a pavucontrol crash with invalid channels. (#1442) * JACK - Use the new force-quantum and force-rate properties in the JACK API to switch quantum and ensure it can't change for the lifetime of the JACK app. (#2079) - Rebase patch: * reduce-meson-dependency.patch - pipewire should be a true dependency, not just recommended (e.g., so that any setup that use no-recommends, like MicroOS, also work) ==== plymouth ==== Subpackages: libply-boot-client5 libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner - Add plymouth-watermark-config.patch: Add two-step theme watermark configuration support, make the tumbleweed watermark could show in the boot splash (bsc#1189613). - Add plymouth-quiet-dracut-build-info.patch: Avoid the dracut building info which is useless for plymouth(bsc#1189613). - Add plymouth-install-label-library-and-font-file-to-initrd.patch: Compress label.so and current theme's font into initrd to avoid prompt disappear when the folder in which has been encrypt (boo#1183425). ==== python-black ==== - Unpin tomli and pathspec * black-pr2718-unpin.patch -- gh#psf/black#2718 * gh#psf/black#2703 - Remove obsolete python36 flavor expression - Update requirements for Python 3.6 distros ==== python-boto3 ==== Version update (1.20.40 -> 1.20.46) - Update to version 1.23.46 * api-change:``appconfigdata``: [``botocore``] Documentation updates for AWS AppConfig Data. * api-change:``athena``: [``botocore``] This release adds a field, AthenaError, to the GetQueryExecution response object when a query fails. * api-change:``appconfig``: [``botocore``] Documentation updates for AWS AppConfig * api-change:``cognito-idp``: [``botocore``] Doc updates for Cognito user pools API Reference. * api-change:``secretsmanager``: [``botocore``] Feature are ready to release on Jan 28th * api-change:``sagemaker``: [``botocore``] This release added a new NNA accelerator compilation support for Sagemaker Neo. - from version 1.20.45 * api-change:``ec2``: [``botocore``] X2ezn instances are powered by Intel Cascade Lake CPUs that deliver turbo all core frequency of up to 4.5 GHz and up to 100 Gbps of networking bandwidth * api-change:``kafka``: [``botocore``] Amazon MSK has updated the CreateCluster and UpdateBrokerStorage API that allows you to specify volume throughput during cluster creation and broker volume updates. * api-change:``connect``: [``botocore``] This release adds support for configuring a custom chat duration when starting a new chat session via the StartChatContact API. The default value for chat duration is 25 hours, minimum configurable value is 1 hour (60 minutes) and maximum configurable value is 7 days (10,080 minutes). * api-change:``amplify``: [``botocore``] Doc only update to the description of basicauthcredentials to describe the required encoding and format. * api-change:``opensearch``: [``botocore``] Allows customers to get progress updates for blue/green deployments - from version 1.20.44 * api-change:``frauddetector``: [``botocore``] Added new APIs for viewing past predictions and obtaining prediction metadata including prediction explanations: ListEventPredictions and GetEventPredictionMetadata * api-change:``ebs``: [``botocore``] Documentation updates for Amazon EBS Direct APIs. * api-change:``codeguru-reviewer``: [``botocore``] Added failure state and adjusted timeout in waiter * api-change:``securityhub``: [``botocore``] Adding top level Sample boolean field * api-change:``sagemaker``: [``botocore``] API changes relating to Fail steps in model building pipeline and add PipelineExecutionFailureReason in PipelineExecutionSummary. - from version 1.20.43 * api-change:``fsx``: [``botocore``] This release adds support for growing SSD storage capacity and growing/shrinking SSD IOPS for FSx for ONTAP file systems. * api-change:``efs``: [``botocore``] Update efs client to latest version * api-change:``connect``: [``botocore``] This release adds support for custom vocabularies to be used with Contact Lens. Custom vocabularies improve transcription accuracy for one or more specific words. * api-change:``guardduty``: [``botocore``] Amazon GuardDuty expands threat detection coverage to protect Amazon Elastic Kubernetes Service (EKS) workloads. - from version 1.20.42 * api-change:``route53-recovery-readiness``: [``botocore``] Updated documentation for Route53 Recovery Readiness APIs. - from version 1.20.41 * enhancement:Exceptions: [``botocore``] ProxyConnectionError previously provided the full proxy URL. User info will now be appropriately masked if needed. * api-change:``mediaconvert``: [``botocore``] AWS Elemental MediaConvert SDK has added support for 4K AV1 output resolutions & 10-bit AV1 color, the ability to ingest sidecar Dolby Vision XML metadata files, and the ability to flag WebVTT and IMSC tracks for accessibility in HLS. * api-change:``transcribe``: [``botocore``] Add support for granular PIIEntityTypes when using Batch ContentRedaction. ==== python-botocore ==== Version update (1.23.40 -> 1.23.46) - Version to update to 1.23.46 * api-change:``appconfigdata``: Documentation updates for AWS AppConfig Data. * api-change:``athena``: This release adds a field, AthenaError, to the GetQueryExecution response object when a query fails. * api-change:``appconfig``: Documentation updates for AWS AppConfig * api-change:``cognito-idp``: Doc updates for Cognito user pools API Reference. * api-change:``secretsmanager``: Feature are ready to release on Jan 28th * api-change:``sagemaker``: This release added a new NNA accelerator compilation support for Sagemaker Neo. - from version 1.23.45 * api-change:``ec2``: X2ezn instances are powered by Intel Cascade Lake CPUs that deliver turbo all core frequency of up to 4.5 GHz and up to 100 Gbps of networking bandwidth * api-change:``kafka``: Amazon MSK has updated the CreateCluster and UpdateBrokerStorage API that allows you to specify volume throughput during cluster creation and broker volume updates. * api-change:``connect``: This release adds support for configuring a custom chat duration when starting a new chat session via the StartChatContact API. The default value for chat duration is 25 hours, minimum configurable value is 1 hour (60 minutes) and maximum configurable value is 7 days (10,080 minutes). * api-change:``amplify``: Doc only update to the description of basicauthcredentials to describe the required encoding and format. * api-change:``opensearch``: Allows customers to get progress updates for blue/green deployments - from version 1.23.44 * api-change:``frauddetector``: Added new APIs for viewing past predictions and obtaining prediction metadata including prediction explanations: ListEventPredictions and GetEventPredictionMetadata * api-change:``ebs``: Documentation updates for Amazon EBS Direct APIs. * api-change:``codeguru-reviewer``: Added failure state and adjusted timeout in waiter * api-change:``securityhub``: Adding top level Sample boolean field * api-change:``sagemaker``: API changes relating to Fail steps in model building pipeline and add PipelineExecutionFailureReason in PipelineExecutionSummary. - from version 1.23.43 * api-change:``fsx``: This release adds support for growing SSD storage capacity and growing/shrinking SSD IOPS for FSx for ONTAP file systems. * api-change:``efs``: Update efs client to latest version * api-change:``connect``: This release adds support for custom vocabularies to be used with Contact Lens. Custom vocabularies improve transcription accuracy for one or more specific words. * api-change:``guardduty``: Amazon GuardDuty expands threat detection coverage to protect Amazon Elastic Kubernetes Service (EKS) workloads. - from version 1.23.42 * api-change:``route53-recovery-readiness``: Updated documentation for Route53 Recovery Readiness APIs. - from version 1.23.41 * enhancement:Exceptions: ProxyConnectionError previously provided the full proxy URL. User info will now be appropriately masked if needed. * api-change:``mediaconvert``: AWS Elemental MediaConvert SDK has added support for 4K AV1 output resolutions & 10-bit AV1 color, the ability to ingest sidecar Dolby Vision XML metadata files, and the ability to flag WebVTT and IMSC tracks for accessibility in HLS. * api-change:``transcribe``: Add support for granular PIIEntityTypes when using Batch ContentRedaction. ==== python-dnspython ==== Version update (2.1.0 -> 2.2.0) - Break build dependency cycle through :test multibuild - PEP517 style: poetry-core is enough to build the package - Clean up old python36 requirements: no longer in Tumbleweed - Update dependencies to cover all optional features and dependencies in a more structured way and describe it in the package description. - update to version 2.2.0: - SVCB and HTTPS records have been updated to track the evolving draft standard. - The ZONEMD type has been added. - The resolver now returns a LifetimeTimeout exception which includes an error trace like the NoNameservers exception. This class is a subclass of dns.exception.Timeout for backwards compatibility. - DNS-over-HTTPS will try to use HTTP/2 if the httpx and h2 packages are installed. - DNS-over-HTTPS is now supported for asynchronous queries and resolutions. - dns.zonefile.read_rrsets() has been added, which allows rrsets in zonefile format, or a restrition of it, to be read. This function is useful for applications that want to read DNS data in text format, but do not want to use a Zone. - On Windows systems, if the WMI module is available, the resolver will retrieve the nameserver from WMI instead of trying to figure it out by reading the registry. This may lead to more accurate results in some cases. - The CERT rdatatype now supports certificate types IPKIX, ISPKI, IPGP, ACPKIX, and IACPKIX. - The CDS rdatatype now allows digest type 0. - Dnspython zones now enforces that a node is either a CNAME node or an ?other data? node. A CNAME node contains only CNAME, RRSIG(CNAME), NSEC, RRSIG(NSEC), NSEC3, or RRSIG(NSEC3) rdatasets. An ?other data? node contains any rdataset other than a CNAME or RRSIG(CNAME) rdataset. The enforcement is ?last update wins?. For example, if you have a node which contains a CNAME rdataset, and then add an MX rdataset to it, then the CNAME rdataset will be deleted. Likewise if you have a node containing an MX rdataset and add a CNAME rdataset, the MX rdataset will be deleted. - Extended DNS Errors, as specified in RFC 8914, are now supported. ==== python-fixtures ==== - Add missing BuildRequire on python-setuptools (this was implicitly pulled in only). ==== python-pandas ==== Version update (1.3.5 -> 1.4.0) - Skip more tests on non-intel architectures boo#1167730 - Update to version 1.4.0 * https://pandas.pydata.org/docs/whatsnew/v1.4.0.html * Enhancements - Improved warning messages - Index can hold arbitrary ExtensionArrays - Enhancements in Styler - Multi-threaded CSV reading with a new CSV Engine based on pyarrow - Rank function for rolling and expanding windows - Groupby positional indexing - DataFrame.from_dict and DataFrame.to_dict have new 'tight' option * Notable bug fixes - Inconsistent date string parsing - Ignoring dtypes in concat with empty or all-NA columns - Null-values are no longer coerced to NaN-value in value_counts and mode - mangle_dupe_cols in read_csv no longer renames unique columns conflicting with target names - unstack and pivot_table no longer raises ValueError for result that would exceed int32 limit - groupby.apply consistent transform detection * API changes - Index.get_indexer_for() no longer accepts keyword arguments (other than target); in the past these would be silently ignored if the index was not unique (GH42310) - Change in the position of the min_rows argument in DataFrame.to_string() due to change in the docstring (GH44304) - Reduction operations for DataFrame or Series now raising a ValueError when None is passed for skipna (GH44178) - read_csv() and read_html() no longer raising an error when one of the header rows consists only of Unnamed: columns (GH13054) - Changed the name attribute of several holidays in USFederalHolidayCalendar to match official federal holiday names. * Deprecations - Deprecated Int64Index, UInt64Index & Float64Index - Deprecated Frame.append and Series.append - Split out test runs into separate flavors, optimize memory usage in pytest-xdist runs ==== python-psutil ==== - Fix name of Patch4, it is skip-partitions-erros.patch - Add skip-partitions-erros.patch skipping tests failing on Linux (gh#giampaolo/psutil#2043). ==== python-pyudev ==== - Don't add date to version for reproducible builds (boo#1047218) ==== python-scipy ==== Version update (1.6.3 -> 1.7.3) - Provide empty debuginfo extraction for :test flavor - Update to version 1.7.3 * 3rd bugfix release since 1.7.0 - Highlights from the 1.7.0 release * A new submodule for quasi-Monte Carlo, scipy.stats.qmc, was added * The documentation design was updated to use the same PyData-Sphinx theme as NumPy and other ecosystem libraries. * We now vendor and leverage the Boost C++ library to enable numerous improvements for long-standing weaknesses in scipy.stats * scipy.stats has six new distributions, eight new (or overhauled) hypothesis tests, a new function for bootstrapping, a class that enables fast random variate sampling and percentile point function evaluation, and many other enhancements. * cdist and pdist distance calculations are faster for several metrics, especially weighted cases, thanks to a rewrite to a new C++ backend framework * A new class for radial basis function interpolation, RBFInterpolator, was added to address issues with the Rbf class. - Enable fast part of the test suite ==== python-tomli ==== Version update (1.2.1 -> 2.0.0) - Upgrade to 2.0.0: - Removed Python 3.6 support - Support for text file objects as load input. Use binary file objects instead. - First argument of load and loads can no longer be passed by keyword. - Allow lower case "t" and "z" in datetimes - Raise an error when dotted keys define values outside the "current table". Technically speaking TOML v1.0.0 does allow such assignments but that isn't intended by specification writers, and will change in a future specification version (see the pull request). - Illegal characters in error messages were surrounded by two pairs of quotation marks - TOMLDecodeError.__module__ is now the public import path (tomli) instead of private import path (tomli._parser) - Eliminated an import cycle when typing.TYPE_CHECKING is True. This allows sphinx-autodoc-typehints to resolve type annotations. ==== qtkeychain-qt5 ==== Subpackages: libqt5keychain1 libqt5keychain1-lang - Add patch to restore compatibility with CMake 3.16: * 0001-Define-a-poper-exported-CMake-target-instead-of-intr.patch - Fix qtkeychain users on Leap. ==== ruby3.1 ==== Subpackages: libruby3_1-3_1 - Added https://github.com/ruby/ipaddr/commit/77fe1fca0abb56f7f07725c0a3803d53a315c853.patch Fix vagrant with ruby 3.1 ==== rubygem-ed25519 ==== Version update (1.2.4 -> 1.3.0) updated to version 1.3.0 see installed CHANGES.md [#]# [1.3.0] (2022-01-16) [1.3.0]: https://github.com/crypto-rb/ed25519/compare/v1.2.4...v1.3.0 - Bump rubocop dependencies. ([#30]) - Add support for Ruby 3 & JRuby 9.3.0. ([#31]) [#30]: https://github.com/crypto-rb/ed25519/pull/30 [#31]: https://github.com/crypto-rb/ed25519/pull/31 ==== rubygem-excon ==== Version update (0.85.0 -> 0.90.0) updated to version 0.90.0 no changelog found ==== rubygem-fast_gettext ==== Version update (2.0.3 -> 2.2.0) updated to version 2.2.0 see installed CHANGELOG 2.1.0 -- Remove taint checking https://github.com/grosser/fast_gettext/pull/133 ==== rubygem-ffi ==== Version update (1.15.4 -> 1.15.5) updated to version 1.15.5 see installed CHANGELOG.md 1.15.5 / 2022-01-10 - ------------------ Fixed: * Fix long double argument or return values on 32bit i686. #849 * FFI::ConstGenerator: avoid usage of the same binary file simultaneously. #929 Added: * Add Windows fat binary gem for Ruby-3.1 Removed: * Remove Windows fat binary gem for Ruby < 2.4 ==== rubygem-formatador ==== Version update (1.1.0 -> 0.3.0) updated to version 0.3.0 see installed changelog.txt v0.3.0 06/17/21 =============== add travis badge to readme change readme to md fix markdown readme fix travis badge monkey-patch StringIO to try and fix jruby build override tty? for jruby build fix copyright statement use unicode.width instead of string.length remove unicode from requirements, use only if loaded display datum who's value is a FalseClass more colors with syntax-specific code/length limitations better code visualization in readme update readme remove broken rubinius build from CI fix length method to detect multibyte char width fix test for table with multi byte chars support multibyte characters update CI to 2.2.7, 2.3.4, and 2.4.1 drop rubyforge_project from gemspec and rakefile change github reference to https change readme.rdoc to readme.md in gemspec - Cleanup rpmlint warnings - updated to version 0.2.5 - updated to version 0.2.4 - initial package (version 0.2.3) ==== rubygem-rb-kqueue ==== Version update (0.2.6 -> 0.2.7) updated to version 0.2.7 no changelog found ==== rubygem-rspec-expectations ==== Version update (3.10.1 -> 3.10.2) updated to version 3.10.2 see installed Changelog.md [#]## Development [Full Changelog](http://github.com/rspec/rspec-expectations/compare/v3.10.2...3-10-maintenance) [#]## 3.10.2 / 2022-01-14 [Full Changelog](http://github.com/rspec/rspec-expectations/compare/v3.10.1...v3.10.2) Bug Fixes: * Fix support for dynamic matchers for expectation target checks (Phil Pirozhkov, #1294) * Fix `expect(array).to include(hash).times`, previously this would fail due to matching the entire array as a single hash, rather than a member of the hash. (Slava Kardakov, #1322) * Ensure `raise_error` matches works with the `error_highlight` option from Ruby 3.1. (Peter Goldstein, #1339) ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Fix exception in batch_async caused by a bad function call - Added: * drop-serial-from-event.unpack-in-cli.batch_async.patch - Fix inspector module export function (bsc#1097531) - Wipe NOTIFY_SOCKET from env in cmdmod (bsc#1193357) - Added: * fix-inspector-module-export-function-bsc-1097531-481.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch ==== samba ==== Version update (4.15.4+git.224.dea2f6dc836 -> 4.15.5+git.328.f1f29505d84) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-32bit samba-client-libs samba-client-libs-32bit samba-gpupdate samba-ldb-ldap samba-libs samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs samba-winbind-libs-32bit - Update to 4.15.5 * CVE-2021-44141: UNIX extensions in SMB1 disclose whether the outside target of a symlink exists; (bso#14911); (bsc#1193690). * CVE-2021-44142: Out-of-Bound Read/Write on Samba vfs_fruit module; (bso#14914); (bsc#1194859). * CVE-2022-0336: Re-adding an SPN skips subsequent SPN conflict checks; bso#14950); (bsc#1195048). - CVE-2021-44141: Information leak via symlinks of existance of files or directories outside of the exported share; (bso#14911); (bsc#1193690); - CVE-2021-44142: Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution; (bso#14914); (bsc#1194859); - CVE-2022-0336: Samba AD users with permission to write to an account can impersonate arbitrary services; (bso#14950); (bsc#1195048); ==== sane-backends ==== Version update (1.0.32 -> 1.1.1) Subpackages: libsane1 sane-backends-autoconfig - Upgraded to sane-backends version 1.1.1 * Backends + epson2: Fixed support for many scanners that don't support focus command. + epson2: Improve reliability of long scans. + epsonds: Implemented support for the following Epson scanners: - DS-1610, DS-1630, DS-1660W, DS-310, DS-320, DS-360W, DS-410, DS-530, DS-530II, DS-531, DS-535, DS-535H, DS-535II, DS-570W, DS-570WII, DS-571W, DS-575W, DS-575WII, DS-70, DS-80W - ES-200, ES-300W, ES-300WR, ES-400, ES-400II, ES-50, ES-500W, ES-500WII, ES-500WR, ES-55R, ES-580W, ES-60W, ES-60WB, ES-60WW, ES-65WR, - ET-2700 Series, ET-2710 Series, ET-2810 Series, ET-M2140 Series, ET-M3140 Series, - EW-052A Series, - FF-680W, - L3150 Series, L3200 Series, L3210 Series, L3250 Series, L4150 Series, - M2140 Series, M3140 Series, - RR-60, RR-600W, RR-70W, - XP-2100 Series, XP-2150 Series + epson2: Marked XP-452 455 series as supported in documentation + escl: Fixed scanning problems on certain scanners due to incorrect URL being used (#479) + escl: Fixed support for different resolutions when using JPEG format + escl: Fixed handling of ipp-usb redirects to localhost which previously caused certain scanners to be always reported as busy + escl: Added support for Brother DCP-J772DW and Epson ET-2750 scanners + escl: Marked the following scanners as supported in documentation: - Canon PIXMA G4511 - Canon PIXMA TR4550 Series - Canon PIXMA TR4551 Series - Epson ET-6100 + escl: Implemented support for disabling PDF output on scanners where it's broken (#510) + escl: Implemented support for Canon PIXME TR4520 and TR7500 scanners + genesys: Improved scan quality on Canon LiDE 35/40/50/60 by using brighter LED illumination + genesys: Fixed control of contrast and brigthness on certain scanners (#271) + genesys: Fixed crashes when handling slightly unexpected conditions (#464) + genesys: Fixed support for Plustek Opticfilm 7200 v2 scanner + genesys: Fixed button support on HP ScanJet G4010 + genesys: Fixed compilation on gcc-4.8 + genesys: Fixed incorrect LED exposure calculation leading to wrong color balance on certain resolutions on gl841 scanners + genesys: Improved gray scan quality on Canon LiDE 110, 120, 210, 220 (#106, #52) + genesys: Fixed issue of motor becoming stuck at certain resolutions on Canon LiDE 50 and possibly other gl841 scanners (#357) + genesys: Fixed periodic black lines in gray scans on Canon LiDE 80 + genesys: Removed support for broken 75 and 100 dpi hardware resolutions to fix preview scans (#383). These resolutions did not have any benefit compared to next smallest 150 dpi resolution + genesys: Add support for running in embedded environments that don't support threads + genesys: Fixed gray scans to use white color for illumination instead of red on Canon LiDE 35/40/50/60 and potentially other gl841 scanners. Old behavior can be restored via the color filter setting to select specific color component for the gray scan + genesys: The genesys backend is now distributed under GPL v2 or later license. Previously there existed an exception that allowed additional uses of the backend + gt68xx: Fixed several memory issues that can potentially lead to crashes or increased memory use + hp4200: Fixed crash when using HP ScanJet 4200C (#454) + microtek: Fixed support for embedded platforms using uclibc + pieusb: Implemented support for Reflecta RPS 10M scanner + pieusb: Fixed support for automatically advancing slides on DigitDia 4000 + pixma: Fixed compliation with NDEBUG macro defined + pixma: Marked Canon PIXMA G4511 as supported in documentation + scangearmp2: Mark GX6000, GX7000, TS5400 and MX455 series as supported * Frontends + Improved documentation of scanimage concerning options provided by backends + scanimage: Improved help to specify which options are advanced + scanimage: Implemented support for PDF output format - Cleanup create_hpaio.desc_from_models.dat: * Remove scanners unsupported by hplip (scan-type < 0) * Simplify and significantly speed it up ==== sendmail ==== Subpackages: libmilter1_0 - Allow mail delivery below /home again, that is disable "ProtectHome=read-only" for now ==== shaderc ==== Version update (2021.3 -> 2022.0) - Update to release 2022.0 * Update to Glslang 11.8.0 * Support Vulkan 1.3 * Support targeting SPIR-V 1.6, which is the default for Vulkan 1.3 ==== sudo ==== Version update (1.9.8p2 -> 1.9.9) Subpackages: sudo-plugin-python - Update to 1.9.9 * Sudo can now be built with OpenSSL 3.0 without generating warnings about deprecated OpenSSL APIs. * A digest can now be specified along with the ALL command in the LDAP and SSSD back-ends. Sudo 1.9.0 introduced support for this in the sudoers file but did not include corresponding changes for the other back-ends. * visudo now only warns about an undefined alias or a cycle in an alias once for each alias. * The sudoRole cn was truncated by a single character in warning messages. GitHub issue #115. * The cvtsudoers utility has new --group-file and --passwd-file options to use a custom passwd or group file when the - -match-local option is also used. * The cvtsudoers utility can now filter or match based on a command. * The cvtsudoers utility can now produce output in csv (comma-separated value) format. This can be used to help generate entitlement reports. * Fixed a bug in sudo_logsrvd that could result in the connection being dropped for very long command lines. * Fixed a bug where sudo_logsrvd would not accept a restore point of zero. * Fixed a bug in visudo where the value of the editor setting was not used if it did not match the user?s EDITOR environment variable. This was only a problem if the env_editor setting was not enabled. Bug #1000. * Sudo now builds with the -fcf-protection compiler option and the - z now linker option if supported. * The output of sudoreplay -l now more closely matches the traditional sudo log format. * The sudo_sendlog utility will now use the full contents of the log.json file, if present. This makes it possible to send sudo-format I/O logs that use the newer log.json format to sudo_logsrvd without losing any information. * Fixed compilation of the arc4random_buf() replacement on systems with arc4random() but no arc4random_buf(). Bug #1008. * Sudo now uses its own getentropy() by default on Linux. The GNU libc version of getentropy() will fail on older kernels that don?t support the getrandom() system call. * It is now possible to build sudo with WolfSSL?s OpenSSL compatibility layer by using the --enable-wolfssl configure option. * Fixed a bug related to Daylight Saving Time when parsing timestamps in Generalized Time format. This affected the NOTBEFORE and NOTAFTER options in sudoers. Bug #1006. * Added the -O and -P options to visudo, which can be used to check or set the owner and permissions. This can be used in conjunction with the -c option to check that the sudoers file ownership and permissions are correct. Bug #1007. * It is now possible to set resource limits in the sudoers file itself. The special values default and ?user? refer to the default system limit and invoking user limit respectively. The core dump size limit is now set to 0 by default unless overridden by the sudoers file. * The cvtsudoers utility can now merge multiple sudoers sources into a single, combined sudoers file. If there are conflicting entries, cvtsudoers will attempt to resolve them but manual intervention may be required. The merging of sudoers rules is currently fairly simplistic but will be improved in a future release. * Sudo was parsing but not applying the ?deref? and ?tls_reqcert? ldap.conf settings. This meant the options were effectively ignored which broke dereferencing of aliases in LDAP. Bug #1013. * Clarified in the sudo man page that the security policy may override the user?s PATH environment variable. Bug #1014. * When sudo is run in non-interactive mode (with the -n option), it will now attempt PAM authentication and only exit with an error if user interaction is required. This allows PAM modules that don?t interact with the user to succeed. Previously, sudo would not attempt authentication if the -n option was specified. Bug #956 and GitHub issue #83. * Fixed a regression introduced in version 1.9.1 when sudo is built with the --with-fqdn configure option. The local host name was being resolved before the sudoers file was processed, making it impossible to disable DNS lookups by negating the fqdn sudoers option. Bug #1016. * Added support for negated sudoUser attributes in the LDAP and SSSD sudoers back ends. A matching sudoUser that is negated will cause the sudoRole containing it to be ignored. * Fixed a bug where the stack resource limit could be set to a value smaller than that of the invoking user and not be reset before the command was run. Bug #1016. - sudo no longer ships schema for LDAP. - sudo-feature-negated-LDAP-users.patch dropped, included upstream - refreshed sudo-sudoers.patch - Add support in the LDAP filter for negated users, patch taken from upstream (jsc#20068) * Adds sudo-feature-negated-LDAP-users.patch ==== tcsh ==== Version update (6.23.02 -> 6.24.00) Subpackages: tcsh-lang - Add patch tcsh-6.24.00-which.dif from upstream mailing list to fix bug in which builtin, that is return error if a command is not found - Update to tcsh 6.24.00 11. Update config.guess and config.sub so arm64 is recognized ==== tevent ==== Subpackages: libtevent0 libtevent0-32bit python3-tevent - Fix build on 15.3 (for the heimdal addc build), by bundling cmocka. ==== vsftpd ==== - Add "seccomp-fixes.patch" to fix the syscall architecture offset from 4 to 5, this change was documented in . - Add "vsftpd-openlog-force.patch" to a logic error in the way the force option for syslog's openlog() call was handled. - Add "vsftpd-seccomp-getrandom.patch" to fix a seccomp failure in FIPS mode when SSL was enabled. [bsc#1052900] - Add "vsftpd-seccomp-ssl.patch" to allow stat() to be called, which is required during SSL initialization by RAND_load_file(). - Add "vsftpd-seccomp-wait4.patch" to allow wait4() to be called so that the broker can wait for its child processes. [bsc#1021387] - Refresh patches to -p1 style so that we can use %autosetup: * vsftpd-2.0.4-dmapi.patch * vsftpd-2.0.4-enable-ssl.patch * vsftpd-2.0.5-enable-debuginfo.patch * vsftpd-2.0.5-utf8-log-names.patch * vsftpd-2.0.5-vuser.patch * vsftpd-2.3.5-conf.patch - Apply "revert-undocumented-config-file-format-changes.patch" to revert the "ssl_tlsv1_X"-style config file options back to their original spelling. The changes that dropped the underscore from the version numbers in release 3.0.4 breaks existing configurations and it was never documented anywhere -- not in the package's changelog and not in the packages's own man page. - Apply "use-system-wide-tls-cipher-policy.patch" so that vsftpd follows the system-wide TLS cipher policy "DEFAULT_SUSE" by default. Run the command "openssl ciphers -v DEFAULT_SUSE" to see which ciphers this includes. - Apply "add vsftpd-allow-dev-log-socket.patch" to allow sendto() syscall when /dev/log support is enabled. [bnc#786024] - Apply "vsftpd-enable-sendto-for-prelogin-syslog.patch" to allow sendto() to be called from check_limits(), which is necessary for vsftpd to write to the system log. ==== wireplumber ==== Subpackages: libwireplumber-0_4-0 wireplumber-audio - Use the default lua instead of hardcoding 5.3 ==== yast2-bootloader ==== Version update (4.4.15 -> 4.4.16) - Allow product/system role to select boot timeout (jsc#SLE-22667) - 4.4.16 ==== yast2-dns-server ==== Version update (4.4.0 -> 4.4.1) - jsc#SLE-22015 - Master/Slave servers and zones renamed to conform to inclusive naming. According to RFC8499 primary/secondary names are used now. - 4.4.1 ==== yast2-installation ==== Version update (4.4.37 -> 4.4.39) - Fixed crash in Ruby 3.1 after pressing the hamburger menu icon in the welcome screen (bsc#1195422) - 4.4.39 - Redirect the STDERR output in the memsample script to not break the YaST UI (bsc#1195116) - 4.4.38 ==== yast2-kdump ==== Version update (4.4.2 -> 4.4.3) - Improve visual perception in help text (by @TarasPanchenko Github user, bsc#1195372) - 4.4.3 ==== yast2-network ==== Version update (4.4.35 -> 4.4.36) - jsc#SLE-22015 - renamed slaves CLI option to conform to inclusive naming: yast lan add name=bond0 bond_ports=eth0 eth1 bootproto=dhcp - the "slaves=" option stays for backward compatibility - 4.4.36 ==== yast2-printer ==== Version update (4.4.1 -> 4.4.2) - Fix broken help text (by @TarasPanchenko Github user, bsc#1195370) - 4.4.2 ==== yast2-samba-server ==== Version update (4.4.1 -> 4.4.2) - Remove libsmbclient-devel BuildRequires in favor of pkgconfig(smbclient); (jsc#SLE-20577); - 4.4.2 ==== yast2-trans ==== Version update (84.87.20220123.256c7f91b3 -> 84.87.20220131.0700dd3449) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20220131.0700dd3449: * Translated using Weblate (Finnish) * Translated using Weblate (Ukrainian) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Ukrainian) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Slovak) * Translated using Weblate (Japanese) * Translated using Weblate (Slovak) * Translated using Weblate (Czech) * Translated using Weblate (Dutch) * Translated using Weblate (Catalan) * New POT for text domain 'storage'. * New POT for text domain 'security'. * New POT for text domain 'installation'. * New POT for text domain 'base'. * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Slovak) * Translated using Weblate (Ukrainian) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Dutch) * Translated using Weblate (Catalan) * Translated using Weblate (Japanese) * New POT for text domain 'control'. * New POT for text domain 'autoinst'. * Translated using Weblate (German) * Translated using Weblate (Spanish) ==== zypper ==== Version update (1.14.50 -> 1.14.51) Subpackages: zypper-log zypper-needs-restarting - Singletrans: handle fatal and non-fatal script errors properly. - Add SingleTransReportReceiver. - Immediately write out additional rpm output. - BuildRequires: libzypp-devel >= 17.29.0. Need SingleTransReport and immediate rpm script output reports. - version 1.14.51