Packages changed: aria2 (1.29.0 -> 1.30.0) bash bash-completion (2.1 -> 2.4) cracklib dd_rescue dracut fdupes (1.6.1 -> 1.61) gdb klinkstatus (16.08.3 -> 16.12.0) krita (3.0.1.1 -> 3.1.1) libqt5-qtbase (5.7.0 -> 5.7.1) libqt5-qtdeclarative (5.7.0 -> 5.7.1) libqt5-qtgraphicaleffects (5.7.0 -> 5.7.1) libqt5-qtimageformats (5.7.0 -> 5.7.1) libqt5-qtlocation (5.7.0 -> 5.7.1) libqt5-qtmultimedia (5.7.0 -> 5.7.1) libqt5-qtquickcontrols (5.7.0 -> 5.7.1) libqt5-qtscript (5.7.0 -> 5.7.1) libqt5-qtsensors (5.7.0 -> 5.7.1) libqt5-qtserialport (5.7.0 -> 5.7.1) libqt5-qtsvg (5.7.0 -> 5.7.1) libqt5-qttools (5.7.0 -> 5.7.1) libqt5-qtwebchannel (5.7.0 -> 5.7.1) libqt5-qtwebengine (5.7.0 -> 5.7.1) libqt5-qtwebkit (5.7.0 -> 5.7.1) libqt5-qtwebsockets (5.7.0 -> 5.7.1) libqt5-qtx11extras (5.7.0 -> 5.7.1) libqt5-qtxmlpatterns (5.7.0 -> 5.7.1) libzypp (16.3.1 -> 16.3.2) man (2.7.1 -> 2.7.6) meld (3.16.3 -> 3.16.4) nano (2.7.1 -> 2.7.2) openconnect (7.07 -> 7.08) openjpeg2 (2.1.0 -> 2.1.2) pam postgresql96-libs (9.5.4 -> 9.6.1) tar unbound (1.5.10 -> 1.6.0) w3m-el (1.4.506 -> 1.4.567) yast2 (3.2.7 -> 3.2.9) yast2-country (3.2.4 -> 3.2.5) yast2-installation (3.2.11 -> 3.2.12) yast2-ntp-client (3.2.1 -> 3.2.3) yast2-users (3.2.6 -> 3.2.7) === Details === ==== aria2 ==== Version update (1.29.0 -> 1.30.0) Subpackages: aria2-lang libaria2-0 - Update to version 1.30.0: * Fix bug that --disable-websocket causes build error * Fix bug that lower bound of optimize-concurrent-downloads becomes 1 * Print DHT nodes with -S option * Take into account address family when resolving DHT node address * Allow block device file to -i option * Expand ${HOME} to user's home directory in several options * The following options implement this substitution: - -ca-certificate - --certificate - -dht-file-path - -dht-file-path6 - --dir - -input-file - -load-cookies - -log - -metalink-file - -netrc-path - -on-bt-download-complete - -on-download-complete - -on-download-error - -on-download-start - -on-download-stop - -on-download_pause - -out - -private-key - -rpc-certificate - -rpc-private-key - -save-cookies - -save-session - -server-stat-if - -server-stat-of - -torrent-file * Document that libaria2 is not thread safe - Fix typos in changelog ==== bash ==== Subpackages: bash-doc libreadline7 readline-devel readline-doc - Enable -fprofile-correction to cover misleading profile created due to terminating_signal which does not return. ==== bash-completion ==== Version update (2.1 -> 2.4) - Detect if the completions for mount/umount have to be removed for modern util-linux package but without using suse_version - Fix cut&paste error in final ls completion - Add patch tar-completion.patch to allow mixed options with long and short options (boo#1012212) - Change upstream home to https://github.com/scop/bash-completion - Update do verion 2.4 * xetex, xelatex, luatex, lualatex: Associate with tex files * Support pod document files for perldoc (#39) * tipc: add tipc completions * rpm: Offer --filetriggers with -q * javadoc: Add bunch of option arg (non)completions * lrzip: Add -m arg noncompletion * pypy*: Add basic --jit arg completion * pypy3: Alias to python * hcitool,svcadm,tar: Spelling fixes * tipc: Invoke ls with "command" * tipc: Indentation fix * abook: Parse long options from command including full path * pyvenv: New completion * chroot: New (generic long options) completion, see #38 * aptitude: List packages using _apt_cache_packages, fixes #33 * vncviewer: Cleanup shopt use, drop an eval * make: Avoid a grep * rpm: Fix --whatenhances arg completion * aspell, minicom, mysql: Replace use of ls with printf * The BitKeeper completion used the wrong set of commands * Completion for python zip archives * lvm: pvcreate should be able to use all block devcices * lvm: fix all commands that should get all PVs * tar: Detect GNU/other from --version only once per session * tar: Remove unused variable * tar: Fix GNU tar help output parsing regex, fixes #15 * tar: Don't write to /tmp/jetel * python: Simplify code * python: Complete all files also after -m * python: Don't offer options after -c * python: Complete all files only if -c is before current word * unzip, zipinfo: Complete on *.pyz * _lvm: using a single-pattern case and invoking function according to words[1] * lvm: _lvm_count_args parameter must be quoted in order to failglob not to complain * gendiff: Quoting suffix pattern to avoid triggering failglob * ssh-add, ssh-keygen: -? needs to be quoted under failglob (Alioth: [#314709]) * Refactor bts and uscan, since they use common functions * uscan: New completion, thanks to Federico Ceratto * bts: New completion, thanks to Federico Ceratto. * nmcli completion was integrated upstream * ssh-add, ssh-keygen: -? needs to be quoted under failglob (take 2) (Alioth: #314709) * umount: Fix mount points escaping/unescaping with Bash-4.3 * slapt-src: Handle --config=FILE option properly * sbopkg, slapt-{get,src}: expand tilde in config file name * slapt-{get,src}: Fix issue with sed not being able to handle some characters * slapt-src: split options from their arguments * psql: Tell psql to not load .psqlrc as it may change output format (Alioth: #314636) * mplayer: -dvd-devices takes dvd devices, dirs and .iso files as argument * 7z: Improve completion * f77, f95: Use the same completion as for g77, g95 if they are links to gfortran * make: Use only posix basic regexps with sed (Alioth: #314345) * perl: -d/-dt option argument is optional (Alioth: #314242) * Add config for cmake to bash-completion. * kcov: Add new sort types, complete --replace-src-path arguments * feh: Add new sort type * man: Use -w instead of --path * chronyc: Update help text parsing * chronyc: Add missing subcommands * chronyc: Add -6 option * minicom: Recognize user ~/.minirc.* as config files * rpmbuild: Complete *.spec on --clean (RedHat: #1132959) * tar: rework the completion completely * portsnap: New completion. * modprobe: fix params with multi-line descriptions * gdb: support --args style completion (Alioth: #314664) * make: Fix basic regex for portability (Alioth: #314345) * gnokii: New completion * xmllint, xmlwf, xsltproc: Complete on Mallard *.page files * pypy: New completion identical to python (Alioth: #314501) * make: Don't pick up variables when makefile is reloaded * make: Offer hidden targets when it is clear that the user is trying to complete one of them * make: Fix detection of intermediate targets where make has changed its database whitespace * make: completion shouldn't be confused by the output of $(info confuse: make) * zopflipng: New completion * ssh: Extract duplicate code to _ssh_configfile * gnokii, minicom: Use grep through "command" * Update URLs and various instructions to GitHub * ssh: Avoid completing commands before hostname * chronyc: Parse command args from help output * chronyc: Wrap long lines * Load completions also from $XDG_DATA_DIRS (RedHat: #1264094) * (testsuite) Ignore files generated by complete-ant-cmd.pl * scp, sftp: Complete -S on commands * scp, sftp: Fix querying ssh options * sftp: Add -l arg non-completion * ssh-copy-id: Offer only *.pub to -i * mpv: Remove mplayer-aliased completion * modplug*: Associate *.oct and *.okt * rpm: Add --whatenhances/recommends/suggests/supplements and - -recommends/supplements completions * pgrep, pidof, pkill, pwdx, vmstat: Add support for procps-ng * pdftotext: New completion * checksec: New completion * ssh: Complete HostbasedKeyTypes,HostKeyAlgorithms,KexAlgorithms values * ssh: Query ciphers and macs from ssh before hardcoded fallback * ssh: Add -Q argument completion * sysctl: Return early on --help, --version * sysctl: Try parsing options from help before usage * eog: Complete on *.ppm (RedHat: #1090481) * tar: Plug $line var leak * tar: Style tweaks * bsdtar, tar: Remove symlinks from git, have make create them * jshint: New completion * gnokii: Include and install it * gnokii: Fix completions of options that are prefixes for others * gnokii: Drop dead code * (testsuite): Add basic gnokii test case * gnokii: Various minor and cosmetic fixes * Load user completions from $BASH_COMPLETION_USER_DIR/completions * synclient: New completion * tune2fs: Add missing return in -M arg completion * reptyr: Rename file to _reptyr to avoid conflict with upstreamed completion * dropuser: New completion * createuser: New completion * createdb, dropdb: Drop -o default, it does not appear to do anything good here * tshark: Simplify cut usage * mcrypt: Simplify -m arg completion * strings: Fix -T/--target arg completion with non-English locale * chrome, firefox etc: Complete on *.pdf * ccache: Add -o/--set-config arg name completion * gphoto2: Replace tail with awk * gphoto2: Fix split argument handing, and colon treatment in --port args * Actually install the lz4 completion * _pnames: Add -s for producing (possibly) truncated names (RedHat: [#744406]) * (testsuite) Add cd in dir without subdirs or CDPATH test case * Protect various compgen invocations from -* leakage (Debian: [#766163]) * pigz, unpigz: Handle *.zz * rpmbuild: Complete *.spec on --nobuild * mplayer, *xine: Complete on *.mts (Debian: #759219) * ant: Support buildfile set in $ANT_ARGS (Alioth: #314735) * ant: Don't offer more completions after options that exit * 7z, adb: Trivial cleanups * python(3): Add -X argument non-completion * xsltproc. TODO fix for previous commit * xmllint, xmlwf, xsltproc: Complete on *.dbk and *.docbook (Alioth: [#314770]) * xz: Complete -T/--threads argument * adb: New completion * modprobe: Try parsing help before using hardcoding option list * mpv: New completion alias + adjustments for mplayer (Debian: [#749115]) * hostname: New completion * nslookup: complete on hosts (Alioth: #314673) * eog: Complete on *.pgm (RedHat: #1090481) * pngfix: New completion * qemu: Fix -balloon arg completion * qemu: Apply completion to qemu-kvm/-system-i386/-system-x86_64 too * xrandr: Use the invoked command internally, not hardcoded "xrandr" * xrandr: Add (some) --setprovider* arg completion support * ri: Fix class completion with ri >= 3. * ri: Fix colon handling in class completion. * flake8: New completion * pyflakes: New completion * cal,chfn,chsh,dmesg,eject,hexdump,look,newgrp,renice,runuser,su,wr ite: Deprecate on Linux in favor of util-linux ones (Debian: [#737672]) * hwclock,ionice,rtcwake: Deprecate in favor of util-linux ones (Debian: #737672) * ssh-keygen: New completion * jpegoptim: New completion * ip: Add some addr, addrlabel, and route arg completions * aptitude, dpkg: Replace some grep+cuts with awk * gcc, lintian, make, pkgadd, slackpkg: grep -> "command grep" (Debian: #734095) * lintian: Replace some grep+cuts with awk * lz4: New completion. * optipng: New completion. * cppcheck: Include - in --file-list completions. * wtf: Look for acronym db from /usr/share/games/bsdgames/acronyms too. * wtf: Don't offer -f if it was already specified. * wtf: Hush stderr when db file doesn't exist. * appdata-validate: New completion. * timeout: New completion. * abook, kldunload: Pre-expand \t instead of relying on sed supporting it. * dict: Trivial regex cleanup. * zopfli: New completion. * bzip2, gzip, lzma: Cleanups. * 2to3: New completion. * file-roller: Reuse unzip's xspec. * 7z: New completion. * hcitool, rfcomm, ciptool, hciconfig: Don't leak $args. * perl: Fix -dt: completion. * perl*: Fix handling of relative paths in @INC. * wget: Add --accept-regex/--reject-regex/--regex-type arg (non)completions. * wget: Drop incorrect -nv arg completion. * wget: Stop completing after --help/--version. * Clean up/compact various globs. * cvs: Fix checkout -j non-completion. * sh: Complete script arguments with all filenames (Alioth: [#314226]). * nmcli: Deprecate our completion, upstream has one in 0.9.8.0. * cvs rm: Don't filter existing files with -f (RedHat: #949479). - Drop patches now upstream init-completion-boo922758.patch pushd-completion-bnc818365.patch - Rename patches bash-completion-2.1.patch becomes bash-completion-2.4.patch - Port the patches to newer version 2.4 FOO-dir-completion-boo905348.patch LVM-completion-bsc946875.patch PS1-completion-boo903362.patch backtick-completion-boo940835.patch backticks-bsc963140.patch ls-completion-boo889319.patch respect-variables-boo940837.patch rm-completion-smart-boo958462.patch sh-script-completion-boo977336.patch - Only remove completion for umount/mount for older SUSE versions (boo#995045) ==== cracklib ==== Subpackages: cracklib-dict-small libcrack2 libcrack2-32bit - Only buildrequire and call translation-update-upstream on SLE: the package in openSUSE is a dummy and is empty. ==== dd_rescue ==== Subpackages: dd_rescue-crypt dd_rescue-lzo - Add gcc7-static-inline.patch. ==== dracut ==== - deal with incomplete ibft bootflag settings (bsc#1007648) * add 0504-ibft-fix-boot-flag-check.patch ==== fdupes ==== Version update (1.6.1 -> 1.61) - We cannot update from fdupes 1.51 to 1.6.1. That "downgrade" works okay'ish for Tumbleweed because we can replace the old package with the new one, but in SLE this is not possible. We asked upstream to please release a "2.0" version to remedy these issues (https://github.com/adrianlopezroche/fdupes/issues/74), but he does not respond. Therefore, we'll call this version 1.61, ignoring upstreams change in the versioning scheme. - Upstream has changed their versioning scheme after version 1.51. Unfortunately, the new version 1.6.x won't be recognized as "newer" by zypper. This commit adds appropriate "provides" and "obsoletes" attributes to the spec file to remedy that issue. ==== gdb ==== - Make dependency of gcc-java conditional. - Enable ada testing on aarch64 for tumbleweed - BuildRequire glibc-devel-static for 12.1 or later, and glibc-devel-static-32bit if biarch - Amend gdb-glibc-vdso-workaround.patch to ignore further vdso filenames on ppc64 and s390x. [bnc#944105] - Add gdb-aarch64-v81-hwbreakpoints.diff for detecting debug capabilities on ARMv8.1/8.2. [bnc#990697] ==== klinkstatus ==== Version update (16.08.3 -> 16.12.0) - Update to KDE Applications 16.12.0 * KDE Applications 16.12.0 * https://www.kde.org/announcements/announce-applications-16.12.0.php - Update to KDE Applications 16.11.90 * KDE Applications 16.12.0 RC * https://www.kde.org/announcements/announce-applications-16.12-rc.php - Update to KDE Applications 16.11.80 * KDE Applications 16.12.0 Beta * https://www.kde.org/announcements/announce-applications-16.12-beta.php - Update spec-files to be consistent wiht KA ==== krita ==== Version update (3.0.1.1 -> 3.1.1) Subpackages: krita-lang - Delete /usr/lib64/libkritacolord.so do to conflict between calligra-krita and krita-devel - Move libkritacolord.so to the -devel subpackage where it belongs - Sync with KUE: * Add -devel subpackage * Use %bcond_without lang * Don't remove non-existing color schemes any more - Require Qt 5.6 - Update to version 3.1.1: * Full Support for OSX * Render Animations to files * Animation Curves and Opacity * New Internal Color Picker * New Quick Brush Engine * Stop-Based Gradient Editor * Lazy Brush/Colorize Mask * More information on https://krita.org/en/release-notes-for-krita-3-1/ ==== libqt5-qtbase ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5Concurrent-devel libQt5Concurrent5 libQt5Core-devel libQt5Core-private-headers-devel libQt5Core5 libQt5DBus-devel libQt5DBus5 libQt5Gui-devel libQt5Gui-private-headers-devel libQt5Gui5 libQt5Network-devel libQt5Network5 libQt5OpenGL-devel libQt5OpenGL5 libQt5PlatformHeaders-devel libQt5PrintSupport-devel libQt5PrintSupport5 libQt5Sql-devel libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-postgresql libQt5Sql5-sqlite libQt5Sql5-unixODBC libQt5Test-devel libQt5Test5 libQt5Widgets-devel libQt5Widgets5 libQt5Xml-devel libQt5Xml5 libqt5-qtbase-common-devel libqt5-qtbase-devel libqt5-qtbase-platformtheme-gtk3 - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ - Drop upstreamed patches: xcb-Dont-activate-bypassed-windows-on-mouse-press.patch, Fix-unwanted-cache-flush-in-Freetype-engine.patch, xcb-Send-also-text-plain-when-a-text-uri-list-is-dropped.patch, xcb-Dont-send-QtWindowNoState-event-when-hiding-minimized-window.patch, XCB-Drop-from-external-app-fix-keyboard-modifier-state.patch, xcb-Use-the-state-of-the-key-event-to-process-it.patch, Make-QDBusConnectionPrivaterelaySignal-be-called-in-the-right-thread.patch and use-freetype-default.patch ==== libqt5-qtdeclarative ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQtQuick5 libqt5-qtdeclarative-devel libqt5-qtdeclarative-tools - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ - Drop upstreamed/obsolete patches: overflow.patch, qtdeclarative-opensource-src-5.6.0-qml_no-lifetime-dse.patch, V4-Always-set-the-tag-when-boxing-a-pointer.patch, Add-a-facility-to-version-type-information.patch, V4-Free-up-2-address-bits-in-64bit-mode.patch, masm-unaligned-stack-pointer.patch and fix-crash-on-exit-when-using-default-property-aliases-with-layouts.patch ==== libqt5-qtgraphicaleffects ==== Version update (5.7.0 -> 5.7.1) - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtimageformats ==== Version update (5.7.0 -> 5.7.1) Subpackages: libqt5-qtimageformats-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtlocation ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5Location5 libQt5Positioning5 libqt5-qtlocation-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtmultimedia ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5Multimedia5 libqt5-qtmultimedia-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtquickcontrols ==== Version update (5.7.0 -> 5.7.1) - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtscript ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5Script5 libqt5-qtscript-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtsensors ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5Sensors5 libQt5Sensors5-imports libqt5-qtsensors-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtserialport ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5SerialPort5 libqt5-qtserialport-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtsvg ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5Svg5 libqt5-qtsvg-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qttools ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5CLucene5 libQt5Designer5 libQt5DesignerComponents5 libQt5Help5 libqt5-linguist libqt5-linguist-devel libqt5-qdbus libqt5-qtpaths libqt5-qttools-devel libqt5-qttools-doc - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtwebchannel ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtwebengine ==== Version update (5.7.0 -> 5.7.1) - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ - Drop upstreamed patches: Do-not-depend-on-Linux-4.5.patch and detect-gcc6-use-fno-delete-null-pointer-checks.diff ==== libqt5-qtwebkit ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5WebKit5 libQt5WebKit5-devel libQt5WebKit5-imports libQt5WebKitWidgets-devel libQt5WebKitWidgets5 - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtwebsockets ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5WebSockets5 libQt5WebSockets5-imports libqt5-qtwebsockets-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtx11extras ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5X11Extras5 libqt5-qtx11extras-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libqt5-qtxmlpatterns ==== Version update (5.7.0 -> 5.7.1) Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-devel - Update to 5.7.1 * For more details please see: https://blog.qt.io/blog/2016/12/14/qt-5-7-1-released/ and https://www.qt.io/qt5-7/ ==== libzypp ==== Version update (16.3.1 -> 16.3.2) - Don't raise FileCheckException if user accepted a package with wrong digest (bsc#1014265) - Also provide the exception history when requesting a media failed (bsc#1010952) - version 16.3.2 (0) ==== man ==== Version update (2.7.1 -> 2.7.6) - Update to version 2.7.6 * Many bug fixes * man understands the .
form on its command line, so for example 'man chmod.2' is now the same as 'man 2 chmod' (Contributed by Mihail Konev) * Document that 'man -K' searches page source, not rendered text - Rename patch man-db-2.7.1.dif which becomes man-db-2.7.6.dif - Port the patches man-MAN_POSIXLY_CORRECT-man1.dif man-db-2.6.3-chinese.dif man-db-2.6.3-listall.dif man-db-2.6.3-section.dif man-db-2.7.1-firefox.dif man-db-2.7.1-security4.dif man-db-2.7.1-zio.dif - Add an rpmlintrc file man-rpmlintrc as we apply a patch on generated manual pages - Do not wrap man anymore (boo#986211) ==== meld ==== Version update (3.16.3 -> 3.16.4) Subpackages: meld-lang - Update to version 3.16.4: + Make error displaying more robust with non-ASCII locales. + Handle themes with scrollbar steppers better. + Fix a traceback when pane has no file. + Fix triggering "Delete Change" actions from menu. + Handle style theme not existing. + Fix unintentional glib requirement bump. + Updated translations. ==== nano ==== Version update (2.7.1 -> 2.7.2) Subpackages: nano-lang - GNU nano 2.7.2: * complete with one keystroke (^] by default) a fragment of a word to a full word existing elsewhere in the current buffer * fixes two bugs related to using line numbers in softwrap mode * allow using the PageUp and PageDown keys together with Shift on VTE-based terminals * stop help lines from flickering during interactive replacing * make a "set fill" override an earlier "set nowrap" * properly restore the selected region after an external spell check ==== openconnect ==== Version update (7.07 -> 7.08) Subpackages: openconnect-devel - update to version 7.08 * Add SHA256 support for server cert hashes. * Enable DHE ciphers for Cisco DTLS. * Increase initial oNCP configuration buffer size. * Improve support for point-to-point routing on Windows. * Check for non-resumed DTLS sessions which may indicate a MiTM attack. * Fix compatibility with Pulse Secure 8.2R5. * Support DTLS automatic negotiation. * Support --key-password for GnuTLS PKCS#11 PIN. * Support automatic DTLS MTU detection with OpenSSL. * Update OpenSSL to allow TLSv1.2, improve compatibility options. * Remove --no-cert-check option. It was being (mis)used. * Fix OpenSSL support for PKCS#11 EC keys without public key. * Fix polling/retry on "tun" socket when buffers full. * Fix AnyConnect server-side MTU setting. * Fix ESP replay detection. * Add certificate torture test suite. * Support PKCS#11 PIN via pin-value= and --key-password for OpenSSL. * Fix integer overflow issues with ESP packet replay detection. * Add --pass-tos option as in OpenVPN. * Support role selection form in Juniper VPN. * Support DER-format certificates, add certificate format torture tests. * For OpenSSL >= 1.0.2, fix certificate validation when only an intermediate CA is specified with the --cafile option. * Support Juniper "Pre Sign-in Message". - dropped juniper-fix-for-upstream-sources.patch, upstreamed ==== openjpeg2 ==== Version update (2.1.0 -> 2.1.2) - update to version 2.1.2 Bug fixes including security fixes among which: CVE-2016-8332 CVE-2016-7163 CVE-2016-5139 CVE-2016-5159 CVE-2016-5158 (not listed but solved different way) Huge amount of critical bugfixes Speed improvements No API/ABI break compared to v2.1.1/v2.1 - some doc files now have '.md' suffix (like README.md) - CVE-2016-5152 with new 0018-tcd_get_decoded_tile_size.patch ==== pam ==== Subpackages: pam-32bit pam-devel - Increased nproc limits for non-privileged users to 4069/16384. Removed limits for "root". [pam-limit-nproc.patch, bsc#1012494, bsc#1013706] ==== postgresql96-libs ==== Version update (9.5.4 -> 9.6.1) Subpackages: libecpg6 libpq5 - update to 9.6.1 This release contains a variety of fixes from 9.6.0. For information about new features in the 9.6 major release. For the full release notes, see: https://www.postgresql.org/docs/9.6/static/release-9-6-1.html - Build the libs in 9.6 rather then 9.5. - update to 9.6.0 final For all the details see: https://www.postgresql.org/about/news/1703/ https://wiki.postgresql.org/wiki/NewIn96 https://www.postgresql.org/docs/current/static/release-9-6.html ==== tar ==== - update tar-1.29-extract_pathname_bypass.patch to the upstream one that fixes POINTYFEATHER issue but it doesn't limit append or create operations as the initial patch did [bsc#1012633] [CVE-2016-6321] ==== unbound ==== Version update (1.5.10 -> 1.6.0) Subpackages: libunbound2 unbound-anchor - update to 1.6.0 Features * Added generic EDNS code for registering known EDNS option codes, bypassing the cache response stage and uniquifying mesh states. Four EDNS option lists were added to module_qstate (module_qstate.edns_opts_*) to store EDNS options from/to front/back side. * Added two flags to module_qstate (no_cache_lookup, no_cache_store) that control the modules' cache interactions. * Added code for registering inplace callback functions. The registered functions can be called just before replying with local data or Chaos, replying from cache, replying with SERVFAIL, replying with a resolved query, sending a query to a nameserver. The functions can inspect the available data and maybe change response/query related data (i.e. append EDNS options). * Updated Python module for the above. * Updated Python documentation. * Added views functionality. * Added qname-minimisation-strict config option. * Patch that resolves CNAMEs entered in local-data conf statements that point to data on the internet, from Jinmei Tatuya (Infoblox). * serve-expired config option: serve expired responses with TTL 0. * .gitattributes line for githubs code language display. * log-identity: config option to set sys log identity, patch from "Robin H. Johnson" (robbat2@gentoo.org). * Added stub-ssl-upstream and forward-ssl-upstream options. * Added local-zones and local-data bulk addition and removal functionality in unbound-control (local_zones, local_zones_remove, local_datas and local_datas_remove). * g.root-servers.net has AAAA address. Bug Fixes * Fix #836: unbound could echo back EDNS options in an error response. * Fix #838: 1.5.10 cannot be built on Solaris, undefined PATH_MAX. * Fix #839: Memory grows unexpectedly with large RPZ files. * Fix #840: infinite loop in unbound_munin_ plugin on unowned lockfile. * Fix #841: big local-zone's make it consume large amounts of memory. * Fix dnstap relaying "random" messages instead of resolver/forwarder responses, from Nikolay Edigaryev. * Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav. * Fix #1117: spelling errors, from Robert Edmonds. * iana portlist update. * fix memoryleak logfile when in debug mode. * Re-fix #839 from view commit overwrite. * Fixup const void cast warning. * Removed patch comments from acllist.c and msgencode.c * Added documentation doc/CNAME-basedRedirectionDesignNotes.pdf, from Jinmei Tatuya (Infoblox). * Fix #1125: unbound could reuse an answer packet incorrectly for clients with different EDNS parameters, from Jinmei Tatuya. * Fix #1118: libunbound.pc sets strange Libs, Libs.private values. * Added Requires line to libunbound.pc * Fix #1130: whitespace in example.conf.in more consistent. * suppress compile warning in lex files. * init lzt variable, for older gcc compiler warnings. * fix --enable-dsa to work, instead of copying ecdsa enable. * Fix DNSSEC validation of query type ANY with DNAME answers. * Fixup query_info local_alias init. * Ported tests for local_cname unit test to testbound framework. * Fix #1134: unbound-control set_option -- val-override-date: -1 works immediately to ignore datetime, or back to 0 to enable it again. The -- is to ignore the '-1' as an option flag. * Patch for server.num.zero_ttl stats for count of expired replies, from Pavel Odintsov. * Fix failure to build on arm64 with no sbrk. * Set OpenSSL security level to 0 when using aNULL ciphers. * configure detects ssl security level API function in the autoconf manner. Every function on its own, so that other libraries (eg. LibreSSL) can develop their API without hindrance. * Fix #1154: segfault when reading config with duplicate zones. * Note that for harden-below-nxdomain the nxdomain must be secure, this means nsec3 with optout is insufficient. * Fix #1155: test status code of unbound-control in 04-checkconf, not the status code from the tee command. * Fix #1158: reference RFC 8020 "NXDOMAIN: There Really Is Nothing Underneath" for the harden-below-nxdomain option. * patch from Dag-Erling Smorgrav that removes code that relies on sbrk(). * Make access-control-tag-data RDATA absolute. This makes the RDATA origin consistent between local-data and access-control-tag-data. * Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain of the NSEC owner. * QNAME minimisation uses QTYPE=A, therefore always check cache for this type in harden-below-nxdomain functionality. * Added unit test for QNAME minimisation + harden below nxdomain synergy. * Fix that with openssl 1.1 control-use-cert: no uses less cpu, by using no encryption over the unix socket. * hyphen as minus fix, by Andreas Schulze * Fix #1170: document that 'inform' local-zone uses local-data. * Fix #1173: differ local-zone type deny from unset tag_actions element. * Add DSA support for OpenSSL 1.1.0 * Fix remote control without cert for LibreSSL * Fix downcast warnings from visual studio in sldns code. ==== w3m-el ==== Version update (1.4.506 -> 1.4.567) - Update to current CVS head (version 1.4.567) * make it work with emacs 26 ==== yast2 ==== Version update (3.2.7 -> 3.2.9) - Add a method to read the ID property from the /etc/os-release file (related to bsc#1016004) - 3.2.9 - add generic cwm widget for keyboard layout (used for FATE#321754) - 3.2.8 ==== yast2-country ==== Version update (3.2.4 -> 3.2.5) Subpackages: yast2-country-data merge CASP changes: - fix notification on new keyboard widget, so keyboard layout is immediatelly changed (FATE#321754) - Add reusable keyboard widget (FATE#321754) - 3.2.5 ==== yast2-installation ==== Version update (3.2.11 -> 3.2.12) Port changes from CASP1.0: - Change layout of new installation dialog according to UX team suggestion (FATE#321754) - Set root subvolume read-only if configured (Fate##321755) - Document new control.xml parameter root_subvolume_read_only - Add new installation dialog with keyboard layout and root password (FATE#321754) - Added worker role dialog (Fate#321754) - implement support for running additional dialogs for specific roles (FATE#321754) - Added description for readonly_timezone and clone_install_recommended_default flag in control-file documentation. (Fate#321754, Fate#321764) - 3.2.12 ==== yast2-ntp-client ==== Version update (3.2.1 -> 3.2.3) - Fixed some tests that were passing because of an old ntp augeas lense (bsc#983486). - 3.2.3 - Updated client to read/write NTP configuration using CFA (bsc#983486 and bsc#929694) - 3.2.2 ==== yast2-users ==== Version update (3.2.6 -> 3.2.7) - Separate root password widget and keyboard layout test widget (needed for FATE#321754) - 3.2.7