Packages changed: NetworkManager-applet (1.8.14 -> 1.8.16) freerdp (2.0.0~rc2 -> 2.0.0~rc3) inxi (3.0.18 -> 3.0.20) kernel-source (4.17.12 -> 4.17.13) libedit (3.1.snap20150325 -> 3.1.snap20180525) libjpeg-turbo librsvg (2.42.5 -> 2.42.6) libstorage-ng (4.1.0 -> 4.1.10) libxkbcommon (0.8.0 -> 0.8.2) lzo mailman okteta (0.25.1 -> 0.25.2) plasma5-openSUSE polkit-default-privs postgresql10 (10.4 -> 10.5) python-lxml (4.2.1 -> 4.2.4) python-olefile (0.44 -> 0.45.1) python-pyasn1 (0.4.3 -> 0.4.4) python-qt5 remmina (1.2.30.1 -> 1.2.31.2) rubygem-actioncable-5.2 (5.2.0 -> 5.2.1) rubygem-actionmailer-5.2 (5.2.0 -> 5.2.1) rubygem-actionpack-5.2 (5.2.0 -> 5.2.1) rubygem-actionview-5.2 (5.2.0 -> 5.2.1) rubygem-activejob-5.2 (5.2.0 -> 5.2.1) rubygem-activemodel-5.2 (5.2.0 -> 5.2.1) rubygem-activerecord-5.2 (5.2.0 -> 5.2.1) rubygem-activestorage-5.2 (5.2.0 -> 5.2.1) rubygem-activesupport-5.2 (5.2.0 -> 5.2.1) rubygem-rails-5.2 (5.2.0 -> 5.2.1) rubygem-railties-5.2 (5.2.0 -> 5.2.1) sharutils srt systemd-presets-branding-transactional-server talloc (2.1.13 -> 2.1.14) tdb (1.3.15 -> 1.3.16) tevent (0.9.36 -> 0.9.37) yast2 (4.0.82 -> 4.1.0) yast2-dns-server (4.0.4 -> 4.1.0) yast2-firstboot (4.0.5 -> 4.0.6) yast2-ftp-server (4.1.2 -> 4.1.3) yast2-http-server (4.0.3 -> 4.1.0) yast2-slp-server (4.0.1 -> 4.1.0) yast2-squid (4.0.2 -> 4.1.0) yast2-theme (4.1.0 -> 4.1.1) yum === Details === ==== NetworkManager-applet ==== Version update (1.8.14 -> 1.8.16) Subpackages: NetworkManager-applet-lang NetworkManager-connection-editor libnma0 nma-data typelib-1_0-NMA-1_0 - Update to version 1.8.16: + Fix various issues that causes GtkApplication to quit at the wrong time. + Read the Mobile Providers database from a build-time determined location. + Modernize Gtk+ 3.0 use in preparations for Gtk+ 4.0. + Updated translations. - Add pkgconfig(mobile-broadband-provider-info) BuildRequires: New dependency. ==== freerdp ==== Version update (2.0.0~rc2 -> 2.0.0~rc3) Subpackages: libfreerdp2 libwinpr2 - upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility ==== inxi ==== Version update (3.0.18 -> 3.0.20) - Update to version 3.0.20: * See /usr/share/doc/packages/inxi/inxi.changelog ==== kernel-source ==== Version update (4.17.12 -> 4.17.13) Subpackages: kernel-default kernel-default-devel kernel-devel kernel-docs kernel-macros kernel-syms - Linux 4.17.13 (bnc#1012628). - scsi: sg: fix minor memory leak in error path (bnc#1012628). - drm/atomic: Initialize variables in drm_atomic_helper_async_check() to make gcc happy (bnc#1012628). - drm/atomic: Check old_plane_state->crtc in drm_atomic_helper_async_check() (bnc#1012628). - drm/vc4: Reset ->{x, y}_scaling[1] when dealing with uniplanar formats (bnc#1012628). - crypto: padlock-aes - Fix Nano workaround data corruption (bnc#1012628). - RDMA/uverbs: Expand primary and alt AV port checks (bnc#1012628). - brcmfmac: fix regression in parsing NVRAM for multiple devices (bnc#1012628). - iwlwifi: add more card IDs for 9000 series (bnc#1012628). - userfaultfd: remove uffd flags from vma->vm_flags if UFFD_EVENT_FORK fails (bnc#1012628). - ipc/shm.c add ->pagesize function to shm_vm_ops (bnc#1012628). - audit: fix potential null dereference 'context->module.name' (bnc#1012628). - kvm: x86: vmx: fix vpid leak (bnc#1012628). - x86/entry/64: Remove %ebx handling from error_entry/exit (bnc#1012628). - x86/apic: Future-proof the TSC_DEADLINE quirk for SKX (bnc#1012628). - x86/efi: Access EFI MMIO data as unencrypted when SEV is active (bnc#1012628). - virtio_balloon: fix another race between migration and ballooning (bnc#1012628). - net: socket: Fix potential spectre v1 gadget in sock_is_registered (bnc#1012628). - net: socket: fix potential spectre v1 gadget in socketcall (bnc#1012628). - can: ems_usb: Fix memory leak on ems_usb_disconnect() (bnc#1012628). - squashfs: more metadata hardenings (bnc#1012628). - squashfs: more metadata hardening (bnc#1012628). - net/mlx5e: IPoIB, Set the netdevice sw mtu in ipoib enhanced flow (bnc#1012628). - net/mlx5e: Set port trust mode to PCP as default (bnc#1012628). - net/mlx5e: E-Switch, Initialize eswitch only if eswitch manager (bnc#1012628). - rxrpc: Fix user call ID check in rxrpc_service_prealloc_one (bnc#1012628). - net: stmmac: Fix WoL for PCI-based setups (bnc#1012628). - netlink: Fix spectre v1 gadget in netlink_create() (bnc#1012628). - net: dsa: Do not suspend/resume closed slave_dev (bnc#1012628). - ipv4: frags: handle possible skb truesize change (bnc#1012628). - inet: frag: enforce memory limits earlier (bnc#1012628). - bonding: avoid lockdep confusion in bond_get_stats() (bnc#1012628). - commit 9079348 ==== libedit ==== Version update (3.1.snap20150325 -> 3.1.snap20180525) - Remove redundant --with-pic (only for static libs). - Fix RPM groups. - Bump version tag. - Make sure all manpages are prefixed with "el_" to avoid file conflicts with readline-doc: * Add libedit-20180525-manpage-conflicts.patch. - Update to version 20180525-3.1: * Sync with upstream sources - Drop no longer needed patches: * libedit-20100424-3.0-ncurses.patch * libedit-ocloexec.patch * libedit-visibility.patch - Trim unused dependencies - Drop %check section (there are no tests available) ==== libjpeg-turbo ==== Subpackages: libjpeg8 libjpeg8-32bit libturbojpeg0 - Update description and switch out MMX/SSE by the more generic term SIMD. ==== librsvg ==== Version update (2.42.5 -> 2.42.6) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.42.6: + Fix drop-shadows generated from Inkscape; we were overwriting a surface inadvertently (glgo#GNOME/librsvg#282). + Fix confusion between feSpotLight and feDistantLight (glgo#GNOME/librsvg#241). + Don't panic if we try to clip with an empty region (glgo#GNOME/librsvg#292). + Fix out-of-tree builds and tests. + Compilation can now use a RUST_TARGET variable to override the host triplet when cross-compiling. See COMPILING.md for details. ==== libstorage-ng ==== Version update (4.1.0 -> 4.1.10) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Dutch) - 4.1.10 - Translated using Weblate (Slovak) - 4.1.9 - Translated using Weblate (Japanese) - 4.1.8 - Translated using Weblate (Slovak) - updated pot and po files - changed pretty name - added documentation - Translated using Weblate (Japanese) - Translated using Weblate (Czech) - merge branch master - Translated using Weblate (German) - merge gh#openSUSE/libstorage-ng#558 - updated pot and po files - 4.1.7 - Translated using Weblate (Japanese) - 4.1.6 - extended NameSchema class - added StrayBlkDevice class (bsc#1085134) - extended unit tests - added unit test for probing xen xvd devices - cleanup - updated pot and po files - extended documentation - 4.1.5 - merge gh#openSUSE/libstorage-ng#557 - Update the "build_dependencies:*" tasks to read the alternative spec file - README.md: libjson-c-devel is needed as well - Added pkgconfig check for the libjson-c library - Do not crash when displaying summary for an encrypted but not mounted disk (bsc#1099181) - Added unit test - Fixed a typo - Translated using Weblate (German) - 4.1.4 - merge gh#openSUSE/libstorage-ng#555 - fix build with glibc 2.28 - 4.1.3 - merge gh#openSUSE/libstorage-ng#556 - update git2log script to latest version - 4.1.2 - Translated using Weblate (Chinese (China)) - 4.1.1 - added special handling when creating udev ids starting with dm-uuid for partitions on multipath (bsc#1099394) - use strlen - merge gh#openSUSE/libstorage-ng#550 - document package version scheme ==== libxkbcommon ==== Version update (0.8.0 -> 0.8.2) Subpackages: libxkbcommon-x11-0 libxkbcommon0 - Update to new upstream release 0.8.2 * Fix a few NULL-dereferences, out-of-bounds access and undefined behavior in the XKB text format parser. ==== lzo ==== - Fix RPM groups. - Trim sentence that has no comparison point. ==== mailman ==== - Restore generation of /etc/mailman/mailman.cgi-gid (bsc#1095112) ==== okteta ==== Version update (0.25.1 -> 0.25.2) Subpackages: okteta-lang - Update to 0.25.2 * Hide broken "Show non-printable chars" feature in UI for now * Translations improved (fi, pt_BR) ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Drop panel.diff: * Switch to kickoff by default (boo#1100088) ==== polkit-default-privs ==== - polkit-default-privs: add meson install action (bsc#1103811) - polkit-default-privs: fix syntax error in gamemode whitelisting (bsc#1104135) ==== postgresql10 ==== Version update (10.4 -> 10.5) Subpackages: libecpg6 libpq5 postgresql10-contrib postgresql10-devel postgresql10-docs postgresql10-server - Update to 10.5: https://www.postgresql.org/docs/current/static/release-10-5.html * CVE-2018-10915, bsc#1104199: Fix failure to reset libpq's state fully between connection attempts. * CVE-2018-10925, bsc#1104202: Fix INSERT ... ON CONFLICT UPDATE through a view that isn't just SELECT * FROM ... ==== python-lxml ==== Version update (4.2.1 -> 4.2.4) Subpackages: python2-lxml python3-lxml - Update to 4.2.4 (2018-08-03) + Features added * GH#259: Allow using ``pkg-config`` for build configuration. Patch by Patrick Griffis. + Bugs fixed * LP#1773749, GH#268: Crash when moving an element to another document with ``Element.insert()``. Patch by Alexander Weggerle. - Update to 4.2.3 + Bugs fixed * Reverted GH#265: lxml links against zlib as a shared library again. - Update to 4.2.2 + Bugs fixed * GH#266: Fix sporadic crash during GC when parse-time schema validation is used and the parser participates in a reference cycle. Original patch by Julien Greard. * GH#265: lxml no longer links against zlib as a shared library, only on static builds. Patch by Nehal J Wani. ==== python-olefile ==== Version update (0.44 -> 0.45.1) - Update to 0.45.1 * overwrite streams of any size * improved handling of malformed files * fixed several bugs * end of support for Python 2.6 and 3.3. ==== python-pyasn1 ==== Version update (0.4.3 -> 0.4.4) Subpackages: python2-pyasn1 python3-pyasn1 - update to 0.4.4 * Fixed native encoder type map to include all ASN.1 types rather than just ambiguous ones * Fixed crash in `.prettyPrint` of `Sequence` and `Set` occurring at OPTIONAL components ==== python-qt5 ==== Subpackages: python-qt5-utils python3-qt5 - No qtwebengine for riscv64 yet - Amend patch to mention even more Qt versions: * update-timeline.patch ==== remmina ==== Version update (1.2.30.1 -> 1.2.31.2) Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc remmina-plugin-xdmcp - Use noun phrasing in summary. - New package remmina-kiosk is now available - Upgraded to 1.2.31.2 * Fixed bugs - Cannot minimize in fullscreen mode. - Crash with the RDP plugin. - Missing manual pages - Upgraded to 1.2.31 * Notables changes - Custom color schemes per profile for the SSH plugin - Flatpak updates and fixes - Kiosk mode with integration in the login manager - New Icons - SFTP tool password fixes - Several fixes around RDP and compilations issues ==== rubygem-actioncable-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * No changes / Just a version bump to match with Rails 5.2.1 ==== rubygem-actionmailer-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Ensure mail gem is eager autoloaded when eager load is true to prevent thread deadlocks. (Samuel Cochran) ==== rubygem-actionpack-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Prevent `?null=` being passed on JSON encoded test requests. `RequestEncoder#encode_params` won't attempt to parse params if there are none. So call like this will no longer append a `?null=` query param. get foos_url, as: :json (Alireza Bashiri) * Ensure `ActionController::Parameters#transform_values` and `ActionController::Parameters#transform_values!` converts hashes into parameters. (Kevin Sjöberg) * Fix strong parameters `permit!` with nested arrays. Given: ``` params = ActionController::Parameters.new(nested_arrays: [[{ x: 2, y: 3 }, { x: 21, y: 42 }]]) params.permit! ``` `params[:nested_arrays][0][0].permitted?` will now return `true` instead of `false`. (Steve Hull) * Reset `RAW_POST_DATA` and `CONTENT_LENGTH` request environment between test requests in `ActionController::TestCase` subclasses. (Eugene Kenny) * Output only one Content-Security-Policy nonce header value per request. Fixes #32597. (Andrey Novikov, Andrew White) * Only disable GPUs for headless Chrome on Windows. It is not necessary anymore for Linux and macOS machines. https://bugs.chromium.org/p/chromium/issues/detail?id=737678#c1 (Stefan Wrobel) * Fix system tests transactions not closed between examples. (Sergey Tarasov) ==== rubygem-actionview-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Fix leak of `skip_default_ids` and `allow_method_names_outside_object` options to HTML attributes. (Yurii Cherniavskyi) * Fix issue with `button_to`'s `to_form_params` `button_to` was throwing exception when invoked with `params` hash that contains symbol and string keys. The reason for the exception was that `to_form_params` was comparing the given symbol and string keys. The issue is fixed by turning all keys to strings inside `to_form_params` before comparing them. (Georgi Georgiev) * Fix JavaScript views rendering does not work with Firefox when using Content Security Policy. Fixes #32577. (Yuji Yaginuma) * Add the `nonce: true` option for `javascript_include_tag` helper to support automatic nonce generation for Content Security Policy. Works the same way as `javascript_tag nonce: true` does. (Yaroslav Markin) ==== rubygem-activejob-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Pass the error instance as the second parameter of block executed by `discard_on`. Fixes #32853. (Yuji Yaginuma) ==== rubygem-activemodel-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * No changes / just aligned to Rails version 5.2.1 ==== rubygem-activerecord-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * PostgreSQL: Support new relkind for partitioned tables. Fixes #33008. (Yannick Schutz) * Rollback parent transaction when children fails to update. (Guillaume Malette) * Fix default value for MySQL time types with specified precision. (Nikolay Kondratyev) * Fix `touch` option to behave consistently with `Persistence#touch` method. (Ryuta Kamizono) * Fix `save` in `after_create_commit` won't invoke extra `after_create_commit`. Fixes #32831. (Ryuta Kamizono) * Fix logic on disabling commit callbacks so they are not called unexpectedly when errors occur. (Brian Durand) * Fix parent record should not get saved with duplicate children records. Fixes #32940. (Santosh Wadghule) * Fix that association's after_touch is not called with counter cache. Fixes #31559. (Ryuta Kamizono) * `becomes` should clear the mutation tracker which is created in `after_initialize`. Fixes #32867. (Ryuta Kamizono) * Allow a belonging to parent object to be created from a new record. (Jolyon Pawlyn) * Fix that building record with assigning multiple has_one associations wrongly persists through record. (Fixes #32511) (Sam DeCesare) * Fix relation merging when one of the relations is going to skip the query cache. (James Williams) ==== rubygem-activestorage-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Fix direct upload with zero-byte files. (George Claghorn) * Exclude JSON root from `active_storage/direct_uploads#create` response. (Javan Makhmali) ==== rubygem-activesupport-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Redis cache store: `delete_matched` no longer blocks the Redis server. (Switches from evaled Lua to a batched SCAN + DEL loop.) (Gleb Mazovetskiy) * Fix bug where `ActiveSupport::Timezone.all` would fail when tzinfo data for any timezone defined in `ActiveSupport::TimeZone::MAPPING` is missing. (Dominik Sander) * Fix bug where `ActiveSupport::Cache` will massively inflate the storage size when compression is enabled (which is true by default). This patch does not attempt to repair existing data: please manually flush the cache to clear out the problematic entries. (Godfrey Chan) * Fix `ActiveSupport::Cache#read_multi` bug with local cache enabled that was returning instances of `ActiveSupport::Cache::Entry` instead of the raw values. (Jason Lee) ==== rubygem-rails-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) This base gem doesn't have any changelog. Please have a look at the modules of Rails to get a list of all changes. ==== rubygem-railties-5.2 ==== Version update (5.2.0 -> 5.2.1) - updated to version 5.2.1 (boo#1104209) * Respect `NODE_ENV` when running `rails yarn:install`. (Max Melentiev) * Don't generate unused files in `app:update` task Skip the assets' initializer when sprockets isn't loaded. Skip `config/spring.rb` when spring isn't loaded. (Tsukuru Tanimichi) * Don't include `bootsnap` by default in apps generated under JRuby. Fixes #32641. (Guillermo Iguaran) * Create the `.ruby-version` file compatible with MRI/JRuby by default. Fixes #32639. (Guillermo Iguaran) * Make the master.key file read-only for the owner upon generation on POSIX-compliant systems. Previously: $ ls -l config/master.key - rw-r--r-- 1 owner group 32 Jan 1 00:00 master.key Now: $ ls -l config/master.key - rw------- 1 owner group 32 Jan 1 00:00 master.key Fixes #32604. (Jose Luis Duran) * Allow use of `minitest-rails` gem with Rails test runner. Fixes #31324. (Yuji Yaginuma) ==== sharutils ==== Subpackages: sharutils-lang - gnulib-libio.patch: Update gnulib for libio.h removal - Use %license for COPYING ==== srt ==== - Trim marketing from description. ==== systemd-presets-branding-transactional-server ==== - Enable create-dirs-from-rpmdb.service [boo#1104179] ==== talloc ==== Version update (2.1.13 -> 2.1.14) Subpackages: libtalloc2 libtalloc2-32bit python-talloc python-talloc-32bit - Update to version 2.1.14 + Fix some typos in the comments + Remove extra 0x prefix for the "%p" format specifiers, avoiding 0x0x0 strings in the output. + make sure we link extra-python versions of libraries ==== tdb ==== Version update (1.3.15 -> 1.3.16) Subpackages: libtdb1 libtdb1-32bit - Update to 1.3.16. + Fix build on AIX + Python3 compatibility fixes + Use tdb_wipe_all in "erase" command + Harden allocating the tdb recovery area + Make sure the hash size fits + Harden tdb_check_used_record against overflow + Harden tdb_rec_read + Handle TDB_NEXT_LOCK_ERR in tdb_traverse_internal + Fix build warnings ==== tevent ==== Version update (0.9.36 -> 0.9.37) Subpackages: libtevent0 libtevent0-32bit - Update to version 0.9.37 + simplify "poll" and "poll_mt" backends + make tevent_abort() reachable for backends + add tevent_common_invoke_*_handler() functions + add tevent_context_same_loop() function + add tevent_context_wrapper_create() infrastructure + add tevent_req_profile infrastructure ==== yast2 ==== Version update (4.0.82 -> 4.1.0) - Added widget to configure services (part of fate#319428). - 4.1.0 - Add a method to detect whether a systemd service exists in the underlying system or not (related to fate#319428). - Fix systemd socket detection. - 4.0.83 ==== yast2-dns-server ==== Version update (4.0.4 -> 4.1.0) - Use CWM::ServiceWidget to manage the service status (part of fate#319428). - 4.1.0 ==== yast2-firstboot ==== Version update (4.0.5 -> 4.0.6) - Import missing GetInstArgs module in firstboot_write client (bsc#1104158) - 4.0.6 ==== yast2-ftp-server ==== Version update (4.1.2 -> 4.1.3) - Use new Yast2::ServiceWidget to manage the service status (part of fate#319428). - 4.1.3 ==== yast2-http-server ==== Version update (4.0.3 -> 4.1.0) - Use new Yast2::ServiceWidget to manage the service status (part of fate#319428). - 4.1.0 ==== yast2-slp-server ==== Version update (4.0.1 -> 4.1.0) - Use new Yast2::ServiceWidget to manage the service status (part of fate#319428). - 4.1.0 ==== yast2-squid ==== Version update (4.0.2 -> 4.1.0) - Use new Yast2::ServiceWidget to manage the service status (part of fate#319428) - 4.1.0 ==== yast2-theme ==== Version update (4.1.0 -> 4.1.1) Subpackages: yast2-branding-openSUSE yast2-branding-openSUSE-Oxygen - Add new version of icons and more specific pattern icons (boo#1039994) - 4.1.1 ==== yum ==== - Add patch to fix bsc#1104227 correct path to rpmdb: * yum-3.4.3-correct-rpmdb-path.patch - Do not mark systemd service as config - Do not install in sitearch as this is non-platform-specific package