Packages changed: diffutils grub2 hwinfo (21.66 -> 21.67) kernel-source (5.1.16 -> 5.2.1) libcontainers-common mozilla-nss (3.43 -> 3.44.1) open-iscsi parted transactional-update (2.14.2 -> 2.15) === Details === ==== diffutils ==== - ignore make check error for diff --color as tracked by https://debbugs.gnu.org/cgi/bugreport.cgi?bug=36488 ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi - Revert grub2-ieee1275-FCP-methods-for-WWPN-and-LUNs.patch until merged by upstream (bsc#1134287, bsc#1139345, LTC#177836, LTC#174229). ==== hwinfo ==== Version update (21.66 -> 21.67) - merge gh#openSUSE/hwinfo#81 - fix DASD detection (bsc#1136475) - don't include bcache devices - 21.67 ==== kernel-source ==== Version update (5.1.16 -> 5.2.1) Subpackages: kernel-debug kernel-default - Linux 5.2.1 (bnc#1012628). - staging: rtl8712: reduce stack usage, again (bnc#1012628). - staging: bcm2835-camera: Handle empty EOS buffers whilst streaming (bnc#1012628). - staging: bcm2835-camera: Remove check of the number of buffers supplied (bnc#1012628). - staging: bcm2835-camera: Ensure all buffers are returned on disable (bnc#1012628). - staging: bcm2835-camera: Replace spinlock protecting context_map with mutex (bnc#1012628). - staging: fsl-dpaa2/ethsw: fix memory leak of switchdev_work (bnc#1012628). - staging: vchiq: revert "switch to wait_for_completion_killable" (bnc#1012628). - staging: vchiq: make wait events interruptible (bnc#1012628). - staging: vchiq_2835_arm: revert "quit using custom down_interruptible()" (bnc#1012628). - VMCI: Fix integer overflow in VMCI handle arrays (bnc#1012628). - Revert "x86/build: Move _etext to actual end of .text" (bnc#1012628). - carl9170: fix misuse of device driver API (bnc#1012628). - coresight: tmc-etf: Do not call smp_processor_id from preemptible (bnc#1012628). - coresight: tmc-etr: alloc_perf_buf: Do not call smp_processor_id from preemptible (bnc#1012628). - coresight: tmc-etr: Do not call smp_processor_id() from preemptible (bnc#1012628). - coresight: etb10: Do not call smp_processor_id from preemptible (bnc#1012628). - coresight: Potential uninitialized variable in probe() (bnc#1012628). - iio: adc: stm32-adc: add missing vdda-supply (bnc#1012628). - binder: return errors from buffer copy functions (bnc#1012628). - binder: fix memory leak in error path (bnc#1012628). - lkdtm: support llvm-objcopy (bnc#1012628). - HID: Add another Primax PIXART OEM mouse quirk (bnc#1012628). - staging: mt7621-pci: fix PCIE_FTS_NUM_LO macro (bnc#1012628). - staging: comedi: amplc_pci230: fix null pointer deref on interrupt (bnc#1012628). - staging: bcm2835-camera: Restore return behavior of ctrl_set_bitrate() (bnc#1012628). - staging: wilc1000: fix error path cleanup in wilc_wlan_initialize() (bnc#1012628). - staging: comedi: dt282x: fix a null pointer deref on interrupt (bnc#1012628). - p54: fix crash during initialization (bnc#1012628). - drivers/usb/typec/tps6598x.c: fix 4CC cmd write (bnc#1012628). - drivers/usb/typec/tps6598x.c: fix portinfo width (bnc#1012628). - usb: renesas_usbhs: add a workaround for a race condition of workqueue (bnc#1012628). - usb: dwc2: use a longer AHB idle timeout in dwc2_core_reset() (bnc#1012628). - usb: gadget: ether: Fix race between gether_disconnect and rx_submit (bnc#1012628). - usb: gadget: f_fs: data_len used before properly set (bnc#1012628). - p54usb: Fix race between disconnect and firmware loading (bnc#1012628). - Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled" (bnc#1012628). - USB: serial: option: add support for GosunCn ME3630 RNDIS mode (bnc#1012628). - USB: serial: ftdi_sio: add ID for isodebug v1 (bnc#1012628). - mwifiex: Don't abort on small, spec-compliant vendor IEs (bnc#1012628). - Documentation/admin: Remove the vsyscall=native documentation (bnc#1012628). - Documentation: Add section about CPU vulnerabilities for Spectre (bnc#1012628). - x86/tls: Fix possible spectre-v1 in do_get_thread_area() (bnc#1012628). - x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg() (bnc#1012628). - perf header: Assign proper ff->ph in perf_event__synthesize_features() (bnc#1012628). - perf thread-stack: Fix thread stack return from kernel for kernel-only case (bnc#1012628). - perf pmu: Fix uncore PMU alias list for ARM64 (bnc#1012628). - perf intel-pt: Fix itrace defaults for perf script intel-pt documentation (bnc#1012628). - perf auxtrace: Fix itrace defaults for perf script (bnc#1012628). - perf intel-pt: Fix itrace defaults for perf script (bnc#1012628). - block, bfq: NULL out the bic when it's no longer valid (bnc#1012628). - block: fix .bi_size overflow (bnc#1012628). - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM operations (bnc#1012628). - tpm: Actually fail on TPM errors during "get random" (bnc#1012628). - ALSA: hda/realtek - Headphone Mic can't record after S3 (bnc#1012628). - ALSA: usb-audio: Fix parse of UAC2 Extension Units (bnc#1012628). - media: stv0297: fix frequency range limit (bnc#1012628). - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length (bnc#1012628). - fscrypt: don't set policy for a dead directory (bnc#1012628). - crypto: talitos - rename alternative AEAD algos (bnc#1012628). - crypto: lrw - use correct alignmask (bnc#1012628). - commit 51ca500 - net: bpfilter: print umh messages to /dev/kmsg (bsc#1140221). - commit 139acc9 - series.conf: sync with master - commit 80522d2 - rpm/kernel-binary.spec.in: handle modules.builtin.modinfo It was added in 5.2. - commit eb88df3 - Disable CONFIG_OVERLAY_FS_REDIRECT_ALWAYS_FOLLOW in config (bsc#1140494) - commit 8d950e4 - Delete patches.suse/Revert-ovl-detect-overlapping-layers.patch. - Delete patches.suse/Revert-ovl-don-t-fail-with-disconnected-lower-NFS.patch. - Delete patches.suse/Revert-ovl-fix-bogus-Wmaybe-unitialized-warning.patch. transactional-update was fixed, see sr#714110. - commit 927afc9 - Update to 5.2 final - Eliminated 1 patch - commit b36439f - Refresh tpm: tpm_ibm_vtpm: Fix unallocated banks (boo#1139244). - commit 99f9469 - config: align CONFIG_PHYSICAL_START and CONFIG_PHYSICAL_ALIGN to default values As suggested in bsc#1067593, our kconfig keeps the old default values while the upstream took different (actually swapped) values for x86 CONFIG_PHYSICAL_START and CONFIG_PHYSICAL_ALIGN. Let's follow the upstream default now. - commit baa2434 - Rename patches.suse/[PATCH]_tpm:_fixes_uninitialized_allocated_banks_for_IBM_vtpm_driver to patches.suse/tpm-fixes-uninitialized-allocated-banks-for-IBM-vtpm-driver.patch Let's not risk some tool somewhere does not handle special characters correctly. - commit 8a3fff9 - tpm: fixes uninitialized allocated banks for IBM vtpm driver (boo#1139244). - Delete patches.suse/Revert-tpm-pass-an-array-of-tpm_extend_digest-struct.patch. - commit 43ec0a5 ==== libcontainers-common ==== - Update to libpod v1.4.4 - Fixed a bug where rootless Podman would attempt to use the entire root configuration if no rootless configuration was present for the user, breaking rootless Podman for new installations - Fixed a bug where rootless Podman's pause process would block SIGTERM, preventing graceful system shutdown and hanging until the system's init send SIGKILL - Fixed a bug where running Podman as root with sudo -E would not work after running rootless Podman at least once - Fixed a bug where options for tmpfs volumes added with the - -tmpfs flag were being ignored - Fixed a bug where images with no layers could not properly be displayed and removed by Podman - Fixed a bug where locks were not properly freed on failure to create a container or pod - Podman now has greatly improved support for containers using multiple OCI runtimes. Containers now remember if they were created with a different runtime using --runtime and will always use that runtime - The cached and delegated options for volume mounts are now allowed for Docker compatability (#3340) - The podman diff command now supports the --latest flag - Fixed a bug where podman cp on a single file would create a directory at the target and place the file in it (#3384) - Fixed a bug where podman inspect --format '{{.Mounts}}' would print a hexadecimal address instead of a container's mounts - Fixed a bug where rootless Podman would not add an entry to container's /etc/hosts files for their own hostname (#3405) - Fixed a bug where podman ps --sync would segfault (#3411) - Fixed a bug where podman generate kube would produce an invalid ports configuration (#3408) - Podman now performs much better on systems with heavy I/O load - The --cgroup-manager flag to podman now shows the correct default setting in help if the default was overridden by libpod.conf - For backwards compatability, setting --log-driver=json-file in podman run is now supported as an alias for - -log-driver=k8s-file. This is considered deprecated, and json-file will be moved to a new implementation in the future ([#3363](https://github.com/containers/libpod/issues/3363)) - Podman's default libpod.conf file now allows the crun OCI runtime to be used if it is installed - Fixed a bug where Podman could not run containers using an older version of Systemd as init (#3295) - Updated vendored Buildah to v1.9.0 to resolve a critical bug with Dockerfile RUN instructions - The error message for running podman kill on containers that are not running has been improved - The Podman remote client can now log to a file if syslog is not available - The MacOS dmg file is experimental, use at your own risk. - The podman exec command now sets its error code differently based on whether the container does not exist, and the command in the container does not exist - The podman inspect command on containers now outputs Mounts JSON that matches that of docker inspect, only including user-specified volumes and differentiating bind mounts and named volumes - The podman inspect command now reports the path to a container's OCI spec with the OCIConfigPath key (only included when the container is initialized or running) - The podman run --mount command now supports the bind-nonrecursive option for bind mounts (#3314) - Fixed a bug where podman play kube would fail to create containers due to an unspecified log driver - Fixed a bug where Podman would fail to build with musl libc (#3284) - Fixed a bug where rootless Podman using slirp4netns networking in an environment with no nameservers on the host other than localhost would result in nonfunctional networking (#3277) - Fixed a bug where podman import would not properly set environment variables, discarding their values and retaining only keys - Fixed a bug where Podman would fail to run when built with Apparmor support but run on systems without the Apparmor kernel module loaded (#3331) - Remote Podman will now default the username it uses to log in to remote systems to the username of the current user - Podman now uses JSON logging with OCI runtimes that support it, allowing for better error reporting - Updated vendored Buildah to v1.8.4 - Updated vendored containers/image to v2.0 - Update to image v2.0.0 - Add registry mirror support - Include missing man pages (bsc#1139526) - Update to storage v1.12.10 - Add support for UID as well as UserName in /etc/subuid files. - utils: fix check for missing conf file - compression: add support for the zstd algorithm - overlay: cache the results of supported/using-metacopy/use-naive-diff feature tests ==== mozilla-nss ==== Version update (3.43 -> 3.44.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs - update to NSS 3.44.1 * required by Firefox 68.0 Bugs fixed * bmo#1554336 - Optimize away unneeded loop in mpi.c * bmo#1515342 - More thorough input checking * bmo#1540541 - Don't unnecessarily strip leading 0's from key material during PKCS11 import * bmo#1515236 - Add a SSLKEYLOGFILE enable/disable flag at build.sh * bmo#1546229 - Add IPSEC IKE support to softoken * bmo#1473806 - Fix SECKEY_ConvertToPublicKey handling of non-RSA keys * bmo#1546477 - Updates to testing for FIPS validation * bmo#1552208 - Prohibit use of RSASSA-PKCS1-v1_5 algorithms in TLS 1.3 * bmo#1551041 - Unbreak build on GCC < 4.3 big-endian - update to NSS 3.44 * required by Firefox 68.0 New functions * CERT_GetCertificateDer - Access the DER-encoded form of a CERTCertificate Notable changes * It is now possible to build NSS as a static library (bmo#1543545) * Initial support for building for iOS Bugs fixed * full list https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.44_release_notes - merge some baselibs fixes from SLE ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Ensure /etc/iscsi/initiatorname.iscsi has reproducible size works around https://github.com/rpm-software-management/rpm/pull/229, updating the SPEC file ==== parted ==== Subpackages: libparted0 - port fixes for various bugs from upstream (bsc#1136245) - add: libparted-dasd-correct-the-offset-where-the-first-pa.patch 4126d02, correct the offset where the first partition begins. This patch implements libparted-dasd-do-not-use-first-tracks.patch - remove: libparted-dasd-do-not-use-first-tracks.patch - add: parted-fix-crash-due-to-improper-partition-number-in.patch 149f009, fix crash due to improper partition number input, changed call to strtol, use base 0 to fit our parted-type.patch - modify: parted-type.patch (removed ui.c part) - add: parted-check-the-name-of-partition-first-when-to-nam.patch d7a2ff1, check the name of partition first when to name a partition - add: libparted-dasd-add-test-cases-for-the-new-fdasd-func.patch c11f5c0, 571e078, add test cases for the new fdasd functions - add: libparted-dasd-add-an-exception-for-changing-DASD-LD.patch ee2c0c2, add an exception for changing DASD-LDL partition table - add: libpartd-dasd-improve-flag-processing-for-DASD-LDL.patch 1545d6d, improve flag processing for DASD-LDL - add: clean-the-disk-information-when-commands-fail-in-int.patch 5a61f15, clean the disk information when commands fail in interactive mode - add: parted-ui-remove-unneccesary-information-of-command.patch 0b7946a, remove unneccesary information of command line - add: parted-fix-wrong-error-label-jump-in-mkpart.patch af150f6, fix wrong error label jump in mkpart - refresh: libparted-dasd-unify-vtoc-handling-for-cdl-ldl.patch 4f25d54, unify vtoc handling for cdl/ldl - refresh: libparted-dasd-update-and-improve-fdasd-functions.patch db37c8c, update and improve fdasd functions - refresh: libparted-dasd-add-new-fdasd-functions.patch b9e1281, add new fdasd functions ==== transactional-update ==== Version update (2.14.2 -> 2.15) Subpackages: transactional-update-zypp-config - Update to version 2.15 - Move description of interactiveness [boo#1132438] - Enable network during update [boo#1137890] - Add compatibilty with new overlayfs versions [boo#1140057] - Allow updates of the bootloader on EFI systems [boo#1139015] - Add support for /boot/writable [boo#1138725]