Packages changed: aaa_base (84.87+git20190822.82a17f1 -> 84.87+git20191017.bf0a315) freetype2 gpg2 libxslt libzypp (17.14.0 -> 17.15.0) lvm2-device-mapper lz4 (1.9.1 -> 1.9.2) open-iscsi perl-Bootloader (0.925 -> 0.926) python-base rpm rpm-config-SUSE (0.g35 -> 0.g40) shadow vim (8.1.2052 -> 8.1.2148) xen (4.12.1_02 -> 4.13.0_01) yast2 (4.2.27 -> 4.2.28) === Details === ==== aaa_base ==== Version update (84.87+git20190822.82a17f1 -> 84.87+git20191017.bf0a315) - Update to version 84.87+git20191017.bf0a315: * Use short TERM name rxvt for rxvt-unicode and rxvt-unicode-256-color - Update to version 84.87+git20191017.14003c1: * Use official key binding functions in inputrc that is replace up-history with previous-history, down-history with next-history and backward-delete-word with backward-kill-word (bsc#1084934). Add some missed key escape sequences for urxvt-unicode terminal as well (boo#1007715). - Update to version 84.87+git20191016.80d1420: * backup-sysconfig: fall back top cpio if tar is not available (bsc#1089299) * backup-rpmdb: check if rpm database is okay before backup to avoid overwriting good backups with corrupt ones (bsc#1079861) * service: check if there is a second argument before using it (bsc#1051143) - Update to version 84.87+git20191014.52dc403: * also add color alias for ip command, jira#sle-9880, bsc#1153943 - Update to version 84.87+git20191010.b20083a: * check if variables can be set before modifying them to avoid warnings on login with a restricted shell (bsc#1138869) - Update to version 84.87+git20191009.4c2bd8e: * Add s390x compressed kernel support (bsc#1151023) * Fix LC_NAME and LC_ADDRESS in sh.ssh * fix string test to arithmetic test in /etc/profile.d/wsl.sh ==== freetype2 ==== - Use the compiler default C std, since 2012 gcc defaults have changed, we now only need to get rid of ANSIFLAGS, override that variable instead. ==== gpg2 ==== - Do not recommend lang package. The lang package already has a supplements. ==== libxslt ==== - Security fix [bsc#1154609, CVE-2019-18197] * Fix dangling pointer in xsltCopyText * Add libxslt-CVE-2019-18197.patch ==== libzypp ==== Version update (17.14.0 -> 17.15.0) - Fix empty metalink downloads if filesize is unknown (bsc#1153557) - Recognize riscv64 as architecture - Fix installation of new header file (fixes #185) - zypp.conf: Introduce `solver.focus` to define the resolvers general attitude when resolving jobs. (bsc#1146415) - New container detection algorithm for zypper ps (bsc#1146947) - version 17.15.0 (12) - Revert "Use CURL_HTTP_VERSION_2TLS if available" (bsc#1146027) - doc: add service example using variables - Fix build with rpm >= 4.15 (fixes #172) - version 17.14.1 (12) ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - lvm2-pvscan needs process speed improvement on a large scale PVs (jcs#SLE-5498) + jcs-SLE5498_pvscan-allow-use-of-noudevsync-option.patch ==== lz4 ==== Version update (1.9.1 -> 1.9.2) - enable testsuite - verbose build - version update to 1.9.2 * decompression functions were reading a few bytes beyond input size * api: lz4frame initializers compatibility with c++, reported by @degski * cli : added command --list, based on a patch by @gabrielstedman ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Merge in latest upstream, with fixes for: * Support CHAP SHA-1, SHA-256, SHA3-256 vis openssl libcrypto - this requires an update of the SPEC file, as well * Initialize timeout for printing specific session info Updating (in addition to the SPEC file): * open-iscsi-SUSE-latest.diff.bz2 ==== perl-Bootloader ==== Version update (0.925 -> 0.926) - merge gh#openSUSE/perl-bootloader#123 - Accept sysconfig values without quotes - 0.926 ==== python-base ==== Subpackages: libpython2_7-1_0 - Add CVE-2019-16935-xmlrpc-doc-server_title.patch fixing bsc#1153238 (aka CVE-2019-16935) fixing a reflected XSS in python/Lib/DocXMLRPCServer.py ==== rpm ==== - Split librpmbuild into a separate subpackage, it's pulled in by python-rpm - Add set-flto=auto-by-default.patch in order to utilize -flto=auto. - Move more into rpm-build subpackage: * brp- and -check scripts * .prov and .req files, with *find* scripts * elfdeps, debugedit and sepdebugcrcfix * librpmbuild and dependents - Add upstream patches which remove libelf dep from librpmio and plugins: * 0001-Stop-papering-over-the-security-disaster-known-as-pr.patch * 0002-Fix-use-after-free-introduced-in-0f21bdd0d7b2c45564d.patch ==== rpm-config-SUSE ==== Version update (0.g35 -> 0.g40) - Update to version 0.g40: * locale.prov: also work with -locale packages * locale.prov: discard input in error case - Update to version 0.g37: * Add macros for locale provides ==== shadow ==== - libeconf.patch: Add support for libeconf and /usr/etc for login.defs. - Move first configuration files and pam config files to /usr/etc ==== vim ==== Version update (8.1.2052 -> 8.1.2148) Subpackages: vim-data-common - Updated to version 8.1.2148, fixes the following problems * Using "x" before a closed fold may delete that fold. * SafeStateAgain not triggered if callback uses feedkeys(). * Compiler test for Perl may fail. * Not easy to jump to function line from profile. * "make test" for indent files doesn't cause make to fail. * The screen.c file is much too big. * Function for ex command is named inconsistently. * Fix for "x" deleting a fold has side effects. * "precedes" in 'listchars' not used properly. * The mouse code is spread out. * Some tests fail when +balloon_eval_term is missing but _balloon_eval is present. (Dominique Pelle) * No tests for state(). * No tests for SafeState and SafeStateAgain. * Test for SafeState and SafeStateAgain may fail. * Test for SafeStateAgain may still fail. * Mouse code is spread out. * When 'wincolor' is set text property changes highlighting. (Andy Stewart) * "gk" moves to start of line instead of upwards. * When editing a buffer 'colorcolumn' may not work. * Test for SafeState autocommand is a bit flaky. * Get many log messages when waiting for a typed character. * Crash when trying to put a terminal buffer in a popup window. * The ops.c file is too big. * Build error with +textprop but without +terminal. (Tony Mechelynck) * Popup window test fails without +terminal. * The terminal API is limited and can't be disabled. * The spell.c file is too big. * Some files have a weird name to fit in 8.3 characters. * Multi-byte chars do not work properly with "%.*S" in printf(). * Missing a few changes for the renamed files. * Cannot easily select one test function to execute. * Renamed libvterm mouse.c file not in distributed file list. * Do not get a hint that $TEST_FILTER was active. * Not clear why channel log file ends. * Double free when memory allocation fails. (Zu-Ming Jiang) * The fileio.c file is too big. * Leaking memory when getting item from dict. * Too many #ifdefs. * :mksession is not sufficiently tested. * mksession test fails on MS-Windows. * state() test fails on some Mac systems. * :mksession is not sufficiently tested. * write_session_file() often defined but not used. * Can't build with GTK and FEAT_GUI_GNOME. (Tony Mechelynck) * wrong error message if "termdebugger" is not executable. * The normal.c file is too big. * No tests for dragging the mouse beyond the window. * Various memory leaks reported by asan. * Cannot close the cmdline window from CmdWinEnter. (George Brown) * popup_getoptions() hangs with tab-local popup. * CTRL-C closes two popups instead of one. * Viminfo file not sufficiently tested. * Build number for ConPTY is outdated. * ":help expr-!~?" only works after searching. * When a popup is closed with CTRL-C the callback aborts. * No check for out of memory. * CursorLine highlight used while 'cursorline' is off. * Termcodes test fails when $TERM is "dumb". * memory access error for empty string when 'encoding' is a single byte encoding. * Some MB_ macros are more complicated than necessary. (Dominique Pelle) * Mode is not updated when switching to terminal in Insert mode. * Cannot build without terminal feature. * Parsing CSI sequence is messy. * Ruler is not updated if win_execute() moves cursor. * Fnamemodify() fails when repeating :e. * Viminfo not sufficiently tested. * The indent.c file is a bit big. * Renamed libvterm sources makes merging difficult. * Using hard coded executable path in test. * MSVC build fails. * MSVC tests fail. * MS-Windows: screen mess when not recognizing insider build. * Some tests fail when run as root. * Modifier keys are not always recognized. * With modifyOtherKeys Alt-a does not work properly. * using freed memory with autocmd from fuzzer. (Dhiraj Mishra, Dominique Pelle) * Parsing the termresponse is not tested. * Including the build number in the Win32 binary is confusing. * The modifyOtherKeys codes are not tested. * "gk" and "gj" do not work correctly in number column. * :tselect has an extra hit-enter prompt. * Some key mappings do not work with modifyOtherKeys. * Cannot see each command even when 'verbose' is set. * Side effects when using t_ti to enable modifyOtherKeys. * Cannot map when modifyOtherKeys is enabled. * Build failure. * Crash when allocating memory fails. (Zu-Ming Jiang) * No test for right click extending Visual area. ==== xen ==== Version update (4.12.1_02 -> 4.13.0_01) - Update to Xen 4.13.0 RC1 release xen-4.13.0-testing-src.tar.bz2 - Drop patches contained in new tarball or invalid 5ca7660f-x86-entry-drop-unused-includes.patch 5cab2a6b-x86-ACPI-also-parse-AMD-tables-early.patch 5cab2ab7-x86-IOMMU-introduce-init-ops.patch 5cab2ae8-x86-IOMMU-abstract-iommu_supports_eim.patch 5cab2b4e-x86-IOMMU-abstract-iommu_enable_x2apic_IR.patch 5cab2b95-x86-IOMMU-initialize-iommu_ops-in.patch 5cac9a4b-x86-IOMMU-abstract-adjust_vtd_irq_affinities.patch 5cdeac7f-AMD-IOMMU-adjust-IOMMU-list-head-init.patch 5cf8da09-adjust-sysdom-creation-call-earlier-on-x86.patch 5d0cf4e4-AMD-IOMMU-initialize-IRQ-tasklet-once.patch 5d149bb0-AMD-IOMMU-dont-add-IOMMUs.patch 5d1b3fab-AMD-IOMMU-restrict-feature-logging.patch 5d358508-x86-IRQ-desc-affinity-represents-request.patch 5d358534-x86-IRQ-consolidate-arch-cpu_mask-use.patch 5d358a67-AMD-IOMMU-pass-IOMMU-to-iterate_ivrs_entries-cb.patch 5d358a92-AMD-IOMMU-pass-IOMMU-to-amd_iommu_alloc_intremap_table.patch 5d39811c-x86-IOMMU-dont-restrict-IRQ-affinities.patch 5d417813-AMD-IOMMU-bitfield-extended-features.patch 5d417838-AMD-IOMMU-bitfield-control-reg.patch 5d41785b-AMD-IOMMU-bitfield-IRTE.patch 5d41787e-AMD-IOMMU-pass-IOMMU-to-gfu-intremap-entry.patch 5d4178ad-AMD-IOMMU-128bit-non-guest-APIC-IRTE.patch 5d4178fc-AMD-IOMMU-split-amd_iommu_init_one.patch 5d41793f-AMD-IOMMU-allow-enabling-without-IRQ.patch 5d417a16-AMD-IOMMU-adjust-IRQ-setup-for-x2APIC.patch 5d417ab6-AMD-IOMMU-enable-x2APIC-mode.patch 5d417b38-AMD-IOMMU-correct-IRTE-updating.patch 5d417b6a-AMD-IOMMU-dont-needlessly-log-headers.patch 5d419d49-x86-spec-ctrl-report-proper-status.patch 5d43253c-x86-ucode-always-collect_cpu_info-at-boot.patch 5d4a9d25-AMD-IOMMU-drop-not-found-message.patch 5d4aa36f-x86-apic-enable-x2APIC-mode-earlier.patch 5d4afa7a-credit2-fix-memory-leak.patch 5d4d850a-introduce-bss-percpu-page-aligned.patch 5d516531-x86-xpti-dont-leak-TSS-adjacent-data.patch 5d5bf475-x86-PV-fix-handling-of-iommu-mappings.patch 5d6524ca-x86-mm-correctly-init-M2P-entries.patch 5d67ceaf-x86-properly-gate-PKU-clearing.patch 5d70bfba-x86-shadow-dont-enable-with-too-small-allocation.patch 5d779811-x86-fix-CPUID7-0-eax-levelling-MSR.patch 5d77b40f-fix-hvm_all_ioreq_servers_add_vcpu-cleanup.patch 5d80e7c0-AMD-IOMMU-free-shared-IRT-once.patch 5d80e80d-AMD-IOMMU-valid-flag-for-IVRS-mappings.patch 5d80e82e-AMD-IOMMU-alloc_intremap_table-callers-handle-errors.patch 5d80e857-x86-PCI-read-MSI-X-table-entry-count-early.patch 5d80ea13-vpci-honor-read-only-devices.patch 5d89d8d9-libxc-x86-avoid-overflow-in-CPUID-APIC-ID.patch 5d8b715f-ACPI-cpuidle-bump-max-num-of-states.patch 5d8b72e5-AMD-IOMMU-dont-blindly-alloc-intremap-tables.patch 5d8b730e-AMD-IOMMU-phantom-funcs-share-intremap-tables.patch 5d8b733b-x86-PCI-read-max-MSI-vector-count-early.patch 5d8b736d-AMD-IOMMU-replace-INTREMAP_ENTRIES.patch 5d8b7393-AMD-IOMMU-restrict-intremap-table-sizes.patch 5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch 5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch 5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch CVE-2014-0222-blktap-qcow1-validate-l2-table-size.patch blktap2-no-uninit.patch libxl.prepare-environment-for-domcreate_stream_done.patch pygrub-python3-conversion.patch fix-xenpvnetboot.patch - bsc#1135799 - Partner-L3: Xen crashes on AMD ROME based machines 5d9ee2a8-AMD-IOMMU-alloc-1-devtab-per-PCI-seg.patch 5d9ee2f0-AMD-IOMMU-allocate_buffer-avoid-memset.patch 5d9ee312-AMD-IOMMU-prefill-all-DTEs.patch ==== yast2 ==== Version update (4.2.27 -> 4.2.28) - Fix showing details for accessing media error (bsc#1153297) - 4.2.28