openSUSE-2020-859 moderate openSUSE Leap 15.2 Update This update for festival fixes the following issues: - Fixed NULL dereference problem (EST_Item's method may be called even though "this" is NULL); it causes SIGSEGV in text2wave (boo#1173193). festival-2.5.0-lp152.3.3.1.src.rpm festival-2.5.0-lp152.3.3.1.x86_64.rpm festival-debuginfo-2.5.0-lp152.3.3.1.x86_64.rpm festival-debugsource-2.5.0-lp152.3.3.1.x86_64.rpm festival-devel-2.5.0-lp152.3.3.1.x86_64.rpm openSUSE-2020-860 moderate openSUSE Leap 15.2 Update This update for jq fixes the following issues: jq was updated to version 1.6: * Destructuring Alternation * many new builtins (see docs) * Add support for ASAN and UBSAN * Make it easier to use jq with shebangs * Add $ENV builtin variable to access environment * Add JQ_COLORS env var for configuring the output colors * change: Calling jq without a program argument now always assumes "." for the program, regardless of stdin/stdout * fix: Make sorting stable regardless of qsort. - Make jq depend on libjq1, so upgrading jq upgrades both This update was imported from the SUSE:SLE-15:Update update project. jq-1.6-lp152.4.3.1.src.rpm jq-1.6-lp152.4.3.1.x86_64.rpm jq-debuginfo-1.6-lp152.4.3.1.x86_64.rpm jq-debugsource-1.6-lp152.4.3.1.x86_64.rpm libjq-devel-1.6-lp152.4.3.1.x86_64.rpm libjq1-1.6-lp152.4.3.1.x86_64.rpm libjq1-debuginfo-1.6-lp152.4.3.1.x86_64.rpm jq-1.6-lp152.4.3.1.i586.rpm jq-debuginfo-1.6-lp152.4.3.1.i586.rpm jq-debugsource-1.6-lp152.4.3.1.i586.rpm libjq-devel-1.6-lp152.4.3.1.i586.rpm libjq1-1.6-lp152.4.3.1.i586.rpm libjq1-debuginfo-1.6-lp152.4.3.1.i586.rpm openSUSE-2020-861 moderate openSUSE Leap 15.2 Update This update for rubygem-bundler fixes the following issue: - CVE-2019-3881: Fixed insecure permissions on a directory in /tmp/ that allowed malicious code execution (bsc#1143436). This update was imported from the SUSE:SLE-15:Update update project. ruby2.5-rubygem-bundler-1.16.1-lp152.4.3.1.x86_64.rpm ruby2.5-rubygem-bundler-doc-1.16.1-lp152.4.3.1.x86_64.rpm rubygem-bundler-1.16.1-lp152.4.3.1.src.rpm openSUSE-2020-863 moderate openSUSE Leap 15.2 Update This update for git to version 2.26.2 fixes the following issues: - Fixed git-daemon not starting after conversion from sysvinit to systemd service (bsc#1169605). - Enabled access for git-daemon in firewall configuration (bsc#1170302). - Fixed problems with recent switch to protocol v2, which caused fetches transferring unreasonable amount of data (bsc#1170741). git-2.26.2-lp152.2.3.1.src.rpm git-2.26.2-lp152.2.3.1.x86_64.rpm git-arch-2.26.2-lp152.2.3.1.x86_64.rpm git-core-2.26.2-lp152.2.3.1.x86_64.rpm git-core-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-gnome-keyring-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-gnome-keyring-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-libsecret-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-libsecret-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-cvs-2.26.2-lp152.2.3.1.x86_64.rpm git-daemon-2.26.2-lp152.2.3.1.x86_64.rpm git-daemon-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-debugsource-2.26.2-lp152.2.3.1.x86_64.rpm git-doc-2.26.2-lp152.2.3.1.noarch.rpm git-email-2.26.2-lp152.2.3.1.x86_64.rpm git-gui-2.26.2-lp152.2.3.1.x86_64.rpm git-p4-2.26.2-lp152.2.3.1.x86_64.rpm git-svn-2.26.2-lp152.2.3.1.x86_64.rpm git-svn-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-web-2.26.2-lp152.2.3.1.x86_64.rpm gitk-2.26.2-lp152.2.3.1.x86_64.rpm git-2.26.2-lp152.2.3.1.i586.rpm git-arch-2.26.2-lp152.2.3.1.i586.rpm git-core-2.26.2-lp152.2.3.1.i586.rpm git-core-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-credential-gnome-keyring-2.26.2-lp152.2.3.1.i586.rpm git-credential-gnome-keyring-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-credential-libsecret-2.26.2-lp152.2.3.1.i586.rpm git-credential-libsecret-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-cvs-2.26.2-lp152.2.3.1.i586.rpm git-daemon-2.26.2-lp152.2.3.1.i586.rpm git-daemon-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-debugsource-2.26.2-lp152.2.3.1.i586.rpm git-email-2.26.2-lp152.2.3.1.i586.rpm git-gui-2.26.2-lp152.2.3.1.i586.rpm git-p4-2.26.2-lp152.2.3.1.i586.rpm git-svn-2.26.2-lp152.2.3.1.i586.rpm git-svn-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-web-2.26.2-lp152.2.3.1.i586.rpm gitk-2.26.2-lp152.2.3.1.i586.rpm openSUSE-2020-862 moderate openSUSE Leap 15.2 Update This update for susefirewall2-to-firewalld fixes the following issues: - Fixed "INVALID_PORT" error message with certain SuSEfirewall2 configurations (bsc#1170461). This update was imported from the SUSE:SLE-15:Update update project. susefirewall2-to-firewalld-0.0.4-lp152.3.3.1.noarch.rpm susefirewall2-to-firewalld-0.0.4-lp152.3.3.1.src.rpm openSUSE-2020-871 moderate openSUSE Leap 15.2 Update This update for sar2 fixes the following issues: Update to version 2.5.0: * Add preliminary OSX support. * Improve lagging on touch-down event. * Fix crash when loading Free Flight mode. * Add wind support and aerodynamic drag. * Add 2 training missions in windy weather. * Add support for wind gusts. * Rework airplane physics and stalling conditions. * Adjust models for more realistic speed and service ceiling conditions. * Allow a minimum helicopter throotle to 25% (previously it was 50%). * Let smoke be carried by the wind. * Add a switch in simulation options to enable/disable Wind. * Add wind conditions to all Guadarrama missions. * Honor wheel brake coefficient. sar2-2.5.0-lp152.2.3.1.src.rpm sar2-2.5.0-lp152.2.3.1.x86_64.rpm sar2-data-2.5.0-lp152.2.3.1.noarch.rpm sar2-debuginfo-2.5.0-lp152.2.3.1.x86_64.rpm sar2-debugsource-2.5.0-lp152.2.3.1.x86_64.rpm openSUSE-2020-872 moderate openSUSE Leap 15.2 Update This update for bluez fixes the following issues: - CVE-2020-0556: Fixed an improper access control which could have allowed an unauthenticated user to potentially enable escalation of privilege and denial of service (bsc#1166751). This update was imported from the SUSE:SLE-15:Update update project. bluez-5.48-lp152.12.3.1.src.rpm bluez-5.48-lp152.12.3.1.x86_64.rpm bluez-auto-enable-devices-5.48-lp152.12.3.1.noarch.rpm bluez-cups-5.48-lp152.12.3.1.x86_64.rpm bluez-cups-debuginfo-5.48-lp152.12.3.1.x86_64.rpm bluez-debuginfo-5.48-lp152.12.3.1.x86_64.rpm bluez-debugsource-5.48-lp152.12.3.1.x86_64.rpm bluez-devel-5.48-lp152.12.3.1.x86_64.rpm bluez-test-5.48-lp152.12.3.1.x86_64.rpm bluez-test-debuginfo-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-debuginfo-5.48-lp152.12.3.1.x86_64.rpm bluez-5.48-lp152.12.3.1.i586.rpm bluez-cups-5.48-lp152.12.3.1.i586.rpm bluez-cups-debuginfo-5.48-lp152.12.3.1.i586.rpm bluez-debuginfo-5.48-lp152.12.3.1.i586.rpm bluez-debugsource-5.48-lp152.12.3.1.i586.rpm bluez-devel-32bit-5.48-lp152.12.3.1.x86_64.rpm bluez-devel-5.48-lp152.12.3.1.i586.rpm bluez-test-5.48-lp152.12.3.1.i586.rpm bluez-test-debuginfo-5.48-lp152.12.3.1.i586.rpm libbluetooth3-32bit-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-32bit-debuginfo-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-5.48-lp152.12.3.1.i586.rpm libbluetooth3-debuginfo-5.48-lp152.12.3.1.i586.rpm openSUSE-2020-873 moderate openSUSE Leap 15.2 Update This update for python-paramiko fixes the following issues: - Fixed a problem from the last fix that caused Vorta to fail (bsc#1169489) This update was imported from the SUSE:SLE-15-SP1:Update update project. python-paramiko-2.4.2-lp152.3.3.1.src.rpm python-paramiko-doc-2.4.2-lp152.3.3.1.noarch.rpm python2-paramiko-2.4.2-lp152.3.3.1.noarch.rpm python3-paramiko-2.4.2-lp152.3.3.1.noarch.rpm openSUSE-2020-874 moderate openSUSE Leap 15.2 Update This update for golang-packaging fixes the following issues: - Fix for an issue when go installation fails due missing permissions. (bsc#776058) This update was imported from the SUSE:SLE-15:Update update project. golang-packaging-15.0.12-lp152.3.3.1.noarch.rpm golang-packaging-15.0.12-lp152.3.3.1.src.rpm openSUSE-2020-876 moderate openSUSE Leap 15.2 Update This update for graphviz fixes the following issues: Security issue fixed: - CVE-2019-11023: Fixed a denial of service vulnerability, which was caused by a NULL pointer dereference in agroot() (bsc#1132091). This update was imported from the SUSE:SLE-15:Update update project. graphviz-addons-2.40.1-lp152.7.3.1.src.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-addons-debugsource-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-doc-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gd-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gnome-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-guile-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gvedit-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-java-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-java-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-lua-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-perl-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-php-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-php-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-python-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-python-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-ruby-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-smyrna-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-tcl-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-2.40.1-lp152.7.2.1.src.rpm graphviz-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-debuginfo-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-debugsource-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-devel-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-plugins-core-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.2.1.x86_64.rpm libgraphviz6-2.40.1-lp152.7.2.1.x86_64.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-addons-debugsource-2.40.1-lp152.7.3.1.i586.rpm graphviz-doc-2.40.1-lp152.7.3.1.i586.rpm graphviz-gd-2.40.1-lp152.7.3.1.i586.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-gnome-2.40.1-lp152.7.3.1.i586.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-guile-2.40.1-lp152.7.3.1.i586.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-gvedit-2.40.1-lp152.7.3.1.i586.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-java-2.40.1-lp152.7.3.1.i586.rpm graphviz-java-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-lua-2.40.1-lp152.7.3.1.i586.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-perl-2.40.1-lp152.7.3.1.i586.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-php-2.40.1-lp152.7.3.1.i586.rpm graphviz-php-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-python-2.40.1-lp152.7.3.1.i586.rpm graphviz-python-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-ruby-2.40.1-lp152.7.3.1.i586.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-smyrna-2.40.1-lp152.7.3.1.i586.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-tcl-2.40.1-lp152.7.3.1.i586.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-2.40.1-lp152.7.2.1.i586.rpm graphviz-debuginfo-2.40.1-lp152.7.2.1.i586.rpm graphviz-debugsource-2.40.1-lp152.7.2.1.i586.rpm graphviz-devel-2.40.1-lp152.7.2.1.i586.rpm graphviz-plugins-core-2.40.1-lp152.7.2.1.i586.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.2.1.i586.rpm libgraphviz6-2.40.1-lp152.7.2.1.i586.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.2.1.i586.rpm openSUSE-2020-880 low openSUSE Leap 15.2 Update This update for mercurial fixes the following issues: Security issue fixed: - CVE-2019-3902: Fixed incorrect patch-checking with symlinks and subrepos (bsc#1133035). This update was imported from the SUSE:SLE-15:Update update project. mercurial-4.5.2-lp152.7.3.1.src.rpm mercurial-4.5.2-lp152.7.3.1.x86_64.rpm mercurial-debuginfo-4.5.2-lp152.7.3.1.x86_64.rpm mercurial-debugsource-4.5.2-lp152.7.3.1.x86_64.rpm mercurial-lang-4.5.2-lp152.7.3.1.noarch.rpm mercurial-4.5.2-lp152.7.3.1.i586.rpm mercurial-debuginfo-4.5.2-lp152.7.3.1.i586.rpm mercurial-debugsource-4.5.2-lp152.7.3.1.i586.rpm openSUSE-2020-881 moderate openSUSE Leap 15.2 Update This update provides python-pyroute2 for use by the gcp-vpc-move-route agent in resource-agents. This update was imported from the SUSE:SLE-15:Update update project. python-pyroute2-0.5.10-lp152.4.3.1.src.rpm python2-pyroute2-0.5.10-lp152.4.3.1.noarch.rpm python3-pyroute2-0.5.10-lp152.4.3.1.noarch.rpm openSUSE-2020-882 moderate openSUSE Leap 15.2 Update This update for python-M2Crypto fixes the following issues: - Release python3-M2crypto to LTSS channels, to allow using salt even when the Server Applications Module is not used. (bsc#1172226) This update was imported from the SUSE:SLE-15:Update update project. python-M2Crypto-0.35.2-lp152.2.3.1.src.rpm python-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.x86_64.rpm python-M2Crypto-debugsource-0.35.2-lp152.2.3.1.x86_64.rpm python-M2Crypto-doc-0.35.2-lp152.2.3.1.noarch.rpm python2-M2Crypto-0.35.2-lp152.2.3.1.x86_64.rpm python2-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.x86_64.rpm python3-M2Crypto-0.35.2-lp152.2.3.1.x86_64.rpm python3-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.x86_64.rpm python-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.i586.rpm python-M2Crypto-debugsource-0.35.2-lp152.2.3.1.i586.rpm python2-M2Crypto-0.35.2-lp152.2.3.1.i586.rpm python2-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.i586.rpm python3-M2Crypto-0.35.2-lp152.2.3.1.i586.rpm python3-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.i586.rpm openSUSE-2020-878 moderate openSUSE Leap 15.2 Update This update for xkeyboard-config fixes the following issues: - Fix capslock in Old Hungarian layout (bsc#1153774) This update was imported from the SUSE:SLE-15:Update update project. xkeyboard-config-2.23.1-lp152.5.3.1.noarch.rpm xkeyboard-config-2.23.1-lp152.5.3.1.src.rpm xkeyboard-config-lang-2.23.1-lp152.5.3.1.noarch.rpm openSUSE-2020-879 moderate openSUSE Leap 15.2 Update This update for growpart fixes the following issues: - Operation system disk is not automatically resized beyond 2TB on Azure hosts. (bsc#1164736) This update was imported from the SUSE:SLE-15:Update update project. growpart-0.31-lp152.8.3.1.noarch.rpm growpart-0.31-lp152.8.3.1.src.rpm openSUSE-2020-884 moderate openSUSE Leap 15.2 Update This update for nodejs10 fixes the following issues: - Added Require for nodejs10 when intalling npm10 (bsc#1172728) This update was imported from the SUSE:SLE-15:Update update project. nodejs10-10.21.0-lp152.2.3.1.src.rpm nodejs10-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-debuginfo-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-debugsource-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-devel-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-docs-10.21.0-lp152.2.3.1.noarch.rpm npm10-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-10.21.0-lp152.2.3.1.i586.rpm nodejs10-debuginfo-10.21.0-lp152.2.3.1.i586.rpm nodejs10-debugsource-10.21.0-lp152.2.3.1.i586.rpm nodejs10-devel-10.21.0-lp152.2.3.1.i586.rpm npm10-10.21.0-lp152.2.3.1.i586.rpm openSUSE-2020-906 moderate openSUSE Leap 15.2 Update This update for graphviz fixes the following issues: Security issue fixed: - CVE-2019-11023: Fixed a denial of service vulnerability, which was caused by a NULL pointer dereference in agroot() (bsc#1132091). This update was imported from the SUSE:SLE-15:Update update project. graphviz-addons-2.40.1-lp152.7.4.2.src.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-addons-debugsource-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-doc-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gd-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gnome-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-guile-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gvedit-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-java-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-java-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-lua-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-perl-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-php-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-php-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-python-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-python-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-ruby-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-smyrna-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-tcl-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-2.40.1-lp152.7.4.2.src.rpm graphviz-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-debugsource-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-devel-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-plugins-core-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm libgraphviz6-2.40.1-lp152.7.4.2.x86_64.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-addons-debugsource-2.40.1-lp152.7.4.2.i586.rpm graphviz-doc-2.40.1-lp152.7.4.2.i586.rpm graphviz-gd-2.40.1-lp152.7.4.2.i586.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-gnome-2.40.1-lp152.7.4.2.i586.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-guile-2.40.1-lp152.7.4.2.i586.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-gvedit-2.40.1-lp152.7.4.2.i586.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-java-2.40.1-lp152.7.4.2.i586.rpm graphviz-java-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-lua-2.40.1-lp152.7.4.2.i586.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-perl-2.40.1-lp152.7.4.2.i586.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-php-2.40.1-lp152.7.4.2.i586.rpm graphviz-php-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-python-2.40.1-lp152.7.4.2.i586.rpm graphviz-python-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-ruby-2.40.1-lp152.7.4.2.i586.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-smyrna-2.40.1-lp152.7.4.2.i586.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-tcl-2.40.1-lp152.7.4.2.i586.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-2.40.1-lp152.7.4.2.i586.rpm graphviz-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-debugsource-2.40.1-lp152.7.4.2.i586.rpm graphviz-devel-2.40.1-lp152.7.4.2.i586.rpm graphviz-plugins-core-2.40.1-lp152.7.4.2.i586.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.4.2.i586.rpm libgraphviz6-2.40.1-lp152.7.4.2.i586.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.4.2.i586.rpm openSUSE-2020-883 important openSUSE Leap 15.2 Update This update for curl fixes the following issues: - CVE-2020-8177: Fixed an issue where curl could have been tricked by a malicious server to overwrite a local file when using the -J option (bsc#1173027). - CVE-2020-8169: Fixed an issue where could have led to partial password leak over DNS on HTTP redirect (bsc#1173026). This update was imported from the SUSE:SLE-15-SP2:Update update project. curl-mini-7.66.0-lp152.3.3.1.src.rpm curl-mini-7.66.0-lp152.3.3.1.x86_64.rpm curl-mini-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-mini-debugsource-7.66.0-lp152.3.3.1.x86_64.rpm libcurl-mini-devel-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-mini-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-mini-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-7.66.0-lp152.3.3.1.src.rpm curl-7.66.0-lp152.3.3.1.x86_64.rpm curl-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-debugsource-7.66.0-lp152.3.3.1.x86_64.rpm libcurl-devel-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-mini-7.66.0-lp152.3.3.1.i586.rpm curl-mini-debuginfo-7.66.0-lp152.3.3.1.i586.rpm curl-mini-debugsource-7.66.0-lp152.3.3.1.i586.rpm libcurl-mini-devel-7.66.0-lp152.3.3.1.i586.rpm libcurl4-mini-7.66.0-lp152.3.3.1.i586.rpm libcurl4-mini-debuginfo-7.66.0-lp152.3.3.1.i586.rpm curl-7.66.0-lp152.3.3.1.i586.rpm curl-debuginfo-7.66.0-lp152.3.3.1.i586.rpm curl-debugsource-7.66.0-lp152.3.3.1.i586.rpm libcurl-devel-32bit-7.66.0-lp152.3.3.1.x86_64.rpm libcurl-devel-7.66.0-lp152.3.3.1.i586.rpm libcurl4-32bit-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-32bit-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-7.66.0-lp152.3.3.1.i586.rpm libcurl4-debuginfo-7.66.0-lp152.3.3.1.i586.rpm openSUSE-2020-891 moderate openSUSE Leap 15.2 Update This update for nodejs8 fixes the following issues: - Added Require for nodejs8 when intalling npm8 (bsc#1172728) This update was imported from the SUSE:SLE-15:Update update project. nodejs8-8.17.0-lp152.3.4.1.src.rpm nodejs8-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-debuginfo-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-debugsource-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-devel-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-docs-8.17.0-lp152.3.4.1.noarch.rpm npm8-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-8.17.0-lp152.3.4.1.i586.rpm nodejs8-debuginfo-8.17.0-lp152.3.4.1.i586.rpm nodejs8-debugsource-8.17.0-lp152.3.4.1.i586.rpm nodejs8-devel-8.17.0-lp152.3.4.1.i586.rpm npm8-8.17.0-lp152.3.4.1.i586.rpm openSUSE-2020-885 moderate openSUSE Leap 15.2 Update This update for profanity fixes the following issues: profanity was updated to 0.9.4: * Fix NULL terminated list (#1367) * Add missing string.h (#1372) * Fix gcc warnings for cygwin (#1373) Update to 0.9.3: * Fix expansion in eval_password (#1364) Update to 0.9.2: * Dont manipulate pointer from getenv (#1357) * Fix reading/writing linked files (#1362) * Use gnu99 C standard (#1357) Update to 0.9.1: * Make legacy auth optional (#1360) (@pasis) Update to 0.9.0: * Support for XEP-0308: Last Message Correction (#805) See `/correction` and `/correct`. * Code cleanup of UI and Message functions * Always send delivery receipts if they are enabled (#1268) * By default don't allow sending unencrypted files in an encrypted chat session (#1270) (@moppman and @jubalh) See `/omemo|otr|pgp sendfile`. * Add CI for OpenBSD via sr.ht (@wstrm) * OMEMO: switch to 12 byte IV for sending (#1272) * Allow UTF-8 symbols as OMEMO/OTR/PGP indicator char (#1264) * Make color of the trackbar configurable Use `main.trackbar` in themes. * Allow setting custom log file `profanity -f TEST` will log to `~/.local/share/profanity/logs/TEST.log`. * Send proper OS names for OpenBSD and NetBSD if `/os` is enabled * Fix plenty memory leaks (@pasis and @jubalh) * XEP-0084: Add option to open avatars directly (#1281) `/avatar odin@valhalla.org` became `/avatar get odin@valhalla.org` New is: `/executable avatar feh` `/avatar open odin@valhalla.org` xdg-open is used by default. So it will take your default application. * Enable popular features by default. For a nicer out of the box experience we enable: - allow message correction - sending receipts - enabling carbons - type/chat states * Add slashguard feature to prevent sending commands with typos Should protect against `q/uit` or ` /quit`. See `/slashguard`. * Optionally display both MUC name and MUC JID in titlebar (#1284) `/titlebar use name|jid` -> `/titlebar show|hide name|jid`. * Add option to define a theme at startup (#1286) `/profanity -t bios` * Add setting to not colorize own nick if XEP-0392 is enabled (#1288) `/color own on|off`. * Add new theme: jubalian * Fix docker related CI tests (#1294) * Fix OMEMO autocompletion (75a43f, df23c3) * Modify our README * Store logs in SQLite backend (#1282) * Request OMEMO device list only for non anon MUCs (#1315) (@DebXWoody) * Don't display MUC history in one uniform colour, instead colour messages like regular ones (#1261) * Fix autocompletion for `/software` in regular chat windows (#1337) * XEP-0092: Make it possible to ask servers for their version (#1338) * Add possibility to easily open URLs (#1340, #1348) `/executable urlopen firefox` `/urlopen <tab>` * Display hint when window is scrolled (#1289) Theme via `titlebar.scrolled` * Add option to hide windows with no new messages in statusbar (#1285) `/statusbar show|hide read` * Support bookmark names (#697) * Preserve Gajims minimize flag in bookmarks (#1326) * Don't show resource in titlebar in narrow windows if it is too long (#715) * Improve autoping (#1333, #1315) (@DebXWoody) * Fix titlebar status display when using PGP (#1327) (@DebXWoody) * OMEMO: Only request "current" item (#1329) (@DebXWoody) * Add feature to ignore the autojoin flag for bookmarks (#1115) Helps users who want to autojoin MUCs with most clients but not with all. `/bookmark ignore` * Fix edge case where contacts get displayed as offline when they are online (3d7a31) * Add option for legacy authentication (#1236) (@pasis) `/connect <account> [auth default|legacy]` `/account <account> set auth default|legacy` * All issues: https://github.com/profanity-im/profanity/milestone/19 profanity-0.9.4-lp152.2.3.1.src.rpm profanity-0.9.4-lp152.2.3.1.x86_64.rpm profanity-debuginfo-0.9.4-lp152.2.3.1.x86_64.rpm profanity-debugsource-0.9.4-lp152.2.3.1.x86_64.rpm profanity-mini-0.9.4-lp152.2.3.1.x86_64.rpm profanity-mini-debuginfo-0.9.4-lp152.2.3.1.x86_64.rpm profanity-standard-0.9.4-lp152.2.3.1.x86_64.rpm profanity-standard-debuginfo-0.9.4-lp152.2.3.1.x86_64.rpm openSUSE-2020-892 moderate openSUSE Leap 15.2 Update This update for grafana, grafana-piechart-panel, grafana-status-panel fixes the following issues: grafana was updated to version 7.0.3: * Features / Enhancements - Stats: include all fields. #24829, @ryantxu - Variables: change VariableEditorList row action Icon to IconButton. #25217, @hshoff * Bug fixes - Cloudwatch: Fix dimensions of DDoSProtection. #25317, @papagian - Configuration: Fix env var override of sections containing hyphen. #25178, @marefr - Dashboard: Get panels in collapsed rows. #25079, @peterholmberg - Do not show alerts tab when alerting is disabled. #25285, @dprokop - Jaeger: fixes cascader option label duration value. #25129, @Estrax - Transformations: Fixed Transform tab crash & no update after adding first transform. #25152, @torkelo Update to version 7.0.2 * Bug fixes - Security: Urgent security patch release to fix CVE-2020-13379 Update to version 7.0.1 * Features / Enhancements - Datasource/CloudWatch: Makes CloudWatch Logs query history more readable. #24795, @kaydelaney - Download CSV: Add date and time formatting. #24992, @ryantxu - Table: Make last cell value visible when right aligned. #24921, @peterholmberg - TablePanel: Adding sort order persistance. #24705, @torkelo - Transformations: Display correct field name when using reduce transformation. #25068, @peterholmberg - Transformations: Allow custom number input for binary operations. #24752, @ryantxu * Bug fixes - Dashboard/Links: Fixes dashboard links by tags not working. #24773, @KamalGalrani - Dashboard/Links: Fixes open in new window for dashboard link. #24772, @KamalGalrani - Dashboard/Links: Variables are resolved and limits to 100. #25076, @hugohaggmark - DataLinks: Bring back variables interpolation in title. #24970, @dprokop - Datasource/CloudWatch: Field suggestions no longer limited to prefix-only. #24855, @kaydelaney - Explore/Table: Keep existing field types if possible. #24944, @kaydelaney - Explore: Fix wrap lines toggle for results of queries with filter expression. #24915, @ivanahuckova - Explore: fix undo in query editor. #24797, @zoltanbedi - Explore: fix word break in type head info. #25014, @zoltanbedi - Graph: Legend decimals now work as expected. #24931, @torkelo - LoginPage: Fix hover color for service buttons. #25009, @tskarhed - LogsPanel: Fix scrollbar. #24850, @ivanahuckova - MoveDashboard: Fix for moving dashboard caused all variables to be lost. #25005, @torkelo - Organize transformer: Use display name in field order comparer. #24984, @dprokop - Panel: shows correct panel menu items in view mode. #24912, @hugohaggmark - PanelEditor Fix missing labels and description if there is only single option in category. #24905, @dprokop - PanelEditor: Overrides name matcher still show all original field names even after Field default display name is specified. #24933, @torkelo - PanelInspector: Makes sure Data display options are visible. #24902, @hugohaggmark - PanelInspector: Hides unsupported data display options for Panel type. #24918, @hugohaggmark - PanelMenu: Make menu disappear on button press. #25015, @tskarhed - Postgres: Fix add button. #25087, @phemmer - Prometheus: Fix recording rules expansion. #24977, @ivanahuckova - Stackdriver: Fix creating Service Level Objectives (SLO) datasource query variable. #25023, @papagian Update to version 7.0.0 * Breaking changes - Removed PhantomJS: PhantomJS was deprecated in Grafana v6.4 and starting from Grafana v7.0.0, all PhantomJS support has been removed. This means that Grafana no longer ships with a built-in image renderer, and we advise you to install the Grafana Image Renderer plugin. - Dashboard: A global minimum dashboard refresh interval is now enforced and defaults to 5 seconds. - Interval calculation: There is now a new option Max data points that controls the auto interval $__interval calculation. Interval was previously calculated by dividing the panel width by the time range. With the new max data points option it is now easy to set $__interval to a dynamic value that is time range agnostic. For example if you set Max data points to 10 Grafana will dynamically set $__interval by dividing the current time range by 10. - Datasource/Loki: Support for deprecated Loki endpoints has been removed. - Backend plugins: Grafana now requires backend plugins to be signed, otherwise Grafana will not load/start them. This is an additional security measure to make sure backend plugin binaries and files haven't been tampered with. Refer to Upgrade Grafana for more information. - @grafana/ui: Forms migration notice, see @grafana/ui changelog - @grafana/ui: Select API change for creating custom values, see @grafana/ui changelog + Deprecation warnings - Scripted dashboards is now deprecated. The feature is not removed but will be in a future release. We hope to address the underlying requirement of dynamic dashboards in a different way. #24059 - The unofficial first version of backend plugins together with usage of grafana/grafana-plugin-model is now deprecated and support for that will be removed in a future release. Please refer to backend plugins documentation for information about the new officially supported backend plugins. * Features / Enhancements - Backend plugins: Log deprecation warning when using the unofficial first version of backend plugins. #24675, @marefr - Editor: New line on Enter, run query on Shift+Enter. #24654, @davkal - Loki: Allow multiple derived fields with the same name. #24437, @aocenas - Orgs: Add future deprecation notice. #24502, @torkelo * Bug Fixes - @grafana/toolkit: Use process.cwd() instead of PWD to get directory. #24677, @zoltanbedi - Admin: Makes long settings values line break in settings page. #24559, @hugohaggmark - Dashboard: Allow editing provisioned dashboard JSON and add confirmation when JSON is copied to dashboard. #24680, @dprokop - Dashboard: Fix for strange "dashboard not found" errors when opening links in dashboard settings. #24416, @torkelo - Dashboard: Fix so default data source is selected when data source can't be found in panel editor. #24526, @mckn - Dashboard: Fixed issue changing a panel from transparent back to normal in panel editor. #24483, @torkelo - Dashboard: Make header names reflect the field name when exporting to CSV file from the the panel inspector. #24624, @peterholmberg - Dashboard: Make sure side pane is displayed with tabs by default in panel editor. #24636, @dprokop - Data source: Fix query/annotation help content formatting. #24687, @AgnesToulet - Data source: Fixes async mount errors. #24579, @Estrax - Data source: Fixes saving a data source without failure when URL doesn't specify a protocol. #24497, @aknuds1 - Explore/Prometheus: Show results of instant queries only in table. #24508, @ivanahuckova - Explore: Fix rendering of react query editors. #24593, @ivanahuckova - Explore: Fixes loading more logs in logs context view. #24135, @Estrax - Graphite: Fix schema and dedupe strategy in rollup indicators for Metrictank queries. #24685, @torkelo - Graphite: Makes query annotations work again. #24556, @hugohaggmark - Logs: Clicking "Load more" from context overlay doesn't expand log row. #24299, @kaydelaney - Logs: Fix total bytes process calculation. #24691, @davkal - Org/user/team preferences: Fixes so UI Theme can be set back to Default. #24628, @AgnesToulet - Plugins: Fix manifest validation. #24573, @aknuds1 - Provisioning: Use proxy as default access mode in provisioning. #24669, @bergquist - Search: Fix select item when pressing enter and Grafana is served using a sub path. #24634, @tskarhed - Search: Save folder expanded state. #24496, @Clarity-89 - Security: Tag value sanitization fix in OpenTSDB data source. #24539, @rotemreiss - Table: Do not include angular options in options when switching from angular panel. #24684, @torkelo - Table: Fixed persisting column resize for time series fields. #24505, @torkelo - Table: Fixes Cannot read property subRows of null. #24578, @hugohaggmark - Time picker: Fixed so you can enter a relative range in the time picker without being converted to absolute range. #24534, @mckn - Transformations: Make transform dropdowns not cropped. #24615, @dprokop - Transformations: Sort order should be preserved as entered by user when using the reduce transformation. #24494, @hugohaggmark - Units: Adds scale symbol for currencies with suffixed symbol. #24678, @hugohaggmark - Variables: Fixes filtering options with more than 1000 entries. #24614, @hugohaggmark - Variables: Fixes so Textbox variables read value from url. #24623, @hugohaggmark - Zipkin: Fix error when span contains remoteEndpoint. #24524, @aocenas - SAML: Switch from email to login for user login attribute mapping (Enterprise) This update was imported from the SUSE:SLE-15-SP2:Update update project. grafana-piechart-panel-1.4.0-lp152.2.3.1.noarch.rpm grafana-piechart-panel-1.4.0-lp152.2.3.1.src.rpm grafana-status-panel-1.0.9-lp152.2.3.1.noarch.rpm grafana-status-panel-1.0.9-lp152.2.3.1.src.rpm grafana-7.0.3-lp152.2.3.1.src.rpm grafana-7.0.3-lp152.2.3.1.x86_64.rpm grafana-debuginfo-7.0.3-lp152.2.3.1.x86_64.rpm openSUSE-2020-918 moderate openSUSE Leap 15.2 Update This update for krb5 contains the following fixes: - Integrate pam_keyinit PAM module, ksu-pam.d. (bsc#1081947) This update was imported from the SUSE:SLE-15-SP1:Update update project. krb5-mini-1.16.3-lp152.5.4.1.src.rpm krb5-mini-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.x86_64.rpm krb5-1.16.3-lp152.5.3.1.src.rpm krb5-1.16.3-lp152.5.3.1.x86_64.rpm krb5-client-1.16.3-lp152.5.3.1.x86_64.rpm krb5-client-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-debugsource-1.16.3-lp152.5.3.1.x86_64.rpm krb5-devel-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-server-1.16.3-lp152.5.3.1.x86_64.rpm krb5-server-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-mini-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.i586.rpm krb5-1.16.3-lp152.5.3.1.i586.rpm krb5-32bit-1.16.3-lp152.5.3.1.x86_64.rpm krb5-32bit-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-client-1.16.3-lp152.5.3.1.i586.rpm krb5-client-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-debugsource-1.16.3-lp152.5.3.1.i586.rpm krb5-devel-1.16.3-lp152.5.3.1.i586.rpm krb5-devel-32bit-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-server-1.16.3-lp152.5.3.1.i586.rpm krb5-server-debuginfo-1.16.3-lp152.5.3.1.i586.rpm openSUSE-2020-893 important openSUSE Leap 15.2 Update This update for chromium fixes the following issues: Chromium was updated to 83.0.4103.116 (boo#1173251): * CVE-2020-6509: Use after free in extensions Chromium was updated to 83.0.4103.106 (boo#1173029): * CVE-2020-6505: Use after free in speech * CVE-2020-6506: Insufficient policy enforcement in WebView * CVE-2020-6507: Out of bounds write in V8 Other fixes: - Add patch to work with new ffmpeg wrt boo#1173292: - Add multimedia fix for disabled location and also try one additional patch from Debian on the same issue boo#1173107 - Disable wayland integration on 15.x boo#1173187 boo#1173188 boo#1173254 - Enforce to not use system borders boo#1173063 chromedriver-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromedriver-debuginfo-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromium-83.0.4103.116-lp152.2.3.1.src.rpm chromium-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromium-debuginfo-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromium-debugsource-83.0.4103.116-lp152.2.3.1.x86_64.rpm openSUSE-2020-913 important openSUSE Leap 15.2 Update This update for unbound fixes the following issues: - CVE-2020-12662: Fixed an issue where unbound could have been tricked into amplifying an incoming query into a large number of queries directed to a target (bsc#1171889). - CVE-2020-12663: Fixed an issue where malformed answers from upstream name servers could have been used to make unbound unresponsive (bsc#1171889). - CVE-2019-18934: Fixed a vulnerability in the IPSec module which could have allowed code execution after receiving a special crafted answer (bsc#1157268). This update was imported from the SUSE:SLE-15-SP1:Update update project. libunbound-devel-mini-1.6.8-lp152.9.3.1.src.rpm libunbound-devel-mini-1.6.8-lp152.9.3.1.x86_64.rpm libunbound-devel-mini-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm libunbound-devel-mini-debugsource-1.6.8-lp152.9.3.1.x86_64.rpm libunbound2-1.6.8-lp152.9.3.1.x86_64.rpm libunbound2-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm unbound-1.6.8-lp152.9.3.1.src.rpm unbound-1.6.8-lp152.9.3.1.x86_64.rpm unbound-anchor-1.6.8-lp152.9.3.1.x86_64.rpm unbound-anchor-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm unbound-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm unbound-debugsource-1.6.8-lp152.9.3.1.x86_64.rpm unbound-devel-1.6.8-lp152.9.3.1.x86_64.rpm unbound-munin-1.6.8-lp152.9.3.1.noarch.rpm unbound-python-1.6.8-lp152.9.3.1.x86_64.rpm unbound-python-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm libunbound-devel-mini-1.6.8-lp152.9.3.1.i586.rpm libunbound-devel-mini-debuginfo-1.6.8-lp152.9.3.1.i586.rpm libunbound-devel-mini-debugsource-1.6.8-lp152.9.3.1.i586.rpm openSUSE-2020-914 important openSUSE Leap 15.2 Update This update for squid fixes the following issues: squid was updated to version 4.12 Security issue fixed: - CVE-2020-14059: Fixed an issue where a client could potentially deny the service of a server during TLS Handshake (bsc#1173304). Other issues addressed: - Reverted to slow search for new SMP shm pages due to a regression - Fixed an issue where negative responses were never cached - Fixed stall if transaction was overwriting a recently active cache entry This update was imported from the SUSE:SLE-15:Update update project. squid-4.12-lp152.2.3.1.src.rpm squid-4.12-lp152.2.3.1.x86_64.rpm squid-debuginfo-4.12-lp152.2.3.1.x86_64.rpm squid-debugsource-4.12-lp152.2.3.1.x86_64.rpm openSUSE-2020-915 important openSUSE Leap 15.2 Update This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 (bsc#1173197). - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response (bsc#1172906, bsc#1172935). - CVE-2020-14154: Fixed an issue where Mutt was ignoring an expired certificate and was proceeding with a connection (bsc#1172906, bsc#1172935). This update was imported from the SUSE:SLE-15:Update update project. mutt-1.10.1-lp152.3.3.1.src.rpm mutt-1.10.1-lp152.3.3.1.x86_64.rpm mutt-debuginfo-1.10.1-lp152.3.3.1.x86_64.rpm mutt-debugsource-1.10.1-lp152.3.3.1.x86_64.rpm mutt-doc-1.10.1-lp152.3.3.1.noarch.rpm mutt-lang-1.10.1-lp152.3.3.1.noarch.rpm openSUSE-2020-905 moderate openSUSE Leap 15.2 Update This update for krb5 fixes the following issue: - Call systemd to reload the services instead of init-scripts. (bsc#1169357) This update was imported from the SUSE:SLE-15-SP1:Update update project. krb5-mini-1.16.3-lp152.5.4.1.src.rpm krb5-mini-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.x86_64.rpm krb5-1.16.3-lp152.5.4.1.src.rpm krb5-1.16.3-lp152.5.4.1.x86_64.rpm krb5-client-1.16.3-lp152.5.4.1.x86_64.rpm krb5-client-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-debugsource-1.16.3-lp152.5.4.1.x86_64.rpm krb5-devel-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-server-1.16.3-lp152.5.4.1.x86_64.rpm krb5-server-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.i586.rpm krb5-1.16.3-lp152.5.4.1.i586.rpm krb5-32bit-1.16.3-lp152.5.4.1.x86_64.rpm krb5-32bit-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-client-1.16.3-lp152.5.4.1.i586.rpm krb5-client-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-debugsource-1.16.3-lp152.5.4.1.i586.rpm krb5-devel-1.16.3-lp152.5.4.1.i586.rpm krb5-devel-32bit-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-server-1.16.3-lp152.5.4.1.i586.rpm krb5-server-debuginfo-1.16.3-lp152.5.4.1.i586.rpm openSUSE-2020-935 important openSUSE Leap 15.2 Update The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-19462: relay_open in kernel/relay.c allowed local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result (bnc#1158265). - CVE-2019-20810: go7007_snd_init in drivers/media/usb/go7007/snd-go7007.c did not call snd_card_free for a failure path, which causes a memory leak, aka CID-9453264ef586 (bnc#1172458). - CVE-2019-20812: The prb_calc_retire_blk_tmo() function in net/packet/af_packet.c can result in a denial of service (CPU consumption and soft lockup) in a certain failure case involving TPACKET_V3, aka CID-b43d1f9f7067 (bnc#1172453). - CVE-2020-10711: A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allowed a remote network user to crash the system kernel, resulting in a denial of service (bnc#1171191). - CVE-2020-10732: A flaw was found in the implementation of Userspace core dumps. This flaw allowed an attacker with a local account to crash a trivial program and exfiltrate private kernel data (bnc#1171220). - CVE-2020-10751: SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages within the skb with the granted permission without further processing (bnc#1171189). - CVE-2020-10766: Fixed rogue cross-process SSBD shutdown. Linux scheduler logical bug allowed an attacker to turn off the SSBD protection. (bnc#1172781). - CVE-2020-10767: Fixed that Indirect Branch Prediction Barrier is force-disabled when STIBP is unavailable or enhanced IBRS is available. (bnc#1172782). - CVE-2020-10768: Fixed that indirect branch speculation can be enabled after it was force-disabled by the PR_SPEC_FORCE_DISABLE prctl command (bnc#1172783). - CVE-2020-10773: Fixed a kernel stack information leak on s390/s390x. (bnc#1172999). - CVE-2020-12656: Fixed a memory leak in gss_mech_free in the rpcsec_gss_krb5 implementation due to lack of certain domain_release calls (bnc#1171219). - CVE-2020-12769: An issue was discovered in drivers/spi/spi-dw.c allowed attackers to cause a panic via concurrent calls to dw_spi_irq and dw_spi_transfer_one, aka CID-19b61392c5a8 (bnc#1171983). - CVE-2020-12888: The VFIO PCI driver mishandled attempts to access disabled memory space (bnc#1171868). - CVE-2020-13143: gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c relied on kstrdup without considering the possibility of an internal '\0' value, which allowed attackers to trigger an out-of-bounds read, aka CID-15753588bcd4 (bnc#1171982). - CVE-2020-13974: tty/vt/keyboard.c had an integer overflow if k_ascii is called several times in a row, aka CID-b86dab054059. (bnc#1172775). - CVE-2020-14416: A race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a use-after-free, aka CID-0ace17d56824. This affects drivers/net/slip/slip.c and drivers/net/can/slcan.c (bnc#1162002). The following non-security bugs were fixed: - ACPICA: Fixes for acpiExec namespace init file (git-fixes). - ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe() (git-fixes). - ACPI: GED: add support for _Exx / _Lxx handler methods (git-fixes). - ACPI: GED: use correct trigger type field in _Exx / _Lxx handling (git-fixes). - ACPI: PM: Avoid using power resources if there are none for D0 (git-fixes). - ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile() (git-fixes). - af_unix: add compat_ioctl support (git-fixes). - agp/intel: Reinforce the barrier after GTT updates (git-fixes). - ALSA: emu10k1: delete an unnecessary condition (git-fixes). - ALSA: es1688: Add the missed snd_card_free() (git-fixes). - ALSA: fireface: fix configuration error for nominal sampling transfer frequency (git-fixes). - ALSA: firewire-lib: fix invalid assignment to union data for directional parameter (git-fixes). - ALSA: hda: Add ElkhartLake HDMI codec vid (git-fixes). - ALSA: hda: add member to store ratio for stripe control (git-fixes). - ALSA: hda: add sienna_cichlid audio asic id for sienna_cichlid up (git-fixes). - ALSA: hda: Fix potential race in unsol event handler (git-fixes). - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround (bsc#1172017). - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines (git-fixes). - ALSA: hda/realtek - Add LED class support for micmute LED (git-fixes). - ALSA: hda/realtek - Add more fixup entries for Clevo machines (git-fixes). - ALSA: hda/realtek - Add new codec supported for ALC287 (git-fixes). - ALSA: hda/realtek - Enable micmute LED on and HP system (git-fixes). - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme (git-fixes). - ALSA: hda/realtek - Fix unused variable warning w/o CONFIG_LEDS_TRIGGER_AUDIO (git-fixes). - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO (git-fixes). - ALSA: hda/tegra: correct number of SDO lines for Tegra194 (git-fixes). - ALSA: hda/tegra: workaround playback failure on Tegra194 (git-fixes). - ALSA: hwdep: fix a left shifting 1 by 31 UB bug (git-fixes). - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio option (git-fixes). - ALSA: pcm: disallow linking stream to itself (git-fixes). - ALSA: pcm: fix incorrect hw_base increase (git-fixes). - ALSA: pcm: fix snd_pcm_link() lockdep splat (git-fixes). - ALSA: usb-audio: Add duplex sound support for USB devices using implicit feedback (git-fixes). - ALSA: usb-audio: Add Pioneer DJ DJM-900NXS2 support (git-fixes). - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt Dock (git-fixes). - ALSA: usb-audio: Clean up quirk entries with macros (git-fixes). - ALSA: usb-audio: Fix a limit check in proc_dump_substream_formats() (git-fixes). - ALSA: usb-audio: Fix inconsistent card PM state after resume (git-fixes). - ALSA: usb-audio: fixing upper volume limit for RME Babyface Pro routing crosspoints (git-fixes). - ALSA: usb-audio: Fixing usage of plain int instead of NULL (git-fixes). - ALSA: usb-audio: Fix racy list management in output queue (git-fixes). - ALSA: usb-audio: Improve frames size computation (git-fixes). - ALSA: usb-audio: Manage auto-pm of all bundled interfaces (git-fixes). - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC (git-fixes). - ALSA: usb-audio: Print more information in stream proc files (git-fixes). - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio (git-fixes). - ALSA: usb-audio: Remove async workaround for Scarlett 2nd gen (git-fixes). - ALSA: usb-audio: RME Babyface Pro mixer patch (git-fixes). - ALSA: usb-audio: Use the new macro for HP Dock rename quirks (git-fixes). - amd-xgbe: Use __napi_schedule() in BH context (networking-stable-20_04_17). - arm64: map FDT as RW for early_init_dt_scan() (jsc#SLE-12424). - ARM: oxnas: make ox820_boot_secondary static (git-fixes). - asm-gemeric/tlb: remove stray function declarations (bsc#1156395). - ASoC: fix incomplete error-handling in img_i2s_in_probe (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT10-A tablet (git-fixes). - ASoC: intel: cht_bsw_max98090_ti: Add all Chromebooks that need pmc_plt_clk_0 quirk (bsc#1171246). - ASoC: intel - fix the card names (git-fixes). - ASoC: max9867: fix volume controls (git-fixes). - ASoC: meson: add missing free_irq() in error path (git-fixes). - ASoC: rt5645: Add platform-data for Asus T101HA (git-fixes). - ASoC: SOF: core: fix error return code in sof_probe_continue() (git-fixes). - ASoC: ux500: mop500: Fix some refcounted resources issues (git-fixes). - ath10k: Remove ath10k_qmi_register_service_notifier() declaration (git-fixes). - ath10k: remove the max_sched_scan_reqs value (git-fixes). - ath10k: Skip handling del_server during driver exit (git-fixes). - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb (git-fixes). - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx (git-fixes). - ath9k: Fix use-after-free Read in htc_connect_service (git-fixes). - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg (git-fixes). - ath9k_htc: Silence undersized packet warnings (git-fixes). - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb (git-fixes). - ax25: fix setsockopt(SO_BINDTODEVICE) (git-fixes). - b43legacy: Fix case where channel status is corrupted (git-fixes). - bfq: Avoid false bfq queue merging (bsc#1171513). - bfq: Fix check detecting whether waker queue should be selected (bsc#1168838). - bfq: Use only idle IO periods for think time calculations (bsc#1171513). - bfq: Use 'ttime' local variable (bsc#1171513). - blk-iocost: Fix error on iocost_ioc_vrate_adj (bsc#1173206). - blk-iocost: fix incorrect vtime comparison in iocg_is_idle() (bsc#1173206). - bluetooth: btmtkuart: Improve exception handling in btmtuart_probe() (git-fixes). - bluetooth: hci_bcm: fix freeing not-requested IRQ (git-fixes). - bnxt_en: Improve TQM ring context memory sizing formulas (jsc#SLE-8371 bsc#1153274). - bpf: Fix map permissions check (bsc#1155518). - bpf: Prevent mmap()'ing read-only maps as writable (bsc#1155518). - bpf: Restrict bpf_probe_read{, str}() only to archs where they work (bsc#1172344). - bpf, sockhash: Synchronize_rcu before free'ing map (git-fixes). - bpf, sockmap: Check update requirements after locking (git-fixes). - bpf: Undo internal BPF_PROBE_MEM in BPF insns dump (bsc#1155518). - brcmfmac: fix wrong location to get firmware feature (git-fixes). - btrfs: fix log context list corruption after rename whiteout error (bsc#1172342). - btrfs: fix partial loss of prealloc extent past i_size after fsync (bsc#1172343). - btrfs: reloc: clear DEAD_RELOC_TREE bit for orphan roots to prevent runaway balance (bsc#1171417 bsc#1160947 bsc#1172366). - btrfs: reloc: fix reloc root leak and NULL pointer dereference (bsc#1171417 bsc#1160947 bsc#1172366). - CDC-ACM: heed quirk also in error handling (git-fixes). - CDC-ACM: heed quirk also in error handling (git-fixes). - ceph: add comments for handle_cap_flush_ack logic (bsc#1172940). - ceph: allow rename operation under different quota realms (bsc#1172988). - ceph: ceph_kick_flushing_caps needs the s_mutex (bsc#1172986). - ceph: convert mdsc->cap_dirty to a per-session list (bsc#1172984 bsc#1167104). - ceph: document what protects i_dirty_item and i_flushing_item (bsc#1172940). - ceph: do not release i_ceph_lock in handle_cap_trunc (bsc#1172940). - ceph: do not return -ESTALE if there's still an open file (bsc#1171915). - ceph: do not take i_ceph_lock in handle_cap_import (bsc#1172940). - ceph: fix potential race in ceph_check_caps (bsc#1172940). - ceph: flush release queue when handling caps for unknown inode (bsc#1172939). - ceph: make sure mdsc->mutex is nested in s->s_mutex to fix dead lock (bsc#1172989). - ceph: normalize 'delta' parameter usage in check_quota_exceeded (bsc#1172987). - ceph: reorganize __send_cap for less spinlock abuse (bsc#1172940). - ceph: request expedited service on session's last cap flush (bsc#1172985 bsc#1167104). - ceph: reset i_requested_max_size if file write is not wanted (bsc#1172983). - ceph: skip checking caps when session reconnecting and releasing reqs (bsc#1172990). - ceph: split up __finish_cap_flush (bsc#1172940). - ceph: throw a warning if we destroy session with mutex still locked (bsc#1172940). - char/random: Add a newline at the end of the file (jsc#SLE-12424). - clk: bcm2835: Fix return type of bcm2835_register_gate (git-fixes). - clk: bcm2835: Remove casting to bcm2835_clk_register (git-fixes). - clk: clk-flexgen: fix clock-critical handling (git-fixes). - clk: mediatek: assign the initial value to clk_init_data of mtk_mux (git-fixes). - clk: meson: meson8b: Do not rely on u-boot to init all GP_PLL registers (git-fixes). - clk: meson: meson8b: Fix the polarity of the RESET_N lines (git-fixes). - clk: meson: meson8b: Fix the vclk_div{1, 2, 4, 6, 12}_en gate bits (git-fixes). - clk: qcom: Add missing msm8998 ufs_unipro_core_clk_src (git-fixes). - clk: renesas: cpg-mssr: Fix STBCR suspend/resume handling (git-fixes). - clk: samsung: Mark top ISP and CAM clocks on Exynos542x as critical (git-fixes). - clk: sprd: return correct type of value for _sprd_pll_recalc_rate (git-fixes). - clk: sunxi: Fix incorrect usage of round_down() (git-fixes). - clk: ti: am33xx: fix RTC clock parent (git-fixes). - clocksource: dw_apb_timer_of: Fix missing clockevent timers (git-fixes). - component: Silence bind error on -EPROBE_DEFER (git-fixes). - config: arm64: enable CONFIG_IOMMU_DEFAULT_PASSTHROUGH References: bsc#1172739 - coredump: fix crash when umh is disabled (git-fixes). - coredump: fix null pointer dereference on coredump (git-fixes). - crypto: algapi - Avoid spurious modprobe on LOADED (git-fixes). - crypto: algboss - do not wait during notifier callback (git-fixes). - crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated (git-fixes). - crypto: ccp -- do not "select" CONFIG_DMADEVICES (git-fixes). - crypto: chelsio/chtls: properly set tp->lsndtime (git-fixes). - crypto: drbg - fix error return code in drbg_alloc_state() (git-fixes). - crypto: stm32/crc32 - fix ext4 chksum BUG_ON() (git-fixes). - crypto: stm32/crc32 - fix multi-instance (git-fixes). - crypto: stm32/crc32 - fix run-time self test issue (git-fixes). - cxgb4: fix adapter crash due to wrong MC size (networking-stable-20_04_27). - cxgb4: fix large delays in PTP synchronization (networking-stable-20_04_27). - Delete patches.suse/seltests-powerpc-Add-a-selftest-for-memcpy_mcsafe.patch (bsc#1171699). - dma-coherent: fix integer overflow in the reserved-memory dma allocation (git-fixes). - dma-debug: fix displaying of dma allocation type (git-fixes). - dma-direct: fix data truncation in dma_direct_get_required_mask() (git-fixes). - dmaengine: dmatest: Fix process hang when reading 'wait' parameter (git-fixes). - dmaengine: dmatest: Restore default for channel (git-fixes). - dmaengine: mmp_tdma: Do not ignore slave config validation errors (git-fixes). - dmaengine: mmp_tdma: Reset channel error on release (git-fixes). - dmaengine: owl: Use correct lock in owl_dma_get_pchan() (git-fixes). - dmaengine: pch_dma.c: Avoid data race between probe and irq handler (git-fixes). - dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()' (git-fixes). - dm verity fec: fix hash block number in verity_fec_decode (git fixes (block drivers)). - dm writecache: fix data corruption when reloading the target (git fixes (block drivers)). - drivers/net/ibmvnic: Update VNIC protocol version reporting (bsc#1065729). - drivers: phy: sr-usb: do not use internal fsm for USB2 phy init (git-fixes). - drivers: soc: ti: knav_qmss_queue: Make knav_gp_range_ops static (git-fixes). - drm/amd/display: add basic atomic check for cursor plane (git-fixes). - drm/amd/display: drop cursor position check in atomic test (git-fixes). - drm/amd/display: Prevent dpcd reads with passive dongles (git-fixes). - drm/amdgpu: force fbdev into vram (bsc#1152472) * context changes - drm/amdgpu: invalidate L2 before SDMA IBs (v2) (git-fixes). - drm/amdgpu: simplify padding calculations (v2) (git-fixes). - drm/amd/powerplay: avoid using pm_en before it is initialized revised (git-fixes). - drm/amd/powerplay: perform PG ungate prior to CG ungate (git-fixes). - drm/dp_mst: Increase ACT retry timeout to 3s (bsc#1152472) * context changes - drm/dp_mst: Reformat drm_dp_check_act_status() a bit (git-fixes). - drm/edid: Add Oculus Rift S to non-desktop list (git-fixes). - drm: encoder_slave: fix refcouting error for modules (git-fixes). - drm/etnaviv: fix perfmon domain interation (git-fixes). - drm/etnaviv: rework perfmon query infrastructure (git-fixes). - drm/i915: Do not enable WaIncreaseLatencyIPCEnabled when IPC is (bsc#1152489) - drm/i915: Do not enable WaIncreaseLatencyIPCEnabled when IPC is disabled (git-fixes). - drm/i915: extend audio CDCLK>=2*BCLK constraint to more platforms (git-fixes). - drm/i915: Extend WaDisableDARBFClkGating to icl,ehl,tgl (bsc#1152489) - drm/i915: fix port checks for MST support on gen >= 11 (git-fixes). - drm/i915/gem: Avoid iterating an empty list (git-fixes). - drm/i915/gvt: Fix kernel oops for 3-level ppgtt guest (bsc#1152489) - drm/i915/gvt: Fix kernel oops for 3-level ppgtt guest (git-fixes). - drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead of (bsc#1152489) - drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead of inheritance (git-fixes). - drm/i915: HDCP: fix Ri prime check done during link check (bsc#1152489) * context changes - drm/i915: HDCP: fix Ri prime check done during link check (git-fixes). - drm/i915: Limit audio CDCLK>=2*BCLK constraint back to GLK only (git-fixes). - drm/i915: Propagate error from completed fences (git-fixes). - drm/i915: Whitelist context-local timestamp in the gen9 cmdparser (git-fixes). - drm/i915: work around false-positive maybe-uninitialized warning (git-fixes). - drm/mcde: dsi: Fix return value check in mcde_dsi_bind() (git-fixes). - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper() (git-fixes). - drm/sun4i: hdmi ddc clk: Fix size of m divider (git-fixes). - drm/vkms: Hold gem object while still in-use (git-fixes). - dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg() (git-fixes). - e1000e: Disable TSO for buffer overrun workaround (git-fixes). - e1000e: Do not wake up the system via WOL if device wakeup is disabled (git-fixes). - EDAC/amd64: Add PCI device IDs for family 17h, model 70h (bsc#1165975). - EDAC/ghes: Setup DIMM label from DMI and use it in error reports (bsc#1168779). - EDAC/skx: Use the mcmtr register to retrieve close_pg/bank_xor_enable (bsc#1152489). - EDAC/synopsys: Do not dump uninitialized pinf->col (bsc#1152489). - efi/efivars: Add missing kobject_put() in sysfs entry creation error path (git-fixes). - efi/random: Treat EFI_RNG_PROTOCOL output as bootloader randomness (jsc#SLE-12424). - efi: READ_ONCE rng seed size before munmap (jsc#SLE-12424). - efi/tpm: Verify event log header before parsing (bsc#1173461). - eventpoll: fix missing wakeup for ovflist in ep_poll_callback (bsc#1159867). - evm: Check also if *tfm is an error pointer in init_desc() (git-fixes). - evm: Fix a small race in init_desc() (git-fixes). - evm: Fix possible memory leak in evm_calc_hmac_or_hash() (git-fixes). - evm: Fix RCU list related warnings (git-fixes). - extcon: adc-jack: Fix an error handling path in 'adc_jack_probe()' (git-fixes). - fanotify: fix ignore mask logic for events on child and on dir (bsc#1172719). - fdt: add support for rng-seed (jsc#SLE-12424). - fdt: Update CRC check for rng-seed (jsc#SLE-12424). - firmware: imx: scu: Fix corruption of header (git-fixes). - firmware: imx: scu: Fix possible memory leak in imx_scu_probe() (git-fixes). - firmware: imx-scu: Support one TX and one RX (git-fixes). - firmware: imx: warn on unexpected RX (git-fixes). - firmware: qcom_scm: fix bogous abuse of dma-direct internals (git-fixes). - firmware: xilinx: Fix an error handling path in 'zynqmp_firmware_probe()' (git-fixes). - Fix a regression of AF_ALG crypto interface hang with aes_s390 (bsc#1167651) - fpga: dfl: afu: Corrected error handling levels (git-fixes). - fs: Do not check if there is a fsnotify watcher on pseudo inodes (bsc#1158765). - fsnotify: Rearrange fast path to minimise overhead when there is no watcher (bsc#1158765). - genetlink: clean up family attributes allocations (git-fixes). - genetlink: fix memory leaks in genl_family_rcv_msg_dumpit() (bsc#1154353). - gpio: bcm-kona: Fix return value of bcm_kona_gpio_probe() (git-fixes). - gpio: dwapb: Append MODULE_ALIAS for platform driver (git-fixes). - gpio: dwapb: Call acpi_gpiochip_free_interrupts() on GPIO chip de-registration (git-fixes). - gpio: exar: Fix bad handling for ida_simple_get error path (git-fixes). - gpiolib: Document that GPIO line names are not globally unique (git-fixes). - gpio: pca953x: Fix pca953x_gpio_set_config (git-fixes). - gpio: pxa: Fix return value of pxa_gpio_probe() (git-fixes). - gpio: tegra: mask GPIO IRQs during IRQ shutdown (git-fixes). - gpu/drm: Ingenic: Fix opaque pointer casted to wrong type (git-fixes). - habanalabs: Align protection bits configuration of all TPCs (git-fixes). - HID: alps: Add AUI1657 device ID (git-fixes). - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead (git-fixes). - HID: i2c-hid: add Schneider SCL142ALM to descriptor override (git-fixes). - HID: i2c-hid: reset Synaptics SYNA2393 on resume (git-fixes). - HID: intel-ish-hid: avoid bogus uninitialized-variable warning (git-fixes). - HID: multitouch: add eGalaxTouch P80H84 support (git-fixes). - HID: multitouch: enable multi-input as a quirk for some devices (git-fixes). - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock (git-fixes). - HID: sony: Fix for broken buttons on DS3 USB dongles (git-fixes). - hsr: check protocol version in hsr_newlink() (networking-stable-20_04_17). - i2c: acpi: put device when verifying client fails (git-fixes). - i2c: altera: Fix race between xfer_msg and isr thread (git-fixes). - i2c: designware-pci: Add support for Elkhart Lake PSE I2C (jsc#SLE-12734). - i2c: designware-pci: Fix BUG_ON during device removal (jsc#SLE-12734). - i2c: designware-pci: Switch over to MSI interrupts (jsc#SLE-12734). - i2c: dev: Fix the race between the release of i2c_dev and cdev (git-fixes). - i2c: fix missing pm_runtime_put_sync in i2c_device_probe (git-fixes). - i2c: mux: demux-pinctrl: Fix an error handling path in 'i2c_demux_pinctrl_probe()' (git-fixes). - ibmveth: Fix max MTU limit (bsc#1173428 ltc#186397). - ibmvnic: continue to init in CRQ reset returns H_CLOSED (bsc#1173280 ltc#185369). - ibmvnic: Flush existing work items before device removal (bsc#1065729). - ibmvnic: Harden device login requests (bsc#1170011 ltc#183538). - ice: Fix error return code in ice_add_prof() (jsc#SLE-7926). - ice: Fix inability to set channels when down (jsc#SLE-7926). - ieee80211: Fix incorrect mask for default PE duration (git-fixes). - iio: adc: stm32-adc: fix device used to request dma (git-fixes). - iio: adc: stm32-adc: Use dma_request_chan() instead dma_request_slave_channel() (git-fixes). - iio: adc: stm32-dfsdm: fix device used to request dma (git-fixes). - iio: adc: stm32-dfsdm: Use dma_request_chan() instead dma_request_slave_channel() (git-fixes). - iio: adc: ti-ads8344: Fix channel selection (git-fixes). - iio: buffer: Do not allow buffers without any channels enabled to be activated (git-fixes). - iio:chemical:pms7003: Fix timestamp alignment and prevent data leak (git-fixes). - iio:chemical:sps30: Fix timestamp alignment (git-fixes). - iio: dac: vf610: Fix an error handling path in 'vf610_dac_probe()' (git-fixes). - iio: pressure: bmp280: Tolerate IRQ before registering (git-fixes). - iio: sca3000: Remove an erroneous 'get_device()' (git-fixes). - iio: vcnl4000: Fix i2c swapped word reading (git-fixes). - ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init() (bsc#1172223). - ima: Directly assign the ima_default_policy pointer to ima_rules (bsc#1172223) - ima: Directly free *entry in ima_alloc_init_template() if digests is NULL (bsc#1172223). - ima: Remove __init annotation from ima_pcrread() (git-fixes). - include/asm-generic/topology.h: guard cpumask_of_node() macro argument (bsc#1148868). - Input: dlink-dir685-touchkeys - fix a typo in driver name (git-fixes). - Input: edt-ft5x06 - fix get_default register write access (git-fixes). - Input: evdev - call input_flush_device() on release(), not flush() (git-fixes). - Input: i8042 - add ThinkPad S230u to i8042 reset list (git-fixes). - Input: mms114 - fix handling of mms345l (git-fixes). - Input: synaptics - add a second working PNP_ID for Lenovo T470s (git-fixes). - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() (git-fixes). - Input: synaptics-rmi4 - really fix attn_data use-after-free (git-fixes). - Input: usbtouchscreen - add support for BonXeon TP (git-fixes). - Input: xpad - add custom init packet for Xbox One S controllers (git-fixes). - iocost: check active_list of all the ancestors in iocg_activate() (bsc#1173206). - iocost: do not let vrate run wild while there's no saturation signal (bsc1173206). - iocost: over-budget forced IOs should schedule async delay (bsc#1173206). - iommu/amd: Call domain_flush_complete() in update_domain() (bsc#1172061). - iommu/amd: Do not flush Device Table in iommu_map_page() (bsc#1172062). - iommu/amd: Do not loop forever when trying to increase address space (bsc#1172063). - iommu/amd: Fix legacy interrupt remapping for x2APIC-enabled system (bsc#1172393). - iommu/amd: Fix over-read of ACPI UID from IVRS table (bsc#1172064). - iommu/amd: Fix race in increase_address_space()/fetch_pte() (bsc#1172065). - iommu/amd: Update Device Table in increase_address_space() (bsc#1172066). - iommu: Fix reference count leak in iommu_group_alloc (bsc#1172394). - iommu/qcom: Fix local_base status check (bsc#1172067). - iommu/virtio: Reverse arguments to list_add (bsc#1172068). - ipv4: Update fib_select_default to handle nexthop objects (networking-stable-20_04_27). - ipv6: fix IPV6_ADDRFORM operation logic (bsc#1171662). - ipvs: Improve robustness to the ipvs sysctl (git-fixes). - irqchip/al-fic: Add support for irq retrigger (jsc#SLE-10505). - irqchip/ti-sci-inta: Fix processing of masked irqs (git-fixes). - irqchip/versatile-fpga: Apply clear-mask earlier (git-fixes). - irqchip/versatile-fpga: Handle chained IRQs properly (git-fixes). - iwlwifi: avoid debug max amsdu config overwriting itself (git-fixes). - iwlwifi: mvm: limit maximum queue appropriately (git-fixes). - iwlwifi: pcie: handle QuZ configs with killer NICs as well (bsc#1172374). - jbd2: fix data races at struct journal_head (bsc#1173438). - kabi: ppc64le: prevent struct dma_map_ops to become defined (jsc#SLE-12424). - kabi/severities: Ingnore get_dev_data() The function is internal to the AMD IOMMU driver and must not be called by any third party. - kABI workaround for struct hdac_bus changes (git-fixes). - ktest: Add timeout for ssh sync testing (git-fixes). - KVM: Check validity of resolved slot when searching memslots (bsc#1172069). - KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated (bsc#1171904). - KVM: x86: only do L1TF workaround on affected processors (bsc#1171904). - l2tp: Allow management of tunnels and session in user namespace (networking-stable-20_04_17). - libbpf: Fix perf_buffer__free() API for sparse allocs (bsc#1155518). - libceph: ignore pool overlay and cache logic on redirects (bsc#1172938). - lib: devres: add a helper function for ioremap_uc (git-fixes). - libertas_tf: avoid a null dereference in pointer priv (git-fixes). - lib/lzo: fix ambiguous encoding bug in lzo-rle (git-fixes). - libnvdimm/btt: fix variable 'rc' set but not used (bsc#1162400). - libnvdimm: cover up nd_pfn_sb changes (bsc#1171759). - libnvdimm: cover up nd_region changes (bsc#1162400). - libnvdimm/dax: Pick the right alignment default when creating dax devices (bsc#1171759). - libnvdimm/label: Remove the dpa align check (bsc#1171759). - libnvdimm/namespace: Enforce memremap_compat_align() (bsc#1162400). - libnvdimm/namsepace: Do not set claim_class on error (bsc#1162400). - libnvdimm/of_pmem: Provide a unique name for bus provider (bsc#1171739). - libnvdimm: Out of bounds read in __nd_ioctl() (bsc#1065729). - libnvdimm/pfn_dev: Add a build check to make sure we notice when struct page size change (bsc#1171743). - libnvdimm/pfn_dev: Add page size and struct page size to pfn superblock (bsc#1171759). - libnvdimm/pfn: Prevent raw mode fallback if pfn-infoblock valid (bsc#1171743). - libnvdimm/pmem: Advance namespace seed for specific probe errors (bsc#1171743). - libnvdimm/region: Fix build error (bsc#1162400). - libnvdimm/region: Introduce an 'align' attribute (bsc#1162400). - libnvdimm/region: Introduce NDD_LABELING (bsc#1162400). - libnvdimm/region: Rewrite _probe_success() to _advance_seeds() (bsc#1171743). - libnvdimm: Use PAGE_SIZE instead of SZ_4K for align check (bsc#1171759). - lib: Uplevel the pmem "region" ida to a global allocator (bc#1162400). - list: Add hlist_unhashed_lockless() (bsc#1173438). - livepatch: Apply vmlinux-specific KLP relocations early (bsc#1071995). - livepatch: Disallow vmlinux.ko (bsc#1071995). - livepatch: Make klp_apply_object_relocs static (bsc#1071995). - livepatch: Prevent module-specific KLP rela sections from referencing vmlinux symbols (bsc#1071995). - livepatch: Remove .klp.arch (bsc#1071995). - locktorture: Allow CPU-hotplug to be disabled via --bootargs (bsc#1173068). - lpfc_debugfs: get rid of pointless access_ok() (bsc#1171530). - lpfc: fix axchg pointer reference after free and double frees (bsc#1171530). - lpfc: Fix pointer checks and comments in LS receive refactoring (bsc#1171530). - lpfc: Fix return value in __lpfc_nvme_ls_abort (bsc#1171530). - lpfc: Synchronize NVME transport and lpfc driver devloss_tmo (bcs#1173060). - mac80211: mesh: fix discovery timer re-arming issue / crash (git-fixes). - mailbox: zynqmp-ipi: Fix NULL vs IS_ERR() check in zynqmp_ipi_mbox_probe() (git-fixes). - Make the "Reducing compressed framebufer size" message be DRM_INFO_ONCE() (git-fixes). - mdraid: fix read/write bytes accounting (bsc#1172537). - media: cedrus: Program output format during each run (git-fixes). - media: dvb: return -EREMOTEIO on i2c transfer failure (git-fixes). - media: platform: fcp: Set appropriate DMA parameters (git-fixes). - media: Revert "staging: imgu: Address a compiler warning on alignment" (git-fixes). - media: staging: ipu3: Fix stale list entries on parameter queue failure (git-fixes). - media: staging: ipu3-imgu: Move alignment attribute to field (git-fixes). - mei: release me_cl object reference (git-fixes). - mfd: intel-lpss: Add Intel Tiger Lake PCI IDs (jsc#SLE-12737). - mfd: intel-lpss: Use devm_ioremap_uc for MMIO (git-fixes). - mfd: stmfx: Fix stmfx_irq_init error path (git-fixes). - mfd: stmfx: Reset chip on resume as supply was disabled (git-fixes). - misc: fastrpc: fix potential fastrpc_invoke_ctx leak (git-fixes). - misc: rtsx: Add short delay after exit from ASPM (git-fixes). - mlxsw: Fix some IS_ERR() vs NULL bugs (networking-stable-20_04_27). - mm: adjust vm_committed_as_batch according to vm overcommit policy (bnc#1173271). - mmc: block: Fix use-after-free issue for rpmb (git-fixes). - mmc: core: Use DEFINE_DEBUGFS_ATTRIBUTE instead of DEFINE_SIMPLE_ATTRIBUTE (git-fixes). - mmc: fix compilation of user API (git-fixes). - mmc: meson-mx-sdio: trigger a soft reset after a timeout or CRC error (git-fixes). - mmc: mmci_sdmmc: fix DMA API warning overlapping mappings (git-fixes). - mmc: sdhci-esdhc-imx: fix the mask for tuning start point (git-fixes). - mmc: sdhci-msm: Clear tuning done flag while hs400 tuning (git-fixes). - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card() (git-fixes). - mmc: sdio: Fix several potential memory leaks in mmc_sdio_init_card() (git-fixes). - mmc: tmio: Further fixup runtime PM management at remove (git-fixes). - mmc: uniphier-sd: call devm_request_irq() after tmio_mmc_host_probe() (git-fixes). - mm: do not prepare anon_vma if vma has VM_WIPEONFORK (bsc#1169681). - mm: memcontrol: fix memory.low proportional distribution (bsc#1168230). - mm/memremap: drop unused SECTION_SIZE and SECTION_MASK (bsc#1162400 bsc#1170895 ltc#184375 ltc#185686). - mm/memremap_pages: Introduce memremap_compat_align() (bsc#1162400). - mm/memremap_pages: Kill unused __devm_memremap_pages() (bsc#1162400). - mm/util.c: make vm_memory_committed() more accurate (bnc#1173271). - mt76: mt76x02u: Add support for newer versions of the XBox One wifi adapter (git-fixes). - mtd: Fix mtd not registered due to nvmem name collision (git-fixes). - mtd: rawnand: brcmnand: correctly verify erased pages (git-fixes). - mtd: rawnand: brcmnand: fix CS0 layout (git-fixes). - mtd: rawnand: brcmnand: fix hamming oob layout (git-fixes). - mtd: rawnand: diskonchip: Fix the probe error path (git-fixes). - mtd: rawnand: Fix nand_gpio_waitrdy() (git-fixes). - mtd: rawnand: ingenic: Fix the probe error path (git-fixes). - mtd: rawnand: marvell: Fix probe error path (git-fixes). - mtd: rawnand: marvell: Fix the condition on a return code (git-fixes). - mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered (git-fixes). - mtd: rawnand: mtk: Fix the probe error path (git-fixes). - mtd: rawnand: onfi: Fix redundancy detection check (git-fixes). - mtd: rawnand: orion: Fix the probe error path (git-fixes). - mtd: rawnand: oxnas: Keep track of registered devices (git-fixes). - mtd: rawnand: oxnas: Release all devices in the _remove() path (git-fixes). - mtd: rawnand: pasemi: Fix the probe error path (git-fixes). - mtd: rawnand: plat_nand: Fix the probe error path (git-fixes). - mtd: rawnand: sharpsl: Fix the probe error path (git-fixes). - mtd: rawnand: socrates: Fix the probe error path (git-fixes). - mtd: rawnand: sunxi: Fix the probe error path (git-fixes). - mtd: rawnand: timings: Fix default tR_max and tCCS_min timings (git-fixes). - mtd: rawnand: tmio: Fix the probe error path (git-fixes). - mtd: rawnand: xway: Fix the probe error path (git-fixes). - mtd: spinand: Propagate ECC information to the MTD structure (git-fixes). - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake SPI serial flash (jsc#SLE-12737). - mwifiex: avoid -Wstringop-overflow warning (git-fixes). - mwifiex: Fix memory corruption in dump_station (git-fixes). - net: bcmgenet: correct per TX/RX ring statistics (networking-stable-20_04_27). - net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL (networking-stable-20_04_27). - net: dsa: b53: Fix ARL register definitions (networking-stable-20_04_27). - net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled (networking-stable-20_04_27). - net: dsa: b53: Rework ARL bin logic (networking-stable-20_04_27). - net: dsa: declare lockless TX feature for slave ports (bsc#1154353). - net: dsa: mt7530: fix tagged frames pass-through in VLAN-unaware mode (networking-stable-20_04_17). - net: ena: xdp: update napi budget for DROP and ABORTED (bsc#1154492). - net: ena: xdp: XDP_TX: fix memory leak (bsc#1154492). - netfilter: connlabels: prefer static lock initialiser (git-fixes). - netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes). - netfilter: nf_tables_offload: return EOPNOTSUPP if rule specifies no actions (git-fixes). - netfilter: nft_tproxy: Fix port selector on Big Endian (git-fixes). - netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy (git-fixes). - netfilter: not mark a spinlock as __read_mostly (git-fixes). - net: ipv4: devinet: Fix crash when add/del multicast IP with autojoin (networking-stable-20_04_17). - net: ipv6: do not consider routes via gateways for anycast address check (networking-stable-20_04_17). - net/mlx4_en: avoid indirect call in TX completion (networking-stable-20_04_27). - net/mlx5e: Add missing release firmware call (networking-stable-20_04_17). - net/mlx5e: Fix pfnum in devlink port attribute (networking-stable-20_04_17). - net/mlx5e: Fix stats update for matchall classifier (jsc#SLE-8464). - net/mlx5e: replace EINVAL in mlx5e_flower_parse_meta() (jsc#SLE-8464). - net/mlx5: Fix cleaning unmanaged flow tables (jsc#SLE-8464). - net/mlx5: Fix crash upon suspend/resume (bsc#1172365). - net/mlx5: Fix frequent ioread PCI access during recovery (networking-stable-20_04_17). - net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node (networking-stable-20_04_27). - net: openvswitch: ovs_ct_exit to be done under ovs_lock (networking-stable-20_04_27). - net: phy: propagate an error back to the callers of phy_sfp_probe (bsc#1154353). - net: qrtr: send msgs from local of same id as broadcast (networking-stable-20_04_17). - net: revert default NAPI poll timeout to 2 jiffies (networking-stable-20_04_17). - net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" (bnc#1158748 (network regression)). - net: tun: record RX queue in skb before do_xdp_generic() (networking-stable-20_04_17). - net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3_get_rss() (bsc#1172484). - net/x25: Fix x25_neigh refcnt leak when receiving frame (networking-stable-20_04_27). - NFC: st21nfca: add missed kfree_skb() in an error path (git-fixes). - nfs: add minor version to nfs_server_key for fscache (bsc#1172467). - nfsd4: make drc_slab global, not per-net (git-fixes). - nfsd: always check return value of find_any_file (bsc#1172208). - NFS: Fix fscache super_cookie index_key from changing after umount (git-fixes). - nfs: fix NULL deference in nfs4_get_valid_delegation. - nfs: fscache: use timespec64 in inode auxdata (git-fixes). - nfs: set invalid blocks after NFSv4 writes (git-fixes). - NFSv4.1 fix rpc_call_done assignment for BIND_CONN_TO_SESSION (git-fixes). - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included (git-fixes). - ntb: intel: add hw workaround for NTB BAR alignment (jsc#SLE-12710). - ntb: intel: Add Icelake (gen4) support for Intel NTB (jsc#SLE-12710). - ntb: intel: fix static declaration (jsc#SLE-12710). - nvdimm: Avoid race between probe and reading device attributes (bsc#1170442). - nvme-fc: avoid gcc-10 zero-length-bounds warning (bsc#1173206). - nvme-fc: do not call nvme_cleanup_cmd() for AENs (bsc#1171688). - nvme-fc: print proper nvme-fc devloss_tmo value (bsc#1172391). - objtool: Allow no-op CFI ops in alternatives (bsc#1169514). - objtool: Clean instruction state before each function validation (bsc#1169514). - objtool: Fix !CFI insn_state propagation (bsc#1169514). - objtool: Fix ORC vs alternatives (bsc#1169514). - objtool: Ignore empty alternatives (bsc#1169514). - objtool: Remove check preventing branches within alternative (bsc#1169514). - objtool: Rename struct cfi_state (bsc#1169514). - objtool: Uniquely identify alternative instruction groups (bsc#1169514). - p54usb: add AirVasT USB stick device-id (git-fixes). - panic: do not print uninitialized taint_flags (bsc#1172814). - PCI: Allow pci_resize_resource() for devices on root bus (git-fixes). - PCI: amlogic: meson: Do not use FAST_LINK_MODE to set up link (git-fixes). - PCI: brcmstb: Assert fundamental reset on initialization (git-fixes). - PCI: brcmstb: Assert fundamental reset on initialization (git-fixes). - PCI: brcmstb: Fix window register offset from 4 to 8 (git-fixes). - PCI: brcmstb: Fix window register offset from 4 to 8 (git-fixes). - pcie: mobiveil: remove patchset v9 Prepare to backport upstream version. - PCI: Fix pci_register_host_bridge() device_register() error handling (git-fixes). - PCI: mobiveil: Add 8-bit and 16-bit CSR register accessors (bsc#1161495). - PCI: mobiveil: Add callback function for interrupt initialization (bsc#1161495). - PCI: mobiveil: Add callback function for link up check (bsc#1161495). - PCI: mobiveil: Add Header Type field check (bsc#1161495). - PCI: mobiveil: Add PCIe Gen4 RC driver for Layerscape SoCs (bsc#1161495). - PCI: mobiveil: Allow mobiveil_host_init() to be used to re-init host (bsc#1161495). - PCI: mobiveil: Collect the interrupt related operations into a function (bsc#1161495). - PCI: mobiveil: Fix sparse different address space warnings (bsc#1161495). - PCI: mobiveil: Fix unmet dependency warning for PCIE_MOBIVEIL_PLAT (bsc#1161495). - PCI: mobiveil: Introduce a new structure mobiveil_root_port (bsc#1161495). - PCI: mobiveil: ls_pcie_g4: add Workaround for A-011451 (bsc#1161495). - PCI: mobiveil: ls_pcie_g4: add Workaround for A-011577 (bsc#1161495). - PCI: mobiveil: ls_pcie_g4: fix SError when accessing config space (bsc#1161495). - PCI: mobiveil: Modularize the Mobiveil PCIe Host Bridge IP driver (bsc#1161495). - PCI: mobiveil: Move the host initialization into a function (bsc#1161495). - PCI/PM: Adjust pcie_wait_for_link_delay() for caller delay (git-fixes). - PCI/PM: Call .bridge_d3() hook only if non-NULL (git-fixes). - PCI: Program MPS for RCiEP devices (git-fixes). - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port (git-fixes). - PCI: rcar: Fix incorrect programming of OB windows (git-fixes). - PCI: v3-semi: Fix a memory leak in v3_pci_probe() error handling paths (git-fixes). - PCI: vmd: Filter resource type bits from shadow register (git-fixes). - pcm_native: result of put_user() needs to be checked (git-fixes). - perf/core: Fix endless multiplex timer (git-fixes). - perf/core: fix parent pid/tid in task exit events (git-fixes). - pinctrl: freescale: imx: Fix an error handling path in 'imx_pinctrl_probe()' (git-fixes). - pinctrl: freescale: imx: Use 'devm_of_iomap()' to avoid a resource leak in case of error in 'imx_pinctrl_probe()' (git-fixes). - pinctrl: imxl: Fix an error handling path in 'imx1_pinctrl_core_probe()' (git-fixes). - pinctrl: intel: Add Intel Tiger Lake pin controller support (jsc#SLE-12737). - pinctrl: ocelot: Fix GPIO interrupt decoding on Jaguar2 (git-fixes). - pinctrl: rza1: Fix wrong array assignment of rza1l_swio_entries (git-fixes). - pinctrl: samsung: Correct setting of eint wakeup mask on s5pv210 (git-fixes). - pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE GPIOs (git-fixes). - pinctrl: sprd: Fix the incorrect pull-up definition (git-fixes). - pinctrl: stmfx: stmfx_pinconf_set does not require to get direction anymore (git-fixes). - pinctrl: tigerlake: Tiger Lake uses _HID enumeration (jsc#SLE-12737). - platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA (git-fixes). - platform/x86: dell-laptop: do not register micmute LED if there is no token (git-fixes). - platform/x86: intel-vbtn: Also handle tablet-mode switch on "Detachable" and "Portable" chassis-types (git-fixes). - platform/x86: intel-vbtn: Do not advertise switches to userspace if they are not there (git-fixes). - platform/x86: intel-vbtn: Only blacklist SW_TABLET_MODE on the 9 / "Laptop" chasis-type (git-fixes). - platform/x86: intel-vbtn: Split keymap into buttons and switches parts (git-fixes). - platform/x86: intel-vbtn: Use acpi_evaluate_integer() (git-fixes). - PM: runtime: clk: Fix clk_pm_runtime_get() error path (git-fixes). - pnp: Use list_for_each_entry() instead of open coding (git-fixes). - powerpc/64s: Do not let DT CPU features set FSCR_DSCR (bsc#1065729). - powerpc/64s/exception: Fix machine check no-loss idle wakeup (bsc#1156395). - powerpc/64s/kuap: Restore AMR in system reset exception (bsc#1156395). - powerpc/64s: Save FSCR to init_task.thread.fscr after feature init (bsc#1065729). - powerpc/book3s64: Export has_transparent_hugepage() related functions (bsc#1171759). - powerpc/bpf: Enable bpf_probe_read{, str}() on powerpc again (bsc#1172344). - powerpc/fadump: Account for memory_limit while reserving memory (jsc#SLE-9099 git-fixes). - powerpc/fadump: consider reserved ranges while reserving memory (jsc#SLE-9099 git-fixes). - powerpc/fadump: use static allocation for reserved memory ranges (jsc#SLE-9099 git-fixes). - powerpc/kuap: PPC_KUAP_DEBUG should depend on PPC_KUAP (bsc#1156395). - powerpc/powernv: Fix a warning message (bsc#1156395). - powerpc/setup_64: Set cache-line-size based on cache-block-size (bsc#1065729). - powerpc/xive: Clear the page tables for the ESB IO mapping (bsc#1085030). - power: reset: qcom-pon: reg write mask depends on pon generation (git-fixes). - power: supply: bq24257_charger: Replace depends on REGMAP_I2C with select (git-fixes). - power: supply: core: fix HWMON temperature labels (git-fixes). - power: supply: core: fix memory leak in HWMON error path (git-fixes). - power: supply: lp8788: Fix an error handling path in 'lp8788_charger_probe()' (git-fixes). - power: supply: smb347-charger: IRQSTAT_D is volatile (git-fixes). - printk: queue wake_up_klogd irq_work only if per-CPU areas are ready (bsc#1172095). - proc/meminfo: avoid open coded reading of vm_committed_as (bnc#1173271). - pwm: sun4i: Move pwm_calculate() out of spin_lock() (git-fixes). - r8152: support additional Microsoft Surface Ethernet Adapter variant (git-fixes). - r8169: Revive default chip version for r8168 (bsc#1173085). - raid5: remove gfp flags from scribble_alloc() (bsc#1166985). - random: fix data races at timer_rand_state (bsc#1173438). - rcu: Avoid data-race in rcu_gp_fqs_check_wake() (bsc#1171828). - rcu: Fix data-race due to atomic_t copy-by-value (bsc#1171828). - rcu: Make rcu_read_unlock_special() checks match raise_softirq_irqoff() (bsc#1172046). - rcu: Simplify rcu_read_unlock_special() deferred wakeups (bsc#1172046). - rcutorture: Add 100-CPU configuration (bsc#1173068). - rcutorture: Add worst-case call_rcu() forward-progress results (bsc#1173068). - rcutorture: Dispense with Dracut for initrd creation (bsc#1173068). - rcutorture: Make kvm-find-errors.sh abort on bad directory (bsc#1173068). - rcutorture: Remove CONFIG_HOTPLUG_CPU=n from scenarios (bsc#1173068). - rcutorture: Summarize summary of build and run results (bsc#1173068). - rcutorture: Test TREE03 with the threadirqs kernel boot parameter (bsc#1173068). - rcu: Use *_ONCE() to protect lockless ->expmask accesses (bsc#1171828). - rcu: Use WRITE_ONCE() for assignments to ->pprev for hlist_nulls (bsc#1173438). - RDMA/bnxt_re: Remove dead code from rcfw (bsc#1170774). - RDMA/core: Move and rename trace_cm_id_create() (jsc#SLE-8449). - RDMA/mlx5: Fix NULL pointer dereference in destroy_prefetch_work (jsc#SLE-8446). - RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET (bsc#1172841). - RDMA/srpt: Fix disabling device management (jsc#SLE-8449). - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated (jsc#SLE-8449). - remoteproc: Add missing '\n' in log messages (git-fixes). - remoteproc: Fall back to using parent memory pool if no dedicated available (git-fixes). - remoteproc: Fix and restore the parenting hierarchy for vdev (git-fixes). - remoteproc: Fix IDR initialisation in rproc_alloc() (git-fixes). - Revert "drm/amd/display: disable dcn20 abm feature for bring up" (git-fixes). - Revert "fs/seq_file.c: seq_read(): add info message about buggy .next functions" (bsc#1172751) The message floods dmesg and its benefit is marginal in default kernel. - Revert "pinctrl: freescale: imx: Use 'devm_of_iomap()' to avoid a resource leak in case of error in 'imx_pinctrl_probe()'" (git-fixes). - rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073). - rpm/modules.fips: * add aes-ce-ccm and des3_ede-x86_64 (boo#173030) * add aes_ti and aes_neon_bs (boo#1172956) - rtc: mc13xxx: fix a double-unlock issue (git-fixes). - rtc: rv3028: Add missed check for devm_regmap_init_i2c() (git-fixes). - rtlwifi: Fix a double free in _rtl_usb_tx_urb_setup() (git-fixes). - rtw88: fix an issue about leak system resources (git-fixes). - rxrpc: Fix call RCU cleanup using non-bh-safe locks (git-fixes). - s390/bpf: Maintain 8-byte stack alignment (bsc#1169194, LTC#185911). - s390/pci: Log new handle in clp_disable_fh() (git-fixes). - sched/cfs: change initial value of runnable_avg (bsc#1158765). - sched/core: Check cpus_mask, not cpus_ptr in __set_cpus_allowed_ptr(), to fix mask corruption (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/core: Fix PI boosting between RT and DEADLINE tasks (bsc#1172823). - sched/core: Fix PI boosting between RT and DEADLINE tasks (git fixes (sched)). - sched/core: Fix ttwu() race (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/core: s/WF_ON_RQ/WQ_ON_CPU/ (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/cpuacct: Fix charge cpuacct.usage_sys (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/deadline: Initialize ->dl_boosted (bsc#1172823). - sched/deadline: Initialize ->dl_boosted (git fixes (sched)). - sched: etf: do not assume all sockets are full blown (networking-stable-20_04_27). - sched/fair: find_idlest_group(): Remove unused sd_flag parameter (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Fix enqueue_task_fair() warning some more (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: fix nohz next idle balance (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Optimize dequeue_task_fair() (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Optimize enqueue_task_fair() (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Simplify the code of should_we_balance() (bnc#1155798 (CPU scheduler functional and performance backports)). - sched: Make newidle_balance() static again (bnc#1155798 (CPU scheduler functional and performance backports)). - sched: Offload wakee task activation if it the wakee is descheduling (bnc#1158748, bnc#1159781). - sched: Optimize ttwu() spinning on p->on_cpu (bnc#1158748, bnc#1159781). - sched/pelt: Sync util/runnable_sum with PELT window when propagating (bnc#1155798 (CPU scheduler functional and performance backports)). - scripts/decodecode: fix trapping instruction formatting (bsc#1065729). - scsi: ibmvscsi: Do not send host info in adapter info MAD after LPM (bsc#1172759 ltc#184814). - scsi: lpfc: Change default queue allocation for reduced memory consumption (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Copyright updates for 12.6.0.4 patches (bsc#1171530). - scsi: lpfc: fix build failure with DEBUGFS disabled (bsc#1171530). - scsi: lpfc: Fix incomplete NVME discovery when target (bsc#1171530). - scsi: lpfc: Fix lpfc_nodelist leak when processing unsolicited event (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Fix MDS Diagnostic Enablement definition (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Fix memory leak on lpfc_bsg_write_ebuf_set func (bsc#1171530). - scsi: lpfc: Fix negation of else clause in lpfc_prep_node_fc4type (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Fix noderef and address space warnings (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: fix spelling mistakes of asynchronous (bsc#1171530). - scsi: lpfc: Maintain atomic consistency of queue_claimed flag (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Make lpfc_defer_acc_rsp static (bsc#1171530). - scsi: lpfc: remove duplicate unloading checks (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Remove re-binding of nvme rport during registration (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Remove redundant initialization to variable rc (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Remove unnecessary lockdep_assert_held calls (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Update lpfc version to 12.8.0.1 (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: megaraid_sas: Replace undefined MFI_BIG_ENDIAN macro with __BIG_ENDIAN_BITFIELD macro (bsc#1173206). - scsi: qla2xxx: Delete all sessions before unregister local nvme port (jsc#SLE-9714 jsc#SLE-10327 jsc#SLE-10334 bsc#1157169). - scsi: qla2xxx: Do not log message when reading port speed via sysfs (jsc#SLE-9714 jsc#SLE-10327 jsc#SLE-10334 bsc#1157169). - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV (jsc#SLE-9714 jsc#SLE-10327 jsc#SLE-10334 bsc#1157169). - scsi: sd_zbc: Fix sd_zbc_complete() (bsc#1173206). - scsi: smartpqi: Update attribute name to `driver_version` (bsc#1173206). - scsi: zfcp: add diagnostics buffer for exchange config data (bsc#1158050). - scsi: zfcp: auto variables for dereferenced structs in open port handler (bsc#1158050). - scsi: zfcp: diagnostics buffer caching and use for exchange port data (bsc#1158050). - scsi: zfcp: enhance handling of FC Endpoint Security errors (bsc#1158050). - scsi: zfcp: expose fabric name as common fc_host sysfs attribute (bsc#1158050). - scsi: zfcp: Fence adapter status propagation for common statuses (bsc#1158050). - scsi: zfcp: Fence early sysfs interfaces for accesses of shost objects (bsc#1158050). - scsi: zfcp: Fence fc_host updates during link-down handling (bsc#1158050). - scsi: zfcp: fix fc_host attributes that should be unknown on local link down (bsc#1158050). - scsi: zfcp: fix wrong data and display format of SFP+ temperature (bsc#1158050). - scsi: zfcp: implicitly refresh config-data diagnostics when reading sysfs (bsc#1158050). - scsi: zfcp: implicitly refresh port-data diagnostics when reading sysfs (bsc#1158050). - scsi: zfcp: introduce sysfs interface for diagnostics of local SFP transceiver (bsc#1158050). - scsi: zfcp: introduce sysfs interface to read the local B2B-Credit (bsc#1158050). - scsi: zfcp: log FC Endpoint Security errors (bsc#1158050). - scsi: zfcp: log FC Endpoint Security of connections (bsc#1158050). - scsi: zfcp: Move allocation of the shost object to after xconf- and xport-data (bsc#1158050). - scsi: zfcp: Move fc_host updates during xport data handling into fenced function (bsc#1158050). - scsi: zfcp: move maximum age of diagnostic buffers into a per-adapter variable (bsc#1158050). - scsi: zfcp: Move p-t-p port allocation to after xport data (bsc#1158050). - scsi: zfcp: Move shost modification after QDIO (re-)open into fenced function (bsc#1158050). - scsi: zfcp: Move shost updates during xconfig data handling into fenced function (bsc#1158050). - scsi: zfcp: proper indentation to reduce confusion in zfcp_erp_required_act (bsc#1158050). - scsi: zfcp: report FC Endpoint Security in sysfs (bsc#1158050). - scsi: zfcp: signal incomplete or error for sync exchange config/port data (bsc#1158050). - scsi: zfcp: support retrieval of SFP Data via Exchange Port Data (bsc#1158050). - scsi: zfcp: trace FC Endpoint Security of FCP devices and connections (bsc#1158050). - scsi: zfcp: wire previously driver-specific sysfs attributes also to fc_host (bsc#1158050). - selftests/bpf: CONFIG_IPV6_SEG6_BPF required for test_seg6_loop.o (bsc#1155518). - selftests/bpf: CONFIG_LIRC required for test_lirc_mode2.sh (bsc#1155518). - selftests/bpf: Fix invalid memory reads in core_relo selftest (bsc#1155518). - selftests/bpf: Fix memory leak in extract_build_id() (bsc#1155518). - selftests/bpf, flow_dissector: Close TAP device FD after the test (bsc#1155518). - selftests/timens: handle a case when alarm clocks are not supported (bsc#1164648,jsc#SLE-11493). - serial: 8250: Fix max baud limit in generic 8250 port (git-fixes). - slimbus: core: Fix mismatch in of_node_get/put (git-fixes). - soc: mediatek: cmdq: return send msg error code (git-fixes). - soc: qcom: rpmh: Dirt can only make you dirtier, not cleaner (git-fixes). - soc: qcom: rpmh: Invalidate SLEEP and WAKE TCSes before flushing new data (git-fixes). - soc: qcom: rpmh-rsc: Allow using free WAKE TCS for active request (git-fixes). - soc: qcom: rpmh-rsc: Clear active mode configuration for wake TCS (git-fixes). - soc: qcom: rpmh: Update dirty flag only when data changes (git-fixes). - soc/tegra: pmc: Select GENERIC_PINCONF (git-fixes). - spi: bcm2835aux: Fix controller unregister order (git-fixes). - spi: bcm2835: Fix controller unregister order (git-fixes). - spi: bcm-qspi: Handle clock probe deferral (git-fixes). - spi: bcm-qspi: when tx/rx buffer is NULL set to 0 (git-fixes). - SPI: designware: pci: Switch over to MSI interrupts (jsc#SLE-12735). - spi: dt-bindings: spi-controller: Fix #address-cells for slave mode (git-fixes). - spi: dw: Add SPI Rx-done wait method to DMA-based transfer (git-fixes). - spi: dw: Add SPI Tx-done wait method to DMA-based transfer (git-fixes). - spi: dw: Fix controller unregister order (git-fixes). - spi: dw: Fix native CS being unset (git-fixes). - spi: dw-pci: Add MODULE_DEVICE_TABLE (jsc#SLE-12735). - spi: dw-pci: Add runtime power management support (jsc#SLE-12735). - spi: dw-pci: Add support for Intel Elkhart Lake PSE SPI (jsc#SLE-12735). - spi: dw-pci: Fix Chip Select amount on Intel Elkhart Lake PSE SPI (jsc#SLE-12735). - spi: dw: use "smp_mb()" to avoid sending spi data error (git-fixes). - spi: dw: Zero DMA Tx and Rx configurations on stack (git-fixes). - spi: Fix controller unregister order (git-fixes). - spi: fsl: do not map irq during probe (git-fixes). - spi: fsl: use platform_get_irq() instead of of_irq_to_resource() (git-fixes). - spi: pxa2xx: Fix controller unregister order (git-fixes). - spi: pxa2xx: Fix runtime PM ref imbalance on probe error (git-fixes). - spi: Respect DataBitLength field of SpiSerialBusV2() ACPI resource (git-fixes). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (git-fixes). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (git-fixes). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (git-fixes). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (git-fixes). - spi: spi-mem: Fix Dual/Quad modes on Octal-capable devices (git-fixes). - staging: iio: ad2s1210: Fix SPI reading (git-fixes). - staging: kpc2000: fix error return code in kp2000_pcie_probe() (git-fixes). - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK (git-fixes). - staging: sm750fb: add missing case while setting FB_VISUAL (git-fixes). - sun6i: dsi: fix gcc-4.8 (bsc#1152489) - SUNRPC: Signalled ASYNC tasks need to exit (git-fixes). - supported.conf: Add pinctrl-tigerlake as supported - supported.conf: Mark two hwtracing helper modules as externally supported (bsc#1170879) - svcrdma: Fix leak of svc_rdma_recv_ctxt objects (git-fixes). - tcp: cache line align MAX_TCP_HEADER (networking-stable-20_04_27). - team: fix hang in team_mode_get() (networking-stable-20_04_27). - thermal: intel: intel_pch_thermal: Add Comet Lake (CML) platform support (jsc#SLE-12668). - tick/sched: Annotate lockless access to last_jiffies_update (bsc#1173438). - timer: Use hlist_unhashed_lockless() in timer_pending() (bsc#1173438). - torture: Allow "CFLIST" to specify default list of scenarios (bsc#1173068). - torture: Expand last_ts variable in kvm-test-1-run.sh (bsc#1173068). - torture: Handle jitter for CPUs that cannot be offlined (bsc#1173068). - torture: Handle systems lacking the mpstat command (bsc#1173068). - torture: Hoist calls to lscpu to higher-level kvm.sh script (bsc#1173068). - torture: Make results-directory date format completion-friendly (bsc#1173068). - torture: Use gawk instead of awk for systime() function (bsc#1173068). - tpm: ibmvtpm: retry on H_CLOSED in tpm_ibmvtpm_send() (bsc#1065729). - tty: n_gsm: Fix bogus i++ in gsm_data_kick (git-fixes). - tty: n_gsm: Fix SOF skipping (git-fixes). - tty: n_gsm: Fix waking up upper tty layer when room available (git-fixes). - tty: serial: add missing spin_lock_init for SiFive serial console (git-fixes). - tun: correct header offsets in napi frags mode (git-fixes). - Update config files: Add CONFIG_PINCTRL_TIGERLAKE=m - Update patch reference for intel_th patch (jsc#SLE-12705) - Update the patch reference for ish-hid fix (jsc#SLE-12683) - usb: core: Fix misleading driver bug report (git-fixes). - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B (git-fixes). - usb: dwc2: gadget: move gadget resume after the core is in L0 state (git-fixes). - usb: dwc3: gadget: Properly handle ClearFeature(halt) (git-fixes). - usb: dwc3: gadget: Properly handle failed kick_transfer (git-fixes). - usb: dwc3: pci: Enable extcon driver for Intel Merrifield (git-fixes). - usb: gadget: audio: Fix a missing error return value in audio_bind() (git-fixes). - usb: gadget: fix illegal array access in binding with UDC (git-fixes). - usb: gadget: fix potential double-free in m66592_probe (git-fixes). - usb: gadget: legacy: fix error return code in cdc_bind() (git-fixes). - usb: gadget: legacy: fix error return code in gncm_bind() (git-fixes). - usb: gadget: legacy: fix redundant initialization warnings (git-fixes). - usb: gadget: lpc32xx_udc: do not dereference ep pointer before null check (git-fixes). - usb: gadget: net2272: Fix a memory leak in an error handling path in 'net2272_plat_probe()' (git-fixes). - usb: gadget: udc: atmel: Make some symbols static (git-fixes). - usb: gadget: udc: s3c2410_udc: Remove pointless NULL check in s3c2410_udc_nuke (git-fixes). - usb: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe() (git-fixes). - usb: host: xhci-plat: keep runtime active when removing host (git-fixes). - usb: musb: Fix runtime PM imbalance on error (git-fixes). - usb: musb: start session in resume for host port (git-fixes). - usb: ohci-sm501: fix error return code in ohci_hcd_sm501_drv_probe() (git-fixes). - usb: serial: option: add Telit LE910C1-EUX compositions (git-fixes). - usb: serial: qcserial: add DW5816e QDL support (git-fixes). - usb: serial: usb_wwan: do not resubmit rx urb on fatal errors (git-fixes). - usb: usbfs: correct kernel->user page attribute mismatch (git-fixes). - usb: usbfs: fix mmap dma mismatch (git-fixes). - vfio: avoid possible overflow in vfio_iommu_type1_pin_pages (git-fixes). - vfio: Ignore -ENODEV when getting MSI cookie (git-fixes). - vfio/mdev: Fix reference count leak in add_mdev_supported_type (git-fixes). - vfio/pci: fix memory leaks in alloc_perm_bits() (git-fixes). - vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() (git-fixes). - video: fbdev: w100fb: Fix a potential double free (git-fixes). - virtio-blk: handle block_device_operations callbacks after hot unplug (git fixes (block drivers)). - vmxnet3: add geneve and vxlan tunnel offload support (bsc#1172484). - vmxnet3: add support to get/set rx flow hash (bsc#1172484). - vmxnet3: allow rx flow hash ops only when rss is enabled (bsc#1172484). - vmxnet3: prepare for version 4 changes (bsc#1172484). - vmxnet3: update to version 4 (bsc#1172484). - vmxnet3: use correct hdr reference when packet is encapsulated (bsc#1172484). - vrf: Check skb for XFRM_TRANSFORMED flag (networking-stable-20_04_27). - vrf: Fix IPv6 with qdisc and xfrm (networking-stable-20_04_27). - vsprintf: do not obfuscate NULL and error pointers (bsc#1172086). - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (git-fixes). - vt: vt_ioctl: remove unnecessary console allocation checks (git-fixes). - vxlan: use the correct nlattr array in NL_SET_ERR_MSG_ATTR (networking-stable-20_04_27). - w1: omap-hdq: cleanup to add missing newline for some dev_dbg (git-fixes). - watchdog: imx_sc_wdt: Fix reboot on crash (git-fixes). - wcn36xx: Fix error handling path in 'wcn36xx_probe()' (git-fixes). - wireguard: device: avoid circular netns references (git-fixes). - wireguard: noise: do not assign initiation time in if condition (git-fixes). - wireguard: noise: read preshared key while taking lock (bsc#1169021 jsc#SLE-12250). - wireguard: noise: separate receive counter from send counter (bsc#1169021 jsc#SLE-12250). - wireguard: queueing: preserve flow hash across packet scrubbing (bsc#1169021 jsc#SLE-12250). - wireguard: receive: account for napi_gro_receive never returning GRO_DROP (git-fixes). - wireguard: selftests: use newer iproute2 for gcc-10 (bsc#1169021 jsc#SLE-12250). - work around mvfs bug (bsc#1162063). - workqueue: do not use wq_select_unbound_cpu() for bound works (git-fixes). - workqueue: Remove the warning in wq_worker_sleeping() (git-fixes). - x86/cpu/amd: Make erratum #1054 a legacy erratum (bsc#1152489). - x86: Fix early boot crash on gcc-10, third try (bsc#1152489). - x86/mm/cpa: Flush direct map alias during cpa (bsc#1152489). - x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (git-fixes). - x86/reboot/quirks: Add MacBook6,1 reboot quirk (git-fixes). - x86/resctrl: Fix invalid attempt at removing the default resource group (bsc#1152489). - x86/resctrl: Preserve CDP enable over CPU hotplug (bsc#1152489). - x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive tasks (bsc#1058115). - xfrm: Always set XFRM_TRANSFORMED in xfrm{4,6}_output_finish (networking-stable-20_04_27). - xfrm: fix error in comment (git fixes (block drivers)). - xfs: clean up the error handling in xfs_swap_extents (git-fixes). - xfs: do not commit sunit/swidth updates to disk if that would cause repair failures (bsc#1172169). - xfs: do not fail unwritten extent conversion on writeback due to edquot (bsc#1158242). - xfs: fix duplicate verification from xfs_qm_dqflush() (git-fixes). - xfs: force writes to delalloc regions to unwritten (bsc#1158242). - xfs: measure all contiguous previous extents for prealloc size (bsc#1158242). - xfs: preserve default grace interval during quotacheck (bsc#1172170). - xfs: refactor agfl length computation function (bsc#1172169). - xfs: split the sunit parameter update into two parts (bsc#1172169). - wireguard: selftests: initalize ipv6 members to NULL to squelch clang warning (git-fixes). kernel-debug-5.3.18-lp152.26.2.nosrc.rpm True kernel-debug-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-base-5.3.18-lp152.26.2.lp152.8.2.2.src.rpm True kernel-default-base-5.3.18-lp152.26.2.lp152.8.2.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-lp152.26.2.lp152.8.2.2.x86_64.rpm True kernel-default-5.3.18-lp152.26.2.nosrc.rpm True kernel-default-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-docs-5.3.18-lp152.26.2.noarch.rpm True kernel-docs-5.3.18-lp152.26.2.nosrc.rpm True kernel-docs-html-5.3.18-lp152.26.2.noarch.rpm True kernel-kvmsmall-5.3.18-lp152.26.2.nosrc.rpm True kernel-kvmsmall-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-obs-build-5.3.18-lp152.26.2.src.rpm True kernel-obs-build-5.3.18-lp152.26.2.x86_64.rpm True kernel-obs-build-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-obs-qa-5.3.18-lp152.26.2.src.rpm True kernel-obs-qa-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-5.3.18-lp152.26.2.nosrc.rpm True kernel-preempt-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-devel-5.3.18-lp152.26.2.noarch.rpm True kernel-macros-5.3.18-lp152.26.2.noarch.rpm True kernel-source-5.3.18-lp152.26.2.noarch.rpm True kernel-source-5.3.18-lp152.26.2.src.rpm True kernel-source-vanilla-5.3.18-lp152.26.2.noarch.rpm True kernel-syms-5.3.18-lp152.26.2.src.rpm True kernel-syms-5.3.18-lp152.26.2.x86_64.rpm True openSUSE-2020-920 moderate openSUSE Leap 15.2 Update This update for fmt fixes the following issues: - Fixed incorrect pkg-config file paths (boo#1173270) fmt-6.2.1-lp152.2.3.1.src.rpm fmt-debugsource-6.2.1-lp152.2.3.1.x86_64.rpm fmt-devel-6.2.1-lp152.2.3.1.x86_64.rpm libfmt6-6.2.1-lp152.2.3.1.x86_64.rpm libfmt6-debuginfo-6.2.1-lp152.2.3.1.x86_64.rpm openSUSE-2020-921 important openSUSE Leap 15.2 Update This update for lvm2 fixes the following issues: - Fix potential data loss problem with LVM cache (bsc#1172566) This update was imported from the SUSE:SLE-15-SP2:Update update project. liblvm2cmd2_03-2.03.05-lp152.7.3.1.x86_64.rpm liblvm2cmd2_03-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-2.03.05-lp152.7.3.1.src.rpm lvm2-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-debugsource-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-devel-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-testsuite-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-testsuite-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm device-mapper-1.02.163-lp152.7.3.1.x86_64.rpm device-mapper-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm device-mapper-devel-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm lvm2-device-mapper-2.03.05-lp152.7.3.1.src.rpm lvm2-device-mapper-debugsource-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-lockd-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-lockd-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-lvmlockd-2.03.05-lp152.7.3.1.src.rpm lvm2-lvmlockd-debugsource-2.03.05-lp152.7.3.1.x86_64.rpm liblvm2cmd2_03-2.03.05-lp152.7.3.1.i586.rpm liblvm2cmd2_03-debuginfo-2.03.05-lp152.7.3.1.i586.rpm lvm2-2.03.05-lp152.7.3.1.i586.rpm lvm2-debuginfo-2.03.05-lp152.7.3.1.i586.rpm lvm2-debugsource-2.03.05-lp152.7.3.1.i586.rpm lvm2-devel-2.03.05-lp152.7.3.1.i586.rpm lvm2-testsuite-2.03.05-lp152.7.3.1.i586.rpm lvm2-testsuite-debuginfo-2.03.05-lp152.7.3.1.i586.rpm device-mapper-1.02.163-lp152.7.3.1.i586.rpm device-mapper-debuginfo-1.02.163-lp152.7.3.1.i586.rpm device-mapper-devel-1.02.163-lp152.7.3.1.i586.rpm device-mapper-devel-32bit-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-1.02.163-lp152.7.3.1.i586.rpm libdevmapper-event1_03-32bit-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-32bit-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-debuginfo-1.02.163-lp152.7.3.1.i586.rpm libdevmapper1_03-1.02.163-lp152.7.3.1.i586.rpm libdevmapper1_03-32bit-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-32bit-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-debuginfo-1.02.163-lp152.7.3.1.i586.rpm lvm2-device-mapper-debugsource-2.03.05-lp152.7.3.1.i586.rpm lvm2-lockd-2.03.05-lp152.7.3.1.i586.rpm lvm2-lockd-debuginfo-2.03.05-lp152.7.3.1.i586.rpm lvm2-lvmlockd-debugsource-2.03.05-lp152.7.3.1.i586.rpm openSUSE-2020-973 moderate openSUSE Leap 15.2 Update This update for kubernetes, kubernetes1.17, kubernetes1.18 fixes the following issues: - kubernetes 1.18 was updated to 1.18.4 and kubernetes 1.17 to 1.17.7 Changes in kubernetes1.18: Update to version 1.18.4: * enable floating IP for IPv6 * Extend AWS azToRegion method to support Local Zones and other partitions * kubelet: block non-forwarded packets from crossing the localhost boundary * Deflake port-forward e2e test * Fix fieldType being dropped by older go-clients * FieldManager: Reset if we receive nil or a list with one empty item * set dest prefix and port for IPv6 sg rule * fieldManager: Ignore and log all errors when updating managedFields * Make kubectl tolerate other versions of the CSR API * Changes to ManagedFields is not mutation for GC * fix a number of unbounded dimensions in request metrics * build: Use debian-hyperkube-base@v1.0.0 image * Check for GCE finalizer in GetLoadBalancer. * Fix csi-provisioner image for pd csi driver * hyperkube: Build v1.0.0 image * build: Add dependency entries for debian-hyperkube-base * Update CNI to v0.8.6 * Fix public IP not shown issues after assigning public IP to Azure VMs * Skip Pod Conditions from scheduling queue updates * add test for finalizers * skip unnecessary scheduling attempt when pod's finalizers change * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.3 * Add back anti-affinity to kube-dns pods. * Check for empty zone string * Azure - do not use 0 zone or empty string for zone when creating PVs * Fix client-ca dynamic reload in apiserver * Fix exclusive CPU allocations being deleted at container restart * Update strategy used to reuse CPUs from init containers in CPUManager Update to version 1.18.3: * Move nfs-provisioner from quay.io/kubernetes_incubator to staging-csi * Use staging-csi to work around quay.io availability * Azure: support non-VMSS instances removal * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs * count no nodes scheduling failure as unschedulable instead of error * kubeadm: fix flakes when performing etcd MemberAdd on slower setups * base-images: Update to kube-cross:v1.13.9-5 * build: Alpha-sort dependencies.yaml * fix: azure disk dangling attach issue * kube-proxy: increase the session affinity timeout to ensure that the test passes in ipvs mode * cluster: ipvs conntrack module vs kernel version * allow k8s.io/kubernetes/third_party/forked/ipvs in e2e test framework import restrictions (transitive dep from pkg/kubemark) * add license headers for third_party/forked/ipvs * third_party/forked/ipvs: check the address family if the netlink address family attribute is not set * run hack/update-vendor.sh to remove github.com/docker/libnetwork * remove github.com/docker/libnetwork from go.mod * update pkg/util/ipvs to use third_party/forked/ipvs * move github.com/docker/libnetwork/ipvs to third_party/forked * fix backoff manager timer initialization race * fix: ACR auth fails in private azure clouds * Restore cache-control header filter * kube-scheduler: compatibility with ServerSideApply * bugfix: initcontainer wasn't considered when calculate resource request * fix: azure file csi migration failure * Fix flaws in Azure CSI translation * Revert "stop defaulting kubeconfig to http://localhost:8080" * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.2 * Fix Node initialization for GCP cloud provider * Simplify unregistration of csiplugin * Unregister csiplugin even if socket path is gone * Move PSP tests behind a feature tag * kube-openapi bump to release-1.18 * Preserve int/float distinction when decoding raw values * Check Annotations map against nil for ConfigMapLock#Update() * Fix CSINodeInfo startup * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] Update to version 1.18.2: * Fix GCE ILB for large clusters * Restore the ability to `kubectl apply --prune` without -n flag * Fix client watch reestablishment handling of client-side timeouts * Fix priorityClass typo, add numeric priority to static pods * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.1 * Test dropped round-trip annotations in HPA conversion * Drop round-trip annotations in HPA conversion * Skip updating cache on pod update if the node was deleted - kubelet-common: conflict with other instances of kubelet-common and require kubernetes-kubelet%{baseversion} Update to version 1.18.1: * Ensure Azure availability zone is always in lower cases * Even with build error, kubectl apply should apply all valid resources * fix: update max azure disk max count * Ensure diff doesn't persist patches * Fix permissions for endpointslice controller * Clean up event messages for errors. * Allow list-resources.sh to continue if a resource fails to list * fix a bug where spn: prefix is unexpectedly added to kubeconfig apiserver-id setting * Adds integration test for apply failures when applying multiple resources * Fixes problem where kubectl apply stops after first error * fix cpu resource metric type by changing to counter * fix concurreny issue in lb creation * Kubeadm: fix Ready condition check * kubeadm: add missing RBAC for getting nodes on "upgrade apply" * Check that ImageInspect pointer is not nil * Fix bug about unintentional scale out during updating deployment. * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.0 * build/dependencies: Remove bazel WORKSPACE go_version check * deps: Update to Golang 1.13.9 * build: Remove kube-cross image building * Label Windows test as Serial. Changes in kubernetes1.17: Update to version 1.17.7: * Fix fieldType being dropped by older go-clients * FieldManager: Reset if we receive nil or a list with one empty item * enable floating IP for IPv6 * Extend AWS azToRegion method to support Local Zones and other partitions * kubelet: block non-forwarded packets from crossing the localhost boundary * Deflake port-forward e2e test * Skip Pod Conditions from scheduling queue updates * add test for finalizers * skip unnecessary scheduling attempt when pod's finalizers change * set dest prefix and port for IPv6 sg rule * Create class to call function at most every given period * fieldManager: Ignore and log all errors when updating managedFields * Make kubectl tolerate other versions of the CSR API * Changes to ManagedFields is not mutation for GC * fix a number of unbounded dimensions in request metrics * build: Use debian-hyperkube-base@v1.0.0 image * Source CNI plugins from gs://k8s-artifacts-cni/release * Update CNI to v0.8.6 * releng: Remove debian-hyperkube-base image building from this branch * Fix public IP not shown issues after assigning public IP to Azure VMs * fix: formating and typo * fix: address test failure and review comments * fix: add unit tests for truncate long subnet name on lb ip configuration * fix: should truncate long subnet name on lb rules * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.6 * kubeadm: fix flakes when performing etcd MemberAdd on slower setups * Add back anti-affinity to kube-dns pods. * Check for empty zone string * Azure - do not use 0 zone or empty string for zone when creating PVs * Fix client-ca dynamic reload in apiserver * Make updateAllocatedDevices() as a public method and call it in podresources api Update to version 1.17.6: * Azure: support non-VMSS instances removal * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs * count no nodes scheduling failure as unschedulable instead of error * base-images: Update to kube-cross:v1.13.9-5 * build: Alpha-sort dependencies.yaml * Work-around for missing metrics on CRI-O exited containers * fix: azure disk dangling attach issue * fix: ACR auth fails in private azure clouds * Restore cache-control header filter * bugfix: initcontainer wasn't considered when calculate resource request * fix: azure file csi migration failure * Fix flaws in Azure CSI translation * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.5 * Move PSP tests behind a feature tag * Fix code for 1.17 * kube-openapi bump to release-1.17 * Do not reset managedFields in status update strategy * Use discovery to test apply all status * Preserve int/float distinction when decoding raw values * All check for instanceID * Fix AWS eventual consistency of AttachDisk * fix: update max azure disk max count * Fix cherry-pick errors * Fix CSINodeInfo startup * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] Update to version 1.17.5: * Fix GCE ILB for large clusters * gce-addons: Make sure default/limit-range doesn't get overridden * Restore the ability to `kubectl apply --prune` without -n flag * Fix client watch reestablishment handling of client-side timeouts * Fix priorityClass typo, add numeric priority to static pods * Test dropped round-trip annotations in HPA conversion * Drop round-trip annotations in HPA conversion * Ensure Azure availability zone is always in lower cases * Clean up event messages for errors. * Fix permissions for endpointslice controller * Allow list-resources.sh to continue if a resource fails to list * Check that ImageInspect pointer is not nil * Fix bug about unintentional scale out during updating deployment. * kubeadm: increase timeouts in the etcd client * kubeadm: handle multiple members without names during concurrent join * build/dependencies: Remove bazel WORKSPACE go_version check * deps: Update to Golang 1.13.9 * build: Remove kube-cross image building * Fix the VMSS name and resource group name when updating VMSS for LoadBalancer backendPools. * Remove wait.Until for running Kubelet Bootstrap * Parallelize attach operations across different nodes for volumes that allow multi-attach * Add nil nodeinfo check in podFitsOnNode * fix: check disk status before disk azure disk * Update kube-openapi to release-1.17 * Update tag for structured-merge-diff to v2.0.1 * EndpointSlice and Endpoints should treat terminating pods the same * EndpointSliceTracker should track updated resource version * Ensuring EndpointSlices are not used for Windows kube-proxy implementations * Ensuring kube-proxy does not mutate shared EndpointSlices * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.4 * let image cache do sort on write instead of on read to avoid data * Removing kubectl get output e2e test * Fix VMSS cache content * Preserve target apiVersion when decoding into unstructured lists * Adding a temporary fix for kubectl get output e2e test * /readyz should start returning failure on shutdown initiation * test: don't use hardcoded pod count for memory limit test * Fixed in the GCE/PD in-tree volume logic to expose the max number of persistent-disks for each instance type correctly. * Honor status.podIP over status.podIPs, node.spec.podCIDR over node.spec.podCIDRs * fix: corrupted mount point in csi driver * fix: azure file mount timeout issue * fix behaviour of aws-load-balancer-security-groups annotation * fix: add remediation in azure disk attach/detach * Update to golang@1.13.8 * build: Enable kube-cross push/pull from K8s Infra GCR * build: Add justaugustus as reviewer * build: Add OWNERS on build-image/ * rename to sharedLimitWriter * address review feedback * Fix docker/journald logging conformance * fix get-kube authorization headers * Calling hcsshim instead of docker api to get stats for windows to greatly reduce latency * adding e2e test to ensure it takes less than 10 seconds to query kubelet stats for windows nodes * update golang.org/x/crypto * kube-proxy filter Load Balancer Status ingress * kube-proxy unit test FilterIncorrectIPVersion * add delays between goroutines for vm instance update * Updated test cos image to include runc-1.0.0-rc10 * Fix gce-cos-master-reboot test * Fix route conflicted operations when updating multiple routes together * fix: get azure disk lun timeout issue * Set up connection onClose prior to adding to connection map * fix: add azure disk migration support for CSINode * Add annotation annealing for migration for PVs and PVCs during syncVolume and syncClaim. This allows external-provisioners to pick up and delete volumes when they have been rolled up from previous kubernetes versions. * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.3 * Limit number of instances in single update to GCE target pool * Add code to fix kubelet/metrics memory issue. * Remove Error log for nil StartTime * CHANGELOG: Move changelogs into a subdir to delegate releng approvals * Enable selinux tags in make targets * Fix pending_pods, schedule_attempts_total was not recorded * Fixing Potential Race Condition in EndpointSlice Controller. * Restore statefulset conversion that populates apiVersion/kind in volume templates * Use standard default storage media type in local-up-cluster * changelog: clarify 1.17 upgrade requirements * Fix back off when scheduling cycle is delayed * blank out value for unbounded client label * update gopkg.in/yaml.v2 to v2.2.8 * set nil cache entry based on old cache * Revert "It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc." * Fix issue with GCE scripts assuming Python2. * Add/Update CHANGELOG-1.17.md for v1.17.2. * [1.17] No-op whitespace fix to CHANGELOG-1.17 to trigger a new 1.17 build * Update to golang@1.13.6 * Fix the bug PIP's DNS is deleted if no DNS label service annotation is set. * kubenet: replace gateway with cni result * Add/Update CHANGELOG-1.17.md for v1.17.1. * Fixes unnecessary creation of default SG and trying to delete non-provisioned SG by k8s system when annotation [service.beta.kubernetes.io/aws-load-balancer-security-groups] is present * Ensure a provider ID is set on a node if expected * Bind metrics-server containers to linux nodes to avoid Windows scheduling on kubernetes cluster includes linux nodes and windows nodes * Drop version from static openapi json file * Update to golang@1.13.5 * Revert reflector changes from PR #83520 from 1.17 * Fix IPv6 addresses lost issue in pure ipv6 vsphere environment * Fix unit test to run in non-gce environments * fix: azure disk could not mounted on Standard_DC4s/DC2s instances * Use legacyscheme's types rather than testapi ones * Fix nil pointer dereference in the azure provider * Add unit test for extended ipv4 service IP range * Revert "remove ipallocator in favor of k/utils net package" * It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc. * Allocate map when out points to nil map * fix: azure data disk should use same key as os disk by default * Check FileInfo against nil during walk of container dir path * Add UID precondition to kubelet pod status patch updates * Add cache for VMSS. * Fix build break - Hyperkube image needs kubelet/kubectl * Include cloud/gcp in e2e.test * Do not swallow timeout in manageReplicas * Sync the status of static Pods * Increase Burst limit for discovery client * Update v1.17.0 CHANGELOG to match final draft * Fix LoadBalancer rule checking so that no unexpected LoadBalancer updates are made * Fix broken SELinux detection * Add/Update CHANGELOG-1.17.md for v1.17.0. * Kubernetes version v1.17.1-beta.0 openapi-spec file updates * Deflake kubectl custom printing test * Refactor parsing logic for service IP and ranges, add tests * Fix bug in apiserver service cluster cidr split * Switch addon resizer to 1.8.7 * Deflake pod readiness e2e * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.2. * Move hostdns.conf out of cni directory. * Fix iscsi refcounter in the case of no Block iscsi volumes * Ensure webhook backend requests are not artificially rate-limited * Retain objects for a limited lifetime in the mutation cache detector by default * Enable mutation detection * Make cluster auto scaler use leases * Bump Cluster Autoscaler version to 1.17.0 * fix: padded base64 encoded docker auth field * apiextensions: filter required nullable to workaround kubectl validation * update cadvisor dependency to v0.35.0 * Bumped the number of times a node tries to lookup itself * Wait for PV to be available before creating PVCs in volume binding test * increase pv controller resync period to try to deflake api update conflicts * Fix GKE upgrade test. * Use plugin name for filtering metrics * Provided a mechanism to re-register hidden metrics. * Deep copying EndpointSlices in reconciler before modifying them. * Set node cidr mask size ipv4/ipv6 config * Revert "kube-proxy: check KUBE-MARK-DROP" * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.1. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.2. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.1. * Results of running update scripts: update-openapi-spec * Delete extraneous CHANGELOG-*.md files on branch. kubernetes1.17 was updated to version 1.17.7: * Fix fieldType being dropped by older go-clients * FieldManager: Reset if we receive nil or a list with one empty item * enable floating IP for IPv6 * Extend AWS azToRegion method to support Local Zones and other partitions * kubelet: block non-forwarded packets from crossing the localhost boundary * Deflake port-forward e2e test * Skip Pod Conditions from scheduling queue updates * add test for finalizers * skip unnecessary scheduling attempt when pod's finalizers change * set dest prefix and port for IPv6 sg rule * Create class to call function at most every given period * fieldManager: Ignore and log all errors when updating managedFields * Make kubectl tolerate other versions of the CSR API * Changes to ManagedFields is not mutation for GC * fix a number of unbounded dimensions in request metrics * build: Use debian-hyperkube-base@v1.0.0 image * Source CNI plugins from gs://k8s-artifacts-cni/release * Update CNI to v0.8.6 * releng: Remove debian-hyperkube-base image building from this branch * Fix public IP not shown issues after assigning public IP to Azure VMs * fix: formating and typo * fix: address test failure and review comments * fix: add unit tests for truncate long subnet name on lb ip configuration * fix: should truncate long subnet name on lb rules * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.6 * kubeadm: fix flakes when performing etcd MemberAdd on slower setups * Add back anti-affinity to kube-dns pods. * Check for empty zone string * Azure - do not use 0 zone or empty string for zone when creating PVs * Fix client-ca dynamic reload in apiserver * Make updateAllocatedDevices() as a public method and call it in podresources api Update to version 1.17.6: * Azure: support non-VMSS instances removal * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs * count no nodes scheduling failure as unschedulable instead of error * base-images: Update to kube-cross:v1.13.9-5 * build: Alpha-sort dependencies.yaml * Work-around for missing metrics on CRI-O exited containers * fix: azure disk dangling attach issue * fix: ACR auth fails in private azure clouds * Restore cache-control header filter * bugfix: initcontainer wasn't considered when calculate resource request * fix: azure file csi migration failure * Fix flaws in Azure CSI translation * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.5 * Move PSP tests behind a feature tag * Fix code for 1.17 * kube-openapi bump to release-1.17 * Do not reset managedFields in status update strategy * Use discovery to test apply all status * Preserve int/float distinction when decoding raw values * All check for instanceID * Fix AWS eventual consistency of AttachDisk * fix: update max azure disk max count * Fix cherry-pick errors * Fix CSINodeInfo startup * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] Update to version 1.17.5: * Fix GCE ILB for large clusters * gce-addons: Make sure default/limit-range doesn't get overridden * Restore the ability to `kubectl apply --prune` without -n flag * Fix client watch reestablishment handling of client-side timeouts * Fix priorityClass typo, add numeric priority to static pods * Test dropped round-trip annotations in HPA conversion * Drop round-trip annotations in HPA conversion * Ensure Azure availability zone is always in lower cases * Clean up event messages for errors. * Fix permissions for endpointslice controller * Allow list-resources.sh to continue if a resource fails to list * Check that ImageInspect pointer is not nil * Fix bug about unintentional scale out during updating deployment. * kubeadm: increase timeouts in the etcd client * kubeadm: handle multiple members without names during concurrent join * build/dependencies: Remove bazel WORKSPACE go_version check * deps: Update to Golang 1.13.9 * build: Remove kube-cross image building * Fix the VMSS name and resource group name when updating VMSS for LoadBalancer backendPools. * Remove wait.Until for running Kubelet Bootstrap * Parallelize attach operations across different nodes for volumes that allow multi-attach * Add nil nodeinfo check in podFitsOnNode * fix: check disk status before disk azure disk * Update kube-openapi to release-1.17 * Update tag for structured-merge-diff to v2.0.1 * EndpointSlice and Endpoints should treat terminating pods the same * EndpointSliceTracker should track updated resource version * Ensuring EndpointSlices are not used for Windows kube-proxy implementations * Ensuring kube-proxy does not mutate shared EndpointSlices * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.4 * let image cache do sort on write instead of on read to avoid data * Removing kubectl get output e2e test * Fix VMSS cache content * Preserve target apiVersion when decoding into unstructured lists * Adding a temporary fix for kubectl get output e2e test * /readyz should start returning failure on shutdown initiation * test: don't use hardcoded pod count for memory limit test * Fixed in the GCE/PD in-tree volume logic to expose the max number of persistent-disks for each instance type correctly. * Honor status.podIP over status.podIPs, node.spec.podCIDR over node.spec.podCIDRs * fix: corrupted mount point in csi driver * fix: azure file mount timeout issue * fix behaviour of aws-load-balancer-security-groups annotation * fix: add remediation in azure disk attach/detach * Update to golang@1.13.8 * build: Enable kube-cross push/pull from K8s Infra GCR * build: Add justaugustus as reviewer * build: Add OWNERS on build-image/ * rename to sharedLimitWriter * address review feedback * Fix docker/journald logging conformance * fix get-kube authorization headers * Calling hcsshim instead of docker api to get stats for windows to greatly reduce latency * adding e2e test to ensure it takes less than 10 seconds to query kubelet stats for windows nodes * update golang.org/x/crypto * kube-proxy filter Load Balancer Status ingress * kube-proxy unit test FilterIncorrectIPVersion * add delays between goroutines for vm instance update * Updated test cos image to include runc-1.0.0-rc10 * Fix gce-cos-master-reboot test * Fix route conflicted operations when updating multiple routes together * fix: get azure disk lun timeout issue * Set up connection onClose prior to adding to connection map * fix: add azure disk migration support for CSINode * Add annotation annealing for migration for PVs and PVCs during syncVolume and syncClaim. This allows external-provisioners to pick up and delete volumes when they have been rolled up from previous kubernetes versions. * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.3 * Limit number of instances in single update to GCE target pool * Add code to fix kubelet/metrics memory issue. * Remove Error log for nil StartTime * CHANGELOG: Move changelogs into a subdir to delegate releng approvals * Enable selinux tags in make targets * Fix pending_pods, schedule_attempts_total was not recorded * Fixing Potential Race Condition in EndpointSlice Controller. * Restore statefulset conversion that populates apiVersion/kind in volume templates * Use standard default storage media type in local-up-cluster * changelog: clarify 1.17 upgrade requirements * Fix back off when scheduling cycle is delayed * blank out value for unbounded client label * update gopkg.in/yaml.v2 to v2.2.8 * set nil cache entry based on old cache * Revert "It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc." * Fix issue with GCE scripts assuming Python2. * Add/Update CHANGELOG-1.17.md for v1.17.2. * [1.17] No-op whitespace fix to CHANGELOG-1.17 to trigger a new 1.17 build * Update to golang@1.13.6 * Fix the bug PIP's DNS is deleted if no DNS label service annotation is set. * kubenet: replace gateway with cni result * Add/Update CHANGELOG-1.17.md for v1.17.1. * Fixes unnecessary creation of default SG and trying to delete non-provisioned SG by k8s system when annotation [service.beta.kubernetes.io/aws-load-balancer-security-groups] is present * Ensure a provider ID is set on a node if expected * Bind metrics-server containers to linux nodes to avoid Windows scheduling on kubernetes cluster includes linux nodes and windows nodes * Drop version from static openapi json file * Update to golang@1.13.5 * Revert reflector changes from PR #83520 from 1.17 * Fix IPv6 addresses lost issue in pure ipv6 vsphere environment * Fix unit test to run in non-gce environments * fix: azure disk could not mounted on Standard_DC4s/DC2s instances * Use legacyscheme's types rather than testapi ones * Fix nil pointer dereference in the azure provider * Add unit test for extended ipv4 service IP range * Revert "remove ipallocator in favor of k/utils net package" * It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc. * Allocate map when out points to nil map * fix: azure data disk should use same key as os disk by default * Check FileInfo against nil during walk of container dir path * Add UID precondition to kubelet pod status patch updates * Add cache for VMSS. * Fix build break - Hyperkube image needs kubelet/kubectl * Include cloud/gcp in e2e.test * Do not swallow timeout in manageReplicas * Sync the status of static Pods * Increase Burst limit for discovery client * Update v1.17.0 CHANGELOG to match final draft * Fix LoadBalancer rule checking so that no unexpected LoadBalancer updates are made * Fix broken SELinux detection * Add/Update CHANGELOG-1.17.md for v1.17.0. * Kubernetes version v1.17.1-beta.0 openapi-spec file updates * Deflake kubectl custom printing test * Refactor parsing logic for service IP and ranges, add tests * Fix bug in apiserver service cluster cidr split * Switch addon resizer to 1.8.7 * Deflake pod readiness e2e * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.2. * Move hostdns.conf out of cni directory. * Fix iscsi refcounter in the case of no Block iscsi volumes * Ensure webhook backend requests are not artificially rate-limited * Retain objects for a limited lifetime in the mutation cache detector by default * Enable mutation detection * Make cluster auto scaler use leases * Bump Cluster Autoscaler version to 1.17.0 * fix: padded base64 encoded docker auth field * apiextensions: filter required nullable to workaround kubectl validation * update cadvisor dependency to v0.35.0 * Bumped the number of times a node tries to lookup itself * Wait for PV to be available before creating PVCs in volume binding test * increase pv controller resync period to try to deflake api update conflicts * Fix GKE upgrade test. * Use plugin name for filtering metrics * Provided a mechanism to re-register hidden metrics. * Deep copying EndpointSlices in reconciler before modifying them. * Set node cidr mask size ipv4/ipv6 config * Revert "kube-proxy: check KUBE-MARK-DROP" * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.1. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.2. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.1. * Results of running update scripts: update-openapi-spec * Delete extraneous CHANGELOG-*.md files on branch. - kubelet-common: conflict with other instances of kubelet-common and require kubernetes-kubelet%{baseversion} kubernetes-1.18.4-lp152.2.3.1.src.rpm kubernetes-apiserver-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-apiserver-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes-client-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-controller-manager-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-controller-manager-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes-kubeadm-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-kubelet-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-proxy-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-proxy-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes-scheduler-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-scheduler-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes1.17-1.17.7-lp152.5.1.src.rpm kubernetes1.17-apiserver-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-client-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-controller-manager-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-kubeadm-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-kubelet-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-kubelet-common-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-proxy-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-scheduler-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.18-1.18.4-lp152.5.1.src.rpm kubernetes1.18-apiserver-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-client-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-controller-manager-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-kubeadm-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-kubelet-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-kubelet-common-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-proxy-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-scheduler-1.18.4-lp152.5.1.x86_64.rpm openSUSE-2020-922 moderate openSUSE Leap 15.2 Update This update for python-typing_extensions fixes the following issues: Update to version 3.7.4.2 * official support for Python 3.8 and 3.9 Update to version 3.7.4.1: + Fix isinstance() with generic protocol subclasses after subscripting + Fix tests for non-default interpreters + Use environment marker to specify typing dependency + Fix unions of protocols on Python 2 python-typing_extensions-3.7.4.2-lp152.4.3.1.src.rpm python2-typing_extensions-3.7.4.2-lp152.4.3.1.noarch.rpm python3-typing_extensions-3.7.4.2-lp152.4.3.1.noarch.rpm openSUSE-2020-924 moderate openSUSE Leap 15.2 Update This update for smtube fixes the following issues: Update to version 20.6.0: * New option in preferences to select the site to use as homepage. * The internal youtube code has been removed and now smtube just uses youtube-dl to get the video urls. * New option in the help menu to help install youtube-dl. - Youtube-dl is not required, so changed Suggest: youtube-dl to Required: youtube-dl smtube-20.6.0-lp152.2.3.1.src.rpm smtube-20.6.0-lp152.2.3.1.x86_64.rpm smtube-debuginfo-20.6.0-lp152.2.3.1.x86_64.rpm smtube-debugsource-20.6.0-lp152.2.3.1.x86_64.rpm smtube-lang-20.6.0-lp152.2.3.1.noarch.rpm openSUSE-2020-936 moderate openSUSE Leap 15.2 Update This update for lyx fixes the following issues: lyx was updated to 2.3.5.2: * fix quotation marks being reversed in moving arguments when hyperref is enabled lyx-2.3.5.2-lp152.2.3.1.src.rpm lyx-2.3.5.2-lp152.2.3.1.x86_64.rpm lyx-debuginfo-2.3.5.2-lp152.2.3.1.x86_64.rpm lyx-debugsource-2.3.5.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-937 moderate openSUSE Leap 15.2 Update This update for coturn fixes the following issues: Version 4.5.1.3: * Remove reference to SSLv3: gh#coturn/coturn#566 * Ignore MD5 for BoringSSL: gh#coturn/coturn#579 * STUN response buffer not initialized properly; he issue found and reported gh#coturn/coturn#583 by Felix Dörre all credits belongs to him. CVE-2020-4067, boo#1173510 - Let coturn allow binding to ports below 1024 per default coturn-4.5.1.3-lp152.2.3.1.src.rpm coturn-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-debuginfo-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-debugsource-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-devel-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-utils-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-utils-debuginfo-4.5.1.3-lp152.2.3.1.x86_64.rpm openSUSE-2020-916 moderate openSUSE Leap 15.2 Update This update for python3-gcemetadata fixes the following issues: Update to version 1.0.4 (bsc#1173136) - Fixed typo, missing "=" for "identity" option in processed command line options causes mis-identification of instance as missing identity data access python3-gcemetadata-1.0.4-lp152.2.1.noarch.rpm python3-gcemetadata-1.0.4-lp152.2.1.src.rpm openSUSE-2020-974 important openSUSE Leap 15.2 Update This update for mdadm fixes the following issues: - OnCalendar format fix of mdcheck_start.timer (bsc#1173137) - Detail: adding sync status for cluster device (bsc#1163727) - Monitor: improve check_one_sharer() for checking duplicated process (bsc#1168953) This update was imported from the SUSE:SLE-15-SP1:Update update project. mdadm-4.1-lp152.7.4.1.src.rpm mdadm-4.1-lp152.7.4.1.x86_64.rpm mdadm-debuginfo-4.1-lp152.7.4.1.x86_64.rpm mdadm-debugsource-4.1-lp152.7.4.1.x86_64.rpm mdadm-4.1-lp152.7.4.1.i586.rpm mdadm-debuginfo-4.1-lp152.7.4.1.i586.rpm mdadm-debugsource-4.1-lp152.7.4.1.i586.rpm openSUSE-2020-1004 moderate openSUSE Leap 15.2 Update This update for lxd fixes the following issues: Update to LXD 4.3. The full upstream changelog is available from: https://discuss.linuxcontainers.org/t/lxd-4-3-has-been-released/8303 + Block custom storage volumes + VM: Initial work for graphical console * VM: Rework of PCIe layout + VM: GPU passthrough * Direct console attach on lxc start and lxc restart * Isolated CPUs reporting in resources API lxd-4.3-lp152.2.3.1.src.rpm lxd-4.3-lp152.2.3.1.x86_64.rpm lxd-bash-completion-4.3-lp152.2.3.1.noarch.rpm openSUSE-2020-938 moderate openSUSE Leap 15.2 Update This update for profanity fixes the following issues: Update to 0.9.5: * Fix segfault in /theme properties due to uninitialized titlebar.scrollable (#1380) profanity-0.9.5-lp152.2.6.1.src.rpm profanity-0.9.5-lp152.2.6.1.x86_64.rpm profanity-debuginfo-0.9.5-lp152.2.6.1.x86_64.rpm profanity-debugsource-0.9.5-lp152.2.6.1.x86_64.rpm profanity-mini-0.9.5-lp152.2.6.1.x86_64.rpm profanity-mini-debuginfo-0.9.5-lp152.2.6.1.x86_64.rpm profanity-standard-0.9.5-lp152.2.6.1.x86_64.rpm profanity-standard-debuginfo-0.9.5-lp152.2.6.1.x86_64.rpm openSUSE-2020-1005 moderate openSUSE Leap 15.2 Update This update for pdns-recursor fixes the following issues: - CVE-2020-14196: Fixed an access restriction bypass with API key and password authentication (boo#1173302). pdns-recursor-4.3.2-lp152.2.3.1.src.rpm pdns-recursor-4.3.2-lp152.2.3.1.x86_64.rpm pdns-recursor-debuginfo-4.3.2-lp152.2.3.1.x86_64.rpm pdns-recursor-debugsource-4.3.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-939 important openSUSE Leap 15.2 Update This update for chocolate-doom to version 3.0.1 fixes the following issues: - CVE-2020-14983: Fixed a stack-based buffer overflow in the networking code (boo#1173595). chocolate-doom-3.0.1-lp152.4.3.1.src.rpm chocolate-doom-3.0.1-lp152.4.3.1.x86_64.rpm chocolate-doom-bash-completion-3.0.1-lp152.4.3.1.noarch.rpm chocolate-doom-debuginfo-3.0.1-lp152.4.3.1.x86_64.rpm chocolate-doom-debugsource-3.0.1-lp152.4.3.1.x86_64.rpm openSUSE-2020-940 important openSUSE Leap 15.2 Update This update for python3 fixes the following issues: - CVE-2020-14422: Fixed an improper computation of hash values in the IPv4Interface and IPv6Interface could have led to denial of service (bsc#1173274). This update was imported from the SUSE:SLE-15:Update update project. libpython3_6m1_0-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-3.6.10-lp152.4.3.1.src.rpm python3-base-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-debugsource-3.6.10-lp152.4.3.1.x86_64.rpm python3-devel-3.6.10-lp152.4.3.1.x86_64.rpm python3-devel-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-testsuite-3.6.10-lp152.4.3.1.x86_64.rpm python3-testsuite-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-tools-3.6.10-lp152.4.3.1.x86_64.rpm python3-doc-3.6.10-lp152.4.3.1.noarch.rpm python3-doc-3.6.10-lp152.4.3.1.src.rpm python3-3.6.10-lp152.4.3.1.src.rpm python3-3.6.10-lp152.4.3.1.x86_64.rpm python3-curses-3.6.10-lp152.4.3.1.x86_64.rpm python3-curses-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-dbm-3.6.10-lp152.4.3.1.x86_64.rpm python3-dbm-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-debugsource-3.6.10-lp152.4.3.1.x86_64.rpm python3-idle-3.6.10-lp152.4.3.1.x86_64.rpm python3-tk-3.6.10-lp152.4.3.1.x86_64.rpm python3-tk-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-3.6.10-lp152.4.3.1.i586.rpm libpython3_6m1_0-32bit-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-32bit-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-base-3.6.10-lp152.4.3.1.i586.rpm python3-base-32bit-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-32bit-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-base-debugsource-3.6.10-lp152.4.3.1.i586.rpm python3-devel-3.6.10-lp152.4.3.1.i586.rpm python3-devel-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-testsuite-3.6.10-lp152.4.3.1.i586.rpm python3-testsuite-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-tools-3.6.10-lp152.4.3.1.i586.rpm python3-3.6.10-lp152.4.3.1.i586.rpm python3-32bit-3.6.10-lp152.4.3.1.x86_64.rpm python3-32bit-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-curses-3.6.10-lp152.4.3.1.i586.rpm python3-curses-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-dbm-3.6.10-lp152.4.3.1.i586.rpm python3-dbm-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-debugsource-3.6.10-lp152.4.3.1.i586.rpm python3-idle-3.6.10-lp152.4.3.1.i586.rpm python3-tk-3.6.10-lp152.4.3.1.i586.rpm python3-tk-debuginfo-3.6.10-lp152.4.3.1.i586.rpm openSUSE-2020-1006 moderate openSUSE Leap 15.2 Update This update for resource-agents fixes the following issues: - Fixed a bug where the pulling of images was stuck (bsc#1170270) - Added a fix for defect file /usr/lib/ocf/resource.d/heartbeat/clvm (bsc#1172734) This update was imported from the SUSE:SLE-15-SP2:Update update project. ldirectord-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm monitoring-plugins-metadata-4.4.0+git57.70549516-lp152.2.3.1.noarch.rpm resource-agents-4.4.0+git57.70549516-lp152.2.3.1.src.rpm resource-agents-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm resource-agents-debuginfo-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm resource-agents-debugsource-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm ldirectord-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm resource-agents-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm resource-agents-debuginfo-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm resource-agents-debugsource-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm openSUSE-2020-1010 important openSUSE Leap 15.2 Update This update for yast2-installation fixes the following issues: - Fixes an isuse where /etc/nvme/hostnqn nor /etc/nvme/hostid were available after system installation (bsc#1172853) This update was imported from the SUSE:SLE-15-SP2:Update update project. yast2-installation-4.2.43-lp152.2.3.1.noarch.rpm yast2-installation-4.2.43-lp152.2.3.1.src.rpm openSUSE-2020-1009 moderate openSUSE Leap 15.2 Update This update for dracut fixes the following issues: - 35network-legacy: Fix dual stack setups. (bsc#1172807) - 95iscsi: fix missing space when compiling cmdline args. (bsc#1172816) This update was imported from the SUSE:SLE-15-SP2:Update update project. dracut-049.1+suse.146.g6f5195cf-lp152.2.3.1.src.rpm dracut-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-debuginfo-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-debugsource-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-extra-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-fips-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-ima-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-tools-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-debuginfo-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-debugsource-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-extra-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-fips-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-ima-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-tools-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm openSUSE-2020-1007 moderate openSUSE Leap 15.2 Update This update for ntp fixes the following issues: ntp was updated to 4.2.8p15 - CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service (bsc#1169740). - CVE-2018-8956: Fixed an issue which could have allowed remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via spoofed mode 3 and mode 5 packets (bsc#1171355). - CVE-2020-13817: Fixed an issue which an off-path attacker with the ability to query time from victim's ntpd instance could have modified the victim's clock by a limited amount (bsc#1172651). - CVE-2020-15025: Fixed an issue which remote attacker could have caused denial of service by consuming the memory when a CMAC key was used andassociated with a CMAC algorithm in the ntp.keys (bsc#1173334). - Removed an OpenSSL version warning (bsc#992038 and bsc#1125401). This update was imported from the SUSE:SLE-15:Update update project. ntp-4.2.8p15-lp152.3.3.1.src.rpm ntp-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-debuginfo-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-debugsource-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-doc-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-4.2.8p15-lp152.3.3.1.i586.rpm ntp-debuginfo-4.2.8p15-lp152.3.3.1.i586.rpm ntp-debugsource-4.2.8p15-lp152.3.3.1.i586.rpm ntp-doc-4.2.8p15-lp152.3.3.1.i586.rpm openSUSE-2020-945 moderate openSUSE Leap 15.2 Update This update for rust, rust-cbindgen fixes the following issues: rust was updated for use by Firefox 76ESR. - Fixed miscompilations with rustc 1.43 that lead to LTO failures (bsc#1173202) Update to version 1.43.1 - Updated openssl-src to 1.1.1g for CVE-2020-1967. - Fixed the stabilization of AVX-512 features. - Fixed `cargo package --list` not working with unpublished dependencies. Update to version 1.43.0 + Language: - Fixed using binary operations with `&{number}` (e.g. `&1.0`) not having the type inferred correctly. - Attributes such as `#[cfg()]` can now be used on `if` expressions. - Syntax only changes: * Allow `type Foo: Ord` syntactically. * Fuse associated and extern items up to defaultness. * Syntactically allow `self` in all `fn` contexts. * Merge `fn` syntax + cleanup item parsing. * `item` macro fragments can be interpolated into `trait`s, `impl`s, and `extern` blocks. For example, you may now write: ```rust macro_rules! mac_trait { ($i:item) => { trait T { $i } } } mac_trait! { fn foo() {} } ``` * These are still rejected *semantically*, so you will likely receive an error but these changes can be seen and parsed by macros and conditional compilation. + Compiler - You can now pass multiple lint flags to rustc to override the previous flags. For example; `rustc -D unused -A unused-variables` denies everything in the `unused` lint group except `unused-variables` which is explicitly allowed. However, passing `rustc -A unused-variables -D unused` denies everything in the `unused` lint group **including** `unused-variables` since the allow flag is specified before the deny flag (and therefore overridden). - rustc will now prefer your system MinGW libraries over its bundled libraries if they are available on `windows-gnu`. - rustc now buffers errors/warnings printed in JSON. Libraries: - `Arc<[T; N]>`, `Box<[T; N]>`, and `Rc<[T; N]>`, now implement `TryFrom<Arc<[T]>>`,`TryFrom<Box<[T]>>`, and `TryFrom<Rc<[T]>>` respectively. **Note** These conversions are only available when `N` is `0..=32`. - You can now use associated constants on floats and integers directly, rather than having to import the module. e.g. You can now write `u32::MAX` or `f32::NAN` with no imports. - `u8::is_ascii` is now `const`. - `String` now implements `AsMut<str>`. - Added the `primitive` module to `std` and `core`. This module reexports Rust's primitive types. This is mainly useful in macros where you want avoid these types being shadowed. - Relaxed some of the trait bounds on `HashMap` and `HashSet`. - `string::FromUtf8Error` now implements `Clone + Eq`. + Stabilized APIs - `Once::is_completed` - `f32::LOG10_2` - `f32::LOG2_10` - `f64::LOG10_2` - `f64::LOG2_10` - `iter::once_with` + Cargo - You can now set config `[profile]`s in your `.cargo/config`, or through your environment. - Cargo will now set `CARGO_BIN_EXE_<name>` pointing to a binary's executable path when running integration tests or benchmarks. `<name>` is the name of your binary as-is e.g. If you wanted the executable path for a binary named `my-program`you would use `env!("CARGO_BIN_EXE_my-program")`. + Misc - Certain checks in the `const_err` lint were deemed unrelated to const evaluation, and have been moved to the `unconditional_panic` and `arithmetic_overflow` lints. + Compatibility Notes - Having trailing syntax in the `assert!` macro is now a hard error. This has been a warning since 1.36.0. - Fixed `Self` not having the correctly inferred type. This incorrectly led to some instances being accepted, and now correctly emits a hard error. Update to version 1.42.0: + Language - You can now use the slice pattern syntax with subslices. - You can now use #[repr(transparent)] on univariant enums. Meaning that you can create an enum that has the exact layout and ABI of the type it contains. - There are some syntax-only changes: * default is syntactically allowed before items in trait definitions. * Items in impls (i.e. consts, types, and fns) may syntactically leave out their bodies in favor of ;. * Bounds on associated types in impls are now syntactically allowed (e.g. type Foo: Ord;). * ... (the C-variadic type) may occur syntactically directly as the type of any function parameter. These are still rejected semantically, so you will likely receive an error but these changes can be seen and parsed by procedural macros and conditional compilation. + Compiler - Added tier 2 support for armv7a-none-eabi. - Added tier 2 support for riscv64gc-unknown-linux-gnu. - Option::{expect,unwrap} and Result::{expect, expect_err, unwrap, unwrap_err} now produce panic messages pointing to the location where they were called, rather than core's internals. Refer to Rust's platform support page for more information on Rust's tiered platform support. + Libraries - iter::Empty<T> now implements Send and Sync for any T. - Pin::{map_unchecked, map_unchecked_mut} no longer require the return type to implement Sized. - io::Cursor now derives PartialEq and Eq. - Layout::new is now const. - Added Standard Library support for riscv64gc-unknown-linux-gnu. + Stabilized APIs - CondVar::wait_while - CondVar::wait_timeout_while - DebugMap::key - DebugMap::value - ManuallyDrop::take - matches! - ptr::slice_from_raw_parts_mut - ptr::slice_from_raw_parts + Cargo - You no longer need to include extern crate proc_macro; to be able to use proc_macro; in the 2018 edition. + Compatibility Notes - Error::description has been deprecated, and its use will now produce a warning. It's recommended to use Display/to_string instead. Update to version 1.41.1: - Always check types of static items - Always check lifetime bounds of `Copy` impls - Fix miscompilation in callers of `Layout::repeat` Update to version 1.41.0: + Language - You can now pass type parameters to foreign items when implementing traits. E.g. You can now write `impl<T> From<Foo> for Vec<T> {}`. - You can now arbitrarily nest receiver types in the `self` position. E.g. you can now write `fn foo(self: Box<Box<Self>>) {}`. Previously only `Self`, `&Self`, `&mut Self`, `Arc<Self>`, `Rc<Self>`, and `Box<Self>` were allowed. - You can now use any valid identifier in a `format_args` macro. Previously identifiers starting with an underscore were not allowed. - Visibility modifiers (e.g. `pub`) are now syntactically allowed on trait items and enum variants. These are still rejected semantically, but can be seen and parsed by procedural macros and conditional compilation. + Compiler - Rustc will now warn if you have unused loop `'label`s. - Removed support for the `i686-unknown-dragonfly` target. - Added tier 3 support\* for the `riscv64gc-unknown-linux-gnu` target. - You can now pass an arguments file passing the `@path` syntax to rustc. Note that the format differs somewhat from what is found in other tooling; please see the documentation for more information. - You can now provide `--extern` flag without a path, indicating that it is available from the search path or specified with an `-L` flag. Refer to Rust's [platform support page][forge-platform-support] for more information on Rust's tiered platform support. + Libraries - The `core::panic` module is now stable. It was already stable through `std`. - `NonZero*` numerics now implement `From<NonZero*>` if it's a smaller integer width. E.g. `NonZeroU16` now implements `From<NonZeroU8>`. - `MaybeUninit<T>` now implements `fmt::Debug`. + Stabilized APIs - `Result::map_or` - `Result::map_or_else` - `std::rc::Weak::weak_count` - `std::rc::Weak::strong_count` - `std::sync::Weak::weak_count` - `std::sync::Weak::strong_count` + Cargo - Cargo will now document all the private items for binary crates by default. - `cargo-install` will now reinstall the package if it detects that it is out of date. - Cargo.lock now uses a more git friendly format that should help to reduce merge conflicts. - You can now override specific dependencies's build settings. E.g. `[profile.dev.package.image] opt-level = 2` sets the `image` crate's optimisation level to `2` for debug builds. You can also use `[profile.<profile>.build-override]` to override build scripts and their dependencies. + Misc - You can now specify `edition` in documentation code blocks to compile the block for that edition. E.g. `edition2018` tells rustdoc that the code sample should be compiled the 2018 edition of Rust. - You can now provide custom themes to rustdoc with `--theme`, and check the current theme with `--check-theme`. - You can use `#[cfg(doc)]` to compile an item when building documentation. + Compatibility Notes - As previously announced 1.41.0 will be the last tier 1 release for 32-bit Apple targets. This means that the source code is still available to build, but the targets are no longer being tested and release binaries for those platforms will no longer be distributed by the Rust project. Please refer to the linked blog post for more information. - Bump version of libssh2 for SLE15; we now need a version with libssh2_userauth_publickey_frommemory(), which appeared in libssh2 1.6.0. Update to version 1.40.0 + Language - You can now use tuple `struct`s and tuple `enum` variant's constructors in `const` contexts. e.g. pub struct Point(i32, i32); const ORIGIN: Point = { let constructor = Point; constructor(0, 0) }; - You can now mark `struct`s, `enum`s, and `enum` variants with the `#[non_exhaustive]` attribute to indicate that there may be variants or fields added in the future. For example this requires adding a wild-card branch (`_ => {}`) to any match statements on a non-exhaustive `enum`. - You can now use function-like procedural macros in `extern` blocks and in type positions. e.g. `type Generated = macro!();` - Function-like and attribute procedural macros can now emit `macro_rules!` items, so you can now have your macros generate macros. - The `meta` pattern matcher in `macro_rules!` now correctly matches the modern attribute syntax. For example `(#[$m:meta])` now matches `#[attr]`, `#[attr{tokens}]`, `#[attr[tokens]]`, and `#[attr(tokens)]`. + Compiler - Added tier 3 support\* for the `thumbv7neon-unknown-linux-musleabihf` target. - Added tier 3 support for the `aarch64-unknown-none-softfloat` target. - Added tier 3 support for the `mips64-unknown-linux-muslabi64`, and `mips64el-unknown-linux-muslabi64` targets. + Libraries - The `is_power_of_two` method on unsigned numeric types is now a `const` function. + Stabilized APIs - BTreeMap::get_key_value - HashMap::get_key_value - Option::as_deref_mut - Option::as_deref - Option::flatten - UdpSocket::peer_addr - f32::to_be_bytes - f32::to_le_bytes - f32::to_ne_bytes - f64::to_be_bytes - f64::to_le_bytes - f64::to_ne_bytes - f32::from_be_bytes - f32::from_le_bytes - f32::from_ne_bytes - f64::from_be_bytes - f64::from_le_bytes - f64::from_ne_bytes - mem::take - slice::repeat - todo! + Cargo - Cargo will now always display warnings, rather than only on fresh builds. - Feature flags (except `--all-features`) passed to a virtual workspace will now produce an error. Previously these flags were ignored. - You can now publish `dev-dependencies` without including a `version`. + Misc - You can now specify the `#[cfg(doctest)]` attribute to include an item only when running documentation tests with `rustdoc`. + Compatibility Notes - As previously announced, any previous NLL warnings in the 2015 edition are now hard errors. - The `include!` macro will now warn if it failed to include the entire file. The `include!` macro unintentionally only includes the first _expression_ in a file, and this can be unintuitive. This will become either a hard error in a future release, or the behavior may be fixed to include all expressions as expected. - Using `#[inline]` on function prototypes and consts now emits a warning under `unused_attribute` lint. Using `#[inline]` anywhere else inside traits or `extern` blocks now correctly emits a hard error. Update to version 1.39.0 + Language - You can now create async functions and blocks with async fn, async move {}, and async {} respectively, and you can now call .await on async expressions. - You can now use certain attributes on function, closure, and function pointer parameters. - You can now take shared references to bind-by-move patterns in the if guards of match arms. + Compiler - Added tier 3 support for the i686-unknown-uefi target. - Added tier 3 support for the sparc64-unknown-openbsd target. - rustc will now trim code snippets in diagnostics to fit in your terminal. - You can now pass --show-output argument to test binaries to print the output of successful tests. + For more details: https://github.com/rust-lang/rust/blob/stable/RELEASES.md#version-1390-2019-11-07 - Switch to bundled version of libgit2 for now. libgit2-sys seems to expect using the bundled variant, which just seems to point to a snapshot of the master branch and doesn't match any released libgit2 (bsc#1154817). See: https://github.com/rust-lang/rust/issues/63476 and https://github.com/rust-lang/git2-rs/issues/458 for details. Update to version 1.38.0 + Language - The `#[global_allocator]` attribute can now be used in submodules. - The `#[deprecated]` attribute can now be used on macros. + Compiler - Added pipelined compilation support to `rustc`. This will improve compilation times in some cases. + Libraries - `ascii::EscapeDefault` now implements `Clone` and `Display`. - Derive macros for prelude traits (e.g. `Clone`, `Debug`, `Hash`) are now available at the same path as the trait. (e.g. The `Clone` derive macro is available at `std::clone::Clone`). This also makes all built-in macros available in `std`/`core` root. e.g. `std::include_bytes!`. - `str::Chars` now implements `Debug`. - `slice::{concat, connect, join}` now accepts `&[T]` in addition to `&T`. - `*const T` and `*mut T` now implement `marker::Unpin`. - `Arc<[T]>` and `Rc<[T]>` now implement `FromIterator<T>`. - Added euclidean remainder and division operations (`div_euclid`, `rem_euclid`) to all numeric primitives. Additionally `checked`, `overflowing`, and `wrapping` versions are available for all integer primitives. - `thread::AccessError` now implements `Clone`, `Copy`, `Eq`, `Error`, and `PartialEq`. - `iter::{StepBy, Peekable, Take}` now implement `DoubleEndedIterator`. + Stabilized APIs - `<*const T>::cast` - `<*mut T>::cast` - `Duration::as_secs_f32` - `Duration::as_secs_f64` - `Duration::div_f32` - `Duration::div_f64` - `Duration::from_secs_f32` - `Duration::from_secs_f64` - `Duration::mul_f32` - `Duration::mul_f64` - `any::type_name` + Cargo - Added pipelined compilation support to `cargo`. - You can now pass the `--features` option multiple times to enable multiple features. + Misc - `rustc` will now warn about some incorrect uses of `mem::{uninitialized, zeroed}` that are known to cause undefined behaviour. Update to version 1.37.0 + Language - #[must_use] will now warn if the type is contained in a tuple, Box, or an array and unused. - You can now use the `cfg` and `cfg_attr` attributes on generic parameters. - You can now use enum variants through type alias. e.g. You can write the following: ``` type MyOption = Option<u8>; fn increment_or_zero(x: MyOption) -> u8 { match x { MyOption::Some(y) => y + 1, MyOption::None => 0, } } ``` - You can now use `_` as an identifier for consts. e.g. You can write `const _: u32 = 5;`. - You can now use `#[repr(align(X)]` on enums. - The `?` Kleene macro operator is now available in the 2015 edition. + Compiler - You can now enable Profile-Guided Optimization with the `-C profile-generate` and `-C profile-use` flags. For more information on how to use profile guided optimization, please refer to the rustc book. - The `rust-lldb` wrapper script should now work again. + Libraries - `mem::MaybeUninit<T>` is now ABI-compatible with `T`. + Stabilized APIs - BufReader::buffer - BufWriter::buffer - Cell::from_mut - Cell<[T]>::as_slice_of_cells - Cell<slice>::as_slice_of_cells - DoubleEndedIterator::nth_back - Option::xor - Wrapping::reverse_bits - i128::reverse_bits - i16::reverse_bits - i32::reverse_bits - i64::reverse_bits - i8::reverse_bits - isize::reverse_bits - slice::copy_within - u128::reverse_bits - u16::reverse_bits - u32::reverse_bits - u64::reverse_bits - u8::reverse_bits - usize::reverse_bits + Cargo - Cargo.lock files are now included by default when publishing executable crates with executables. - You can now specify `default-run="foo"` in `[package]` to specify the default executable to use for `cargo run`. - cargo-vendor is now provided as a sub-command of cargo + Compatibility Notes - Using `...` for inclusive range patterns will now warn by default. Please transition your code to using the `..=` syntax for inclusive ranges instead. - Using a trait object without the `dyn` will now warn by default. Please transition your code to use `dyn Trait` for trait objects instead. Crab(String), Lobster(String), Person(String), let state = Creature::Crab("Ferris"); if let Creature::Crab(name) | Creature::Person(name) = state { println!("This creature's name is: {}", name); } unsafe { foo() } pub fn new(x: i32, y: i32) -> Self { Self(x, y) } pub fn is_origin(&self) -> bool { match self { Self(0, 0) => true, _ => false, } } Self: PartialOrd<Self> // can write `Self` instead of `List<T>` Nil, Cons(T, Box<Self>) // likewise here fn test(&self) { println!("one"); } //~ ERROR duplicate definitions with name `test` fn test(&self) { println!("two"); } * Basic procedural macros allowing custom `#[derive]`, aka "macros 1.1", are stable. This allows popular code-generating crates like Serde and Diesel to work ergonomically. [RFC 1681]. * [Tuple structs may be empty. Unary and empty tuple structs may be instantiated with curly braces][36868]. Part of [RFC 1506]. * [A number of minor changes to name resolution have been activated][37127]. They add up to more consistent semantics, allowing for future evolution of Rust macros. Specified in [RFC 1560], see its section on ["changes"] for details of what is different. The breaking changes here have been transitioned through the [`legacy_imports`] lint since 1.14, with no known regressions. * [In `macro_rules`, `path` fragments can now be parsed as type parameter bounds][38279] * [`?Sized` can be used in `where` clauses][37791] * [There is now a limit on the size of monomorphized types and it can be modified with the `#![type_size_limit]` crate attribute, similarly to the `#![recursion_limit]` attribute][37789] * [On Windows, the compiler will apply dllimport attributes when linking to extern functions][37973]. Additional attributes and flags can control which library kind is linked and its name. [RFC 1717]. * [Rust-ABI symbols are no longer exported from cdylibs][38117] * [The `--test` flag works with procedural macro crates][38107] * [Fix `extern "aapcs" fn` ABI][37814] * [The `-C no-stack-check` flag is deprecated][37636]. It does nothing. * [The `format!` expander recognizes incorrect `printf` and shell-style formatting directives and suggests the correct format][37613]. * [Only report one error for all unused imports in an import list][37456] * [Avoid unnecessary `mk_ty` calls in `Ty::super_fold_with`][37705] * [Avoid more unnecessary `mk_ty` calls in `Ty::super_fold_with`][37979] * [Don't clone in `UnificationTable::probe`][37848] * [Remove `scope_auxiliary` to cut RSS by 10%][37764] * [Use small vectors in type walker][37760] * [Macro expansion performance was improved][37701] * [Change `HirVec<P<T>>` to `HirVec<T>` in `hir::Expr`][37642] * [Replace FNV with a faster hash function][37229] https://raw.githubusercontent.com/rust-lang/rust/master/RELEASES.md rust-cbindgen is shipped in version 0.14.1. rust-cbindgen-0.14.1-lp152.2.4.1.src.rpm rust-cbindgen-0.14.1-lp152.2.4.1.x86_64.rpm cargo-1.43.1-lp152.3.5.1.x86_64.rpm cargo-doc-1.43.1-lp152.3.5.1.noarch.rpm clippy-1.43.1-lp152.3.5.1.x86_64.rpm rls-1.43.1-lp152.3.5.1.x86_64.rpm rust-1.43.1-lp152.3.5.1.src.rpm rust-1.43.1-lp152.3.5.1.x86_64.rpm rust-analysis-1.43.1-lp152.3.5.1.x86_64.rpm rust-doc-1.43.1-lp152.3.5.1.x86_64.rpm rust-gdb-1.43.1-lp152.3.5.1.x86_64.rpm rust-src-1.43.1-lp152.3.5.1.noarch.rpm rust-std-static-1.43.1-lp152.3.5.1.x86_64.rpm rustfmt-1.43.1-lp152.3.5.1.x86_64.rpm cargo-1.43.1-lp152.3.5.1.i586.rpm clippy-1.43.1-lp152.3.5.1.i586.rpm rls-1.43.1-lp152.3.5.1.i586.rpm rust-1.43.1-lp152.3.5.1.i586.rpm rust-analysis-1.43.1-lp152.3.5.1.i586.rpm rust-doc-1.43.1-lp152.3.5.1.i586.rpm rust-gdb-1.43.1-lp152.3.5.1.i586.rpm rust-std-static-1.43.1-lp152.3.5.1.i586.rpm rustfmt-1.43.1-lp152.3.5.1.i586.rpm openSUSE-2020-941 moderate openSUSE Leap 15.2 Update This update for python-md2workflow fixes the following issues: - There are 2 fields one is scripted and forbidden for editing. We use explicitly the allowed one. boo#1173460 python-md2workflow-1.4.18-lp152.2.3.1.src.rpm python-md2workflow-common-1.4.18-lp152.2.3.1.noarch.rpm python2-md2workflow-1.4.18-lp152.2.3.1.noarch.rpm python2-md2workflow-plugins-jira-1.4.18-lp152.2.3.1.noarch.rpm python2-md2workflow-plugins-redmine-1.4.18-lp152.2.3.1.noarch.rpm python3-md2workflow-1.4.18-lp152.2.3.1.noarch.rpm python3-md2workflow-plugins-jira-1.4.18-lp152.2.3.1.noarch.rpm python3-md2workflow-plugins-redmine-1.4.18-lp152.2.3.1.noarch.rpm openSUSE-2020-942 moderate openSUSE Leap 15.2 Update This update for gajim, python-nbxmpp fixes the following issues: gajim: - Always use the system certificates and remove the provided one, fix build with newer ca-certificates bundle (boo#1159017) - Require python3-nbxmpp greater than 0.6.9 (boo#1123247) - Add Requires for python3-precis-i18n (boo#1116161). - Update to 1.1.3: New: * Add a mobile phone indicator to the chat window * Rework HTTPUpload dialog * Add a "paste as quote" option to the message input Bug fixes: * #8822 Fix memory leak when using spell checker * #9514 Fix jingle filetransfers not working in some circumstances * #9573 Dont leak DNS query when connecting over proxy * #9578 Determine Windows version more reliably * #9622 Fix an error while quitting Gajim * #9633 Fix an error while sending a file * #9637 Restore window size correctly on wayland * #9660 GPG Agent setting is ignored * #9645 Make zeroconf IPV6 compatible * Improve dark theme colors * Fix access to GnuPG keys * Use UUID4 item ids for pubsub posts * Dont send invalid show values * Various smaller improvements - Update to 1.1.2: * #9518 Windows: Pressing "^" yields "^^" * #9522 Windows: Switching keyboard layouts leads to a crash * #9525 Windows/Mac: Links are not clickable in the About dialog * #9535 Jingle Audio: Update codecs * #9537 DiscoveryWindow: Fix bookmarking a group chat * DBus: Correctly raise NewMessage signal * Clicking on tray notifications does not open the chat - Update to 1.1.1: * 8362 DBus: Incorrect unread message count * 9427 Placeholder not cleared if pasting text into message input * 9444 Determine the delay timestamp correctly when using mam:1 * 9453 Fix opening links inside the group chat subject (MacOS/Windows) * 9465 Allow the full range of possible nicknames in group chats * 9067 Gajim crashes when receiving xhtml messages * 9096 Error when clicking on a subscription notification * 9446 Chatstate error in MUC conversation * 9471 Conversation Textview: Error on key press * 9472 Handle presences without from attr correctly * 9473 Error when creating a new group chat * 9491 Identify group chat subject changes correctly * 9496 Error on MUC roster selection change * Determine soundplayer correctly on unix systems * In some circumstances plugins could not be deleted * Show correct contact status on tabs * Dont answer group chat receipt requests * Fix receipts for private messages * Pressing the back button in the Accounts window leads to an error * Better handle not available keyring backends * Dont show incorrect contact on private messages * Join group chat menu is disabled when there are no bookmarks * Error on start chat menu action * Error when opening sign-in/out notification * Copying text does not work with different keyboard layouts - Update to 1.1.0: * Remove support for XEP-0091 * 8968 Windows: Gajim loads DLLs from wrong location * 9322 Error when adding contact * 9357 Acquire sleep inhibtor correctly after sleep * 9385 Ignore invalid bookmarks * 9386 Discovery: Browsing nodes without identity * 9393 Error when parsing invalid timestamps * 9398 Error on jingle file transfer - For complete ChangeLog from 1.0.99 and 1.0.99.1 please see installed ChaneLog file python-nbxmpp: - Update to 0.6.10: * Add support for domain based name in features for GSSAPI * Fix usage of BOSH * Fix Jingle hash namespace - Update to version 0.6.9 (boo#1123247): * Always bind after SM failed Fixes #64 * Dont try and guess system language - Update to version 0.6.8 (changes since 0.6.6): * Raise default TLS version to 1.2. * Remove DIGEST-MD5 from the default auth mechs. * Add STANZA RECEIVED Event (some servers send more than one stanza in one packet). * Add alternative locations to load TLS certs from. * Reset SM counter after receiving <enabled>. * Issue event when SM resume fails. gajim-1.1.3-lp152.5.3.1.noarch.rpm gajim-1.1.3-lp152.5.3.1.src.rpm gajim-lang-1.1.3-lp152.5.3.1.noarch.rpm openSUSE-2020-943 moderate openSUSE Leap 15.2 Update This update for strawberry fixes the following issues: strawberry was updated to version 0.6.12: * Bugfixes: + Fixed height of about dialog. * Enhancements: + Only save settings for pages that actually has been changed. + Replaced use of deprecated Qt functionality as of 5.15. + Made scrobbler show error dialog for all errors when show error dialog option is on. + Dont append disc to album titles for Subsonic and Tidal. + Sort folders added from file view. + Changed default collection grouping to album - disc. This update was imported from the openSUSE:Leap:15.1:Update update project. strawberry-0.6.12-lp152.2.3.1.src.rpm strawberry-0.6.12-lp152.2.3.1.x86_64.rpm strawberry-debuginfo-0.6.12-lp152.2.3.1.x86_64.rpm strawberry-debugsource-0.6.12-lp152.2.3.1.x86_64.rpm openSUSE-2020-944 moderate openSUSE Leap 15.2 Update This update for live555 fixes the following issues: - CVE-2019-9215: Malformed headers could have lead to invalid memory access in the parseAuthorizationHeader function. (boo#1127341) - CVE-2019-7314: Mishandled termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up could have lead to a Use-After-Free error causing the RTSP server to crash or possibly have unspecified other impact. (boo#1124159) - Update to version 2019.06.28, - Convert to dynamic libraries (boo#1121995): + Use make ilinux-with-shared-libraries: build the dynamic libs instead of the static one. + Use make install instead of a manual file copy script: this also reveals that we missed quite a bit of code to be installed before. + Split out shared library packages according the SLPP. - Use FAT LTO objects in order to provide proper static library. This update was imported from the openSUSE:Leap:15.1:Update update project. libBasicUsageEnvironment1-2019.06.28-lp152.3.3.1.x86_64.rpm libBasicUsageEnvironment1-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm libUsageEnvironment3-2019.06.28-lp152.3.3.1.x86_64.rpm libUsageEnvironment3-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm libgroupsock8-2019.06.28-lp152.3.3.1.x86_64.rpm libgroupsock8-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm libliveMedia66-2019.06.28-lp152.3.3.1.x86_64.rpm libliveMedia66-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm live555-2019.06.28-lp152.3.3.1.src.rpm live555-2019.06.28-lp152.3.3.1.x86_64.rpm live555-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm live555-debugsource-2019.06.28-lp152.3.3.1.x86_64.rpm live555-devel-2019.06.28-lp152.3.3.1.x86_64.rpm openSUSE-2020-954 moderate openSUSE Leap 15.2 Update This update for nasm fixes the following issues: nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. * Fix crash due to multiple errors or warnings during the code generation pass if a list file is specified. * Create all system-defined macros defore processing command-line given preprocessing directives (-p, -d, -u, --pragma, --before). * If debugging is enabled, define a __DEBUG_FORMAT__ predefined macro. See section 4.11.7. * Fix an assert for the case in the obj format when a SEG operator refers to an EXTERN symbol declared further down in the code. * Fix a corner case in the floating-point code where a binary, octal or hexadecimal floating-point having at least 32, 11, or 8 mantissa digits could produce slightly incorrect results under very specific conditions. * Support -MD without a filename, for gcc compatibility. -MF can be used to set the dependencies output filename. See section 2.1.7. * Fix -E in combination with -MD. See section 2.1.21. * Fix missing errors on redefined labels; would cause convergence failure instead which is very slow and not easy to debug. * Duplicate definitions of the same label with the same value is now explicitly permitted (2.14 would allow it in some circumstances.) * Add the option --no-line to ignore %line directives in the source. See section 2.1.33 and section 4.10.1. * Changed -I option semantics by adding a trailing path separator unconditionally. * Fixed null dereference in corrupted invalid single line macros. * Fixed division by zero which may happen if source code is malformed. * Fixed out of bound access in processing of malformed segment override. * Fixed out of bound access in certain EQU parsing. * Fixed buffer underflow in float parsing. * Added SGX (Intel Software Guard Extensions) instructions. * Added +n syntax for multiple contiguous registers. * Fixed subsections_via_symbols for macho object format. * Added the --gprefix, --gpostfix, --lprefix, and --lpostfix command line options, to allow command line base symbol renaming. See section 2.1.28. * Allow label renaming to be specified by %pragma in addition to from the command line. See section 6.9. * Supported generic %pragma namespaces, output and debug. See section 6.10. * Added the --pragma command line option to inject a %pragma directive. See section 2.1.29. * Added the --before command line option to accept preprocess statement before input. See section 2.1.30. * Added AVX512 VBMI2 (Additional Bit Manipulation), VNNI (Vector Neural Network), BITALG (Bit Algorithm), and GFNI (Galois Field New Instruction) instructions. * Added the STATIC directive for local symbols that should be renamed using global-symbol rules. See section 6.8. * Allow a symbol to be defined as EXTERN and then later overridden as GLOBAL or COMMON. Furthermore, a symbol declared EXTERN and then defined will be treated as GLOBAL. See section 6.5. * The GLOBAL directive no longer is required to precede the definition of the symbol. * Support private_extern as macho specific extension to the GLOBAL directive. See section 7.8.5. * Updated UD0 encoding to match with the specification * Added the --limit-X command line option to set execution limits. See section 2.1.31. * Updated the Codeview version number to be aligned with MASM. * Added the --keep-all command line option to preserve output files. See section 2.1.32. * Added the --include command line option, an alias to -P (section 2.1.18). * Added the --help command line option as an alias to -h (section 3.1). * Added -W, -D, and -Q suffix aliases for RET instructions so the operand sizes of these instructions can be encoded without using o16, o32 or o64. New upstream version 2.13.03: * Add flags: AES, VAES, VPCLMULQDQ * Add VPCLMULQDQ instruction * elf: Add missing dwarf loc section * documentation updates This update was imported from the SUSE:SLE-15:Update update project. nasm-2.14.02-lp152.4.3.1.src.rpm nasm-2.14.02-lp152.4.3.1.x86_64.rpm nasm-debuginfo-2.14.02-lp152.4.3.1.x86_64.rpm nasm-debugsource-2.14.02-lp152.4.3.1.x86_64.rpm nasm-2.14.02-lp152.4.3.1.i586.rpm nasm-debuginfo-2.14.02-lp152.4.3.1.i586.rpm nasm-debugsource-2.14.02-lp152.4.3.1.i586.rpm openSUSE-2020-971 moderate openSUSE Leap 15.2 Update This update for hylafax+ fixes the following issues: * adjusted authorisation * adjusted pre*/post* snipplets hylafax+-7.0.2-lp152.3.3.1.src.rpm hylafax+-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-client-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-client-debuginfo-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-debuginfo-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-debugsource-7.0.2-lp152.3.3.1.x86_64.rpm libfaxutil7_0_2-7.0.2-lp152.3.3.1.x86_64.rpm libfaxutil7_0_2-debuginfo-7.0.2-lp152.3.3.1.x86_64.rpm openSUSE-2020-955 moderate openSUSE Leap 15.2 Update This update for mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53.1 - CVE-2020-12402: Fixed a potential side channel attack during RSA key generation (bsc#1173032) - Fixed various FIPS issues in libfreebl3 which were causing segfaults in the test suite of chrony (bsc#1168669). This update was imported from the SUSE:SLE-15:Update update project. libfreebl3-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-hmac-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-hmac-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-3.53.1-lp152.2.4.1.src.rpm mozilla-nss-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-debugsource-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-devel-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-tools-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-tools-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-3.53.1-lp152.2.4.1.i586.rpm libfreebl3-32bit-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-debuginfo-3.53.1-lp152.2.4.1.i586.rpm libfreebl3-hmac-3.53.1-lp152.2.4.1.i586.rpm libfreebl3-hmac-32bit-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-3.53.1-lp152.2.4.1.i586.rpm libsoftokn3-32bit-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-debuginfo-3.53.1-lp152.2.4.1.i586.rpm libsoftokn3-hmac-3.53.1-lp152.2.4.1.i586.rpm libsoftokn3-hmac-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-certs-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-debuginfo-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-debugsource-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-devel-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-sysinit-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-sysinit-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-tools-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-tools-debuginfo-3.53.1-lp152.2.4.1.i586.rpm openSUSE-2020-975 moderate openSUSE Leap 15.2 Update This update for fontforge, ghostscript-fonts, ttf-converter, xorg-x11-fonts fixes the following issues: Changes in fontforge: - Support transforming bitmap glyphs from python. (bsc#1169444) - Allow python-Sphinx >= 3 Changes in ttf-converter: - Update from version 1.0 to version 1.0.6: * ftdump is now shipped additionally as new dependency for ttf-converter * Standardize output when converting vector and bitmap fonts * Add more subfamilies fixes (bsc#1169444) * Add --family and --subfamily arguments to force values on those fields * Add parameters to fix glyph unicode values --fix-glyph-unicode : Try to fix unicode points and glyph names based on glyph names containing hexadecimal codes (like "$0C00", "char12345" or "uni004F") --replace-unicode-values: When passed 2 comma separated numbers a,b the glyph with an unicode value of a is replaced with the unicode value b. Can be used more than once. --shift-unicode-values: When passed 3 comma separated numbers a,b,c this shifts the unicode values of glyphs between a and b (both included) by adding c. Can be used more than once. * Add --bitmapTransform parameter to transform bitmap glyphs. (bsc#1169444) When used, all glyphs are modified with the transformation function and values passed as parameters. The parameter has three values separated by commas: fliph|flipv|rotate90cw|rotate90ccw|rotate180|skew|transmove,xoff,yoff * Add support to convert bitmap fonts (bsc#1169444) * Rename MediumItalic subfamily to Medium Italic * Show some more information when removing duplicated glyphs * Add a --force-monospaced argument instead of hardcoding font names * Convert `BoldCond` subfamily to `Bold Condensed` * Fixes for Monospaced fonts and force the Nimbus Mono L font to be Monospaced. (bsc#1169444 #c41) * Add a --version argument * Fix subfamily names so the converted font's subfamily match the original ones. (bsc#1169444 #c41) Changes in xorg-x11-fonts: - Use ttf-converter 1.0.6 to build an Italic version of cu12.pcf.gz in the converted subpackage - Include the subfamily in the filename of converted fonts - Use ttf-converter's new bitmap font support to convert Schumacher Clean and Schumacher Clean Wide (bsc#1169444 #c41) - Replace some unicode values in cu-pua12.pcf.gz to fix them - Shift some unicode values in arabic24.pcf.gz and cuarabic12.pcf.gz so glyphs don't pretend to be latin characters when they're not. - Don't distribute converted fonts with wrong unicode values in their glyphs. (bsc#1169444) Bitstream-Charter-*.otb, Cursor.ttf,Sun-OPEN-LOOK-*.otb, MUTT-ClearlyU-Devangari-Extra-Regular, MUTT-ClearlyU-Ligature-Wide-Regular, and MUTT-ClearlyU-Devanagari-Regular Changes in ghostscript-fonts: - Force the converted Nimbus Mono font to be monospaced. (bsc#1169444 #c41) Use the --force-monospaced argument of ttf-converter 1.0.3 This update was imported from the SUSE:SLE-15-SP2:Update update project. fontforge-20200314-lp152.2.3.1.src.rpm fontforge-20200314-lp152.2.3.1.x86_64.rpm fontforge-debuginfo-20200314-lp152.2.3.1.x86_64.rpm fontforge-debugsource-20200314-lp152.2.3.1.x86_64.rpm fontforge-devel-20200314-lp152.2.3.1.x86_64.rpm fontforge-doc-20200314-lp152.2.3.1.noarch.rpm fonttosfnt-1.1.0-lp152.2.2.1.src.rpm fonttosfnt-1.1.0-lp152.2.2.1.x86_64.rpm fonttosfnt-debuginfo-1.1.0-lp152.2.2.1.x86_64.rpm fonttosfnt-debugsource-1.1.0-lp152.2.2.1.x86_64.rpm freetype2-2.10.1-lp152.2.2.1.src.rpm freetype2-debugsource-2.10.1-lp152.2.2.1.x86_64.rpm freetype2-devel-2.10.1-lp152.2.2.1.x86_64.rpm freetype2-profile-tti35-2.10.1-lp152.2.2.1.noarch.rpm libfreetype6-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-debuginfo-2.10.1-lp152.2.2.1.x86_64.rpm ft2demos-2.10.1-lp152.2.2.1.nosrc.rpm ft2demos-2.10.1-lp152.2.2.1.x86_64.rpm ftbench-2.10.1-lp152.2.2.1.x86_64.rpm ftdiff-2.10.1-lp152.2.2.1.x86_64.rpm ftdump-2.10.1-lp152.2.2.1.x86_64.rpm ftgamma-2.10.1-lp152.2.2.1.x86_64.rpm ftgrid-2.10.1-lp152.2.2.1.x86_64.rpm ftinspect-2.10.1-lp152.2.2.1.x86_64.rpm ftlint-2.10.1-lp152.2.2.1.x86_64.rpm ftmulti-2.10.1-lp152.2.2.1.x86_64.rpm ftstring-2.10.1-lp152.2.2.1.x86_64.rpm ftvalid-2.10.1-lp152.2.2.1.x86_64.rpm ftview-2.10.1-lp152.2.2.1.x86_64.rpm ghostscript-fonts-9.06-lp152.9.3.1.noarch.rpm ghostscript-fonts-9.06-lp152.9.3.1.src.rpm ghostscript-fonts-other-9.06-lp152.9.3.1.noarch.rpm ghostscript-fonts-std-9.06-lp152.9.3.1.noarch.rpm ghostscript-fonts-std-converted-9.06-lp152.9.3.1.noarch.rpm ttf-converter-1.0.6-lp152.2.3.1.noarch.rpm ttf-converter-1.0.6-lp152.2.3.1.src.rpm xorg-x11-fonts-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-7.6-lp152.7.3.1.src.rpm xorg-x11-fonts-core-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-legacy-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-converted-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-converted-7.6-lp152.7.3.1.src.rpm fontforge-20200314-lp152.2.3.1.i586.rpm fontforge-debuginfo-20200314-lp152.2.3.1.i586.rpm fontforge-debugsource-20200314-lp152.2.3.1.i586.rpm fontforge-devel-20200314-lp152.2.3.1.i586.rpm fonttosfnt-1.1.0-lp152.2.2.1.i586.rpm fonttosfnt-debuginfo-1.1.0-lp152.2.2.1.i586.rpm fonttosfnt-debugsource-1.1.0-lp152.2.2.1.i586.rpm freetype2-debugsource-2.10.1-lp152.2.2.1.i586.rpm freetype2-devel-2.10.1-lp152.2.2.1.i586.rpm freetype2-devel-32bit-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-2.10.1-lp152.2.2.1.i586.rpm libfreetype6-32bit-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-32bit-debuginfo-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-debuginfo-2.10.1-lp152.2.2.1.i586.rpm ft2demos-2.10.1-lp152.2.2.1.i586.rpm ftbench-2.10.1-lp152.2.2.1.i586.rpm ftdiff-2.10.1-lp152.2.2.1.i586.rpm ftdump-2.10.1-lp152.2.2.1.i586.rpm ftgamma-2.10.1-lp152.2.2.1.i586.rpm ftgrid-2.10.1-lp152.2.2.1.i586.rpm ftinspect-2.10.1-lp152.2.2.1.i586.rpm ftlint-2.10.1-lp152.2.2.1.i586.rpm ftmulti-2.10.1-lp152.2.2.1.i586.rpm ftstring-2.10.1-lp152.2.2.1.i586.rpm ftvalid-2.10.1-lp152.2.2.1.i586.rpm ftview-2.10.1-lp152.2.2.1.i586.rpm openSUSE-2020-976 important openSUSE Leap 15.2 Update This update for openldap2 fixes the following issues: - CVE-2020-8023: Fixed a potential local privilege escalation from ldap to root when OPENLDAP_CONFIG_BACKEND="ldap" was used (bsc#1172698). - Changed DB_CONFIG to root:ldap permissions (bsc#1172704). This update was imported from the SUSE:SLE-15:Update update project. libldap-2_4-2-2.4.46-lp152.14.3.1.x86_64.rpm libldap-2_4-2-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm libldap-data-2.4.46-lp152.14.3.1.noarch.rpm openldap2-2.4.46-lp152.14.3.1.src.rpm openldap2-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-meta-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-meta-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-perl-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-perl-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sock-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sock-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sql-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sql-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-client-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-client-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-contrib-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-contrib-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-debugsource-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-devel-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-devel-static-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-doc-2.4.46-lp152.14.3.1.noarch.rpm openldap2-ppolicy-check-password-1.2-lp152.14.3.1.x86_64.rpm openldap2-ppolicy-check-password-debuginfo-1.2-lp152.14.3.1.x86_64.rpm libldap-2_4-2-2.4.46-lp152.14.3.1.i586.rpm libldap-2_4-2-32bit-2.4.46-lp152.14.3.1.x86_64.rpm libldap-2_4-2-32bit-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm libldap-2_4-2-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-meta-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-meta-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-perl-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-perl-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sock-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sock-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sql-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sql-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-client-2.4.46-lp152.14.3.1.i586.rpm openldap2-client-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-contrib-2.4.46-lp152.14.3.1.i586.rpm openldap2-contrib-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-debugsource-2.4.46-lp152.14.3.1.i586.rpm openldap2-devel-2.4.46-lp152.14.3.1.i586.rpm openldap2-devel-32bit-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-devel-static-2.4.46-lp152.14.3.1.i586.rpm openldap2-ppolicy-check-password-1.2-lp152.14.3.1.i586.rpm openldap2-ppolicy-check-password-debuginfo-1.2-lp152.14.3.1.i586.rpm openSUSE-2020-977 moderate openSUSE Leap 15.2 Update This update for imap fixes the following issues: - read certificates from /etc/imap/certs ([boo#1145195]) imap-2007e_suse-lp152.6.2.1.src.rpm imap-2007e_suse-lp152.6.2.1.x86_64.rpm imap-debuginfo-2007e_suse-lp152.6.2.1.x86_64.rpm imap-debugsource-2007e_suse-lp152.6.2.1.x86_64.rpm imap-devel-2007e_suse-lp152.6.2.1.x86_64.rpm libc-client2007e_suse-2007e_suse-lp152.6.2.1.x86_64.rpm libc-client2007e_suse-debuginfo-2007e_suse-lp152.6.2.1.x86_64.rpm openSUSE-2020-951 moderate openSUSE Leap 15.2 Update This update for python-py3c fixes the following issues: Update python-py3c to 1.1 boo#1173807: * Fixes the py3.8 builds py3c-devel-1.1-lp152.2.1.noarch.rpm python-py3c-1.1-lp152.2.1.src.rpm python2-py3c-1.1-lp152.2.1.noarch.rpm python3-py3c-1.1-lp152.2.1.noarch.rpm openSUSE-2020-992 moderate openSUSE Leap 15.2 Update This update for msr-safe fixes the following issues: This update introduces the msr-safe tool. - Add system account msr for msr-safe tool msr-safe-1.4.0-lp152.2.1.src.rpm msr-safe-debugsource-1.4.0-lp152.2.1.x86_64.rpm msr-safe-kmp-default-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm msr-safe-kmp-default-debuginfo-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm msr-safe-kmp-preempt-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm msr-safe-kmp-preempt-debuginfo-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm system-user-msr-1.4.0-lp152.2.1.x86_64.rpm system-user-msr-debuginfo-1.4.0-lp152.2.1.x86_64.rpm openSUSE-2020-978 important openSUSE Leap 15.2 Update This update for LibVNCServer fixes the following issues: - CVE-2017-18922: Fixed an issue which could have allowed to an attacker to pre-auth overwrite a function pointer which subsequently used leading to potential remote code execution (bsc#1173477). This update was imported from the SUSE:SLE-15:Update update project. LibVNCServer-0.9.10-lp152.9.4.1.src.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.1.x86_64.rpm LibVNCServer-devel-0.9.10-lp152.9.4.1.x86_64.rpm libvncclient0-0.9.10-lp152.9.4.1.x86_64.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.1.x86_64.rpm libvncserver0-0.9.10-lp152.9.4.1.x86_64.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.1.x86_64.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.1.i586.rpm LibVNCServer-devel-0.9.10-lp152.9.4.1.i586.rpm libvncclient0-0.9.10-lp152.9.4.1.i586.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.1.i586.rpm libvncserver0-0.9.10-lp152.9.4.1.i586.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.1.i586.rpm openSUSE-2020-979 moderate openSUSE Leap 15.2 Update This update for live-add-yast-repos fixes the following issues: - autorefresh defaults to true (boo#1173873) live-add-yast-repos-1.0-lp152.5.3.1.src.rpm live-add-yast-repos-1.0-lp152.5.3.1.x86_64.rpm openSUSE-2020-1008 moderate openSUSE Leap 15.2 Update This update for keepassxc fixes the following issues: - Update to version 2.6.0: * https://keepassxc.org/blog/2020-07-07-2.6.0-released/ * https://github.com/keepassxreboot/keepassxc/releases/tag/2.6.0 keepassxc-2.6.0-lp152.3.3.1.src.rpm keepassxc-2.6.0-lp152.3.3.1.x86_64.rpm keepassxc-debuginfo-2.6.0-lp152.3.3.1.x86_64.rpm keepassxc-debugsource-2.6.0-lp152.3.3.1.x86_64.rpm keepassxc-lang-2.6.0-lp152.3.3.1.noarch.rpm openSUSE-2020-980 moderate openSUSE Leap 15.2 Update This update for gcc9 fixes the following issues: This update ships the GCC 9.3 release. - Includes a fix for Internal compiler error when building HepMC (bsc#1167898) - Includes fix for binutils version parsing - Add libstdc++6-pp provides and conflicts to avoid file conflicts with same minor version of libstdc++6-pp from gcc10. - Add gcc9 autodetect -g at lto link (bsc#1149995) - Install go tool buildid for bootstrapping go cross-nvptx-gcc9-9.3.1+git1296-lp152.2.3.1.src.rpm cross-nvptx-gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cross-nvptx-gcc9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cross-nvptx-gcc9-debugsource-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cross-nvptx-newlib9-devel-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-testresults-9.3.1+git1296-lp152.2.3.1.src.rpm gcc9-testresults-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cpp9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cpp9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-9.3.1+git1296-lp152.2.3.1.src.rpm gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-ada-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-ada-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-ada-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-c++-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-c++-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-c++-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-debugsource-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-fortran-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-fortran-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-fortran-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-go-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-go-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-go-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-info-9.3.1+git1296-lp152.2.3.1.noarch.rpm gcc9-locale-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm liblsan0-9.3.1+git1296-lp152.2.3.1.x86_64.rpm liblsan0-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-devel-gcc9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-devel-gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-locale-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-pp-gcc9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-pp-gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libtsan0-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libtsan0-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cpp9-9.3.1+git1296-lp152.2.3.1.i586.rpm cpp9-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-ada-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-ada-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-c++-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-c++-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-debugsource-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-fortran-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-fortran-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-go-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-go-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-locale-9.3.1+git1296-lp152.2.3.1.i586.rpm libada9-9.3.1+git1296-lp152.2.3.1.i586.rpm libada9-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libasan5-9.3.1+git1296-lp152.2.3.1.i586.rpm libasan5-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libatomic1-9.3.1+git1296-lp152.2.3.1.i586.rpm libatomic1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgcc_s1-9.3.1+git1296-lp152.2.3.1.i586.rpm libgcc_s1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgfortran5-9.3.1+git1296-lp152.2.3.1.i586.rpm libgfortran5-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgo14-9.3.1+git1296-lp152.2.3.1.i586.rpm libgo14-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgomp1-9.3.1+git1296-lp152.2.3.1.i586.rpm libgomp1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libitm1-9.3.1+git1296-lp152.2.3.1.i586.rpm libitm1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libquadmath0-9.3.1+git1296-lp152.2.3.1.i586.rpm libquadmath0-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-devel-gcc9-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-locale-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-pp-gcc9-9.3.1+git1296-lp152.2.3.1.i586.rpm libubsan1-9.3.1+git1296-lp152.2.3.1.i586.rpm libubsan1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm openSUSE-2020-972 moderate openSUSE Leap 15.2 Update This update for usbguard fixes the following issues: - disable system call filtering in systemd service file for Leap 15.X (boo#1173750) - update to 0.7.8 + Fixed segfaults with rules.d feature + Added readwritepath to service file + Added match-all keyword to rules language + Added rules.d feature: daemon can load multiple rule files from rules.d/ + Included with-connect-type in dbus signal + Fixed sigwaitinfo handling + Fixed possible data corruption on stack with appendRule via dbus + Fixed ENOBUFS errno handling on netlink socket: daemon can survive and wait until socket is readable again + Dropped unused PIDFile from service file + Dropped deprecated dbus-glib dependency libusbguard0-0.7.8-lp152.2.5.1.x86_64.rpm libusbguard0-debuginfo-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-0.7.8-lp152.2.5.1.src.rpm usbguard-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-debuginfo-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-debugsource-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-devel-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-tools-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-tools-debuginfo-0.7.8-lp152.2.5.1.x86_64.rpm openSUSE-2020-981 moderate openSUSE Leap 15.2 Update This update for k4dirstat fixes the following issues: k4dirstat was updated: to 3.2.1 (boo#1173905): * Fix crashes on startup in some certain KIO related circumstances k4dirstat-3.2.1-lp152.2.3.1.src.rpm k4dirstat-3.2.1-lp152.2.3.1.x86_64.rpm k4dirstat-debuginfo-3.2.1-lp152.2.3.1.x86_64.rpm k4dirstat-debugsource-3.2.1-lp152.2.3.1.x86_64.rpm k4dirstat-lang-3.2.1-lp152.2.3.1.noarch.rpm openSUSE-2020-1016 moderate openSUSE Leap 15.2 Update This update for mumble fixes the following issues: mumble was updated 1.3.2: * client: Fixed overlay not starting Update to upstream version 1.3.1 - Security * Fixed: Potential exploit in the OCB2 encryption (#4227) boo#1174041 - ICE * Fixed: Added missing UserKDFIterations field to UserInfo => Prevents getRegistration() from failing with enumerator out of range error (#3835) - GRPC * Fixed: Segmentation fault during murmur shutdown (#3938) - Client * Fixed: Crash when using multiple monitors (#3756) * Fixed: Don't send empty message from clipboard via shortcut, if clipboard is empty (#3864) * Fixed: Talking indicator being able to freeze to indicate talking when self-muted (#4006) * Fixed: High CPU usage for update-check if update server not available (#4019) * Fixed: DBus getCurrentUrl returning empty string when not in root-channel (#4029) * Fixed: Small parts of whispering leaking out (#4051) * Fixed: Last audio frame of normal talking is sent to last whisper target (#4050) * Fixed: LAN-icon not found in ConnectDialog (#4058) * Improved: Set maximal vertical size for User Volume Adjustment dialog (#3801) * Improved: Don't send empty data to PulseAudio (#3316) * Improved: Use the SRV resolved port for UDP connections (#3820) * Improved: Manual Plugin UI (#3919) * Improved: Don't start Jack server by default (#3990) * Improved: Overlay doesn't hook into all other processes by default (#4041) * Improved: Wait longer before disconnecting from a server due to unanswered Ping-messages (#4123) - Server * Fixed: Possibility to circumvent max user-count in channel (#3880) * Fixed: Rate-limit implementation susceptible to time-underflow (#4004) * Fixed: OpenSSL error 140E0197 with Qt >= 5.12.2 (#4032) * Fixed: VersionCheck for SQL for when to use the WAL feature (#4163) * Fixed: Wrong database encoding that could lead to server-crash (#4220) * Fixed: DB crash due to primary key violation (now performs "UPSERT" to avoid this) (#4105) * Improved: The fields in the Version ProtoBuf message are now size-restricted (#4101) - use the "profile profilename /path/to/binary" syntax to make "ps aufxZ" more readable mumble-1.3.2-lp152.2.3.1.src.rpm mumble-1.3.2-lp152.2.3.1.x86_64.rpm mumble-debuginfo-1.3.2-lp152.2.3.1.x86_64.rpm mumble-debugsource-1.3.2-lp152.2.3.1.x86_64.rpm mumble-server-1.3.2-lp152.2.3.1.x86_64.rpm mumble-server-debuginfo-1.3.2-lp152.2.3.1.x86_64.rpm mumble-1.3.2-lp152.2.3.1.i586.rpm mumble-32bit-1.3.2-lp152.2.3.1.x86_64.rpm mumble-32bit-debuginfo-1.3.2-lp152.2.3.1.x86_64.rpm mumble-debuginfo-1.3.2-lp152.2.3.1.i586.rpm mumble-debugsource-1.3.2-lp152.2.3.1.i586.rpm mumble-server-1.3.2-lp152.2.3.1.i586.rpm mumble-server-debuginfo-1.3.2-lp152.2.3.1.i586.rpm openSUSE-2020-982 important openSUSE Leap 15.2 Update This update for MozillaThunderbird to version 68.10.0 ESR fixes the following issues: - CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 (bsc#1173576). - CVE-2020-12418: Information disclosure due to manipulated URL object (bsc#1173576). - CVE-2020-12419: Use-after-free in nsGlobalWindowInner (bsc#1173576). - CVE-2020-12420: Use-After-Free when trying to connect to a STUN server (bsc#1173576). - CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates (bsc#1173576). This update was imported from the SUSE:SLE-15:Update update project. MozillaThunderbird-68.10.0-lp152.2.4.1.src.rpm MozillaThunderbird-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-debuginfo-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-debugsource-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-translations-common-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-translations-other-68.10.0-lp152.2.4.1.x86_64.rpm openSUSE-2020-983 important openSUSE Leap 15.2 Update This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues: Security issues fixed: - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing (bsc#1173576). - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster (bsc#1173576). - CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 (bsc#1173576). - CVE-2020-12418: Information disclosure due to manipulated URL object (bsc#1173576). - CVE-2020-12419: Use-after-free in nsGlobalWindowInner (bsc#1173576). - CVE-2020-12420: Use-After-Free when trying to connect to a STUN server (bsc#1173576). - CVE-2020-12402: RSA Key Generation vulnerable to side-channel attack (bsc#1173576). - CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates (bsc#1173576). - CVE-2020-12422: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (bsc#1173576). - CVE-2020-12423: DLL Hijacking due to searching %PATH% for a library (bsc#1173576). - CVE-2020-12424: WebRTC permission prompt could have been bypassed by a compromised content process (bsc#1173576). - CVE-2020-12425: Out of bound read in Date.parse() (bsc#1173576). - CVE-2020-12426: Memory safety bugs fixed in Firefox 78 (bsc#1173576). - FIPS: MozillaFirefox: allow /proc/sys/crypto/fips_enabled (bsc#1167231). Non-security issues fixed: - Fixed interaction with freetype6 (bsc#1173613). This update was imported from the SUSE:SLE-15:Update update project. MozillaFirefox-78.0.1-lp152.2.5.1.src.rpm MozillaFirefox-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-branding-upstream-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-buildsymbols-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-debuginfo-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-debugsource-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-devel-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-translations-common-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-translations-other-78.0.1-lp152.2.5.1.x86_64.rpm openSUSE-2020-985 important openSUSE Leap 15.2 Update This update for xen fixes the following issues: - CVE-2020-15563: Fixed inverted code paths in x86 dirty VRAM tracking (bsc#1173377). - CVE-2020-15565: Fixed insufficient cache write-back under VT-d (bsc#1173378). - CVE-2020-15566: Fixed incorrect error handling in event channel port allocation (bsc#1173376). - CVE-2020-15567: Fixed non-atomic modification of live EPT PTE (bsc#1173380). - CVE-2020-0543: Special Register Buffer Data Sampling (SRBDS) aka "CrossTalk" (bsc#1172205). Additional upstream bug fixes (bsc#1027519) This update was imported from the SUSE:SLE-15-SP2:Update update project. xen-4.13.1_04-lp152.2.3.1.src.rpm xen-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-debugsource-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-devel-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-doc-html-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-domU-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-domU-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.13.1_04-lp152.2.3.1.noarch.rpm xen-debugsource-4.13.1_04-lp152.2.3.1.i586.rpm xen-devel-4.13.1_04-lp152.2.3.1.i586.rpm xen-libs-32bit-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-32bit-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-4.13.1_04-lp152.2.3.1.i586.rpm xen-libs-debuginfo-4.13.1_04-lp152.2.3.1.i586.rpm xen-tools-domU-4.13.1_04-lp152.2.3.1.i586.rpm xen-tools-domU-debuginfo-4.13.1_04-lp152.2.3.1.i586.rpm openSUSE-2020-986 moderate openSUSE Leap 15.2 Update This update for salt contains the following fixes: - Require python3-distro only for TW (bsc#1173072) - Various virt backports from 3000.2 including blackening commit for the virt module and state. - Avoid traceback on debug logging for swarm module. (bsc#1172075) - Add publish_batch to ClearFuncs exposed methods. - zypperpkg: filter patterns that start with dot. (bsc#1171906) - Batch mode now also correctly provides return value. (bsc#1168340) - Add docker.logout to docker execution module. (bsc#1165572) - Testsuite fix. - Add option to enable/disable force refresh for zypper. - Python3.8 compatibility changes. - Prevent sporious "salt-api" stuck processes when managing SSH minions because of logging deadlock. (bsc#1159284) - Avoid segfault from "salt-api" under certain conditions of heavy load managing SSH minions. (bsc#1169604) - Revert broken changes to slspath made on Salt 3000 (saltstack/salt#56341). (bsc#1170104) - Returns a the list of IPs filtered by the optional network list This update was imported from the SUSE:SLE-15-SP2:Update update project. python2-salt-3000-lp152.3.3.1.x86_64.rpm python3-salt-3000-lp152.3.3.1.x86_64.rpm salt-3000-lp152.3.3.1.src.rpm salt-3000-lp152.3.3.1.x86_64.rpm salt-api-3000-lp152.3.3.1.x86_64.rpm salt-bash-completion-3000-lp152.3.3.1.noarch.rpm salt-cloud-3000-lp152.3.3.1.x86_64.rpm salt-doc-3000-lp152.3.3.1.x86_64.rpm salt-fish-completion-3000-lp152.3.3.1.noarch.rpm salt-master-3000-lp152.3.3.1.x86_64.rpm salt-minion-3000-lp152.3.3.1.x86_64.rpm salt-proxy-3000-lp152.3.3.1.x86_64.rpm salt-ssh-3000-lp152.3.3.1.x86_64.rpm salt-standalone-formulas-configuration-3000-lp152.3.3.1.x86_64.rpm salt-syndic-3000-lp152.3.3.1.x86_64.rpm salt-zsh-completion-3000-lp152.3.3.1.noarch.rpm openSUSE-2020-1014 important openSUSE Leap 15.2 Update This update for google-compute-engine fixes the following issues: - Don't enable and start google-network-daemon.service when it's already installed (bsc#1169978) + Do not add the created user to the adm (CVE-2020-8903), docker (CVE-2020-8907), or lxd (CVE-2020-8933) groups if they exist (bsc#1173258) google-compute-engine-20190801-lp152.5.4.1.src.rpm google-compute-engine-debugsource-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-init-20190801-lp152.5.4.1.noarch.rpm google-compute-engine-oslogin-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-debugsource-20190801-lp152.5.4.1.i586.rpm google-compute-engine-oslogin-20190801-lp152.5.4.1.i586.rpm google-compute-engine-oslogin-32bit-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-oslogin-32bit-debuginfo-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20190801-lp152.5.4.1.i586.rpm openSUSE-2020-1018 low openSUSE Leap 15.2 Update This update for python-numpy fixes the following issues: - Fixes a file conflict with /usr/bin/f2py (bsc#1166678) python-numpy_1_17_3-gnu-hpc-1.17.3-lp152.2.4.1.src.rpm python-numpy_1_17_3-gnu-hpc-debugsource-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-gnu-hpc-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-gnu-hpc-devel-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-debuginfo-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-lp152.2.4.1.x86_64.rpm python-numpy-1.17.3-lp152.2.4.1.src.rpm python-numpy-debugsource-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-debuginfo-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-devel-1.17.3-lp152.2.4.1.x86_64.rpm openSUSE-2020-1015 moderate openSUSE Leap 15.2 Update This update for openexr fixes the following issues: - CVE-2020-15304: Fixed a NULL pointer dereference in TiledInputFile:TiledInputFile() (bsc#1173466). - CVE-2020-15305: Fixed a use-after-free in DeepScanLineInputFile:DeepScanLineInputFile() (bsc#1173467). - CVE-2020-15306: Fixed a heap buffer overflow in getChunkOffsetTableSize() (bsc#1173469). libIlmImf-2_2-23-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm openexr-2.2.1-lp152.7.5.1.src.rpm openexr-2.2.1-lp152.7.5.1.x86_64.rpm openexr-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm openexr-debugsource-2.2.1-lp152.7.5.1.x86_64.rpm openexr-devel-2.2.1-lp152.7.5.1.x86_64.rpm openexr-doc-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-lp152.7.5.1.i586.rpm libIlmImf-2_2-23-32bit-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-32bit-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-debuginfo-2.2.1-lp152.7.5.1.i586.rpm libIlmImfUtil-2_2-23-2.2.1-lp152.7.5.1.i586.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-debuginfo-2.2.1-lp152.7.5.1.i586.rpm openexr-2.2.1-lp152.7.5.1.i586.rpm openexr-debuginfo-2.2.1-lp152.7.5.1.i586.rpm openexr-debugsource-2.2.1-lp152.7.5.1.i586.rpm openexr-devel-2.2.1-lp152.7.5.1.i586.rpm openexr-doc-2.2.1-lp152.7.5.1.i586.rpm openSUSE-2020-994 important openSUSE Leap 15.2 Update This update for slirp4netns fixes the following issues: - Update to 0.4.7 (bsc#1172380) * libslirp: update to v4.3.1 (Fix CVE-2020-10756) * Fix config_from_options() to correctly enable ipv6 This update was imported from the SUSE:SLE-15-SP1:Update update project. slirp4netns-0.4.7-lp152.2.3.1.src.rpm slirp4netns-0.4.7-lp152.2.3.1.x86_64.rpm slirp4netns-debuginfo-0.4.7-lp152.2.3.1.x86_64.rpm slirp4netns-debugsource-0.4.7-lp152.2.3.1.x86_64.rpm openSUSE-2020-995 moderate openSUSE Leap 15.2 Update This update for open-vm-tools fixes the following issues: - Update to version 11.1.0 (bsc#1171764, jsc#ECO-2164) This version provides a new 'Service Discovery' plugin. (bsc#1171765) - Provide a better pam configuration and authentication. (bsc#1171003, bsc#1172693) This update was imported from the SUSE:SLE-15-SP2:Update update project. libvmtools-devel-11.1.0-lp152.3.3.1.x86_64.rpm libvmtools0-11.1.0-lp152.3.3.1.x86_64.rpm libvmtools0-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-11.1.0-lp152.3.3.1.src.rpm open-vm-tools-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-debugsource-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-desktop-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-desktop-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-sdmp-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-sdmp-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm openSUSE-2020-1001 moderate openSUSE Leap 15.2 Update This update for rubygem-puma to version 4.3.5 fixes the following issues: - CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage (bsc#1172175). - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header (bsc#1172176). - Disabled TLSv1.0 and TLSv1.1 (jsc#SLE-6965). This update was imported from the SUSE:SLE-15:Update update project. ruby2.5-rubygem-puma-4.3.5-lp152.4.3.1.x86_64.rpm ruby2.5-rubygem-puma-debuginfo-4.3.5-lp152.4.3.1.x86_64.rpm ruby2.5-rubygem-puma-doc-4.3.5-lp152.4.3.1.x86_64.rpm rubygem-puma-4.3.5-lp152.4.3.1.src.rpm rubygem-puma-debugsource-4.3.5-lp152.4.3.1.x86_64.rpm openSUSE-2020-1002 important openSUSE Leap 15.2 Update This update for python-ipaddress fixes the following issues: - Add CVE-2020-14422-ipaddress-hash-collision.patch fixing CVE-2020-14422 (bsc#1173274, bpo#41004), where hash collisions in IPv4Interface and IPv6Interface could lead to DOS. This update was imported from the SUSE:SLE-15:Update update project. python-ipaddress-1.0.18-lp152.4.3.1.noarch.rpm python-ipaddress-1.0.18-lp152.4.3.1.src.rpm openSUSE-2020-1011 important openSUSE Leap 15.2 Update This update for singularity fixes the following issues: - New version 3.6.0. This version introduces a new signature format for SIF images, and changes to the signing / verification code to address the following security problems: - CVE-2020-13845, boo#1174150 In Singularity 3.x versions below 3.6.0, issues allow the ECL to be bypassed by a malicious user. - CVE-2020-13846, boo#1174148 In Singularity 3.5 the --all / -a option to singularity verify returns success even when some objects in a SIF container are not signed, or cannot be verified. - CVE-2020-13847, boo#1174152 In Singularity 3.x versions below 3.6.0, Singularity's sign and verify commands do not sign metadata found in the global header or data object descriptors of a SIF file, allowing an attacker to cause unexpected behavior. A signed container may verify successfully, even when it has been modified in ways that could be exploited to cause malicious behavior. - New features / functionalities - A new '--legacy-insecure' flag to verify allows verification of SIF signatures in the old, insecure format. - A new '-l / --logs' flag for instance list that shows the paths to instance STDERR / STDOUT log files. - The --json output of instance list now include paths to STDERR / STDOUT log files. - Singularity now supports the execution of minimal Docker/OCI containers that do not contain /bin/sh, e.g. docker://hello-world. - A new cache structure is used that is concurrency safe on a filesystem that supports atomic rename. If you downgrade to Singularity 3.5 or older after using 3.6 you will need to run singularity cache clean. - A plugin system rework adds new hook points that will allow the development of plugins that modify behavior of the runtime. An image driver concept is introduced for plugins to support new ways of handling image and overlay mounts. Plugins built for <=3.5 are not compatible with 3.6. - The --bind flag can now bind directories from a SIF or ext3 image into a container. - The --fusemount feature to mount filesystems to a container via FUSE drivers is now a supported feature (previously an experimental hidden flag). - This permits users to mount e.g. sshfs and cvmfs filesystems to the container at runtime. - A new -c/--config flag allows an alternative singularity.conf to be specified by the root user, or all users in an unprivileged installation. - A new --env flag allows container environment variables to be set via the Singularity command line. - A new --env-file flag allows container environment variables to be set from a specified file. - A new --days flag for cache clean allows removal of items older than a specified number of days. Replaces the --name flag which is not generally useful as the cache entries are stored by hash, not a friendly name. - Changed defaults / behaviours - New signature format (see security fixes above). - Fixed spacing of singularity instance list to be dynamically changing based off of input lengths instead of fixed number of spaces to account for long instance names. - Environment variables prefixed with SINGULARITYENV_ always take precedence over variables without SINGULARITYENV_ prefix. - The %post build section inherits environment variables from the base image. - %files from ... will now follow symlinks for sources that are directly specified, or directly resolved from a glob pattern. It will not follow symlinks found through directory traversal. This mirrors Docker multi-stage COPY behaviour. - Restored the CWD mount behaviour of v2, implying that CWD path is not recreated inside container and any symlinks in the CWD path are not resolved anymore to determine the destination path inside container. - The %test build section is executed the same manner as singularity test image. --fusemount with the container: default directive will foreground the FUSE process. Use container-daemon: for previous behavior. - Deprecate -a / --all option to sign/verify as new signature behavior makes this the default. - For more information about upstream changes, please check: https://github.com/hpcng/singularity/blob/master/CHANGELOG.md - Removed --name flag for cache clean; replaced with --days. singularity-3.6.0-lp152.2.3.1.src.rpm singularity-3.6.0-lp152.2.3.1.x86_64.rpm singularity-debuginfo-3.6.0-lp152.2.3.1.x86_64.rpm openSUSE-2020-1012 moderate openSUSE Leap 15.2 Update This update for pan fixes the following issues: - Fix message sending when using gmime 3.0 (boo#1166404, pan-0.146-lp152.2.3.1.src.rpm pan-0.146-lp152.2.3.1.x86_64.rpm pan-debuginfo-0.146-lp152.2.3.1.x86_64.rpm pan-debugsource-0.146-lp152.2.3.1.x86_64.rpm pan-lang-0.146-lp152.2.3.1.noarch.rpm openSUSE-2020-991 moderate openSUSE Leap 15.2 Update This update for kio fixes the following issues: - Fixed copying to protocols which don't always report available space (boo#1174169): kio-5.71.0-lp152.2.3.1.src.rpm kio-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-debugsource-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-lang-5.71.0-lp152.2.3.1.noarch.rpm kio-32bit-5.71.0-lp152.2.3.1.x86_64.rpm kio-32bit-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-5.71.0-lp152.2.3.1.i586.rpm kio-core-32bit-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-32bit-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-5.71.0-lp152.2.3.1.i586.rpm kio-core-debuginfo-5.71.0-lp152.2.3.1.i586.rpm kio-debuginfo-5.71.0-lp152.2.3.1.i586.rpm kio-debugsource-5.71.0-lp152.2.3.1.i586.rpm kio-devel-32bit-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-32bit-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-5.71.0-lp152.2.3.1.i586.rpm kio-devel-debuginfo-5.71.0-lp152.2.3.1.i586.rpm openSUSE-2020-1027 moderate openSUSE Leap 15.2 Update This update for openconnect fixes the following issues: - CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which could have led to denial of service (bsc#1171862). This update was imported from the SUSE:SLE-15:Update update project. openconnect-7.08-lp152.9.4.2.src.rpm openconnect-7.08-lp152.9.4.2.x86_64.rpm openconnect-debuginfo-7.08-lp152.9.4.2.x86_64.rpm openconnect-debugsource-7.08-lp152.9.4.2.x86_64.rpm openconnect-devel-7.08-lp152.9.4.2.x86_64.rpm openconnect-doc-7.08-lp152.9.4.2.x86_64.rpm openconnect-lang-7.08-lp152.9.4.2.noarch.rpm openSUSE-2020-1056 important openSUSE Leap 15.2 Update This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 [bsc#1173874], uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 [bsc#1173875], buffer overflow in ConnectClientToUnixSock() + LibVNCServer-CVE-2019-20839.patch fix CVE-2019-20840 [bsc#1173876], unaligned accesses in hybiReadAndDecode can lead to denial of service + LibVNCServer-CVE-2019-20840.patch fix CVE-2020-14398 [bsc#1173880], improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c + LibVNCServer-CVE-2020-14398.patch fix CVE-2020-14397 [bsc#1173700], NULL pointer dereference in libvncserver/rfbregion.c + LibVNCServer-CVE-2020-14397.patch fix CVE-2020-14399 [bsc#1173743], Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. + LibVNCServer-CVE-2020-14399.patch fix CVE-2020-14400 [bsc#1173691], Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. + LibVNCServer-CVE-2020-14400.patch fix CVE-2020-14401 [bsc#1173694], potential integer overflows in libvncserver/scale.c + LibVNCServer-CVE-2020-14401.patch fix CVE-2020-14402 [bsc#1173701], out-of-bounds access via encodings. + LibVNCServer-CVE-2020-14402,14403,14404.patch fix CVE-2017-18922 [bsc#1173477], preauth buffer overwrite This update was imported from the SUSE:SLE-15:Update update project. LibVNCServer-0.9.10-lp152.9.4.2.src.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.2.x86_64.rpm LibVNCServer-devel-0.9.10-lp152.9.4.2.x86_64.rpm libvncclient0-0.9.10-lp152.9.4.2.x86_64.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.2.x86_64.rpm libvncserver0-0.9.10-lp152.9.4.2.x86_64.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.2.x86_64.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.2.i586.rpm LibVNCServer-devel-0.9.10-lp152.9.4.2.i586.rpm libvncclient0-0.9.10-lp152.9.4.2.i586.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.2.i586.rpm libvncserver0-0.9.10-lp152.9.4.2.i586.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.2.i586.rpm openSUSE-2020-1019 moderate openSUSE Leap 15.2 Update This update for libsolv, libzypp, zypper fixes the following issues: libsolv was updated to: - Enable zstd compression support for sle15 zypper was updated to version 1.14.37: - Print switch abbrev warning to stderr (bsc#1172925) - Fix typo in man page (bsc#1169947) libzypp was updated to 17.24.0 - Fix core dump with corrupted history file (bsc#1170801) - Enable zchunk metadata download if libsolv supports it. - Better handling of the purge-kernels algorithm. (bsc#1173106) This update was imported from the SUSE:SLE-15-SP2:Update update project. libsolv-0.7.14-lp152.2.3.1.src.rpm True libsolv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-debugsource-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-demo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-demo-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-devel-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-devel-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-tools-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-tools-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True perl-solv-0.7.14-lp152.2.3.1.x86_64.rpm True perl-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True python-solv-0.7.14-lp152.2.3.1.x86_64.rpm True python-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True python3-solv-0.7.14-lp152.2.3.1.x86_64.rpm True python3-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True ruby-solv-0.7.14-lp152.2.3.1.x86_64.rpm True ruby-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libzypp-17.24.0-lp152.2.3.2.src.rpm True libzypp-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-debuginfo-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-debugsource-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-devel-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-devel-doc-17.24.0-lp152.2.3.2.x86_64.rpm True zypper-1.14.37-lp152.2.3.1.src.rpm True zypper-1.14.37-lp152.2.3.1.x86_64.rpm True zypper-aptitude-1.14.37-lp152.2.3.1.noarch.rpm True zypper-debuginfo-1.14.37-lp152.2.3.1.x86_64.rpm True zypper-debugsource-1.14.37-lp152.2.3.1.x86_64.rpm True zypper-log-1.14.37-lp152.2.3.1.noarch.rpm True zypper-needs-restarting-1.14.37-lp152.2.3.1.noarch.rpm True libsolv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-debugsource-0.7.14-lp152.2.3.1.i586.rpm True libsolv-demo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-demo-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-devel-0.7.14-lp152.2.3.1.i586.rpm True libsolv-devel-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-tools-0.7.14-lp152.2.3.1.i586.rpm True libsolv-tools-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True perl-solv-0.7.14-lp152.2.3.1.i586.rpm True perl-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True python-solv-0.7.14-lp152.2.3.1.i586.rpm True python-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True python3-solv-0.7.14-lp152.2.3.1.i586.rpm True python3-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True ruby-solv-0.7.14-lp152.2.3.1.i586.rpm True ruby-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libzypp-17.24.0-lp152.2.3.2.i586.rpm True libzypp-debuginfo-17.24.0-lp152.2.3.2.i586.rpm True libzypp-debugsource-17.24.0-lp152.2.3.2.i586.rpm True libzypp-devel-17.24.0-lp152.2.3.2.i586.rpm True libzypp-devel-doc-17.24.0-lp152.2.3.2.i586.rpm True zypper-1.14.37-lp152.2.3.1.i586.rpm True zypper-debuginfo-1.14.37-lp152.2.3.1.i586.rpm True zypper-debugsource-1.14.37-lp152.2.3.1.i586.rpm True openSUSE-2020-1020 important openSUSE Leap 15.2 Update This update for chromium fixes the following issues: - Update to 84.0.4147.89 boo#1174189: * Critical CVE-2020-6510: Heap buffer overflow in background fetch. * High CVE-2020-6511: Side-channel information leakage in content security policy. * High CVE-2020-6512: Type Confusion in V8. * High CVE-2020-6513: Heap buffer overflow in PDFium. * High CVE-2020-6514: Inappropriate implementation in WebRTC. * High CVE-2020-6515: Use after free in tab strip. * High CVE-2020-6516: Policy bypass in CORS. * High CVE-2020-6517: Heap buffer overflow in history. * Medium CVE-2020-6518: Use after free in developer tools. * Medium CVE-2020-6519: Policy bypass in CSP. * Medium CVE-2020-6520: Heap buffer overflow in Skia. * Medium CVE-2020-6521: Side-channel information leakage in autofill. * Medium CVE-2020-6522: Inappropriate implementation in external protocol handlers. * Medium CVE-2020-6523: Out of bounds write in Skia. * Medium CVE-2020-6524: Heap buffer overflow in WebAudio. * Medium CVE-2020-6525: Heap buffer overflow in Skia. * Low CVE-2020-6526: Inappropriate implementation in iframe sandbox. * Low CVE-2020-6527: Insufficient policy enforcement in CSP. * Low CVE-2020-6528: Incorrect security UI in basic auth. * Low CVE-2020-6529: Inappropriate implementation in WebRTC. * Low CVE-2020-6530: Out of bounds memory access in developer tools. * Low CVE-2020-6531: Side-channel information leakage in scroll to text. * Low CVE-2020-6533: Type Confusion in V8. * Low CVE-2020-6534: Heap buffer overflow in WebRTC. * Low CVE-2020-6535: Insufficient data validation in WebUI. * Low CVE-2020-6536: Incorrect security UI in PWAs. - Use bundled xcb-proto as we need to generate py2 bindings - Try to fix non-wayland build for Leap builds chromedriver-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromedriver-debuginfo-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromium-84.0.4147.89-lp152.2.6.2.src.rpm chromium-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromium-debuginfo-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromium-debugsource-84.0.4147.89-lp152.2.6.2.x86_64.rpm openSUSE-2020-1022 moderate openSUSE Leap 15.2 Update This update for ant fixes the following issues: - CVE-2020-1945: Fixed an inseure temorary file vulnerability which could have potentially leaked sensitive information (bsc#1171696). This update was imported from the SUSE:SLE-15-SP2:Update update project. ant-antlr-1.10.7-lp152.2.3.1.noarch.rpm ant-antlr-1.10.7-lp152.2.3.1.src.rpm ant-apache-bcel-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-bsf-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-log4j-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-oro-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-regexp-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-resolver-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-xalan2-1.10.7-lp152.2.3.1.noarch.rpm ant-commons-logging-1.10.7-lp152.2.3.1.noarch.rpm ant-commons-net-1.10.7-lp152.2.3.1.noarch.rpm ant-imageio-1.10.7-lp152.2.3.1.noarch.rpm ant-javamail-1.10.7-lp152.2.3.1.noarch.rpm ant-jdepend-1.10.7-lp152.2.3.1.noarch.rpm ant-jsch-1.10.7-lp152.2.3.1.noarch.rpm ant-manual-1.10.7-lp152.2.3.1.noarch.rpm ant-testutil-1.10.7-lp152.2.3.1.noarch.rpm ant-xz-1.10.7-lp152.2.3.1.noarch.rpm ant-junit-1.10.7-lp152.2.3.1.noarch.rpm ant-junit-1.10.7-lp152.2.3.1.src.rpm ant-junit5-1.10.7-lp152.2.3.1.noarch.rpm ant-junit5-1.10.7-lp152.2.3.1.src.rpm ant-1.10.7-lp152.2.3.1.noarch.rpm ant-1.10.7-lp152.2.3.1.src.rpm ant-jmf-1.10.7-lp152.2.3.1.noarch.rpm ant-scripts-1.10.7-lp152.2.3.1.noarch.rpm ant-swing-1.10.7-lp152.2.3.1.noarch.rpm openSUSE-2020-1023 important openSUSE Leap 15.2 Update This update for ldb, samba fixes the following issues: Changes in samba: - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; (bso#14364); (bsc#1173159] + CVE-2020-10745: invalid DNS or NBT queries containing dots use several seconds of CPU each; (bso#14378); (bsc#1173160). + CVE-2020-10760: Use-after-free in AD DC Global Catalog LDAP server with paged_result or VLV; (bso#14402); (bsc#1173161) + CVE-2020-14303: Endless loop from empty UDP packet sent to AD DC nbt_server; (bso#14417); (bsc#1173359). - Update to samba 4.11.10 + Fix segfault when using SMBC_opendir_ctx() routine for share folder that contains incorrect symbols in any file name; (bso#14374). + vfs_shadow_copy2 doesn't fail case looking in snapdirseverywhere mode; (bso#14350) + ldb_ldap: Fix off-by-one increment in lldb_add_msg_attr; (bso#14413). + Malicous SMB1 server can crash libsmbclient; (bso#14366) + winbindd: Fix a use-after-free when winbind clients exit; (bso#14382) + ldb: Bump version to 2.0.11, LMDB databases can grow without bounds. (bso#14330) - Update to samba 4.11.9 + nmblib: Avoid undefined behaviour in handle_name_ptrs(); (bso#14242). + 'samba-tool group' commands do not handle group names with special chars correctly; (bso#14296). + smbd: avoid calling vfs_file_id_from_sbuf() if statinfo is not valid; (bso#14237). + Missing check for DMAPI offline status in async DOS attributes; (bso#14293). + smbd: Ignore set NTACL requests which contain S-1-5-88 NFS ACEs; (bso#14307). + vfs_recycle: Prevent flooding the log if we're called on non-existant paths; (bso#14316) + smbd mistakenly updates a file's write-time on close; (bso#14320). + RPC handles cannot be differentiated in source3 RPC server; (bso#14359). + librpc: Fix IDL for svcctl_ChangeServiceConfigW; (bso#14313). + nsswitch: Fix use-after-free causing segfault in _pam_delete_cred; (bso#14327). + Fix fruit:time machine max size on arm; (bso#13622) + CTDB recovery corner cases can cause record resurrection and node banning; (bso#14294). + ctdb: Fix a memleak; (bso#14348). + libsmb: Don't try to find posix stat info in SMBC_getatr(). + ctdb-tcp: Move free of inbound queue to TCP restart; (bso#14295); (bsc#1162680). + s3/librpc/crypto: Fix double free with unresolved credential cache; (bso#14344); (bsc#1169095) + s3:libads: Fix ads_get_upn(); (bso#14336). + CTDB recovery corner cases can cause record resurrection and node banning; (bso#14294) + Starting ctdb node that was powered off hard before results in recovery loop; (bso#14295); (bsc#1162680). + ctdb-recoverd: Avoid dereferencing NULL rec->nodemap; (bso#14324) - Update to samba 4.11.8 + CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with ASQ; (bso#14331); (bsc#1169850); + CVE-2020-10704: LDAP Denial of Service (stack overflow) in Samba AD DC; (bso#14334); (bsc#1169851); - Update to samba 4.11.7 + s3: lib: nmblib. Clean up and harden nmb packet processing; (bso#14239). + s3: VFS: full_audit. Use system session_info if called from a temporary share definition; (bso#14283) + dsdb: Correctly handle memory in objectclass_attrs; (bso#14258). + ldb: version 2.0.9, Samba 4.11 and later give incorrect results for SCOPE_ONE searches; (bso#14270) + auth: Fix CIDs 1458418 and 1458420 Null pointer dereferences; (bso#14247). + smbd: Handle EINTR from open(2) properly; (bso#14285) + winbind member (source3) fails local SAM auth with empty domain name; (bso#14247) + winbindd: Handling missing idmap in getgrgid(); (bso#14265). + lib:util: Log mkdir error on correct debug levels; (bso#14253). + wafsamba: Do not use 'rU' as the 'U' is deprecated in Python 3.9; (bso#14266). + ctdb-tcp: Make error handling for outbound connection consistent; (bso#14274). - Update to samba 4.11.6 + pygpo: Use correct method flags; (bso#14209). + vfs_ceph_snapshots: Fix root relative path handling; (bso#14216); (bsc#1141320). + Avoiding bad call flags with python 3.8, using METH_NOARGS instead of zero; (bso#14209). + source4/utils/oLschema2ldif: Include stdint.h before cmocka.h; (bso#14218). + docs-xml/winbindnssinfo: Clarify interaction with idmap_ad etc; (bso#14122). + smbd: Fix the build with clang; (bso#14251). + upgradedns: Ensure lmdb lock files linked; (bso#14199). + s3: VFS: glusterfs: Reset nlinks for symlink entries during readdir; (bso#14182). + smbc_stat() doesn't return the correct st_mode and also the uid/gid is not filled (SMBv1) file; (bso#14101). + librpc: Fix string length checking in ndr_pull_charset_to_null(); (bso#14219). + ctdb-scripts: Strip square brackets when gathering connection info; (bso#14227). - Add libnetapi-devel to baselibs conf, for wine usage; (bsc#1172307); - Installing: samba - samba-ad-dc.service does not exist and unit not found; (bsc#1171437); - Fix samba_winbind package is installing python3-base without python3 package; (bsc#1169521); Changes in ldb: - Update to version 2.0.12 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; (bso#14364); (bsc#1173159). + ldb_ldap: fix off-by-one increment in lldb_add_msg_attr; (bso#14413). + lib/ldb: add unit test for ldb_ldap internal code. - Update to version 2.0.11 + lib ldb: lmdb init var before calling mdb_reader_check. + lib ldb: lmdb clear stale readers on write txn start; (bso#14330). + ldb tests: Confirm lmdb free list handling This update was imported from the SUSE:SLE-15-SP2:Update update project. ldb-2.0.12-lp152.2.3.1.src.rpm ldb-debugsource-2.0.12-lp152.2.3.1.x86_64.rpm ldb-tools-2.0.12-lp152.2.3.1.x86_64.rpm ldb-tools-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm libldb-devel-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-devel-2.0.12-lp152.2.3.1.x86_64.rpm ctdb-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-pcp-pmda-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-pcp-pmda-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-tests-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-tests-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy-python3-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.src.rpm samba-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ceph-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ceph-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-core-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-debugsource-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-doc-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.noarch.rpm samba-dsdb-modules-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-dsdb-modules-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-test-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-test-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ldb-debugsource-2.0.12-lp152.2.3.1.i586.rpm ldb-tools-2.0.12-lp152.2.3.1.i586.rpm ldb-tools-debuginfo-2.0.12-lp152.2.3.1.i586.rpm libldb-devel-2.0.12-lp152.2.3.1.i586.rpm libldb2-2.0.12-lp152.2.3.1.i586.rpm libldb2-32bit-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-32bit-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-debuginfo-2.0.12-lp152.2.3.1.i586.rpm python3-ldb-2.0.12-lp152.2.3.1.i586.rpm python3-ldb-32bit-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-32bit-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-debuginfo-2.0.12-lp152.2.3.1.i586.rpm python3-ldb-devel-2.0.12-lp152.2.3.1.i586.rpm ctdb-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-pcp-pmda-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-pcp-pmda-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-tests-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-tests-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-binding0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-binding0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-samr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-samr0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-samr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-krb5pac-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-krb5pac0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-krb5pac0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-nbt-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-nbt0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-nbt0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-standard-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-standard0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-standard0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libnetapi-devel-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libnetapi0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libnetapi0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-credentials-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-credentials0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-credentials0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-errors-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-errors0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-errors0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-hostconfig-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-hostconfig0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-hostconfig0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-passdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-passdb0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-passdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy-python3-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy0-python3-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy0-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-util0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamdb0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbclient0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbconf-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbconf0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbconf0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbldap-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbldap2-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbldap2-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libtevent-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libtevent-util0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libtevent-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libwbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libwbclient0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libwbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-ad-dc-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-ad-dc-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-client-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-client-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-core-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-debugsource-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-dsdb-modules-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-dsdb-modules-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-python3-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-test-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-test-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-winbind-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-winbind-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm openSUSE-2020-1034 moderate openSUSE Leap 15.2 Update This update for MozillaFirefox fixes the following issues: - Mozilla Firefox 78.0.2 MFSA 2020-28 (bsc#1173948) * MFSA-2020-0003 (bmo#1644076) X-Frame-Options bypass using object or embed tags - Firefox Extended Support Release 78.0.2esr ESR * Fixed: Security fix * Fixed: Fixed an accessibility regression in reader mode (bmo#1650922) * Fixed: Made the address bar more resilient to data corruption in the user profile (bmo#1649981) * Fixed: Fixed a regression opening certain external applications (bmo#1650162) MozillaFirefox-78.0.2-lp152.2.9.1.src.rpm MozillaFirefox-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-branding-upstream-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-buildsymbols-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-debuginfo-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-debugsource-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-devel-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-translations-common-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-translations-other-78.0.2-lp152.2.9.1.x86_64.rpm openSUSE-2020-1025 important openSUSE Leap 15.2 Update This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 [bsc#1173874], uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 [bsc#1173875], buffer overflow in ConnectClientToUnixSock() + LibVNCServer-CVE-2019-20839.patch fix CVE-2019-20840 [bsc#1173876], unaligned accesses in hybiReadAndDecode can lead to denial of service + LibVNCServer-CVE-2019-20840.patch fix CVE-2020-14398 [bsc#1173880], improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c + LibVNCServer-CVE-2020-14398.patch fix CVE-2020-14397 [bsc#1173700], NULL pointer dereference in libvncserver/rfbregion.c + LibVNCServer-CVE-2020-14397.patch fix CVE-2020-14399 [bsc#1173743], Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. + LibVNCServer-CVE-2020-14399.patch fix CVE-2020-14400 [bsc#1173691], Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. + LibVNCServer-CVE-2020-14400.patch fix CVE-2020-14401 [bsc#1173694], potential integer overflows in libvncserver/scale.c + LibVNCServer-CVE-2020-14401.patch fix CVE-2020-14402 [bsc#1173701], out-of-bounds access via encodings. + LibVNCServer-CVE-2020-14402,14403,14404.patch fix CVE-2017-18922 [bsc#1173477], preauth buffer overwrite This update was imported from the SUSE:SLE-15:Update update project. LibVNCServer-0.9.10-lp152.9.8.1.src.rpm LibVNCServer-debugsource-0.9.10-lp152.9.8.1.x86_64.rpm LibVNCServer-devel-0.9.10-lp152.9.8.1.x86_64.rpm libvncclient0-0.9.10-lp152.9.8.1.x86_64.rpm libvncclient0-debuginfo-0.9.10-lp152.9.8.1.x86_64.rpm libvncserver0-0.9.10-lp152.9.8.1.x86_64.rpm libvncserver0-debuginfo-0.9.10-lp152.9.8.1.x86_64.rpm LibVNCServer-debugsource-0.9.10-lp152.9.8.1.i586.rpm LibVNCServer-devel-0.9.10-lp152.9.8.1.i586.rpm libvncclient0-0.9.10-lp152.9.8.1.i586.rpm libvncclient0-debuginfo-0.9.10-lp152.9.8.1.i586.rpm libvncserver0-0.9.10-lp152.9.8.1.i586.rpm libvncserver0-debuginfo-0.9.10-lp152.9.8.1.i586.rpm openSUSE-2020-1024 moderate openSUSE Leap 15.2 Update This update for NetworkManager-branding fixes the following issues: - Fix an issue when NetworkManager uses an enexpanded macro. (bsc#1172773) This update was imported from the SUSE:SLE-15-SP2:Update update project. NetworkManager-branding-openSUSE-42.1-lp152.2.3.1.noarch.rpm NetworkManager-branding-openSUSE-42.1-lp152.2.3.1.src.rpm openSUSE-2020-1026 important openSUSE Leap 15.2 Update This update for parted fixes the following issue: - fix support of NVDIMM (pmemXs) devices (bsc#1164260) This update was imported from the SUSE:SLE-15:Update update project. libparted0-3.2-lp152.12.3.1.x86_64.rpm libparted0-debuginfo-3.2-lp152.12.3.1.x86_64.rpm parted-3.2-lp152.12.3.1.src.rpm parted-3.2-lp152.12.3.1.x86_64.rpm parted-debuginfo-3.2-lp152.12.3.1.x86_64.rpm parted-debugsource-3.2-lp152.12.3.1.x86_64.rpm parted-devel-3.2-lp152.12.3.1.x86_64.rpm parted-lang-3.2-lp152.12.3.1.noarch.rpm libparted0-3.2-lp152.12.3.1.i586.rpm libparted0-32bit-3.2-lp152.12.3.1.x86_64.rpm libparted0-32bit-debuginfo-3.2-lp152.12.3.1.x86_64.rpm libparted0-debuginfo-3.2-lp152.12.3.1.i586.rpm parted-3.2-lp152.12.3.1.i586.rpm parted-debuginfo-3.2-lp152.12.3.1.i586.rpm parted-debugsource-3.2-lp152.12.3.1.i586.rpm parted-devel-3.2-lp152.12.3.1.i586.rpm openSUSE-2020-1029 moderate openSUSE Leap 15.2 Update This update for xournalpp fixes the following issues: - Add Recommends tex(standalone.tex) instead of Requires: texlive-latex-bin, so that users can uninstall texlive packages should they not use this particular feature. The standalone pkg is required for the feature to work and it pulls in the right texlive dependencies as Recommends. xournalpp-1.0.18-lp152.2.3.1.src.rpm xournalpp-1.0.18-lp152.2.3.1.x86_64.rpm xournalpp-debuginfo-1.0.18-lp152.2.3.1.x86_64.rpm xournalpp-debugsource-1.0.18-lp152.2.3.1.x86_64.rpm xournalpp-lang-1.0.18-lp152.2.3.1.noarch.rpm openSUSE-2020-1033 moderate openSUSE Leap 15.2 Update This update for Rivet fixes the following issues: Rivet was updated to version 3.1.2: * Submission of ATLAS_2019_I1744201, ATLAS_2019_I1764342. * Add a very horrible preprocessor hack to allow use of a private method on the HepMC2 WeightContainer, for robust and correctly ordered weight name acquisition before HepMC 2.06.11. * Allow several AnalysisHandler objects to run in different threads. This is a temporary fix. A permanent fix involves changing the Analysis handler to own its own projections. Currently each AnalysisHandler need sto be created and run completely within the same separate thread. * Allow + and - in AO paths. * Always skip weights that have "AUX" or "DEBUG" in the name. * Add computation of Python versions and passing them to Cython as command-line flags. * Fix small bug in rivet-cmphistos. * Add ATLAS_2018_I163527 (W+jets at 8 TeV). * Add InvisibleFinalState projection. * HTML sectioning and float/overflow/scrollbar improvements in rivet-mkhtml output. Rivet-3.1.2-lp152.2.3.1.src.rpm Rivet-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-debugsource-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-devel-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-plugins-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-plugins-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm libRivet-3_1_2-3.1.2-lp152.2.3.1.x86_64.rpm libRivet-3_1_2-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm python3-Rivet-3.1.2-lp152.2.3.1.x86_64.rpm python3-Rivet-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-1044 moderate openSUSE Leap 15.2 Update This update for HepMC fixes the following issues: HepMC was updated to version 3.2.2: * Fixed treatment of the weights in case of different number of weights and weight names. * Fixed WriterAsciiHepMC2 option for separate flows. * Improved treatment of python installation. * Split the sources of python bindings into smaller files to optimize compilation. * Improved cmake configuration for special cases, e.g. old cmake, no ROOT, some compilers, etc. Added more error handling. * Fixed compilation of the search module with Clang. * Added an example for search module. * Fixed the HepMC2 output for events without weights. * Fixed the signal vertex ID for HepMC2 output. * Added an interface for HepMC2 (in-memory-conversion). * Added functions to search module: search for relatives (particle or vertex)->(particle or vertex) in different combinations. * The previous point bumps .so version of the libHepMC3search to 4. * Improved the configuration of Pythia8 for tests (minimal version requirement). * Fixed compatibility of ROOT trees written with HePMC3.0 and removed the typedefs in the dictionaries. HepMC-3.2.2-lp152.2.3.1.src.rpm HepMC-debuginfo-3.2.2-lp152.2.3.1.x86_64.rpm HepMC-debugsource-3.2.2-lp152.2.3.1.x86_64.rpm HepMC-devel-3.2.2-lp152.2.3.1.x86_64.rpm HepMC-doc-3.2.2-lp152.2.3.1.x86_64.rpm libHepMC3-1-3.2.2-lp152.2.3.1.x86_64.rpm libHepMC3-1-debuginfo-3.2.2-lp152.2.3.1.x86_64.rpm python3-HepMC-3.2.2-lp152.2.3.1.x86_64.rpm python3-HepMC-debuginfo-3.2.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-1030 moderate openSUSE Leap 15.2 Update This update for kio fixes the following issues: - Fixed running files with spaces in the path (boo#1174141, kde#423412, kde#423645). kio-5.71.0-lp152.2.6.1.src.rpm kio-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-debugsource-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-lang-5.71.0-lp152.2.6.1.noarch.rpm kio-32bit-5.71.0-lp152.2.6.1.x86_64.rpm kio-32bit-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-5.71.0-lp152.2.6.1.i586.rpm kio-core-32bit-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-32bit-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-5.71.0-lp152.2.6.1.i586.rpm kio-core-debuginfo-5.71.0-lp152.2.6.1.i586.rpm kio-debuginfo-5.71.0-lp152.2.6.1.i586.rpm kio-debugsource-5.71.0-lp152.2.6.1.i586.rpm kio-devel-32bit-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-32bit-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-5.71.0-lp152.2.6.1.i586.rpm kio-devel-debuginfo-5.71.0-lp152.2.6.1.i586.rpm openSUSE-2020-1028 moderate openSUSE Leap 15.2 Update This update for dracut fixes the following issues: - Update to version 049.1+suse.152.g8506e86f: * 01fips: modprobe failures during manual module loading is not fatal. (bsc#bsc#1169997) * 91zipl: parse-zipl.sh: honor SYSTEMD_READY. (bsc#1165828) * 95iscsi: fix ipv6 target discovery. (bsc#1172807) * 35network-legacy: correct conditional for creating did-setup file. (bsc#1172807) - Update to version 049.1+suse.148.gc4a6c2dd: * 95fcoe: load 'libfcoe' module as a fallback. (bsc#1173560) * 99base: enable the initqueue in both 'dracut --add-device' and 'dracut --mount' cases. (bsc#1161573) This update was imported from the SUSE:SLE-15-SP2:Update update project. dracut-049.1+suse.152.g8506e86f-lp152.2.6.1.src.rpm dracut-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-debuginfo-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-debugsource-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-extra-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-fips-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-ima-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-tools-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-debuginfo-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-debugsource-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-extra-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-fips-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-ima-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-tools-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm openSUSE-2020-1045 moderate openSUSE Leap 15.2 Update This update for HepMC2 fixes the following issues: HepMC2 was updated to version 2.06.11: * HepMC/HepMCDefs.h: Add a HEPMC_HAS_ORDERED_WEIGHTS #define. * HepMC/WeightContainer.h: Add weights() and weight_names() public methods. * src/WeightContainer.cc: Fix print() to use canonical weight ordering. * src/GenEventStreamIO.cc: Fix the I/O streaming to preserve the weight ordering. * Fixed the tests. HepMC2-2.06.11-lp152.4.3.1.src.rpm HepMC2-devel-2.06.11-lp152.4.3.1.x86_64.rpm libHepMC4-2.06.11-lp152.4.3.1.x86_64.rpm libHepMC4-debuginfo-2.06.11-lp152.4.3.1.x86_64.rpm openSUSE-2020-1046 moderate openSUSE Leap 15.2 Update This update for strawberry fixes the following issues: Update to version 0.6.13: * Bugfixes: + Fixed cut-off text in about dialog. + Fixed increasing play count when stop after track is enabled. + Fixed showing/hiding playing widget when playback is started while window is hidden. + Fixed "Show in file browser" to also work on local songs that are not in the collection. + Fixed "Show in file browser" to work with PCManFM file manager. + Fixed audio analyzer to work with S24LE and F32LE audio formats. + Fixed playlist background image not loading. + Fixed a memory leak when switching between playlists. + Removed use of HTML in systemtray tooltip on KDE, since KDE no longer renders HTML in the systemtray. * Enhancements: + Replaced use of C style casts. + Adapted use of C++11 override. + Improved CMake build files. + Added new on startup options to show maximized or minimized. + Builtin TagLib code is updated and improved. + Made most icon sizes configurable in the settings, and increased default sizes for icons. + Improved fancy tabbar to use font sizes from the theme instead of fixed sizes. + Moving the currently playing song to the top when the playlist is manually shuffled. + Added "a taste of Strawbs" background image. + Fixed unit test for testing playlist model. + Added new unit tests for tagreader. strawberry-0.6.13-lp152.2.6.1.src.rpm strawberry-0.6.13-lp152.2.6.1.x86_64.rpm strawberry-debuginfo-0.6.13-lp152.2.6.1.x86_64.rpm strawberry-debugsource-0.6.13-lp152.2.6.1.x86_64.rpm openSUSE-2020-1050 moderate openSUSE Leap 15.2 Update This update for cni-plugins fixes the following issues: cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements (bsc#1172410). Release notes: https://github.com/containernetworking/plugins/releases/tag/v0.8.6 cni-plugins-0.8.6-lp152.2.4.1.src.rpm cni-plugins-0.8.6-lp152.2.4.1.x86_64.rpm openSUSE-2020-1053 moderate openSUSE Leap 15.2 Update This update for golang-github-prometheus-node_exporter fixes the following issues: - Update from version 0.17.0 to version 0.18.1 (jsc#ECO-2110) 0.18.1 / 2019-06-04 * [BUGFIX] Fix incorrect sysctl call in BSD meminfo collector, resulting in broken swap metrics on FreeBSD * [BUGFIX] Fix rollover bug in mountstats collector 0.18.0 / 2019-05-09 * Renamed interface label to device in netclass collector for consistency with other network metrics * The cpufreq metrics now separate the cpufreq and scaling data based on what the driver provides * The labels for the network_up metric have changed * Bonding collector now uses mii_status instead of operstatus * Several systemd metrics have been turned off by default to improve performance * These include unit_tasks_current, unit_tasks_max, service_restart_total, and unit_start_time_seconds * The systemd collector blacklist now includes automount, device, mount, and slice units by default. * [CHANGE] Bonding state uses mii_status * [CHANGE] Add a limit to the number of in-flight requests * [CHANGE] Renamed interface label to device in netclass collector * [CHANGE] Add separate cpufreq and scaling metrics * [CHANGE] Several systemd metrics have been turned off by default to improve performance * [CHANGE] Expand systemd collector blacklist * [CHANGE] Split cpufreq metrics into a separate collector * [FEATURE] Add a flag to disable exporter metrics * [FEATURE] Add kstat-based Solaris metrics for boottime, cpu and zfs collectors * [FEATURE] Add uname collector for FreeBSD * [FEATURE] Add diskstats collector for OpenBSD * [FEATURE] Add pressure collector exposing pressure stall information for Linux * [FEATURE] Add perf exporter for Linux * [ENHANCEMENT] Add Infiniband counters * [ENHANCEMENT] Add TCPSynRetrans to netstat default filter * [ENHANCEMENT] Move network_up labels into new metric network_info * [ENHANCEMENT] Use 64-bit counters for Darwin netstat * [BUGFIX] Add fallback for missing /proc/1/mounts * [BUGFIX] Fix node_textfile_mtime_seconds to work properly on symlinks - Add network-online (Wants and After) dependency to systemd unit bsc#1143913 This update was imported from the SUSE:SLE-15:Update update project. golang-github-prometheus-node_exporter-0.18.1-lp152.3.3.1.src.rpm golang-github-prometheus-node_exporter-0.18.1-lp152.3.3.1.x86_64.rpm openSUSE-2020-1057 moderate openSUSE Leap 15.2 Update This update for wxMaxima fixes the following issues: Update to version 20.06.6: * Resolved a compiling problem the last release has introduced. Changes from version 20.06.0: * Many spell corrections and bugfixes * The history sidebar now works again * TextCells with copy-alt-text caused an crash * A few additional small bugfixes * Many (really many!) big stability improvements * In sqrt(conjugate(f(x))) the horizontal lines coincided * Strings were searched for comment starts when adding line endings * Faster start-up by avoiding unneeded redraw events * A big number of performance improvements * Unfortunately one last temporary fix reduces performance again * Corrected a bug that sometimes caused parts of equations not to be displayed * As this allows to improve performance and stability C++14 is now used * Speed boost The list of anchors from the manual is now cached on disk * Updated translations. wxMaxima-20.06.6-lp152.2.3.1.src.rpm wxMaxima-20.06.6-lp152.2.3.1.x86_64.rpm wxMaxima-debuginfo-20.06.6-lp152.2.3.1.x86_64.rpm wxMaxima-debugsource-20.06.6-lp152.2.3.1.x86_64.rpm wxMaxima-lang-20.06.6-lp152.2.3.1.noarch.rpm