openSUSE-2020-859 moderate openSUSE Leap 15.2 Update This update for festival fixes the following issues: - Fixed NULL dereference problem (EST_Item's method may be called even though "this" is NULL); it causes SIGSEGV in text2wave (boo#1173193). festival-2.5.0-lp152.3.3.1.src.rpm festival-2.5.0-lp152.3.3.1.x86_64.rpm festival-debuginfo-2.5.0-lp152.3.3.1.x86_64.rpm festival-debugsource-2.5.0-lp152.3.3.1.x86_64.rpm festival-devel-2.5.0-lp152.3.3.1.x86_64.rpm openSUSE-2020-860 moderate openSUSE Leap 15.2 Update This update for jq fixes the following issues: jq was updated to version 1.6: * Destructuring Alternation * many new builtins (see docs) * Add support for ASAN and UBSAN * Make it easier to use jq with shebangs * Add $ENV builtin variable to access environment * Add JQ_COLORS env var for configuring the output colors * change: Calling jq without a program argument now always assumes "." for the program, regardless of stdin/stdout * fix: Make sorting stable regardless of qsort. - Make jq depend on libjq1, so upgrading jq upgrades both This update was imported from the SUSE:SLE-15:Update update project. jq-1.6-lp152.4.3.1.src.rpm jq-1.6-lp152.4.3.1.x86_64.rpm jq-debuginfo-1.6-lp152.4.3.1.x86_64.rpm jq-debugsource-1.6-lp152.4.3.1.x86_64.rpm libjq-devel-1.6-lp152.4.3.1.x86_64.rpm libjq1-1.6-lp152.4.3.1.x86_64.rpm libjq1-debuginfo-1.6-lp152.4.3.1.x86_64.rpm jq-1.6-lp152.4.3.1.i586.rpm jq-debuginfo-1.6-lp152.4.3.1.i586.rpm jq-debugsource-1.6-lp152.4.3.1.i586.rpm libjq-devel-1.6-lp152.4.3.1.i586.rpm libjq1-1.6-lp152.4.3.1.i586.rpm libjq1-debuginfo-1.6-lp152.4.3.1.i586.rpm openSUSE-2020-861 moderate openSUSE Leap 15.2 Update This update for rubygem-bundler fixes the following issue: - CVE-2019-3881: Fixed insecure permissions on a directory in /tmp/ that allowed malicious code execution (bsc#1143436). This update was imported from the SUSE:SLE-15:Update update project. ruby2.5-rubygem-bundler-1.16.1-lp152.4.3.1.x86_64.rpm ruby2.5-rubygem-bundler-doc-1.16.1-lp152.4.3.1.x86_64.rpm rubygem-bundler-1.16.1-lp152.4.3.1.src.rpm openSUSE-2020-863 moderate openSUSE Leap 15.2 Update This update for git to version 2.26.2 fixes the following issues: - Fixed git-daemon not starting after conversion from sysvinit to systemd service (bsc#1169605). - Enabled access for git-daemon in firewall configuration (bsc#1170302). - Fixed problems with recent switch to protocol v2, which caused fetches transferring unreasonable amount of data (bsc#1170741). git-2.26.2-lp152.2.3.1.src.rpm git-2.26.2-lp152.2.3.1.x86_64.rpm git-arch-2.26.2-lp152.2.3.1.x86_64.rpm git-core-2.26.2-lp152.2.3.1.x86_64.rpm git-core-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-gnome-keyring-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-gnome-keyring-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-libsecret-2.26.2-lp152.2.3.1.x86_64.rpm git-credential-libsecret-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-cvs-2.26.2-lp152.2.3.1.x86_64.rpm git-daemon-2.26.2-lp152.2.3.1.x86_64.rpm git-daemon-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-debugsource-2.26.2-lp152.2.3.1.x86_64.rpm git-doc-2.26.2-lp152.2.3.1.noarch.rpm git-email-2.26.2-lp152.2.3.1.x86_64.rpm git-gui-2.26.2-lp152.2.3.1.x86_64.rpm git-p4-2.26.2-lp152.2.3.1.x86_64.rpm git-svn-2.26.2-lp152.2.3.1.x86_64.rpm git-svn-debuginfo-2.26.2-lp152.2.3.1.x86_64.rpm git-web-2.26.2-lp152.2.3.1.x86_64.rpm gitk-2.26.2-lp152.2.3.1.x86_64.rpm git-2.26.2-lp152.2.3.1.i586.rpm git-arch-2.26.2-lp152.2.3.1.i586.rpm git-core-2.26.2-lp152.2.3.1.i586.rpm git-core-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-credential-gnome-keyring-2.26.2-lp152.2.3.1.i586.rpm git-credential-gnome-keyring-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-credential-libsecret-2.26.2-lp152.2.3.1.i586.rpm git-credential-libsecret-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-cvs-2.26.2-lp152.2.3.1.i586.rpm git-daemon-2.26.2-lp152.2.3.1.i586.rpm git-daemon-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-debugsource-2.26.2-lp152.2.3.1.i586.rpm git-email-2.26.2-lp152.2.3.1.i586.rpm git-gui-2.26.2-lp152.2.3.1.i586.rpm git-p4-2.26.2-lp152.2.3.1.i586.rpm git-svn-2.26.2-lp152.2.3.1.i586.rpm git-svn-debuginfo-2.26.2-lp152.2.3.1.i586.rpm git-web-2.26.2-lp152.2.3.1.i586.rpm gitk-2.26.2-lp152.2.3.1.i586.rpm openSUSE-2020-862 moderate openSUSE Leap 15.2 Update This update for susefirewall2-to-firewalld fixes the following issues: - Fixed "INVALID_PORT" error message with certain SuSEfirewall2 configurations (bsc#1170461). This update was imported from the SUSE:SLE-15:Update update project. susefirewall2-to-firewalld-0.0.4-lp152.3.3.1.noarch.rpm susefirewall2-to-firewalld-0.0.4-lp152.3.3.1.src.rpm openSUSE-2020-871 moderate openSUSE Leap 15.2 Update This update for sar2 fixes the following issues: Update to version 2.5.0: * Add preliminary OSX support. * Improve lagging on touch-down event. * Fix crash when loading Free Flight mode. * Add wind support and aerodynamic drag. * Add 2 training missions in windy weather. * Add support for wind gusts. * Rework airplane physics and stalling conditions. * Adjust models for more realistic speed and service ceiling conditions. * Allow a minimum helicopter throotle to 25% (previously it was 50%). * Let smoke be carried by the wind. * Add a switch in simulation options to enable/disable Wind. * Add wind conditions to all Guadarrama missions. * Honor wheel brake coefficient. sar2-2.5.0-lp152.2.3.1.src.rpm sar2-2.5.0-lp152.2.3.1.x86_64.rpm sar2-data-2.5.0-lp152.2.3.1.noarch.rpm sar2-debuginfo-2.5.0-lp152.2.3.1.x86_64.rpm sar2-debugsource-2.5.0-lp152.2.3.1.x86_64.rpm openSUSE-2020-1151 moderate openSUSE Leap 15.2 Update This update for icewm, icewm-theme-branding fixes the following issues: Changes in icewm: - Explicitly require icewm-theme-branding on SLE and Leap. (jsc#SLE-11888, bsc#1170420). - Add Conflicts between icewm-config-upstream and icewm-theme-branding. - Improve build tag consistency between SLE and Leap. (jsc#SLE-11888, bsc#1170420). * Recommend polkit-gnome to both Leap and SLE. Changes in icewm-theme-branding: - Improve build tag consistency between SLE and Leap. (jsc#SLE-11888, bsc#1170420). * Build the branding package separately for openSUSE and SLE, like most of other branding packages did. - Fix the "zypper dup" issue on Leap by explicitly obsoleting icewm-config-upstream. (bsc#1170420) This update was imported from the SUSE:SLE-15:Update update project. icewm-theme-branding-1.2.4-lp152.6.5.1.noarch.rpm icewm-theme-branding-1.2.4-lp152.6.5.1.src.rpm icewm-1.4.2-lp152.12.3.1.src.rpm icewm-1.4.2-lp152.12.3.1.x86_64.rpm icewm-config-upstream-1.4.2-lp152.12.3.1.noarch.rpm icewm-debuginfo-1.4.2-lp152.12.3.1.x86_64.rpm icewm-debugsource-1.4.2-lp152.12.3.1.x86_64.rpm icewm-default-1.4.2-lp152.12.3.1.x86_64.rpm icewm-default-debuginfo-1.4.2-lp152.12.3.1.x86_64.rpm icewm-lang-1.4.2-lp152.12.3.1.noarch.rpm icewm-lite-1.4.2-lp152.12.3.1.x86_64.rpm icewm-lite-debuginfo-1.4.2-lp152.12.3.1.x86_64.rpm icewm-1.4.2-lp152.12.3.1.i586.rpm icewm-debuginfo-1.4.2-lp152.12.3.1.i586.rpm icewm-debugsource-1.4.2-lp152.12.3.1.i586.rpm icewm-default-1.4.2-lp152.12.3.1.i586.rpm icewm-default-debuginfo-1.4.2-lp152.12.3.1.i586.rpm icewm-lite-1.4.2-lp152.12.3.1.i586.rpm icewm-lite-debuginfo-1.4.2-lp152.12.3.1.i586.rpm openSUSE-2020-872 moderate openSUSE Leap 15.2 Update This update for bluez fixes the following issues: - CVE-2020-0556: Fixed an improper access control which could have allowed an unauthenticated user to potentially enable escalation of privilege and denial of service (bsc#1166751). This update was imported from the SUSE:SLE-15:Update update project. bluez-5.48-lp152.12.3.1.src.rpm bluez-5.48-lp152.12.3.1.x86_64.rpm bluez-auto-enable-devices-5.48-lp152.12.3.1.noarch.rpm bluez-cups-5.48-lp152.12.3.1.x86_64.rpm bluez-cups-debuginfo-5.48-lp152.12.3.1.x86_64.rpm bluez-debuginfo-5.48-lp152.12.3.1.x86_64.rpm bluez-debugsource-5.48-lp152.12.3.1.x86_64.rpm bluez-devel-5.48-lp152.12.3.1.x86_64.rpm bluez-test-5.48-lp152.12.3.1.x86_64.rpm bluez-test-debuginfo-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-debuginfo-5.48-lp152.12.3.1.x86_64.rpm bluez-5.48-lp152.12.3.1.i586.rpm bluez-cups-5.48-lp152.12.3.1.i586.rpm bluez-cups-debuginfo-5.48-lp152.12.3.1.i586.rpm bluez-debuginfo-5.48-lp152.12.3.1.i586.rpm bluez-debugsource-5.48-lp152.12.3.1.i586.rpm bluez-devel-32bit-5.48-lp152.12.3.1.x86_64.rpm bluez-devel-5.48-lp152.12.3.1.i586.rpm bluez-test-5.48-lp152.12.3.1.i586.rpm bluez-test-debuginfo-5.48-lp152.12.3.1.i586.rpm libbluetooth3-32bit-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-32bit-debuginfo-5.48-lp152.12.3.1.x86_64.rpm libbluetooth3-5.48-lp152.12.3.1.i586.rpm libbluetooth3-debuginfo-5.48-lp152.12.3.1.i586.rpm openSUSE-2020-873 moderate openSUSE Leap 15.2 Update This update for python-paramiko fixes the following issues: - Fixed a problem from the last fix that caused Vorta to fail (bsc#1169489) This update was imported from the SUSE:SLE-15-SP1:Update update project. python-paramiko-2.4.2-lp152.3.3.1.src.rpm python-paramiko-doc-2.4.2-lp152.3.3.1.noarch.rpm python2-paramiko-2.4.2-lp152.3.3.1.noarch.rpm python3-paramiko-2.4.2-lp152.3.3.1.noarch.rpm openSUSE-2020-874 moderate openSUSE Leap 15.2 Update This update for golang-packaging fixes the following issues: - Fix for an issue when go installation fails due missing permissions. (bsc#776058) This update was imported from the SUSE:SLE-15:Update update project. golang-packaging-15.0.12-lp152.3.3.1.noarch.rpm golang-packaging-15.0.12-lp152.3.3.1.src.rpm openSUSE-2020-876 moderate openSUSE Leap 15.2 Update This update for graphviz fixes the following issues: Security issue fixed: - CVE-2019-11023: Fixed a denial of service vulnerability, which was caused by a NULL pointer dereference in agroot() (bsc#1132091). This update was imported from the SUSE:SLE-15:Update update project. graphviz-addons-2.40.1-lp152.7.3.1.src.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-addons-debugsource-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-doc-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gd-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gnome-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-guile-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gvedit-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-java-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-java-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-lua-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-perl-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-php-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-php-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-python-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-python-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-ruby-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-smyrna-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-tcl-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.3.1.x86_64.rpm graphviz-2.40.1-lp152.7.2.1.src.rpm graphviz-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-debuginfo-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-debugsource-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-devel-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-plugins-core-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.2.1.x86_64.rpm libgraphviz6-2.40.1-lp152.7.2.1.x86_64.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.2.1.x86_64.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-addons-debugsource-2.40.1-lp152.7.3.1.i586.rpm graphviz-doc-2.40.1-lp152.7.3.1.i586.rpm graphviz-gd-2.40.1-lp152.7.3.1.i586.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-gnome-2.40.1-lp152.7.3.1.i586.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-guile-2.40.1-lp152.7.3.1.i586.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-gvedit-2.40.1-lp152.7.3.1.i586.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-java-2.40.1-lp152.7.3.1.i586.rpm graphviz-java-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-lua-2.40.1-lp152.7.3.1.i586.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-perl-2.40.1-lp152.7.3.1.i586.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-php-2.40.1-lp152.7.3.1.i586.rpm graphviz-php-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-python-2.40.1-lp152.7.3.1.i586.rpm graphviz-python-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-ruby-2.40.1-lp152.7.3.1.i586.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-smyrna-2.40.1-lp152.7.3.1.i586.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-tcl-2.40.1-lp152.7.3.1.i586.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.3.1.i586.rpm graphviz-2.40.1-lp152.7.2.1.i586.rpm graphviz-debuginfo-2.40.1-lp152.7.2.1.i586.rpm graphviz-debugsource-2.40.1-lp152.7.2.1.i586.rpm graphviz-devel-2.40.1-lp152.7.2.1.i586.rpm graphviz-plugins-core-2.40.1-lp152.7.2.1.i586.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.2.1.i586.rpm libgraphviz6-2.40.1-lp152.7.2.1.i586.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.2.1.i586.rpm openSUSE-2020-880 low openSUSE Leap 15.2 Update This update for mercurial fixes the following issues: Security issue fixed: - CVE-2019-3902: Fixed incorrect patch-checking with symlinks and subrepos (bsc#1133035). This update was imported from the SUSE:SLE-15:Update update project. mercurial-4.5.2-lp152.7.3.1.src.rpm mercurial-4.5.2-lp152.7.3.1.x86_64.rpm mercurial-debuginfo-4.5.2-lp152.7.3.1.x86_64.rpm mercurial-debugsource-4.5.2-lp152.7.3.1.x86_64.rpm mercurial-lang-4.5.2-lp152.7.3.1.noarch.rpm mercurial-4.5.2-lp152.7.3.1.i586.rpm mercurial-debuginfo-4.5.2-lp152.7.3.1.i586.rpm mercurial-debugsource-4.5.2-lp152.7.3.1.i586.rpm openSUSE-2020-881 moderate openSUSE Leap 15.2 Update This update provides python-pyroute2 for use by the gcp-vpc-move-route agent in resource-agents. This update was imported from the SUSE:SLE-15:Update update project. python-pyroute2-0.5.10-lp152.4.3.1.src.rpm python2-pyroute2-0.5.10-lp152.4.3.1.noarch.rpm python3-pyroute2-0.5.10-lp152.4.3.1.noarch.rpm openSUSE-2020-882 moderate openSUSE Leap 15.2 Update This update for python-M2Crypto fixes the following issues: - Release python3-M2crypto to LTSS channels, to allow using salt even when the Server Applications Module is not used. (bsc#1172226) This update was imported from the SUSE:SLE-15:Update update project. python-M2Crypto-0.35.2-lp152.2.3.1.src.rpm python-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.x86_64.rpm python-M2Crypto-debugsource-0.35.2-lp152.2.3.1.x86_64.rpm python-M2Crypto-doc-0.35.2-lp152.2.3.1.noarch.rpm python2-M2Crypto-0.35.2-lp152.2.3.1.x86_64.rpm python2-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.x86_64.rpm python3-M2Crypto-0.35.2-lp152.2.3.1.x86_64.rpm python3-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.x86_64.rpm python-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.i586.rpm python-M2Crypto-debugsource-0.35.2-lp152.2.3.1.i586.rpm python2-M2Crypto-0.35.2-lp152.2.3.1.i586.rpm python2-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.i586.rpm python3-M2Crypto-0.35.2-lp152.2.3.1.i586.rpm python3-M2Crypto-debuginfo-0.35.2-lp152.2.3.1.i586.rpm openSUSE-2020-878 moderate openSUSE Leap 15.2 Update This update for xkeyboard-config fixes the following issues: - Fix capslock in Old Hungarian layout (bsc#1153774) This update was imported from the SUSE:SLE-15:Update update project. xkeyboard-config-2.23.1-lp152.5.3.1.noarch.rpm xkeyboard-config-2.23.1-lp152.5.3.1.src.rpm xkeyboard-config-lang-2.23.1-lp152.5.3.1.noarch.rpm openSUSE-2020-879 moderate openSUSE Leap 15.2 Update This update for growpart fixes the following issues: - Operation system disk is not automatically resized beyond 2TB on Azure hosts. (bsc#1164736) This update was imported from the SUSE:SLE-15:Update update project. growpart-0.31-lp152.8.3.1.noarch.rpm growpart-0.31-lp152.8.3.1.src.rpm openSUSE-2020-884 moderate openSUSE Leap 15.2 Update This update for nodejs10 fixes the following issues: - Added Require for nodejs10 when intalling npm10 (bsc#1172728) This update was imported from the SUSE:SLE-15:Update update project. nodejs10-10.21.0-lp152.2.3.1.src.rpm nodejs10-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-debuginfo-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-debugsource-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-devel-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-docs-10.21.0-lp152.2.3.1.noarch.rpm npm10-10.21.0-lp152.2.3.1.x86_64.rpm nodejs10-10.21.0-lp152.2.3.1.i586.rpm nodejs10-debuginfo-10.21.0-lp152.2.3.1.i586.rpm nodejs10-debugsource-10.21.0-lp152.2.3.1.i586.rpm nodejs10-devel-10.21.0-lp152.2.3.1.i586.rpm npm10-10.21.0-lp152.2.3.1.i586.rpm openSUSE-2020-906 moderate openSUSE Leap 15.2 Update This update for graphviz fixes the following issues: Security issue fixed: - CVE-2019-11023: Fixed a denial of service vulnerability, which was caused by a NULL pointer dereference in agroot() (bsc#1132091). This update was imported from the SUSE:SLE-15:Update update project. graphviz-addons-2.40.1-lp152.7.4.2.src.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-addons-debugsource-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-doc-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gd-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gnome-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-guile-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gvedit-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-java-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-java-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-lua-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-perl-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-php-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-php-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-python-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-python-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-ruby-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-smyrna-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-tcl-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-2.40.1-lp152.7.4.2.src.rpm graphviz-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-debugsource-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-devel-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-plugins-core-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm libgraphviz6-2.40.1-lp152.7.4.2.x86_64.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.4.2.x86_64.rpm graphviz-addons-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-addons-debugsource-2.40.1-lp152.7.4.2.i586.rpm graphviz-doc-2.40.1-lp152.7.4.2.i586.rpm graphviz-gd-2.40.1-lp152.7.4.2.i586.rpm graphviz-gd-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-gnome-2.40.1-lp152.7.4.2.i586.rpm graphviz-gnome-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-guile-2.40.1-lp152.7.4.2.i586.rpm graphviz-guile-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-gvedit-2.40.1-lp152.7.4.2.i586.rpm graphviz-gvedit-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-java-2.40.1-lp152.7.4.2.i586.rpm graphviz-java-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-lua-2.40.1-lp152.7.4.2.i586.rpm graphviz-lua-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-perl-2.40.1-lp152.7.4.2.i586.rpm graphviz-perl-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-php-2.40.1-lp152.7.4.2.i586.rpm graphviz-php-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-python-2.40.1-lp152.7.4.2.i586.rpm graphviz-python-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-ruby-2.40.1-lp152.7.4.2.i586.rpm graphviz-ruby-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-smyrna-2.40.1-lp152.7.4.2.i586.rpm graphviz-smyrna-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-tcl-2.40.1-lp152.7.4.2.i586.rpm graphviz-tcl-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-2.40.1-lp152.7.4.2.i586.rpm graphviz-debuginfo-2.40.1-lp152.7.4.2.i586.rpm graphviz-debugsource-2.40.1-lp152.7.4.2.i586.rpm graphviz-devel-2.40.1-lp152.7.4.2.i586.rpm graphviz-plugins-core-2.40.1-lp152.7.4.2.i586.rpm graphviz-plugins-core-debuginfo-2.40.1-lp152.7.4.2.i586.rpm libgraphviz6-2.40.1-lp152.7.4.2.i586.rpm libgraphviz6-debuginfo-2.40.1-lp152.7.4.2.i586.rpm openSUSE-2020-883 important openSUSE Leap 15.2 Update This update for curl fixes the following issues: - CVE-2020-8177: Fixed an issue where curl could have been tricked by a malicious server to overwrite a local file when using the -J option (bsc#1173027). - CVE-2020-8169: Fixed an issue where could have led to partial password leak over DNS on HTTP redirect (bsc#1173026). This update was imported from the SUSE:SLE-15-SP2:Update update project. curl-mini-7.66.0-lp152.3.3.1.src.rpm curl-mini-7.66.0-lp152.3.3.1.x86_64.rpm curl-mini-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-mini-debugsource-7.66.0-lp152.3.3.1.x86_64.rpm libcurl-mini-devel-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-mini-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-mini-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-7.66.0-lp152.3.3.1.src.rpm curl-7.66.0-lp152.3.3.1.x86_64.rpm curl-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-debugsource-7.66.0-lp152.3.3.1.x86_64.rpm libcurl-devel-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm curl-mini-7.66.0-lp152.3.3.1.i586.rpm curl-mini-debuginfo-7.66.0-lp152.3.3.1.i586.rpm curl-mini-debugsource-7.66.0-lp152.3.3.1.i586.rpm libcurl-mini-devel-7.66.0-lp152.3.3.1.i586.rpm libcurl4-mini-7.66.0-lp152.3.3.1.i586.rpm libcurl4-mini-debuginfo-7.66.0-lp152.3.3.1.i586.rpm curl-7.66.0-lp152.3.3.1.i586.rpm curl-debuginfo-7.66.0-lp152.3.3.1.i586.rpm curl-debugsource-7.66.0-lp152.3.3.1.i586.rpm libcurl-devel-32bit-7.66.0-lp152.3.3.1.x86_64.rpm libcurl-devel-7.66.0-lp152.3.3.1.i586.rpm libcurl4-32bit-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-32bit-debuginfo-7.66.0-lp152.3.3.1.x86_64.rpm libcurl4-7.66.0-lp152.3.3.1.i586.rpm libcurl4-debuginfo-7.66.0-lp152.3.3.1.i586.rpm openSUSE-2020-891 moderate openSUSE Leap 15.2 Update This update for nodejs8 fixes the following issues: - Added Require for nodejs8 when intalling npm8 (bsc#1172728) This update was imported from the SUSE:SLE-15:Update update project. nodejs8-8.17.0-lp152.3.4.1.src.rpm nodejs8-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-debuginfo-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-debugsource-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-devel-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-docs-8.17.0-lp152.3.4.1.noarch.rpm npm8-8.17.0-lp152.3.4.1.x86_64.rpm nodejs8-8.17.0-lp152.3.4.1.i586.rpm nodejs8-debuginfo-8.17.0-lp152.3.4.1.i586.rpm nodejs8-debugsource-8.17.0-lp152.3.4.1.i586.rpm nodejs8-devel-8.17.0-lp152.3.4.1.i586.rpm npm8-8.17.0-lp152.3.4.1.i586.rpm openSUSE-2020-885 moderate openSUSE Leap 15.2 Update This update for profanity fixes the following issues: profanity was updated to 0.9.4: * Fix NULL terminated list (#1367) * Add missing string.h (#1372) * Fix gcc warnings for cygwin (#1373) Update to 0.9.3: * Fix expansion in eval_password (#1364) Update to 0.9.2: * Dont manipulate pointer from getenv (#1357) * Fix reading/writing linked files (#1362) * Use gnu99 C standard (#1357) Update to 0.9.1: * Make legacy auth optional (#1360) (@pasis) Update to 0.9.0: * Support for XEP-0308: Last Message Correction (#805) See `/correction` and `/correct`. * Code cleanup of UI and Message functions * Always send delivery receipts if they are enabled (#1268) * By default don't allow sending unencrypted files in an encrypted chat session (#1270) (@moppman and @jubalh) See `/omemo|otr|pgp sendfile`. * Add CI for OpenBSD via sr.ht (@wstrm) * OMEMO: switch to 12 byte IV for sending (#1272) * Allow UTF-8 symbols as OMEMO/OTR/PGP indicator char (#1264) * Make color of the trackbar configurable Use `main.trackbar` in themes. * Allow setting custom log file `profanity -f TEST` will log to `~/.local/share/profanity/logs/TEST.log`. * Send proper OS names for OpenBSD and NetBSD if `/os` is enabled * Fix plenty memory leaks (@pasis and @jubalh) * XEP-0084: Add option to open avatars directly (#1281) `/avatar odin@valhalla.org` became `/avatar get odin@valhalla.org` New is: `/executable avatar feh` `/avatar open odin@valhalla.org` xdg-open is used by default. So it will take your default application. * Enable popular features by default. For a nicer out of the box experience we enable: - allow message correction - sending receipts - enabling carbons - type/chat states * Add slashguard feature to prevent sending commands with typos Should protect against `q/uit` or ` /quit`. See `/slashguard`. * Optionally display both MUC name and MUC JID in titlebar (#1284) `/titlebar use name|jid` -> `/titlebar show|hide name|jid`. * Add option to define a theme at startup (#1286) `/profanity -t bios` * Add setting to not colorize own nick if XEP-0392 is enabled (#1288) `/color own on|off`. * Add new theme: jubalian * Fix docker related CI tests (#1294) * Fix OMEMO autocompletion (75a43f, df23c3) * Modify our README * Store logs in SQLite backend (#1282) * Request OMEMO device list only for non anon MUCs (#1315) (@DebXWoody) * Don't display MUC history in one uniform colour, instead colour messages like regular ones (#1261) * Fix autocompletion for `/software` in regular chat windows (#1337) * XEP-0092: Make it possible to ask servers for their version (#1338) * Add possibility to easily open URLs (#1340, #1348) `/executable urlopen firefox` `/urlopen <tab>` * Display hint when window is scrolled (#1289) Theme via `titlebar.scrolled` * Add option to hide windows with no new messages in statusbar (#1285) `/statusbar show|hide read` * Support bookmark names (#697) * Preserve Gajims minimize flag in bookmarks (#1326) * Don't show resource in titlebar in narrow windows if it is too long (#715) * Improve autoping (#1333, #1315) (@DebXWoody) * Fix titlebar status display when using PGP (#1327) (@DebXWoody) * OMEMO: Only request "current" item (#1329) (@DebXWoody) * Add feature to ignore the autojoin flag for bookmarks (#1115) Helps users who want to autojoin MUCs with most clients but not with all. `/bookmark ignore` * Fix edge case where contacts get displayed as offline when they are online (3d7a31) * Add option for legacy authentication (#1236) (@pasis) `/connect <account> [auth default|legacy]` `/account <account> set auth default|legacy` * All issues: https://github.com/profanity-im/profanity/milestone/19 profanity-0.9.4-lp152.2.3.1.src.rpm profanity-0.9.4-lp152.2.3.1.x86_64.rpm profanity-debuginfo-0.9.4-lp152.2.3.1.x86_64.rpm profanity-debugsource-0.9.4-lp152.2.3.1.x86_64.rpm profanity-mini-0.9.4-lp152.2.3.1.x86_64.rpm profanity-mini-debuginfo-0.9.4-lp152.2.3.1.x86_64.rpm profanity-standard-0.9.4-lp152.2.3.1.x86_64.rpm profanity-standard-debuginfo-0.9.4-lp152.2.3.1.x86_64.rpm openSUSE-2020-892 moderate openSUSE Leap 15.2 Update This update for grafana, grafana-piechart-panel, grafana-status-panel fixes the following issues: grafana was updated to version 7.0.3: * Features / Enhancements - Stats: include all fields. #24829, @ryantxu - Variables: change VariableEditorList row action Icon to IconButton. #25217, @hshoff * Bug fixes - Cloudwatch: Fix dimensions of DDoSProtection. #25317, @papagian - Configuration: Fix env var override of sections containing hyphen. #25178, @marefr - Dashboard: Get panels in collapsed rows. #25079, @peterholmberg - Do not show alerts tab when alerting is disabled. #25285, @dprokop - Jaeger: fixes cascader option label duration value. #25129, @Estrax - Transformations: Fixed Transform tab crash & no update after adding first transform. #25152, @torkelo Update to version 7.0.2 * Bug fixes - Security: Urgent security patch release to fix CVE-2020-13379 Update to version 7.0.1 * Features / Enhancements - Datasource/CloudWatch: Makes CloudWatch Logs query history more readable. #24795, @kaydelaney - Download CSV: Add date and time formatting. #24992, @ryantxu - Table: Make last cell value visible when right aligned. #24921, @peterholmberg - TablePanel: Adding sort order persistance. #24705, @torkelo - Transformations: Display correct field name when using reduce transformation. #25068, @peterholmberg - Transformations: Allow custom number input for binary operations. #24752, @ryantxu * Bug fixes - Dashboard/Links: Fixes dashboard links by tags not working. #24773, @KamalGalrani - Dashboard/Links: Fixes open in new window for dashboard link. #24772, @KamalGalrani - Dashboard/Links: Variables are resolved and limits to 100. #25076, @hugohaggmark - DataLinks: Bring back variables interpolation in title. #24970, @dprokop - Datasource/CloudWatch: Field suggestions no longer limited to prefix-only. #24855, @kaydelaney - Explore/Table: Keep existing field types if possible. #24944, @kaydelaney - Explore: Fix wrap lines toggle for results of queries with filter expression. #24915, @ivanahuckova - Explore: fix undo in query editor. #24797, @zoltanbedi - Explore: fix word break in type head info. #25014, @zoltanbedi - Graph: Legend decimals now work as expected. #24931, @torkelo - LoginPage: Fix hover color for service buttons. #25009, @tskarhed - LogsPanel: Fix scrollbar. #24850, @ivanahuckova - MoveDashboard: Fix for moving dashboard caused all variables to be lost. #25005, @torkelo - Organize transformer: Use display name in field order comparer. #24984, @dprokop - Panel: shows correct panel menu items in view mode. #24912, @hugohaggmark - PanelEditor Fix missing labels and description if there is only single option in category. #24905, @dprokop - PanelEditor: Overrides name matcher still show all original field names even after Field default display name is specified. #24933, @torkelo - PanelInspector: Makes sure Data display options are visible. #24902, @hugohaggmark - PanelInspector: Hides unsupported data display options for Panel type. #24918, @hugohaggmark - PanelMenu: Make menu disappear on button press. #25015, @tskarhed - Postgres: Fix add button. #25087, @phemmer - Prometheus: Fix recording rules expansion. #24977, @ivanahuckova - Stackdriver: Fix creating Service Level Objectives (SLO) datasource query variable. #25023, @papagian Update to version 7.0.0 * Breaking changes - Removed PhantomJS: PhantomJS was deprecated in Grafana v6.4 and starting from Grafana v7.0.0, all PhantomJS support has been removed. This means that Grafana no longer ships with a built-in image renderer, and we advise you to install the Grafana Image Renderer plugin. - Dashboard: A global minimum dashboard refresh interval is now enforced and defaults to 5 seconds. - Interval calculation: There is now a new option Max data points that controls the auto interval $__interval calculation. Interval was previously calculated by dividing the panel width by the time range. With the new max data points option it is now easy to set $__interval to a dynamic value that is time range agnostic. For example if you set Max data points to 10 Grafana will dynamically set $__interval by dividing the current time range by 10. - Datasource/Loki: Support for deprecated Loki endpoints has been removed. - Backend plugins: Grafana now requires backend plugins to be signed, otherwise Grafana will not load/start them. This is an additional security measure to make sure backend plugin binaries and files haven't been tampered with. Refer to Upgrade Grafana for more information. - @grafana/ui: Forms migration notice, see @grafana/ui changelog - @grafana/ui: Select API change for creating custom values, see @grafana/ui changelog + Deprecation warnings - Scripted dashboards is now deprecated. The feature is not removed but will be in a future release. We hope to address the underlying requirement of dynamic dashboards in a different way. #24059 - The unofficial first version of backend plugins together with usage of grafana/grafana-plugin-model is now deprecated and support for that will be removed in a future release. Please refer to backend plugins documentation for information about the new officially supported backend plugins. * Features / Enhancements - Backend plugins: Log deprecation warning when using the unofficial first version of backend plugins. #24675, @marefr - Editor: New line on Enter, run query on Shift+Enter. #24654, @davkal - Loki: Allow multiple derived fields with the same name. #24437, @aocenas - Orgs: Add future deprecation notice. #24502, @torkelo * Bug Fixes - @grafana/toolkit: Use process.cwd() instead of PWD to get directory. #24677, @zoltanbedi - Admin: Makes long settings values line break in settings page. #24559, @hugohaggmark - Dashboard: Allow editing provisioned dashboard JSON and add confirmation when JSON is copied to dashboard. #24680, @dprokop - Dashboard: Fix for strange "dashboard not found" errors when opening links in dashboard settings. #24416, @torkelo - Dashboard: Fix so default data source is selected when data source can't be found in panel editor. #24526, @mckn - Dashboard: Fixed issue changing a panel from transparent back to normal in panel editor. #24483, @torkelo - Dashboard: Make header names reflect the field name when exporting to CSV file from the the panel inspector. #24624, @peterholmberg - Dashboard: Make sure side pane is displayed with tabs by default in panel editor. #24636, @dprokop - Data source: Fix query/annotation help content formatting. #24687, @AgnesToulet - Data source: Fixes async mount errors. #24579, @Estrax - Data source: Fixes saving a data source without failure when URL doesn't specify a protocol. #24497, @aknuds1 - Explore/Prometheus: Show results of instant queries only in table. #24508, @ivanahuckova - Explore: Fix rendering of react query editors. #24593, @ivanahuckova - Explore: Fixes loading more logs in logs context view. #24135, @Estrax - Graphite: Fix schema and dedupe strategy in rollup indicators for Metrictank queries. #24685, @torkelo - Graphite: Makes query annotations work again. #24556, @hugohaggmark - Logs: Clicking "Load more" from context overlay doesn't expand log row. #24299, @kaydelaney - Logs: Fix total bytes process calculation. #24691, @davkal - Org/user/team preferences: Fixes so UI Theme can be set back to Default. #24628, @AgnesToulet - Plugins: Fix manifest validation. #24573, @aknuds1 - Provisioning: Use proxy as default access mode in provisioning. #24669, @bergquist - Search: Fix select item when pressing enter and Grafana is served using a sub path. #24634, @tskarhed - Search: Save folder expanded state. #24496, @Clarity-89 - Security: Tag value sanitization fix in OpenTSDB data source. #24539, @rotemreiss - Table: Do not include angular options in options when switching from angular panel. #24684, @torkelo - Table: Fixed persisting column resize for time series fields. #24505, @torkelo - Table: Fixes Cannot read property subRows of null. #24578, @hugohaggmark - Time picker: Fixed so you can enter a relative range in the time picker without being converted to absolute range. #24534, @mckn - Transformations: Make transform dropdowns not cropped. #24615, @dprokop - Transformations: Sort order should be preserved as entered by user when using the reduce transformation. #24494, @hugohaggmark - Units: Adds scale symbol for currencies with suffixed symbol. #24678, @hugohaggmark - Variables: Fixes filtering options with more than 1000 entries. #24614, @hugohaggmark - Variables: Fixes so Textbox variables read value from url. #24623, @hugohaggmark - Zipkin: Fix error when span contains remoteEndpoint. #24524, @aocenas - SAML: Switch from email to login for user login attribute mapping (Enterprise) This update was imported from the SUSE:SLE-15-SP2:Update update project. grafana-piechart-panel-1.4.0-lp152.2.3.1.noarch.rpm grafana-piechart-panel-1.4.0-lp152.2.3.1.src.rpm grafana-status-panel-1.0.9-lp152.2.3.1.noarch.rpm grafana-status-panel-1.0.9-lp152.2.3.1.src.rpm grafana-7.0.3-lp152.2.3.1.src.rpm grafana-7.0.3-lp152.2.3.1.x86_64.rpm grafana-debuginfo-7.0.3-lp152.2.3.1.x86_64.rpm openSUSE-2020-918 moderate openSUSE Leap 15.2 Update This update for krb5 contains the following fixes: - Integrate pam_keyinit PAM module, ksu-pam.d. (bsc#1081947) This update was imported from the SUSE:SLE-15-SP1:Update update project. krb5-mini-1.16.3-lp152.5.4.1.src.rpm krb5-mini-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.x86_64.rpm krb5-1.16.3-lp152.5.3.1.src.rpm krb5-1.16.3-lp152.5.3.1.x86_64.rpm krb5-client-1.16.3-lp152.5.3.1.x86_64.rpm krb5-client-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-debugsource-1.16.3-lp152.5.3.1.x86_64.rpm krb5-devel-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-server-1.16.3-lp152.5.3.1.x86_64.rpm krb5-server-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-mini-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.i586.rpm krb5-1.16.3-lp152.5.3.1.i586.rpm krb5-32bit-1.16.3-lp152.5.3.1.x86_64.rpm krb5-32bit-debuginfo-1.16.3-lp152.5.3.1.x86_64.rpm krb5-client-1.16.3-lp152.5.3.1.i586.rpm krb5-client-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-debugsource-1.16.3-lp152.5.3.1.i586.rpm krb5-devel-1.16.3-lp152.5.3.1.i586.rpm krb5-devel-32bit-1.16.3-lp152.5.3.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.3.1.i586.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.3.1.i586.rpm krb5-server-1.16.3-lp152.5.3.1.i586.rpm krb5-server-debuginfo-1.16.3-lp152.5.3.1.i586.rpm openSUSE-2020-893 important openSUSE Leap 15.2 Update This update for chromium fixes the following issues: Chromium was updated to 83.0.4103.116 (boo#1173251): * CVE-2020-6509: Use after free in extensions Chromium was updated to 83.0.4103.106 (boo#1173029): * CVE-2020-6505: Use after free in speech * CVE-2020-6506: Insufficient policy enforcement in WebView * CVE-2020-6507: Out of bounds write in V8 Other fixes: - Add patch to work with new ffmpeg wrt boo#1173292: - Add multimedia fix for disabled location and also try one additional patch from Debian on the same issue boo#1173107 - Disable wayland integration on 15.x boo#1173187 boo#1173188 boo#1173254 - Enforce to not use system borders boo#1173063 chromedriver-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromedriver-debuginfo-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromium-83.0.4103.116-lp152.2.3.1.src.rpm chromium-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromium-debuginfo-83.0.4103.116-lp152.2.3.1.x86_64.rpm chromium-debugsource-83.0.4103.116-lp152.2.3.1.x86_64.rpm openSUSE-2020-913 important openSUSE Leap 15.2 Update This update for unbound fixes the following issues: - CVE-2020-12662: Fixed an issue where unbound could have been tricked into amplifying an incoming query into a large number of queries directed to a target (bsc#1171889). - CVE-2020-12663: Fixed an issue where malformed answers from upstream name servers could have been used to make unbound unresponsive (bsc#1171889). - CVE-2019-18934: Fixed a vulnerability in the IPSec module which could have allowed code execution after receiving a special crafted answer (bsc#1157268). This update was imported from the SUSE:SLE-15-SP1:Update update project. libunbound-devel-mini-1.6.8-lp152.9.3.1.src.rpm libunbound-devel-mini-1.6.8-lp152.9.3.1.x86_64.rpm libunbound-devel-mini-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm libunbound-devel-mini-debugsource-1.6.8-lp152.9.3.1.x86_64.rpm libunbound2-1.6.8-lp152.9.3.1.x86_64.rpm libunbound2-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm unbound-1.6.8-lp152.9.3.1.src.rpm unbound-1.6.8-lp152.9.3.1.x86_64.rpm unbound-anchor-1.6.8-lp152.9.3.1.x86_64.rpm unbound-anchor-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm unbound-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm unbound-debugsource-1.6.8-lp152.9.3.1.x86_64.rpm unbound-devel-1.6.8-lp152.9.3.1.x86_64.rpm unbound-munin-1.6.8-lp152.9.3.1.noarch.rpm unbound-python-1.6.8-lp152.9.3.1.x86_64.rpm unbound-python-debuginfo-1.6.8-lp152.9.3.1.x86_64.rpm libunbound-devel-mini-1.6.8-lp152.9.3.1.i586.rpm libunbound-devel-mini-debuginfo-1.6.8-lp152.9.3.1.i586.rpm libunbound-devel-mini-debugsource-1.6.8-lp152.9.3.1.i586.rpm openSUSE-2020-914 important openSUSE Leap 15.2 Update This update for squid fixes the following issues: squid was updated to version 4.12 Security issue fixed: - CVE-2020-14059: Fixed an issue where a client could potentially deny the service of a server during TLS Handshake (bsc#1173304). Other issues addressed: - Reverted to slow search for new SMP shm pages due to a regression - Fixed an issue where negative responses were never cached - Fixed stall if transaction was overwriting a recently active cache entry This update was imported from the SUSE:SLE-15:Update update project. squid-4.12-lp152.2.3.1.src.rpm squid-4.12-lp152.2.3.1.x86_64.rpm squid-debuginfo-4.12-lp152.2.3.1.x86_64.rpm squid-debugsource-4.12-lp152.2.3.1.x86_64.rpm openSUSE-2020-915 important openSUSE Leap 15.2 Update This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 (bsc#1173197). - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response (bsc#1172906, bsc#1172935). - CVE-2020-14154: Fixed an issue where Mutt was ignoring an expired certificate and was proceeding with a connection (bsc#1172906, bsc#1172935). This update was imported from the SUSE:SLE-15:Update update project. mutt-1.10.1-lp152.3.3.1.src.rpm mutt-1.10.1-lp152.3.3.1.x86_64.rpm mutt-debuginfo-1.10.1-lp152.3.3.1.x86_64.rpm mutt-debugsource-1.10.1-lp152.3.3.1.x86_64.rpm mutt-doc-1.10.1-lp152.3.3.1.noarch.rpm mutt-lang-1.10.1-lp152.3.3.1.noarch.rpm openSUSE-2020-905 moderate openSUSE Leap 15.2 Update This update for krb5 fixes the following issue: - Call systemd to reload the services instead of init-scripts. (bsc#1169357) This update was imported from the SUSE:SLE-15-SP1:Update update project. krb5-mini-1.16.3-lp152.5.4.1.src.rpm krb5-mini-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.x86_64.rpm krb5-1.16.3-lp152.5.4.1.src.rpm krb5-1.16.3-lp152.5.4.1.x86_64.rpm krb5-client-1.16.3-lp152.5.4.1.x86_64.rpm krb5-client-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-debugsource-1.16.3-lp152.5.4.1.x86_64.rpm krb5-devel-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-server-1.16.3-lp152.5.4.1.x86_64.rpm krb5-server-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-mini-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-debugsource-1.16.3-lp152.5.4.1.i586.rpm krb5-mini-devel-1.16.3-lp152.5.4.1.i586.rpm krb5-1.16.3-lp152.5.4.1.i586.rpm krb5-32bit-1.16.3-lp152.5.4.1.x86_64.rpm krb5-32bit-debuginfo-1.16.3-lp152.5.4.1.x86_64.rpm krb5-client-1.16.3-lp152.5.4.1.i586.rpm krb5-client-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-debugsource-1.16.3-lp152.5.4.1.i586.rpm krb5-devel-1.16.3-lp152.5.4.1.i586.rpm krb5-devel-32bit-1.16.3-lp152.5.4.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-kdb-ldap-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-otp-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-otp-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-pkinit-1.16.3-lp152.5.4.1.i586.rpm krb5-plugin-preauth-pkinit-debuginfo-1.16.3-lp152.5.4.1.i586.rpm krb5-server-1.16.3-lp152.5.4.1.i586.rpm krb5-server-debuginfo-1.16.3-lp152.5.4.1.i586.rpm openSUSE-2020-935 important openSUSE Leap 15.2 Update The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-19462: relay_open in kernel/relay.c allowed local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result (bnc#1158265). - CVE-2019-20810: go7007_snd_init in drivers/media/usb/go7007/snd-go7007.c did not call snd_card_free for a failure path, which causes a memory leak, aka CID-9453264ef586 (bnc#1172458). - CVE-2019-20812: The prb_calc_retire_blk_tmo() function in net/packet/af_packet.c can result in a denial of service (CPU consumption and soft lockup) in a certain failure case involving TPACKET_V3, aka CID-b43d1f9f7067 (bnc#1172453). - CVE-2020-10711: A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allowed a remote network user to crash the system kernel, resulting in a denial of service (bnc#1171191). - CVE-2020-10732: A flaw was found in the implementation of Userspace core dumps. This flaw allowed an attacker with a local account to crash a trivial program and exfiltrate private kernel data (bnc#1171220). - CVE-2020-10751: SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages within the skb with the granted permission without further processing (bnc#1171189). - CVE-2020-10766: Fixed rogue cross-process SSBD shutdown. Linux scheduler logical bug allowed an attacker to turn off the SSBD protection. (bnc#1172781). - CVE-2020-10767: Fixed that Indirect Branch Prediction Barrier is force-disabled when STIBP is unavailable or enhanced IBRS is available. (bnc#1172782). - CVE-2020-10768: Fixed that indirect branch speculation can be enabled after it was force-disabled by the PR_SPEC_FORCE_DISABLE prctl command (bnc#1172783). - CVE-2020-10773: Fixed a kernel stack information leak on s390/s390x. (bnc#1172999). - CVE-2020-12656: Fixed a memory leak in gss_mech_free in the rpcsec_gss_krb5 implementation due to lack of certain domain_release calls (bnc#1171219). - CVE-2020-12769: An issue was discovered in drivers/spi/spi-dw.c allowed attackers to cause a panic via concurrent calls to dw_spi_irq and dw_spi_transfer_one, aka CID-19b61392c5a8 (bnc#1171983). - CVE-2020-12888: The VFIO PCI driver mishandled attempts to access disabled memory space (bnc#1171868). - CVE-2020-13143: gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c relied on kstrdup without considering the possibility of an internal '\0' value, which allowed attackers to trigger an out-of-bounds read, aka CID-15753588bcd4 (bnc#1171982). - CVE-2020-13974: tty/vt/keyboard.c had an integer overflow if k_ascii is called several times in a row, aka CID-b86dab054059. (bnc#1172775). - CVE-2020-14416: A race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a use-after-free, aka CID-0ace17d56824. This affects drivers/net/slip/slip.c and drivers/net/can/slcan.c (bnc#1162002). The following non-security bugs were fixed: - ACPICA: Fixes for acpiExec namespace init file (git-fixes). - ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe() (git-fixes). - ACPI: GED: add support for _Exx / _Lxx handler methods (git-fixes). - ACPI: GED: use correct trigger type field in _Exx / _Lxx handling (git-fixes). - ACPI: PM: Avoid using power resources if there are none for D0 (git-fixes). - ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile() (git-fixes). - af_unix: add compat_ioctl support (git-fixes). - agp/intel: Reinforce the barrier after GTT updates (git-fixes). - ALSA: emu10k1: delete an unnecessary condition (git-fixes). - ALSA: es1688: Add the missed snd_card_free() (git-fixes). - ALSA: fireface: fix configuration error for nominal sampling transfer frequency (git-fixes). - ALSA: firewire-lib: fix invalid assignment to union data for directional parameter (git-fixes). - ALSA: hda: Add ElkhartLake HDMI codec vid (git-fixes). - ALSA: hda: add member to store ratio for stripe control (git-fixes). - ALSA: hda: add sienna_cichlid audio asic id for sienna_cichlid up (git-fixes). - ALSA: hda: Fix potential race in unsol event handler (git-fixes). - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround (bsc#1172017). - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines (git-fixes). - ALSA: hda/realtek - Add LED class support for micmute LED (git-fixes). - ALSA: hda/realtek - Add more fixup entries for Clevo machines (git-fixes). - ALSA: hda/realtek - Add new codec supported for ALC287 (git-fixes). - ALSA: hda/realtek - Enable micmute LED on and HP system (git-fixes). - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme (git-fixes). - ALSA: hda/realtek - Fix unused variable warning w/o CONFIG_LEDS_TRIGGER_AUDIO (git-fixes). - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO (git-fixes). - ALSA: hda/tegra: correct number of SDO lines for Tegra194 (git-fixes). - ALSA: hda/tegra: workaround playback failure on Tegra194 (git-fixes). - ALSA: hwdep: fix a left shifting 1 by 31 UB bug (git-fixes). - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio option (git-fixes). - ALSA: pcm: disallow linking stream to itself (git-fixes). - ALSA: pcm: fix incorrect hw_base increase (git-fixes). - ALSA: pcm: fix snd_pcm_link() lockdep splat (git-fixes). - ALSA: usb-audio: Add duplex sound support for USB devices using implicit feedback (git-fixes). - ALSA: usb-audio: Add Pioneer DJ DJM-900NXS2 support (git-fixes). - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt Dock (git-fixes). - ALSA: usb-audio: Clean up quirk entries with macros (git-fixes). - ALSA: usb-audio: Fix a limit check in proc_dump_substream_formats() (git-fixes). - ALSA: usb-audio: Fix inconsistent card PM state after resume (git-fixes). - ALSA: usb-audio: fixing upper volume limit for RME Babyface Pro routing crosspoints (git-fixes). - ALSA: usb-audio: Fixing usage of plain int instead of NULL (git-fixes). - ALSA: usb-audio: Fix racy list management in output queue (git-fixes). - ALSA: usb-audio: Improve frames size computation (git-fixes). - ALSA: usb-audio: Manage auto-pm of all bundled interfaces (git-fixes). - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC (git-fixes). - ALSA: usb-audio: Print more information in stream proc files (git-fixes). - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio (git-fixes). - ALSA: usb-audio: Remove async workaround for Scarlett 2nd gen (git-fixes). - ALSA: usb-audio: RME Babyface Pro mixer patch (git-fixes). - ALSA: usb-audio: Use the new macro for HP Dock rename quirks (git-fixes). - amd-xgbe: Use __napi_schedule() in BH context (networking-stable-20_04_17). - arm64: map FDT as RW for early_init_dt_scan() (jsc#SLE-12424). - ARM: oxnas: make ox820_boot_secondary static (git-fixes). - asm-gemeric/tlb: remove stray function declarations (bsc#1156395). - ASoC: fix incomplete error-handling in img_i2s_in_probe (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT10-A tablet (git-fixes). - ASoC: intel: cht_bsw_max98090_ti: Add all Chromebooks that need pmc_plt_clk_0 quirk (bsc#1171246). - ASoC: intel - fix the card names (git-fixes). - ASoC: max9867: fix volume controls (git-fixes). - ASoC: meson: add missing free_irq() in error path (git-fixes). - ASoC: rt5645: Add platform-data for Asus T101HA (git-fixes). - ASoC: SOF: core: fix error return code in sof_probe_continue() (git-fixes). - ASoC: ux500: mop500: Fix some refcounted resources issues (git-fixes). - ath10k: Remove ath10k_qmi_register_service_notifier() declaration (git-fixes). - ath10k: remove the max_sched_scan_reqs value (git-fixes). - ath10k: Skip handling del_server during driver exit (git-fixes). - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb (git-fixes). - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx (git-fixes). - ath9k: Fix use-after-free Read in htc_connect_service (git-fixes). - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg (git-fixes). - ath9k_htc: Silence undersized packet warnings (git-fixes). - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb (git-fixes). - ax25: fix setsockopt(SO_BINDTODEVICE) (git-fixes). - b43legacy: Fix case where channel status is corrupted (git-fixes). - bfq: Avoid false bfq queue merging (bsc#1171513). - bfq: Fix check detecting whether waker queue should be selected (bsc#1168838). - bfq: Use only idle IO periods for think time calculations (bsc#1171513). - bfq: Use 'ttime' local variable (bsc#1171513). - blk-iocost: Fix error on iocost_ioc_vrate_adj (bsc#1173206). - blk-iocost: fix incorrect vtime comparison in iocg_is_idle() (bsc#1173206). - bluetooth: btmtkuart: Improve exception handling in btmtuart_probe() (git-fixes). - bluetooth: hci_bcm: fix freeing not-requested IRQ (git-fixes). - bnxt_en: Improve TQM ring context memory sizing formulas (jsc#SLE-8371 bsc#1153274). - bpf: Fix map permissions check (bsc#1155518). - bpf: Prevent mmap()'ing read-only maps as writable (bsc#1155518). - bpf: Restrict bpf_probe_read{, str}() only to archs where they work (bsc#1172344). - bpf, sockhash: Synchronize_rcu before free'ing map (git-fixes). - bpf, sockmap: Check update requirements after locking (git-fixes). - bpf: Undo internal BPF_PROBE_MEM in BPF insns dump (bsc#1155518). - brcmfmac: fix wrong location to get firmware feature (git-fixes). - btrfs: fix log context list corruption after rename whiteout error (bsc#1172342). - btrfs: fix partial loss of prealloc extent past i_size after fsync (bsc#1172343). - btrfs: reloc: clear DEAD_RELOC_TREE bit for orphan roots to prevent runaway balance (bsc#1171417 bsc#1160947 bsc#1172366). - btrfs: reloc: fix reloc root leak and NULL pointer dereference (bsc#1171417 bsc#1160947 bsc#1172366). - CDC-ACM: heed quirk also in error handling (git-fixes). - CDC-ACM: heed quirk also in error handling (git-fixes). - ceph: add comments for handle_cap_flush_ack logic (bsc#1172940). - ceph: allow rename operation under different quota realms (bsc#1172988). - ceph: ceph_kick_flushing_caps needs the s_mutex (bsc#1172986). - ceph: convert mdsc->cap_dirty to a per-session list (bsc#1172984 bsc#1167104). - ceph: document what protects i_dirty_item and i_flushing_item (bsc#1172940). - ceph: do not release i_ceph_lock in handle_cap_trunc (bsc#1172940). - ceph: do not return -ESTALE if there's still an open file (bsc#1171915). - ceph: do not take i_ceph_lock in handle_cap_import (bsc#1172940). - ceph: fix potential race in ceph_check_caps (bsc#1172940). - ceph: flush release queue when handling caps for unknown inode (bsc#1172939). - ceph: make sure mdsc->mutex is nested in s->s_mutex to fix dead lock (bsc#1172989). - ceph: normalize 'delta' parameter usage in check_quota_exceeded (bsc#1172987). - ceph: reorganize __send_cap for less spinlock abuse (bsc#1172940). - ceph: request expedited service on session's last cap flush (bsc#1172985 bsc#1167104). - ceph: reset i_requested_max_size if file write is not wanted (bsc#1172983). - ceph: skip checking caps when session reconnecting and releasing reqs (bsc#1172990). - ceph: split up __finish_cap_flush (bsc#1172940). - ceph: throw a warning if we destroy session with mutex still locked (bsc#1172940). - char/random: Add a newline at the end of the file (jsc#SLE-12424). - clk: bcm2835: Fix return type of bcm2835_register_gate (git-fixes). - clk: bcm2835: Remove casting to bcm2835_clk_register (git-fixes). - clk: clk-flexgen: fix clock-critical handling (git-fixes). - clk: mediatek: assign the initial value to clk_init_data of mtk_mux (git-fixes). - clk: meson: meson8b: Do not rely on u-boot to init all GP_PLL registers (git-fixes). - clk: meson: meson8b: Fix the polarity of the RESET_N lines (git-fixes). - clk: meson: meson8b: Fix the vclk_div{1, 2, 4, 6, 12}_en gate bits (git-fixes). - clk: qcom: Add missing msm8998 ufs_unipro_core_clk_src (git-fixes). - clk: renesas: cpg-mssr: Fix STBCR suspend/resume handling (git-fixes). - clk: samsung: Mark top ISP and CAM clocks on Exynos542x as critical (git-fixes). - clk: sprd: return correct type of value for _sprd_pll_recalc_rate (git-fixes). - clk: sunxi: Fix incorrect usage of round_down() (git-fixes). - clk: ti: am33xx: fix RTC clock parent (git-fixes). - clocksource: dw_apb_timer_of: Fix missing clockevent timers (git-fixes). - component: Silence bind error on -EPROBE_DEFER (git-fixes). - config: arm64: enable CONFIG_IOMMU_DEFAULT_PASSTHROUGH References: bsc#1172739 - coredump: fix crash when umh is disabled (git-fixes). - coredump: fix null pointer dereference on coredump (git-fixes). - crypto: algapi - Avoid spurious modprobe on LOADED (git-fixes). - crypto: algboss - do not wait during notifier callback (git-fixes). - crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated (git-fixes). - crypto: ccp -- do not "select" CONFIG_DMADEVICES (git-fixes). - crypto: chelsio/chtls: properly set tp->lsndtime (git-fixes). - crypto: drbg - fix error return code in drbg_alloc_state() (git-fixes). - crypto: stm32/crc32 - fix ext4 chksum BUG_ON() (git-fixes). - crypto: stm32/crc32 - fix multi-instance (git-fixes). - crypto: stm32/crc32 - fix run-time self test issue (git-fixes). - cxgb4: fix adapter crash due to wrong MC size (networking-stable-20_04_27). - cxgb4: fix large delays in PTP synchronization (networking-stable-20_04_27). - Delete patches.suse/seltests-powerpc-Add-a-selftest-for-memcpy_mcsafe.patch (bsc#1171699). - dma-coherent: fix integer overflow in the reserved-memory dma allocation (git-fixes). - dma-debug: fix displaying of dma allocation type (git-fixes). - dma-direct: fix data truncation in dma_direct_get_required_mask() (git-fixes). - dmaengine: dmatest: Fix process hang when reading 'wait' parameter (git-fixes). - dmaengine: dmatest: Restore default for channel (git-fixes). - dmaengine: mmp_tdma: Do not ignore slave config validation errors (git-fixes). - dmaengine: mmp_tdma: Reset channel error on release (git-fixes). - dmaengine: owl: Use correct lock in owl_dma_get_pchan() (git-fixes). - dmaengine: pch_dma.c: Avoid data race between probe and irq handler (git-fixes). - dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()' (git-fixes). - dm verity fec: fix hash block number in verity_fec_decode (git fixes (block drivers)). - dm writecache: fix data corruption when reloading the target (git fixes (block drivers)). - drivers/net/ibmvnic: Update VNIC protocol version reporting (bsc#1065729). - drivers: phy: sr-usb: do not use internal fsm for USB2 phy init (git-fixes). - drivers: soc: ti: knav_qmss_queue: Make knav_gp_range_ops static (git-fixes). - drm/amd/display: add basic atomic check for cursor plane (git-fixes). - drm/amd/display: drop cursor position check in atomic test (git-fixes). - drm/amd/display: Prevent dpcd reads with passive dongles (git-fixes). - drm/amdgpu: force fbdev into vram (bsc#1152472) * context changes - drm/amdgpu: invalidate L2 before SDMA IBs (v2) (git-fixes). - drm/amdgpu: simplify padding calculations (v2) (git-fixes). - drm/amd/powerplay: avoid using pm_en before it is initialized revised (git-fixes). - drm/amd/powerplay: perform PG ungate prior to CG ungate (git-fixes). - drm/dp_mst: Increase ACT retry timeout to 3s (bsc#1152472) * context changes - drm/dp_mst: Reformat drm_dp_check_act_status() a bit (git-fixes). - drm/edid: Add Oculus Rift S to non-desktop list (git-fixes). - drm: encoder_slave: fix refcouting error for modules (git-fixes). - drm/etnaviv: fix perfmon domain interation (git-fixes). - drm/etnaviv: rework perfmon query infrastructure (git-fixes). - drm/i915: Do not enable WaIncreaseLatencyIPCEnabled when IPC is (bsc#1152489) - drm/i915: Do not enable WaIncreaseLatencyIPCEnabled when IPC is disabled (git-fixes). - drm/i915: extend audio CDCLK>=2*BCLK constraint to more platforms (git-fixes). - drm/i915: Extend WaDisableDARBFClkGating to icl,ehl,tgl (bsc#1152489) - drm/i915: fix port checks for MST support on gen >= 11 (git-fixes). - drm/i915/gem: Avoid iterating an empty list (git-fixes). - drm/i915/gvt: Fix kernel oops for 3-level ppgtt guest (bsc#1152489) - drm/i915/gvt: Fix kernel oops for 3-level ppgtt guest (git-fixes). - drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead of (bsc#1152489) - drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead of inheritance (git-fixes). - drm/i915: HDCP: fix Ri prime check done during link check (bsc#1152489) * context changes - drm/i915: HDCP: fix Ri prime check done during link check (git-fixes). - drm/i915: Limit audio CDCLK>=2*BCLK constraint back to GLK only (git-fixes). - drm/i915: Propagate error from completed fences (git-fixes). - drm/i915: Whitelist context-local timestamp in the gen9 cmdparser (git-fixes). - drm/i915: work around false-positive maybe-uninitialized warning (git-fixes). - drm/mcde: dsi: Fix return value check in mcde_dsi_bind() (git-fixes). - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper() (git-fixes). - drm/sun4i: hdmi ddc clk: Fix size of m divider (git-fixes). - drm/vkms: Hold gem object while still in-use (git-fixes). - dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg() (git-fixes). - e1000e: Disable TSO for buffer overrun workaround (git-fixes). - e1000e: Do not wake up the system via WOL if device wakeup is disabled (git-fixes). - EDAC/amd64: Add PCI device IDs for family 17h, model 70h (bsc#1165975). - EDAC/ghes: Setup DIMM label from DMI and use it in error reports (bsc#1168779). - EDAC/skx: Use the mcmtr register to retrieve close_pg/bank_xor_enable (bsc#1152489). - EDAC/synopsys: Do not dump uninitialized pinf->col (bsc#1152489). - efi/efivars: Add missing kobject_put() in sysfs entry creation error path (git-fixes). - efi/random: Treat EFI_RNG_PROTOCOL output as bootloader randomness (jsc#SLE-12424). - efi: READ_ONCE rng seed size before munmap (jsc#SLE-12424). - efi/tpm: Verify event log header before parsing (bsc#1173461). - eventpoll: fix missing wakeup for ovflist in ep_poll_callback (bsc#1159867). - evm: Check also if *tfm is an error pointer in init_desc() (git-fixes). - evm: Fix a small race in init_desc() (git-fixes). - evm: Fix possible memory leak in evm_calc_hmac_or_hash() (git-fixes). - evm: Fix RCU list related warnings (git-fixes). - extcon: adc-jack: Fix an error handling path in 'adc_jack_probe()' (git-fixes). - fanotify: fix ignore mask logic for events on child and on dir (bsc#1172719). - fdt: add support for rng-seed (jsc#SLE-12424). - fdt: Update CRC check for rng-seed (jsc#SLE-12424). - firmware: imx: scu: Fix corruption of header (git-fixes). - firmware: imx: scu: Fix possible memory leak in imx_scu_probe() (git-fixes). - firmware: imx-scu: Support one TX and one RX (git-fixes). - firmware: imx: warn on unexpected RX (git-fixes). - firmware: qcom_scm: fix bogous abuse of dma-direct internals (git-fixes). - firmware: xilinx: Fix an error handling path in 'zynqmp_firmware_probe()' (git-fixes). - Fix a regression of AF_ALG crypto interface hang with aes_s390 (bsc#1167651) - fpga: dfl: afu: Corrected error handling levels (git-fixes). - fs: Do not check if there is a fsnotify watcher on pseudo inodes (bsc#1158765). - fsnotify: Rearrange fast path to minimise overhead when there is no watcher (bsc#1158765). - genetlink: clean up family attributes allocations (git-fixes). - genetlink: fix memory leaks in genl_family_rcv_msg_dumpit() (bsc#1154353). - gpio: bcm-kona: Fix return value of bcm_kona_gpio_probe() (git-fixes). - gpio: dwapb: Append MODULE_ALIAS for platform driver (git-fixes). - gpio: dwapb: Call acpi_gpiochip_free_interrupts() on GPIO chip de-registration (git-fixes). - gpio: exar: Fix bad handling for ida_simple_get error path (git-fixes). - gpiolib: Document that GPIO line names are not globally unique (git-fixes). - gpio: pca953x: Fix pca953x_gpio_set_config (git-fixes). - gpio: pxa: Fix return value of pxa_gpio_probe() (git-fixes). - gpio: tegra: mask GPIO IRQs during IRQ shutdown (git-fixes). - gpu/drm: Ingenic: Fix opaque pointer casted to wrong type (git-fixes). - habanalabs: Align protection bits configuration of all TPCs (git-fixes). - HID: alps: Add AUI1657 device ID (git-fixes). - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead (git-fixes). - HID: i2c-hid: add Schneider SCL142ALM to descriptor override (git-fixes). - HID: i2c-hid: reset Synaptics SYNA2393 on resume (git-fixes). - HID: intel-ish-hid: avoid bogus uninitialized-variable warning (git-fixes). - HID: multitouch: add eGalaxTouch P80H84 support (git-fixes). - HID: multitouch: enable multi-input as a quirk for some devices (git-fixes). - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock (git-fixes). - HID: sony: Fix for broken buttons on DS3 USB dongles (git-fixes). - hsr: check protocol version in hsr_newlink() (networking-stable-20_04_17). - i2c: acpi: put device when verifying client fails (git-fixes). - i2c: altera: Fix race between xfer_msg and isr thread (git-fixes). - i2c: designware-pci: Add support for Elkhart Lake PSE I2C (jsc#SLE-12734). - i2c: designware-pci: Fix BUG_ON during device removal (jsc#SLE-12734). - i2c: designware-pci: Switch over to MSI interrupts (jsc#SLE-12734). - i2c: dev: Fix the race between the release of i2c_dev and cdev (git-fixes). - i2c: fix missing pm_runtime_put_sync in i2c_device_probe (git-fixes). - i2c: mux: demux-pinctrl: Fix an error handling path in 'i2c_demux_pinctrl_probe()' (git-fixes). - ibmveth: Fix max MTU limit (bsc#1173428 ltc#186397). - ibmvnic: continue to init in CRQ reset returns H_CLOSED (bsc#1173280 ltc#185369). - ibmvnic: Flush existing work items before device removal (bsc#1065729). - ibmvnic: Harden device login requests (bsc#1170011 ltc#183538). - ice: Fix error return code in ice_add_prof() (jsc#SLE-7926). - ice: Fix inability to set channels when down (jsc#SLE-7926). - ieee80211: Fix incorrect mask for default PE duration (git-fixes). - iio: adc: stm32-adc: fix device used to request dma (git-fixes). - iio: adc: stm32-adc: Use dma_request_chan() instead dma_request_slave_channel() (git-fixes). - iio: adc: stm32-dfsdm: fix device used to request dma (git-fixes). - iio: adc: stm32-dfsdm: Use dma_request_chan() instead dma_request_slave_channel() (git-fixes). - iio: adc: ti-ads8344: Fix channel selection (git-fixes). - iio: buffer: Do not allow buffers without any channels enabled to be activated (git-fixes). - iio:chemical:pms7003: Fix timestamp alignment and prevent data leak (git-fixes). - iio:chemical:sps30: Fix timestamp alignment (git-fixes). - iio: dac: vf610: Fix an error handling path in 'vf610_dac_probe()' (git-fixes). - iio: pressure: bmp280: Tolerate IRQ before registering (git-fixes). - iio: sca3000: Remove an erroneous 'get_device()' (git-fixes). - iio: vcnl4000: Fix i2c swapped word reading (git-fixes). - ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init() (bsc#1172223). - ima: Directly assign the ima_default_policy pointer to ima_rules (bsc#1172223) - ima: Directly free *entry in ima_alloc_init_template() if digests is NULL (bsc#1172223). - ima: Remove __init annotation from ima_pcrread() (git-fixes). - include/asm-generic/topology.h: guard cpumask_of_node() macro argument (bsc#1148868). - Input: dlink-dir685-touchkeys - fix a typo in driver name (git-fixes). - Input: edt-ft5x06 - fix get_default register write access (git-fixes). - Input: evdev - call input_flush_device() on release(), not flush() (git-fixes). - Input: i8042 - add ThinkPad S230u to i8042 reset list (git-fixes). - Input: mms114 - fix handling of mms345l (git-fixes). - Input: synaptics - add a second working PNP_ID for Lenovo T470s (git-fixes). - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() (git-fixes). - Input: synaptics-rmi4 - really fix attn_data use-after-free (git-fixes). - Input: usbtouchscreen - add support for BonXeon TP (git-fixes). - Input: xpad - add custom init packet for Xbox One S controllers (git-fixes). - iocost: check active_list of all the ancestors in iocg_activate() (bsc#1173206). - iocost: do not let vrate run wild while there's no saturation signal (bsc1173206). - iocost: over-budget forced IOs should schedule async delay (bsc#1173206). - iommu/amd: Call domain_flush_complete() in update_domain() (bsc#1172061). - iommu/amd: Do not flush Device Table in iommu_map_page() (bsc#1172062). - iommu/amd: Do not loop forever when trying to increase address space (bsc#1172063). - iommu/amd: Fix legacy interrupt remapping for x2APIC-enabled system (bsc#1172393). - iommu/amd: Fix over-read of ACPI UID from IVRS table (bsc#1172064). - iommu/amd: Fix race in increase_address_space()/fetch_pte() (bsc#1172065). - iommu/amd: Update Device Table in increase_address_space() (bsc#1172066). - iommu: Fix reference count leak in iommu_group_alloc (bsc#1172394). - iommu/qcom: Fix local_base status check (bsc#1172067). - iommu/virtio: Reverse arguments to list_add (bsc#1172068). - ipv4: Update fib_select_default to handle nexthop objects (networking-stable-20_04_27). - ipv6: fix IPV6_ADDRFORM operation logic (bsc#1171662). - ipvs: Improve robustness to the ipvs sysctl (git-fixes). - irqchip/al-fic: Add support for irq retrigger (jsc#SLE-10505). - irqchip/ti-sci-inta: Fix processing of masked irqs (git-fixes). - irqchip/versatile-fpga: Apply clear-mask earlier (git-fixes). - irqchip/versatile-fpga: Handle chained IRQs properly (git-fixes). - iwlwifi: avoid debug max amsdu config overwriting itself (git-fixes). - iwlwifi: mvm: limit maximum queue appropriately (git-fixes). - iwlwifi: pcie: handle QuZ configs with killer NICs as well (bsc#1172374). - jbd2: fix data races at struct journal_head (bsc#1173438). - kabi: ppc64le: prevent struct dma_map_ops to become defined (jsc#SLE-12424). - kabi/severities: Ingnore get_dev_data() The function is internal to the AMD IOMMU driver and must not be called by any third party. - kABI workaround for struct hdac_bus changes (git-fixes). - ktest: Add timeout for ssh sync testing (git-fixes). - KVM: Check validity of resolved slot when searching memslots (bsc#1172069). - KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated (bsc#1171904). - KVM: x86: only do L1TF workaround on affected processors (bsc#1171904). - l2tp: Allow management of tunnels and session in user namespace (networking-stable-20_04_17). - libbpf: Fix perf_buffer__free() API for sparse allocs (bsc#1155518). - libceph: ignore pool overlay and cache logic on redirects (bsc#1172938). - lib: devres: add a helper function for ioremap_uc (git-fixes). - libertas_tf: avoid a null dereference in pointer priv (git-fixes). - lib/lzo: fix ambiguous encoding bug in lzo-rle (git-fixes). - libnvdimm/btt: fix variable 'rc' set but not used (bsc#1162400). - libnvdimm: cover up nd_pfn_sb changes (bsc#1171759). - libnvdimm: cover up nd_region changes (bsc#1162400). - libnvdimm/dax: Pick the right alignment default when creating dax devices (bsc#1171759). - libnvdimm/label: Remove the dpa align check (bsc#1171759). - libnvdimm/namespace: Enforce memremap_compat_align() (bsc#1162400). - libnvdimm/namsepace: Do not set claim_class on error (bsc#1162400). - libnvdimm/of_pmem: Provide a unique name for bus provider (bsc#1171739). - libnvdimm: Out of bounds read in __nd_ioctl() (bsc#1065729). - libnvdimm/pfn_dev: Add a build check to make sure we notice when struct page size change (bsc#1171743). - libnvdimm/pfn_dev: Add page size and struct page size to pfn superblock (bsc#1171759). - libnvdimm/pfn: Prevent raw mode fallback if pfn-infoblock valid (bsc#1171743). - libnvdimm/pmem: Advance namespace seed for specific probe errors (bsc#1171743). - libnvdimm/region: Fix build error (bsc#1162400). - libnvdimm/region: Introduce an 'align' attribute (bsc#1162400). - libnvdimm/region: Introduce NDD_LABELING (bsc#1162400). - libnvdimm/region: Rewrite _probe_success() to _advance_seeds() (bsc#1171743). - libnvdimm: Use PAGE_SIZE instead of SZ_4K for align check (bsc#1171759). - lib: Uplevel the pmem "region" ida to a global allocator (bc#1162400). - list: Add hlist_unhashed_lockless() (bsc#1173438). - livepatch: Apply vmlinux-specific KLP relocations early (bsc#1071995). - livepatch: Disallow vmlinux.ko (bsc#1071995). - livepatch: Make klp_apply_object_relocs static (bsc#1071995). - livepatch: Prevent module-specific KLP rela sections from referencing vmlinux symbols (bsc#1071995). - livepatch: Remove .klp.arch (bsc#1071995). - locktorture: Allow CPU-hotplug to be disabled via --bootargs (bsc#1173068). - lpfc_debugfs: get rid of pointless access_ok() (bsc#1171530). - lpfc: fix axchg pointer reference after free and double frees (bsc#1171530). - lpfc: Fix pointer checks and comments in LS receive refactoring (bsc#1171530). - lpfc: Fix return value in __lpfc_nvme_ls_abort (bsc#1171530). - lpfc: Synchronize NVME transport and lpfc driver devloss_tmo (bcs#1173060). - mac80211: mesh: fix discovery timer re-arming issue / crash (git-fixes). - mailbox: zynqmp-ipi: Fix NULL vs IS_ERR() check in zynqmp_ipi_mbox_probe() (git-fixes). - Make the "Reducing compressed framebufer size" message be DRM_INFO_ONCE() (git-fixes). - mdraid: fix read/write bytes accounting (bsc#1172537). - media: cedrus: Program output format during each run (git-fixes). - media: dvb: return -EREMOTEIO on i2c transfer failure (git-fixes). - media: platform: fcp: Set appropriate DMA parameters (git-fixes). - media: Revert "staging: imgu: Address a compiler warning on alignment" (git-fixes). - media: staging: ipu3: Fix stale list entries on parameter queue failure (git-fixes). - media: staging: ipu3-imgu: Move alignment attribute to field (git-fixes). - mei: release me_cl object reference (git-fixes). - mfd: intel-lpss: Add Intel Tiger Lake PCI IDs (jsc#SLE-12737). - mfd: intel-lpss: Use devm_ioremap_uc for MMIO (git-fixes). - mfd: stmfx: Fix stmfx_irq_init error path (git-fixes). - mfd: stmfx: Reset chip on resume as supply was disabled (git-fixes). - misc: fastrpc: fix potential fastrpc_invoke_ctx leak (git-fixes). - misc: rtsx: Add short delay after exit from ASPM (git-fixes). - mlxsw: Fix some IS_ERR() vs NULL bugs (networking-stable-20_04_27). - mm: adjust vm_committed_as_batch according to vm overcommit policy (bnc#1173271). - mmc: block: Fix use-after-free issue for rpmb (git-fixes). - mmc: core: Use DEFINE_DEBUGFS_ATTRIBUTE instead of DEFINE_SIMPLE_ATTRIBUTE (git-fixes). - mmc: fix compilation of user API (git-fixes). - mmc: meson-mx-sdio: trigger a soft reset after a timeout or CRC error (git-fixes). - mmc: mmci_sdmmc: fix DMA API warning overlapping mappings (git-fixes). - mmc: sdhci-esdhc-imx: fix the mask for tuning start point (git-fixes). - mmc: sdhci-msm: Clear tuning done flag while hs400 tuning (git-fixes). - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card() (git-fixes). - mmc: sdio: Fix several potential memory leaks in mmc_sdio_init_card() (git-fixes). - mmc: tmio: Further fixup runtime PM management at remove (git-fixes). - mmc: uniphier-sd: call devm_request_irq() after tmio_mmc_host_probe() (git-fixes). - mm: do not prepare anon_vma if vma has VM_WIPEONFORK (bsc#1169681). - mm: memcontrol: fix memory.low proportional distribution (bsc#1168230). - mm/memremap: drop unused SECTION_SIZE and SECTION_MASK (bsc#1162400 bsc#1170895 ltc#184375 ltc#185686). - mm/memremap_pages: Introduce memremap_compat_align() (bsc#1162400). - mm/memremap_pages: Kill unused __devm_memremap_pages() (bsc#1162400). - mm/util.c: make vm_memory_committed() more accurate (bnc#1173271). - mt76: mt76x02u: Add support for newer versions of the XBox One wifi adapter (git-fixes). - mtd: Fix mtd not registered due to nvmem name collision (git-fixes). - mtd: rawnand: brcmnand: correctly verify erased pages (git-fixes). - mtd: rawnand: brcmnand: fix CS0 layout (git-fixes). - mtd: rawnand: brcmnand: fix hamming oob layout (git-fixes). - mtd: rawnand: diskonchip: Fix the probe error path (git-fixes). - mtd: rawnand: Fix nand_gpio_waitrdy() (git-fixes). - mtd: rawnand: ingenic: Fix the probe error path (git-fixes). - mtd: rawnand: marvell: Fix probe error path (git-fixes). - mtd: rawnand: marvell: Fix the condition on a return code (git-fixes). - mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered (git-fixes). - mtd: rawnand: mtk: Fix the probe error path (git-fixes). - mtd: rawnand: onfi: Fix redundancy detection check (git-fixes). - mtd: rawnand: orion: Fix the probe error path (git-fixes). - mtd: rawnand: oxnas: Keep track of registered devices (git-fixes). - mtd: rawnand: oxnas: Release all devices in the _remove() path (git-fixes). - mtd: rawnand: pasemi: Fix the probe error path (git-fixes). - mtd: rawnand: plat_nand: Fix the probe error path (git-fixes). - mtd: rawnand: sharpsl: Fix the probe error path (git-fixes). - mtd: rawnand: socrates: Fix the probe error path (git-fixes). - mtd: rawnand: sunxi: Fix the probe error path (git-fixes). - mtd: rawnand: timings: Fix default tR_max and tCCS_min timings (git-fixes). - mtd: rawnand: tmio: Fix the probe error path (git-fixes). - mtd: rawnand: xway: Fix the probe error path (git-fixes). - mtd: spinand: Propagate ECC information to the MTD structure (git-fixes). - mtd: spi-nor: intel-spi: Add support for Intel Tiger Lake SPI serial flash (jsc#SLE-12737). - mwifiex: avoid -Wstringop-overflow warning (git-fixes). - mwifiex: Fix memory corruption in dump_station (git-fixes). - net: bcmgenet: correct per TX/RX ring statistics (networking-stable-20_04_27). - net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL (networking-stable-20_04_27). - net: dsa: b53: Fix ARL register definitions (networking-stable-20_04_27). - net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled (networking-stable-20_04_27). - net: dsa: b53: Rework ARL bin logic (networking-stable-20_04_27). - net: dsa: declare lockless TX feature for slave ports (bsc#1154353). - net: dsa: mt7530: fix tagged frames pass-through in VLAN-unaware mode (networking-stable-20_04_17). - net: ena: xdp: update napi budget for DROP and ABORTED (bsc#1154492). - net: ena: xdp: XDP_TX: fix memory leak (bsc#1154492). - netfilter: connlabels: prefer static lock initialiser (git-fixes). - netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes). - netfilter: nf_tables_offload: return EOPNOTSUPP if rule specifies no actions (git-fixes). - netfilter: nft_tproxy: Fix port selector on Big Endian (git-fixes). - netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy (git-fixes). - netfilter: not mark a spinlock as __read_mostly (git-fixes). - net: ipv4: devinet: Fix crash when add/del multicast IP with autojoin (networking-stable-20_04_17). - net: ipv6: do not consider routes via gateways for anycast address check (networking-stable-20_04_17). - net/mlx4_en: avoid indirect call in TX completion (networking-stable-20_04_27). - net/mlx5e: Add missing release firmware call (networking-stable-20_04_17). - net/mlx5e: Fix pfnum in devlink port attribute (networking-stable-20_04_17). - net/mlx5e: Fix stats update for matchall classifier (jsc#SLE-8464). - net/mlx5e: replace EINVAL in mlx5e_flower_parse_meta() (jsc#SLE-8464). - net/mlx5: Fix cleaning unmanaged flow tables (jsc#SLE-8464). - net/mlx5: Fix crash upon suspend/resume (bsc#1172365). - net/mlx5: Fix frequent ioread PCI access during recovery (networking-stable-20_04_17). - net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node (networking-stable-20_04_27). - net: openvswitch: ovs_ct_exit to be done under ovs_lock (networking-stable-20_04_27). - net: phy: propagate an error back to the callers of phy_sfp_probe (bsc#1154353). - net: qrtr: send msgs from local of same id as broadcast (networking-stable-20_04_17). - net: revert default NAPI poll timeout to 2 jiffies (networking-stable-20_04_17). - net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" (bnc#1158748 (network regression)). - net: tun: record RX queue in skb before do_xdp_generic() (networking-stable-20_04_17). - net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3_get_rss() (bsc#1172484). - net/x25: Fix x25_neigh refcnt leak when receiving frame (networking-stable-20_04_27). - NFC: st21nfca: add missed kfree_skb() in an error path (git-fixes). - nfs: add minor version to nfs_server_key for fscache (bsc#1172467). - nfsd4: make drc_slab global, not per-net (git-fixes). - nfsd: always check return value of find_any_file (bsc#1172208). - NFS: Fix fscache super_cookie index_key from changing after umount (git-fixes). - nfs: fix NULL deference in nfs4_get_valid_delegation. - nfs: fscache: use timespec64 in inode auxdata (git-fixes). - nfs: set invalid blocks after NFSv4 writes (git-fixes). - NFSv4.1 fix rpc_call_done assignment for BIND_CONN_TO_SESSION (git-fixes). - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included (git-fixes). - ntb: intel: add hw workaround for NTB BAR alignment (jsc#SLE-12710). - ntb: intel: Add Icelake (gen4) support for Intel NTB (jsc#SLE-12710). - ntb: intel: fix static declaration (jsc#SLE-12710). - nvdimm: Avoid race between probe and reading device attributes (bsc#1170442). - nvme-fc: avoid gcc-10 zero-length-bounds warning (bsc#1173206). - nvme-fc: do not call nvme_cleanup_cmd() for AENs (bsc#1171688). - nvme-fc: print proper nvme-fc devloss_tmo value (bsc#1172391). - objtool: Allow no-op CFI ops in alternatives (bsc#1169514). - objtool: Clean instruction state before each function validation (bsc#1169514). - objtool: Fix !CFI insn_state propagation (bsc#1169514). - objtool: Fix ORC vs alternatives (bsc#1169514). - objtool: Ignore empty alternatives (bsc#1169514). - objtool: Remove check preventing branches within alternative (bsc#1169514). - objtool: Rename struct cfi_state (bsc#1169514). - objtool: Uniquely identify alternative instruction groups (bsc#1169514). - p54usb: add AirVasT USB stick device-id (git-fixes). - panic: do not print uninitialized taint_flags (bsc#1172814). - PCI: Allow pci_resize_resource() for devices on root bus (git-fixes). - PCI: amlogic: meson: Do not use FAST_LINK_MODE to set up link (git-fixes). - PCI: brcmstb: Assert fundamental reset on initialization (git-fixes). - PCI: brcmstb: Assert fundamental reset on initialization (git-fixes). - PCI: brcmstb: Fix window register offset from 4 to 8 (git-fixes). - PCI: brcmstb: Fix window register offset from 4 to 8 (git-fixes). - pcie: mobiveil: remove patchset v9 Prepare to backport upstream version. - PCI: Fix pci_register_host_bridge() device_register() error handling (git-fixes). - PCI: mobiveil: Add 8-bit and 16-bit CSR register accessors (bsc#1161495). - PCI: mobiveil: Add callback function for interrupt initialization (bsc#1161495). - PCI: mobiveil: Add callback function for link up check (bsc#1161495). - PCI: mobiveil: Add Header Type field check (bsc#1161495). - PCI: mobiveil: Add PCIe Gen4 RC driver for Layerscape SoCs (bsc#1161495). - PCI: mobiveil: Allow mobiveil_host_init() to be used to re-init host (bsc#1161495). - PCI: mobiveil: Collect the interrupt related operations into a function (bsc#1161495). - PCI: mobiveil: Fix sparse different address space warnings (bsc#1161495). - PCI: mobiveil: Fix unmet dependency warning for PCIE_MOBIVEIL_PLAT (bsc#1161495). - PCI: mobiveil: Introduce a new structure mobiveil_root_port (bsc#1161495). - PCI: mobiveil: ls_pcie_g4: add Workaround for A-011451 (bsc#1161495). - PCI: mobiveil: ls_pcie_g4: add Workaround for A-011577 (bsc#1161495). - PCI: mobiveil: ls_pcie_g4: fix SError when accessing config space (bsc#1161495). - PCI: mobiveil: Modularize the Mobiveil PCIe Host Bridge IP driver (bsc#1161495). - PCI: mobiveil: Move the host initialization into a function (bsc#1161495). - PCI/PM: Adjust pcie_wait_for_link_delay() for caller delay (git-fixes). - PCI/PM: Call .bridge_d3() hook only if non-NULL (git-fixes). - PCI: Program MPS for RCiEP devices (git-fixes). - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port (git-fixes). - PCI: rcar: Fix incorrect programming of OB windows (git-fixes). - PCI: v3-semi: Fix a memory leak in v3_pci_probe() error handling paths (git-fixes). - PCI: vmd: Filter resource type bits from shadow register (git-fixes). - pcm_native: result of put_user() needs to be checked (git-fixes). - perf/core: Fix endless multiplex timer (git-fixes). - perf/core: fix parent pid/tid in task exit events (git-fixes). - pinctrl: freescale: imx: Fix an error handling path in 'imx_pinctrl_probe()' (git-fixes). - pinctrl: freescale: imx: Use 'devm_of_iomap()' to avoid a resource leak in case of error in 'imx_pinctrl_probe()' (git-fixes). - pinctrl: imxl: Fix an error handling path in 'imx1_pinctrl_core_probe()' (git-fixes). - pinctrl: intel: Add Intel Tiger Lake pin controller support (jsc#SLE-12737). - pinctrl: ocelot: Fix GPIO interrupt decoding on Jaguar2 (git-fixes). - pinctrl: rza1: Fix wrong array assignment of rza1l_swio_entries (git-fixes). - pinctrl: samsung: Correct setting of eint wakeup mask on s5pv210 (git-fixes). - pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE GPIOs (git-fixes). - pinctrl: sprd: Fix the incorrect pull-up definition (git-fixes). - pinctrl: stmfx: stmfx_pinconf_set does not require to get direction anymore (git-fixes). - pinctrl: tigerlake: Tiger Lake uses _HID enumeration (jsc#SLE-12737). - platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA (git-fixes). - platform/x86: dell-laptop: do not register micmute LED if there is no token (git-fixes). - platform/x86: intel-vbtn: Also handle tablet-mode switch on "Detachable" and "Portable" chassis-types (git-fixes). - platform/x86: intel-vbtn: Do not advertise switches to userspace if they are not there (git-fixes). - platform/x86: intel-vbtn: Only blacklist SW_TABLET_MODE on the 9 / "Laptop" chasis-type (git-fixes). - platform/x86: intel-vbtn: Split keymap into buttons and switches parts (git-fixes). - platform/x86: intel-vbtn: Use acpi_evaluate_integer() (git-fixes). - PM: runtime: clk: Fix clk_pm_runtime_get() error path (git-fixes). - pnp: Use list_for_each_entry() instead of open coding (git-fixes). - powerpc/64s: Do not let DT CPU features set FSCR_DSCR (bsc#1065729). - powerpc/64s/exception: Fix machine check no-loss idle wakeup (bsc#1156395). - powerpc/64s/kuap: Restore AMR in system reset exception (bsc#1156395). - powerpc/64s: Save FSCR to init_task.thread.fscr after feature init (bsc#1065729). - powerpc/book3s64: Export has_transparent_hugepage() related functions (bsc#1171759). - powerpc/bpf: Enable bpf_probe_read{, str}() on powerpc again (bsc#1172344). - powerpc/fadump: Account for memory_limit while reserving memory (jsc#SLE-9099 git-fixes). - powerpc/fadump: consider reserved ranges while reserving memory (jsc#SLE-9099 git-fixes). - powerpc/fadump: use static allocation for reserved memory ranges (jsc#SLE-9099 git-fixes). - powerpc/kuap: PPC_KUAP_DEBUG should depend on PPC_KUAP (bsc#1156395). - powerpc/powernv: Fix a warning message (bsc#1156395). - powerpc/setup_64: Set cache-line-size based on cache-block-size (bsc#1065729). - powerpc/xive: Clear the page tables for the ESB IO mapping (bsc#1085030). - power: reset: qcom-pon: reg write mask depends on pon generation (git-fixes). - power: supply: bq24257_charger: Replace depends on REGMAP_I2C with select (git-fixes). - power: supply: core: fix HWMON temperature labels (git-fixes). - power: supply: core: fix memory leak in HWMON error path (git-fixes). - power: supply: lp8788: Fix an error handling path in 'lp8788_charger_probe()' (git-fixes). - power: supply: smb347-charger: IRQSTAT_D is volatile (git-fixes). - printk: queue wake_up_klogd irq_work only if per-CPU areas are ready (bsc#1172095). - proc/meminfo: avoid open coded reading of vm_committed_as (bnc#1173271). - pwm: sun4i: Move pwm_calculate() out of spin_lock() (git-fixes). - r8152: support additional Microsoft Surface Ethernet Adapter variant (git-fixes). - r8169: Revive default chip version for r8168 (bsc#1173085). - raid5: remove gfp flags from scribble_alloc() (bsc#1166985). - random: fix data races at timer_rand_state (bsc#1173438). - rcu: Avoid data-race in rcu_gp_fqs_check_wake() (bsc#1171828). - rcu: Fix data-race due to atomic_t copy-by-value (bsc#1171828). - rcu: Make rcu_read_unlock_special() checks match raise_softirq_irqoff() (bsc#1172046). - rcu: Simplify rcu_read_unlock_special() deferred wakeups (bsc#1172046). - rcutorture: Add 100-CPU configuration (bsc#1173068). - rcutorture: Add worst-case call_rcu() forward-progress results (bsc#1173068). - rcutorture: Dispense with Dracut for initrd creation (bsc#1173068). - rcutorture: Make kvm-find-errors.sh abort on bad directory (bsc#1173068). - rcutorture: Remove CONFIG_HOTPLUG_CPU=n from scenarios (bsc#1173068). - rcutorture: Summarize summary of build and run results (bsc#1173068). - rcutorture: Test TREE03 with the threadirqs kernel boot parameter (bsc#1173068). - rcu: Use *_ONCE() to protect lockless ->expmask accesses (bsc#1171828). - rcu: Use WRITE_ONCE() for assignments to ->pprev for hlist_nulls (bsc#1173438). - RDMA/bnxt_re: Remove dead code from rcfw (bsc#1170774). - RDMA/core: Move and rename trace_cm_id_create() (jsc#SLE-8449). - RDMA/mlx5: Fix NULL pointer dereference in destroy_prefetch_work (jsc#SLE-8446). - RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET (bsc#1172841). - RDMA/srpt: Fix disabling device management (jsc#SLE-8449). - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated (jsc#SLE-8449). - remoteproc: Add missing '\n' in log messages (git-fixes). - remoteproc: Fall back to using parent memory pool if no dedicated available (git-fixes). - remoteproc: Fix and restore the parenting hierarchy for vdev (git-fixes). - remoteproc: Fix IDR initialisation in rproc_alloc() (git-fixes). - Revert "drm/amd/display: disable dcn20 abm feature for bring up" (git-fixes). - Revert "fs/seq_file.c: seq_read(): add info message about buggy .next functions" (bsc#1172751) The message floods dmesg and its benefit is marginal in default kernel. - Revert "pinctrl: freescale: imx: Use 'devm_of_iomap()' to avoid a resource leak in case of error in 'imx_pinctrl_probe()'" (git-fixes). - rpm/kernel-source.spec.in: Add obsolete_rebuilds (boo#1172073). - rpm/modules.fips: * add aes-ce-ccm and des3_ede-x86_64 (boo#173030) * add aes_ti and aes_neon_bs (boo#1172956) - rtc: mc13xxx: fix a double-unlock issue (git-fixes). - rtc: rv3028: Add missed check for devm_regmap_init_i2c() (git-fixes). - rtlwifi: Fix a double free in _rtl_usb_tx_urb_setup() (git-fixes). - rtw88: fix an issue about leak system resources (git-fixes). - rxrpc: Fix call RCU cleanup using non-bh-safe locks (git-fixes). - s390/bpf: Maintain 8-byte stack alignment (bsc#1169194, LTC#185911). - s390/pci: Log new handle in clp_disable_fh() (git-fixes). - sched/cfs: change initial value of runnable_avg (bsc#1158765). - sched/core: Check cpus_mask, not cpus_ptr in __set_cpus_allowed_ptr(), to fix mask corruption (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/core: Fix PI boosting between RT and DEADLINE tasks (bsc#1172823). - sched/core: Fix PI boosting between RT and DEADLINE tasks (git fixes (sched)). - sched/core: Fix ttwu() race (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/core: s/WF_ON_RQ/WQ_ON_CPU/ (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/cpuacct: Fix charge cpuacct.usage_sys (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/deadline: Initialize ->dl_boosted (bsc#1172823). - sched/deadline: Initialize ->dl_boosted (git fixes (sched)). - sched: etf: do not assume all sockets are full blown (networking-stable-20_04_27). - sched/fair: find_idlest_group(): Remove unused sd_flag parameter (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Fix enqueue_task_fair() warning some more (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: fix nohz next idle balance (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Optimize dequeue_task_fair() (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Optimize enqueue_task_fair() (bnc#1155798 (CPU scheduler functional and performance backports)). - sched/fair: Simplify the code of should_we_balance() (bnc#1155798 (CPU scheduler functional and performance backports)). - sched: Make newidle_balance() static again (bnc#1155798 (CPU scheduler functional and performance backports)). - sched: Offload wakee task activation if it the wakee is descheduling (bnc#1158748, bnc#1159781). - sched: Optimize ttwu() spinning on p->on_cpu (bnc#1158748, bnc#1159781). - sched/pelt: Sync util/runnable_sum with PELT window when propagating (bnc#1155798 (CPU scheduler functional and performance backports)). - scripts/decodecode: fix trapping instruction formatting (bsc#1065729). - scsi: ibmvscsi: Do not send host info in adapter info MAD after LPM (bsc#1172759 ltc#184814). - scsi: lpfc: Change default queue allocation for reduced memory consumption (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Copyright updates for 12.6.0.4 patches (bsc#1171530). - scsi: lpfc: fix build failure with DEBUGFS disabled (bsc#1171530). - scsi: lpfc: Fix incomplete NVME discovery when target (bsc#1171530). - scsi: lpfc: Fix lpfc_nodelist leak when processing unsolicited event (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Fix MDS Diagnostic Enablement definition (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Fix memory leak on lpfc_bsg_write_ebuf_set func (bsc#1171530). - scsi: lpfc: Fix negation of else clause in lpfc_prep_node_fc4type (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Fix noderef and address space warnings (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: fix spelling mistakes of asynchronous (bsc#1171530). - scsi: lpfc: Maintain atomic consistency of queue_claimed flag (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Make lpfc_defer_acc_rsp static (bsc#1171530). - scsi: lpfc: remove duplicate unloading checks (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Remove re-binding of nvme rport during registration (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Remove redundant initialization to variable rc (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Remove unnecessary lockdep_assert_held calls (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: lpfc: Update lpfc version to 12.8.0.1 (bsc#1164777 bsc#1164780 bsc#1165211 jsc#SLE-8654). - scsi: megaraid_sas: Replace undefined MFI_BIG_ENDIAN macro with __BIG_ENDIAN_BITFIELD macro (bsc#1173206). - scsi: qla2xxx: Delete all sessions before unregister local nvme port (jsc#SLE-9714 jsc#SLE-10327 jsc#SLE-10334 bsc#1157169). - scsi: qla2xxx: Do not log message when reading port speed via sysfs (jsc#SLE-9714 jsc#SLE-10327 jsc#SLE-10334 bsc#1157169). - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV (jsc#SLE-9714 jsc#SLE-10327 jsc#SLE-10334 bsc#1157169). - scsi: sd_zbc: Fix sd_zbc_complete() (bsc#1173206). - scsi: smartpqi: Update attribute name to `driver_version` (bsc#1173206). - scsi: zfcp: add diagnostics buffer for exchange config data (bsc#1158050). - scsi: zfcp: auto variables for dereferenced structs in open port handler (bsc#1158050). - scsi: zfcp: diagnostics buffer caching and use for exchange port data (bsc#1158050). - scsi: zfcp: enhance handling of FC Endpoint Security errors (bsc#1158050). - scsi: zfcp: expose fabric name as common fc_host sysfs attribute (bsc#1158050). - scsi: zfcp: Fence adapter status propagation for common statuses (bsc#1158050). - scsi: zfcp: Fence early sysfs interfaces for accesses of shost objects (bsc#1158050). - scsi: zfcp: Fence fc_host updates during link-down handling (bsc#1158050). - scsi: zfcp: fix fc_host attributes that should be unknown on local link down (bsc#1158050). - scsi: zfcp: fix wrong data and display format of SFP+ temperature (bsc#1158050). - scsi: zfcp: implicitly refresh config-data diagnostics when reading sysfs (bsc#1158050). - scsi: zfcp: implicitly refresh port-data diagnostics when reading sysfs (bsc#1158050). - scsi: zfcp: introduce sysfs interface for diagnostics of local SFP transceiver (bsc#1158050). - scsi: zfcp: introduce sysfs interface to read the local B2B-Credit (bsc#1158050). - scsi: zfcp: log FC Endpoint Security errors (bsc#1158050). - scsi: zfcp: log FC Endpoint Security of connections (bsc#1158050). - scsi: zfcp: Move allocation of the shost object to after xconf- and xport-data (bsc#1158050). - scsi: zfcp: Move fc_host updates during xport data handling into fenced function (bsc#1158050). - scsi: zfcp: move maximum age of diagnostic buffers into a per-adapter variable (bsc#1158050). - scsi: zfcp: Move p-t-p port allocation to after xport data (bsc#1158050). - scsi: zfcp: Move shost modification after QDIO (re-)open into fenced function (bsc#1158050). - scsi: zfcp: Move shost updates during xconfig data handling into fenced function (bsc#1158050). - scsi: zfcp: proper indentation to reduce confusion in zfcp_erp_required_act (bsc#1158050). - scsi: zfcp: report FC Endpoint Security in sysfs (bsc#1158050). - scsi: zfcp: signal incomplete or error for sync exchange config/port data (bsc#1158050). - scsi: zfcp: support retrieval of SFP Data via Exchange Port Data (bsc#1158050). - scsi: zfcp: trace FC Endpoint Security of FCP devices and connections (bsc#1158050). - scsi: zfcp: wire previously driver-specific sysfs attributes also to fc_host (bsc#1158050). - selftests/bpf: CONFIG_IPV6_SEG6_BPF required for test_seg6_loop.o (bsc#1155518). - selftests/bpf: CONFIG_LIRC required for test_lirc_mode2.sh (bsc#1155518). - selftests/bpf: Fix invalid memory reads in core_relo selftest (bsc#1155518). - selftests/bpf: Fix memory leak in extract_build_id() (bsc#1155518). - selftests/bpf, flow_dissector: Close TAP device FD after the test (bsc#1155518). - selftests/timens: handle a case when alarm clocks are not supported (bsc#1164648,jsc#SLE-11493). - serial: 8250: Fix max baud limit in generic 8250 port (git-fixes). - slimbus: core: Fix mismatch in of_node_get/put (git-fixes). - soc: mediatek: cmdq: return send msg error code (git-fixes). - soc: qcom: rpmh: Dirt can only make you dirtier, not cleaner (git-fixes). - soc: qcom: rpmh: Invalidate SLEEP and WAKE TCSes before flushing new data (git-fixes). - soc: qcom: rpmh-rsc: Allow using free WAKE TCS for active request (git-fixes). - soc: qcom: rpmh-rsc: Clear active mode configuration for wake TCS (git-fixes). - soc: qcom: rpmh: Update dirty flag only when data changes (git-fixes). - soc/tegra: pmc: Select GENERIC_PINCONF (git-fixes). - spi: bcm2835aux: Fix controller unregister order (git-fixes). - spi: bcm2835: Fix controller unregister order (git-fixes). - spi: bcm-qspi: Handle clock probe deferral (git-fixes). - spi: bcm-qspi: when tx/rx buffer is NULL set to 0 (git-fixes). - SPI: designware: pci: Switch over to MSI interrupts (jsc#SLE-12735). - spi: dt-bindings: spi-controller: Fix #address-cells for slave mode (git-fixes). - spi: dw: Add SPI Rx-done wait method to DMA-based transfer (git-fixes). - spi: dw: Add SPI Tx-done wait method to DMA-based transfer (git-fixes). - spi: dw: Fix controller unregister order (git-fixes). - spi: dw: Fix native CS being unset (git-fixes). - spi: dw-pci: Add MODULE_DEVICE_TABLE (jsc#SLE-12735). - spi: dw-pci: Add runtime power management support (jsc#SLE-12735). - spi: dw-pci: Add support for Intel Elkhart Lake PSE SPI (jsc#SLE-12735). - spi: dw-pci: Fix Chip Select amount on Intel Elkhart Lake PSE SPI (jsc#SLE-12735). - spi: dw: use "smp_mb()" to avoid sending spi data error (git-fixes). - spi: dw: Zero DMA Tx and Rx configurations on stack (git-fixes). - spi: Fix controller unregister order (git-fixes). - spi: fsl: do not map irq during probe (git-fixes). - spi: fsl: use platform_get_irq() instead of of_irq_to_resource() (git-fixes). - spi: pxa2xx: Fix controller unregister order (git-fixes). - spi: pxa2xx: Fix runtime PM ref imbalance on probe error (git-fixes). - spi: Respect DataBitLength field of SpiSerialBusV2() ACPI resource (git-fixes). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (git-fixes). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (git-fixes). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (git-fixes). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (git-fixes). - spi: spi-mem: Fix Dual/Quad modes on Octal-capable devices (git-fixes). - staging: iio: ad2s1210: Fix SPI reading (git-fixes). - staging: kpc2000: fix error return code in kp2000_pcie_probe() (git-fixes). - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK (git-fixes). - staging: sm750fb: add missing case while setting FB_VISUAL (git-fixes). - sun6i: dsi: fix gcc-4.8 (bsc#1152489) - SUNRPC: Signalled ASYNC tasks need to exit (git-fixes). - supported.conf: Add pinctrl-tigerlake as supported - supported.conf: Mark two hwtracing helper modules as externally supported (bsc#1170879) - svcrdma: Fix leak of svc_rdma_recv_ctxt objects (git-fixes). - tcp: cache line align MAX_TCP_HEADER (networking-stable-20_04_27). - team: fix hang in team_mode_get() (networking-stable-20_04_27). - thermal: intel: intel_pch_thermal: Add Comet Lake (CML) platform support (jsc#SLE-12668). - tick/sched: Annotate lockless access to last_jiffies_update (bsc#1173438). - timer: Use hlist_unhashed_lockless() in timer_pending() (bsc#1173438). - torture: Allow "CFLIST" to specify default list of scenarios (bsc#1173068). - torture: Expand last_ts variable in kvm-test-1-run.sh (bsc#1173068). - torture: Handle jitter for CPUs that cannot be offlined (bsc#1173068). - torture: Handle systems lacking the mpstat command (bsc#1173068). - torture: Hoist calls to lscpu to higher-level kvm.sh script (bsc#1173068). - torture: Make results-directory date format completion-friendly (bsc#1173068). - torture: Use gawk instead of awk for systime() function (bsc#1173068). - tpm: ibmvtpm: retry on H_CLOSED in tpm_ibmvtpm_send() (bsc#1065729). - tty: n_gsm: Fix bogus i++ in gsm_data_kick (git-fixes). - tty: n_gsm: Fix SOF skipping (git-fixes). - tty: n_gsm: Fix waking up upper tty layer when room available (git-fixes). - tty: serial: add missing spin_lock_init for SiFive serial console (git-fixes). - tun: correct header offsets in napi frags mode (git-fixes). - Update config files: Add CONFIG_PINCTRL_TIGERLAKE=m - Update patch reference for intel_th patch (jsc#SLE-12705) - Update the patch reference for ish-hid fix (jsc#SLE-12683) - usb: core: Fix misleading driver bug report (git-fixes). - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B (git-fixes). - usb: dwc2: gadget: move gadget resume after the core is in L0 state (git-fixes). - usb: dwc3: gadget: Properly handle ClearFeature(halt) (git-fixes). - usb: dwc3: gadget: Properly handle failed kick_transfer (git-fixes). - usb: dwc3: pci: Enable extcon driver for Intel Merrifield (git-fixes). - usb: gadget: audio: Fix a missing error return value in audio_bind() (git-fixes). - usb: gadget: fix illegal array access in binding with UDC (git-fixes). - usb: gadget: fix potential double-free in m66592_probe (git-fixes). - usb: gadget: legacy: fix error return code in cdc_bind() (git-fixes). - usb: gadget: legacy: fix error return code in gncm_bind() (git-fixes). - usb: gadget: legacy: fix redundant initialization warnings (git-fixes). - usb: gadget: lpc32xx_udc: do not dereference ep pointer before null check (git-fixes). - usb: gadget: net2272: Fix a memory leak in an error handling path in 'net2272_plat_probe()' (git-fixes). - usb: gadget: udc: atmel: Make some symbols static (git-fixes). - usb: gadget: udc: s3c2410_udc: Remove pointless NULL check in s3c2410_udc_nuke (git-fixes). - usb: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe() (git-fixes). - usb: host: xhci-plat: keep runtime active when removing host (git-fixes). - usb: musb: Fix runtime PM imbalance on error (git-fixes). - usb: musb: start session in resume for host port (git-fixes). - usb: ohci-sm501: fix error return code in ohci_hcd_sm501_drv_probe() (git-fixes). - usb: serial: option: add Telit LE910C1-EUX compositions (git-fixes). - usb: serial: qcserial: add DW5816e QDL support (git-fixes). - usb: serial: usb_wwan: do not resubmit rx urb on fatal errors (git-fixes). - usb: usbfs: correct kernel->user page attribute mismatch (git-fixes). - usb: usbfs: fix mmap dma mismatch (git-fixes). - vfio: avoid possible overflow in vfio_iommu_type1_pin_pages (git-fixes). - vfio: Ignore -ENODEV when getting MSI cookie (git-fixes). - vfio/mdev: Fix reference count leak in add_mdev_supported_type (git-fixes). - vfio/pci: fix memory leaks in alloc_perm_bits() (git-fixes). - vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() (git-fixes). - video: fbdev: w100fb: Fix a potential double free (git-fixes). - virtio-blk: handle block_device_operations callbacks after hot unplug (git fixes (block drivers)). - vmxnet3: add geneve and vxlan tunnel offload support (bsc#1172484). - vmxnet3: add support to get/set rx flow hash (bsc#1172484). - vmxnet3: allow rx flow hash ops only when rss is enabled (bsc#1172484). - vmxnet3: prepare for version 4 changes (bsc#1172484). - vmxnet3: update to version 4 (bsc#1172484). - vmxnet3: use correct hdr reference when packet is encapsulated (bsc#1172484). - vrf: Check skb for XFRM_TRANSFORMED flag (networking-stable-20_04_27). - vrf: Fix IPv6 with qdisc and xfrm (networking-stable-20_04_27). - vsprintf: do not obfuscate NULL and error pointers (bsc#1172086). - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (git-fixes). - vt: vt_ioctl: remove unnecessary console allocation checks (git-fixes). - vxlan: use the correct nlattr array in NL_SET_ERR_MSG_ATTR (networking-stable-20_04_27). - w1: omap-hdq: cleanup to add missing newline for some dev_dbg (git-fixes). - watchdog: imx_sc_wdt: Fix reboot on crash (git-fixes). - wcn36xx: Fix error handling path in 'wcn36xx_probe()' (git-fixes). - wireguard: device: avoid circular netns references (git-fixes). - wireguard: noise: do not assign initiation time in if condition (git-fixes). - wireguard: noise: read preshared key while taking lock (bsc#1169021 jsc#SLE-12250). - wireguard: noise: separate receive counter from send counter (bsc#1169021 jsc#SLE-12250). - wireguard: queueing: preserve flow hash across packet scrubbing (bsc#1169021 jsc#SLE-12250). - wireguard: receive: account for napi_gro_receive never returning GRO_DROP (git-fixes). - wireguard: selftests: use newer iproute2 for gcc-10 (bsc#1169021 jsc#SLE-12250). - work around mvfs bug (bsc#1162063). - workqueue: do not use wq_select_unbound_cpu() for bound works (git-fixes). - workqueue: Remove the warning in wq_worker_sleeping() (git-fixes). - x86/cpu/amd: Make erratum #1054 a legacy erratum (bsc#1152489). - x86: Fix early boot crash on gcc-10, third try (bsc#1152489). - x86/mm/cpa: Flush direct map alias during cpa (bsc#1152489). - x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (git-fixes). - x86/reboot/quirks: Add MacBook6,1 reboot quirk (git-fixes). - x86/resctrl: Fix invalid attempt at removing the default resource group (bsc#1152489). - x86/resctrl: Preserve CDP enable over CPU hotplug (bsc#1152489). - x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive tasks (bsc#1058115). - xfrm: Always set XFRM_TRANSFORMED in xfrm{4,6}_output_finish (networking-stable-20_04_27). - xfrm: fix error in comment (git fixes (block drivers)). - xfs: clean up the error handling in xfs_swap_extents (git-fixes). - xfs: do not commit sunit/swidth updates to disk if that would cause repair failures (bsc#1172169). - xfs: do not fail unwritten extent conversion on writeback due to edquot (bsc#1158242). - xfs: fix duplicate verification from xfs_qm_dqflush() (git-fixes). - xfs: force writes to delalloc regions to unwritten (bsc#1158242). - xfs: measure all contiguous previous extents for prealloc size (bsc#1158242). - xfs: preserve default grace interval during quotacheck (bsc#1172170). - xfs: refactor agfl length computation function (bsc#1172169). - xfs: split the sunit parameter update into two parts (bsc#1172169). - wireguard: selftests: initalize ipv6 members to NULL to squelch clang warning (git-fixes). kernel-debug-5.3.18-lp152.26.2.nosrc.rpm True kernel-debug-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-debug-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-base-5.3.18-lp152.26.2.lp152.8.2.2.src.rpm True kernel-default-base-5.3.18-lp152.26.2.lp152.8.2.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-lp152.26.2.lp152.8.2.2.x86_64.rpm True kernel-default-5.3.18-lp152.26.2.nosrc.rpm True kernel-default-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-default-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-docs-5.3.18-lp152.26.2.noarch.rpm True kernel-docs-5.3.18-lp152.26.2.nosrc.rpm True kernel-docs-html-5.3.18-lp152.26.2.noarch.rpm True kernel-kvmsmall-5.3.18-lp152.26.2.nosrc.rpm True kernel-kvmsmall-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-kvmsmall-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-obs-build-5.3.18-lp152.26.2.src.rpm True kernel-obs-build-5.3.18-lp152.26.2.x86_64.rpm True kernel-obs-build-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-obs-qa-5.3.18-lp152.26.2.src.rpm True kernel-obs-qa-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-5.3.18-lp152.26.2.nosrc.rpm True kernel-preempt-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-debugsource-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-devel-5.3.18-lp152.26.2.x86_64.rpm True kernel-preempt-devel-debuginfo-5.3.18-lp152.26.2.x86_64.rpm True kernel-devel-5.3.18-lp152.26.2.noarch.rpm True kernel-macros-5.3.18-lp152.26.2.noarch.rpm True kernel-source-5.3.18-lp152.26.2.noarch.rpm True kernel-source-5.3.18-lp152.26.2.src.rpm True kernel-source-vanilla-5.3.18-lp152.26.2.noarch.rpm True kernel-syms-5.3.18-lp152.26.2.src.rpm True kernel-syms-5.3.18-lp152.26.2.x86_64.rpm True openSUSE-2020-920 moderate openSUSE Leap 15.2 Update This update for fmt fixes the following issues: - Fixed incorrect pkg-config file paths (boo#1173270) fmt-6.2.1-lp152.2.3.1.src.rpm fmt-debugsource-6.2.1-lp152.2.3.1.x86_64.rpm fmt-devel-6.2.1-lp152.2.3.1.x86_64.rpm libfmt6-6.2.1-lp152.2.3.1.x86_64.rpm libfmt6-debuginfo-6.2.1-lp152.2.3.1.x86_64.rpm openSUSE-2020-921 important openSUSE Leap 15.2 Update This update for lvm2 fixes the following issues: - Fix potential data loss problem with LVM cache (bsc#1172566) This update was imported from the SUSE:SLE-15-SP2:Update update project. liblvm2cmd2_03-2.03.05-lp152.7.3.1.x86_64.rpm liblvm2cmd2_03-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-2.03.05-lp152.7.3.1.src.rpm lvm2-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-debugsource-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-devel-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-testsuite-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-testsuite-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm device-mapper-1.02.163-lp152.7.3.1.x86_64.rpm device-mapper-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm device-mapper-devel-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm lvm2-device-mapper-2.03.05-lp152.7.3.1.src.rpm lvm2-device-mapper-debugsource-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-lockd-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-lockd-debuginfo-2.03.05-lp152.7.3.1.x86_64.rpm lvm2-lvmlockd-2.03.05-lp152.7.3.1.src.rpm lvm2-lvmlockd-debugsource-2.03.05-lp152.7.3.1.x86_64.rpm liblvm2cmd2_03-2.03.05-lp152.7.3.1.i586.rpm liblvm2cmd2_03-debuginfo-2.03.05-lp152.7.3.1.i586.rpm lvm2-2.03.05-lp152.7.3.1.i586.rpm lvm2-debuginfo-2.03.05-lp152.7.3.1.i586.rpm lvm2-debugsource-2.03.05-lp152.7.3.1.i586.rpm lvm2-devel-2.03.05-lp152.7.3.1.i586.rpm lvm2-testsuite-2.03.05-lp152.7.3.1.i586.rpm lvm2-testsuite-debuginfo-2.03.05-lp152.7.3.1.i586.rpm device-mapper-1.02.163-lp152.7.3.1.i586.rpm device-mapper-debuginfo-1.02.163-lp152.7.3.1.i586.rpm device-mapper-devel-1.02.163-lp152.7.3.1.i586.rpm device-mapper-devel-32bit-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-1.02.163-lp152.7.3.1.i586.rpm libdevmapper-event1_03-32bit-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-32bit-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper-event1_03-debuginfo-1.02.163-lp152.7.3.1.i586.rpm libdevmapper1_03-1.02.163-lp152.7.3.1.i586.rpm libdevmapper1_03-32bit-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-32bit-debuginfo-1.02.163-lp152.7.3.1.x86_64.rpm libdevmapper1_03-debuginfo-1.02.163-lp152.7.3.1.i586.rpm lvm2-device-mapper-debugsource-2.03.05-lp152.7.3.1.i586.rpm lvm2-lockd-2.03.05-lp152.7.3.1.i586.rpm lvm2-lockd-debuginfo-2.03.05-lp152.7.3.1.i586.rpm lvm2-lvmlockd-debugsource-2.03.05-lp152.7.3.1.i586.rpm openSUSE-2020-973 moderate openSUSE Leap 15.2 Update This update for kubernetes, kubernetes1.17, kubernetes1.18 fixes the following issues: - kubernetes 1.18 was updated to 1.18.4 and kubernetes 1.17 to 1.17.7 Changes in kubernetes1.18: Update to version 1.18.4: * enable floating IP for IPv6 * Extend AWS azToRegion method to support Local Zones and other partitions * kubelet: block non-forwarded packets from crossing the localhost boundary * Deflake port-forward e2e test * Fix fieldType being dropped by older go-clients * FieldManager: Reset if we receive nil or a list with one empty item * set dest prefix and port for IPv6 sg rule * fieldManager: Ignore and log all errors when updating managedFields * Make kubectl tolerate other versions of the CSR API * Changes to ManagedFields is not mutation for GC * fix a number of unbounded dimensions in request metrics * build: Use debian-hyperkube-base@v1.0.0 image * Check for GCE finalizer in GetLoadBalancer. * Fix csi-provisioner image for pd csi driver * hyperkube: Build v1.0.0 image * build: Add dependency entries for debian-hyperkube-base * Update CNI to v0.8.6 * Fix public IP not shown issues after assigning public IP to Azure VMs * Skip Pod Conditions from scheduling queue updates * add test for finalizers * skip unnecessary scheduling attempt when pod's finalizers change * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.3 * Add back anti-affinity to kube-dns pods. * Check for empty zone string * Azure - do not use 0 zone or empty string for zone when creating PVs * Fix client-ca dynamic reload in apiserver * Fix exclusive CPU allocations being deleted at container restart * Update strategy used to reuse CPUs from init containers in CPUManager Update to version 1.18.3: * Move nfs-provisioner from quay.io/kubernetes_incubator to staging-csi * Use staging-csi to work around quay.io availability * Azure: support non-VMSS instances removal * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs * count no nodes scheduling failure as unschedulable instead of error * kubeadm: fix flakes when performing etcd MemberAdd on slower setups * base-images: Update to kube-cross:v1.13.9-5 * build: Alpha-sort dependencies.yaml * fix: azure disk dangling attach issue * kube-proxy: increase the session affinity timeout to ensure that the test passes in ipvs mode * cluster: ipvs conntrack module vs kernel version * allow k8s.io/kubernetes/third_party/forked/ipvs in e2e test framework import restrictions (transitive dep from pkg/kubemark) * add license headers for third_party/forked/ipvs * third_party/forked/ipvs: check the address family if the netlink address family attribute is not set * run hack/update-vendor.sh to remove github.com/docker/libnetwork * remove github.com/docker/libnetwork from go.mod * update pkg/util/ipvs to use third_party/forked/ipvs * move github.com/docker/libnetwork/ipvs to third_party/forked * fix backoff manager timer initialization race * fix: ACR auth fails in private azure clouds * Restore cache-control header filter * kube-scheduler: compatibility with ServerSideApply * bugfix: initcontainer wasn't considered when calculate resource request * fix: azure file csi migration failure * Fix flaws in Azure CSI translation * Revert "stop defaulting kubeconfig to http://localhost:8080" * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.2 * Fix Node initialization for GCP cloud provider * Simplify unregistration of csiplugin * Unregister csiplugin even if socket path is gone * Move PSP tests behind a feature tag * kube-openapi bump to release-1.18 * Preserve int/float distinction when decoding raw values * Check Annotations map against nil for ConfigMapLock#Update() * Fix CSINodeInfo startup * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] Update to version 1.18.2: * Fix GCE ILB for large clusters * Restore the ability to `kubectl apply --prune` without -n flag * Fix client watch reestablishment handling of client-side timeouts * Fix priorityClass typo, add numeric priority to static pods * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.1 * Test dropped round-trip annotations in HPA conversion * Drop round-trip annotations in HPA conversion * Skip updating cache on pod update if the node was deleted - kubelet-common: conflict with other instances of kubelet-common and require kubernetes-kubelet%{baseversion} Update to version 1.18.1: * Ensure Azure availability zone is always in lower cases * Even with build error, kubectl apply should apply all valid resources * fix: update max azure disk max count * Ensure diff doesn't persist patches * Fix permissions for endpointslice controller * Clean up event messages for errors. * Allow list-resources.sh to continue if a resource fails to list * fix a bug where spn: prefix is unexpectedly added to kubeconfig apiserver-id setting * Adds integration test for apply failures when applying multiple resources * Fixes problem where kubectl apply stops after first error * fix cpu resource metric type by changing to counter * fix concurreny issue in lb creation * Kubeadm: fix Ready condition check * kubeadm: add missing RBAC for getting nodes on "upgrade apply" * Check that ImageInspect pointer is not nil * Fix bug about unintentional scale out during updating deployment. * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.0 * build/dependencies: Remove bazel WORKSPACE go_version check * deps: Update to Golang 1.13.9 * build: Remove kube-cross image building * Label Windows test as Serial. Changes in kubernetes1.17: Update to version 1.17.7: * Fix fieldType being dropped by older go-clients * FieldManager: Reset if we receive nil or a list with one empty item * enable floating IP for IPv6 * Extend AWS azToRegion method to support Local Zones and other partitions * kubelet: block non-forwarded packets from crossing the localhost boundary * Deflake port-forward e2e test * Skip Pod Conditions from scheduling queue updates * add test for finalizers * skip unnecessary scheduling attempt when pod's finalizers change * set dest prefix and port for IPv6 sg rule * Create class to call function at most every given period * fieldManager: Ignore and log all errors when updating managedFields * Make kubectl tolerate other versions of the CSR API * Changes to ManagedFields is not mutation for GC * fix a number of unbounded dimensions in request metrics * build: Use debian-hyperkube-base@v1.0.0 image * Source CNI plugins from gs://k8s-artifacts-cni/release * Update CNI to v0.8.6 * releng: Remove debian-hyperkube-base image building from this branch * Fix public IP not shown issues after assigning public IP to Azure VMs * fix: formating and typo * fix: address test failure and review comments * fix: add unit tests for truncate long subnet name on lb ip configuration * fix: should truncate long subnet name on lb rules * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.6 * kubeadm: fix flakes when performing etcd MemberAdd on slower setups * Add back anti-affinity to kube-dns pods. * Check for empty zone string * Azure - do not use 0 zone or empty string for zone when creating PVs * Fix client-ca dynamic reload in apiserver * Make updateAllocatedDevices() as a public method and call it in podresources api Update to version 1.17.6: * Azure: support non-VMSS instances removal * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs * count no nodes scheduling failure as unschedulable instead of error * base-images: Update to kube-cross:v1.13.9-5 * build: Alpha-sort dependencies.yaml * Work-around for missing metrics on CRI-O exited containers * fix: azure disk dangling attach issue * fix: ACR auth fails in private azure clouds * Restore cache-control header filter * bugfix: initcontainer wasn't considered when calculate resource request * fix: azure file csi migration failure * Fix flaws in Azure CSI translation * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.5 * Move PSP tests behind a feature tag * Fix code for 1.17 * kube-openapi bump to release-1.17 * Do not reset managedFields in status update strategy * Use discovery to test apply all status * Preserve int/float distinction when decoding raw values * All check for instanceID * Fix AWS eventual consistency of AttachDisk * fix: update max azure disk max count * Fix cherry-pick errors * Fix CSINodeInfo startup * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] Update to version 1.17.5: * Fix GCE ILB for large clusters * gce-addons: Make sure default/limit-range doesn't get overridden * Restore the ability to `kubectl apply --prune` without -n flag * Fix client watch reestablishment handling of client-side timeouts * Fix priorityClass typo, add numeric priority to static pods * Test dropped round-trip annotations in HPA conversion * Drop round-trip annotations in HPA conversion * Ensure Azure availability zone is always in lower cases * Clean up event messages for errors. * Fix permissions for endpointslice controller * Allow list-resources.sh to continue if a resource fails to list * Check that ImageInspect pointer is not nil * Fix bug about unintentional scale out during updating deployment. * kubeadm: increase timeouts in the etcd client * kubeadm: handle multiple members without names during concurrent join * build/dependencies: Remove bazel WORKSPACE go_version check * deps: Update to Golang 1.13.9 * build: Remove kube-cross image building * Fix the VMSS name and resource group name when updating VMSS for LoadBalancer backendPools. * Remove wait.Until for running Kubelet Bootstrap * Parallelize attach operations across different nodes for volumes that allow multi-attach * Add nil nodeinfo check in podFitsOnNode * fix: check disk status before disk azure disk * Update kube-openapi to release-1.17 * Update tag for structured-merge-diff to v2.0.1 * EndpointSlice and Endpoints should treat terminating pods the same * EndpointSliceTracker should track updated resource version * Ensuring EndpointSlices are not used for Windows kube-proxy implementations * Ensuring kube-proxy does not mutate shared EndpointSlices * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.4 * let image cache do sort on write instead of on read to avoid data * Removing kubectl get output e2e test * Fix VMSS cache content * Preserve target apiVersion when decoding into unstructured lists * Adding a temporary fix for kubectl get output e2e test * /readyz should start returning failure on shutdown initiation * test: don't use hardcoded pod count for memory limit test * Fixed in the GCE/PD in-tree volume logic to expose the max number of persistent-disks for each instance type correctly. * Honor status.podIP over status.podIPs, node.spec.podCIDR over node.spec.podCIDRs * fix: corrupted mount point in csi driver * fix: azure file mount timeout issue * fix behaviour of aws-load-balancer-security-groups annotation * fix: add remediation in azure disk attach/detach * Update to golang@1.13.8 * build: Enable kube-cross push/pull from K8s Infra GCR * build: Add justaugustus as reviewer * build: Add OWNERS on build-image/ * rename to sharedLimitWriter * address review feedback * Fix docker/journald logging conformance * fix get-kube authorization headers * Calling hcsshim instead of docker api to get stats for windows to greatly reduce latency * adding e2e test to ensure it takes less than 10 seconds to query kubelet stats for windows nodes * update golang.org/x/crypto * kube-proxy filter Load Balancer Status ingress * kube-proxy unit test FilterIncorrectIPVersion * add delays between goroutines for vm instance update * Updated test cos image to include runc-1.0.0-rc10 * Fix gce-cos-master-reboot test * Fix route conflicted operations when updating multiple routes together * fix: get azure disk lun timeout issue * Set up connection onClose prior to adding to connection map * fix: add azure disk migration support for CSINode * Add annotation annealing for migration for PVs and PVCs during syncVolume and syncClaim. This allows external-provisioners to pick up and delete volumes when they have been rolled up from previous kubernetes versions. * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.3 * Limit number of instances in single update to GCE target pool * Add code to fix kubelet/metrics memory issue. * Remove Error log for nil StartTime * CHANGELOG: Move changelogs into a subdir to delegate releng approvals * Enable selinux tags in make targets * Fix pending_pods, schedule_attempts_total was not recorded * Fixing Potential Race Condition in EndpointSlice Controller. * Restore statefulset conversion that populates apiVersion/kind in volume templates * Use standard default storage media type in local-up-cluster * changelog: clarify 1.17 upgrade requirements * Fix back off when scheduling cycle is delayed * blank out value for unbounded client label * update gopkg.in/yaml.v2 to v2.2.8 * set nil cache entry based on old cache * Revert "It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc." * Fix issue with GCE scripts assuming Python2. * Add/Update CHANGELOG-1.17.md for v1.17.2. * [1.17] No-op whitespace fix to CHANGELOG-1.17 to trigger a new 1.17 build * Update to golang@1.13.6 * Fix the bug PIP's DNS is deleted if no DNS label service annotation is set. * kubenet: replace gateway with cni result * Add/Update CHANGELOG-1.17.md for v1.17.1. * Fixes unnecessary creation of default SG and trying to delete non-provisioned SG by k8s system when annotation [service.beta.kubernetes.io/aws-load-balancer-security-groups] is present * Ensure a provider ID is set on a node if expected * Bind metrics-server containers to linux nodes to avoid Windows scheduling on kubernetes cluster includes linux nodes and windows nodes * Drop version from static openapi json file * Update to golang@1.13.5 * Revert reflector changes from PR #83520 from 1.17 * Fix IPv6 addresses lost issue in pure ipv6 vsphere environment * Fix unit test to run in non-gce environments * fix: azure disk could not mounted on Standard_DC4s/DC2s instances * Use legacyscheme's types rather than testapi ones * Fix nil pointer dereference in the azure provider * Add unit test for extended ipv4 service IP range * Revert "remove ipallocator in favor of k/utils net package" * It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc. * Allocate map when out points to nil map * fix: azure data disk should use same key as os disk by default * Check FileInfo against nil during walk of container dir path * Add UID precondition to kubelet pod status patch updates * Add cache for VMSS. * Fix build break - Hyperkube image needs kubelet/kubectl * Include cloud/gcp in e2e.test * Do not swallow timeout in manageReplicas * Sync the status of static Pods * Increase Burst limit for discovery client * Update v1.17.0 CHANGELOG to match final draft * Fix LoadBalancer rule checking so that no unexpected LoadBalancer updates are made * Fix broken SELinux detection * Add/Update CHANGELOG-1.17.md for v1.17.0. * Kubernetes version v1.17.1-beta.0 openapi-spec file updates * Deflake kubectl custom printing test * Refactor parsing logic for service IP and ranges, add tests * Fix bug in apiserver service cluster cidr split * Switch addon resizer to 1.8.7 * Deflake pod readiness e2e * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.2. * Move hostdns.conf out of cni directory. * Fix iscsi refcounter in the case of no Block iscsi volumes * Ensure webhook backend requests are not artificially rate-limited * Retain objects for a limited lifetime in the mutation cache detector by default * Enable mutation detection * Make cluster auto scaler use leases * Bump Cluster Autoscaler version to 1.17.0 * fix: padded base64 encoded docker auth field * apiextensions: filter required nullable to workaround kubectl validation * update cadvisor dependency to v0.35.0 * Bumped the number of times a node tries to lookup itself * Wait for PV to be available before creating PVCs in volume binding test * increase pv controller resync period to try to deflake api update conflicts * Fix GKE upgrade test. * Use plugin name for filtering metrics * Provided a mechanism to re-register hidden metrics. * Deep copying EndpointSlices in reconciler before modifying them. * Set node cidr mask size ipv4/ipv6 config * Revert "kube-proxy: check KUBE-MARK-DROP" * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.1. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.2. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.1. * Results of running update scripts: update-openapi-spec * Delete extraneous CHANGELOG-*.md files on branch. kubernetes1.17 was updated to version 1.17.7: * Fix fieldType being dropped by older go-clients * FieldManager: Reset if we receive nil or a list with one empty item * enable floating IP for IPv6 * Extend AWS azToRegion method to support Local Zones and other partitions * kubelet: block non-forwarded packets from crossing the localhost boundary * Deflake port-forward e2e test * Skip Pod Conditions from scheduling queue updates * add test for finalizers * skip unnecessary scheduling attempt when pod's finalizers change * set dest prefix and port for IPv6 sg rule * Create class to call function at most every given period * fieldManager: Ignore and log all errors when updating managedFields * Make kubectl tolerate other versions of the CSR API * Changes to ManagedFields is not mutation for GC * fix a number of unbounded dimensions in request metrics * build: Use debian-hyperkube-base@v1.0.0 image * Source CNI plugins from gs://k8s-artifacts-cni/release * Update CNI to v0.8.6 * releng: Remove debian-hyperkube-base image building from this branch * Fix public IP not shown issues after assigning public IP to Azure VMs * fix: formating and typo * fix: address test failure and review comments * fix: add unit tests for truncate long subnet name on lb ip configuration * fix: should truncate long subnet name on lb rules * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.6 * kubeadm: fix flakes when performing etcd MemberAdd on slower setups * Add back anti-affinity to kube-dns pods. * Check for empty zone string * Azure - do not use 0 zone or empty string for zone when creating PVs * Fix client-ca dynamic reload in apiserver * Make updateAllocatedDevices() as a public method and call it in podresources api Update to version 1.17.6: * Azure: support non-VMSS instances removal * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs * count no nodes scheduling failure as unschedulable instead of error * base-images: Update to kube-cross:v1.13.9-5 * build: Alpha-sort dependencies.yaml * Work-around for missing metrics on CRI-O exited containers * fix: azure disk dangling attach issue * fix: ACR auth fails in private azure clouds * Restore cache-control header filter * bugfix: initcontainer wasn't considered when calculate resource request * fix: azure file csi migration failure * Fix flaws in Azure CSI translation * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.5 * Move PSP tests behind a feature tag * Fix code for 1.17 * kube-openapi bump to release-1.17 * Do not reset managedFields in status update strategy * Use discovery to test apply all status * Preserve int/float distinction when decoding raw values * All check for instanceID * Fix AWS eventual consistency of AttachDisk * fix: update max azure disk max count * Fix cherry-pick errors * Fix CSINodeInfo startup * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] Update to version 1.17.5: * Fix GCE ILB for large clusters * gce-addons: Make sure default/limit-range doesn't get overridden * Restore the ability to `kubectl apply --prune` without -n flag * Fix client watch reestablishment handling of client-side timeouts * Fix priorityClass typo, add numeric priority to static pods * Test dropped round-trip annotations in HPA conversion * Drop round-trip annotations in HPA conversion * Ensure Azure availability zone is always in lower cases * Clean up event messages for errors. * Fix permissions for endpointslice controller * Allow list-resources.sh to continue if a resource fails to list * Check that ImageInspect pointer is not nil * Fix bug about unintentional scale out during updating deployment. * kubeadm: increase timeouts in the etcd client * kubeadm: handle multiple members without names during concurrent join * build/dependencies: Remove bazel WORKSPACE go_version check * deps: Update to Golang 1.13.9 * build: Remove kube-cross image building * Fix the VMSS name and resource group name when updating VMSS for LoadBalancer backendPools. * Remove wait.Until for running Kubelet Bootstrap * Parallelize attach operations across different nodes for volumes that allow multi-attach * Add nil nodeinfo check in podFitsOnNode * fix: check disk status before disk azure disk * Update kube-openapi to release-1.17 * Update tag for structured-merge-diff to v2.0.1 * EndpointSlice and Endpoints should treat terminating pods the same * EndpointSliceTracker should track updated resource version * Ensuring EndpointSlices are not used for Windows kube-proxy implementations * Ensuring kube-proxy does not mutate shared EndpointSlices * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.4 * let image cache do sort on write instead of on read to avoid data * Removing kubectl get output e2e test * Fix VMSS cache content * Preserve target apiVersion when decoding into unstructured lists * Adding a temporary fix for kubectl get output e2e test * /readyz should start returning failure on shutdown initiation * test: don't use hardcoded pod count for memory limit test * Fixed in the GCE/PD in-tree volume logic to expose the max number of persistent-disks for each instance type correctly. * Honor status.podIP over status.podIPs, node.spec.podCIDR over node.spec.podCIDRs * fix: corrupted mount point in csi driver * fix: azure file mount timeout issue * fix behaviour of aws-load-balancer-security-groups annotation * fix: add remediation in azure disk attach/detach * Update to golang@1.13.8 * build: Enable kube-cross push/pull from K8s Infra GCR * build: Add justaugustus as reviewer * build: Add OWNERS on build-image/ * rename to sharedLimitWriter * address review feedback * Fix docker/journald logging conformance * fix get-kube authorization headers * Calling hcsshim instead of docker api to get stats for windows to greatly reduce latency * adding e2e test to ensure it takes less than 10 seconds to query kubelet stats for windows nodes * update golang.org/x/crypto * kube-proxy filter Load Balancer Status ingress * kube-proxy unit test FilterIncorrectIPVersion * add delays between goroutines for vm instance update * Updated test cos image to include runc-1.0.0-rc10 * Fix gce-cos-master-reboot test * Fix route conflicted operations when updating multiple routes together * fix: get azure disk lun timeout issue * Set up connection onClose prior to adding to connection map * fix: add azure disk migration support for CSINode * Add annotation annealing for migration for PVs and PVCs during syncVolume and syncClaim. This allows external-provisioners to pick up and delete volumes when they have been rolled up from previous kubernetes versions. * Update CHANGELOG/CHANGELOG-1.17.md for v1.17.3 * Limit number of instances in single update to GCE target pool * Add code to fix kubelet/metrics memory issue. * Remove Error log for nil StartTime * CHANGELOG: Move changelogs into a subdir to delegate releng approvals * Enable selinux tags in make targets * Fix pending_pods, schedule_attempts_total was not recorded * Fixing Potential Race Condition in EndpointSlice Controller. * Restore statefulset conversion that populates apiVersion/kind in volume templates * Use standard default storage media type in local-up-cluster * changelog: clarify 1.17 upgrade requirements * Fix back off when scheduling cycle is delayed * blank out value for unbounded client label * update gopkg.in/yaml.v2 to v2.2.8 * set nil cache entry based on old cache * Revert "It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc." * Fix issue with GCE scripts assuming Python2. * Add/Update CHANGELOG-1.17.md for v1.17.2. * [1.17] No-op whitespace fix to CHANGELOG-1.17 to trigger a new 1.17 build * Update to golang@1.13.6 * Fix the bug PIP's DNS is deleted if no DNS label service annotation is set. * kubenet: replace gateway with cni result * Add/Update CHANGELOG-1.17.md for v1.17.1. * Fixes unnecessary creation of default SG and trying to delete non-provisioned SG by k8s system when annotation [service.beta.kubernetes.io/aws-load-balancer-security-groups] is present * Ensure a provider ID is set on a node if expected * Bind metrics-server containers to linux nodes to avoid Windows scheduling on kubernetes cluster includes linux nodes and windows nodes * Drop version from static openapi json file * Update to golang@1.13.5 * Revert reflector changes from PR #83520 from 1.17 * Fix IPv6 addresses lost issue in pure ipv6 vsphere environment * Fix unit test to run in non-gce environments * fix: azure disk could not mounted on Standard_DC4s/DC2s instances * Use legacyscheme's types rather than testapi ones * Fix nil pointer dereference in the azure provider * Add unit test for extended ipv4 service IP range * Revert "remove ipallocator in favor of k/utils net package" * It fixes a bug where AAD token obtained by kubectl is incompatible with on-behalf-of flow and oidc. * Allocate map when out points to nil map * fix: azure data disk should use same key as os disk by default * Check FileInfo against nil during walk of container dir path * Add UID precondition to kubelet pod status patch updates * Add cache for VMSS. * Fix build break - Hyperkube image needs kubelet/kubectl * Include cloud/gcp in e2e.test * Do not swallow timeout in manageReplicas * Sync the status of static Pods * Increase Burst limit for discovery client * Update v1.17.0 CHANGELOG to match final draft * Fix LoadBalancer rule checking so that no unexpected LoadBalancer updates are made * Fix broken SELinux detection * Add/Update CHANGELOG-1.17.md for v1.17.0. * Kubernetes version v1.17.1-beta.0 openapi-spec file updates * Deflake kubectl custom printing test * Refactor parsing logic for service IP and ranges, add tests * Fix bug in apiserver service cluster cidr split * Switch addon resizer to 1.8.7 * Deflake pod readiness e2e * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.2. * Move hostdns.conf out of cni directory. * Fix iscsi refcounter in the case of no Block iscsi volumes * Ensure webhook backend requests are not artificially rate-limited * Retain objects for a limited lifetime in the mutation cache detector by default * Enable mutation detection * Make cluster auto scaler use leases * Bump Cluster Autoscaler version to 1.17.0 * fix: padded base64 encoded docker auth field * apiextensions: filter required nullable to workaround kubectl validation * update cadvisor dependency to v0.35.0 * Bumped the number of times a node tries to lookup itself * Wait for PV to be available before creating PVCs in volume binding test * increase pv controller resync period to try to deflake api update conflicts * Fix GKE upgrade test. * Use plugin name for filtering metrics * Provided a mechanism to re-register hidden metrics. * Deep copying EndpointSlices in reconciler before modifying them. * Set node cidr mask size ipv4/ipv6 config * Revert "kube-proxy: check KUBE-MARK-DROP" * Add/Update CHANGELOG-1.17.md for v1.17.0-rc.1. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.2. * Add/Update CHANGELOG-1.17.md for v1.17.0-beta.1. * Results of running update scripts: update-openapi-spec * Delete extraneous CHANGELOG-*.md files on branch. - kubelet-common: conflict with other instances of kubelet-common and require kubernetes-kubelet%{baseversion} kubernetes-1.18.4-lp152.2.3.1.src.rpm kubernetes-apiserver-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-apiserver-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes-client-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-controller-manager-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-controller-manager-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes-kubeadm-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-kubelet-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-proxy-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-proxy-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes-scheduler-1.18.4-lp152.2.3.1.x86_64.rpm kubernetes-scheduler-minus1-1.17.7-lp152.2.3.1.x86_64.rpm kubernetes1.17-1.17.7-lp152.5.1.src.rpm kubernetes1.17-apiserver-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-client-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-controller-manager-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-kubeadm-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-kubelet-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-kubelet-common-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-proxy-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.17-scheduler-1.17.7-lp152.5.1.x86_64.rpm kubernetes1.18-1.18.4-lp152.5.1.src.rpm kubernetes1.18-apiserver-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-client-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-controller-manager-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-kubeadm-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-kubelet-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-kubelet-common-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-proxy-1.18.4-lp152.5.1.x86_64.rpm kubernetes1.18-scheduler-1.18.4-lp152.5.1.x86_64.rpm openSUSE-2020-1058 moderate openSUSE Leap 15.2 Update This update for putty fixes the following issues: putty was updated to release 0.74: * security fix: if an SSH server accepted an offer of a public key and then rejected the signature, PuTTY could access freed memory, if the key had come from an SSH agent. (boo#1173442) * Added a new configuration option to mitigate a minor information leak in SSH host key policy. putty-0.74-lp152.2.3.1.src.rpm putty-0.74-lp152.2.3.1.x86_64.rpm putty-debuginfo-0.74-lp152.2.3.1.x86_64.rpm putty-debugsource-0.74-lp152.2.3.1.x86_64.rpm openSUSE-2020-922 moderate openSUSE Leap 15.2 Update This update for python-typing_extensions fixes the following issues: Update to version 3.7.4.2 * official support for Python 3.8 and 3.9 Update to version 3.7.4.1: + Fix isinstance() with generic protocol subclasses after subscripting + Fix tests for non-default interpreters + Use environment marker to specify typing dependency + Fix unions of protocols on Python 2 python-typing_extensions-3.7.4.2-lp152.4.3.1.src.rpm python2-typing_extensions-3.7.4.2-lp152.4.3.1.noarch.rpm python3-typing_extensions-3.7.4.2-lp152.4.3.1.noarch.rpm openSUSE-2020-924 moderate openSUSE Leap 15.2 Update This update for smtube fixes the following issues: Update to version 20.6.0: * New option in preferences to select the site to use as homepage. * The internal youtube code has been removed and now smtube just uses youtube-dl to get the video urls. * New option in the help menu to help install youtube-dl. - Youtube-dl is not required, so changed Suggest: youtube-dl to Required: youtube-dl smtube-20.6.0-lp152.2.3.1.src.rpm smtube-20.6.0-lp152.2.3.1.x86_64.rpm smtube-debuginfo-20.6.0-lp152.2.3.1.x86_64.rpm smtube-debugsource-20.6.0-lp152.2.3.1.x86_64.rpm smtube-lang-20.6.0-lp152.2.3.1.noarch.rpm openSUSE-2020-936 moderate openSUSE Leap 15.2 Update This update for lyx fixes the following issues: lyx was updated to 2.3.5.2: * fix quotation marks being reversed in moving arguments when hyperref is enabled lyx-2.3.5.2-lp152.2.3.1.src.rpm lyx-2.3.5.2-lp152.2.3.1.x86_64.rpm lyx-debuginfo-2.3.5.2-lp152.2.3.1.x86_64.rpm lyx-debugsource-2.3.5.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-937 moderate openSUSE Leap 15.2 Update This update for coturn fixes the following issues: Version 4.5.1.3: * Remove reference to SSLv3: gh#coturn/coturn#566 * Ignore MD5 for BoringSSL: gh#coturn/coturn#579 * STUN response buffer not initialized properly; he issue found and reported gh#coturn/coturn#583 by Felix Dörre all credits belongs to him. CVE-2020-4067, boo#1173510 - Let coturn allow binding to ports below 1024 per default coturn-4.5.1.3-lp152.2.3.1.src.rpm coturn-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-debuginfo-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-debugsource-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-devel-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-utils-4.5.1.3-lp152.2.3.1.x86_64.rpm coturn-utils-debuginfo-4.5.1.3-lp152.2.3.1.x86_64.rpm openSUSE-2020-916 moderate openSUSE Leap 15.2 Update This update for python3-gcemetadata fixes the following issues: Update to version 1.0.4 (bsc#1173136) - Fixed typo, missing "=" for "identity" option in processed command line options causes mis-identification of instance as missing identity data access python3-gcemetadata-1.0.4-lp152.2.1.noarch.rpm python3-gcemetadata-1.0.4-lp152.2.1.src.rpm openSUSE-2020-974 important openSUSE Leap 15.2 Update This update for mdadm fixes the following issues: - OnCalendar format fix of mdcheck_start.timer (bsc#1173137) - Detail: adding sync status for cluster device (bsc#1163727) - Monitor: improve check_one_sharer() for checking duplicated process (bsc#1168953) This update was imported from the SUSE:SLE-15-SP1:Update update project. mdadm-4.1-lp152.7.4.1.src.rpm mdadm-4.1-lp152.7.4.1.x86_64.rpm mdadm-debuginfo-4.1-lp152.7.4.1.x86_64.rpm mdadm-debugsource-4.1-lp152.7.4.1.x86_64.rpm mdadm-4.1-lp152.7.4.1.i586.rpm mdadm-debuginfo-4.1-lp152.7.4.1.i586.rpm mdadm-debugsource-4.1-lp152.7.4.1.i586.rpm openSUSE-2020-1004 moderate openSUSE Leap 15.2 Update This update for lxd fixes the following issues: Update to LXD 4.3. The full upstream changelog is available from: https://discuss.linuxcontainers.org/t/lxd-4-3-has-been-released/8303 + Block custom storage volumes + VM: Initial work for graphical console * VM: Rework of PCIe layout + VM: GPU passthrough * Direct console attach on lxc start and lxc restart * Isolated CPUs reporting in resources API lxd-4.3-lp152.2.3.1.src.rpm lxd-4.3-lp152.2.3.1.x86_64.rpm lxd-bash-completion-4.3-lp152.2.3.1.noarch.rpm openSUSE-2020-938 moderate openSUSE Leap 15.2 Update This update for profanity fixes the following issues: Update to 0.9.5: * Fix segfault in /theme properties due to uninitialized titlebar.scrollable (#1380) profanity-0.9.5-lp152.2.6.1.src.rpm profanity-0.9.5-lp152.2.6.1.x86_64.rpm profanity-debuginfo-0.9.5-lp152.2.6.1.x86_64.rpm profanity-debugsource-0.9.5-lp152.2.6.1.x86_64.rpm profanity-mini-0.9.5-lp152.2.6.1.x86_64.rpm profanity-mini-debuginfo-0.9.5-lp152.2.6.1.x86_64.rpm profanity-standard-0.9.5-lp152.2.6.1.x86_64.rpm profanity-standard-debuginfo-0.9.5-lp152.2.6.1.x86_64.rpm openSUSE-2020-1005 moderate openSUSE Leap 15.2 Update This update for pdns-recursor fixes the following issues: - CVE-2020-14196: Fixed an access restriction bypass with API key and password authentication (boo#1173302). pdns-recursor-4.3.2-lp152.2.3.1.src.rpm pdns-recursor-4.3.2-lp152.2.3.1.x86_64.rpm pdns-recursor-debuginfo-4.3.2-lp152.2.3.1.x86_64.rpm pdns-recursor-debugsource-4.3.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-939 important openSUSE Leap 15.2 Update This update for chocolate-doom to version 3.0.1 fixes the following issues: - CVE-2020-14983: Fixed a stack-based buffer overflow in the networking code (boo#1173595). chocolate-doom-3.0.1-lp152.4.3.1.src.rpm chocolate-doom-3.0.1-lp152.4.3.1.x86_64.rpm chocolate-doom-bash-completion-3.0.1-lp152.4.3.1.noarch.rpm chocolate-doom-debuginfo-3.0.1-lp152.4.3.1.x86_64.rpm chocolate-doom-debugsource-3.0.1-lp152.4.3.1.x86_64.rpm openSUSE-2020-940 important openSUSE Leap 15.2 Update This update for python3 fixes the following issues: - CVE-2020-14422: Fixed an improper computation of hash values in the IPv4Interface and IPv6Interface could have led to denial of service (bsc#1173274). This update was imported from the SUSE:SLE-15:Update update project. libpython3_6m1_0-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-3.6.10-lp152.4.3.1.src.rpm python3-base-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-debugsource-3.6.10-lp152.4.3.1.x86_64.rpm python3-devel-3.6.10-lp152.4.3.1.x86_64.rpm python3-devel-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-testsuite-3.6.10-lp152.4.3.1.x86_64.rpm python3-testsuite-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-tools-3.6.10-lp152.4.3.1.x86_64.rpm python3-doc-3.6.10-lp152.4.3.1.noarch.rpm python3-doc-3.6.10-lp152.4.3.1.src.rpm python3-3.6.10-lp152.4.3.1.src.rpm python3-3.6.10-lp152.4.3.1.x86_64.rpm python3-curses-3.6.10-lp152.4.3.1.x86_64.rpm python3-curses-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-dbm-3.6.10-lp152.4.3.1.x86_64.rpm python3-dbm-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-debugsource-3.6.10-lp152.4.3.1.x86_64.rpm python3-idle-3.6.10-lp152.4.3.1.x86_64.rpm python3-tk-3.6.10-lp152.4.3.1.x86_64.rpm python3-tk-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-3.6.10-lp152.4.3.1.i586.rpm libpython3_6m1_0-32bit-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-32bit-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm libpython3_6m1_0-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-base-3.6.10-lp152.4.3.1.i586.rpm python3-base-32bit-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-32bit-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-base-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-base-debugsource-3.6.10-lp152.4.3.1.i586.rpm python3-devel-3.6.10-lp152.4.3.1.i586.rpm python3-devel-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-testsuite-3.6.10-lp152.4.3.1.i586.rpm python3-testsuite-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-tools-3.6.10-lp152.4.3.1.i586.rpm python3-3.6.10-lp152.4.3.1.i586.rpm python3-32bit-3.6.10-lp152.4.3.1.x86_64.rpm python3-32bit-debuginfo-3.6.10-lp152.4.3.1.x86_64.rpm python3-curses-3.6.10-lp152.4.3.1.i586.rpm python3-curses-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-dbm-3.6.10-lp152.4.3.1.i586.rpm python3-dbm-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-debuginfo-3.6.10-lp152.4.3.1.i586.rpm python3-debugsource-3.6.10-lp152.4.3.1.i586.rpm python3-idle-3.6.10-lp152.4.3.1.i586.rpm python3-tk-3.6.10-lp152.4.3.1.i586.rpm python3-tk-debuginfo-3.6.10-lp152.4.3.1.i586.rpm openSUSE-2020-1006 moderate openSUSE Leap 15.2 Update This update for resource-agents fixes the following issues: - Fixed a bug where the pulling of images was stuck (bsc#1170270) - Added a fix for defect file /usr/lib/ocf/resource.d/heartbeat/clvm (bsc#1172734) This update was imported from the SUSE:SLE-15-SP2:Update update project. ldirectord-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm monitoring-plugins-metadata-4.4.0+git57.70549516-lp152.2.3.1.noarch.rpm resource-agents-4.4.0+git57.70549516-lp152.2.3.1.src.rpm resource-agents-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm resource-agents-debuginfo-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm resource-agents-debugsource-4.4.0+git57.70549516-lp152.2.3.1.x86_64.rpm ldirectord-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm resource-agents-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm resource-agents-debuginfo-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm resource-agents-debugsource-4.4.0+git57.70549516-lp152.2.3.1.i586.rpm openSUSE-2020-1010 important openSUSE Leap 15.2 Update This update for yast2-installation fixes the following issues: - Fixes an isuse where /etc/nvme/hostnqn nor /etc/nvme/hostid were available after system installation (bsc#1172853) This update was imported from the SUSE:SLE-15-SP2:Update update project. yast2-installation-4.2.43-lp152.2.3.1.noarch.rpm yast2-installation-4.2.43-lp152.2.3.1.src.rpm openSUSE-2020-1009 moderate openSUSE Leap 15.2 Update This update for dracut fixes the following issues: - 35network-legacy: Fix dual stack setups. (bsc#1172807) - 95iscsi: fix missing space when compiling cmdline args. (bsc#1172816) This update was imported from the SUSE:SLE-15-SP2:Update update project. dracut-049.1+suse.146.g6f5195cf-lp152.2.3.1.src.rpm dracut-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-debuginfo-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-debugsource-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-extra-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-fips-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-ima-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-tools-049.1+suse.146.g6f5195cf-lp152.2.3.1.x86_64.rpm dracut-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-debuginfo-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-debugsource-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-extra-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-fips-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-ima-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm dracut-tools-049.1+suse.146.g6f5195cf-lp152.2.3.1.i586.rpm openSUSE-2020-1007 moderate openSUSE Leap 15.2 Update This update for ntp fixes the following issues: ntp was updated to 4.2.8p15 - CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service (bsc#1169740). - CVE-2018-8956: Fixed an issue which could have allowed remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via spoofed mode 3 and mode 5 packets (bsc#1171355). - CVE-2020-13817: Fixed an issue which an off-path attacker with the ability to query time from victim's ntpd instance could have modified the victim's clock by a limited amount (bsc#1172651). - CVE-2020-15025: Fixed an issue which remote attacker could have caused denial of service by consuming the memory when a CMAC key was used andassociated with a CMAC algorithm in the ntp.keys (bsc#1173334). - Removed an OpenSSL version warning (bsc#992038 and bsc#1125401). This update was imported from the SUSE:SLE-15:Update update project. ntp-4.2.8p15-lp152.3.3.1.src.rpm ntp-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-debuginfo-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-debugsource-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-doc-4.2.8p15-lp152.3.3.1.x86_64.rpm ntp-4.2.8p15-lp152.3.3.1.i586.rpm ntp-debuginfo-4.2.8p15-lp152.3.3.1.i586.rpm ntp-debugsource-4.2.8p15-lp152.3.3.1.i586.rpm ntp-doc-4.2.8p15-lp152.3.3.1.i586.rpm openSUSE-2020-945 moderate openSUSE Leap 15.2 Update This update for rust, rust-cbindgen fixes the following issues: rust was updated for use by Firefox 76ESR. - Fixed miscompilations with rustc 1.43 that lead to LTO failures (bsc#1173202) Update to version 1.43.1 - Updated openssl-src to 1.1.1g for CVE-2020-1967. - Fixed the stabilization of AVX-512 features. - Fixed `cargo package --list` not working with unpublished dependencies. Update to version 1.43.0 + Language: - Fixed using binary operations with `&{number}` (e.g. `&1.0`) not having the type inferred correctly. - Attributes such as `#[cfg()]` can now be used on `if` expressions. - Syntax only changes: * Allow `type Foo: Ord` syntactically. * Fuse associated and extern items up to defaultness. * Syntactically allow `self` in all `fn` contexts. * Merge `fn` syntax + cleanup item parsing. * `item` macro fragments can be interpolated into `trait`s, `impl`s, and `extern` blocks. For example, you may now write: ```rust macro_rules! mac_trait { ($i:item) => { trait T { $i } } } mac_trait! { fn foo() {} } ``` * These are still rejected *semantically*, so you will likely receive an error but these changes can be seen and parsed by macros and conditional compilation. + Compiler - You can now pass multiple lint flags to rustc to override the previous flags. For example; `rustc -D unused -A unused-variables` denies everything in the `unused` lint group except `unused-variables` which is explicitly allowed. However, passing `rustc -A unused-variables -D unused` denies everything in the `unused` lint group **including** `unused-variables` since the allow flag is specified before the deny flag (and therefore overridden). - rustc will now prefer your system MinGW libraries over its bundled libraries if they are available on `windows-gnu`. - rustc now buffers errors/warnings printed in JSON. Libraries: - `Arc<[T; N]>`, `Box<[T; N]>`, and `Rc<[T; N]>`, now implement `TryFrom<Arc<[T]>>`,`TryFrom<Box<[T]>>`, and `TryFrom<Rc<[T]>>` respectively. **Note** These conversions are only available when `N` is `0..=32`. - You can now use associated constants on floats and integers directly, rather than having to import the module. e.g. You can now write `u32::MAX` or `f32::NAN` with no imports. - `u8::is_ascii` is now `const`. - `String` now implements `AsMut<str>`. - Added the `primitive` module to `std` and `core`. This module reexports Rust's primitive types. This is mainly useful in macros where you want avoid these types being shadowed. - Relaxed some of the trait bounds on `HashMap` and `HashSet`. - `string::FromUtf8Error` now implements `Clone + Eq`. + Stabilized APIs - `Once::is_completed` - `f32::LOG10_2` - `f32::LOG2_10` - `f64::LOG10_2` - `f64::LOG2_10` - `iter::once_with` + Cargo - You can now set config `[profile]`s in your `.cargo/config`, or through your environment. - Cargo will now set `CARGO_BIN_EXE_<name>` pointing to a binary's executable path when running integration tests or benchmarks. `<name>` is the name of your binary as-is e.g. If you wanted the executable path for a binary named `my-program`you would use `env!("CARGO_BIN_EXE_my-program")`. + Misc - Certain checks in the `const_err` lint were deemed unrelated to const evaluation, and have been moved to the `unconditional_panic` and `arithmetic_overflow` lints. + Compatibility Notes - Having trailing syntax in the `assert!` macro is now a hard error. This has been a warning since 1.36.0. - Fixed `Self` not having the correctly inferred type. This incorrectly led to some instances being accepted, and now correctly emits a hard error. Update to version 1.42.0: + Language - You can now use the slice pattern syntax with subslices. - You can now use #[repr(transparent)] on univariant enums. Meaning that you can create an enum that has the exact layout and ABI of the type it contains. - There are some syntax-only changes: * default is syntactically allowed before items in trait definitions. * Items in impls (i.e. consts, types, and fns) may syntactically leave out their bodies in favor of ;. * Bounds on associated types in impls are now syntactically allowed (e.g. type Foo: Ord;). * ... (the C-variadic type) may occur syntactically directly as the type of any function parameter. These are still rejected semantically, so you will likely receive an error but these changes can be seen and parsed by procedural macros and conditional compilation. + Compiler - Added tier 2 support for armv7a-none-eabi. - Added tier 2 support for riscv64gc-unknown-linux-gnu. - Option::{expect,unwrap} and Result::{expect, expect_err, unwrap, unwrap_err} now produce panic messages pointing to the location where they were called, rather than core's internals. Refer to Rust's platform support page for more information on Rust's tiered platform support. + Libraries - iter::Empty<T> now implements Send and Sync for any T. - Pin::{map_unchecked, map_unchecked_mut} no longer require the return type to implement Sized. - io::Cursor now derives PartialEq and Eq. - Layout::new is now const. - Added Standard Library support for riscv64gc-unknown-linux-gnu. + Stabilized APIs - CondVar::wait_while - CondVar::wait_timeout_while - DebugMap::key - DebugMap::value - ManuallyDrop::take - matches! - ptr::slice_from_raw_parts_mut - ptr::slice_from_raw_parts + Cargo - You no longer need to include extern crate proc_macro; to be able to use proc_macro; in the 2018 edition. + Compatibility Notes - Error::description has been deprecated, and its use will now produce a warning. It's recommended to use Display/to_string instead. Update to version 1.41.1: - Always check types of static items - Always check lifetime bounds of `Copy` impls - Fix miscompilation in callers of `Layout::repeat` Update to version 1.41.0: + Language - You can now pass type parameters to foreign items when implementing traits. E.g. You can now write `impl<T> From<Foo> for Vec<T> {}`. - You can now arbitrarily nest receiver types in the `self` position. E.g. you can now write `fn foo(self: Box<Box<Self>>) {}`. Previously only `Self`, `&Self`, `&mut Self`, `Arc<Self>`, `Rc<Self>`, and `Box<Self>` were allowed. - You can now use any valid identifier in a `format_args` macro. Previously identifiers starting with an underscore were not allowed. - Visibility modifiers (e.g. `pub`) are now syntactically allowed on trait items and enum variants. These are still rejected semantically, but can be seen and parsed by procedural macros and conditional compilation. + Compiler - Rustc will now warn if you have unused loop `'label`s. - Removed support for the `i686-unknown-dragonfly` target. - Added tier 3 support\* for the `riscv64gc-unknown-linux-gnu` target. - You can now pass an arguments file passing the `@path` syntax to rustc. Note that the format differs somewhat from what is found in other tooling; please see the documentation for more information. - You can now provide `--extern` flag without a path, indicating that it is available from the search path or specified with an `-L` flag. Refer to Rust's [platform support page][forge-platform-support] for more information on Rust's tiered platform support. + Libraries - The `core::panic` module is now stable. It was already stable through `std`. - `NonZero*` numerics now implement `From<NonZero*>` if it's a smaller integer width. E.g. `NonZeroU16` now implements `From<NonZeroU8>`. - `MaybeUninit<T>` now implements `fmt::Debug`. + Stabilized APIs - `Result::map_or` - `Result::map_or_else` - `std::rc::Weak::weak_count` - `std::rc::Weak::strong_count` - `std::sync::Weak::weak_count` - `std::sync::Weak::strong_count` + Cargo - Cargo will now document all the private items for binary crates by default. - `cargo-install` will now reinstall the package if it detects that it is out of date. - Cargo.lock now uses a more git friendly format that should help to reduce merge conflicts. - You can now override specific dependencies's build settings. E.g. `[profile.dev.package.image] opt-level = 2` sets the `image` crate's optimisation level to `2` for debug builds. You can also use `[profile.<profile>.build-override]` to override build scripts and their dependencies. + Misc - You can now specify `edition` in documentation code blocks to compile the block for that edition. E.g. `edition2018` tells rustdoc that the code sample should be compiled the 2018 edition of Rust. - You can now provide custom themes to rustdoc with `--theme`, and check the current theme with `--check-theme`. - You can use `#[cfg(doc)]` to compile an item when building documentation. + Compatibility Notes - As previously announced 1.41.0 will be the last tier 1 release for 32-bit Apple targets. This means that the source code is still available to build, but the targets are no longer being tested and release binaries for those platforms will no longer be distributed by the Rust project. Please refer to the linked blog post for more information. - Bump version of libssh2 for SLE15; we now need a version with libssh2_userauth_publickey_frommemory(), which appeared in libssh2 1.6.0. Update to version 1.40.0 + Language - You can now use tuple `struct`s and tuple `enum` variant's constructors in `const` contexts. e.g. pub struct Point(i32, i32); const ORIGIN: Point = { let constructor = Point; constructor(0, 0) }; - You can now mark `struct`s, `enum`s, and `enum` variants with the `#[non_exhaustive]` attribute to indicate that there may be variants or fields added in the future. For example this requires adding a wild-card branch (`_ => {}`) to any match statements on a non-exhaustive `enum`. - You can now use function-like procedural macros in `extern` blocks and in type positions. e.g. `type Generated = macro!();` - Function-like and attribute procedural macros can now emit `macro_rules!` items, so you can now have your macros generate macros. - The `meta` pattern matcher in `macro_rules!` now correctly matches the modern attribute syntax. For example `(#[$m:meta])` now matches `#[attr]`, `#[attr{tokens}]`, `#[attr[tokens]]`, and `#[attr(tokens)]`. + Compiler - Added tier 3 support\* for the `thumbv7neon-unknown-linux-musleabihf` target. - Added tier 3 support for the `aarch64-unknown-none-softfloat` target. - Added tier 3 support for the `mips64-unknown-linux-muslabi64`, and `mips64el-unknown-linux-muslabi64` targets. + Libraries - The `is_power_of_two` method on unsigned numeric types is now a `const` function. + Stabilized APIs - BTreeMap::get_key_value - HashMap::get_key_value - Option::as_deref_mut - Option::as_deref - Option::flatten - UdpSocket::peer_addr - f32::to_be_bytes - f32::to_le_bytes - f32::to_ne_bytes - f64::to_be_bytes - f64::to_le_bytes - f64::to_ne_bytes - f32::from_be_bytes - f32::from_le_bytes - f32::from_ne_bytes - f64::from_be_bytes - f64::from_le_bytes - f64::from_ne_bytes - mem::take - slice::repeat - todo! + Cargo - Cargo will now always display warnings, rather than only on fresh builds. - Feature flags (except `--all-features`) passed to a virtual workspace will now produce an error. Previously these flags were ignored. - You can now publish `dev-dependencies` without including a `version`. + Misc - You can now specify the `#[cfg(doctest)]` attribute to include an item only when running documentation tests with `rustdoc`. + Compatibility Notes - As previously announced, any previous NLL warnings in the 2015 edition are now hard errors. - The `include!` macro will now warn if it failed to include the entire file. The `include!` macro unintentionally only includes the first _expression_ in a file, and this can be unintuitive. This will become either a hard error in a future release, or the behavior may be fixed to include all expressions as expected. - Using `#[inline]` on function prototypes and consts now emits a warning under `unused_attribute` lint. Using `#[inline]` anywhere else inside traits or `extern` blocks now correctly emits a hard error. Update to version 1.39.0 + Language - You can now create async functions and blocks with async fn, async move {}, and async {} respectively, and you can now call .await on async expressions. - You can now use certain attributes on function, closure, and function pointer parameters. - You can now take shared references to bind-by-move patterns in the if guards of match arms. + Compiler - Added tier 3 support for the i686-unknown-uefi target. - Added tier 3 support for the sparc64-unknown-openbsd target. - rustc will now trim code snippets in diagnostics to fit in your terminal. - You can now pass --show-output argument to test binaries to print the output of successful tests. + For more details: https://github.com/rust-lang/rust/blob/stable/RELEASES.md#version-1390-2019-11-07 - Switch to bundled version of libgit2 for now. libgit2-sys seems to expect using the bundled variant, which just seems to point to a snapshot of the master branch and doesn't match any released libgit2 (bsc#1154817). See: https://github.com/rust-lang/rust/issues/63476 and https://github.com/rust-lang/git2-rs/issues/458 for details. Update to version 1.38.0 + Language - The `#[global_allocator]` attribute can now be used in submodules. - The `#[deprecated]` attribute can now be used on macros. + Compiler - Added pipelined compilation support to `rustc`. This will improve compilation times in some cases. + Libraries - `ascii::EscapeDefault` now implements `Clone` and `Display`. - Derive macros for prelude traits (e.g. `Clone`, `Debug`, `Hash`) are now available at the same path as the trait. (e.g. The `Clone` derive macro is available at `std::clone::Clone`). This also makes all built-in macros available in `std`/`core` root. e.g. `std::include_bytes!`. - `str::Chars` now implements `Debug`. - `slice::{concat, connect, join}` now accepts `&[T]` in addition to `&T`. - `*const T` and `*mut T` now implement `marker::Unpin`. - `Arc<[T]>` and `Rc<[T]>` now implement `FromIterator<T>`. - Added euclidean remainder and division operations (`div_euclid`, `rem_euclid`) to all numeric primitives. Additionally `checked`, `overflowing`, and `wrapping` versions are available for all integer primitives. - `thread::AccessError` now implements `Clone`, `Copy`, `Eq`, `Error`, and `PartialEq`. - `iter::{StepBy, Peekable, Take}` now implement `DoubleEndedIterator`. + Stabilized APIs - `<*const T>::cast` - `<*mut T>::cast` - `Duration::as_secs_f32` - `Duration::as_secs_f64` - `Duration::div_f32` - `Duration::div_f64` - `Duration::from_secs_f32` - `Duration::from_secs_f64` - `Duration::mul_f32` - `Duration::mul_f64` - `any::type_name` + Cargo - Added pipelined compilation support to `cargo`. - You can now pass the `--features` option multiple times to enable multiple features. + Misc - `rustc` will now warn about some incorrect uses of `mem::{uninitialized, zeroed}` that are known to cause undefined behaviour. Update to version 1.37.0 + Language - #[must_use] will now warn if the type is contained in a tuple, Box, or an array and unused. - You can now use the `cfg` and `cfg_attr` attributes on generic parameters. - You can now use enum variants through type alias. e.g. You can write the following: ``` type MyOption = Option<u8>; fn increment_or_zero(x: MyOption) -> u8 { match x { MyOption::Some(y) => y + 1, MyOption::None => 0, } } ``` - You can now use `_` as an identifier for consts. e.g. You can write `const _: u32 = 5;`. - You can now use `#[repr(align(X)]` on enums. - The `?` Kleene macro operator is now available in the 2015 edition. + Compiler - You can now enable Profile-Guided Optimization with the `-C profile-generate` and `-C profile-use` flags. For more information on how to use profile guided optimization, please refer to the rustc book. - The `rust-lldb` wrapper script should now work again. + Libraries - `mem::MaybeUninit<T>` is now ABI-compatible with `T`. + Stabilized APIs - BufReader::buffer - BufWriter::buffer - Cell::from_mut - Cell<[T]>::as_slice_of_cells - Cell<slice>::as_slice_of_cells - DoubleEndedIterator::nth_back - Option::xor - Wrapping::reverse_bits - i128::reverse_bits - i16::reverse_bits - i32::reverse_bits - i64::reverse_bits - i8::reverse_bits - isize::reverse_bits - slice::copy_within - u128::reverse_bits - u16::reverse_bits - u32::reverse_bits - u64::reverse_bits - u8::reverse_bits - usize::reverse_bits + Cargo - Cargo.lock files are now included by default when publishing executable crates with executables. - You can now specify `default-run="foo"` in `[package]` to specify the default executable to use for `cargo run`. - cargo-vendor is now provided as a sub-command of cargo + Compatibility Notes - Using `...` for inclusive range patterns will now warn by default. Please transition your code to using the `..=` syntax for inclusive ranges instead. - Using a trait object without the `dyn` will now warn by default. Please transition your code to use `dyn Trait` for trait objects instead. Crab(String), Lobster(String), Person(String), let state = Creature::Crab("Ferris"); if let Creature::Crab(name) | Creature::Person(name) = state { println!("This creature's name is: {}", name); } unsafe { foo() } pub fn new(x: i32, y: i32) -> Self { Self(x, y) } pub fn is_origin(&self) -> bool { match self { Self(0, 0) => true, _ => false, } } Self: PartialOrd<Self> // can write `Self` instead of `List<T>` Nil, Cons(T, Box<Self>) // likewise here fn test(&self) { println!("one"); } //~ ERROR duplicate definitions with name `test` fn test(&self) { println!("two"); } * Basic procedural macros allowing custom `#[derive]`, aka "macros 1.1", are stable. This allows popular code-generating crates like Serde and Diesel to work ergonomically. [RFC 1681]. * [Tuple structs may be empty. Unary and empty tuple structs may be instantiated with curly braces][36868]. Part of [RFC 1506]. * [A number of minor changes to name resolution have been activated][37127]. They add up to more consistent semantics, allowing for future evolution of Rust macros. Specified in [RFC 1560], see its section on ["changes"] for details of what is different. The breaking changes here have been transitioned through the [`legacy_imports`] lint since 1.14, with no known regressions. * [In `macro_rules`, `path` fragments can now be parsed as type parameter bounds][38279] * [`?Sized` can be used in `where` clauses][37791] * [There is now a limit on the size of monomorphized types and it can be modified with the `#![type_size_limit]` crate attribute, similarly to the `#![recursion_limit]` attribute][37789] * [On Windows, the compiler will apply dllimport attributes when linking to extern functions][37973]. Additional attributes and flags can control which library kind is linked and its name. [RFC 1717]. * [Rust-ABI symbols are no longer exported from cdylibs][38117] * [The `--test` flag works with procedural macro crates][38107] * [Fix `extern "aapcs" fn` ABI][37814] * [The `-C no-stack-check` flag is deprecated][37636]. It does nothing. * [The `format!` expander recognizes incorrect `printf` and shell-style formatting directives and suggests the correct format][37613]. * [Only report one error for all unused imports in an import list][37456] * [Avoid unnecessary `mk_ty` calls in `Ty::super_fold_with`][37705] * [Avoid more unnecessary `mk_ty` calls in `Ty::super_fold_with`][37979] * [Don't clone in `UnificationTable::probe`][37848] * [Remove `scope_auxiliary` to cut RSS by 10%][37764] * [Use small vectors in type walker][37760] * [Macro expansion performance was improved][37701] * [Change `HirVec<P<T>>` to `HirVec<T>` in `hir::Expr`][37642] * [Replace FNV with a faster hash function][37229] https://raw.githubusercontent.com/rust-lang/rust/master/RELEASES.md rust-cbindgen is shipped in version 0.14.1. rust-cbindgen-0.14.1-lp152.2.4.1.src.rpm rust-cbindgen-0.14.1-lp152.2.4.1.x86_64.rpm cargo-1.43.1-lp152.3.5.1.x86_64.rpm cargo-doc-1.43.1-lp152.3.5.1.noarch.rpm clippy-1.43.1-lp152.3.5.1.x86_64.rpm rls-1.43.1-lp152.3.5.1.x86_64.rpm rust-1.43.1-lp152.3.5.1.src.rpm rust-1.43.1-lp152.3.5.1.x86_64.rpm rust-analysis-1.43.1-lp152.3.5.1.x86_64.rpm rust-doc-1.43.1-lp152.3.5.1.x86_64.rpm rust-gdb-1.43.1-lp152.3.5.1.x86_64.rpm rust-src-1.43.1-lp152.3.5.1.noarch.rpm rust-std-static-1.43.1-lp152.3.5.1.x86_64.rpm rustfmt-1.43.1-lp152.3.5.1.x86_64.rpm cargo-1.43.1-lp152.3.5.1.i586.rpm clippy-1.43.1-lp152.3.5.1.i586.rpm rls-1.43.1-lp152.3.5.1.i586.rpm rust-1.43.1-lp152.3.5.1.i586.rpm rust-analysis-1.43.1-lp152.3.5.1.i586.rpm rust-doc-1.43.1-lp152.3.5.1.i586.rpm rust-gdb-1.43.1-lp152.3.5.1.i586.rpm rust-std-static-1.43.1-lp152.3.5.1.i586.rpm rustfmt-1.43.1-lp152.3.5.1.i586.rpm openSUSE-2020-941 moderate openSUSE Leap 15.2 Update This update for python-md2workflow fixes the following issues: - There are 2 fields one is scripted and forbidden for editing. We use explicitly the allowed one. boo#1173460 python-md2workflow-1.4.18-lp152.2.3.1.src.rpm python-md2workflow-common-1.4.18-lp152.2.3.1.noarch.rpm python2-md2workflow-1.4.18-lp152.2.3.1.noarch.rpm python2-md2workflow-plugins-jira-1.4.18-lp152.2.3.1.noarch.rpm python2-md2workflow-plugins-redmine-1.4.18-lp152.2.3.1.noarch.rpm python3-md2workflow-1.4.18-lp152.2.3.1.noarch.rpm python3-md2workflow-plugins-jira-1.4.18-lp152.2.3.1.noarch.rpm python3-md2workflow-plugins-redmine-1.4.18-lp152.2.3.1.noarch.rpm openSUSE-2020-942 moderate openSUSE Leap 15.2 Update This update for gajim, python-nbxmpp fixes the following issues: gajim: - Always use the system certificates and remove the provided one, fix build with newer ca-certificates bundle (boo#1159017) - Require python3-nbxmpp greater than 0.6.9 (boo#1123247) - Add Requires for python3-precis-i18n (boo#1116161). - Update to 1.1.3: New: * Add a mobile phone indicator to the chat window * Rework HTTPUpload dialog * Add a "paste as quote" option to the message input Bug fixes: * #8822 Fix memory leak when using spell checker * #9514 Fix jingle filetransfers not working in some circumstances * #9573 Dont leak DNS query when connecting over proxy * #9578 Determine Windows version more reliably * #9622 Fix an error while quitting Gajim * #9633 Fix an error while sending a file * #9637 Restore window size correctly on wayland * #9660 GPG Agent setting is ignored * #9645 Make zeroconf IPV6 compatible * Improve dark theme colors * Fix access to GnuPG keys * Use UUID4 item ids for pubsub posts * Dont send invalid show values * Various smaller improvements - Update to 1.1.2: * #9518 Windows: Pressing "^" yields "^^" * #9522 Windows: Switching keyboard layouts leads to a crash * #9525 Windows/Mac: Links are not clickable in the About dialog * #9535 Jingle Audio: Update codecs * #9537 DiscoveryWindow: Fix bookmarking a group chat * DBus: Correctly raise NewMessage signal * Clicking on tray notifications does not open the chat - Update to 1.1.1: * 8362 DBus: Incorrect unread message count * 9427 Placeholder not cleared if pasting text into message input * 9444 Determine the delay timestamp correctly when using mam:1 * 9453 Fix opening links inside the group chat subject (MacOS/Windows) * 9465 Allow the full range of possible nicknames in group chats * 9067 Gajim crashes when receiving xhtml messages * 9096 Error when clicking on a subscription notification * 9446 Chatstate error in MUC conversation * 9471 Conversation Textview: Error on key press * 9472 Handle presences without from attr correctly * 9473 Error when creating a new group chat * 9491 Identify group chat subject changes correctly * 9496 Error on MUC roster selection change * Determine soundplayer correctly on unix systems * In some circumstances plugins could not be deleted * Show correct contact status on tabs * Dont answer group chat receipt requests * Fix receipts for private messages * Pressing the back button in the Accounts window leads to an error * Better handle not available keyring backends * Dont show incorrect contact on private messages * Join group chat menu is disabled when there are no bookmarks * Error on start chat menu action * Error when opening sign-in/out notification * Copying text does not work with different keyboard layouts - Update to 1.1.0: * Remove support for XEP-0091 * 8968 Windows: Gajim loads DLLs from wrong location * 9322 Error when adding contact * 9357 Acquire sleep inhibtor correctly after sleep * 9385 Ignore invalid bookmarks * 9386 Discovery: Browsing nodes without identity * 9393 Error when parsing invalid timestamps * 9398 Error on jingle file transfer - For complete ChangeLog from 1.0.99 and 1.0.99.1 please see installed ChaneLog file python-nbxmpp: - Update to 0.6.10: * Add support for domain based name in features for GSSAPI * Fix usage of BOSH * Fix Jingle hash namespace - Update to version 0.6.9 (boo#1123247): * Always bind after SM failed Fixes #64 * Dont try and guess system language - Update to version 0.6.8 (changes since 0.6.6): * Raise default TLS version to 1.2. * Remove DIGEST-MD5 from the default auth mechs. * Add STANZA RECEIVED Event (some servers send more than one stanza in one packet). * Add alternative locations to load TLS certs from. * Reset SM counter after receiving <enabled>. * Issue event when SM resume fails. gajim-1.1.3-lp152.5.3.1.noarch.rpm gajim-1.1.3-lp152.5.3.1.src.rpm gajim-lang-1.1.3-lp152.5.3.1.noarch.rpm openSUSE-2020-943 moderate openSUSE Leap 15.2 Update This update for strawberry fixes the following issues: strawberry was updated to version 0.6.12: * Bugfixes: + Fixed height of about dialog. * Enhancements: + Only save settings for pages that actually has been changed. + Replaced use of deprecated Qt functionality as of 5.15. + Made scrobbler show error dialog for all errors when show error dialog option is on. + Dont append disc to album titles for Subsonic and Tidal. + Sort folders added from file view. + Changed default collection grouping to album - disc. This update was imported from the openSUSE:Leap:15.1:Update update project. strawberry-0.6.12-lp152.2.3.1.src.rpm strawberry-0.6.12-lp152.2.3.1.x86_64.rpm strawberry-debuginfo-0.6.12-lp152.2.3.1.x86_64.rpm strawberry-debugsource-0.6.12-lp152.2.3.1.x86_64.rpm openSUSE-2020-944 moderate openSUSE Leap 15.2 Update This update for live555 fixes the following issues: - CVE-2019-9215: Malformed headers could have lead to invalid memory access in the parseAuthorizationHeader function. (boo#1127341) - CVE-2019-7314: Mishandled termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up could have lead to a Use-After-Free error causing the RTSP server to crash or possibly have unspecified other impact. (boo#1124159) - Update to version 2019.06.28, - Convert to dynamic libraries (boo#1121995): + Use make ilinux-with-shared-libraries: build the dynamic libs instead of the static one. + Use make install instead of a manual file copy script: this also reveals that we missed quite a bit of code to be installed before. + Split out shared library packages according the SLPP. - Use FAT LTO objects in order to provide proper static library. This update was imported from the openSUSE:Leap:15.1:Update update project. libBasicUsageEnvironment1-2019.06.28-lp152.3.3.1.x86_64.rpm libBasicUsageEnvironment1-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm libUsageEnvironment3-2019.06.28-lp152.3.3.1.x86_64.rpm libUsageEnvironment3-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm libgroupsock8-2019.06.28-lp152.3.3.1.x86_64.rpm libgroupsock8-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm libliveMedia66-2019.06.28-lp152.3.3.1.x86_64.rpm libliveMedia66-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm live555-2019.06.28-lp152.3.3.1.src.rpm live555-2019.06.28-lp152.3.3.1.x86_64.rpm live555-debuginfo-2019.06.28-lp152.3.3.1.x86_64.rpm live555-debugsource-2019.06.28-lp152.3.3.1.x86_64.rpm live555-devel-2019.06.28-lp152.3.3.1.x86_64.rpm openSUSE-2020-954 moderate openSUSE Leap 15.2 Update This update for nasm fixes the following issues: nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. * Fix crash due to multiple errors or warnings during the code generation pass if a list file is specified. * Create all system-defined macros defore processing command-line given preprocessing directives (-p, -d, -u, --pragma, --before). * If debugging is enabled, define a __DEBUG_FORMAT__ predefined macro. See section 4.11.7. * Fix an assert for the case in the obj format when a SEG operator refers to an EXTERN symbol declared further down in the code. * Fix a corner case in the floating-point code where a binary, octal or hexadecimal floating-point having at least 32, 11, or 8 mantissa digits could produce slightly incorrect results under very specific conditions. * Support -MD without a filename, for gcc compatibility. -MF can be used to set the dependencies output filename. See section 2.1.7. * Fix -E in combination with -MD. See section 2.1.21. * Fix missing errors on redefined labels; would cause convergence failure instead which is very slow and not easy to debug. * Duplicate definitions of the same label with the same value is now explicitly permitted (2.14 would allow it in some circumstances.) * Add the option --no-line to ignore %line directives in the source. See section 2.1.33 and section 4.10.1. * Changed -I option semantics by adding a trailing path separator unconditionally. * Fixed null dereference in corrupted invalid single line macros. * Fixed division by zero which may happen if source code is malformed. * Fixed out of bound access in processing of malformed segment override. * Fixed out of bound access in certain EQU parsing. * Fixed buffer underflow in float parsing. * Added SGX (Intel Software Guard Extensions) instructions. * Added +n syntax for multiple contiguous registers. * Fixed subsections_via_symbols for macho object format. * Added the --gprefix, --gpostfix, --lprefix, and --lpostfix command line options, to allow command line base symbol renaming. See section 2.1.28. * Allow label renaming to be specified by %pragma in addition to from the command line. See section 6.9. * Supported generic %pragma namespaces, output and debug. See section 6.10. * Added the --pragma command line option to inject a %pragma directive. See section 2.1.29. * Added the --before command line option to accept preprocess statement before input. See section 2.1.30. * Added AVX512 VBMI2 (Additional Bit Manipulation), VNNI (Vector Neural Network), BITALG (Bit Algorithm), and GFNI (Galois Field New Instruction) instructions. * Added the STATIC directive for local symbols that should be renamed using global-symbol rules. See section 6.8. * Allow a symbol to be defined as EXTERN and then later overridden as GLOBAL or COMMON. Furthermore, a symbol declared EXTERN and then defined will be treated as GLOBAL. See section 6.5. * The GLOBAL directive no longer is required to precede the definition of the symbol. * Support private_extern as macho specific extension to the GLOBAL directive. See section 7.8.5. * Updated UD0 encoding to match with the specification * Added the --limit-X command line option to set execution limits. See section 2.1.31. * Updated the Codeview version number to be aligned with MASM. * Added the --keep-all command line option to preserve output files. See section 2.1.32. * Added the --include command line option, an alias to -P (section 2.1.18). * Added the --help command line option as an alias to -h (section 3.1). * Added -W, -D, and -Q suffix aliases for RET instructions so the operand sizes of these instructions can be encoded without using o16, o32 or o64. New upstream version 2.13.03: * Add flags: AES, VAES, VPCLMULQDQ * Add VPCLMULQDQ instruction * elf: Add missing dwarf loc section * documentation updates This update was imported from the SUSE:SLE-15:Update update project. nasm-2.14.02-lp152.4.3.1.src.rpm nasm-2.14.02-lp152.4.3.1.x86_64.rpm nasm-debuginfo-2.14.02-lp152.4.3.1.x86_64.rpm nasm-debugsource-2.14.02-lp152.4.3.1.x86_64.rpm nasm-2.14.02-lp152.4.3.1.i586.rpm nasm-debuginfo-2.14.02-lp152.4.3.1.i586.rpm nasm-debugsource-2.14.02-lp152.4.3.1.i586.rpm openSUSE-2020-971 moderate openSUSE Leap 15.2 Update This update for hylafax+ fixes the following issues: * adjusted authorisation * adjusted pre*/post* snipplets hylafax+-7.0.2-lp152.3.3.1.src.rpm hylafax+-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-client-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-client-debuginfo-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-debuginfo-7.0.2-lp152.3.3.1.x86_64.rpm hylafax+-debugsource-7.0.2-lp152.3.3.1.x86_64.rpm libfaxutil7_0_2-7.0.2-lp152.3.3.1.x86_64.rpm libfaxutil7_0_2-debuginfo-7.0.2-lp152.3.3.1.x86_64.rpm openSUSE-2020-955 moderate openSUSE Leap 15.2 Update This update for mozilla-nss fixes the following issues: mozilla-nss was updated to version 3.53.1 - CVE-2020-12402: Fixed a potential side channel attack during RSA key generation (bsc#1173032) - Fixed various FIPS issues in libfreebl3 which were causing segfaults in the test suite of chrony (bsc#1168669). This update was imported from the SUSE:SLE-15:Update update project. libfreebl3-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-hmac-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-hmac-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-3.53.1-lp152.2.4.1.src.rpm mozilla-nss-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-debugsource-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-devel-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-tools-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-tools-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-3.53.1-lp152.2.4.1.i586.rpm libfreebl3-32bit-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libfreebl3-debuginfo-3.53.1-lp152.2.4.1.i586.rpm libfreebl3-hmac-3.53.1-lp152.2.4.1.i586.rpm libfreebl3-hmac-32bit-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-3.53.1-lp152.2.4.1.i586.rpm libsoftokn3-32bit-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm libsoftokn3-debuginfo-3.53.1-lp152.2.4.1.i586.rpm libsoftokn3-hmac-3.53.1-lp152.2.4.1.i586.rpm libsoftokn3-hmac-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-certs-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-debuginfo-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-debugsource-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-devel-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-sysinit-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-sysinit-32bit-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-32bit-debuginfo-3.53.1-lp152.2.4.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-tools-3.53.1-lp152.2.4.1.i586.rpm mozilla-nss-tools-debuginfo-3.53.1-lp152.2.4.1.i586.rpm openSUSE-2020-975 moderate openSUSE Leap 15.2 Update This update for fontforge, ghostscript-fonts, ttf-converter, xorg-x11-fonts fixes the following issues: Changes in fontforge: - Support transforming bitmap glyphs from python. (bsc#1169444) - Allow python-Sphinx >= 3 Changes in ttf-converter: - Update from version 1.0 to version 1.0.6: * ftdump is now shipped additionally as new dependency for ttf-converter * Standardize output when converting vector and bitmap fonts * Add more subfamilies fixes (bsc#1169444) * Add --family and --subfamily arguments to force values on those fields * Add parameters to fix glyph unicode values --fix-glyph-unicode : Try to fix unicode points and glyph names based on glyph names containing hexadecimal codes (like "$0C00", "char12345" or "uni004F") --replace-unicode-values: When passed 2 comma separated numbers a,b the glyph with an unicode value of a is replaced with the unicode value b. Can be used more than once. --shift-unicode-values: When passed 3 comma separated numbers a,b,c this shifts the unicode values of glyphs between a and b (both included) by adding c. Can be used more than once. * Add --bitmapTransform parameter to transform bitmap glyphs. (bsc#1169444) When used, all glyphs are modified with the transformation function and values passed as parameters. The parameter has three values separated by commas: fliph|flipv|rotate90cw|rotate90ccw|rotate180|skew|transmove,xoff,yoff * Add support to convert bitmap fonts (bsc#1169444) * Rename MediumItalic subfamily to Medium Italic * Show some more information when removing duplicated glyphs * Add a --force-monospaced argument instead of hardcoding font names * Convert `BoldCond` subfamily to `Bold Condensed` * Fixes for Monospaced fonts and force the Nimbus Mono L font to be Monospaced. (bsc#1169444 #c41) * Add a --version argument * Fix subfamily names so the converted font's subfamily match the original ones. (bsc#1169444 #c41) Changes in xorg-x11-fonts: - Use ttf-converter 1.0.6 to build an Italic version of cu12.pcf.gz in the converted subpackage - Include the subfamily in the filename of converted fonts - Use ttf-converter's new bitmap font support to convert Schumacher Clean and Schumacher Clean Wide (bsc#1169444 #c41) - Replace some unicode values in cu-pua12.pcf.gz to fix them - Shift some unicode values in arabic24.pcf.gz and cuarabic12.pcf.gz so glyphs don't pretend to be latin characters when they're not. - Don't distribute converted fonts with wrong unicode values in their glyphs. (bsc#1169444) Bitstream-Charter-*.otb, Cursor.ttf,Sun-OPEN-LOOK-*.otb, MUTT-ClearlyU-Devangari-Extra-Regular, MUTT-ClearlyU-Ligature-Wide-Regular, and MUTT-ClearlyU-Devanagari-Regular Changes in ghostscript-fonts: - Force the converted Nimbus Mono font to be monospaced. (bsc#1169444 #c41) Use the --force-monospaced argument of ttf-converter 1.0.3 This update was imported from the SUSE:SLE-15-SP2:Update update project. fontforge-20200314-lp152.2.3.1.src.rpm fontforge-20200314-lp152.2.3.1.x86_64.rpm fontforge-debuginfo-20200314-lp152.2.3.1.x86_64.rpm fontforge-debugsource-20200314-lp152.2.3.1.x86_64.rpm fontforge-devel-20200314-lp152.2.3.1.x86_64.rpm fontforge-doc-20200314-lp152.2.3.1.noarch.rpm fonttosfnt-1.1.0-lp152.2.2.1.src.rpm fonttosfnt-1.1.0-lp152.2.2.1.x86_64.rpm fonttosfnt-debuginfo-1.1.0-lp152.2.2.1.x86_64.rpm fonttosfnt-debugsource-1.1.0-lp152.2.2.1.x86_64.rpm freetype2-2.10.1-lp152.2.2.1.src.rpm freetype2-debugsource-2.10.1-lp152.2.2.1.x86_64.rpm freetype2-devel-2.10.1-lp152.2.2.1.x86_64.rpm freetype2-profile-tti35-2.10.1-lp152.2.2.1.noarch.rpm libfreetype6-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-debuginfo-2.10.1-lp152.2.2.1.x86_64.rpm ft2demos-2.10.1-lp152.2.2.1.nosrc.rpm ft2demos-2.10.1-lp152.2.2.1.x86_64.rpm ftbench-2.10.1-lp152.2.2.1.x86_64.rpm ftdiff-2.10.1-lp152.2.2.1.x86_64.rpm ftdump-2.10.1-lp152.2.2.1.x86_64.rpm ftgamma-2.10.1-lp152.2.2.1.x86_64.rpm ftgrid-2.10.1-lp152.2.2.1.x86_64.rpm ftinspect-2.10.1-lp152.2.2.1.x86_64.rpm ftlint-2.10.1-lp152.2.2.1.x86_64.rpm ftmulti-2.10.1-lp152.2.2.1.x86_64.rpm ftstring-2.10.1-lp152.2.2.1.x86_64.rpm ftvalid-2.10.1-lp152.2.2.1.x86_64.rpm ftview-2.10.1-lp152.2.2.1.x86_64.rpm ghostscript-fonts-9.06-lp152.9.3.1.noarch.rpm ghostscript-fonts-9.06-lp152.9.3.1.src.rpm ghostscript-fonts-other-9.06-lp152.9.3.1.noarch.rpm ghostscript-fonts-std-9.06-lp152.9.3.1.noarch.rpm ghostscript-fonts-std-converted-9.06-lp152.9.3.1.noarch.rpm ttf-converter-1.0.6-lp152.2.3.1.noarch.rpm ttf-converter-1.0.6-lp152.2.3.1.src.rpm xorg-x11-fonts-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-7.6-lp152.7.3.1.src.rpm xorg-x11-fonts-core-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-legacy-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-converted-7.6-lp152.7.3.1.noarch.rpm xorg-x11-fonts-converted-7.6-lp152.7.3.1.src.rpm fontforge-20200314-lp152.2.3.1.i586.rpm fontforge-debuginfo-20200314-lp152.2.3.1.i586.rpm fontforge-debugsource-20200314-lp152.2.3.1.i586.rpm fontforge-devel-20200314-lp152.2.3.1.i586.rpm fonttosfnt-1.1.0-lp152.2.2.1.i586.rpm fonttosfnt-debuginfo-1.1.0-lp152.2.2.1.i586.rpm fonttosfnt-debugsource-1.1.0-lp152.2.2.1.i586.rpm freetype2-debugsource-2.10.1-lp152.2.2.1.i586.rpm freetype2-devel-2.10.1-lp152.2.2.1.i586.rpm freetype2-devel-32bit-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-2.10.1-lp152.2.2.1.i586.rpm libfreetype6-32bit-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-32bit-debuginfo-2.10.1-lp152.2.2.1.x86_64.rpm libfreetype6-debuginfo-2.10.1-lp152.2.2.1.i586.rpm ft2demos-2.10.1-lp152.2.2.1.i586.rpm ftbench-2.10.1-lp152.2.2.1.i586.rpm ftdiff-2.10.1-lp152.2.2.1.i586.rpm ftdump-2.10.1-lp152.2.2.1.i586.rpm ftgamma-2.10.1-lp152.2.2.1.i586.rpm ftgrid-2.10.1-lp152.2.2.1.i586.rpm ftinspect-2.10.1-lp152.2.2.1.i586.rpm ftlint-2.10.1-lp152.2.2.1.i586.rpm ftmulti-2.10.1-lp152.2.2.1.i586.rpm ftstring-2.10.1-lp152.2.2.1.i586.rpm ftvalid-2.10.1-lp152.2.2.1.i586.rpm ftview-2.10.1-lp152.2.2.1.i586.rpm openSUSE-2020-976 important openSUSE Leap 15.2 Update This update for openldap2 fixes the following issues: - CVE-2020-8023: Fixed a potential local privilege escalation from ldap to root when OPENLDAP_CONFIG_BACKEND="ldap" was used (bsc#1172698). - Changed DB_CONFIG to root:ldap permissions (bsc#1172704). This update was imported from the SUSE:SLE-15:Update update project. libldap-2_4-2-2.4.46-lp152.14.3.1.x86_64.rpm libldap-2_4-2-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm libldap-data-2.4.46-lp152.14.3.1.noarch.rpm openldap2-2.4.46-lp152.14.3.1.src.rpm openldap2-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-meta-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-meta-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-perl-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-perl-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sock-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sock-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sql-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-back-sql-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-client-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-client-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-contrib-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-contrib-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-debugsource-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-devel-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-devel-static-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-doc-2.4.46-lp152.14.3.1.noarch.rpm openldap2-ppolicy-check-password-1.2-lp152.14.3.1.x86_64.rpm openldap2-ppolicy-check-password-debuginfo-1.2-lp152.14.3.1.x86_64.rpm libldap-2_4-2-2.4.46-lp152.14.3.1.i586.rpm libldap-2_4-2-32bit-2.4.46-lp152.14.3.1.x86_64.rpm libldap-2_4-2-32bit-debuginfo-2.4.46-lp152.14.3.1.x86_64.rpm libldap-2_4-2-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-meta-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-meta-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-perl-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-perl-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sock-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sock-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sql-2.4.46-lp152.14.3.1.i586.rpm openldap2-back-sql-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-client-2.4.46-lp152.14.3.1.i586.rpm openldap2-client-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-contrib-2.4.46-lp152.14.3.1.i586.rpm openldap2-contrib-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-debuginfo-2.4.46-lp152.14.3.1.i586.rpm openldap2-debugsource-2.4.46-lp152.14.3.1.i586.rpm openldap2-devel-2.4.46-lp152.14.3.1.i586.rpm openldap2-devel-32bit-2.4.46-lp152.14.3.1.x86_64.rpm openldap2-devel-static-2.4.46-lp152.14.3.1.i586.rpm openldap2-ppolicy-check-password-1.2-lp152.14.3.1.i586.rpm openldap2-ppolicy-check-password-debuginfo-1.2-lp152.14.3.1.i586.rpm openSUSE-2020-977 moderate openSUSE Leap 15.2 Update This update for imap fixes the following issues: - read certificates from /etc/imap/certs ([boo#1145195]) imap-2007e_suse-lp152.6.2.1.src.rpm imap-2007e_suse-lp152.6.2.1.x86_64.rpm imap-debuginfo-2007e_suse-lp152.6.2.1.x86_64.rpm imap-debugsource-2007e_suse-lp152.6.2.1.x86_64.rpm imap-devel-2007e_suse-lp152.6.2.1.x86_64.rpm libc-client2007e_suse-2007e_suse-lp152.6.2.1.x86_64.rpm libc-client2007e_suse-debuginfo-2007e_suse-lp152.6.2.1.x86_64.rpm openSUSE-2020-951 moderate openSUSE Leap 15.2 Update This update for python-py3c fixes the following issues: Update python-py3c to 1.1 boo#1173807: * Fixes the py3.8 builds py3c-devel-1.1-lp152.2.1.noarch.rpm python-py3c-1.1-lp152.2.1.src.rpm python2-py3c-1.1-lp152.2.1.noarch.rpm python3-py3c-1.1-lp152.2.1.noarch.rpm openSUSE-2020-992 moderate openSUSE Leap 15.2 Update This update for msr-safe fixes the following issues: This update introduces the msr-safe tool. - Add system account msr for msr-safe tool msr-safe-1.4.0-lp152.2.1.src.rpm msr-safe-debugsource-1.4.0-lp152.2.1.x86_64.rpm msr-safe-kmp-default-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm msr-safe-kmp-default-debuginfo-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm msr-safe-kmp-preempt-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm msr-safe-kmp-preempt-debuginfo-1.4.0_k5.3.18_lp152.20.7-lp152.2.1.x86_64.rpm system-user-msr-1.4.0-lp152.2.1.x86_64.rpm system-user-msr-debuginfo-1.4.0-lp152.2.1.x86_64.rpm openSUSE-2020-978 important openSUSE Leap 15.2 Update This update for LibVNCServer fixes the following issues: - CVE-2017-18922: Fixed an issue which could have allowed to an attacker to pre-auth overwrite a function pointer which subsequently used leading to potential remote code execution (bsc#1173477). This update was imported from the SUSE:SLE-15:Update update project. LibVNCServer-0.9.10-lp152.9.4.1.src.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.1.x86_64.rpm LibVNCServer-devel-0.9.10-lp152.9.4.1.x86_64.rpm libvncclient0-0.9.10-lp152.9.4.1.x86_64.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.1.x86_64.rpm libvncserver0-0.9.10-lp152.9.4.1.x86_64.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.1.x86_64.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.1.i586.rpm LibVNCServer-devel-0.9.10-lp152.9.4.1.i586.rpm libvncclient0-0.9.10-lp152.9.4.1.i586.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.1.i586.rpm libvncserver0-0.9.10-lp152.9.4.1.i586.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.1.i586.rpm openSUSE-2020-979 moderate openSUSE Leap 15.2 Update This update for live-add-yast-repos fixes the following issues: - autorefresh defaults to true (boo#1173873) live-add-yast-repos-1.0-lp152.5.3.1.src.rpm live-add-yast-repos-1.0-lp152.5.3.1.x86_64.rpm openSUSE-2020-1008 moderate openSUSE Leap 15.2 Update This update for keepassxc fixes the following issues: - Update to version 2.6.0: * https://keepassxc.org/blog/2020-07-07-2.6.0-released/ * https://github.com/keepassxreboot/keepassxc/releases/tag/2.6.0 keepassxc-2.6.0-lp152.3.3.1.src.rpm keepassxc-2.6.0-lp152.3.3.1.x86_64.rpm keepassxc-debuginfo-2.6.0-lp152.3.3.1.x86_64.rpm keepassxc-debugsource-2.6.0-lp152.3.3.1.x86_64.rpm keepassxc-lang-2.6.0-lp152.3.3.1.noarch.rpm openSUSE-2020-980 moderate openSUSE Leap 15.2 Update This update for gcc9 fixes the following issues: This update ships the GCC 9.3 release. - Includes a fix for Internal compiler error when building HepMC (bsc#1167898) - Includes fix for binutils version parsing - Add libstdc++6-pp provides and conflicts to avoid file conflicts with same minor version of libstdc++6-pp from gcc10. - Add gcc9 autodetect -g at lto link (bsc#1149995) - Install go tool buildid for bootstrapping go cross-nvptx-gcc9-9.3.1+git1296-lp152.2.3.1.src.rpm cross-nvptx-gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cross-nvptx-gcc9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cross-nvptx-gcc9-debugsource-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cross-nvptx-newlib9-devel-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-testresults-9.3.1+git1296-lp152.2.3.1.src.rpm gcc9-testresults-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cpp9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cpp9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-9.3.1+git1296-lp152.2.3.1.src.rpm gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-ada-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-ada-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-ada-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-c++-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-c++-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-c++-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-debugsource-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-fortran-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-fortran-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-fortran-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-go-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-go-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-go-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm gcc9-info-9.3.1+git1296-lp152.2.3.1.noarch.rpm gcc9-locale-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libada9-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libasan5-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libatomic1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgcc_s1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgfortran5-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgo14-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libgomp1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libitm1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm liblsan0-9.3.1+git1296-lp152.2.3.1.x86_64.rpm liblsan0-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libquadmath0-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-devel-gcc9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-devel-gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-locale-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-pp-gcc9-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libstdc++6-pp-gcc9-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libtsan0-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libtsan0-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-32bit-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-32bit-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-9.3.1+git1296-lp152.2.3.1.x86_64.rpm libubsan1-debuginfo-9.3.1+git1296-lp152.2.3.1.x86_64.rpm cpp9-9.3.1+git1296-lp152.2.3.1.i586.rpm cpp9-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-ada-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-ada-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-c++-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-c++-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-debugsource-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-fortran-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-fortran-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-go-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-go-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm gcc9-locale-9.3.1+git1296-lp152.2.3.1.i586.rpm libada9-9.3.1+git1296-lp152.2.3.1.i586.rpm libada9-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libasan5-9.3.1+git1296-lp152.2.3.1.i586.rpm libasan5-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libatomic1-9.3.1+git1296-lp152.2.3.1.i586.rpm libatomic1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgcc_s1-9.3.1+git1296-lp152.2.3.1.i586.rpm libgcc_s1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgfortran5-9.3.1+git1296-lp152.2.3.1.i586.rpm libgfortran5-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgo14-9.3.1+git1296-lp152.2.3.1.i586.rpm libgo14-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libgomp1-9.3.1+git1296-lp152.2.3.1.i586.rpm libgomp1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libitm1-9.3.1+git1296-lp152.2.3.1.i586.rpm libitm1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libquadmath0-9.3.1+git1296-lp152.2.3.1.i586.rpm libquadmath0-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-devel-gcc9-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-locale-9.3.1+git1296-lp152.2.3.1.i586.rpm libstdc++6-pp-gcc9-9.3.1+git1296-lp152.2.3.1.i586.rpm libubsan1-9.3.1+git1296-lp152.2.3.1.i586.rpm libubsan1-debuginfo-9.3.1+git1296-lp152.2.3.1.i586.rpm openSUSE-2020-972 moderate openSUSE Leap 15.2 Update This update for usbguard fixes the following issues: - disable system call filtering in systemd service file for Leap 15.X (boo#1173750) - update to 0.7.8 + Fixed segfaults with rules.d feature + Added readwritepath to service file + Added match-all keyword to rules language + Added rules.d feature: daemon can load multiple rule files from rules.d/ + Included with-connect-type in dbus signal + Fixed sigwaitinfo handling + Fixed possible data corruption on stack with appendRule via dbus + Fixed ENOBUFS errno handling on netlink socket: daemon can survive and wait until socket is readable again + Dropped unused PIDFile from service file + Dropped deprecated dbus-glib dependency libusbguard0-0.7.8-lp152.2.5.1.x86_64.rpm libusbguard0-debuginfo-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-0.7.8-lp152.2.5.1.src.rpm usbguard-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-debuginfo-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-debugsource-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-devel-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-tools-0.7.8-lp152.2.5.1.x86_64.rpm usbguard-tools-debuginfo-0.7.8-lp152.2.5.1.x86_64.rpm openSUSE-2020-981 moderate openSUSE Leap 15.2 Update This update for k4dirstat fixes the following issues: k4dirstat was updated: to 3.2.1 (boo#1173905): * Fix crashes on startup in some certain KIO related circumstances k4dirstat-3.2.1-lp152.2.3.1.src.rpm k4dirstat-3.2.1-lp152.2.3.1.x86_64.rpm k4dirstat-debuginfo-3.2.1-lp152.2.3.1.x86_64.rpm k4dirstat-debugsource-3.2.1-lp152.2.3.1.x86_64.rpm k4dirstat-lang-3.2.1-lp152.2.3.1.noarch.rpm openSUSE-2020-1059 moderate openSUSE Leap 15.2 Update This update for zypper-migration-plugin fixes the following issues: Changes in zypper-migration-plugin: - make sure all release packages are installed (boo#1171652) zypper-migration-plugin-0.12.1590748670.86b0749-lp152.2.3.1.noarch.rpm zypper-migration-plugin-0.12.1590748670.86b0749-lp152.2.3.1.src.rpm openSUSE-2020-1016 moderate openSUSE Leap 15.2 Update This update for mumble fixes the following issues: mumble was updated 1.3.2: * client: Fixed overlay not starting Update to upstream version 1.3.1 - Security * Fixed: Potential exploit in the OCB2 encryption (#4227) boo#1174041 - ICE * Fixed: Added missing UserKDFIterations field to UserInfo => Prevents getRegistration() from failing with enumerator out of range error (#3835) - GRPC * Fixed: Segmentation fault during murmur shutdown (#3938) - Client * Fixed: Crash when using multiple monitors (#3756) * Fixed: Don't send empty message from clipboard via shortcut, if clipboard is empty (#3864) * Fixed: Talking indicator being able to freeze to indicate talking when self-muted (#4006) * Fixed: High CPU usage for update-check if update server not available (#4019) * Fixed: DBus getCurrentUrl returning empty string when not in root-channel (#4029) * Fixed: Small parts of whispering leaking out (#4051) * Fixed: Last audio frame of normal talking is sent to last whisper target (#4050) * Fixed: LAN-icon not found in ConnectDialog (#4058) * Improved: Set maximal vertical size for User Volume Adjustment dialog (#3801) * Improved: Don't send empty data to PulseAudio (#3316) * Improved: Use the SRV resolved port for UDP connections (#3820) * Improved: Manual Plugin UI (#3919) * Improved: Don't start Jack server by default (#3990) * Improved: Overlay doesn't hook into all other processes by default (#4041) * Improved: Wait longer before disconnecting from a server due to unanswered Ping-messages (#4123) - Server * Fixed: Possibility to circumvent max user-count in channel (#3880) * Fixed: Rate-limit implementation susceptible to time-underflow (#4004) * Fixed: OpenSSL error 140E0197 with Qt >= 5.12.2 (#4032) * Fixed: VersionCheck for SQL for when to use the WAL feature (#4163) * Fixed: Wrong database encoding that could lead to server-crash (#4220) * Fixed: DB crash due to primary key violation (now performs "UPSERT" to avoid this) (#4105) * Improved: The fields in the Version ProtoBuf message are now size-restricted (#4101) - use the "profile profilename /path/to/binary" syntax to make "ps aufxZ" more readable mumble-1.3.2-lp152.2.3.1.src.rpm mumble-1.3.2-lp152.2.3.1.x86_64.rpm mumble-debuginfo-1.3.2-lp152.2.3.1.x86_64.rpm mumble-debugsource-1.3.2-lp152.2.3.1.x86_64.rpm mumble-server-1.3.2-lp152.2.3.1.x86_64.rpm mumble-server-debuginfo-1.3.2-lp152.2.3.1.x86_64.rpm mumble-1.3.2-lp152.2.3.1.i586.rpm mumble-32bit-1.3.2-lp152.2.3.1.x86_64.rpm mumble-32bit-debuginfo-1.3.2-lp152.2.3.1.x86_64.rpm mumble-debuginfo-1.3.2-lp152.2.3.1.i586.rpm mumble-debugsource-1.3.2-lp152.2.3.1.i586.rpm mumble-server-1.3.2-lp152.2.3.1.i586.rpm mumble-server-debuginfo-1.3.2-lp152.2.3.1.i586.rpm openSUSE-2020-982 important openSUSE Leap 15.2 Update This update for MozillaThunderbird to version 68.10.0 ESR fixes the following issues: - CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 (bsc#1173576). - CVE-2020-12418: Information disclosure due to manipulated URL object (bsc#1173576). - CVE-2020-12419: Use-after-free in nsGlobalWindowInner (bsc#1173576). - CVE-2020-12420: Use-After-Free when trying to connect to a STUN server (bsc#1173576). - CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates (bsc#1173576). This update was imported from the SUSE:SLE-15:Update update project. MozillaThunderbird-68.10.0-lp152.2.4.1.src.rpm MozillaThunderbird-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-debuginfo-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-debugsource-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-translations-common-68.10.0-lp152.2.4.1.x86_64.rpm MozillaThunderbird-translations-other-68.10.0-lp152.2.4.1.x86_64.rpm openSUSE-2020-983 important openSUSE Leap 15.2 Update This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues: Security issues fixed: - CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing (bsc#1173576). - CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster (bsc#1173576). - CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 (bsc#1173576). - CVE-2020-12418: Information disclosure due to manipulated URL object (bsc#1173576). - CVE-2020-12419: Use-after-free in nsGlobalWindowInner (bsc#1173576). - CVE-2020-12420: Use-After-Free when trying to connect to a STUN server (bsc#1173576). - CVE-2020-12402: RSA Key Generation vulnerable to side-channel attack (bsc#1173576). - CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates (bsc#1173576). - CVE-2020-12422: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (bsc#1173576). - CVE-2020-12423: DLL Hijacking due to searching %PATH% for a library (bsc#1173576). - CVE-2020-12424: WebRTC permission prompt could have been bypassed by a compromised content process (bsc#1173576). - CVE-2020-12425: Out of bound read in Date.parse() (bsc#1173576). - CVE-2020-12426: Memory safety bugs fixed in Firefox 78 (bsc#1173576). - FIPS: MozillaFirefox: allow /proc/sys/crypto/fips_enabled (bsc#1167231). Non-security issues fixed: - Fixed interaction with freetype6 (bsc#1173613). This update was imported from the SUSE:SLE-15:Update update project. MozillaFirefox-78.0.1-lp152.2.5.1.src.rpm MozillaFirefox-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-branding-upstream-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-buildsymbols-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-debuginfo-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-debugsource-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-devel-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-translations-common-78.0.1-lp152.2.5.1.x86_64.rpm MozillaFirefox-translations-other-78.0.1-lp152.2.5.1.x86_64.rpm openSUSE-2020-1060 moderate openSUSE Leap 15.2 Update This update for cacti, cacti-spine fixes the following issues: - cacti 1.2.13: * Query XSS vulnerabilities require vendor package update (CVE-2020-11022 / CVE-2020-11023) * Lack of escaping on some pages can lead to XSS exposure * Update PHPMailer to 6.1.6 (CVE-2020-13625) * SQL Injection vulnerability due to input validation failure when editing colors (CVE-2020-14295, boo#1173090) * Lack of escaping on template import can lead to XSS exposure - switch from cron to systemd timers (boo#1115436): + cacti-cron.timer + cacti-cron.service - avoid potential root escalation on systems with fs.protected_hardlinks=0 (boo#1154087): handle directory permissions in file section instead of using chown during post installation - rewrote apache configuration to get rid of .htaccess files and explicitely disable directory permissions per default (only allow a limited, well-known set of directories) cacti-spine-1.2.13-lp152.2.3.1.src.rpm cacti-spine-1.2.13-lp152.2.3.1.x86_64.rpm cacti-spine-debuginfo-1.2.13-lp152.2.3.1.x86_64.rpm cacti-spine-debugsource-1.2.13-lp152.2.3.1.x86_64.rpm cacti-1.2.13-lp152.2.3.1.noarch.rpm cacti-1.2.13-lp152.2.3.1.src.rpm openSUSE-2020-985 important openSUSE Leap 15.2 Update This update for xen fixes the following issues: - CVE-2020-15563: Fixed inverted code paths in x86 dirty VRAM tracking (bsc#1173377). - CVE-2020-15565: Fixed insufficient cache write-back under VT-d (bsc#1173378). - CVE-2020-15566: Fixed incorrect error handling in event channel port allocation (bsc#1173376). - CVE-2020-15567: Fixed non-atomic modification of live EPT PTE (bsc#1173380). - CVE-2020-0543: Special Register Buffer Data Sampling (SRBDS) aka "CrossTalk" (bsc#1172205). Additional upstream bug fixes (bsc#1027519) This update was imported from the SUSE:SLE-15-SP2:Update update project. xen-4.13.1_04-lp152.2.3.1.src.rpm xen-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-debugsource-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-devel-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-doc-html-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-domU-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-domU-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.13.1_04-lp152.2.3.1.noarch.rpm xen-debugsource-4.13.1_04-lp152.2.3.1.i586.rpm xen-devel-4.13.1_04-lp152.2.3.1.i586.rpm xen-libs-32bit-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-32bit-debuginfo-4.13.1_04-lp152.2.3.1.x86_64.rpm xen-libs-4.13.1_04-lp152.2.3.1.i586.rpm xen-libs-debuginfo-4.13.1_04-lp152.2.3.1.i586.rpm xen-tools-domU-4.13.1_04-lp152.2.3.1.i586.rpm xen-tools-domU-debuginfo-4.13.1_04-lp152.2.3.1.i586.rpm openSUSE-2020-986 moderate openSUSE Leap 15.2 Update This update for salt contains the following fixes: - Require python3-distro only for TW (bsc#1173072) - Various virt backports from 3000.2 including blackening commit for the virt module and state. - Avoid traceback on debug logging for swarm module. (bsc#1172075) - Add publish_batch to ClearFuncs exposed methods. - zypperpkg: filter patterns that start with dot. (bsc#1171906) - Batch mode now also correctly provides return value. (bsc#1168340) - Add docker.logout to docker execution module. (bsc#1165572) - Testsuite fix. - Add option to enable/disable force refresh for zypper. - Python3.8 compatibility changes. - Prevent sporious "salt-api" stuck processes when managing SSH minions because of logging deadlock. (bsc#1159284) - Avoid segfault from "salt-api" under certain conditions of heavy load managing SSH minions. (bsc#1169604) - Revert broken changes to slspath made on Salt 3000 (saltstack/salt#56341). (bsc#1170104) - Returns a the list of IPs filtered by the optional network list This update was imported from the SUSE:SLE-15-SP2:Update update project. python2-salt-3000-lp152.3.3.1.x86_64.rpm python3-salt-3000-lp152.3.3.1.x86_64.rpm salt-3000-lp152.3.3.1.src.rpm salt-3000-lp152.3.3.1.x86_64.rpm salt-api-3000-lp152.3.3.1.x86_64.rpm salt-bash-completion-3000-lp152.3.3.1.noarch.rpm salt-cloud-3000-lp152.3.3.1.x86_64.rpm salt-doc-3000-lp152.3.3.1.x86_64.rpm salt-fish-completion-3000-lp152.3.3.1.noarch.rpm salt-master-3000-lp152.3.3.1.x86_64.rpm salt-minion-3000-lp152.3.3.1.x86_64.rpm salt-proxy-3000-lp152.3.3.1.x86_64.rpm salt-ssh-3000-lp152.3.3.1.x86_64.rpm salt-standalone-formulas-configuration-3000-lp152.3.3.1.x86_64.rpm salt-syndic-3000-lp152.3.3.1.x86_64.rpm salt-zsh-completion-3000-lp152.3.3.1.noarch.rpm openSUSE-2020-1014 important openSUSE Leap 15.2 Update This update for google-compute-engine fixes the following issues: - Don't enable and start google-network-daemon.service when it's already installed (bsc#1169978) + Do not add the created user to the adm (CVE-2020-8903), docker (CVE-2020-8907), or lxd (CVE-2020-8933) groups if they exist (bsc#1173258) google-compute-engine-20190801-lp152.5.4.1.src.rpm google-compute-engine-debugsource-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-init-20190801-lp152.5.4.1.noarch.rpm google-compute-engine-oslogin-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-debugsource-20190801-lp152.5.4.1.i586.rpm google-compute-engine-oslogin-20190801-lp152.5.4.1.i586.rpm google-compute-engine-oslogin-32bit-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-oslogin-32bit-debuginfo-20190801-lp152.5.4.1.x86_64.rpm google-compute-engine-oslogin-debuginfo-20190801-lp152.5.4.1.i586.rpm openSUSE-2020-1018 low openSUSE Leap 15.2 Update This update for python-numpy fixes the following issues: - Fixes a file conflict with /usr/bin/f2py (bsc#1166678) python-numpy_1_17_3-gnu-hpc-1.17.3-lp152.2.4.1.src.rpm python-numpy_1_17_3-gnu-hpc-debugsource-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-gnu-hpc-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-gnu-hpc-devel-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-debuginfo-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-lp152.2.4.1.x86_64.rpm python-numpy-1.17.3-lp152.2.4.1.src.rpm python-numpy-debugsource-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-debuginfo-1.17.3-lp152.2.4.1.x86_64.rpm python3-numpy-devel-1.17.3-lp152.2.4.1.x86_64.rpm openSUSE-2020-1015 moderate openSUSE Leap 15.2 Update This update for openexr fixes the following issues: - CVE-2020-15304: Fixed a NULL pointer dereference in TiledInputFile:TiledInputFile() (bsc#1173466). - CVE-2020-15305: Fixed a use-after-free in DeepScanLineInputFile:DeepScanLineInputFile() (bsc#1173467). - CVE-2020-15306: Fixed a heap buffer overflow in getChunkOffsetTableSize() (bsc#1173469). libIlmImf-2_2-23-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm openexr-2.2.1-lp152.7.5.1.src.rpm openexr-2.2.1-lp152.7.5.1.x86_64.rpm openexr-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm openexr-debugsource-2.2.1-lp152.7.5.1.x86_64.rpm openexr-devel-2.2.1-lp152.7.5.1.x86_64.rpm openexr-doc-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-lp152.7.5.1.i586.rpm libIlmImf-2_2-23-32bit-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-32bit-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImf-2_2-23-debuginfo-2.2.1-lp152.7.5.1.i586.rpm libIlmImfUtil-2_2-23-2.2.1-lp152.7.5.1.i586.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-debuginfo-2.2.1-lp152.7.5.1.x86_64.rpm libIlmImfUtil-2_2-23-debuginfo-2.2.1-lp152.7.5.1.i586.rpm openexr-2.2.1-lp152.7.5.1.i586.rpm openexr-debuginfo-2.2.1-lp152.7.5.1.i586.rpm openexr-debugsource-2.2.1-lp152.7.5.1.i586.rpm openexr-devel-2.2.1-lp152.7.5.1.i586.rpm openexr-doc-2.2.1-lp152.7.5.1.i586.rpm openSUSE-2020-994 important openSUSE Leap 15.2 Update This update for slirp4netns fixes the following issues: - Update to 0.4.7 (bsc#1172380) * libslirp: update to v4.3.1 (Fix CVE-2020-10756) * Fix config_from_options() to correctly enable ipv6 This update was imported from the SUSE:SLE-15-SP1:Update update project. slirp4netns-0.4.7-lp152.2.3.1.src.rpm slirp4netns-0.4.7-lp152.2.3.1.x86_64.rpm slirp4netns-debuginfo-0.4.7-lp152.2.3.1.x86_64.rpm slirp4netns-debugsource-0.4.7-lp152.2.3.1.x86_64.rpm openSUSE-2020-995 moderate openSUSE Leap 15.2 Update This update for open-vm-tools fixes the following issues: - Update to version 11.1.0 (bsc#1171764, jsc#ECO-2164) This version provides a new 'Service Discovery' plugin. (bsc#1171765) - Provide a better pam configuration and authentication. (bsc#1171003, bsc#1172693) This update was imported from the SUSE:SLE-15-SP2:Update update project. libvmtools-devel-11.1.0-lp152.3.3.1.x86_64.rpm libvmtools0-11.1.0-lp152.3.3.1.x86_64.rpm libvmtools0-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-11.1.0-lp152.3.3.1.src.rpm open-vm-tools-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-debugsource-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-desktop-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-desktop-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-sdmp-11.1.0-lp152.3.3.1.x86_64.rpm open-vm-tools-sdmp-debuginfo-11.1.0-lp152.3.3.1.x86_64.rpm openSUSE-2020-1001 moderate openSUSE Leap 15.2 Update This update for rubygem-puma to version 4.3.5 fixes the following issues: - CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage (bsc#1172175). - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header (bsc#1172176). - Disabled TLSv1.0 and TLSv1.1 (jsc#SLE-6965). This update was imported from the SUSE:SLE-15:Update update project. ruby2.5-rubygem-puma-4.3.5-lp152.4.3.1.x86_64.rpm ruby2.5-rubygem-puma-debuginfo-4.3.5-lp152.4.3.1.x86_64.rpm ruby2.5-rubygem-puma-doc-4.3.5-lp152.4.3.1.x86_64.rpm rubygem-puma-4.3.5-lp152.4.3.1.src.rpm rubygem-puma-debugsource-4.3.5-lp152.4.3.1.x86_64.rpm openSUSE-2020-1002 important openSUSE Leap 15.2 Update This update for python-ipaddress fixes the following issues: - Add CVE-2020-14422-ipaddress-hash-collision.patch fixing CVE-2020-14422 (bsc#1173274, bpo#41004), where hash collisions in IPv4Interface and IPv6Interface could lead to DOS. This update was imported from the SUSE:SLE-15:Update update project. python-ipaddress-1.0.18-lp152.4.3.1.noarch.rpm python-ipaddress-1.0.18-lp152.4.3.1.src.rpm openSUSE-2020-1011 important openSUSE Leap 15.2 Update This update for singularity fixes the following issues: - New version 3.6.0. This version introduces a new signature format for SIF images, and changes to the signing / verification code to address the following security problems: - CVE-2020-13845, boo#1174150 In Singularity 3.x versions below 3.6.0, issues allow the ECL to be bypassed by a malicious user. - CVE-2020-13846, boo#1174148 In Singularity 3.5 the --all / -a option to singularity verify returns success even when some objects in a SIF container are not signed, or cannot be verified. - CVE-2020-13847, boo#1174152 In Singularity 3.x versions below 3.6.0, Singularity's sign and verify commands do not sign metadata found in the global header or data object descriptors of a SIF file, allowing an attacker to cause unexpected behavior. A signed container may verify successfully, even when it has been modified in ways that could be exploited to cause malicious behavior. - New features / functionalities - A new '--legacy-insecure' flag to verify allows verification of SIF signatures in the old, insecure format. - A new '-l / --logs' flag for instance list that shows the paths to instance STDERR / STDOUT log files. - The --json output of instance list now include paths to STDERR / STDOUT log files. - Singularity now supports the execution of minimal Docker/OCI containers that do not contain /bin/sh, e.g. docker://hello-world. - A new cache structure is used that is concurrency safe on a filesystem that supports atomic rename. If you downgrade to Singularity 3.5 or older after using 3.6 you will need to run singularity cache clean. - A plugin system rework adds new hook points that will allow the development of plugins that modify behavior of the runtime. An image driver concept is introduced for plugins to support new ways of handling image and overlay mounts. Plugins built for <=3.5 are not compatible with 3.6. - The --bind flag can now bind directories from a SIF or ext3 image into a container. - The --fusemount feature to mount filesystems to a container via FUSE drivers is now a supported feature (previously an experimental hidden flag). - This permits users to mount e.g. sshfs and cvmfs filesystems to the container at runtime. - A new -c/--config flag allows an alternative singularity.conf to be specified by the root user, or all users in an unprivileged installation. - A new --env flag allows container environment variables to be set via the Singularity command line. - A new --env-file flag allows container environment variables to be set from a specified file. - A new --days flag for cache clean allows removal of items older than a specified number of days. Replaces the --name flag which is not generally useful as the cache entries are stored by hash, not a friendly name. - Changed defaults / behaviours - New signature format (see security fixes above). - Fixed spacing of singularity instance list to be dynamically changing based off of input lengths instead of fixed number of spaces to account for long instance names. - Environment variables prefixed with SINGULARITYENV_ always take precedence over variables without SINGULARITYENV_ prefix. - The %post build section inherits environment variables from the base image. - %files from ... will now follow symlinks for sources that are directly specified, or directly resolved from a glob pattern. It will not follow symlinks found through directory traversal. This mirrors Docker multi-stage COPY behaviour. - Restored the CWD mount behaviour of v2, implying that CWD path is not recreated inside container and any symlinks in the CWD path are not resolved anymore to determine the destination path inside container. - The %test build section is executed the same manner as singularity test image. --fusemount with the container: default directive will foreground the FUSE process. Use container-daemon: for previous behavior. - Deprecate -a / --all option to sign/verify as new signature behavior makes this the default. - For more information about upstream changes, please check: https://github.com/hpcng/singularity/blob/master/CHANGELOG.md - Removed --name flag for cache clean; replaced with --days. singularity-3.6.0-lp152.2.3.1.src.rpm singularity-3.6.0-lp152.2.3.1.x86_64.rpm singularity-debuginfo-3.6.0-lp152.2.3.1.x86_64.rpm openSUSE-2020-1012 moderate openSUSE Leap 15.2 Update This update for pan fixes the following issues: - Fix message sending when using gmime 3.0 (boo#1166404, pan-0.146-lp152.2.3.1.src.rpm pan-0.146-lp152.2.3.1.x86_64.rpm pan-debuginfo-0.146-lp152.2.3.1.x86_64.rpm pan-debugsource-0.146-lp152.2.3.1.x86_64.rpm pan-lang-0.146-lp152.2.3.1.noarch.rpm openSUSE-2020-991 moderate openSUSE Leap 15.2 Update This update for kio fixes the following issues: - Fixed copying to protocols which don't always report available space (boo#1174169): kio-5.71.0-lp152.2.3.1.src.rpm kio-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-debugsource-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-lang-5.71.0-lp152.2.3.1.noarch.rpm kio-32bit-5.71.0-lp152.2.3.1.x86_64.rpm kio-32bit-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-5.71.0-lp152.2.3.1.i586.rpm kio-core-32bit-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-32bit-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-core-5.71.0-lp152.2.3.1.i586.rpm kio-core-debuginfo-5.71.0-lp152.2.3.1.i586.rpm kio-debuginfo-5.71.0-lp152.2.3.1.i586.rpm kio-debugsource-5.71.0-lp152.2.3.1.i586.rpm kio-devel-32bit-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-32bit-debuginfo-5.71.0-lp152.2.3.1.x86_64.rpm kio-devel-5.71.0-lp152.2.3.1.i586.rpm kio-devel-debuginfo-5.71.0-lp152.2.3.1.i586.rpm openSUSE-2020-1027 moderate openSUSE Leap 15.2 Update This update for openconnect fixes the following issues: - CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which could have led to denial of service (bsc#1171862). This update was imported from the SUSE:SLE-15:Update update project. openconnect-7.08-lp152.9.4.2.src.rpm openconnect-7.08-lp152.9.4.2.x86_64.rpm openconnect-debuginfo-7.08-lp152.9.4.2.x86_64.rpm openconnect-debugsource-7.08-lp152.9.4.2.x86_64.rpm openconnect-devel-7.08-lp152.9.4.2.x86_64.rpm openconnect-doc-7.08-lp152.9.4.2.x86_64.rpm openconnect-lang-7.08-lp152.9.4.2.noarch.rpm openSUSE-2020-1062 important openSUSE Leap 15.2 Update The openSUSE Leap 15.2 was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-15393: usbtest_disconnect in drivers/usb/misc/usbtest.c had a memory leak, aka CID-28ebeb8db770 (bnc#1173514). - CVE-2020-12771: btree_gc_coalesce in drivers/md/bcache/btree.c had a deadlock if a coalescing operation fails (bnc#1171732). The following non-security bugs were fixed: - ACPI: configfs: Disallow loading ACPI tables when locked down (git-fixes). - ACPI: sysfs: Fix pm_profile_attr type (git-fixes). - aio: fix async fsync creds (bsc#1173828). - ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table (git-fixes). - ALSA: hda/hdmi: fix failures at PCM open on Intel ICL and later (git-fixes). - ALSA: hda/hdmi: improve debug traces for stream lookups (git-fixes). - ALSA: hda - let hs_mic be picked ahead of hp_mic (git-fixes). - ALSA: hda/realtek: Add mute LED and micmute LED support for HP systems (git-fixes). - ALSA: hda/realtek - Add quirk for MSI GE63 laptop (git-fixes). - ALSA: hda/realtek - Enable audio jacks of Acer vCopperbox with ALC269VC (git-fixes). - ALSA: hda/realtek: Enable headset mic of Acer C20-820 with ALC269VC (git-fixes). - ALSA: hda/realtek: Enable headset mic of Acer Veriton N4660G with ALC269VC (git-fixes). - ALSA: hda/realtek - Fix Lenovo Thinkpad X1 Carbon 7th quirk subdevice id (git-fixes). - ALSA: isa/wavefront: prevent out of bounds write in ioctl (git-fixes). - ALSA: opl3: fix infoleak in opl3 (git-fixes). - ALSA: usb-audio: Add implicit feedback quirk for RTX6001 (git-fixes). - ALSA: usb-audio: Add implicit feedback quirk for SSL2+ (git-fixes). - ALSA: usb-audio: add quirk for Denon DCD-1500RE (git-fixes). - ALSA: usb-audio: add quirk for MacroSilicon MS2109 (git-fixes). - ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG) (git-fixes). - ALSA: usb-audio: Fix OOB access of mixer element list (git-fixes). - ALSA: usb-audio: Fix packet size calculation (bsc#1173847). - ALSA: usb-audio: Fix potential use-after-free of streams (git-fixes). - ALSA: usb-audio: Replace s/frame/packet/ where appropriate (git-fixes). - amdgpu: a NULL ->mm does not mean a thread is a kthread (git-fixes). - ASoC: core: only convert non DPCM link to DPCM link (git-fixes). - ASoC: davinci-mcasp: Fix dma_chan refcnt leak when getting dma type (git-fixes). - ASoC: fsl_asrc_dma: Fix dma_chan leak when config DMA channel failed (git-fixes). - ASoC: fsl_ssi: Fix bclk calculation for mono channel (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT8-A tablet (git-fixes). - ASoC: max98373: reorder max98373_reset() in resume (git-fixes). - ASoc: q6afe: add support to get port direction (git-fixes). - ASoC: q6asm: handle EOS correctly (git-fixes). - ASoC: qcom: q6asm-dai: kCFI fix (git-fixes). - ASoC: rockchip: Fix a reference count leak (git-fixes). - ASoC: SOF: Do nothing when DSP PM callbacks are not set (git-fixes). - ASoC: SOF: nocodec: conditionally set dpcm_capture/dpcm_playback flags (git-fixes). - ASoC: tegra: tegra_wm8903: Support nvidia, headset property (git-fixes). - ASoC: ti: omap-mcbsp: Fix an error handling path in 'asoc_mcbsp_probe()' (git-fixes). - ata/libata: Fix usage of page address by page_address in ata_scsi_mode_select_xlat function (git-fixes). - ath10k: fix kernel null pointer dereference (git-fixes). - ath10k: Fix the race condition in firmware dump work queue (git-fixes). - b43: Fix connection problem with WPA3 (git-fixes). - b43_legacy: Fix connection problem with WPA3 (git-fixes). - backlight: lp855x: Ensure regulators are disabled on probe failure (git-fixes). - batman-adv: Revert "disable ethtool link speed detection when auto negotiation off" (git-fixes). - bdev: fix bdev inode reference count disbalance regression (bsc#1174244) - block/bio-integrity: do not free 'buf' if bio_integrity_add_page() failed (bsc#1173817). - block: Fix use-after-free in blkdev_get() (bsc#1173834). - block: nr_sects_write(): Disable preemption on seqcount write (bsc#1173818). - Bluetooth: Add SCO fallback for invalid LMP parameters error (git-fixes). - Bluetooth: btbcm: Add 2 missing models to subver tables (git-fixes). - bnxt_en: Fix AER reset logic on 57500 chips (bsc#1171150). - bnxt_en: fix firmware message length endianness (bsc#1173894). - bnxt_en: Fix return code to "flash_device" (bsc#1173894). - bnxt_en: Re-enable SRIOV during resume (jsc#SLE-8371 bsc#1153274). - bnxt_en: Return from timer if interface is not in open state (jsc#SLE-8371 bsc#1153274). - bnxt_en: Simplify bnxt_resume() (jsc#SLE-8371 bsc#1153274). - bpf: Document optval > PAGE_SIZE behavior for sockopt hooks (bsc#1155518). - bpf: Do not return EINVAL from {get,set}sockopt when optlen > PAGE_SIZE (bsc#1155518). - bpf: Fix an error code in check_btf_func() (bsc#1154353). - bpf: Restrict bpf_trace_printk()'s %s usage and add %pks, %pus specifier (bsc#1172344). - bpf, xdp, samples: Fix null pointer dereference in *_user code (bsc#1155518). - brcmfmac: expose RPi firmware config files through modinfo (bsc#1169094). - bus: ti-sysc: Ignore clockactivity unless specified as a quirk (git-fixes). - carl9170: remove P2P_GO support (git-fixes). - cdc-acm: Add DISABLE_ECHO quirk for Microchip/SMSC chip (git-fixes). - clk: qcom: msm8916: Fix the address location of pll->config_reg (git-fixes). - clk: samsung: exynos5433: Add IGNORE_UNUSED flag to sclk_i2s1 (git-fixes). - clk: sifive: allocate sufficient memory for struct __prci_data (git-fixes). - clk: ti: composite: fix memory leak (git-fixes). - clk: zynqmp: fix memory leak in zynqmp_register_clocks (git-fixes). - clocksource: dw_apb_timer: Make CPU-affiliation being optional (git-fixes). - cpufreq: Fix up cpufreq_boost_set_sw() (git-fixes). - cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once (git-fixes). - cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_work_fn (git-fixes). - cpuidle: Fix three reference count leaks (git-fixes). - crypto: algif_skcipher - Cap recv SG list at ctx->used (git-fixes). - crypto - Avoid free() namespace collision (git-fixes). - Crypto/chcr: fix for ccm(aes) failed test (git-fixes). - crypto: omap-sham - add proper load balancing support for multicore (git-fixes). - debugfs: Check module state before warning in {full/open}_proxy_open() (bsc#1173746). - devlink: fix return value after hitting end in region read (networking-stable-20_05_12). - devmap: Use bpf_map_area_alloc() for allocating hash buckets (bsc#1154353). - dm writecache: reject asynchronous pmem devices (bsc#1156395). - dpaa2-eth: prevent array underflow in update_cls_rule() (networking-stable-20_05_16). - dpaa2-eth: properly handle buffer size restrictions (networking-stable-20_05_16). - dpaa_eth: fix usage as DSA master, try 3 (networking-stable-20_05_27). - drivers: base: Fix NULL pointer exception in __platform_driver_probe() if a driver developer is foolish (git-fixes). - Drivers: hv: Change flag to write log level in panic msg to false (bsc#1170617). - drm: amd/display: fix Kconfig help text (bsc#1152489) * context changes - drm/amd/display: Revalidate bandwidth before commiting DC updates (git-fixes). - drm/amd: fix potential memleak in err branch (git-fixes). - drm/amdgpu: add fw release for sdma v5_0 (git-fixes). - drm/amdgpu: drop redundant cg/pg ungate on runpm enter (git-fixes). - drm/amdgpu: fix gfx hang during suspend with video playback (v2) (git-fixes). - drm/amdgpu: fix the hw hang during perform system reboot and reset (git-fixes). - drm/amdgpu: Init data to avoid oops while reading pp_num_states (git-fixes). - drm/amdgpu: move kfd suspend after ip_suspend_phase1 (git-fixes). - drm/amdgpu: Replace invalid device ID with a valid device ID (bsc#1152472) - drm/amd/powerpay: Disable gfxoff when setting manual mode on picasso and raven (git-fixes). - drm: bridge: adv7511: Extend list of audio sample rates (git-fixes). - drm/connector: notify userspace on hotplug after register complete (bsc#1152489) * context changes - drm/i915/gt: Do not schedule normal requests immediately along (bsc#1152489) - drm/i915/gvt: Fix two CFL MMIO handling caused by regression. (bsc#1152489) - drm/i915/gvt: Fix two CFL MMIO handling caused by regression (git-fixes). - drm/i915/icl+: Fix hotplug interrupt disabling after storm detection (bsc#1152489) - drm/msm: Check for powered down HW in the devfreq callbacks (bsc#1152489) - drm/msm/dpu: fix error return code in dpu_encoder_init (bsc#1152489) - drm/msm/dpu: fix error return code in dpu_encoder_init (git-fixes). - drm/msm/mdp5: Fix mdp5_init error path for failed mdp5_kms allocation (git-fixes). - drm/nouveau/disp/gm200-: fix NV_PDISP_SOR_HDMI2_CTRL(n) selection (git-fixes). - drm/qxl: Use correct notify port address when creating cursor ring (bsc#1152472) - drm/radeon: fix fb_div check in ni_init_smc_spll_table() (bsc#1152472) - drm: rcar-du: Fix build error (bsc#1152472) - drm: sun4i: hdmi: Remove extra HPD polling (bsc#1152489) - drm: sun4i: hdmi: Remove extra HPD polling (git-fixes). - e1000: Distribute switch variables for initialization (git-fixes). - e1000e: Relax condition to trigger reset for ME workaround (git-fixes). - ext4: avoid utf8_strncasecmp() with unstable name (bsc#1173843). - ext4: fix error pointer dereference (bsc#1173837). - ext4: fix EXT_MAX_EXTENT/INDEX to check for zeroed eh_max (bsc#1173836). - ext4: fix partial cluster initialization when splitting extent (bsc#1173839). - ext4: fix race between ext4_sync_parent() and rename() (bsc#1173838). - ext4, jbd2: ensure panic by fix a race between jbd2 abort and ext4 error handlers (bsc#1173833). - ext4: stop overwrite the errcode in ext4_setup_super (bsc#1173841). - fat: do not allow to mount if the FAT length == 0 (bsc#1173831). - Fix boot crash with MD (bsc#1173860) - fix multiplication overflow in copy_fdtable() (bsc#1173825). - fork: prevent accidental access to clone3 features (bsc#1174018). - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks (networking-stable-20_05_12). - geneve: allow changing DF behavior after creation (git-fixes). - geneve: change from tx_error to tx_dropped on missing metadata (git-fixes). - gfs2: fix glock reference problem in gfs2_trans_remove_revoke (bsc#1173823). - gfs2: Multi-block allocations in gfs2_page_mkwrite (bsc#1173822). - gpio: pca953x: fix handling of automatic address incrementing (git-fixes). - HID: Add quirks for Trust Panora Graphic Tablet (git-fixes). - hinic: fix a bug of ndo_stop (networking-stable-20_05_16). - hinic: fix wrong para of wait_for_completion_timeout (networking-stable-20_05_16). - hv_netvsc: Fix netvsc_start_xmit's return type (git-fixes). - hwmon: (acpi_power_meter) Fix potential memory leak in acpi_power_meter_add() (git-fixes). - hwmon: (k10temp) Add AMD family 17h model 60h PCI match (git-fixes). - hwmon: (max6697) Make sure the OVERT mask is set correctly (git-fixes). - hwmon: (pmbus) fix a typo in Kconfig SENSORS_IR35221 option (git-fixes). - i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665 (git-fixes). - i2c: core: check returned size of emulated smbus block read (git-fixes). - i2c: fsi: Fix the port number field in status register (git-fixes). - i2c: mlxcpld: check correct size of maximum RECV_LEN packet (git-fixes). - i2c: piix4: Detect secondary SMBus controller on AMD AM4 chipsets (git-fixes). - i2c: pxa: clear all master action bits in i2c_pxa_stop_message() (git-fixes). - i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output (git-fixes). - IB/rdmavt: Free kernel completion queue when done (bsc#1173625). - iio: bmp280: fix compensation of humidity (git-fixes). - input: i8042 - Remove special PowerPC handling (git-fixes). - ionic: add pcie_print_link_status (bsc#1167773). - ionic: export features for vlans to use (bsc#1167773). - ionic: no link check while resetting queues (bsc#1167773). - ionic: remove support for mgmt device (bsc#1167773). - ionic: tame the watchdog timer on reconfig (bsc#1167773). - ionic: wait on queue start until after IFF_UP (bsc#1167773). - io_uring: use kvfree() in io_sqe_buffer_register() (bsc#1173832). - ipmi: use vzalloc instead of kmalloc for user creation (git-fixes). - iwlwifi: mvm: fix aux station leak (git-fixes). - ixgbe: do not check firmware errors (bsc#1170284). - jbd2: avoid leaking transaction credits when unreserving handle (bsc#1173845). - jbd2: Preserve kABI when adding j_abort_mutex (bsc#1173833). - kABI fixup mtk-vpu: avoid unaligned access to DTCM buffer (git-fixes). - kabi: hv: prevent struct device_node to become defined (bsc#1172871). - kABI: protect struct fib_dump_filter (kabi). - kABI: protect struct mlx5_cmd_work_ent (kabi). - libceph: do not omit recovery_deletes in target_copy() (git-fixes). - loop: replace kill_bdev with invalidate_bdev (bsc#1173820). - media: dvbdev: Fix tuner->demod media controller link (git-fixes). - media: dvbsky: add support for eyeTV Geniatech T2 lite (bsc#1173776). - media: dvbsky: add support for Mygica T230C v2 (bsc#1173776). - media: imx: imx7-mipi-csis: Cleanup and fix subdev pad format handling (git-fixes). - media: mtk-vpu: avoid unaligned access to DTCM buffer (git-fixes). - media: ov5640: fix use of destroyed mutex (git-fixes). - media: si2157: Better check for running tuner in init (git-fixes). - media: si2168: add support for Mygica T230C v2 (bsc#1173776). - media: staging: imgu: do not hold spinlock during freeing mmu page table (git-fixes). - media: staging/intel-ipu3: Implement lock for stream on/off operations (git-fixes). - media: vicodec: Fix error codes in probe function (git-fixes). - mfd: wm8994: Fix driver operation if loaded as modules (git-fixes). - mlxsw: spectrum_acl_tcam: Position vchunk in a vregion list properly (networking-stable-20_05_12). - mmc: sdhci-msm: Set SDHCI_QUIRK_MULTIBLOCK_READ_ACMD12 quirk (git-fixes). - mmc: via-sdmmc: Respect the cmd->busy_timeout from the mmc core (git-fixes). - mm: fix NUMA node file count error in replace_page_cache() (bsc#1173844). - mm/memory_hotplug: refrain from adding memory into an impossible node (bsc#1173552). - mvpp2: remove module bugfix (bsc#1154353). - namei: only return -ECHILD from follow_dotdot_rcu() (bsc#1173824). - neigh: send protocol value in neighbor create notification (networking-stable-20_05_12). - net: core: device_rename: Use rwsem instead of a seqcount (bsc#1162702). - net: do not return invalid table id error when we fall back to PF_UNSPEC (networking-stable-20_05_27). - net: dsa: Do not leave DSA master with NULL netdev_ops (networking-stable-20_05_12). - net: dsa: loop: Add module soft dependency (networking-stable-20_05_16). - net: dsa: mt7530: fix roaming from DSA user ports (networking-stable-20_05_27). - net: ethernet: ti: cpsw: fix ASSERT_RTNL() warning during suspend (networking-stable-20_05_27). - net: fix a potential recursive NETDEV_FEAT_CHANGE (networking-stable-20_05_16). - __netif_receive_skb_core: pass skb by reference (networking-stable-20_05_27). - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* (networking-stable-20_05_27). - net: ipip: fix wrong address family in init error path (networking-stable-20_05_27). - net: macb: fix an issue about leak related system resources (networking-stable-20_05_12). - net: macsec: preserve ingress frame ordering (networking-stable-20_05_12). - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() (networking-stable-20_05_12). - net/mlx5: Add command entry handling completion (networking-stable-20_05_27). - net/mlx5: Disable reload while removing the device (jsc#SLE-8464). - net/mlx5: DR, Fix freeing in dr_create_rc_qp() (jsc#SLE-8464). - net/mlx5e: Fix inner tirs handling (networking-stable-20_05_27). - net/mlx5e: kTLS, Destroy key object after destroying the TIS (networking-stable-20_05_27). - net/mlx5e: Update netdev txq on completions during closure (networking-stable-20_05_27). - net/mlx5: Fix command entry leak in Internal Error State (networking-stable-20_05_12). - net/mlx5: Fix error flow in case of function_setup failure (networking-stable-20_05_27). - net/mlx5: Fix forced completion access non initialized command entry (networking-stable-20_05_12). - net/mlx5: Fix memory leak in mlx5_events_init (networking-stable-20_05_27). - net: mvpp2: cls: Prevent buffer overflow in mvpp2_ethtool_cls_rule_del() (networking-stable-20_05_12). - net: mvpp2: fix RX hashing for non-10G ports (networking-stable-20_05_27). - net: mvpp2: prevent buffer overflow in mvpp22_rss_ctx() (networking-stable-20_05_12). - net: nlmsg_cancel() if put fails for nhmsg (networking-stable-20_05_27). - net: phy: fix aneg restart in phy_ethtool_set_eee (networking-stable-20_05_16). - netprio_cgroup: Fix unlimited memory leak of v2 cgroups (networking-stable-20_05_16). - net: qrtr: Fix passing invalid reference to qrtr_local_enqueue() (networking-stable-20_05_27). - net sched: fix reporting the first-time use timestamp (networking-stable-20_05_27). - net_sched: sch_skbprio: add message validation to skbprio_change() (networking-stable-20_05_12). - net/smc: tolerate future SMCD versions (bsc#1172543 LTC#186069). - net: stmmac: fix num_por initialization (networking-stable-20_05_16). - net: stricter validation of untrusted gso packets (networking-stable-20_05_12). - net: tc35815: Fix phydev supported/advertising mask (networking-stable-20_05_12). - net: tcp: fix rx timestamp behavior for tcp_recvmsg (networking-stable-20_05_16). - net/tls: fix race condition causing kernel panic (networking-stable-20_05_27). - net/tls: Fix sk_psock refcnt leak in bpf_exec_tx_verdict() (networking-stable-20_05_12). - net/tls: Fix sk_psock refcnt leak when in tls_data_ready() (networking-stable-20_05_12). - net: usb: qmi_wwan: add support for DW5816e (networking-stable-20_05_12). - nexthop: Fix attribute checking for groups (networking-stable-20_05_27). - nfp: abm: fix a memory leak bug (networking-stable-20_05_12). - nfp: abm: fix error return code in nfp_abm_vnic_alloc() (networking-stable-20_05_16). - nfsd4: fix nfsdfs reference count loop (git-fixes). - nfsd: apply umask on fs without ACL support (git-fixes). - nfsd: fix nfsdfs inode reference count leak (git-fixes). - NFSv4 fix CLOSE not waiting for direct IO compeletion (git-fixes). - PCI: aardvark: Do not blindly enable ASPM L0s and do not write to read-only register (git-fixes). - PCI: Add ACS quirk for Intel Root Complex Integrated Endpoints (git-fixes). - PCI: Add Loongson vendor ID (git-fixes). - PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges (git-fixes). - PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0 (git-fixes). - PCI: Avoid FLR for AMD Starship USB 3.0 (git-fixes). - PCI: Do not disable decoding when mmio_always_on is set (git-fixes). - PCI: dwc: Fix inner MSI IRQ domain registration (git-fixes). - PCI: hv: Change pci_protocol_version to per-hbus (bsc#1172871). - PCI: hv: Decouple the func definition in hv_dr_state from VSP message (bsc#1172871). - PCI: hv: Fix the PCI HyperV probe failure path to release resource properly (bsc#1172871). - PCI: hv: Introduce hv_msi_entry (bsc#1172871). - PCI: hv: Move hypercall related definitions into tlfs header (bsc#1172871). - PCI: hv: Move retarget related structures into tlfs header (bsc#1172871). - PCI: hv: Reorganize the code in preparation of hibernation (bsc#1172871). - PCI: hv: Retry PCI bus D0 entry on invalid device state (bsc#1172871). - PCI: pci-bridge-emul: Fix PCIe bit conflicts (git-fixes). - PCI: vmd: Add device id for VMD device 8086:9A0B (git-fixes). - pinctrl: rockchip: fix memleak in rockchip_dt_node_to_map (git-fixes). - pinctrl: tegra: Use noirq suspend/resume callbacks (git-fixes). - platform/x86: asus_wmi: Reserve more space for struct bias_args (git-fixes). - platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32() (git-fixes). - platform/x86: intel-hid: Add a quirk to support HP Spectre X2 (2015) (git-fixes). - pNFS/flexfiles: Fix list corruption if the mirror count changes (git-fixes). - pppoe: only process PADT targeted at local interfaces (networking-stable-20_05_16). - proc: Use new_inode not new_inode_pseudo (bsc#1173830). - pwm: img: Call pm_runtime_put() in pm_runtime_get_sync() failed case (git-fixes). - RDMA/core: Check that type_attrs is not NULL prior access (jsc#SLE-8449). - regualtor: pfuze100: correct sw1a/sw2 on pfuze3000 (git-fixes). - remoteproc: qcom_q6v5_mss: map/unmap mpss segments before/after use (git-fixes). - Revert commit e918e570415c ("tpm_tis: Remove the HID IFX0102") (git-fixes). - Revert "i2c: tegra: Fix suspending in active runtime PM state" (git-fixes). - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu" (networking-stable-20_05_16). - ring-buffer: Zero out time extend if it is nested and not absolute (git-fixes). - sata_rcar: handle pm_runtime_get_sync failure cases (git-fixes). - sch_choke: avoid potential panic in choke_reset() (networking-stable-20_05_12). - sched: Fix loadavg accounting race (bnc#1155798 (CPU scheduler functional and performance backports)). - sched: Fix race against ptrace_freeze_trace() (bsc#1174345). - sch_sfq: validate silly quantum values (networking-stable-20_05_12). - scsi: lpfc: Add an internal trace log buffer (bsc#1172687 bsc#1171530). - scsi: lpfc: Add blk_io_poll support for latency improvment (bsc#1172687 bsc#1171530). - scsi: lpfc: Add support to display if adapter dumps are available (bsc#1172687 bsc#1171530). - scsi: lpfc: Allow applications to issue Common Set Features mailbox command (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix inconsistent indenting (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix interrupt assignments when multiple vectors are supported on same CPU (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix kdump hang on PPC (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix language in 0373 message to reflect non-error message (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix less-than-zero comparison of unsigned value (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix missing MDS functionality (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix NVMe rport deregister and registration during ADISC (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix oops due to overrun when reading SLI3 data (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix shost refcount mismatch when deleting vport (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix stack trace seen while setting rrq active (bsc#1172687 bsc#1171530). - scsi: lpfc: Fix unused assignment in lpfc_sli4_bsg_link_diag_test (bsc#1172687 bsc#1171530). - scsi: lpfc: Update lpfc version to 12.8.0.2 (bsc#1172687 bsc#1171530). - scsi: qla2xxx: Set NVMe status code for failed NVMe FCP request (bsc#1158983). - sctp: Do not add the shutdown timer if its already been added (networking-stable-20_05_27). - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed (networking-stable-20_05_27). - selftests/bpf: Make sure optvals > PAGE_SIZE are bypassed (bsc#1155518). - signal: Avoid corrupting si_pid and si_uid in do_notify_parent (bsc#1171529). - slimbus: ngd: get drvdata from correct device (git-fixes). - socionext: account for napi_gro_receive never returning GRO_DROP (bsc#1154353). - spi: dw: Enable interrupts in accordance with DMA xfer mode (git-fixes). - spi: dw: Fix Rx-only DMA transfers (git-fixes). - spi: dw: Return any value retrieved from the dma_transfer callback (git-fixes). - spi: pxa2xx: Apply CS clk quirk to BXT (git-fixes). - spi: sprd: switch the sequence of setting WDG_LOAD_LOW and _HIGH (git-fixes). - Staging: rtl8723bs: prevent buffer overflow in update_sta_support_rate() (git-fixes). - sunrpc: fixed rollback in rpc_gssd_dummy_populate() (git-fixes). - SUNRPC: Properly set the @subbuf parameter of xdr_buf_subsegment() (git-fixes). - tcp: fix error recovery in tcp_zerocopy_receive() (networking-stable-20_05_16). - tcp: fix SO_RCVLOWAT hangs with fat skbs (networking-stable-20_05_16). - tg3: driver sleeps indefinitely when EEH errors exceed eeh_max_freezes (bsc#1173284). - thermal/drivers/mediatek: Fix bank number settings on mt8183 (git-fixes). - thermal/drivers/rcar_gen3: Fix undefined temperature if negative (git-fixes). - thermal/drivers/ti-soc-thermal: Avoid dereferencing ERR_PTR (git-fixes). - tipc: block BH before using dst_cache (networking-stable-20_05_27). - tipc: fix partial topology connection closure (networking-stable-20_05_12). - tpm: Fix TIS locality timeout problems (git-fixes). - tpm_tis: Remove the HID IFX0102 (git-fixes). - tracing: Fix event trigger to accept redundant spaces (git-fixes). - tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040 (networking-stable-20_05_12). - ubifs: fix wrong use of crypto_shash_descsize() (bsc#1173827). - ubifs: remove broken lazytime support (bsc#1173826). - Update patch reference tag for ACPI lockdown fix (bsc#1173573) - usb: add USB_QUIRK_DELAY_INIT for Logitech C922 (git-fixes). - usb/ehci-platform: Set PM runtime as active on resume (git-fixes). - USB: ehci: reopen solution for Synopsys HC bug (git-fixes). - usb: gadget: udc: Potential Oops in error handling code (git-fixes). - usb: host: ehci-exynos: Fix error check in exynos_ehci_probe() (git-fixes). - usb: host: ehci-platform: add a quirk to avoid stuck (git-fixes). - usb: host: xhci-mtk: avoid runtime suspend when removing hcd (git-fixes). - usblp: poison URBs upon disconnect (git-fixes). - usb/ohci-platform: Fix a warning when hibernating (git-fixes). - USB: ohci-sm501: Add missed iounmap() in remove (git-fixes). - usb: renesas_usbhs: getting residue from callback_result (git-fixes). - USB: serial: ch341: add basis for quirk detection (git-fixes). - usb: typec: tcpci_rt1711h: avoid screaming irq causing boot hangs (git-fixes). - usb/xhci-plat: Set PM runtime as active on resume (git-fixes). - video: vt8500lcdfb: fix fallthrough warning (bsc#1152489) - virtio_net: fix lockdep warning on 32 bit (networking-stable-20_05_16). - watchdog: da9062: No need to ping manually before setting timeout (git-fixes). - wil6210: account for napi_gro_receive never returning GRO_DROP (bsc#1154353). - wil6210: add wil_netif_rx() helper function (bsc#1154353). - wil6210: use after free in wil_netif_rx_any() (bsc#1154353). - x86/amd_nb: Add AMD family 17h model 60h PCI IDs (git-fixes). - xhci: Fix enumeration issue when setting max packet size for FS devices (git-fixes). - xhci: Fix incorrect EP_STATE_MASK (git-fixes). - xhci: Poll for U0 after disabling USB2 LPM (git-fixes). - xhci: Return if xHCI does not support LPM (git-fixes). - xprtrdma: Fix handling of RDMA_ERROR replies (git-fixes). kernel-debug-5.3.18-lp152.33.1.nosrc.rpm True kernel-debug-5.3.18-lp152.33.1.x86_64.rpm True kernel-debug-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-debug-debugsource-5.3.18-lp152.33.1.x86_64.rpm True kernel-debug-devel-5.3.18-lp152.33.1.x86_64.rpm True kernel-debug-devel-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-default-base-5.3.18-lp152.33.1.lp152.8.4.4.src.rpm True kernel-default-base-5.3.18-lp152.33.1.lp152.8.4.4.x86_64.rpm True kernel-default-base-rebuild-5.3.18-lp152.33.1.lp152.8.4.4.x86_64.rpm True kernel-default-5.3.18-lp152.33.1.nosrc.rpm True kernel-default-5.3.18-lp152.33.1.x86_64.rpm True kernel-default-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-default-debugsource-5.3.18-lp152.33.1.x86_64.rpm True kernel-default-devel-5.3.18-lp152.33.1.x86_64.rpm True kernel-default-devel-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-docs-5.3.18-lp152.33.1.noarch.rpm True kernel-docs-5.3.18-lp152.33.1.nosrc.rpm True kernel-docs-html-5.3.18-lp152.33.1.noarch.rpm True kernel-kvmsmall-5.3.18-lp152.33.1.nosrc.rpm True kernel-kvmsmall-5.3.18-lp152.33.1.x86_64.rpm True kernel-kvmsmall-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-kvmsmall-debugsource-5.3.18-lp152.33.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-lp152.33.1.x86_64.rpm True kernel-kvmsmall-devel-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-obs-build-5.3.18-lp152.33.1.src.rpm True kernel-obs-build-5.3.18-lp152.33.1.x86_64.rpm True kernel-obs-build-debugsource-5.3.18-lp152.33.1.x86_64.rpm True kernel-obs-qa-5.3.18-lp152.33.1.src.rpm True kernel-obs-qa-5.3.18-lp152.33.1.x86_64.rpm True kernel-preempt-5.3.18-lp152.33.1.nosrc.rpm True kernel-preempt-5.3.18-lp152.33.1.x86_64.rpm True kernel-preempt-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-preempt-debugsource-5.3.18-lp152.33.1.x86_64.rpm True kernel-preempt-devel-5.3.18-lp152.33.1.x86_64.rpm True kernel-preempt-devel-debuginfo-5.3.18-lp152.33.1.x86_64.rpm True kernel-devel-5.3.18-lp152.33.1.noarch.rpm True kernel-macros-5.3.18-lp152.33.1.noarch.rpm True kernel-source-5.3.18-lp152.33.1.noarch.rpm True kernel-source-5.3.18-lp152.33.1.src.rpm True kernel-source-vanilla-5.3.18-lp152.33.1.noarch.rpm True kernel-syms-5.3.18-lp152.33.1.src.rpm True kernel-syms-5.3.18-lp152.33.1.x86_64.rpm True openSUSE-2020-1056 important openSUSE Leap 15.2 Update This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 [bsc#1173874], uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 [bsc#1173875], buffer overflow in ConnectClientToUnixSock() + LibVNCServer-CVE-2019-20839.patch fix CVE-2019-20840 [bsc#1173876], unaligned accesses in hybiReadAndDecode can lead to denial of service + LibVNCServer-CVE-2019-20840.patch fix CVE-2020-14398 [bsc#1173880], improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c + LibVNCServer-CVE-2020-14398.patch fix CVE-2020-14397 [bsc#1173700], NULL pointer dereference in libvncserver/rfbregion.c + LibVNCServer-CVE-2020-14397.patch fix CVE-2020-14399 [bsc#1173743], Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. + LibVNCServer-CVE-2020-14399.patch fix CVE-2020-14400 [bsc#1173691], Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. + LibVNCServer-CVE-2020-14400.patch fix CVE-2020-14401 [bsc#1173694], potential integer overflows in libvncserver/scale.c + LibVNCServer-CVE-2020-14401.patch fix CVE-2020-14402 [bsc#1173701], out-of-bounds access via encodings. + LibVNCServer-CVE-2020-14402,14403,14404.patch fix CVE-2017-18922 [bsc#1173477], preauth buffer overwrite This update was imported from the SUSE:SLE-15:Update update project. LibVNCServer-0.9.10-lp152.9.4.2.src.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.2.x86_64.rpm LibVNCServer-devel-0.9.10-lp152.9.4.2.x86_64.rpm libvncclient0-0.9.10-lp152.9.4.2.x86_64.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.2.x86_64.rpm libvncserver0-0.9.10-lp152.9.4.2.x86_64.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.2.x86_64.rpm LibVNCServer-debugsource-0.9.10-lp152.9.4.2.i586.rpm LibVNCServer-devel-0.9.10-lp152.9.4.2.i586.rpm libvncclient0-0.9.10-lp152.9.4.2.i586.rpm libvncclient0-debuginfo-0.9.10-lp152.9.4.2.i586.rpm libvncserver0-0.9.10-lp152.9.4.2.i586.rpm libvncserver0-debuginfo-0.9.10-lp152.9.4.2.i586.rpm openSUSE-2020-1019 moderate openSUSE Leap 15.2 Update This update for libsolv, libzypp, zypper fixes the following issues: libsolv was updated to: - Enable zstd compression support for sle15 zypper was updated to version 1.14.37: - Print switch abbrev warning to stderr (bsc#1172925) - Fix typo in man page (bsc#1169947) libzypp was updated to 17.24.0 - Fix core dump with corrupted history file (bsc#1170801) - Enable zchunk metadata download if libsolv supports it. - Better handling of the purge-kernels algorithm. (bsc#1173106) This update was imported from the SUSE:SLE-15-SP2:Update update project. libsolv-0.7.14-lp152.2.3.1.src.rpm True libsolv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-debugsource-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-demo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-demo-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-devel-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-devel-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-tools-0.7.14-lp152.2.3.1.x86_64.rpm True libsolv-tools-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True perl-solv-0.7.14-lp152.2.3.1.x86_64.rpm True perl-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True python-solv-0.7.14-lp152.2.3.1.x86_64.rpm True python-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True python3-solv-0.7.14-lp152.2.3.1.x86_64.rpm True python3-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True ruby-solv-0.7.14-lp152.2.3.1.x86_64.rpm True ruby-solv-debuginfo-0.7.14-lp152.2.3.1.x86_64.rpm True libzypp-17.24.0-lp152.2.3.2.src.rpm True libzypp-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-debuginfo-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-debugsource-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-devel-17.24.0-lp152.2.3.2.x86_64.rpm True libzypp-devel-doc-17.24.0-lp152.2.3.2.x86_64.rpm True zypper-1.14.37-lp152.2.3.1.src.rpm True zypper-1.14.37-lp152.2.3.1.x86_64.rpm True zypper-aptitude-1.14.37-lp152.2.3.1.noarch.rpm True zypper-debuginfo-1.14.37-lp152.2.3.1.x86_64.rpm True zypper-debugsource-1.14.37-lp152.2.3.1.x86_64.rpm True zypper-log-1.14.37-lp152.2.3.1.noarch.rpm True zypper-needs-restarting-1.14.37-lp152.2.3.1.noarch.rpm True libsolv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-debugsource-0.7.14-lp152.2.3.1.i586.rpm True libsolv-demo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-demo-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-devel-0.7.14-lp152.2.3.1.i586.rpm True libsolv-devel-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libsolv-tools-0.7.14-lp152.2.3.1.i586.rpm True libsolv-tools-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True perl-solv-0.7.14-lp152.2.3.1.i586.rpm True perl-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True python-solv-0.7.14-lp152.2.3.1.i586.rpm True python-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True python3-solv-0.7.14-lp152.2.3.1.i586.rpm True python3-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True ruby-solv-0.7.14-lp152.2.3.1.i586.rpm True ruby-solv-debuginfo-0.7.14-lp152.2.3.1.i586.rpm True libzypp-17.24.0-lp152.2.3.2.i586.rpm True libzypp-debuginfo-17.24.0-lp152.2.3.2.i586.rpm True libzypp-debugsource-17.24.0-lp152.2.3.2.i586.rpm True libzypp-devel-17.24.0-lp152.2.3.2.i586.rpm True libzypp-devel-doc-17.24.0-lp152.2.3.2.i586.rpm True zypper-1.14.37-lp152.2.3.1.i586.rpm True zypper-debuginfo-1.14.37-lp152.2.3.1.i586.rpm True zypper-debugsource-1.14.37-lp152.2.3.1.i586.rpm True openSUSE-2020-1020 important openSUSE Leap 15.2 Update This update for chromium fixes the following issues: - Update to 84.0.4147.89 boo#1174189: * Critical CVE-2020-6510: Heap buffer overflow in background fetch. * High CVE-2020-6511: Side-channel information leakage in content security policy. * High CVE-2020-6512: Type Confusion in V8. * High CVE-2020-6513: Heap buffer overflow in PDFium. * High CVE-2020-6514: Inappropriate implementation in WebRTC. * High CVE-2020-6515: Use after free in tab strip. * High CVE-2020-6516: Policy bypass in CORS. * High CVE-2020-6517: Heap buffer overflow in history. * Medium CVE-2020-6518: Use after free in developer tools. * Medium CVE-2020-6519: Policy bypass in CSP. * Medium CVE-2020-6520: Heap buffer overflow in Skia. * Medium CVE-2020-6521: Side-channel information leakage in autofill. * Medium CVE-2020-6522: Inappropriate implementation in external protocol handlers. * Medium CVE-2020-6523: Out of bounds write in Skia. * Medium CVE-2020-6524: Heap buffer overflow in WebAudio. * Medium CVE-2020-6525: Heap buffer overflow in Skia. * Low CVE-2020-6526: Inappropriate implementation in iframe sandbox. * Low CVE-2020-6527: Insufficient policy enforcement in CSP. * Low CVE-2020-6528: Incorrect security UI in basic auth. * Low CVE-2020-6529: Inappropriate implementation in WebRTC. * Low CVE-2020-6530: Out of bounds memory access in developer tools. * Low CVE-2020-6531: Side-channel information leakage in scroll to text. * Low CVE-2020-6533: Type Confusion in V8. * Low CVE-2020-6534: Heap buffer overflow in WebRTC. * Low CVE-2020-6535: Insufficient data validation in WebUI. * Low CVE-2020-6536: Incorrect security UI in PWAs. - Use bundled xcb-proto as we need to generate py2 bindings - Try to fix non-wayland build for Leap builds chromedriver-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromedriver-debuginfo-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromium-84.0.4147.89-lp152.2.6.2.src.rpm chromium-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromium-debuginfo-84.0.4147.89-lp152.2.6.2.x86_64.rpm chromium-debugsource-84.0.4147.89-lp152.2.6.2.x86_64.rpm openSUSE-2020-1022 moderate openSUSE Leap 15.2 Update This update for ant fixes the following issues: - CVE-2020-1945: Fixed an inseure temorary file vulnerability which could have potentially leaked sensitive information (bsc#1171696). This update was imported from the SUSE:SLE-15-SP2:Update update project. ant-antlr-1.10.7-lp152.2.3.1.noarch.rpm ant-antlr-1.10.7-lp152.2.3.1.src.rpm ant-apache-bcel-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-bsf-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-log4j-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-oro-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-regexp-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-resolver-1.10.7-lp152.2.3.1.noarch.rpm ant-apache-xalan2-1.10.7-lp152.2.3.1.noarch.rpm ant-commons-logging-1.10.7-lp152.2.3.1.noarch.rpm ant-commons-net-1.10.7-lp152.2.3.1.noarch.rpm ant-imageio-1.10.7-lp152.2.3.1.noarch.rpm ant-javamail-1.10.7-lp152.2.3.1.noarch.rpm ant-jdepend-1.10.7-lp152.2.3.1.noarch.rpm ant-jsch-1.10.7-lp152.2.3.1.noarch.rpm ant-manual-1.10.7-lp152.2.3.1.noarch.rpm ant-testutil-1.10.7-lp152.2.3.1.noarch.rpm ant-xz-1.10.7-lp152.2.3.1.noarch.rpm ant-junit-1.10.7-lp152.2.3.1.noarch.rpm ant-junit-1.10.7-lp152.2.3.1.src.rpm ant-junit5-1.10.7-lp152.2.3.1.noarch.rpm ant-junit5-1.10.7-lp152.2.3.1.src.rpm ant-1.10.7-lp152.2.3.1.noarch.rpm ant-1.10.7-lp152.2.3.1.src.rpm ant-jmf-1.10.7-lp152.2.3.1.noarch.rpm ant-scripts-1.10.7-lp152.2.3.1.noarch.rpm ant-swing-1.10.7-lp152.2.3.1.noarch.rpm openSUSE-2020-1023 important openSUSE Leap 15.2 Update This update for ldb, samba fixes the following issues: Changes in samba: - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; (bso#14364); (bsc#1173159] + CVE-2020-10745: invalid DNS or NBT queries containing dots use several seconds of CPU each; (bso#14378); (bsc#1173160). + CVE-2020-10760: Use-after-free in AD DC Global Catalog LDAP server with paged_result or VLV; (bso#14402); (bsc#1173161) + CVE-2020-14303: Endless loop from empty UDP packet sent to AD DC nbt_server; (bso#14417); (bsc#1173359). - Update to samba 4.11.10 + Fix segfault when using SMBC_opendir_ctx() routine for share folder that contains incorrect symbols in any file name; (bso#14374). + vfs_shadow_copy2 doesn't fail case looking in snapdirseverywhere mode; (bso#14350) + ldb_ldap: Fix off-by-one increment in lldb_add_msg_attr; (bso#14413). + Malicous SMB1 server can crash libsmbclient; (bso#14366) + winbindd: Fix a use-after-free when winbind clients exit; (bso#14382) + ldb: Bump version to 2.0.11, LMDB databases can grow without bounds. (bso#14330) - Update to samba 4.11.9 + nmblib: Avoid undefined behaviour in handle_name_ptrs(); (bso#14242). + 'samba-tool group' commands do not handle group names with special chars correctly; (bso#14296). + smbd: avoid calling vfs_file_id_from_sbuf() if statinfo is not valid; (bso#14237). + Missing check for DMAPI offline status in async DOS attributes; (bso#14293). + smbd: Ignore set NTACL requests which contain S-1-5-88 NFS ACEs; (bso#14307). + vfs_recycle: Prevent flooding the log if we're called on non-existant paths; (bso#14316) + smbd mistakenly updates a file's write-time on close; (bso#14320). + RPC handles cannot be differentiated in source3 RPC server; (bso#14359). + librpc: Fix IDL for svcctl_ChangeServiceConfigW; (bso#14313). + nsswitch: Fix use-after-free causing segfault in _pam_delete_cred; (bso#14327). + Fix fruit:time machine max size on arm; (bso#13622) + CTDB recovery corner cases can cause record resurrection and node banning; (bso#14294). + ctdb: Fix a memleak; (bso#14348). + libsmb: Don't try to find posix stat info in SMBC_getatr(). + ctdb-tcp: Move free of inbound queue to TCP restart; (bso#14295); (bsc#1162680). + s3/librpc/crypto: Fix double free with unresolved credential cache; (bso#14344); (bsc#1169095) + s3:libads: Fix ads_get_upn(); (bso#14336). + CTDB recovery corner cases can cause record resurrection and node banning; (bso#14294) + Starting ctdb node that was powered off hard before results in recovery loop; (bso#14295); (bsc#1162680). + ctdb-recoverd: Avoid dereferencing NULL rec->nodemap; (bso#14324) - Update to samba 4.11.8 + CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with ASQ; (bso#14331); (bsc#1169850); + CVE-2020-10704: LDAP Denial of Service (stack overflow) in Samba AD DC; (bso#14334); (bsc#1169851); - Update to samba 4.11.7 + s3: lib: nmblib. Clean up and harden nmb packet processing; (bso#14239). + s3: VFS: full_audit. Use system session_info if called from a temporary share definition; (bso#14283) + dsdb: Correctly handle memory in objectclass_attrs; (bso#14258). + ldb: version 2.0.9, Samba 4.11 and later give incorrect results for SCOPE_ONE searches; (bso#14270) + auth: Fix CIDs 1458418 and 1458420 Null pointer dereferences; (bso#14247). + smbd: Handle EINTR from open(2) properly; (bso#14285) + winbind member (source3) fails local SAM auth with empty domain name; (bso#14247) + winbindd: Handling missing idmap in getgrgid(); (bso#14265). + lib:util: Log mkdir error on correct debug levels; (bso#14253). + wafsamba: Do not use 'rU' as the 'U' is deprecated in Python 3.9; (bso#14266). + ctdb-tcp: Make error handling for outbound connection consistent; (bso#14274). - Update to samba 4.11.6 + pygpo: Use correct method flags; (bso#14209). + vfs_ceph_snapshots: Fix root relative path handling; (bso#14216); (bsc#1141320). + Avoiding bad call flags with python 3.8, using METH_NOARGS instead of zero; (bso#14209). + source4/utils/oLschema2ldif: Include stdint.h before cmocka.h; (bso#14218). + docs-xml/winbindnssinfo: Clarify interaction with idmap_ad etc; (bso#14122). + smbd: Fix the build with clang; (bso#14251). + upgradedns: Ensure lmdb lock files linked; (bso#14199). + s3: VFS: glusterfs: Reset nlinks for symlink entries during readdir; (bso#14182). + smbc_stat() doesn't return the correct st_mode and also the uid/gid is not filled (SMBv1) file; (bso#14101). + librpc: Fix string length checking in ndr_pull_charset_to_null(); (bso#14219). + ctdb-scripts: Strip square brackets when gathering connection info; (bso#14227). - Add libnetapi-devel to baselibs conf, for wine usage; (bsc#1172307); - Installing: samba - samba-ad-dc.service does not exist and unit not found; (bsc#1171437); - Fix samba_winbind package is installing python3-base without python3 package; (bsc#1169521); Changes in ldb: - Update to version 2.0.12 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; (bso#14364); (bsc#1173159). + ldb_ldap: fix off-by-one increment in lldb_add_msg_attr; (bso#14413). + lib/ldb: add unit test for ldb_ldap internal code. - Update to version 2.0.11 + lib ldb: lmdb init var before calling mdb_reader_check. + lib ldb: lmdb clear stale readers on write txn start; (bso#14330). + ldb tests: Confirm lmdb free list handling This update was imported from the SUSE:SLE-15-SP2:Update update project. ldb-2.0.12-lp152.2.3.1.src.rpm ldb-debugsource-2.0.12-lp152.2.3.1.x86_64.rpm ldb-tools-2.0.12-lp152.2.3.1.x86_64.rpm ldb-tools-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm libldb-devel-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-devel-2.0.12-lp152.2.3.1.x86_64.rpm ctdb-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-pcp-pmda-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-pcp-pmda-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-tests-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ctdb-tests-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy-python3-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.src.rpm samba-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ceph-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ceph-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-core-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-debugsource-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-doc-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.noarch.rpm samba-dsdb-modules-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-dsdb-modules-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-test-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-test-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm ldb-debugsource-2.0.12-lp152.2.3.1.i586.rpm ldb-tools-2.0.12-lp152.2.3.1.i586.rpm ldb-tools-debuginfo-2.0.12-lp152.2.3.1.i586.rpm libldb-devel-2.0.12-lp152.2.3.1.i586.rpm libldb2-2.0.12-lp152.2.3.1.i586.rpm libldb2-32bit-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-32bit-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm libldb2-debuginfo-2.0.12-lp152.2.3.1.i586.rpm python3-ldb-2.0.12-lp152.2.3.1.i586.rpm python3-ldb-32bit-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-32bit-debuginfo-2.0.12-lp152.2.3.1.x86_64.rpm python3-ldb-debuginfo-2.0.12-lp152.2.3.1.i586.rpm python3-ldb-devel-2.0.12-lp152.2.3.1.i586.rpm ctdb-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-pcp-pmda-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-pcp-pmda-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-tests-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm ctdb-tests-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-binding0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-binding0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-binding0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-samr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-samr0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc-samr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc-samr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libdcerpc0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libdcerpc0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-krb5pac-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-krb5pac0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-krb5pac0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-krb5pac0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-nbt-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-nbt0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-nbt0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-nbt0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-standard-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-standard0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr-standard0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr-standard0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libndr0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libndr0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libnetapi-devel-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libnetapi0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libnetapi0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libnetapi0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-credentials-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-credentials0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-credentials0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-credentials0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-errors-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-errors0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-errors0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-errors0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-hostconfig-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-hostconfig0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-hostconfig0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-hostconfig0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-passdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-passdb0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-passdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-passdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy-python3-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy0-python3-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-policy0-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-policy0-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-util0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamba-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamba-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamdb-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamdb0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsamdb0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsamdb0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbclient0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbconf-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbconf0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbconf0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbconf0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbldap-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbldap2-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libsmbldap2-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libsmbldap2-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libtevent-util-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libtevent-util0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libtevent-util0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libtevent-util0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libwbclient-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libwbclient0-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm libwbclient0-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm libwbclient0-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-ad-dc-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-ad-dc-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-ad-dc-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-client-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-client-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-client-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-core-devel-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-debugsource-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-dsdb-modules-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-dsdb-modules-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-python3-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-libs-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-libs-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-python3-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-python3-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-test-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-test-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-winbind-32bit-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-32bit-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.x86_64.rpm samba-winbind-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm samba-winbind-debuginfo-4.11.11+git.180.2cf3b203f07-lp152.3.3.1.i586.rpm openSUSE-2020-1034 moderate openSUSE Leap 15.2 Update This update for MozillaFirefox fixes the following issues: - Mozilla Firefox 78.0.2 MFSA 2020-28 (bsc#1173948) * MFSA-2020-0003 (bmo#1644076) X-Frame-Options bypass using object or embed tags - Firefox Extended Support Release 78.0.2esr ESR * Fixed: Security fix * Fixed: Fixed an accessibility regression in reader mode (bmo#1650922) * Fixed: Made the address bar more resilient to data corruption in the user profile (bmo#1649981) * Fixed: Fixed a regression opening certain external applications (bmo#1650162) MozillaFirefox-78.0.2-lp152.2.9.1.src.rpm MozillaFirefox-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-branding-upstream-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-buildsymbols-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-debuginfo-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-debugsource-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-devel-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-translations-common-78.0.2-lp152.2.9.1.x86_64.rpm MozillaFirefox-translations-other-78.0.2-lp152.2.9.1.x86_64.rpm openSUSE-2020-1025 important openSUSE Leap 15.2 Update This update for LibVNCServer fixes the following issues: - security update - added patches fix CVE-2018-21247 [bsc#1173874], uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 [bsc#1173875], buffer overflow in ConnectClientToUnixSock() + LibVNCServer-CVE-2019-20839.patch fix CVE-2019-20840 [bsc#1173876], unaligned accesses in hybiReadAndDecode can lead to denial of service + LibVNCServer-CVE-2019-20840.patch fix CVE-2020-14398 [bsc#1173880], improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c + LibVNCServer-CVE-2020-14398.patch fix CVE-2020-14397 [bsc#1173700], NULL pointer dereference in libvncserver/rfbregion.c + LibVNCServer-CVE-2020-14397.patch fix CVE-2020-14399 [bsc#1173743], Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. + LibVNCServer-CVE-2020-14399.patch fix CVE-2020-14400 [bsc#1173691], Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. + LibVNCServer-CVE-2020-14400.patch fix CVE-2020-14401 [bsc#1173694], potential integer overflows in libvncserver/scale.c + LibVNCServer-CVE-2020-14401.patch fix CVE-2020-14402 [bsc#1173701], out-of-bounds access via encodings. + LibVNCServer-CVE-2020-14402,14403,14404.patch fix CVE-2017-18922 [bsc#1173477], preauth buffer overwrite This update was imported from the SUSE:SLE-15:Update update project. LibVNCServer-0.9.10-lp152.9.8.1.src.rpm LibVNCServer-debugsource-0.9.10-lp152.9.8.1.x86_64.rpm LibVNCServer-devel-0.9.10-lp152.9.8.1.x86_64.rpm libvncclient0-0.9.10-lp152.9.8.1.x86_64.rpm libvncclient0-debuginfo-0.9.10-lp152.9.8.1.x86_64.rpm libvncserver0-0.9.10-lp152.9.8.1.x86_64.rpm libvncserver0-debuginfo-0.9.10-lp152.9.8.1.x86_64.rpm LibVNCServer-debugsource-0.9.10-lp152.9.8.1.i586.rpm LibVNCServer-devel-0.9.10-lp152.9.8.1.i586.rpm libvncclient0-0.9.10-lp152.9.8.1.i586.rpm libvncclient0-debuginfo-0.9.10-lp152.9.8.1.i586.rpm libvncserver0-0.9.10-lp152.9.8.1.i586.rpm libvncserver0-debuginfo-0.9.10-lp152.9.8.1.i586.rpm openSUSE-2020-1024 moderate openSUSE Leap 15.2 Update This update for NetworkManager-branding fixes the following issues: - Fix an issue when NetworkManager uses an enexpanded macro. (bsc#1172773) This update was imported from the SUSE:SLE-15-SP2:Update update project. NetworkManager-branding-openSUSE-42.1-lp152.2.3.1.noarch.rpm NetworkManager-branding-openSUSE-42.1-lp152.2.3.1.src.rpm openSUSE-2020-1026 important openSUSE Leap 15.2 Update This update for parted fixes the following issue: - fix support of NVDIMM (pmemXs) devices (bsc#1164260) This update was imported from the SUSE:SLE-15:Update update project. libparted0-3.2-lp152.12.3.1.x86_64.rpm libparted0-debuginfo-3.2-lp152.12.3.1.x86_64.rpm parted-3.2-lp152.12.3.1.src.rpm parted-3.2-lp152.12.3.1.x86_64.rpm parted-debuginfo-3.2-lp152.12.3.1.x86_64.rpm parted-debugsource-3.2-lp152.12.3.1.x86_64.rpm parted-devel-3.2-lp152.12.3.1.x86_64.rpm parted-lang-3.2-lp152.12.3.1.noarch.rpm libparted0-3.2-lp152.12.3.1.i586.rpm libparted0-32bit-3.2-lp152.12.3.1.x86_64.rpm libparted0-32bit-debuginfo-3.2-lp152.12.3.1.x86_64.rpm libparted0-debuginfo-3.2-lp152.12.3.1.i586.rpm parted-3.2-lp152.12.3.1.i586.rpm parted-debuginfo-3.2-lp152.12.3.1.i586.rpm parted-debugsource-3.2-lp152.12.3.1.i586.rpm parted-devel-3.2-lp152.12.3.1.i586.rpm openSUSE-2020-1029 moderate openSUSE Leap 15.2 Update This update for xournalpp fixes the following issues: - Add Recommends tex(standalone.tex) instead of Requires: texlive-latex-bin, so that users can uninstall texlive packages should they not use this particular feature. The standalone pkg is required for the feature to work and it pulls in the right texlive dependencies as Recommends. xournalpp-1.0.18-lp152.2.3.1.src.rpm xournalpp-1.0.18-lp152.2.3.1.x86_64.rpm xournalpp-debuginfo-1.0.18-lp152.2.3.1.x86_64.rpm xournalpp-debugsource-1.0.18-lp152.2.3.1.x86_64.rpm xournalpp-lang-1.0.18-lp152.2.3.1.noarch.rpm openSUSE-2020-1033 moderate openSUSE Leap 15.2 Update This update for Rivet fixes the following issues: Rivet was updated to version 3.1.2: * Submission of ATLAS_2019_I1744201, ATLAS_2019_I1764342. * Add a very horrible preprocessor hack to allow use of a private method on the HepMC2 WeightContainer, for robust and correctly ordered weight name acquisition before HepMC 2.06.11. * Allow several AnalysisHandler objects to run in different threads. This is a temporary fix. A permanent fix involves changing the Analysis handler to own its own projections. Currently each AnalysisHandler need sto be created and run completely within the same separate thread. * Allow + and - in AO paths. * Always skip weights that have "AUX" or "DEBUG" in the name. * Add computation of Python versions and passing them to Cython as command-line flags. * Fix small bug in rivet-cmphistos. * Add ATLAS_2018_I163527 (W+jets at 8 TeV). * Add InvisibleFinalState projection. * HTML sectioning and float/overflow/scrollbar improvements in rivet-mkhtml output. Rivet-3.1.2-lp152.2.3.1.src.rpm Rivet-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-debugsource-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-devel-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-plugins-3.1.2-lp152.2.3.1.x86_64.rpm Rivet-plugins-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm libRivet-3_1_2-3.1.2-lp152.2.3.1.x86_64.rpm libRivet-3_1_2-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm python3-Rivet-3.1.2-lp152.2.3.1.x86_64.rpm python3-Rivet-debuginfo-3.1.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-1044 moderate openSUSE Leap 15.2 Update This update for HepMC fixes the following issues: HepMC was updated to version 3.2.2: * Fixed treatment of the weights in case of different number of weights and weight names. * Fixed WriterAsciiHepMC2 option for separate flows. * Improved treatment of python installation. * Split the sources of python bindings into smaller files to optimize compilation. * Improved cmake configuration for special cases, e.g. old cmake, no ROOT, some compilers, etc. Added more error handling. * Fixed compilation of the search module with Clang. * Added an example for search module. * Fixed the HepMC2 output for events without weights. * Fixed the signal vertex ID for HepMC2 output. * Added an interface for HepMC2 (in-memory-conversion). * Added functions to search module: search for relatives (particle or vertex)->(particle or vertex) in different combinations. * The previous point bumps .so version of the libHepMC3search to 4. * Improved the configuration of Pythia8 for tests (minimal version requirement). * Fixed compatibility of ROOT trees written with HePMC3.0 and removed the typedefs in the dictionaries. HepMC-3.2.2-lp152.2.3.1.src.rpm HepMC-debuginfo-3.2.2-lp152.2.3.1.x86_64.rpm HepMC-debugsource-3.2.2-lp152.2.3.1.x86_64.rpm HepMC-devel-3.2.2-lp152.2.3.1.x86_64.rpm HepMC-doc-3.2.2-lp152.2.3.1.x86_64.rpm libHepMC3-1-3.2.2-lp152.2.3.1.x86_64.rpm libHepMC3-1-debuginfo-3.2.2-lp152.2.3.1.x86_64.rpm python3-HepMC-3.2.2-lp152.2.3.1.x86_64.rpm python3-HepMC-debuginfo-3.2.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-1030 moderate openSUSE Leap 15.2 Update This update for kio fixes the following issues: - Fixed running files with spaces in the path (boo#1174141, kde#423412, kde#423645). kio-5.71.0-lp152.2.6.1.src.rpm kio-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-debugsource-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-lang-5.71.0-lp152.2.6.1.noarch.rpm kio-32bit-5.71.0-lp152.2.6.1.x86_64.rpm kio-32bit-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-5.71.0-lp152.2.6.1.i586.rpm kio-core-32bit-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-32bit-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-core-5.71.0-lp152.2.6.1.i586.rpm kio-core-debuginfo-5.71.0-lp152.2.6.1.i586.rpm kio-debuginfo-5.71.0-lp152.2.6.1.i586.rpm kio-debugsource-5.71.0-lp152.2.6.1.i586.rpm kio-devel-32bit-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-32bit-debuginfo-5.71.0-lp152.2.6.1.x86_64.rpm kio-devel-5.71.0-lp152.2.6.1.i586.rpm kio-devel-debuginfo-5.71.0-lp152.2.6.1.i586.rpm openSUSE-2020-1028 moderate openSUSE Leap 15.2 Update This update for dracut fixes the following issues: - Update to version 049.1+suse.152.g8506e86f: * 01fips: modprobe failures during manual module loading is not fatal. (bsc#bsc#1169997) * 91zipl: parse-zipl.sh: honor SYSTEMD_READY. (bsc#1165828) * 95iscsi: fix ipv6 target discovery. (bsc#1172807) * 35network-legacy: correct conditional for creating did-setup file. (bsc#1172807) - Update to version 049.1+suse.148.gc4a6c2dd: * 95fcoe: load 'libfcoe' module as a fallback. (bsc#1173560) * 99base: enable the initqueue in both 'dracut --add-device' and 'dracut --mount' cases. (bsc#1161573) This update was imported from the SUSE:SLE-15-SP2:Update update project. dracut-049.1+suse.152.g8506e86f-lp152.2.6.1.src.rpm dracut-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-debuginfo-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-debugsource-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-extra-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-fips-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-ima-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-tools-049.1+suse.152.g8506e86f-lp152.2.6.1.x86_64.rpm dracut-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-debuginfo-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-debugsource-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-extra-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-fips-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-ima-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm dracut-tools-049.1+suse.152.g8506e86f-lp152.2.6.1.i586.rpm openSUSE-2020-1045 moderate openSUSE Leap 15.2 Update This update for HepMC2 fixes the following issues: HepMC2 was updated to version 2.06.11: * HepMC/HepMCDefs.h: Add a HEPMC_HAS_ORDERED_WEIGHTS #define. * HepMC/WeightContainer.h: Add weights() and weight_names() public methods. * src/WeightContainer.cc: Fix print() to use canonical weight ordering. * src/GenEventStreamIO.cc: Fix the I/O streaming to preserve the weight ordering. * Fixed the tests. HepMC2-2.06.11-lp152.4.3.1.src.rpm HepMC2-devel-2.06.11-lp152.4.3.1.x86_64.rpm libHepMC4-2.06.11-lp152.4.3.1.x86_64.rpm libHepMC4-debuginfo-2.06.11-lp152.4.3.1.x86_64.rpm openSUSE-2020-1046 moderate openSUSE Leap 15.2 Update This update for strawberry fixes the following issues: Update to version 0.6.13: * Bugfixes: + Fixed cut-off text in about dialog. + Fixed increasing play count when stop after track is enabled. + Fixed showing/hiding playing widget when playback is started while window is hidden. + Fixed "Show in file browser" to also work on local songs that are not in the collection. + Fixed "Show in file browser" to work with PCManFM file manager. + Fixed audio analyzer to work with S24LE and F32LE audio formats. + Fixed playlist background image not loading. + Fixed a memory leak when switching between playlists. + Removed use of HTML in systemtray tooltip on KDE, since KDE no longer renders HTML in the systemtray. * Enhancements: + Replaced use of C style casts. + Adapted use of C++11 override. + Improved CMake build files. + Added new on startup options to show maximized or minimized. + Builtin TagLib code is updated and improved. + Made most icon sizes configurable in the settings, and increased default sizes for icons. + Improved fancy tabbar to use font sizes from the theme instead of fixed sizes. + Moving the currently playing song to the top when the playlist is manually shuffled. + Added "a taste of Strawbs" background image. + Fixed unit test for testing playlist model. + Added new unit tests for tagreader. strawberry-0.6.13-lp152.2.6.1.src.rpm strawberry-0.6.13-lp152.2.6.1.x86_64.rpm strawberry-debuginfo-0.6.13-lp152.2.6.1.x86_64.rpm strawberry-debugsource-0.6.13-lp152.2.6.1.x86_64.rpm openSUSE-2020-1050 moderate openSUSE Leap 15.2 Update This update for cni-plugins fixes the following issues: cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements (bsc#1172410). Release notes: https://github.com/containernetworking/plugins/releases/tag/v0.8.6 cni-plugins-0.8.6-lp152.2.4.1.src.rpm cni-plugins-0.8.6-lp152.2.4.1.x86_64.rpm openSUSE-2020-1075 important openSUSE Leap 15.2 Update This update for salt fixes the following issue: - Fix for TypeError in Tornado importer (bsc#1174165) This update was imported from the SUSE:SLE-15-SP2:Update update project. python2-salt-3000-lp152.3.6.1.x86_64.rpm python3-salt-3000-lp152.3.6.1.x86_64.rpm salt-3000-lp152.3.6.1.src.rpm salt-3000-lp152.3.6.1.x86_64.rpm salt-api-3000-lp152.3.6.1.x86_64.rpm salt-bash-completion-3000-lp152.3.6.1.noarch.rpm salt-cloud-3000-lp152.3.6.1.x86_64.rpm salt-doc-3000-lp152.3.6.1.x86_64.rpm salt-fish-completion-3000-lp152.3.6.1.noarch.rpm salt-master-3000-lp152.3.6.1.x86_64.rpm salt-minion-3000-lp152.3.6.1.x86_64.rpm salt-proxy-3000-lp152.3.6.1.x86_64.rpm salt-ssh-3000-lp152.3.6.1.x86_64.rpm salt-standalone-formulas-configuration-3000-lp152.3.6.1.x86_64.rpm salt-syndic-3000-lp152.3.6.1.x86_64.rpm salt-zsh-completion-3000-lp152.3.6.1.noarch.rpm openSUSE-2020-1053 moderate openSUSE Leap 15.2 Update This update for golang-github-prometheus-node_exporter fixes the following issues: - Update from version 0.17.0 to version 0.18.1 (jsc#ECO-2110) 0.18.1 / 2019-06-04 * [BUGFIX] Fix incorrect sysctl call in BSD meminfo collector, resulting in broken swap metrics on FreeBSD * [BUGFIX] Fix rollover bug in mountstats collector 0.18.0 / 2019-05-09 * Renamed interface label to device in netclass collector for consistency with other network metrics * The cpufreq metrics now separate the cpufreq and scaling data based on what the driver provides * The labels for the network_up metric have changed * Bonding collector now uses mii_status instead of operstatus * Several systemd metrics have been turned off by default to improve performance * These include unit_tasks_current, unit_tasks_max, service_restart_total, and unit_start_time_seconds * The systemd collector blacklist now includes automount, device, mount, and slice units by default. * [CHANGE] Bonding state uses mii_status * [CHANGE] Add a limit to the number of in-flight requests * [CHANGE] Renamed interface label to device in netclass collector * [CHANGE] Add separate cpufreq and scaling metrics * [CHANGE] Several systemd metrics have been turned off by default to improve performance * [CHANGE] Expand systemd collector blacklist * [CHANGE] Split cpufreq metrics into a separate collector * [FEATURE] Add a flag to disable exporter metrics * [FEATURE] Add kstat-based Solaris metrics for boottime, cpu and zfs collectors * [FEATURE] Add uname collector for FreeBSD * [FEATURE] Add diskstats collector for OpenBSD * [FEATURE] Add pressure collector exposing pressure stall information for Linux * [FEATURE] Add perf exporter for Linux * [ENHANCEMENT] Add Infiniband counters * [ENHANCEMENT] Add TCPSynRetrans to netstat default filter * [ENHANCEMENT] Move network_up labels into new metric network_info * [ENHANCEMENT] Use 64-bit counters for Darwin netstat * [BUGFIX] Add fallback for missing /proc/1/mounts * [BUGFIX] Fix node_textfile_mtime_seconds to work properly on symlinks - Add network-online (Wants and After) dependency to systemd unit bsc#1143913 This update was imported from the SUSE:SLE-15:Update update project. golang-github-prometheus-node_exporter-0.18.1-lp152.3.3.1.src.rpm golang-github-prometheus-node_exporter-0.18.1-lp152.3.3.1.x86_64.rpm openSUSE-2020-1057 moderate openSUSE Leap 15.2 Update This update for wxMaxima fixes the following issues: Update to version 20.06.6: * Resolved a compiling problem the last release has introduced. Changes from version 20.06.0: * Many spell corrections and bugfixes * The history sidebar now works again * TextCells with copy-alt-text caused an crash * A few additional small bugfixes * Many (really many!) big stability improvements * In sqrt(conjugate(f(x))) the horizontal lines coincided * Strings were searched for comment starts when adding line endings * Faster start-up by avoiding unneeded redraw events * A big number of performance improvements * Unfortunately one last temporary fix reduces performance again * Corrected a bug that sometimes caused parts of equations not to be displayed * As this allows to improve performance and stability C++14 is now used * Speed boost The list of anchors from the manual is now cached on disk * Updated translations. wxMaxima-20.06.6-lp152.2.3.1.src.rpm wxMaxima-20.06.6-lp152.2.3.1.x86_64.rpm wxMaxima-debuginfo-20.06.6-lp152.2.3.1.x86_64.rpm wxMaxima-debugsource-20.06.6-lp152.2.3.1.x86_64.rpm wxMaxima-lang-20.06.6-lp152.2.3.1.noarch.rpm openSUSE-2020-1063 important openSUSE Leap 15.2 Update This update for tomcat fixes the following issues: Tomcat was updated to 9.0.36 See changelog at - CVE-2020-11996: Fixed an issue which by sending a specially crafted sequence of HTTP/2 requests could have triggered high CPU usage for several seconds making potentially the server unresponsive (bsc#1173389). This update was imported from the SUSE:SLE-15-SP2:Update update project. tomcat-9.0.36-lp152.2.3.1.noarch.rpm tomcat-9.0.36-lp152.2.3.1.src.rpm tomcat-admin-webapps-9.0.36-lp152.2.3.1.noarch.rpm tomcat-docs-webapp-9.0.36-lp152.2.3.1.noarch.rpm tomcat-el-3_0-api-9.0.36-lp152.2.3.1.noarch.rpm tomcat-embed-9.0.36-lp152.2.3.1.noarch.rpm tomcat-javadoc-9.0.36-lp152.2.3.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-lp152.2.3.1.noarch.rpm tomcat-jsvc-9.0.36-lp152.2.3.1.noarch.rpm tomcat-lib-9.0.36-lp152.2.3.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-lp152.2.3.1.noarch.rpm tomcat-webapps-9.0.36-lp152.2.3.1.noarch.rpm openSUSE-2020-1065 important openSUSE Leap 15.2 Update This update for libsolv, libzypp, yast2-packager, yast2-pkg-bindings fixes the following issues: libsolv: - No source changes, just shipping it as an installer update (required by yast2-pkg-bindings). libzypp: - Proactively send credentials if the URL specifes '?auth=basic' and a username. (bsc#1174011) - ZYPP_MEDIA_CURL_DEBUG: Strip credentials in header log. (bsc#1174011) yast2-packager: - Handle variable expansion in repository name. (bsc#1172477) - Improve medium type detection, do not report Online medium when the /media.1/products file is missing in the repository, SMT does not mirror this file. (bsc#1173336) yast2-pkg-bindings: - Extensions to handle raw repository name. (bsc#1172477) This update was imported from the SUSE:SLE-15-SP2:Update update project. libsolv-0.7.14-lp152.2.7.1.src.rpm True libsolv-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-debugsource-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-demo-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-demo-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-devel-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-devel-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-tools-0.7.14-lp152.2.7.1.x86_64.rpm True libsolv-tools-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True perl-solv-0.7.14-lp152.2.7.1.x86_64.rpm True perl-solv-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True python-solv-0.7.14-lp152.2.7.1.x86_64.rpm True python-solv-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True python3-solv-0.7.14-lp152.2.7.1.x86_64.rpm True python3-solv-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True ruby-solv-0.7.14-lp152.2.7.1.x86_64.rpm True ruby-solv-debuginfo-0.7.14-lp152.2.7.1.x86_64.rpm True libzypp-17.24.1-lp152.2.7.1.src.rpm True libzypp-17.24.1-lp152.2.7.1.x86_64.rpm True libzypp-debuginfo-17.24.1-lp152.2.7.1.x86_64.rpm True libzypp-debugsource-17.24.1-lp152.2.7.1.x86_64.rpm True libzypp-devel-17.24.1-lp152.2.7.1.x86_64.rpm True libzypp-devel-doc-17.24.1-lp152.2.7.1.x86_64.rpm True yast2-packager-4.2.64-lp152.2.3.1.src.rpm True yast2-packager-4.2.64-lp152.2.3.1.x86_64.rpm True yast2-pkg-bindings-devel-doc-4.2.8-lp152.2.3.1.noarch.rpm True yast2-pkg-bindings-devel-doc-4.2.8-lp152.2.3.1.src.rpm True yast2-pkg-bindings-4.2.8-lp152.2.3.1.src.rpm True yast2-pkg-bindings-4.2.8-lp152.2.3.1.x86_64.rpm True yast2-pkg-bindings-debuginfo-4.2.8-lp152.2.3.1.x86_64.rpm True yast2-pkg-bindings-debugsource-4.2.8-lp152.2.3.1.x86_64.rpm True libsolv-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True libsolv-debugsource-0.7.14-lp152.2.7.1.i586.rpm True libsolv-demo-0.7.14-lp152.2.7.1.i586.rpm True libsolv-demo-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True libsolv-devel-0.7.14-lp152.2.7.1.i586.rpm True libsolv-devel-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True libsolv-tools-0.7.14-lp152.2.7.1.i586.rpm True libsolv-tools-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True perl-solv-0.7.14-lp152.2.7.1.i586.rpm True perl-solv-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True python-solv-0.7.14-lp152.2.7.1.i586.rpm True python-solv-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True python3-solv-0.7.14-lp152.2.7.1.i586.rpm True python3-solv-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True ruby-solv-0.7.14-lp152.2.7.1.i586.rpm True ruby-solv-debuginfo-0.7.14-lp152.2.7.1.i586.rpm True libzypp-17.24.1-lp152.2.7.1.i586.rpm True libzypp-debuginfo-17.24.1-lp152.2.7.1.i586.rpm True libzypp-debugsource-17.24.1-lp152.2.7.1.i586.rpm True libzypp-devel-17.24.1-lp152.2.7.1.i586.rpm True libzypp-devel-doc-17.24.1-lp152.2.7.1.i586.rpm True yast2-packager-4.2.64-lp152.2.3.1.i586.rpm True yast2-pkg-bindings-4.2.8-lp152.2.3.1.i586.rpm True yast2-pkg-bindings-debuginfo-4.2.8-lp152.2.3.1.i586.rpm True yast2-pkg-bindings-debugsource-4.2.8-lp152.2.3.1.i586.rpm True openSUSE-2020-1066 moderate openSUSE Leap 15.2 Update This update for openvswitch fixes the following issues: - Preserve the old default OVS_USER_ID for users that removed the override at /etc/sysconfig/openvswitch. (bsc#1172861) - Fix possible changes of openvswitch configuration during upgrades. (bsc#1172929) This update was imported from the SUSE:SLE-15-SP2:Update update project. libopenvswitch-2_13-0-2.13.0-lp152.3.3.1.x86_64.rpm libopenvswitch-2_13-0-debuginfo-2.13.0-lp152.3.3.1.x86_64.rpm libovn-20_03-0-20.03.0-lp152.3.3.1.x86_64.rpm libovn-20_03-0-debuginfo-20.03.0-lp152.3.3.1.x86_64.rpm openvswitch-2.13.0-lp152.3.3.1.src.rpm openvswitch-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-debuginfo-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-debugsource-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-devel-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-doc-2.13.0-lp152.3.3.1.noarch.rpm openvswitch-ipsec-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-pki-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-test-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-test-debuginfo-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-vtep-2.13.0-lp152.3.3.1.x86_64.rpm openvswitch-vtep-debuginfo-2.13.0-lp152.3.3.1.x86_64.rpm ovn-20.03.0-lp152.3.3.1.x86_64.rpm ovn-central-20.03.0-lp152.3.3.1.x86_64.rpm ovn-central-debuginfo-20.03.0-lp152.3.3.1.x86_64.rpm ovn-debuginfo-20.03.0-lp152.3.3.1.x86_64.rpm ovn-devel-20.03.0-lp152.3.3.1.x86_64.rpm ovn-doc-20.03.0-lp152.3.3.1.noarch.rpm ovn-docker-20.03.0-lp152.3.3.1.x86_64.rpm ovn-host-20.03.0-lp152.3.3.1.x86_64.rpm ovn-host-debuginfo-20.03.0-lp152.3.3.1.x86_64.rpm ovn-vtep-20.03.0-lp152.3.3.1.x86_64.rpm ovn-vtep-debuginfo-20.03.0-lp152.3.3.1.x86_64.rpm python3-ovs-2.13.0-lp152.3.3.1.x86_64.rpm openSUSE-2020-1094 moderate openSUSE Leap 15.2 Update This update for alsa fixes the following issues: - Add UCM profile for ASUS Chromebook C300. (bsc#1171246) This update was imported from the SUSE:SLE-15:Update update project. alsa-1.1.5-lp152.9.4.1.src.rpm alsa-1.1.5-lp152.9.4.1.x86_64.rpm alsa-debugsource-1.1.5-lp152.9.4.1.x86_64.rpm alsa-devel-1.1.5-lp152.9.4.1.x86_64.rpm alsa-docs-1.1.5-lp152.9.4.1.noarch.rpm libasound2-1.1.5-lp152.9.4.1.x86_64.rpm libasound2-debuginfo-1.1.5-lp152.9.4.1.x86_64.rpm alsa-1.1.5-lp152.9.4.1.i586.rpm alsa-debugsource-1.1.5-lp152.9.4.1.i586.rpm alsa-devel-1.1.5-lp152.9.4.1.i586.rpm alsa-devel-32bit-1.1.5-lp152.9.4.1.x86_64.rpm libasound2-1.1.5-lp152.9.4.1.i586.rpm libasound2-32bit-1.1.5-lp152.9.4.1.x86_64.rpm libasound2-32bit-debuginfo-1.1.5-lp152.9.4.1.x86_64.rpm libasound2-debuginfo-1.1.5-lp152.9.4.1.i586.rpm openSUSE-2020-1072 important openSUSE Leap 15.2 Update This update for crmsh fixes the following issues: - Fix for collecting of binary data to avoid CRC error in report. (bsc#1166962) - Implement ssh key configuration improvement to avoid security issues. (bsc#1169581, ECO-2035) - Fix for using class 'SBDManager' for sbd configuration and management. (bsc#1170037, bsc#1170999) - Fix for 'crm' resource refresh to complete. (bsc#1167220) - Update man page about completion example of 'crm' resource. (bsc#1166644) This update was imported from the SUSE:SLE-15-SP2:Update update project. crmsh-4.2.0+git.1594286044.7a596d12-lp152.4.3.1.noarch.rpm crmsh-4.2.0+git.1594286044.7a596d12-lp152.4.3.1.src.rpm crmsh-scripts-4.2.0+git.1594286044.7a596d12-lp152.4.3.1.noarch.rpm crmsh-test-4.2.0+git.1594286044.7a596d12-lp152.4.3.1.noarch.rpm openSUSE-2020-1073 important openSUSE Leap 15.2 Update This update for efivar fixes the following issues: - fix logic that checks for UCS-2 string termination (bsc#1127544) - fix casting of IPv4 addresses - Don't require an EUI for NVMe (bsc#1100077) - Add support for ACPI Generic Container and Embedded Controller root nodes (bsc#1101023) - fix for compilation failures bsc#1120862 This update was imported from the SUSE:SLE-15-SP1:Update update project. efivar-37-lp152.3.3.1.src.rpm efivar-37-lp152.3.3.1.x86_64.rpm efivar-debuginfo-37-lp152.3.3.1.x86_64.rpm efivar-debugsource-37-lp152.3.3.1.x86_64.rpm efivar-devel-37-lp152.3.3.1.x86_64.rpm libefivar1-37-lp152.3.3.1.x86_64.rpm libefivar1-debuginfo-37-lp152.3.3.1.x86_64.rpm efivar-37-lp152.3.3.1.i586.rpm efivar-debuginfo-37-lp152.3.3.1.i586.rpm efivar-debugsource-37-lp152.3.3.1.i586.rpm efivar-devel-37-lp152.3.3.1.i586.rpm libefivar1-37-lp152.3.3.1.i586.rpm libefivar1-debuginfo-37-lp152.3.3.1.i586.rpm openSUSE-2020-1079 moderate openSUSE Leap 15.2 Update This update for perf fixes the following issues: - Add support for new IBM S390 z15 deflate counters (bsc#1169763) This update was imported from the SUSE:SLE-15-SP2:Update update project. perf-5.3.18-lp152.21.3.1.src.rpm perf-5.3.18-lp152.21.3.1.x86_64.rpm perf-debuginfo-5.3.18-lp152.21.3.1.x86_64.rpm perf-debugsource-5.3.18-lp152.21.3.1.x86_64.rpm openSUSE-2020-1080 moderate openSUSE Leap 15.2 Update This update for yast2-network fixes the following issues: - Do not remove automatically aliases from /etc/hosts during an autoinstallation. (bsc#1173213) - Avoid error when accessing to Bond Slaves in s390. (bsc#1172444). - AutoYaST: Udev rules are written or copied to the target system properly when defined in the profile. (bsc#1169663) - AutoYaST: Fixed the copy or merge of the linuxrc interfaces configuration when the installation network configuration is selected to be kept. - Do not export interfaces <aliases> section when there are no aliases to export. (bsc#1172922) - Try to install the wireless-tools package when the package is not installed and the wifi networks are scanned. (bsc#1168479) - Fix for parse the udev rules keys correctly using underscores. (bsc#1167256) This update was imported from the SUSE:SLE-15-SP2:Update update project. yast2-network-4.2.72-lp152.2.3.1.noarch.rpm yast2-network-4.2.72-lp152.2.3.1.src.rpm openSUSE-2020-1108 important openSUSE Leap 15.2 Update This update for qemu to version 4.2.1 fixes the following issues: - CVE-2020-10761: Fixed a denial of service in Network Block Device (nbd) support infrastructure (bsc#1172710). - CVE-2020-13800: Fixed a denial of service possibility in ati-vga emulation (bsc#1172495). - CVE-2020-13659: Fixed a null pointer dereference possibility in MegaRAID SAS 8708EM2 emulation (bsc#1172386). - CVE-2020-13362: Fixed an OOB access possibility in MegaRAID SAS 8708EM2 emulation (bsc#1172383). - CVE-2020-13361: Fixed an OOB access possibility in ES1370 audio device emulation (bsc#1172384). This update was imported from the SUSE:SLE-15-SP2:Update update project. qemu-4.2.1-lp152.9.3.1.src.rpm qemu-4.2.1-lp152.9.3.1.x86_64.rpm qemu-arm-4.2.1-lp152.9.3.1.x86_64.rpm qemu-arm-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-audio-alsa-4.2.1-lp152.9.3.1.x86_64.rpm qemu-audio-alsa-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-audio-pa-4.2.1-lp152.9.3.1.x86_64.rpm qemu-audio-pa-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-audio-sdl-4.2.1-lp152.9.3.1.x86_64.rpm qemu-audio-sdl-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-curl-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-curl-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-dmg-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-dmg-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-gluster-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-gluster-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-iscsi-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-iscsi-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-nfs-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-nfs-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-rbd-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-rbd-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-ssh-4.2.1-lp152.9.3.1.x86_64.rpm qemu-block-ssh-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-debugsource-4.2.1-lp152.9.3.1.x86_64.rpm qemu-extra-4.2.1-lp152.9.3.1.x86_64.rpm qemu-extra-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-guest-agent-4.2.1-lp152.9.3.1.x86_64.rpm qemu-guest-agent-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ipxe-1.0.0+-lp152.9.3.1.noarch.rpm qemu-ksm-4.2.1-lp152.9.3.1.x86_64.rpm qemu-kvm-4.2.1-lp152.9.3.1.x86_64.rpm qemu-lang-4.2.1-lp152.9.3.1.x86_64.rpm qemu-microvm-4.2.1-lp152.9.3.1.noarch.rpm qemu-ppc-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ppc-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-s390-4.2.1-lp152.9.3.1.x86_64.rpm qemu-s390-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-seabios-1.12.1+-lp152.9.3.1.noarch.rpm qemu-sgabios-8-lp152.9.3.1.noarch.rpm qemu-tools-4.2.1-lp152.9.3.1.x86_64.rpm qemu-tools-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-curses-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-curses-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-gtk-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-gtk-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-sdl-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-sdl-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-spice-app-4.2.1-lp152.9.3.1.x86_64.rpm qemu-ui-spice-app-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-vgabios-1.12.1+-lp152.9.3.1.noarch.rpm qemu-vhost-user-gpu-4.2.1-lp152.9.3.1.x86_64.rpm qemu-vhost-user-gpu-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-x86-4.2.1-lp152.9.3.1.x86_64.rpm qemu-x86-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-linux-user-4.2.1-lp152.9.3.1.src.rpm qemu-linux-user-4.2.1-lp152.9.3.1.x86_64.rpm qemu-linux-user-debuginfo-4.2.1-lp152.9.3.1.x86_64.rpm qemu-linux-user-debugsource-4.2.1-lp152.9.3.1.x86_64.rpm qemu-testsuite-4.2.1-lp152.9.3.1.src.rpm qemu-testsuite-4.2.1-lp152.9.3.1.x86_64.rpm openSUSE-2020-1081 low openSUSE Leap 15.2 Update This update for go1.10 fixes the following issues: - Fix for an issue when installing on Raspberry Pi causes illegal instruction due to unproper ARM arch set. (bsc#1169832) This update was imported from the SUSE:SLE-15:Update update project. go1.10-1.10.8-lp152.5.3.1.src.rpm go1.10-1.10.8-lp152.5.3.1.x86_64.rpm go1.10-doc-1.10.8-lp152.5.3.1.x86_64.rpm go1.10-race-1.10.8-lp152.5.3.1.x86_64.rpm go1.10-1.10.8-lp152.5.3.1.i586.rpm go1.10-doc-1.10.8-lp152.5.3.1.i586.rpm openSUSE-2020-1082 moderate openSUSE Leap 15.2 Update This update for flatpak fixes the following issues: - Fix for missing directories by creating a 'skeleton flatpak' repository using 'flatpak remotes' instead of creating the directory manually. (bsc#1172316, bsc#1169619, bsc#1170416) This update was imported from the SUSE:SLE-15-SP2:Update update project. flatpak-1.6.3-lp152.3.3.1.src.rpm flatpak-1.6.3-lp152.3.3.1.x86_64.rpm flatpak-debuginfo-1.6.3-lp152.3.3.1.x86_64.rpm flatpak-debugsource-1.6.3-lp152.3.3.1.x86_64.rpm flatpak-devel-1.6.3-lp152.3.3.1.x86_64.rpm flatpak-zsh-completion-1.6.3-lp152.3.3.1.x86_64.rpm libflatpak0-1.6.3-lp152.3.3.1.x86_64.rpm libflatpak0-debuginfo-1.6.3-lp152.3.3.1.x86_64.rpm system-user-flatpak-1.6.3-lp152.3.3.1.x86_64.rpm typelib-1_0-Flatpak-1_0-1.6.3-lp152.3.3.1.x86_64.rpm openSUSE-2020-1083 low openSUSE Leap 15.2 Update This update for go1.9 fixes the following issues: - Fix for an issue when installing on Raspberry Pi causes illegal instruction due to unproper ARM arch set. (bsc#1169832) This update was imported from the SUSE:SLE-15:Update update project. go1.9-1.9.7-lp152.4.3.1.src.rpm go1.9-1.9.7-lp152.4.3.1.x86_64.rpm go1.9-doc-1.9.7-lp152.4.3.1.x86_64.rpm go1.9-race-1.9.7-lp152.4.3.1.x86_64.rpm go1.9-1.9.7-lp152.4.3.1.i586.rpm go1.9-doc-1.9.7-lp152.4.3.1.i586.rpm openSUSE-2020-1084 moderate openSUSE Leap 15.2 Update This update for python-importlib_resources fixes the following issues: Update from version 1.0.2 to 1.1.0 (jsc#ECO-2153, bsc#1172933) - Add support for retrieving resources from subdirectories of packages through the new files() function, which returns a Traversable object with joinpath and read_* interfaces matching those of pathlib.Path objects. This new function supersedes all of the previous functionality as it provides a more general-purpose access to a package’s resources. - With this function, subdirectories are supported. - The documentation has been updated to reflect that this function is now the preferred interface for loading package resources. It does not, however, support resources from arbitrary loaders. It currently only supports resources from file system path and zipfile packages (a consequence of the ResourceReader interface only operating on Python packages). This update was imported from the SUSE:SLE-15-SP1:Update update project. python-importlib_resources-1.1.0-lp152.2.4.1.src.rpm python2-importlib_resources-1.1.0-lp152.2.4.1.noarch.rpm python3-importlib_resources-1.1.0-lp152.2.4.1.noarch.rpm openSUSE-2020-1086 moderate openSUSE Leap 15.2 Update This update for knot fixes the following issues: - CVE-2017-11104: Fixed an improper implementation of TSIG protocol which could have allowed an attacker with a valid key name and algorithm to bypass TSIG authentication (boo#1047841). knot-1.6.8-lp152.5.3.1.src.rpm knot-1.6.8-lp152.5.3.1.x86_64.rpm knot-debuginfo-1.6.8-lp152.5.3.1.x86_64.rpm knot-debugsource-1.6.8-lp152.5.3.1.x86_64.rpm openSUSE-2020-1128 moderate openSUSE Leap 15.2 Update This update for libraw fixes the following issues: - security update - added patches fix CVE-2020-15503 [bsc#1173674], lack of thumbnail size range check can lead to buffer overflow + libraw-CVE-2020-15503.patch This update was imported from the SUSE:SLE-15:Update update project. libraw-0.18.9-lp152.5.3.1.src.rpm libraw-debuginfo-0.18.9-lp152.5.3.1.x86_64.rpm libraw-debugsource-0.18.9-lp152.5.3.1.x86_64.rpm libraw-devel-0.18.9-lp152.5.3.1.x86_64.rpm libraw-devel-static-0.18.9-lp152.5.3.1.x86_64.rpm libraw-tools-0.18.9-lp152.5.3.1.x86_64.rpm libraw-tools-debuginfo-0.18.9-lp152.5.3.1.x86_64.rpm libraw16-0.18.9-lp152.5.3.1.x86_64.rpm libraw16-debuginfo-0.18.9-lp152.5.3.1.x86_64.rpm libraw-debuginfo-0.18.9-lp152.5.3.1.i586.rpm libraw-debugsource-0.18.9-lp152.5.3.1.i586.rpm libraw-devel-0.18.9-lp152.5.3.1.i586.rpm libraw-devel-static-0.18.9-lp152.5.3.1.i586.rpm libraw-tools-0.18.9-lp152.5.3.1.i586.rpm libraw-tools-debuginfo-0.18.9-lp152.5.3.1.i586.rpm libraw16-0.18.9-lp152.5.3.1.i586.rpm libraw16-debuginfo-0.18.9-lp152.5.3.1.i586.rpm openSUSE-2020-1091 moderate openSUSE Leap 15.2 Update This update for apparmor fixes the following issues: - Add 'UI_Showfile' so Yast shows the profile correctly. (bsc#1172040) This update was imported from the SUSE:SLE-15-SP2:Update update project. apache2-mod_apparmor-2.13.4-lp152.2.3.1.x86_64.rpm apache2-mod_apparmor-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm apparmor-2.13.4-lp152.2.3.1.src.rpm apparmor-abstractions-2.13.4-lp152.2.3.1.noarch.rpm apparmor-debugsource-2.13.4-lp152.2.3.1.x86_64.rpm apparmor-docs-2.13.4-lp152.2.3.1.noarch.rpm apparmor-parser-2.13.4-lp152.2.3.1.x86_64.rpm apparmor-parser-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm apparmor-parser-lang-2.13.4-lp152.2.3.1.noarch.rpm apparmor-profiles-2.13.4-lp152.2.3.1.noarch.rpm apparmor-utils-2.13.4-lp152.2.3.1.noarch.rpm apparmor-utils-lang-2.13.4-lp152.2.3.1.noarch.rpm pam_apparmor-2.13.4-lp152.2.3.1.x86_64.rpm pam_apparmor-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm perl-apparmor-2.13.4-lp152.2.3.1.x86_64.rpm perl-apparmor-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm python3-apparmor-2.13.4-lp152.2.3.1.x86_64.rpm python3-apparmor-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm ruby-apparmor-2.13.4-lp152.2.3.1.x86_64.rpm ruby-apparmor-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm libapparmor-2.13.4-lp152.2.3.1.src.rpm libapparmor-debugsource-2.13.4-lp152.2.3.1.x86_64.rpm libapparmor-devel-2.13.4-lp152.2.3.1.x86_64.rpm libapparmor1-2.13.4-lp152.2.3.1.x86_64.rpm libapparmor1-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm apache2-mod_apparmor-2.13.4-lp152.2.3.1.i586.rpm apache2-mod_apparmor-debuginfo-2.13.4-lp152.2.3.1.i586.rpm apparmor-debugsource-2.13.4-lp152.2.3.1.i586.rpm apparmor-parser-2.13.4-lp152.2.3.1.i586.rpm apparmor-parser-debuginfo-2.13.4-lp152.2.3.1.i586.rpm pam_apparmor-2.13.4-lp152.2.3.1.i586.rpm pam_apparmor-32bit-2.13.4-lp152.2.3.1.x86_64.rpm pam_apparmor-32bit-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm pam_apparmor-debuginfo-2.13.4-lp152.2.3.1.i586.rpm perl-apparmor-2.13.4-lp152.2.3.1.i586.rpm perl-apparmor-debuginfo-2.13.4-lp152.2.3.1.i586.rpm python3-apparmor-2.13.4-lp152.2.3.1.i586.rpm python3-apparmor-debuginfo-2.13.4-lp152.2.3.1.i586.rpm ruby-apparmor-2.13.4-lp152.2.3.1.i586.rpm ruby-apparmor-debuginfo-2.13.4-lp152.2.3.1.i586.rpm libapparmor-debugsource-2.13.4-lp152.2.3.1.i586.rpm libapparmor-devel-2.13.4-lp152.2.3.1.i586.rpm libapparmor1-2.13.4-lp152.2.3.1.i586.rpm libapparmor1-32bit-2.13.4-lp152.2.3.1.x86_64.rpm libapparmor1-32bit-debuginfo-2.13.4-lp152.2.3.1.x86_64.rpm libapparmor1-debuginfo-2.13.4-lp152.2.3.1.i586.rpm openSUSE-2020-1092 low openSUSE Leap 15.2 Update This update for go1.11 fixes the following issues: - Fix for an issue when installing on Raspberry Pi causes illegal instruction due to unproper ARM arch set. (bsc#1169832) This update was imported from the SUSE:SLE-15:Update update project. go1.11-1.11.13-lp152.4.3.1.src.rpm go1.11-1.11.13-lp152.4.3.1.x86_64.rpm go1.11-doc-1.11.13-lp152.4.3.1.x86_64.rpm go1.11-race-1.11.13-lp152.4.3.1.x86_64.rpm go1.11-1.11.13-lp152.4.3.1.i586.rpm go1.11-doc-1.11.13-lp152.4.3.1.i586.rpm openSUSE-2020-1093 moderate openSUSE Leap 15.2 Update This update for perl-YAML-LibYAML fixes the following issues: perl-YAML-LibYAML was updated to 0.69: [bsc#1173703] * Security fix: Add $LoadBlessed option to turn on/off loading objects: Default is set to true. Note that, the behavior is unchanged. * Clarify documentation about exported functions * Dump() was modifying original data, adding a PV to numbers * Support standard tags !!str, !!map and !!seq instead of dying. * Support JSON::PP::Boolean and boolean.pm via $YAML::XS::Boolean. * Fix regex roundtrip. Fix loading of many regexes. This update was imported from the SUSE:SLE-15:Update update project. perl-YAML-LibYAML-0.69-lp152.4.3.1.src.rpm perl-YAML-LibYAML-0.69-lp152.4.3.1.x86_64.rpm perl-YAML-LibYAML-debuginfo-0.69-lp152.4.3.1.x86_64.rpm perl-YAML-LibYAML-debugsource-0.69-lp152.4.3.1.x86_64.rpm perl-YAML-LibYAML-0.69-lp152.4.3.1.i586.rpm perl-YAML-LibYAML-debuginfo-0.69-lp152.4.3.1.i586.rpm perl-YAML-LibYAML-debugsource-0.69-lp152.4.3.1.i586.rpm openSUSE-2020-1095 important openSUSE Leap 15.2 Update This update for go1.13 fixes the following issues: - go1.13.14 (released 2020/07/16) includes fixes to the compiler, vet, and the database/sql, net/http, and reflect packages Refs bsc#1149259 go1.13 release tracking * go#39925 net/http: panic on misformed If-None-Match Header with http.ServeContent * go#39848 cmd/compile: internal compile error when using sync.Pool: mismatched zero/store sizes * go#39823 cmd/go: TestBuildIDContainsArchModeEnv/386 fails on linux/386 in Go 1.14 and 1.13, not 1.15 * go#39697 reflect: panic from malloc after MakeFunc function returns value that is also stored globally * go#39561 cmd/compile/internal/ssa: TestNexting/dlv-dbg-hist failing on linux-386-longtest builder because it tries to use an older version of dlv which only supports linux/amd64 * go#39538 net: TestDialParallel is flaky on windows-amd64-longtest * go#39287 cmd/vet: update for new number formats * go#40211 net/http: Expect 100-continue panics in httputil.ReverseProxy bsc#1174153 CVE-2020-15586 * go#40209 crypto/x509: Certificate.Verify method seemingly ignoring EKU requirements on Windows bsc#1174191 CVE-2020-14039 (Windows only) * go#38932 runtime: preemption in startTemplateThread may cause infinite hang * go#36689 go/types, math/big: data race in go/types due to math/big.Rat accessors unsafe for concurrent use - Add patch to ensure /etc/hosts is used if /etc/nsswitch.conf is not present bsc#1172868 gh#golang/go#35305 This update was imported from the SUSE:SLE-15:Update update project. go1.13-1.13.14-lp152.2.4.1.src.rpm go1.13-1.13.14-lp152.2.4.1.x86_64.rpm go1.13-doc-1.13.14-lp152.2.4.1.x86_64.rpm go1.13-race-1.13.14-lp152.2.4.1.x86_64.rpm openSUSE-2020-1098 moderate openSUSE Leap 15.2 Update This update for yast2 fixes the following issues: - Improve actions to stop and start a system service. (bsc#1162514) - Avoid failure when downloading release notes from an inoperative proxy. (bsc#1173447) This update was imported from the SUSE:SLE-15-SP2:Update update project. yast2-4.2.85-lp152.2.3.1.src.rpm yast2-4.2.85-lp152.2.3.1.x86_64.rpm yast2-logs-4.2.85-lp152.2.3.1.x86_64.rpm yast2-4.2.85-lp152.2.3.1.i586.rpm yast2-logs-4.2.85-lp152.2.3.1.i586.rpm openSUSE-2020-1099 low openSUSE Leap 15.2 Update This update provides OpenCL 32bit packages for Wine usage. (bsc#1172303) libOpenCL1-2.2.11-lp152.5.3.1.x86_64.rpm libOpenCL1-debuginfo-2.2.11-lp152.5.3.1.x86_64.rpm ocl-icd-2.2.11-lp152.5.3.1.src.rpm ocl-icd-debugsource-2.2.11-lp152.5.3.1.x86_64.rpm ocl-icd-devel-2.2.11-lp152.5.3.1.x86_64.rpm libOpenCL1-2.2.11-lp152.5.3.1.i586.rpm libOpenCL1-32bit-2.2.11-lp152.5.3.1.x86_64.rpm libOpenCL1-32bit-debuginfo-2.2.11-lp152.5.3.1.x86_64.rpm libOpenCL1-debuginfo-2.2.11-lp152.5.3.1.i586.rpm ocl-icd-debugsource-2.2.11-lp152.5.3.1.i586.rpm ocl-icd-devel-2.2.11-lp152.5.3.1.i586.rpm ocl-icd-devel-32bit-2.2.11-lp152.5.3.1.x86_64.rpm openSUSE-2020-1111 important openSUSE Leap 15.2 Update This update for tomcat fixes the following issues: - Fixed CVEs: * CVE-2020-13934 (bsc#1174121) * CVE-2020-13935 (bsc#1174117) This update was imported from the SUSE:SLE-15-SP2:Update update project. tomcat-9.0.36-lp152.2.4.1.noarch.rpm tomcat-9.0.36-lp152.2.4.1.src.rpm tomcat-admin-webapps-9.0.36-lp152.2.4.1.noarch.rpm tomcat-docs-webapp-9.0.36-lp152.2.4.1.noarch.rpm tomcat-el-3_0-api-9.0.36-lp152.2.4.1.noarch.rpm tomcat-embed-9.0.36-lp152.2.4.1.noarch.rpm tomcat-javadoc-9.0.36-lp152.2.4.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-lp152.2.4.1.noarch.rpm tomcat-jsvc-9.0.36-lp152.2.4.1.noarch.rpm tomcat-lib-9.0.36-lp152.2.4.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-lp152.2.4.1.noarch.rpm tomcat-webapps-9.0.36-lp152.2.4.1.noarch.rpm openSUSE-2020-1103 moderate openSUSE Leap 15.2 Update This update for gdm fixes the following issues: -Fix for an issue when user session reuses tty7 same as greeter session, gdm doesn't bring up the greeter session after switching from other tty to tty7. (bsc#1171290) This update was imported from the SUSE:SLE-15-SP2:Update update project. gdm-3.34.1-lp152.6.3.1.src.rpm gdm-3.34.1-lp152.6.3.1.x86_64.rpm gdm-branding-upstream-3.34.1-lp152.6.3.1.noarch.rpm gdm-debuginfo-3.34.1-lp152.6.3.1.x86_64.rpm gdm-debugsource-3.34.1-lp152.6.3.1.x86_64.rpm gdm-devel-3.34.1-lp152.6.3.1.x86_64.rpm gdm-lang-3.34.1-lp152.6.3.1.noarch.rpm gdm-systemd-3.34.1-lp152.6.3.1.noarch.rpm gdmflexiserver-3.34.1-lp152.6.3.1.noarch.rpm libgdm1-3.34.1-lp152.6.3.1.x86_64.rpm libgdm1-debuginfo-3.34.1-lp152.6.3.1.x86_64.rpm typelib-1_0-Gdm-1_0-3.34.1-lp152.6.3.1.x86_64.rpm openSUSE-2020-1104 moderate openSUSE Leap 15.2 Update This update for yast2-registration fixes the following issues: - Fix for an issue when during SCC registration indicating a wrong version. (bsc#1162755) This update was imported from the SUSE:SLE-15-SP2:Update update project. yast2-registration-4.2.42-lp152.2.3.1.noarch.rpm yast2-registration-4.2.42-lp152.2.3.1.src.rpm openSUSE-2020-1126 moderate openSUSE Leap 15.2 Update This update for installation-images fixes the following issues: - Fixes an issue with no hostqn and hostid and generate them for NVMe in the install system. (bsc#1172853) - Add missed file to instsys to fix failing openQA test in 'windows_client_remotelogin'. (bsc#1158522) - Do not ask for registration when install= points to a repository, (bsc#1173336) - Make it possible to use unsigned repositories. (bsc#1173204) This update was imported from the SUSE:SLE-15-SP2:Update update project. install-initrd-openSUSE-14.472-lp152.2.3.1.x86_64.rpm installation-images-debuginfodeps-openSUSE-14.472-lp152.2.3.1.x86_64.rpm installation-images-openSUSE-14.472-lp152.2.3.1.src.rpm installation-images-openSUSE-14.472-lp152.2.3.1.x86_64.rpm skelcd-installer-net-openSUSE-14.472-lp152.2.3.1.x86_64.rpm skelcd-installer-openSUSE-14.472-lp152.2.3.1.x86_64.rpm tftpboot-installation-openSUSE-Leap-15.2-x86_64-14.472-lp152.2.3.1.noarch.rpm openSUSE-2020-1105 moderate openSUSE Leap 15.2 Update This update fixes the following issues: dracut-saltboot: - Print a list of available disk devices (bsc#1170824) - Install wipefs to initrd - Force install crypt modules golang-github-prometheus-prometheus: - Update change log and spec file + Modified spec file: default to golang 1.14 to avoid "have choice" build issues in OBS. + Rebase and update patches for version 2.18.0 - Update to 2.18.0 + Features * Tracing: Added experimental Jaeger support #7148 + Changes * Federation: Only use local TSDB for federation (ignore remote read). #7096 * Rules: `rule_evaluations_total` and `rule_evaluation_failures_total` have a `rule_group` label now. #7094 + Enhancements * TSDB: Significantly reduce WAL size kept around after a block cut. #7098 * Discovery: Add `architecture` meta label for EC2. #7000 + Bug fixes * UI: Fixed wrong MinTime reported by /status. #7182 * React UI: Fixed multiselect legend on OSX. #6880 * Remote Write: Fixed blocked resharding edge case. #7122 * Remote Write: Fixed remote write not updating on relabel configs change. #7073 - Changes from 2.17.2 + Bug fixes * Federation: Register federation metrics #7081 * PromQL: Fix panic in parser error handling #7132 * Rules: Fix reloads hanging when deleting a rule group that is being evaluated #7138 * TSDB: Fix a memory leak when prometheus starts with an empty TSDB WAL #7135 * TSDB: Make isolation more robust to panics in web handlers #7129 #7136 - Changes from 2.17.1 + Bug fixes * TSDB: Fix query performance regression that increased memory and CPU usage #7051 - Changes from 2.17.0 + Features * TSDB: Support isolation #6841 * This release implements isolation in TSDB. API queries and recording rules are guaranteed to only see full scrapes and full recording rules. This comes with a certain overhead in resource usage. Depending on the situation, there might be some increase in memory usage, CPU usage, or query latency. + Enhancements * PromQL: Allow more keywords as metric names #6933 * React UI: Add normalization of localhost URLs in targets page #6794 * Remote read: Read from remote storage concurrently #6770 * Rules: Mark deleted rule series as stale after a reload #6745 * Scrape: Log scrape append failures as debug rather than warn #6852 * TSDB: Improve query performance for queries that partially hit the head #6676 * Consul SD: Expose service health as meta label #5313 * EC2 SD: Expose EC2 instance lifecycle as meta label #6914 * Kubernetes SD: Expose service type as meta label for K8s service role #6684 * Kubernetes SD: Expose label_selector and field_selector #6807 * Openstack SD: Expose hypervisor id as meta label #6962 + Bug fixes * PromQL: Do not escape HTML-like chars in query log #6834 #6795 * React UI: Fix data table matrix values #6896 * React UI: Fix new targets page not loading when using non-ASCII characters #6892 * Remote read: Fix duplication of metrics read from remote storage with external labels #6967 #7018 * Remote write: Register WAL watcher and live reader metrics for all remotes, not just the first one #6998 * Scrape: Prevent removal of metric names upon relabeling #6891 * Scrape: Fix 'superfluous response.WriteHeader call' errors when scrape fails under some circonstances #6986 * Scrape: Fix crash when reloads are separated by two scrape intervals #7011 - Changes from 2.16.0 + Features * React UI: Support local timezone on /graph #6692 * PromQL: add absent_over_time query function #6490 * Adding optional logging of queries to their own file #6520 + Enhancements * React UI: Add support for rules page and "Xs ago" duration displays #6503 * React UI: alerts page, replace filtering togglers tabs with checkboxes #6543 * TSDB: Export metric for WAL write errors #6647 * TSDB: Improve query performance for queries that only touch the most recent 2h of data. #6651 * PromQL: Refactoring in parser errors to improve error messages #6634 * PromQL: Support trailing commas in grouping opts #6480 * Scrape: Reduce memory usage on reloads by reusing scrape cache #6670 * Scrape: Add metrics to track bytes and entries in the metadata cache #6675 * promtool: Add support for line-column numbers for invalid rules output #6533 * Avoid restarting rule groups when it is unnecessary #6450 + Bug fixes * React UI: Send cookies on fetch() on older browsers #6553 * React UI: adopt grafana flot fix for stacked graphs #6603 * React UI: broken graph page browser history so that back button works as expected #6659 * TSDB: ensure compactionsSkipped metric is registered, and log proper error if one is returned from head.Init #6616 * TSDB: return an error on ingesting series with duplicate labels #6664 * PromQL: Fix unary operator precedence #6579 * PromQL: Respect query.timeout even when we reach query.max-concurrency #6712 * PromQL: Fix string and parentheses handling in engine, which affected React UI #6612 * PromQL: Remove output labels returned by absent() if they are produced by multiple identical label matchers #6493 * Scrape: Validate that OpenMetrics input ends with `# EOF` #6505 * Remote read: return the correct error if configs can't be marshal'd to JSON #6622 * Remote write: Make remote client `Store` use passed context, which can affect shutdown timing #6673 * Remote write: Improve sharding calculation in cases where we would always be consistently behind by tracking pendingSamples #6511 * Ensure prometheus_rule_group metrics are deleted when a rule group is removed #6693 - Changes from 2.15.2 + Bug fixes * TSDB: Fixed support for TSDB blocks built with Prometheus before 2.1.0. #6564 * TSDB: Fixed block compaction issues on Windows. #6547 - Changes from 2.15.1 + Bug fixes * TSDB: Fixed race on concurrent queries against same data. #6512 - Changes from 2.15.0 + Features * API: Added new endpoint for exposing per metric metadata `/metadata`. #6420 #6442 + Changes * Discovery: Removed `prometheus_sd_kubernetes_cache_*` metrics. Additionally `prometheus_sd_kubernetes_workqueue_latency_seconds` and `prometheus_sd_kubernetes_workqueue_work_duration_seconds` metrics now show correct values in seconds. #6393 * Remote write: Changed `query` label on `prometheus_remote_storage_*` metrics to `remote_name` and `url`. #6043 + Enhancements * TSDB: Significantly reduced memory footprint of loaded TSDB blocks. #6418 #6461 * TSDB: Significantly optimized what we buffer during compaction which should result in lower memory footprint during compaction. #6422 #6452 #6468 #6475 * TSDB: Improve replay latency. #6230 * TSDB: WAL size is now used for size based retention calculation. #5886 * Remote read: Added query grouping and range hints to the remote read request #6401 * Remote write: Added `prometheus_remote_storage_sent_bytes_total` counter per queue. #6344 * promql: Improved PromQL parser performance. #6356 * React UI: Implemented missing pages like `/targets` #6276, TSDB status page #6281 #6267 and many other fixes and performance improvements. * promql: Prometheus now accepts spaces between time range and square bracket. e.g `[ 5m]` #6065 + Bug fixes * Config: Fixed alertmanager configuration to not miss targets when configurations are similar. #6455 * Remote write: Value of `prometheus_remote_storage_shards_desired` gauge shows raw value of desired shards and it's updated correctly. #6378 * Rules: Prometheus now fails the evaluation of rules and alerts where metric results collide with labels specified in `labels` field. #6469 * API: Targets Metadata API `/targets/metadata` now accepts empty `match_targets` parameter as in the spec. #6303 - Changes from 2.14.0 + Features * API: `/api/v1/status/runtimeinfo` and `/api/v1/status/buildinfo` endpoints added for use by the React UI. #6243 * React UI: implement the new experimental React based UI. #5694 and many more * Can be found by under `/new`. * Not all pages are implemented yet. * Status: Cardinality statistics added to the Runtime & Build Information page. #6125 + Enhancements * Remote write: fix delays in remote write after a compaction. #6021 * UI: Alerts can be filtered by state. #5758 + Bug fixes * Ensure warnings from the API are escaped. #6279 * API: lifecycle endpoints return 403 when not enabled. #6057 * Build: Fix Solaris build. #6149 * Promtool: Remove false duplicate rule warnings when checking rule files with alerts. #6270 * Remote write: restore use of deduplicating logger in remote write. #6113 * Remote write: do not reshard when unable to send samples. #6111 * Service discovery: errors are no longer logged on context cancellation. #6116, #6133 * UI: handle null response from API properly. #6071 - Changes from 2.13.1 + Bug fixes * Fix panic in ARM builds of Prometheus. #6110 * promql: fix potential panic in the query logger. #6094 * Multiple errors of http: superfluous response.WriteHeader call in the logs. #6145 - Changes from 2.13.0 + Enhancements * Metrics: renamed prometheus_sd_configs_failed_total to prometheus_sd_failed_configs and changed to Gauge #5254 * Include the tsdb tool in builds. #6089 * Service discovery: add new node address types for kubernetes. #5902 * UI: show warnings if query have returned some warnings. #5964 * Remote write: reduce memory usage of the series cache. #5849 * Remote read: use remote read streaming to reduce memory usage. #5703 * Metrics: added metrics for remote write max/min/desired shards to queue manager. #5787 * Promtool: show the warnings during label query. #5924 * Promtool: improve error messages when parsing bad rules. #5965 * Promtool: more promlint rules. #5515 + Bug fixes * UI: Fix a Stored DOM XSS vulnerability with query history [CVE-2019-10215](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10215). #6098 * Promtool: fix recording inconsistency due to duplicate labels. #6026 * UI: fixes service-discovery view when accessed from unhealthy targets. #5915 * Metrics format: OpenMetrics parser crashes on short input. #5939 * UI: avoid truncated Y-axis values. #6014 - Changes from 2.12.0 + Features * Track currently active PromQL queries in a log file. #5794 * Enable and provide binaries for `mips64` / `mips64le` architectures. #5792 + Enhancements * Improve responsiveness of targets web UI and API endpoint. #5740 * Improve remote write desired shards calculation. #5763 * Flush TSDB pages more precisely. tsdb#660 * Add `prometheus_tsdb_retention_limit_bytes` metric. tsdb#667 * Add logging during TSDB WAL replay on startup. tsdb#662 * Improve TSDB memory usage. tsdb#653, tsdb#643, tsdb#654, tsdb#642, tsdb#627 + Bug fixes * Check for duplicate label names in remote read. #5829 * Mark deleted rules' series as stale on next evaluation. #5759 * Fix JavaScript error when showing warning about out-of-sync server time. #5833 * Fix `promtool test rules` panic when providing empty `exp_labels`. #5774 * Only check last directory when discovering checkpoint number. #5756 * Fix error propagation in WAL watcher helper functions. #5741 * Correctly handle empty labels from alert templates. #5845 - Update Uyuni/SUSE Manager service discovery patch + Adapt service discovery to the new Uyuni API endpoints + Modified spec file: force golang 1.12 to fix build issues in SLE15SP2 - Update to Prometheus 2.11.2 grafana: - Update to version 7.0.3 * Features / Enhancements - Stats: include all fields. #24829, @ryantxu - Variables: change VariableEditorList row action Icon to IconButton. #25217, @hshoff * Bug fixes - Cloudwatch: Fix dimensions of DDoSProtection. #25317, @papagian - Configuration: Fix env var override of sections containing hyphen. #25178, @marefr - Dashboard: Get panels in collapsed rows. #25079, @peterholmberg - Do not show alerts tab when alerting is disabled. #25285, @dprokop - Jaeger: fixes cascader option label duration value. #25129, @Estrax - Transformations: Fixed Transform tab crash & no update after adding first transform. #25152, @torkelo - Update to version 7.0.2 * Bug fixes - Security: Urgent security patch release to fix CVE-2020-13379 - Update to version 7.0.1 * Features / Enhancements - Datasource/CloudWatch: Makes CloudWatch Logs query history more readable. #24795, @kaydelaney - Download CSV: Add date and time formatting. #24992, @ryantxu - Table: Make last cell value visible when right aligned. #24921, @peterholmberg - TablePanel: Adding sort order persistance. #24705, @torkelo - Transformations: Display correct field name when using reduce transformation. #25068, @peterholmberg - Transformations: Allow custom number input for binary operations. #24752, @ryantxu * Bug fixes - Dashboard/Links: Fixes dashboard links by tags not working. #24773, @KamalGalrani - Dashboard/Links: Fixes open in new window for dashboard link. #24772, @KamalGalrani - Dashboard/Links: Variables are resolved and limits to 100. #25076, @hugohaggmark - DataLinks: Bring back variables interpolation in title. #24970, @dprokop - Datasource/CloudWatch: Field suggestions no longer limited to prefix-only. #24855, @kaydelaney - Explore/Table: Keep existing field types if possible. #24944, @kaydelaney - Explore: Fix wrap lines toggle for results of queries with filter expression. #24915, @ivanahuckova - Explore: fix undo in query editor. #24797, @zoltanbedi - Explore: fix word break in type head info. #25014, @zoltanbedi - Graph: Legend decimals now work as expected. #24931, @torkelo - LoginPage: Fix hover color for service buttons. #25009, @tskarhed - LogsPanel: Fix scrollbar. #24850, @ivanahuckova - MoveDashboard: Fix for moving dashboard caused all variables to be lost. #25005, @torkelo - Organize transformer: Use display name in field order comparer. #24984, @dprokop - Panel: shows correct panel menu items in view mode. #24912, @hugohaggmark - PanelEditor Fix missing labels and description if there is only single option in category. #24905, @dprokop - PanelEditor: Overrides name matcher still show all original field names even after Field default display name is specified. #24933, @torkelo - PanelInspector: Makes sure Data display options are visible. #24902, @hugohaggmark - PanelInspector: Hides unsupported data display options for Panel type. #24918, @hugohaggmark - PanelMenu: Make menu disappear on button press. #25015, @tskarhed - Postgres: Fix add button. #25087, @phemmer - Prometheus: Fix recording rules expansion. #24977, @ivanahuckova - Stackdriver: Fix creating Service Level Objectives (SLO) datasource query variable. #25023, @papagian - Update to version 7.0.0 * Breaking changes - Removed PhantomJS: PhantomJS was deprecated in Grafana v6.4 and starting from Grafana v7.0.0, all PhantomJS support has been removed. This means that Grafana no longer ships with a built-in image renderer, and we advise you to install the Grafana Image Renderer plugin. - Dashboard: A global minimum dashboard refresh interval is now enforced and defaults to 5 seconds. - Interval calculation: There is now a new option Max data points that controls the auto interval $__interval calculation. Interval was previously calculated by dividing the panel width by the time range. With the new max data points option it is now easy to set $__interval to a dynamic value that is time range agnostic. For example if you set Max data points to 10 Grafana will dynamically set $__interval by dividing the current time range by 10. - Datasource/Loki: Support for deprecated Loki endpoints has been removed. - Backend plugins: Grafana now requires backend plugins to be signed, otherwise Grafana will not load/start them. This is an additional security measure to make sure backend plugin binaries and files haven't been tampered with. Refer to Upgrade Grafana for more information. - @grafana/ui: Forms migration notice, see @grafana/ui changelog - @grafana/ui: Select API change for creating custom values, see @grafana/ui changelog + Deprecation warnings - Scripted dashboards is now deprecated. The feature is not removed but will be in a future release. We hope to address the underlying requirement of dynamic dashboards in a different way. #24059 - The unofficial first version of backend plugins together with usage of grafana/grafana-plugin-model is now deprecated and support for that will be removed in a future release. Please refer to backend plugins documentation for information about the new officially supported backend plugins. * Features / Enhancements - Backend plugins: Log deprecation warning when using the unofficial first version of backend plugins. #24675, @marefr - Editor: New line on Enter, run query on Shift+Enter. #24654, @davkal - Loki: Allow multiple derived fields with the same name. #24437, @aocenas - Orgs: Add future deprecation notice. #24502, @torkelo * Bug Fixes - @grafana/toolkit: Use process.cwd() instead of PWD to get directory. #24677, @zoltanbedi - Admin: Makes long settings values line break in settings page. #24559, @hugohaggmark - Dashboard: Allow editing provisioned dashboard JSON and add confirmation when JSON is copied to dashboard. #24680, @dprokop - Dashboard: Fix for strange "dashboard not found" errors when opening links in dashboard settings. #24416, @torkelo - Dashboard: Fix so default data source is selected when data source can't be found in panel editor. #24526, @mckn - Dashboard: Fixed issue changing a panel from transparent back to normal in panel editor. #24483, @torkelo - Dashboard: Make header names reflect the field name when exporting to CSV file from the the panel inspector. #24624, @peterholmberg - Dashboard: Make sure side pane is displayed with tabs by default in panel editor. #24636, @dprokop - Data source: Fix query/annotation help content formatting. #24687, @AgnesToulet - Data source: Fixes async mount errors. #24579, @Estrax - Data source: Fixes saving a data source without failure when URL doesn't specify a protocol. #24497, @aknuds1 - Explore/Prometheus: Show results of instant queries only in table. #24508, @ivanahuckova - Explore: Fix rendering of react query editors. #24593, @ivanahuckova - Explore: Fixes loading more logs in logs context view. #24135, @Estrax - Graphite: Fix schema and dedupe strategy in rollup indicators for Metrictank queries. #24685, @torkelo - Graphite: Makes query annotations work again. #24556, @hugohaggmark - Logs: Clicking "Load more" from context overlay doesn't expand log row. #24299, @kaydelaney - Logs: Fix total bytes process calculation. #24691, @davkal - Org/user/team preferences: Fixes so UI Theme can be set back to Default. #24628, @AgnesToulet - Plugins: Fix manifest validation. #24573, @aknuds1 - Provisioning: Use proxy as default access mode in provisioning. #24669, @bergquist - Search: Fix select item when pressing enter and Grafana is served using a sub path. #24634, @tskarhed - Search: Save folder expanded state. #24496, @Clarity-89 - Security: Tag value sanitization fix in OpenTSDB data source. #24539, @rotemreiss - Table: Do not include angular options in options when switching from angular panel. #24684, @torkelo - Table: Fixed persisting column resize for time series fields. #24505, @torkelo - Table: Fixes Cannot read property subRows of null. #24578, @hugohaggmark - Time picker: Fixed so you can enter a relative range in the time picker without being converted to absolute range. #24534, @mckn - Transformations: Make transform dropdowns not cropped. #24615, @dprokop - Transformations: Sort order should be preserved as entered by user when using the reduce transformation. #24494, @hugohaggmark - Units: Adds scale symbol for currencies with suffixed symbol. #24678, @hugohaggmark - Variables: Fixes filtering options with more than 1000 entries. #24614, @hugohaggmark - Variables: Fixes so Textbox variables read value from url. #24623, @hugohaggmark - Zipkin: Fix error when span contains remoteEndpoint. #24524, @aocenas - SAML: Switch from email to login for user login attribute mapping (Enterprise) - Update Makefile and spec file * Remove phantomJS patch from Makefile * Fix multiline strings in Makefile * Exclude s390 from SLE12 builds, golang 1.14 is not built for s390 - Add instructions for patching the Grafana javascript frontend. - BuildRequires golang(API) instead of go metapackage version range * BuildRequires: golang(API) >= 1.14 from BuildRequires: ( go >= 1.14 with go < 1.15 ) - Update to version 6.7.3 - This version fixes bsc#1170557 and its corresponding CVE-2020-12245 - Admin: Fix Synced via LDAP message for non-LDAP external users. #23477, @alexanderzobnin - Alerting: Fixes notifications for alerts with empty message in Google Hangouts notifier. #23559, @hugohaggmark - AuthProxy: Fixes bug where long username could not be cached.. #22926, @jcmcken - Dashboard: Fix saving dashboard when editing raw dashboard JSON model. #23314, @peterholmberg - Dashboard: Try to parse 8 and 15 digit numbers as timestamps if parsing of time range as date fails. #21694, @jessetan - DashboardListPanel: Fixed problem with empty panel after going into edit mode (General folder filter being automatically added) . #23426, @torkelo - Data source: Handle datasource withCredentials option properly. #23380, @hvtuananh - Security: Fix annotation popup XSS vulnerability. #23813, @torkelo - Server: Exit Grafana with status code 0 if no error. #23312, @aknuds1 - TablePanel: Fix XSS issue in header column rename (backport). #23814, @torkelo - Variables: Fixes error when setting adhoc variable values. #23580, @hugohaggmark - Update to version 6.7.2: (see installed changelog for the full list of changes) - BackendSrv: Adds config to response to fix issue for external plugins that used this property . #23032, @torkelo - Dashboard: Fixed issue with saving new dashboard after changing title . #23104, @dprokop - DataLinks: make sure we use the correct datapoint when dataset contains null value.. #22981, @mckn - Plugins: Fixed issue for plugins that imported dateMath util . #23069, @mckn - Security: Fix for dashboard snapshot original dashboard link could contain XSS vulnerability in url. #23254, @torkelo - Variables: Fixes issue with too many queries being issued for nested template variables after value change. #23220, @torkelo - Plugins: Expose promiseToDigest. #23249, @torkelo - Reporting (Enterprise): Fixes issue updating a report created by someone else - Update to 6.7.1: (see installed changelog for the full list of changes) Bug Fixes - Azure: Fixed dropdowns not showing current value. #22914, @torkelo - BackendSrv: only add content-type on POST, PUT requests. #22910, @hugohaggmark - Panels: Fixed size issue with panel internal size when exiting panel edit mode. #22912, @torkelo - Reporting: fixes migrations compatibility with mysql (Enterprise) - Reporting: Reduce default concurrency limit to 4 (Enterprise) - Update to 6.7.0: (see installed changelog for the full list of changes) Bug Fixes - AngularPanels: Fixed inner height calculation for angular panels . #22796, @torkelo - BackendSrv: makes sure provided headers are correctly recognized and set. #22778, @hugohaggmark - Forms: Fix input suffix position (caret-down in Select) . #22780, @torkelo - Graphite: Fixed issue with query editor and next select metric now showing after selecting metric node . #22856, @torkelo - Rich History: UX adjustments and fixes. #22729, @ivanahuckova - Update to 6.7.0-beta1: Breaking changes - Slack: Removed Mention setting and instead introduce Mention Users, Mention Groups, and Mention Channel. The first two settings require user and group IDs, respectively. This change was necessary because the way of mentioning via the Slack API changed and mentions in Slack notifications no longer worked. - Alerting: Reverts the behavior of diff and percent_diff to not always be absolute. Something we introduced by mistake in 6.1.0. Alerting now support diff(), diff_abs(), percent_diff() and percent_diff_abs(). #21338 - Notice about changes in backendSrv for plugin authors In our mission to migrate away from AngularJS to React we have removed all AngularJS dependencies in the core data retrieval service backendSrv. Removing the AngularJS dependencies in backendSrv has the unfortunate side effect of AngularJS digest no longer being triggered for any request made with backendSrv. Because of this, external plugins using backendSrv directly may suffer from strange behaviour in the UI. To remedy this issue, as a plugin author you need to trigger the digest after a direct call to backendSrv. Bug Fixes API: Fix redirect issues. #22285, @papagian Alerting: Don't include image_url field with Slack message if empty. #22372, @aknuds1 Alerting: Fixed bad background color for default notifications in alert tab . #22660, @krvajal Annotations: In table panel when setting transform to annotation, they will now show up right away without a manual refresh. #22323, @krvajal Azure Monitor: Fix app insights source to allow for new __timeFrom and __timeTo. #21879, @ChadNedzlek BackendSrv: Fixes POST body for form data. #21714, @hugohaggmark CloudWatch: Credentials cache invalidation fix. #22473, @sunker CloudWatch: Expand alias variables when query yields no result. #22695, @sunker Dashboard: Fix bug with NaN in alerting. #22053, @a-melnyk Explore: Fix display of multiline logs in log panel and explore. #22057, @thomasdraebing Heatmap: Legend color range is incorrect when using custom min/max. #21748, @sv5d Security: Fixed XSS issue in dashboard history diff . #22680, @torkelo StatPanel: Fixes base color is being used for null values . #22646, @torkelo - Update to version 6.6.2: (see installed changelog for the full list of changes) - Update to version 6.6.1: (see installed changelog for the full list of changes) - Update to version 6.6.0: (see installed changelog for the full list of changes) - Update to version 6.5.3: (see installed changelog for the full list of changes) - Update to version 6.5.2: (see installed changelog for the full list of changes) - Update to version 6.5.1: (see installed changelog for the full list of changes) - Update to version 6.5.0 (see installed changelog for the full list of changes) - Update to version 6.4.5: * Create version 6.4.5 * CloudWatch: Fix high CPU load (#20579) - Add obs-service-go_modules to download required modules into vendor.tar.gz - Adjusted spec file to use vendor.tar.gz - Adjusted Makefile to work with new filenames - BuildRequire go1.14 - Update to version 6.4.4: * DataLinks: Fix blur issues. #19883, @aocenas * Docker: Makes it possible to parse timezones in the docker image. #20081, @xlson * LDAP: All LDAP servers should be tried even if one of them returns a connection error. #20077, @jongyllen * LDAP: No longer shows incorrectly matching groups based on role in debug page. #20018, @xlson * Singlestat: Fix no data / null value mapping . #19951, @ryantxu - Revert the spec file and make script - Remove PhantomJS dependency - Update to 6.4.3 * Bug Fixes - Alerting: All notification channels should send even if one fails to send. #19807, @jan25 - AzureMonitor: Fix slate interference with dropdowns. #19799, @aocenas - ContextMenu: make ContextMenu positioning aware of the viewport width. #19699, @krvajal - DataLinks: Fix context menu not showing in singlestat-ish visualisations. #19809, @dprokop - DataLinks: Fix url field not releasing focus. #19804, @aocenas - Datasource: Fixes clicking outside of some query editors required 2 clicks. #19822, @aocenas - Panels: Fixes default tab for visualizations without Queries Tab. #19803, @hugohaggmark - Singlestat: Fixed issue with mapping null to text. #19689, @torkelo - @grafana/toolkit: Don't fail plugin creation when git user.name config is not set. #19821, @dprokop - @grafana/toolkit: TSLint line number off by 1. #19782, @fredwangwang - Update to 6.4.2 * Bug Fixes - CloudWatch: Changes incorrect dimension wmlid to wlmid . #19679, @ATTron - Grafana Image Renderer: Fixes plugin page. #19664, @hugohaggmark - Graph: Fixes auto decimals logic for y axis ticks that results in too many decimals for high values. #19618, @torkelo - Graph: Switching to series mode should re-render graph. #19623, @torkelo - Loki: Fix autocomplete on label values. #19579, @aocenas - Loki: Removes live option for logs panel. #19533, @davkal - Profile: Fix issue with user profile not showing more than sessions sessions in some cases. #19578, @huynhsamha - Prometheus: Fixes so results in Panel always are sorted by query order. #19597, @hugohaggmark - ShareQuery: Fixed issue when using -- Dashboard -- datasource (to share query result) when dashboard had rows. #19610, @torkelo - Show SAML login button if SAML is enabled. #19591, @papagian - SingleStat: Fixes postfix/prefix usage. #19687, @hugohaggmark - Table: Proper handling of json data with dataframes. #19596, @marefr - Units: Fixed wrong id for Terabits/sec. #19611, @andreaslangnevyjel - Changes from 6.4.1 * Bug Fixes - Provisioning: Fixed issue where empty nested keys in YAML provisioning caused a server crash, #19547 - ImageRendering: Fixed issue with image rendering in enterprise build (Enterprise) - Reporting: Fixed issue with reporting service when STMP was disabled (Enterprise). - Changes from 6.4.0 * Features / Enhancements - Build: Upgrade go to 1.12.10. #19499, @marefr - DataLinks: Suggestions menu improvements. #19396, @dprokop - Explore: Take root_url setting into account when redirecting from dashboard to explore. #19447, @ivanahuckova - Explore: Update broken link to logql docs. #19510, @ivanahuckova - Logs: Adds Logs Panel as a visualization. #19504, @davkal * Bug Fixes - CLI: Fix version selection for plugin install. #19498, @aocenas - Graph: Fixes minor issue with series override color picker and custom color . #19516, @torkelo - Changes from 6.4.0 Beta 2 * Features / Enhancements - Azure Monitor: Remove support for cross resource queries (#19115)". #19346, @sunker - Docker: Upgrade packages to resolve reported vulnerabilities. #19188, @marefr - Graphite: Time range expansion reduced from 1 minute to 1 second. #19246, @torkelo - grafana/toolkit: Add plugin creation task. #19207, @dprokop * Bug Fixes - Alerting: Prevents creating alerts from unsupported queries. #19250, @hugohaggmark - Alerting: Truncate PagerDuty summary when greater than 1024 characters. #18730, @nvllsvm - Cloudwatch: Fix autocomplete for Gamelift dimensions. #19146, @kevinpz - Dashboard: Fix export for sharing when panels use default data source. #19315, @torkelo - Database: Rewrite system statistics query to perform better. #19178, @papagian - Gauge/BarGauge: Fix issue with [object Object] in titles . #19217, @ryantxu - MSSQL: Revert usage of new connectionstring format introduced by #18384. #19203, @marefr - Multi-LDAP: Do not fail-fast on invalid credentials. #19261, @gotjosh - MySQL, Postgres, MSSQL: Fix validating query with template variables in alert . #19237, @marefr - MySQL, Postgres: Update raw sql when query builder updates. #19209, @marefr - MySQL: Limit datasource error details returned from the backend. #19373, @marefr - Changes from 6.4.0 Beta 1 * Features / Enhancements - API: Readonly datasources should not be created via the API. #19006, @papagian - Alerting: Include configured AlertRuleTags in Webhooks notifier. #18233, @dominic-miglar - Annotations: Add annotations support to Loki. #18949, @aocenas - Annotations: Use a single row to represent a region. #17673, @ryantxu - Auth: Allow inviting existing users when login form is disabled. #19048, @548017 - Azure Monitor: Add support for cross resource queries. #19115, @sunker - CLI: Allow installing custom binary plugins. #17551, @aocenas - Dashboard: Adds Logs Panel (alpha) as visualization option for Dashboards. #18641, @hugohaggmark - Dashboard: Reuse query results between panels . #16660, @ryantxu - Dashboard: Set time to to 23:59:59 when setting To time using calendar. #18595, @simPod - DataLinks: Add DataLinks support to Gauge, BarGauge and SingleStat2 panel. #18605, @ryantxu - DataLinks: Enable access to labels & field names. #18918, @torkelo - DataLinks: Enable multiple data links per panel. #18434, @dprokop - Docker: switch docker image to alpine base with phantomjs support. #18468, @DanCech - Elasticsearch: allow templating queries to order by doc_count. #18870, @hackery - Explore: Add throttling when doing live queries. #19085, @aocenas - Explore: Adds ability to go back to dashboard, optionally with query changes. #17982, @kaydelaney - Explore: Reduce default time range to last hour. #18212, @davkal - Gauge/BarGauge: Support decimals for min/max. #18368, @ryantxu - Graph: New series override transform constant that renders a single point as a line across the whole graph. #19102, @davkal - Image rendering: Add deprecation warning when PhantomJS is used for rendering images. #18933, @papagian - InfluxDB: Enable interpolation within ad-hoc filter values. #18077, @kvc-code - LDAP: Allow an user to be synchronized against LDAP. #18976, @gotjosh - Ldap: Add ldap debug page. #18759, @peterholmberg - Loki: Remove prefetching of default label values. #18213, @davkal - Metrics: Add failed alert notifications metric. #18089, @koorgoo - OAuth: Support JMES path lookup when retrieving user email. #14683, @bobmshannon - OAuth: return GitLab groups as a part of user info (enable team sync). #18388, @alexanderzobnin - Panels: Add unit for electrical charge - ampere-hour. #18950, @anirudh-ramesh - Plugin: AzureMonitor - Reapply MetricNamespace support. #17282, @raphaelquati - Plugins: better warning when plugins fail to load. #18671, @ryantxu - Postgres: Add support for scram sha 256 authentication. #18397, @nonamef - RemoteCache: Support SSL with Redis. #18511, @kylebrandt - SingleStat: The gauge option in now disabled/hidden (unless it's an old panel with it already enabled) . #18610, @ryantxu - Stackdriver: Add extra alignment period options. #18909, @sunker - Units: Add South African Rand (ZAR) to currencies. #18893, @jeteon - Units: Adding T,P,E,Z,and Y bytes. #18706, @chiqomar * Bug Fixes - Alerting: Notification is sent when state changes from no_data to ok. #18920, @papagian - Alerting: fix duplicate alert states when the alert fails to save to the database. #18216, @kylebrandt - Alerting: fix response popover prompt when add notification channels. #18967, @lzdw - CloudWatch: Fix alerting for queries with Id (using GetMetricData). #17899, @alex-berger - Explore: Fix auto completion on label values for Loki. #18988, @aocenas - Explore: Fixes crash using back button with a zoomed in graph. #19122, @hugohaggmark - Explore: Fixes so queries in Explore are only run if Graph/Table is shown. #19000, @hugohaggmark - MSSQL: Change connectionstring to URL format to fix using passwords with semicolon. #18384, @Russiancold - MSSQL: Fix memory leak when debug enabled. #19049, @briangann - Provisioning: Allow escaping literal '$' with '$$' in configs to avoid interpolation. #18045, @kylebrandt - TimePicker: Fixes hiding time picker dropdown in FireFox. #19154, @hugohaggmark * Breaking changes + Annotations There are some breaking changes in the annotations HTTP API for region annotations. Region annotations are now represented using a single event instead of two seperate events. Check breaking changes in HTTP API below and HTTP API documentation for more details. + Docker Grafana is now using Alpine 3.10 as docker base image. + HTTP API - GET /api/alert-notifications now requires at least editor access. New /api/alert-notifications/lookup returns less information than /api/alert-notifications and can be access by any authenticated user. - GET /api/alert-notifiers now requires at least editor access - GET /api/org/users now requires org admin role. New /api/org/users/lookup returns less information than /api/org/users and can be access by users that are org admins, admin in any folder or admin of any team. - GET /api/annotations no longer returns regionId property. - POST /api/annotations no longer supports isRegion property. - PUT /api/annotations/:id no longer supports isRegion property. - PATCH /api/annotations/:id no longer supports isRegion property. - DELETE /api/annotations/region/:id has been removed. * Deprecation notes + PhantomJS - PhantomJS, which is used for rendering images of dashboards and panels, is deprecated and will be removed in a future Grafana release. A deprecation warning will from now on be logged when Grafana starts up if PhantomJS is in use. Please consider migrating from PhantomJS to the Grafana Image Renderer plugin. - Changes from 6.3.6 * Features / Enhancements - Metrics: Adds setting for turning off total stats metrics. #19142, @marefr * Bug Fixes - Database: Rewrite system statistics query to perform better. #19178, @papagian - Explore: Fixes error when switching from prometheus to loki data sources. #18599, @kaydelaney - Rebase package spec. Use mostly from fedora, fix suse specified things and fix some errors. - Add missing directories provisioning/datasources and provisioning/notifiers and sample.yaml as described in packaging/rpm/control from upstream. Missing directories are shown in logfiles. - Version 6.3.5 * Upgrades + Build: Upgrade to go 1.12.9. * Bug Fixes + Dashboard: Fixes dashboards init failed loading error for dashboards with panel links that had missing properties. + Editor: Fixes issue where only entire lines were being copied. + Explore: Fixes query field layout in splitted view for Safari browsers. + LDAP: multildap + ldap integration. + Profile/UserAdmin: Fix for user agent parser crashes grafana-server on 32-bit builds. + Prometheus: Prevents panel editor crash when switching to Prometheus datasource. + Prometheus: Changes brace-insertion behavior to be less annoying. - Version 6.3.4 * Security: CVE-2019-15043 - Parts of the HTTP API allow unauthenticated use. - Version 6.3.3 * Bug Fixes + Annotations: Fix failing annotation query when time series query is cancelled. #18532 1, @dprokop 1 + Auth: Do not set SameSite cookie attribute if cookie_samesite is none. #18462 1, @papagian 3 + DataLinks: Apply scoped variables to data links correctly. #18454 1, @dprokop 1 + DataLinks: Respect timezone when displaying datapoint’s timestamp in graph context menu. #18461 2, @dprokop 1 + DataLinks: Use datapoint timestamp correctly when interpolating variables. #18459 1, @dprokop 1 + Explore: Fix loading error for empty queries. #18488 1, @davkal + Graph: Fixes legend issue clicking on series line icon and issue with horizontal scrollbar being visible on windows. #18563 1, @torkelo 2 + Graphite: Avoid glob of single-value array variables . #18420, @gotjosh + Prometheus: Fix queries with label_replace remove the $1 match when loading query editor. #18480 5, @hugohaggmark 3 + Prometheus: More consistently allows for multi-line queries in editor. #18362 2, @kaydelaney 2 + TimeSeries: Assume values are all numbers. #18540 4, @ryantxu - Version 6.3.2 * Bug Fixes + Gauge/BarGauge: Fixes issue with losts thresholds and issue loading Gauge with avg stat. #18375 12 - Version 6.3.1 * Bug Fixes + PanelLinks: Fix crash issue Gauge & Bar Gauge for panels with panel links (drill down links). #18430 2 - Version 6.3.0 * Features / Enhancements + OAuth: Do not set SameSite OAuth cookie if cookie_samesite is None. #18392 4, @papagian 3 + Auth Proxy: Include additional headers as part of the cache key. #18298 6, @gotjosh + Build grafana images consistently. #18224 12, @hassanfarid + Docs: SAML. #18069 11, @gotjosh + Permissions: Show plugins in nav for non admin users but hide plugin configuration. #18234 1, @aocenas + TimePicker: Increase max height of quick range dropdown. #18247 2, @torkelo 2 + Alerting: Add tags to alert rules. #10989 13, @Thib17 1 + Alerting: Attempt to send email notifications to all given email addresses. #16881 1, @zhulongcheng + Alerting: Improve alert rule testing. #16286 2, @marefr + Alerting: Support for configuring content field for Discord alert notifier. #17017 2, @jan25 + Alertmanager: Replace illegal chars with underscore in label names. #17002 5, @bergquist 1 + Auth: Allow expiration of API keys. #17678, @papagian 3 + Auth: Return device, os and browser when listing user auth tokens in HTTP API. #17504, @shavonn 1 + Auth: Support list and revoke of user auth tokens in UI. #17434 2, @shavonn 1 + AzureMonitor: change clashing built-in Grafana variables/macro names for Azure Logs. #17140, @shavonn 1 + CloudWatch: Made region visible for AWS Cloudwatch Expressions. #17243 2, @utkarshcmu + Cloudwatch: Add AWS DocDB metrics. #17241, @utkarshcmu + Dashboard: Use timezone dashboard setting when exporting to CSV. #18002 1, @dehrax + Data links. #17267 11, @torkelo 2 + Docker: Switch base image to ubuntu:latest from debian:stretch to avoid security issues… #17066 5, @bergquist 1 + Elasticsearch: Support for visualizing logs in Explore . #17605 7, @marefr + Explore: Adds Live option for supported datasources. #17062 1, @hugohaggmark 3 + Explore: Adds orgId to URL for sharing purposes. #17895 1, @kaydelaney 2 + Explore: Adds support for new loki ‘start’ and ‘end’ params for labels endpoint. #17512, @kaydelaney 2 + Explore: Adds support for toggling raw query mode in explore. #17870, @kaydelaney 2 + Explore: Allow switching between metrics and logs . #16959 2, @marefr + Explore: Combines the timestamp and local time columns into one. #17775, @hugohaggmark 3 + Explore: Display log lines context . #17097, @dprokop 1 + Explore: Don’t parse log levels if provided by field or label. #17180 1, @marefr + Explore: Improves performance of Logs element by limiting re-rendering. #17685, @kaydelaney 2 + Explore: Support for new LogQL filtering syntax. #16674 4, @davkal + Explore: Use new TimePicker from Grafana/UI. #17793, @hugohaggmark 3 + Explore: handle newlines in LogRow Highlighter. #17425, @rrfeng 1 + Graph: Added new fill gradient option. #17528 3, @torkelo 2 + GraphPanel: Don’t sort series when legend table & sort column is not visible . #17095, @shavonn 1 + InfluxDB: Support for visualizing logs in Explore. #17450 9, @hugohaggmark 3 + Logging: Login and Logout actions (#17760). #17883 1, @ATTron + Logging: Move log package to pkg/infra. #17023, @zhulongcheng + Metrics: Expose stats about roles as metrics. #17469 2, @bergquist 1 + MySQL/Postgres/MSSQL: Add parsing for day, weeks and year intervals in macros. #13086 6, @bernardd + MySQL: Add support for periodically reloading client certs. #14892, @tpetr + Plugins: replace dataFormats list with skipDataQuery flag in plugin.json. #16984, @ryantxu + Prometheus: Take timezone into account for step alignment. #17477, @fxmiii + Prometheus: Use overridden panel range for $__range instead of dashboard range. #17352, @patrick246 + Prometheus: added time range filter to series labels query. #16851 3, @FUSAKLA + Provisioning: Support folder that doesn’t exist yet in dashboard provisioning. #17407 1, @Nexucis + Refresh picker: Handle empty intervals. #17585 1, @dehrax + Singlestat: Add y min/max config to singlestat sparklines. #17527 4, @pitr + Snapshot: use given key and deleteKey. #16876, @zhulongcheng + Templating: Correctly display __text in multi-value variable after page reload. #17840 1, @EduardSergeev + Templating: Support selecting all filtered values of a multi-value variable. #16873 2, @r66ad + Tracing: allow propagation with Zipkin headers. #17009 4, @jrockway + Users: Disable users removed from LDAP. #16820 2, @alexanderzobnin * Bug Fixes + PanelLinks: Fix render issue when there is no panel description. #18408 3, @dehrax + OAuth: Fix “missing saved state” OAuth login failure due to SameSite cookie policy. #18332 1, @papagian 3 + cli: fix for recognizing when in dev mode… #18334, @xlson + DataLinks: Fixes incorrect interpolation of ${__series_name} . #18251 1, @torkelo 2 + Loki: Display live tailed logs in correct order in Explore. #18031 3, @kaydelaney 2 + PhantomJS: Fixes rendering on Debian Buster. #18162 2, @xlson + TimePicker: Fixed style issue for custom range popover. #18244, @torkelo 2 + Timerange: Fixes a bug where custom time ranges didn’t respect UTC. #18248 1, @kaydelaney 2 + remote_cache: Fix redis connstr parsing. #18204 1, @mblaschke + AddPanel: Fix issue when removing moved add panel widget . #17659 2, @dehrax + CLI: Fix encrypt-datasource-passwords fails with sql error. #18014, @marefr + Elasticsearch: Fix default max concurrent shard requests. #17770 4, @marefr + Explore: Fix browsing back to dashboard panel. #17061, @jschill + Explore: Fix filter by series level in logs graph. #17798, @marefr + Explore: Fix issues when loading and both graph/table are collapsed. #17113, @marefr + Explore: Fix selection/copy of log lines. #17121, @marefr + Fix: Wrap value of multi variable in array when coming from URL. #16992 1, @aocenas + Frontend: Fix for Json tree component not working. #17608, @srid12 + Graphite: Fix for issue with alias function being moved last. #17791, @torkelo 2 + Graphite: Fixes issue with seriesByTag & function with variable param. #17795, @torkelo 2 + Graphite: use POST for /metrics/find requests. #17814 2, @papagian 3 + HTTP Server: Serve Grafana with a custom URL path prefix. #17048 6, @jan25 + InfluxDB: Fixes single quotes are not escaped in label value filters. #17398 1, @Panzki + Prometheus: Correctly escape ‘|’ literals in interpolated PromQL variables. #16932, @Limess + Prometheus: Fix when adding label for metrics which contains colons in Explore. #16760, @tolwi + SinglestatPanel: Remove background color when value turns null. #17552 1, @druggieri - Make phantomjs dependency configurable - Create plugin directory and clean up (create in %install, add to %files) handling of /var/lib/grafana/* and koan: - Calculate relative path for kernel and inited when generating grub entry (bsc#1170231) - Fix os-release version detection for SUSE mgr-cfg: - Remove commented code in test files - Replace spacewalk-usix with uyuni-common-libs - Bump version to 4.1.0 (bsc#1154940) - Add mgr manpage links mgr-custom-info: - Bump version to 4.1.0 (bsc#1154940) mgr-daemon: - Bump version to 4.1.0 (bsc#1154940) - Fix systemd timer configuration on SLE12 (bsc#1142038) mgr-osad: - Separate osa-dispatcher and jabberd so it can be disabled independently - Replace spacewalk-usix with uyuni-common-libs - Bump version to 4.1.0 (bsc#1154940) - Move /usr/share/rhn/config-defaults to uyuni-base-common - Require uyuni-base-common for /etc/rhn (for osa-dispatcher) - Ensure bytes type when using hashlib to avoid traceback (bsc#1138822) mgr-push: - Replace spacewalk-usix and spacewalk-backend-libs with uyuni-common-libs - Bump version to 4.1.0 (bsc#1154940) mgr-virtualization: - Replace spacewalk-usix with uyuni-common-libs - Bump version to 4.1.0 (bsc#1154940) - Fix mgr-virtualization timer rhnlib: - Fix building - Fix malformed XML response when data contains non-ASCII chars (bsc#1154968) - Bump version to 4.1.0 (bsc#1154940) - Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177) spacecmd: - Only report real error, not result (bsc#1171687) - Use defined return values for spacecmd methods so scripts can check for failure (bsc#1171687) - Disable globbing for api subcommand to allow wildcards in filter settings (bsc#1163871) - Bugfix: attempt to purge SSM when it is empty (bsc#1155372) - Bump version to 4.1.0 (bsc#1154940) - Prevent error when piping stdout in Python 2 (bsc#1153090) - Java api expects content as encoded string instead of encoded bytes like before (bsc#1153277) - Enable building and installing for Ubuntu 16.04 and Ubuntu 18.04 - Add unit test for schedule, errata, user, utils, misc, configchannel and kickstart modules - Multiple minor bugfixes alongside the unit tests - Bugfix: referenced variable before assignment. - Add unit test for report, package, org, repo and group spacewalk-client-tools: - Add workaround for uptime overflow to spacewalk-update-status as well (bsc#1165921) - Spell correctly "successful" and "successfully" - Skip dmidecode data on aarch64 to prevent coredump (bsc#1113160) - Replace spacewalk-usix with uyuni-common-libs - Return a non-zero exit status on errors in rhn_check - Bump version to 4.1.0 (bsc#1154940) - Make a explicit requirement to systemd for spacewalk-client-tools when rhnsd timer is installed spacewalk-koan: - Bump version to 4.1.0 (bsc#1154940) - Require commands we use in merge-rd.sh spacewalk-oscap: - Bump version to 4.1.0 (bsc#1154940) spacewalk-remote-utils: - Update spacewalk-create-channel with RHEL 7.7 channel definitions - Bump version to 4.1.0 (bsc#1154940) supportutils-plugin-susemanager-client: - Bump version to 4.1.0 (bsc#1154940) suseRegisterInfo: - SuseRegisterInfo only needs perl-base, not full perl (bsc#1168310) - Bump version to 4.1.0 (bsc#1154940) zypp-plugin-spacewalk: - 1.0.7 - Prevent issue with non-ASCII characters in Python 2 systems (bsc#1172462) This update was imported from the SUSE:SLE-15:Update update project. dracut-saltboot-0.1.1590413773.a959db7-lp152.2.3.1.noarch.rpm dracut-saltboot-0.1.1590413773.a959db7-lp152.2.3.1.src.rpm openSUSE-2020-1113 moderate openSUSE Leap 15.2 Update This update for go1.12 fixes the following issues: - Add 'binutils-gold' as a dependency for arm and aarch64 architectures. (bsc#1170826) This update was imported from the SUSE:SLE-15:Update update project. go1.12-1.12.17-lp152.3.3.1.src.rpm go1.12-1.12.17-lp152.3.3.1.x86_64.rpm go1.12-doc-1.12.17-lp152.3.3.1.x86_64.rpm go1.12-race-1.12.17-lp152.3.3.1.x86_64.rpm go1.12-1.12.17-lp152.3.3.1.i586.rpm go1.12-doc-1.12.17-lp152.3.3.1.i586.rpm openSUSE-2020-1115 moderate openSUSE Leap 15.2 Update This update for nodejs12 fixes the following issues: - Fixes reported memory leak. (bsc#1173653) This update was imported from the SUSE:SLE-15-SP2:Update update project. nodejs12-12.18.2-lp152.3.3.1.src.rpm nodejs12-12.18.2-lp152.3.3.1.x86_64.rpm nodejs12-debuginfo-12.18.2-lp152.3.3.1.x86_64.rpm nodejs12-debugsource-12.18.2-lp152.3.3.1.x86_64.rpm nodejs12-devel-12.18.2-lp152.3.3.1.x86_64.rpm nodejs12-docs-12.18.2-lp152.3.3.1.noarch.rpm npm12-12.18.2-lp152.3.3.1.x86_64.rpm openSUSE-2020-1129 low openSUSE Leap 15.2 Update This update for go1.12 fixes the following issues: - Fix for an issue when installing on Raspberry Pi causes illegal instruction due to unproper ARM arch set. (bsc#1169832) This update was imported from the SUSE:SLE-15:Update update project. go1.12-1.12.17-lp152.3.4.1.src.rpm go1.12-1.12.17-lp152.3.4.1.x86_64.rpm go1.12-doc-1.12.17-lp152.3.4.1.x86_64.rpm go1.12-race-1.12.17-lp152.3.4.1.x86_64.rpm go1.12-1.12.17-lp152.3.4.1.i586.rpm go1.12-doc-1.12.17-lp152.3.4.1.i586.rpm openSUSE-2020-1140 important openSUSE Leap 15.2 Update This update for crmsh fixes the following issues: - Fix for SSH communication between HA nodes by copying ssh key to 'qnetd' while detect need a password. (bsc#1174385) This update was imported from the SUSE:SLE-15-SP2:Update update project. crmsh-4.2.0+git.1595517298.a06e892f-lp152.4.7.1.noarch.rpm crmsh-4.2.0+git.1595517298.a06e892f-lp152.4.7.1.src.rpm crmsh-scripts-4.2.0+git.1595517298.a06e892f-lp152.4.7.1.noarch.rpm crmsh-test-4.2.0+git.1595517298.a06e892f-lp152.4.7.1.noarch.rpm openSUSE-2020-1120 moderate openSUSE Leap 15.2 Update This update for fence-agents fixes the following issues: - Disable cache discovery for "gcp-vpc-move-route" resource agent. (bsc#1169852) - fence_vmware_rest Failed: 'error' object does not support indexing. (bsc#1169485) This update was imported from the SUSE:SLE-15-SP1:Update update project. fence-agents-4.4.0+git.1558595666.5f79f9e9-lp152.3.3.1.src.rpm fence-agents-4.4.0+git.1558595666.5f79f9e9-lp152.3.3.1.x86_64.rpm fence-agents-amt_ws-4.4.0+git.1558595666.5f79f9e9-lp152.3.3.1.x86_64.rpm fence-agents-debuginfo-4.4.0+git.1558595666.5f79f9e9-lp152.3.3.1.x86_64.rpm fence-agents-debugsource-4.4.0+git.1558595666.5f79f9e9-lp152.3.3.1.x86_64.rpm fence-agents-devel-4.4.0+git.1558595666.5f79f9e9-lp152.3.3.1.x86_64.rpm openSUSE-2020-1122 moderate openSUSE Leap 15.2 Update This update for mkdud fixes the following issues: - ensure DUD repos are removed at the end of the installation (boo#1173988) - add --sign-key-id option to allow specifying a gpg signing key by id mkdud-1.50-lp152.2.3.1.noarch.rpm mkdud-1.50-lp152.2.3.1.src.rpm openSUSE-2020-1169 important openSUSE Leap 15.2 Update This update for grub2 fixes the following issues: - Fix for CVE-2020-10713 (bsc#1168994) - Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812) - Fix for CVE-2020-15706 (bsc#1174463) - Fix for CVE-2020-15707 (bsc#1174570) - Use overflow checking primitives where the arithmetic expression for buffer - Use grub_calloc for overflow check and return NULL when it would occur This update was imported from the SUSE:SLE-15-SP2:Update update project. grub2-2.04-lp152.7.3.4.src.rpm grub2-2.04-lp152.7.3.4.x86_64.rpm grub2-branding-upstream-2.04-lp152.7.3.4.x86_64.rpm grub2-debuginfo-2.04-lp152.7.3.4.x86_64.rpm grub2-debugsource-2.04-lp152.7.3.4.x86_64.rpm grub2-i386-pc-2.04-lp152.7.3.4.noarch.rpm grub2-i386-pc-debug-2.04-lp152.7.3.4.noarch.rpm grub2-snapper-plugin-2.04-lp152.7.3.4.noarch.rpm grub2-systemd-sleep-plugin-2.04-lp152.7.3.4.noarch.rpm grub2-x86_64-efi-2.04-lp152.7.3.4.noarch.rpm grub2-x86_64-efi-debug-2.04-lp152.7.3.4.noarch.rpm grub2-x86_64-xen-2.04-lp152.7.3.4.noarch.rpm grub2-2.04-lp152.7.3.4.i586.rpm grub2-branding-upstream-2.04-lp152.7.3.4.i586.rpm grub2-debuginfo-2.04-lp152.7.3.4.i586.rpm grub2-debugsource-2.04-lp152.7.3.4.i586.rpm grub2-i386-efi-2.04-lp152.7.3.4.noarch.rpm grub2-i386-efi-debug-2.04-lp152.7.3.4.noarch.rpm grub2-i386-xen-2.04-lp152.7.3.4.noarch.rpm openSUSE-2020-1131 moderate openSUSE Leap 15.2 Update This update for python-kiwi fixes the following issues: - Fixed _get_grub2_mkconfig_tool Last patch on this method breaks the search for alternative mkconfig names. It returns always on the first lookup which could be none. This breaks on systems that uses a different name than grub2-mkconfig, like on Ubuntu. - Increase spare space on disk repart (bsc#1165823) The sizing of the virtual cylinders in parted seems to be unfavorable, as with some disks and SD cards here the device size is not a multiple of the cylinder size, so the last incomplete cylinder is wasted. If this wasted space is more than 5MiB, kiwi tries to resize indefinitely. Therefore min_additional_mbytes gets increased to prevent running into this situation. This update was imported from the SUSE:SLE-15-SP1:Update update project. dracut-kiwi-lib-9.20.5-lp152.5.3.1.x86_64.rpm dracut-kiwi-live-9.20.5-lp152.5.3.1.x86_64.rpm dracut-kiwi-oem-dump-9.20.5-lp152.5.3.1.x86_64.rpm dracut-kiwi-oem-repart-9.20.5-lp152.5.3.1.x86_64.rpm dracut-kiwi-overlay-9.20.5-lp152.5.3.1.x86_64.rpm kiwi-man-pages-9.20.5-lp152.5.3.1.x86_64.rpm kiwi-pxeboot-9.20.5-lp152.5.3.1.x86_64.rpm kiwi-tools-9.20.5-lp152.5.3.1.x86_64.rpm kiwi-tools-debuginfo-9.20.5-lp152.5.3.1.x86_64.rpm python-kiwi-9.20.5-lp152.5.3.1.src.rpm python-kiwi-debugsource-9.20.5-lp152.5.3.1.x86_64.rpm python3-kiwi-9.20.5-lp152.5.3.1.x86_64.rpm dracut-kiwi-lib-9.20.5-lp152.5.3.1.i586.rpm dracut-kiwi-live-9.20.5-lp152.5.3.1.i586.rpm dracut-kiwi-oem-dump-9.20.5-lp152.5.3.1.i586.rpm dracut-kiwi-oem-repart-9.20.5-lp152.5.3.1.i586.rpm dracut-kiwi-overlay-9.20.5-lp152.5.3.1.i586.rpm kiwi-man-pages-9.20.5-lp152.5.3.1.i586.rpm kiwi-pxeboot-9.20.5-lp152.5.3.1.i586.rpm kiwi-tools-9.20.5-lp152.5.3.1.i586.rpm kiwi-tools-debuginfo-9.20.5-lp152.5.3.1.i586.rpm python-kiwi-debugsource-9.20.5-lp152.5.3.1.i586.rpm python3-kiwi-9.20.5-lp152.5.3.1.i586.rpm openSUSE-2020-1132 moderate openSUSE Leap 15.2 Update This update for diffutils fixes the following issue: - Disable a sporadically failing test for ppc64 and ppc64le builds. (bsc#1156913) This update was imported from the SUSE:SLE-15:Update update project. diffutils-3.6-lp152.5.3.1.src.rpm diffutils-3.6-lp152.5.3.1.x86_64.rpm diffutils-debuginfo-3.6-lp152.5.3.1.x86_64.rpm diffutils-debugsource-3.6-lp152.5.3.1.x86_64.rpm diffutils-lang-3.6-lp152.5.3.1.noarch.rpm diffutils-3.6-lp152.5.3.1.i586.rpm diffutils-debuginfo-3.6-lp152.5.3.1.i586.rpm diffutils-debugsource-3.6-lp152.5.3.1.i586.rpm openSUSE-2020-1135 moderate openSUSE Leap 15.2 Update This update for android-udev-rules fixes the following issues: - This package replaces android-tools-udev version 5 add the missing Provides/Obsoletes to avoid fileconflicts android-udev-rules-20191103-lp152.2.3.1.noarch.rpm android-udev-rules-20191103-lp152.2.3.1.src.rpm openSUSE-2020-1146 important openSUSE Leap 15.2 Update This update for ghostscript fixes the following issues: - fixed CVE-2020-15900 Memory Corruption (SAFER Sandbox Breakout) cf. https://bugs.ghostscript.com/show_bug.cgi?id=702582 (bsc#1174415) This update was imported from the SUSE:SLE-15:Update update project. ghostscript-mini-9.52-lp152.2.4.1.src.rpm ghostscript-mini-9.52-lp152.2.4.1.x86_64.rpm ghostscript-mini-debuginfo-9.52-lp152.2.4.1.x86_64.rpm ghostscript-mini-debugsource-9.52-lp152.2.4.1.x86_64.rpm ghostscript-mini-devel-9.52-lp152.2.4.1.x86_64.rpm ghostscript-9.52-lp152.2.4.1.src.rpm ghostscript-9.52-lp152.2.4.1.x86_64.rpm ghostscript-debuginfo-9.52-lp152.2.4.1.x86_64.rpm ghostscript-debugsource-9.52-lp152.2.4.1.x86_64.rpm ghostscript-devel-9.52-lp152.2.4.1.x86_64.rpm ghostscript-x11-9.52-lp152.2.4.1.x86_64.rpm ghostscript-x11-debuginfo-9.52-lp152.2.4.1.x86_64.rpm ghostscript-mini-9.52-lp152.2.4.1.i586.rpm ghostscript-mini-debuginfo-9.52-lp152.2.4.1.i586.rpm ghostscript-mini-debugsource-9.52-lp152.2.4.1.i586.rpm ghostscript-mini-devel-9.52-lp152.2.4.1.i586.rpm ghostscript-9.52-lp152.2.4.1.i586.rpm ghostscript-debuginfo-9.52-lp152.2.4.1.i586.rpm ghostscript-debugsource-9.52-lp152.2.4.1.i586.rpm ghostscript-devel-9.52-lp152.2.4.1.i586.rpm ghostscript-x11-9.52-lp152.2.4.1.i586.rpm ghostscript-x11-debuginfo-9.52-lp152.2.4.1.i586.rpm openSUSE-2020-1152 moderate openSUSE Leap 15.2 Update This update for python-kiwi fixes the following issues: - Fixed checking for root device in grub config. (bsc#1172928) - Fix for conflicting files of man-pages between different versions. (bsc#1168973, bsc#1156677) This update was imported from the SUSE:SLE-15-SP1:Update update project. dracut-kiwi-lib-9.20.5-lp152.5.4.1.x86_64.rpm dracut-kiwi-live-9.20.5-lp152.5.4.1.x86_64.rpm dracut-kiwi-oem-dump-9.20.5-lp152.5.4.1.x86_64.rpm dracut-kiwi-oem-repart-9.20.5-lp152.5.4.1.x86_64.rpm dracut-kiwi-overlay-9.20.5-lp152.5.4.1.x86_64.rpm kiwi-man-pages-9.20.5-lp152.5.4.1.x86_64.rpm kiwi-pxeboot-9.20.5-lp152.5.4.1.x86_64.rpm kiwi-tools-9.20.5-lp152.5.4.1.x86_64.rpm kiwi-tools-debuginfo-9.20.5-lp152.5.4.1.x86_64.rpm python-kiwi-9.20.5-lp152.5.4.1.src.rpm python-kiwi-debugsource-9.20.5-lp152.5.4.1.x86_64.rpm python3-kiwi-9.20.5-lp152.5.4.1.x86_64.rpm dracut-kiwi-lib-9.20.5-lp152.5.4.1.i586.rpm dracut-kiwi-live-9.20.5-lp152.5.4.1.i586.rpm dracut-kiwi-oem-dump-9.20.5-lp152.5.4.1.i586.rpm dracut-kiwi-oem-repart-9.20.5-lp152.5.4.1.i586.rpm dracut-kiwi-overlay-9.20.5-lp152.5.4.1.i586.rpm kiwi-man-pages-9.20.5-lp152.5.4.1.i586.rpm kiwi-pxeboot-9.20.5-lp152.5.4.1.i586.rpm kiwi-tools-9.20.5-lp152.5.4.1.i586.rpm kiwi-tools-debuginfo-9.20.5-lp152.5.4.1.i586.rpm python-kiwi-debugsource-9.20.5-lp152.5.4.1.i586.rpm python3-kiwi-9.20.5-lp152.5.4.1.i586.rpm openSUSE-2020-1136 moderate openSUSE Leap 15.2 Update This update for 389-ds fixes the following issues: - This corrects a failure to install on SUSE due to incorrect hostname generation, and a python3 utf8 issue that is triggered by systemd. (bsc#1172328) This update was imported from the SUSE:SLE-15-SP2:Update update project. 389-ds-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.src.rpm 389-ds-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm 389-ds-debuginfo-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm 389-ds-debugsource-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm 389-ds-devel-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm 389-ds-snmp-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm 389-ds-snmp-debuginfo-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm lib389-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm libsvrcore0-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm libsvrcore0-debuginfo-1.4.3.9~git0.3eb8617f6-lp152.2.3.1.x86_64.rpm openSUSE-2020-1139 moderate openSUSE Leap 15.2 Update This update for claws-mail fixes the following issues: - Update to 3.17.6: * It is now possible to 'Inherit Folder properties and processing rules from parent folder' when creating new folders with the move message and copy message dialogues. * A Phishing warning is now shown when copying a phishing URL, (in addition to clicking a phishing URL). * The progress window when importing an mbox file is now more responsive. * A warning dialogue is shown if the selected privacy system is 'None' and automatic signing amd/or encrypting is enabled. * Python plugin: pkgconfig is now used to check for python2. This enables the Python plugin (which uses python2) to be built on newer systems which have both python2 and python3. - CVE-2020-15917: Fixed an improper handling of suffix data after STARTTLS is mishandled (boo#1174457). claws-mail-3.17.6-lp152.3.3.1.src.rpm claws-mail-3.17.6-lp152.3.3.1.x86_64.rpm claws-mail-debuginfo-3.17.6-lp152.3.3.1.x86_64.rpm claws-mail-debugsource-3.17.6-lp152.3.3.1.x86_64.rpm claws-mail-devel-3.17.6-lp152.3.3.1.x86_64.rpm claws-mail-lang-3.17.6-lp152.3.3.1.noarch.rpm openSUSE-2020-1143 moderate openSUSE Leap 15.2 Update This update for systemd fixes the following issues: - units: starting suspend.target should not fail when suspend is successful (bsc#1172072) - core/mount: do not add Before=local-fs.target or remote-fs.target if nofail mount option is set - mount: let mount_add_extras() take care of remote-fs.target deps (bsc#1169488) - mount: set up local-fs.target/remote-fs.target deps in mount_add_default_dependencies() too - udev: rename the persistent link for ATA devices (bsc#1164538) - shared/install: try harder to find enablement symlinks when disabling a unit (bsc#1157315) - tmpfiles: remove unnecessary assert (bsc#1171145) - test-engine: manager_free() was called too early - pid1: by default make user units inherit their umask from the user manager (bsc#1162698) - migrate-sysconfig-i18n.sh: fixed marker handling (bsc#1173229) The marker is used to make sure the script is run only once. Instead of storing it in /usr, use /var which is more appropriate for such file. Also make it owned by systemd package. - Fix inconsistent file modes for some ghost files (bsc#1173227) Ghost files are assumed by rpm to have mode 000 by default which is not consistent with file permissions set at runtime. Also /var/lib/systemd/random-seed was tracked wrongly as a directory. Also don't track (ghost) /etc/systemd/system/runlevel*.target aliases since we're not supposed to track units or aliases user might define/override. - Fix build of systemd on openSUSE Leap 15.2 (bsc#1173422) This update was imported from the SUSE:SLE-15:Update update project. libsystemd0-mini-234-lp152.31.4.1.x86_64.rpm libsystemd0-mini-debuginfo-234-lp152.31.4.1.x86_64.rpm libudev-mini-devel-234-lp152.31.4.1.x86_64.rpm libudev-mini1-234-lp152.31.4.1.x86_64.rpm libudev-mini1-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-mini-234-lp152.31.4.1.src.rpm systemd-mini-234-lp152.31.4.1.x86_64.rpm systemd-mini-bash-completion-234-lp152.31.4.1.noarch.rpm systemd-mini-container-mini-234-lp152.31.4.1.x86_64.rpm systemd-mini-container-mini-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-mini-coredump-mini-234-lp152.31.4.1.x86_64.rpm systemd-mini-coredump-mini-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-mini-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-mini-debugsource-234-lp152.31.4.1.x86_64.rpm systemd-mini-devel-234-lp152.31.4.1.x86_64.rpm systemd-mini-sysvinit-234-lp152.31.4.1.x86_64.rpm udev-mini-234-lp152.31.4.1.x86_64.rpm udev-mini-debuginfo-234-lp152.31.4.1.x86_64.rpm libsystemd0-234-lp152.31.4.1.x86_64.rpm libsystemd0-debuginfo-234-lp152.31.4.1.x86_64.rpm libudev-devel-234-lp152.31.4.1.x86_64.rpm libudev1-234-lp152.31.4.1.x86_64.rpm libudev1-debuginfo-234-lp152.31.4.1.x86_64.rpm nss-myhostname-234-lp152.31.4.1.x86_64.rpm nss-myhostname-debuginfo-234-lp152.31.4.1.x86_64.rpm nss-mymachines-234-lp152.31.4.1.x86_64.rpm nss-mymachines-debuginfo-234-lp152.31.4.1.x86_64.rpm nss-systemd-234-lp152.31.4.1.x86_64.rpm nss-systemd-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-234-lp152.31.4.1.src.rpm systemd-234-lp152.31.4.1.x86_64.rpm systemd-bash-completion-234-lp152.31.4.1.noarch.rpm systemd-container-234-lp152.31.4.1.x86_64.rpm systemd-container-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-coredump-234-lp152.31.4.1.x86_64.rpm systemd-coredump-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-debugsource-234-lp152.31.4.1.x86_64.rpm systemd-devel-234-lp152.31.4.1.x86_64.rpm systemd-journal-remote-234-lp152.31.4.1.x86_64.rpm systemd-journal-remote-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-logger-234-lp152.31.4.1.x86_64.rpm systemd-network-234-lp152.31.4.1.x86_64.rpm systemd-network-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-sysvinit-234-lp152.31.4.1.x86_64.rpm udev-234-lp152.31.4.1.x86_64.rpm udev-debuginfo-234-lp152.31.4.1.x86_64.rpm libsystemd0-mini-234-lp152.31.4.1.i586.rpm libsystemd0-mini-debuginfo-234-lp152.31.4.1.i586.rpm libudev-mini-devel-234-lp152.31.4.1.i586.rpm libudev-mini1-234-lp152.31.4.1.i586.rpm libudev-mini1-debuginfo-234-lp152.31.4.1.i586.rpm systemd-mini-234-lp152.31.4.1.i586.rpm systemd-mini-container-mini-234-lp152.31.4.1.i586.rpm systemd-mini-container-mini-debuginfo-234-lp152.31.4.1.i586.rpm systemd-mini-coredump-mini-234-lp152.31.4.1.i586.rpm systemd-mini-coredump-mini-debuginfo-234-lp152.31.4.1.i586.rpm systemd-mini-debuginfo-234-lp152.31.4.1.i586.rpm systemd-mini-debugsource-234-lp152.31.4.1.i586.rpm systemd-mini-devel-234-lp152.31.4.1.i586.rpm systemd-mini-sysvinit-234-lp152.31.4.1.i586.rpm udev-mini-234-lp152.31.4.1.i586.rpm udev-mini-debuginfo-234-lp152.31.4.1.i586.rpm libsystemd0-234-lp152.31.4.1.i586.rpm libsystemd0-32bit-234-lp152.31.4.1.x86_64.rpm libsystemd0-32bit-debuginfo-234-lp152.31.4.1.x86_64.rpm libsystemd0-debuginfo-234-lp152.31.4.1.i586.rpm libudev-devel-234-lp152.31.4.1.i586.rpm libudev-devel-32bit-234-lp152.31.4.1.x86_64.rpm libudev1-234-lp152.31.4.1.i586.rpm libudev1-32bit-234-lp152.31.4.1.x86_64.rpm libudev1-32bit-debuginfo-234-lp152.31.4.1.x86_64.rpm libudev1-debuginfo-234-lp152.31.4.1.i586.rpm nss-myhostname-234-lp152.31.4.1.i586.rpm nss-myhostname-32bit-234-lp152.31.4.1.x86_64.rpm nss-myhostname-32bit-debuginfo-234-lp152.31.4.1.x86_64.rpm nss-myhostname-debuginfo-234-lp152.31.4.1.i586.rpm nss-mymachines-234-lp152.31.4.1.i586.rpm nss-mymachines-32bit-234-lp152.31.4.1.x86_64.rpm nss-mymachines-32bit-debuginfo-234-lp152.31.4.1.x86_64.rpm nss-mymachines-debuginfo-234-lp152.31.4.1.i586.rpm nss-systemd-234-lp152.31.4.1.i586.rpm nss-systemd-debuginfo-234-lp152.31.4.1.i586.rpm systemd-234-lp152.31.4.1.i586.rpm systemd-32bit-234-lp152.31.4.1.x86_64.rpm systemd-32bit-debuginfo-234-lp152.31.4.1.x86_64.rpm systemd-container-234-lp152.31.4.1.i586.rpm systemd-container-debuginfo-234-lp152.31.4.1.i586.rpm systemd-coredump-234-lp152.31.4.1.i586.rpm systemd-coredump-debuginfo-234-lp152.31.4.1.i586.rpm systemd-debuginfo-234-lp152.31.4.1.i586.rpm systemd-debugsource-234-lp152.31.4.1.i586.rpm systemd-devel-234-lp152.31.4.1.i586.rpm systemd-journal-remote-234-lp152.31.4.1.i586.rpm systemd-journal-remote-debuginfo-234-lp152.31.4.1.i586.rpm systemd-logger-234-lp152.31.4.1.i586.rpm systemd-network-234-lp152.31.4.1.i586.rpm systemd-network-debuginfo-234-lp152.31.4.1.i586.rpm systemd-sysvinit-234-lp152.31.4.1.i586.rpm udev-234-lp152.31.4.1.i586.rpm udev-debuginfo-234-lp152.31.4.1.i586.rpm openSUSE-2020-1144 moderate openSUSE Leap 15.2 Update This update for targetcli-fb fixes the following issues: - CVE-2020-13867: Fixed the permissions in /etc/target (bsc#1172743) This update was imported from the SUSE:SLE-15-SP2:Update update project. python2-targetcli-fb-2.1.52-lp152.2.3.1.noarch.rpm python3-targetcli-fb-2.1.52-lp152.2.3.1.noarch.rpm targetcli-fb-2.1.52-lp152.2.3.1.src.rpm targetcli-fb-common-2.1.52-lp152.2.3.1.noarch.rpm openSUSE-2020-1150 moderate openSUSE Leap 15.2 Update This update for lxd fixes the following issues: - Update to LXD 4.4. The full upstream changelog is available from: https://discuss.linuxcontainers.org/t/lxd-4-4-has-been-released/8574 boo#1174789 + VGA console for virtual machines + Clustering failure domains + /dev/lxd API in virtual machines + Graceful daemon shutdown + macvlan and sriov managed network types + Disk usage limits in projects + AppAmor confinement for dnsmasq + GPU mediated devices in resources API + --console option in lxc launch lxd-4.4-lp152.2.6.1.src.rpm lxd-4.4-lp152.2.6.1.x86_64.rpm lxd-bash-completion-4.4-lp152.2.6.1.noarch.rpm openSUSE-2020-1156 moderate openSUSE Leap 15.2 Update This update for python-rtslib-fb fixes the following issues: - Update to version v2.1.73 (bsc#1173257 CVE-2020-14019): * version 2.1.73 * save_to_file: fix fd open mode * saveconfig: copy temp configfile with permissions * saveconfig: open the temp configfile with modes set * Fix "is not" with a literal SyntaxWarning * Fix an incorrect config path in two comments * version 2.1.72 * Do not change dbroot after drivers have been registered * Remove '_if_needed' from RTSRoot._set_dbroot()'s name Replacing old tarball with python-rtslib-fb-v2.1.73.tar.xz This update was imported from the SUSE:SLE-15-SP2:Update update project. python-rtslib-fb-2.1.73-lp152.2.3.1.src.rpm python2-rtslib-fb-2.1.73-lp152.2.3.1.noarch.rpm python3-rtslib-fb-2.1.73-lp152.2.3.1.noarch.rpm openSUSE-2020-1157 low openSUSE Leap 15.2 Update This update for crmsh fixes the following issues: - Fix for corosync to handle the return code of 'corosync-quorumtool' correctly. (bsc#1174588) This update was imported from the SUSE:SLE-15-SP2:Update update project. crmsh-4.2.0+git.1595940615.c452cc00-lp152.4.11.1.noarch.rpm crmsh-4.2.0+git.1595940615.c452cc00-lp152.4.11.1.src.rpm crmsh-scripts-4.2.0+git.1595940615.c452cc00-lp152.4.11.1.noarch.rpm crmsh-test-4.2.0+git.1595940615.c452cc00-lp152.4.11.1.noarch.rpm openSUSE-2020-1158 low openSUSE Leap 15.2 Update This update for ovmf rebuilds with the new UEFI signing key. ovmf-201911-lp152.6.2.1.src.rpm ovmf-201911-lp152.6.2.1.x86_64.rpm ovmf-tools-201911-lp152.6.2.1.x86_64.rpm qemu-ovmf-x86_64-201911-lp152.6.2.1.noarch.rpm qemu-ovmf-x86_64-debug-201911-lp152.6.2.1.x86_64.rpm ovmf-201911-lp152.6.2.1.i586.rpm ovmf-tools-201911-lp152.6.2.1.i586.rpm qemu-ovmf-ia32-201911-lp152.6.2.1.noarch.rpm openSUSE-2020-1167 moderate openSUSE Leap 15.2 Update This update for cacti, cacti-spine fixes the following issues: Updated to version 1.2.14 - Fixed an XSS vulnerability due to improper escaping of error message during template import preview (boo#1174850). cacti-spine-1.2.14-lp152.2.6.1.src.rpm cacti-spine-1.2.14-lp152.2.6.1.x86_64.rpm cacti-spine-debuginfo-1.2.14-lp152.2.6.1.x86_64.rpm cacti-spine-debugsource-1.2.14-lp152.2.6.1.x86_64.rpm cacti-1.2.14-lp152.2.6.1.noarch.rpm cacti-1.2.14-lp152.2.6.1.src.rpm openSUSE-2020-1163 moderate openSUSE Leap 15.2 Update This update for opus fixes the following issues: - Fix for an issue when the 'CELTDecoder' can be larger than 21 and cauese crash by builds with custom modes or hardening. (bsc#1172526) This update was imported from the SUSE:SLE-15:Update update project. libopus-devel-1.3.1-lp152.2.3.1.x86_64.rpm libopus0-1.3.1-lp152.2.3.1.x86_64.rpm libopus0-debuginfo-1.3.1-lp152.2.3.1.x86_64.rpm opus-1.3.1-lp152.2.3.1.src.rpm opus-debugsource-1.3.1-lp152.2.3.1.x86_64.rpm libopus-devel-1.3.1-lp152.2.3.1.i586.rpm libopus0-1.3.1-lp152.2.3.1.i586.rpm libopus0-32bit-1.3.1-lp152.2.3.1.x86_64.rpm libopus0-32bit-debuginfo-1.3.1-lp152.2.3.1.x86_64.rpm libopus0-debuginfo-1.3.1-lp152.2.3.1.i586.rpm opus-debugsource-1.3.1-lp152.2.3.1.i586.rpm openSUSE-2020-1164 important openSUSE Leap 15.2 Update This update for libX11 fixes the following issues: - Fixed XIM client heap overflows (CVE-2020-14344, bsc#1174628) This update was imported from the SUSE:SLE-15:Update update project. libX11-1.6.5-lp152.5.3.1.src.rpm libX11-6-1.6.5-lp152.5.3.1.x86_64.rpm libX11-6-debuginfo-1.6.5-lp152.5.3.1.x86_64.rpm libX11-data-1.6.5-lp152.5.3.1.noarch.rpm libX11-debugsource-1.6.5-lp152.5.3.1.x86_64.rpm libX11-devel-1.6.5-lp152.5.3.1.x86_64.rpm libX11-xcb1-1.6.5-lp152.5.3.1.x86_64.rpm libX11-xcb1-debuginfo-1.6.5-lp152.5.3.1.x86_64.rpm libxcb-1.13-lp152.5.3.1.src.rpm libxcb-composite0-1.13-lp152.5.3.1.x86_64.rpm libxcb-composite0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-damage0-1.13-lp152.5.3.1.x86_64.rpm libxcb-damage0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-debugsource-1.13-lp152.5.3.1.x86_64.rpm libxcb-devel-1.13-lp152.5.3.1.x86_64.rpm libxcb-devel-doc-1.13-lp152.5.3.1.noarch.rpm libxcb-dpms0-1.13-lp152.5.3.1.x86_64.rpm libxcb-dpms0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri2-0-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri2-0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri3-0-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri3-0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-glx0-1.13-lp152.5.3.1.x86_64.rpm libxcb-glx0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-present0-1.13-lp152.5.3.1.x86_64.rpm libxcb-present0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-randr0-1.13-lp152.5.3.1.x86_64.rpm libxcb-randr0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-record0-1.13-lp152.5.3.1.x86_64.rpm libxcb-record0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-render0-1.13-lp152.5.3.1.x86_64.rpm libxcb-render0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-res0-1.13-lp152.5.3.1.x86_64.rpm libxcb-res0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-screensaver0-1.13-lp152.5.3.1.x86_64.rpm libxcb-screensaver0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-shape0-1.13-lp152.5.3.1.x86_64.rpm libxcb-shape0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-shm0-1.13-lp152.5.3.1.x86_64.rpm libxcb-shm0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-sync1-1.13-lp152.5.3.1.x86_64.rpm libxcb-sync1-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xf86dri0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xf86dri0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xfixes0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xfixes0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinerama0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinerama0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinput0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinput0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xkb1-1.13-lp152.5.3.1.x86_64.rpm libxcb-xkb1-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xtest0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xtest0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xv0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xv0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xvmc0-1.13-lp152.5.3.1.x86_64.rpm libxcb-xvmc0-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb1-1.13-lp152.5.3.1.x86_64.rpm libxcb1-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libX11-6-1.6.5-lp152.5.3.1.i586.rpm libX11-6-32bit-1.6.5-lp152.5.3.1.x86_64.rpm libX11-6-32bit-debuginfo-1.6.5-lp152.5.3.1.x86_64.rpm libX11-6-debuginfo-1.6.5-lp152.5.3.1.i586.rpm libX11-debugsource-1.6.5-lp152.5.3.1.i586.rpm libX11-devel-1.6.5-lp152.5.3.1.i586.rpm libX11-devel-32bit-1.6.5-lp152.5.3.1.x86_64.rpm libX11-xcb1-1.6.5-lp152.5.3.1.i586.rpm libX11-xcb1-32bit-1.6.5-lp152.5.3.1.x86_64.rpm libX11-xcb1-32bit-debuginfo-1.6.5-lp152.5.3.1.x86_64.rpm libX11-xcb1-debuginfo-1.6.5-lp152.5.3.1.i586.rpm libxcb-composite0-1.13-lp152.5.3.1.i586.rpm libxcb-composite0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-composite0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-composite0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-damage0-1.13-lp152.5.3.1.i586.rpm libxcb-damage0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-damage0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-damage0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-debugsource-1.13-lp152.5.3.1.i586.rpm libxcb-devel-1.13-lp152.5.3.1.i586.rpm libxcb-devel-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-dpms0-1.13-lp152.5.3.1.i586.rpm libxcb-dpms0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-dpms0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-dpms0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-dri2-0-1.13-lp152.5.3.1.i586.rpm libxcb-dri2-0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri2-0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri2-0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-dri3-0-1.13-lp152.5.3.1.i586.rpm libxcb-dri3-0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri3-0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-dri3-0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-glx0-1.13-lp152.5.3.1.i586.rpm libxcb-glx0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-glx0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-glx0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-present0-1.13-lp152.5.3.1.i586.rpm libxcb-present0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-present0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-present0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-randr0-1.13-lp152.5.3.1.i586.rpm libxcb-randr0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-randr0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-randr0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-record0-1.13-lp152.5.3.1.i586.rpm libxcb-record0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-record0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-record0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-render0-1.13-lp152.5.3.1.i586.rpm libxcb-render0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-render0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-render0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-res0-1.13-lp152.5.3.1.i586.rpm libxcb-res0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-res0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-res0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-screensaver0-1.13-lp152.5.3.1.i586.rpm libxcb-screensaver0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-screensaver0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-screensaver0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-shape0-1.13-lp152.5.3.1.i586.rpm libxcb-shape0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-shape0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-shape0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-shm0-1.13-lp152.5.3.1.i586.rpm libxcb-shm0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-shm0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-shm0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-sync1-1.13-lp152.5.3.1.i586.rpm libxcb-sync1-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-sync1-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-sync1-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xf86dri0-1.13-lp152.5.3.1.i586.rpm libxcb-xf86dri0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xf86dri0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xf86dri0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xfixes0-1.13-lp152.5.3.1.i586.rpm libxcb-xfixes0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xfixes0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xfixes0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xinerama0-1.13-lp152.5.3.1.i586.rpm libxcb-xinerama0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinerama0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinerama0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xinput0-1.13-lp152.5.3.1.i586.rpm libxcb-xinput0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinput0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xinput0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xkb1-1.13-lp152.5.3.1.i586.rpm libxcb-xkb1-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xkb1-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xkb1-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xtest0-1.13-lp152.5.3.1.i586.rpm libxcb-xtest0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xtest0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xtest0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xv0-1.13-lp152.5.3.1.i586.rpm libxcb-xv0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xv0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xv0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb-xvmc0-1.13-lp152.5.3.1.i586.rpm libxcb-xvmc0-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb-xvmc0-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb-xvmc0-debuginfo-1.13-lp152.5.3.1.i586.rpm libxcb1-1.13-lp152.5.3.1.i586.rpm libxcb1-32bit-1.13-lp152.5.3.1.x86_64.rpm libxcb1-32bit-debuginfo-1.13-lp152.5.3.1.x86_64.rpm libxcb1-debuginfo-1.13-lp152.5.3.1.i586.rpm openSUSE-2020-1165 moderate openSUSE Leap 15.2 Update This update for ocfs2-tools fixes the following issue: - Fix debugfs.ocfs2 error on devices with sector size 4096 (bsc#1170530) This update was imported from the SUSE:SLE-15-SP1:Update update project. ocfs2-tools-1.8.5-lp152.7.3.1.src.rpm ocfs2-tools-1.8.5-lp152.7.3.1.x86_64.rpm ocfs2-tools-debuginfo-1.8.5-lp152.7.3.1.x86_64.rpm ocfs2-tools-debugsource-1.8.5-lp152.7.3.1.x86_64.rpm ocfs2-tools-devel-1.8.5-lp152.7.3.1.x86_64.rpm ocfs2-tools-devel-static-1.8.5-lp152.7.3.1.x86_64.rpm ocfs2-tools-o2cb-1.8.5-lp152.7.3.1.x86_64.rpm ocfs2-tools-o2cb-debuginfo-1.8.5-lp152.7.3.1.x86_64.rpm openSUSE-2020-1166 moderate openSUSE Leap 15.2 Update This update for gnome-initial-setup fixes the following issues: - Fix to start 'gnome-initial-setup' via 'xdg autostart' as an alternative to systemd user units on SLE-15-SP2. (bsc#1172910) This update was imported from the SUSE:SLE-15-SP2:Update update project. gnome-initial-setup-3.34.6-lp152.2.3.1.src.rpm gnome-initial-setup-3.34.6-lp152.2.3.1.x86_64.rpm gnome-initial-setup-debuginfo-3.34.6-lp152.2.3.1.x86_64.rpm gnome-initial-setup-debugsource-3.34.6-lp152.2.3.1.x86_64.rpm gnome-initial-setup-lang-3.34.6-lp152.2.3.1.noarch.rpm openSUSE-2020-1154 low openSUSE Leap 15.2 Update Chromium was updated to 84.0.4147.105 (boo#1174582): * CVE-2020-6537: Type Confusion in V8 * CVE-2020-6538: Inappropriate implementation in WebView * CVE-2020-6532: Use after free in SCTP * CVE-2020-6539: Use after free in CSS * CVE-2020-6540: Heap buffer overflow in Skia * CVE-2020-6541: Use after free in WebUSB chromedriver-84.0.4147.105-lp152.2.9.1.x86_64.rpm chromedriver-debuginfo-84.0.4147.105-lp152.2.9.1.x86_64.rpm chromium-84.0.4147.105-lp152.2.9.1.src.rpm chromium-84.0.4147.105-lp152.2.9.1.x86_64.rpm chromium-debuginfo-84.0.4147.105-lp152.2.9.1.x86_64.rpm chromium-debugsource-84.0.4147.105-lp152.2.9.1.x86_64.rpm openSUSE-2020-1155 important openSUSE Leap 15.2 Update This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes (bsc#1174538) * CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514: WebRTC data channel leaks internal address to peer * CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy * CVE-2020-15653: Bypassing iframe sandbox when allowing popups * CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture * CVE-2020-15656: Type confusion for special arguments in IonMonkey * CVE-2020-15658: Overriding file type when saving to disk * CVE-2020-15657: DLL hijacking due to incorrect loading path * CVE-2020-15654: Custom cursor can overlay user interface * CVE-2020-15659: Memory safety bugs fixed in Firefox 79 and Firefox ESR 78.1 This update was imported from the SUSE:SLE-15:Update update project. MozillaFirefox-78.1.0-lp152.2.12.1.src.rpm MozillaFirefox-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-branding-upstream-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-buildsymbols-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-debuginfo-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-debugsource-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-devel-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-translations-common-78.1.0-lp152.2.12.1.x86_64.rpm MozillaFirefox-translations-other-78.1.0-lp152.2.12.1.x86_64.rpm openSUSE-2020-1183 moderate openSUSE Leap 15.2 Update This update for ark fixes the following issues: - Fixed a directory traversal bug (boo#1174773, CVE-2020-16116). ark-20.04.2-lp152.2.3.1.src.rpm ark-20.04.2-lp152.2.3.1.x86_64.rpm ark-debuginfo-20.04.2-lp152.2.3.1.x86_64.rpm ark-debugsource-20.04.2-lp152.2.3.1.x86_64.rpm ark-lang-20.04.2-lp152.2.3.1.noarch.rpm libkerfuffle20-20.04.2-lp152.2.3.1.x86_64.rpm libkerfuffle20-debuginfo-20.04.2-lp152.2.3.1.x86_64.rpm openSUSE-2020-1189 important openSUSE Leap 15.2 Update This update for MozillaFirefox fixes the following issues: This update for MozillaFirefox and pipewire fixes the following issues: MozillaFirefox Extended Support Release 78.1.0 ESR * Fixed: Various stability, functionality, and security fixes (bsc#1174538) * CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514: WebRTC data channel leaks internal address to peer * CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy * CVE-2020-15653: Bypassing iframe sandbox when allowing popups * CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture * CVE-2020-15656: Type confusion for special arguments in IonMonkey * CVE-2020-15658: Overriding file type when saving to disk * CVE-2020-15657: DLL hijacking due to incorrect loading path * CVE-2020-15654: Custom cursor can overlay user interface * CVE-2020-15659: Memory safety bugs fixed in Firefox 79 and Firefox ESR 78.1 pipewire was updated to version 0.3.6 (bsc#1171433, jsc#ECO-2308): * Extensive memory leak fixing and stress testing was done. A big leak in screen sharing with DMA-BUF was fixed. * Compile fixes * Stability improvements in jack and pulseaudio layers. * Added the old portal module to make the Camera portal work again. This will be moved to the session manager in future versions. * Improvements to the GStreamer source and sink shutdown. * Fix compatibility with v2 clients again when negotiating buffers. This update was imported from the SUSE:SLE-15-SP2:Update update project. MozillaFirefox-78.1.0-lp152.2.15.1.src.rpm MozillaFirefox-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-branding-upstream-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-buildsymbols-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-debuginfo-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-debugsource-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-devel-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-translations-common-78.1.0-lp152.2.15.1.x86_64.rpm MozillaFirefox-translations-other-78.1.0-lp152.2.15.1.x86_64.rpm gstreamer-plugin-pipewire-0.3.6-lp152.2.3.1.x86_64.rpm gstreamer-plugin-pipewire-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm libpipewire-0_3-0-0.3.6-lp152.2.3.1.x86_64.rpm libpipewire-0_3-0-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-0.3.6-lp152.2.3.1.src.rpm pipewire-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-debugsource-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-devel-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-doc-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-libjack-0_3-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-libjack-0_3-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-libpulse-0_3-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-libpulse-0_3-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-modules-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-modules-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-spa-plugins-0_2-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-spa-plugins-0_2-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-spa-tools-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-spa-tools-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-tools-0.3.6-lp152.2.3.1.x86_64.rpm pipewire-tools-debuginfo-0.3.6-lp152.2.3.1.x86_64.rpm openSUSE-2020-1191 important openSUSE Leap 15.2 Update This update for java-11-openjdk fixes the following issues: - Update to upstream tag jdk-11.0.8+10 (July 2020 CPU, bsc#1174157) * Security fixes: + JDK-8230613: Better ASCII conversions + JDK-8231800: Better listing of arrays + JDK-8232014: Expand DTD support + JDK-8233234: Better Zip Naming + JDK-8233239, CVE-2020-14562: Enhance TIFF support + JDK-8233255: Better Swing Buttons + JDK-8234032: Improve basic calendar services + JDK-8234042: Better factory production of certificates + JDK-8234418: Better parsing with CertificateFactory + JDK-8234836: Improve serialization handling + JDK-8236191: Enhance OID processing + JDK-8236867, CVE-2020-14573: Enhance Graal interface handling + JDK-8237117, CVE-2020-14556: Better ForkJoinPool behavior + JDK-8237592, CVE-2020-14577: Enhance certificate verification + JDK-8238002, CVE-2020-14581: Better matrix operations + JDK-8238013: Enhance String writing + JDK-8238804: Enhance key handling process + JDK-8238842: AIOOBE in GIFImageReader.initializeStringTable + JDK-8238843: Enhanced font handing + JDK-8238920, CVE-2020-14583: Better Buffer support + JDK-8238925: Enhance WAV file playback + JDK-8240119, CVE-2020-14593: Less Affine Transformations + JDK-8240482: Improved WAV file playback + JDK-8241379: Update JCEKS support + JDK-8241522: Manifest improved jar headers redux + JDK-8242136, CVE-2020-14621: Better XML namespace handling * Other changes: + JDK-6933331: (d3d/ogl) java.lang.IllegalStateException: Buffers have not been created + JDK-7124307: JSpinner and changing value by mouse + JDK-8022574: remove HaltNode code after uncommon trap calls + JDK-8039082: [TEST_BUG] Test java/awt/dnd/BadSerializationTest/BadSerializationTest.java fails + JDK-8040630: Popup menus and tooltips flicker with previous popup contents when first shown + JDK-8044365: (dc) MulticastSendReceiveTests.java failing with ENOMEM when joining group (OS X 10.9) + JDK-8048215: [TESTBUG] java/lang/management/ManagementFactory/ThreadMXBeanProxy.java Expected non-null LockInfo + JDK-8051349: nsk/jvmti/scenarios/sampling/SP06/sp06t003 fails in nightly + JDK-8080353: JShell: Better error message on attempting to add default method + JDK-8139876: Exclude hanging nsk/stress/stack from execution with deoptimization enabled + JDK-8146090: java/lang/ref/ReachabilityFenceTest.java fails with -XX:+DeoptimizeALot + JDK-8153430: jdk regression test MletParserLocaleTest, ParserInfiniteLoopTest reduce default timeout + JDK-8156207: Resource allocated BitMaps are often cleared unnecessarily + JDK-8159740: JShell: corralled declarations do not have correct source to wrapper mapping + JDK-8175984: ICC_Profile has un-needed, not-empty finalize method + JDK-8176359: Frame#setMaximizedbounds not working properly in multi screen environments + JDK-8183369: RFC unconformity of HttpURLConnection with proxy + JDK-8187078: -XX:+VerifyOops finds numerous problems when running JPRT + JDK-8189861: Refactor CacheFind + JDK-8191169: java/net/Authenticator/B4769350.java failed intermittently + JDK-8191930: [Graal] emits unparseable XML into compile log + JDK-8193879: Java debugger hangs on method invocation + JDK-8196019: java/awt/Window/Grab/GrabTest.java fails on Windows + JDK-8196181: sun/java2d/GdiRendering/InsetClipping.java fails + JDK-8198000: java/awt/List/EmptyListEventTest/EmptyListEventTest.java debug assert on Windows + JDK-8198001: java/awt/Menu/WrongParentAfterRemoveMenu/ /WrongParentAfterRemoveMenu.java debug assert on Windows + JDK-8198339: Test javax/swing/border/Test6981576.java is unstable + JDK-8200701: jdk/jshell/ExceptionsTest.java fails on Windows, after JDK-8198801 + JDK-8203264: JNI exception pending in PlainDatagramSocketImpl.c:740 + JDK-8203672: JNI exception pending in PlainSocketImpl.c + JDK-8203673: JNI exception pending in DualStackPlainDatagramSocketImpl.c:398 + JDK-8204834: Fix confusing "allocate" naming in OopStorage + JDK-8205399: Set node color on pinned HashMap.TreeNode deletion + JDK-8205653: test/jdk/sun/management/jmxremote/bootstrap/ /RmiRegistrySslTest.java and RmiSslBootstrapTest.sh fail with handshake_failure + JDK-8206179: com/sun/management/OperatingSystemMXBean/ /GetCommittedVirtualMemorySize.java fails with Committed virtual memory size illegal value + JDK-8207334: VM times out in VM_HandshakeAllThreads::doit() with RunThese30M + JDK-8208277: Code cache heap (-XX:ReservedCodeCacheSize) doesn't work with 1GB LargePages This update was imported from the SUSE:SLE-15:Update update project. java-11-openjdk-11.0.8.0-lp152.2.3.1.src.rpm java-11-openjdk-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-accessibility-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-accessibility-debuginfo-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-debuginfo-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-debugsource-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-demo-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-devel-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-headless-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-javadoc-11.0.8.0-lp152.2.3.1.noarch.rpm java-11-openjdk-jmods-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-src-11.0.8.0-lp152.2.3.1.x86_64.rpm java-11-openjdk-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-accessibility-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-accessibility-debuginfo-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-debuginfo-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-debugsource-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-demo-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-devel-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-headless-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-jmods-11.0.8.0-lp152.2.3.1.i586.rpm java-11-openjdk-src-11.0.8.0-lp152.2.3.1.i586.rpm openSUSE-2020-1199 moderate openSUSE Leap 15.2 Update This update for wireshark fixes the following issues: - Wireshark to 3.2.5: * CVE-2020-15466: GVCP dissector infinite loop (bsc#1173606) * CVE-2020-13164: NFS dissector crash (bsc#1171899) * CVE-2020-11647: The BACapp dissector could crash (bsc#1169063) - Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.5.html This update was imported from the SUSE:SLE-15:Update update project. libwireshark13-3.2.5-lp152.2.3.1.x86_64.rpm libwireshark13-debuginfo-3.2.5-lp152.2.3.1.x86_64.rpm libwiretap10-3.2.5-lp152.2.3.1.x86_64.rpm libwiretap10-debuginfo-3.2.5-lp152.2.3.1.x86_64.rpm libwsutil11-3.2.5-lp152.2.3.1.x86_64.rpm libwsutil11-debuginfo-3.2.5-lp152.2.3.1.x86_64.rpm wireshark-3.2.5-lp152.2.3.1.src.rpm wireshark-3.2.5-lp152.2.3.1.x86_64.rpm wireshark-debuginfo-3.2.5-lp152.2.3.1.x86_64.rpm wireshark-debugsource-3.2.5-lp152.2.3.1.x86_64.rpm wireshark-devel-3.2.5-lp152.2.3.1.x86_64.rpm wireshark-ui-qt-3.2.5-lp152.2.3.1.x86_64.rpm wireshark-ui-qt-debuginfo-3.2.5-lp152.2.3.1.x86_64.rpm libwireshark13-3.2.5-lp152.2.3.1.i586.rpm libwireshark13-debuginfo-3.2.5-lp152.2.3.1.i586.rpm libwiretap10-3.2.5-lp152.2.3.1.i586.rpm libwiretap10-debuginfo-3.2.5-lp152.2.3.1.i586.rpm libwsutil11-3.2.5-lp152.2.3.1.i586.rpm libwsutil11-debuginfo-3.2.5-lp152.2.3.1.i586.rpm wireshark-3.2.5-lp152.2.3.1.i586.rpm wireshark-debuginfo-3.2.5-lp152.2.3.1.i586.rpm wireshark-debugsource-3.2.5-lp152.2.3.1.i586.rpm wireshark-devel-3.2.5-lp152.2.3.1.i586.rpm wireshark-ui-qt-3.2.5-lp152.2.3.1.i586.rpm wireshark-ui-qt-debuginfo-3.2.5-lp152.2.3.1.i586.rpm openSUSE-2020-1200 important openSUSE Leap 15.2 Update This update for xrdp fixes the following issues: - Update to version 0.9.13.1 + This is a security fix release that includes fixes for the following local buffer overflow vulnerability (bsc#1173580): CVE-2020-4044 This update was imported from the SUSE:SLE-15-SP2:Update update project. libpainter0-0.9.13.1-lp152.3.3.1.x86_64.rpm libpainter0-debuginfo-0.9.13.1-lp152.3.3.1.x86_64.rpm librfxencode0-0.9.13.1-lp152.3.3.1.x86_64.rpm librfxencode0-debuginfo-0.9.13.1-lp152.3.3.1.x86_64.rpm xrdp-0.9.13.1-lp152.3.3.1.src.rpm xrdp-0.9.13.1-lp152.3.3.1.x86_64.rpm xrdp-debuginfo-0.9.13.1-lp152.3.3.1.x86_64.rpm xrdp-debugsource-0.9.13.1-lp152.3.3.1.x86_64.rpm xrdp-devel-0.9.13.1-lp152.3.3.1.x86_64.rpm openSUSE-2020-1201 moderate openSUSE Leap 15.2 Update This update for gnome-control-center fixes the following issues: - Fix the resolution list as it shows only the currently used resolution. (bsc#1160173 glgo#GNOME/Settings#903) This update was imported from the SUSE:SLE-15-SP2:Update update project. gnome-control-center-3.34.6-lp152.2.3.1.src.rpm gnome-control-center-3.34.6-lp152.2.3.1.x86_64.rpm gnome-control-center-color-3.34.6-lp152.2.3.1.x86_64.rpm gnome-control-center-debuginfo-3.34.6-lp152.2.3.1.x86_64.rpm gnome-control-center-debugsource-3.34.6-lp152.2.3.1.x86_64.rpm gnome-control-center-devel-3.34.6-lp152.2.3.1.x86_64.rpm gnome-control-center-goa-3.34.6-lp152.2.3.1.x86_64.rpm gnome-control-center-lang-3.34.6-lp152.2.3.1.noarch.rpm gnome-control-center-user-faces-3.34.6-lp152.2.3.1.x86_64.rpm openSUSE-2020-1202 moderate openSUSE Leap 15.2 Update This update for libstorage-ng fixes the following issues: - merge gh#openSUSE/libstorage-ng#754 - Fix for an issue when NVME client is not installing if the root partition is an NVME device. (bsc#1172866) - Delegate to initial guided proposal when no partitions are defined in the profile. (bsc#1173610) This update was imported from the SUSE:SLE-15-SP2:Update update project. libstorage-ng-4.2.76-lp152.2.3.1.src.rpm libstorage-ng-debuginfo-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-debugsource-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-devel-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-integration-tests-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-lang-4.2.76-lp152.2.3.1.noarch.rpm libstorage-ng-python3-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-python3-debuginfo-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-ruby-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-ruby-debuginfo-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-utils-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng-utils-debuginfo-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng1-4.2.76-lp152.2.3.1.x86_64.rpm libstorage-ng1-debuginfo-4.2.76-lp152.2.3.1.x86_64.rpm yast2-storage-ng-4.2.111-lp152.2.3.1.src.rpm yast2-storage-ng-4.2.111-lp152.2.3.1.x86_64.rpm libstorage-ng-debuginfo-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-debugsource-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-devel-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-integration-tests-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-python3-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-python3-debuginfo-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-ruby-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-ruby-debuginfo-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-utils-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng-utils-debuginfo-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng1-4.2.76-lp152.2.3.1.i586.rpm libstorage-ng1-debuginfo-4.2.76-lp152.2.3.1.i586.rpm yast2-storage-ng-4.2.111-lp152.2.3.1.i586.rpm openSUSE-2020-1190 important openSUSE Leap 15.2 Update This update for xen fixes the following issues: - bsc#1174543 - secure boot related fixes - bsc#1172356 - Not able to hot-plug NIC via virt-manager, asks to attach on next reboot while it should be live attached This update was imported from the SUSE:SLE-15-SP2:Update update project. xen-4.13.1_06-lp152.2.6.1.src.rpm xen-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-debugsource-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-devel-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-doc-html-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-libs-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-libs-debuginfo-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-tools-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-tools-debuginfo-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-tools-domU-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-tools-domU-debuginfo-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.13.1_06-lp152.2.6.1.noarch.rpm xen-debugsource-4.13.1_06-lp152.2.6.1.i586.rpm xen-devel-4.13.1_06-lp152.2.6.1.i586.rpm xen-libs-32bit-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-libs-32bit-debuginfo-4.13.1_06-lp152.2.6.1.x86_64.rpm xen-libs-4.13.1_06-lp152.2.6.1.i586.rpm xen-libs-debuginfo-4.13.1_06-lp152.2.6.1.i586.rpm xen-tools-domU-4.13.1_06-lp152.2.6.1.i586.rpm xen-tools-domU-debuginfo-4.13.1_06-lp152.2.6.1.i586.rpm openSUSE-2020-1203 important openSUSE Leap 15.2 Update This update for python-azure-agent fixes the following issues: - Properly set the DHCP configuration to push the hostname to the DHCP server. (bsc#1173866) - Do not bring the interface down to push the hostname, just use 'ifup'. (bsc#1173866) This update was imported from the SUSE:SLE-15:Update update project. python-azure-agent-2.2.45-lp152.3.3.1.noarch.rpm python-azure-agent-2.2.45-lp152.3.3.1.src.rpm python-azure-agent-test-2.2.45-lp152.3.3.1.noarch.rpm openSUSE-2020-1194 moderate openSUSE Leap 15.2 Update This update for go1.13 fixes the following issues: - go1.13 was updated to version 1.13.5 - CVE-2020-16845: dUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs (bsc#1174977). This update was imported from the SUSE:SLE-15:Update update project. go1.13-1.13.15-lp152.2.7.1.src.rpm go1.13-1.13.15-lp152.2.7.1.x86_64.rpm go1.13-doc-1.13.15-lp152.2.7.1.x86_64.rpm go1.13-race-1.13.15-lp152.2.7.1.x86_64.rpm openSUSE-2020-1204 moderate openSUSE Leap 15.2 Update This update for perl-XML-Twig fixes the following issues: - Security fix [bsc#1008644, CVE-2016-9180] * Setting expand_external_ents to 0 or -1 currently doesn't work as expected; To completely turn off expanding external entities use no_xxe. * Update documentation for XML::Twig to mention problems with expand_external_ents and add information about new no_xxe argument This update was imported from the SUSE:SLE-15:Update update project. perl-XML-Twig-3.52-lp152.4.3.1.noarch.rpm perl-XML-Twig-3.52-lp152.4.3.1.src.rpm openSUSE-2020-1195 moderate openSUSE Leap 15.2 Update This update for php7 fixes the following issues: - Add 'tmpfiles.d' for 'php-fpm' to provide a base for a socket and fix this error accordingly. (bsc#1173786) This update was imported from the SUSE:SLE-15-SP2:Update update project. apache2-mod_php7-7.4.6-lp152.2.3.2.x86_64.rpm apache2-mod_php7-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-7.4.6-lp152.2.3.2.src.rpm php7-7.4.6-lp152.2.3.2.x86_64.rpm php7-bcmath-7.4.6-lp152.2.3.2.x86_64.rpm php7-bcmath-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-bz2-7.4.6-lp152.2.3.2.x86_64.rpm php7-bz2-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-calendar-7.4.6-lp152.2.3.2.x86_64.rpm php7-calendar-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-ctype-7.4.6-lp152.2.3.2.x86_64.rpm php7-ctype-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-curl-7.4.6-lp152.2.3.2.x86_64.rpm php7-curl-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-dba-7.4.6-lp152.2.3.2.x86_64.rpm php7-dba-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-debugsource-7.4.6-lp152.2.3.2.x86_64.rpm php7-devel-7.4.6-lp152.2.3.2.x86_64.rpm php7-dom-7.4.6-lp152.2.3.2.x86_64.rpm php7-dom-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-embed-7.4.6-lp152.2.3.2.x86_64.rpm php7-embed-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-enchant-7.4.6-lp152.2.3.2.x86_64.rpm php7-enchant-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-exif-7.4.6-lp152.2.3.2.x86_64.rpm php7-exif-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-fastcgi-7.4.6-lp152.2.3.2.x86_64.rpm php7-fastcgi-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-fileinfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-fileinfo-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-firebird-7.4.6-lp152.2.3.2.x86_64.rpm php7-firebird-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-fpm-7.4.6-lp152.2.3.2.x86_64.rpm php7-fpm-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-ftp-7.4.6-lp152.2.3.2.x86_64.rpm php7-ftp-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-gd-7.4.6-lp152.2.3.2.x86_64.rpm php7-gd-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-gettext-7.4.6-lp152.2.3.2.x86_64.rpm php7-gettext-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-gmp-7.4.6-lp152.2.3.2.x86_64.rpm php7-gmp-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-iconv-7.4.6-lp152.2.3.2.x86_64.rpm php7-iconv-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-intl-7.4.6-lp152.2.3.2.x86_64.rpm php7-intl-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-json-7.4.6-lp152.2.3.2.x86_64.rpm php7-json-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-ldap-7.4.6-lp152.2.3.2.x86_64.rpm php7-ldap-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-mbstring-7.4.6-lp152.2.3.2.x86_64.rpm php7-mbstring-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-mysql-7.4.6-lp152.2.3.2.x86_64.rpm php7-mysql-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-odbc-7.4.6-lp152.2.3.2.x86_64.rpm php7-odbc-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-opcache-7.4.6-lp152.2.3.2.x86_64.rpm php7-opcache-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-openssl-7.4.6-lp152.2.3.2.x86_64.rpm php7-openssl-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-pcntl-7.4.6-lp152.2.3.2.x86_64.rpm php7-pcntl-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-pdo-7.4.6-lp152.2.3.2.x86_64.rpm php7-pdo-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-pgsql-7.4.6-lp152.2.3.2.x86_64.rpm php7-pgsql-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-phar-7.4.6-lp152.2.3.2.x86_64.rpm php7-phar-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-posix-7.4.6-lp152.2.3.2.x86_64.rpm php7-posix-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-readline-7.4.6-lp152.2.3.2.x86_64.rpm php7-readline-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-shmop-7.4.6-lp152.2.3.2.x86_64.rpm php7-shmop-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-snmp-7.4.6-lp152.2.3.2.x86_64.rpm php7-snmp-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-soap-7.4.6-lp152.2.3.2.x86_64.rpm php7-soap-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-sockets-7.4.6-lp152.2.3.2.x86_64.rpm php7-sockets-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-sodium-7.4.6-lp152.2.3.2.x86_64.rpm php7-sodium-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-sqlite-7.4.6-lp152.2.3.2.x86_64.rpm php7-sqlite-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-sysvmsg-7.4.6-lp152.2.3.2.x86_64.rpm php7-sysvmsg-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-sysvsem-7.4.6-lp152.2.3.2.x86_64.rpm php7-sysvsem-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-sysvshm-7.4.6-lp152.2.3.2.x86_64.rpm php7-sysvshm-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-tidy-7.4.6-lp152.2.3.2.x86_64.rpm php7-tidy-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-tokenizer-7.4.6-lp152.2.3.2.x86_64.rpm php7-tokenizer-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-xmlreader-7.4.6-lp152.2.3.2.x86_64.rpm php7-xmlreader-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-xmlrpc-7.4.6-lp152.2.3.2.x86_64.rpm php7-xmlrpc-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-xmlwriter-7.4.6-lp152.2.3.2.x86_64.rpm php7-xmlwriter-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-xsl-7.4.6-lp152.2.3.2.x86_64.rpm php7-xsl-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-zip-7.4.6-lp152.2.3.2.x86_64.rpm php7-zip-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-zlib-7.4.6-lp152.2.3.2.x86_64.rpm php7-zlib-debuginfo-7.4.6-lp152.2.3.2.x86_64.rpm php7-test-7.4.6-lp152.2.3.2.src.rpm php7-test-7.4.6-lp152.2.3.2.x86_64.rpm apache2-mod_php7-7.4.6-lp152.2.3.2.i586.rpm apache2-mod_php7-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-7.4.6-lp152.2.3.2.i586.rpm php7-bcmath-7.4.6-lp152.2.3.2.i586.rpm php7-bcmath-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-bz2-7.4.6-lp152.2.3.2.i586.rpm php7-bz2-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-calendar-7.4.6-lp152.2.3.2.i586.rpm php7-calendar-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-ctype-7.4.6-lp152.2.3.2.i586.rpm php7-ctype-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-curl-7.4.6-lp152.2.3.2.i586.rpm php7-curl-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-dba-7.4.6-lp152.2.3.2.i586.rpm php7-dba-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-debugsource-7.4.6-lp152.2.3.2.i586.rpm php7-devel-7.4.6-lp152.2.3.2.i586.rpm php7-dom-7.4.6-lp152.2.3.2.i586.rpm php7-dom-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-embed-7.4.6-lp152.2.3.2.i586.rpm php7-embed-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-enchant-7.4.6-lp152.2.3.2.i586.rpm php7-enchant-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-exif-7.4.6-lp152.2.3.2.i586.rpm php7-exif-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-fastcgi-7.4.6-lp152.2.3.2.i586.rpm php7-fastcgi-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-fileinfo-7.4.6-lp152.2.3.2.i586.rpm php7-fileinfo-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-firebird-7.4.6-lp152.2.3.2.i586.rpm php7-firebird-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-fpm-7.4.6-lp152.2.3.2.i586.rpm php7-fpm-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-ftp-7.4.6-lp152.2.3.2.i586.rpm php7-ftp-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-gd-7.4.6-lp152.2.3.2.i586.rpm php7-gd-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-gettext-7.4.6-lp152.2.3.2.i586.rpm php7-gettext-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-gmp-7.4.6-lp152.2.3.2.i586.rpm php7-gmp-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-iconv-7.4.6-lp152.2.3.2.i586.rpm php7-iconv-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-intl-7.4.6-lp152.2.3.2.i586.rpm php7-intl-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-json-7.4.6-lp152.2.3.2.i586.rpm php7-json-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-ldap-7.4.6-lp152.2.3.2.i586.rpm php7-ldap-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-mbstring-7.4.6-lp152.2.3.2.i586.rpm php7-mbstring-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-mysql-7.4.6-lp152.2.3.2.i586.rpm php7-mysql-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-odbc-7.4.6-lp152.2.3.2.i586.rpm php7-odbc-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-opcache-7.4.6-lp152.2.3.2.i586.rpm php7-opcache-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-openssl-7.4.6-lp152.2.3.2.i586.rpm php7-openssl-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-pcntl-7.4.6-lp152.2.3.2.i586.rpm php7-pcntl-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-pdo-7.4.6-lp152.2.3.2.i586.rpm php7-pdo-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-pgsql-7.4.6-lp152.2.3.2.i586.rpm php7-pgsql-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-phar-7.4.6-lp152.2.3.2.i586.rpm php7-phar-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-posix-7.4.6-lp152.2.3.2.i586.rpm php7-posix-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-readline-7.4.6-lp152.2.3.2.i586.rpm php7-readline-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-shmop-7.4.6-lp152.2.3.2.i586.rpm php7-shmop-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-snmp-7.4.6-lp152.2.3.2.i586.rpm php7-snmp-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-soap-7.4.6-lp152.2.3.2.i586.rpm php7-soap-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-sockets-7.4.6-lp152.2.3.2.i586.rpm php7-sockets-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-sodium-7.4.6-lp152.2.3.2.i586.rpm php7-sodium-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-sqlite-7.4.6-lp152.2.3.2.i586.rpm php7-sqlite-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-sysvmsg-7.4.6-lp152.2.3.2.i586.rpm php7-sysvmsg-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-sysvsem-7.4.6-lp152.2.3.2.i586.rpm php7-sysvsem-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-sysvshm-7.4.6-lp152.2.3.2.i586.rpm php7-sysvshm-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-tidy-7.4.6-lp152.2.3.2.i586.rpm php7-tidy-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-tokenizer-7.4.6-lp152.2.3.2.i586.rpm php7-tokenizer-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-xmlreader-7.4.6-lp152.2.3.2.i586.rpm php7-xmlreader-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-xmlrpc-7.4.6-lp152.2.3.2.i586.rpm php7-xmlrpc-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-xmlwriter-7.4.6-lp152.2.3.2.i586.rpm php7-xmlwriter-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-xsl-7.4.6-lp152.2.3.2.i586.rpm php7-xsl-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-zip-7.4.6-lp152.2.3.2.i586.rpm php7-zip-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-zlib-7.4.6-lp152.2.3.2.i586.rpm php7-zlib-debuginfo-7.4.6-lp152.2.3.2.i586.rpm php7-test-7.4.6-lp152.2.3.2.i586.rpm openSUSE-2020-1205 important openSUSE Leap 15.2 Update This update for MozillaThunderbird fixes the following issues: - Updated to Mozilla Thunderbird 68.11: * Fixed various security issues (MFSA-2020-35, bsc#1174538). * Fixed CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker (bsc#1174538). * Fixed CVE-2020-6514: WebRTC data channel leaks internal address to peer (bsc#1174538). * Fixed CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture (bsc#1174538). * Fixed CVE-2020-15659: Memory safety bugs fixed in Thunderbird 68.11 (bsc#1174538). * Fixed a bug with FileLink attachments included as a link and file when added from a network drive via drag & drop (bmo#793118). This update was imported from the SUSE:SLE-15:Update update project. MozillaThunderbird-68.11.0-lp152.2.7.1.src.rpm MozillaThunderbird-68.11.0-lp152.2.7.1.x86_64.rpm MozillaThunderbird-debuginfo-68.11.0-lp152.2.7.1.x86_64.rpm MozillaThunderbird-debugsource-68.11.0-lp152.2.7.1.x86_64.rpm MozillaThunderbird-translations-common-68.11.0-lp152.2.7.1.x86_64.rpm MozillaThunderbird-translations-other-68.11.0-lp152.2.7.1.x86_64.rpm openSUSE-2020-1206 important openSUSE Leap 15.2 Update This update for chromium fixes the following issues: - Chromium updated to 84.0.4147.125 (boo#1175085) * CVE-2020-6542: Use after free in ANGLE * CVE-2020-6543: Use after free in task scheduling * CVE-2020-6544: Use after free in media * CVE-2020-6545: Use after free in audio * CVE-2020-6546: Inappropriate implementation in installer * CVE-2020-6547: Incorrect security UI in media * CVE-2020-6548: Heap buffer overflow in Skia * CVE-2020-6549: Use after free in media * CVE-2020-6550: Use after free in IndexedDB * CVE-2020-6551: Use after free in WebXR * CVE-2020-6552: Use after free in Blink * CVE-2020-6553: Use after free in offline mode * CVE-2020-6554: Use after free in extensions * CVE-2020-6555: Out of bounds read in WebGL * Various fixes from internal audits, fuzzing and other initiatives - Disable wayland everywhere as it breaks headless and middle mouse copy everywhere: boo#1174497 boo#1175044 chromedriver-84.0.4147.125-lp152.2.12.2.x86_64.rpm chromedriver-debuginfo-84.0.4147.125-lp152.2.12.2.x86_64.rpm chromium-84.0.4147.125-lp152.2.12.2.src.rpm chromium-84.0.4147.125-lp152.2.12.2.x86_64.rpm chromium-debuginfo-84.0.4147.125-lp152.2.12.2.x86_64.rpm chromium-debugsource-84.0.4147.125-lp152.2.12.2.x86_64.rpm openSUSE-2020-1208 moderate openSUSE Leap 15.2 Update This update for firejail fixes the following issues: - CVE-2020-17367: The end-of-options separator -- was not handled correctly (boo#1174986). - CVE-2020-17368: An attacker who has control over the command line arguments could run arbitrary commands (boo#1174986). firejail-0.9.62-lp152.3.3.1.src.rpm firejail-0.9.62-lp152.3.3.1.x86_64.rpm firejail-debuginfo-0.9.62-lp152.3.3.1.x86_64.rpm firejail-debugsource-0.9.62-lp152.3.3.1.x86_64.rpm openSUSE-2020-1209 moderate openSUSE Leap 15.2 Update This update for hylafax+ fixes the following issues: Hylafax was updated to upstream version 7.0.3. Security issues fixed: - CVE-2020-15396: Secure temporary directory creation for faxsetup, faxaddmodem, and probemodem (boo#1173521). - CVE-2020-15397: Sourcing of files into binaries from user writeable directories (boo#1173519). Non-security issues fixed: * add UseSSLFax feature in sendfax, sendfax.conf, hyla.conf, and JobControl (31 Jul 2020) * be more resilient in listening for the Phase C carrier (30 Jul 2020) * make sure to return to command mode if HDLC receive times out (29 Jul 2020) * make faxmail ignore boundaries on parts other than multiparts (29 Jul 2020) * don't attempt to write zero bytes of data to a TIFF (29 Jul 2020) * don't ever respond to CRP with CRP (28 Jul 2020) * reset frame counter when a sender retransmits PPS for a previously confirmed ECM block (26 Jul 2020) * scrutinize PPM before concluding that the sender missed our MCF (23 Jul 2020) * fix modem recovery after SSL Fax failure (22, 26 Jul 2020) * ignore echo of PPR, RTN, CRP (10, 13, 21 Jul 2020) * attempt to handle NSF/CSI/DIS in Class 1 sending Phase D (6 Jul 2020) * run scripts directly rather than invoking them via a shell for security hardening (3-5 Jul 2020) * add senderFumblesECM feature (3 Jul 2020) * add support for PIN/PIP/PRI-Q/PPS-PRI-Q signals, add senderConfusesPIN feature, and utilize PIN for rare conditions where it may be helpful (2, 6, 13-14 Jul 2020) * add senderConfusesRTN feature (25-26 Jun 2020) * add MissedPageHandling feature (24 Jun 2020) * use and handle CFR in Phase D to retransmit Phase C (16, 23 Jun 2020) * cope with hearing echo of RR, CTC during Class 1 sending (15-17 Jun 2020) * fix listening for retransmission of MPS/EOP/EOM if it was received corrupt on the first attempt (15 Jun 2020) * don't use CRP when receiving PPS/PPM as some senders think we are sending MCF (12 Jun 2020) * add BR_SSLFAX to show SSL Fax in notify and faxinfo output (1 Jun 2020) * have faxinfo put units on non-standard page dimensions (28 May 2020) * improve error messages for JobHost connection errors (22 May 2020) * fix perpetual blocking of jobs when a job preparation fails, attempt to fix similar blocking problems for bad jobs in batches, and add "unblock" faxconfig feature (21 May 2020) * ignore TCF if we're receiving an SSL Fax (31 Jan 2020) * fixes for build on FreeBSD 12.1 (31 Jan - 3 Feb 2020) hylafax+-7.0.3-lp152.3.6.1.src.rpm hylafax+-7.0.3-lp152.3.6.1.x86_64.rpm hylafax+-client-7.0.3-lp152.3.6.1.x86_64.rpm hylafax+-client-debuginfo-7.0.3-lp152.3.6.1.x86_64.rpm hylafax+-debuginfo-7.0.3-lp152.3.6.1.x86_64.rpm hylafax+-debugsource-7.0.3-lp152.3.6.1.x86_64.rpm libfaxutil7_0_3-7.0.3-lp152.3.6.1.x86_64.rpm libfaxutil7_0_3-debuginfo-7.0.3-lp152.3.6.1.x86_64.rpm openSUSE-2020-1182 important openSUSE Leap 15.2 Update This update for libX11 fixes the following issues: - Fixed XIM client heap overflows (CVE-2020-14344, bsc#1174628). This update was imported from the SUSE:SLE-15:Update update project. libX11-1.6.5-lp152.5.6.1.src.rpm libX11-6-1.6.5-lp152.5.6.1.x86_64.rpm libX11-6-debuginfo-1.6.5-lp152.5.6.1.x86_64.rpm libX11-data-1.6.5-lp152.5.6.1.noarch.rpm libX11-debugsource-1.6.5-lp152.5.6.1.x86_64.rpm libX11-devel-1.6.5-lp152.5.6.1.x86_64.rpm libX11-xcb1-1.6.5-lp152.5.6.1.x86_64.rpm libX11-xcb1-debuginfo-1.6.5-lp152.5.6.1.x86_64.rpm libX11-6-1.6.5-lp152.5.6.1.i586.rpm libX11-6-32bit-1.6.5-lp152.5.6.1.x86_64.rpm libX11-6-32bit-debuginfo-1.6.5-lp152.5.6.1.x86_64.rpm libX11-6-debuginfo-1.6.5-lp152.5.6.1.i586.rpm libX11-debugsource-1.6.5-lp152.5.6.1.i586.rpm libX11-devel-1.6.5-lp152.5.6.1.i586.rpm libX11-devel-32bit-1.6.5-lp152.5.6.1.x86_64.rpm libX11-xcb1-1.6.5-lp152.5.6.1.i586.rpm libX11-xcb1-32bit-1.6.5-lp152.5.6.1.x86_64.rpm libX11-xcb1-32bit-debuginfo-1.6.5-lp152.5.6.1.x86_64.rpm libX11-xcb1-debuginfo-1.6.5-lp152.5.6.1.i586.rpm openSUSE-2020-1217 moderate openSUSE Leap 15.2 Update This update for supportutils-plugin-suse-public-cloud and python3-azuremetadata fixes the following issues: supportutils-plugin-suse-public-cloud: - Fixes an error when supportutils-plugin-suse-public-cloud and supportutils-plugin-salt are installed at the same time (bsc#1174618) - Sensitive information like credentials (such as access keys) will be removed when the metadata is being collected (bsc#1170475, bsc#1170476) python3-azuremetadata: - Added latest support for `--listapis` and `--api` (bsc#1173238, bsc#1173240) - Detects when the VM is running in ASM (Azure Classic) and does now handle the condition to generate the data without requiring access to the full IMDS available, only in ARM instances (bsc#1173357, bsc#1174847) This update was imported from the SUSE:SLE-15:Update update project. python3-azuremetadata-5.1.2-lp152.2.3.1.noarch.rpm python3-azuremetadata-5.1.2-lp152.2.3.1.src.rpm openSUSE-2020-1218 moderate openSUSE Leap 15.2 Update This update for osc fixes the following issues: - Fix for performance issues by assuming utf-8 or latin-1 as default, and speed up decoding. (bsc#1173926) This update was imported from the SUSE:SLE-15-SP1:Update update project. osc-0.170.0-lp152.2.3.1.noarch.rpm osc-0.170.0-lp152.2.3.1.src.rpm openSUSE-2020-1219 moderate openSUSE Leap 15.2 Update This update for hawk2 fixes the following issue: Update to version 2.1.2+git.1594886920.d00b94aa: - Update puma rubygem requirement to version 4.3.5 for disabling TLSv1.0 and TLSv1.1 (jsc#SLE-6965) This update was imported from the SUSE:SLE-15:Update update project. hawk2-2.1.2+git.1594886920.d00b94aa-lp152.2.3.1.src.rpm hawk2-2.1.2+git.1594886920.d00b94aa-lp152.2.3.1.x86_64.rpm hawk2-debuginfo-2.1.2+git.1594886920.d00b94aa-lp152.2.3.1.x86_64.rpm hawk2-debugsource-2.1.2+git.1594886920.d00b94aa-lp152.2.3.1.x86_64.rpm openSUSE-2020-1221 important openSUSE Leap 15.2 Update This update for grub2 fixes the following issues: - A potential regression has been fixed that would cause systems with an updated 'grub2' to boot no longer due to a missing 'grub-calloc' linker symbol. (bsc#1174782) This update was imported from the SUSE:SLE-15-SP2:Update update project. grub2-2.04-lp152.7.6.1.src.rpm grub2-2.04-lp152.7.6.1.x86_64.rpm grub2-branding-upstream-2.04-lp152.7.6.1.x86_64.rpm grub2-debuginfo-2.04-lp152.7.6.1.x86_64.rpm grub2-debugsource-2.04-lp152.7.6.1.x86_64.rpm grub2-i386-pc-2.04-lp152.7.6.1.noarch.rpm grub2-i386-pc-debug-2.04-lp152.7.6.1.noarch.rpm grub2-snapper-plugin-2.04-lp152.7.6.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-lp152.7.6.1.noarch.rpm grub2-x86_64-efi-2.04-lp152.7.6.1.noarch.rpm grub2-x86_64-efi-debug-2.04-lp152.7.6.1.noarch.rpm grub2-x86_64-xen-2.04-lp152.7.6.1.noarch.rpm grub2-2.04-lp152.7.6.1.i586.rpm grub2-branding-upstream-2.04-lp152.7.6.1.i586.rpm grub2-debuginfo-2.04-lp152.7.6.1.i586.rpm grub2-debugsource-2.04-lp152.7.6.1.i586.rpm grub2-i386-efi-2.04-lp152.7.6.1.noarch.rpm grub2-i386-efi-debug-2.04-lp152.7.6.1.noarch.rpm grub2-i386-xen-2.04-lp152.7.6.1.noarch.rpm