Packages changed: dhcp haveged (1.9.8 -> 1.9.13) kured (1.4.0 -> 1.4.3) mozilla-nss (3.52.1 -> 3.53.1) patterns-containers python-py (1.8.1 -> 1.9.0) python-rpm-macros (20200529.b301e36 -> 20200625.e862151) rpm sysfsutils weave (2.6.4 -> 2.6.5) yast2 (4.3.9 -> 4.3.12) === Details === ==== dhcp ==== Subpackages: dhcp-client - The server package still requires insserv-compat: the .service files only call out to legacy sysv init scripts that are still sourcing /etc/rc.status (boo#1173440). ==== haveged ==== Version update (1.9.8 -> 1.9.13) - Update to 1.9.13: * added support for --version [Jirka Hladky] * updated systemd service file [Jirka Hladky] * fix a memory leak in havege_destroy [Anakin Zhang] * updated version reported by program [Jirka Hladky] * fix ordering cycle with private tmp [Christian Hesse] * Updated systemd service file [Nicolas Braud-Santoni] * Bump soname [Nicolas Braud-Santoni] * Fix crash on shutdown in threaded mode [Sergei Trofimovich] * Fix compilation with --enable-threads [Lars Wendler] ==== kured ==== Version update (1.4.0 -> 1.4.3) - Update to version 1.4.3: * bump and fix * split matchLabels template * restructured and improved service * bumped kured to upcoming 1.4.3 fixed servicemonitor indent fixed quotes for arguments * update things for 1.4.2 release * Use GITHUB_TOKEN for releasing chart * make markdownlint happier * update version * prepare chart-release for 1.4.1 * Revert #139 - use obs-service for regenerating vendor.tar.gz - Update to version 1.4.2 - Adding --annotation-ttl for automatic unlock - Refresh vendor.tar.xz ==== mozilla-nss ==== Version update (3.52.1 -> 3.53.1) - add FIPS mode patches from SLE stream nss-fips-aes-keywrap-post.patch nss-fips-approved-crypto-non-ec.patch nss-fips-cavs-dsa-fixes.patch nss-fips-cavs-general.patch nss-fips-cavs-kas-ecc.patch nss-fips-cavs-kas-ffc.patch nss-fips-cavs-keywrap.patch nss-fips-cavs-rsa-fixes.patch nss-fips-combined-hash-sign-dsa-ecdsa.patch nss-fips-constructor-self-tests.patch nss-fips-detect-fips-mode-fixes.patch nss-fips-dsa-kat.patch nss-fips-gcm-ctr.patch nss-fips-pairwise-consistency-check.patch nss-fips-rsa-keygen-strictness.patch nss-fips-tls-allow-md5-prf.patch nss-fips-use-getrandom.patch nss-fips-use-strong-random-pool.patch nss-fips-zeroization.patch nss-fix-dh-pkcs-derive-inverted-logic.patch - update to NSS 3.53.1 * required for Firefox 78 * CVE-2020-12402 - Use constant-time GCD and modular inversion in MPI. (bmo#1631597, bsc#1173032) - Add ppc-old-abi-v3.patch as per upstream bug https://bugzilla.mozilla.org/show_bug.cgi?id=1642174 - update to NSS 3.53 Notable changes * SEED is now moved into a new freebl directory freebl/deprecated bmo#1636389 * SEED will be disabled by default in a future release of NSS. At that time, users will need to set the compile-time flag (bmo#1622033) to disable that deprecation in order to use the algorithm. * Algorithms marked as deprecated will ultimately be removed * Several root certificates in the Mozilla program now set the CKA_NSS_SERVER_DISTRUST_AFTER attribute, which NSS consumers can query to further refine trust decisions. (bmo#1618404, bmo#1621159). If a builtin certificate has a CKA_NSS_SERVER_DISTRUST_AFTER timestamp before the SCT or NotBefore date of a certificate that builtin issued, then clients can elect not to trust it. ==== patterns-containers ==== Subpackages: patterns-containers-container_runtime patterns-containers-container_runtime_kubernetes patterns-containers-kubeadm patterns-containers-kubernetes_utilities patterns-containers-kubic_admin patterns-containers-kubic_loadbalancer patterns-containers-kubic_worker - Remove duplicate word in description of kubic_admin pattern - Fix Summary of kubeadm pattern to start with a capital letter ==== python-py ==== Version update (1.8.1 -> 1.9.0) - Update to 1.9.0 * Add type annotation stubs ==== python-rpm-macros ==== Version update (20200529.b301e36 -> 20200625.e862151) - Update to version 20200625.e862151: * fix pytest_arch PYTHONPATH * expand calls pyproject* macros (revert #45) * let the shell expand PYTHONPATH - Update to version 20200623.3ea9b62: * fix PYTHONPATH on pytest_arch macro - Update to version 20200622.1919233: * Expand %buildroot first (avoid endless cycle; bsc#1162743) - Update to version 20200622.1f4c5d2: * Add missing semicolon - For Factory change %system_python to python3. - Update to version 20200603.503823c: * Don't add empty path to PYTHONPATH setting. * Do not expand macros, just print them unexpanded (for %pytest* and %pyproject* macros) * Replace py.test -> pytest ==== rpm ==== Subpackages: librpmbuild9 - temporarily back out change of %_libexecdir to /usr/libexec - Update rpmconfigcheck: Remove bashism and use /bin/sh instead of /bin/bash. - update auto-config-update-aarch64-ppc64le.diff (bsc#1170849): * only update if hostarch isn't there ==== sysfsutils ==== - Added a _service file, as per new OBS requirement - Added a patch to bring sysfsutils up to latest upstream, which now is in place: * sysfsutils-latest-changes.diff.gz - Added patches which have been submitted upstream but not yet merged: * 0001-Fix-compiler-complain-about-multiple-defs-of-my_stdo.patch * 0002-Fix-compiler-complaint-about-string-truncation.patch * 0003-Fix-more-string-issues-for-gcc-10.patch And removing a patch that's subsumed by the above patches: * sysfsutils-fix-compiler-issues.patch Lastly, replaced the hand-rolled sysfsutils-2.1.0.tar.gz with upstream archive file sysfsutils-sysfsutils-2_1_0.tar.gz (retreived with OBS download service), though the contents of the two are the same. ==== weave ==== Version update (2.6.4 -> 2.6.5) - Update to version 2.6.5 - Fixes a bug that would leak memory every time a fast-datapath connection was stopped. - Avoid a crash when the machine has ipv6 disabled. - Refresh vendor.tar.xz ==== yast2 ==== Version update (4.3.9 -> 4.3.12) - Products: Do not solve dependencies while checking libzypp connection (bsc#1170322). - 4.3.12 - Avoid failure when downloading release notes from an inoperative proxy (bsc#1173447). - 4.3.11 - AutoClient#export method can receive a hash as an argument (bsc#1171356). - 4.3.10