Packages changed: ca-certificates (2+git20170807.10b2785 -> 2+git20200129.d1a437d) cogl ibus (1.5.21 -> 1.5.22) kernel-default-base libarchive libgpg-error (1.36 -> 1.37) libseccomp libunwind mutter openssl-1_1 patterns-containers plasma5-pk-updates podman python-Jinja2 (2.10.3 -> 2.11.1) python-cffi (1.13.2 -> 1.14.0) python-pytz (2019.2 -> 2019.3) sysfsutils system-users tpm2-0-tss (2.3.2 -> 2.3.3) tracker-miners wayland (1.17.0 -> 1.18.0) wpebackend-fdo (1.4.0 -> 1.4.1) xkbcomp (1.4.2 -> 1.4.3) === Details === ==== ca-certificates ==== Version update (2+git20170807.10b2785 -> 2+git20200129.d1a437d) - Update to version 2+git20200129.d1a437d: * rewrite in bash * java.run: don't set LANG=en_US - no longer require openssl, it's all done by p11-kit ==== cogl ==== Subpackages: libcogl-pango20 libcogl20 - Add cogl-fix-mesa20.patch: fixes build against Mesa 20 (boo#1164688, glgo#GNOME/cogl!17). ==== ibus ==== Version update (1.5.21 -> 1.5.22) Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Fix dependency between ibus and ibus-dict-emoji * Keep ibus and ibus-dict-emoji from the same source * Add Conflict to remove old ibus containing emoji dictionary files - Update version to 1.5.22 * GDBusAuthObserver security fix, drop ibus-CVE-2019-14822-GDBusServer-peer-authorization.patch * Use XDG_RUNTIME_DIR for Unix socket directory * Hangul button press handling * Fix deprecated APIs * Bug fixes * Fix boo#1149065 * Fix restart crash with inotify read() (Robert Hoffmann) * Make session file header comment more clear (Jason) * Amend typos (Jason) * Add NotShowIn and Keywords keys to the desktop entry (Changwoo Ryu) * Handle small final sigma in ibus_keyval_convert_case (Alex Henrie) * Update translations. - Add ibus-fix-Signal-does-not-exist.patch. Fix build on Leap 15.1 and below - Split ibus-dict-emoji so that KDE Plasma can use IBus's emoji dictionaries without IBus daemon (boo#1161584) ==== kernel-default-base ==== - Add the brd module, used by the LTP testsuite and tiny ==== libarchive ==== - Switch back to cmake build now that cmake-mini exists, this will no longer create a build-cycle. ==== libgpg-error ==== Version update (1.36 -> 1.37) - Update to 1.37 Release-info: https://dev.gnupg.org/T4772 * Fixes a build problems when using Gawk 5.0 [#4459] * Improves cross-compiling support. [#4643] * New error codes to map SQLite primary error codes. * Now uses poll(2) instead of select(2) in gpgrt_poll if possible. * Fixes a bug in gpgrt_close. [#4698] * Fixes a few minor portability bugs. * New interfaces in this release: GPG_ERR_NO_KEYBOXD GPG_ERR_KEYBOXD GPG_ERR_NO_SERVICE GPG_ERR_SERVICE GPG_ERR_SQL_OK GPG_ERR_SQL_ERROR GPG_ERR_SQL_INTERNAL GPG_ERR_SQL_PERM GPG_ERR_SQL_ABORT GPG_ERR_SQL_BUSY GPG_ERR_SQL_LOCKED GPG_ERR_SQL_NOMEM GPG_ERR_SQL_READONLY GPG_ERR_SQL_INTERRUPT GPG_ERR_SQL_IOERR GPG_ERR_SQL_CORRUPT GPG_ERR_SQL_NOTFOUND GPG_ERR_SQL_FULL GPG_ERR_SQL_CANTOPEN GPG_ERR_SQL_PROTOCOL GPG_ERR_SQL_EMPTY GPG_ERR_SQL_SCHEMA GPG_ERR_SQL_TOOBIG GPG_ERR_SQL_CONSTRAINT GPG_ERR_SQL_MISMATCH GPG_ERR_SQL_MISUSE GPG_ERR_SQL_NOLFS GPG_ERR_SQL_AUTH GPG_ERR_SQL_FORMAT GPG_ERR_SQL_RANGE GPG_ERR_SQL_NOTADB GPG_ERR_SQL_NOTICE GPG_ERR_SQL_WARNING GPG_ERR_SQL_ROW GPG_ERR_SQL_DONE - Remove patch fixed upstream. * gawk5.patch ==== libseccomp ==== - Add patch to fix ntpsec and others build (accidental drop of symbols): * SNR_ppoll.patch ==== libunwind ==== - Fix build with GCC-10: [bsc#1160876] * In GCC-10, the default option -fcommon will change to -fno-common - Add libunwind-gcc10-build-fno-common.patch ==== mutter ==== Subpackages: libmutter-5-0 mutter-data - Rework mutter-fix-mesa20.patch: base it on mutter upstream commit a444a4c. - Add mutter-fix-mesa20.patch: fixes build against Mesa 20 (boo#1164688). ==== openssl-1_1 ==== - Use the newly build libcrypto shared library when computing the hmac checksums in order to avoid a bootstrapping issue by BuildRequiring libopenssl1_1 (bsc#1164102) - Fix wrong return values of FIPS DSA and ECDH selftests (bsc#1163569) * add openssl-fips_fix_selftests_return_value.patch - Added SHA3 FIPS self-tests bsc#1155345 * openssl-fips-add-SHA3-selftest.patch ==== patterns-containers ==== - Add busybox-k8s-yaml to kubeadm pattern - Add helm to kubeadm pattern (https://github.com/kubic-project/issues/issues/10) ==== plasma5-pk-updates ==== - Add patch to avoid error messages for a locked db (boo#1161501): * 0001-Don-t-show-an-error-for-a-failed-automatic-refresh.patch ==== podman ==== Subpackages: podman-cni-config - The name of the cni-bridge in the default config changed from "cni0" to "podman-cni0" with podman-1.6.0. Add a %trigger to rename the bridge in the system to the new default if it exists. The trigger is only excuted when updating podman-cni-config from something older than 1.6.0. This is mainly needed for SLE where we're updating from 1.4.4 to 1.8.0 (bsc#1160460). ==== python-Jinja2 ==== Version update (2.10.3 -> 2.11.1) - disable tests on 32bit archs - update to 2.11.1 * Fix a bug that prevented looking up a key after an attribute ({{ data.items[1:] }}) in an async template * Drop support for Python 2.6, 3.3, and 3.4. This will be the last version to support Python 2.7 and 3.5. * Added a new ChainableUndefined class to support getitem and getattr on an undefined object. * Allow {%+ syntax (with NOP behavior) when lstrip_blocks is disabled. * Added a default parameter for the map filter. * Exclude environment globals from meta.find_undeclared_variables(). * Float literals can be written with scientific notation, like 2.56e-3. * Int and float literals can be written with the ?_? separator for legibility, like 12_345. * Fix a bug causing deadlocks in LRUCache.setdefault * The trim filter takes an optional string of characters to trim. * A new jinja2.ext.debug extension adds a {% debug %} tag to quickly dump the current context and available filters and tests. * Lexing templates with large amounts of whitespace is much faster. * Parentheses around comparisons are preserved, so {{ 2 * (3 < 5) }} outputs ?2? instead of ?False?. * Add new boolean, false, true, integer and float tests. * The environment?s finalize function is only applied to the output of expressions (constant or not), not static template data. * When providing multiple paths to FileSystemLoader, a template can have the same name as a directory. * Always return Undefined when omitting the else clause in a {{ 'foo' if bar }} expression, regardless of the environment?s undefined class. Omitting the else clause is a valid shortcut and should not raise an error when using StrictUndefined. * Fix behavior of loop control variables such as length and revindex0 when looping over a generator. * Async support is only loaded the first time an environment enables it, in order to avoid a slow initial import. * In async environments, the |map filter will await the filter call if needed. * In for loops that access loop attributes, the iterator is not advanced ahead of the current iteration unless length, revindex, nextitem, or last are accessed. This makes it less likely to break groupby results. * In async environments, the loop attributes length and revindex work for async iterators. * In async environments, values from attribute/property access will be awaited if needed. * PackageLoader doesn?t depend on setuptools or pkg_resources. * PackageLoader has limited support for PEP 420 namespace packages. * Support os.PathLike objects in FileSystemLoader and ModuleLoader * NativeTemplate correctly handles quotes between expressions. "'{{ a }}', '{{ b }}'" renders as the tuple ('1', '2') rather than the string '1, 2'. * Creating a NativeTemplate directly creates a NativeEnvironment instead of a default Environment. * After calling LRUCache.copy(), the copy?s queue methods point to the correct queue. * Compiling templates always writes UTF-8 instead of defaulting to the system encoding. * |wordwrap filter treats existing newlines as separate paragraphs to be wrapped individually, rather than creating short intermediate lines. * Add break_on_hyphens parameter to |wordwrap filter. * Cython compiled functions decorated as context functions will be passed the context. * When chained comparisons of constants are evaluated at compile time, the result follows Python?s behavior of returning False if any comparison returns False, rather than only the last one * Tracebacks for exceptions in templates show the correct line numbers and source for Python >= 3.7. * Tracebacks for template syntax errors in Python 3 no longer show internal compiler frames * Add a DerivedContextReference node that can be used by extensions to get the current context and local variables such as loop * Constant folding during compilation is applied to some node types that were previously overlooked * TemplateSyntaxError.source is not empty when raised from an included template. * Passing an Undefined value to get_template (such as through extends, import, or include), raises an UndefinedError consistently. select_template will show the undefined message in the list of attempts rather than the empty string. * TemplateSyntaxError can be pickled. ==== python-cffi ==== Version update (1.13.2 -> 1.14.0) - Update to 1.14.0 * ffi.dlopen() can now be called with a handle (as a void *) to an already-opened C library. * fixed a stack overflow issue for calls like lib.myfunc([large list]). * fixed a memory leak inside ffi.getwinerror() on CPython 3.x. ==== python-pytz ==== Version update (2019.2 -> 2019.3) - Update to 2019.3 * IANA 2019c ==== sysfsutils ==== - Fix compiler issues for this package, which hasn't been touched in a while. Should be no functional change. Added patch: * sysfsutils-fix-compiler-issues.patch ==== system-users ==== Subpackages: system-group-hardware system-group-wheel system-user-bin system-user-daemon system-user-lp system-user-nobody - Align /var/lib/tss permissions with trousers (boo#1162360). ==== tpm2-0-tss ==== Version update (2.3.2 -> 2.3.3) Subpackages: libtss2-esys0 libtss2-mu0 libtss2-sys0 - Update to version 2.3.3 * Fixed mixing salted and unsalted sessions in the same ESAPI context * Removed use of VLAs from TPML marshal code * Added check for object node before calling compute_session_value function * Fixed auth calculation in Esys_StartAuthSession called with optional parameters * Fixed compute_encrypted_salt error handling in Esys_StartAuthSession * Fixed exported symbols map for libtss2-mu ==== tracker-miners ==== Subpackages: tracker-miner-files - Add upstream bug fix patches: + tracker-miners-set-cpu-io-nice.patches + tracker-miners-allow-settatr.patch ==== wayland ==== Version update (1.17.0 -> 1.18.0) Subpackages: libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0 - Replace public key in keyring with 34FF9526CFEF0E97A340E2E40FDE7BE0E88F5E48 (Simon Ser ). - Update to release 1.18 * Add API to tag proxy objects to allow applications and toolkits to share the same Wayland connection * Track wayland-server timers in user-space to prevent creating too many FDs * Add wl_global_remove, a new function to mitigate race conditions with globals ==== wpebackend-fdo ==== Version update (1.4.0 -> 1.4.1) - Update to version 1.4.1 (boo#1164688): + Fix build failures with recent compiler versions due to missing function declarations. - Drop memset-prototype.patch: fixed upstream. ==== xkbcomp ==== Version update (1.4.2 -> 1.4.3) - Update to version 1.4.3 * Update configure.ac bug URL for gitlab migration * configure: Remove unused AC_SUBST([REQUIRED_MODULES]) * pkgconfig: Remove unneeded Requires.private * Suppress high-keycode warnings at the default warning level * xkbcomp Fix missing support for "affect" and incorrect modifier handling for ISOLock * Don't compare with string literals * Fix invalid error report on F_Accel field * Error out if we have no default path