Packages changed: MozillaFirefox NetworkManager appstream-glib (0.5.16 -> 0.5.17) at-spi2-core docbook-xsl-stylesheets docbook5-xsl-stylesheets geany (1.26 -> 1.28) getdata (0.9.2 -> 0.9.3) gjs (1.45.3 -> 1.45.4) glu gnome-packagekit gnome-session gnome-terminal groff groff-full guile (2.0.11 -> 2.0.12) gvfs installation-images-openSUSE (14.261 -> 14.263) json-c (0.12 -> 0.12.1) kbd (2.0.2 -> 2.0.3) kiwi (7.03.77 -> 7.03.82) kmod (22 -> 23) konversation (1.6 -> 1.6.1) libarchive libassuan (2.4.2 -> 2.4.3) libburn (1.4.0 -> 1.4.2.pl01) libcdr (0.1.2 -> 0.1.3) libgpg-error (1.23 -> 1.24) libidn (1.32 -> 1.33) libisoburn (1.4.0 -> 1.4.2) libisofs (1.4.0 -> 1.4.2) libmbim (1.12.4 -> 1.14.0) libmwaw (0.3.7 -> 0.3.8) libproxy libproxy-plugins libpst (0.6.66 -> 0.6.67) libqmi (1.14.2 -> 1.16.0) librdmacm libreoffice (5.2.0.1 -> 5.2.0.3) libvdpau-va-gl (0.3.6 -> 0.4.0) mediastreamer2 mutt (1.6.1 -> 1.6.2) nautilus opencv opencv-qt5 openssh (6.6p1 -> 7.2p2) orca (3.20.2 -> 3.20.3) perl-Bootloader (0.913 -> 0.915) python-cryptography python3-setuptools (24.0.2 -> 25.1.0) sendmail (8.14.9 -> 8.15.2) sysdig (0.10.1_k4.6.4_2 -> 0.11.0_k4.6.4_2) syslogd ucode-intel (20151106 -> 20160714) wine (1.9.13 -> 1.9.15) xmlcharent xorg-x11-server (7.6_1.18.3 -> 7.6_1.18.4) yast2-add-on (3.1.15 -> 3.1.16) yast2-kdump (3.1.38 -> 3.1.39) yast2-packager (3.1.107 -> 3.1.108) === Details === ==== MozillaFirefox ==== Subpackages: MozillaFirefox-translations-common - Fix Firefox crash on startup on i586 (boo#986541): * Add -fno-delete-null-pointer-checks and - fno-inline-small-functions to CFLAGS - Update the appdata.xml file (replace Windows XP screenshot) ==== NetworkManager ==== Subpackages: NetworkManager-devel libnm-glib-vpn1 libnm-glib4 libnm-util2 libnm0 typelib-1_0-NM-1_0 typelib-1_0-NMClient-1_0 typelib-1_0-NetworkManager-1_0 - Modify nm-probe-radius-server-cert.patch: Make sure the "Apply" button in Wifi configuration page of gnome-control-center is clickable.(bsc#985332) ==== appstream-glib ==== Version update (0.5.16 -> 0.5.17) Subpackages: libappstream-builder8 libappstream-glib8 - Update to version 0.5.17: + trivial: post release version bump. + Fix gtk-doc build when builddir != srcdir. + Optionally use libstemmer for keyword stemming. + trivial: Do not include the prefix in the id-filename. + trivial: Disable libstemmer by default. + trivial: Get rid of useless internal-only gtk-doc markup. + trivial: Fix 'make check' without libstemmer. + Fall back to the country code in as_app_get_language(). + Add an AS_STATE_PURCHASABLE constant so we can support purchasing apps. + Add an AS_STATE_PURCHASING constant. + monitor: Use non-deprecated glib API for monitoring renames. + trivial: Fix a compiler warning with libstemmer disabled. + store: Don't emit a warning when flatpak user directory doesn't exist. + Correct disabling of timestamps for gzip. + trivial: Remove the X- hack from parsing the category list. + Add external (X-*) keys of an app's desktop file as metadata AsApp. + Fix missing keywords in the previous commit. + Don't add multiple categories for apps with AudioVideo. + Release version 0.5.17 ==== at-spi2-core ==== Subpackages: at-spi2-core-devel libatspi0 typelib-1_0-Atspi-2_0 - Add at-spi2-core-session-management.patch: properly register at-spi-bus-launcher with gnome-session (bsc#984109). ==== docbook-xsl-stylesheets ==== - Use update-xml-catalog ==== docbook5-xsl-stylesheets ==== - Change catalog entry for consistency with docbook-xsl-stylesheets - Use update-xml-catalog ==== geany ==== Version update (1.26 -> 1.28) Subpackages: geany-lang libgeany0 - Update to version 1.28 + General: - Improve support for GTK 3.20. - System filetype files and system tags files are now in sub-directories *filedefs/* and *tags/* respectively. + Bug fixes: - Fix canceling keybinding overriding by discarding the dialog (gh#geany/geany#714). - Fix type name coloring when types change (gh#geany/geany#1039, gh#geany/geany#1020, gh#geany/geany#1022). - Fix undo of line end type change (gh#geany/geany#527, gh#geany/geany#409). + Editor: - Update Scintilla to version 3.6.6. - Improve Goto Symbol popup contents (gh#geany/geany#958). + Filetypes: - Treat `.h` headers as C++ by default (gh#geany/geany#857). - Various improvements to the Ruby parser (gh#geany/geany#587). - Fix Haskell single line comments (gh#geany/geany#1029). - Update Java keywords (gh#geany/geany#1024). - Fix handling of curly brackets in Make. - Add ECMAScript 6 keywords (gh#geany/geany#980). - Slight improvement to the Java file template (gh#geany/geany#1073). - Add missing `last-child` CSS pseudo-class (gh#geany/geany#1102). + API: - Don't require static strings for key group name and label (gh#geany/geany#1126). - Formally add TMTag to the API (gh#geany/geany#1093). + Plugins: - Class builder: use `.hpp` extension for C++ headers by default (gh#geany/geany#999). + Updated translations. - Changes from version 1.27: + See http://www.geany.org/Main/20160313. - Add geany-appstream.patch to install translated metadata file (https://github.com/geany/geany/pull/1142); add BuildRequires on automake, autoconf, libtool and run autoreconf as patch touches autotool files. ==== getdata ==== Version update (0.9.2 -> 0.9.3) Subpackages: getdata-devel getdata-doc libgetdata++6 libgetdata7 - update to 0.9.3 for all relevant changes see https://sourceforge.net/projects/getdata/files/getdata/0.9.3/ API Changes: * gd_verbose_prefix() can now be used on invalid dirfiles. Previously, this function would return GD_E_BAD_DIRFILE when passed an invalid DIRFILE pointer. * BUG FIX: When trying to access a LINTERP table file in a non-existent directory, GetData now reports the correct error (No such file or directory). Reported by Johanna Nagy. Library Changes: * GetData can now read SIE files containing the optional nine-byte header (which can be created by daisie). When read by GetData, information in the header is completely ignored (because the GetData metadata contains all the necessary information). GetData never writes the header, but calls to gd_putdata() will preserve an existing header. Calls which re-code the file (like gd_alter_endianness(), gd_alter_raw(), &c.) will result in an existing header being deleted. * BUG FIX: Filenames and line numbers appearing in GD_E_FORMAT error strings returned by gd_error_string() are correct again. This bug also affected parser metadata sent to a registered parser callback. * BUG FIX: On platforms where char is signed, the library no longer rejects field names containing bytes with the top bit set. - remove patch fix_test_alter_entry_scalar3r.diff included in this version ==== gjs ==== Version update (1.45.3 -> 1.45.4) Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0 - Update to version 1.45.4: + Release out args before freeing caller-allocated structs (bgo#768413). + Marshal variable array-typed signal arguments (bgo#761659). + Marshal all structs in out arrays correctly (bgo#761658). + Call setlocale() before processing arguments (bgo#760424). + Build fixes and improvements: bgo#737702, bgo#761072, bgo#761366, bgo#765905, bgo#767368. ==== glu ==== Subpackages: glu-devel libGLU1 libGLU1-32bit - U_Add-D-N-DEBUG-to-CFLAGS-dependent-on-enable-debug.patch u_autoconf-Don-t-modify-CFLAGS-in-configure-scripts.patch Avoid debug messages being printed out at runtime (bsc#988411). ==== gnome-packagekit ==== - Installation of local files has been removed from gpk, avoid registration of bad rpm mime handler. See boo#941862, bgo#766896 ==== gnome-session ==== Subpackages: gnome-session-core gnome-session-default-session - Add gnome-session-logging-to-systemd-journal-configurable.patch: Add an autoconf switch to control if the logs of gnome-session and its child processes should be sent to systemd journal or to the legacy ~/.xsession-errors-$DISPLAY when disabled (bsc#979498, bgo#768982). - For SLE, disable logging to systemd journal: pass - -disable-systemd-journal to configure. - Replace gnome-common BuildRequires with autoconf: this is sufficient to bootstrap gnome-session. - Unconditionally call autoconf, as the newly added patch touches the build system. ==== gnome-terminal ==== Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal - Add gnome-terminal-notebook-avoid-crash-on-tab-DND.patch and gnome-terminal-profile-editor-initialize-palette.patch: Two cherrypicked bugfix commits from upstream stable branch (bgo#768850, bgo#769161, boo#980474). - Update gnome-terminal-resize-fix.patch with latest revision of the patches, still not accepted upstream (bgo#760944 bsc#987859). ==== groff ==== - Add patch for bnc#989903 and move all scripts from libdir to libexecdir ==== groff-full ==== Subpackages: gxditview - Add patch for bnc#989903 and move all scripts from libdir to libexecdir ==== guile ==== Version update (2.0.11 -> 2.0.12) Subpackages: guile-modules-2_0 libguile-2_0-22 - updated to 2.0.12: * * FFI: Add support for functions that set 'errno' * * The #!r6rs directive now influences read syntax * * 'read' now accepts "\(" as equivalent to "(" * * SRFI-14 character data set upgraded to Unicode 8.0.0 * * SRFI-19 table of leap seconds updated * * 'string-hash', 'read-string', and 'write' have been optimized * * GOOPS bug fix for inherited accessor methods for complete list of changes see NEWS - refreshed patches - add key of Andy Wingo to guile.keyring ==== gvfs ==== Subpackages: gvfs-backend-afc gvfs-backends gvfs-fuse - Fix supplements on gvfs-backend-samba, since we don't have libsmbclient provides anymore (bsc#988921). ==== installation-images-openSUSE ==== Version update (14.261 -> 14.263) - adjust to recent package changes - 14.263 - fix hyperv_fb.ko location (bsc#989351) - adjust powerpc-utils paths (bsc#989706) - 14.262 ==== json-c ==== Version update (0.12 -> 0.12.1) Subpackages: libjson-c2 libjson-c2-32bit - Update to upstream release 0.12.1 - Removed upstream fixed json-c-0.12-unused_variable_size.patch - Added fix-set-but-not-used.patch ==== kbd ==== Version update (2.0.2 -> 2.0.3) Subpackages: kbd-legacy - Version update to 2.0.3: * Various small updates - Obsolete merged patch: * kbd-1.15.5-br-abnt2-slash-question.patch - Quickly run over with spec-cleaner - Remove arch check for alpha and other unused platforms - Drop kbd.fillup.nonpc as it should not be needed nowdays - Fix data/keymaps/i386/querty/br-abnt2.map (boo#984958, kbd-1.15.5-br-abnt2-slash-question.patch) - Fix missing dependency on coreutils for initrd macros (boo#958562) - Call missing initrd macro at postun (boo#958562) - Rename conflicting legacy keymaps: * dvorak/no.map -> dvorak/no-dvorak.map * fgGIod/trf.map -> fgGIod/trf-fgGIod.map * olpc/pt.map -> olpc/pt-olpc.map * qwerty/cz.map -> qwerty/cz-qwerty.map - i386/qwerty/sr-latin links to sr-cy - add compose rules to cz layout (rh#1181581) - genmap4systemd.sh: use 'abnt2' model for 'br' layouts, 'jp106' model for 'jp' layouts and 'microsoftpro' for anything else (instead of 'pc105' before) (FATE#318426) - added genmap4systemd.sh tool, which generates entries for systemd's /usr/share/systemd/kbd-model-map table from xkeyboard-config converted keymaps; entries are written to /usr/share/systemd/kbd-model-map.xkb-generated, so these can easily be added to /usr/share/systemd/kbd-model-map by systemd package (FATE#318426) - Include xkb layouts from xkeyboard-config converted to console keymaps, (FATE#318426) * Rename Finnish xkb converted layout * Add xkb and legacy keymaps subdirs to loadkyes search path (kbd-1.15.5-loadkeys-search-path.patch), remove symlinks, Don't convert layouts that can't input ASCII, * Original keymaps moved to legacy dir, created symlinks to xkb keymaps - For the previos change to wok, we need to buildrequire suse-module-tools to get the initrd rpm macros. - Regenerate the initrd if this package changes as it is included there for early console setup. - Convert changelog to utf8 - fix bashisms in scripts - add patches: * kbd-2.0.2-fix-bashisms.patch - update patches: * kbd-1.15.2-unicode_scripts.patch - euro{,1,2}.map now produces correct unicode for Euro sign [bnc#360993] - added patches: * kbd-2.0.2-euro-unicode.patch - port dumpkeys-C-opt.patch - modified patches: * kbd-1.15.2-dumpkeys-C-opt.patch - kbd-2.0.2-doshell-reference.patch: drop doshell reference from openvt.1 man page [bnc#675317] - added /usr/bin/kbd, a simple userfriedly keymap switcher. From https://github.com/jnweiger/kbd-wrapper - drop kbd-1.15.2-chvt-userwait.patch [bnc#830805] (internal) (--userwait seems to not be used anywhere) - remove testutf8 stub (2009: testutf8 will be soon removed completely, it's kept only not to break /etc/profile currently) - Update to version 2.0.2: libkeymap: fix kmap on big-endian machines Add functions to get the total number of elements Add functions to convert ksyms eurlatgr - new Linux console font Hide syms array Add information about the total number of elements Add function to obtain items from the diacritical table Change the API for working with the diacritical table Change API for working with list of functions Add functions to check diacr/func existance Add pancyrillic font po: Update translations (from translationproject.org) vlock: implement PAM account and password management vlock: rename ERROR_TIMEOUT macro to LONG_DELAY vlock: introduce short delays after non-fatal PAM errors Added Latvian keymap (changelog taken from http://lists.altlinux.org/pipermail/kbd/2014-July/000476.html) - add kbd-2.0.2-comment-typo-qwerty.patch [bnc#825385] - SuSE -> SUSE [bnc#889035] - No longer recommend fbset: the package does no longer exist in openSUSE since late 2013. - Update to version 2.0.1: * Disable arch-specific tests. * Fix regression in processing alt_is_meta keyword. * Rename Bepo keymaps: dvorak-fr-bepo.map -> fr-bepo-latin9.map dvorak-fr-bepo-utf8.map -> fr-bepo.map. - Deleted kbd-1.15.2-dumpkeys-ppc.patch as obsolete: http://lists.opensuse.org/opensuse-factory/2013-08/msg00347.html - gcc 4.6+ became required to prevent compilling error: "expected declaration specifiers or '...' before 'va_list'". - Update to version 2.0.0: * Add bepo keyboard layout; * Add libkeymap; * The loadkeys and dumpkeys always use the libkeymap. - Updated patches because of docs moved: * kbd-1.15.2-chvt-userwait.patch * kbd-1.15.2-docu-X11R6-xorg.patch - Disabled patches because of dumpkeys rewritten: * kbd-1.15.2-dumpkeys-C-opt.patch * kbd-1.15.2-dumpkeys-ppc.patch - disable vlock build, which is in vlock package. - Remove sysvinit support, init scripts from this package are masked by systemd and only serve for confusion. - sysconfig.keyboard: Updated description of KBD_NUMLOCK (bnc#746595#c74). - Update to version 1.15.5: * Fix msgstr in es.po and update translations. * Update changelog and increase version (1.15.5wip). * po: Update vi.po from translationproject.org. * Fix various vlock build errors. * Fix loadkeys.analyze lex handling. * Ignore config.cache files. - Applied into upstream kbd-1.15.3-po-es.patch was deleted. - Update to version 1.15.4: * vlock: New utility which locks one or more virtual consoles. * loadkeys: Change the handling of -C option. * loadkeys: Fix -d option. * Add dvorak-es keymap. * Add dvorak-uk keymap (Joe MacMahon). * Add dvorak-sv-a1 and dvorak-sv-a5 keymaps. * Add ruwin_alt_sh-UTF-8 keymap (Dmitriy Perlow). - kbd-1.15.3-po-es.patch was fixed. - Applied into upstream patches were deleted. - Fixed up via spec-cleaner. - Clean-section was removed. - Macro warnings were fixed via '%' deleting. - Place binaries into /usr tree (UsrMerge project) - Enable resizecons on x86_64 (bnc#737631). - add automake as buildrequire to avoid implicit dependency - fix loadkeys -C option (bnc#720486) - cross-build fix: use %__cc, %configure macros - configure: explicitly set bindir - Update to version 1.15.3: * kbdinfo: New utility to obtain information about console. * setvtrgb: New utility to set the virtual terminal RGB colors. * loadkeys: Add LOADKEYS_KEYMAP_PATH env variable. * loadkeys: Fix some memory leaks. * loadkeys: Do not set prefer_unicode for iso-8859-1. * loadkeys -a: Switch to ASCII mode. * loadkeys: Fix "compose as usual" for Unicode diacritics. * Add dvorak-ru keymap. * Add LatGrkCyr fonts. - If /usr is located in a separate partition, the locale command fails. - Ignore /var/run/keymap in sinlge user mode otherwise key mapping could be wrong if booted cold into sinlge user mode - Tag boot script as interactive as systemd uses it - use /etc/defkeymap.name if possible to avoid find call - move some code that is only needed for start to actual start section (bnc#463801) - Fixed symlink vulnerability of the init script (bnc#663898, CVE-2011-0460). - build optional binaries (bnc#637453) - update to 1.15.2 * Use automake to build translations. * loadkeys -u: Switch to Unicode mode, if necessary * Never handle plain ASCII characters as Unicode * Enable UNUMBERs in compose definitions * Use automake. * Add --enable-strip configure option. * unicode_start: Without any arguments utility will only set unicode mode. * Add qwerty/cz.map keymap. - remove upstreamed and obsolete patches (-remove-kbio, -Makefile, - 2d01989f, -no-strip) - retain original behavior of unicode_start script - remove manpages for programs that are not installed - added dummy keyboard mappings for chinese/taiwanese (bnc #603950) - add lt.std map (bnc#569554) - respect KBD_TTY="" set in sysconfig (bnc#405658) - Add kbd-1.12-chvt-userwait.patch, taken from Gentoo to add a - -userwait option to chvt. This can be used to avoid situation where chvt can hang forever waiting for the vt switch: the wait is done in userspace, and has a timeout of 5 seconds. (bnc#575123) - remove inclusion of kbio.h on SPARC, this has been removed in the kernel - added guess_encoding, an old script of mine, that tests if a tty is in utf8 mode or not. (Also helpful with text files in unknown encoding.) - do not include '.' in the repacked tarball (bnc#544975). - Add real Tajik keymap. - remove slovak keymaps from suse-add.tar.bz2 that are already upstream. - added symlink tj.map.gz -> ruwin_alt-UTF-8.map.gz until there is a real Tajik map. - remove testutf8 (replace with a script that returns 2 in any terminal), it's a hack that has a number of problems (bnc#436378, bnc#334889). Users who don't want utf8 should adjust their locale setting accordingly. - do not load any usb drivers, udev takes care of this (bnc#482316). ==== kiwi ==== Version update (7.03.77 -> 7.03.82) Subpackages: kiwi-desc-isoboot kiwi-desc-netboot kiwi-desc-oemboot kiwi-desc-vmxboot kiwi-doc kiwi-media-requires kiwi-pxeboot kiwi-templates kiwi-tools - v7.03.82 released - Fixed changelog generator - v7.03.81 released - Don't ask to start recovery in unattended mode - Fixed __checkSelectedBootLoaderIncluded check When explicitly specifying in config.xml the version of grub to be used, the __checkSelectedBootLoaderIncluded() function in KIWIRuntimeChecker.pm doesn't work properly. This issue is that the comparison is done against "grub=" which will never match "grub" - insserv is not a chkconfig - v7.03.80 released - prefer newer overlayfs, otherwise mount succeeds in compat mode but live image fail to boot/exhibit weird symptoms - prefer newer overlayfs, otherwise mount succeeds in compat mode but live image fail to boot/exhibit weird symptoms - v7.03.79 released - Message commit for bug reference Fixup of VMware disk tag references (bnc#988087) - v7.03.78 released ==== kmod ==== Version update (22 -> 23) Subpackages: kmod-compat libkmod2 - Update to new upstream release 23 * Don't add comment to modules.devname if it would otherwise be empty. * Ignore .TOC. symbols in depmod parsing. * Fix crash on modinfo while checking for available signature of unknown type. * Teach modinfo about PKCS#7 module signatures. - Drop depmod-Ignore_PowerPC64_ABIv2_.TOC.symbol.patch (merged), 0001-libkmod-Handle-long-lines-in-proc-modules.patch (merged) ==== konversation ==== Version update (1.6 -> 1.6.1) Subpackages: konversation-lang - Update to 1.6.1: * Added an option to allow a server to bypass the global proxy settings. * Fixed a crash when changing the Qt style engine. * Fixed a crash when running "/exec -showpath" with no script name. * Fixed notification events for DCC Chats not working. * Fixed crash when closing the DCC Status tab. * Fixed crashes with the ISO-2022-JP encoding. * Fixed the "Close All Open Queries" action not working properly. * Minor UI polish, e.g. the margin under the nicklist when the Quick Button grid is disabled or emtpy. * Fixed missing icons on the Next/Previous buttons in the search bar. * On screens to small to fit Konversation's configuration dialog, the dialog will now show scrollbars around its content instead of the dialog buttons being forced off-screen. * Konversation now sets its window icon in a way that causes a hi-res icon to be available in window switchers such as Plasma's Alt+Tab UI. * Removed the spell checking language submenu from the context menu of the input bar - KDE Frameworks 5 now contains this upstream, leading to two submenus. * Fixed installing the Oxygen nickname list theme. * Fixed changes to the tab bar font's font weight being applied to the chat text area. * Minor changes to tooltips to support the Wayland windowing system better. * Fixed the Windows build. * Added KCrash (DrKonqi) support. * Improved support for the KDE Kiosk framework, fixing checks for the "shell_command" privilege. * Added AppData metadata for app stores. ==== libarchive ==== Subpackages: bsdtar libarchive-devel libarchive13 - make bsdtar require a matching libarchive version to avoid missing symbol errors ==== libassuan ==== Version update (2.4.2 -> 2.4.3) Subpackages: libassuan-devel libassuan0 - libassuan 2.4.3: * Allow socket redirection with assuan_socket_connect. * Speedup spawning programs on Linux * Fix minor memory leaks ==== libburn ==== Version update (1.4.0 -> 1.4.2.pl01) - Update to 1.4.2.pl01: cdrskin: * Bug fix: cdrskin "failed to attach fifo" when burning from stdin. Regression of 1.4.2, rev 5522. From 1.4.2: libburn: * Bug fix: burn_disc_get_media_id() returned BD identifiers 2 chars too long * Bug fix: burn_disc_get_multi_caps() returned 2048 bytes too many in caps.start_range_high * Bug fix: Media summary session count of blank and closed media was short by 1 * Bug fix: Endless loop if transport error occurs while waiting for drive ready * New API calls burn_drive_get_serial_no() and burn_drive_get_media_sno() * Result of a Coverity audit: 40+ code changes, but no easy-to-trigger bugs cdrskin: * New -toc line "Drive id" tells the drive's individual serial number - Update to 1.4.0: libburn: * Bug fix: Wrong read access to memory. cdrskin: * Bug fix: Double free with cdrskin -vvv. Introduced with rev 5065, version 1.3.1. - Update to 1.3.8 * Bug fix: Wrong stack usage caused SIGBUS on sparc when compiled by gcc -O2 * Bug fix: Minimum drive buffer fill was measured by cdrskin before the buffer could get full * Bug fix: A failed MMC BLANK command did not cause error indication by libburn * Bug fix: A final fsync(2) was performed with stdio drives, even if not desired - Update to version 1.3.6.pl01: libburn: * Bug fix: Compilation warning for unsupported systems mutated into an error. This is a regression introduced by release 1.3.6. From version 1.3.6: * New system adapter for NetBSD * Bug fix: CD TAO with multiple tracks or add-on sessions could cause a buffer overrun by one 0-byte. - Split libburn from libburnia and make it a separate package. - Added cdrskin as a subpackage. - update libisofs to version 1.3.4 * Giving sort weight 2 as default to El Torito boot images * Encoding HFS+ names in UTF-16 rather than UCS-2. - update libburn to version 1.3.4 * Bug fix: Drive error reports were ignored during blanking and formatting * Bug fix: Drive LG BH16NS40 stalls on inspection of unformatted DVD+RW * New API call burn_disc_pretend_full_uncond() - update libisoburn to version 1.3.4 * Bug fix: Command -blank "as_needed" formatted blank BD-R. * Bug fix: -as mkisofs option -log-file put the log file into the image * Bug fix: -cut_out did not add x-permission to r-permission of directory * Bug fix: Command -zisofs did not accept all options emitted by - status -zisofs * Bug fix: -blank force:... failed on appendable or closed media * New command -read_speed * New -close mode "as_needed", new -as cdrecord option - -multi_if_possible * New -alter_date types: a-c , m-c , b-c , c - add rpmlintrc to remove false-positive dependency error - update to 1.3.2: * cdrskin has acquired the ability to copy audio tracks to .wav files * cdrskin can extract CD-TEXT in a form which is readable for humans and for cdrskin itself - Explicitly list libattr-devel as BuildRequires - Remove redundant %clean section. - updated libisofs to version 1.3.0 * Bug fix: GPT header CRC was computed from all 512 bytes rather than from 92. * Bug fix: Unspecified Expiration Time and Effective Time of ISO volume was represented by 0-bytes rather than ASCII '0' digits. * Bug fix: Reserved and unused fields of APM entries were not zeroed. * Bug fix: The protective MBR partition for GPT started at block 0 instead of 1. * New option bits with el_torito_set_isolinux_options() and iso_write_opts_set_system_area() to control GRUB2 patching of boot image and MBR. * New API calls iso_image_set_sparc_core() and iso_image_get_sparc_core(). - updated libburn to version 1.3.0 * Bug fix: Full formatting of BD-RE used certification regardless of drive capabilities * Bug fix: DVD+R with damaged TOC were reported by -minfo with wrong end address - updated libisoburn to version 1.3.0 * Bug fix: Disk paths with components '.' or '..' could be mistaken for directories. * Bug fix: -as mkisofs -print-size failed with -isohybrid-mbr and a single boot image. Regression introduced by libisoburn-1.2.8. * Bug fix: -as mkisofs -path-list did not switch to --no-emul-toc by default. * Bug fix: Unspecified Expiration Time and Effective Time of ISO volume was represented by 0-bytes rather than ASCII '0' digits. * Bug fix: Reserved and unused fields of APM entries were not zeroed. * Bug fix: GPT header CRC was computed from all 512 bytes rather than from 92. * Bug fix: The protective MBR partition for GPT started at block 0 instead of 1. * New -boot_image bootspecs grub2_mbr= and grub2_boot_info= * New -boot_image bootspec grub2_sparc_core= * New -as mkisofs options --grub2-mbr , --grub2-boot-info , - -grub2-sparc-core * New -hardlinks mode "lsl_count" / "no_lsl_count" - updated libburn to version 1.2.8 * New cdrskin option --list_speeds * -toc and -minfo now report about tracks in the incomplete session * New API call burn_disc_get_incomplete_sessions() * New burn_toc_entry component .track_status_bits * Bug fix: All CD tracks were reported with the sizes of the tracks in the first session. Regression introduced with version 1.2.0 (rev 4552). * Bug fix: On some drives the request for minimum speed yielded maximum speed * New cdrskin option --no_load * Bug fix: Speed setting had no effect on BD media * New API call burn_read_audio() * New API call burn_list_sev_texts() * New API call burn_write_opts_set_obs_pad(), ./configure - -enable-dvd-obs-pad * New cdrskin option --obs_pad * Bug fix: CD SAO sessions with data tracks started by an audio pause * Bug fix: CD tracks were perceived 2 sectors too short. Nice with TAO, bad with SAO. * Bug fix: cdrskin SIGSEGV if track source was added when no drive was available - updated libisoburn to version 1.2.8 * Bug fix: -tell_media_space altered the pointers to MD5 of data files which stem from a previous session. This produced false mismatches with -check_md5_r. * Bug fix: CD tracks were reported with the sizes of the tracks in the first session. * Bug fix: -check_media use=outdev sector_map= stored TOC of input drive * Bug fix: -hide hfsplus and -as mkisofs -hide-hfsplus had no effect. Thanks to Davy Ho. * Bug fix: ./configure did not abort if libburn.h or libisofs.h were missing * New command -move * New -as mkisofs options -eltorito-id , -eltorito-selcrit * Bug fix: SIGSEGV by uninitialized local variable with - check_media patch_lba0="on". Regression by version 1.0.6 * Bug fix: -partition_offset 16 kept -isohybrid-gpt-basdat from writing MBR partition table entries of type 0xef * Bug fix: -rollback did not work if indev and outdev were empty * New API calls Xorriso_parse_line() and Xorriso__dispose_words() * New API calls Xorriso_fetch_outlists() and Xorriso_peek_outlists() * New API call Xorriso_start_msg_watcher() * New API calls Xorriso__severity_cmp() and Xorriso__severity_list() * New API calls Xorriso_sieve_add_filter, * Xorriso_sieve_get_result, Xorriso_sieve_clear_results, Xorriso_sieve_dispose, Xorriso_sieve_big * New -boot_image partition_cyl_align mode "all" * New -blank mode prefix "force:" * New -osirrox settings "blocked" and "unblock" * New command -lns for creating symbolic links * New command -toc_of * New command -msg_op * New command -launch_frontend * Proof-of-concept of a GUI frontend program: xorriso-tcltk written in Tcl/Tk. * New API call isoburn_igopt_set_hfsp_serial_number() * New API calls isoburn_igopt_set_prep_partition, isoburn_igopt_set_efi_bootp * New API calls isoburn_igopt_set_hfsp_block_size() and isoburn_igopt_get_hfsp_block_size() * New -check_media option async_chunks= * New xorriso command -write_type * New xorriso command -rockridge * New xorriso command -hfsplus * New -find tests -has_hfs_crtp, has_hfs_bless * New -find actions set/get_hfs_crtp, set/get_hfs_bless * New -find test -disk_path * New -boot_image bootspec hfsplus_serial= * New -boot_image bootspecs hfsplus_block_size= and apm_block_size= * New -boot_image bootspecs efi_boot_part, prep_boot_part, chrp_boot_part * Command -hide allows hiding in HFS+ filesystem * New -as cdrecord options -tao -sao -dao * New -as mkisofs option -log-file * New -as mkisofs option --norock * New -as mkisofs option -hfsplus * New -as mkisofs option -hfsplus-file-creator-type * New -as mkisofs options -hfs-bless and -hfs-bless-by * New -as mkisofs option -hfsplus-serial-no * New -as mkisofs options -hfsplus-block-size and -apm-block-size * New -as mkisofs option -hide-hfsplus, -hide-hfsplus-list * New -as mkisofs options -prep-boot-part, -efi-boot-part, - chrp-boot-part * New -as mkisofs options -isohybrid-gpt-basdat, - isohybrid-gpt-hfsplus, -isohybrid-apm-hfsplus * Bug fix: Memory corruption when reading bootable image that was truncated * Bug fix: -update deleted MD5 of files of which only attributes had changed - updated libisofs to version 1.2.8 * New API call iso_image_get_pvd_times(). * Bug fix: Image size prediction altered the pointers to MD5 of data files which stem from a previous session. * Bug fix: Reading damaged Rock Ridge data could cause SIGSEGV by NULL. * Bug fix: Appended partitions did not obey cylinder alignment * Bug fix: Non-zero partition offset zeroized the MBR copies of GPT partition table entries * Bug fix: Isohybrid production without any boot image led to SIGSEGV by NULL * Bug fix: Prevented a memory fault when reading damaged Rock Ridge information * Bug fix: Memory corruption when reading bootable image that was truncated before the storage location of the boot catalog * Bug fix: Symbol iso_fs_global_id was missing in libisofs.ver. * Bug fix: Volume descriptors of Joliet and ISO 9660:1999 beared non-zero Effective Date, involuntarily restricting the early end of their lifetime. * Bug fix: File Structure Version field of ISO 9660:1999 Enhanced Volume Descriptor was 1 instead of 2. * Bug fix: The separator dot of Joliet names was byte swapped on big-endian machines. * Bug fix: Joliet name comparison was done as signed bytes and thus produced a peculiar sorting order. * Bug fix: Partition cylinder alignment worked only if both, El Torito and application provided system area data were present. * New API function iso_write_opts_set_hfsplus * New API functions iso_hfsplus_xinfo_func(), iso_hfsplus_xinfo_new(), and new struct iso_hfsplus_xinfo_data. * New API call iso_write_opts_set_hfsp_serial_number() * New API calls iso_image_hfsplus_bless and iso_image_hfsplus_get_blessed(), and new public enum IsoHfsplusBlessings. * New API calls so_write_opts_set_prep_img(), iso_write_opts_set_efi_bootp() * New API call iso_write_opts_set_hfsp_block_size() * New API call iso_tree_resolve_symlink() * New system area sub type CHRP with iso_write_opts_set_system_area() * New option bits 2 to 8 for GPT and APM with el_torito_set_isolinux_options() * New flag bit with iso_node_set_attrs() to protect namespace "isofs" * New IsoHideNodeFlag value LIBISO_HIDE_ON_HFSPLUS - added new subpackage libburnia-tools-x11 for GUI tools so that libburnia-tools does not depend on X11 - updated libburn to version 1.2.2 * Small internal refinements - updated libisofs to version 1.2.2 * New API calls isoburn_get_attached_start_lba(), isoburn_attach_start_lba() * New API calls isoburn_igopt_set_rr_reloc(), isoburn_igopt_get_rr_reloc() * New API calls isoburn_ropt_set_data_cache(), isoburn_ropt_get_data_cache() * New commands -x, -list_arg_sorting * New command -rr_reloc_dir * New command -data_cache_size * New -as mkisofs option -rr_reloc, implemented option -hide-rr-moved * Now ignoring -as mkisofs -no-split-symlink-components -no-split-symlink-fields * Bug fix: -osirrox on:sort_lba_on -extract from / restored nearly nothing * Bug fix: -as mkisofs without -graft-points could not handle names with "=" * Bug fix: Relaxation options joliet_rec_mtime and iso1999_rec_mtime had wrong values - updated libisoburn to version 1.2.2 * New API call iso_write_opts_set_rr_reloc() * Bug fix: Directory name mapping to ISO level 1 was too liberal if iso_write_opts_set_allow_dir_id_ext() was enabled * New API call iso_write_opts_set_allow_7bit_ascii() * Improved standards compliance for ISO level 1 names with partly relaxed constraints. - updated libburn to version 1.2.0 * Bug fix: cdrskin produced a memory fault if interupted before writing began * Bug fix: Solaris adapter mishandled write commands which failed on first try * Bug fix: Interrupting libburn while drive tray is loading led to endless loop * Bug fix: Progress report with blanking and formatting could be bogus * New API calls burn_disc_get_leadin_text(), burn_write_opts_set_leadin_text() * New API calls for composing CD-TEXT, see doc/cdtext.txt * New API call burn_session_by_cue_file() for reading CDRWIN .cue files * New API call burn_track_set_isrc_string() * New API calls burn_track_set_index(), burn_track_clear_indice() * New API calls burn_session_set_start_tno(), burn_session_get_start_tno() * New API calls burn_track_set_pregap_size(), burn_track_set_postgap_size() * Implemented cdrskin option textfile= * Implemented cdrskin option combination -vv -toc for cdtext.dat production * Implemented cdrskin options mcn= and isrc= * Implemented cdrskin options -scms -copy -nocopy -preemp -nopreemp * Implemented cdrskin option index= * Partly implemented cdrskin options cuefile= and -text * New cdrskin option input_sheet_v07t= for CD-TEXT definition * New cdrskin options --cdtext_dummy and --cdtext_verbose * New cdrskin options --four_channel --two_channel * New cdrskin option cd_start_tno= * New cdrskin options sao_pregap=, sao_postgap= - updated libisofs to version 1.2.0 * Bug fix: mkisofs emulation did not record mtime in ECMA-119 directories * Bug fix: Program abort while drive tray is loading led to endless loop * Bug fix: Solaris adapter mishandled write commands which failed on first try * Bug fix: libisoburn.ver had a duplicate function entry * New relaxations isoburn_igopt_joliet_rec_mtime, isoburn_igopt_iso1999_rec_mtime * Made -compliance "rec_mtime" default for xorriso - updated libisoburn to version 1.2.0 * Extended influence of iso_write_opts_set_dir_rec_mtime() to Joliet and ISO 9660:1999. - update libburn to version 1.1.4 * New API call burn_lookup_device_link() * New API call burn_disc_get_phys_format_info() * New cdrskin option --device_links * New API call burn_disc_next_track_is_damaged() * New API call burn_disc_close_damaged() * Burning DVD-R DAO with 2 kB size granularity rather than 32 kB * New API call burn_allow_drive_role_4() * Bugfixes - update libisofs to version 1.1.4 * New API call iso_image_get_bootcat() * New API call iso_write_opts_set_joliet_long_names() * New error codes for oversized file addresses * New no_md5 value 2 for API call iso_read_opts_set_no_md5() * New option bits 8 and 9 with iso_write_opts_set_system_area() * Bugfixes - update libisoburn to version 1.1.4 * New option -device_links * Enabled extraction of the boot catalog file to disk filesystem * New option -list_speeds * New option -signal_handling * New option -close_damaged * New API call isoburn_set_truncate() * New relax option isoburn_igopt_joliet_long_names * New option -early_stdio_test * New options -print_info and -print_mark * New -compliance option joliet_long_names * -as mkisofs option -joliet-long is now fully functional * Burning DVD-R DAO with 2 kB size granularity rather than 32 kB * New isoburn_ropt_set_extensions() option isoburn_ropt_nomd5tag * New -padding modes "included" and "appended" * New bootspec partition_cyl_align=, new -as mkisofs option -partition_cyl_align * New -as mkisofs and -as cdrecord option --no_rc * Own man page and info document for xorrisofs * Bugfixes - do not use source services and recompress any more as per discussion on opensuse-factory@ - updated libburn to 1.0.2.pl00 * Improved recognition of non-seekable stdio pseudo-drives * Allowed umask to create stdio-drive files with rw-permissions for all * cdrskin now refuses to burn if the foreseeable size exceeds media capacity - updated libisoburn to 1.0.2.pl00 * New API calls isoburn_igopt_set_extensions(), isoburn_igopt_old_empty, isoburn_igopt_set_untranslated_name_len(), isoburn_igopt_set_disc_label(), isoburn_igopt_get_disc_label(), isoburn_ropt_set_displacement(), isoburn_ropt_get_displacement() * xorriso novelties: * New options -clone, -cp_clone, -displacement * New -find actions update_merge, rm_merge, clear_merge * New -as mkisofs options -max-iso9660-filenames, --old-empty, - root, -old-root, --old-root-no-md5, --old-root-no-ino, - -old-root-dev, -untranslated_name_len, -joliet-long, - iso-level 4, -disallow_dir_id_ext, -sparc-boot, -sparc-label * Default -abort_on value is now "FAILURE" with batch and "NEVER" with dialog * New -compliance options untranslated_names, untranslated_name_len=, iso_9660_1999, iso_9660_level=number, allow_dir_id_ext * Disabled TOC emulation with -as mkisofs, may be re-enabled by - -emul-toc * New bootspec sparc_label= * Bufixes - updated libisofs to 1.0.2 * New API calls iso_tree_clone(), iso_stream_clone, iso_node_xinfo_make_clonable(), iso_node_xinfo_get_cloner(), iso_node_get_next_xinfo(), iso_node_remove_all_xinfo(), iso_node_remove_tree(), iso_write_opts_set_old_empty(), iso_write_opts_set_untranslated_name_len(), iso_write_opts_set_allow_dir_id_ext(), iso_memory_stream_new(), iso_write_opts_set_disc_label(), iso_write_opts_set_will_cancel() * New IsoFileSourceIface version 2 with method clone_src() * New IsoStreamIface version 4 with method clone_stream() * New public function prototype iso_node_xinfo_cloner * New public iso_node_xinfo_cloner instance aaip_xinfo_cloner() * new system area type 3 = SUN Disk Label for booting SUN SPARC systems * New error reply code ISO_DISPLACE_ROLLOVER for external data sources with address displacement - improved descriptions/summaries - more precise filelist - corrected group of library subpackages - updated libburn to 0.9.0.pl00 * Regression fix: SCSI reply data logging was disabled in release 0.8.6 - updated libisofs to 0.6.40 * New API call iso_write_opts_set_disc_label(), new system area type 3 = SUN Disk Label for booting SUN SPARC systems. * New API call iso_write_opts_set_will_cancel() avoids start of write thread and is to be used to inquire the future image size. * New error reply code ISO_DISPLACE_ROLLOVER for external data sources with address displacement. - updated libburn to 0.8.8.pl00 * New API call burn_offst_source_new() * New API call burn_disc_get_bd_spare_info() - updated libisoburn to 0.6.4.pl00 * New API call isoburn_libjte_req() * New API calls isoburn_igopt_attach_jte() and isoburn_igopt_detach_jte() * New API call isoburn_igopt_set_tail_blocks() * New API call isoburn_libjte_req() xorriso novelties: * New option -jigdo * New -as mkisofs options -jigdo-* and -md5-list as of genisoimage * New -as mkisofs options -checksum_algorithm_iso, -checksum_algorithm_template * New bootspecs mips_path= and mipsel_path= for Debian MIPS releases * New -as mkisofs options -mips-boot and -mipsel-boot * New option -append_partition, -as mkisofs -append_partition - updated libisofs to 0.6.38 * New API calls iso_write_opts_attach_jte() and iso_write_opts_detach_jte() allow to use of libjte for jigdo production. * New API call iso_write_opts_set_tail_blocks() for tail padding inside ISO image. * New API call iso_image_generator_is_running() to learn when the write thread is done. * New API calls iso_image_add_mips_boot_file(), iso_image_get_mips_boot_files(), iso_image_give_up_mips_boot(). * New API call iso_write_opts_set_partition_img() for appending e.g. a small empty FAT12 filesystem which may be used on USB stick. - updated libburn to 0.8.6.pl00 * Lifted test reservation on DVD-R DL media. * Hiding all non-API symbols from the linker by use of - -version-script * Now with history of release notes in ./ChangeLog file. - updated libisoburn to 0.6.2.pl00 * New API function isoburn_igopt_set_part_offset() * Hiding all non-API symbols from the linker by use of - -version-script * Now with history of release notes in ./ChangeLog file. * Bug fix: Regression with -hardlinks and -compliance old_rr, 0.4.2, Aug 2009 * New option -preparer_id, -as mkisofs options -p and -preparer * New -boot_image specifier emul_type=none|hard_disk|floppy * New boot_image boot specs partition_offset,partition_hd_cyl, partition_sec_hd * Made behavior of -as mkisofs with unknown options more similar to original * New -as mkisofs option -hard-disk-boot, enabled -b without - no-emul-boot * New -as mkisofs option -e from Fedora genisoimage * New -as mkisofs options -partition_offset,-partition_hd_cyl, - partition_sec_hd - updated libisofs to 0.6.36 * Can produce ISO images which bear a partiton 1 with non-zero start address. They can be mounted from USB stick via the main device file (e.g. /dev/sdb) as well as via the partition device file (e.g. /dev/sdb1). - updated libburn to 0.8.4.pl00 * General POSIX system adapters ignore SIGWINCH and SIGURG if defined * Allowed 64 kB max output buffer size on all OSes - updated libisoburn to 0.6.0.pl00 * New option -read_mkisofsrc interprets .mkisofsrc To be performed before -as mkisofs. Performed automatically with program alias name "xorrisofs". * Implemented -as mkisofs options -dir-mode, -file-mode, - abstract, -biblio, -copyright * Implemented -as mkisofs options -hide, -hide-joliet, - hide-list, -hide-joliet-list * New -as mkisofs option --boot-catalog-hide * New option -hide, -find action -hide, -find test -hidden * New -boot_image bootspec cat_hidden=on * New options -copright_file , -biblio_file , -abstract_file * New find test -disk_name * Bug fix: -check_media patch_lba0= could install wrong image size * Bug fix: -as mkisofs option -volset was wrongly interpreted like -volid - updated libisofs to 0.6.34 * New API call iso_image_set_boot_catalog_hidden() * New API call iso_node_get_hidden() * New IsoHideNodeFlag bit LIBISO_HIDE_BUT_WRITE * New error code ISO_BOOT_NO_CATALOG * Opportunity to reduce compile line length by including "config.h" - added support for zisofs, ACL and xattr - updated libburn to 0.7.6 - updated libisoburn to 0.5.0 - updated libisofs 0.6.28 - updated libburn to 0.6.6 - updated libisoburn to 0.3.8 - updated libisofs to 0.6.18 ==== libcdr ==== Version update (0.1.2 -> 0.1.3) - Upgrade to upstream version 0.1.3 * Improvements for CMX parsers - More robust parsing using the pointers from CMX header - Implement almost all fills - Implement outline properties - Implement embedded raster images - Implement transparency lens for fills * Some fixes for CDR parsers - Consider fill/outline styles * Tools - Make cmx2* and cdr2* tools handle both CDR and CMX ==== libgpg-error ==== Version update (1.23 -> 1.24) Subpackages: libgpg-error-devel libgpg-error0 libgpg-error0-32bit - update to 1.24: * Fixes a bug in es_fclose_snatch when used used after es_fseek. * Fixes building without thread support. * New configure option --disable-tests. ==== libidn ==== Version update (1.32 -> 1.33) Subpackages: libidn-devel libidn11 libidn11-32bit - libidn 1.33 bnc#990189 CVE-2015-8948 CVE-2016-6262 bnc#990191 CVE-2016-6263: * libidn: Fix out-of-bounds stack read in idna_to_ascii_4i. * idn: Solve out-of-bounds-read when reading one zero byte as input. * libidn: stringprep_utf8_nfkc_normalize reject invalid UTF-8. ==== libisoburn ==== Version update (1.4.0 -> 1.4.2) - Update to 1.4.2: * Bug fix: -backslash_codes "on" did not work outside quotes and with showing "\r" * New API calls isoburn_ropt_set_truncate_mode() isoburn_ropt_get_truncate_mode() * New options with isoburn_ropt_set_extensions(): isoburn_ropt_map_* * New command -modesty_on_drive, new -as cdrecord -immed, minbuf=, modesty_on_drive= * New command -ecma119_map * New command -read_fs * New -boot_image action "replay" * New command -file_name_limit, -as mkisofs -file_name_limit * New -find test -name_limit_blocker. * Result of a Coverity audit: 50+ code changes, but no easy-to-trigger bugs - Update to 1.4.0: * Bug fix: -dev or -indev of medium with non-ISO data caused SIGSEGV by NULL. * New API calls isoburn_igopt_set_appended_as_gpt(), isoburn_igopt_get_appended_as_gpt() * New API call isoburn_igopt_set_part_flag() and libisofs interval reader flags. * New -find action "show_stream_id". * Optional libisofs interval reader with -append_partition and System Area. * New -boot_image bootspec "appended_part_as=", new -as mkisofs option -appended_part_as_gpt. * New -report_system_area formats "cmd" and "as_mkisofs". - Update to 1.3.8 * Bug fix: -boot_image grub grub2_mbr= did not work (but -as mkisofs --grub2-mbr did work) * Bug fix: -boot_image grub2_mbr= prevented -boot_image partition_table=on * Bug fix: libburn: A final fsync(2) was performed with stdio drives, even if -stdio_sync was set to "off". * Bug fix: libburn: Wrong stack usage caused SIGBUS on sparc when compiled by gcc -O2 * Bug fix: -blank force:all on DVD+RW had no effect * Enabled use of libedit as alternative to libreadline * Enabled recording and restoring of extattr on NetBSD * New API calls isoburn_igopt_set_stdio_endsync() and isoburn_igopt_get_stdio_endsync * New bootspecs hppa_*, new -as mkisofs options -hppa-* for HP-PA via PALO * New -find pseudo tests -use_pattern , -or_use_pattern * New -find action report_sections * New command -concat * New commands -report_system_area and -report_el_torito - Update to version 1.3.6.pl01: * Bug fix: Command -status produced FAILURE event if no drive was acquired. This is a regression introduced by release 1.3.6. From version 1.3.6: libisoburn and xorriso: * Bug fix: -list_speeds did not work any more with old CD drives. Regression introduced by release 1.3.4 * Bug fix: -check_media marked untested sectors in sector map as valid * Bug fix: Paths with symbolic links preceding ".." were not interpreted properly * New isoburn_igopt_set_relaxed() relaxation isoburn_igopt_joliet_utf16 * New -compliance rule joliet_utf16, new -as mkisofs option -joliet-utf16 * New -find test -bad_outname, new -find action print_outname * New API call isoburn_conv_name_chars() - Split libisoburn from libburnia and make it a separate package. - Added xorriso as a subpackage. - Added the necessary Provides/Obsoletes entries for libburnia-devel, libburnia-tools and libburnia-tools-x11. - update libisofs to version 1.3.4 * Giving sort weight 2 as default to El Torito boot images * Encoding HFS+ names in UTF-16 rather than UCS-2. - update libburn to version 1.3.4 * Bug fix: Drive error reports were ignored during blanking and formatting * Bug fix: Drive LG BH16NS40 stalls on inspection of unformatted DVD+RW * New API call burn_disc_pretend_full_uncond() - update libisoburn to version 1.3.4 * Bug fix: Command -blank "as_needed" formatted blank BD-R. * Bug fix: -as mkisofs option -log-file put the log file into the image * Bug fix: -cut_out did not add x-permission to r-permission of directory * Bug fix: Command -zisofs did not accept all options emitted by - status -zisofs * Bug fix: -blank force:... failed on appendable or closed media * New command -read_speed * New -close mode "as_needed", new -as cdrecord option - -multi_if_possible * New -alter_date types: a-c , m-c , b-c , c - add rpmlintrc to remove false-positive dependency error - update to 1.3.2: * cdrskin has acquired the ability to copy audio tracks to .wav files * cdrskin can extract CD-TEXT in a form which is readable for humans and for cdrskin itself - Explicitly list libattr-devel as BuildRequires - Remove redundant %clean section. - updated libisofs to version 1.3.0 * Bug fix: GPT header CRC was computed from all 512 bytes rather than from 92. * Bug fix: Unspecified Expiration Time and Effective Time of ISO volume was represented by 0-bytes rather than ASCII '0' digits. * Bug fix: Reserved and unused fields of APM entries were not zeroed. * Bug fix: The protective MBR partition for GPT started at block 0 instead of 1. * New option bits with el_torito_set_isolinux_options() and iso_write_opts_set_system_area() to control GRUB2 patching of boot image and MBR. * New API calls iso_image_set_sparc_core() and iso_image_get_sparc_core(). - updated libburn to version 1.3.0 * Bug fix: Full formatting of BD-RE used certification regardless of drive capabilities * Bug fix: DVD+R with damaged TOC were reported by -minfo with wrong end address - updated libisoburn to version 1.3.0 * Bug fix: Disk paths with components '.' or '..' could be mistaken for directories. * Bug fix: -as mkisofs -print-size failed with -isohybrid-mbr and a single boot image. Regression introduced by libisoburn-1.2.8. * Bug fix: -as mkisofs -path-list did not switch to --no-emul-toc by default. * Bug fix: Unspecified Expiration Time and Effective Time of ISO volume was represented by 0-bytes rather than ASCII '0' digits. * Bug fix: Reserved and unused fields of APM entries were not zeroed. * Bug fix: GPT header CRC was computed from all 512 bytes rather than from 92. * Bug fix: The protective MBR partition for GPT started at block 0 instead of 1. * New -boot_image bootspecs grub2_mbr= and grub2_boot_info= * New -boot_image bootspec grub2_sparc_core= * New -as mkisofs options --grub2-mbr , --grub2-boot-info , - -grub2-sparc-core * New -hardlinks mode "lsl_count" / "no_lsl_count" - updated libburn to version 1.2.8 * New cdrskin option --list_speeds * -toc and -minfo now report about tracks in the incomplete session * New API call burn_disc_get_incomplete_sessions() * New burn_toc_entry component .track_status_bits * Bug fix: All CD tracks were reported with the sizes of the tracks in the first session. Regression introduced with version 1.2.0 (rev 4552). * Bug fix: On some drives the request for minimum speed yielded maximum speed * New cdrskin option --no_load * Bug fix: Speed setting had no effect on BD media * New API call burn_read_audio() * New API call burn_list_sev_texts() * New API call burn_write_opts_set_obs_pad(), ./configure - -enable-dvd-obs-pad * New cdrskin option --obs_pad * Bug fix: CD SAO sessions with data tracks started by an audio pause * Bug fix: CD tracks were perceived 2 sectors too short. Nice with TAO, bad with SAO. * Bug fix: cdrskin SIGSEGV if track source was added when no drive was available - updated libisoburn to version 1.2.8 * Bug fix: -tell_media_space altered the pointers to MD5 of data files which stem from a previous session. This produced false mismatches with -check_md5_r. * Bug fix: CD tracks were reported with the sizes of the tracks in the first session. * Bug fix: -check_media use=outdev sector_map= stored TOC of input drive * Bug fix: -hide hfsplus and -as mkisofs -hide-hfsplus had no effect. Thanks to Davy Ho. * Bug fix: ./configure did not abort if libburn.h or libisofs.h were missing * New command -move * New -as mkisofs options -eltorito-id , -eltorito-selcrit * Bug fix: SIGSEGV by uninitialized local variable with - check_media patch_lba0="on". Regression by version 1.0.6 * Bug fix: -partition_offset 16 kept -isohybrid-gpt-basdat from writing MBR partition table entries of type 0xef * Bug fix: -rollback did not work if indev and outdev were empty * New API calls Xorriso_parse_line() and Xorriso__dispose_words() * New API calls Xorriso_fetch_outlists() and Xorriso_peek_outlists() * New API call Xorriso_start_msg_watcher() * New API calls Xorriso__severity_cmp() and Xorriso__severity_list() * New API calls Xorriso_sieve_add_filter, * Xorriso_sieve_get_result, Xorriso_sieve_clear_results, Xorriso_sieve_dispose, Xorriso_sieve_big * New -boot_image partition_cyl_align mode "all" * New -blank mode prefix "force:" * New -osirrox settings "blocked" and "unblock" * New command -lns for creating symbolic links * New command -toc_of * New command -msg_op * New command -launch_frontend * Proof-of-concept of a GUI frontend program: xorriso-tcltk written in Tcl/Tk. * New API call isoburn_igopt_set_hfsp_serial_number() * New API calls isoburn_igopt_set_prep_partition, isoburn_igopt_set_efi_bootp * New API calls isoburn_igopt_set_hfsp_block_size() and isoburn_igopt_get_hfsp_block_size() * New -check_media option async_chunks= * New xorriso command -write_type * New xorriso command -rockridge * New xorriso command -hfsplus * New -find tests -has_hfs_crtp, has_hfs_bless * New -find actions set/get_hfs_crtp, set/get_hfs_bless * New -find test -disk_path * New -boot_image bootspec hfsplus_serial= * New -boot_image bootspecs hfsplus_block_size= and apm_block_size= * New -boot_image bootspecs efi_boot_part, prep_boot_part, chrp_boot_part * Command -hide allows hiding in HFS+ filesystem * New -as cdrecord options -tao -sao -dao * New -as mkisofs option -log-file * New -as mkisofs option --norock * New -as mkisofs option -hfsplus * New -as mkisofs option -hfsplus-file-creator-type * New -as mkisofs options -hfs-bless and -hfs-bless-by * New -as mkisofs option -hfsplus-serial-no * New -as mkisofs options -hfsplus-block-size and -apm-block-size * New -as mkisofs option -hide-hfsplus, -hide-hfsplus-list * New -as mkisofs options -prep-boot-part, -efi-boot-part, - chrp-boot-part * New -as mkisofs options -isohybrid-gpt-basdat, - isohybrid-gpt-hfsplus, -isohybrid-apm-hfsplus * Bug fix: Memory corruption when reading bootable image that was truncated * Bug fix: -update deleted MD5 of files of which only attributes had changed - updated libisofs to version 1.2.8 * New API call iso_image_get_pvd_times(). * Bug fix: Image size prediction altered the pointers to MD5 of data files which stem from a previous session. * Bug fix: Reading damaged Rock Ridge data could cause SIGSEGV by NULL. * Bug fix: Appended partitions did not obey cylinder alignment * Bug fix: Non-zero partition offset zeroized the MBR copies of GPT partition table entries * Bug fix: Isohybrid production without any boot image led to SIGSEGV by NULL * Bug fix: Prevented a memory fault when reading damaged Rock Ridge information * Bug fix: Memory corruption when reading bootable image that was truncated before the storage location of the boot catalog * Bug fix: Symbol iso_fs_global_id was missing in libisofs.ver. * Bug fix: Volume descriptors of Joliet and ISO 9660:1999 beared non-zero Effective Date, involuntarily restricting the early end of their lifetime. * Bug fix: File Structure Version field of ISO 9660:1999 Enhanced Volume Descriptor was 1 instead of 2. * Bug fix: The separator dot of Joliet names was byte swapped on big-endian machines. * Bug fix: Joliet name comparison was done as signed bytes and thus produced a peculiar sorting order. * Bug fix: Partition cylinder alignment worked only if both, El Torito and application provided system area data were present. * New API function iso_write_opts_set_hfsplus * New API functions iso_hfsplus_xinfo_func(), iso_hfsplus_xinfo_new(), and new struct iso_hfsplus_xinfo_data. * New API call iso_write_opts_set_hfsp_serial_number() * New API calls iso_image_hfsplus_bless and iso_image_hfsplus_get_blessed(), and new public enum IsoHfsplusBlessings. * New API calls so_write_opts_set_prep_img(), iso_write_opts_set_efi_bootp() * New API call iso_write_opts_set_hfsp_block_size() * New API call iso_tree_resolve_symlink() * New system area sub type CHRP with iso_write_opts_set_system_area() * New option bits 2 to 8 for GPT and APM with el_torito_set_isolinux_options() * New flag bit with iso_node_set_attrs() to protect namespace "isofs" * New IsoHideNodeFlag value LIBISO_HIDE_ON_HFSPLUS - added new subpackage libburnia-tools-x11 for GUI tools so that libburnia-tools does not depend on X11 - updated libburn to version 1.2.2 * Small internal refinements - updated libisofs to version 1.2.2 * New API calls isoburn_get_attached_start_lba(), isoburn_attach_start_lba() * New API calls isoburn_igopt_set_rr_reloc(), isoburn_igopt_get_rr_reloc() * New API calls isoburn_ropt_set_data_cache(), isoburn_ropt_get_data_cache() * New commands -x, -list_arg_sorting * New command -rr_reloc_dir * New command -data_cache_size * New -as mkisofs option -rr_reloc, implemented option -hide-rr-moved * Now ignoring -as mkisofs -no-split-symlink-components -no-split-symlink-fields * Bug fix: -osirrox on:sort_lba_on -extract from / restored nearly nothing * Bug fix: -as mkisofs without -graft-points could not handle names with "=" * Bug fix: Relaxation options joliet_rec_mtime and iso1999_rec_mtime had wrong values - updated libisoburn to version 1.2.2 * New API call iso_write_opts_set_rr_reloc() * Bug fix: Directory name mapping to ISO level 1 was too liberal if iso_write_opts_set_allow_dir_id_ext() was enabled * New API call iso_write_opts_set_allow_7bit_ascii() * Improved standards compliance for ISO level 1 names with partly relaxed constraints. - updated libburn to version 1.2.0 * Bug fix: cdrskin produced a memory fault if interupted before writing began * Bug fix: Solaris adapter mishandled write commands which failed on first try * Bug fix: Interrupting libburn while drive tray is loading led to endless loop * Bug fix: Progress report with blanking and formatting could be bogus * New API calls burn_disc_get_leadin_text(), burn_write_opts_set_leadin_text() * New API calls for composing CD-TEXT, see doc/cdtext.txt * New API call burn_session_by_cue_file() for reading CDRWIN .cue files * New API call burn_track_set_isrc_string() * New API calls burn_track_set_index(), burn_track_clear_indice() * New API calls burn_session_set_start_tno(), burn_session_get_start_tno() * New API calls burn_track_set_pregap_size(), burn_track_set_postgap_size() * Implemented cdrskin option textfile= * Implemented cdrskin option combination -vv -toc for cdtext.dat production * Implemented cdrskin options mcn= and isrc= * Implemented cdrskin options -scms -copy -nocopy -preemp -nopreemp * Implemented cdrskin option index= * Partly implemented cdrskin options cuefile= and -text * New cdrskin option input_sheet_v07t= for CD-TEXT definition * New cdrskin options --cdtext_dummy and --cdtext_verbose * New cdrskin options --four_channel --two_channel * New cdrskin option cd_start_tno= * New cdrskin options sao_pregap=, sao_postgap= - updated libisofs to version 1.2.0 * Bug fix: mkisofs emulation did not record mtime in ECMA-119 directories * Bug fix: Program abort while drive tray is loading led to endless loop * Bug fix: Solaris adapter mishandled write commands which failed on first try * Bug fix: libisoburn.ver had a duplicate function entry * New relaxations isoburn_igopt_joliet_rec_mtime, isoburn_igopt_iso1999_rec_mtime * Made -compliance "rec_mtime" default for xorriso - updated libisoburn to version 1.2.0 * Extended influence of iso_write_opts_set_dir_rec_mtime() to Joliet and ISO 9660:1999. - update libburn to version 1.1.4 * New API call burn_lookup_device_link() * New API call burn_disc_get_phys_format_info() * New cdrskin option --device_links * New API call burn_disc_next_track_is_damaged() * New API call burn_disc_close_damaged() * Burning DVD-R DAO with 2 kB size granularity rather than 32 kB * New API call burn_allow_drive_role_4() * Bugfixes - update libisofs to version 1.1.4 * New API call iso_image_get_bootcat() * New API call iso_write_opts_set_joliet_long_names() * New error codes for oversized file addresses * New no_md5 value 2 for API call iso_read_opts_set_no_md5() * New option bits 8 and 9 with iso_write_opts_set_system_area() * Bugfixes - update libisoburn to version 1.1.4 * New option -device_links * Enabled extraction of the boot catalog file to disk filesystem * New option -list_speeds * New option -signal_handling * New option -close_damaged * New API call isoburn_set_truncate() * New relax option isoburn_igopt_joliet_long_names * New option -early_stdio_test * New options -print_info and -print_mark * New -compliance option joliet_long_names * -as mkisofs option -joliet-long is now fully functional * Burning DVD-R DAO with 2 kB size granularity rather than 32 kB * New isoburn_ropt_set_extensions() option isoburn_ropt_nomd5tag * New -padding modes "included" and "appended" * New bootspec partition_cyl_align=, new -as mkisofs option -partition_cyl_align * New -as mkisofs and -as cdrecord option --no_rc * Own man page and info document for xorrisofs * Bugfixes - do not use source services and recompress any more as per discussion on opensuse-factory@ - updated libburn to 1.0.2.pl00 * Improved recognition of non-seekable stdio pseudo-drives * Allowed umask to create stdio-drive files with rw-permissions for all * cdrskin now refuses to burn if the foreseeable size exceeds media capacity - updated libisoburn to 1.0.2.pl00 * New API calls isoburn_igopt_set_extensions(), isoburn_igopt_old_empty, isoburn_igopt_set_untranslated_name_len(), isoburn_igopt_set_disc_label(), isoburn_igopt_get_disc_label(), isoburn_ropt_set_displacement(), isoburn_ropt_get_displacement() * xorriso novelties: * New options -clone, -cp_clone, -displacement * New -find actions update_merge, rm_merge, clear_merge * New -as mkisofs options -max-iso9660-filenames, --old-empty, - root, -old-root, --old-root-no-md5, --old-root-no-ino, - -old-root-dev, -untranslated_name_len, -joliet-long, - iso-level 4, -disallow_dir_id_ext, -sparc-boot, -sparc-label * Default -abort_on value is now "FAILURE" with batch and "NEVER" with dialog * New -compliance options untranslated_names, untranslated_name_len=, iso_9660_1999, iso_9660_level=number, allow_dir_id_ext * Disabled TOC emulation with -as mkisofs, may be re-enabled by - -emul-toc * New bootspec sparc_label= * Bufixes - updated libisofs to 1.0.2 * New API calls iso_tree_clone(), iso_stream_clone, iso_node_xinfo_make_clonable(), iso_node_xinfo_get_cloner(), iso_node_get_next_xinfo(), iso_node_remove_all_xinfo(), iso_node_remove_tree(), iso_write_opts_set_old_empty(), iso_write_opts_set_untranslated_name_len(), iso_write_opts_set_allow_dir_id_ext(), iso_memory_stream_new(), iso_write_opts_set_disc_label(), iso_write_opts_set_will_cancel() * New IsoFileSourceIface version 2 with method clone_src() * New IsoStreamIface version 4 with method clone_stream() * New public function prototype iso_node_xinfo_cloner * New public iso_node_xinfo_cloner instance aaip_xinfo_cloner() * new system area type 3 = SUN Disk Label for booting SUN SPARC systems * New error reply code ISO_DISPLACE_ROLLOVER for external data sources with address displacement - improved descriptions/summaries - more precise filelist - corrected group of library subpackages - updated libburn to 0.9.0.pl00 * Regression fix: SCSI reply data logging was disabled in release 0.8.6 - updated libisofs to 0.6.40 * New API call iso_write_opts_set_disc_label(), new system area type 3 = SUN Disk Label for booting SUN SPARC systems. * New API call iso_write_opts_set_will_cancel() avoids start of write thread and is to be used to inquire the future image size. * New error reply code ISO_DISPLACE_ROLLOVER for external data sources with address displacement. - updated libburn to 0.8.8.pl00 * New API call burn_offst_source_new() * New API call burn_disc_get_bd_spare_info() - updated libisoburn to 0.6.4.pl00 * New API call isoburn_libjte_req() * New API calls isoburn_igopt_attach_jte() and isoburn_igopt_detach_jte() * New API call isoburn_igopt_set_tail_blocks() * New API call isoburn_libjte_req() xorriso novelties: * New option -jigdo * New -as mkisofs options -jigdo-* and -md5-list as of genisoimage * New -as mkisofs options -checksum_algorithm_iso, -checksum_algorithm_template * New bootspecs mips_path= and mipsel_path= for Debian MIPS releases * New -as mkisofs options -mips-boot and -mipsel-boot * New option -append_partition, -as mkisofs -append_partition - updated libisofs to 0.6.38 * New API calls iso_write_opts_attach_jte() and iso_write_opts_detach_jte() allow to use of libjte for jigdo production. * New API call iso_write_opts_set_tail_blocks() for tail padding inside ISO image. * New API call iso_image_generator_is_running() to learn when the write thread is done. * New API calls iso_image_add_mips_boot_file(), iso_image_get_mips_boot_files(), iso_image_give_up_mips_boot(). * New API call iso_write_opts_set_partition_img() for appending e.g. a small empty FAT12 filesystem which may be used on USB stick. - updated libburn to 0.8.6.pl00 * Lifted test reservation on DVD-R DL media. * Hiding all non-API symbols from the linker by use of - -version-script * Now with history of release notes in ./ChangeLog file. - updated libisoburn to 0.6.2.pl00 * New API function isoburn_igopt_set_part_offset() * Hiding all non-API symbols from the linker by use of - -version-script * Now with history of release notes in ./ChangeLog file. * Bug fix: Regression with -hardlinks and -compliance old_rr, 0.4.2, Aug 2009 * New option -preparer_id, -as mkisofs options -p and -preparer * New -boot_image specifier emul_type=none|hard_disk|floppy * New boot_image boot specs partition_offset,partition_hd_cyl, partition_sec_hd * Made behavior of -as mkisofs with unknown options more similar to original * New -as mkisofs option -hard-disk-boot, enabled -b without - no-emul-boot * New -as mkisofs option -e from Fedora genisoimage * New -as mkisofs options -partition_offset,-partition_hd_cyl, - partition_sec_hd - updated libisofs to 0.6.36 * Can produce ISO images which bear a partiton 1 with non-zero start address. They can be mounted from USB stick via the main device file (e.g. /dev/sdb) as well as via the partition device file (e.g. /dev/sdb1). - updated libburn to 0.8.4.pl00 * General POSIX system adapters ignore SIGWINCH and SIGURG if defined * Allowed 64 kB max output buffer size on all OSes - updated libisoburn to 0.6.0.pl00 * New option -read_mkisofsrc interprets .mkisofsrc To be performed before -as mkisofs. Performed automatically with program alias name "xorrisofs". * Implemented -as mkisofs options -dir-mode, -file-mode, - abstract, -biblio, -copyright * Implemented -as mkisofs options -hide, -hide-joliet, - hide-list, -hide-joliet-list * New -as mkisofs option --boot-catalog-hide * New option -hide, -find action -hide, -find test -hidden * New -boot_image bootspec cat_hidden=on * New options -copright_file , -biblio_file , -abstract_file * New find test -disk_name * Bug fix: -check_media patch_lba0= could install wrong image size * Bug fix: -as mkisofs option -volset was wrongly interpreted like -volid - updated libisofs to 0.6.34 * New API call iso_image_set_boot_catalog_hidden() * New API call iso_node_get_hidden() * New IsoHideNodeFlag bit LIBISO_HIDE_BUT_WRITE * New error code ISO_BOOT_NO_CATALOG * Opportunity to reduce compile line length by including "config.h" - added support for zisofs, ACL and xattr - updated libburn to 0.7.6 - updated libisoburn to 0.5.0 - updated libisofs 0.6.28 - updated libburn to 0.6.6 - updated libisoburn to 0.3.8 - updated libisofs to 0.6.18 ==== libisofs ==== Version update (1.4.0 -> 1.4.2) - Update to 1.4.2: * Bug fix: zisofs compression caused SIGSEGV (by reading) with files larger than 524160 KiB. * Bug fix: iso_node_get_name() of root node returned NULL pointer rather than an empty string * Bug fix: Names read from Joliet tree where stripped of trailing ";1" * Now sorting the data file content extents by ECMA-119 tree, rather than by the red-black tree which shall consolidate files with identical source object. * New API call iso_read_opts_set_ecma119_map(). * New AAIP variable isofs.nt records name truncation parameters. * Rectified handling of oversized filenames by new API calls: iso_image_set_truncate_mode, iso_image_get_truncate_mode, iso_truncate_leaf_name, iso_image_set_node_name, iso_image_tree_clone, iso_image_add_new_dir, iso_image_add_new_file, iso_image_add_new_special, iso_image_add_new_symlink, iso_image_dir_get_node, iso_image_path_to_node * Result of a Coverity audit: 50+ code changes, but no easy-to-trigger bugs - Update to 1.4.0: * Bug fix: iso_image_report_system_area() caused SIGSEGV by NULL if no valid ISO 9660 image was loeaded. * Bug fix: A SIGSEGV could happen when loading a faulty ISO filesystem. Debian bug deb#774152. * Bug fix: Rock Ridge Continuation Area could be produced crossing a block boundary. This is heavily disliked by the Linux kernel and spoils the representation of directories which contain many symbolic links. * Bug fix: If iso_write_opts_set_hardlinks() enabled automatic inode numbers, then they did not get into effect with nodes were zisofs decoder filters got attached during the image load process. * Bug fix: The header indicator of the last El Torito catalog section header was set to 0x90 rather than 0x91 if more than one boot image is in that section. * Bug fix: Only 128 bytes of an emerging GPT header block were zeroized. * Bug fix: iso_image_report_system_area() did not show GPT partitions of size 0. * Bug fix: A zero sized GPT partition was marked after the last appended GPT partition. * Bug fix: GPT production did not yield proper results with appended sessions resp. with TOC emulation enabled. * Increased default weight of El Torito boot catalog to 1 billion. * Improved handling of cylinder alignment if the resulting image size is not divisible by 2048. Old behavior was to not align. New is to pad up by a few blocks of 512 bytes. * New API call iso_write_opts_set_appended_as_gpt() and marking of appended partitions in GPT if GPT emerges for other reasons. * New system area type 6 = DEC Alpha SRM boot sector. New API calls iso_image_set_alpha_boot(), iso_image_get_alpha_boot(). * New API object iso_interval_reader. Enabling flag bits for older API calls iso_write_opts_set_prep_img(), iso_write_opts_set_efi_bootp(), and iso_write_opts_set_partition_img(). - Update to 1.3.8 * Bug fix: Prevent allocation of empty hash tables. Thanks Richard Nolde. * Bug fix: Prevent allocation of empty directory children lists. Thanks Richard Nolde. * Bug fix: The GUIDs of main GPT and backup GPT differed if more than one System Area was written into the ISO image. * New API calls iso_image_report_el_torito() and iso_image_report_system_area() * New API call iso_crc32_gpt() - Update to version 1.3.6: * Bug fix: Division by zero if HFS+ was combined with TOC emulation for overwritable media. * New API call iso_write_opts_set_joliet_utf16() and ability to read Joliet names as UTF-16BE. * New API call iso_conv_name_chars() - Split libisofs from libburnia and make it a separate package. - Updated License to GPL-2.0+ and LGPL-2.0+. - update libisofs to version 1.3.4 * Giving sort weight 2 as default to El Torito boot images * Encoding HFS+ names in UTF-16 rather than UCS-2. - update libburn to version 1.3.4 * Bug fix: Drive error reports were ignored during blanking and formatting * Bug fix: Drive LG BH16NS40 stalls on inspection of unformatted DVD+RW * New API call burn_disc_pretend_full_uncond() - update libisoburn to version 1.3.4 * Bug fix: Command -blank "as_needed" formatted blank BD-R. * Bug fix: -as mkisofs option -log-file put the log file into the image * Bug fix: -cut_out did not add x-permission to r-permission of directory * Bug fix: Command -zisofs did not accept all options emitted by - status -zisofs * Bug fix: -blank force:... failed on appendable or closed media * New command -read_speed * New -close mode "as_needed", new -as cdrecord option - -multi_if_possible * New -alter_date types: a-c , m-c , b-c , c - add rpmlintrc to remove false-positive dependency error - update to 1.3.2: * cdrskin has acquired the ability to copy audio tracks to .wav files * cdrskin can extract CD-TEXT in a form which is readable for humans and for cdrskin itself - Explicitly list libattr-devel as BuildRequires - Remove redundant %clean section. - updated libisofs to version 1.3.0 * Bug fix: GPT header CRC was computed from all 512 bytes rather than from 92. * Bug fix: Unspecified Expiration Time and Effective Time of ISO volume was represented by 0-bytes rather than ASCII '0' digits. * Bug fix: Reserved and unused fields of APM entries were not zeroed. * Bug fix: The protective MBR partition for GPT started at block 0 instead of 1. * New option bits with el_torito_set_isolinux_options() and iso_write_opts_set_system_area() to control GRUB2 patching of boot image and MBR. * New API calls iso_image_set_sparc_core() and iso_image_get_sparc_core(). - updated libburn to version 1.3.0 * Bug fix: Full formatting of BD-RE used certification regardless of drive capabilities * Bug fix: DVD+R with damaged TOC were reported by -minfo with wrong end address - updated libisoburn to version 1.3.0 * Bug fix: Disk paths with components '.' or '..' could be mistaken for directories. * Bug fix: -as mkisofs -print-size failed with -isohybrid-mbr and a single boot image. Regression introduced by libisoburn-1.2.8. * Bug fix: -as mkisofs -path-list did not switch to --no-emul-toc by default. * Bug fix: Unspecified Expiration Time and Effective Time of ISO volume was represented by 0-bytes rather than ASCII '0' digits. * Bug fix: Reserved and unused fields of APM entries were not zeroed. * Bug fix: GPT header CRC was computed from all 512 bytes rather than from 92. * Bug fix: The protective MBR partition for GPT started at block 0 instead of 1. * New -boot_image bootspecs grub2_mbr= and grub2_boot_info= * New -boot_image bootspec grub2_sparc_core= * New -as mkisofs options --grub2-mbr , --grub2-boot-info , - -grub2-sparc-core * New -hardlinks mode "lsl_count" / "no_lsl_count" - updated libburn to version 1.2.8 * New cdrskin option --list_speeds * -toc and -minfo now report about tracks in the incomplete session * New API call burn_disc_get_incomplete_sessions() * New burn_toc_entry component .track_status_bits * Bug fix: All CD tracks were reported with the sizes of the tracks in the first session. Regression introduced with version 1.2.0 (rev 4552). * Bug fix: On some drives the request for minimum speed yielded maximum speed * New cdrskin option --no_load * Bug fix: Speed setting had no effect on BD media * New API call burn_read_audio() * New API call burn_list_sev_texts() * New API call burn_write_opts_set_obs_pad(), ./configure - -enable-dvd-obs-pad * New cdrskin option --obs_pad * Bug fix: CD SAO sessions with data tracks started by an audio pause * Bug fix: CD tracks were perceived 2 sectors too short. Nice with TAO, bad with SAO. * Bug fix: cdrskin SIGSEGV if track source was added when no drive was available - updated libisoburn to version 1.2.8 * Bug fix: -tell_media_space altered the pointers to MD5 of data files which stem from a previous session. This produced false mismatches with -check_md5_r. * Bug fix: CD tracks were reported with the sizes of the tracks in the first session. * Bug fix: -check_media use=outdev sector_map= stored TOC of input drive * Bug fix: -hide hfsplus and -as mkisofs -hide-hfsplus had no effect. Thanks to Davy Ho. * Bug fix: ./configure did not abort if libburn.h or libisofs.h were missing * New command -move * New -as mkisofs options -eltorito-id , -eltorito-selcrit * Bug fix: SIGSEGV by uninitialized local variable with - check_media patch_lba0="on". Regression by version 1.0.6 * Bug fix: -partition_offset 16 kept -isohybrid-gpt-basdat from writing MBR partition table entries of type 0xef * Bug fix: -rollback did not work if indev and outdev were empty * New API calls Xorriso_parse_line() and Xorriso__dispose_words() * New API calls Xorriso_fetch_outlists() and Xorriso_peek_outlists() * New API call Xorriso_start_msg_watcher() * New API calls Xorriso__severity_cmp() and Xorriso__severity_list() * New API calls Xorriso_sieve_add_filter, * Xorriso_sieve_get_result, Xorriso_sieve_clear_results, Xorriso_sieve_dispose, Xorriso_sieve_big * New -boot_image partition_cyl_align mode "all" * New -blank mode prefix "force:" * New -osirrox settings "blocked" and "unblock" * New command -lns for creating symbolic links * New command -toc_of * New command -msg_op * New command -launch_frontend * Proof-of-concept of a GUI frontend program: xorriso-tcltk written in Tcl/Tk. * New API call isoburn_igopt_set_hfsp_serial_number() * New API calls isoburn_igopt_set_prep_partition, isoburn_igopt_set_efi_bootp * New API calls isoburn_igopt_set_hfsp_block_size() and isoburn_igopt_get_hfsp_block_size() * New -check_media option async_chunks= * New xorriso command -write_type * New xorriso command -rockridge * New xorriso command -hfsplus * New -find tests -has_hfs_crtp, has_hfs_bless * New -find actions set/get_hfs_crtp, set/get_hfs_bless * New -find test -disk_path * New -boot_image bootspec hfsplus_serial= * New -boot_image bootspecs hfsplus_block_size= and apm_block_size= * New -boot_image bootspecs efi_boot_part, prep_boot_part, chrp_boot_part * Command -hide allows hiding in HFS+ filesystem * New -as cdrecord options -tao -sao -dao * New -as mkisofs option -log-file * New -as mkisofs option --norock * New -as mkisofs option -hfsplus * New -as mkisofs option -hfsplus-file-creator-type * New -as mkisofs options -hfs-bless and -hfs-bless-by * New -as mkisofs option -hfsplus-serial-no * New -as mkisofs options -hfsplus-block-size and -apm-block-size * New -as mkisofs option -hide-hfsplus, -hide-hfsplus-list * New -as mkisofs options -prep-boot-part, -efi-boot-part, - chrp-boot-part * New -as mkisofs options -isohybrid-gpt-basdat, - isohybrid-gpt-hfsplus, -isohybrid-apm-hfsplus * Bug fix: Memory corruption when reading bootable image that was truncated * Bug fix: -update deleted MD5 of files of which only attributes had changed - updated libisofs to version 1.2.8 * New API call iso_image_get_pvd_times(). * Bug fix: Image size prediction altered the pointers to MD5 of data files which stem from a previous session. * Bug fix: Reading damaged Rock Ridge data could cause SIGSEGV by NULL. * Bug fix: Appended partitions did not obey cylinder alignment * Bug fix: Non-zero partition offset zeroized the MBR copies of GPT partition table entries * Bug fix: Isohybrid production without any boot image led to SIGSEGV by NULL * Bug fix: Prevented a memory fault when reading damaged Rock Ridge information * Bug fix: Memory corruption when reading bootable image that was truncated before the storage location of the boot catalog * Bug fix: Symbol iso_fs_global_id was missing in libisofs.ver. * Bug fix: Volume descriptors of Joliet and ISO 9660:1999 beared non-zero Effective Date, involuntarily restricting the early end of their lifetime. * Bug fix: File Structure Version field of ISO 9660:1999 Enhanced Volume Descriptor was 1 instead of 2. * Bug fix: The separator dot of Joliet names was byte swapped on big-endian machines. * Bug fix: Joliet name comparison was done as signed bytes and thus produced a peculiar sorting order. * Bug fix: Partition cylinder alignment worked only if both, El Torito and application provided system area data were present. * New API function iso_write_opts_set_hfsplus * New API functions iso_hfsplus_xinfo_func(), iso_hfsplus_xinfo_new(), and new struct iso_hfsplus_xinfo_data. * New API call iso_write_opts_set_hfsp_serial_number() * New API calls iso_image_hfsplus_bless and iso_image_hfsplus_get_blessed(), and new public enum IsoHfsplusBlessings. * New API calls so_write_opts_set_prep_img(), iso_write_opts_set_efi_bootp() * New API call iso_write_opts_set_hfsp_block_size() * New API call iso_tree_resolve_symlink() * New system area sub type CHRP with iso_write_opts_set_system_area() * New option bits 2 to 8 for GPT and APM with el_torito_set_isolinux_options() * New flag bit with iso_node_set_attrs() to protect namespace "isofs" * New IsoHideNodeFlag value LIBISO_HIDE_ON_HFSPLUS - added new subpackage libburnia-tools-x11 for GUI tools so that libburnia-tools does not depend on X11 - updated libburn to version 1.2.2 * Small internal refinements - updated libisofs to version 1.2.2 * New API calls isoburn_get_attached_start_lba(), isoburn_attach_start_lba() * New API calls isoburn_igopt_set_rr_reloc(), isoburn_igopt_get_rr_reloc() * New API calls isoburn_ropt_set_data_cache(), isoburn_ropt_get_data_cache() * New commands -x, -list_arg_sorting * New command -rr_reloc_dir * New command -data_cache_size * New -as mkisofs option -rr_reloc, implemented option -hide-rr-moved * Now ignoring -as mkisofs -no-split-symlink-components -no-split-symlink-fields * Bug fix: -osirrox on:sort_lba_on -extract from / restored nearly nothing * Bug fix: -as mkisofs without -graft-points could not handle names with "=" * Bug fix: Relaxation options joliet_rec_mtime and iso1999_rec_mtime had wrong values - updated libisoburn to version 1.2.2 * New API call iso_write_opts_set_rr_reloc() * Bug fix: Directory name mapping to ISO level 1 was too liberal if iso_write_opts_set_allow_dir_id_ext() was enabled * New API call iso_write_opts_set_allow_7bit_ascii() * Improved standards compliance for ISO level 1 names with partly relaxed constraints. - updated libburn to version 1.2.0 * Bug fix: cdrskin produced a memory fault if interupted before writing began * Bug fix: Solaris adapter mishandled write commands which failed on first try * Bug fix: Interrupting libburn while drive tray is loading led to endless loop * Bug fix: Progress report with blanking and formatting could be bogus * New API calls burn_disc_get_leadin_text(), burn_write_opts_set_leadin_text() * New API calls for composing CD-TEXT, see doc/cdtext.txt * New API call burn_session_by_cue_file() for reading CDRWIN .cue files * New API call burn_track_set_isrc_string() * New API calls burn_track_set_index(), burn_track_clear_indice() * New API calls burn_session_set_start_tno(), burn_session_get_start_tno() * New API calls burn_track_set_pregap_size(), burn_track_set_postgap_size() * Implemented cdrskin option textfile= * Implemented cdrskin option combination -vv -toc for cdtext.dat production * Implemented cdrskin options mcn= and isrc= * Implemented cdrskin options -scms -copy -nocopy -preemp -nopreemp * Implemented cdrskin option index= * Partly implemented cdrskin options cuefile= and -text * New cdrskin option input_sheet_v07t= for CD-TEXT definition * New cdrskin options --cdtext_dummy and --cdtext_verbose * New cdrskin options --four_channel --two_channel * New cdrskin option cd_start_tno= * New cdrskin options sao_pregap=, sao_postgap= - updated libisofs to version 1.2.0 * Bug fix: mkisofs emulation did not record mtime in ECMA-119 directories * Bug fix: Program abort while drive tray is loading led to endless loop * Bug fix: Solaris adapter mishandled write commands which failed on first try * Bug fix: libisoburn.ver had a duplicate function entry * New relaxations isoburn_igopt_joliet_rec_mtime, isoburn_igopt_iso1999_rec_mtime * Made -compliance "rec_mtime" default for xorriso - updated libisoburn to version 1.2.0 * Extended influence of iso_write_opts_set_dir_rec_mtime() to Joliet and ISO 9660:1999. - update libburn to version 1.1.4 * New API call burn_lookup_device_link() * New API call burn_disc_get_phys_format_info() * New cdrskin option --device_links * New API call burn_disc_next_track_is_damaged() * New API call burn_disc_close_damaged() * Burning DVD-R DAO with 2 kB size granularity rather than 32 kB * New API call burn_allow_drive_role_4() * Bugfixes - update libisofs to version 1.1.4 * New API call iso_image_get_bootcat() * New API call iso_write_opts_set_joliet_long_names() * New error codes for oversized file addresses * New no_md5 value 2 for API call iso_read_opts_set_no_md5() * New option bits 8 and 9 with iso_write_opts_set_system_area() * Bugfixes - update libisoburn to version 1.1.4 * New option -device_links * Enabled extraction of the boot catalog file to disk filesystem * New option -list_speeds * New option -signal_handling * New option -close_damaged * New API call isoburn_set_truncate() * New relax option isoburn_igopt_joliet_long_names * New option -early_stdio_test * New options -print_info and -print_mark * New -compliance option joliet_long_names * -as mkisofs option -joliet-long is now fully functional * Burning DVD-R DAO with 2 kB size granularity rather than 32 kB * New isoburn_ropt_set_extensions() option isoburn_ropt_nomd5tag * New -padding modes "included" and "appended" * New bootspec partition_cyl_align=, new -as mkisofs option -partition_cyl_align * New -as mkisofs and -as cdrecord option --no_rc * Own man page and info document for xorrisofs * Bugfixes - do not use source services and recompress any more as per discussion on opensuse-factory@ - updated libburn to 1.0.2.pl00 * Improved recognition of non-seekable stdio pseudo-drives * Allowed umask to create stdio-drive files with rw-permissions for all * cdrskin now refuses to burn if the foreseeable size exceeds media capacity - updated libisoburn to 1.0.2.pl00 * New API calls isoburn_igopt_set_extensions(), isoburn_igopt_old_empty, isoburn_igopt_set_untranslated_name_len(), isoburn_igopt_set_disc_label(), isoburn_igopt_get_disc_label(), isoburn_ropt_set_displacement(), isoburn_ropt_get_displacement() * xorriso novelties: * New options -clone, -cp_clone, -displacement * New -find actions update_merge, rm_merge, clear_merge * New -as mkisofs options -max-iso9660-filenames, --old-empty, - root, -old-root, --old-root-no-md5, --old-root-no-ino, - -old-root-dev, -untranslated_name_len, -joliet-long, - iso-level 4, -disallow_dir_id_ext, -sparc-boot, -sparc-label * Default -abort_on value is now "FAILURE" with batch and "NEVER" with dialog * New -compliance options untranslated_names, untranslated_name_len=, iso_9660_1999, iso_9660_level=number, allow_dir_id_ext * Disabled TOC emulation with -as mkisofs, may be re-enabled by - -emul-toc * New bootspec sparc_label= * Bufixes - updated libisofs to 1.0.2 * New API calls iso_tree_clone(), iso_stream_clone, iso_node_xinfo_make_clonable(), iso_node_xinfo_get_cloner(), iso_node_get_next_xinfo(), iso_node_remove_all_xinfo(), iso_node_remove_tree(), iso_write_opts_set_old_empty(), iso_write_opts_set_untranslated_name_len(), iso_write_opts_set_allow_dir_id_ext(), iso_memory_stream_new(), iso_write_opts_set_disc_label(), iso_write_opts_set_will_cancel() * New IsoFileSourceIface version 2 with method clone_src() * New IsoStreamIface version 4 with method clone_stream() * New public function prototype iso_node_xinfo_cloner * New public iso_node_xinfo_cloner instance aaip_xinfo_cloner() * new system area type 3 = SUN Disk Label for booting SUN SPARC systems * New error reply code ISO_DISPLACE_ROLLOVER for external data sources with address displacement - improved descriptions/summaries - more precise filelist - corrected group of library subpackages - updated libburn to 0.9.0.pl00 * Regression fix: SCSI reply data logging was disabled in release 0.8.6 - updated libisofs to 0.6.40 * New API call iso_write_opts_set_disc_label(), new system area type 3 = SUN Disk Label for booting SUN SPARC systems. * New API call iso_write_opts_set_will_cancel() avoids start of write thread and is to be used to inquire the future image size. * New error reply code ISO_DISPLACE_ROLLOVER for external data sources with address displacement. - updated libburn to 0.8.8.pl00 * New API call burn_offst_source_new() * New API call burn_disc_get_bd_spare_info() - updated libisoburn to 0.6.4.pl00 * New API call isoburn_libjte_req() * New API calls isoburn_igopt_attach_jte() and isoburn_igopt_detach_jte() * New API call isoburn_igopt_set_tail_blocks() * New API call isoburn_libjte_req() xorriso novelties: * New option -jigdo * New -as mkisofs options -jigdo-* and -md5-list as of genisoimage * New -as mkisofs options -checksum_algorithm_iso, -checksum_algorithm_template * New bootspecs mips_path= and mipsel_path= for Debian MIPS releases * New -as mkisofs options -mips-boot and -mipsel-boot * New option -append_partition, -as mkisofs -append_partition - updated libisofs to 0.6.38 * New API calls iso_write_opts_attach_jte() and iso_write_opts_detach_jte() allow to use of libjte for jigdo production. * New API call iso_write_opts_set_tail_blocks() for tail padding inside ISO image. * New API call iso_image_generator_is_running() to learn when the write thread is done. * New API calls iso_image_add_mips_boot_file(), iso_image_get_mips_boot_files(), iso_image_give_up_mips_boot(). * New API call iso_write_opts_set_partition_img() for appending e.g. a small empty FAT12 filesystem which may be used on USB stick. - updated libburn to 0.8.6.pl00 * Lifted test reservation on DVD-R DL media. * Hiding all non-API symbols from the linker by use of - -version-script * Now with history of release notes in ./ChangeLog file. - updated libisoburn to 0.6.2.pl00 * New API function isoburn_igopt_set_part_offset() * Hiding all non-API symbols from the linker by use of - -version-script * Now with history of release notes in ./ChangeLog file. * Bug fix: Regression with -hardlinks and -compliance old_rr, 0.4.2, Aug 2009 * New option -preparer_id, -as mkisofs options -p and -preparer * New -boot_image specifier emul_type=none|hard_disk|floppy * New boot_image boot specs partition_offset,partition_hd_cyl, partition_sec_hd * Made behavior of -as mkisofs with unknown options more similar to original * New -as mkisofs option -hard-disk-boot, enabled -b without - no-emul-boot * New -as mkisofs option -e from Fedora genisoimage * New -as mkisofs options -partition_offset,-partition_hd_cyl, - partition_sec_hd - updated libisofs to 0.6.36 * Can produce ISO images which bear a partiton 1 with non-zero start address. They can be mounted from USB stick via the main device file (e.g. /dev/sdb) as well as via the partition device file (e.g. /dev/sdb1). - updated libburn to 0.8.4.pl00 * General POSIX system adapters ignore SIGWINCH and SIGURG if defined * Allowed 64 kB max output buffer size on all OSes - updated libisoburn to 0.6.0.pl00 * New option -read_mkisofsrc interprets .mkisofsrc To be performed before -as mkisofs. Performed automatically with program alias name "xorrisofs". * Implemented -as mkisofs options -dir-mode, -file-mode, - abstract, -biblio, -copyright * Implemented -as mkisofs options -hide, -hide-joliet, - hide-list, -hide-joliet-list * New -as mkisofs option --boot-catalog-hide * New option -hide, -find action -hide, -find test -hidden * New -boot_image bootspec cat_hidden=on * New options -copright_file , -biblio_file , -abstract_file * New find test -disk_name * Bug fix: -check_media patch_lba0= could install wrong image size * Bug fix: -as mkisofs option -volset was wrongly interpreted like -volid - updated libisofs to 0.6.34 * New API call iso_image_set_boot_catalog_hidden() * New API call iso_node_get_hidden() * New IsoHideNodeFlag bit LIBISO_HIDE_BUT_WRITE * New error code ISO_BOOT_NO_CATALOG * Opportunity to reduce compile line length by including "config.h" - added support for zisofs, ACL and xattr - updated libburn to 0.7.6 - updated libisoburn to 0.5.0 - updated libisofs 0.6.28 - updated libburn to 0.6.6 - updated libisoburn to 0.3.8 - updated libisofs to 0.6.18 ==== libmbim ==== Version update (1.12.4 -> 1.14.0) - Update to version 1.14.0: + New support for the 'QMI over MBIM' service, so that clients can use libqmi to build messages and libmbim to transport them. + The GUDev library, which we use to read the max message size from the USB descriptor, is now optional. When configuring, it will be used by default only if it's found. It can also be explicitly disabled using the new configure switch '--without-udev' or explicitly enabled using '--with-udev'. If GUDev isn't used, libmbim-glib will rely on sysfs directly. + libmbim-glib updates: Added support for building messages of custom services. + mbim-network updates: - Added support for loading profiles from different paths using the new '--profile' option. This makes it possible to use mbim-network with multiple devices running in the same system. - Added support to allow specifying APN user (APN_USER), password (APN_PASS) and authentication type (APN_AUTH) in the profile. - Added support to allow using the mbim-proxy setup by configuring it in the profile file (PROXY=yes). + Several other minor improvements and fixes. + The following features which were backported to 1.12.x releases are also present in libmbim 1.14.0: - mbimcli updates: . Updated '--connect' arguments to allow specifying "key=value" pairs. The old legacy "[(APN),(PAP|CHAP|MSCHAPV2),(Username),(Password)]" format is kept as valid for backwards compatibility, although it should be assumed deprecated. . Longer timeouts for connect/register operations. . Report IP configuration when connected. . Allow specifying session ids. + libmbim-glib updates: Probing retry interval increased to 5s. - Split out mbimcli-bash-completion package, requiring and supplementing bash-completion. - Pass --with-udev to configure: new config parameter, but keeping the old behavior (it was non-optional before). ==== libmwaw ==== Version update (0.3.7 -> 0.3.8) - Version update to 0.3.8: * Various clang and -W* fixes all around * Bunch of bugfixes ==== libproxy ==== Subpackages: libproxy-devel libproxy1 - Add libproxy-gnome-waitpid.patch: GNOME3: Wait for pxgsettings to vanish while destroying the plugin (boo#967601). ==== libproxy-plugins ==== Subpackages: libproxy1-config-gnome3 libproxy1-config-kde libproxy1-networkmanager libproxy1-pacrunner-webkit - Add libproxy-gnome-waitpid.patch: GNOME3: Wait for pxgsettings to vanish while destroying the plugin (boo#967601). ==== libpst ==== Version update (0.6.66 -> 0.6.67) - Update to version 0.6.67: + Multiple bug fixes and an optimization. ==== libqmi ==== Version update (1.14.2 -> 1.16.0) Subpackages: libqmi-glib5 libqmi-tools - Packaging + add missing exclude in rpmlintrc + add BuildRequires for having QMUX over MBIM option - Update to version 1.16.0 + New `--enable-mbim-qmux' option during configure, which enables the support for using an MBIM control device as transport for the QMI messages, only if the MBIM device implements the "QMI service". This setting is automatically enabled if libmbim >= 1.14.0 is found in the system, and can be explicitly disabled with `--disable-mbim-qmux'. + New request/responses: ++ nas: new "Get LTE Cphy CA Info" request/response. ++ nas: new "Force Network Search" request/response. + qmi-network: ++ Fixed several bashisms. The following features which were backported to 1.14.x releases are also present in libqmi 1.16.0: + Added compatibility symbols for some API breaks introduced in 1.14.0: ++ qmi_message_dms_set_service_programming_code_input_get_current was renamed to qmi_message_dms_set_service_programming_code_input_get_current_code. ++ qmi_message_dms_set_service_programming_code_input_get_new was renamed to qmi_message_dms_set_service_programming_code_input_get_new_code. ++ qmi_message_dms_set_service_programming_code_input_set_current was renamed to qmi_message_dms_set_service_programming_code_input_set_current_code. ++ qmi_message_dms_set_service_programming_code_input_set_new was renamed to qmi_message_dms_set_service_programming_code_input_set_new_code. ++ QMI_NAS_SIM_REJECT_STATE_SIM_VAILABLE was renamed to QMI_NAS_SIM_REJECT_STATE_SIM_AVAILABLE. + libqmi-glib: ++ Fixed QMI_DMS_BAND_CAPABILITY_BC_15 enum value so that it isn't treated as a negative value. + qmicli: ++ Fixed --dms-get-band-capabilities output on 32-bit platforms. ++ Fixed license text of the voice service implementation. ==== librdmacm ==== - Remove useless --with-pic (for static only - unbuilt). Own all directories. Update description. ==== libreoffice ==== Version update (5.2.0.1 -> 5.2.0.3) Subpackages: libreoffice-base libreoffice-base-drivers-mysql libreoffice-branding-upstream libreoffice-calc libreoffice-calc-extensions libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-theme-breeze libreoffice-icon-theme-galaxy libreoffice-icon-theme-hicontrast libreoffice-icon-theme-oxygen libreoffice-icon-theme-sifr libreoffice-icon-theme-tango libreoffice-impress libreoffice-kde4 libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-ru libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-writer libreoffice-writer-extensions libreofficekit - Version update to 5.2.0.3: * More bugfixes for the first series of the 5.2 branch - Version update to 5.2.0.2: * Various bugfixes on road to 5.2 this time rc2 ==== libvdpau-va-gl ==== Version update (0.3.6 -> 0.4.0) - Update to version 0.4.0: * Code now requires C++11-capable compiler. * GLib, GLU, and libswscale dependencies are dropped. * Drop own tracing code; libvdpau have own tracing already. * Change VdpVideoMixerRender's destination_video_rect handling with VLC to fix video scaling. ==== mediastreamer2 ==== Subpackages: libmediastreamer_base6 libmediastreamer_voip6 - Build with ffmpeg unconditional ==== mutt ==== Version update (1.6.1 -> 1.6.2) - Update to mutt version 1.6.2 (2016-07-01): * send.c: Check $pgp_autoinline and $pgp_replyinline if oppenc is set. (closes #3846) * The first oppenc call takes place after the initial checks of $pgp_autoline and $pgp_replyinline, and doesn't go through the pgp menu. * Therefore, check for $pgp_autoline and $pgp_replyinline if oppenc is set too, to avoid oppenc enabling encryption without INLINE being set in those cases. * a6a4d6ed0f19 previously cleaned things up so that it is safe to set INLINE even if encryption isn't enabled. * keymap.c: Fix infinite loop when help is bound to a named key combination. * Commit a07e8215a0ef introduced a bug in km_error_key, which is called when an unbound key is pressed. * If help is bound to a sequence containing named keys (e.g. ), the raw (untokenized) string would be pushed back into the unget buffer. This could lead to an infinite loop of unbound key presses triggering more unbound keys being put into the unget buffer. * Change km_error_key to tokenize the string before putting it in the unget buffer. * Much thanks to Jiri Bohac for his bug report, analysis, and initial patch! - Update to neomutt 20160723 New Features New Mail Command - Execute a command on receipt of new mail vim-keybindings - Mutt config for vim users LMDB - In-memory header caching database SMIME Encrypt to Self - Secure storage of sensitive email Bug Fixes rework mutt_draw_statusline() fix cursor position after sidebar redraw Add sidebar_format flag ?%n? to display ?N? on new mail. fix index_format truncation problem Fix compiler warnings due to always true condition Change sidebar next/prev-new to look at buffy->new too. Change the default for sidebar_format to use %n. sidebar ?unsorted? order to match Buffy list order. Include ncurses tinfo library if found. Sidebar width problem sidebar crash for non-existent mailbox Temporary compatibility workaround Reset buffy->new for the current mailbox in IMAP. version.sh regression crash when notmuch tries to read a message (boo#986534) status line wrapping - Modify patches * COLS-workaround.dif * aw.listreply.diff * bug-676388-largefile.patch * mutt-1.5.15-wrapcolumn.diff * mutt-1.5.20-sendgroupreplyto.diff * mutt-1.5.21-mailcap.diff * mutt-1.6.1-opennfs.dif * patch-1.5.24.vk.pgp_verbose_mime * widechar.sidebar.dif - Rename patch mutt-1.6.1.dif to mutt-1.6.2.dif - Delete patch mutt-1.5.21-tinfo.dif ==== nautilus ==== Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension1 - Add nautilus-enable-eject-option-on-selection-menu.patch Enable eject option on selection menu (bsc#981950, bgo#768355). ==== opencv ==== Subpackages: libopencv3_1 opencv-devel - Enable ffmpeg support unconditional ==== opencv-qt5 ==== - Enable ffmpeg support unconditional ==== openssh ==== Version update (6.6p1 -> 7.2p2) Subpackages: openssh-helpers - added gpg signature - enable support for SSHv1 protocol and discourage its usage (bsc#983307) - enable DSA by default for backward compatibility and discourage its usage (bsc#983784) [openssh-7.2p2-allow_DSS_by_default.patch] - enable trusted X11 forwarding by default [openssh-7.2p2-X11_trusted_forwarding.patch] - set UID for lastlog properly [openssh-7.2p2-lastlog.patch] - enable use of PAM by default [openssh-7.2p2-enable_PAM_by_default.patch] - copy command line arguments properly [openssh-7.2p2-saveargv-fix.patch] - do not use pthreads in PAM code [openssh-7.2p2-dont_use_pthreads_in_PAM.patch] - fix paths in documentation [openssh-7.2p2-eal3.patch] - prevent race consitions triggered by SIGALRM [openssh-7.2p2-blocksigalrm.patch] - do send and accept locale environment variables by default [openssh-7.2p2-send_locale.patch] - handle hostnames changes during X forwarding [openssh-7.2p2-hostname_changes_when_forwarding_X.patch] - try to remove xauth cookies on exit [openssh-7.2p2-remove_xauth_cookies_on_exit.patch] - properly format pts names for ?tmp? log files [openssh-7.2p2-pts_names_formatting.patch] - check locked accounts when using PAM [openssh-7.2p2-pam_check_locks.patch] - chenge default PermitRootLogin to 'yes' to prevent unwanted surprises on updates from older versions. See README.SUSE for details [openssh-7.2p2-allow_root_password_login.patch] - Disable DH parameters under 2048 bits by default and allow lowering the limit back to the RFC 4419 specified minimum through an option (bsc#932483, bsc#948902) [openssh-7.2p2-disable_short_DH_parameters.patch] - Add getuid() and stat() syscalls to the seccomp filter (bsc#912436) [openssh-7.2p2-seccomp_getuid.patch, openssh-7.2p2-seccomp_stat.patch] - upgrade to 7.2p2 upstream package without any SUSE patches Distilled upstream log: - OpenSSH 6.7 Potentially-incompatible changes: * sshd(8): The default set of ciphers and MACs has been altered to remove unsafe algorithms. In particular, CBC ciphers and arcfour* are disabled by default. The full set of algorithms remains available if configured explicitly via the Ciphers and MACs sshd_config options. * sshd(8): Support for tcpwrappers/libwrap has been removed. * OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections using the curve25519-sha256@libssh.org KEX exchange method to fail when connecting with something that implements the specification correctly. OpenSSH 6.7 disables this KEX method when speaking to one of the affected versions. New Features: * ssh(1), sshd(8): Add support for Unix domain socket forwarding. A remote TCP port may be forwarded to a local Unix domain socket and vice versa or both ends may be a Unix domain socket. * ssh(1), ssh-keygen(1): Add support for SSHFP DNS records for ED25519 key types. * sftp(1): Allow resumption of interrupted uploads. * ssh(1): When rekeying, skip file/DNS lookups of the hostkey if it is the same as the one sent during initial key exchange * sshd(8): Allow explicit ::1 and 127.0.0.1 forwarding bind addresses when GatewayPorts=no; allows client to choose address family * sshd(8): Add a sshd_config PermitUserRC option to control whether ~/.ssh/rc is executed, mirroring the no-user-rc authorized_keys option * ssh(1): Add a %C escape sequence for LocalCommand and ControlPath that expands to a unique identifer based on a hash of the tuple of (local host, remote user, hostname, port). Helps avoid exceeding miserly pathname limits for Unix domain sockets in multiplexing control paths * sshd(8): Make the "Too many authentication failures" message include the user, source address, port and protocol in a format similar to the authentication success / failure messages Bugfixes: * sshd(8): Fix remote forwarding with the same listen port but different listen address. * ssh(1): Fix inverted test that caused PKCS#11 keys that were explicitly listed in ssh_config or on the commandline not to be preferred. * ssh-keygen(1): Fix bug in KRL generation: multiple consecutive revoked certificate serial number ranges could be serialised to an invalid format. Readers of a broken KRL caused by this bug will fail closed, so no should-have-been-revoked key will be accepted. * ssh(1): Reflect stdio-forward ("ssh -W host:port ...") failures in exit status. Previously we were always returning 0 * ssh(1), ssh-keygen(1): Make Ed25519 keys' title fit properly in the randomart border * ssh-agent(1): Only cleanup agent socket in the main agent process and not in any subprocesses it may have started (e.g. forked askpass). Fixes agent sockets being zapped when askpass processes fatal() * ssh-add(1): Make stdout line-buffered; saves partial output getting lost when ssh-add fatal()s part-way through (e.g. when listing keys from an agent that supports key types that ssh-add doesn't) * ssh-keygen(1): When hashing or removing hosts, don't choke on @revoked markers and don't remove @cert-authority markers * ssh(1): Don't fatal when hostname canonicalisation fails and a ProxyCommand is in use; continue and allow the ProxyCommand to connect anyway (e.g. to a host with a name outside the DNS behind a bastion) * scp(1): When copying local->remote fails during read, don't send uninitialised heap to the remote end. * sftp(1): Fix fatal "el_insertstr failed" errors when tab-completing filenames with a single quote char somewhere in the string * ssh-keyscan(1): Scan for Ed25519 keys by default. * ssh(1): When using VerifyHostKeyDNS with a DNSSEC resolver, down-convert any certificate keys to plain keys and attempt SSHFP resolution. Prevents a server from skipping SSHFP lookup and forcing a new-hostkey dialog by offering only certificate keys. - OpenSSH 6.8 Potentially-incompatible changes: * sshd(8): UseDNS now defaults to 'no'. Configurations that match against the client host name (via sshd_config or authorized_keys) may need to re-enable it or convert to matching against addresses. New Features: * Add FingerprintHash option to ssh(1) and sshd(8), and equivalent command-line flags to the other tools to control algorithm used for key fingerprints. The default changes from MD5 to SHA256 and format from hex to base64. Fingerprints now have the hash algorithm prepended. An example of the new format: SHA256:mVPwvezndPv/ARoIadVY98vAC0g+P/5633yTC4d/wXE Please note that visual host keys will also be different. * ssh(1), sshd(8): Experimental host key rotation support. Add a protocol extension for a server to inform a client of all its available host keys after authentication has completed. The client may record the keys in known_hosts, allowing it to upgrade to better host key algorithms and a server to gracefully rotate its keys. The client side of this is controlled by a UpdateHostkeys config option (default off). * ssh(1): Add a ssh_config HostbasedKeyType option to control which host public key types are tried during host-based authentication. * ssh(1), sshd(8): fix connection-killing host key mismatch errors when sshd offers multiple ECDSA keys of different lengths. * ssh(1): when host name canonicalisation is enabled, try to parse host names as addresses before looking them up for canonicalisation. fixes bz#2074 and avoiding needless DNS lookups in some cases. * ssh-keygen(1), sshd(8): Key Revocation Lists (KRLs) no longer require OpenSSH to be compiled with OpenSSL support. * ssh(1), ssh-keysign(8): Make ed25519 keys work for host based authentication. * sshd(8): SSH protocol v.1 workaround for the Meyer, et al, Bleichenbacher Side Channel Attack. Fake up a bignum key before RSA decryption. * sshd(8): Remember which public keys have been used for authentication and refuse to accept previously-used keys. This allows AuthenticationMethods=publickey,publickey to require that users authenticate using two _different_ public keys. * sshd(8): add sshd_config HostbasedAcceptedKeyTypes and PubkeyAcceptedKeyTypes options to allow sshd to control what public key types will be accepted. Currently defaults to all. * sshd(8): Don't count partial authentication success as a failure against MaxAuthTries. * ssh(1): Add RevokedHostKeys option for the client to allow text-file or KRL-based revocation of host keys. * ssh-keygen(1), sshd(8): Permit KRLs that revoke certificates by serial number or key ID without scoping to a particular CA. * ssh(1): Add a "Match canonical" criteria that allows ssh_config Match blocks to trigger only in the second config pass. * ssh(1): Add a -G option to ssh that causes it to parse its configuration and dump the result to stdout, similar to "sshd -T". * ssh(1): Allow Match criteria to be negated. E.g. "Match !host". * The regression test suite has been extended to cover more OpenSSH features. The unit tests have been expanded and now cover key exchange. Bugfixes: * ssh-keyscan(1): ssh-keyscan has been made much more robust again servers that hang or violate the SSH protocol. * ssh(1), ssh-keygen(1): Fix regression: Key path names were being lost as comment fields. * ssh(1): Allow ssh_config Port options set in the second config parse phase to be applied (they were being ignored). * ssh(1): Tweak config re-parsing with host canonicalisation - make the second pass through the config files always run when host name canonicalisation is enabled (and not whenever the host name changes) * ssh(1): Fix passing of wildcard forward bind addresses when connection multiplexing is in use * ssh-keygen(1): Fix broken private key conversion from non-OpenSSH formats. * ssh-keygen(1): Fix KRL generation bug when multiple CAs are in use. * Various fixes to manual pages - OpenSSH 6.9 Security: * ssh(1): when forwarding X11 connections with ForwardX11Trusted=no, connections made after ForwardX11Timeout expired could be permitted and no longer subject to XSECURITY restrictions because of an ineffective timeout check in ssh(1) coupled with "fail open" behaviour in the X11 server when clients attempted connections with expired credentials. This problem was reported by Jann Horn. * ssh-agent(1): fix weakness of agent locking (ssh-add -x) to password guessing by implementing an increasing failure delay, storing a salted hash of the password rather than the password itself and using a timing-safe comparison function for verifying unlock attempts. This problem was reported by Ryan Castellucci. New Features: * ssh(1), sshd(8): promote chacha20-poly1305@openssh.com to be the default cipher * sshd(8): support admin-specified arguments to AuthorizedKeysCommand * sshd(8): add AuthorizedPrincipalsCommand that allows retrieving authorized principals information from a subprocess rather than a file. * ssh(1), ssh-add(1): support PKCS#11 devices with external PIN entry devices * sshd(8): allow GSSAPI host credential check to be relaxed for multihomed hosts via GSSAPIStrictAcceptorCheck option * ssh-keygen(1): support "ssh-keygen -lF hostname" to search known_hosts and print key hashes rather than full keys. * ssh-agent(1): add -D flag to leave ssh-agent in foreground without enabling debug mode Bugfixes: * ssh(1), sshd(8): deprecate legacy SSH2_MSG_KEX_DH_GEX_REQUEST_OLD message and do not try to use it against some 3rd-party SSH implementations that use it (older PuTTY, WinSCP). * Many fixes for problems caused by compile-time deactivation of SSH1 support (including bz#2369) * ssh(1), sshd(8): cap DH-GEX group size at 4Kbits for Cisco implementations as some would fail when attempting to use group sizes >4K * ssh(1): fix out-of-bound read in EscapeChar configuration option parsing * sshd(8): fix application of PermitTunnel, LoginGraceTime, AuthenticationMethods and StreamLocalBindMask options in Match blocks * ssh(1), sshd(8): improve disconnection message on TCP reset; bz#2257 * ssh(1): remove failed remote forwards established by muliplexing from the list of active forwards * sshd(8): make parsing of authorized_keys "environment=" options independent of PermitUserEnv being enabled * sshd(8): fix post-auth crash with permitopen=none * ssh(1), ssh-add(1), ssh-keygen(1): allow new-format private keys to be encrypted with AEAD ciphers * ssh(1): allow ListenAddress, Port and AddressFamily configuration options to appear in any order * sshd(8): check for and reject missing arguments for VersionAddendum and ForceCommand * ssh(1), sshd(8): don't treat unknown certificate extensions as fatal * ssh-keygen(1): make stdout and stderr output consistent * ssh(1): mention missing DISPLAY environment in debug log when X11 forwarding requested * sshd(8): correctly record login when UseLogin is set * sshd(8): Add some missing options to sshd -T output and fix output of VersionAddendum and HostCertificate. bz#2346 * Document and improve consistency of options that accept a "none" argument" TrustedUserCAKeys, RevokedKeys (bz#2382), AuthorizedPrincipalsFile (bz#2288) * ssh(1): include remote username in debug output * sshd(8): avoid compatibility problem with some versions of Tera Term, which would crash when they received the hostkeys notification message (hostkeys-00@openssh.com) * sshd(8): mention ssh-keygen -E as useful when comparing legacy MD5 host key fingerprints * ssh(1): clarify pseudo-terminal request behaviour and use make manual language consistent * ssh(1): document that the TERM environment variable is not subject to SendEnv and AcceptEnv - OpenSSH 7.0: This focuses primarily on deprecating weak, legacy and/or unsafe cryptography. Security: * sshd(8): OpenSSH 6.8 and 6.9 incorrectly set TTYs to be world- writable. Local attackers may be able to write arbitrary messages to logged-in users, including terminal escape sequences. Reported by Nikolay Edigaryev. * sshd(8): Portable OpenSSH only: Fixed a privilege separation weakness related to PAM support. Attackers who could successfully compromise the pre-authentication process for remote code execution and who had valid credentials on the host could impersonate other users. Reported by Moritz Jodeit. * sshd(8): Portable OpenSSH only: Fixed a use-after-free bug related to PAM support that was reachable by attackers who could compromise the pre-authentication process for remote code execution. Also reported by Moritz Jodeit. * sshd(8): fix circumvention of MaxAuthTries using keyboard- interactive authentication. By specifying a long, repeating keyboard-interactive "devices" string, an attacker could request the same authentication method be tried thousands of times in a single pass. The LoginGraceTime timeout in sshd(8) and any authentication failure delays implemented by the authentication mechanism itself were still applied. Found by Kingcope. Potentially-incompatible Changes: * Support for the legacy SSH version 1 protocol is disabled by default at compile time. * Support for the 1024-bit diffie-hellman-group1-sha1 key exchange is disabled by default at run-time. It may be re-enabled using the instructions in README.legacy or http://www.openssh.com/legacy.html * Support for ssh-dss, ssh-dss-cert-* host and user keys is disabled by default at run-time. These may be re-enabled using the instructions at http://www.openssh.com/legacy.html * Support for the legacy v00 cert format has been removed. * The default for the sshd_config(5) PermitRootLogin option has changed from "yes" to "prohibit-password". * PermitRootLogin=without-password/prohibit-password now bans all interactive authentication methods, allowing only public-key, hostbased and GSSAPI authentication (previously it permitted keyboard-interactive and password-less authentication if those were enabled). New Features: * ssh_config(5): add PubkeyAcceptedKeyTypes option to control which public key types are available for user authentication. * sshd_config(5): add HostKeyAlgorithms option to control which public key types are offered for host authentications. * ssh(1), sshd(8): extend Ciphers, MACs, KexAlgorithms, HostKeyAlgorithms, PubkeyAcceptedKeyTypes and HostbasedKeyTypes options to allow appending to the default set of algorithms instead of replacing it. Options may now be prefixed with a '+' to append to the default, e.g. "HostKeyAlgorithms=+ssh-dss". * sshd_config(5): PermitRootLogin now accepts an argument of 'prohibit-password' as a less-ambiguous synonym of 'without- password'. Bugfixes: * ssh(1), sshd(8): add compatability workarounds for Cisco and more PuTTY versions. * Fix some omissions and errors in the PROTOCOL and PROTOCOL.mux documentation relating to Unix domain socket forwarding * ssh(1): Improve the ssh(1) manual page to include a better description of Unix domain socket forwarding * ssh(1), ssh-agent(1): skip uninitialised PKCS#11 slots, fixing failures to load keys when they are present. * ssh(1), ssh-agent(1): do not ignore PKCS#11 hosted keys that wth empty CKA_ID * sshd(8): clarify documentation for UseDNS option - OpenSSH 7.1: Security: * sshd(8): OpenSSH 7.0 contained a logic error in PermitRootLogin= prohibit-password/without-password that could, depending on compile-time configuration, permit password authentication to root while preventing other forms of authentication. This problem was reported by Mantas Mikulenas. Bugfixes: * ssh(1), sshd(8): add compatability workarounds for FuTTY * ssh(1), sshd(8): refine compatability workarounds for WinSCP * Fix a number of memory faults (double-free, free of uninitialised memory, etc) in ssh(1) and ssh-keygen(1). Reported by Mateusz Kocielski. - OpenSSH 7.1p2: * SECURITY: ssh(1): The OpenSSH client code between 5.4 and 7.1 contains experimential support for resuming SSH-connections (roaming). The matching server code has never been shipped, but the client code was enabled by default and could be tricked by a malicious server into leaking client memory to the server, including private client user keys. The authentication of the server host key prevents exploitation by a man-in-the-middle, so this information leak is restricted to connections to malicious or compromised servers. MITIGATION: For OpenSSH >= 5.4 the vulnerable code in the client can be completely disabled by adding 'UseRoaming no' to the gobal ssh_config(5) file, or to user configuration in ~/.ssh/config, or by passing -oUseRoaming=no on the command line. PATCH: See below for a patch to disable this feature (Disabling Roaming in the Source Code). This problem was reported by the Qualys Security Advisory team. * SECURITY: Eliminate the fallback from untrusted X11-forwarding to trusted forwarding for cases when the X server disables the SECURITY extension. Reported by Thomas Hoger. * SECURITY: Fix an out of-bound read access in the packet handling code. Reported by Ben Hawkes. * PROTOCOL: Correctly interpret the 'first_kex_follows' option during the intial key exchange. Reported by Matt Johnston. * Further use of explicit_bzero has been added in various buffer handling code paths to guard against compilers aggressively doing dead-store removal. Potentially-incompatible changes: * This release disables a number of legacy cryptographic algorithms by default in ssh: + Several ciphers blowfish-cbc, cast128-cbc, all arcfour variants and the rijndael-cbc aliases for AES. + MD5-based and truncated HMAC algorithms. - OpenSSH 7.2: Security: * ssh(1), sshd(8): remove unfinished and unused roaming code (was already forcibly disabled in OpenSSH 7.1p2). * ssh(1): eliminate fallback from untrusted X11 forwarding to trusted forwarding when the X server disables the SECURITY extension. * ssh(1), sshd(8): increase the minimum modulus size supported for diffie-hellman-group-exchange to 2048 bits. * sshd(8): pre-auth sandboxing is now enabled by default (previous releases enabled it for new installations via sshd_config). New Features: * all: add support for RSA signatures using SHA-256/512 hash algorithms based on draft-rsa-dsa-sha2-256-03.txt and draft-ssh-ext-info-04.txt. * ssh(1): Add an AddKeysToAgent client option which can be set to 'yes', 'no', 'ask', or 'confirm', and defaults to 'no'. When enabled, a private key that is used during authentication will be added to ssh-agent if it is running (with confirmation enabled if set to 'confirm'). * sshd(8): add a new authorized_keys option "restrict" that includes all current and future key restrictions (no-*-forwarding, etc.). Also add permissive versions of the existing restrictions, e.g. "no-pty" -> "pty". This simplifies the task of setting up restricted keys and ensures they are maximally-restricted, regardless of any permissions we might implement in the future. * ssh(1): add ssh_config CertificateFile option to explicitly list certificates. bz#2436 * ssh-keygen(1): allow ssh-keygen to change the key comment for all supported formats. * ssh-keygen(1): allow fingerprinting from standard input, e.g. "ssh-keygen -lf -" * ssh-keygen(1): allow fingerprinting multiple public keys in a file, e.g. "ssh-keygen -lf ~/.ssh/authorized_keys" bz#1319 * sshd(8): support "none" as an argument for sshd_config Foreground and ChrootDirectory. Useful inside Match blocks to override a global default. bz#2486 * ssh-keygen(1): support multiple certificates (one per line) and reading from standard input (using "-f -") for "ssh-keygen -L" * ssh-keyscan(1): add "ssh-keyscan -c ..." flag to allow fetching certificates instead of plain keys. * ssh(1): better handle anchored FQDNs (e.g. 'cvs.openbsd.org') in hostname canonicalisation - treat them as already canonical and remove the trailing '.' before matching ssh_config. Bugfixes: * sftp(1): existing destination directories should not terminate recursive uploads (regression in openssh 6.8) * ssh(1), sshd(8): correctly send back SSH2_MSG_UNIMPLEMENTED replies to unexpected messages during key exchange. * ssh(1): refuse attempts to set ConnectionAttempts=0, which does not make sense and would cause ssh to print an uninitialised stack variable. * ssh(1): fix errors when attempting to connect to scoped IPv6 addresses with hostname canonicalisation enabled. * sshd_config(5): list a couple more options usable in Match blocks. * sshd(8): fix "PubkeyAcceptedKeyTypes +..." inside a Match block. * ssh(1): expand tilde characters in filenames passed to -i options before checking whether or not the identity file exists. Avoids confusion for cases where shell doesn't expand (e.g. "-i ~/file" vs. "-i~/file"). * ssh(1): do not prepend "exec" to the shell command run by "Match exec" in a config file, which could cause some commands to fail in certain environments. * ssh-keyscan(1): fix output for multiple hosts/addrs on one line when host hashing or a non standard port is in use * sshd(8): skip "Could not chdir to home directory" message when ChrootDirectory is active. * ssh(1): include PubkeyAcceptedKeyTypes in ssh -G config dump. * sshd(8): avoid changing TunnelForwarding device flags if they are already what is needed; makes it possible to use tun/tap networking as non-root user if device permissions and interface flags are pre-established * ssh(1), sshd(8): RekeyLimits could be exceeded by one packet. * ssh(1): fix multiplexing master failure to notice client exit. * ssh(1), ssh-agent(1): avoid fatal() for PKCS11 tokens that present empty key IDs. * sshd(8): avoid printf of NULL argument. * ssh(1), sshd(8): allow RekeyLimits larger than 4GB. * ssh-keygen(1): sshd(8): fix several bugs in (unused) KRL signature support. * ssh(1), sshd(8): fix connections with peers that use the key exchange guess feature of the protocol. * sshd(8): include remote port number in log messages. * ssh(1): don't try to load SSHv1 private key when compiled without SSHv1 support. * ssh-agent(1), ssh(1): fix incorrect error messages during key loading and signing errors. * ssh-keygen(1): don't leave empty temporary files when performing known_hosts file edits when known_hosts doesn't exist. * sshd(8): correct packet format for tcpip-forward replies for requests that don't allocate a port * ssh(1), sshd(8): fix possible hang on closed output. * ssh(1): expand %i in ControlPath to UID. * ssh(1), sshd(8): fix return type of openssh_RSA_verify. * ssh(1), sshd(8): fix some option parsing memory leaks. * ssh(1): add a some debug output before DNS resolution; it's a place where ssh could previously silently stall in cases of unresponsive DNS servers. * ssh(1): remove spurious newline in visual hostkey. * ssh(1): fix printing (ssh -G ...) of HostKeyAlgorithms=+... * ssh(1): fix expansion of HostkeyAlgorithms=+... Documentation: * ssh_config(5), sshd_config(5): update default algorithm lists to match current reality. * ssh(1): mention -Q key-plain and -Q key-cert query options. * sshd_config(8): more clearly describe what AuthorizedKeysFile=none does. * ssh_config(5): better document ExitOnForwardFailure. * sshd(5): mention internal DH-GEX fallback groups in manual. * sshd_config(5): better description for MaxSessions option. Portability: * sshd(8): fix multiple authentication using S/Key. - OpenSSH 7.2p2: Security: * sshd(8): sanitise X11 authentication credentials to avoid xauth command injection when X11Forwarding is enabled. (removing patches from previous version: * CVE-2016-0777_CVE-2016-0778.patch * openssh-6.6p1-X11-forwarding.patch * openssh-6.6p1-X_forward_with_disabled_ipv6.patch * openssh-6.6p1-audit1-remove_duplicit_audit.patch * openssh-6.6p1-audit2-better_audit_of_user_actions.patch * openssh-6.6p1-audit3-key_auth_usage-fips.patch * openssh-6.6p1-audit3-key_auth_usage.patch * openssh-6.6p1-audit4-kex_results-fips.patch * openssh-6.6p1-audit4-kex_results.patch * openssh-6.6p1-audit5-session_key_destruction.patch * openssh-6.6p1-audit6-server_key_destruction.patch * openssh-6.6p1-audit7-libaudit_compat.patch * openssh-6.6p1-audit8-libaudit_dns_timeouts.patch * openssh-6.6p1-blocksigalrm.patch * openssh-6.6p1-curve25519-6.6.1p1.patch * openssh-6.6p1-default-protocol.patch * openssh-6.6p1-disable-openssl-abi-check.patch * openssh-6.6p1-eal3.patch * openssh-6.6p1-fingerprint_hash.patch * openssh-6.6p1-fips-checks.patch * openssh-6.6p1-fips.patch * openssh-6.6p1-gssapi_key_exchange.patch * openssh-6.6p1-gssapimitm.patch * openssh-6.6p1-host_ident.patch * openssh-6.6p1-key-converter.patch * openssh-6.6p1-lastlog.patch * openssh-6.6p1-ldap.patch * openssh-6.6p1-login_options.patch * openssh-6.6p1-no_fork-no_pid_file.patch * openssh-6.6p1-pam-check-locks.patch * openssh-6.6p1-pam-fix2.patch * openssh-6.6p1-pam-fix3.patch * openssh-6.6p1-pts.patch * openssh-6.6p1-saveargv-fix.patch * openssh-6.6p1-seccomp_getuid.patch * openssh-6.6p1-seccomp_stat.patch * openssh-6.6p1-seed-prng.patch * openssh-6.6p1-send_locale.patch * openssh-6.6p1-sftp_force_permissions.patch * openssh-6.6p1-sftp_homechroot.patch * openssh-6.6p1-xauth.patch * openssh-6.6p1-xauthlocalhostname.patch) ==== orca ==== Version update (3.20.2 -> 3.20.3) - Update to version 3.20.3: + Web: Fix issue updating caret position during structural navigation. + General: - Don't try to catch SIGSEGV; use faulthandler to dump output from crash. This is needed to behave (slightly) better when AT-SPI2 crashes. - Do not supress presentation of locking keys in password fields. - Don't show desktop file in Unity. - Ignore object:state-changed:sensitive events for menu items (perf). - Handle another case of objects going defunct on us. + Updated translations. ==== perl-Bootloader ==== Version update (0.913 -> 0.915) - also clear LC_ALL when setting locale - run grub in RC_LANG locale taken from sysconfig (bsc#985946) - 0.915 - ensure trusted boot setting is used (fate#316553) - 0.914 ==== python-cryptography ==== - Introduce requirement setuptools >= 11.3 to follow egg-info/requires.txt content ==== python3-setuptools ==== Version update (24.0.2 -> 25.1.0) - update to version 25.1.0: * #609: Setuptools will now try to download a distribution from the next possible download location if the first download fails. This means you can now specify multiple links as dependency_links and all links will be tried until a working download link is encountered. - changes from version 25.0.2: * #688: Fix AttributeError in setup.py when invoked not from the current directory. - changes from version 25.0.1: * Cleanup of setup.py script. * Fixed documentation builders by allowing setup.py to be imported without having bootstrapped the metadata. * More style cleanup. See #677, #678, #679, #681, #685. - update to version 25.0.0: * #674: Default sys.path manipulation by easy-install.pth is now "raw", meaning that when writing easy-install.pth during any install operation, the sys.path will not be rewritten, giving preference to easy_installed packages. - changes from version 24.3.1: * #398: Fix shebang handling on Windows in script headers where spaces in sys.executable would produce an improperly-formatted shebang header, introduced in 12.0 with the fix for #188. * #663, #670: More style updates. - update to version 24.3.0: * #516: Disable os.link to avoid hard linking in sdist.make_distribution, avoiding errors on systems that support hard links but not on the file system in which the build is occurring. - update to version 24.2.1: * #667: Update Metadata-Version to 1.2 when python_requires is supplied. - changes from version 24.2.0: * #631: Add support for python_requires keyword. - changes from version 24.1.1: * More style updates. See #660, #661, #641. - changes from version 24.1.0: * #659: setup.py now will fail fast and with a helpful error message when the necessary metadata is missing. * More style updates. See #656, #635, #640, #644, #650, #652, and [#655]. - update to version 24.0.3: * Updated style in much of the codebase to match community expectations. See #632, #633, #634, #637, #639, #638, #642, #648 ==== sendmail ==== Version update (8.14.9 -> 8.15.2) - Fix License: Even https://spdx.org/licenses/Sendmail.html lists "Sendmail" as the valid identifier. Same as http://license.opensuse.org/ does. "Sendmail License" is in the column "Full Name". The License: tag requires the identifier. - Fix some more rpmlint warnings: + sendmail: W: suse-missing-rclink sendmail: - Ship /usr/sbin/rcsendmail symlink to /usr/sbin/service + sendmail: W: suse-missing-rclink sendmail-client - Ship /usr/sbin/rcsendmail-client symlink to /usr/sbin/service + sendmail: W: suse-wrong-suse-capitalisation: - Rename README.SuSE to README.SUSE (fix spelling also inside the file). + sendmail: W: permissions-dir-without-slash - Fix permissions and permissions.paranoid inside sendmail-suse.tar.bz2. + sendmail: W: systemd-service-without-service_del_postun: - Add corresponding macros to postun script when not building with sysvinit support. + sendmail: W: systemd-service-without-service_add_pre: - Add corresponding macros to pre script when not building with sysvinit support. - Drop unused patch: * sendmail-8.14.7-warning.patch - Split uucp to separate package, no technical reason for it to not stand on its own - Drop uucp related patches: + uucp-1.07-contrib.dif + uucp-1.07-cu.patch + uucp-1.07-grade.patch + uucp-1.07-lockdev.patch + uucp-1.07.dif + uucp-texinfo-5.0.patch + drop_ftime.patch - Do not use http://license.opensuse.org/ as reference for the Sendmail license even if stated by rpmlint but https://spdx.org/licenses/Sendmail.html - Avoid warning from chkstat due slash on directory path as last character - Update to sendmail 8.15.2 (boo#975416) * If FEATURE(`nopercenthack') is used then some bogus input triggered a recursion which was caught and logged as SYSERR: rewrite: excessive recursion (max 50) ... Fix based on patch from Ondrej Holas. * DHParameters now by default uses an included 2048 bit prime. The value 'none' previously caused a log entry claiming there was an error "cannot read or set DH parameters". Also note that this option applies to the server side only. * The U= mailer field didn't accept group names containing hyphens, underbars, or periods. Based on patch from David Gwynne of the University of Queensland. * CONFIG: Allow connections from IPv6:0:0:0:0:0:0:0:1 to relay again. Patch from Lars-Johan Liman of Netnod Internet Exchange. * CONFIG: New option UseCompressedIPv6Addresses to select between compressed and uncompressed IPv6 addresses. The default value depends on the compile-time option IPV6_FULL: For 1 the default is False, for 0 it is True, thus preserving the current behaviour. Based on patch from John Beck of Oracle. * CONFIG: Account for IPv6 localhost addresses in FEATURE(`block_bad_helo'). Suggested by Andrey Chernov from FreeBSD and Robert Scheck from the Fedora Project. * CONFIG: Account for IPv6 localhost addresses in check_mail ruleset. * LIBMILTER: Deal with more invalid protocol data to avoid potential crashes. Problem noted by Dimitri Kirchner. * LIBMILTER: Allow a milter to specify an empty macro list ("", not NULL) in smfi_setsymlist() so no macro is sent for the selected stage. * MAKEMAP: A change to check TrustedUser in fewer cases which was made in 2013 caused a potential regression when makemap was run as root (which should not be done anyway). * SECURITY: Properly set the close-on-exec flag for file descriptors (except stdin, stdout, and stderr) before executing mailers. * If header rewriting fails due to a temporary map lookup failure, queue the mail for later retry instead of sending it without rewriting the header. Note: this is done while the mail is being sent and hence the transaction is aborted, which only works for SMTP/LMTP mailers hence the handling of temporary map failures is suppressed for other mailers. SMTP/LMTP servers may complain about aborted transactions when this problem occurs. See also "DNS Lookups" in sendmail/TUNING. * Incompatible Change: Use uncompressed IPv6 addresses by default, i.e., they will not contain "::". For example, instead of ::1 it will be 0:0:0:0:0:0:0:1. This permits a zero subnet to have a more specific match, such as different map entries for IPv6:0:0 vs IPv6:0. This change requires that configuration data (including maps, files, classes, custom ruleset, etc) must use the same format, so make certain such configuration data is updated before using 8.15. As a very simple check search for patterns like 'IPv6:[0-9a-fA-F:]*::' and 'IPv6::'. If necessary, the prior format can be retained by compiling with: APPENDDEF(`conf_sendmail_ENVDEF', `-DIPV6_FULL=0') in your devtools/Site/site.config.m4 file. * If a connection to the MTA is dropped by the client before its hostname can be validated, treat it as "may be forged", so that the unvalidated hostname is not passed to a milter in xxfi_connect(). * Add a timeout for communication with socket map servers which can be specified using the -d option. * Add a compile time option HESIOD_ALLOW_NUMERIC_LOGIN to allow numeric logins even if HESIOD is enabled. - sendmail 8.15.1 * The new option CertFingerprintAlgorithm specifies the finger- print algorithm (digest) to use for the presented cert. If the option is not set, md5 is used and the macro {cert_md5} contains the cert fingerprint. However, if the option is set, the specified algorithm (e.g., sha1) is used and the macro {cert_fp} contains the cert fingerprint. That is, as long as the option is not set, the behaviour does not change, but otherwise, {cert_md5} is superseded by {cert_fp} even if you set CertFingerprintAlgorithm to md5. * The options ServerSSLOptions and ClientSSLOptions can be used to set SSL options for the server and client side respectively. See SSL_CTX_set_options(3) for a list. Note: this change turns on SSL_OP_NO_SSLv2 and SSL_OP_NO_TICKET for the client. See doc/op/op.me for details. * The option CipherList sets the list of ciphers for STARTTLS. See ciphers(1) for possible values. * Do not log "STARTTLS: internal error: tls_verify_cb: ssl == NULL" if a CRLFfile is in use (and LogLevel is 14 or higher.) * Store a more specific TLS protocol version in ${tls_version} instead of a generic one, e.g., TLSv1 instead of TLSv1/SSLv3. * Properly set {client_port} value on little endian machines. Patch from Kelsey Cummings of Sonic.net. * Per RFC 3848, indicate in the Received: header whether SSL or SMTP AUTH was negotiated by setting the protocol clause to ESMTPS, ESMTPA, or ESMTPSA instead of ESMTP. * If the 'C' flag is listed as TLSSrvOptions the requirement for the TLS server to have a cert is removed. This only works under very specific circumstances and should only be used if the consequences are understood, e.g., clients may not work with a server using this. * The options ClientCertFile, ClientKeyFile, ServerCertFile, and ServerKeyFile can take a second file name, which must be separated from the first with a comma (note: do not use any spaces) to set up a second cert/key pair. This can be used to have certs of different types, e.g., RSA and DSA. * A new map type "arpa" is available to reverse an IP (IPv4 or IPv6) address. It returns the string for the PTR lookup, but without trailing {ip6,in-addr}.arpa. * New operation mode 'C' just checks the configuration file, e.g., sendmail -C new.cf -bC will perform a basic syntax/consistency check of new.cf. * The mailer flag 'I' is deprecated and will be removed in a future version. * Allow local (not just TCP) socket connections to the server, e.g., O DaemonPortOptions=Family=local, Addr=/var/mta/server.sock can be used. * If the new option MaxQueueAge is set to a value greater than zero, entries in the queue will be retried during a queue run only if the individual retry time has been reached which is doubled for each attempt. The maximum retry time is limited by the specified value. * New DontBlameSendmail option GroupReadableDefaultAuthInfoFile to relax requirement for DefaultAuthInfo file. * Reset timeout after receiving a message to appropriate value if STARTTLS is in use. Based on patch by Kelsey Cummings of Sonic.net. * Report correct error messages from the LDAP library for a range of small negative return values covering those used by OpenLDAP. * Fix compilation with Berkeley DB 5.0 and 6.0. Patch from Allan E Johannesen of Worcester Polytechnic Institute. * CONFIG: FEATURE(`nopercenthack') takes one parameter: reject or nospecial which describes whether to disallow "%" in the local part of an address. * DEVTOOLS: Fix regression in auto-detection of libraries when only shared libraries are available. Problem reported by Bryan Costales. * LIBMILTER: Mark communication socket as close-on-exec in case a user's filter starts other applications. Based on patch from Paul Howarth. - Modified patches sendmail-8.14.9.dif becomes sendmail-8.15.2.dif sendmail-8.14.7-select.dif sendmail-8.14.8-m4header.patch sendmail-fd-passing-libmilter.patch Removed patches sendmail-db6.diff sendmail-8.14.7-warning.patch - Do not enforce dependencies like for amavis and saslauthd ==== sysdig ==== Version update (0.10.1_k4.6.4_2 -> 0.11.0_k4.6.4_2) - Update to version 0.11.0: * Support for tracers. A way to add user level events to sysdig stream. Seeannouncement blog post. * New csysdig views: Traces List, Traces Summary, Traces Spectogram * New evtin.* and span.* filters startswith operand for strings, ex: fd.name startswith /etc * evt.is_open_{read,write} fields, true or false if an event is an open() in read or write * Improved performances of Kubernetes metadata parsing. * Bug fixes for IPv6 - Add sysdig-do-not-use-private-jq-api.patch to allow building with system JQ ==== syslogd ==== Subpackages: klogd syslog-service - Add requires on klogd, previously in requires(pre); should fix issue found in sr#412257 - Cleanup various rpmlint warnings - Use upstream url and sources - Remove the omv files, not needed ==== ucode-intel ==== Version update (20151106 -> 20160714) - Update to version 20160714. - Should fix bsc#987358, a bug which got introduced with the last release. - Update to version 20160607, no changelog available ==== wine ==== Version update (1.9.13 -> 1.9.15) Subpackages: wine-32bit - Updated to 1.9.15 development snapshot - More shader instructions in Direct3D. - Performance improvements in GDI. - Better multi-joystick support on macOS. - Active Scripting improvements. - Additional stream support in the C++ runtime. - Various bug fixes. - Updated to 1.9.14 development snapshot - More Shader Model 5 support in Direct3D. - Some more write support in WebServices. - Performance improvements in GDI. - Some more progress towards the Direct3D command stream. - Various bug fixes. - updated winetricks ==== xmlcharent ==== - Use update-xml-catalog ==== xorg-x11-server ==== Version update (7.6_1.18.3 -> 7.6_1.18.4) Subpackages: xorg-x11-server-extra xorg-x11-server-sdk - Update to version 1.18.4: Another pile of backports from the devel branch, primarily in glamor, xwayland, and the modesetting driver. - Remove included patches: + u_x86emu-include-order.patch + U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch - Update patches to reflect upstream changes: + U_glamor-Remove-the-FBO-cache.patch - U_glamor-Remove-the-FBO-cache.patch Fixes (bsc#983743) by not keeping >1 GB of VRAM busy. ==== yast2-add-on ==== Version update (3.1.15 -> 3.1.16) - Fix layout of Add-On screen (bsc#951720) - 3.1.16 ==== yast2-kdump ==== Version update (3.1.38 -> 3.1.39) - Proposing kdump to be disabled by default on ARM64 (bsc#989321) - 3.1.39 ==== yast2-packager ==== Version update (3.1.107 -> 3.1.108) - Fix layout of Add-On screen (bsc#951720) - 3.1.108